last executing test programs:

5.971152036s ago: executing program 0 (id=511):
mprotect$auto(0x1ffff000, 0x8000000001000004, 0x10)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socket(0xa, 0x2, 0x3a)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
prctl$auto(0x53564d41, 0x0, 0x0, 0xd, 0xf4ff)
r0 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/smaps\x00', 0x101000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x3, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xc004ae02, 0x88)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
ioctl$auto_KVM_CREATE_VM(r1, 0xc008ae88, 0x88)
read$auto_proc_pid_smaps_operations_internal(r0, &(0x7f0000000040)=""/93, 0x5d)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r4, &(0x7f0000001e00)={0x0, 0xffffffffffffff53, &(0x7f0000001dc0)={&(0x7f00000000c0)={0x3c, r5, 0x1, 0x70bd25, 0x25dfcbfd, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0xd, 0xa, '/dev/kvm\x00'}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xffffffffffffff7d}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x48080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_BTRFS_IOC_FORGET_DEV(0xffffffffffffffff, 0x50009405, 0x0)
clone$auto(0x10051c, 0x6, 0x0, 0xffffffffffffffff, 0x80000001)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010)
setsockopt$auto(0x4, 0x0, 0x485, 0xfffffffffffffffe, 0x0)
syz_genetlink_get_family_id$auto_ncsi(0x0, 0xffffffffffffffff)
lstat$auto(0x0, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r6)

4.589081521s ago: executing program 0 (id=517):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
r0 = dup$auto(0xffffffffffffffff)
close_range$auto(r0, r0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r1, 0x8, 0x1)
fcntl$auto(r1, 0x10, 0x2)
r2 = socket(0x2, 0x6, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/mac80211_hwsim/hwsim0/ieee80211/phy0/rfkill2/hard\x00', 0x2600, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000000c0)=""/228, 0xe4)
syz_clone(0x2360411, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$auto_USB_RAW_IOCTL_EPS_INFO(0xffffffffffffffff, 0x83c0550b, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r4, 0x7fffffff, 0xffffffffffffffff)
setsockopt$auto(r2, 0x0, 0x10, 0x0, 0x1a)
r5 = socket(0x10, 0x2, 0x6)
r6 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="010028bd70b60f20a388724fbd00"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x8044)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7ff, 0x89, 0x26, 0x4, 0x200004000001, 0x3, 0xfffffffffffffffa, 0x0, 0x0, 0x30, 0x0, 0x864, 0xa, 0x22000, 0x200, 0x0, 0x84, [0x2, 0x2, 0xffffffffffffffff, 0xfffffffffffffffe, 0x0, 0x401ffc, 0x0, 0x5, 0x1, 0x400, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8, 0x2000004, 0x6, 0x0, 0x10000000000008, 0xc32b, 0x0, 0x10000000000, 0xffffffffffffffff, 0x4, 0x2f, 0x0, 0x0, 0x3006, 0x400000000005b8, 0xffff, 0x0, 0x8000, 0x2, 0x6, 0x2, 0x88e, 0x40, 0xfffffffffffffffc, 0x8, 0xa38, 0x1c0000000000000, 0x6, 0xfffffffffffffffd, 0x2, 0x8, 0x10000000007, 0xc567, 0x7ffffffffd]}, 0xb, 0xd)
r7 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r7, 0xfffffff7effffd08, &(0x7f00000001c0))
openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000000), 0xa8200, 0x0)

4.477401221s ago: executing program 1 (id=518):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
madvise$auto(0x6, 0xc, 0x19)
setfsgid$auto(0xee01)
mmap$auto(0x0, 0x6, 0xdf, 0xeb1, 0x401, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
madvise$auto(0x0, 0xa2c8, 0x14)

3.324026085s ago: executing program 1 (id=521):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x5, 0x0)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
r0 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
r1 = socket(0x2b, 0x1, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
msgsnd$auto(0x4, 0x0, 0x401, 0xffa)
socket(0xa, 0x2, 0x73)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
socket(0x18, 0x80802, 0x0)
ioctl$auto(0xc8, 0x800454e0, 0xe)
r3 = socket(0xa, 0x5, 0x84)
msgsnd$auto(0x1, &(0x7f00000000c0)={0x4, 0xa}, 0x100, 0x2)
sendto$auto(r3, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffe00"}, 0x1c)
sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x80)
sendmsg$auto_NFC_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4810}, 0x8080)
ioctl$auto_posix_clock_file_operations_posix_clock(r0, 0xc0403d11, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x0, @rand_addr=0x64010101}, 0x55)

3.323773443s ago: executing program 0 (id=522):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_TIOCEXCL2(r0, 0x540c, &(0x7f0000000040)="e76f1cf7961ce1f5bbfc34f8a3e83ed48461da16f55c546e9876eedf32553383d7059038044b3d4073191f5a981940e664b5f51bb14de9300b859533e8767decf668f997bac9c8a39b93677fefd551eae7e355cc2669d7ba2b0defe437849855c6d020354b98a1b92782ad344cba219ddb6459ffa7faf979d65ce8ffc859c7fc8f4b2c5b6de9caaa1a")
r1 = socket(0x2, 0x3, 0x6)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mincore$auto(0x0, 0x10000, 0x0)
setsockopt$auto(0x3, 0x0, 0x31, 0x0, 0x28)
unshare$auto(0x40000080)
r2 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/vhci_hcd.14/usb38/38-0:1.0/usb38-port2/early_stop\x00', 0x80, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r2, 0xffffffffffdffe00, &(0x7f0000000140))
mmap$auto(0x0, 0x4020009, 0xdf, 0x10000000000eb1, 0x401, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_GET(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000000400)=ANY=[@ANYBLOB="e0e6cd2787c6e19bff177081b1445957df32000000", @ANYRES16=r4, @ANYBLOB="2d1728bd7000fedbdf2504000000"], 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x20008080)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
r5 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000040), 0x2dc08f24db163610, 0x0)
socket(0x25, 0x6, 0x80000082)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0xa2802, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_SEG6_CMD_DUMPHMAC(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x4000010)
ioctl$auto_TIOCCONS2(r0, 0x541d, &(0x7f00000002c0)="a56b548cb7f47a6fd293493030475fbc0434c9bc573921661f65e8da7987579edf9750b83a8142f3709fd4f0a72991932a79119459ab050faa873580c5d3bab0f43600c3898aca2d45e7364adecb5560091a2fcd8b752e06d47fb8a637f84068c6ecf5fde0ad2a3a974adf4be937e6c77d700c7fb0cd1dac570818e67141d081b0dad49fda256e54ab970896f949e8bea82217bad91e904e6696dea105ad0b8f636c6ececd6688b92e1103adcd508e00d6e5266ed3bae2f81321e45a189d058379e43618a17e154feea175cfbc2da6a134432377c4b352e2bd")
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/card1/pcm0c/sub6/xrun_injection\x00', 0x12b102, 0x0)
socket(0x1e, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0x8000000000000001, 0x9b72, r2, 0x1000)
mlock$auto(0xfbe8, 0x4)
mlock$auto(0x1a81, 0x2)
getsockopt$auto(r1, 0x6, 0x80000001, &(0x7f0000000240)='TIPCv2\x00', &(0x7f00000003c0)=0x7fffffff)
mlock$auto(0x7c88, 0x7fff)
connect$auto(r5, &(0x7f00000004c0)=@ethernet={0x1, @multicast}, 0x2)

2.26090329s ago: executing program 2 (id=525):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
ioctl$auto(r0, 0xc02c5625, r0)
socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
msgctl$auto(0x0, 0x9, &(0x7f0000000080)={{0xce0, 0x0, 0xee00, 0x101, 0x6, 0x6, 0xe}, 0x0, 0x0, 0xffff, 0x2, 0x7fffffffffffffff, 0x80, 0x8001, 0x11, 0x6, 0x8, @inferred, @raw=0x7fffffff})
socket(0x2, 0x1, 0x0)
r1 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa140, 0x0)
ioctl$auto_SOUND_MIXER_READ_DEVMASK(r1, 0x80044dfe, &(0x7f0000000040))
read$auto_proc_single_file_operations_base(0xffffffffffffffff, &(0x7f0000000040)=""/228, 0xe4)

2.17683232s ago: executing program 3 (id=526):
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
request_key$auto_KEY_SPEC_USER_SESSION_KEYRING(&(0x7f00000000c0)='&)//\x00', &(0x7f0000000100)='\x00', &(0x7f0000000140)='\x00', 0xfffffffffffffffb)
write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0)

1.931991785s ago: executing program 2 (id=527):
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, 0x0, 0x3)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
request_key$auto_KEY_SPEC_USER_SESSION_KEYRING(&(0x7f00000000c0)='&)//\x00', &(0x7f0000000100)='\x00', &(0x7f0000000140)='\x00', 0xfffffffffffffffb)
write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0)

1.931721949s ago: executing program 1 (id=529):
mprotect$auto(0x1ffff000, 0x8000000001000004, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x2, 0x3a)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000040)={0x3c, r1, 0x1, 0x70bd25, 0x25dfcbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xffffffffffffff7d}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x48080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
ioctl$auto_BTRFS_IOC_FORGET_DEV(r2, 0x50009405, 0x0)
write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000240), 0x0)
setsockopt$auto(0x4, 0x0, 0x485, 0xfffffffffffffffe, 0x0)
syz_genetlink_get_family_id$auto_ncsi(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'hsr0\x00', <r3=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYRES32=r3, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYBLOB], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
lstat$auto(0x0, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x802}, 0x7, 0x4008)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r4)
sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_START(r4, &(0x7f0000001540)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001500)={&(0x7f0000000240)={0x1248, r5, 0x300, 0x70bd25, 0x25dfdbff, {}, [@NL80211_ATTR_TID_CONFIG={0x1224, 0x11d, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0xd1}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x9}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x7e4}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x43}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xfffa}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x32}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0xa}]}, {0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x7f}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x2}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x9}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x9}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x8000000000000001}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0x1154, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xf800}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x105c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xc0}, @NL80211_TXRATE_LEGACY={0x1c, 0x1, "e508c291569a509e1d80dd7bca08d7d40be79273f57b2935"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x3}, @NL80211_TXRATE_VHT={0x15, 0x3, "c92f16cde260b0c81dc1f15e13818aeaa8"}, @NL80211_TXRATE_GI={0x5, 0x4, 0x7}, @NL80211_TXRATE_HE={0x1004, 0x5, "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"}]}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0xf8}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0xffffffffffffff00}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x3}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x81}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0xb4, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x10}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x9}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x8e}, @NL80211_TXRATE_VHT={0x1b, 0x3, "a49b904927b2912f893158cfd2d38a00d27b318cd41dfb"}, @NL80211_TXRATE_VHT={0x73, 0x3, "31968093725abb4f923e5c46df1a9285e572fb3cb7803485c86fd66a46bddaa98aeb34f86af936ae550635b1c74cdfb6edd9f275a5a331524aa5ab71f816a3c064ca286eb464b0df8d15ef39954ead6a9f89a8036830ae35992c9bad38f405d932fa0a5ecf9f8ffed023aba1af775f"}]}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0xc, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x74}]}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x8}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x3}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x4}]}]}, @NL80211_ATTR_PID={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}]}, 0x1248}, 0x1, 0x0, 0x0, 0x44090}, 0x240008c4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(r4, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x68, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@OVS_VPORT_ATTR_UPCALL_PID={0x54, 0x5, "ee567f1f14ee17668dd0bd2d94e1c9970b76e2ab5cbe9025ced7cce754e05a11cbc4149690ff8a4cc5c185e67d20c35b3feea17d228d81ec23bbb8bae094055d54885af5d74a2cfa72c004fca22098c2"}]}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0x800)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
semctl$auto_GETPID(0x0, 0x6, 0xb, 0x100000000)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002ac0), r6)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r6, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x20, r7, 0x1f97227bd58c1f83, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x20}, 0x1, 0x0, 0x0, 0x20004041}, 0x40004)

1.931084884s ago: executing program 3 (id=530):
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
bpf$auto(0x0, 0x0, 0x6f3)
request_key$auto_KEY_SPEC_USER_SESSION_KEYRING(&(0x7f00000000c0)='&)//\x00', &(0x7f0000000100)='\x00', &(0x7f0000000140)='\x00', 0xfffffffffffffffb)
write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0)

1.724282294s ago: executing program 0 (id=531):
r0 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000080)='/dev/etherd/discover\x00', 0x80a02, 0x0)
write$auto_aoe_fops_aoechr(r0, 0x0, 0x0) (fail_nth: 11)

1.712339401s ago: executing program 2 (id=532):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x7fffffff, 0x7, 0x80000)
r0 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)

1.35914258s ago: executing program 3 (id=533):
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, 0x0, 0x3)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
request_key$auto_KEY_SPEC_USER_SESSION_KEYRING(&(0x7f00000000c0)='&)//\x00', &(0x7f0000000100)='\x00', &(0x7f0000000140)='\x00', 0xfffffffffffffffb)
write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0)

1.015031007s ago: executing program 3 (id=534):
ioctl$auto_SOUND_PCM_WRITE_FILTER(0xffffffffffffffff, 0xc0045007, &(0x7f0000000200)="805bd455f8895ff17a53c100e019374f2f329e260999ef94b479549fad89023eaf3dc5b9175207f560d22ad913cc31a931bf68d3c00839b89579743e2b184e07ad040c470cc530e764456f0119147c71dd1dcc4f07a24dc42862e0cdc8f79674a30e8b1a35dd46d66b66dd43137d08280ca8e58aeae1286e826308f0")
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28cc2, 0x0)
openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x81, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_tcp_metrics(0x0, 0xffffffffffffffff)
sendmsg$auto_TCP_METRICS_CMD_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x1c, r1, 0x101, 0x70bd28, 0x25dfdbfe, {}, [@TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @remote}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40004}, 0x800)

1.011059882s ago: executing program 1 (id=535):
r0 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_timedsend$auto(r0, 0x0, 0x2, 0x6, 0x0)
mmap$auto(0x8000800000000000, 0x400008, 0xdf, 0x9b72, r0, 0x8000)
r1 = wait4$auto(0x0, &(0x7f00000001c0)=0x1, 0xe, &(0x7f00000003c0)={{0xffffffffffffffff, 0x9831}, {0x3551, 0x6}, 0xae6, 0x7fffffffffffffff, 0x6e, 0x9f1e, 0x4, 0x2, 0x6b000, 0x7fffffffffffffff, 0x8000000000000000, 0xff, 0x8001, 0x5, 0x0, 0x3ad})
r2 = semctl$auto(0xd78, 0x4, 0x5f8, 0x1829d872)
r3 = fcntl$getown(r0, 0x9)
syz_clone3(&(0x7f0000000480)={0x208000000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x18}, &(0x7f00000000c0)=""/195, 0xc3, 0x0, &(0x7f0000000200)=[0x0, r1, r2, r3, 0xffffffffffffffff], 0x5, {r0}}, 0x58)

924.001641ms ago: executing program 2 (id=536):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
ioctl$auto(r0, 0xc02c5625, r0)
socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
msgctl$auto(0x0, 0x9, &(0x7f0000000080)={{0xce0, 0x0, 0xee00, 0x101, 0x6, 0x6, 0xe}, 0x0, 0x0, 0xffff, 0x2, 0x7fffffffffffffff, 0x80, 0x8001, 0x11, 0x6, 0x8, @inferred, @raw=0x7fffffff})
socket(0x2, 0x1, 0x0)
r1 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa140, 0x0)
ioctl$auto_SOUND_MIXER_READ_DEVMASK(r1, 0x80044dfe, &(0x7f0000000040))
read$auto_proc_single_file_operations_base(0xffffffffffffffff, &(0x7f0000000040)=""/228, 0xe4)

610.594271ms ago: executing program 3 (id=537):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r0, 0x4, 0x7ff)
ptrace$auto(0x8, r0, 0x1000000000002, 0x57)

564.956267ms ago: executing program 2 (id=538):
r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f0000000040), 0x2881, 0x0)
write$auto_ecryptfs_miscdev_fops_miscdev(r0, &(0x7f0000000080)="390d00a741ee", 0x6)
epoll_create$auto(0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_fd=0x2, 0x80}, 0x96)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x2, 0x0)
ppoll$auto(&(0x7f0000000140)={r1, 0x7, 0x4}, 0x7f, 0x0, 0x0, 0x8)
r2 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r2, 0x29, 0x35, 0x0, 0x1)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x7}, 0xc)
r3 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, &(0x7f00000000c0)={0x1, "e6c26c22ab89af11056b0001ac097e0a0728d9300000c500"})
listen$auto(0x3, 0x81)
mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103)
open(&(0x7f0000000280)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x20102, 0x100)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto(0x3, 0x80004519, 0x10000000000402)
ioctl$auto(0x3, 0x8905, 0x38)

432.067207ms ago: executing program 0 (id=539):
mmap$auto(0x0, 0x40009, 0xa, 0x9b72, 0x2, 0x28000)
prctl$auto(0x10, 0x2000001, 0x4, 0x5, 0xfffffffffffffffe)
symlink$auto(&(0x7f00000001c0)='-\x00', &(0x7f0000000280)=')s:\x00')
unlink$auto(&(0x7f0000000300)=')s:\x00')
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dri/renderD128\x00', 0x80802, 0x0)
ioctl$auto(r0, 0x800064d1, r0)

184.846007ms ago: executing program 3 (id=540):
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, 0x0, 0x3)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
request_key$auto_KEY_SPEC_USER_SESSION_KEYRING(&(0x7f00000000c0)='&)//\x00', &(0x7f0000000100)='\x00', &(0x7f0000000140)='\x00', 0xfffffffffffffffb)
write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0)

184.21516ms ago: executing program 1 (id=548):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x169000, 0x0)
ioctl$auto(r0, 0xc02c5625, r0)
socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
msgctl$auto(0x0, 0x9, &(0x7f0000000080)={{0xce0, 0x0, 0xee00, 0x101, 0x6, 0x6, 0xe}, 0x0, 0x0, 0xffff, 0x2, 0x7fffffffffffffff, 0x80, 0x8001, 0x11, 0x6, 0x8, @inferred, @raw=0x7fffffff})
socket(0x2, 0x1, 0x0)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa140, 0x0)
r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/ksm_stat\x00', 0x2, 0x0)
read$auto_proc_single_file_operations_base(r1, &(0x7f0000000040)=""/228, 0xe4)

56.338171ms ago: executing program 2 (id=541):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mbind$auto(0x0, 0x2, 0x2, 0x0, 0x7, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/loop4/hctx0/ctx_map\x00', 0x40, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x2841, 0x0)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0)
sendmsg$auto_WG_CMD_GET_DEVICE(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c810}, 0x200448c0)
r1 = socket(0x2a, 0x2, 0x1)
connect$auto(r1, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55)
r2 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
read$auto(r2, 0x0, 0xffffff7f)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
write$auto_clear_warn_once_fops_(r0, &(0x7f0000000040)="68cdd53892e315147c5e78b0f1879ef6370197cb907f57e84ee79d2a6d3fc95a68fa54a4341dfdb266d57da9c5975e405a4cade3d91991fbfe36dfbd9b5ef25e251e100dbdc15badef68aaae1b7dfdd2039e51112a71eb8d5064db182757c139053ab8725b1ea2fd38011884ba28cc4f46fbdf7cdba62eeca6e9069085e59838c5849db71ec9708fa581d321a652403a72d3ea3de84c553cdeacd5a8cd", 0x9d)

55.837258ms ago: executing program 1 (id=542):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd8\x00', 0x2400, 0x0)
ioctl$auto(r0, 0xab04, 0xffffffffffffffff)

0s ago: executing program 0 (id=543):
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, 0x0, 0x3)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
request_key$auto_KEY_SPEC_USER_SESSION_KEYRING(&(0x7f00000000c0)='&)//\x00', &(0x7f0000000100)='\x00', &(0x7f0000000140)='\x00', 0xfffffffffffffffb)
write$auto_ftrace_subsystem_filter_fops_trace_events(r0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

6460]  ? __fget_files+0x206/0x3a0
[  116.215470][ T6460]  security_file_ioctl+0x9b/0x240
[  116.215514][ T6460]  __x64_sys_ioctl+0xb7/0x200
[  116.215562][ T6460]  do_syscall_64+0xcd/0x250
[  116.215611][ T6460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.215659][ T6460] RIP: 0033:0x7feb1c98d169
[  116.215684][ T6460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.215715][ T6460] RSP: 002b:00007feb1d86f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  116.215746][ T6460] RAX: ffffffffffffffda RBX: 00007feb1cba5fa0 RCX: 00007feb1c98d169
[  116.215767][ T6460] RDX: ffffffffffffffff RSI: 000000000000ab00 RDI: 0000000000000003
[  116.215787][ T6460] RBP: 00007feb1d86f090 R08: 0000000000000000 R09: 0000000000000000
[  116.215807][ T6460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.215826][ T6460] R13: 0000000000000000 R14: 00007feb1cba5fa0 R15: 00007ffed2356cc8
[  116.215868][ T6460]  </TASK>
[  116.215953][ T6460] ERROR: Out of memory at tomoyo_realpath_from_path.
[  116.468121][ T6462] FAULT_INJECTION: forcing a failure.
[  116.468121][ T6462] name failslab, interval 1, probability 0, space 0, times 0
[  116.468249][ T6464] program syz.0.143 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  116.490647][ T6460] block nbd8: Cannot use ioctl interface on a netlink controlled device.
[  116.505225][ T6465] netlink: 8 bytes leftover after parsing attributes in process `syz.0.143'.
[  116.584487][ T6462] CPU: 0 UID: 0 PID: 6462 Comm: syz.1.144 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  116.584531][ T6462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  116.584551][ T6462] Call Trace:
[  116.584560][ T6462]  <TASK>
[  116.584573][ T6462]  dump_stack_lvl+0x16c/0x1f0
[  116.584625][ T6462]  should_fail_ex+0x50a/0x650
[  116.584679][ T6462]  ? fs_reclaim_acquire+0xae/0x150
[  116.584726][ T6462]  ? tomoyo_realpath_from_path+0xb9/0x720
[  116.584774][ T6462]  should_failslab+0xc2/0x120
[  116.584807][ T6462]  __kmalloc_noprof+0xcb/0x510
[  116.584858][ T6462]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  116.584923][ T6462]  tomoyo_realpath_from_path+0xb9/0x720
[  116.584970][ T6462]  ? tomoyo_path_number_perm+0x235/0x590
[  116.585015][ T6462]  ? tomoyo_path_number_perm+0x235/0x590
[  116.585063][ T6462]  tomoyo_path_number_perm+0x248/0x590
[  116.585102][ T6462]  ? tomoyo_path_number_perm+0x235/0x590
[  116.585158][ T6462]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  116.585239][ T6462]  ? __pfx_lock_release+0x10/0x10
[  116.585287][ T6462]  ? trace_lock_acquire+0x14e/0x1f0
[  116.585330][ T6462]  ? lock_acquire+0x2f/0xb0
[  116.585374][ T6462]  ? __fget_files+0x40/0x3a0
[  116.585431][ T6462]  ? __fget_files+0x206/0x3a0
[  116.585487][ T6462]  security_file_ioctl+0x9b/0x240
[  116.585533][ T6462]  __x64_sys_ioctl+0xb7/0x200
[  116.585579][ T6462]  do_syscall_64+0xcd/0x250
[  116.585628][ T6462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.585676][ T6462] RIP: 0033:0x7f82cc98d169
[  116.585702][ T6462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.585733][ T6462] RSP: 002b:00007f82cd710038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  116.585764][ T6462] RAX: ffffffffffffffda RBX: 00007f82ccba5fa0 RCX: 00007f82cc98d169
[  116.585786][ T6462] RDX: 0000000000000003 RSI: 00000000800064d1 RDI: 0000000000000003
[  116.585806][ T6462] RBP: 00007f82cd710090 R08: 0000000000000000 R09: 0000000000000000
[  116.585826][ T6462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.585846][ T6462] R13: 0000000000000000 R14: 00007f82ccba5fa0 R15: 00007ffd9aca2b38
[  116.585890][ T6462]  </TASK>
[  116.585985][ T6462] ERROR: Out of memory at tomoyo_realpath_from_path.
[  118.765121][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  118.771844][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  119.262041][ T6522] netlink: 4 bytes leftover after parsing attributes in process `syz.1.160'.
[  119.360192][ T6518] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(8)
[  119.642368][ T6525] aoe: skb alloc failure
[  119.653169][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  119.664811][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  119.840018][ T6529] FAULT_INJECTION: forcing a failure.
[  119.840018][ T6529] name failslab, interval 1, probability 0, space 0, times 0
[  119.942573][ T6529] CPU: 0 UID: 0 PID: 6529 Comm: syz.3.161 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  119.942618][ T6529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  119.942637][ T6529] Call Trace:
[  119.942647][ T6529]  <TASK>
[  119.942660][ T6529]  dump_stack_lvl+0x16c/0x1f0
[  119.942710][ T6529]  should_fail_ex+0x50a/0x650
[  119.942763][ T6529]  ? fs_reclaim_acquire+0xae/0x150
[  119.942822][ T6529]  should_failslab+0xc2/0x120
[  119.942856][ T6529]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  119.942925][ T6529]  ? __alloc_skb+0x2b1/0x380
[  119.942973][ T6529]  __alloc_skb+0x2b1/0x380
[  119.943018][ T6529]  ? __pfx___alloc_skb+0x10/0x10
[  119.943065][ T6529]  ? rtnetlink_rcv_msg+0x3e6/0xea0
[  119.943123][ T6529]  netlink_ack+0x15f/0xb80
[  119.943180][ T6529]  netlink_rcv_skb+0x348/0x440
[  119.943223][ T6529]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  119.943272][ T6529]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  119.943335][ T6529]  ? netlink_deliver_tap+0x1ae/0xd30
[  119.943385][ T6529]  netlink_unicast+0x53c/0x7f0
[  119.943435][ T6529]  ? __pfx_netlink_unicast+0x10/0x10
[  119.943481][ T6529]  ? __phys_addr_symbol+0x30/0x80
[  119.943513][ T6529]  ? __check_object_size+0x488/0x710
[  119.943550][ T6529]  netlink_sendmsg+0x8b8/0xd70
[  119.943601][ T6529]  ? __pfx_netlink_sendmsg+0x10/0x10
[  119.943661][ T6529]  ____sys_sendmsg+0xaaf/0xc90
[  119.943698][ T6529]  ? copy_msghdr_from_user+0x10b/0x160
[  119.943745][ T6529]  ? __pfx_____sys_sendmsg+0x10/0x10
[  119.943798][ T6529]  ___sys_sendmsg+0x135/0x1e0
[  119.943864][ T6529]  ? __pfx____sys_sendmsg+0x10/0x10
[  119.943930][ T6529]  ? __pfx_lock_release+0x10/0x10
[  119.943976][ T6529]  ? trace_lock_acquire+0x14e/0x1f0
[  119.944028][ T6529]  ? __fget_files+0x206/0x3a0
[  119.944087][ T6529]  __sys_sendmsg+0x16e/0x220
[  119.944138][ T6529]  ? __pfx___sys_sendmsg+0x10/0x10
[  119.944214][ T6529]  do_syscall_64+0xcd/0x250
[  119.944263][ T6529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.944313][ T6529] RIP: 0033:0x7feb1c98d169
[  119.944337][ T6529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.944368][ T6529] RSP: 002b:00007feb1d86f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  119.944399][ T6529] RAX: ffffffffffffffda RBX: 00007feb1cba5fa0 RCX: 00007feb1c98d169
[  119.944420][ T6529] RDX: 0000000000000040 RSI: 0000400000002cc0 RDI: 0000000000000003
[  119.944440][ T6529] RBP: 00007feb1d86f090 R08: 0000000000000000 R09: 0000000000000000
[  119.944460][ T6529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.944479][ T6529] R13: 0000000000000000 R14: 00007feb1cba5fa0 R15: 00007ffed2356cc8
[  119.944519][ T6529]  </TASK>
[  121.199950][ T6546] process 'syz.0.168' launched ':,' with NULL argv: empty string added
[  121.246223][ T6547] FAULT_INJECTION: forcing a failure.
[  121.246223][ T6547] name failslab, interval 1, probability 0, space 0, times 0
[  121.294427][ T6547] CPU: 0 UID: 0 PID: 6547 Comm: syz.2.165 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  121.294475][ T6547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  121.294495][ T6547] Call Trace:
[  121.294504][ T6547]  <TASK>
[  121.294517][ T6547]  dump_stack_lvl+0x16c/0x1f0
[  121.294570][ T6547]  should_fail_ex+0x50a/0x650
[  121.294626][ T6547]  ? fs_reclaim_acquire+0xae/0x150
[  121.294674][ T6547]  ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  121.294713][ T6547]  should_failslab+0xc2/0x120
[  121.294745][ T6547]  __kmalloc_cache_noprof+0x68/0x410
[  121.294789][ T6547]  ? snd_pcm_hw_param_first+0x301/0x6e0
[  121.294827][ T6547]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[  121.294870][ T6547]  snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  121.294922][ T6547]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  121.294963][ T6547]  ? calc_src_frames.isra.0+0x187/0x1d0
[  121.294999][ T6547]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  121.295049][ T6547]  snd_pcm_oss_change_params_locked+0x136c/0x3a60
[  121.295103][ T6547]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  121.295141][ T6547]  ? __mutex_lock+0x1cc/0xb10
[  121.295213][ T6547]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  121.295258][ T6547]  snd_pcm_oss_ioctl+0x21d5/0x3780
[  121.295302][ T6547]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  121.295347][ T6547]  ? xfd_validate_state+0x5d/0x180
[  121.295396][ T6547]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  121.295437][ T6547]  __x64_sys_ioctl+0x190/0x200
[  121.295484][ T6547]  do_syscall_64+0xcd/0x250
[  121.295533][ T6547]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.295582][ T6547] RIP: 0033:0x7f0ca438d169
[  121.295608][ T6547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.295641][ T6547] RSP: 002b:00007f0ca5116038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  121.295674][ T6547] RAX: ffffffffffffffda RBX: 00007f0ca45a5fa0 RCX: 00007f0ca438d169
[  121.295696][ T6547] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000001
[  121.295717][ T6547] RBP: 00007f0ca440e2a0 R08: 0000000000000000 R09: 0000000000000000
[  121.295738][ T6547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  121.295758][ T6547] R13: 0000000000000000 R14: 00007f0ca45a5fa0 R15: 00007ffccb72a9e8
[  121.295800][ T6547]  </TASK>
[  121.694816][ T6546] FAULT_INJECTION: forcing a failure.
[  121.694816][ T6546] name failslab, interval 1, probability 0, space 0, times 0
[  121.750966][ T6546] CPU: 1 UID: 0 PID: 6546 Comm: syz.0.168 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  121.751014][ T6546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  121.751033][ T6546] Call Trace:
[  121.751043][ T6546]  <TASK>
[  121.751056][ T6546]  dump_stack_lvl+0x16c/0x1f0
[  121.751107][ T6546]  should_fail_ex+0x50a/0x650
[  121.751160][ T6546]  ? fs_reclaim_acquire+0xae/0x150
[  121.751208][ T6546]  ? tomoyo_init_log+0x195/0x2170
[  121.751251][ T6546]  should_failslab+0xc2/0x120
[  121.751284][ T6546]  __kmalloc_cache_noprof+0x68/0x410
[  121.751336][ T6546]  ? format_decode+0x1ae/0xd40
[  121.751378][ T6546]  tomoyo_init_log+0x195/0x2170
[  121.751421][ T6546]  ? number+0x986/0xc50
[  121.751450][ T6546]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  121.751519][ T6546]  ? __pfx_tomoyo_init_log+0x10/0x10
[  121.751565][ T6546]  ? tomoyo_profile+0x47/0x60
[  121.751644][ T6546]  ? tomoyo_domain_quota_is_ok+0x301/0x5a0
[  121.751688][ T6546]  tomoyo_supervisor+0x313/0x1380
[  121.751749][ T6546]  ? __pfx_tomoyo_supervisor+0x10/0x10
[  121.751803][ T6546]  ? mark_held_locks+0x9f/0xe0
[  121.751867][ T6546]  ? tomoyo_realpath_from_path+0x1ad/0x720
[  121.751932][ T6546]  ? tomoyo_check_path_number_acl+0xa6/0x2f0
[  121.751988][ T6546]  tomoyo_path_number_perm+0x447/0x590
[  121.752033][ T6546]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  121.752136][ T6546]  ? get_current_fs_domain+0x184/0x1f0
[  121.752181][ T6546]  tomoyo_path_mknod+0x10d/0x190
[  121.752233][ T6546]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  121.752290][ T6546]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  121.752349][ T6546]  security_path_mknod+0x161/0x310
[  121.752394][ T6546]  lookup_open.isra.0+0xc19/0x1580
[  121.752446][ T6546]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  121.752494][ T6546]  ? folio_lruvec+0x110/0x5e0
[  121.752533][ T6546]  ? lock_acquire+0x2f/0xb0
[  121.752577][ T6546]  ? path_openat+0x15a4/0x2d80
[  121.752630][ T6546]  ? folio_lruvec+0x110/0x5e0
[  121.752668][ T6546]  ? __pfx_down_write+0x10/0x10
[  121.752714][ T6546]  ? mnt_get_write_access+0x20c/0x300
[  121.752761][ T6546]  path_openat+0x904/0x2d80
[  121.752827][ T6546]  ? __pfx_path_openat+0x10/0x10
[  121.752877][ T6546]  ? __pfx___lock_acquire+0x10/0x10
[  121.752930][ T6546]  ? lock_acquire.part.0+0x11b/0x380
[  121.752977][ T6546]  ? find_held_lock+0x2d/0x110
[  121.753018][ T6546]  do_filp_open+0x20c/0x470
[  121.753069][ T6546]  ? __pfx_do_filp_open+0x10/0x10
[  121.753117][ T6546]  ? find_held_lock+0x2d/0x110
[  121.753182][ T6546]  ? _raw_spin_unlock+0x28/0x50
[  121.753218][ T6546]  ? alloc_fd+0x41f/0x760
[  121.753278][ T6546]  do_sys_openat2+0x17a/0x1e0
[  121.753315][ T6546]  ? __pfx_do_sys_openat2+0x10/0x10
[  121.753353][ T6546]  ? do_raw_spin_unlock+0x172/0x230
[  121.753397][ T6546]  __x64_sys_open+0x154/0x1e0
[  121.753434][ T6546]  ? __pfx___x64_sys_open+0x10/0x10
[  121.753486][ T6546]  do_syscall_64+0xcd/0x250
[  121.753534][ T6546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.753581][ T6546] RIP: 0033:0x7f9ab778d169
[  121.753608][ T6546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.753639][ T6546] RSP: 002b:00007f9ab55f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  121.753670][ T6546] RAX: ffffffffffffffda RBX: 00007f9ab79a5fa0 RCX: 00007f9ab778d169
[  121.753693][ T6546] RDX: 0000000000000154 RSI: 0000000000062240 RDI: 0000400000000800
[  121.753713][ T6546] RBP: 00007f9ab780e2a0 R08: 0000000000000000 R09: 0000000000000000
[  121.753732][ T6546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  121.753751][ T6546] R13: 0000000000000000 R14: 00007f9ab79a5fa0 R15: 00007ffc743e9b38
[  121.753793][ T6546]  </TASK>
[  122.128242][ T6555] capability: warning: `syz.1.170' uses 32-bit capabilities (legacy support in use)
[  122.735282][ T6560] netlink: 4 bytes leftover after parsing attributes in process `syz.0.171'.
[  122.748651][ T6568] FAULT_INJECTION: forcing a failure.
[  122.748651][ T6568] name failslab, interval 1, probability 0, space 0, times 0
[  122.771296][ T6568] CPU: 0 UID: 0 PID: 6568 Comm: syz.3.173 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  122.771335][ T6568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  122.771352][ T6568] Call Trace:
[  122.771361][ T6568]  <TASK>
[  122.771373][ T6568]  dump_stack_lvl+0x16c/0x1f0
[  122.771420][ T6568]  should_fail_ex+0x50a/0x650
[  122.771471][ T6568]  ? fs_reclaim_acquire+0xae/0x150
[  122.771543][ T6568]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  122.771597][ T6568]  should_failslab+0xc2/0x120
[  122.771628][ T6568]  __kmalloc_noprof+0xcb/0x510
[  122.771678][ T6568]  ? __pfx___mutex_lock+0x10/0x10
[  122.771727][ T6568]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  122.771790][ T6568]  genl_start+0x18e/0x960
[  122.771844][ T6568]  __netlink_dump_start+0x607/0x970
[  122.771891][ T6568]  genl_family_rcv_msg_dumpit+0x1e1/0x2e0
[  122.771945][ T6568]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  122.772006][ T6568]  ? __pfx_genl_get_cmd+0x10/0x10
[  122.772048][ T6568]  ? __pfx_genl_start+0x10/0x10
[  122.772092][ T6568]  ? __pfx_genl_dumpit+0x10/0x10
[  122.772138][ T6568]  ? __pfx_genl_done+0x10/0x10
[  122.772193][ T6568]  ? __radix_tree_lookup+0x21f/0x2c0
[  122.772240][ T6568]  genl_rcv_msg+0x470/0x800
[  122.772296][ T6568]  ? __pfx_genl_rcv_msg+0x10/0x10
[  122.772348][ T6568]  ? __pfx_smcr_nl_get_device+0x10/0x10
[  122.772406][ T6568]  netlink_rcv_skb+0x16b/0x440
[  122.772450][ T6568]  ? __pfx_genl_rcv_msg+0x10/0x10
[  122.772504][ T6568]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  122.772575][ T6568]  ? down_read+0xc9/0x330
[  122.772619][ T6568]  ? __pfx_down_read+0x10/0x10
[  122.772667][ T6568]  ? netlink_deliver_tap+0x1ae/0xd30
[  122.772733][ T6568]  genl_rcv+0x28/0x40
[  122.772778][ T6568]  netlink_unicast+0x53c/0x7f0
[  122.772828][ T6568]  ? __pfx_netlink_unicast+0x10/0x10
[  122.772875][ T6568]  ? __phys_addr_symbol+0x30/0x80
[  122.772907][ T6568]  ? __check_object_size+0x488/0x710
[  122.772946][ T6568]  netlink_sendmsg+0x8b8/0xd70
[  122.772999][ T6568]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.773041][ T6568]  ? __might_fault+0xe3/0x190
[  122.773089][ T6568]  ____sys_sendmsg+0xaaf/0xc90
[  122.773129][ T6568]  ? __pfx_____sys_sendmsg+0x10/0x10
[  122.773163][ T6568]  ? __lock_acquire+0xcc5/0x3c40
[  122.773228][ T6568]  ___sys_sendmsg+0x135/0x1e0
[  122.773280][ T6568]  ? __pfx____sys_sendmsg+0x10/0x10
[  122.773347][ T6568]  ? trace_lock_acquire+0x14e/0x1f0
[  122.773415][ T6568]  __sys_sendmmsg+0x201/0x420
[  122.773469][ T6568]  ? __pfx___sys_sendmmsg+0x10/0x10
[  122.773544][ T6568]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  122.773605][ T6568]  ? fput+0x67/0x440
[  122.773638][ T6568]  ? ksys_write+0x1ba/0x250
[  122.773682][ T6568]  ? __pfx_ksys_write+0x10/0x10
[  122.773735][ T6568]  __x64_sys_sendmmsg+0x9c/0x100
[  122.773783][ T6568]  ? lockdep_hardirqs_on+0x7c/0x110
[  122.773825][ T6568]  do_syscall_64+0xcd/0x250
[  122.773871][ T6568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.773916][ T6568] RIP: 0033:0x7feb1c98d169
[  122.773942][ T6568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.773971][ T6568] RSP: 002b:00007feb1d86f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  122.774000][ T6568] RAX: ffffffffffffffda RBX: 00007feb1cba5fa0 RCX: 00007feb1c98d169
[  122.774022][ T6568] RDX: 0000000000000007 RSI: 0000400000000200 RDI: 0000000000000003
[  122.774041][ T6568] RBP: 00007feb1d86f090 R08: 0000000000000000 R09: 0000000000000000
[  122.774060][ T6568] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  122.774079][ T6568] R13: 0000000000000000 R14: 00007feb1cba5fa0 R15: 00007ffed2356cc8
[  122.774121][ T6568]  </TASK>
[  123.163935][ T6561] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(8)
[  123.710645][ T6579] FAULT_INJECTION: forcing a failure.
[  123.710645][ T6579] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  123.754580][ T6579] CPU: 1 UID: 0 PID: 6579 Comm: syz.0.175 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  123.754626][ T6579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  123.754646][ T6579] Call Trace:
[  123.754655][ T6579]  <TASK>
[  123.754668][ T6579]  dump_stack_lvl+0x16c/0x1f0
[  123.754721][ T6579]  should_fail_ex+0x50a/0x650
[  123.754784][ T6579]  ? __pfx___might_resched+0x10/0x10
[  123.754847][ T6579]  should_fail_alloc_page+0xe7/0x130
[  123.754884][ T6579]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  123.754932][ T6579]  ? kernel_text_address+0x8d/0x100
[  123.754984][ T6579]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  123.755042][ T6579]  ? hlock_class+0x4e/0x130
[  123.755077][ T6579]  ? mark_lock+0xb5/0xc60
[  123.755123][ T6579]  ? hlock_class+0x4e/0x130
[  123.755158][ T6579]  ? mark_lock+0xb5/0xc60
[  123.755203][ T6579]  ? __pfx_mark_lock+0x10/0x10
[  123.755252][ T6579]  ? __pfx_mark_lock+0x10/0x10
[  123.755299][ T6579]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  123.755354][ T6579]  ? __memcg_kmem_charge_page+0x1b0/0x2b0
[  123.755411][ T6579]  ? stack_depot_save_flags+0x28/0x9c0
[  123.755467][ T6579]  ? rcu_is_watching+0x12/0xc0
[  123.755512][ T6579]  ? kasan_save_track+0x14/0x30
[  123.755570][ T6579]  ? hlock_class+0x4e/0x130
[  123.755605][ T6579]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  123.755663][ T6579]  ? policy_nodemask+0xea/0x4e0
[  123.755722][ T6579]  alloc_pages_mpol+0x1fc/0x540
[  123.755766][ T6579]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  123.755797][ T6579]  ? __pfx___lock_acquire+0x10/0x10
[  123.755858][ T6579]  alloc_pages_noprof+0x131/0x390
[  123.755893][ T6579]  pte_alloc_one+0x20/0x390
[  123.755948][ T6579]  __pte_alloc+0x6e/0x3d0
[  123.755989][ T6579]  ? __pfx___pte_alloc+0x10/0x10
[  123.756030][ T6579]  ? __pfx_lock_release+0x10/0x10
[  123.756078][ T6579]  ? do_raw_spin_lock+0x12d/0x2c0
[  123.756116][ T6579]  do_pte_missing+0x2828/0x3e10
[  123.756173][ T6579]  ? _raw_spin_unlock+0x28/0x50
[  123.756211][ T6579]  ? __pmd_alloc+0x3c2/0x870
[  123.756259][ T6579]  __handle_mm_fault+0x1166/0x2c60
[  123.756324][ T6579]  ? __pfx___handle_mm_fault+0x10/0x10
[  123.756416][ T6579]  handle_mm_fault+0x3fa/0xaa0
[  123.756478][ T6579]  __get_user_pages+0x773/0x36f0
[  123.756538][ T6579]  ? __pfx_mt_find+0x10/0x10
[  123.756586][ T6579]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  123.756636][ T6579]  ? __pfx___get_user_pages+0x10/0x10
[  123.756690][ T6579]  ? __mm_populate+0x21d/0x380
[  123.756758][ T6579]  populate_vma_page_range+0x27f/0x3a0
[  123.756814][ T6579]  ? __pfx_populate_vma_page_range+0x10/0x10
[  123.756865][ T6579]  ? __pfx_find_vma_intersection+0x10/0x10
[  123.756914][ T6579]  ? vm_mmap_pgoff+0x29b/0x3a0
[  123.756968][ T6579]  __mm_populate+0x1d6/0x380
[  123.757022][ T6579]  ? __pfx___mm_populate+0x10/0x10
[  123.757079][ T6579]  ? up_write+0x1b2/0x520
[  123.757136][ T6579]  vm_mmap_pgoff+0x2d3/0x3a0
[  123.757190][ T6579]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  123.757236][ T6579]  ? __pfx_aa_get_newest_label+0x10/0x10
[  123.757278][ T6579]  ? __x64_sys_futex+0x1e1/0x4c0
[  123.757319][ T6579]  ? __x64_sys_futex+0x1ea/0x4c0
[  123.757367][ T6579]  ksys_mmap_pgoff+0x7d/0x5c0
[  123.757412][ T6579]  ? rcu_is_watching+0x12/0xc0
[  123.757453][ T6579]  __x64_sys_mmap+0x125/0x190
[  123.757508][ T6579]  do_syscall_64+0xcd/0x250
[  123.757559][ T6579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.757608][ T6579] RIP: 0033:0x7f9ab778d169
[  123.757635][ T6579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.757668][ T6579] RSP: 002b:00007f9ab55f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  123.757699][ T6579] RAX: ffffffffffffffda RBX: 00007f9ab79a5fa0 RCX: 00007f9ab778d169
[  123.757722][ T6579] RDX: 00000000000000df RSI: 0000000000400008 RDI: 00000000fffff000
[  123.757751][ T6579] RBP: 00007f9ab780e2a0 R08: ffffffffffffffff R09: 0000000000008000
[  123.757773][ T6579] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  123.757793][ T6579] R13: 0000000000000000 R14: 00007f9ab79a5fa0 R15: 00007ffc743e9b38
[  123.757836][ T6579]  </TASK>
[  124.766640][ T6589] netlink: 68 bytes leftover after parsing attributes in process `syz.0.180'.
[  125.044816][ T6594] FAULT_INJECTION: forcing a failure.
[  125.044816][ T6594] name failslab, interval 1, probability 0, space 0, times 0
[  125.074191][ T6594] CPU: 0 UID: 0 PID: 6594 Comm: syz.0.181 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  125.074237][ T6594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  125.074257][ T6594] Call Trace:
[  125.074266][ T6594]  <TASK>
[  125.074279][ T6594]  dump_stack_lvl+0x16c/0x1f0
[  125.074333][ T6594]  should_fail_ex+0x50a/0x650
[  125.074387][ T6594]  ? fs_reclaim_acquire+0xae/0x150
[  125.074431][ T6594]  ? constrain_params_by_rules+0x176/0xca0
[  125.074471][ T6594]  should_failslab+0xc2/0x120
[  125.074503][ T6594]  __kmalloc_noprof+0xcb/0x510
[  125.074559][ T6594]  ? stack_depot_save_flags+0x38f/0x9c0
[  125.074622][ T6594]  constrain_params_by_rules+0x176/0xca0
[  125.074674][ T6594]  ? mark_held_locks+0x9f/0xe0
[  125.074725][ T6594]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  125.074766][ T6594]  ? lockdep_hardirqs_on+0x7c/0x110
[  125.074814][ T6594]  ? stack_depot_save_flags+0x38f/0x9c0
[  125.074871][ T6594]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  125.074922][ T6594]  ? __kasan_kmalloc+0xaa/0xb0
[  125.074970][ T6594]  ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  125.075008][ T6594]  ? snd_pcm_oss_change_params_locked+0x13cd/0x3a60
[  125.075048][ T6594]  ? snd_pcm_oss_get_active_substream+0x168/0x1d0
[  125.075104][ T6594]  ? snd_interval_refine+0x2fa/0x580
[  125.075160][ T6594]  snd_pcm_hw_refine+0x7e8/0xad0
[  125.075208][ T6594]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  125.075267][ T6594]  ? _snd_pcm_hw_param_min+0x259/0x630
[  125.075312][ T6594]  snd_pcm_hw_param_near.constprop.0+0x597/0x8f0
[  125.075358][ T6594]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  125.075401][ T6594]  ? calc_src_frames.isra.0+0x187/0x1d0
[  125.075441][ T6594]  ? calc_dst_frames.constprop.0.isra.0+0x103/0x130
[  125.075494][ T6594]  snd_pcm_oss_change_params_locked+0x13cd/0x3a60
[  125.075554][ T6594]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  125.075593][ T6594]  ? __mutex_lock+0x1cc/0xb10
[  125.075678][ T6594]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  125.075727][ T6594]  snd_pcm_oss_ioctl+0x21d5/0x3780
[  125.075772][ T6594]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  125.075820][ T6594]  ? xfd_validate_state+0x5d/0x180
[  125.075873][ T6594]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  125.075916][ T6594]  __x64_sys_ioctl+0x190/0x200
[  125.075961][ T6594]  do_syscall_64+0xcd/0x250
[  125.076010][ T6594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.076058][ T6594] RIP: 0033:0x7f9ab778d169
[  125.076085][ T6594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.076116][ T6594] RSP: 002b:00007f9ab55f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  125.076148][ T6594] RAX: ffffffffffffffda RBX: 00007f9ab79a5fa0 RCX: 00007f9ab778d169
[  125.076170][ T6594] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000001
[  125.076189][ T6594] RBP: 00007f9ab780e2a0 R08: 0000000000000000 R09: 0000000000000000
[  125.076210][ T6594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  125.076230][ T6594] R13: 0000000000000000 R14: 00007f9ab79a5fa0 R15: 00007ffc743e9b38
[  125.076272][ T6594]  </TASK>
[  126.790262][ T6625] netlink: 4 bytes leftover after parsing attributes in process `syz.1.192'.
[  126.802684][ T6625] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  127.015285][ T6631] FAULT_INJECTION: forcing a failure.
[  127.015285][ T6631] name failslab, interval 1, probability 0, space 0, times 0
[  127.037480][ T6631] CPU: 1 UID: 0 PID: 6631 Comm: syz.1.195 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  127.037522][ T6631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  127.037540][ T6631] Call Trace:
[  127.037549][ T6631]  <TASK>
[  127.037561][ T6631]  dump_stack_lvl+0x16c/0x1f0
[  127.037609][ T6631]  should_fail_ex+0x50a/0x650
[  127.037667][ T6631]  should_failslab+0xc2/0x120
[  127.037698][ T6631]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  127.037749][ T6631]  ? skb_clone+0x190/0x3f0
[  127.037802][ T6631]  skb_clone+0x190/0x3f0
[  127.037852][ T6631]  netlink_deliver_tap+0xabd/0xd30
[  127.037904][ T6631]  netlink_unicast+0x6b4/0x7f0
[  127.037954][ T6631]  ? __pfx_netlink_unicast+0x10/0x10
[  127.037996][ T6631]  ? genl_rcv_msg+0x4bd/0x800
[  127.038056][ T6631]  netlink_ack+0x6ac/0xb80
[  127.038112][ T6631]  netlink_rcv_skb+0x348/0x440
[  127.038157][ T6631]  ? __pfx_genl_rcv_msg+0x10/0x10
[  127.038208][ T6631]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  127.038278][ T6631]  ? down_read+0xc9/0x330
[  127.038324][ T6631]  ? __pfx_down_read+0x10/0x10
[  127.038371][ T6631]  ? netlink_deliver_tap+0x1ae/0xd30
[  127.038419][ T6631]  genl_rcv+0x28/0x40
[  127.038463][ T6631]  netlink_unicast+0x53c/0x7f0
[  127.038512][ T6631]  ? __pfx_netlink_unicast+0x10/0x10
[  127.038557][ T6631]  ? __phys_addr_symbol+0x30/0x80
[  127.038588][ T6631]  ? __check_object_size+0x488/0x710
[  127.038623][ T6631]  netlink_sendmsg+0x8b8/0xd70
[  127.038670][ T6631]  ? __pfx_netlink_sendmsg+0x10/0x10
[  127.038729][ T6631]  ____sys_sendmsg+0xaaf/0xc90
[  127.038765][ T6631]  ? copy_msghdr_from_user+0x10b/0x160
[  127.038813][ T6631]  ? __pfx_____sys_sendmsg+0x10/0x10
[  127.038869][ T6631]  ___sys_sendmsg+0x135/0x1e0
[  127.038919][ T6631]  ? __pfx____sys_sendmsg+0x10/0x10
[  127.038984][ T6631]  ? __pfx_lock_release+0x10/0x10
[  127.039029][ T6631]  ? trace_lock_acquire+0x14e/0x1f0
[  127.039080][ T6631]  ? __fget_files+0x206/0x3a0
[  127.039155][ T6631]  __sys_sendmsg+0x16e/0x220
[  127.039205][ T6631]  ? __pfx___sys_sendmsg+0x10/0x10
[  127.039291][ T6631]  do_syscall_64+0xcd/0x250
[  127.039337][ T6631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.039382][ T6631] RIP: 0033:0x7f82cc98d169
[  127.039407][ T6631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.039437][ T6631] RSP: 002b:00007f82cd710038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  127.039466][ T6631] RAX: ffffffffffffffda RBX: 00007f82ccba5fa0 RCX: 00007f82cc98d169
[  127.039486][ T6631] RDX: 0000000000048000 RSI: 0000400000000000 RDI: 0000000000000003
[  127.039506][ T6631] RBP: 00007f82cd710090 R08: 0000000000000000 R09: 0000000000000000
[  127.039525][ T6631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  127.039543][ T6631] R13: 0000000000000000 R14: 00007f82ccba5fa0 R15: 00007ffd9aca2b38
[  127.039584][ T6631]  </TASK>
[  128.255642][ T6650] FAULT_INJECTION: forcing a failure.
[  128.255642][ T6650] name failslab, interval 1, probability 0, space 0, times 0
[  128.320557][ T6650] CPU: 0 UID: 0 PID: 6650 Comm: syz.3.200 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  128.320602][ T6650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  128.320621][ T6650] Call Trace:
[  128.320630][ T6650]  <TASK>
[  128.320642][ T6650]  dump_stack_lvl+0x16c/0x1f0
[  128.320693][ T6650]  should_fail_ex+0x50a/0x650
[  128.320746][ T6650]  ? fs_reclaim_acquire+0xae/0x150
[  128.320792][ T6650]  should_failslab+0xc2/0x120
[  128.320823][ T6650]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  128.320881][ T6650]  ? apply_subsystem_event_filter+0x3ec/0x1410
[  128.320931][ T6650]  kstrdup+0x53/0x100
[  128.320974][ T6650]  apply_subsystem_event_filter+0x3ec/0x1410
[  128.321028][ T6650]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  128.321070][ T6650]  ? __might_fault+0xe3/0x190
[  128.321103][ T6650]  ? __might_fault+0xe3/0x190
[  128.321143][ T6650]  ? _copy_from_user+0x59/0xd0
[  128.321184][ T6650]  subsystem_filter_write+0x95/0x120
[  128.321229][ T6650]  ? __pfx_subsystem_filter_write+0x10/0x10
[  128.321270][ T6650]  vfs_write+0x24c/0x1150
[  128.321329][ T6650]  ? __fget_files+0x1fc/0x3a0
[  128.321378][ T6650]  ? __pfx___mutex_lock+0x10/0x10
[  128.321422][ T6650]  ? __pfx_vfs_write+0x10/0x10
[  128.321480][ T6650]  ? __fget_files+0x206/0x3a0
[  128.321538][ T6650]  ksys_write+0x12b/0x250
[  128.321581][ T6650]  ? __pfx_ksys_write+0x10/0x10
[  128.321635][ T6650]  do_syscall_64+0xcd/0x250
[  128.321680][ T6650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.321725][ T6650] RIP: 0033:0x7feb1c98d169
[  128.321749][ T6650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.321779][ T6650] RSP: 002b:00007feb1d86f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  128.321807][ T6650] RAX: ffffffffffffffda RBX: 00007feb1cba5fa0 RCX: 00007feb1c98d169
[  128.321829][ T6650] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  128.321847][ T6650] RBP: 00007feb1ca0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  128.321866][ T6650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  128.321885][ T6650] R13: 0000000000000000 R14: 00007feb1cba5fa0 R15: 00007ffed2356cc8
[  128.321923][ T6650]  </TASK>
[  128.717900][ T6660] FAULT_INJECTION: forcing a failure.
[  128.717900][ T6660] name failslab, interval 1, probability 0, space 0, times 0
[  128.761359][ T6660] CPU: 0 UID: 0 PID: 6660 Comm: syz.1.202 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  128.761401][ T6660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  128.761418][ T6660] Call Trace:
[  128.761426][ T6660]  <TASK>
[  128.761437][ T6660]  dump_stack_lvl+0x16c/0x1f0
[  128.761486][ T6660]  should_fail_ex+0x50a/0x650
[  128.761539][ T6660]  ? sctp_add_bind_addr+0x9a/0x3d0
[  128.761569][ T6660]  should_failslab+0xc2/0x120
[  128.761597][ T6660]  __kmalloc_cache_noprof+0x68/0x410
[  128.761648][ T6660]  sctp_add_bind_addr+0x9a/0x3d0
[  128.761684][ T6660]  sctp_copy_local_addr_list+0x39e/0x5a0
[  128.761727][ T6660]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  128.761771][ T6660]  ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360
[  128.761818][ T6660]  ? sctp_bind_addr_copy+0x331/0x530
[  128.761850][ T6660]  sctp_bind_addr_copy+0x331/0x530
[  128.761890][ T6660]  sctp_connect_new_asoc+0x1d8/0x790
[  128.761939][ T6660]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  128.762003][ T6660]  ? sctp_get_af_specific+0x62/0x70
[  128.762046][ T6660]  __sctp_connect+0x3f5/0xc60
[  128.762095][ T6660]  ? sctp_inet_connect+0xac/0x200
[  128.762141][ T6660]  ? __pfx___sctp_connect+0x10/0x10
[  128.762186][ T6660]  ? __pfx_sctp_inet_connect+0x10/0x10
[  128.762234][ T6660]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  128.762284][ T6660]  ? __pfx_sctp_inet_connect+0x10/0x10
[  128.762327][ T6660]  sctp_inet_connect+0x15f/0x200
[  128.762373][ T6660]  __sys_connect_file+0x13e/0x1a0
[  128.762421][ T6660]  __sys_connect+0x14f/0x170
[  128.762457][ T6660]  ? __pfx___sys_connect+0x10/0x10
[  128.762508][ T6660]  ? __pfx_ksys_write+0x10/0x10
[  128.762559][ T6660]  __x64_sys_connect+0x72/0xb0
[  128.762595][ T6660]  ? lockdep_hardirqs_on+0x7c/0x110
[  128.762632][ T6660]  do_syscall_64+0xcd/0x250
[  128.762673][ T6660]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.762715][ T6660] RIP: 0033:0x7f82cc98d169
[  128.762738][ T6660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.762764][ T6660] RSP: 002b:00007f82cd710038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  128.762790][ T6660] RAX: ffffffffffffffda RBX: 00007f82ccba5fa0 RCX: 00007f82cc98d169
[  128.762808][ T6660] RDX: 0000000000000055 RSI: 0000400000000140 RDI: 0000000000000003
[  128.762826][ T6660] RBP: 00007f82cd710090 R08: 0000000000000000 R09: 0000000000000000
[  128.762842][ T6660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  128.762859][ T6660] R13: 0000000000000000 R14: 00007f82ccba5fa0 R15: 00007ffd9aca2b38
[  128.762895][ T6660]  </TASK>
[  129.487272][ T6674] netlink: 4 bytes leftover after parsing attributes in process `syz.2.203'.
[  129.503179][ T6674] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  129.961734][ T6690] FAULT_INJECTION: forcing a failure.
[  129.961734][ T6690] name failslab, interval 1, probability 0, space 0, times 0
[  129.997112][ T6690] CPU: 0 UID: 0 PID: 6690 Comm: syz.0.210 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  129.997152][ T6690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  129.997170][ T6690] Call Trace:
[  129.997179][ T6690]  <TASK>
[  129.997190][ T6690]  dump_stack_lvl+0x16c/0x1f0
[  129.997239][ T6690]  should_fail_ex+0x50a/0x650
[  129.997290][ T6690]  ? fs_reclaim_acquire+0xae/0x150
[  129.997333][ T6690]  ? constrain_params_by_rules+0x176/0xca0
[  129.997373][ T6690]  should_failslab+0xc2/0x120
[  129.997403][ T6690]  __kmalloc_noprof+0xcb/0x510
[  129.997451][ T6690]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  129.997499][ T6690]  constrain_params_by_rules+0x176/0xca0
[  129.997538][ T6690]  ? arch_stack_walk+0xa7/0x100
[  129.997583][ T6690]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  129.997622][ T6690]  ? stack_trace_save+0x95/0xd0
[  129.997658][ T6690]  ? __pfx_stack_trace_save+0x10/0x10
[  129.997711][ T6690]  ? snd_pcm_oss_change_params_locked+0x9ad/0x3a60
[  129.997748][ T6690]  ? snd_pcm_oss_make_ready+0xe6/0x1b0
[  129.997783][ T6690]  ? snd_pcm_oss_set_trigger.isra.0+0x5e/0x6b0
[  129.997820][ T6690]  ? snd_pcm_oss_ioctl+0x1d00/0x3780
[  129.997855][ T6690]  ? __x64_sys_ioctl+0x190/0x200
[  129.997898][ T6690]  ? do_syscall_64+0xcd/0x250
[  129.997941][ T6690]  ? snd_interval_refine+0x2fa/0x580
[  129.997996][ T6690]  snd_pcm_hw_refine+0x7e8/0xad0
[  129.998041][ T6690]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  129.998106][ T6690]  snd_pcm_hw_param_first+0x328/0x6e0
[  129.998152][ T6690]  snd_pcm_hw_param_near.constprop.0+0x711/0x8f0
[  129.998197][ T6690]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  129.998235][ T6690]  ? kfree+0x2c4/0x4d0
[  129.998276][ T6690]  ? snd_pcm_oss_change_params_locked+0x93b/0x3a60
[  129.998322][ T6690]  snd_pcm_oss_change_params_locked+0x9ad/0x3a60
[  129.998379][ T6690]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  129.998421][ T6690]  ? __pfx___mutex_lock+0x10/0x10
[  129.998477][ T6690]  ? __might_fault+0x13b/0x190
[  129.998518][ T6690]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  129.998557][ T6690]  snd_pcm_oss_set_trigger.isra.0+0x5e/0x6b0
[  129.998603][ T6690]  snd_pcm_oss_ioctl+0x1d00/0x3780
[  129.998638][ T6690]  ? trace_lock_acquire+0x14e/0x1f0
[  129.998681][ T6690]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  129.998725][ T6690]  ? __fget_files+0x206/0x3a0
[  129.998776][ T6690]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  129.998817][ T6690]  __x64_sys_ioctl+0x190/0x200
[  129.998859][ T6690]  do_syscall_64+0xcd/0x250
[  129.998913][ T6690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.998959][ T6690] RIP: 0033:0x7f9ab778d169
[  129.998983][ T6690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.999013][ T6690] RSP: 002b:00007f9ab55d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  129.999042][ T6690] RAX: ffffffffffffffda RBX: 00007f9ab79a6080 RCX: 00007f9ab778d169
[  129.999060][ T6690] RDX: 0000000000000000 RSI: 0000000040045010 RDI: 0000000000000003
[  129.999079][ T6690] RBP: 00007f9ab55d5090 R08: 0000000000000000 R09: 0000000000000000
[  129.999097][ T6690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  129.999116][ T6690] R13: 0000000000000001 R14: 00007f9ab79a6080 R15: 00007ffc743e9b38
[  129.999155][ T6690]  </TASK>
[  130.785316][ T6698] FAULT_INJECTION: forcing a failure.
[  130.785316][ T6698] name failslab, interval 1, probability 0, space 0, times 0
[  130.811668][ T6698] CPU: 0 UID: 0 PID: 6698 Comm: syz.2.213 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  130.811710][ T6698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  130.811727][ T6698] Call Trace:
[  130.811736][ T6698]  <TASK>
[  130.811748][ T6698]  dump_stack_lvl+0x16c/0x1f0
[  130.811797][ T6698]  should_fail_ex+0x50a/0x650
[  130.811848][ T6698]  ? fs_reclaim_acquire+0xae/0x150
[  130.811892][ T6698]  should_failslab+0xc2/0x120
[  130.811923][ T6698]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  130.811975][ T6698]  ? __pmd_alloc+0xc3/0x870
[  130.812022][ T6698]  __pmd_alloc+0xc3/0x870
[  130.812076][ T6698]  __handle_mm_fault+0x9fb/0x2c60
[  130.812136][ T6698]  ? __pfx___handle_mm_fault+0x10/0x10
[  130.812216][ T6698]  handle_mm_fault+0x3fa/0xaa0
[  130.812271][ T6698]  __get_user_pages+0x773/0x36f0
[  130.812333][ T6698]  ? __pfx___get_user_pages+0x10/0x10
[  130.812378][ T6698]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  130.812438][ T6698]  get_user_pages_remote+0x25e/0xb30
[  130.812493][ T6698]  ? __pfx_get_user_pages_remote+0x10/0x10
[  130.812538][ T6698]  ? find_held_lock+0x2d/0x110
[  130.812585][ T6698]  get_arg_page+0xf3/0x310
[  130.812628][ T6698]  ? __pfx_get_arg_page+0x10/0x10
[  130.812668][ T6698]  ? __might_fault+0xe3/0x190
[  130.812701][ T6698]  ? __might_fault+0xe3/0x190
[  130.812739][ T6698]  copy_string_kernel+0x197/0x250
[  130.812782][ T6698]  ? count.constprop.0.isra.0+0xf4/0x170
[  130.812830][ T6698]  do_execveat_common.isra.0+0x2eb/0x610
[  130.812885][ T6698]  __x64_sys_execve+0x8c/0xb0
[  130.812933][ T6698]  do_syscall_64+0xcd/0x250
[  130.812981][ T6698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.813027][ T6698] RIP: 0033:0x7f0ca438d169
[  130.813051][ T6698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.813087][ T6698] RSP: 002b:00007f0ca5116038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  130.813117][ T6698] RAX: ffffffffffffffda RBX: 00007f0ca45a5fa0 RCX: 00007f0ca438d169
[  130.813137][ T6698] RDX: 0000400000000200 RSI: 0000000000000000 RDI: 0000400000000040
[  130.813156][ T6698] RBP: 00007f0ca5116090 R08: 0000000000000000 R09: 0000000000000000
[  130.813175][ T6698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  130.813193][ T6698] R13: 0000000000000000 R14: 00007f0ca45a5fa0 R15: 00007ffccb72a9e8
[  130.813228][ T6698]  </TASK>
[  131.319859][ T6694] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(4.64.4294967293), cmd(2)
[  131.450317][ T6703] FAULT_INJECTION: forcing a failure.
[  131.450317][ T6703] name failslab, interval 1, probability 0, space 0, times 0
[  131.524455][ T6703] CPU: 1 UID: 0 PID: 6703 Comm: syz.2.215 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  131.524499][ T6703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  131.524517][ T6703] Call Trace:
[  131.524527][ T6703]  <TASK>
[  131.524539][ T6703]  dump_stack_lvl+0x16c/0x1f0
[  131.524589][ T6703]  should_fail_ex+0x50a/0x650
[  131.524643][ T6703]  ? fs_reclaim_acquire+0xae/0x150
[  131.524690][ T6703]  ? single_open+0x4d/0x1f0
[  131.524724][ T6703]  should_failslab+0xc2/0x120
[  131.524757][ T6703]  __kmalloc_cache_noprof+0x68/0x410
[  131.524804][ T6703]  ? __pfx___debugfs_file_get+0x10/0x10
[  131.524859][ T6703]  ? __pfx_apparmor_file_open+0x10/0x10
[  131.524903][ T6703]  ? __pfx_check_wx_open+0x10/0x10
[  131.524942][ T6703]  ? __pfx_check_wx_show+0x10/0x10
[  131.524980][ T6703]  single_open+0x4d/0x1f0
[  131.525017][ T6703]  full_proxy_open_regular+0x1b6/0x360
[  131.525067][ T6703]  do_dentry_open+0x735/0x1c40
[  131.525113][ T6703]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  131.525162][ T6703]  ? inode_permission+0xdd/0x5f0
[  131.525202][ T6703]  vfs_open+0x82/0x3f0
[  131.525232][ T6703]  ? may_open+0x1f2/0x400
[  131.525272][ T6703]  path_openat+0x1e88/0x2d80
[  131.525336][ T6703]  ? __pfx_path_openat+0x10/0x10
[  131.525381][ T6703]  ? __pfx___lock_acquire+0x10/0x10
[  131.525425][ T6703]  ? lock_acquire.part.0+0x11b/0x380
[  131.525472][ T6703]  ? find_held_lock+0x2d/0x110
[  131.525512][ T6703]  do_filp_open+0x20c/0x470
[  131.525561][ T6703]  ? __pfx_do_filp_open+0x10/0x10
[  131.525606][ T6703]  ? find_held_lock+0x2d/0x110
[  131.525665][ T6703]  ? alloc_fd+0x41f/0x760
[  131.525724][ T6703]  do_sys_openat2+0x17a/0x1e0
[  131.525758][ T6703]  ? __pfx_do_sys_openat2+0x10/0x10
[  131.525808][ T6703]  __x64_sys_openat+0x175/0x210
[  131.525853][ T6703]  ? __pfx___x64_sys_openat+0x10/0x10
[  131.525906][ T6703]  do_syscall_64+0xcd/0x250
[  131.525955][ T6703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.526001][ T6703] RIP: 0033:0x7f0ca438d169
[  131.526027][ T6703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.526058][ T6703] RSP: 002b:00007f0ca5116038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  131.526085][ T6703] RAX: ffffffffffffffda RBX: 00007f0ca45a5fa0 RCX: 00007f0ca438d169
[  131.526104][ T6703] RDX: 0000000000002000 RSI: 00004000000000c0 RDI: ffffffffffffff9c
[  131.526125][ T6703] RBP: 00007f0ca440e2a0 R08: 0000000000000000 R09: 0000000000000000
[  131.526145][ T6703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  131.526163][ T6703] R13: 0000000000000000 R14: 00007f0ca45a5fa0 R15: 00007ffccb72a9e8
[  131.526203][ T6703]  </TASK>
[  132.256734][ T6720] netlink: 'syz.2.219': attribute type 1 has an invalid length.
[  132.264699][ T6720] netlink: 32 bytes leftover after parsing attributes in process `syz.2.219'.
[  132.278456][ T6720] nbd: must specify a size in bytes for the device
[  132.279228][ T6717] netlink: 4 bytes leftover after parsing attributes in process `syz.1.218'.
[  132.311619][ T6717] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  132.442264][ T6725] FAULT_INJECTION: forcing a failure.
[  132.442264][ T6725] name failslab, interval 1, probability 0, space 0, times 0
[  132.456005][ T6725] CPU: 0 UID: 0 PID: 6725 Comm: syz.2.221 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  132.456045][ T6725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  132.456064][ T6725] Call Trace:
[  132.456073][ T6725]  <TASK>
[  132.456085][ T6725]  dump_stack_lvl+0x16c/0x1f0
[  132.456135][ T6725]  should_fail_ex+0x50a/0x650
[  132.456187][ T6725]  ? fs_reclaim_acquire+0xae/0x150
[  132.456234][ T6725]  should_failslab+0xc2/0x120
[  132.456266][ T6725]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  132.456324][ T6725]  ? create_filter_start.constprop.0+0x16a/0x300
[  132.456373][ T6725]  kstrdup+0x53/0x100
[  132.456416][ T6725]  create_filter_start.constprop.0+0x16a/0x300
[  132.456464][ T6725]  apply_subsystem_event_filter+0x189/0x1410
[  132.456506][ T6725]  ? __might_fault+0x13b/0x190
[  132.456540][ T6725]  ? __pfx_lock_release+0x10/0x10
[  132.456594][ T6725]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  132.456635][ T6725]  ? __might_fault+0xe3/0x190
[  132.456669][ T6725]  ? __might_fault+0xe3/0x190
[  132.456709][ T6725]  ? _copy_from_user+0x59/0xd0
[  132.456750][ T6725]  subsystem_filter_write+0x95/0x120
[  132.456803][ T6725]  ? __pfx_subsystem_filter_write+0x10/0x10
[  132.456846][ T6725]  vfs_write+0x24c/0x1150
[  132.456892][ T6725]  ? __fget_files+0x1fc/0x3a0
[  132.456938][ T6725]  ? __pfx___mutex_lock+0x10/0x10
[  132.456983][ T6725]  ? __pfx_vfs_write+0x10/0x10
[  132.457040][ T6725]  ? __fget_files+0x206/0x3a0
[  132.457100][ T6725]  ksys_write+0x12b/0x250
[  132.457146][ T6725]  ? __pfx_ksys_write+0x10/0x10
[  132.457205][ T6725]  do_syscall_64+0xcd/0x250
[  132.457251][ T6725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.457299][ T6725] RIP: 0033:0x7f0ca438d169
[  132.457325][ T6725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.457356][ T6725] RSP: 002b:00007f0ca5116038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  132.457386][ T6725] RAX: ffffffffffffffda RBX: 00007f0ca45a5fa0 RCX: 00007f0ca438d169
[  132.457407][ T6725] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  132.457426][ T6725] RBP: 00007f0ca440e2a0 R08: 0000000000000000 R09: 0000000000000000
[  132.457445][ T6725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  132.457463][ T6725] R13: 0000000000000000 R14: 00007f0ca45a5fa0 R15: 00007ffccb72a9e8
[  132.457505][ T6725]  </TASK>
[  132.896655][ T6736] FAULT_INJECTION: forcing a failure.
[  132.896655][ T6736] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  132.961077][ T6736] CPU: 0 UID: 0 PID: 6736 Comm: syz.1.223 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  132.961118][ T6736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  132.961137][ T6736] Call Trace:
[  132.961146][ T6736]  <TASK>
[  132.961157][ T6736]  dump_stack_lvl+0x16c/0x1f0
[  132.961203][ T6736]  should_fail_ex+0x50a/0x650
[  132.961254][ T6736]  ? __pfx___might_resched+0x10/0x10
[  132.961311][ T6736]  should_fail_alloc_page+0xe7/0x130
[  132.961345][ T6736]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  132.961389][ T6736]  ? find_held_lock+0x2d/0x110
[  132.961427][ T6736]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  132.961483][ T6736]  ? hlock_class+0x4e/0x130
[  132.961516][ T6736]  ? mark_lock+0xb5/0xc60
[  132.961559][ T6736]  ? hlock_class+0x4e/0x130
[  132.961591][ T6736]  ? mark_lock+0xb5/0xc60
[  132.961633][ T6736]  ? __pfx_mark_lock+0x10/0x10
[  132.961680][ T6736]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  132.961747][ T6736]  ? hlock_class+0x4e/0x130
[  132.961790][ T6736]  ? hlock_class+0x4e/0x130
[  132.961823][ T6736]  ? __lock_acquire+0xcc5/0x3c40
[  132.961869][ T6736]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  132.961924][ T6736]  ? policy_nodemask+0xea/0x4e0
[  132.961979][ T6736]  alloc_pages_mpol+0x1fc/0x540
[  132.962011][ T6736]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  132.962040][ T6736]  ? hlock_class+0x4e/0x130
[  132.962072][ T6736]  ? __lock_acquire+0xcc5/0x3c40
[  132.962126][ T6736]  folio_alloc_mpol_noprof+0x36/0x2f0
[  132.962165][ T6736]  vma_alloc_folio_noprof+0xee/0x1b0
[  132.962201][ T6736]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  132.962239][ T6736]  ? find_held_lock+0x2d/0x110
[  132.962282][ T6736]  do_pte_missing+0x202f/0x3e10
[  132.962350][ T6736]  __handle_mm_fault+0x1166/0x2c60
[  132.962406][ T6736]  ? lock_vma_under_rcu+0x6b9/0x980
[  132.962452][ T6736]  ? __pfx___handle_mm_fault+0x10/0x10
[  132.962535][ T6736]  handle_mm_fault+0x3fa/0xaa0
[  132.962593][ T6736]  do_user_addr_fault+0x60d/0x13f0
[  132.962649][ T6736]  exc_page_fault+0x5c/0xc0
[  132.962699][ T6736]  asm_exc_page_fault+0x26/0x30
[  132.962743][ T6736] RIP: 0033:0x7f82cc858b7b
[  132.962768][ T6736] Code: 00 00 00 48 8d 3d 9d 33 19 00 48 89 c1 31 c0 e8 4b 44 ff ff eb d2 66 0f 1f 84 00 00 00 00 00 55 31 c0 53 48 81 ec 68 10 00 00 <48> 89 7c 24 08 48 8d 3d d1 33 19 00 48 89 34 24 48 8b 14 24 48 8b
[  132.962798][ T6736] RSP: 002b:00007f82ca7f4fb0 EFLAGS: 00010202
[  132.962823][ T6736] RAX: 0000000000000000 RBX: 00007f82ccba6080 RCX: 0000000000000000
[  132.962842][ T6736] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000000
[  132.962861][ T6736] RBP: 00007f82ca7f6090 R08: 0000000000000000 R09: 0000000000000000
[  132.962880][ T6736] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001
[  132.962898][ T6736] R13: 0000000000000000 R14: 00007f82ccba6080 R15: 00007ffd9aca2b38
[  132.962937][ T6736]  </TASK>
[  132.963229][ T6736] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  133.928741][ T6764] netlink: 4 bytes leftover after parsing attributes in process `syz.1.230'.
[  133.968152][ T6764] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  134.176016][ T6771] FAULT_INJECTION: forcing a failure.
[  134.176016][ T6771] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.235438][ T6771] CPU: 1 UID: 0 PID: 6771 Comm: syz.1.232 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  134.235480][ T6771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  134.235498][ T6771] Call Trace:
[  134.235507][ T6771]  <TASK>
[  134.235519][ T6771]  dump_stack_lvl+0x16c/0x1f0
[  134.235576][ T6771]  should_fail_ex+0x50a/0x650
[  134.235636][ T6771]  _copy_to_user+0x32/0xd0
[  134.235675][ T6771]  simple_read_from_buffer+0xd0/0x160
[  134.235722][ T6771]  proc_fail_nth_read+0x198/0x270
[  134.235763][ T6771]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  134.235806][ T6771]  ? rw_verify_area+0xcf/0x680
[  134.235845][ T6771]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  134.235885][ T6771]  vfs_read+0x1df/0xbf0
[  134.235930][ T6771]  ? __fget_files+0x1fc/0x3a0
[  134.235979][ T6771]  ? __pfx___mutex_lock+0x10/0x10
[  134.236022][ T6771]  ? __pfx_vfs_read+0x10/0x10
[  134.236077][ T6771]  ? __fget_files+0x206/0x3a0
[  134.236136][ T6771]  ksys_read+0x12b/0x250
[  134.236180][ T6771]  ? __pfx_ksys_read+0x10/0x10
[  134.236237][ T6771]  do_syscall_64+0xcd/0x250
[  134.236283][ T6771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.236329][ T6771] RIP: 0033:0x7f82cc98bb7c
[  134.236353][ T6771] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  134.236383][ T6771] RSP: 002b:00007f82cd710030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  134.236412][ T6771] RAX: ffffffffffffffda RBX: 00007f82ccba5fa0 RCX: 00007f82cc98bb7c
[  134.236433][ T6771] RDX: 000000000000000f RSI: 00007f82cd7100a0 RDI: 0000000000000004
[  134.236452][ T6771] RBP: 00007f82cd710090 R08: 0000000000000000 R09: 0000000000000000
[  134.236476][ T6771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.236495][ T6771] R13: 0000000000000000 R14: 00007f82ccba5fa0 R15: 00007ffd9aca2b38
[  134.236535][ T6771]  </TASK>
[  135.246582][ T6788] usbip-vudc usbip-vudc.0: gadget not bound
[  135.509496][ T6795] block nbd8: Cannot use ioctl interface on a netlink controlled device.
[  135.940111][ T6798] netlink: 4 bytes leftover after parsing attributes in process `syz.2.240'.
[  135.959917][ T6798] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  136.252853][ T6802] FAULT_INJECTION: forcing a failure.
[  136.252853][ T6802] name failslab, interval 1, probability 0, space 0, times 0
[  136.306305][ T6802] CPU: 1 UID: 0 PID: 6802 Comm: syz.2.241 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  136.306350][ T6802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  136.306369][ T6802] Call Trace:
[  136.306378][ T6802]  <TASK>
[  136.306390][ T6802]  dump_stack_lvl+0x16c/0x1f0
[  136.306441][ T6802]  should_fail_ex+0x50a/0x650
[  136.306495][ T6802]  ? fs_reclaim_acquire+0xae/0x150
[  136.306541][ T6802]  ? tomoyo_encode2+0x100/0x3e0
[  136.306586][ T6802]  should_failslab+0xc2/0x120
[  136.306618][ T6802]  __kmalloc_noprof+0xcb/0x510
[  136.306675][ T6802]  ? d_absolute_path+0x137/0x1b0
[  136.306711][ T6802]  ? rcu_is_watching+0x12/0xc0
[  136.306750][ T6802]  tomoyo_encode2+0x100/0x3e0
[  136.306802][ T6802]  tomoyo_encode+0x29/0x50
[  136.306845][ T6802]  tomoyo_realpath_from_path+0x19d/0x720
[  136.306902][ T6802]  tomoyo_path_number_perm+0x248/0x590
[  136.306939][ T6802]  ? tomoyo_path_number_perm+0x235/0x590
[  136.306984][ T6802]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  136.307062][ T6802]  ? __pfx_lock_release+0x10/0x10
[  136.307109][ T6802]  ? trace_lock_acquire+0x14e/0x1f0
[  136.307153][ T6802]  ? lock_acquire+0x2f/0xb0
[  136.307197][ T6802]  ? __fget_files+0x40/0x3a0
[  136.307251][ T6802]  ? __fget_files+0x206/0x3a0
[  136.307305][ T6802]  security_file_ioctl+0x9b/0x240
[  136.307349][ T6802]  __x64_sys_ioctl+0xb7/0x200
[  136.307393][ T6802]  do_syscall_64+0xcd/0x250
[  136.307442][ T6802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.307490][ T6802] RIP: 0033:0x7f0ca438d169
[  136.307515][ T6802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.307546][ T6802] RSP: 002b:00007f0ca5116038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  136.307577][ T6802] RAX: ffffffffffffffda RBX: 00007f0ca45a5fa0 RCX: 00007f0ca438d169
[  136.307598][ T6802] RDX: 0000000000000003 RSI: 00000000800064d1 RDI: 0000000000000003
[  136.307618][ T6802] RBP: 00007f0ca5116090 R08: 0000000000000000 R09: 0000000000000000
[  136.307637][ T6802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  136.307666][ T6802] R13: 0000000000000000 R14: 00007f0ca45a5fa0 R15: 00007ffccb72a9e8
[  136.307707][ T6802]  </TASK>
[  136.307729][ T6802] ERROR: Out of memory at tomoyo_realpath_from_path.
[  136.312387][ T6805] block nbd8: Cannot use ioctl interface on a netlink controlled device.
[  137.446140][ T6826] FAULT_INJECTION: forcing a failure.
[  137.446140][ T6826] name failslab, interval 1, probability 0, space 0, times 0
[  137.459021][ T6826] CPU: 1 UID: 0 PID: 6826 Comm: syz.3.249 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  137.459060][ T6826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  137.459079][ T6826] Call Trace:
[  137.459089][ T6826]  <TASK>
[  137.459101][ T6826]  dump_stack_lvl+0x16c/0x1f0
[  137.459153][ T6826]  should_fail_ex+0x50a/0x650
[  137.459206][ T6826]  ? fs_reclaim_acquire+0xae/0x150
[  137.459252][ T6826]  should_failslab+0xc2/0x120
[  137.459284][ T6826]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  137.459343][ T6826]  ? create_filter_start.constprop.0+0x16a/0x300
[  137.459392][ T6826]  kstrdup+0x53/0x100
[  137.459435][ T6826]  create_filter_start.constprop.0+0x16a/0x300
[  137.459482][ T6826]  apply_subsystem_event_filter+0x189/0x1410
[  137.459532][ T6826]  ? __might_fault+0x13b/0x190
[  137.459566][ T6826]  ? __pfx_lock_release+0x10/0x10
[  137.459620][ T6826]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  137.459662][ T6826]  ? __might_fault+0xe3/0x190
[  137.459697][ T6826]  ? __might_fault+0xe3/0x190
[  137.459737][ T6826]  ? _copy_from_user+0x59/0xd0
[  137.459778][ T6826]  subsystem_filter_write+0x95/0x120
[  137.459824][ T6826]  ? __pfx_subsystem_filter_write+0x10/0x10
[  137.459866][ T6826]  vfs_write+0x24c/0x1150
[  137.459914][ T6826]  ? __fget_files+0x1fc/0x3a0
[  137.459962][ T6826]  ? __pfx___mutex_lock+0x10/0x10
[  137.460006][ T6826]  ? __pfx_vfs_write+0x10/0x10
[  137.460065][ T6826]  ? __fget_files+0x206/0x3a0
[  137.460126][ T6826]  ksys_write+0x12b/0x250
[  137.460171][ T6826]  ? __pfx_ksys_write+0x10/0x10
[  137.460230][ T6826]  do_syscall_64+0xcd/0x250
[  137.460279][ T6826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.460326][ T6826] RIP: 0033:0x7feb1c98d169
[  137.460352][ T6826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.460383][ T6826] RSP: 002b:00007feb1d86f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  137.460413][ T6826] RAX: ffffffffffffffda RBX: 00007feb1cba5fa0 RCX: 00007feb1c98d169
[  137.460435][ T6826] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  137.460454][ T6826] RBP: 00007feb1ca0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  137.460473][ T6826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  137.460499][ T6826] R13: 0000000000000000 R14: 00007feb1cba5fa0 R15: 00007ffed2356cc8
[  137.460543][ T6826]  </TASK>
[  137.802367][ T6824] netlink: 4 bytes leftover after parsing attributes in process `syz.2.250'.
[  137.858203][ T6824] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  138.361233][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  138.373625][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  138.687337][ T6835] netlink: 'syz.3.252': attribute type 19 has an invalid length.
[  138.753904][ T6835] netlink: 334 bytes leftover after parsing attributes in process `syz.3.252'.
[  138.798962][ T6829] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(4.64.4294967293), cmd(2)
[  138.811676][ T6844] netlink: 'syz.3.252': attribute type 19 has an invalid length.
[  138.819899][ T6844] netlink: 334 bytes leftover after parsing attributes in process `syz.3.252'.
[  138.839328][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  138.846498][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  140.221163][ T6872] FAULT_INJECTION: forcing a failure.
[  140.221163][ T6872] name failslab, interval 1, probability 0, space 0, times 0
[  140.259654][ T6872] CPU: 0 UID: 0 PID: 6872 Comm: syz.1.262 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  140.259697][ T6872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  140.259715][ T6872] Call Trace:
[  140.259724][ T6872]  <TASK>
[  140.259736][ T6872]  dump_stack_lvl+0x16c/0x1f0
[  140.259784][ T6872]  should_fail_ex+0x50a/0x650
[  140.259836][ T6872]  ? trace_kmem_cache_alloc+0x2d/0xd0
[  140.259882][ T6872]  should_failslab+0xc2/0x120
[  140.259912][ T6872]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  140.259963][ T6872]  ? __alloc_skb+0x2b1/0x380
[  140.260013][ T6872]  __alloc_skb+0x2b1/0x380
[  140.260057][ T6872]  ? __pfx___alloc_skb+0x10/0x10
[  140.260113][ T6872]  ? aoecmd_cfg+0xe8/0x7d0
[  140.260150][ T6872]  new_skb+0x21/0x230
[  140.260198][ T6872]  aoecmd_cfg+0x21d/0x7d0
[  140.260232][ T6872]  ? __pfx_aoecmd_cfg+0x10/0x10
[  140.260276][ T6872]  ? apparmor_file_permission+0x251/0x400
[  140.260320][ T6872]  ? __pfx_aoechr_write+0x10/0x10
[  140.260369][ T6872]  ? aoechr_write+0x120/0x160
[  140.260415][ T6872]  aoechr_write+0x120/0x160
[  140.260463][ T6872]  vfs_write+0x24c/0x1150
[  140.260509][ T6872]  ? __fget_files+0x1fc/0x3a0
[  140.260556][ T6872]  ? __pfx_lock_release+0x10/0x10
[  140.260605][ T6872]  ? __pfx_vfs_write+0x10/0x10
[  140.260651][ T6872]  ? lock_acquire+0x2f/0xb0
[  140.260693][ T6872]  ? __fget_files+0x40/0x3a0
[  140.260744][ T6872]  ? __fget_files+0x206/0x3a0
[  140.260803][ T6872]  ksys_write+0x12b/0x250
[  140.260846][ T6872]  ? __pfx_ksys_write+0x10/0x10
[  140.260903][ T6872]  do_syscall_64+0xcd/0x250
[  140.260949][ T6872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.260994][ T6872] RIP: 0033:0x7f82cc98d169
[  140.261019][ T6872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.261049][ T6872] RSP: 002b:00007f82cd710038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  140.261084][ T6872] RAX: ffffffffffffffda RBX: 00007f82ccba5fa0 RCX: 00007f82cc98d169
[  140.261105][ T6872] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  140.261124][ T6872] RBP: 00007f82cd710090 R08: 0000000000000000 R09: 0000000000000000
[  140.261143][ T6872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.261161][ T6872] R13: 0000000000000000 R14: 00007f82ccba5fa0 R15: 00007ffd9aca2b38
[  140.261202][ T6872]  </TASK>
[  140.261215][ T6872] aoe: skb alloc failure
[  140.510212][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  140.516955][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  144.687086][ T6939] FAULT_INJECTION: forcing a failure.
[  144.687086][ T6939] name failslab, interval 1, probability 0, space 0, times 0
[  144.714431][ T6939] CPU: 0 UID: 0 PID: 6939 Comm: syz.0.280 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  144.714473][ T6939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  144.714491][ T6939] Call Trace:
[  144.714500][ T6939]  <TASK>
[  144.714512][ T6939]  dump_stack_lvl+0x16c/0x1f0
[  144.714561][ T6939]  should_fail_ex+0x50a/0x650
[  144.714613][ T6939]  ? fs_reclaim_acquire+0xae/0x150
[  144.714656][ T6939]  ? genl_start+0x1e7/0x960
[  144.714702][ T6939]  should_failslab+0xc2/0x120
[  144.714734][ T6939]  __kmalloc_cache_noprof+0x68/0x410
[  144.714777][ T6939]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  144.714832][ T6939]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  144.714895][ T6939]  genl_start+0x1e7/0x960
[  144.714956][ T6939]  __netlink_dump_start+0x607/0x970
[  144.715006][ T6939]  genl_family_rcv_msg_dumpit+0x1e1/0x2e0
[  144.715062][ T6939]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  144.715127][ T6939]  ? __pfx_genl_get_cmd+0x10/0x10
[  144.715170][ T6939]  ? __pfx_genl_start+0x10/0x10
[  144.715216][ T6939]  ? __pfx_genl_dumpit+0x10/0x10
[  144.715264][ T6939]  ? __pfx_genl_done+0x10/0x10
[  144.715319][ T6939]  ? __radix_tree_lookup+0x21f/0x2c0
[  144.715366][ T6939]  genl_rcv_msg+0x470/0x800
[  144.715422][ T6939]  ? __pfx_genl_rcv_msg+0x10/0x10
[  144.715473][ T6939]  ? __pfx_smcr_nl_get_device+0x10/0x10
[  144.715528][ T6939]  netlink_rcv_skb+0x16b/0x440
[  144.715572][ T6939]  ? __pfx_genl_rcv_msg+0x10/0x10
[  144.715623][ T6939]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  144.715686][ T6939]  ? down_read+0xc9/0x330
[  144.715731][ T6939]  ? __pfx_down_read+0x10/0x10
[  144.715778][ T6939]  ? netlink_deliver_tap+0x1ae/0xd30
[  144.715827][ T6939]  genl_rcv+0x28/0x40
[  144.715870][ T6939]  netlink_unicast+0x53c/0x7f0
[  144.715920][ T6939]  ? __pfx_netlink_unicast+0x10/0x10
[  144.715973][ T6939]  ? __phys_addr_symbol+0x30/0x80
[  144.716005][ T6939]  ? __check_object_size+0x488/0x710
[  144.716042][ T6939]  netlink_sendmsg+0x8b8/0xd70
[  144.716093][ T6939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  144.716136][ T6939]  ? __might_fault+0xe3/0x190
[  144.716183][ T6939]  ____sys_sendmsg+0xaaf/0xc90
[  144.716223][ T6939]  ? __pfx_____sys_sendmsg+0x10/0x10
[  144.716255][ T6939]  ? __lock_acquire+0xcc5/0x3c40
[  144.716318][ T6939]  ___sys_sendmsg+0x135/0x1e0
[  144.716369][ T6939]  ? __pfx____sys_sendmsg+0x10/0x10
[  144.716435][ T6939]  ? trace_lock_acquire+0x14e/0x1f0
[  144.716502][ T6939]  __sys_sendmmsg+0x201/0x420
[  144.716556][ T6939]  ? __pfx___sys_sendmmsg+0x10/0x10
[  144.716629][ T6939]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  144.716689][ T6939]  ? fput+0x67/0x440
[  144.716721][ T6939]  ? ksys_write+0x1ba/0x250
[  144.716766][ T6939]  ? __pfx_ksys_write+0x10/0x10
[  144.716817][ T6939]  __x64_sys_sendmmsg+0x9c/0x100
[  144.716866][ T6939]  ? lockdep_hardirqs_on+0x7c/0x110
[  144.716906][ T6939]  do_syscall_64+0xcd/0x250
[  144.716958][ T6939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.717000][ T6939] RIP: 0033:0x7f9ab778d169
[  144.717024][ T6939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.717052][ T6939] RSP: 002b:00007f9ab55f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  144.717081][ T6939] RAX: ffffffffffffffda RBX: 00007f9ab79a5fa0 RCX: 00007f9ab778d169
[  144.717102][ T6939] RDX: 0000000000000007 RSI: 0000400000000200 RDI: 0000000000000003
[  144.717121][ T6939] RBP: 00007f9ab55f6090 R08: 0000000000000000 R09: 0000000000000000
[  144.717140][ T6939] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  144.717159][ T6939] R13: 0000000000000000 R14: 00007f9ab79a5fa0 R15: 00007ffc743e9b38
[  144.717200][ T6939]  </TASK>
[  147.374983][ T6953] FAULT_INJECTION: forcing a failure.
[  147.374983][ T6953] name fail_futex, interval 1, probability 0, space 0, times 0
[  147.421125][ T6953] CPU: 1 UID: 0 PID: 6953 Comm: syz.3.285 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  147.421169][ T6953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  147.421186][ T6953] Call Trace:
[  147.421195][ T6953]  <TASK>
[  147.421206][ T6953]  dump_stack_lvl+0x16c/0x1f0
[  147.421253][ T6953]  should_fail_ex+0x50a/0x650
[  147.421302][ T6953]  ? __lock_acquire+0x15a9/0x3c40
[  147.421350][ T6953]  get_futex_key+0xac1/0x1000
[  147.421390][ T6953]  ? __pfx_get_futex_key+0x10/0x10
[  147.421439][ T6953]  futex_wake+0xe8/0x4e0
[  147.421486][ T6953]  ? __pfx_futex_wake+0x10/0x10
[  147.421536][ T6953]  ? find_held_lock+0x2d/0x110
[  147.421578][ T6953]  do_futex+0x1e5/0x350
[  147.421623][ T6953]  ? __pfx_do_futex+0x10/0x10
[  147.421655][ T6953]  ? __might_fault+0xe3/0x190
[  147.421682][ T6953]  ? __might_fault+0xe3/0x190
[  147.421712][ T6953]  mm_release+0x24e/0x300
[  147.421752][ T6953]  do_exit+0x886/0x2d70
[  147.421783][ T6953]  ? get_signal+0x8f7/0x26c0
[  147.421825][ T6953]  ? __pfx_do_exit+0x10/0x10
[  147.421853][ T6953]  ? do_raw_spin_lock+0x12d/0x2c0
[  147.421879][ T6953]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  147.421909][ T6953]  do_group_exit+0xd3/0x2a0
[  147.421940][ T6953]  get_signal+0x24ed/0x26c0
[  147.421994][ T6953]  ? __pfx_get_signal+0x10/0x10
[  147.422039][ T6953]  ? __pfx_do_futex+0x10/0x10
[  147.422076][ T6953]  arch_do_signal_or_restart+0x90/0x7e0
[  147.422108][ T6953]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  147.422148][ T6953]  ? ksys_mmap_pgoff+0x85/0x5c0
[  147.422182][ T6953]  ? rcu_is_watching+0x12/0xc0
[  147.422217][ T6953]  syscall_exit_to_user_mode+0x150/0x2a0
[  147.422258][ T6953]  do_syscall_64+0xda/0x250
[  147.422303][ T6953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.422344][ T6953] RIP: 0033:0x7feb1c98d169
[  147.422367][ T6953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.422395][ T6953] RSP: 002b:00007feb1d86f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  147.422422][ T6953] RAX: fffffffffffffe00 RBX: 00007feb1cba5fa8 RCX: 00007feb1c98d169
[  147.422441][ T6953] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007feb1cba5fa8
[  147.422458][ T6953] RBP: 00007feb1cba5fa0 R08: 0000000000000000 R09: 0000000000000000
[  147.422475][ T6953] R10: 0000000000000000 R11: 0000000000000246 R12: 00007feb1cba5fac
[  147.422492][ T6953] R13: 0000000000000000 R14: 00007ffed2356be0 R15: 00007ffed2356cc8
[  147.422526][ T6953]  </TASK>
[  150.297035][ T6997] netlink: 342 bytes leftover after parsing attributes in process `syz.2.296'.
[  150.811250][ T7004] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  151.276278][ T7014] FAULT_INJECTION: forcing a failure.
[  151.276278][ T7014] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.344505][ T7014] CPU: 1 UID: 0 PID: 7014 Comm: syz.0.300 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  151.344548][ T7014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  151.344565][ T7014] Call Trace:
[  151.344573][ T7014]  <TASK>
[  151.344585][ T7014]  dump_stack_lvl+0x16c/0x1f0
[  151.344632][ T7014]  should_fail_ex+0x50a/0x650
[  151.344688][ T7014]  _copy_to_user+0x32/0xd0
[  151.344725][ T7014]  simple_read_from_buffer+0xd0/0x160
[  151.344771][ T7014]  proc_fail_nth_read+0x198/0x270
[  151.344812][ T7014]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  151.344853][ T7014]  ? rw_verify_area+0xcf/0x680
[  151.344892][ T7014]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  151.344930][ T7014]  vfs_read+0x1df/0xbf0
[  151.344973][ T7014]  ? __fget_files+0x1fc/0x3a0
[  151.345020][ T7014]  ? __pfx___mutex_lock+0x10/0x10
[  151.345081][ T7014]  ? __pfx_vfs_read+0x10/0x10
[  151.345137][ T7014]  ? __fget_files+0x206/0x3a0
[  151.345195][ T7014]  ksys_read+0x12b/0x250
[  151.345239][ T7014]  ? __pfx_ksys_read+0x10/0x10
[  151.345303][ T7014]  do_syscall_64+0xcd/0x250
[  151.345350][ T7014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.345395][ T7014] RIP: 0033:0x7f9ab778bb7c
[  151.345420][ T7014] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  151.345449][ T7014] RSP: 002b:00007f9ab55f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  151.345479][ T7014] RAX: ffffffffffffffda RBX: 00007f9ab79a5fa0 RCX: 00007f9ab778bb7c
[  151.345501][ T7014] RDX: 000000000000000f RSI: 00007f9ab55f60a0 RDI: 0000000000000004
[  151.345520][ T7014] RBP: 00007f9ab55f6090 R08: 0000000000000000 R09: 0000000000000000
[  151.345544][ T7014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  151.345562][ T7014] R13: 0000000000000000 R14: 00007f9ab79a5fa0 R15: 00007ffc743e9b38
[  151.345603][ T7014]  </TASK>
[  152.647339][ T7037] FAULT_INJECTION: forcing a failure.
[  152.647339][ T7037] name failslab, interval 1, probability 0, space 0, times 0
[  152.664618][ T7037] CPU: 1 UID: 0 PID: 7037 Comm: syz.3.307 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  152.664661][ T7037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  152.664679][ T7037] Call Trace:
[  152.664687][ T7037]  <TASK>
[  152.664699][ T7037]  dump_stack_lvl+0x16c/0x1f0
[  152.664748][ T7037]  should_fail_ex+0x50a/0x650
[  152.664806][ T7037]  ? sctp_add_bind_addr+0x9a/0x3d0
[  152.664838][ T7037]  should_failslab+0xc2/0x120
[  152.664869][ T7037]  __kmalloc_cache_noprof+0x68/0x410
[  152.664934][ T7037]  sctp_add_bind_addr+0x9a/0x3d0
[  152.664974][ T7037]  sctp_copy_local_addr_list+0x39e/0x5a0
[  152.665021][ T7037]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  152.665070][ T7037]  ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360
[  152.665123][ T7037]  ? sctp_bind_addr_copy+0x331/0x530
[  152.665158][ T7037]  sctp_bind_addr_copy+0x331/0x530
[  152.665204][ T7037]  sctp_connect_new_asoc+0x1d8/0x790
[  152.665257][ T7037]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  152.665316][ T7037]  ? sctp_get_af_specific+0x62/0x70
[  152.665363][ T7037]  __sctp_connect+0x3f5/0xc60
[  152.665417][ T7037]  ? sctp_inet_connect+0xac/0x200
[  152.665466][ T7037]  ? __pfx___sctp_connect+0x10/0x10
[  152.665515][ T7037]  ? __pfx_sctp_inet_connect+0x10/0x10
[  152.665568][ T7037]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  152.665623][ T7037]  ? __pfx_sctp_inet_connect+0x10/0x10
[  152.665670][ T7037]  sctp_inet_connect+0x15f/0x200
[  152.665721][ T7037]  __sys_connect_file+0x13e/0x1a0
[  152.665764][ T7037]  __sys_connect+0x14f/0x170
[  152.665805][ T7037]  ? __pfx___sys_connect+0x10/0x10
[  152.665860][ T7037]  ? __pfx_ksys_write+0x10/0x10
[  152.665919][ T7037]  __x64_sys_connect+0x72/0xb0
[  152.665959][ T7037]  ? lockdep_hardirqs_on+0x7c/0x110
[  152.666001][ T7037]  do_syscall_64+0xcd/0x250
[  152.666047][ T7037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.666092][ T7037] RIP: 0033:0x7feb1c98d169
[  152.666117][ T7037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.666149][ T7037] RSP: 002b:00007feb1d86f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  152.666179][ T7037] RAX: ffffffffffffffda RBX: 00007feb1cba5fa0 RCX: 00007feb1c98d169
[  152.666200][ T7037] RDX: 0000000000000055 RSI: 0000400000000140 RDI: 0000000000000003
[  152.666220][ T7037] RBP: 00007feb1d86f090 R08: 0000000000000000 R09: 0000000000000000
[  152.666240][ T7037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  152.666258][ T7037] R13: 0000000000000000 R14: 00007feb1cba5fa0 R15: 00007ffed2356cc8
[  152.666299][ T7037]  </TASK>
[  153.491600][ T7042] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  153.975904][ T7053] sg_write: data in/out 32732/16086 bytes for SCSI command 0x0-- guessing data in;
[  153.975904][ T7053]    program syz.2.313 not setting count and/or reply_len properly
[  156.702001][ T7081] Setting dangerous option i915.request_timeout_ms - tainting kernel
[  157.173767][ T7088] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  157.415303][ T7095] bond0: option all_slaves_active: invalid value ()
[  157.590023][ T7095] syz.2.322 uses obsolete (PF_INET,SOCK_PACKET)
[  158.111446][ T7106] netlink: 28 bytes leftover after parsing attributes in process `syz.3.334'.
[  158.463154][ T7105] netlink: 28 bytes leftover after parsing attributes in process `syz.2.326'.
[  159.411778][ T7128] FAULT_INJECTION: forcing a failure.
[  159.411778][ T7128] name failslab, interval 1, probability 0, space 0, times 0
[  159.447477][ T7128] CPU: 1 UID: 0 PID: 7128 Comm: syz.2.330 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  159.447525][ T7128] Tainted: [U]=USER
[  159.447535][ T7128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  159.447553][ T7128] Call Trace:
[  159.447563][ T7128]  <TASK>
[  159.447574][ T7128]  dump_stack_lvl+0x16c/0x1f0
[  159.447623][ T7128]  should_fail_ex+0x50a/0x650
[  159.447674][ T7128]  ? fs_reclaim_acquire+0xae/0x150
[  159.447719][ T7128]  should_failslab+0xc2/0x120
[  159.447749][ T7128]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[  159.447801][ T7128]  ? do_user_addr_fault+0xdc7/0x13f0
[  159.447846][ T7128]  ? sock_alloc_inode+0x25/0x1c0
[  159.447884][ T7128]  ? __pfx_sock_alloc_inode+0x10/0x10
[  159.447915][ T7128]  sock_alloc_inode+0x25/0x1c0
[  159.447946][ T7128]  alloc_inode+0x5d/0x230
[  159.447977][ T7128]  sock_alloc+0x40/0x280
[  159.448028][ T7128]  __sock_create+0xc1/0x8d0
[  159.448064][ T7128]  ? __pfx_lock_release+0x10/0x10
[  159.448114][ T7128]  __sys_socket+0x14f/0x260
[  159.448152][ T7128]  ? __pfx___sys_socket+0x10/0x10
[  159.448193][ T7128]  ? do_user_addr_fault+0x83d/0x13f0
[  159.448243][ T7128]  __x64_sys_socket+0x72/0xb0
[  159.448279][ T7128]  ? lockdep_hardirqs_on+0x7c/0x110
[  159.448349][ T7128]  do_syscall_64+0xcd/0x250
[  159.448399][ T7128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.448446][ T7128] RIP: 0033:0x7f0ca438f087
[  159.448470][ T7128] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.448501][ T7128] RSP: 002b:00007f0ca21f4fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  159.448531][ T7128] RAX: ffffffffffffffda RBX: 00007f0ca45a6080 RCX: 00007f0ca438f087
[  159.448552][ T7128] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  159.448571][ T7128] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  159.448590][ T7128] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000001
[  159.448609][ T7128] R13: 0000000000000000 R14: 00007f0ca45a6080 R15: 00007ffccb72a9e8
[  159.448648][ T7128]  </TASK>
[  159.448860][ T7128] socket: no more sockets
[  159.587342][ T7130] ima: policy update failed
[  159.669855][   T29] audit: type=1802 audit(1740803676.399:3): pid=7130 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.329" res=0 errno=0
[  160.197789][ T7139] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  160.841626][ T7163] FAULT_INJECTION: forcing a failure.
[  160.841626][ T7163] name failslab, interval 1, probability 0, space 0, times 0
[  160.909444][ T7163] CPU: 1 UID: 0 PID: 7163 Comm: syz.1.341 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  160.909496][ T7163] Tainted: [U]=USER
[  160.909506][ T7163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  160.909525][ T7163] Call Trace:
[  160.909533][ T7163]  <TASK>
[  160.909545][ T7163]  dump_stack_lvl+0x16c/0x1f0
[  160.909594][ T7163]  should_fail_ex+0x50a/0x650
[  160.909651][ T7163]  ? fs_reclaim_acquire+0xae/0x150
[  160.909694][ T7163]  ? init_srcu_struct_fields+0x9a7/0xdd0
[  160.909741][ T7163]  should_failslab+0xc2/0x120
[  160.909771][ T7163]  __kmalloc_cache_noprof+0x68/0x410
[  160.909825][ T7163]  init_srcu_struct_fields+0x9a7/0xdd0
[  160.909883][ T7163]  blk_mq_alloc_tag_set+0x389/0x1240
[  160.909932][ T7163]  ? lockdep_init_map_type+0x16d/0x7d0
[  160.909986][ T7163]  nbd_dev_add+0x34b/0xbc0
[  160.910022][ T7163]  ? __pfx_nbd_dev_add+0x10/0x10
[  160.910055][ T7163]  ? idr_get_next_ul+0x197/0x2e0
[  160.910113][ T7163]  ? idr_get_next+0xed/0x150
[  160.910163][ T7163]  nbd_genl_connect+0x8b1/0x1c00
[  160.910208][ T7163]  ? __pfx_nbd_genl_connect+0x10/0x10
[  160.910247][ T7163]  ? __nla_parse+0x40/0x60
[  160.910289][ T7163]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  160.910343][ T7163]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  160.910406][ T7163]  genl_family_rcv_msg_doit+0x202/0x2f0
[  160.910465][ T7163]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  160.910516][ T7163]  ? genl_get_cmd+0x195/0x580
[  160.910576][ T7163]  ? __radix_tree_lookup+0x21f/0x2c0
[  160.910623][ T7163]  genl_rcv_msg+0x565/0x800
[  160.910678][ T7163]  ? __pfx_genl_rcv_msg+0x10/0x10
[  160.910732][ T7163]  ? __pfx_nbd_genl_connect+0x10/0x10
[  160.910786][ T7163]  netlink_rcv_skb+0x16b/0x440
[  160.910830][ T7163]  ? __pfx_genl_rcv_msg+0x10/0x10
[  160.910884][ T7163]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  160.910947][ T7163]  ? down_read+0xc9/0x330
[  160.910994][ T7163]  ? __pfx_down_read+0x10/0x10
[  160.911043][ T7163]  ? netlink_deliver_tap+0x1ae/0xd30
[  160.911093][ T7163]  genl_rcv+0x28/0x40
[  160.911138][ T7163]  netlink_unicast+0x53c/0x7f0
[  160.911188][ T7163]  ? __pfx_netlink_unicast+0x10/0x10
[  160.911234][ T7163]  ? __phys_addr_symbol+0x30/0x80
[  160.911268][ T7163]  ? __check_object_size+0x488/0x710
[  160.911306][ T7163]  netlink_sendmsg+0x8b8/0xd70
[  160.911357][ T7163]  ? __pfx_netlink_sendmsg+0x10/0x10
[  160.911419][ T7163]  ____sys_sendmsg+0xaaf/0xc90
[  160.911466][ T7163]  ? copy_msghdr_from_user+0x10b/0x160
[  160.911514][ T7163]  ? __pfx_____sys_sendmsg+0x10/0x10
[  160.911571][ T7163]  ___sys_sendmsg+0x135/0x1e0
[  160.911622][ T7163]  ? __pfx____sys_sendmsg+0x10/0x10
[  160.911688][ T7163]  ? __pfx_lock_release+0x10/0x10
[  160.911732][ T7163]  ? trace_lock_acquire+0x14e/0x1f0
[  160.911784][ T7163]  ? __fget_files+0x206/0x3a0
[  160.911843][ T7163]  __sys_sendmsg+0x16e/0x220
[  160.911892][ T7163]  ? __pfx___sys_sendmsg+0x10/0x10
[  160.911967][ T7163]  do_syscall_64+0xcd/0x250
[  160.912014][ T7163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.912058][ T7163] RIP: 0033:0x7f82cc98d169
[  160.912083][ T7163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.912113][ T7163] RSP: 002b:00007f82cd710038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  160.912142][ T7163] RAX: ffffffffffffffda RBX: 00007f82ccba5fa0 RCX: 00007f82cc98d169
[  160.912162][ T7163] RDX: 0000000000048080 RSI: 0000400000001e00 RDI: 0000000000000003
[  160.912181][ T7163] RBP: 00007f82cd710090 R08: 0000000000000000 R09: 0000000000000000
[  160.912200][ T7163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.912219][ T7163] R13: 0000000000000000 R14: 00007f82ccba5fa0 R15: 00007ffd9aca2b38
[  160.912259][ T7163]  </TASK>
[  160.912300][ T7163] nbd: failed to add new device
[  161.332983][ T7161] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  162.095990][ T7184] block nbd8: Cannot use ioctl interface on a netlink controlled device.
[  162.311022][ T7182] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  163.048535][ T7199] FAULT_INJECTION: forcing a failure.
[  163.048535][ T7199] name failslab, interval 1, probability 0, space 0, times 0
[  163.164829][ T7199] CPU: 0 UID: 0 PID: 7199 Comm: syz.2.350 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  163.164878][ T7199] Tainted: [U]=USER
[  163.164888][ T7199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  163.164906][ T7199] Call Trace:
[  163.164915][ T7199]  <TASK>
[  163.164927][ T7199]  dump_stack_lvl+0x16c/0x1f0
[  163.164975][ T7199]  should_fail_ex+0x50a/0x650
[  163.165033][ T7199]  should_failslab+0xc2/0x120
[  163.165065][ T7199]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  163.165118][ T7199]  ? skb_clone+0x190/0x3f0
[  163.165174][ T7199]  skb_clone+0x190/0x3f0
[  163.165224][ T7199]  sctp_ulpevent_make_rcvmsg+0x2f2/0xa90
[  163.165281][ T7199]  sctp_ulpq_tail_data+0xbf/0xf40
[  163.165311][ T7199]  ? sctp_eat_data+0xbb5/0x1920
[  163.165365][ T7199]  ? __pfx_sctp_ulpq_tail_data+0x10/0x10
[  163.165411][ T7199]  ? sctp_sf_eat_data_6_2+0x56f/0xbb0
[  163.165460][ T7199]  ? __pfx_sctp_ulpq_tail_data+0x10/0x10
[  163.165492][ T7199]  sctp_do_sm+0x1dc9/0x5c90
[  163.165558][ T7199]  ? __pfx_sctp_do_sm+0x10/0x10
[  163.165612][ T7199]  ? hlock_class+0x4e/0x130
[  163.165686][ T7199]  ? mark_held_locks+0x9f/0xe0
[  163.165734][ T7199]  ? ktime_get+0x200/0x310
[  163.165773][ T7199]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.165821][ T7199]  sctp_assoc_bh_rcv+0x392/0x6f0
[  163.165879][ T7199]  sctp_inq_push+0x1d8/0x270
[  163.165928][ T7199]  sctp_backlog_rcv+0x169/0x590
[  163.165965][ T7199]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[  163.165998][ T7199]  __release_sock+0x35f/0x400
[  163.166046][ T7199]  ? release_sock+0x21/0x220
[  163.166105][ T7199]  release_sock+0x5a/0x220
[  163.166154][ T7199]  sctp_sendmsg+0xf2c/0x1eb0
[  163.166217][ T7199]  ? __pfx_sctp_sendmsg+0x10/0x10
[  163.166292][ T7199]  ? __pfx_aa_sk_perm+0x10/0x10
[  163.166342][ T7199]  ? __pfx_sctp_sendmsg+0x10/0x10
[  163.166396][ T7199]  inet_sendmsg+0x119/0x140
[  163.166448][ T7199]  ____sys_sendmsg+0x98c/0xc90
[  163.166485][ T7199]  ? copy_msghdr_from_user+0x10b/0x160
[  163.166534][ T7199]  ? __pfx_____sys_sendmsg+0x10/0x10
[  163.166567][ T7199]  ? __lock_acquire+0xcc5/0x3c40
[  163.166634][ T7199]  ___sys_sendmsg+0x135/0x1e0
[  163.166683][ T7199]  ? __pfx____sys_sendmsg+0x10/0x10
[  163.166748][ T7199]  ? trace_lock_acquire+0x14e/0x1f0
[  163.166815][ T7199]  __sys_sendmmsg+0x201/0x420
[  163.166869][ T7199]  ? __pfx___sys_sendmmsg+0x10/0x10
[  163.166932][ T7199]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  163.166994][ T7199]  ? fput+0x67/0x440
[  163.167026][ T7199]  ? ksys_write+0x1ba/0x250
[  163.167071][ T7199]  ? __pfx_ksys_write+0x10/0x10
[  163.167124][ T7199]  __x64_sys_sendmmsg+0x9c/0x100
[  163.167172][ T7199]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.167213][ T7199]  do_syscall_64+0xcd/0x250
[  163.167259][ T7199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.167305][ T7199] RIP: 0033:0x7f0ca438d169
[  163.167329][ T7199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.167367][ T7199] RSP: 002b:00007f0ca5116038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  163.167396][ T7199] RAX: ffffffffffffffda RBX: 00007f0ca45a5fa0 RCX: 00007f0ca438d169
[  163.167417][ T7199] RDX: 0000000000000003 RSI: 0000400000000080 RDI: 0000000000000003
[  163.167437][ T7199] RBP: 00007f0ca5116090 R08: 0000000000000000 R09: 0000000000000000
[  163.167457][ T7199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  163.167476][ T7199] R13: 0000000000000000 R14: 00007f0ca45a5fa0 R15: 00007ffccb72a9e8
[  163.167527][ T7199]  </TASK>
[  163.267768][ T7218] netlink: 4 bytes leftover after parsing attributes in process `syz.1.355'.
[  163.522858][    C0] vkms_vblank_simulate: vblank timer overrun
[  164.668571][ T7239] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  166.033100][ T7282] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  166.958729][ T7315] bond0: option all_slaves_active: invalid value ()
[  167.039546][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  167.046177][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  167.986953][ T7335] netlink: 4 bytes leftover after parsing attributes in process `syz.0.382'.
[  168.028343][ T7335] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  168.717999][ T7358] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  169.120649][ T7372] aoe: skb alloc failure
[  169.160126][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  169.166590][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  169.678548][ T7384] netlink: 2 bytes leftover after parsing attributes in process `syz.1.395'.
[  169.937399][ T7388] netlink: 4 bytes leftover after parsing attributes in process `syz.2.397'.
[  169.964528][ T7388] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  170.461633][ T7399] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  171.830845][ T7425] FAULT_INJECTION: forcing a failure.
[  171.830845][ T7425] name failslab, interval 1, probability 0, space 0, times 0
[  171.877182][ T7425] CPU: 0 UID: 0 PID: 7425 Comm: syz.2.405 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  171.877232][ T7425] Tainted: [U]=USER
[  171.877243][ T7425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  171.877261][ T7425] Call Trace:
[  171.877270][ T7425]  <TASK>
[  171.877282][ T7425]  dump_stack_lvl+0x16c/0x1f0
[  171.877344][ T7425]  should_fail_ex+0x50a/0x650
[  171.877404][ T7425]  should_failslab+0xc2/0x120
[  171.877436][ T7425]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  171.877486][ T7425]  ? skb_clone+0x190/0x3f0
[  171.877538][ T7425]  skb_clone+0x190/0x3f0
[  171.877588][ T7425]  netlink_deliver_tap+0xabd/0xd30
[  171.877641][ T7425]  netlink_unicast+0x6b4/0x7f0
[  171.877691][ T7425]  ? __pfx_netlink_unicast+0x10/0x10
[  171.877735][ T7425]  ? rtnetlink_rcv_msg+0x3e6/0xea0
[  171.877794][ T7425]  netlink_ack+0x6ac/0xb80
[  171.877851][ T7425]  netlink_rcv_skb+0x348/0x440
[  171.877897][ T7425]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  171.877947][ T7425]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  171.878015][ T7425]  ? netlink_deliver_tap+0x1ae/0xd30
[  171.878068][ T7425]  netlink_unicast+0x53c/0x7f0
[  171.878118][ T7425]  ? __pfx_netlink_unicast+0x10/0x10
[  171.878166][ T7425]  ? __phys_addr_symbol+0x30/0x80
[  171.878199][ T7425]  ? __check_object_size+0x488/0x710
[  171.878237][ T7425]  netlink_sendmsg+0x8b8/0xd70
[  171.878290][ T7425]  ? __pfx_netlink_sendmsg+0x10/0x10
[  171.878359][ T7425]  ____sys_sendmsg+0xaaf/0xc90
[  171.878396][ T7425]  ? copy_msghdr_from_user+0x10b/0x160
[  171.878445][ T7425]  ? __pfx_____sys_sendmsg+0x10/0x10
[  171.878501][ T7425]  ___sys_sendmsg+0x135/0x1e0
[  171.878552][ T7425]  ? __pfx____sys_sendmsg+0x10/0x10
[  171.878619][ T7425]  ? __pfx_lock_release+0x10/0x10
[  171.878663][ T7425]  ? trace_lock_acquire+0x14e/0x1f0
[  171.878715][ T7425]  ? __fget_files+0x206/0x3a0
[  171.878773][ T7425]  __sys_sendmsg+0x16e/0x220
[  171.878823][ T7425]  ? __pfx___sys_sendmsg+0x10/0x10
[  171.878899][ T7425]  do_syscall_64+0xcd/0x250
[  171.878947][ T7425]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.878994][ T7425] RIP: 0033:0x7f0ca438d169
[  171.879019][ T7425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.879051][ T7425] RSP: 002b:00007f0ca5116038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  171.879081][ T7425] RAX: ffffffffffffffda RBX: 00007f0ca45a5fa0 RCX: 00007f0ca438d169
[  171.879102][ T7425] RDX: 0000000000000040 RSI: 0000400000002cc0 RDI: 0000000000000003
[  171.879121][ T7425] RBP: 00007f0ca5116090 R08: 0000000000000000 R09: 0000000000000000
[  171.879141][ T7425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.879160][ T7425] R13: 0000000000000000 R14: 00007f0ca45a5fa0 R15: 00007ffccb72a9e8
[  171.879201][ T7425]  </TASK>
[  172.244141][ T7429] netlink: 4 bytes leftover after parsing attributes in process `syz.0.408'.
[  172.258550][ T7429] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  172.609858][ T7434] netlink: 4 bytes leftover after parsing attributes in process `syz.2.409'.
[  172.636444][ T7436] openvswitch: netlink: IP tunnel dst address not specified
[  172.900366][ T7434] FAULT_INJECTION: forcing a failure.
[  172.900366][ T7434] name failslab, interval 1, probability 0, space 0, times 0
[  172.914637][ T7434] CPU: 0 UID: 0 PID: 7434 Comm: syz.2.409 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  172.914685][ T7434] Tainted: [U]=USER
[  172.914696][ T7434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  172.914715][ T7434] Call Trace:
[  172.914725][ T7434]  <TASK>
[  172.914737][ T7434]  dump_stack_lvl+0x16c/0x1f0
[  172.914787][ T7434]  should_fail_ex+0x50a/0x650
[  172.914839][ T7434]  ? fs_reclaim_acquire+0xae/0x150
[  172.914886][ T7434]  ? ieee80211_init_rate_ctrl_alg+0x175/0x6b0
[  172.914931][ T7434]  should_failslab+0xc2/0x120
[  172.914963][ T7434]  __kmalloc_cache_noprof+0x68/0x410
[  172.915012][ T7434]  ? ieee80211_txq_set_params+0x1c4/0x2f0
[  172.915067][ T7434]  ieee80211_init_rate_ctrl_alg+0x175/0x6b0
[  172.915119][ T7434]  ieee80211_register_hw+0x20cd/0x4060
[  172.915192][ T7434]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  172.915238][ T7434]  ? net_generic+0xea/0x2a0
[  172.915282][ T7434]  ? lockdep_init_map_type+0x16d/0x7d0
[  172.915334][ T7434]  ? __asan_memset+0x23/0x50
[  172.915378][ T7434]  ? __hrtimer_init+0x106/0x2c0
[  172.915435][ T7434]  mac80211_hwsim_new_radio+0x304e/0x54e0
[  172.915511][ T7434]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  172.915573][ T7434]  hwsim_new_radio_nl+0xb42/0x12b0
[  172.915625][ T7434]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  172.915687][ T7434]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  172.915742][ T7434]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  172.915811][ T7434]  genl_family_rcv_msg_doit+0x202/0x2f0
[  172.915868][ T7434]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  172.915922][ T7434]  ? trace_cap_capable+0x1a2/0x210
[  172.915968][ T7434]  ? bpf_lsm_capable+0x9/0x10
[  172.916002][ T7434]  ? security_capable+0x7e/0x260
[  172.916038][ T7434]  ? ns_capable+0xd7/0x110
[  172.916090][ T7434]  genl_rcv_msg+0x565/0x800
[  172.916146][ T7434]  ? __pfx_genl_rcv_msg+0x10/0x10
[  172.916207][ T7434]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  172.916272][ T7434]  netlink_rcv_skb+0x16b/0x440
[  172.916318][ T7434]  ? __pfx_genl_rcv_msg+0x10/0x10
[  172.916374][ T7434]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  172.916438][ T7434]  ? down_read+0xc9/0x330
[  172.916485][ T7434]  ? __pfx_down_read+0x10/0x10
[  172.916534][ T7434]  ? netlink_deliver_tap+0x1ae/0xd30
[  172.916585][ T7434]  genl_rcv+0x28/0x40
[  172.916631][ T7434]  netlink_unicast+0x53c/0x7f0
[  172.916682][ T7434]  ? __pfx_netlink_unicast+0x10/0x10
[  172.916730][ T7434]  ? __phys_addr_symbol+0x30/0x80
[  172.916764][ T7434]  ? __check_object_size+0x488/0x710
[  172.916803][ T7434]  netlink_sendmsg+0x8b8/0xd70
[  172.916858][ T7434]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.916922][ T7434]  ____sys_sendmsg+0xaaf/0xc90
[  172.916960][ T7434]  ? copy_msghdr_from_user+0x10b/0x160
[  172.917010][ T7434]  ? __pfx_____sys_sendmsg+0x10/0x10
[  172.917068][ T7434]  ___sys_sendmsg+0x135/0x1e0
[  172.917120][ T7434]  ? __pfx____sys_sendmsg+0x10/0x10
[  172.917196][ T7434]  ? __pfx_lock_release+0x10/0x10
[  172.917243][ T7434]  ? trace_lock_acquire+0x14e/0x1f0
[  172.917299][ T7434]  ? __fget_files+0x206/0x3a0
[  172.917360][ T7434]  __sys_sendmsg+0x16e/0x220
[  172.917410][ T7434]  ? __pfx___sys_sendmsg+0x10/0x10
[  172.917459][ T7434]  ? __x64_sys_futex+0x1e1/0x4c0
[  172.917532][ T7434]  do_syscall_64+0xcd/0x250
[  172.917580][ T7434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.917625][ T7434] RIP: 0033:0x7f0ca438d169
[  172.917650][ T7434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.917682][ T7434] RSP: 002b:00007f0ca5116038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  172.917712][ T7434] RAX: ffffffffffffffda RBX: 00007f0ca45a5fa0 RCX: 00007f0ca438d169
[  172.917734][ T7434] RDX: 00000000040000c0 RSI: 0000400000000300 RDI: 0000000000000007
[  172.917754][ T7434] RBP: 00007f0ca440e2a0 R08: 0000000000000000 R09: 0000000000000000
[  172.917773][ T7434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  172.917793][ T7434] R13: 0000000000000000 R14: 00007f0ca45a5fa0 R15: 00007ffccb72a9e8
[  172.917836][ T7434]  </TASK>
[  172.920492][ T7434] ieee80211 phy15: Failed to select rate control algorithm
[  173.926552][ T7454] netlink: 28 bytes leftover after parsing attributes in process `syz.0.416'.
[  173.960723][ T7454] veth1_macvtap: left promiscuous mode
[  173.971420][ T7454] macsec0: entered allmulticast mode
[  175.004238][ T7463] netlink: 4 bytes leftover after parsing attributes in process `syz.3.419'.
[  175.049201][ T7463] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  176.083163][ T7487] sctp: failed to load transform for md5: -4
[  176.173213][ T7496] netlink: 4 bytes leftover after parsing attributes in process `syz.0.426'.
[  177.249965][   T29] audit: type=1800 audit(1740803694.059:4): pid=7504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.429" name="discovery_nqn" dev="configfs" ino=15008 res=0 errno=0
[  177.937554][ T7518] netlink: 334 bytes leftover after parsing attributes in process `syz.1.433'.
[  178.379644][ T7521] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  179.437206][   T29] audit: type=1800 audit(1740803696.249:5): pid=7538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.440" name="discovery_nqn" dev="configfs" ino=15050 res=0 errno=0
[  180.944652][ T7577] FAULT_INJECTION: forcing a failure.
[  180.944652][ T7577] name failslab, interval 1, probability 0, space 0, times 0
[  180.978350][ T7577] CPU: 1 UID: 0 PID: 7577 Comm: syz.1.448 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  180.978400][ T7577] Tainted: [U]=USER
[  180.978410][ T7577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  180.978428][ T7577] Call Trace:
[  180.978437][ T7577]  <TASK>
[  180.978447][ T7577]  dump_stack_lvl+0x16c/0x1f0
[  180.978496][ T7577]  should_fail_ex+0x50a/0x650
[  180.978555][ T7577]  ? sctp_add_bind_addr+0x9a/0x3d0
[  180.978588][ T7577]  should_failslab+0xc2/0x120
[  180.978620][ T7577]  __kmalloc_cache_noprof+0x68/0x410
[  180.978686][ T7577]  sctp_add_bind_addr+0x9a/0x3d0
[  180.978727][ T7577]  sctp_copy_local_addr_list+0x39e/0x5a0
[  180.978778][ T7577]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  180.978829][ T7577]  ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360
[  180.978882][ T7577]  ? sctp_bind_addr_copy+0x331/0x530
[  180.978920][ T7577]  sctp_bind_addr_copy+0x331/0x530
[  180.978967][ T7577]  sctp_connect_new_asoc+0x1d8/0x790
[  180.979022][ T7577]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  180.979081][ T7577]  ? sctp_get_af_specific+0x62/0x70
[  180.979131][ T7577]  __sctp_connect+0x3f5/0xc60
[  180.979186][ T7577]  ? sctp_inet_connect+0xac/0x200
[  180.979237][ T7577]  ? __pfx___sctp_connect+0x10/0x10
[  180.979288][ T7577]  ? __pfx_sctp_inet_connect+0x10/0x10
[  180.979345][ T7577]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.979401][ T7577]  ? __pfx_sctp_inet_connect+0x10/0x10
[  180.979450][ T7577]  sctp_inet_connect+0x15f/0x200
[  180.979502][ T7577]  __sys_connect_file+0x13e/0x1a0
[  180.979551][ T7577]  __sys_connect+0x14f/0x170
[  180.979592][ T7577]  ? __pfx___sys_connect+0x10/0x10
[  180.979651][ T7577]  ? __pfx_ksys_write+0x10/0x10
[  180.979715][ T7577]  __x64_sys_connect+0x72/0xb0
[  180.979756][ T7577]  ? lockdep_hardirqs_on+0x7c/0x110
[  180.979798][ T7577]  do_syscall_64+0xcd/0x250
[  180.979845][ T7577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.979892][ T7577] RIP: 0033:0x7f82cc98d169
[  180.979916][ T7577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.979948][ T7577] RSP: 002b:00007f82cd710038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  180.979979][ T7577] RAX: ffffffffffffffda RBX: 00007f82ccba5fa0 RCX: 00007f82cc98d169
[  180.980000][ T7577] RDX: 0000000000000055 RSI: 0000400000000140 RDI: 0000000000000003
[  180.980020][ T7577] RBP: 00007f82cd710090 R08: 0000000000000000 R09: 0000000000000000
[  180.980040][ T7577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  180.980059][ T7577] R13: 0000000000000000 R14: 00007f82ccba5fa0 R15: 00007ffd9aca2b38
[  180.980100][ T7577]  </TASK>
[  181.242636][    C1] vkms_vblank_simulate: vblank timer overrun
[  182.111192][   T29] audit: type=1800 audit(1740803698.919:6): pid=7590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.450" name="discovery_nqn" dev="configfs" ino=15264 res=0 errno=0
[  182.642406][ T7610] FAULT_INJECTION: forcing a failure.
[  182.642406][ T7610] name failslab, interval 1, probability 0, space 0, times 0
[  182.666762][ T7610] CPU: 0 UID: 0 PID: 7610 Comm: syz.2.457 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  182.666811][ T7610] Tainted: [U]=USER
[  182.666821][ T7610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  182.666845][ T7610] Call Trace:
[  182.666854][ T7610]  <TASK>
[  182.666869][ T7610]  dump_stack_lvl+0x16c/0x1f0
[  182.666919][ T7610]  should_fail_ex+0x50a/0x650
[  182.666971][ T7610]  ? fs_reclaim_acquire+0xae/0x150
[  182.667016][ T7610]  should_failslab+0xc2/0x120
[  182.667048][ T7610]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  182.667101][ T7610]  ? ptlock_alloc+0x1f/0x70
[  182.667155][ T7610]  ptlock_alloc+0x1f/0x70
[  182.667202][ T7610]  pte_alloc_one+0x74/0x390
[  182.667253][ T7610]  __pte_alloc+0x6e/0x3d0
[  182.667291][ T7610]  ? __pfx___pte_alloc+0x10/0x10
[  182.667329][ T7610]  ? __pfx_lock_release+0x10/0x10
[  182.667375][ T7610]  ? do_raw_spin_lock+0x12d/0x2c0
[  182.667410][ T7610]  do_pte_missing+0x2828/0x3e10
[  182.667473][ T7610]  ? _raw_spin_unlock+0x28/0x50
[  182.667508][ T7610]  ? __pmd_alloc+0x3c2/0x870
[  182.667562][ T7610]  __handle_mm_fault+0x1166/0x2c60
[  182.667623][ T7610]  ? __pfx___handle_mm_fault+0x10/0x10
[  182.667714][ T7610]  handle_mm_fault+0x3fa/0xaa0
[  182.667773][ T7610]  __get_user_pages+0x773/0x36f0
[  182.667834][ T7610]  ? __pfx___get_user_pages+0x10/0x10
[  182.667882][ T7610]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  182.667942][ T7610]  get_user_pages_remote+0x25e/0xb30
[  182.667999][ T7610]  ? __pfx_get_user_pages_remote+0x10/0x10
[  182.668046][ T7610]  ? find_held_lock+0x2d/0x110
[  182.668095][ T7610]  get_arg_page+0xf3/0x310
[  182.668138][ T7610]  ? __pfx_get_arg_page+0x10/0x10
[  182.668178][ T7610]  ? __might_fault+0xe3/0x190
[  182.668211][ T7610]  ? __might_fault+0xe3/0x190
[  182.668250][ T7610]  copy_string_kernel+0x197/0x250
[  182.668295][ T7610]  ? count.constprop.0.isra.0+0xf4/0x170
[  182.668343][ T7610]  do_execveat_common.isra.0+0x2eb/0x610
[  182.668398][ T7610]  __x64_sys_execve+0x8c/0xb0
[  182.668447][ T7610]  do_syscall_64+0xcd/0x250
[  182.668494][ T7610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.668547][ T7610] RIP: 0033:0x7f0ca438d169
[  182.668572][ T7610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.668604][ T7610] RSP: 002b:00007f0ca5116038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  182.668634][ T7610] RAX: ffffffffffffffda RBX: 00007f0ca45a5fa0 RCX: 00007f0ca438d169
[  182.668655][ T7610] RDX: 0000400000000200 RSI: 0000000000000000 RDI: 0000400000000040
[  182.668675][ T7610] RBP: 00007f0ca5116090 R08: 0000000000000000 R09: 0000000000000000
[  182.668695][ T7610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  182.668715][ T7610] R13: 0000000000000000 R14: 00007f0ca45a5fa0 R15: 00007ffccb72a9e8
[  182.668755][ T7610]  </TASK>
[  183.823168][ T7633] netlink: 4 bytes leftover after parsing attributes in process `syz.3.463'.
[  183.843213][ T7633] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  184.148897][ T7644] FAULT_INJECTION: forcing a failure.
[  184.148897][ T7644] name failslab, interval 1, probability 0, space 0, times 0
[  184.194494][ T7644] CPU: 1 UID: 0 PID: 7644 Comm: syz.3.468 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  184.194545][ T7644] Tainted: [U]=USER
[  184.194556][ T7644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  184.194575][ T7644] Call Trace:
[  184.194584][ T7644]  <TASK>
[  184.194597][ T7644]  dump_stack_lvl+0x16c/0x1f0
[  184.194646][ T7644]  should_fail_ex+0x50a/0x650
[  184.194697][ T7644]  ? fs_reclaim_acquire+0xae/0x150
[  184.194743][ T7644]  should_failslab+0xc2/0x120
[  184.194774][ T7644]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  184.194823][ T7644]  ? lockdep_init_map_type+0x16d/0x7d0
[  184.194872][ T7644]  ? security_inode_alloc+0x3b/0x2b0
[  184.194915][ T7644]  security_inode_alloc+0x3b/0x2b0
[  184.194952][ T7644]  inode_init_always_gfp+0xce4/0x1030
[  184.195007][ T7644]  alloc_inode+0x82/0x230
[  184.195037][ T7644]  sock_alloc+0x40/0x280
[  184.195090][ T7644]  __sock_create+0xc1/0x8d0
[  184.195127][ T7644]  ? __pfx_lock_release+0x10/0x10
[  184.195184][ T7644]  __sys_socket+0x14f/0x260
[  184.195221][ T7644]  ? __pfx___sys_socket+0x10/0x10
[  184.195263][ T7644]  ? do_user_addr_fault+0x83d/0x13f0
[  184.195312][ T7644]  __x64_sys_socket+0x72/0xb0
[  184.195348][ T7644]  ? lockdep_hardirqs_on+0x7c/0x110
[  184.195389][ T7644]  do_syscall_64+0xcd/0x250
[  184.195436][ T7644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.195482][ T7644] RIP: 0033:0x7feb1c98f087
[  184.195508][ T7644] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.195539][ T7644] RSP: 002b:00007feb1d84cfa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  184.195570][ T7644] RAX: ffffffffffffffda RBX: 00007feb1cba6080 RCX: 00007feb1c98f087
[  184.195591][ T7644] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  184.195610][ T7644] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  184.195629][ T7644] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000001
[  184.195648][ T7644] R13: 0000000000000000 R14: 00007feb1cba6080 R15: 00007ffed2356cc8
[  184.195686][ T7644]  </TASK>
[  184.195726][ T7644] socket: no more sockets
[  184.475888][ T7650] bridge0: port 3(gretap0) entered blocking state
[  184.482557][ T7650] bridge0: port 3(gretap0) entered disabled state
[  184.491171][ T7650] gretap0: entered allmulticast mode
[  184.500348][ T7650] gretap0: entered promiscuous mode
[  184.531163][ T7650] bridge0: port 3(gretap0) entered blocking state
[  184.539167][ T7650] bridge0: port 3(gretap0) entered forwarding state
[  184.648595][ T7650] netlink: 12 bytes leftover after parsing attributes in process `syz.1.469'.
[  185.023166][ T7663] nbd: must specify at least one socket
[  185.408135][ T7671] FAULT_INJECTION: forcing a failure.
[  185.408135][ T7671] name failslab, interval 1, probability 0, space 0, times 0
[  185.421131][ T7671] CPU: 0 UID: 0 PID: 7671 Comm: syz.0.475 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  185.421174][ T7671] Tainted: [U]=USER
[  185.421184][ T7671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  185.421202][ T7671] Call Trace:
[  185.421211][ T7671]  <TASK>
[  185.421222][ T7671]  dump_stack_lvl+0x16c/0x1f0
[  185.421270][ T7671]  should_fail_ex+0x50a/0x650
[  185.421320][ T7671]  ? fs_reclaim_acquire+0xae/0x150
[  185.421377][ T7671]  should_failslab+0xc2/0x120
[  185.421409][ T7671]  __kmalloc_node_noprof+0xd1/0x510
[  185.421459][ T7671]  ? init_srcu_struct_fields+0x4a7/0xdd0
[  185.421510][ T7671]  ? blk_mq_alloc_tag_set+0x414/0x1240
[  185.421558][ T7671]  blk_mq_alloc_tag_set+0x414/0x1240
[  185.421605][ T7671]  ? lockdep_init_map_type+0x16d/0x7d0
[  185.421660][ T7671]  nbd_dev_add+0x34b/0xbc0
[  185.421698][ T7671]  ? __pfx_nbd_dev_add+0x10/0x10
[  185.421732][ T7671]  ? idr_get_next_ul+0x197/0x2e0
[  185.421795][ T7671]  ? idr_get_next+0xed/0x150
[  185.421847][ T7671]  nbd_genl_connect+0x8b1/0x1c00
[  185.421892][ T7671]  ? __pfx_nbd_genl_connect+0x10/0x10
[  185.421925][ T7671]  ? __nla_parse+0x40/0x60
[  185.421967][ T7671]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  185.422013][ T7671]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  185.422064][ T7671]  genl_family_rcv_msg_doit+0x202/0x2f0
[  185.422111][ T7671]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  185.422154][ T7671]  ? genl_get_cmd+0x195/0x580
[  185.422203][ T7671]  ? __radix_tree_lookup+0x21f/0x2c0
[  185.422240][ T7671]  genl_rcv_msg+0x565/0x800
[  185.422285][ T7671]  ? __pfx_genl_rcv_msg+0x10/0x10
[  185.422328][ T7671]  ? __pfx_nbd_genl_connect+0x10/0x10
[  185.422377][ T7671]  netlink_rcv_skb+0x16b/0x440
[  185.422415][ T7671]  ? __pfx_genl_rcv_msg+0x10/0x10
[  185.422458][ T7671]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  185.422508][ T7671]  ? down_read+0xc9/0x330
[  185.422546][ T7671]  ? __pfx_down_read+0x10/0x10
[  185.422585][ T7671]  ? netlink_deliver_tap+0x1ae/0xd30
[  185.422624][ T7671]  genl_rcv+0x28/0x40
[  185.422661][ T7671]  netlink_unicast+0x53c/0x7f0
[  185.422702][ T7671]  ? __pfx_netlink_unicast+0x10/0x10
[  185.422740][ T7671]  ? __phys_addr_symbol+0x30/0x80
[  185.422767][ T7671]  ? __check_object_size+0x488/0x710
[  185.422798][ T7671]  netlink_sendmsg+0x8b8/0xd70
[  185.422840][ T7671]  ? __pfx_netlink_sendmsg+0x10/0x10
[  185.422889][ T7671]  ____sys_sendmsg+0xaaf/0xc90
[  185.422919][ T7671]  ? copy_msghdr_from_user+0x10b/0x160
[  185.422959][ T7671]  ? __pfx_____sys_sendmsg+0x10/0x10
[  185.423003][ T7671]  ___sys_sendmsg+0x135/0x1e0
[  185.423044][ T7671]  ? __pfx____sys_sendmsg+0x10/0x10
[  185.423099][ T7671]  ? __pfx_lock_release+0x10/0x10
[  185.423136][ T7671]  ? trace_lock_acquire+0x14e/0x1f0
[  185.423178][ T7671]  ? __fget_files+0x206/0x3a0
[  185.423226][ T7671]  __sys_sendmsg+0x16e/0x220
[  185.423266][ T7671]  ? __pfx___sys_sendmsg+0x10/0x10
[  185.423327][ T7671]  do_syscall_64+0xcd/0x250
[  185.423371][ T7671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.423409][ T7671] RIP: 0033:0x7f9ab778d169
[  185.423429][ T7671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.423454][ T7671] RSP: 002b:00007f9ab55f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  185.423480][ T7671] RAX: ffffffffffffffda RBX: 00007f9ab79a5fa0 RCX: 00007f9ab778d169
[  185.423498][ T7671] RDX: 0000000000048080 RSI: 0000400000001e00 RDI: 0000000000000003
[  185.423514][ T7671] RBP: 00007f9ab55f6090 R08: 0000000000000000 R09: 0000000000000000
[  185.423530][ T7671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  185.423546][ T7671] R13: 0000000000000000 R14: 00007f9ab79a5fa0 R15: 00007ffc743e9b38
[  185.423578][ T7671]  </TASK>
[  185.423735][ T7671] nbd: failed to add new device
[  185.806469][ T7677] FAULT_INJECTION: forcing a failure.
[  185.806469][ T7677] name failslab, interval 1, probability 0, space 0, times 0
[  185.885702][ T7677] CPU: 0 UID: 0 PID: 7677 Comm: syz.3.476 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  185.885754][ T7677] Tainted: [U]=USER
[  185.885764][ T7677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  185.885782][ T7677] Call Trace:
[  185.885791][ T7677]  <TASK>
[  185.885802][ T7677]  dump_stack_lvl+0x16c/0x1f0
[  185.885852][ T7677]  should_fail_ex+0x50a/0x650
[  185.885903][ T7677]  ? fs_reclaim_acquire+0xae/0x150
[  185.885948][ T7677]  ? constrain_params_by_rules+0x176/0xca0
[  185.886009][ T7677]  should_failslab+0xc2/0x120
[  185.886041][ T7677]  __kmalloc_noprof+0xcb/0x510
[  185.886090][ T7677]  ? unwind_get_return_address+0x59/0xa0
[  185.886151][ T7677]  constrain_params_by_rules+0x176/0xca0
[  185.886199][ T7677]  ? stack_trace_save+0x95/0xd0
[  185.886239][ T7677]  ? stack_depot_save_flags+0x28/0x9c0
[  185.886298][ T7677]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  185.886347][ T7677]  ? __kasan_kmalloc+0xaa/0xb0
[  185.886393][ T7677]  ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0
[  185.886429][ T7677]  ? snd_pcm_oss_change_params_locked+0x136c/0x3a60
[  185.886466][ T7677]  ? snd_pcm_oss_make_ready+0xe6/0x1b0
[  185.886516][ T7677]  ? snd_interval_refine+0x2fa/0x580
[  185.886571][ T7677]  snd_pcm_hw_refine+0x7e8/0xad0
[  185.886619][ T7677]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  185.886676][ T7677]  ? _snd_pcm_hw_param_min+0x259/0x630
[  185.886718][ T7677]  snd_pcm_hw_param_near.constprop.0+0x597/0x8f0
[  185.886763][ T7677]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  185.886805][ T7677]  ? calc_src_frames.isra.0+0x187/0x1d0
[  185.886853][ T7677]  snd_pcm_oss_change_params_locked+0x136c/0x3a60
[  185.886910][ T7677]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  185.886953][ T7677]  ? __pfx___mutex_lock+0x10/0x10
[  185.887011][ T7677]  ? __might_fault+0x13b/0x190
[  185.887053][ T7677]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  185.887094][ T7677]  snd_pcm_oss_set_trigger.isra.0+0x5e/0x6b0
[  185.887141][ T7677]  snd_pcm_oss_ioctl+0x1d00/0x3780
[  185.887177][ T7677]  ? trace_lock_acquire+0x14e/0x1f0
[  185.887221][ T7677]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  185.887269][ T7677]  ? __fget_files+0x206/0x3a0
[  185.887322][ T7677]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  185.887365][ T7677]  __x64_sys_ioctl+0x190/0x200
[  185.887408][ T7677]  do_syscall_64+0xcd/0x250
[  185.887455][ T7677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.887502][ T7677] RIP: 0033:0x7feb1c98d169
[  185.887526][ T7677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.887557][ T7677] RSP: 002b:00007feb1d82d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  185.887588][ T7677] RAX: ffffffffffffffda RBX: 00007feb1cba6160 RCX: 00007feb1c98d169
[  185.887610][ T7677] RDX: 0000000000000000 RSI: 0000000040045010 RDI: 0000000000000003
[  185.887629][ T7677] RBP: 00007feb1d82d090 R08: 0000000000000000 R09: 0000000000000000
[  185.887649][ T7677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  185.887668][ T7677] R13: 0000000000000001 R14: 00007feb1cba6160 R15: 00007ffed2356cc8
[  185.887709][ T7677]  </TASK>
[  188.290251][ T7720] FAULT_INJECTION: forcing a failure.
[  188.290251][ T7720] name failslab, interval 1, probability 0, space 0, times 0
[  188.304931][ T7720] CPU: 1 UID: 0 PID: 7720 Comm: syz.3.485 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  188.304979][ T7720] Tainted: [U]=USER
[  188.304990][ T7720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  188.305008][ T7720] Call Trace:
[  188.305018][ T7720]  <TASK>
[  188.305029][ T7720]  dump_stack_lvl+0x16c/0x1f0
[  188.305078][ T7720]  should_fail_ex+0x50a/0x650
[  188.305137][ T7720]  should_failslab+0xc2/0x120
[  188.305169][ T7720]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  188.305222][ T7720]  ? __alloc_skb+0x2b1/0x380
[  188.305273][ T7720]  __alloc_skb+0x2b1/0x380
[  188.305316][ T7720]  ? __pfx___alloc_skb+0x10/0x10
[  188.305361][ T7720]  ? rcu_is_watching+0x12/0xc0
[  188.305399][ T7720]  ? __rcu_read_unlock+0x2b4/0x580
[  188.305448][ T7720]  _sctp_make_chunk+0x51/0x270
[  188.305486][ T7720]  sctp_make_control+0x2f/0x2d0
[  188.305537][ T7720]  sctp_make_sack+0x1b0/0x520
[  188.305576][ T7720]  ? __pfx_sctp_make_sack+0x10/0x10
[  188.305624][ T7720]  ? sctp_sf_eat_data_6_2+0x56f/0xbb0
[  188.305676][ T7720]  sctp_do_sm+0x421b/0x5c90
[  188.305740][ T7720]  ? __pfx_sctp_do_sm+0x10/0x10
[  188.305817][ T7720]  ? hlock_class+0x4e/0x130
[  188.305918][ T7720]  ? mark_held_locks+0x9f/0xe0
[  188.305966][ T7720]  ? ktime_get+0x200/0x310
[  188.306005][ T7720]  ? lockdep_hardirqs_on+0x7c/0x110
[  188.306052][ T7720]  sctp_assoc_bh_rcv+0x392/0x6f0
[  188.306110][ T7720]  sctp_inq_push+0x1d8/0x270
[  188.306158][ T7720]  sctp_backlog_rcv+0x169/0x590
[  188.306195][ T7720]  ? __pfx_sctp_backlog_rcv+0x10/0x10
[  188.306229][ T7720]  __release_sock+0x35f/0x400
[  188.306278][ T7720]  ? release_sock+0x21/0x220
[  188.306330][ T7720]  release_sock+0x5a/0x220
[  188.306378][ T7720]  sctp_sendmsg+0xf2c/0x1eb0
[  188.306441][ T7720]  ? __pfx_sctp_sendmsg+0x10/0x10
[  188.306514][ T7720]  ? __pfx_aa_sk_perm+0x10/0x10
[  188.306556][ T7720]  ? __pfx_sctp_sendmsg+0x10/0x10
[  188.306609][ T7720]  inet_sendmsg+0x119/0x140
[  188.306661][ T7720]  ____sys_sendmsg+0x98c/0xc90
[  188.306698][ T7720]  ? copy_msghdr_from_user+0x10b/0x160
[  188.306746][ T7720]  ? __pfx_____sys_sendmsg+0x10/0x10
[  188.306781][ T7720]  ? __lock_acquire+0xcc5/0x3c40
[  188.306849][ T7720]  ___sys_sendmsg+0x135/0x1e0
[  188.306900][ T7720]  ? __pfx____sys_sendmsg+0x10/0x10
[  188.306967][ T7720]  ? trace_lock_acquire+0x14e/0x1f0
[  188.307032][ T7720]  __sys_sendmmsg+0x201/0x420
[  188.307085][ T7720]  ? __pfx___sys_sendmmsg+0x10/0x10
[  188.307149][ T7720]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  188.307210][ T7720]  ? fput+0x67/0x440
[  188.307242][ T7720]  ? ksys_write+0x1ba/0x250
[  188.307287][ T7720]  ? __pfx_ksys_write+0x10/0x10
[  188.307339][ T7720]  __x64_sys_sendmmsg+0x9c/0x100
[  188.307388][ T7720]  ? lockdep_hardirqs_on+0x7c/0x110
[  188.307428][ T7720]  do_syscall_64+0xcd/0x250
[  188.307475][ T7720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.307521][ T7720] RIP: 0033:0x7feb1c98d169
[  188.307547][ T7720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.307578][ T7720] RSP: 002b:00007feb1d86f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  188.307608][ T7720] RAX: ffffffffffffffda RBX: 00007feb1cba5fa0 RCX: 00007feb1c98d169
[  188.307629][ T7720] RDX: 0000000000000003 RSI: 0000400000000080 RDI: 0000000000000003
[  188.307648][ T7720] RBP: 00007feb1d86f090 R08: 0000000000000000 R09: 0000000000000000
[  188.307667][ T7720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  188.307687][ T7720] R13: 0000000000000000 R14: 00007feb1cba5fa0 R15: 00007ffed2356cc8
[  188.307727][ T7720]  </TASK>
[  189.091424][ T7735] [U] 
[  189.094669][ T7735] [U] 
[  189.097441][ T7735] [U] 
[  189.100211][ T7735] [U] 
[  189.191219][ T7735] [U] 
[  189.194034][ T7735] [U] 
[  189.196797][ T7735] [U] 
[  189.199554][ T7735] [U] 
[  189.439506][ T7746] block nbd8: shutting down sockets
[  189.588580][ T7744] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  189.635349][ T7735] [U] 
[  189.638153][ T7735] [U] 
[  189.640911][ T7735] [U] 
[  189.643670][ T7735] [U] 
[  189.694089][ T7732] Invalid ELF header magic: != ELF
[  189.774997][ T7732] Invalid ELF header magic: != ELF
[  189.793203][ T7735] [U] 
[  189.796011][ T7735] [U] 
[  189.798778][ T7735] [U] 
[  189.801541][ T7735] [U] 
[  189.856161][ T7735] [U] 
[  189.858980][ T7735] [U] 
[  189.861846][ T7735] [U] 
[  189.864611][ T7735] [U] 
[  189.947547][ T7735] [U] 
[  189.950447][ T7735] [U] 
[  189.953204][ T7735] [U] 
[  189.955967][ T7735] [U] 
[  189.975743][ T7735] [U] 
[  189.978554][ T7735] [U] 
[  189.981296][ T7735] [U] 
[  189.984023][ T7735] [U] 
[  190.014721][ T7735] [U] 
[  190.017538][ T7735] [U] 
[  190.020307][ T7735] [U] 
[  190.023053][ T7735] [U] 
[  190.073820][ T7732] Invalid ELF header magic: != ELF
[  190.368065][ T7732] [U] 
[  190.564980][ T7776] FAULT_INJECTION: forcing a failure.
[  190.564980][ T7776] name failslab, interval 1, probability 0, space 0, times 0
[  190.683747][ T7776] CPU: 1 UID: 0 PID: 7776 Comm: syz.0.498 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  190.683798][ T7776] Tainted: [U]=USER
[  190.683809][ T7776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  190.683827][ T7776] Call Trace:
[  190.683836][ T7776]  <TASK>
[  190.683849][ T7776]  dump_stack_lvl+0x16c/0x1f0
[  190.683897][ T7776]  should_fail_ex+0x50a/0x650
[  190.683949][ T7776]  ? fs_reclaim_acquire+0xae/0x150
[  190.683994][ T7776]  ? alloc_bprm+0x86/0xdd0
[  190.684033][ T7776]  should_failslab+0xc2/0x120
[  190.684064][ T7776]  __kmalloc_cache_noprof+0x68/0x410
[  190.684110][ T7776]  ? __virt_addr_valid+0x5e/0x590
[  190.684151][ T7776]  alloc_bprm+0x86/0xdd0
[  190.684192][ T7776]  ? strncpy_from_user+0x1fc/0x2d0
[  190.684243][ T7776]  do_execveat_common.isra.0+0x1cd/0x610
[  190.684300][ T7776]  __x64_sys_execve+0x8c/0xb0
[  190.684345][ T7776]  do_syscall_64+0xcd/0x250
[  190.684392][ T7776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.684437][ T7776] RIP: 0033:0x7f9ab778d169
[  190.684461][ T7776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.684492][ T7776] RSP: 002b:00007f9ab55b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  190.684522][ T7776] RAX: ffffffffffffffda RBX: 00007f9ab79a6160 RCX: 00007f9ab778d169
[  190.684543][ T7776] RDX: 0000000000000000 RSI: 0000400000000380 RDI: 0000400000000280
[  190.684563][ T7776] RBP: 00007f9ab55b4090 R08: 0000000000000000 R09: 0000000000000000
[  190.684583][ T7776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.684602][ T7776] R13: 0000000000000001 R14: 00007f9ab79a6160 R15: 00007ffc743e9b38
[  190.684647][ T7776]  </TASK>
[  191.377119][ T7789] bridge0: port 3(gretap0) entered blocking state
[  191.395374][ T7789] bridge0: port 3(gretap0) entered disabled state
[  191.402074][ T7789] gretap0: entered allmulticast mode
[  191.454932][ T7789] gretap0: entered promiscuous mode
[  191.497897][ T7789] bridge0: port 3(gretap0) entered blocking state
[  191.504759][ T7789] bridge0: port 3(gretap0) entered forwarding state
[  191.693216][ T7795] netlink: 44 bytes leftover after parsing attributes in process `syz.1.503'.
[  192.100587][ T7789] netlink: 12 bytes leftover after parsing attributes in process `syz.0.502'.
[  192.471121][ T7806] netlink: 4 bytes leftover after parsing attributes in process `syz.2.504'.
[  192.541888][ T7803] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  193.445946][ T7825] bridge0: port 3(gretap0) entered blocking state
[  193.548410][ T7825] bridge0: port 3(gretap0) entered disabled state
[  193.639023][ T7825] gretap0: entered allmulticast mode
[  193.645653][ T7825] gretap0: entered promiscuous mode
[  193.653241][ T7825] bridge0: port 3(gretap0) entered blocking state
[  193.659951][ T7825] bridge0: port 3(gretap0) entered forwarding state
[  193.828099][ T7825] netlink: 12 bytes leftover after parsing attributes in process `syz.2.509'.
[  194.568984][ T7831] nbd: must specify at least one socket
[  195.303266][ T7852] netlink: 4 bytes leftover after parsing attributes in process `syz.0.517'.
[  195.429839][ T7856] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  195.965278][ T7870] netlink: 'syz.3.520': attribute type 1 has an invalid length.
[  195.973021][ T7870] nbd: error processing sock list
[  197.575951][ T7899] FAULT_INJECTION: forcing a failure.
[  197.575951][ T7899] name failslab, interval 1, probability 0, space 0, times 0
[  197.650278][ T7899] CPU: 0 UID: 0 PID: 7899 Comm: syz.3.530 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  197.650335][ T7899] Tainted: [U]=USER
[  197.650346][ T7899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  197.650366][ T7899] Call Trace:
[  197.650376][ T7899]  <TASK>
[  197.650389][ T7899]  dump_stack_lvl+0x16c/0x1f0
[  197.650442][ T7899]  should_fail_ex+0x50a/0x650
[  197.650508][ T7899]  ? fs_reclaim_acquire+0xae/0x150
[  197.650555][ T7899]  ? create_filter_start.constprop.0+0xa5/0x300
[  197.650598][ T7899]  should_failslab+0xc2/0x120
[  197.650630][ T7899]  __kmalloc_cache_noprof+0x68/0x410
[  197.650699][ T7899]  create_filter_start.constprop.0+0xa5/0x300
[  197.650764][ T7899]  apply_subsystem_event_filter+0x189/0x1410
[  197.650807][ T7899]  ? __might_fault+0x13b/0x190
[  197.650842][ T7899]  ? __pfx_lock_release+0x10/0x10
[  197.650896][ T7899]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[  197.650938][ T7899]  ? __might_fault+0xe3/0x190
[  197.650973][ T7899]  ? __might_fault+0xe3/0x190
[  197.651021][ T7899]  ? _copy_from_user+0x59/0xd0
[  197.651062][ T7899]  subsystem_filter_write+0x95/0x120
[  197.651109][ T7899]  ? __pfx_subsystem_filter_write+0x10/0x10
[  197.651151][ T7899]  vfs_write+0x24c/0x1150
[  197.651199][ T7899]  ? __fget_files+0x1fc/0x3a0
[  197.651248][ T7899]  ? __pfx___mutex_lock+0x10/0x10
[  197.651293][ T7899]  ? __pfx_vfs_write+0x10/0x10
[  197.651351][ T7899]  ? __fget_files+0x206/0x3a0
[  197.651412][ T7899]  ksys_write+0x12b/0x250
[  197.651457][ T7899]  ? __pfx_ksys_write+0x10/0x10
[  197.651516][ T7899]  do_syscall_64+0xcd/0x250
[  197.651564][ T7899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.651610][ T7899] RIP: 0033:0x7feb1c98d169
[  197.651637][ T7899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.651670][ T7899] RSP: 002b:00007feb1d86f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  197.651700][ T7899] RAX: ffffffffffffffda RBX: 00007feb1cba5fa0 RCX: 00007feb1c98d169
[  197.651721][ T7899] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  197.651740][ T7899] RBP: 00007feb1ca0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  197.651758][ T7899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  197.651777][ T7899] R13: 0000000000000000 R14: 00007feb1cba5fa0 R15: 00007ffed2356cc8
[  197.651819][ T7899]  </TASK>
[  198.227068][ T7912] FAULT_INJECTION: forcing a failure.
[  198.227068][ T7912] name failslab, interval 1, probability 0, space 0, times 0
[  198.429925][ T7912] CPU: 0 UID: 0 PID: 7912 Comm: syz.0.531 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  198.429976][ T7912] Tainted: [U]=USER
[  198.429986][ T7912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  198.430004][ T7912] Call Trace:
[  198.430013][ T7912]  <TASK>
[  198.430025][ T7912]  dump_stack_lvl+0x16c/0x1f0
[  198.430074][ T7912]  should_fail_ex+0x50a/0x650
[  198.430125][ T7912]  ? trace_kmem_cache_alloc+0x2d/0xd0
[  198.430171][ T7912]  should_failslab+0xc2/0x120
[  198.430202][ T7912]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  198.430261][ T7912]  ? __alloc_skb+0x2b1/0x380
[  198.430311][ T7912]  __alloc_skb+0x2b1/0x380
[  198.430356][ T7912]  ? __pfx___alloc_skb+0x10/0x10
[  198.430404][ T7912]  ? aoecmd_cfg+0xe8/0x7d0
[  198.430439][ T7912]  new_skb+0x21/0x230
[  198.430488][ T7912]  aoecmd_cfg+0x21d/0x7d0
[  198.430521][ T7912]  ? __pfx_aoecmd_cfg+0x10/0x10
[  198.430565][ T7912]  ? apparmor_file_permission+0x251/0x400
[  198.430609][ T7912]  ? __pfx_aoechr_write+0x10/0x10
[  198.430657][ T7912]  ? aoechr_write+0x120/0x160
[  198.430701][ T7912]  aoechr_write+0x120/0x160
[  198.430751][ T7912]  vfs_write+0x24c/0x1150
[  198.430797][ T7912]  ? __fget_files+0x1fc/0x3a0
[  198.430845][ T7912]  ? __pfx_lock_release+0x10/0x10
[  198.430892][ T7912]  ? __pfx_vfs_write+0x10/0x10
[  198.430938][ T7912]  ? lock_acquire+0x2f/0xb0
[  198.430980][ T7912]  ? __fget_files+0x40/0x3a0
[  198.431029][ T7912]  ? __fget_files+0x206/0x3a0
[  198.431088][ T7912]  ksys_write+0x12b/0x250
[  198.431131][ T7912]  ? __pfx_ksys_write+0x10/0x10
[  198.431205][ T7912]  do_syscall_64+0xcd/0x250
[  198.431259][ T7912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.431305][ T7912] RIP: 0033:0x7f9ab778d169
[  198.431329][ T7912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.431361][ T7912] RSP: 002b:00007f9ab55f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  198.431391][ T7912] RAX: ffffffffffffffda RBX: 00007f9ab79a5fa0 RCX: 00007f9ab778d169
[  198.431412][ T7912] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  198.431432][ T7912] RBP: 00007f9ab55f6090 R08: 0000000000000000 R09: 0000000000000000
[  198.431451][ T7912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  198.431470][ T7912] R13: 0000000000000000 R14: 00007f9ab79a5fa0 R15: 00007ffc743e9b38
[  198.431510][ T7912]  </TASK>
[  198.431523][ T7912] aoe: skb alloc failure
[  198.688133][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  198.696178][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  199.054730][ T7927] ecryptfs_parse_packet_length: Error parsing packet length
[  199.062105][ T7927] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  199.407783][ T7936] block nbd8: shutting down sockets
[  199.478031][ T6040] ==================================================================
[  199.486256][ T6040] BUG: KASAN: slab-use-after-free in recv_work+0x6b4/0xaa0
[  199.493488][ T6040] Write of size 4 at addr ffff8880324a8a78 by task kworker/u9:9/6040
[  199.501603][ T6040] 
[  199.503939][ T6040] CPU: 0 UID: 0 PID: 6040 Comm: kworker/u9:9 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  199.503976][ T6040] Tainted: [U]=USER
[  199.503984][ T6040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  199.504003][ T6040] Workqueue: nbd8-recv recv_work
[  199.504033][ T6040] Call Trace:
[  199.504042][ T6040]  <TASK>
[  199.504052][ T6040]  dump_stack_lvl+0x116/0x1f0
[  199.504089][ T6040]  print_report+0xc3/0x670
[  199.504136][ T6040]  ? __virt_addr_valid+0x5e/0x590
[  199.504165][ T6040]  ? __phys_addr+0xc6/0x150
[  199.504192][ T6040]  kasan_report+0xd9/0x110
[  199.504215][ T6040]  ? recv_work+0x6b4/0xaa0
[  199.504243][ T6040]  ? recv_work+0x6b4/0xaa0
[  199.504277][ T6040]  kasan_check_range+0xef/0x1a0
[  199.504313][ T6040]  recv_work+0x6b4/0xaa0
[  199.504349][ T6040]  ? __pfx_recv_work+0x10/0x10
[  199.504384][ T6040]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  199.504428][ T6040]  ? trace_lock_acquire+0x14e/0x1f0
[  199.504460][ T6040]  ? lock_acquire+0x2f/0xb0
[  199.504494][ T6040]  ? process_one_work+0x921/0x1ba0
[  199.504532][ T6040]  process_one_work+0x9c5/0x1ba0
[  199.504572][ T6040]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  199.504610][ T6040]  ? __pfx_process_one_work+0x10/0x10
[  199.504649][ T6040]  ? assign_work+0x1a0/0x250
[  199.504683][ T6040]  worker_thread+0x6c8/0xf00
[  199.504721][ T6040]  ? __kthread_parkme+0x148/0x220
[  199.504747][ T6040]  ? __pfx_worker_thread+0x10/0x10
[  199.504798][ T6040]  kthread+0x3af/0x750
[  199.504831][ T6040]  ? __pfx_kthread+0x10/0x10
[  199.504862][ T6040]  ? lock_acquire+0x2f/0xb0
[  199.504905][ T6040]  ? __pfx_kthread+0x10/0x10
[  199.504937][ T6040]  ret_from_fork+0x45/0x80
[  199.504972][ T6040]  ? __pfx_kthread+0x10/0x10
[  199.505003][ T6040]  ret_from_fork_asm+0x1a/0x30
[  199.505039][ T6040]  </TASK>
[  199.505048][ T6040] 
[  199.680669][ T6040] Allocated by task 7756:
[  199.685012][ T6040]  kasan_save_stack+0x33/0x60
[  199.689734][ T6040]  kasan_save_track+0x14/0x30
[  199.694480][ T6040]  __kasan_kmalloc+0xaa/0xb0
[  199.699135][ T6040]  nbd_alloc_and_init_config+0x97/0x2a0
[  199.704712][ T6040]  nbd_genl_connect+0x491/0x1c00
[  199.709686][ T6040]  genl_family_rcv_msg_doit+0x202/0x2f0
[  199.715280][ T6040]  genl_rcv_msg+0x565/0x800
[  199.719818][ T6040]  netlink_rcv_skb+0x16b/0x440
[  199.724613][ T6040]  genl_rcv+0x28/0x40
[  199.728626][ T6040]  netlink_unicast+0x53c/0x7f0
[  199.734025][ T6040]  netlink_sendmsg+0x8b8/0xd70
[  199.738823][ T6040]  ____sys_sendmsg+0xaaf/0xc90
[  199.743608][ T6040]  ___sys_sendmsg+0x135/0x1e0
[  199.748317][ T6040]  __sys_sendmsg+0x16e/0x220
[  199.752942][ T6040]  do_syscall_64+0xcd/0x250
[  199.757567][ T6040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.763492][ T6040] 
[  199.765824][ T6040] Freed by task 6040:
[  199.769812][ T6040]  kasan_save_stack+0x33/0x60
[  199.774523][ T6040]  kasan_save_track+0x14/0x30
[  199.779262][ T6040]  kasan_save_free_info+0x3b/0x60
[  199.784318][ T6040]  __kasan_slab_free+0x51/0x70
[  199.789121][ T6040]  kfree+0x2c4/0x4d0
[  199.793045][ T6040]  nbd_config_put+0x3c1/0x750
[  199.797758][ T6040]  recv_work+0x6a1/0xaa0
[  199.802027][ T6040]  process_one_work+0x9c5/0x1ba0
[  199.806999][ T6040]  worker_thread+0x6c8/0xf00
[  199.811622][ T6040]  kthread+0x3af/0x750
[  199.815716][ T6040]  ret_from_fork+0x45/0x80
[  199.820159][ T6040]  ret_from_fork_asm+0x1a/0x30
[  199.824945][ T6040] 
[  199.827279][ T6040] The buggy address belongs to the object at ffff8880324a8a00
[  199.827279][ T6040]  which belongs to the cache kmalloc-256 of size 256
[  199.841363][ T6040] The buggy address is located 120 bytes inside of
[  199.841363][ T6040]  freed 256-byte region [ffff8880324a8a00, ffff8880324a8b00)
[  199.855181][ T6040] 
[  199.857516][ T6040] The buggy address belongs to the physical page:
[  199.863949][ T6040] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x324a8
[  199.872729][ T6040] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  199.881249][ T6040] ksm flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  199.889160][ T6040] page_type: f5(slab)
[  199.893166][ T6040] raw: 00fff00000000040 ffff88801b041b40 ffffea0000d12a80 dead000000000003
[  199.901782][ T6040] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  199.910394][ T6040] head: 00fff00000000040 ffff88801b041b40 ffffea0000d12a80 dead000000000003
[  199.919088][ T6040] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  199.927777][ T6040] head: 00fff00000000001 ffffea0000c92a01 ffffffffffffffff 0000000000000000
[  199.936464][ T6040] head: 0000000000000002 0000000000000000 00000000ffffffff 0000000000000000
[  199.945172][ T6040] page dumped because: kasan: bad access detected
[  199.951595][ T6040] page_owner tracks the page as allocated
[  199.957327][ T6040] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7130, tgid 7123 (syz.1.329), ts 159674182603, free_ts 159639646489
[  199.978635][ T6040]  post_alloc_hook+0x181/0x1b0
[  199.983436][ T6040]  get_page_from_freelist+0xfce/0x2f80
[  199.988927][ T6040]  __alloc_frozen_pages_noprof+0x221/0x2470
[  199.994856][ T6040]  alloc_pages_mpol+0x1fc/0x540
[  199.999721][ T6040]  new_slab+0x23d/0x330
[  200.003904][ T6040]  ___slab_alloc+0xc5d/0x1720
[  200.008629][ T6040]  __slab_alloc.constprop.0+0x56/0xb0
[  200.014032][ T6040]  __kmalloc_node_noprof+0x2f0/0x510
[  200.019356][ T6040]  __kvmalloc_node_noprof+0xad/0x1a0
[  200.024671][ T6040]  io_alloc_cache_init+0x33/0x170
[  200.029742][ T6040]  io_uring_setup+0x615/0x2200
[  200.034525][ T6040]  __x64_sys_io_uring_setup+0x98/0x140
[  200.040003][ T6040]  do_syscall_64+0xcd/0x250
[  200.044540][ T6040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.050491][ T6040] page last free pid 7112 tgid 7110 stack trace:
[  200.056835][ T6040]  free_frozen_pages+0x6db/0xfb0
[  200.061804][ T6040]  __mmdrop+0xd5/0x460
[  200.065902][ T6040]  __mmput+0x36c/0x410
[  200.070006][ T6040]  mmput+0x62/0x70
[  200.073761][ T6040]  do_exit+0x9ba/0x2d70
[  200.077961][ T6040]  do_group_exit+0xd3/0x2a0
[  200.082486][ T6040]  get_signal+0x24ed/0x26c0
[  200.087023][ T6040]  arch_do_signal_or_restart+0x90/0x7e0
[  200.092593][ T6040]  syscall_exit_to_user_mode+0x150/0x2a0
[  200.098259][ T6040]  do_syscall_64+0xda/0x250
[  200.102793][ T6040]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.108720][ T6040] 
[  200.111051][ T6040] Memory state around the buggy address:
[  200.116689][ T6040]  ffff8880324a8900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  200.124780][ T6040]  ffff8880324a8980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  200.132859][ T6040] >ffff8880324a8a00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  200.140947][ T6040]                                                                 ^
[  200.148971][ T6040]  ffff8880324a8a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  200.157062][ T6040]  ffff8880324a8b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  200.165141][ T6040] ==================================================================
[  200.184369][ T6040] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  200.191627][ T6040] CPU: 0 UID: 0 PID: 6040 Comm: kworker/u9:9 Tainted: G     U             6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  200.204013][ T6040] Tainted: [U]=USER
[  200.207851][ T6040] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  200.217950][ T6040] Workqueue: nbd8-recv recv_work
[  200.222952][ T6040] Call Trace:
[  200.226263][ T6040]  <TASK>
[  200.229218][ T6040]  dump_stack_lvl+0x3d/0x1f0
[  200.233873][ T6040]  panic+0x71d/0x800
[  200.237815][ T6040]  ? __pfx_panic+0x10/0x10
[  200.242269][ T6040]  ? irqentry_exit+0x3b/0x90
[  200.246892][ T6040]  ? lockdep_hardirqs_on+0x7c/0x110
[  200.252128][ T6040]  ? preempt_schedule_thunk+0x1a/0x30
[  200.257539][ T6040]  ? preempt_schedule_common+0x44/0xc0
[  200.263130][ T6040]  ? check_panic_on_warn+0x1f/0xb0
[  200.268282][ T6040]  check_panic_on_warn+0xab/0xb0
[  200.273257][ T6040]  end_report+0x117/0x180
[  200.277629][ T6040]  kasan_report+0xe9/0x110
[  200.282064][ T6040]  ? recv_work+0x6b4/0xaa0
[  200.286510][ T6040]  ? recv_work+0x6b4/0xaa0
[  200.290952][ T6040]  kasan_check_range+0xef/0x1a0
[  200.295833][ T6040]  recv_work+0x6b4/0xaa0
[  200.300132][ T6040]  ? __pfx_recv_work+0x10/0x10
[  200.304930][ T6040]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  200.310605][ T6040]  ? trace_lock_acquire+0x14e/0x1f0
[  200.315833][ T6040]  ? lock_acquire+0x2f/0xb0
[  200.320363][ T6040]  ? process_one_work+0x921/0x1ba0
[  200.325505][ T6040]  process_one_work+0x9c5/0x1ba0
[  200.330478][ T6040]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  200.336141][ T6040]  ? __pfx_process_one_work+0x10/0x10
[  200.341546][ T6040]  ? assign_work+0x1a0/0x250
[  200.346161][ T6040]  worker_thread+0x6c8/0xf00
[  200.350787][ T6040]  ? __kthread_parkme+0x148/0x220
[  200.355831][ T6040]  ? __pfx_worker_thread+0x10/0x10
[  200.360986][ T6040]  kthread+0x3af/0x750
[  200.365106][ T6040]  ? __pfx_kthread+0x10/0x10
[  200.369724][ T6040]  ? lock_acquire+0x2f/0xb0
[  200.374259][ T6040]  ? __pfx_kthread+0x10/0x10
[  200.378888][ T6040]  ret_from_fork+0x45/0x80
[  200.383334][ T6040]  ? __pfx_kthread+0x10/0x10
[  200.387950][ T6040]  ret_from_fork_asm+0x1a/0x30
[  200.392751][ T6040]  </TASK>
[  200.396089][ T6040] Kernel Offset: disabled
[  200.400425][ T6040] Rebooting in 86400 seconds..