last executing test programs:

3m15.169167128s ago: executing program 0 (id=903):
openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/uid_map\x00', 0x10000, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000)
prctl$auto(0x23, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0)
r0 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/cmdline\x00', 0x2000, 0x0)
read$auto_proc_pid_cmdline_ops_base(r0, &(0x7f0000000040)=""/159, 0x9f)

3m13.578458569s ago: executing program 0 (id=909):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001140)='/proc/sys/net/ipv4/conf/vlan0/route_localnet\x00', 0x8a042, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0)
readv$auto(r0, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
write$auto(r2, &(0x7f0000000140)='\x00\n\x00\x00\x00\x00\x00\x00', 0x2)
r3 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0)
write$auto(r3, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x129800, 0x0)
mmap$auto(0x0, 0x2, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bdi/8:0/wb_stats\x00', 0x22080, 0x0)
read$auto_cgwb_debug_stats_fops_(r4, &(0x7f0000000040)=""/185, 0xb9)
r5 = socket(0x9, 0x1, 0x400008)
setsockopt$auto(r5, 0x10000000084, 0x21, 0x0, 0x0)
r6 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r6, 0x6, 0xd, 0x0, 0x6)
sendmsg$auto_OVS_METER_CMD_GET(r6, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x2c048001)
getrandom$auto(0x0, 0x6000000, 0x3)
r7 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x185200, 0x0)
readv$auto(r7, &(0x7f0000000140)={&(0x7f0000000240)="e1624746de0c462864e8991807529ac6af93bf459f6a117f1cd44750cef8d5a59715e97f090b3ea8b58f44694d9f5ff508f4882e35a774605d21b330e0359f1ae9b9ce39ae6d8b7160", 0x20000000}, 0x5)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
mbind$auto(0x0, 0x2091ce, 0x4, 0x0, 0x8, 0x2)
madvise$auto(0x110c230000, 0x1, 0x9)
r8 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x20100, 0x0)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)
read$auto_proc_iter_file_ops_compat_inode(r8, &(0x7f0000000180)=""/178, 0xb2)

3m12.034654397s ago: executing program 0 (id=912):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pppol2tp\x00', 0x100, 0x0)
pread64$auto(r0, 0x0, 0x40000000f42c, 0x800005)
mmap$auto(0x900, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000)
r1 = open(0x0, 0x149443, 0x14)
fcntl$auto(r1, 0x409, 0x40003f)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x4, 0x9, 0xffffffffffff9dc0, 0x1000000eb1, r0, 0x8000)
r2 = socket(0x2a, 0x2, 0x1)
connect$auto(r2, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x0, 0xfffffffe}, 0x55)
r3 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x8202, 0x0)
read$auto(r3, 0x0, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)

3m11.324366181s ago: executing program 0 (id=915):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0)
mmap$auto(0x0, 0x200400009, 0xdf, 0x9b72, 0x2, 0x8000)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
write$auto_sg_fops_sg(r0, &(0x7f0000001380)="4a0200000000000000899edb615550fd8c7c924d87f0030047eb02eff5d2adc245a4e1eded0e91b86c61b6b42ed6", 0x2e)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyy5\x00', 0x86000, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x1, 0x0, 0x14)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xa, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x6, 0x26d3e, 0x40000000009, 0x2, 0x5]}, 0x0)

3m10.253585151s ago: executing program 0 (id=918):
ioperm$auto(0x2, 0x31c, 0x4)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_getsetattr$auto(0x3, 0x0, 0x0)
r2 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f00000002c0)=ANY=[@ANYBLOB="68130000", @ANYRES16, @ANYBLOB="00012bbd7000fbdbdf25070000000a01098033d6b2f24ee018e9b9855ea5a93da0dbf50b4b8d86d9c820adfd997126489bd2546bfcc6fbff50c3bf8d7f45d1ebb9d89021906d31e536c6c0c92f519a0c83aea385552794c7882697d5a21c4da79315acddceacb346ab83e89a1645955894eef5f3c2c35e3124caac9166412cacae4bffc75d40f06baba4de4dbe5513052f62def8033ecf0fe621bc7a7f715aee786d0f3181c875c3977947736c9579f2a8135c790800c6", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB="0000002800038008005e00", @ANYBLOB="c6225e16ddb851bd42161fc4ce3d274e08df8ff9cbefcbd0d21c3e118eaedf7207c838e8c0914ec7cf2e942371445c05a6aa", @ANYRES64=r2, @ANYRES32, @ANYRESOCT=r2, @ANYRES32, @ANYBLOB="99f3a10396e315e1f108b34d1f100980b046b622a9dd59042c88a5c2dece45bb172c8508000d00", @ANYRES8=r2, @ANYRES16=r1], 0x1368}, 0x1, 0x0, 0x0, 0x80000}, 0x28010)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t3\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\xfb\xba\xb2.$\'\x1e\x82\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/250, 0xfdf3, 0x39)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20040, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0008, 0x17)
unshare$auto(0x40000080)
ioperm$auto(0x7, 0x6, 0x2)
userfaultfd$auto(0x1)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
settimeofday$auto(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
futex_waitv$auto(&(0x7f0000000780)={0x81, 0x8000000000000001, 0x14000}, 0x3, 0x401, &(0x7f00000007c0)={0x7ff, 0x9}, 0x6)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0xa0100, 0x0)
lseek$auto(0x3, 0x0, 0x1)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
io_uring_setup$auto(0xffffffa8, &(0x7f0000000040)={0xc6, 0x8, 0xbdfe, 0x7ff, 0x101, 0x8, <r3=>0xffffffffffffffff, [0x4, 0x7, 0x187b], {0x7, 0x5, 0x5, 0x0, 0x7, 0x5, 0xdb, 0x2, 0xfffffffffffffff7}, {0x80000000, 0xbcd, 0x9, 0x7, 0x5f6, 0xff, 0xa, 0x9, 0xf}})
splice$auto(r2, &(0x7f0000000700)=0x8, r3, &(0x7f0000000740)=0x8000, 0x9, 0x9)
sendmsg$auto_ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000a00)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000009c0)={&(0x7f0000000900)={0x98, 0x0, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_EEE_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x59e58baa}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7fffffff}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_EEE_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x24000800}, 0x4000)

3m6.659032502s ago: executing program 0 (id=930):
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(0x0, 0x0, 0x700)
socket(0xa, 0x5, 0x0)
ioctl$auto(0x1, 0x8941, 0x8)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000bc0)=ANY=[@ANYBLOB=' 6\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fcdbdf250300000004000180083601"], 0x3620}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040090)
ioctl$auto(0x3, 0x400454ca, 0x38)
capget$auto(0x0, 0xfffffffffffffffe)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x261c2, 0x84)
mmap$auto(0x1000000, 0x9, 0xfffffffffffffffe, 0x12, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0)
write$auto(0x3, 0x0, 0xfdef)
r2 = memfd_create$auto(0x0, 0x4)
r3 = socket(0x1, 0x5, 0x32)
statx$auto(r2, 0x0, 0x1000, 0xbdfc, 0x0)
setsockopt$auto(r3, 0x29, 0x14, 0x0, 0x56b)
setsockopt$auto(r3, 0x29, 0x14, 0x0, 0x10052b)

2m51.475047615s ago: executing program 32 (id=930):
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(0x0, 0x0, 0x700)
socket(0xa, 0x5, 0x0)
ioctl$auto(0x1, 0x8941, 0x8)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000bc0)=ANY=[@ANYBLOB=' 6\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fcdbdf250300000004000180083601"], 0x3620}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040090)
ioctl$auto(0x3, 0x400454ca, 0x38)
capget$auto(0x0, 0xfffffffffffffffe)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x261c2, 0x84)
mmap$auto(0x1000000, 0x9, 0xfffffffffffffffe, 0x12, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0)
write$auto(0x3, 0x0, 0xfdef)
r2 = memfd_create$auto(0x0, 0x4)
r3 = socket(0x1, 0x5, 0x32)
statx$auto(r2, 0x0, 0x1000, 0xbdfc, 0x0)
setsockopt$auto(r3, 0x29, 0x14, 0x0, 0x56b)
setsockopt$auto(r3, 0x29, 0x14, 0x0, 0x10052b)

9.371167021s ago: executing program 4 (id=1531):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001140)='/proc/sys/net/ipv4/conf/vlan0/route_localnet\x00', 0x8a042, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0)
readv$auto(r0, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
write$auto(r2, &(0x7f0000000140)='\x00\n\x00\x00\x00\x00\x00\x00', 0x2)
r3 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0)
write$auto(r3, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x129800, 0x0)
mmap$auto(0x0, 0x2, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bdi/8:0/wb_stats\x00', 0x22080, 0x0)
read$auto_cgwb_debug_stats_fops_(r4, &(0x7f0000000040)=""/185, 0xb9)
r5 = socket(0x9, 0x1, 0x400008)
setsockopt$auto(r5, 0x10000000084, 0x21, 0x0, 0x0)
r6 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r6, 0x6, 0xd, 0x0, 0x6)
sendmsg$auto_OVS_METER_CMD_GET(r6, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x2c048001)
getrandom$auto(0x0, 0x6000000, 0x3)
r7 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x185200, 0x0)
readv$auto(r7, &(0x7f0000000140)={&(0x7f0000000240)="e1624746de0c462864e8991807529ac6af93bf459f6a117f1cd44750cef8d5a59715e97f090b3ea8b58f44694d9f5ff508f4882e35a774605d21b330e0359f1ae9b9ce39ae6d8b7160", 0x20000000}, 0x5)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091ce, 0x4, 0x0, 0x8, 0x2)
r8 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x20100, 0x0)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)
read$auto_proc_iter_file_ops_compat_inode(r8, &(0x7f0000000180)=""/178, 0xb2)

7.24509151s ago: executing program 3 (id=1538):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/task_delayacct\x00', 0x2000, 0x0)
r0 = io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0)
sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x40000, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, 0x0, 0x8044)
pread64$auto(r1, 0x0, 0x8, 0xffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000c40), r3)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000001d40)={0x0, 0x0, &(0x7f0000001d00)={&(0x7f0000000100)={0x78, r4, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_MRU={0x6, 0x9, 0x9}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "499831e273bb492d173df88e74c9"}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "4f1980af25430d91ee91098b894f"}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_MRU={0x6}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0x6}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0x2}, @OVS_PACKET_ATTR_HASH={0xc, 0xb, 0x488}, @OVS_PACKET_ATTR_HASH={0xc, 0xb, 0x8}]}, 0x78}, 0x1, 0x0, 0x0, 0x8000}, 0x80000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
read$auto(0x3, 0x0, 0x80)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
sysfs$auto(0x8, 0x5f3b, 0x7)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/tracing_on\x00', 0x240000, 0x0)
r7 = setfsuid$auto(0xee01)
setresuid$auto(0x0, r7, 0x0)
sendmsg$auto_NL80211_CMD_DEL_NAN_FUNCTION(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="c8050000", @ANYRES16=0x0, @ANYBLOB="310e26bd7000fcdbdf2576000000080005000e0000000400ec0004003c00050030010600000008006100060000009403b980040030800c00c800090000000000000008009400", @ANYRES32=r6, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="040049800f69a41445770b1924880cc9a3b4c2898e6e1dd67529f1efbb5001f7e96988e11a576e6e5016e8d244eddf2dc1ba7da4c153c3572707482b6c67737f593a26280dcea5527106df22166de3f0ffa7a094f29c70af41668c0f0387ec31536bbec7fd6eee26e7ece470c75e10ae95933d2b7ae6b93bf5d9b1eb7f2739a4a28b1ec7faf5b3cbe2af56db05005600000000000800450008000000a3c48138ca777674e13dc169ffcd0ff27707224e5d2761f80ba6ce64d36520cc6a33cfa18e810ab4523dc568cbef99792d966cc10dbcae004c4ec8b2392dbad318ff5f1518ac612997c14de0b2c853025f6065954cc670660c7941d593cc4f22126411b2b9da202b02d5156c5892b3b48070ecb6f939beb1546acf1450f35ce20395b0cec7b416d133e7dd356521653b579a323227e4923d06703621ed9b1b8ee02f9f05e5a117f0d6eaee77b3aa3834ab5606f0f2ffe6e33160e64c964f15e5218b0e347eb5af822d97ed6807212800"], 0x3c8}, 0x1, 0x0, 0x0, 0x10}, 0x8851)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)

6.064984238s ago: executing program 1 (id=1541):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto_SO_ATTACH_BPF(r0, 0x1, 0x32, &(0x7f0000000180)='/dev/mtd0\x00', 0x4)
mmap$auto(0x1, 0x4000000000000000, 0x1, 0x12, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto_UI_DEV_SETUP(r1, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r1, 0x5501, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/softnet_stat\x00', 0x40102, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/modules\x00', 0x40000, 0x0)
sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0xc}, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv6/conf/all/disable_ipv6\x00', 0x1401, 0x0)
pread64$auto(r0, 0x0, 0x100000001, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
readahead$auto(r3, 0xcc7f, 0x6)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dsp\x00', 0x1, 0x0)
ioctl$auto_SNDCTL_DSP_GETODELAY(r4, 0x80045017, &(0x7f0000000080))
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
socket(0x25, 0x6, 0x40003fe)

6.064264121s ago: executing program 2 (id=1542):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
write$auto_sg_fops_sg(r0, &(0x7f0000001380), 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyy5\x00', 0x86000, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
setsockopt$auto(0x3, 0x10000000084, 0x1, 0x0, 0x14)
write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000001240)='\t', 0x1)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xa, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x6, 0x26d3e, 0x40000000009, 0x2, 0x5]}, 0x0)

6.064032348s ago: executing program 3 (id=1543):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001140)='/proc/sys/net/ipv4/conf/vlan0/route_localnet\x00', 0x8a042, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0)
readv$auto(r0, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
write$auto(r2, &(0x7f0000000140)='\x00\n\x00\x00\x00\x00\x00\x00', 0x2)
write$auto(0xffffffffffffffff, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x129800, 0x0)
mmap$auto(0x0, 0x2, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bdi/8:0/wb_stats\x00', 0x22080, 0x0)
read$auto_cgwb_debug_stats_fops_(r3, &(0x7f0000000040)=""/185, 0xb9)
r4 = socket(0x9, 0x1, 0x400008)
setsockopt$auto(r4, 0x10000000084, 0x21, 0x0, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x6)
sendmsg$auto_OVS_METER_CMD_GET(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x2c048001)
getrandom$auto(0x0, 0x6000000, 0x3)
r5 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x185200, 0x0)
readv$auto(r5, &(0x7f0000000140)={&(0x7f0000000240)="e1624746de0c462864e8991807529ac6af93bf459f6a117f1cd44750cef8d5a59715e97f090b3ea8b58f44694d9f5ff508f4882e35a774605d21b330e0359f1ae9b9ce39ae6d8b7160", 0x20000000}, 0x5)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091ce, 0x4, 0x0, 0x8, 0x2)
madvise$auto(0x110c230000, 0x1, 0x9)
r6 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x20100, 0x0)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)
read$auto_proc_iter_file_ops_compat_inode(r6, &(0x7f0000000180)=""/178, 0xb2)

6.063508111s ago: executing program 4 (id=1549):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/task_delayacct\x00', 0x2000, 0x0)
r0 = io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0)
sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x40000, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, 0x0, 0x8044)
pread64$auto(r1, 0x0, 0x8, 0xffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000c40), r3)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000001d40)={0x0, 0x0, &(0x7f0000001d00)={&(0x7f0000000100)={0x78, r4, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_MRU={0x6, 0x9, 0x9}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "499831e273bb492d173df88e74c9"}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "4f1980af25430d91ee91098b894f"}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_MRU={0x6}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0x6}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0x2}, @OVS_PACKET_ATTR_HASH={0xc, 0xb, 0x488}, @OVS_PACKET_ATTR_HASH={0xc, 0xb, 0x8}]}, 0x78}, 0x1, 0x0, 0x0, 0x8000}, 0x80000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
read$auto(0x3, 0x0, 0x80)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
sysfs$auto(0x8, 0x5f3b, 0x7)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/tracing_on\x00', 0x240000, 0x0)
r7 = setfsuid$auto(0xee01)
setresuid$auto(0x0, r7, 0x0)
sendmsg$auto_NL80211_CMD_DEL_NAN_FUNCTION(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="c8050000", @ANYRES16=0x0, @ANYBLOB="310e26bd7000fcdbdf2576000000080005000e0000000400ec0004003c00050030010600000008006100060000009403b980040030800c00c800090000000000000008009400", @ANYRES32=r6, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="040049800f69a41445770b1924880cc9a3b4c2898e6e1dd67529f1efbb5001f7e96988e11a576e6e5016e8d244eddf2dc1ba7da4c153c3572707482b6c67737f593a26280dcea5527106df22166de3f0ffa7a094f29c70af41668c0f0387ec31536bbec7fd6eee26e7ece470c75e10ae95933d2b7ae6b93bf5d9b1eb7f2739a4a28b1ec7faf5b3cbe2af56db05005600000000000800450008000000a3c48138ca777674e13dc169ffcd0ff27707224e5d2761f80ba6ce64d36520cc6a33cfa18e810ab4523dc568cbef99792d966cc10dbcae004c4ec8b2392dbad318ff5f1518ac612997c14de0b2c853025f6065954cc670660c7941d593cc4f22126411b2b9da202b02d5156c5892b3b48070ecb6f939beb1546acf1450f35ce20395b0cec7b416d133e7dd356521653b579a323227e4923d06703621ed9b1b8ee02f9f05e5a117f0d6eaee77b3aa3834ab5606f0f2ffe6e33160e64c964f15e5218b0e347eb5af822d97ed6807212800"], 0x3c8}, 0x1, 0x0, 0x0, 0x10}, 0x8851)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)

4.931489649s ago: executing program 2 (id=1544):
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0)
readv$auto(0x3, 0x0, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, 0x0, 0x100000a3d9)

4.381459675s ago: executing program 1 (id=1545):
mmap$auto(0x0, 0x2020009, 0x3, 0x14, 0xfffffffffffffffa, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = open(0x0, 0x4220c1, 0x155)
socket(0x2, 0x80802, 0x6)
r2 = socket(0x10, 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x80100, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r3, &(0x7f0000005900)='\x00', 0x1ff)
mmap$auto(0xfffffffffffffe00, 0xfffffffffffffff9, 0x1, 0xc87c, r3, 0xfffffffffffffff9)
mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x10000000000048, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(r2, 0xfffff6c1, r0)
socket(0x28, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
recvmmsg$auto(r1, &(0x7f0000000100)={{&(0x7f0000000040)="92b2723fad3f3189e30360ae0ccb75b48287204370e8a539f1", 0x0, 0x0, 0x226d, &(0x7f0000000840)="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", 0xffffffff00000000, 0x3}, 0x9}, 0x7, 0x2, &(0x7f0000000140)={0x2, 0x1200000000})
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x40106f52, r5)

4.099198041s ago: executing program 4 (id=1546):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_CQM(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="60120000", @ANYRES16=r1, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r3], 0x1260}, 0x1, 0x0, 0x0, 0x1}, 0x8000000)

3.978143354s ago: executing program 1 (id=1547):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001140)='/proc/sys/net/ipv4/conf/vlan0/route_localnet\x00', 0x8a042, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0)
readv$auto(r0, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
write$auto(r2, &(0x7f0000000140)='\x00\n\x00\x00\x00\x00\x00\x00', 0x2)
write$auto(0xffffffffffffffff, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x129800, 0x0)
mmap$auto(0x0, 0x2, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bdi/8:0/wb_stats\x00', 0x22080, 0x0)
read$auto_cgwb_debug_stats_fops_(r3, &(0x7f0000000040)=""/185, 0xb9)
r4 = socket(0x9, 0x1, 0x400008)
setsockopt$auto(r4, 0x10000000084, 0x21, 0x0, 0x0)
r5 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r5, 0x6, 0xd, 0x0, 0x6)
sendmsg$auto_OVS_METER_CMD_GET(r5, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x2c048001)
getrandom$auto(0x0, 0x6000000, 0x3)
r6 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x185200, 0x0)
readv$auto(r6, &(0x7f0000000140)={&(0x7f0000000240)="e1624746de0c462864e8991807529ac6af93bf459f6a117f1cd44750cef8d5a59715e97f090b3ea8b58f44694d9f5ff508f4882e35a774605d21b330e0359f1ae9b9ce39ae6d8b7160", 0x20000000}, 0x5)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091ce, 0x4, 0x0, 0x8, 0x2)
madvise$auto(0x110c230000, 0x1, 0x9)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x20100, 0x0)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)

3.89275419s ago: executing program 3 (id=1548):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0)
r1 = socket(0xa, 0x801, 0x84)
r2 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execveat$auto(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
listen$auto(0x3, 0x83)
write$auto_def_blk_fops_fs(0xffffffffffffffff, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2, 0xffffffffffffffff, 0x40eb1, 0x602, 0x300000000000)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
finit_module$auto(r1, &(0x7f0000000080)='/dev/uinput\x00', 0x4)
msgsnd$auto(0x5, &(0x7f0000000140)={0x8, 0x3}, 0x8, 0xa)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x3, 0x0, 0xfdef)

3.875272831s ago: executing program 2 (id=1550):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_getsetattr$auto(0x3, 0x0, 0x0)
r2 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f00000002c0)=ANY=[@ANYBLOB="68130000", @ANYRES16, @ANYBLOB="00012bbd7000fbdbdf25070000000a01098033d6b2f24ee018e9b9855ea5a93da0dbf50b4b8d86d9c820adfd997126489bd2546bfcc6fbff50c3bf8d7f45d1ebb9d89021906d31e536c6c0c92f519a0c83aea385552794c7882697d5a21c4da79315acddceacb346ab83e89a1645955894eef5f3c2c35e3124caac9166412cacae4bffc75d40f06baba4de4dbe5513052f62def8033ecf0fe621bc7a7f715aee786d0f3181c875c3977947736c9579f2a8135c790800c6", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB="0000002800038008005e00", @ANYBLOB="c6225e16ddb851bd42161fc4ce3d274e08df8ff9cbefcbd0d21c3e118eaedf7207c838e8c0914ec7cf2e942371445c05a6aa", @ANYRES64=r2, @ANYRES32, @ANYRESOCT=r2, @ANYRES32, @ANYBLOB="99f3a10396e315e1f108b34d1f100980b046b622a9dd59042c88a5c2dece45bb172c8508000d00", @ANYRES8=r2, @ANYRES16=r1], 0x1368}, 0x1, 0x0, 0x0, 0x80000}, 0x28010)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t3\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\xfb\xba\xb2.$\'\x1e\x82\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/250, 0xfdf3, 0x39)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20040, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0008, 0x17)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x800000404, 0x8000)
ioperm$auto(0x7, 0x6, 0x2)
userfaultfd$auto(0x1)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
settimeofday$auto(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
futex_waitv$auto(&(0x7f0000000780)={0x81, 0x8000000000000001, 0x14000}, 0x3, 0x401, &(0x7f00000007c0)={0x7ff, 0x9}, 0x6)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0xa0100, 0x0)
lseek$auto(0x3, 0x0, 0x1)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
io_uring_setup$auto(0xffffffa8, &(0x7f0000000040)={0xc6, 0x8, 0xbdfe, 0x7ff, 0x101, 0x8, <r3=>0xffffffffffffffff, [0x4, 0x7, 0x187b], {0x7, 0x5, 0x5, 0x0, 0x7, 0x5, 0xdb, 0x2, 0xfffffffffffffff7}, {0x80000000, 0xbcd, 0x9, 0x7, 0x5f6, 0xff, 0xa, 0x9, 0xf}})
splice$auto(r2, &(0x7f0000000700)=0x8, r3, &(0x7f0000000740)=0x8000, 0x9, 0x9)
sendmsg$auto_ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000a00)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000009c0)={&(0x7f0000000900)={0x98, 0x0, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_EEE_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x59e58baa}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7fffffff}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_EEE_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x24000800}, 0x4000)

2.751120721s ago: executing program 3 (id=1551):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000100), 0x1e65a41b50d0467c, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000)
madvise$auto(0x405, 0xffffffffffff0001, 0x3)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0)
sendmsg$auto_NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, 0x0, 0x4008000)
sendmsg$auto_NL80211_CMD_STOP_NAN(0xffffffffffffffff, 0x0, 0x815)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
adjtimex$auto(&(0x7f00000005c0)={0x4, 0x0, 0x2000000000000000, 0x8, 0xd4, 0x7, 0x5, 0x0, 0x10001, 0x1, 0x2, {0x8, 0x10001}, 0x1, 0xa, 0xfffffffffffffffd, 0x9, 0x0, 0x80000003, 0xa, 0xffffefffffff628e, 0x8, 0x1, 0x100017fe})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffe, 0xd, 0x3000, 0x6, 0x8, 0x7fffffff, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c47, 0x7, 0x100, 0x1, 0x105, 0x800, 0x3}, {0x8, 0x2, 0x52, 0x5, 0x9, 0x100, 0x76c5, 0x8, 0x100000002}})
mmap$auto(0x0, 0x8, 0x1000000004, 0x13, 0x3, 0x110000000)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x3, 0xff)
fanotify_init$auto(0x3da, 0x4)
mmap$auto(0xc5c, 0x20009, 0xdf, 0xeb1, 0x401, 0x8004)
r1 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0xba6)
ioctl$auto_FIFREEZE(r1, 0xc0045878, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SETHMAC(r2, 0x0, 0x200080c4)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x10ba00, 0x114)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x9, 0x4020009, 0xdf, 0xeb1, r3, 0xb)

2.739986565s ago: executing program 4 (id=1559):
r0 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$auto_proc_page_owner_operations_page_owner(r0, &(0x7f0000002080)=""/4096, 0x1000)

2.722250383s ago: executing program 1 (id=1552):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)
write$auto_sg_fops_sg(r0, &(0x7f0000001380), 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xa, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x62, 0x8000001f, 0x6, 0x26d3e, 0x40000000009, 0x2, 0x5]}, 0x0)

2.550612787s ago: executing program 2 (id=1553):
mmap$auto(0x0, 0x51, 0x9, 0xeb1, 0x401, 0x800000000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xf, 0x3, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = ioctl$auto_NS_GET_USERNS(0xffffffffffffffff, 0xb701, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_DUMPHMAC(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000009dae0867cf3e73c492e80d526ca34a342942677348ef496222b56e4bf7f0218ad53c9d72c215597b8567cbed8e1d5b60861c871196e41c7d120c68d03e34c3f78dfc0e41b5b0f07a2c83109266dd24c68c1e5fc3c14b4c5abdb2ca9b8433798d2e4c32a0062c07fd18703650ea78e30cbce5fa5890", @ANYRES16=r3, @ANYBLOB="01172cbd7000ffdbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x844)
bpf$auto_BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)=@raw_tracepoint={0x5, r1, 0x0, 0x2}, 0x2)
r4 = socket(0x2, 0x800, 0x4000100)
mmap$auto(0x0, 0x3, 0x9, 0x29b7f, 0x7, 0x28000)
getsockopt$auto(0x4, 0x6, 0x6, 0xfffffffffffffffc, 0x0)
mmap$auto(0x7, 0x9, 0x2, 0x40eb1, 0x602, 0x300000000003)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0)
ioctl$auto_SOUND_MIXER_WRITE_RECSRC2(r5, 0xc0044dff, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f00000000c0), r6)
sendmsg$auto_KSMBD_EVENT_SPNEGO_AUTHEN_REQUEST(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)={0x14, r7, 0x1, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(r0, r4, 0x50)
socket(0xa, 0x3, 0x6)
r8 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket(0xa, 0x2, 0x88)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000180)={'batadv0\x00', <r12=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r12, r11, 0x4, 0x1ff, r10, @relative_id=0x13, 0xe600}, 0xf)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r8, 0x0, 0x3}, 0xc)
execve$auto(&(0x7f0000000340)='./file0\x00', &(0x7f0000000180)=&(0x7f0000000100)='/dev/dsp\x00', &(0x7f0000000240)=&(0x7f00000001c0)='\xac\xb3')
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)

1.870716622s ago: executing program 2 (id=1554):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001140)='/proc/sys/net/ipv4/conf/vlan0/route_localnet\x00', 0x8a042, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0)
readv$auto(r0, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
write$auto(r2, &(0x7f0000000140)='\x00\n\x00\x00\x00\x00\x00\x00', 0x2)
r3 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0)
write$auto(r3, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x129800, 0x0)
mmap$auto(0x0, 0x2, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bdi/8:0/wb_stats\x00', 0x22080, 0x0)
read$auto_cgwb_debug_stats_fops_(r4, &(0x7f0000000040)=""/185, 0xb9)
r5 = socket(0x9, 0x1, 0x400008)
setsockopt$auto(r5, 0x10000000084, 0x21, 0x0, 0x0)
r6 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r6, 0x6, 0xd, 0x0, 0x6)
sendmsg$auto_OVS_METER_CMD_GET(r6, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x2c048001)
getrandom$auto(0x0, 0x6000000, 0x3)
readv$auto(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000240)="e1624746de0c462864e8991807529ac6af93bf459f6a117f1cd44750cef8d5a59715e97f090b3ea8b58f44694d9f5ff508f4882e35a774605d21b330e0359f1ae9b9ce39ae6d8b7160", 0x20000000}, 0x5)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091ce, 0x4, 0x0, 0x8, 0x2)
madvise$auto(0x110c230000, 0x1, 0x9)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x20100, 0x0)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)

1.869457261s ago: executing program 4 (id=1563):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_getsetattr$auto(0x3, 0x0, 0x0)
r2 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f00000002c0)=ANY=[@ANYBLOB="68130000", @ANYRES16, @ANYBLOB="00012bbd7000fbdbdf25070000000a01098033d6b2f24ee018e9b9855ea5a93da0dbf50b4b8d86d9c820adfd997126489bd2546bfcc6fbff50c3bf8d7f45d1ebb9d89021906d31e536c6c0c92f519a0c83aea385552794c7882697d5a21c4da79315acddceacb346ab83e89a1645955894eef5f3c2c35e3124caac9166412cacae4bffc75d40f06baba4de4dbe5513052f62def8033ecf0fe621bc7a7f715aee786d0f3181c875c3977947736c9579f2a8135c790800c6", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB="0000002800038008005e00", @ANYBLOB="c6225e16ddb851bd42161fc4ce3d274e08df8ff9cbefcbd0d21c3e118eaedf7207c838e8c0914ec7cf2e942371445c05a6aa", @ANYRES64=r2, @ANYRES32, @ANYRESOCT=r2, @ANYRES32, @ANYBLOB="99f3a10396e315e1f108b34d1f100980b046b622a9dd59042c88a5c2dece45bb172c8508000d00", @ANYRES8=r2, @ANYRES16=r1], 0x1368}, 0x1, 0x0, 0x0, 0x80000}, 0x28010)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRNM\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^B\xb8\xe4j\t3\xe4\x90\xcc\x9d\xc5\x0fo\x84\xf4\x89\v\xea\x1b\x95\xafQ;CL\"\x01@\x00\x00\x00\x00\f\x00\xc0\x13\xc8\xe2\xae\xf5\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8d\x81\x81O*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,8\x93\xba\x88\x93\x9d\xb6\x1a\x7f\xc0%\xb0\x83ROJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd6eWj\xdc\xac\x88\xf0\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\xfb\xba\xb2.$\'\x1e\x82\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\xff\xff\x00'/250, 0xfdf3, 0x39)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20040, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0008, 0x17)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x800000404, 0x8000)
ioperm$auto(0x7, 0x6, 0x2)
userfaultfd$auto(0x1)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
settimeofday$auto(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
futex_waitv$auto(&(0x7f0000000780)={0x81, 0x8000000000000001, 0x14000}, 0x3, 0x401, &(0x7f00000007c0)={0x7ff, 0x9}, 0x6)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0xa0100, 0x0)
lseek$auto(0x3, 0x0, 0x1)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
io_uring_setup$auto(0xffffffa8, &(0x7f0000000040)={0xc6, 0x8, 0xbdfe, 0x7ff, 0x101, 0x8, <r3=>0xffffffffffffffff, [0x4, 0x7, 0x187b], {0x7, 0x5, 0x5, 0x0, 0x7, 0x5, 0xdb, 0x2, 0xfffffffffffffff7}, {0x80000000, 0xbcd, 0x9, 0x7, 0x5f6, 0xff, 0xa, 0x9, 0xf}})
splice$auto(r2, &(0x7f0000000700)=0x8, r3, &(0x7f0000000740)=0x8000, 0x9, 0x9)
sendmsg$auto_ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000a00)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000009c0)={&(0x7f0000000900)={0x98, 0x0, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_EEE_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x59e58baa}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7fffffff}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_EEE_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x24000800}, 0x4000)

1.433214373s ago: executing program 3 (id=1555):
ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000040)={0xff, 0x7, 0x8000000000000001, 0x7, 0x4, <r0=>0x0})
r1 = syz_open_procfs$namespace(r0, &(0x7f0000000100)='ns/ipc\x00')
setns(r1, 0x0)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x382, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(r2, 0x0, 0x40800)
memfd_secret$auto(0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex, 0xffffffffffffffff, 0x4, 0x1, 0xffffffffffffffff, @relative_id=0x13, 0xe600}, 0xf)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
bpf$auto(0x2, 0x0, 0xc)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x9, &(0x7f0000000080)={0x1, 0xd, 0xc000, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0x1000000f, 0x29f, 0x80000000, 0x7f, 0x101, 0x6, 0x9}, {0x5, 0x1, 0x21bb800, 0x5, 0x6f, 0x2, 0x1, 0x8, 0x100002000}})
sendfile$auto(r3, r3, 0x0, 0x200)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(0xffffffffffffffff, 0x40146f2c, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_clone3(&(0x7f0000000200)={0x383281180, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)

1.431942265s ago: executing program 1 (id=1556):
mmap$auto(0x0, 0x2020009, 0x3, 0x14, 0xfffffffffffffffa, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = open(0x0, 0x4220c1, 0x155)
socket(0x2, 0x80802, 0x6)
r2 = socket(0x10, 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x80100, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r3 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
write$auto(r3, &(0x7f0000005900)='\x00', 0x1ff)
mmap$auto(0xfffffffffffffe00, 0xfffffffffffffff9, 0x1, 0xc87c, r3, 0xfffffffffffffff9)
mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x10000000000048, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(r2, 0xfffff6c1, r0)
socket(0x28, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
recvmmsg$auto(r1, &(0x7f0000000100)={{&(0x7f0000000040)="92b2723fad3f3189e30360ae0ccb75b48287204370e8a539f1", 0x0, 0x0, 0x226d, &(0x7f0000000840)="28ef68529c6c3a5f28d26268adf0f183570df2c6c9330e6b5882e638bda14c8ab3dc6a00a95700dedec30eca2c8db82850ee48f83e5bfa714427f96ab871b885cb24efb7b1256a8107df78a3ed4e07b21e74f07a55b7d5de4194dae0ec5bc2ae7433d06b63aa6f396ba10690a3b11e25abbc040c9313421eef39cecc715f14157f95b3ce80ca8da9ca3dd0ffa00e2377848793c150d32594b48b4c6fcb4ed14ff4205437e1c4e402d775d9a0b27226f6674ebf8b396e8a3514d57b94c00771886852b950a80c04fe65d6aaef4aa0d5cd3af88f59f213f0a42e3d57dc1a250f765a3cc0c53692258c835f3564065f001e17f4d622454dc864ad683c6c5cd482090e4f35d7b6015ebb961854cdbc5b862fa5512153f60b3ed2d27c4f719171f030647faf0f896529adf9f348d0b0064385eb7a530b4a68dba10110586eac1537173397e478c2e45597447033354374bb7b270b0a656c124c3c3b2f2139734e0dfe9d02d134ce4efee19bb1a81aa013650c73db8101df9fd4325afbbceaae2139e372044e1edcd44f433974da5662aa3bdd23496af3750be8f7b88581f9dbbf1417e4659caed6b4350b13b7b4b02be3cc6d9fd276977b92bdc001e3f65f8cf88c9987a8361c915765200e899ffe9d74544e202d9d238706e5ce6d4b122db3a103504a4e757663300d17f753512e81752408f587136cd1a6dd072b0b424ef7b8d140cc57265f0649ad777078ddf0efe4f5c57af6f46fc8ab4435ea7240e638eb5a7e5ecb1c482e960b2d90880f139455a8584350add4b1725d90a9b65b85b30b07a95d5bb361f97aeadb6d0a7383a8dd31f9c9e4de2db27bb2f18c426c19d40e55e46b905ea7d2a672740e9e97cf2a64d2640b90c99b68ddba576482e965bcec9d18e9dddc2a59e07eb2f569c5e878664989d1bbfd8c7ad646936a33de93c81b2f060113011c19e08cf0d730296e48e371338cd4dff166ab9377a0ed98a10bed9141a06f3dda42ebcc286107749910aa1e38568bb5c92fd476555adc55115db18ad3e3d3fb1ded14afb00c3e4ab23cd71888d7de10c64988c4c1a244c31c7d53c5192849bff530b5a9b57c05abf5c01dae398e8ce35fcd917ec24dec0d9df8616c5d1834469d7bcdaaaa0b95628b870eb99577ed240f5c1f3b396ae8642938a4cc03950415e467d7fee1f0de1b62e4b42a1f9e337df9afc1df9743a977d0572be63f48ffbc942e11364909e00f28755a3dfb358ce454b3107945f05d0f29411a9536e4bb9f5300928bb34aac52996b007289933ce9279334817fc34ed771feaf7d7d20b633bf71d06e8b039e682208849657120c786d2e651dc820f86a9cbd55e20f365d09ae40648c2f28480839b470fa041c22701d79161e26241df222ba498e913da5aa929e7e17afc93433b8bb988fae1d4ec77129d60c67368d37267251effded738ce67b7f94d87957f4eeff4ac064eb9fe13b88ee75ab98736437ed4db735e1c4a874b733b18d4cedeaaa124caf8d8bb557cea3619c17f51ec3152c8a5e03e3ed64883f6936328dbc17e69f5dacc18ba970e78a45de2aec322c131ab6f4f676c49383425c39500f209a66b44df161363c6e8440734621bc4ac74814cfd89bc652d512ebbe3d09cd0071a47fe973d886918f51c55e23346aa63106a572aad0e4469ee2a17d0fef8a37d1804e2fa84662ffe3e63a23c1facd6fb83c305d6802e770b44a14a1da2b66b7c795018fbaed9ffff8718bfbbbf1b211adc4255289e4e2f94dc9fdf8c9138fe9056a8804d35f4d3b322469e41282e2a8c7fcd3ea9f91c11e6ae051b5c7e3975ffb7f0ae3847bd2cd65f2910ff634c511f8ffdc918b61d3297923275416d6b30c0d74e20c860dc0968dd7482d880c6aa2fe475c9d20926186d345e25311a85540d1ffed441336e1f4b3ad11042ad97651d994396476d50b4a9ea19c34fa5b2f9728ed30c8ef828259246014c11f863c1cbe93c721ab09957ddae952ea1e52b61ed64e56cd654f89eb61313126f8a7f2322aa9494bec08dd9c75f728c4401313860816bacf914803613f4da481145399010729ac356ff0461e9312f8716dcbdbdc982d966e589e8ecbc4675a8de6ca8975e008b096c59ea93f52f90316af069d04ab18c498db1c20cc20e0fe7f788c61675b041a0582f31580faa3f4d76f15214acacf806a41b19e398c99466e7de7db02fcb8d5ecf2bad8db7ba6571e3e1f7cce4bad70d796a8834447f339457a3bf3a52ec8be709ec3b36a292b5660dd51419d5abae0ec4b3de128f8fc1befba48358d664350dc4201aa6eda2f2da5dca4306a40d9dffac86274ed85268f12df92ce93cf163be7fed1462acedc93c64f6c7426c7d1e076ae36bfed4b7d4aee021371793402d9b5d1493cee73a19a685886640918c907f50d77b24d83003c07ef2c46409923ccaec5080d96e582aaddd124733467bc769d96a62db4a3d4863e922916a324acfd6f0a1ff164ddb0269797b3cafa1a5ff1236f4c3038901858264b1aadcf0a518b6e68c063bfafc25e0e6e02c333e8a933c24ce4f3f96735c7b6d23c85d987fb2de96c28225284a03a209ae49ea397fd4790da92bad14d06a1130ff031299271fff9bb78a2d10e44eb03580a24f910b6cc91cfebffe58f920f68e2bffa089a2ea47f7d0c5c4b0949b1e3d252a8310d7027d55714ce0f616b3e24d9a2b6296a1d6a6b5c9c8ced10ac7ba6e9939fdb08b122c1f5be68d40117091bd2b90e726d246e00090fbd92322ed15c96585342792147edebb33df09b84a6c541cfd73d9e522d7dca18c150ee203537621fc46e2dcaecbc30476231f7fa44ca640d4132c72fde22a72c23079df5bfa4914947ecf27b7a63be940a52950fd61f3f89e5f4a463abde2c4ce9a530b9dd983a5ea0b6e5c5201db76c22a20d534373610703cb5c94dfa3b39203870c5fa63481ae191e071e6a8688fbf4e7b9de2e20eb245a7fab47930d2e83d10dcb511d501aacf5dd425709db16dc45c2b10cc4638fba717ffd2bbc4f85e56bf98984697f7e040ac4d81a98e6301b46e8e44fb82fcaae55a4eae25d199030ef49b6b9897d43567001d6daf40014dfe0d3e04af1f6e1dd39cda3c721c085a92991005877e76d1357692c4e10b93eea38b58e4e1d8ba4cce5ba85cafd89ee9622171fc92a826a723a18177e4df6e03e0647777e3315ca30b3938468b1ea8e7772300d8ac09336d8330903a8a68c5866196e85e7e3c2b802c37beecc304bacfb827ef430782fa5a493febeab59b855de9a6da66dc0ccc5819e3ad9b273e625c4030725b7311598d53c6a88d332754ae046a75b929d395e98513eca058d75a5795fd197e076c5d4b61e74df9d6a035a5fbc62262378686ac77c002ecec6719b799bf485101a326553ed592931ed083378ded22f503a3cbb04dd91c00604050f526eca891f7053136952eca1327237ac4a013c5057cc986d75800372d5d4b079b6b0ee17cb4d4a0005d64a847058f1ac848eb92310c05aa6681cf197d1cd8ec69b3642fe4031f0de4cfef22baca0559dbca583835ded0325209ca43581e9a9926c2c16f4f2241ca8690cbb44a729a7a9f64c734817a6934c454ba12d72a8af9c15f84c9c56447a1a0b453c9d35b91cffe9eb1e039af6baff7de23251eb2923d1172f898edba422eb89f0cc04c56fa42e88f6fa0269829622d907039a66f5d9a26de8e49c1b372f82a68444b944684b0ab0ccf5e16effb64fb9aac3d78b7b974f4304ec1b03bcb2c70b7e62c54feb7ddebe1ca848c9837b3a681e49ee08d5a19b37ffeb31d685bcead422e5b02b8c8d01033928a9b73f5b776de9fe33353fa1ba7e58cd8e6da8e7456352c25b7cb1eb8cbe7962fadc2fdd047285d47540bfddd6187e173d8d8f3f5eb12df50b30b8feaa0d831b92b76ffc9f33f1e8d588c630858d055b3c0cda31599621727f2982fe89723f0c61e6e905f9e136af826668ae50d2874ccbbffe14a7a3ae78ef3e2ce79ad4ca869bbae2e84700c6ca079abfa7b221010ae82d1d602c3995f9b09fe10962d75fa607c1f06e539e1d7434b6b0fd1ca0b80485c2fcb86e56e30bab40f24e3fbcdc6dcb80ddef3245217310ea9015468d2ec126599da55ae3b8696e3043d175e9b0ab59dbd082346545571539351142e1c6426079de1b5176d3a61d207e1f81e1de5b7ecf0fe3543c12ecea3da0320661d5d108207c131196e2c99b9e38990076e07ef106d613afc263809022ee4d6428b3fe72150e9430f2cbae066248f356b5eaad6878ca4b433c43edfb1035c75118d70c3a020a8365f120931a48bf737a87ca55b309a548a6da9a944854dafbb43a6057d7af30e90bd02bbb20db571433df8cab5c8c1aa57cc494464abdcdf382d017c9c6cdaac13545f3f177a7f05c6358a48468d5314380c9decb7a9a4873758eee53992bde98d75f5a611c5e5d59f36814001c2c5649fdbaf8117e54f08f63370878c310faf7fb7782bea9ca078ffe32ac325b1c139c233c150a54975415e9a4733f86fefebc0b24314a1d84dd649939dbc8abe21001f5587a6d0c12fa208c69c57b76b5ff9189d981cc315389aae2d356b63f08d6cccdbc59ba54173588dd0562fb82adb99d1e2d2429cf7ca0cc0b81d1fbc7f69149fd4e3bbab7db03e32a55a01c83ed35b41f6521f318889d37cb8b4181c37a5d82f14fef53c85ae979f1d35458c35bf1ebacf89cf510fa3f66ba2d9c5b33068c355b90a5a0fbdfb92e2cb1f6ca38eccb7956a9b9a07602bb770006eca98136c949f4262ec9793ed875e969b4e19043068bd9a23c5df5fd98d1e6b49b4f3a8230d7790e0fddc8840dae2c7bb4e0c01b40fdedac33e74faa3c8a642ebea432a6f842f8c1428a596871b9b0ff3d9460797d40d6b936c6a936a0b7ec494b7a00766c515b28986600cd82fa05513d618ba89b7f57d86426aeff6039dc68d791fb53a531d7ab4c92b7c268cf3811947d10dcad31b08625c7eb98e9ab728eb0bcd6522fed0364853962058de2add1c33275a612e2bfd1f458db35fb85c509b01fec92d18af132520c30b9baa498a05c4aa1408d6f18d4188af201f4e9f0d151455e9a6fa0ad0f782d18fe47a48f6d2c0f71429bbc27273fab0344d20fe4175e5e4202370eb59a97b5b1acca0c90d81226ab8cba2f3b15b9481139b253fcb3bf68eb368cad65733785b1cff84d0b460c72fe6a6c3ca8a5ca2fb92099408db826116ddbc0bdc281f27da41d9ebf5b7bf88471dd672e87ecb3ba3249c5d5125584a56991bcfe09b484b161f1aa1546da9ce5a5de0f44b1b58ab5c55e2775621a52598de1f1993950e9e27b9e8ec471e5e19ba1f64ba1a9596af65cbe516702e444f0992379d16ec5907a5e3fadd250e5cd36bad40e3b1135afa3be3f69261c889a6f1485a7073b3a3f016bd55588ef8b8427d4ec245a6373ff8360b9649d77ef579b52780d5b2b718e6ca2288ad2ef53ccd3f317388eced13847a9b8ca52256068f405028b980b63e1f7870728fd658534e24c78b75674d78daf3e4ee39597d259d6a0090eab7e2a6882a3fab3a326510b83c4dd2138a50269487ff135b27ba8a23f798ba0c7cd4d45c50e724ec5f184825ffd385417667c22688060959ec5472479ba3a275c55b5b52df80abfae3ec73715e9701c96a0461279aefac390cae12ad768d6b68953c0935339d30d53f117fb1374cddfde456c37398db728f2f22f8914419a384463ebe4c45ece7802673f78a46917644f8aa48c39b0fff7991b9c5fcead27266964aa9cb070403a6f775a", 0xffffffff00000000, 0x3}, 0x9}, 0x7, 0x2, &(0x7f0000000140)={0x2, 0x1200000000})
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x40106f52, r5)

831.339186ms ago: executing program 1 (id=1557):
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/task_delayacct\x00', 0x2000, 0x0)
r0 = io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ipv6_route\x00', 0x101000, 0x0)
sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x40000, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, 0x0, 0x8044)
pread64$auto(r1, 0x0, 0x8, 0xffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000c40), r3)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r3, &(0x7f0000001d40)={0x0, 0x0, &(0x7f0000001d00)={&(0x7f0000000100)={0x78, r4, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_MRU={0x6, 0x9, 0x9}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "499831e273bb492d173df88e74c9"}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "4f1980af25430d91ee91098b894f"}, @OVS_PACKET_ATTR_KEY={0x4}, @OVS_PACKET_ATTR_MRU={0x6}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0x6}, @OVS_PACKET_ATTR_MRU={0x6, 0x9, 0x2}, @OVS_PACKET_ATTR_HASH={0xc, 0xb, 0x488}, @OVS_PACKET_ATTR_HASH={0xc, 0xb, 0x8}]}, 0x78}, 0x1, 0x0, 0x0, 0x8000}, 0x80000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
read$auto(0x3, 0x0, 0x80)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
sysfs$auto(0x8, 0x5f3b, 0x7)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/12/hwirq\x00', 0x2000, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/tracing_on\x00', 0x240000, 0x0)
r7 = setfsuid$auto(0xee01)
setresuid$auto(0x0, r7, 0x0)
sendmsg$auto_NL80211_CMD_DEL_NAN_FUNCTION(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="c8050000", @ANYRES16=0x0, @ANYBLOB="310e26bd7000fcdbdf2576000000080005000e0000000400ec0004003c00050030010600000008006100060000009403b980040030800c00c800090000000000000008009400", @ANYRES32=r6, @ANYBLOB="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", @ANYRES32=r7, @ANYBLOB="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"], 0x3c8}, 0x1, 0x0, 0x0, 0x10}, 0x8851)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)

380.575571ms ago: executing program 3 (id=1558):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001140)='/proc/sys/net/ipv4/conf/vlan0/route_localnet\x00', 0x8a042, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/Stats\x00', 0x28102, 0x0)
readv$auto(r0, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
write$auto(r2, &(0x7f0000000140)='\x00\n\x00\x00\x00\x00\x00\x00', 0x2)
write$auto(0xffffffffffffffff, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x129800, 0x0)
mmap$auto(0x0, 0x2, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_cgwb_debug_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bdi/8:0/wb_stats\x00', 0x22080, 0x0)
read$auto_cgwb_debug_stats_fops_(r3, &(0x7f0000000040)=""/185, 0xb9)
r4 = socket(0x9, 0x1, 0x400008)
setsockopt$auto(r4, 0x10000000084, 0x21, 0x0, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x6)
sendmsg$auto_OVS_METER_CMD_GET(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x2c048001)
getrandom$auto(0x0, 0x6000000, 0x3)
r5 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x185200, 0x0)
readv$auto(r5, &(0x7f0000000140)={&(0x7f0000000240)="e1624746de0c462864e8991807529ac6af93bf459f6a117f1cd44750cef8d5a59715e97f090b3ea8b58f44694d9f5ff508f4882e35a774605d21b330e0359f1ae9b9ce39ae6d8b7160", 0x20000000}, 0x5)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091ce, 0x4, 0x0, 0x8, 0x2)
madvise$auto(0x110c230000, 0x1, 0x9)
r6 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/pagetypeinfo\x00', 0x43102, 0x0)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x20100, 0x0)
futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4)
read$auto_proc_iter_file_ops_compat_inode(r6, &(0x7f0000000180)=""/178, 0xb2)

678.827µs ago: executing program 4 (id=1560):
mmap$auto(0x0, 0x2000b, 0x4, 0xeb1, 0x401, 0x8000)
socket(0x29, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x68140, 0x0)
ioctl$auto(r0, 0x5457, 0xd8)
close_range$auto(0x2, 0x8, 0x0)
r1 = memfd_create$auto(0x0, 0xe)
clone$auto(0x800, 0x1, &(0x7f0000000000)=0x5570, &(0x7f0000000040)=0x8a4, 0x6)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
write$auto(0x3, 0x0, 0xfdf3)
r2 = open_tree_attr$auto(0xffffffffffffff9c, 0x0, 0x4, 0x0, 0xf)
pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, r3, 0x4, 0xfffffff8, 0x25dfdbff, {}, [@NL80211_ATTR_MLO_SUPPORT={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_RADAR_BACKGROUND={0x4}, @NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_FILS_ERP_USERNAME={0xd, 0xf9, "e1074bbc96b109fe57"}]}, 0x38}, 0x1, 0x0, 0x0, 0x8014}, 0x20004811)

0s ago: executing program 2 (id=1561):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00', <r1=>0x0})
bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x6, 0x4, 0x7, 0x67, 0x400, 0x0, 0x0, 0x80f0c8, 0x0, "2fc1d5cbcb9f6b5e511f0dd8d6068f65", r1, 0x113e33f2, 0xffffffffffffffff, 0xe4, 0x6, 0x5, 0x3ad, 0x3, 0x0, 0x3, @attach_prog_fd, 0x4, 0xffff, 0x8, 0x81, 0xfffffffe}, 0x4a)
r2 = waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000080)={@siginfo_0_0={0x9, 0x5, 0x3e, @_sigfault={&(0x7f0000000000)="d14eb1ebafa54d73adb507ee7b167be246754ef0fa113c8b56ca558efe8ab5b4ced8ffeee0e87ff68958f673dbd84107db46141ec0ae3c15a886e41808abfeeea9db9d9730062940e93e7f583e76fb1001c0fa0aab43e3a3a744df3e5e00fa5d24da113eefafa5", @_trapno=0x2}}}, 0x7ff, &(0x7f0000000100)={{}, {0xffffffffffffffff, 0xffffffffffffffff}, 0x100, 0x4, 0x8, 0x8, 0x2, 0x2, 0xfffffffffffffffa, 0x9, 0x5, 0x2, 0x78, 0x10, 0x6, 0x8})
getpriority$auto_PRIO_PGRP(0x1, r2)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r3, &(0x7f0000000000)="4c91f2c388274610e18d5fc5e5bfd9800e9b46", 0x13)
mmap$auto(0x0, 0x400007, 0x8000, 0x9b32, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/rcu_normal\x00', 0x10b142, 0x0)
write$auto(0x3, 0x0, 0x100082)
socket(0x1d, 0x2, 0x6)
socket(0x2, 0x1, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/loop4\x00', 0xc040, 0x0)
ioctl$auto(0x3, 0x1, 0x90000800000402)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ad00, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0x3, 0x0, 0xffd8)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x8101, 0x0, 0xd0, 0x5, 0x6, 0x0, 0x1, 0x3691, 0x0, {0x100000000, 0x10000}, 0x7ffffffffffffffe, 0x40000000000006, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x4bbd, 0xffffffffffff628e, 0xa747, 0xdeae, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)

kernel console output (not intermixed with test programs):

tive
[  102.522828][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1
[  102.529804][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.556119][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  102.581571][ T5839] hsr_slave_0: entered promiscuous mode
[  102.588003][ T5839] hsr_slave_1: entered promiscuous mode
[  102.594566][ T5839] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  102.602408][ T5839] Cannot create hsr debugfs directory
[  102.714361][ T5841] hsr_slave_0: entered promiscuous mode
[  102.721277][ T5841] hsr_slave_1: entered promiscuous mode
[  102.727486][ T5841] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  102.735205][ T5841] Cannot create hsr debugfs directory
[  102.763588][ T5846] hsr_slave_0: entered promiscuous mode
[  102.770153][ T5846] hsr_slave_1: entered promiscuous mode
[  102.778968][ T5846] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  102.786659][ T5846] Cannot create hsr debugfs directory
[  103.274272][ T5841] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  103.287681][ T5841] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  103.308748][ T5841] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  103.322955][ T5841] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  103.383527][ T5840] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  103.403842][ T5840] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  103.419526][ T5840] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  103.433008][ T5840] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  103.578756][ T5839] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  103.590076][ T5839] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  103.626071][ T5839] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  103.636941][ T5839] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  103.720422][ T5846] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  103.732027][ T5846] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  103.761276][ T5841] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.768263][ T5846] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  103.800736][ T5846] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  103.852299][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.869235][ T5841] 8021q: adding VLAN 0 to HW filter on device team0
[  103.907949][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.915321][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.954695][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.961971][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.995152][ T5840] 8021q: adding VLAN 0 to HW filter on device team0
[  104.028942][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.036142][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.091768][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.098995][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.144605][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.225697][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[  104.253107][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.261183][   T55] Bluetooth: hci3: command tx timeout
[  104.261261][ T5844] Bluetooth: hci0: command tx timeout
[  104.297363][ T2946] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.304689][ T2946] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.328591][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.335818][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.343645][ T5844] Bluetooth: hci2: command tx timeout
[  104.351974][ T5844] Bluetooth: hci1: command tx timeout
[  104.495081][ T5846] 8021q: adding VLAN 0 to HW filter on device team0
[  104.531001][ T2977] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.538211][ T2977] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.636981][ T2946] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.644254][ T2946] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.780338][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.836697][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.960037][ T5841] veth0_vlan: entered promiscuous mode
[  104.990242][ T5840] veth0_vlan: entered promiscuous mode
[  105.039719][ T5841] veth1_vlan: entered promiscuous mode
[  105.058580][ T5840] veth1_vlan: entered promiscuous mode
[  105.076926][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[  105.236217][ T5840] veth0_macvtap: entered promiscuous mode
[  105.244780][ T5841] veth0_macvtap: entered promiscuous mode
[  105.259720][ T5839] veth0_vlan: entered promiscuous mode
[  105.269777][ T5841] veth1_macvtap: entered promiscuous mode
[  105.285636][ T5840] veth1_macvtap: entered promiscuous mode
[  105.307922][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0
[  105.326204][ T5839] veth1_vlan: entered promiscuous mode
[  105.350424][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.377241][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.389572][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.404420][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.414081][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.438477][ T5840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.449803][ T5840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.465825][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.476739][ T5841] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.486459][ T5841] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.495418][ T5841] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.504545][ T5841] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.533739][ T5840] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.543980][ T5840] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.553212][ T5840] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.562143][ T5840] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.690076][ T5846] veth0_vlan: entered promiscuous mode
[  105.699868][ T5839] veth0_macvtap: entered promiscuous mode
[  105.730115][ T5839] veth1_macvtap: entered promiscuous mode
[  105.770350][ T2977] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.778915][ T2977] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.829300][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.841573][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.852601][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  105.865497][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.877272][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.887306][ T5846] veth1_vlan: entered promiscuous mode
[  105.920104][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.928204][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.948088][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.959526][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.969460][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  105.980067][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  105.992391][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.018656][ T2977] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.043119][ T2977] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.046317][ T5839] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.059435][ T5839] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.068909][ T5839] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.077923][ T5839] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.142165][ T5846] veth0_macvtap: entered promiscuous mode
[  106.150800][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.158667][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.202409][ T5846] veth1_macvtap: entered promiscuous mode
[  106.253555][ T5841] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  106.288190][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.305036][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.316568][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.328532][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.340844][ T5844] Bluetooth: hci3: command tx timeout
[  106.341209][   T55] Bluetooth: hci0: command tx timeout
[  106.353044][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  106.363935][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.375725][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0
[  106.431479][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.437935][   T55] Bluetooth: hci1: command tx timeout
[  106.443133][ T5844] Bluetooth: hci2: command tx timeout
[  106.457546][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.467660][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.482478][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.494481][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  106.508828][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  106.522617][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.612733][ T5846] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.644264][ T5846] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.684937][ T5846] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.694063][ T5846] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.733033][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.781743][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.917764][ T2946] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.935747][ T2946] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.039171][ T2977] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.075821][ T2977] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.162867][ T5912] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  107.193954][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.204355][ T5912] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  107.231816][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.775246][ T5927] sysfs_service_op_show: Client not running :-5:
[  107.942083][ T5930] FAULT_INJECTION: forcing a failure.
[  107.942083][ T5930] name failslab, interval 1, probability 0, space 0, times 1
[  107.961271][ T5930] CPU: 1 UID: 0 PID: 5930 Comm: syz.3.6 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  107.961320][ T5930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  107.961348][ T5930] Call Trace:
[  107.961359][ T5930]  <TASK>
[  107.961375][ T5930]  dump_stack_lvl+0x16c/0x1f0
[  107.961439][ T5930]  should_fail_ex+0x512/0x640
[  107.961477][ T5930]  ? __kmalloc_noprof+0xbf/0x510
[  107.961518][ T5930]  ? lsm_blob_alloc+0x68/0x90
[  107.961568][ T5930]  should_failslab+0xc2/0x120
[  107.961612][ T5930]  __kmalloc_noprof+0xd2/0x510
[  107.961658][ T5930]  lsm_blob_alloc+0x68/0x90
[  107.961704][ T5930]  security_sk_alloc+0x30/0x270
[  107.961736][ T5930]  sk_prot_alloc+0x1c7/0x2a0
[  107.961783][ T5930]  sk_alloc+0x36/0xc20
[  107.961819][ T5930]  alg_create+0x9e/0x150
[  107.961858][ T5930]  __sock_create+0x335/0x8d0
[  107.961892][ T5930]  __sys_socket+0x14d/0x260
[  107.961920][ T5930]  ? __pfx___sys_socket+0x10/0x10
[  107.961950][ T5930]  ? rcu_is_watching+0x12/0xc0
[  107.961985][ T5930]  __x64_sys_socket+0x72/0xb0
[  107.962012][ T5930]  ? lockdep_hardirqs_on+0x7c/0x110
[  107.962050][ T5930]  do_syscall_64+0xcd/0x230
[  107.962093][ T5930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.962121][ T5930] RIP: 0033:0x7eff7938e169
[  107.962152][ T5930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.962180][ T5930] RSP: 002b:00007eff7a11f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  107.962205][ T5930] RAX: ffffffffffffffda RBX: 00007eff795b5fa0 RCX: 00007eff7938e169
[  107.962224][ T5930] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000026
[  107.962240][ T5930] RBP: 00007eff79410a68 R08: 0000000000000000 R09: 0000000000000000
[  107.962256][ T5930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  107.962272][ T5930] R13: 0000000000000000 R14: 00007eff795b5fa0 R15: 00007ffd6145dde8
[  107.962306][ T5930]  </TASK>
[  108.164783][    C1] vkms_vblank_simulate: vblank timer overrun
[  108.420997][ T5844] Bluetooth: hci3: command tx timeout
[  108.422892][   T55] Bluetooth: hci0: command tx timeout
[  108.501747][   T55] Bluetooth: hci1: command tx timeout
[  108.510768][   T55] Bluetooth: hci2: command tx timeout
[  108.887986][ T5938] bridge0: port 3(team0) entered blocking state
[  108.910846][ T5938] bridge0: port 3(team0) entered disabled state
[  108.922183][ T5938] team0: entered allmulticast mode
[  108.960533][ T5938] team_slave_0: entered allmulticast mode
[  108.966339][ T5938] team_slave_1: entered allmulticast mode
[  109.056286][ T5938] team0: entered promiscuous mode
[  109.082544][ T5938] team_slave_0: entered promiscuous mode
[  109.192011][ T5938] team_slave_1: entered promiscuous mode
[  109.250013][ T5938] bridge0: port 3(team0) entered blocking state
[  109.256658][ T5938] bridge0: port 3(team0) entered forwarding state
[  109.624343][ T5943] FAULT_INJECTION: forcing a failure.
[  109.624343][ T5943] name failslab, interval 1, probability 0, space 0, times 0
[  109.657731][ T5943] CPU: 1 UID: 0 PID: 5943 Comm: syz.1.9 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  109.657779][ T5943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  109.657798][ T5943] Call Trace:
[  109.657808][ T5943]  <TASK>
[  109.657821][ T5943]  dump_stack_lvl+0x16c/0x1f0
[  109.657877][ T5943]  should_fail_ex+0x512/0x640
[  109.657916][ T5943]  ? __kmalloc_noprof+0xbf/0x510
[  109.657958][ T5943]  ? lsm_blob_alloc+0x68/0x90
[  109.658009][ T5943]  should_failslab+0xc2/0x120
[  109.658052][ T5943]  __kmalloc_noprof+0xd2/0x510
[  109.658102][ T5943]  lsm_blob_alloc+0x68/0x90
[  109.658156][ T5943]  security_sk_alloc+0x30/0x270
[  109.658194][ T5943]  sk_prot_alloc+0xfb/0x2a0
[  109.658251][ T5943]  sk_alloc+0x36/0xc20
[  109.658294][ T5943]  inet6_create+0x381/0x1300
[  109.658347][ T5943]  ? inet6_create+0x7f/0x1300
[  109.658393][ T5943]  __sock_create+0x335/0x8d0
[  109.658435][ T5943]  inet_ctl_sock_create+0x94/0x230
[  109.658497][ T5943]  ? __pfx_inet_ctl_sock_create+0x10/0x10
[  109.658555][ T5943]  ? proc_create_net_data+0x147/0x1b0
[  109.658602][ T5943]  ndisc_net_init+0x89/0x250
[  109.658655][ T5943]  ? __pfx_ndisc_net_init+0x10/0x10
[  109.658705][ T5943]  ? __pfx_ip6mr_net_init+0x10/0x10
[  109.658737][ T5943]  ? ip6mr_net_init+0x2d8/0x4e0
[  109.658770][ T5943]  ? __pfx_ndisc_net_init+0x10/0x10
[  109.658817][ T5943]  ops_init+0x1df/0x5f0
[  109.658869][ T5943]  setup_net+0x21e/0x850
[  109.658921][ T5943]  ? __pfx_setup_net+0x10/0x10
[  109.658966][ T5943]  ? lockdep_init_map_type+0x5c/0x280
[  109.659013][ T5943]  ? __pfx_down_read_killable+0x10/0x10
[  109.659050][ T5943]  ? debug_mutex_init+0x37/0x70
[  109.659088][ T5943]  copy_net_ns+0x2a6/0x5f0
[  109.659145][ T5943]  create_new_namespaces+0x3ea/0xad0
[  109.659194][ T5943]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  109.659239][ T5943]  ksys_unshare+0x45b/0xa40
[  109.659288][ T5943]  ? __pfx_ksys_unshare+0x10/0x10
[  109.659346][ T5943]  ? xfd_validate_state+0x5d/0x180
[  109.659383][ T5943]  ? rcu_is_watching+0x12/0xc0
[  109.659428][ T5943]  __x64_sys_unshare+0x31/0x40
[  109.659476][ T5943]  do_syscall_64+0xcd/0x230
[  109.659528][ T5943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.659560][ T5943] RIP: 0033:0x7f5b9db8e169
[  109.659592][ T5943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.659624][ T5943] RSP: 002b:00007f5b9e914038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  109.659655][ T5943] RAX: ffffffffffffffda RBX: 00007f5b9ddb5fa0 RCX: 00007f5b9db8e169
[  109.659677][ T5943] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  109.659696][ T5943] RBP: 00007f5b9dc10a68 R08: 0000000000000000 R09: 0000000000000000
[  109.659716][ T5943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  109.659735][ T5943] R13: 0000000000000000 R14: 00007f5b9ddb5fa0 R15: 00007ffc7a3023f8
[  109.659783][ T5943]  </TASK>
[  109.659967][ T5943] ICMPv6: NDISC: Failed to initialize the control socket (err -105)
[  110.193786][ T5941] syz.0.8 uses obsolete (PF_INET,SOCK_PACKET)
[  110.766114][ T5956] netlink: zone id is out of range
[  110.800614][ T5956] netlink: zone id is out of range
[  110.805803][ T5956] netlink: zone id is out of range
[  110.832904][ T5956] netlink: zone id is out of range
[  110.841549][ T5956] netlink: zone id is out of range
[  110.883842][ T5956] netlink: zone id is out of range
[  110.889134][ T5956] netlink: zone id is out of range
[  110.970299][ T5963] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input5
[  111.188665][ T5970] Zero length message leads to an empty skb
[  112.555834][ T5970] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  112.789662][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  112.883573][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  113.081149][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  113.952923][ T5993] netlink: 330 bytes leftover after parsing attributes in process `syz.3.21'.
[  114.428671][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  115.222713][ T6022] can: request_module (can-proto-4) failed.
[  115.811196][ T6024] netlink: 8 bytes leftover after parsing attributes in process `syz.2.28'.
[  116.686913][ T6044] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  117.772992][ T6052] netlink: 'syz.0.32': attribute type 1 has an invalid length.
[  117.788236][ T6052] netlink: 13 bytes leftover after parsing attributes in process `syz.0.32'.
[  117.832977][ T6067] process 'syz.1.38' launched '/dev/fd/4' with NULL argv: empty string added
[  118.805874][ T6079] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input6
[  118.892916][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  118.901985][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  119.061018][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  119.069718][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  119.078769][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  119.469644][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  120.473334][ T6094] usbip-vudc usbip-vudc.0: gadget not bound
[  122.093680][ T6119] netlink: 330 bytes leftover after parsing attributes in process `syz.0.49'.
[  122.399774][ T6119] 
: renamed from gre0 (while UP)
[  122.435592][ T6119] netlink: 330 bytes leftover after parsing attributes in process `syz.0.49'.
[  122.444823][ T6123] netlink: 338 bytes leftover after parsing attributes in process `syz.3.50'.
[  122.533842][ T6124] netlink: 338 bytes leftover after parsing attributes in process `syz.3.50'.
[  124.783785][ T6158] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  126.607553][ T6193] netlink: 4 bytes leftover after parsing attributes in process `syz.1.68'.
[  127.636501][ T6207] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input7
[  130.794756][   T55] Bluetooth: hci3: unexpected subevent 0x01 length: 122 > 18
[  130.804594][   T55] Bluetooth: hci3: Invalid handle: 0x1e1a > 0x0eff
[  131.483721][ T5844] Bluetooth: hci3: Malformed Event: 0x02
[  132.392862][ T6263] netlink: 84 bytes leftover after parsing attributes in process `syz.3.82'.
[  134.854638][ T6286] hugetlbfs: syz.2.90 (6286): Using mlock ulimits for SHM_HUGETLB is obsolete
[  135.775211][ T6311] netlink: 40 bytes leftover after parsing attributes in process `syz.0.96'.
[  136.045223][ T6312] bridge0: port 4(syz_tun) entered blocking state
[  136.079874][ T6312] bridge0: port 4(syz_tun) entered disabled state
[  136.134399][ T6312] syz_tun: entered allmulticast mode
[  136.258545][ T6312] syz_tun: entered promiscuous mode
[  136.281072][ T6312] bridge0: port 4(syz_tun) entered blocking state
[  136.287718][ T6312] bridge0: port 4(syz_tun) entered forwarding state
[  136.595976][ T6318] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  138.042290][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  138.048978][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  138.466596][ T6346] sysfs_service_op_show: Client not running :-5:
[  139.708362][ T6364] netlink: 338 bytes leftover after parsing attributes in process `syz.2.117'.
[  139.751886][ T6364] netlink: 338 bytes leftover after parsing attributes in process `syz.2.117'.
[  139.800959][ T6364] netlink: 174 bytes leftover after parsing attributes in process `syz.2.117'.
[  140.871874][ T6389] netlink: 330 bytes leftover after parsing attributes in process `syz.2.119'.
[  140.923004][ T6389] 
: renamed from gre0 (while UP)
[  140.966637][ T6389] netlink: 330 bytes leftover after parsing attributes in process `syz.2.119'.
[  141.922795][ T6403] netlink: 84 bytes leftover after parsing attributes in process `syz.0.122'.
[  146.270682][ T6463] netlink: 40 bytes leftover after parsing attributes in process `syz.1.139'.
[  147.934689][ T6481] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input8
[  148.040861][ T6483] usbip-vudc usbip-vudc.0: gadget not bound
[  152.207787][ T6530] net_ratelimit: 80 callbacks suppressed
[  152.207815][ T6530] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  152.259806][ T6530] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  152.406698][ T6540] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input9
[  152.570206][ T6545] bridge0: port 3(syz_tun) entered blocking state
[  152.602874][ T6545] bridge0: port 3(syz_tun) entered disabled state
[  152.609567][ T6545] syz_tun: entered allmulticast mode
[  152.641391][ T6545] syz_tun: entered promiscuous mode
[  152.657489][ T6545] bridge0: port 3(syz_tun) entered blocking state
[  152.664157][ T6545] bridge0: port 3(syz_tun) entered forwarding state
[  154.395774][ T6575] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input10
[  156.440838][ T6615] netlink: 342 bytes leftover after parsing attributes in process `syz.1.175'.
[  158.212595][ T6645] sysfs_service_op_show: Client not running :-5:
[  158.455213][ T6649] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  158.481380][ T6649] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  161.426466][ T6701] netlink: 28 bytes leftover after parsing attributes in process `syz.0.200'.
[  161.904542][ T6715] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  163.454576][ T6713] kexec: Could not allocate control_code_buffer
[  166.980406][ T6800] ima: policy update failed
[  167.007242][   T30] audit: type=1802 audit(6039955818.140:2): pid=6800 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.226" res=0 errno=0
[  167.143423][ T6815] sd 0:0:1:0: PR command failed: 1026
[  167.155995][ T6815] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  167.174228][ T6815] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  167.447988][ T6822] netlink: 4 bytes leftover after parsing attributes in process `syz.3.233'.
[  168.768381][ T6848] netlink: 'syz.2.239': attribute type 1 has an invalid length.
[  168.776737][ T6848] netlink: 32 bytes leftover after parsing attributes in process `syz.2.239'.
[  177.408126][ T6949] ima: policy update failed
[  177.413045][   T30] audit: type=1802 audit(6039955828.550:3): pid=6949 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.265" res=0 errno=0
[  177.641841][ T6963] netlink: 84 bytes leftover after parsing attributes in process `syz.2.269'.
[  178.929165][ T6983] netlink: 326 bytes leftover after parsing attributes in process `syz.2.277'.
[  179.378518][ T6983] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.387203][ T6983] bridge0: port 1(bridge_slave_0) entered disabled state
[  181.499050][ T7007] netlink: 84 bytes leftover after parsing attributes in process `syz.0.282'.
[  182.143499][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff8880338bdc00: 0x00000: (2) System resources were needed for another task so this connection managed session was terminated.
[  185.046998][ T7056] netlink: 84 bytes leftover after parsing attributes in process `syz.3.297'.
[  185.355447][ T7053] FAULT_INJECTION: forcing a failure.
[  185.355447][ T7053] name fail_futex, interval 1, probability 0, space 0, times 1
[  185.395697][ T7053] CPU: 1 UID: 0 PID: 7053 Comm: syz.0.295 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  185.395740][ T7053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  185.395765][ T7053] Call Trace:
[  185.395775][ T7053]  <TASK>
[  185.395785][ T7053]  dump_stack_lvl+0x16c/0x1f0
[  185.395853][ T7053]  should_fail_ex+0x512/0x640
[  185.395897][ T7053]  get_futex_key+0x49e/0x1000
[  185.395935][ T7053]  ? __pfx_get_futex_key+0x10/0x10
[  185.395984][ T7053]  futex_wake+0xe7/0x4e0
[  185.396024][ T7053]  ? rcu_is_watching+0x12/0xc0
[  185.396060][ T7053]  ? __pfx_futex_wake+0x10/0x10
[  185.396121][ T7053]  do_futex+0x1e3/0x350
[  185.396158][ T7053]  ? __pfx_do_futex+0x10/0x10
[  185.396191][ T7053]  ? __might_fault+0xe3/0x190
[  185.396238][ T7053]  mm_release+0x24e/0x300
[  185.396277][ T7053]  do_exit+0x898/0x2c30
[  185.396323][ T7053]  ? __pfx_futex_wake_mark+0x10/0x10
[  185.396372][ T7053]  ? __pfx_do_exit+0x10/0x10
[  185.396418][ T7053]  ? do_raw_spin_lock+0x12c/0x2b0
[  185.396446][ T7053]  ? find_held_lock+0x2b/0x80
[  185.396485][ T7053]  do_group_exit+0xd3/0x2a0
[  185.396537][ T7053]  get_signal+0x2673/0x26d0
[  185.396580][ T7053]  ? kmem_cache_free+0x2d4/0x4d0
[  185.396615][ T7053]  ? fd_install+0x225/0x750
[  185.396649][ T7053]  ? __pfx_get_signal+0x10/0x10
[  185.396684][ T7053]  ? do_futex+0x122/0x350
[  185.396717][ T7053]  ? __pfx_do_futex+0x10/0x10
[  185.396757][ T7053]  arch_do_signal_or_restart+0x8f/0x7a0
[  185.396800][ T7053]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  185.396850][ T7053]  ? rcu_is_watching+0x12/0xc0
[  185.396882][ T7053]  syscall_exit_to_user_mode+0x150/0x2a0
[  185.396923][ T7053]  do_syscall_64+0xda/0x230
[  185.396964][ T7053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.396990][ T7053] RIP: 0033:0x7fac87b8e169
[  185.397016][ T7053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.397041][ T7053] RSP: 002b:00007fac859b40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  185.397066][ T7053] RAX: fffffffffffffe00 RBX: 00007fac87db6168 RCX: 00007fac87b8e169
[  185.397083][ T7053] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fac87db6168
[  185.397098][ T7053] RBP: 00007fac87db6160 R08: 0000000000000000 R09: 0000000000000000
[  185.397114][ T7053] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fac87db616c
[  185.397130][ T7053] R13: 0000000000000000 R14: 00007fffe002c200 R15: 00007fffe002c2e8
[  185.397161][ T7053]  </TASK>
[  186.364511][ T7068] netlink: 'syz.3.299': attribute type 4 has an invalid length.
[  188.197962][ T7090] netlink: 84 bytes leftover after parsing attributes in process `syz.1.307'.
[  189.309087][ T5844] Bluetooth: hci0: unexpected subevent 0x01 length: 122 > 18
[  189.317530][ T5844] Bluetooth: hci0: Invalid handle: 0x1e1a > 0x0eff
[  189.442361][ T7107] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  189.448665][ T7107] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  189.503727][ T7107] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  189.567141][ T7107] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  189.573350][ T7107] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  189.608026][ T7107] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  189.630673][ T7107] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  189.641274][ T7107] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  189.662567][ T7107] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  189.724958][ T7107] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  189.761075][ T7107] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  189.844229][ T7107] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  191.460545][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout
[  191.620639][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout
[  191.700521][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout
[  191.780526][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout
[  193.550709][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout
[  193.700578][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout
[  193.780541][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout
[  193.863771][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout
[  194.395076][ T7181] netlink: 84 bytes leftover after parsing attributes in process `syz.2.324'.
[  194.803127][ T7193] netlink: 84 bytes leftover after parsing attributes in process `syz.0.326'.
[  195.631106][ T5844] Bluetooth: hci0: command 0x0c1a tx timeout
[  195.780546][ T5844] Bluetooth: hci1: command 0x0c1a tx timeout
[  195.862251][ T5844] Bluetooth: hci2: command 0x0c1a tx timeout
[  195.941761][ T5844] Bluetooth: hci3: command 0x0c1a tx timeout
[  196.224448][ T7227] netlink: 8 bytes leftover after parsing attributes in process `syz.3.331'.
[  196.808953][ T7233] bond0: entered promiscuous mode
[  196.818954][ T7233] bond0: entered allmulticast mode
[  197.167751][ T7252] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  197.582942][ T7261] netlink: 84 bytes leftover after parsing attributes in process `syz.3.338'.
[  199.023709][ T7279] netlink: 84 bytes leftover after parsing attributes in process `syz.3.342'.
[  199.465304][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  199.472119][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  201.141502][ T7303] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  202.860104][ T7324] netlink: 84 bytes leftover after parsing attributes in process `syz.1.354'.
[  203.136177][ T7333] netlink: 326 bytes leftover after parsing attributes in process `syz.2.357'.
[  204.114240][ T7355] netlink: 'syz.0.362': attribute type 1 has an invalid length.
[  204.191568][ T7357] ubi0: attaching mtd0
[  204.207371][ T7357] ubi0: scanning is finished
[  204.214765][ T7357] ubi0: empty MTD device detected
[  204.225219][ T7357] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  204.407986][ T7357] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  206.954915][ T7389] netlink: 84 bytes leftover after parsing attributes in process `syz.3.370'.
[  208.744949][ T7408] ubi0: attaching mtd0
[  208.813410][ T7408] ubi0: scanning is finished
[  208.885293][ T7408] ubi0: empty MTD device detected
[  208.908326][ T7408] ubi0 error: ubi_read_volume_table: LEB size too small for a volume record
[  209.256149][ T7408] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  209.964981][ T5844] Bluetooth: hci1: unexpected subevent 0x01 length: 122 > 18
[  209.975630][ T7415] mmap: syz.1.372 (7415) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  210.649628][ T7435] netlink: 84 bytes leftover after parsing attributes in process `syz.2.382'.
[  211.155777][ T7427] netlink: 28 bytes leftover after parsing attributes in process `syz.3.379'.
[  212.090136][ T7449] netlink: 84 bytes leftover after parsing attributes in process `syz.3.385'.
[  213.825163][ T7479] netlink: 84 bytes leftover after parsing attributes in process `syz.3.391'.
[  215.382169][ T7488] netlink: 84 bytes leftover after parsing attributes in process `syz.1.393'.
[  216.548022][ T7511] netlink: 84 bytes leftover after parsing attributes in process `syz.2.400'.
[  216.942115][ T7518] netlink: 28 bytes leftover after parsing attributes in process `syz.3.403'.
[  217.445911][ T7533] netlink: 28 bytes leftover after parsing attributes in process `syz.1.407'.
[  217.745272][ T7533] ipvlan1: entered allmulticast mode
[  217.756197][ T7529] netlink: 84 bytes leftover after parsing attributes in process `syz.2.406'.
[  217.783660][ T7534] netlink: 330 bytes leftover after parsing attributes in process `syz.1.407'.
[  217.800598][ T7533] veth0_vlan: entered allmulticast mode
[  217.988011][ T7533] netlink: 20 bytes leftover after parsing attributes in process `syz.1.407'.
[  218.149005][ T7542] netlink: 'syz.3.410': attribute type 1 has an invalid length.
[  218.462365][ T7549] netlink: 84 bytes leftover after parsing attributes in process `syz.0.411'.
[  218.742289][ T7554] FAULT_INJECTION: forcing a failure.
[  218.742289][ T7554] name failslab, interval 1, probability 0, space 0, times 0
[  218.801566][ T7554] CPU: 0 UID: 0 PID: 7554 Comm: syz.3.414 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  218.801614][ T7554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  218.801633][ T7554] Call Trace:
[  218.801643][ T7554]  <TASK>
[  218.801655][ T7554]  dump_stack_lvl+0x16c/0x1f0
[  218.801715][ T7554]  should_fail_ex+0x512/0x640
[  218.801753][ T7554]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  218.801799][ T7554]  should_failslab+0xc2/0x120
[  218.801844][ T7554]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  218.801886][ T7554]  ? __d_alloc+0x31/0xaa0
[  218.801927][ T7554]  __d_alloc+0x31/0xaa0
[  218.801960][ T7554]  ? security_inode_alloc+0x3b/0x2b0
[  218.802001][ T7554]  d_alloc_pseudo+0x1c/0xc0
[  218.802047][ T7554]  alloc_file_pseudo+0xcf/0x230
[  218.802095][ T7554]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  218.802154][ T7554]  __anon_inode_getfile+0xf7/0x370
[  218.802193][ T7554]  new_userfaultfd+0x25e/0x3d0
[  218.802236][ T7554]  __x64_sys_userfaultfd+0x4b/0xb0
[  218.802281][ T7554]  do_syscall_64+0xcd/0x230
[  218.802333][ T7554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.802365][ T7554] RIP: 0033:0x7eff7938e169
[  218.802391][ T7554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.802421][ T7554] RSP: 002b:00007eff7a11f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000143
[  218.802451][ T7554] RAX: ffffffffffffffda RBX: 00007eff795b5fa0 RCX: 00007eff7938e169
[  218.802473][ T7554] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  218.802491][ T7554] RBP: 00007eff79410a68 R08: 0000000000000000 R09: 0000000000000000
[  218.802510][ T7554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  218.802529][ T7554] R13: 0000000000000000 R14: 00007eff795b5fa0 R15: 00007ffd6145dde8
[  218.802569][ T7554]  </TASK>
[  219.613747][ T7567] KVM: debugfs: duplicate directory 7567-3
[  220.120802][ T7580] netlink: 84 bytes leftover after parsing attributes in process `syz.2.421'.
[  220.397423][   T55] Bluetooth: hci3: unexpected event 0x3d length: 726 > 14
[  220.799644][ T7586] netlink: 28 bytes leftover after parsing attributes in process `syz.0.422'.
[  220.858390][ T7586] ipvlan1: entered allmulticast mode
[  220.871420][ T7587] netlink: 330 bytes leftover after parsing attributes in process `syz.0.422'.
[  220.884543][ T7586] veth0_vlan: entered allmulticast mode
[  222.667931][ T7608] __nla_validate_parse: 2 callbacks suppressed
[  222.667958][ T7608] netlink: 84 bytes leftover after parsing attributes in process `syz.0.434'.
[  223.070715][ T7611] netlink: 84 bytes leftover after parsing attributes in process `syz.1.426'.
[  224.536004][ T7632] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  225.073181][ T7640] netlink: 84 bytes leftover after parsing attributes in process `syz.0.433'.
[  226.202259][ T7654] FAULT_INJECTION: forcing a failure.
[  226.202259][ T7654] name failslab, interval 1, probability 0, space 0, times 0
[  226.230669][ T7654] CPU: 1 UID: 0 PID: 7654 Comm: syz.0.438 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  226.230715][ T7654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  226.230732][ T7654] Call Trace:
[  226.230741][ T7654]  <TASK>
[  226.230752][ T7654]  dump_stack_lvl+0x16c/0x1f0
[  226.230806][ T7654]  should_fail_ex+0x512/0x640
[  226.230839][ T7654]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  226.230877][ T7654]  should_failslab+0xc2/0x120
[  226.230914][ T7654]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  226.230947][ T7654]  ? find_held_lock+0x2b/0x80
[  226.230975][ T7654]  ? alloc_inode+0xc3/0x240
[  226.231014][ T7654]  alloc_inode+0xc3/0x240
[  226.231051][ T7654]  alloc_anon_inode+0x28/0x3e0
[  226.231076][ T7654]  ? alloc_fd+0x471/0x7d0
[  226.231100][ T7654]  __anon_inode_getfile+0x1ea/0x370
[  226.231132][ T7654]  new_userfaultfd+0x25e/0x3d0
[  226.231167][ T7654]  __x64_sys_userfaultfd+0x4b/0xb0
[  226.231204][ T7654]  do_syscall_64+0xcd/0x230
[  226.231247][ T7654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.231275][ T7654] RIP: 0033:0x7fac87b8e169
[  226.231298][ T7654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.231325][ T7654] RSP: 002b:00007fac859f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000143
[  226.231351][ T7654] RAX: ffffffffffffffda RBX: 00007fac87db5fa0 RCX: 00007fac87b8e169
[  226.231368][ T7654] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  226.231384][ T7654] RBP: 00007fac87c10a68 R08: 0000000000000000 R09: 0000000000000000
[  226.231400][ T7654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  226.231417][ T7654] R13: 0000000000000000 R14: 00007fac87db5fa0 R15: 00007fffe002c2e8
[  226.231449][ T7654]  </TASK>
[  227.152725][ T7661] netlink: 'syz.1.440': attribute type 3 has an invalid length.
[  227.931149][ T7671] netlink: 84 bytes leftover after parsing attributes in process `syz.3.441'.
[  228.579169][ T7676] netlink: 84 bytes leftover after parsing attributes in process `syz.1.442'.
[  229.563311][ T7683] netlink: 84 bytes leftover after parsing attributes in process `syz.1.444'.
[  229.918493][ T7687] CIFS: VFS: Invalid SecurityFlags: 
[  231.418354][ T7711] netlink: 84 bytes leftover after parsing attributes in process `syz.1.450'.
[  232.145114][ T7725] netlink: 84 bytes leftover after parsing attributes in process `syz.3.453'.
[  234.421663][ T7769] netlink: 84 bytes leftover after parsing attributes in process `syz.2.464'.
[  235.675269][ T7786] netlink: 84 bytes leftover after parsing attributes in process `syz.0.468'.
[  238.192183][ T7807] kexec: Could not allocate control_code_buffer
[  238.690770][ T7819] netlink: 84 bytes leftover after parsing attributes in process `syz.2.477'.
[  238.840246][ T7824] netlink: 84 bytes leftover after parsing attributes in process `syz.3.478'.
[  241.318260][ T7844] netlink: 84 bytes leftover after parsing attributes in process `syz.2.482'.
[  241.823251][ T7857] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  242.305413][ T7866] netlink: 84 bytes leftover after parsing attributes in process `syz.3.487'.
[  242.653466][ T7871] netlink: 'syz.0.490': attribute type 5 has an invalid length.
[  243.233669][ T7881] netlink: 84 bytes leftover after parsing attributes in process `syz.0.493'.
[  243.853831][ T7892] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  244.652632][ T7904] netlink: 28 bytes leftover after parsing attributes in process `syz.1.497'.
[  245.076893][ T7909] netlink: 84 bytes leftover after parsing attributes in process `syz.2.499'.
[  245.347620][ T7915] netlink: 84 bytes leftover after parsing attributes in process `syz.0.508'.
[  246.003587][ T7921] capability: warning: `syz.1.501' uses 32-bit capabilities (legacy support in use)
[  247.371869][ T7934] netlink: 326 bytes leftover after parsing attributes in process `syz.0.504'.
[  247.407340][ T7934] bridge0: port 2(bridge_slave_1) entered disabled state
[  247.416102][ T7934] bridge0: port 1(bridge_slave_0) entered disabled state
[  247.711148][ T7939] netlink: 8 bytes leftover after parsing attributes in process `syz.0.506'.
[  249.674030][ T7948] FAULT_INJECTION: forcing a failure.
[  249.674030][ T7948] name failslab, interval 1, probability 0, space 0, times 0
[  249.740989][ T7948] CPU: 0 UID: 0 PID: 7948 Comm: syz.0.511 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  249.741038][ T7948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  249.741062][ T7948] Call Trace:
[  249.741072][ T7948]  <TASK>
[  249.741088][ T7948]  dump_stack_lvl+0x16c/0x1f0
[  249.741144][ T7948]  should_fail_ex+0x512/0x640
[  249.741183][ T7948]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  249.741233][ T7948]  should_failslab+0xc2/0x120
[  249.741278][ T7948]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  249.741323][ T7948]  ? devinet_init_net+0xc3/0x910
[  249.741378][ T7948]  kmemdup_noprof+0x29/0x60
[  249.741425][ T7948]  devinet_init_net+0xc3/0x910
[  249.741485][ T7948]  ? __pfx_devinet_init_net+0x10/0x10
[  249.741534][ T7948]  ops_init+0x1df/0x5f0
[  249.741588][ T7948]  setup_net+0x21e/0x850
[  249.741640][ T7948]  ? __pfx_setup_net+0x10/0x10
[  249.741685][ T7948]  ? lockdep_init_map_type+0x5c/0x280
[  249.741732][ T7948]  ? __pfx_down_read_killable+0x10/0x10
[  249.741768][ T7948]  ? debug_mutex_init+0x37/0x70
[  249.741806][ T7948]  copy_net_ns+0x2a6/0x5f0
[  249.741862][ T7948]  create_new_namespaces+0x3ea/0xad0
[  249.741912][ T7948]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  249.741957][ T7948]  ksys_unshare+0x45b/0xa40
[  249.742006][ T7948]  ? __pfx_ksys_unshare+0x10/0x10
[  249.742052][ T7948]  ? xfd_validate_state+0x5d/0x180
[  249.742088][ T7948]  ? rcu_is_watching+0x12/0xc0
[  249.742132][ T7948]  __x64_sys_unshare+0x31/0x40
[  249.742179][ T7948]  do_syscall_64+0xcd/0x230
[  249.742231][ T7948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.742264][ T7948] RIP: 0033:0x7fac87b8e169
[  249.742290][ T7948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.742321][ T7948] RSP: 002b:00007fac859f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  249.742351][ T7948] RAX: ffffffffffffffda RBX: 00007fac87db5fa0 RCX: 00007fac87b8e169
[  249.742373][ T7948] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  249.742394][ T7948] RBP: 00007fac87c10a68 R08: 0000000000000000 R09: 0000000000000000
[  249.742413][ T7948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  249.742431][ T7948] R13: 0000000000000000 R14: 00007fac87db5fa0 R15: 00007fffe002c2e8
[  249.742481][ T7948]  </TASK>
[  251.074717][ T7982] netlink: 84 bytes leftover after parsing attributes in process `syz.3.520'.
[  251.702759][ T7992] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)
[  252.407202][ T8006] netlink: 330 bytes leftover after parsing attributes in process `syz.0.526'.
[  254.057117][ T8038] netlink: 84 bytes leftover after parsing attributes in process `syz.0.532'.
[  257.358618][ T8066] netlink: 'syz.0.539': attribute type 5 has an invalid length.
[  257.886834][ T8079] syz.0.543 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  258.409981][ T8092] netlink: 84 bytes leftover after parsing attributes in process `syz.0.545'.
[  260.906541][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  260.914158][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  262.319841][ T8148] netlink: 84 bytes leftover after parsing attributes in process `syz.2.555'.
[  263.186250][   T55] Bluetooth: hci1: unexpected subevent 0x01 length: 122 > 18
[  263.193923][   T55] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  263.269590][ T8157] netlink: 4 bytes leftover after parsing attributes in process `syz.3.557'.
[  264.376532][ T8188] netlink: 84 bytes leftover after parsing attributes in process `syz.3.564'.
[  265.020330][ T8192] netlink: 84 bytes leftover after parsing attributes in process `syz.1.565'.
[  267.659558][ T8231] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  268.438812][ T8244] netlink: 84 bytes leftover after parsing attributes in process `syz.1.578'.
[  270.002457][ T8258] netlink: 84 bytes leftover after parsing attributes in process `syz.1.583'.
[  273.299763][ T8293] netlink: 84 bytes leftover after parsing attributes in process `syz.1.593'.
[  273.798872][ T8300] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  275.094484][ T8315] FAULT_INJECTION: forcing a failure.
[  275.094484][ T8315] name failslab, interval 1, probability 0, space 0, times 0
[  275.183904][ T8315] CPU: 1 UID: 0 PID: 8315 Comm: syz.3.599 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  275.183952][ T8315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  275.183971][ T8315] Call Trace:
[  275.183982][ T8315]  <TASK>
[  275.184004][ T8315]  dump_stack_lvl+0x16c/0x1f0
[  275.184058][ T8315]  should_fail_ex+0x512/0x640
[  275.184096][ T8315]  ? __kmalloc_noprof+0xbf/0x510
[  275.184137][ T8315]  ? iovec_from_user+0x108/0x140
[  275.184178][ T8315]  should_failslab+0xc2/0x120
[  275.184221][ T8315]  __kmalloc_noprof+0xd2/0x510
[  275.184257][ T8315]  ? look_up_lock_class+0x59/0x150
[  275.184310][ T8315]  iovec_from_user+0x108/0x140
[  275.184356][ T8315]  __import_iovec+0x88/0x660
[  275.184402][ T8315]  ? find_held_lock+0x2b/0x80
[  275.184440][ T8315]  import_iovec+0x86/0xb0
[  275.184486][ T8315]  vfs_readv+0x193/0x8a0
[  275.184513][ T8315]  ? __pfx___mutex_trylock_common+0x10/0x10
[  275.184562][ T8315]  ? __pfx___might_resched+0x10/0x10
[  275.184606][ T8315]  ? __pfx_vfs_readv+0x10/0x10
[  275.184634][ T8315]  ? __mutex_lock+0x1ca/0xb90
[  275.184690][ T8315]  ? __pfx___mutex_lock+0x10/0x10
[  275.184751][ T8315]  ? __fget_files+0x20e/0x3c0
[  275.184779][ T8315]  ? __fget_files+0x160/0x3c0
[  275.184819][ T8315]  ? do_readv+0x132/0x330
[  275.184845][ T8315]  do_readv+0x132/0x330
[  275.184874][ T8315]  ? __pfx_do_readv+0x10/0x10
[  275.184900][ T8315]  ? rcu_is_watching+0x12/0xc0
[  275.184945][ T8315]  do_syscall_64+0xcd/0x230
[  275.184999][ T8315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.185031][ T8315] RIP: 0033:0x7eff7938e169
[  275.185056][ T8315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.185087][ T8315] RSP: 002b:00007eff7a11f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  275.185117][ T8315] RAX: ffffffffffffffda RBX: 00007eff795b5fa0 RCX: 00007eff7938e169
[  275.185138][ T8315] RDX: 000000000000000c RSI: 0000200000000300 RDI: 0000000000000003
[  275.185157][ T8315] RBP: 00007eff7a11f090 R08: 0000000000000000 R09: 0000000000000000
[  275.185176][ T8315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.185194][ T8315] R13: 0000000000000000 R14: 00007eff795b5fa0 R15: 00007ffd6145dde8
[  275.185236][ T8315]  </TASK>
[  276.388215][ T8329] FAULT_INJECTION: forcing a failure.
[  276.388215][ T8329] name failslab, interval 1, probability 0, space 0, times 0
[  276.454891][ T8329] CPU: 1 UID: 0 PID: 8329 Comm: syz.2.603 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  276.454940][ T8329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  276.454967][ T8329] Call Trace:
[  276.454978][ T8329]  <TASK>
[  276.454991][ T8329]  dump_stack_lvl+0x16c/0x1f0
[  276.455046][ T8329]  should_fail_ex+0x512/0x640
[  276.455084][ T8329]  ? __kmalloc_noprof+0xbf/0x510
[  276.455125][ T8329]  ? sk_prot_alloc+0x1a8/0x2a0
[  276.455174][ T8329]  should_failslab+0xc2/0x120
[  276.455217][ T8329]  __kmalloc_noprof+0xd2/0x510
[  276.455253][ T8329]  ? evm_inode_alloc_security+0x49/0xc0
[  276.455305][ T8329]  ? security_inode_alloc+0xcf/0x2b0
[  276.455348][ T8329]  sk_prot_alloc+0x1a8/0x2a0
[  276.455403][ T8329]  sk_alloc+0x36/0xc20
[  276.455445][ T8329]  __netlink_create+0x5e/0x2c0
[  276.455487][ T8329]  __netlink_kernel_create+0xed/0x750
[  276.455537][ T8329]  ? __pfx___netlink_kernel_create+0x10/0x10
[  276.455598][ T8329]  uevent_net_init+0xf8/0x350
[  276.455630][ T8329]  ? __pfx_uevent_net_init+0x10/0x10
[  276.455665][ T8329]  ? __pfx_uevent_net_rcv+0x10/0x10
[  276.455709][ T8329]  ? __pfx_uevent_net_init+0x10/0x10
[  276.455739][ T8329]  ops_init+0x1df/0x5f0
[  276.455789][ T8329]  setup_net+0x21e/0x850
[  276.455839][ T8329]  ? __pfx_setup_net+0x10/0x10
[  276.455883][ T8329]  ? lockdep_init_map_type+0x5c/0x280
[  276.455931][ T8329]  ? __pfx_down_read_killable+0x10/0x10
[  276.455974][ T8329]  ? debug_mutex_init+0x37/0x70
[  276.456013][ T8329]  copy_net_ns+0x2a6/0x5f0
[  276.456069][ T8329]  create_new_namespaces+0x3ea/0xad0
[  276.456118][ T8329]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  276.456161][ T8329]  ksys_unshare+0x45b/0xa40
[  276.456208][ T8329]  ? __pfx_ksys_unshare+0x10/0x10
[  276.456253][ T8329]  ? xfd_validate_state+0x5d/0x180
[  276.456288][ T8329]  ? rcu_is_watching+0x12/0xc0
[  276.456331][ T8329]  __x64_sys_unshare+0x31/0x40
[  276.456378][ T8329]  do_syscall_64+0xcd/0x230
[  276.456429][ T8329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.456461][ T8329] RIP: 0033:0x7f84a9f8e169
[  276.456487][ T8329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.456518][ T8329] RSP: 002b:00007f84aad23038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  276.456548][ T8329] RAX: ffffffffffffffda RBX: 00007f84aa1b5fa0 RCX: 00007f84a9f8e169
[  276.456569][ T8329] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  276.456587][ T8329] RBP: 00007f84aa010a68 R08: 0000000000000000 R09: 0000000000000000
[  276.456606][ T8329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  276.456624][ T8329] R13: 0000000000000000 R14: 00007f84aa1b5fa0 R15: 00007fff6424e508
[  276.456667][ T8329]  </TASK>
[  276.456743][ T8329] kobject_uevent: unable to create netlink socket!
[  278.191785][ T8351] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  279.031976][ T8362] netlink: 8 bytes leftover after parsing attributes in process `syz.0.611'.
[  279.274083][ T8363] netlink: 84 bytes leftover after parsing attributes in process `syz.1.612'.
[  281.132312][ T8392] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  281.338247][ T8391] netlink: 84 bytes leftover after parsing attributes in process `syz.0.618'.
[  283.141196][ T8409] netlink: 84 bytes leftover after parsing attributes in process `syz.0.623'.
[  284.098632][ T8421] netlink: 84 bytes leftover after parsing attributes in process `syz.2.626'.
[  284.828017][ T8426] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  287.821763][ T5839] bridge0: port 4(syz_tun) entered disabled state
[  287.844462][ T5839] syz_tun (unregistering): left allmulticast mode
[  287.844497][ T5839] syz_tun (unregistering): left promiscuous mode
[  287.844573][ T5839] bridge0: port 4(syz_tun) entered disabled state
[  287.931892][ T8454] netlink: 4 bytes leftover after parsing attributes in process `syz.1.635'.
[  288.152186][   T62] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  288.303441][   T62] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  288.572699][   T62] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  288.787204][   T62] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.040481][ T8454] netlink: 326 bytes leftover after parsing attributes in process `syz.1.635'.
[  289.133429][ T8454] bridge0: adding interface bridge0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  289.181793][ T8454] bridge0: port 3(syz_tun) entered disabled state
[  289.188552][ T8454] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.196338][ T8454] bridge0: port 1(bridge_slave_0) entered disabled state
[  289.464900][   T62] team0: left allmulticast mode
[  289.484896][   T62] team_slave_0: left allmulticast mode
[  289.500662][   T62] team_slave_1: left allmulticast mode
[  289.516696][   T62] team0: left promiscuous mode
[  289.526762][   T62] team_slave_0: left promiscuous mode
[  289.551123][   T62] team_slave_1: left promiscuous mode
[  289.558243][   T62] bridge0: port 3(team0) entered disabled state
[  289.591900][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  289.605515][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  289.620922][   T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  289.636242][   T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  289.645565][   T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  289.733047][   T62] bridge_slave_1: left allmulticast mode
[  289.739523][   T62] bridge_slave_1: left promiscuous mode
[  289.771664][   T62] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.873741][   T62] bridge_slave_0: left allmulticast mode
[  289.879542][   T62] bridge_slave_0: left promiscuous mode
[  289.886521][   T62] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.968651][ T8484] nbd: must specify a device to reconfigure
[  291.253312][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  291.341432][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  291.378620][   T62] bond0 (unregistering): Released all slaves
[  291.700631][ T5844] Bluetooth: hci1: command tx timeout
[  291.771217][ T8493] netlink: 84 bytes leftover after parsing attributes in process `syz.1.645'.
[  293.180055][   T62] hsr_slave_0: left promiscuous mode
[  293.201311][   T62] hsr_slave_1: left promiscuous mode
[  293.207542][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  293.220519][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  293.269881][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  293.287031][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  293.384934][   T62] veth1_macvtap: left promiscuous mode
[  293.385117][   T62] veth0_macvtap: left promiscuous mode
[  293.386211][   T62] veth1_vlan: left promiscuous mode
[  293.386461][   T62] veth0_vlan: left promiscuous mode
[  293.782958][ T5844] Bluetooth: hci1: command tx timeout
[  294.841207][ T8522] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  294.939876][   T62] team0 (unregistering): Port device team_slave_1 removed
[  294.979724][   T62] team0 (unregistering): Port device team_slave_0 removed
[  295.494125][ T8473] chnl_net:caif_netlink_parms(): no params data found
[  295.791084][ T8473] bridge0: port 1(bridge_slave_0) entered blocking state
[  295.819817][ T8473] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.828569][ T8473] bridge_slave_0: entered allmulticast mode
[  295.836676][ T8473] bridge_slave_0: entered promiscuous mode
[  295.852005][ T8473] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.859312][ T8473] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.866554][ T5844] Bluetooth: hci1: command tx timeout
[  295.872367][ T8473] bridge_slave_1: entered allmulticast mode
[  295.883071][ T8473] bridge_slave_1: entered promiscuous mode
[  296.525155][ T8473] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  296.554052][ T8473] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  296.773213][ T8473] team0: Port device team_slave_0 added
[  296.800088][ T8473] team0: Port device team_slave_1 added
[  297.454781][ T8566] netlink: 84 bytes leftover after parsing attributes in process `syz.0.656'.
[  297.607593][ T8473] batman_adv: batadv0: Adding interface: batadv_slave_0
[  297.632262][ T8473] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  297.671207][ T8473] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  297.741059][ T8473] batman_adv: batadv0: Adding interface: batadv_slave_1
[  297.748077][ T8473] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  297.825588][ T8473] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  297.940633][ T5844] Bluetooth: hci1: command tx timeout
[  298.072352][ T8473] hsr_slave_0: entered promiscuous mode
[  298.111761][ T8473] hsr_slave_1: entered promiscuous mode
[  298.118190][ T8473] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  298.158088][ T8473] Cannot create hsr debugfs directory
[  298.799049][ T8593] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  299.625237][ T8610] netlink: 84 bytes leftover after parsing attributes in process `syz.0.663'.
[  300.711962][ T8626] netlink: 8 bytes leftover after parsing attributes in process `syz.0.665'.
[  300.803393][ T8473] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  300.919698][ T8473] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  300.992075][ T8473] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  301.032871][ T8473] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  301.057422][ T8628] usb usb34: usbfs: process 8628 (syz.1.666) did not claim interface 0 before use
[  301.649205][ T8473] 8021q: adding VLAN 0 to HW filter on device bond0
[  301.762625][ T8473] 8021q: adding VLAN 0 to HW filter on device team0
[  301.813405][ T1004] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.820779][ T1004] bridge0: port 1(bridge_slave_0) entered forwarding state
[  301.853158][ T1004] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.860544][ T1004] bridge0: port 2(bridge_slave_1) entered forwarding state
[  302.179874][ T8473] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  302.367169][ T8649] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  302.381920][ T8657] netlink: 84 bytes leftover after parsing attributes in process `syz.2.671'.
[  302.889901][ T8473] 8021q: adding VLAN 0 to HW filter on device batadv0
[  302.998281][ T8674] netlink: 84 bytes leftover after parsing attributes in process `syz.0.672'.
[  303.362112][ T8473] veth0_vlan: entered promiscuous mode
[  303.449701][ T8473] veth1_vlan: entered promiscuous mode
[  303.689832][ T8473] veth0_macvtap: entered promiscuous mode
[  303.714119][ T8473] veth1_macvtap: entered promiscuous mode
[  303.823704][ T8473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.837150][ T8473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.850239][ T8473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.865959][ T8473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.941471][ T8473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.983058][ T8473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.027327][ T8473] batman_adv: batadv0: Interface activated: batadv_slave_0
[  304.094190][ T8473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.128831][ T8694] netlink: 84 bytes leftover after parsing attributes in process `syz.0.675'.
[  304.162055][ T8473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.230670][ T8473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.310988][ T8473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.347691][ T8473] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  304.413632][ T8473] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  304.425374][ T8473] batman_adv: batadv0: Interface activated: batadv_slave_1
[  304.459081][ T8473] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  304.467935][ T8473] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  304.477612][ T8473] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  304.486849][ T8473] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  304.562427][ T5844] Bluetooth: hci3: unexpected subevent 0x01 length: 122 > 18
[  304.944451][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  304.971482][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  305.082616][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  305.132906][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  305.948465][ T8735] netlink: 84 bytes leftover after parsing attributes in process `syz.1.681'.
[  306.520646][ T8717] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  306.954684][ T8755] netlink: 84 bytes leftover after parsing attributes in process `syz.0.683'.
[  307.513192][ T8760] netlink: 84 bytes leftover after parsing attributes in process `syz.2.684'.
[  310.326069][ T8812] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  312.407574][ T8820] netlink: 84 bytes leftover after parsing attributes in process `syz.0.700'.
[  312.447845][ T8828] netlink: 84 bytes leftover after parsing attributes in process `syz.2.699'.
[  315.129647][ T8872] netlink: 84 bytes leftover after parsing attributes in process `syz.0.712'.
[  316.253704][ T8880] netlink: 84 bytes leftover after parsing attributes in process `syz.1.714'.
[  316.522000][ T8881] netlink: 84 bytes leftover after parsing attributes in process `syz.0.713'.
[  318.152596][ T8901] netlink: 84 bytes leftover after parsing attributes in process `syz.1.721'.
[  319.133087][ T8908] netlink: 84 bytes leftover after parsing attributes in process `syz.3.723'.
[  319.725313][ T8912] netlink: 84 bytes leftover after parsing attributes in process `syz.1.724'.
[  320.404642][ T8918] netlink: 84 bytes leftover after parsing attributes in process `syz.3.725'.
[  320.878102][ T8928] netlink: 84 bytes leftover after parsing attributes in process `syz.1.728'.
[  321.020901][ T8932] netlink: 84 bytes leftover after parsing attributes in process `syz.2.729'.
[  322.154646][ T8943] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  322.347191][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  322.353959][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  322.938605][ T8961] netlink: 84 bytes leftover after parsing attributes in process `syz.3.736'.
[  324.071920][ T8974] netlink: 84 bytes leftover after parsing attributes in process `syz.1.740'.
[  325.271984][ T8989] netlink: 84 bytes leftover after parsing attributes in process `syz.3.743'.
[  326.392898][ T9001] netlink: 84 bytes leftover after parsing attributes in process `syz.1.747'.
[  328.387822][ T9015] netlink: 84 bytes leftover after parsing attributes in process `syz.2.749'.
[  329.890983][ T9033] netlink: 84 bytes leftover after parsing attributes in process `syz.0.753'.
[  331.724911][ T9065] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  338.479786][ T9158] netlink: 84 bytes leftover after parsing attributes in process `syz.2.783'.
[  341.034635][ T9181] netlink: 84 bytes leftover after parsing attributes in process `syz.0.790'.
[  341.368142][ T9192] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  344.776144][ T9240] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  345.417177][ T9249] netlink: 84 bytes leftover after parsing attributes in process `syz.1.806'.
[  348.077873][ T9285] netlink: 8 bytes leftover after parsing attributes in process `syz.3.816'.
[  348.315136][ T9286] netlink: 84 bytes leftover after parsing attributes in process `syz.2.817'.
[  349.910600][ T9313] netlink: 84 bytes leftover after parsing attributes in process `syz.0.824'.
[  350.389284][ T9319] netlink: 8 bytes leftover after parsing attributes in process `syz.0.826'.
[  351.299179][ T9329] netlink: 84 bytes leftover after parsing attributes in process `syz.1.829'.
[  352.204624][ T9345] netlink: 'syz.0.832': attribute type 5 has an invalid length.
[  353.412150][ T9351] netlink: 84 bytes leftover after parsing attributes in process `syz.0.833'.
[  353.871559][ T9360] netlink: 8 bytes leftover after parsing attributes in process `syz.2.837'.
[  354.072988][ T9362] netlink: 84 bytes leftover after parsing attributes in process `syz.1.836'.
[  356.772392][ T9392] netlink: 8 bytes leftover after parsing attributes in process `syz.3.846'.
[  359.312769][ T9432] netlink: 8 bytes leftover after parsing attributes in process `syz.0.857'.
[  359.639252][ T9446] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  362.523991][ T9476] netlink: 8 bytes leftover after parsing attributes in process `syz.0.869'.
[  362.982798][ T9487] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  365.313182][ T9516] netlink: 8 bytes leftover after parsing attributes in process `syz.0.878'.
[  366.408491][ T9534] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  370.116954][ T9573] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  370.960157][ T9590] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  371.348171][ T9600] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  372.584909][ T9626] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  375.806518][ T9666] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  381.165439][ T9725] netlink: 8 bytes leftover after parsing attributes in process `syz.1.931'.
[  381.897043][ T9735] netlink: 84 bytes leftover after parsing attributes in process `syz.3.934'.
[  383.809624][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  383.817741][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  389.520533][ T9820] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  390.297133][ T9845] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input13
[  395.518922][ T9890] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  395.967293][ T9903] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  396.606836][   T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  396.616496][   T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  396.624472][   T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  396.651890][   T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  396.660524][   T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  397.214958][ T9926] ksmbd: Unknown IPC event: 14, ignore.
[  397.700154][ T9914] chnl_net:caif_netlink_parms(): no params data found
[  397.823109][ T9933] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  398.343641][ T9914] bridge0: port 1(bridge_slave_0) entered blocking state
[  398.356981][ T9914] bridge0: port 1(bridge_slave_0) entered disabled state
[  398.396294][ T9914] bridge_slave_0: entered allmulticast mode
[  398.425004][ T9914] bridge_slave_0: entered promiscuous mode
[  398.465703][ T9914] bridge0: port 2(bridge_slave_1) entered blocking state
[  398.740657][ T5844] Bluetooth: hci2: command tx timeout
[  398.777797][ T9914] bridge0: port 2(bridge_slave_1) entered disabled state
[  398.785275][ T9914] bridge_slave_1: entered allmulticast mode
[  398.794513][ T9914] bridge_slave_1: entered promiscuous mode
[  399.044002][ T9914] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  399.129666][ T9914] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  399.475800][ T9914] team0: Port device team_slave_0 added
[  399.540793][ T9914] team0: Port device team_slave_1 added
[  399.825022][ T9914] batman_adv: batadv0: Adding interface: batadv_slave_0
[  399.845303][ T9914] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  399.916833][ T9914] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  399.943066][ T9914] batman_adv: batadv0: Adding interface: batadv_slave_1
[  399.950084][ T9914] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  400.010582][ T9914] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  400.205045][ T9914] hsr_slave_0: entered promiscuous mode
[  400.227626][ T9914] hsr_slave_1: entered promiscuous mode
[  400.241255][ T9914] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  400.260108][ T9914] Cannot create hsr debugfs directory
[  400.820620][ T5844] Bluetooth: hci2: command tx timeout
[  400.978601][ T9914] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  401.023256][ T9914] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  401.071121][ T9914] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  401.119503][ T9914] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  401.138264][ T9979] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  401.384200][ T9914] 8021q: adding VLAN 0 to HW filter on device bond0
[  401.448683][ T9914] 8021q: adding VLAN 0 to HW filter on device team0
[  401.484519][ T2931] bridge0: port 1(bridge_slave_0) entered blocking state
[  401.491803][ T2931] bridge0: port 1(bridge_slave_0) entered forwarding state
[  401.561427][ T2931] bridge0: port 2(bridge_slave_1) entered blocking state
[  401.568687][ T2931] bridge0: port 2(bridge_slave_1) entered forwarding state
[  402.083277][ T5844] Bluetooth: hci3: Unable to find connection for big 0xd2
[  402.325929][ T9914] 8021q: adding VLAN 0 to HW filter on device batadv0
[  402.638418][T10003] Scaler: =================  START STATUS  =================
[  402.672759][T10003] Scaler: ==================  END STATUS  ==================
[  402.901302][   T55] Bluetooth: hci2: command tx timeout
[  403.231124][ T9914] veth0_vlan: entered promiscuous mode
[  403.245687][ T9914] veth1_vlan: entered promiscuous mode
[  403.493527][ T9914] veth0_macvtap: entered promiscuous mode
[  403.519869][T10018] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input14
[  403.568443][ T9914] veth1_macvtap: entered promiscuous mode
[  403.715590][ T9914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  403.760646][ T9914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.778383][ T9914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  403.810665][ T9914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.825137][ T9914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  403.848147][ T9914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  403.869786][ T9914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  403.886973][ T9914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  404.043792][ T9914] batman_adv: batadv0: Interface activated: batadv_slave_0
[  404.235839][ T9914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  404.607554][ T9914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  404.619365][ T9914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  404.631063][ T9914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  404.651066][ T9914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  404.662430][ T9914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  404.672739][ T9914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  404.683559][ T9914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  404.695495][ T9914] batman_adv: batadv0: Interface activated: batadv_slave_1
[  404.754268][ T9914] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  404.790603][ T9914] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  404.810083][ T9914] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  404.837380][ T9914] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  404.981547][   T55] Bluetooth: hci2: command tx timeout
[  405.437139][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  405.466000][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  405.673961][ T9223] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  405.692925][ T9223] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  406.473965][T10051] FAULT_INJECTION: forcing a failure.
[  406.473965][T10051] name failslab, interval 1, probability 0, space 0, times 0
[  406.511227][T10051] CPU: 0 UID: 0 PID: 10051 Comm: syz.3.1018 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  406.511272][T10051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  406.511290][T10051] Call Trace:
[  406.511300][T10051]  <TASK>
[  406.511312][T10051]  dump_stack_lvl+0x16c/0x1f0
[  406.511375][T10051]  should_fail_ex+0x512/0x640
[  406.511411][T10051]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  406.511455][T10051]  should_failslab+0xc2/0x120
[  406.511498][T10051]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  406.511537][T10051]  ? __alloc_skb+0x2b2/0x380
[  406.511586][T10051]  __alloc_skb+0x2b2/0x380
[  406.511626][T10051]  ? __pfx___alloc_skb+0x10/0x10
[  406.511678][T10051]  tipc_buf_acquire+0x26/0xe0
[  406.511713][T10051]  tipc_msg_build+0x112/0x1150
[  406.511757][T10051]  ? __pfx_tipc_msg_build+0x10/0x10
[  406.511814][T10051]  __tipc_sendmsg+0xa30/0x19a0
[  406.511859][T10051]  ? __pfx___tipc_sendmsg+0x10/0x10
[  406.511890][T10051]  ? __lock_acquire+0xaa4/0x1ba0
[  406.511944][T10051]  ? __pfx_woken_wake_function+0x10/0x10
[  406.511999][T10051]  ? __local_bh_enable_ip+0xa4/0x120
[  406.512045][T10051]  tipc_connect+0x5cd/0x690
[  406.512078][T10051]  ? __pfx_tipc_connect+0x10/0x10
[  406.512113][T10051]  ? aa_sk_perm+0x2f4/0xb10
[  406.512173][T10051]  ? __pfx_tipc_connect+0x10/0x10
[  406.512203][T10051]  __sys_connect_file+0x13e/0x1a0
[  406.512243][T10051]  __sys_connect+0x14d/0x170
[  406.512278][T10051]  ? __pfx___sys_connect+0x10/0x10
[  406.512336][T10051]  ? __pfx_ksys_write+0x10/0x10
[  406.512367][T10051]  ? rcu_is_watching+0x12/0xc0
[  406.512402][T10051]  __x64_sys_connect+0x72/0xb0
[  406.512431][T10051]  ? lockdep_hardirqs_on+0x7c/0x110
[  406.512467][T10051]  do_syscall_64+0xcd/0x230
[  406.512509][T10051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  406.512535][T10051] RIP: 0033:0x7f75d3d8e169
[  406.512556][T10051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  406.512582][T10051] RSP: 002b:00007f75d4bb9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  406.512609][T10051] RAX: ffffffffffffffda RBX: 00007f75d3fb5fa0 RCX: 00007f75d3d8e169
[  406.512628][T10051] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000003
[  406.512645][T10051] RBP: 00007f75d4bb9090 R08: 0000000000000000 R09: 0000000000000000
[  406.512661][T10051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  406.512675][T10051] R13: 0000000000000000 R14: 00007f75d3fb5fa0 R15: 00007fffcd637fa8
[  406.512708][T10051]  </TASK>
[  407.311876][T10062] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  407.795786][   T62] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.295843][   T62] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.574174][   T62] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.855594][   T62] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.701819][T10086] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1028'.
[  410.217583][   T62] bridge_slave_1: left allmulticast mode
[  410.243018][   T62] bridge_slave_1: left promiscuous mode
[  410.291070][   T62] bridge0: port 2(bridge_slave_1) entered disabled state
[  410.341620][   T62] bridge_slave_0: left allmulticast mode
[  410.347333][   T62] bridge_slave_0: left promiscuous mode
[  410.360948][   T62] bridge0: port 1(bridge_slave_0) entered disabled state
[  411.591624][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  411.605036][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  411.638369][   T62] bond0 (unregistering): Released all slaves
[  412.607094][   T62] hsr_slave_0: left promiscuous mode
[  412.622869][   T62] hsr_slave_1: left promiscuous mode
[  412.635136][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  412.650614][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  412.661273][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  412.674395][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  412.757599][   T62] veth1_macvtap: left promiscuous mode
[  412.780499][   T62] veth0_macvtap: left promiscuous mode
[  412.786809][   T62] veth1_vlan: left promiscuous mode
[  412.800607][   T62] veth0_vlan: left promiscuous mode
[  413.438109][T10137] FAULT_INJECTION: forcing a failure.
[  413.438109][T10137] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  413.454371][T10137] CPU: 0 UID: 0 PID: 10137 Comm: syz.4.1039 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  413.454413][T10137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  413.454431][T10137] Call Trace:
[  413.454441][T10137]  <TASK>
[  413.454452][T10137]  dump_stack_lvl+0x16c/0x1f0
[  413.454504][T10137]  should_fail_ex+0x512/0x640
[  413.454548][T10137]  _copy_to_user+0x32/0xd0
[  413.454593][T10137]  simple_read_from_buffer+0xcb/0x170
[  413.454647][T10137]  proc_fail_nth_read+0x197/0x270
[  413.454697][T10137]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  413.454748][T10137]  ? rw_verify_area+0xcf/0x680
[  413.454797][T10137]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  413.454846][T10137]  vfs_read+0x1de/0xc70
[  413.454884][T10137]  ? __pfx___mutex_lock+0x10/0x10
[  413.454939][T10137]  ? __pfx_vfs_read+0x10/0x10
[  413.454983][T10137]  ? __fget_files+0x20e/0x3c0
[  413.455026][T10137]  ksys_read+0x12a/0x240
[  413.455057][T10137]  ? __pfx_ksys_read+0x10/0x10
[  413.455087][T10137]  ? rcu_is_watching+0x12/0xc0
[  413.455132][T10137]  do_syscall_64+0xcd/0x230
[  413.455182][T10137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  413.455214][T10137] RIP: 0033:0x7f7b4238cb7c
[  413.455239][T10137] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  413.455268][T10137] RSP: 002b:00007f7b43248030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  413.455295][T10137] RAX: ffffffffffffffda RBX: 00007f7b425b5fa0 RCX: 00007f7b4238cb7c
[  413.455315][T10137] RDX: 000000000000000f RSI: 00007f7b432480a0 RDI: 0000000000000004
[  413.455334][T10137] RBP: 00007f7b43248090 R08: 0000000000000000 R09: 0000000000000000
[  413.455351][T10137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  413.455369][T10137] R13: 0000000000000000 R14: 00007f7b425b5fa0 R15: 00007ffd10fbb4d8
[  413.455409][T10137]  </TASK>
[  413.930206][T10142] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  414.344291][T10154] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1043'.
[  414.788493][   T62] team0 (unregistering): Port device team_slave_1 removed
[  414.896841][   T62] team0 (unregistering): Port device team_slave_0 removed
[  416.587467][T10157] Bluetooth: hci1: command 0x0406 tx timeout
[  417.143341][T10199] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  417.313104][T10205] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  417.921031][T10223] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1057'.
[  419.781676][T10250] FAULT_INJECTION: forcing a failure.
[  419.781676][T10250] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  419.846889][T10250] CPU: 1 UID: 0 PID: 10250 Comm: syz.3.1061 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  419.846952][T10250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  419.846975][T10250] Call Trace:
[  419.846985][T10250]  <TASK>
[  419.846996][T10250]  dump_stack_lvl+0x16c/0x1f0
[  419.847049][T10250]  should_fail_ex+0x512/0x640
[  419.847094][T10250]  _copy_to_iter+0x2a4/0x15a0
[  419.847150][T10250]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  419.847202][T10250]  ? __pfx__copy_to_iter+0x10/0x10
[  419.847246][T10250]  ? kernfs_seq_stop+0xcd/0x120
[  419.847297][T10250]  ? kernfs_put_active+0x86/0xe0
[  419.847340][T10250]  seq_read_iter+0xcf8/0x12c0
[  419.847409][T10250]  kernfs_fop_read_iter+0x40f/0x5a0
[  419.847452][T10250]  ? rw_verify_area+0xcf/0x680
[  419.847508][T10250]  vfs_read+0x8c8/0xc70
[  419.847546][T10250]  ? __pfx___mutex_lock+0x10/0x10
[  419.847593][T10250]  ? __pfx_vfs_read+0x10/0x10
[  419.847653][T10250]  ksys_read+0x12a/0x240
[  419.847686][T10250]  ? __pfx_ksys_read+0x10/0x10
[  419.847732][T10250]  do_syscall_64+0xcd/0x230
[  419.847784][T10250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.847816][T10250] RIP: 0033:0x7f75d3d8e169
[  419.847840][T10250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  419.847870][T10250] RSP: 002b:00007f75d4bb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  419.847898][T10250] RAX: ffffffffffffffda RBX: 00007f75d3fb5fa0 RCX: 00007f75d3d8e169
[  419.847919][T10250] RDX: 0000000100000001 RSI: 0000200000000240 RDI: 0000000000000003
[  419.847938][T10250] RBP: 00007f75d4bb9090 R08: 0000000000000000 R09: 0000000000000000
[  419.847956][T10250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  419.847974][T10250] R13: 0000000000000000 R14: 00007f75d3fb5fa0 R15: 00007fffcd637fa8
[  419.848016][T10250]  </TASK>
[  420.586017][T10266] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  420.753846][T10258] Invalid ELF header magic: != ELF
[  421.201817][T10258] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1063'.
[  421.235001][T10258] geneve1: entered promiscuous mode
[  421.267461][T10258] geneve1: entered allmulticast mode
[  421.491495][T10282] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1067'.
[  423.501817][T10310] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1073'.
[  423.812240][T10324] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1077'.
[  424.353495][T10331] 0x000200000001-0xa29656a63616329 : ""
[  424.374139][T10331] mtd: partition "" is out of reach -- disabled
[  424.396130][T10331] ftl_cs: FTL header not found.
[  424.668282][T10331] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  428.763666][T10412] device-mapper: ioctl: only supply one of name or uuid, cmd(11)
[  430.320651][T10448] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1101'.
[  431.173816][T10463] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1104'.
[  432.218692][T10471] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1105'.
[  432.921673][T10486] netlink: 'syz.4.1108': attribute type 11 has an invalid length.
[  432.940780][T10486] netlink: 'syz.4.1108': attribute type 11 has an invalid length.
[  432.948750][T10486] netlink: 'syz.4.1108': attribute type 11 has an invalid length.
[  432.973864][T10486] netlink: 'syz.4.1108': attribute type 11 has an invalid length.
[  433.572367][T10502] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1111'.
[  435.241276][T10545] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1121'.
[  435.457105][T10549] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1123'.
[  436.429218][T10564] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  438.300570][T10605] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1137'.
[  438.892594][T10589] FAULT_INJECTION: forcing a failure.
[  438.892594][T10589] name failslab, interval 1, probability 0, space 0, times 0
[  439.080496][T10589] CPU: 1 UID: 0 PID: 10589 Comm: syz.3.1133 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  439.080541][T10589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  439.080560][T10589] Call Trace:
[  439.080570][T10589]  <TASK>
[  439.080581][T10589]  dump_stack_lvl+0x16c/0x1f0
[  439.080634][T10589]  should_fail_ex+0x512/0x640
[  439.080673][T10589]  ? __kmalloc_noprof+0xbf/0x510
[  439.080717][T10589]  ? xfrm_hash_alloc+0xd1/0x100
[  439.080747][T10589]  should_failslab+0xc2/0x120
[  439.080791][T10589]  __kmalloc_noprof+0xd2/0x510
[  439.080827][T10589]  ? proc_create_reg+0xe3/0x180
[  439.080874][T10589]  ? __pfx_xfrm_net_init+0x10/0x10
[  439.080909][T10589]  xfrm_hash_alloc+0xd1/0x100
[  439.080940][T10589]  xfrm_state_init+0x9c/0x630
[  439.080977][T10589]  ? __pfx_xfrm_net_init+0x10/0x10
[  439.081009][T10589]  xfrm_net_init+0x210/0xcc0
[  439.081051][T10589]  ? __pfx_xfrm_net_init+0x10/0x10
[  439.081084][T10589]  ops_init+0x1df/0x5f0
[  439.081136][T10589]  setup_net+0x21e/0x850
[  439.081187][T10589]  ? __pfx_setup_net+0x10/0x10
[  439.081233][T10589]  ? lockdep_init_map_type+0x5c/0x280
[  439.081280][T10589]  ? __pfx_down_read_killable+0x10/0x10
[  439.081316][T10589]  ? debug_mutex_init+0x37/0x70
[  439.081354][T10589]  copy_net_ns+0x2a6/0x5f0
[  439.081410][T10589]  create_new_namespaces+0x3ea/0xad0
[  439.081471][T10589]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  439.081517][T10589]  ksys_unshare+0x45b/0xa40
[  439.081567][T10589]  ? __pfx_ksys_unshare+0x10/0x10
[  439.081612][T10589]  ? xfd_validate_state+0x5d/0x180
[  439.081647][T10589]  ? rcu_is_watching+0x12/0xc0
[  439.081689][T10589]  __x64_sys_unshare+0x31/0x40
[  439.081736][T10589]  do_syscall_64+0xcd/0x230
[  439.081788][T10589]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.081820][T10589] RIP: 0033:0x7f75d3d8e169
[  439.081845][T10589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.081876][T10589] RSP: 002b:00007f75d4bb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  439.081906][T10589] RAX: ffffffffffffffda RBX: 00007f75d3fb5fa0 RCX: 00007f75d3d8e169
[  439.081927][T10589] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  439.081946][T10589] RBP: 00007f75d3e10a68 R08: 0000000000000000 R09: 0000000000000000
[  439.081964][T10589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  439.081983][T10589] R13: 0000000000000000 R14: 00007f75d3fb5fa0 R15: 00007fffcd637fa8
[  439.082025][T10589]  </TASK>
[  442.369424][T10672] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  443.032424][T10688] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1150'.
[  445.252052][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  445.258548][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  445.611979][T10718] sysfs_service_op_store: Client not running :-5:
[  445.623276][T10719] sysfs_service_op_store: Client not running :-5:
[  445.706978][T10726] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1157'.
[  445.839114][   T55] Bluetooth: hci2: unexpected subevent 0x01 length: 122 > 18
[  445.847255][   T55] Bluetooth: hci2: Invalid handle: 0x1e1a > 0x0eff
[  445.977132][T10733] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  446.015191][T10733] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  446.036088][T10740] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma?
[  446.059580][T10733] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  446.093415][T10733] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  446.123485][T10733] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  446.142648][T10733] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  446.153288][T10733] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  446.175507][T10733] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  446.251069][T10746] RDS: rds_bind could not find a transport for ::ffff:10.1.1.2, load rds_tcp or rds_rdma?
[  446.388287][T10746] FAULT_INJECTION: forcing a failure.
[  446.388287][T10746] name failslab, interval 1, probability 0, space 0, times 0
[  446.419778][T10746] CPU: 1 UID: 0 PID: 10746 Comm: syz.2.1162 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  446.419827][T10746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  446.419847][T10746] Call Trace:
[  446.419857][T10746]  <TASK>
[  446.419870][T10746]  dump_stack_lvl+0x16c/0x1f0
[  446.419922][T10746]  should_fail_ex+0x512/0x640
[  446.419960][T10746]  ? fs_reclaim_acquire+0xae/0x150
[  446.420015][T10746]  ? tomoyo_supervisor+0x45b/0x13b0
[  446.420043][T10746]  should_failslab+0xc2/0x120
[  446.420085][T10746]  __kmalloc_noprof+0xd2/0x510
[  446.420121][T10746]  ? tomoyo_profile+0x47/0x60
[  446.420181][T10746]  tomoyo_supervisor+0x45b/0x13b0
[  446.420220][T10746]  ? __pfx_tomoyo_supervisor+0x10/0x10
[  446.420272][T10746]  ? __pfx_vsnprintf+0x10/0x10
[  446.420338][T10746]  ? tomoyo_encode2+0x329/0x3e0
[  446.420416][T10746]  tomoyo_path_number_perm+0x448/0x580
[  446.420463][T10746]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  446.420699][T10746]  ? find_held_lock+0x2b/0x80
[  446.420742][T10746]  ? hook_file_ioctl_common+0x145/0x410
[  446.420790][T10746]  ? __fget_files+0x20e/0x3c0
[  446.420831][T10746]  security_file_ioctl+0x9b/0x240
[  446.420877][T10746]  __x64_sys_ioctl+0xb7/0x200
[  446.420927][T10746]  do_syscall_64+0xcd/0x230
[  446.420980][T10746]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.421013][T10746] RIP: 0033:0x7f84a9f8e169
[  446.421038][T10746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.421068][T10746] RSP: 002b:00007f84aad23038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  446.421096][T10746] RAX: ffffffffffffffda RBX: 00007f84aa1b5fa0 RCX: 00007f84a9f8e169
[  446.421117][T10746] RDX: 0000000000000000 RSI: 00000000c0045005 RDI: 0000000000000006
[  446.421137][T10746] RBP: 00007f84aa010a68 R08: 0000000000000000 R09: 0000000000000000
[  446.421156][T10746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  446.421176][T10746] R13: 0000000000000000 R14: 00007f84aa1b5fa0 R15: 00007fff6424e508
[  446.421217][T10746]  </TASK>
[  446.450921][   T55] Bluetooth: hci0: unexpected event 0x3e length: 1020 > 260
[  446.633335][   T55] Bluetooth: hci0: unexpected subevent 0x01 length: 1019 > 18
[  447.551863][T10771] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1169'.
[  447.717091][T10776] random: crng reseeded on system resumption
[  448.011107][T10781] FAULT_INJECTION: forcing a failure.
[  448.011107][T10781] name failslab, interval 1, probability 0, space 0, times 0
[  448.025449][   T55] Bluetooth: hci3: command 0x0c1a tx timeout
[  448.031597][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[  448.089196][T10781] CPU: 0 UID: 0 PID: 10781 Comm: syz.1.1171 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  448.089242][T10781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  448.089261][T10781] Call Trace:
[  448.089271][T10781]  <TASK>
[  448.089282][T10781]  dump_stack_lvl+0x16c/0x1f0
[  448.089332][T10781]  should_fail_ex+0x512/0x640
[  448.089369][T10781]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  448.089407][T10781]  should_failslab+0xc2/0x120
[  448.089449][T10781]  __kmalloc_cache_noprof+0x6a/0x3e0
[  448.089484][T10781]  ? alloc_netdev_mqs+0xf3a/0x1570
[  448.089534][T10781]  alloc_netdev_mqs+0xf3a/0x1570
[  448.089598][T10781]  ppp_ioctl+0x1761/0x2660
[  448.089643][T10781]  ? find_held_lock+0x2b/0x80
[  448.089676][T10781]  ? __pfx_ppp_ioctl+0x10/0x10
[  448.089715][T10781]  ? __fget_files+0x20e/0x3c0
[  448.089752][T10781]  ? __pfx_ppp_ioctl+0x10/0x10
[  448.089786][T10781]  __x64_sys_ioctl+0x190/0x200
[  448.089836][T10781]  do_syscall_64+0xcd/0x230
[  448.089886][T10781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.089918][T10781] RIP: 0033:0x7f5b9db8e169
[  448.089941][T10781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.089972][T10781] RSP: 002b:00007f5b9e914038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  448.090001][T10781] RAX: ffffffffffffffda RBX: 00007f5b9ddb5fa0 RCX: 00007f5b9db8e169
[  448.090021][T10781] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000046
[  448.090039][T10781] RBP: 00007f5b9dc10a68 R08: 0000000000000000 R09: 0000000000000000
[  448.090057][T10781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  448.090074][T10781] R13: 0000000000000000 R14: 00007f5b9ddb5fa0 R15: 00007ffc7a3023f8
[  448.090114][T10781]  </TASK>
[  448.272991][T10157] Bluetooth: hci1: command 0x0406 tx timeout
[  448.281186][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  448.292197][T10785] Malformed UNC in devname
[  448.292197][T10785] 
[  448.339282][T10785] CIFS: VFS: Malformed UNC in devname
[  448.581770][T10768] nbd: socks must be embedded in a SOCK_ITEM attr
[  448.664202][T10768] block nbd0: shutting down sockets
[  448.774862][T10793] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  450.101580][T10157] Bluetooth: hci3: command 0x0c1a tx timeout
[  450.341428][T10157] Bluetooth: hci1: command 0x0406 tx timeout
[  450.347951][   T55] Bluetooth: hci2: command 0x0c1a tx timeout
[  450.495058][T10852] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1182'.
[  450.756833][T10858] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  451.452387][T10873] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1184'.
[  451.983940][T10887] FAULT_INJECTION: forcing a failure.
[  451.983940][T10887] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  452.019297][T10887] CPU: 1 UID: 0 PID: 10887 Comm: syz.1.1187 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  452.019346][T10887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  452.019365][T10887] Call Trace:
[  452.019376][T10887]  <TASK>
[  452.019388][T10887]  dump_stack_lvl+0x16c/0x1f0
[  452.019442][T10887]  should_fail_ex+0x512/0x640
[  452.019486][T10887]  strncpy_from_user+0x3b/0x2e0
[  452.019526][T10887]  getname_flags.part.0+0x8f/0x550
[  452.019577][T10887]  getname_flags+0x93/0xf0
[  452.019608][T10887]  do_sys_openat2+0xb8/0x1d0
[  452.019654][T10887]  ? __pfx_do_sys_openat2+0x10/0x10
[  452.019704][T10887]  ? __pfx___might_resched+0x10/0x10
[  452.019754][T10887]  __x64_sys_openat+0x174/0x210
[  452.019802][T10887]  ? __pfx___x64_sys_openat+0x10/0x10
[  452.019851][T10887]  ? rcu_is_watching+0x12/0xc0
[  452.019906][T10887]  do_syscall_64+0xcd/0x230
[  452.019956][T10887]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.019987][T10887] RIP: 0033:0x7f5b9db8e169
[  452.020012][T10887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  452.020042][T10887] RSP: 002b:00007f5b9b9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  452.020071][T10887] RAX: ffffffffffffffda RBX: 00007f5b9ddb6080 RCX: 00007f5b9db8e169
[  452.020091][T10887] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  452.020110][T10887] RBP: 00007f5b9dc10a68 R08: 0000000000000000 R09: 0000000000000000
[  452.020137][T10887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  452.020155][T10887] R13: 0000000000000000 R14: 00007f5b9ddb6080 R15: 00007ffc7a3023f8
[  452.020205][T10887]  </TASK>
[  452.242192][T10890] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1189'.
[  452.328353][   T30] audit: type=1804 audit(4294967516.707:4): pid=10887 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1187" name="/newroot/sys/kernel/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  452.420507][T10157] Bluetooth: hci2: command 0x0c1a tx timeout
[  455.404865][T10961] FAULT_INJECTION: forcing a failure.
[  455.404865][T10961] name failslab, interval 1, probability 0, space 0, times 0
[  455.418552][T10961] CPU: 0 UID: 0 PID: 10961 Comm: syz.3.1201 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  455.418601][T10961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  455.418620][T10961] Call Trace:
[  455.418629][T10961]  <TASK>
[  455.418640][T10961]  dump_stack_lvl+0x16c/0x1f0
[  455.418691][T10961]  should_fail_ex+0x512/0x640
[  455.418728][T10961]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  455.418770][T10961]  should_failslab+0xc2/0x120
[  455.418812][T10961]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  455.418851][T10961]  ? __kernfs_new_node+0xd2/0x8a0
[  455.418889][T10961]  __kernfs_new_node+0xd2/0x8a0
[  455.418923][T10961]  ? __pfx___kernfs_new_node+0x10/0x10
[  455.418973][T10961]  ? find_held_lock+0x2b/0x80
[  455.419007][T10961]  ? kernfs_root+0xee/0x2a0
[  455.419047][T10961]  kernfs_new_node+0x13c/0x1e0
[  455.419091][T10961]  __kernfs_create_file+0x53/0x350
[  455.419142][T10961]  sysfs_add_file_mode_ns+0x207/0x3c0
[  455.419207][T10961]  sysfs_merge_group+0x1aa/0x340
[  455.419243][T10961]  ? __pfx_sysfs_merge_group+0x10/0x10
[  455.419283][T10961]  ? __pfx_dev_add_physical_location+0x10/0x10
[  455.419336][T10961]  ? bus_to_subsys+0x12d/0x160
[  455.419380][T10961]  dpm_sysfs_add+0x237/0x280
[  455.419413][T10961]  device_add+0x9a6/0x1a70
[  455.419451][T10961]  ? __pfx_device_add+0x10/0x10
[  455.419489][T10961]  ? sprintf+0xcc/0x100
[  455.419529][T10961]  ? __pfx_sprintf+0x10/0x10
[  455.419577][T10961]  add_disk_fwnode+0x468/0x13a0
[  455.419624][T10961]  loop_add+0x909/0xb70
[  455.419658][T10961]  ? do_vfs_ioctl+0x512/0x1990
[  455.419705][T10961]  ? __pfx_loop_add+0x10/0x10
[  455.419736][T10961]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  455.419808][T10961]  ? find_held_lock+0x2b/0x80
[  455.419847][T10961]  loop_control_ioctl+0x13c/0x630
[  455.419885][T10961]  ? __pfx_loop_control_ioctl+0x10/0x10
[  455.419928][T10961]  ? __pfx_loop_control_ioctl+0x10/0x10
[  455.419975][T10961]  __x64_sys_ioctl+0x190/0x200
[  455.420024][T10961]  do_syscall_64+0xcd/0x230
[  455.420074][T10961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.420105][T10961] RIP: 0033:0x7f75d3d8e169
[  455.420128][T10961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  455.420158][T10961] RSP: 002b:00007f75d4bb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  455.420187][T10961] RAX: ffffffffffffffda RBX: 00007f75d3fb5fa0 RCX: 00007f75d3d8e169
[  455.420207][T10961] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007
[  455.420226][T10961] RBP: 00007f75d3e10a68 R08: 0000000000000000 R09: 0000000000000000
[  455.420244][T10961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  455.420262][T10961] R13: 0000000000000000 R14: 00007f75d3fb5fa0 R15: 00007fffcd637fa8
[  455.420300][T10961]  </TASK>
[  455.445348][T10963] FAULT_INJECTION: forcing a failure.
[  455.445348][T10963] name failslab, interval 1, probability 0, space 0, times 0
[  455.744848][T10963] CPU: 1 UID: 0 PID: 10963 Comm: syz.2.1200 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  455.744893][T10963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  455.744910][T10963] Call Trace:
[  455.744920][T10963]  <TASK>
[  455.744932][T10963]  dump_stack_lvl+0x16c/0x1f0
[  455.744982][T10963]  should_fail_ex+0x512/0x640
[  455.745019][T10963]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  455.745057][T10963]  should_failslab+0xc2/0x120
[  455.745100][T10963]  __kmalloc_cache_noprof+0x6a/0x3e0
[  455.745132][T10963]  ? __debugfs_file_get+0x1fe/0x840
[  455.745169][T10963]  ? orangefs_debug_read+0x9b/0x1e0
[  455.745207][T10963]  orangefs_debug_read+0x9b/0x1e0
[  455.745243][T10963]  full_proxy_read+0x13c/0x200
[  455.745280][T10963]  ? __pfx_full_proxy_read+0x10/0x10
[  455.745319][T10963]  vfs_readv+0x6bc/0x8a0
[  455.745346][T10963]  ? __pfx___mutex_trylock_common+0x10/0x10
[  455.745405][T10963]  ? __pfx_vfs_readv+0x10/0x10
[  455.745433][T10963]  ? __mutex_lock+0x1ca/0xb90
[  455.745489][T10963]  ? __pfx___mutex_lock+0x10/0x10
[  455.745551][T10963]  ? __fget_files+0x20e/0x3c0
[  455.745579][T10963]  ? __fget_files+0x160/0x3c0
[  455.745627][T10963]  ? do_readv+0x132/0x330
[  455.745652][T10963]  do_readv+0x132/0x330
[  455.745681][T10963]  ? __pfx_do_readv+0x10/0x10
[  455.745707][T10963]  ? rcu_is_watching+0x12/0xc0
[  455.745751][T10963]  do_syscall_64+0xcd/0x230
[  455.745800][T10963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.745831][T10963] RIP: 0033:0x7f84a9f8e169
[  455.745857][T10963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  455.745886][T10963] RSP: 002b:00007f84aad23038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  455.745914][T10963] RAX: ffffffffffffffda RBX: 00007f84aa1b5fa0 RCX: 00007f84a9f8e169
[  455.745933][T10963] RDX: 000000000000000c RSI: 0000200000000300 RDI: 0000000000000003
[  455.745951][T10963] RBP: 00007f84aad23090 R08: 0000000000000000 R09: 0000000000000000
[  455.745969][T10963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  455.745986][T10963] R13: 0000000000000000 R14: 00007f84aa1b5fa0 R15: 00007fff6424e508
[  455.746025][T10963]  </TASK>
[  457.471338][T10999] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1207'.
[  458.410058][T11015] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  458.792712][T11017] zswap: compressor  not available
[  461.633427][T11069] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1223'.
[  464.937364][T11106] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1233'.
[  466.556265][T11128] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  468.110988][T11150] FAULT_INJECTION: forcing a failure.
[  468.110988][T11150] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  468.141599][T11150] CPU: 1 UID: 0 PID: 11150 Comm: syz.2.1245 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  468.141644][T11150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  468.141662][T11150] Call Trace:
[  468.141671][T11150]  <TASK>
[  468.141681][T11150]  dump_stack_lvl+0x16c/0x1f0
[  468.141732][T11150]  should_fail_ex+0x512/0x640
[  468.141776][T11150]  _copy_from_user+0x2e/0xd0
[  468.141819][T11150]  evdev_do_ioctl+0xce4/0x1b30
[  468.141856][T11150]  ? __pfx_evdev_do_ioctl+0x10/0x10
[  468.141918][T11150]  evdev_ioctl+0x16f/0x1a0
[  468.141946][T11150]  ? __pfx_evdev_ioctl+0x10/0x10
[  468.141979][T11150]  __x64_sys_ioctl+0x190/0x200
[  468.142031][T11150]  do_syscall_64+0xcd/0x230
[  468.142081][T11150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  468.142113][T11150] RIP: 0033:0x7f84a9f8e169
[  468.142136][T11150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  468.142166][T11150] RSP: 002b:00007f84aad23038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  468.142195][T11150] RAX: ffffffffffffffda RBX: 00007f84aa1b5fa0 RCX: 00007f84a9f8e169
[  468.142215][T11150] RDX: 0000200000000080 RSI: 0000000080104592 RDI: 0000000000000003
[  468.142233][T11150] RBP: 00007f84aad23090 R08: 0000000000000000 R09: 0000000000000000
[  468.142250][T11150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  468.142267][T11150] R13: 0000000000000000 R14: 00007f84aa1b5fa0 R15: 00007fff6424e508
[  468.142307][T11150]  </TASK>
[  469.566245][T11168] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  470.711938][T11181] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1253'.
[  475.714474][T11225] kexec: Could not allocate control_code_buffer
[  475.761873][T11236] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1266'.
[  476.405960][T11240] FAULT_INJECTION: forcing a failure.
[  476.405960][T11240] name failslab, interval 1, probability 0, space 0, times 0
[  476.435683][T11240] CPU: 0 UID: 0 PID: 11240 Comm: syz.3.1267 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  476.435731][T11240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  476.435751][T11240] Call Trace:
[  476.435761][T11240]  <TASK>
[  476.435772][T11240]  dump_stack_lvl+0x16c/0x1f0
[  476.435825][T11240]  should_fail_ex+0x512/0x640
[  476.435862][T11240]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  476.435896][T11240]  should_failslab+0xc2/0x120
[  476.435928][T11240]  __kmalloc_cache_noprof+0x6a/0x3e0
[  476.435952][T11240]  ? resv_map_alloc+0x7e/0x400
[  476.435987][T11240]  resv_map_alloc+0x7e/0x400
[  476.436020][T11240]  hugetlbfs_get_inode+0x33f/0x730
[  476.436055][T11240]  hugetlb_file_setup+0x15b/0x620
[  476.436089][T11240]  ksys_mmap_pgoff+0x189/0x5c0
[  476.436126][T11240]  ? rcu_is_watching+0x12/0xc0
[  476.436152][T11240]  __x64_sys_mmap+0x125/0x190
[  476.436181][T11240]  do_syscall_64+0xcd/0x230
[  476.436217][T11240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.436240][T11240] RIP: 0033:0x7f75d3d8e169
[  476.436258][T11240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.436280][T11240] RSP: 002b:00007f75d4bb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  476.436301][T11240] RAX: ffffffffffffffda RBX: 00007f75d3fb5fa0 RCX: 00007f75d3d8e169
[  476.436316][T11240] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000
[  476.436330][T11240] RBP: 00007f75d3e10a68 R08: 000000000000000d R09: 0000300000000000
[  476.436344][T11240] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[  476.436358][T11240] R13: 0000000000000000 R14: 00007f75d3fb5fa0 R15: 00007fffcd637fa8
[  476.436386][T11240]  </TASK>
[  476.614668][    C0] vkms_vblank_simulate: vblank timer overrun
[  478.602483][T11276] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1276'.
[  479.545636][T11284] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1278'.
[  480.711677][   T55] Bluetooth: hci3: unexpected subevent 0x01 length: 122 > 18
[  481.065638][T11299] sp0: Synchronizing with TNC
[  481.647204][T11311] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1285'.
[  482.959011][T11331] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  483.345499][T11338] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1291'.
[  484.588666][T11354] syz.3.1294 (11354): drop_caches: 0
[  484.733891][T11358] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1295'.
[  485.336749][T11374] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  486.783383][T11391] FAULT_INJECTION: forcing a failure.
[  486.783383][T11391] name failslab, interval 1, probability 0, space 0, times 0
[  486.847841][T11391] CPU: 1 UID: 0 PID: 11391 Comm: syz.1.1303 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  486.847896][T11391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  486.847915][T11391] Call Trace:
[  486.847926][T11391]  <TASK>
[  486.847937][T11391]  dump_stack_lvl+0x16c/0x1f0
[  486.847990][T11391]  should_fail_ex+0x512/0x640
[  486.848029][T11391]  ? __kmalloc_noprof+0xbf/0x510
[  486.848070][T11391]  ? iovec_from_user+0x108/0x140
[  486.848112][T11391]  should_failslab+0xc2/0x120
[  486.848159][T11391]  __kmalloc_noprof+0xd2/0x510
[  486.848208][T11391]  iovec_from_user+0x108/0x140
[  486.848257][T11391]  process_vm_rw+0x1d8/0x2c0
[  486.848303][T11391]  ? __pfx_process_vm_rw+0x10/0x10
[  486.848355][T11391]  ? fd_install+0x225/0x750
[  486.848383][T11391]  ? putname+0x154/0x1a0
[  486.848455][T11391]  ? xfd_validate_state+0x5d/0x180
[  486.848499][T11391]  __x64_sys_process_vm_readv+0xe2/0x1c0
[  486.848544][T11391]  ? do_syscall_64+0x91/0x230
[  486.848591][T11391]  ? lockdep_hardirqs_on+0x7c/0x110
[  486.848634][T11391]  do_syscall_64+0xcd/0x230
[  486.848684][T11391]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  486.848715][T11391] RIP: 0033:0x7f5b9db8e169
[  486.848740][T11391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  486.848770][T11391] RSP: 002b:00007f5b9b9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  486.848799][T11391] RAX: ffffffffffffffda RBX: 00007f5b9ddb6080 RCX: 00007f5b9db8e169
[  486.848820][T11391] RDX: 0000040000000001 RSI: 0000200000000000 RDI: 0000000000000492
[  486.848839][T11391] RBP: 00007f5b9dc10a68 R08: 000000000000000a R09: 0000000000000000
[  486.848866][T11391] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000
[  486.848885][T11391] R13: 0000000000000000 R14: 00007f5b9ddb6080 R15: 00007ffc7a3023f8
[  486.848925][T11391]  </TASK>
[  487.395051][T11396] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1306'.
[  487.989803][T11388] kexec: Could not allocate control_code_buffer
[  488.270621][T11407] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1308'.
[  489.800963][T11425] FAULT_INJECTION: forcing a failure.
[  489.800963][T11425] name failslab, interval 1, probability 0, space 0, times 0
[  489.815535][T11425] CPU: 0 UID: 0 PID: 11425 Comm: syz.1.1314 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  489.815583][T11425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  489.815603][T11425] Call Trace:
[  489.815614][T11425]  <TASK>
[  489.815626][T11425]  dump_stack_lvl+0x16c/0x1f0
[  489.815688][T11425]  should_fail_ex+0x512/0x640
[  489.815728][T11425]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  489.815773][T11425]  should_failslab+0xc2/0x120
[  489.815818][T11425]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  489.815856][T11425]  ? __proc_create+0xc3/0x8c0
[  489.815893][T11425]  ? __proc_create+0x2ce/0x8c0
[  489.815937][T11425]  __proc_create+0x2ce/0x8c0
[  489.815977][T11425]  ? __pfx___proc_create+0x10/0x10
[  489.816023][T11425]  ? _raw_write_unlock+0x28/0x50
[  489.816066][T11425]  ? proc_register+0x314/0x5f0
[  489.816110][T11425]  proc_create_reg+0x7d/0x180
[  489.816160][T11425]  ? __pfx_sockstat_seq_show+0x10/0x10
[  489.816193][T11425]  proc_create_net_single+0x86/0x170
[  489.816236][T11425]  ? __pfx_proc_create_net_single+0x10/0x10
[  489.816277][T11425]  ? __pfx_proc_create_net_data+0x10/0x10
[  489.816328][T11425]  ? __pfx_ip_proc_init_net+0x10/0x10
[  489.816358][T11425]  ip_proc_init_net+0x52/0x1a0
[  489.816389][T11425]  ops_init+0x1df/0x5f0
[  489.816443][T11425]  setup_net+0x21e/0x850
[  489.816496][T11425]  ? __pfx_setup_net+0x10/0x10
[  489.816542][T11425]  ? lockdep_init_map_type+0x5c/0x280
[  489.816590][T11425]  ? __pfx_down_read_killable+0x10/0x10
[  489.816627][T11425]  ? debug_mutex_init+0x37/0x70
[  489.816671][T11425]  copy_net_ns+0x2a6/0x5f0
[  489.816728][T11425]  create_new_namespaces+0x3ea/0xad0
[  489.816778][T11425]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  489.816823][T11425]  ksys_unshare+0x45b/0xa40
[  489.816873][T11425]  ? __pfx_ksys_unshare+0x10/0x10
[  489.816918][T11425]  ? xfd_validate_state+0x5d/0x180
[  489.816954][T11425]  ? rcu_is_watching+0x12/0xc0
[  489.816998][T11425]  __x64_sys_unshare+0x31/0x40
[  489.817045][T11425]  do_syscall_64+0xcd/0x230
[  489.817098][T11425]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.817139][T11425] RIP: 0033:0x7f5b9db8e169
[  489.817163][T11425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  489.817203][T11425] RSP: 002b:00007f5b9e914038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  489.817234][T11425] RAX: ffffffffffffffda RBX: 00007f5b9ddb5fa0 RCX: 00007f5b9db8e169
[  489.817255][T11425] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  489.817276][T11425] RBP: 00007f5b9dc10a68 R08: 0000000000000000 R09: 0000000000000000
[  489.817295][T11425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  489.817314][T11425] R13: 0000000000000000 R14: 00007f5b9ddb5fa0 R15: 00007ffc7a3023f8
[  489.817357][T11425]  </TASK>
[  490.763572][T11440] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  491.961808][T11461] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1322'.
[  492.637405][T11465] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  494.305427][T11486] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  495.948964][T11514] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1335'.
[  496.597850][T11528] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  498.244259][T11538] Invalid ELF header magic: != ELF
[  500.219060][T11558] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1345'.
[  500.951267][T11568] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  500.990189][T11571] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1349'.
[  501.616639][T11581] Console: switching to colour VGA+ 80x25
[  502.230507][T11594] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1356'.
[  504.740661][T11628] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1367'.
[  506.682753][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  506.698500][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  507.059341][T11657] can: request_module (can-proto-0) failed.
[  507.087491][T11657] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1375'.
[  507.690696][T11665] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1376'.
[  507.720725][T11670] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1377'.
[  508.954804][T11680] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  510.753402][T11708] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1389'.
[  510.794153][T11703] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1389'.
[  510.961254][T11708] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input15
[  511.947510][T11733] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  512.192917][T11736] FAULT_INJECTION: forcing a failure.
[  512.192917][T11736] name failslab, interval 1, probability 0, space 0, times 0
[  512.223962][T11736] CPU: 1 UID: 0 PID: 11736 Comm: syz.4.1394 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  512.224009][T11736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  512.224029][T11736] Call Trace:
[  512.224039][T11736]  <TASK>
[  512.224051][T11736]  dump_stack_lvl+0x16c/0x1f0
[  512.224103][T11736]  should_fail_ex+0x512/0x640
[  512.224142][T11736]  ? fs_reclaim_acquire+0xae/0x150
[  512.224196][T11736]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  512.224252][T11736]  should_failslab+0xc2/0x120
[  512.224296][T11736]  __kmalloc_noprof+0xd2/0x510
[  512.224343][T11736]  tomoyo_realpath_from_path+0xc2/0x6e0
[  512.224396][T11736]  ? tomoyo_profile+0x47/0x60
[  512.224450][T11736]  tomoyo_path_number_perm+0x245/0x580
[  512.224488][T11736]  ? tomoyo_path_number_perm+0x237/0x580
[  512.224532][T11736]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  512.224575][T11736]  ? find_held_lock+0x2b/0x80
[  512.224646][T11736]  ? find_held_lock+0x2b/0x80
[  512.224680][T11736]  ? hook_file_ioctl_common+0x145/0x410
[  512.224725][T11736]  ? __fget_files+0x20e/0x3c0
[  512.224764][T11736]  security_file_ioctl+0x9b/0x240
[  512.224808][T11736]  __x64_sys_ioctl+0xb7/0x200
[  512.224858][T11736]  do_syscall_64+0xcd/0x230
[  512.224911][T11736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  512.224943][T11736] RIP: 0033:0x7f7b4238e169
[  512.224968][T11736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  512.225000][T11736] RSP: 002b:00007f7b43248038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  512.225030][T11736] RAX: ffffffffffffffda RBX: 00007f7b425b5fa0 RCX: 00007f7b4238e169
[  512.225051][T11736] RDX: 0000000000000038 RSI: 0000000040246f4c RDI: 0000000000000003
[  512.225071][T11736] RBP: 00007f7b43248090 R08: 0000000000000000 R09: 0000000000000000
[  512.225090][T11736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  512.225109][T11736] R13: 0000000000000000 R14: 00007f7b425b5fa0 R15: 00007ffd10fbb4d8
[  512.225150][T11736]  </TASK>
[  512.225162][T11736] ERROR: Out of memory at tomoyo_realpath_from_path.
[  512.449814][T11745] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1396'.
[  514.336772][T11762] netlink: 'syz.2.1402': attribute type 1 has an invalid length.
[  514.405748][T11765] FAULT_INJECTION: forcing a failure.
[  514.405748][T11765] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  514.450494][T11765] CPU: 0 UID: 0 PID: 11765 Comm: syz.4.1403 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  514.450539][T11765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  514.450557][T11765] Call Trace:
[  514.450567][T11765]  <TASK>
[  514.450579][T11765]  dump_stack_lvl+0x16c/0x1f0
[  514.450630][T11765]  should_fail_ex+0x512/0x640
[  514.450674][T11765]  _copy_from_user+0x2e/0xd0
[  514.450720][T11765]  copy_msghdr_from_user+0x98/0x160
[  514.450764][T11765]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  514.450846][T11765]  ___sys_sendmsg+0xfe/0x1d0
[  514.450891][T11765]  ? __pfx____sys_sendmsg+0x10/0x10
[  514.450985][T11765]  __sys_sendmsg+0x16d/0x220
[  514.451035][T11765]  ? __pfx___sys_sendmsg+0x10/0x10
[  514.451091][T11765]  ? rcu_is_watching+0x12/0xc0
[  514.451135][T11765]  do_syscall_64+0xcd/0x230
[  514.451185][T11765]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.451217][T11765] RIP: 0033:0x7f7b4238e169
[  514.451242][T11765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.451272][T11765] RSP: 002b:00007f7b43248038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  514.451301][T11765] RAX: ffffffffffffffda RBX: 00007f7b425b5fa0 RCX: 00007f7b4238e169
[  514.451321][T11765] RDX: 0000000000000080 RSI: 0000200000001ac0 RDI: 0000000000000003
[  514.451340][T11765] RBP: 00007f7b43248090 R08: 0000000000000000 R09: 0000000000000000
[  514.451358][T11765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  514.451375][T11765] R13: 0000000000000000 R14: 00007f7b425b5fa0 R15: 00007ffd10fbb4d8
[  514.451414][T11765]  </TASK>
[  514.831535][T11768] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  514.967435][T11779] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1406'.
[  518.447153][T11824] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  519.290933][T11836] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  519.798634][T11848] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1426'.
[  519.997811][T11852] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1423'.
[  521.258249][T11866] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1436'.
[  523.636533][T11898] netlink: 'syz.2.1437': attribute type 72 has an invalid length.
[  525.429816][T11916] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1443'.
[  525.745255][T11924] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  529.336948][T11960] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  533.304888][T12002] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1462'.
[  534.931915][T12029] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  540.117609][T12093] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  540.465496][T12099] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  542.929090][T12130] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1490'.
[  543.401645][T12133] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  545.131286][T12160] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1496'.
[  545.460058][T12165] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1497'.
[  547.139207][T12173] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  547.499951][T12185] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input16
[  548.492145][T12196] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1503'.
[  550.742910][T12223] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  550.807203][T12225] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  552.285968][T12241] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1515'.
[  552.425884][T12246] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input17
[  553.634390][T12255] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1518'.
[  553.677401][T12252] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  554.052970][T12270] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1519'.
[  556.244189][T12290] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1525'.
[  558.417525][T12326] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  558.628323][T12329] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1534'.
[  558.997469][T10157] Bluetooth: hci0: Unable to find connection for big 0xd2
[  560.005793][T12351] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1538'.
[  561.054652][T12364] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input18
[  561.142156][T12363] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1549'.
[  562.835155][T12381] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  562.972270][T12384] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1546'.
[  563.205404][T12393] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input19
[  564.668083][T12411] ksmbd: Unknown IPC event: 14, ignore.
[  565.838237][T12432] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4)
[  566.483188][T12442] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1557'.
[  567.117963][T12452] ==================================================================
[  567.126100][T12452] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0
[  567.133885][T12452] Read of size 8 at addr ffff8880298c1618 by task syz.2.1561/12452
[  567.141826][T12452] 
[  567.144189][T12452] CPU: 0 UID: 0 PID: 12452 Comm: syz.2.1561 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  567.144241][T12452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  567.144262][T12452] Call Trace:
[  567.144272][T12452]  <TASK>
[  567.144285][T12452]  dump_stack_lvl+0x116/0x1f0
[  567.144337][T12452]  print_report+0xc3/0x670
[  567.144379][T12452]  ? __virt_addr_valid+0x5e/0x590
[  567.144425][T12452]  ? __phys_addr+0xc6/0x150
[  567.144471][T12452]  ? dvb_device_open+0x36a/0x3b0
[  567.144516][T12452]  kasan_report+0xe0/0x110
[  567.144558][T12452]  ? dvb_device_open+0x36a/0x3b0
[  567.144595][T12452]  ? __pfx_dvb_device_open+0x10/0x10
[  567.144628][T12452]  dvb_device_open+0x36a/0x3b0
[  567.144661][T12452]  ? __pfx_dvb_device_open+0x10/0x10
[  567.144693][T12452]  chrdev_open+0x231/0x6a0
[  567.144729][T12452]  ? __pfx_apparmor_file_open+0x10/0x10
[  567.144772][T12452]  ? __pfx_chrdev_open+0x10/0x10
[  567.144809][T12452]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  567.144863][T12452]  do_dentry_open+0x741/0x1c10
[  567.144898][T12452]  ? __pfx_chrdev_open+0x10/0x10
[  567.144938][T12452]  vfs_open+0x82/0x3f0
[  567.144982][T12452]  path_openat+0x1e5e/0x2d40
[  567.145021][T12452]  ? __pfx_path_openat+0x10/0x10
[  567.145057][T12452]  do_filp_open+0x20b/0x470
[  567.145089][T12452]  ? __pfx_do_filp_open+0x10/0x10
[  567.145135][T12452]  ? alloc_fd+0x471/0x7d0
[  567.145167][T12452]  do_sys_openat2+0x11b/0x1d0
[  567.145220][T12452]  ? __pfx_do_sys_openat2+0x10/0x10
[  567.145267][T12452]  ? __pfx___might_resched+0x10/0x10
[  567.145310][T12452]  __x64_sys_openat+0x174/0x210
[  567.145355][T12452]  ? __pfx___x64_sys_openat+0x10/0x10
[  567.145421][T12452]  ? rcu_is_watching+0x12/0xc0
[  567.145458][T12452]  do_syscall_64+0xcd/0x230
[  567.145508][T12452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.145540][T12452] RIP: 0033:0x7f84a9f8e169
[  567.145566][T12452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  567.145599][T12452] RSP: 002b:00007f84a7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  567.145629][T12452] RAX: ffffffffffffffda RBX: 00007f84aa1b6080 RCX: 00007f84a9f8e169
[  567.145651][T12452] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  567.145673][T12452] RBP: 00007f84aa010a68 R08: 0000000000000000 R09: 0000000000000000
[  567.145693][T12452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  567.145733][T12452] R13: 0000000000000000 R14: 00007f84aa1b6080 R15: 00007fff6424e508
[  567.145765][T12452]  </TASK>
[  567.145776][T12452] 
[  567.401962][T12452] Allocated by task 1:
[  567.406068][T12452]  kasan_save_stack+0x33/0x60
[  567.410883][T12452]  kasan_save_track+0x14/0x30
[  567.415611][T12452]  __kasan_kmalloc+0xaa/0xb0
[  567.420345][T12452]  dvb_register_device+0x1e4/0x2370
[  567.426022][T12452]  dvb_register_frontend+0x5a6/0x880
[  567.431357][T12452]  vidtv_bridge_probe+0x459/0xa90
[  567.436428][T12452]  platform_probe+0xff/0x1f0
[  567.441086][T12452]  really_probe+0x23e/0xa90
[  567.445665][T12452]  __driver_probe_device+0x1de/0x440
[  567.451139][T12452]  driver_probe_device+0x4c/0x1b0
[  567.456231][T12452]  __driver_attach+0x283/0x580
[  567.461109][T12452]  bus_for_each_dev+0x13b/0x1d0
[  567.466004][T12452]  bus_add_driver+0x2e9/0x690
[  567.470746][T12452]  driver_register+0x15c/0x4b0
[  567.475557][T12452]  vidtv_bridge_init+0x45/0x80
[  567.480381][T12452]  do_one_initcall+0x120/0x6e0
[  567.485292][T12452]  kernel_init_freeable+0x5c2/0x900
[  567.490547][T12452]  kernel_init+0x1c/0x2b0
[  567.494925][T12452]  ret_from_fork+0x45/0x80
[  567.499380][T12452]  ret_from_fork_asm+0x1a/0x30
[  567.504219][T12452] 
[  567.506574][T12452] Freed by task 12432:
[  567.510665][T12452]  kasan_save_stack+0x33/0x60
[  567.515376][T12452]  kasan_save_track+0x14/0x30
[  567.520091][T12452]  kasan_save_free_info+0x3b/0x60
[  567.525160][T12452]  __kasan_slab_free+0x51/0x70
[  567.529954][T12452]  kfree+0x2b6/0x4d0
[  567.533885][T12452]  dvb_device_put.part.0+0x60/0x90
[  567.539019][T12452]  dvb_device_open+0x2a4/0x3b0
[  567.543813][T12452]  chrdev_open+0x231/0x6a0
[  567.548258][T12452]  do_dentry_open+0x741/0x1c10
[  567.553136][T12452]  vfs_open+0x82/0x3f0
[  567.557252][T12452]  path_openat+0x1e5e/0x2d40
[  567.561870][T12452]  do_filp_open+0x20b/0x470
[  567.566488][T12452]  do_sys_openat2+0x11b/0x1d0
[  567.571806][T12452]  __x64_sys_openat+0x174/0x210
[  567.576692][T12452]  do_syscall_64+0xcd/0x230
[  567.581228][T12452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.587159][T12452] 
[  567.589509][T12452] The buggy address belongs to the object at ffff8880298c1600
[  567.589509][T12452]  which belongs to the cache kmalloc-256 of size 256
[  567.603595][T12452] The buggy address is located 24 bytes inside of
[  567.603595][T12452]  freed 256-byte region [ffff8880298c1600, ffff8880298c1700)
[  567.617328][T12452] 
[  567.619665][T12452] The buggy address belongs to the physical page:
[  567.626103][T12452] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x298c0
[  567.634880][T12452] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  567.643506][T12452] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  567.651087][T12452] page_type: f5(slab)
[  567.655128][T12452] raw: 00fff00000000040 ffff88801b441b40 dead000000000122 0000000000000000
[  567.663737][T12452] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  567.672342][T12452] head: 00fff00000000040 ffff88801b441b40 dead000000000122 0000000000000000
[  567.681042][T12452] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  567.689740][T12452] head: 00fff00000000001 ffffea0000a63001 00000000ffffffff 00000000ffffffff
[  567.698524][T12452] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  567.707206][T12452] page dumped because: kasan: bad access detected
[  567.713714][T12452] page_owner tracks the page as allocated
[  567.719436][T12452] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 24839984778, free_ts 0
[  567.739230][T12452]  post_alloc_hook+0x181/0x1b0
[  567.744039][T12452]  get_page_from_freelist+0x135c/0x3920
[  567.749618][T12452]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  567.755632][T12452]  alloc_pages_mpol+0x1fb/0x550
[  567.760511][T12452]  new_slab+0x244/0x340
[  567.764685][T12452]  ___slab_alloc+0xd9c/0x1940
[  567.769379][T12452]  __slab_alloc.constprop.0+0x56/0xb0
[  567.774772][T12452]  __kmalloc_cache_noprof+0xfb/0x3e0
[  567.780084][T12452]  bus_add_driver+0x92/0x690
[  567.784796][T12452]  driver_register+0x15c/0x4b0
[  567.789577][T12452]  usb_register_driver+0x216/0x4d0
[  567.794723][T12452]  do_one_initcall+0x120/0x6e0
[  567.799548][T12452]  kernel_init_freeable+0x5c2/0x900
[  567.804779][T12452]  kernel_init+0x1c/0x2b0
[  567.809130][T12452]  ret_from_fork+0x45/0x80
[  567.813563][T12452]  ret_from_fork_asm+0x1a/0x30
[  567.818368][T12452] page_owner free stack trace missing
[  567.823741][T12452] 
[  567.826078][T12452] Memory state around the buggy address:
[  567.831718][T12452]  ffff8880298c1500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  567.839881][T12452]  ffff8880298c1580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  567.847982][T12452] >ffff8880298c1600: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  567.856151][T12452]                             ^
[  567.861017][T12452]  ffff8880298c1680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  567.869099][T12452]  ffff8880298c1700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  567.877182][T12452] ==================================================================
[  567.885361][    C0] vkms_vblank_simulate: vblank timer overrun
[  567.909060][T12452] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  567.916324][T12452] CPU: 1 UID: 0 PID: 12452 Comm: syz.2.1561 Not tainted 6.15.0-rc2-syzkaller-00278-gfc96b232f8e7 #0 PREEMPT(full) 
[  567.928449][T12452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  567.938634][T12452] Call Trace:
[  567.941947][T12452]  <TASK>
[  567.944908][T12452]  dump_stack_lvl+0x3d/0x1f0
[  567.949586][T12452]  panic+0x71c/0x800
[  567.953538][T12452]  ? __pfx_panic+0x10/0x10
[  567.958019][T12452]  ? mark_held_locks+0x49/0x80
[  567.962857][T12452]  ? preempt_schedule_thunk+0x16/0x30
[  567.968275][T12452]  ? dvb_device_open+0x36a/0x3b0
[  567.973288][T12452]  ? preempt_schedule_common+0x44/0xc0
[  567.978812][T12452]  ? dvb_device_open+0x36a/0x3b0
[  567.983881][T12452]  check_panic_on_warn+0xab/0xb0
[  567.988899][T12452]  end_report+0x107/0x170
[  567.993288][T12452]  kasan_report+0xee/0x110
[  567.997757][T12452]  ? dvb_device_open+0x36a/0x3b0
[  568.002741][T12452]  ? __pfx_dvb_device_open+0x10/0x10
[  568.008073][T12452]  dvb_device_open+0x36a/0x3b0
[  568.012884][T12452]  ? __pfx_dvb_device_open+0x10/0x10
[  568.018218][T12452]  chrdev_open+0x231/0x6a0
[  568.022683][T12452]  ? __pfx_apparmor_file_open+0x10/0x10
[  568.028293][T12452]  ? __pfx_chrdev_open+0x10/0x10
[  568.033639][T12452]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  568.040446][T12452]  do_dentry_open+0x741/0x1c10
[  568.045237][T12452]  ? __pfx_chrdev_open+0x10/0x10
[  568.050205][T12452]  vfs_open+0x82/0x3f0
[  568.054322][T12452]  path_openat+0x1e5e/0x2d40
[  568.058942][T12452]  ? __pfx_path_openat+0x10/0x10
[  568.063917][T12452]  do_filp_open+0x20b/0x470
[  568.068479][T12452]  ? __pfx_do_filp_open+0x10/0x10
[  568.073543][T12452]  ? alloc_fd+0x471/0x7d0
[  568.077905][T12452]  do_sys_openat2+0x11b/0x1d0
[  568.082617][T12452]  ? __pfx_do_sys_openat2+0x10/0x10
[  568.087851][T12452]  ? __pfx___might_resched+0x10/0x10
[  568.093174][T12452]  __x64_sys_openat+0x174/0x210
[  568.098151][T12452]  ? __pfx___x64_sys_openat+0x10/0x10
[  568.103568][T12452]  ? rcu_is_watching+0x12/0xc0
[  568.108375][T12452]  do_syscall_64+0xcd/0x230
[  568.112999][T12452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.118930][T12452] RIP: 0033:0x7f84a9f8e169
[  568.123362][T12452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  568.142994][T12452] RSP: 002b:00007f84a7df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  568.151449][T12452] RAX: ffffffffffffffda RBX: 00007f84aa1b6080 RCX: 00007f84a9f8e169
[  568.159439][T12452] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  568.167463][T12452] RBP: 00007f84aa010a68 R08: 0000000000000000 R09: 0000000000000000
[  568.175455][T12452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  568.183447][T12452] R13: 0000000000000000 R14: 00007f84aa1b6080 R15: 00007fff6424e508
[  568.191447][T12452]  </TASK>
[  568.194765][T12452] Kernel Offset: disabled
[  568.199103][T12452] Rebooting in 86400 seconds..