last executing test programs:

1m39.249362689s ago: executing program 3 (id=2575):
socket(0x10, 0x3, 0x6)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, <r0=>0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f00000000c0)='\xc4--:\xdd:,./-${\x00', 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd=r0}, 0xa3)

1m38.445247223s ago: executing program 3 (id=2577):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r0 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000001380), 0x0, 0x0)
close_range$auto(r0, 0x8, 0x0) (async, rerun: 64)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r1)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001bc0)={0x1c, r2, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0xff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
rseq$auto(0x0, 0x8000, 0x0, 0x6) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (rerun: 64)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8) (async)
socket(0xa, 0x3, 0x3a)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
setsockopt$auto(0x400000000000003, 0x29, 0xd0, 0x0, 0x4)

1m36.989147875s ago: executing program 3 (id=2582):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0))
prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb)
write$auto(0xffffffffffffffff, 0x0, 0x7)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB="2f212abd7800fddb"], 0x14}}, 0x4000000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x3]}, 0x0)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800)
close_range$auto(r2, 0x8, 0x1107)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x800, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x0, 0x864, 0x7ff, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x9, 0xd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setns$auto(0x0, 0xb)
r3 = pidfd_open$auto(0x1, 0x0)
setns(r3, 0x60020000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000040), 0xffffffffffffffff)

1m35.53261761s ago: executing program 3 (id=2588):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0)
prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb)
write$auto(0xffffffffffffffff, 0x0, 0x7)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB="2f212abd7800fddb"], 0x14}}, 0x4000000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x3]}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800)
close_range$auto(r2, 0x8, 0x1107)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x800, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x0, 0x864, 0x7ff, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x9, 0xd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r3 = pidfd_open$auto(0x1, 0x0)
setns(r3, 0x60020000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000040), 0xffffffffffffffff)

1m34.195343874s ago: executing program 3 (id=2592):
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x101, 0x4)
socket(0xa, 0x801, 0x84)
r0 = socket(0x2, 0x801, 0x100)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/input/event1\x00', 0xc80, 0x0)
read$auto(0x3, 0x0, 0x80)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:01.0/d3cold_allowed\x00', 0xa0202, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb02, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r2, &(0x7f0000000080)="c60c0ba5c4790a39837a47ea2d61e66f8f5082ef5d3a80b65d1dcb5614f400001547cb0d81a2adc95555f8057c934018332af6bb9f6776bb8f10a2f00b8002536462c6b1b829d6dd84010e73c8dbe897d5eaf070410e9e679b3f6e", 0x5b)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
write$auto(0x3, 0x0, 0xfffffdef)
sysfs$auto(0x2, 0x4, 0x0)
openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000980), 0x102001, 0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, &(0x7f0000000080)="218be920a4d256a547ded772c6ba076f4d40b253d78abd78e06e54be947acf783ac1907c483c452052edaa51b2d636f19cd0f85fc73be6546cc07eaf32ff10752c71396a4b5b0bdbdb7bddff81981dedef03da281bdb96a7d75ee1da9f8c555ac7cf34d9435b9806bf715a10bb9245f1f4f0dff302492c7eaa5552bd12f5")
mmap$auto(0x2000000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
setreuid$auto(0x4, 0x8)
mlockall$auto(0x8000000000000001)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_to_bridge\x00', <r3=>0x0})
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004480}, 0x40054)
bpf$auto(0x7, &(0x7f0000000100)=@bpf_attr_5={@target_ifindex=r3, r0, 0x9f, 0x0, 0x1, @relative_fd, 0x5}, 0x96)

1m31.220583274s ago: executing program 3 (id=2598):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/netfilter/nf_hooks_lwtunnel\x00', 0x40000, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
madvise$auto(0xfffffffffffffffc, 0x7fffffffffffffff, 0xb)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
socket(0xa, 0x2, 0x0)
mmap$auto(0x11b, 0x2020005, 0x3, 0x100000010, r0, 0x2)
unshare$auto(0x40000080)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
write$auto(r1, 0x0, 0x82)
get_mempolicy$auto(0x0, 0x0, 0x3, 0x1ff, 0x3)
r2 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r2, 0x28000)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mmap$auto(0x0, 0xe9, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)

1m16.165664508s ago: executing program 32 (id=2598):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/netfilter/nf_hooks_lwtunnel\x00', 0x40000, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
madvise$auto(0xfffffffffffffffc, 0x7fffffffffffffff, 0xb)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
ioctl$auto(0xffffffffffffffff, 0x64c8, 0x1e2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
socket(0xa, 0x2, 0x0)
mmap$auto(0x11b, 0x2020005, 0x3, 0x100000010, r0, 0x2)
unshare$auto(0x40000080)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x9, 0x2, 0x40eb2, 0x401, 0x300000000000)
write$auto(r1, 0x0, 0x82)
get_mempolicy$auto(0x0, 0x0, 0x3, 0x1ff, 0x3)
r2 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/per_cpu/cpu1/trace\x00', 0x1a6b75d63882a712, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, r2, 0x28000)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TIOCVHANGUP2(0xffffffffffffffff, 0x5437, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mmap$auto(0x0, 0xe9, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)

7.709271042s ago: executing program 0 (id=2776):
r0 = socket(0x1d, 0x2, 0x7)
sendmsg$auto_IEEE802154_LLSEC_ADD_SECLEVEL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x10, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r1=>0x0})
connect$auto(0x3, &(0x7f00000000c0)=@can={0x1d, r1, 0xefff}, 0x18)

7.504137498s ago: executing program 0 (id=2781):
socket(0x10, 0x3, 0x6)
socket(0x15, 0x5, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, <r0=>0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f00000000c0)='\xc4--:\xdd:,./-${\x00', 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd=r0}, 0xa3)

7.19092396s ago: executing program 0 (id=2782):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0))
prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb)
write$auto(0xffffffffffffffff, 0x0, 0x7)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB="2f212abd7800fddb"], 0x14}}, 0x4000000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x3]}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800)
close_range$auto(r2, 0x8, 0x1107)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x800, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x0, 0x864, 0x7ff, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x9, 0xd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setns$auto(0x0, 0xb)
r3 = pidfd_open$auto(0x1, 0x0)
setns(r3, 0x60020000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000040), 0xffffffffffffffff)

7.19014612s ago: executing program 2 (id=2783):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x2000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
r0 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r1=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1}, 0x6a)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r2=>0x0})
connect$auto(0x3, &(0x7f00000000c0)=@can={0x1d, r2}, 0x18)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x48041, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x70000ee)

7.004990678s ago: executing program 2 (id=2784):
socket(0x10, 0x3, 0x6)
socket(0x15, 0x5, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, <r0=>0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f00000000c0)='\xc4--:\xdd:,./-${\x00', 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd=r0}, 0xa3) (fail_nth: 33)

6.921846524s ago: executing program 1 (id=2785):
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0xa0000, 0x0)
setsockopt$auto_SO_BROADCAST(r0, 0x3, 0x6, &(0x7f0000000040)='.\x00', 0x40)
getrandom$auto(&(0x7f0000000080)='/dev/sequencer2\x00', 0x6, 0x3)
ioctl$auto_VHOST_SET_VRING_KICK2(0xffffffffffffffff, 0x4008af20, &(0x7f00000000c0)={0xf2, <r1=>r0})
getrandom$auto(&(0x7f0000000100)='$i\x19:\x00', 0x41, 0x3)
read$auto_tracing_cpumask_fops_trace(r1, &(0x7f0000000140)=""/204, 0xcc)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'bridge0\x00', <r2=>0x0})
sendmsg$auto_NETDEV_CMD_BIND_RX(r1, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xa4, 0x0, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@NETDEV_A_DMABUF_QUEUES={0x14, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_ID={0x8, 0x1, 0x4aa}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x3}]}, @NETDEV_A_DMABUF_QUEUES={0x1c, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_ID={0x8, 0x1, 0xfe}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x9}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x4}]}, @NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r2}, @NETDEV_A_DMABUF_QUEUES={0x24, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x1}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x9}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x7}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x2}]}, @NETDEV_A_DMABUF_IFINDEX={0x8}, @NETDEV_A_DMABUF_QUEUES={0x2c, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_ID={0x8, 0x1, 0x400}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x5}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0xaa5}, @NETDEV_A_QUEUE_TYPE={0x8}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x1fe2978c}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x100}, 0x20000000)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000440), r1)
sendmsg$auto_NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x38, r3, 0x400, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_USE_MFP={0x8, 0x42, 0x10}, @NL80211_ATTR_BSS_DUMP_INCLUDE_USE_DATA={0x4}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x7fff}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x5}, @NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0xb8}]}, 0x38}, 0x1, 0x0, 0x0, 0x4840}, 0x200400c4)
mkdir$auto(&(0x7f0000000540)='./file0\x00', 0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r4, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000680)={&(0x7f00000005c0)={0x8c, 0x0, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_MODULE_EEPROM_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_MODULE_EEPROM_I2C_ADDRESS={0x5, 0x6, 0x2}, @ETHTOOL_A_MODULE_EEPROM_PAGE={0x5, 0x4, 0x2}, @ETHTOOL_A_MODULE_EEPROM_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_MODULE_EEPROM_LENGTH={0x8, 0x3, 0xfff}]}, 0x8c}, 0x1, 0x0, 0x0, 0x11}, 0x4000890)
madvise$auto(0x100, 0xb8c7, 0x5)
setsockopt$auto_SO_RCVTIMEO_NEW(r0, 0xf, 0x42, &(0x7f0000000700)='/dev/sequencer2\x00', 0xd)
fsconfig$auto_FSCONFIG_CMD_CREATE(r4, 0x6, &(0x7f0000000740)='\x00', &(0x7f0000000780)="f6b25d1864e0065e3ccaf7123b493f340fa25fa2c15c7364c5ac486edae83c28eae904e60130c96d1aa69d388e7811cd4a1f8fcd03fbfb7dbd91e0b522b5c8ea10a909b568513964378c5431315e52c60e2f3eff74357a007a2fec7aa7bcdb2ab9faa26281365bb597b395277b5b3d4088ce11ccb9d90cbdfe3fe821d54ab0619c2b23fc8ad97dedad89e121c8e653f08739c9ee75eb14b4651bfac94bffa1fafa52579405b53bc5d986d5b456b770bc35d6c5d14cf3ab509f046568253a6ea0a62b0e2142333dba7b5c9b9efbadf524aa086838f7a725b045f7337eccc51eeec9a66fdfaeac3b", 0x100)
r5 = eventfd$auto(0xb)
sendmsg$auto_NL80211_CMD_STOP_P2P_DEVICE(r5, &(0x7f0000000ac0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000a80)={&(0x7f00000008c0)={0x1a4, r3, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_SCAN_FREQUENCIES={0x185, 0x2c, 0x0, 0x1, [@nested={0x18, 0xab, 0x0, 0x1, [@typed={0x14, 0x13c, 0x0, 0x0, @ipv6=@mcast2}]}, @typed={0x6, 0x12c, 0x0, 0x0, @str='.\x00'}, @typed={0x4, 0x17}, @nested={0xf1, 0xa, 0x0, 0x1, [@nested={0x4, 0xff}, @typed={0x5, 0x126, 0x0, 0x0, @str='\x00'}, @generic="0e3d7a150c0745846d430160b9c7f4a82358ccb2bfc7aa959f", @nested={0x4, 0x26}, @generic="4f1ea0f5e7c48ceccf7bed7ddd63d3e692a7acdd80b2aec58a1acf77b87b352f443f4d4ce2a6631dd5b427ee5d4d0d9628c24d210d518e601216d0a5ee0e9cfd133c69f9976be3246593ef218cf2700b035bc6baf79fd07d22f77e21f2911949043ee184587ad5e3c1fca2ba2779de16194f306756b20e42a72f022da6bbdef737107a0fd89233e1db66a9a6819888207da638e6ad0e745632dd6846b724d40396e37404edb30b4ada44124c1c52047783102b58800cdd5a7722d29626a23441b27b787c"]}, @generic="923eac1686ef31db076ff41dd67ebb08462a41e64c8abe6d38d6c202da81158cfa0cf6c12afa4c5753aa696e3045e1888f5906f0f809e765c6634a2e0ddca3c257b8160cd7399f79d89b984a46c2478412a01305df2e24d22f7bee4d6c87d148190e60da507fe0a5db"]}, @NL80211_ATTR_COLOR_CHANGE_COLOR={0x5, 0x130, 0x7}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
r6 = openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/comm\x00', 0x80, 0x0)
io_uring_register$auto_IORING_REGISTER_CLOCK(r6, 0x1d, &(0x7f0000000b40)="875bb653b8a5e40c9279bc09217c78ff56c6748c0c3ef939cf8eaab5675874f9602488a31626da217eb741df1ddf99c45ce4ca6469114b8c8ac874f95c2cd50effc43b676fbb4205fd04eef817ac1d800227df02e082df6c3394671d89d57404cd513fff0a25454edaf19ac8397515d3a59278b74acd6a034e42611ebb0fce8a81a0", 0x8)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_SET_CHANNEL(r7, &(0x7f0000000d00)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c40)={0x54, r3, 0x8, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "6a0f70e53ce1eecb28c05f25"}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x1}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x4}, @NL80211_ATTR_ROAM_SUPPORT={0x4}, @NL80211_ATTR_SMPS_MODE={0x5, 0xd5, 0x7}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'sit0\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x40080}, 0x40840)
ioctl$auto_SNDRV_PCM_IOCTL_DRAIN(r1, 0x4144, 0x0)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000d40), r7)
r8 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000dc0), r7)
r9 = getuid()
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r4, &(0x7f0000000f40)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000e00)={0x100, r8, 0x4, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xea, 0x2, 0x0, 0x1, [@typed={0x14, 0xf3, 0x0, 0x0, @ipv6=@empty}, @nested={0x8, 0x5c, 0x0, 0x1, [@nested={0x4, 0x129}]}, @typed={0x8, 0xe9, 0x0, 0x0, @uid=r9}, @generic="9894fb245685af56a495a6830a630dcc944a5c634ce560ba32af635b4afb54003d5616ad45ddc2853f15bbea3ec58fe8db8f7d3c74d216eb0d32665e955f2c4763f8ea34f66aa7acb071ec55b2c8662df57c07c05854e73f9faa15158b6f0370a969dc25c07c127083fb1a71816fa82e6ec94aaeb70818f2571c2293db9b69c79f60c427edba50b8f84baefea38d5fbcb660bff8074b294e3c6ba06f7d61a6e432315520f93b54625646b59ae04b0351d9648346239f1c6199c1a9173b709efcfa3b"]}]}, 0x100}, 0x1, 0x0, 0x0, 0x40010}, 0x34040804)
sendmsg$auto_IPVS_CMD_SET_DEST(r4, &(0x7f0000001300)={&(0x7f0000000f80)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000012c0)={&(0x7f0000000fc0)={0x2e0, 0x0, 0x300, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffffffe}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1000}, @IPVS_CMD_ATTR_DEST={0x230, 0x2, 0x0, 0x1, [@generic="1ec72b8bb2122e02854a3a013818b72ab11405920f19648ea25700d162e3a28d661f08b8be780ba56ebe7763af7312d644467dd0cd0e0e1292cf9d905eaf53e26585189345127a75b0f5bc014bc654cd4218ff70ae1c25197cae428da24c81a6a98d2cece84de003371527b461f601c7377bad1d1e1df0880cfe4da703bec52e39c898cb4271b568170263da1301dd28d8306375523ebc990a5401ac36bc4db73c0f89782b5bc28ddbc2932c631d7a9c90fe67f6d85a92af5100cb", @typed={0x8, 0x59, 0x0, 0x0, @ipv4=@broadcast}, @generic="51d517b487c27666258e5f62e42edebd5c3215b1c861fd56ee5e456a04534cd3ec3c98251eadcf0e99d26e572b6364908308db51acba655dbddd304a390e241b79e8bf67ca6b532da673bd767996cf6e1f19268aa0e1f821287b47178500dab3e973a63a2261435e3e6dceaf3b154182c6bd3fa721a1aacab62dc941c2f62ae88cb2af91397c325d710897ba8a6be0fbc6daaf2f5dbf5473", @nested={0x4, 0x60}, @typed={0x6, 0xe7, 0x0, 0x0, @str=':\x00'}, @generic="90332114d917072e6f9815ed594855e239633273e44abc304cf222de1b7d6b3013b62de7dd479f83ec18003676337b13bbd98ac137bac3d931fd4ff76e4101a8ce1af26f4839f9f5fadd25bc4cd2976877adbf5784e35426f0190b0899", @nested={0x43, 0xaf, 0x0, 0x1, [@generic="0fed99417f4e545e39d592a4191ff855b89429362be4bd28da1d11eec2629845b95bd8281e1ac84a9e9472596ed43e", @nested={0x4, 0x7e}, @typed={0x9, 0xf3, 0x0, 0x0, @str='+${{\x00'}]}, @nested={0x8, 0x109, 0x0, 0x1, [@typed={0x4, 0x139}]}, @nested={0x1c, 0x12, 0x0, 0x1, [@generic="137e0561436251638da853a98a4cb46fbb8f5cfa04a74b80"]}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x10001}, @IPVS_CMD_ATTR_DEST={0x7c, 0x2, 0x0, 0x1, [@typed={0x8, 0x57, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="f2938d37a385adc2f8ba8a29c8462c7945ed1fc3137f4ad0003e222ebc8a11acaa6c168b318ab4cc68997207ff272ec275f1febd88ff7f79119a6b85c07dff217c815bd8c1dafa4c263a7cd67bb26b1f76126dda10e23afc69bf07369a95e5b6fb1f0e85", @nested={0xc, 0x10f, 0x0, 0x1, [@typed={0x8, 0xe, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x14}}]}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}]}, 0x2e0}, 0x1, 0x0, 0x0, 0x4000050}, 0x40c00)
process_madvise$auto_MADV_COLLAPSE(r1, &(0x7f0000001380)={&(0x7f0000001340)="3aac93ad592d1685b3d4338c323908a5423c8479dfd4c0d8aa65ff9de362ca7f5b47068aee6a12707d906e4dd78c37bf09e98bc436ddc1dbe6", 0x4}, 0x6, 0x19, 0x8)
madvise$auto(0x5886, 0x797, 0xff)

5.817325832s ago: executing program 2 (id=2786):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0))
prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb)
write$auto(0xffffffffffffffff, 0x0, 0x7)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB="2f212abd"], 0x14}}, 0x4000000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x3]}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800)
close_range$auto(r2, 0x8, 0x1107)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x800, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x0, 0x864, 0x7ff, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x9, 0xd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r3 = pidfd_open$auto(0x1, 0x0)
setns(r3, 0x60020000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000040), 0xffffffffffffffff)

5.813682793s ago: executing program 1 (id=2787):
close_range$auto(0x2, 0xa, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
clock_gettime$auto(0xfffffffffffffff0, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f0000000140)={0x41c, 0x5, 0x5, 0x4, 0x7fffffff})
mmap$auto(0x0, 0x2020009, 0x8, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto_PR_GET_DUMPABLE(0x3, 0x8a, 0x0, 0xfffffffffffffffd, 0xd)
waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x5, 0x0)
ioctl$auto_BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000000)={0x3ff, 0xe, "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"})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x1e, 0x4, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x2, 0xa7a9, 0x16000)
madvise$auto(0x0, 0xffffffffffff0005, 0x1c)
madvise$auto(0x0, 0x400053, 0x9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_ct_limit(0x0, r3)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[], 0x160}, 0x1, 0x0, 0x0, 0x40}, 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/hugepages-1024kB/stats/split_failed\x00', 0x0, 0x0)
fstatfs$auto(r1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8)
ioctl$auto(r1, 0x4008ae6a, r4)

5.769026864s ago: executing program 4 (id=2788):
socket(0x10, 0x3, 0x6)
socket(0x15, 0x5, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, <r0=>0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, <r1=>0x5f, 0x0, 0x3}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f0000000380)='\xc4--:\xdd:,./-${\x00T\x03\xa7\xb0*\x97b\x0f5S\x80\xff\x01\x00\x00\x00\x00\x00\x00\xe2\xfa\xd19(\xd4\x8c\xe13c\xa5\xd8\xcf\xcb\x11\x8br\n\x1b\xe8\xc3X\xdd\xcdF\xd4\x88q\xe6\x05&\x1d\x88y7}g', 0x20004)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r2, 0x9210642d, 0xc5)
ioctl$auto_EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f0000000140)={<r3=>0xee00, 0x0, 0x2, 0x0, 0x3ff, 0x2})
fsconfig$auto(r2, 0x8, &(0x7f0000000100)='(\x00', &(0x7f0000000280)="c35e6a317db14a0c1b1c591ab09c1b1b26b92aa69b5d823c29a7a9839943c589e192d6ab0db9af9ddfe05ef2fcd94bdd8859f0c70a130a5bd30670bc986fe2353517ec256ea1f11fe492c76d97415ad1e0ed9fc78180593a95f92e38f89f1f9ace32859a42a6a7438a1cb3d5909592a390e7935e969abf2b8997e224fc10a0981526351a2560a5a38edeb476d73e1baf61e8840e1570e381721e17f3c75af730bde5325e8dc2b594fb740894105a71ae279ccbec94adbc8a6b267ced8ab4e6179371ab2629afbd4d2d9cc77fce3e64b98b1345926fb3304714a24ecad975a6436cdba160968b9332e3f41d6318b5e82c25bc1f", r3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0)
r4 = socket(0xa, 0x2, 0x6)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r4, @new_prog_fd=0x4, 0x4, @old_map_fd=r0}, 0xa3)

5.182098288s ago: executing program 4 (id=2789):
r0 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f00000003c0)={0x8, 0x1, 0x9, 0x7, 0x3e, 0xfffffffffffffffa, 0x1ffe1, 0x7, 0x6, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x2, 0x10000, 0x82, 0x7, 0x0, 0x7, 0x0, 0x200, 0x0, 0x40084, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x400000000000000, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5], "c00f88b2f21e4245a45f2ebb67c30851c56ab251be36e09b002a2861fc0d73e54003120bc540e07aac877c65f8342d33dbafb4523f0abc797cd1bd4ce3cb9b97160fbb221da78c19d9c5be3d6d492b1ae4c4981984666859aafd5552"}, 0x1fe, 0x200d)
r1 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r3=>0x0})
sendmsg$auto_HSR_C_GET_NODE_LIST(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x20000080}, 0x20000800)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x8, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF2_AGE={0x8, 0x4, 0xab7}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x7}, @HSR_A_IFINDEX={0x8, 0x2, r3}, @HSR_A_NODE_ADDR={0xa, 0x1, @multicast}, @HSR_A_NODE_ADDR={0xa, 0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @HSR_A_NODE_ADDR={0xa, 0x1, @local}, @HSR_A_IFINDEX={0x8, 0x2, r3}, @HSR_A_IF1_SEQ={0x6, 0x6, 0x5}, @HSR_A_IF1_AGE={0x8, 0x3, 0x7}]}, 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="04000000", @ANYBLOB], 0x1ac}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f00000007c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000780)={&(0x7f0000000640)=ANY=[@ANYBLOB="26010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x10c}, 0x1, 0x0, 0x0, 0x24044810}, 0x8005)
r5 = setfsuid$auto(0xee01)
keyctl$auto(0x1d, 0xffffffffffffffff, r5, 0x0, 0x6)
setpriority$auto(0x46, r5, 0x2)
sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x14, 0x0, 0x70b, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4040041}, 0x4000)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xc7}, 0x3, 0x0, 0x80000000, 0x8}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c001b"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x200480c5)
sendmsg$auto_IEEE802154_LLSEC_DEL_DEV(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000025bd7000ffdbdf252b00000006000a00ff0f000006000d0008000000850003000a0005"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x200000c0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x62, &(0x7f0000000100)={&(0x7f0000000800)="3e92649b8cf781aa356eb225106f6ceade63ba2132e60d741d4a161ab8f460c5ebf6ff1ca655ee40e720c031d54c9a96ae4265636525a7dce5c291601963529ae8d72d768b9904a2a9a81cdd67a620db462a28eb81f3758388f4453e9837e034703889497f7635b48dbc5de0e496874219b831d9df5b94a3f6ae40a6dd", 0x4}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)

4.292054236s ago: executing program 0 (id=2790):
mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mbind$auto(0x0, 0xfa9d, 0x8001, &(0x7f0000000280)=0xc9e, 0x400, 0x1)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
socket(0x1e, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x80000000000007, 0x4000000000000f, 0x8fd6, 0x9, 0x9, 0x15f4da08, 0x3, 0x3, 0x63, 0x80000001, 0x4, 0x1, 0x9, 0x80000000, 0xfffffffffffffffc]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x28082, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20005, 0xdf, 0xeb1, r0, 0x3)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
ioctl$auto_SNDCTL_MIDI_PRETIME(r1, 0xc0046d00, &(0x7f00000001c0)="8535ca649dc9a98043ac4358b028ab92ac98d7920d11b123bed030f1f7e656bbf5bfcda0c9f6a1bf87c00a31b5d751aff463e88eb96078ec95429b73d45fc0d958822a47c8fa261177213428c42ed9632296213fe556abaf4c9c16981aadab04eb27ea4166694b93f5d40f9cb4741d1155d2e4f4e25314af2803064cf396fd7356041a488212c11c388d423bf3066f5b638cfb9691511e75ce7a2876fdfeb2944a9c4652bff83f2ce40c3d01c43ccb21d2")
setsockopt$auto(0x3, 0x0, 0x13, 0x0, 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0xe0742, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r2, 0x0, 0xb4d3)
mmap$auto(0x0, 0xff, 0x7f, 0xeb1, 0x200000401, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000002000)

4.238488193s ago: executing program 2 (id=2791):
socket(0x2, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="11002bbd7000fcdbdf25040000000400100008000c00"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000) (async)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0) (async)
socket(0x2, 0x1, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae41, r3) (async)
ioctl$auto_KVM_CREATE_VM(r2, 0x4048aecb, 0x0) (async)
syz_genetlink_get_family_id$auto_wireguard(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(0xffffffffffffffff, 0x0, 0x4000)
r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/buddyinfo\x00', 0x800, 0x0)
pread64$auto(r4, 0x0, 0x800003, 0x270) (async)
msgget$auto(0x5de, 0x1800000) (async)
vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
fanotify_init$auto(0xe, 0x800004)
fsopen$auto(0x0, 0x1) (async)
kcmp$auto(0x1, 0x1, 0x0, 0x100000004, 0x100000001) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

4.148491725s ago: executing program 4 (id=2792):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0))
prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb)
write$auto(0xffffffffffffffff, 0x0, 0x7)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYRESOCT=r0, @ANYBLOB="2f212abd7800fddb"], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socketpair$auto(0x5, 0x9, 0x401, 0x0)
r4 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x2, 0x1000d, 0xfffffffffffffffe, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x200000009, 0x5, 0x3]}, 0x0)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800)
close_range$auto(r4, 0x8, 0x1107)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x7, 0x7, 0x7, 0x800, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x0, 0x864, 0x7ff, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x400, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000]}, 0x200000000009, 0xd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setns$auto(0x0, 0xb)
r6 = pidfd_open$auto(0x1, 0x0)
setns(r6, 0x60020000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYRES32=r4, @ANYRESDEC=r3, @ANYRES32=r6, @ANYRES64=r5, @ANYRESDEC=r4], 0x68}, 0x1, 0x0, 0x0, 0x4044000}, 0x40054)
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000040), 0xffffffffffffffff)

3.082536021s ago: executing program 1 (id=2793):
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x2b0000000000000, 0xd2b, 0x7fffffff, 0xbe1)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x5, 0x9, 0x4, 0x4bd60634)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x1, 0x6, 0x7, 0xfffffffffffffffc)
r0 = fcntl$auto(0xffffffffffffffff, 0x9, 0x0)
read$auto_force_suspend_fops_hci_vhci(r0, &(0x7f0000000000)=""/222, 0xde)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x9e, 0x6, 0x9, 0xffffffff)
fcntl$auto_F_ADD_SEALS(r0, 0x409, 0x7)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x8c0, 0x30000000, 0x71d9, 0x7)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x3e91, 0x1, 0xfffffffffffffffe, 0xf)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x5, 0x0, 0x100000000, 0xa078)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r0)
sendmsg$auto_NL80211_CMD_GET_MPATH(r0, &(0x7f0000000a40)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000180)={0x864, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_DISABLE_EHT={0x4}, @NL80211_ATTR_BSS_DUMP_INCLUDE_USE_DATA={0x4}, @NL80211_ATTR_IE_PROBE_RESP={0x83b, 0x7f, "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"}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0xff}, @NL80211_ATTR_RADAR_BACKGROUND={0x4}]}, 0x864}, 0x1, 0x0, 0x0, 0x8001}, 0x4000011)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x2, 0x8000, 0x80, 0xb13b)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x5, 0x1, 0x376, 0xe3)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x8, 0x0, 0x5, 0x4)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x392, 0x2, 0x3, 0x9)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x800, 0x8000000000000001, 0x4, 0x400)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000a80)='/sys/devices/platform/vhci_hcd.14/usb38/busnum\x00', 0x480381, 0x0)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x1ff, 0x9, 0x5, 0x9)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x4, 0x3, 0x6, 0x6)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/thread-self/mem\x00', 0x202001, 0x0)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x100, 0x3, 0x101, 0x8)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000b40)={"d118a8c06b2b60f9599515d172f42555a9573c9cfbb240b122538214da3410e9", 0x7, 0x80000001, 0x80c, 0x37c3, 0x6, <r2=>0xffffffffffffffff})
sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000002000)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001fc0)={&(0x7f0000000bc0)={0x13d0, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@TIPC_NLA_BEARER={0x1150, 0x1, 0x0, 0x1, [@typed={0x4, 0x82}, @nested={0x117, 0x23, 0x0, 0x1, [@nested={0x4, 0x16}, @typed={0x8, 0x85, 0x0, 0x0, @u32=0x2}, @generic="4cd9de2aa06e072fc7d8cc0ea4aba95e89860ba476c3035233f8245498545536397ac8dfa2d7499aea6540ae1c1959937221993e081ea0092a294ba4ca2c8b3e69dfac9b9576e98a3c", @generic="6df9081377163e561635285d7e615658df02de8ee7f7b1cf454d3d245b733caa1863eef43eacf3e501d14dcdda5d5630cd75a598210e38d57973b7700a08887e002b4329", @nested={0x4, 0x9}, @typed={0x8, 0xc3, 0x0, 0x0, @ipv4=@broadcast}, @generic="deebd39e1a2671d73acdec83550d9def9b6c835b4032369956e35507c01a7db8cee69d74f846815cbd5ea2f066266204702af33461941b6606d7ec55b722dc94ef9fa5bb59dd5349e84469ceb74a841038cec30e161a344297830f69318acadaee6300c01f52", @typed={0x8, 0xd0, 0x0, 0x0, @pid=r2}]}, @nested={0x1024, 0x138, 0x0, 0x1, [@typed={0x8, 0x133, 0x0, 0x0, @str='\'#-\x00'}, @nested={0x4, 0x9}, @typed={0x8, 0xeb, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x4, 0x79}, @nested={0x4, 0x9a}, @generic="46bc3c682e11d9b20221041e2934cd832138749ff890d997a45bab4dd7027aa0ae137dfa6bc4c28534b2cb33cd184f18bee1b076053d6f4ef83933cf701f482714c8561d2303f75431dccdf5abe3cd5aebb0abd826636c618300be07f5c3eba5681135d2ce752db5f624a825f095be3581942365989a50fdac31baed291987a97010e4d03959b2686f5799911c4d90b9610571a90bee60cba78e1b7a3ca8ae698a3a462b21f6bbb2b03349d0dc8554fe02ec8eecdc07d23783c4d3e5b83cc929bf3605ff59f2ad902bcd2a486a792c24e66183a0883946d3b9ed82b459c8902149221858bb2e279c2878d666ec7a715bb51888fbb6b503d1bdca9a1aa1f2e11819c8442bd095d1b7777690a6f57b46644f20199298fc877e4b23303df4a2a785f42b41fc1df9bb1cc15363c8357e555aa2474f34f10f5d1d53efb38402ff656d0fc2821655f0110d691faa0a0a3e0bcb7c226546b9908652956412674c8e39d51a052e64a70d01e05ac9811ac55366dc0b8e743a42f96961168b3f0f2cc88114eca470b754383f0b56898403d56d825661ba95f509081dc07f8a8cdb289f5df9eaecd04c986eef21eaf979514a170e73e30f965034dca77a1f8f9d28f383b923dcd40437ac47333331dc5ae8b72a30ee7f688e429b54a5ed414e20ac5d45ad3d0df4a5277ccc96871555ff8af3bb23038fa8346a67c580d060eeb0e5f8e72a29f17da0f77998028e2ad9a3330c81172db7d87219c0062d2cbf25a301b37a587dbea50587ace0770a2153e163572c618d631da3022ab20fbbdce9eac60468d6ef8147a52535e43e40c0bcc06018ddf4d23efee8ff831e7349f11c2f247f21c05288b88a9458924389749a823b9b1a115a0d8fa426f480a4a53b0517591d3ff414ef8988dffe057e9e13e1be0c277ce040f59d1b76f5c38638458959f5231e94971eb8d8b9f8005c4e9c4d7f37bff6fa48a995c4f7af04d07221a9016e1535bc768419e264c662929e9ec7b48ebdb2b83bb8ff399cd1fc44e064ebca83023fd4a1ff6339c79b4ebd1545dadf3dfaedfe0f427f9eb015dc983d1530d03c32a225ae3ed5d4566022783004a9bf8d6a4de52d157f697cff4ccf8652febf5c6fd5abd763bcd7cb0c6e9758f9ea6e0d7bdf9e3fdf42468ec0f2b431f8a4073a2be74eaab07b755e30514e3834b350d64075c38b080a425bdb39b6fb0a5ad76153faf60e9a822ab89454d6eac082c2259fc6861073a14b2391df118fada4d776de429f05864f8bc220af9c65f89fcd4dd7729a975c3fbd7aef5b23d28dc766c10c8deaef0277b3706706d1f057ef9463332fea11b984fe914a7e53f1b2afb4ccc5f8cc154dd7fa6c04b0e52b3ca3c3c6c27b12c804f953255e2fc4a829ddd7e1563ec6a5e029b78ed411089b69e8efa0f08495365c955842d0b90f3d9fd2b607dd57e6e9fb13cc361f05fd83378f811b53411508bed5260932089d97bfa2d1b3102371c1021ab715c3337f0163ade77687a0c42a40f1fe7320b15cd9a61a96cc53291cac338469c35b577ac986f72efbf64febdd52e5e5dc24b122af26e59848bd6b9fb408a902bcf3dec7e1d5ae8ee3e36b27ade60d9cebbfc18196106383769ff84344b57929f70409ea33e28f072ea33fd002222951b574306b794fe265d2b6ad621cde0164f35f2d9ce38e4e287e9e015f28eeea77378fda4fc30d87141385f48172c9441957238d08c88b35eb4fe6d753daa4f2feeeeca856213054fde006b68f01518dd8512adccdd88ae8eafe5d367fbc42fb9fac525b494d25c3dd12bf851bb4ee344f51422c07ab8a1f0975fed79f907ebf0a7b3bf0781f2c38fd965010b79921a03aec6bc5a63c5f74308e65c95f29c13cb688120813e4ed2d30e9b55c42c38e79b99ac1dec6a1b4855791b951385f2bd2357f9ff39490fa5734619d1bfe2ab3263b46ff9ce12658e6720395a398b53472250208c3641adf940bfdb88f438b6abed9a859561a7a807f71ff563d372387fc07eaeab83ae2d7eaca3316f2e9807d97888207c368a02c9fb9a64779396b27215d402c1629a63e65b07c78950ffaaa19a30c8c65c40f45cfacb3d90b04f5141468aa36341cb56c63acca9285ddda2930b41f9e890e4ec0fea2d453a14dec410f07c8ad4eae5ba0f0aaf68b47268133f66b07b3234ca13cb9261141aa96d438edc599d0961eba5b3eebcf6ecaeced68782b0e2c201bb4c3f0ffbf1263d9bc9375c5981c306dd01a365686cd2b6f3f5278ca8b991aa37dccdcce216d4b929e59e7bb8954d01b66746a8d34e89f3a3372f80854859d77cc1f7c7288a2b223bcffda2f6e4e9d33a1c82a99832706659acfeb88e93588c5c8c7c60b929e7cba837d6931fa59b530c094174bc42873e96ba8f1bf62416482c0da05e5c08202d03c656274ac3329728f85c5e77711e62e411429dd501ef3f7fe55cc4993e8a042f607460462ce0dfcd573c9454bac1d50b96e3d0c6cb32167ff447491500a6287ff047ae6294f0a025d3126d05881b6bd2ceda50267f649323da9c96e49f8eb70156cab2dfbe103e7592850cdac05c21c60195144e826d85eaaf0478ed2a7c1a491df676718b782414b09c0d10676a1652b4a6cc7f074ea09f7b90434b4bd4de7b13af2251ce7e367c940aaee8ea789ff81d2a838feb65b7ca6857ddf8b0c8830b9f37d734344fdbda4041c13c3985a4c455c39c79b33f5d99216f8b9fe4c863027d685749af1496cb2f5f8afc1eee04048fd3604f3d82057e445eba8041661d2153ddd715e56d6f47c180e6782db802c8363a1a974491550cb75f8c97d1ba99b63b4392be613830ed69360ca01222b2badb4e1ee5db8e8877c54e4c89c89e341d8b57527f624ed043fe90ea8a842f4e305978dfcededb8aa2ffcebcc17d2bb21e44d4ae62e7d1ff070a35945e7de07e51a2e0fb7b961a6132d29d504a7b809b7317581fc7b1d438dcb0d9c112057849ccec1948606a1c5d1024aab9525a7c38da63a5234743e2345a9e863fbc0fce4cf1ba7a6f9d8403384a48367bc2f383d5e386f97410894d516d8e5714d4e56f97598321f8ba0645fb2819404dc25267117dfbb21d1e3cca0c5f3c86c7f872abbc6839fa1110db495c6398fc4191d0c817e9930b9c058c4f486cb4fd32091a45195450e4531f6fccda214f88a960935ff3c2b5e930ff8117cb619f60e7bf08480446a4e3c23616ed94bd59c9ff3687edcafa917e6db4812e9a81b949fa8f10f724ee9c975d8685ba6aede44cece2aaa123048680c3a30175f4730f5e463ddfe00fd350e2a9b0522741e453deced2e8721fdec61327185c65d7c86f66f20b0c408c3266e81edaf9d8543d1409fec1b83df84a048a7bed610a42303281a0417db65ef7b4c3db92abe7060ef7356acf3ab6cf93bc7d4a1dbdb288cadf55013c1f2559d778ab48068e1f37f061f7343f40ffb8a55ff9a384223a6abbc42660a52c68b9d614b821146cdd5987ef8fd213cd4126d0076c5bdf9f11c5f06e47e52c0a60c02514268b776b4419a0c492f5f2d19d40a89c2818976f4ba71a7310b4e2f6481449965252f42edeb0fcd12af0cc877b5a71bf0c2d614aadb8c41cd4c60e149be25ace01cd9b3696acdee073da3be52e1888bc63bd32f3e5023c6ecac51a9abd69694e911818345682bbc28be627e879a63b16f3910af88314ab2a607ee1059b3cfb2ce50902a6d4ddad06abf0ba99406e1799c9677129ca1c42cdfe8472e0f66e51b2d4595ab8ebbd41feff432d6d2fd4a3cc6326c364aaee10449b93e8bfa9086274b7e8e0282ef55b582faf7cccbaa8612f8862f9dac6ebe8da331949b78abc94cea86a0da08f4a8f568d78bb2165432d8b380f65069137f80e2f3bd1d21a32d15a7709dfe2c75c1e26da0ae8afe044472e883714c4ccb197f7e967db5268e6d3da84e22eed6a63b06ab0d3075a17b61ffbb3708fbe3b2dfd83a913737833d3847bc02d08baa70141b06e7696c63c8585565a0749da8ef351cc128ce480fe82796d1f831d0fde1641b5183b586a9e802f427f90993fffb8121cba4afe6ffcc05b2ed929a7f88d406e75199706ced095ce698a998a31416696e7013b01a1ce2efaaee74ffd3b94b7f09fbae13f24140af4d286775ac0bd6ebca0452d130d7cf33586762378fab69f41ef037e7c6acf87de85abd04545ffe754b24a3aabcd48fd0f593e635cd23ef40fe2d8f4d177bfc4c12f3a85db07f2bf8d0106cee671806d07e156dabb5c1ca03f3d78fe668891adff5ea484b7926b923b6328162a1e09b7cce2669ec5340cbd139f3c18b8db1b1e36dd7e190459482637e6db660f7013eddac82cd7dd6d17c31d7d55bce0b49f13dae0c7afbc1a70977f99a59a8107866199abe1d1729de42fc7e4b2055e71d1a71e9185b6f268b6f889526a0b21a08ee816819563bf67e0ec893d1d86c269ba7e7f575c3a7455a1416d433b17bb92a12b63c02715d010de10471ab14d103fca56eb5e6c2a43e23dc126cb54d58bec9d7d4985ea9eabb143693148966d059ca3b80a2927711c0c0f61b9b25de4741797bab4b38ebe872a239cfdf0a304d3fc2b6096d8b0bf8d26ee71b20e775be5d7d60187a588853ec6c534be7c54243c065624397b082a3f564a2cf4cac161ae1f910422a73784bce687b6fa6b02a4d2e4b66ae7554560798c1fe59746b875d03397bfdcdf378bb983a3c78cb55f869774c3316902d791de7ea51fd13ca9378efaf7706e41eaa79283768ebe59948e4a615bdd8021e306a63f4f8c27a15c9d67c768a5719383b4945cdc77634a35715539669ed3c9f22521fa95de60325080ff063d4eea4f8464f51b66f301cbc9d1edf8282681cdd770f05f143fec69a795ce1eb233c3fae1893a11f87f863ef6bd301a6cbcbfc92683ceab695575eb8384dd025cfee6e352df79a94c7dd6c35954a354ad66143f5d08efc880ca83ff2bb4a6a21b261f8e18adeb21deef017cefa67ff9d2cad41e2ce355fc2571d4f3996721a9098baaaf9e7114f5e58c0c08393dcc6da76f89ce878ccaacddec7944a5be722bd1c5c425b8a232a8701fd8604b89ed800858df07651293ac4320d88374460817d1cb12cfdd82edeb2ed44d4a2b1fc02098f6cf12d6a23a0e25b1f1e66fceac442918bfe6b0a83aa2fc531b53ca156872d5af72ffbc880dec83045e3eb044e1691731570091df9249bda34bc5ef31458e1a182fb1ff408f65b2d68cb7564ad96459b1d2739f5a0ee48eec24ae7f06179fb5c0d559b1d3e1e10a81d1e04a185dbef2734e553ce5fbbf97f292837245ee8770dc56332dc7251afab9b101eb04f7548001364b552d29cde8d7e5353c4be460f906747bb86c9028f305aa56427b830d672c50ceacc894995566ca6b60af03c56103b4c220aa7d24579f4e69fcbd4564285c23087d1ea6fe49cbed2c4979aaad8c789e74e545c9211a321e5fbc2161c3919ffe679ca3d958d0f19d2ca7a05c5e3c1b361aea1cd9280813af1ebbc92f5124cb9e06978388c1c5201d049b42a352bf106e05473a245a9883a9d3c9aa48f032a28eba7b661bb1b40fb9adc547b9a49a80443e92604e37698edff4fd7e3c4cfe886a1a6991c3f5f47120214590bc2541d9e3b57a45894e60a68d813bd6cd70353764590e5630be587dcc07619f51b44dd64d308a5ed0918e0824e314614c1bc66b2bdaa812e28c1dfc758ad3c8fd2f8b01cf0dbc558c4dfdd5318cdafa6a9694cd0165f4e27e88987944a1038285ffca26e577527b740dfedb524de03da160c447f70", @nested={0x4, 0x19}]}, @nested={0xc, 0xef, 0x0, 0x1, [@nested={0x4, 0x9c}, @nested={0x4, 0x14c}]}]}, @TIPC_NLA_BEARER={0x26a, 0x1, 0x0, 0x1, [@typed={0x4, 0x7e}, @generic="be84c7836c6c0be9a2583623066ae3e64b2b31d6e8528734626a789d2a46a70f3f56db73a514901b9e3cd0f026ed28c833df3cd6f9b7fad4021b1705b6d0bb6d90", @generic="ec533bd9b30bc939ff9a7f6579fefe1e4e53e01c0946db4f885a18bfa57969459931fb83710e11c32b3c2a6ac7c5c42f878e5a4d6df001ca89e34d9ce142469ef6633f62d2b2b2788a552aab3dbc5bd3d46d15d856e57cb3a0b2a1273b082e29a20577a16b339d6d3890a7a598ec961318863088c126d5e2b1bf0916ec493dec5223d1a8b14dec6b53e7353304d9cc5f49203f087f0ad4b2acfffae02f754c55114cc4807bf13b2f95aadba71f17989499260ef345ae3df8be575952145e5979eba699eb8fb7f19336a6df27e089591dc5f22f3c717342a508", @typed={0xe0, 0x131, 0x0, 0x0, @binary="6f82b6c70aafce688c0b016cf7acbf147794687a657e3507fb93ade402b9bb6b5c83a4e8aa85380bac594d4241ec390d1b432c445655519c4faf2d283349405ac0717ce920f81195b6fc3f1ef948c359e62a2770ccde6c37c5461c405f792f939d3694f5e44122d14cecb8250a6edfe9e0086bcff2d8d1682cbf97c81d27f20b5130fb3e109aab1b7a3bf874062df57bbc325097a953bf6d671cb1e1b158f5ea04906713defb91425747325effa8b9d68f52327c152d33af8de140699e57fa3d30e444639892895312aedf1bf6bf5e1cdbe0c91924b81d3f26b85740"}, @generic="6c667dd7ac0c7e31183870862f250a65a95c2d2c588c09a3ca8a784a6abce73e8741b421957ed944bae58338e86f47e1afbd428ab189596c6ec420409219f62b43917b532a945a64cf437960582717a544951595c779c93020d0afaef722af73794f4ac13938e87b"]}]}, 0x13d0}, 0x1, 0x0, 0x0, 0x4040000}, 0x4)
mmap$auto(0x9, 0xe, 0x200, 0x10, r0, 0x400)
keyctl$auto_KEYCTL_DH_COMPUTE(0x17, 0x7, 0x0, 0x4, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000002080), r0)
sendmsg$auto_IEEE802154_LLSEC_ADD_KEY(r3, &(0x7f0000002140)={&(0x7f0000002040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000002100)={&(0x7f00000020c0)={0x28, r4, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_BYTES={0x14, 0x30, "941660f8044a34b08e1bdd08bdfc3600"}]}, 0x28}, 0x1, 0x0, 0x0, 0x4890}, 0x20000000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000002180)='/dev/video29\x00', 0x2001, 0x0)

3.007855336s ago: executing program 1 (id=2794):
r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0)
ioctl$auto_RTC_UIE_ON(r0, 0x7003, 0x4)
ioctl$auto_RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000180)={0x9, 0x7, 0x8, 0x4, 0x9, 0xff, 0x1ff, 0x2, 0x2})
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto_fake_panic_fops_(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x101000, 0x0)
select$auto(0x804, 0x0, &(0x7f0000000100)={[0x9, 0x0, 0x0, 0x80000300, 0x1, 0x0, 0x2, 0x3, 0x81, 0x10000005e58296b, 0x1e, 0x9, 0x7ff, 0x200, 0x20000000008, 0x4000000000006]}, 0x0, 0x0)
socket(0xa, 0x5, 0x0)
r1 = socket(0xa, 0x801, 0x84)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001100)='/proc/bus/pci/00/03.0\x00', 0xa0581, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000001140)="8cbdca", 0x3)
writev$auto(r2, &(0x7f0000001d40)={0x0, 0x2}, 0x6)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
msgctl$auto_IPC_INFO(0x100, 0x3, &(0x7f00000012c0)={{0x632, 0xffffffffffffffff, 0xee00, 0x1, 0x5, 0x1, 0x80}, 0x0, 0x0, 0x1b, 0x7, 0x5, 0x7, 0x1, 0xdd34, 0x7, 0x8, @raw=0xffff})
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r4 = socket(0xa, 0x1, 0x84)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
ppoll$auto(&(0x7f00000002c0)={r4, 0x1, 0xd75}, 0x2, 0x0, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
get_robust_list$auto(0x0, 0x0, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
setsockopt$auto(r1, 0x1, 0x3f, 0x0, 0xb)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x1102, 0x0)
read$auto(0x3, 0x0, 0xfdef)

2.812558812s ago: executing program 2 (id=2795):
mmap$auto(0x0, 0x400008, 0xffffffffffffffff, 0x9b72, 0x2, 0x8000)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0x12, 0x0, 0x4)
r1 = socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x4, 0x6, 0x8, 0x17, 0xffffffffffffffff, 0x7fffffff)
mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4008081}, 0x10004010)
socket(0x2, 0x80802, 0x0)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f00000000c0)="c0731d4fe87938643e816b3d3088e422246810c6b4ef329f48fb061aa8a9be57b518e7dcf2d25bced8cfbc2b", 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x80000d}, 0x6, 0x20000000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_fastopen_blackhole_timeout_sec\x00', 0x0, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1)
read$auto(0x3, 0x0, 0x1f40)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
read$auto_cgwb_debug_stats_fops_(0xffffffffffffffff, &(0x7f0000000180)=""/165, 0xa5)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0xa901, 0x0)
clone$auto(0xffffffff00000000, 0x12, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$auto_USBDEVFS_CLAIM_PORT(r3, 0x80045518, 0x0)
mlock$auto(0xfbe8, 0x4)
getsockopt$auto(r1, 0x0, 0x4, 0x0, &(0x7f0000000140)=0x49)
pwrite64$auto(0xc8, &(0x7f0000000340)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x00\x00\x00\x00\x00\x00\x00\x02\xba\xae\xb8-\x14\xe4\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf6\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9\xc5\x93\x1dD\x811\xb9_\xdd*j\xfd\xeb\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;\x9e\x83\x120\x81\x11\x9a?g`sFh\x00\x00\xda,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xdex\xd8\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/228, 0xfdef, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)

2.808942131s ago: executing program 4 (id=2796):
socket(0x10, 0x3, 0x6)
socket(0x15, 0x5, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, <r0=>0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f00000000c0)='\xc4--:\xdd:,./-${\x00', 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd=r0}, 0xa3) (fail_nth: 3)

2.561419962s ago: executing program 4 (id=2797):
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r0 = socket(0x10, 0x2, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x3, 0x21)
mmap$auto(0xfffffffffffffffe, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x18, 0x4, 0x1)
setsockopt$auto(0x7, 0x111, 0x100006, 0x0, 0x8)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mlockall$auto(0x7)
writev$auto(r1, &(0x7f0000000080)={0x0, 0x8000000000000001}, 0x4010000000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2a, 0x2, 0x0)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0x109000, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/hwdep\x00', 0x22040, 0x0)
lseek$auto(0x3, 0x5, 0x1)
r3 = openat$auto_tracing_saved_cmdlines_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/saved_cmdlines_size\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x7)
writev$auto(r3, &(0x7f00000003c0)={0x0, 0x7111}, 0x7)
epoll_create$auto(0x3f)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(0xffffffffffffffff, 0x0, 0xfffffdef)
unshare$auto(0x100000000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x8000000000000000, 0x7, 0x9b72, r2, 0x800000001)
bind$auto(r0, &(0x7f0000000040)=@l2tp={0x2, 0x0, @multicast1, 0x4}, 0xfffffdc2)

2.553653558s ago: executing program 0 (id=2798):
close_range$auto(0x2, 0xa, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
clock_gettime$auto(0xfffffffffffffff0, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f0000000140)={0x41c, 0x5, 0x5, 0x4, 0x7fffffff})
mmap$auto(0x0, 0x2020009, 0x8, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto_PR_GET_DUMPABLE(0x3, 0x8a, 0x0, 0xfffffffffffffffd, 0xd)
waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x5, 0x0)
ioctl$auto_BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000000)={0x3ff, 0xe, "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"})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x1e, 0x4, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x2, 0xa7a9, 0x16000)
madvise$auto(0x0, 0xffffffffffff0005, 0x1c)
madvise$auto(0x0, 0x400053, 0x9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_ct_limit(0x0, r3)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[], 0x160}, 0x1, 0x0, 0x0, 0x40}, 0x4)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, 0x0, 0x0)
fstatfs$auto(r1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8)
ioctl$auto(r1, 0x4008ae6a, r5)

2.027840908s ago: executing program 4 (id=2799):
close_range$auto(0x2, 0xa, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
clock_gettime$auto(0xfffffffffffffff0, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f0000000140)={0x41c, 0x5, 0x5, 0x4, 0x7fffffff})
mmap$auto(0x0, 0x2020009, 0x8, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto_PR_GET_DUMPABLE(0x3, 0x8a, 0x0, 0xfffffffffffffffd, 0xd)
waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x5, 0x0)
ioctl$auto_BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000000)={0x3ff, 0xe, "96476c67f80b55d7e1553847de33bcb964e409f6c9900c6be3fa5b436e36b20800007cf21168666b4a0dbde2cfb108720b387239e28bcbbd28c47431fd1304214f79661895c07533ec414f6c24560c240085179f84d8ff95e0f92bea65d20837125ff57646029ec547ea53a44831ead0b2ab4084bf90568c348d67d2d35938bc4e6d05645a7a66c6264b9ce2be90334dd5f23ba9aefddd20bda9a1245d1383f9e327541d3e87f8ca24f99cdff8d55e90549b48ff7366693a17c12ad573d457368046e9eba3e316a3f02c40c74e0eee3a80230ca17df8e4db7e5102bc32d03ed7e6d136d7a851e3a2bc76826264fcc2bdc87581eed2c85fcfe68ac80bbf8465163d55ea78ae5cc4dc3774dd47be21c8d4e8d5933b2e0717e02c6dbeb44ef0959011a0a10dcb91a31f4ec810b6b202faf369434671215b12c10ae1ad21e5432cbb5862967b314134c3a5ceb702eb48becfe65c28cdef36a1bf91ceccf14e8c89dcd66d15d6955bb2906c7dffeb1663c4370b771cf9fca71fb60817f5d880246aff320dba73a5ae3120ab77a2e460a9f256b2c12bd0eb05a88ffb3336f5dc1206a10d2570cb1522f511254de179659a766561d3883667d64fd027245f064b5faa45fe968ea018263a5d113bb2a912f17347d5e6c517f4f57edc4174f6338749ec3ab7b709498f446186bce2f07dbe35f7229e306b6dbf457aecfd7349419d2c84b01c021b6584a4795858e69aedce26a9563226a3dd9d6dcb1ac8753aff167e991f21b07f196230fc27bd970389976592f44f84d7da4f17827dd1a835fe1ea3d92ea1da119386d2a9ca46ba3b3f00fa3eb766aab523955547936703695f85b1a0551653c421d9440d8214c916aa240a46eec1df64df67a2c7968ac8c06d2223bff85b88692e6163126ac3c6fac48a89977637a5479cff706b5ae51fa99ff865ca41d019d9c091603994d14aa05b4ce936072724c5f5a314b8d50b5138464c6dd189c5564acf38069c97bb7bc9a73735305cf13e1b4e306eb36fea780e85024baec1b4db4a1f915abba427dd56b5c3ba97c22df260b7466d651f2f5e074e91422eda4af24da9f4b80f9fe59a524217fbbdd84c64018ecbeede911983bb0ec1255c2a9c1c1246c0b411bb47083d890e04b81a422e52fc12470c7a79bf53355ad63d78c5865c7f2b33b93ff3540b9afbe160a1a322c9e45be6a18f550ec5fbc366107c0d5022637f59327f07444b27814d85892aa98ef329f0253aefd37e649aba9b588f62ed2f700bc1155f9b7e73701d16283ca2f98b8a74241d4c71e7df08b644f0d8cd2079de333310299d2294e8b634b19ef9e6c8f63220ca639d3ceee8d5c50c753dfb5b5156a525530a3c4ea910a5dd01e250467758bca4afb0534acca234636aabb1c0fc628e5ee68d5d6f2ff5a16182dfac35253aeab7d75ed233c7ca5ca4e89dbd76da3c7e8a6d10d76ce807a790aed229b480448837c444a09da2c140bb6fda0419b5054befcdcb2dce00356d32106133063c3e9052303d3cc4d2fa3f6fd24c78e24174cdc95d6a3c126b51f8dba831f31bc4a61fb7b23c95a8c67f917da3bf884e88d53efa76effc94216cbc43a2b02ec0d14a74fbf5424461a51a6da739aac3f1232518e2d1f35d15ca2caeeadc663d3d46f28893be94999d16494bb7034d35805d333f6bd787b0e8d9476dab9b8ef0b6cf26c69b1492fca746880c4b04631ac00d04b43593794861f92ec386ecd91c62fd18ed2fed14775f72690800656a11b2aa8ac3806aa975ddd464186c08b248b13067bc747e8f2d55d4fa36717a5ca03d955ecfbc0277b91e1cfdd183c9ae93618b931289dba55723d9ba916de7f8a262ba1cdb44b28decd8d3d21e31f98b28358868743668db513019aef6210e5a81c561f8e3b83086f3007e6abd6c623303bf4fa793fc2764b8cd54992c42cef5dbe8d3d4460552047eaca38358dde2a54e533c6766577e32febdba7e96595fb4f7ef75e306bb0332cb52665e35b0d58ca7d63830a091a22529b7eb07a5747139e6697000317be7c92f957e77eaefdacd329166fec3947a9d83744eeac37afcbdf2701002a5cde060ba7df5cb1236f5935643b0323fa40811dee21c948752e9d9088c6ebf2d4cca6c87e77c889245a25ff59b27cea70ff151887d941955f139292c26e46478e611a024150c09abd56b6024976fb528335a3e65a1f4e10a46c1c509e4b730b8659418f400347f979250383f1aba77c18af506d8b87a073689ddab4b249817c75bc3c64a8025ba0f7901ba90a6ff4bafba1603b9bacada0fa50a20a9defbce32010dffd1a1d5fc2ada15f7aa5b2c5c0b0a49f2a2216ee43fc7b7e6bf045988573323ab00fef227b1a7bb93bb342e053636f940f69e4da6ce07fc4e6fe94a06f9fdfbde389408e3e24ea66455ab0f90b8e4b87d71f5140ff48daf631bba66a4f939847632a4e00b2d662b2a7ec4bb85fd9a0f24c2609862734ce1b9857969c91511986527a80ecb7f63b927164e7ff653ebe164099e30c8409693d7df53cf66397f97a23a62c401c4f07f2ae0fc4caaff8d780e476a9e1855b0388521319c24eabcaca2a05ed0b868f61fde2807fca560a57a0b78666a3d7ffdfd61eae9a47ef72b346ae4ac1d93743f3c255c7c8b558b45ebf11b1f7a5b2c89d5a1f82604cf08b231d022d5b79c5ed9549d8134710d580da76423ab5b676a11d3b859657708a1be9836ca75f38c163952df1c476ccebebf0f74db19ade949bf013c581c2c11be66bded4174080a12303a000dbe90dd022162b4ac8d2e3526b144814c297f55950ae9372915796dedd633fdb65821cdfc776c8233ec2377648d1b221af3a7c24101ccda7629bfce1249d8898fbdaa095bb736c11d12afb43ff09d9f90874fb0723ab510fa88151bb81b63c568455292fab31c1a16884c887cc0ae719bf1fef278dfed338c3c36b04f4a438ec9d164dbc9f3ce8b84bcf3570b52d0276b96c62af12b1202f3f4effc82225cf3fd11b84b8de97dbce878c57284ae68694c41e0043b9de510072828263097eafa3868dc2d0262f0977216b7c2e2209e5d8239642a73ec269b65572af3f9ba4913d214dc399296c470ee457d2916f3e49e04b55e342982855af500d4bd634a7a92e25768dccbd56a77a70b4f17b01d50e4de088dc2df0f203455828a580f3ba8eedd79868b60dffc8b5897f9b835a4bdf2010fe1780120226c812613d51f2020d65649f9def93b41c279c3cf8dd60e974772d9c3a30757966f5626f69202e654f24a9f1707952ab726050f980aa8677e7f80cfea4bcc7e294ebff7947aeea7eb2c355676fb8c8704b093259faafc3004c808329b7aec6159f534938772bbc479e776ea8d1916d3901ba023bd2f9216f93b46cc78f1cb258cb71eac7a8a6203d8496599ebe091b3ac2c7ba5407dd6691d0b2cd48cc7e9ae0591f642cf20b902fec7647edec5d0edf89e02cf95aaf1f71b34fc7692d464c600a91d0cd8f1695219411a900aea791573a17a705c014738eb72b8e727718efda68c4d5fa7aef004bbd2185016e5d0867344dfb1e9f46ae3f3025455812749f815c7014c240ff18784da396edd9f381195fd862f105d95205c78f3835ab845b628823781cee1bd110fa40603b7c6c56a0b43fc845b1d434667a11bcaf5ad117e61e13b7f7c85e1dc6435d7a29ce7c238015d3be36ff90809c90620dd19b7fd59627ad952f4b1f3d5b99386b23cf63223237608e447c7625864096fc69bff54cbe38aa4b63e754bf6dc6281985e72a5e740a2406b34f64b1075743a638b64c07fe73869b15690c81af7e6dd91b056bab83a894dea9ada72892a695d2ba9d0f0e2f0eb93f1cc17cc4dea1846b4c220bee283e821e27e5c9fd1bb6583fb9445875e257ac9a296da941529d47f9518a305218ace8f613d0b7d7b89d2f622d99c09a5e3afb3f6c617318e14bd0e68040c7e763b02d626888f97a20722be6b8afe5aec73a70fb33fd05c5f268daf2ecf8e87997eff0ef5eead94c696d6e69e60c586dd6b58ec35451ba155568d0e09b9793537b1299fce6544b81b9e07e5a483844fb88e1928df204f1abb12f23f1cdc3ea8dfcac08b1d2c6c4a56434dc8927a9dfe7649adb74bafa987cd30290cf2e9993cc1e7ddc901000000e42bf1cf36ff9ad4e6229e373daacab05f18ecc4307a5e085c53c0cce3ff19790b9cb814ad6e1dd55c569fec71a053eb45bfa380fe900f50215f2ec58931e5bea68d454a9aa1959b6de060781b21fe6fdb26f9348ba0200a206df6b63d60f8675bffd8d9108b5b7225da8ccd56c6bbea434b77ca9525a831b496dacbe8f33ca906f3dbbeb78510e470df8e1c1840189a821b1c965fe6fb5a5c33ac93826b26f8cdee24343b7b2e36358a82bae00e3fc479971d4a2a7d12af7b474e4cef899a9cc89e4ea2d50a069e442839ae7907d4225854af9ce32bb394ac4daf75a1d3a3aad200c81ac2535d0c8a9ddbcf30243024111bae580c8ffef81bba8f155966799f34dfae8bee2d6815c1a2c342fe4dffcf53a663f32d72e209ceee2c683d5d87e3685c724e3e09cd52ba4f297a5f69b1556f3dc0db8ab552649cbfae03f5e066efea998b870aa2474dc66d550a280bc943314c7585edda0dca92b8f1d5ec56848ad39ba6e06df452779ae987ed9d1bf1a9bd16b712635e75f54c9864b636b4f164ba332e67b62816744980e4c4e42ea8ffcac4d55ea7d8688e4010b14a819b3caddf097a4211298991e8f565dfb75d003b21a16eb94cde804fc00419e4f7eb8cba4e4c8d4023c787b7922afb441206ba28b186adb7a7e1897cd947fe5f36099f762a7b121b27e186a007535d62b4722f03d060b0f7e950daf78a8aabd1beddb8f6bbe7014cb9d115dc6374a7c55a7408cef5c1edb8456762a0c7eb4191a743061b6d5a8b0877b1c19b97e7170c888d7743f55a9c8e2b7db2ad1c7adb46a7ccb40799bd06525528b4c9ae4a77f9b29e68341f14a67d71a4df0835a437ca675a76ae6e221bac8587aff3ed30ef2e80b706e4a2bf5fd65bcbfdaeca5bb56aedb795fc45762a64818033d24ceb84d5578a9f36245eb32cf8c57938d477466ef5c9ed4e8d0f0e70003d74d56fa088cc6b7f0a17d3d93e05e23134a9ffdeaca33fb0c55c3bf97a7e45a850a62a4dd170abb2d6cf06c5162365ccf83b4e6cf5e3374fb0c01b8c45653db7c5fa5b686317a04fa3219147117201223ce2d3b3e6dfcedb6afcf2f594ec72188710810d448cdffda2328dd8312bcacc819123b2c1964ef411d16d4364c3c34b06a7c80099bb997c665f6f1df76e332a466ee8475db9df2c374944be745ee288893d4af84a0b6bd7f1c522471612e15420d0843e5fd1602b3e9c13cea094aadabaa1abf9e63617662aca55d215481e68907de019982c8c079a6f41150e9ee0281eb7fef4d615d49f0d043a0551b51ad3e4cf92faef79b6be798ad0afe5becf40133fa629816e79bf0d1e9a0295fb4a0e07068e60767422f007ddb379baabfa34a9ce9386cc4abe30598372f20cdddcbb9e9d3e8e0407259d179002342dcd4b7b4141bb3230d912df4f7a85f1eaec3da546060a0cb2e5b2dcfc832b0c89229c8ab424d839939e3dcf178c9e60aee0caf36847149bf23b786bb8f07e1b1855f2518313bb1ef6d39c091dc2571afa0ba44cc7e0efc760d0c539f291da82381e50b9ca4dc246aa112b0e2f08aaf4b65eaebd8014c7f6c909e923ceacad2494d0e4f73084442b03b900"})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x1e, 0x4, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x2, 0xa7a9, 0x16000)
madvise$auto(0x0, 0xffffffffffff0005, 0x1c)
madvise$auto(0x0, 0x400053, 0x9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_ct_limit(0x0, r3)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x160}, 0x1, 0x0, 0x0, 0x40}, 0x4)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/hugepages-1024kB/stats/split_failed\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, 0x0, 0x0)
fstatfs$auto(r1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8)
ioctl$auto(r1, 0x4008ae6a, r5)

1.846551823s ago: executing program 1 (id=2800):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0))
prctl$auto_PR_GET_SPECULATION_CTRL(0x34, 0x10, 0xffffffffffffffff, 0x8000, 0x8acb)
write$auto(0xffffffffffffffff, 0x0, 0x7)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB="2f212abd7800"], 0x14}}, 0x4000000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x80000000, 0x5f, 0x80000001, 0x7, 0x6d3f, 0x7, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x3]}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800)
close_range$auto(r2, 0x8, 0x1107)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x7, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x800, 0x89, 0x26, 0x4, 0x200000000001, 0x384, 0xfffffffffffffffa, 0x8, 0x0, 0x30, 0x0, 0x864, 0x7ff, 0x22000, 0x9, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x9, 0xd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r3 = pidfd_open$auto(0x1, 0x0)
setns(r3, 0x60020000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000040), 0xffffffffffffffff)

916.744872ms ago: executing program 0 (id=2801):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/scsi/sg/def_reserved_size\x00', 0x0, 0x0)
lseek$auto(0x3, 0x8, 0x1)
memfd_create$auto(&(0x7f00000008c0)='/sys/kernel/debug/x86/boot_params/data\x00', 0x0)
pidfd_send_signal$auto(0x2, 0x7, 0x0, 0x1)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x101300, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
r0 = socket(0xa, 0x2, 0x3a)
bind$auto(r0, &(0x7f0000000040)=@generic={0xa, "2c551d000000fe8000"}, 0x66)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r1 = getpid()
r2 = gettid()
rt_tgsigqueueinfo$auto(r1, r2, 0x21, &(0x7f0000000400)={@siginfo_0_0={0xc4, 0xc, 0x80, @_sigsys={0x0, 0xffff, 0x7}}})
move_pages$auto(r1, 0x1, &(0x7f0000000080)=&(0x7f0000000180)="50e6798f89d3097c187e54ba4cfab41ec63c391f8d12263c802807f520ca6b7e60d5d20fdc825242e165ea4ab844db382b3cf31ef539ce26eb806908028d6459d1501c288851df5a6f7e98076c09172718caf14cd85d1abfef476c333ba7fd3cd1805a6375136f1716c1702792a25c7903ed2dcb37638711a1d1f1a9847d", &(0x7f0000000100)=0x81, &(0x7f0000000200)=0x7fff, 0x3)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/tty7\x00', 0x200300, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x8080, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r4)
ioctl$auto_KVM_CREATE_VM(r3, 0xc040aed5, 0x0)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x2020009, 0x3, 0x11, r5, 0x9)
io_uring_setup$auto(0x9, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

809.330063ms ago: executing program 2 (id=2802):
close_range$auto(0x2, 0xa, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
clock_gettime$auto(0xfffffffffffffff0, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f0000000140)={0x41c, 0x5, 0x5, 0x4, 0x7fffffff})
mmap$auto(0x0, 0x2020009, 0x8, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto_PR_GET_DUMPABLE(0x3, 0x8a, 0x0, 0xfffffffffffffffd, 0xd)
waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x5, 0x0)
ioctl$auto_BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000000)={0x3ff, 0xe, "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"})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x1e, 0x4, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x2, 0xa7a9, 0x16000)
madvise$auto(0x0, 0xffffffffffff0005, 0x1c)
madvise$auto(0x0, 0x400053, 0x9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_ct_limit(0x0, r3)
sendmsg$auto_OVS_CT_LIMIT_CMD_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[], 0x160}, 0x1, 0x0, 0x0, 0x40}, 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/hugepages-1024kB/stats/split_failed\x00', 0x0, 0x0)
fstatfs$auto(r1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x8)
ioctl$auto(r1, 0x4008ae6a, r4)

0s ago: executing program 1 (id=2803):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x2000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
r0 = socket(0x1d, 0x2, 0x7)
r1 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r3=>0x0})
connect$auto(0x3, &(0x7f00000000c0)=@can={0x1d, r3}, 0x18)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x48041, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x70000ee) (fail_nth: 27)

kernel console output (not intermixed with test programs):









	
				
	
	



	


	

	
		

	


	
	

		
	
		
	
	

	



			








	

	
	




	














	
	










	
	






	




	





		









	
		

	


		

		
	
		
	
	

	



			








	


	


	

	



	

	

	

	
	
	

	






	







	






		










syzkaller
syzkaller login: [  921.279810][T16904] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2337'.
[  921.404053][T16906] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2337'.
[  921.971590][T16911] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2338'.
[  923.170845][T16931] FAULT_INJECTION: forcing a failure.
[  923.170845][T16931] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  923.200822][T16931] CPU: 1 UID: 0 PID: 16931 Comm: syz.1.2343 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[  923.200870][T16931] Tainted: [U]=USER
[  923.200879][T16931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  923.200895][T16931] Call Trace:
[  923.200904][T16931]  <TASK>
[  923.200914][T16931]  dump_stack_lvl+0x16c/0x1f0
[  923.200954][T16931]  should_fail_ex+0x512/0x640
[  923.200997][T16931]  should_fail_alloc_page+0xe7/0x130
[  923.201035][T16931]  prepare_alloc_pages+0x3c2/0x610
[  923.201079][T16931]  ? rcu_is_watching+0x12/0xc0
[  923.201110][T16931]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  923.201147][T16931]  ? __lock_acquire+0xaa4/0x1ba0
[  923.201200][T16931]  ? find_held_lock+0x2b/0x80
[  923.201235][T16931]  ? psi_task_switch+0x201/0x8e0
[  923.201267][T16931]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  923.201303][T16931]  ? lock_acquire+0x179/0x350
[  923.201335][T16931]  ? find_held_lock+0x2b/0x80
[  923.201362][T16931]  ? rcu_is_watching+0x12/0xc0
[  923.201382][T16931]  ? finish_task_switch.isra.0+0x221/0xc10
[  923.201411][T16931]  ? __lock_acquire+0xaa4/0x1ba0
[  923.201438][T16931]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  923.201473][T16931]  ? policy_nodemask+0xea/0x4e0
[  923.201506][T16931]  alloc_pages_mpol+0x1fb/0x550
[  923.201536][T16931]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  923.201563][T16931]  ? __page_table_check_ptes_set+0x1ae/0x420
[  923.201592][T16931]  ? find_held_lock+0x2b/0x80
[  923.201618][T16931]  alloc_pages_noprof+0x131/0x390
[  923.201647][T16931]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  923.201670][T16931]  get_free_pages_noprof+0xc/0x40
[  923.201701][T16931]  kasan_populate_vmalloc_pte+0x2d/0x160
[  923.201725][T16931]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  923.201749][T16931]  __apply_to_page_range+0x617/0xd60
[  923.201789][T16931]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  923.201817][T16931]  ? __pfx___apply_to_page_range+0x10/0x10
[  923.201855][T16931]  ? alloc_vmap_area+0x872/0x2970
[  923.201893][T16931]  alloc_vmap_area+0x919/0x2970
[  923.201938][T16931]  ? __pfx_alloc_vmap_area+0x10/0x10
[  923.201979][T16931]  __get_vm_area_node+0x1a7/0x300
[  923.202020][T16931]  __vmalloc_node_range_noprof+0x277/0x1540
[  923.202059][T16931]  ? sock_hash_alloc+0x336/0x510
[  923.202093][T16931]  ? sock_hash_alloc+0x336/0x510
[  923.202123][T16931]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  923.202163][T16931]  ? rcu_is_watching+0x12/0xc0
[  923.202184][T16931]  ? trace_kmalloc+0x2b/0xd0
[  923.202214][T16931]  ? __kmalloc_node_noprof+0x23b/0x500
[  923.202246][T16931]  ? trace_cap_capable+0x18d/0x200
[  923.202291][T16931]  ? sock_hash_alloc+0x336/0x510
[  923.202316][T16931]  __bpf_map_area_alloc+0xeb/0x190
[  923.202354][T16931]  ? sock_hash_alloc+0x336/0x510
[  923.202381][T16931]  sock_hash_alloc+0x336/0x510
[  923.202410][T16931]  map_create+0x58f/0x1db0
[  923.202450][T16931]  ? __pfx_map_create+0x10/0x10
[  923.202480][T16931]  ? __might_fault+0xe3/0x190
[  923.202506][T16931]  ? __might_fault+0xe3/0x190
[  923.202530][T16931]  ? __might_fault+0x13b/0x190
[  923.202567][T16931]  __sys_bpf+0x47cc/0x4d80
[  923.202605][T16931]  ? __pfx___sys_bpf+0x10/0x10
[  923.202639][T16931]  ? ksys_write+0x190/0x240
[  923.202665][T16931]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  923.202714][T16931]  ? xfd_validate_state+0x5d/0x180
[  923.202756][T16931]  ? rcu_is_watching+0x12/0xc0
[  923.202782][T16931]  __x64_sys_bpf+0x78/0xc0
[  923.202815][T16931]  ? lockdep_hardirqs_on+0x7c/0x110
[  923.202843][T16931]  do_syscall_64+0xcd/0x230
[  923.202875][T16931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  923.202900][T16931] RIP: 0033:0x7f4a3698e969
[  923.202920][T16931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  923.202944][T16931] RSP: 002b:00007f4a37806038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  923.202968][T16931] RAX: ffffffffffffffda RBX: 00007f4a36bb5fa0 RCX: 00007f4a3698e969
[  923.202985][T16931] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[  923.203027][T16931] RBP: 00007f4a37806090 R08: 0000000000000000 R09: 0000000000000000
[  923.203061][T16931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  923.203076][T16931] R13: 0000000000000000 R14: 00007f4a36bb5fa0 R15: 00007ffe34cf6b38
[  923.203107][T16931]  </TASK>
[  924.068141][T16941] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2347'.
[  924.151602][T16941] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2347'.
[  926.462829][T16974] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  926.485083][T16974] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  926.507634][T16974] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  926.520773][T16974] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  926.535204][T16974] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  926.729981][ T2962] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  926.829518][ T2962] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  926.950443][ T2962] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  927.184174][ T2962] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  927.408601][T16973] chnl_net:caif_netlink_parms(): no params data found
[  927.642184][T16995] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2356'.
[  927.658841][ T2962] bridge_slave_1: left allmulticast mode
[  927.690426][ T2962] bridge_slave_1: left promiscuous mode
[  927.711583][ T2962] bridge0: port 2(bridge_slave_1) entered disabled state
[  927.732684][ T2962] bridge_slave_0: left allmulticast mode
[  927.745531][ T2962] bridge_slave_0: left promiscuous mode
[  927.759140][ T2962] bridge0: port 1(bridge_slave_0) entered disabled state
[  928.607387][ T5837] Bluetooth: hci2: command tx timeout
[  928.969770][ T2962] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  928.999562][ T2962] bond0 (unregistering): Released all slaves
[  929.282198][T16973] bridge0: port 1(bridge_slave_0) entered blocking state
[  929.292045][T16973] bridge0: port 1(bridge_slave_0) entered disabled state
[  929.301421][T16973] bridge_slave_0: entered allmulticast mode
[  929.318702][T16973] bridge_slave_0: entered promiscuous mode
[  929.413653][T16973] bridge0: port 2(bridge_slave_1) entered blocking state
[  929.436828][T16973] bridge0: port 2(bridge_slave_1) entered disabled state
[  929.444187][T16973] bridge_slave_1: entered allmulticast mode
[  929.481574][T16973] bridge_slave_1: entered promiscuous mode
[  929.877633][T16973] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  929.952379][T16973] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  930.178875][T16973] team0: Port device team_slave_0 added
[  930.497742][T16973] team0: Port device team_slave_1 added
[  930.686620][ T5837] Bluetooth: hci2: command tx timeout
[  930.786403][ T2962] hsr_slave_0: left promiscuous mode
[  930.861641][ T2962] hsr_slave_1: left promiscuous mode
[  930.895558][ T2962] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  930.962700][ T2962] batman_adv: batadv0: Removing interface: batadv_slave_0
[  931.001984][ T2962] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  931.019982][ T2962] batman_adv: batadv0: Removing interface: batadv_slave_1
[  931.088531][ T2962] veth1_macvtap: left promiscuous mode
[  931.097643][ T2962] veth1_vlan: left promiscuous mode
[  931.105205][ T2962] veth0_vlan: left promiscuous mode
[  932.771512][ T5837] Bluetooth: hci2: command tx timeout
[  932.959077][ T2962] team0 (unregistering): Port device team_slave_1 removed
[  933.022860][ T2962] team0 (unregistering): Port device team_slave_0 removed
[  933.451843][T16973] batman_adv: batadv0: Adding interface: batadv_slave_0
[  933.459358][T16973] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  933.491608][T16973] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  933.889993][T16973] batman_adv: batadv0: Adding interface: batadv_slave_1
[  933.907654][T16973] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  934.013087][T16973] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  934.154285][T17058] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2367'.
[  934.221326][T16973] hsr_slave_0: entered promiscuous mode
[  934.235056][T16973] hsr_slave_1: entered promiscuous mode
[  934.245777][T17058] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2367'.
[  934.846211][ T5837] Bluetooth: hci2: command tx timeout
[  935.408485][T16973] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  935.443512][T16973] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  935.465140][T16973] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  935.481721][T16973] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  935.902774][T16973] 8021q: adding VLAN 0 to HW filter on device bond0
[  935.991787][T16973] 8021q: adding VLAN 0 to HW filter on device team0
[  936.103719][ T2989] bridge0: port 1(bridge_slave_0) entered blocking state
[  936.111849][ T2989] bridge0: port 1(bridge_slave_0) entered forwarding state
[  936.227136][ T2989] bridge0: port 2(bridge_slave_1) entered blocking state
[  936.234304][ T2989] bridge0: port 2(bridge_slave_1) entered forwarding state
[  936.879144][T17110] program syz.1.2372 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  936.922071][T16973] 8021q: adding VLAN 0 to HW filter on device batadv0
[  937.171417][T16973] veth0_vlan: entered promiscuous mode
[  937.207786][T16973] veth1_vlan: entered promiscuous mode
[  937.306659][T16973] veth0_macvtap: entered promiscuous mode
[  937.397302][T16973] veth1_macvtap: entered promiscuous mode
[  937.527598][T16973] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  937.542065][T16973] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  937.573502][T16973] batman_adv: batadv0: Interface activated: batadv_slave_0
[  937.681358][T16973] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  937.692064][T16973] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  937.703941][T16973] batman_adv: batadv0: Interface activated: batadv_slave_1
[  937.738993][T16973] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  937.766248][T16973] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  937.775177][T16973] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  937.784109][T16973] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  937.889862][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  937.904810][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  938.116564][ T1152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  938.124505][ T1152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  938.273151][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  938.349101][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  938.731087][T17142] can: request_module (can-proto-4) failed.
[  940.060871][T16974] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  940.079101][T16974] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  940.090380][T16974] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  940.109121][T16974] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  940.122130][T16974] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  940.400364][   T53] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  940.569397][   T53] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  940.673326][   T53] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  940.836466][   T53] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  940.957172][T17171] chnl_net:caif_netlink_parms(): no params data found
[  941.577128][   T53] ip_vti0 (unregistering): left allmulticast mode
[  941.928695][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  941.956973][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  941.984482][   T53] bond0 (unregistering): Released all slaves
[  942.092918][T17171] bridge0: port 1(bridge_slave_0) entered blocking state
[  942.106303][T17171] bridge0: port 1(bridge_slave_0) entered disabled state
[  942.113804][T17171] bridge_slave_0: entered allmulticast mode
[  942.128494][T17171] bridge_slave_0: entered promiscuous mode
[  942.149014][T17171] bridge0: port 2(bridge_slave_1) entered blocking state
[  942.178995][T17171] bridge0: port 2(bridge_slave_1) entered disabled state
[  942.196772][T17171] bridge_slave_1: entered allmulticast mode
[  942.209898][ T5837] Bluetooth: hci4: command tx timeout
[  942.230961][T17171] bridge_slave_1: entered promiscuous mode
[  942.432245][T17171] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  942.447800][T17171] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  942.613229][T17171] team0: Port device team_slave_0 added
[  942.637722][T17171] team0: Port device team_slave_1 added
[  942.824099][T17171] batman_adv: batadv0: Adding interface: batadv_slave_0
[  942.838722][T17171] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  942.884769][T17171] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  942.920020][T17171] batman_adv: batadv0: Adding interface: batadv_slave_1
[  943.001454][T17171] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  943.134231][T17171] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  943.310850][T17171] hsr_slave_0: entered promiscuous mode
[  943.349626][T17171] hsr_slave_1: entered promiscuous mode
[  943.363176][T17171] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  943.376527][T17171] Cannot create hsr debugfs directory
[  943.404069][T17212] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2385'.
[  943.595069][   T53] hsr_slave_0: left promiscuous mode
[  943.602783][   T53] hsr_slave_1: left promiscuous mode
[  943.630496][   T53] veth1_macvtap: left promiscuous mode
[  943.636791][   T53] veth0_macvtap: left promiscuous mode
[  943.642603][   T53] veth1_vlan: left promiscuous mode
[  943.648821][   T53] veth0_vlan: left promiscuous mode
[  944.205988][T17210] ima: policy update failed
[  944.217881][   T30] audit: type=1802 audit(6040628758.826:12): pid=17210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2385" res=0 errno=0
[  944.287744][ T5837] Bluetooth: hci4: command tx timeout
[  945.342544][   T53] team0 (unregistering): Port device team_slave_1 removed
[  945.652591][   T53] team0 (unregistering): Port device team_slave_0 removed
[  946.366328][ T5837] Bluetooth: hci4: command tx timeout
[  947.564871][T17252] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2391'.
[  947.672924][T17252] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  948.447462][ T5837] Bluetooth: hci4: command tx timeout
[  948.558322][T17171] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  948.644381][T17171] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  948.730056][T17171] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  948.747456][T17171] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  949.182304][T17171] 8021q: adding VLAN 0 to HW filter on device bond0
[  949.238715][T17171] 8021q: adding VLAN 0 to HW filter on device team0
[  949.328581][ T2962] bridge0: port 1(bridge_slave_0) entered blocking state
[  949.335809][ T2962] bridge0: port 1(bridge_slave_0) entered forwarding state
[  949.467807][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[  949.475011][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[  949.823430][T17300] hub 8-0:1.0: USB hub found
[  949.831239][T17300] hub 8-0:1.0: 1 port detected
[  950.565693][T17171] 8021q: adding VLAN 0 to HW filter on device batadv0
[  950.711287][T17171] veth0_vlan: entered promiscuous mode
[  950.766362][T17171] veth1_vlan: entered promiscuous mode
[  951.038596][T17171] veth0_macvtap: entered promiscuous mode
[  951.064941][T17171] veth1_macvtap: entered promiscuous mode
[  951.164076][T17171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  951.199094][T17171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.237561][T17171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  951.360339][T17171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.426500][T17171] batman_adv: batadv0: Interface activated: batadv_slave_0
[  951.551501][T17171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  951.596449][T17171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.651852][T17171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  951.703573][T17171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  951.777018][T17171] batman_adv: batadv0: Interface activated: batadv_slave_1
[  951.849221][T17171] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  951.882753][T17171] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  951.907683][T17171] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  951.923681][T17171] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  952.471656][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  952.495972][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  952.735501][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  952.752448][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  955.626195][T17417] warning: `syz.3.2408' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  955.976843][T17428] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2411'.
[  955.996293][T17423] FAULT_INJECTION: forcing a failure.
[  955.996293][T17423] name failslab, interval 1, probability 0, space 0, times 0
[  956.013054][T17423] CPU: 0 UID: 0 PID: 17423 Comm: syz.0.2409 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[  956.013098][T17423] Tainted: [U]=USER
[  956.013108][T17423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  956.013126][T17423] Call Trace:
[  956.013136][T17423]  <TASK>
[  956.013148][T17423]  dump_stack_lvl+0x16c/0x1f0
[  956.013192][T17423]  should_fail_ex+0x512/0x640
[  956.013232][T17423]  ? fs_reclaim_acquire+0xae/0x150
[  956.013280][T17423]  ? ima_alloc_init_template+0x19d/0x720
[  956.013327][T17423]  should_failslab+0xc2/0x120
[  956.013364][T17423]  __kmalloc_noprof+0xd2/0x510
[  956.013419][T17423]  ima_alloc_init_template+0x19d/0x720
[  956.013467][T17423]  ? rcu_preempt_deferred_qs_irqrestore+0x4f5/0xbc0
[  956.013516][T17423]  ima_store_measurement+0x1eb/0x5c0
[  956.013549][T17423]  ? __pfx_ima_store_measurement+0x10/0x10
[  956.013581][T17423]  ? vfs_getxattr_alloc+0xec/0x340
[  956.013637][T17423]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  956.013686][T17423]  process_measurement+0x1ddb/0x23e0
[  956.013744][T17423]  ? __pfx_process_measurement+0x10/0x10
[  956.013785][T17423]  ? __lock_acquire+0x5ca/0x1ba0
[  956.013825][T17423]  ? init_file+0x93/0x4c0
[  956.013857][T17423]  ? alloc_empty_file+0x73/0x1e0
[  956.013891][T17423]  ? hugetlb_file_setup+0x4cd/0x620
[  956.013927][T17423]  ? ksys_mmap_pgoff+0x189/0x5c0
[  956.013967][T17423]  ? __x64_sys_mmap+0x125/0x190
[  956.014049][T17423]  ima_file_mmap+0x1b1/0x1d0
[  956.014094][T17423]  ? __pfx_ima_file_mmap+0x10/0x10
[  956.014147][T17423]  security_mmap_file+0x88c/0x990
[  956.014189][T17423]  vm_mmap_pgoff+0xec/0x450
[  956.014236][T17423]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  956.014275][T17423]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  956.014316][T17423]  ? hugetlbfs_get_inode+0x31f/0x730
[  956.014362][T17423]  ksys_mmap_pgoff+0x1c8/0x5c0
[  956.014417][T17423]  __x64_sys_mmap+0x125/0x190
[  956.014450][T17423]  do_syscall_64+0xcd/0x230
[  956.014490][T17423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  956.014520][T17423] RIP: 0033:0x7f7a7658e969
[  956.014545][T17423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  956.014575][T17423] RSP: 002b:00007f7a77468038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  956.014622][T17423] RAX: ffffffffffffffda RBX: 00007f7a767b6080 RCX: 00007f7a7658e969
[  956.014644][T17423] RDX: 00004000000000df RSI: 0000000000000003 RDI: 0000000000000000
[  956.014663][T17423] RBP: 00007f7a77468090 R08: 0000000000000401 R09: 0000300000000000
[  956.014683][T17423] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000002
[  956.014702][T17423] R13: 0000000000000000 R14: 00007f7a767b6080 R15: 00007ffc6507f288
[  956.014744][T17423]  </TASK>
[  956.015951][T17428] mac80211_hwsim hwsim22 : renamed from wlan0 (while UP)
[  956.309167][   T30] audit: type=1804 audit(6040628770.626:13): pid=17423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.2409" name="anon_hugepage" dev="hugetlbfs" ino=59516 res=0 errno=0
[  956.525182][T17430] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2411'.
[  957.639075][T17442] program syz.0.2413 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  960.809323][T16974] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  960.822462][T16974] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  960.830847][T16974] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  960.859242][T16974] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  960.887803][T16974] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  961.531587][   T62] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  961.586903][T17489] chnl_net:caif_netlink_parms(): no params data found
[  962.051873][T17509] FAULT_INJECTION: forcing a failure.
[  962.051873][T17509] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  962.086603][   T62] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  962.124317][T17509] CPU: 1 UID: 0 PID: 17509 Comm: syz.1.2427 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[  962.124354][T17509] Tainted: [U]=USER
[  962.124361][T17509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  962.124373][T17509] Call Trace:
[  962.124381][T17509]  <TASK>
[  962.124389][T17509]  dump_stack_lvl+0x16c/0x1f0
[  962.124423][T17509]  should_fail_ex+0x512/0x640
[  962.124457][T17509]  should_fail_alloc_page+0xe7/0x130
[  962.124485][T17509]  prepare_alloc_pages+0x3c2/0x610
[  962.124517][T17509]  ? rcu_is_watching+0x12/0xc0
[  962.124540][T17509]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  962.124568][T17509]  ? lock_acquire+0x179/0x350
[  962.124600][T17509]  ? mark_held_locks+0x49/0x80
[  962.124625][T17509]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  962.124651][T17509]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  962.124676][T17509]  ? stack_depot_save_flags+0x3e6/0xa50
[  962.124737][T17509]  ? kasan_save_stack+0x42/0x60
[  962.124764][T17509]  ? __lock_acquire+0xaa4/0x1ba0
[  962.124789][T17509]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  962.124822][T17509]  ? policy_nodemask+0xea/0x4e0
[  962.124852][T17509]  alloc_pages_mpol+0x1fb/0x550
[  962.124880][T17509]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  962.124905][T17509]  ? __page_table_check_ptes_set+0x1ae/0x420
[  962.124932][T17509]  ? find_held_lock+0x2b/0x80
[  962.124957][T17509]  alloc_pages_noprof+0x131/0x390
[  962.124987][T17509]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  962.125008][T17509]  get_free_pages_noprof+0xc/0x40
[  962.125037][T17509]  kasan_populate_vmalloc_pte+0x2d/0x160
[  962.125060][T17509]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  962.125082][T17509]  __apply_to_page_range+0x617/0xd60
[  962.125121][T17509]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  962.125147][T17509]  ? __pfx___apply_to_page_range+0x10/0x10
[  962.125182][T17509]  ? alloc_vmap_area+0x872/0x2970
[  962.125218][T17509]  alloc_vmap_area+0x919/0x2970
[  962.125260][T17509]  ? __pfx_alloc_vmap_area+0x10/0x10
[  962.125299][T17509]  __get_vm_area_node+0x1a7/0x300
[  962.125337][T17509]  __vmalloc_node_range_noprof+0x277/0x1540
[  962.125378][T17509]  ? sock_hash_alloc+0x336/0x510
[  962.125412][T17509]  ? sock_hash_alloc+0x336/0x510
[  962.125440][T17509]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  962.125478][T17509]  ? rcu_is_watching+0x12/0xc0
[  962.125498][T17509]  ? trace_kmalloc+0x2b/0xd0
[  962.125525][T17509]  ? __kmalloc_node_noprof+0x23b/0x500
[  962.125550][T17509]  ? trace_cap_capable+0x18d/0x200
[  962.125586][T17509]  ? sock_hash_alloc+0x336/0x510
[  962.125610][T17509]  __bpf_map_area_alloc+0xeb/0x190
[  962.125644][T17509]  ? sock_hash_alloc+0x336/0x510
[  962.125669][T17509]  sock_hash_alloc+0x336/0x510
[  962.125696][T17509]  map_create+0x58f/0x1db0
[  962.125750][T17509]  ? __pfx_map_create+0x10/0x10
[  962.125777][T17509]  ? __might_fault+0xe3/0x190
[  962.125801][T17509]  ? __might_fault+0xe3/0x190
[  962.125835][T17509]  ? __might_fault+0x13b/0x190
[  962.125868][T17509]  __sys_bpf+0x47cc/0x4d80
[  962.125900][T17509]  ? __pfx___sys_bpf+0x10/0x10
[  962.125929][T17509]  ? ksys_write+0x190/0x240
[  962.125952][T17509]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  962.125994][T17509]  ? fput+0x70/0xf0
[  962.126023][T17509]  ? ksys_write+0x1b9/0x240
[  962.126048][T17509]  ? __pfx_ksys_write+0x10/0x10
[  962.126075][T17509]  ? rcu_is_watching+0x12/0xc0
[  962.126099][T17509]  __x64_sys_bpf+0x78/0xc0
[  962.126128][T17509]  ? lockdep_hardirqs_on+0x7c/0x110
[  962.126152][T17509]  do_syscall_64+0xcd/0x230
[  962.126180][T17509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  962.126213][T17509] RIP: 0033:0x7f4a3698e969
[  962.126230][T17509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  962.126268][T17509] RSP: 002b:00007f4a37806038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  962.126288][T17509] RAX: ffffffffffffffda RBX: 00007f4a36bb5fa0 RCX: 00007f4a3698e969
[  962.126303][T17509] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[  962.126316][T17509] RBP: 00007f4a37806090 R08: 0000000000000000 R09: 0000000000000000
[  962.126329][T17509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  962.126341][T17509] R13: 0000000000000000 R14: 00007f4a36bb5fa0 R15: 00007ffe34cf6b38
[  962.126366][T17509]  </TASK>
[  962.541953][    C1] vkms_vblank_simulate: vblank timer overrun
[  962.915664][   T62] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  962.940931][T16974] Bluetooth: hci0: command tx timeout
[  963.171330][   T62] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  963.254350][T17489] bridge0: port 1(bridge_slave_0) entered blocking state
[  963.275539][T17489] bridge0: port 1(bridge_slave_0) entered disabled state
[  963.280077][T17514] netlink: 'syz.1.2428': attribute type 2 has an invalid length.
[  963.290744][T17514] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2428'.
[  963.406518][T17489] bridge_slave_0: entered allmulticast mode
[  963.425585][T17489] bridge_slave_0: entered promiscuous mode
[  963.493191][T17489] bridge0: port 2(bridge_slave_1) entered blocking state
[  963.501257][T17489] bridge0: port 2(bridge_slave_1) entered disabled state
[  963.510993][T17489] bridge_slave_1: entered allmulticast mode
[  963.528186][T17489] bridge_slave_1: entered promiscuous mode
[  963.767593][T17489] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  963.813384][T17489] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  963.953514][T17489] team0: Port device team_slave_0 added
[  963.982787][T17489] team0: Port device team_slave_1 added
[  964.074770][T17489] batman_adv: batadv0: Adding interface: batadv_slave_0
[  964.083681][T17489] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  964.142983][T17489] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  964.169937][T17489] batman_adv: batadv0: Adding interface: batadv_slave_1
[  964.182271][T17489] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  964.210025][T17489] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  964.373454][T17489] hsr_slave_0: entered promiscuous mode
[  964.382667][T17489] hsr_slave_1: entered promiscuous mode
[  964.390248][T17489] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  964.398392][T17489] Cannot create hsr debugfs directory
[  964.404246][   T62] bridge_slave_1: left allmulticast mode
[  964.410888][   T62] bridge_slave_1: left promiscuous mode
[  964.432779][   T62] bridge0: port 2(bridge_slave_1) entered disabled state
[  964.520735][   T62] bridge_slave_0: left allmulticast mode
[  964.536240][   T62] bridge_slave_0: left promiscuous mode
[  964.542036][   T62] bridge0: port 1(bridge_slave_0) entered disabled state
[  965.006149][T16974] Bluetooth: hci0: command tx timeout
[  965.651613][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  965.668773][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  965.736455][   T62] bond0 (unregistering): Released all slaves
[  965.922719][   T62] ovs_: left promiscuous mode
[  967.086281][T16974] Bluetooth: hci0: command tx timeout
[  968.080956][   T62] hsr_slave_0: left promiscuous mode
[  968.104317][   T62] hsr_slave_1: left promiscuous mode
[  968.114173][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  968.123137][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  968.144392][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  968.155422][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  968.199241][   T62] veth1_macvtap: left promiscuous mode
[  968.205048][   T62] veth1_vlan: left promiscuous mode
[  968.218869][   T62] veth0_vlan: left promiscuous mode
[  969.168201][T16974] Bluetooth: hci0: command tx timeout
[  969.448415][   T62] team0 (unregistering): Port device team_slave_1 removed
[  969.553700][   T62] team0 (unregistering): Port device team_slave_0 removed
[  970.061834][T17608] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2444'.
[  970.378631][T17609] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2444'.
[  970.391624][T17596] FAULT_INJECTION: forcing a failure.
[  970.391624][T17596] name failslab, interval 1, probability 0, space 0, times 0
[  970.412334][T17596] CPU: 1 UID: 0 PID: 17596 Comm: syz.0.2442 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[  970.412380][T17596] Tainted: [U]=USER
[  970.412391][T17596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  970.412408][T17596] Call Trace:
[  970.412417][T17596]  <TASK>
[  970.412428][T17596]  dump_stack_lvl+0x16c/0x1f0
[  970.412472][T17596]  should_fail_ex+0x512/0x640
[  970.412513][T17596]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  970.412555][T17596]  should_failslab+0xc2/0x120
[  970.412590][T17596]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  970.412625][T17596]  ? fib_rules_register+0x30/0x500
[  970.412656][T17596]  ? __pfx_ipmr_net_init+0x10/0x10
[  970.412703][T17596]  kmemdup_noprof+0x29/0x60
[  970.412739][T17596]  fib_rules_register+0x30/0x500
[  970.412765][T17596]  ? fib_notifier_ops_register+0x123/0x270
[  970.412795][T17596]  ? __pfx_ipmr_net_init+0x10/0x10
[  970.412844][T17596]  ipmr_net_init+0xb8/0x4e0
[  970.412870][T17596]  ? __pfx_ipmr_net_init+0x10/0x10
[  970.412914][T17596]  ops_init+0x1df/0x5f0
[  970.412950][T17596]  setup_net+0x21e/0x850
[  970.412991][T17596]  ? __pfx_setup_net+0x10/0x10
[  970.413021][T17596]  ? lockdep_init_map_type+0x5c/0x280
[  970.413063][T17596]  ? __pfx_down_read_killable+0x10/0x10
[  970.413112][T17596]  ? debug_mutex_init+0x37/0x70
[  970.413163][T17596]  copy_net_ns+0x2a6/0x5f0
[  970.413201][T17596]  create_new_namespaces+0x3ea/0xad0
[  970.413241][T17596]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  970.413294][T17596]  ksys_unshare+0x45b/0xa40
[  970.413338][T17596]  ? __pfx_ksys_unshare+0x10/0x10
[  970.413371][T17596]  ? xfd_validate_state+0x5d/0x180
[  970.413412][T17596]  ? rcu_is_watching+0x12/0xc0
[  970.413441][T17596]  __x64_sys_unshare+0x31/0x40
[  970.413472][T17596]  do_syscall_64+0xcd/0x230
[  970.413508][T17596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  970.413537][T17596] RIP: 0033:0x7f7a7658e969
[  970.413560][T17596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  970.413591][T17596] RSP: 002b:00007f7a77489038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  970.413618][T17596] RAX: ffffffffffffffda RBX: 00007f7a767b5fa0 RCX: 00007f7a7658e969
[  970.413635][T17596] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  970.413657][T17596] RBP: 00007f7a76610ab1 R08: 0000000000000000 R09: 0000000000000000
[  970.413674][T17596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  970.413690][T17596] R13: 0000000000000000 R14: 00007f7a767b5fa0 R15: 00007ffc6507f288
[  970.413723][T17596]  </TASK>
[  971.204129][T17489] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  971.232372][T17613] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2445'.
[  971.252716][T17489] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  971.279495][T17613] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2445'.
[  971.316750][T17489] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  971.362362][T17489] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  971.615570][T17489] 8021q: adding VLAN 0 to HW filter on device bond0
[  971.679835][T17489] 8021q: adding VLAN 0 to HW filter on device team0
[  971.702462][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[  971.709780][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[  971.732876][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  971.740084][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  972.772458][T17489] 8021q: adding VLAN 0 to HW filter on device batadv0
[  973.016589][T17489] veth0_vlan: entered promiscuous mode
[  973.035112][T17638] input input9: cannot allocate more than FF_MAX_EFFECTS effects
[  973.055640][T17489] veth1_vlan: entered promiscuous mode
[  973.420821][T17489] veth0_macvtap: entered promiscuous mode
[  973.470817][T17489] veth1_macvtap: entered promiscuous mode
[  973.614801][T17489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  973.670114][T17489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  973.689134][T17489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  973.700116][T17489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  973.712365][T17489] batman_adv: batadv0: Interface activated: batadv_slave_0
[  973.785534][T17489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  973.878392][T17489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  973.898640][T17489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  973.946307][T17489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  974.032170][T17489] batman_adv: batadv0: Interface activated: batadv_slave_1
[  974.298759][T17489] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  974.317118][T17489] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  974.345738][T17489] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  974.370666][T17489] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  974.624205][T17670] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2453'.
[  974.772493][T17671] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2453'.
[  974.796658][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  974.847059][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  974.960568][ T2945] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  974.971265][ T2945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  977.530410][ T5837] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  977.542362][ T5837] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  977.553130][ T5837] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  977.568163][ T5837] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  977.578163][ T5837] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  977.744541][   T53] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  977.889149][   T53] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  977.995878][   T53] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  978.101654][   T53] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  978.133818][T17708] netlink: 'syz.2.2459': attribute type 2 has an invalid length.
[  978.144363][T17708] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2459'.
[  978.470551][T17716] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2460'.
[  978.548744][T17719] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2460'.
[  978.687402][T17704] chnl_net:caif_netlink_parms(): no params data found
[  978.722372][   T53] hsr0: left allmulticast mode
[  978.736466][   T53] hsr_slave_0: left allmulticast mode
[  978.766632][   T53] hsr_slave_1: left allmulticast mode
[  978.772147][   T53] hsr0: left promiscuous mode
[  978.786309][   T53] bridge0: port 3(hsr0) entered disabled state
[  978.807533][   T53] bridge_slave_1: left allmulticast mode
[  978.813249][   T53] bridge_slave_1: left promiscuous mode
[  978.847360][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  978.887274][   T53] bridge_slave_0: left allmulticast mode
[  978.893078][   T53] bridge_slave_0: left promiscuous mode
[  978.910470][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  978.939458][T17727] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2462'.
[  979.600512][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  979.623806][   T53] bond0 (unregistering): Released all slaves
[  979.647256][T16974] Bluetooth: hci1: command tx timeout
[  979.673858][T17729] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2462'.
[  979.730539][   T53] HfR: left promiscuous mode
[  980.067709][T17704] bridge0: port 1(bridge_slave_0) entered blocking state
[  980.075198][T17704] bridge0: port 1(bridge_slave_0) entered disabled state
[  980.083545][T17704] bridge_slave_0: entered allmulticast mode
[  980.117879][T17704] bridge_slave_0: entered promiscuous mode
[  980.189101][T17704] bridge0: port 2(bridge_slave_1) entered blocking state
[  980.217548][T17704] bridge0: port 2(bridge_slave_1) entered disabled state
[  980.227099][T17742] FAULT_INJECTION: forcing a failure.
[  980.227099][T17742] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  980.250762][T17704] bridge_slave_1: entered allmulticast mode
[  980.255266][T17735] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2463'.
[  980.267993][T17704] bridge_slave_1: entered promiscuous mode
[  980.273690][T17742] CPU: 0 UID: 0 PID: 17742 Comm: syz.0.2465 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[  980.273741][T17742] Tainted: [U]=USER
[  980.273752][T17742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  980.273771][T17742] Call Trace:
[  980.273782][T17742]  <TASK>
[  980.273794][T17742]  dump_stack_lvl+0x16c/0x1f0
[  980.273838][T17742]  should_fail_ex+0x512/0x640
[  980.273890][T17742]  _copy_from_user+0x2e/0xd0
[  980.273938][T17742]  copy_msghdr_from_user+0x98/0x160
[  980.273996][T17742]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  980.274054][T17742]  ? kfree+0x252/0x4d0
[  980.274099][T17742]  ? __pfx__kstrtoull+0x10/0x10
[  980.274141][T17742]  ___sys_sendmsg+0xfe/0x1d0
[  980.274172][T17742]  ? __pfx____sys_sendmsg+0x10/0x10
[  980.274257][T17742]  ? __pfx___might_resched+0x10/0x10
[  980.274300][T17742]  __sys_sendmmsg+0x200/0x420
[  980.274334][T17742]  ? __pfx___sys_sendmmsg+0x10/0x10
[  980.274376][T17742]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  980.274433][T17742]  ? fput+0x70/0xf0
[  980.274469][T17742]  ? ksys_write+0x1b9/0x240
[  980.274497][T17742]  ? __pfx_ksys_write+0x10/0x10
[  980.274524][T17742]  ? rcu_is_watching+0x12/0xc0
[  980.274558][T17742]  __x64_sys_sendmmsg+0x9c/0x100
[  980.274587][T17742]  ? lockdep_hardirqs_on+0x7c/0x110
[  980.274623][T17742]  do_syscall_64+0xcd/0x230
[  980.274664][T17742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  980.274696][T17742] RIP: 0033:0x7f7a7658e969
[  980.274721][T17742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  980.274752][T17742] RSP: 002b:00007f7a77489038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  980.274782][T17742] RAX: ffffffffffffffda RBX: 00007f7a767b5fa0 RCX: 00007f7a7658e969
[  980.274804][T17742] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  980.274823][T17742] RBP: 00007f7a77489090 R08: 0000000000000000 R09: 0000000000000000
[  980.274842][T17742] R10: 00000000070000ee R11: 0000000000000246 R12: 0000000000000002
[  980.274861][T17742] R13: 0000000000000000 R14: 00007f7a767b5fa0 R15: 00007ffc6507f288
[  980.274907][T17742]  </TASK>
[  980.313406][T17747] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2463'.
[  980.873291][T17704] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  981.050138][T17704] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  981.655960][T17704] team0: Port device team_slave_0 added
[  981.732601][T16974] Bluetooth: hci1: command tx timeout
[  981.873549][T17704] team0: Port device team_slave_1 added
[  982.030316][   T53] hsr_slave_0: left promiscuous mode
[  982.071102][   T53] hsr_slave_1: left promiscuous mode
[  982.164105][   T53] veth1_macvtap: left promiscuous mode
[  982.174487][   T53] veth1_vlan: left promiscuous mode
[  982.199730][   T53] veth0_vlan: left promiscuous mode
[  983.806913][T16974] Bluetooth: hci1: command tx timeout
[  984.034555][   T53] team0 (unregistering): Port device team_slave_1 removed
[  984.084074][   T53] team0 (unregistering): Port device team_slave_0 removed
[  984.669303][T17704] batman_adv: batadv0: Adding interface: batadv_slave_0
[  984.677794][T17704] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  984.709692][T17704] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  984.724719][T17704] batman_adv: batadv0: Adding interface: batadv_slave_1
[  984.731792][T17704] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  984.757875][T17704] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  985.058569][T17704] hsr_slave_0: entered promiscuous mode
[  985.069553][T17704] hsr_slave_1: entered promiscuous mode
[  985.087029][T17704] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  985.094659][T17704] Cannot create hsr debugfs directory
[  985.893040][T16974] Bluetooth: hci1: command tx timeout
[  986.378571][T17822] FAULT_INJECTION: forcing a failure.
[  986.378571][T17822] name failslab, interval 1, probability 0, space 0, times 0
[  986.447281][T17822] CPU: 0 UID: 0 PID: 17822 Comm: syz.3.2473 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[  986.447322][T17822] Tainted: [U]=USER
[  986.447330][T17822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  986.447343][T17822] Call Trace:
[  986.447351][T17822]  <TASK>
[  986.447360][T17822]  dump_stack_lvl+0x16c/0x1f0
[  986.447394][T17822]  should_fail_ex+0x512/0x640
[  986.447430][T17822]  should_failslab+0xc2/0x120
[  986.447459][T17822]  __kmalloc_cache_noprof+0x6a/0x3e0
[  986.447496][T17822]  ? sctp_add_bind_addr+0xae/0x3f0
[  986.447528][T17822]  sctp_add_bind_addr+0xae/0x3f0
[  986.447557][T17822]  sctp_copy_local_addr_list+0x39d/0x5a0
[  986.447592][T17822]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  986.447627][T17822]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  986.447665][T17822]  ? sctp_bind_addr_copy+0xe0/0x530
[  986.447691][T17822]  sctp_bind_addr_copy+0xe0/0x530
[  986.447723][T17822]  sctp_connect_new_asoc+0x1d7/0x790
[  986.447761][T17822]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  986.447805][T17822]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  986.447846][T17822]  sctp_sendmsg+0x15f9/0x1ee0
[  986.447879][T17822]  ? __lock_acquire+0x5ca/0x1ba0
[  986.447937][T17822]  ? __pfx_sctp_sendmsg+0x10/0x10
[  986.447976][T17822]  ? __pfx___might_resched+0x10/0x10
[  986.448015][T17822]  ? __pfx_aa_sk_perm+0x10/0x10
[  986.448046][T17822]  ? __pfx_sctp_sendmsg+0x10/0x10
[  986.448083][T17822]  inet_sendmsg+0x119/0x140
[  986.448114][T17822]  ____sys_sendmsg+0x973/0xc70
[  986.448155][T17822]  ? __pfx_____sys_sendmsg+0x10/0x10
[  986.448189][T17822]  ? __pfx__kstrtoull+0x10/0x10
[  986.448221][T17822]  ___sys_sendmsg+0x134/0x1d0
[  986.448245][T17822]  ? __pfx____sys_sendmsg+0x10/0x10
[  986.448298][T17822]  ? find_held_lock+0x2b/0x80
[  986.448339][T17822]  __sys_sendmmsg+0x200/0x420
[  986.448365][T17822]  ? __pfx___sys_sendmmsg+0x10/0x10
[  986.448397][T17822]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  986.448439][T17822]  ? fput+0x70/0xf0
[  986.448466][T17822]  ? ksys_write+0x1b9/0x240
[  986.448489][T17822]  ? __pfx_ksys_write+0x10/0x10
[  986.448509][T17822]  ? rcu_is_watching+0x12/0xc0
[  986.448535][T17822]  __x64_sys_sendmmsg+0x9c/0x100
[  986.448556][T17822]  ? lockdep_hardirqs_on+0x7c/0x110
[  986.448582][T17822]  do_syscall_64+0xcd/0x230
[  986.448613][T17822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  986.448637][T17822] RIP: 0033:0x7f27c218e969
[  986.448655][T17822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  986.448677][T17822] RSP: 002b:00007f27c3031038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  986.448700][T17822] RAX: ffffffffffffffda RBX: 00007f27c23b6080 RCX: 00007f27c218e969
[  986.448715][T17822] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000004
[  986.448730][T17822] RBP: 00007f27c3031090 R08: 0000000000000000 R09: 0000000000000000
[  986.448743][T17822] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000001
[  986.448757][T17822] R13: 0000000000000000 R14: 00007f27c23b6080 R15: 00007ffc4c7cd8f8
[  986.448787][T17822]  </TASK>
[  987.978424][T17833] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2475'.
[  988.611268][T17704] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  988.663599][T17704] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  988.670727][T17854] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2477'.
[  988.701885][T17704] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  988.752055][T17856] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2477'.
[  988.809895][T17704] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  989.185965][T17704] 8021q: adding VLAN 0 to HW filter on device bond0
[  989.284242][T17704] 8021q: adding VLAN 0 to HW filter on device team0
[  989.445117][ T2989] bridge0: port 1(bridge_slave_0) entered blocking state
[  989.452408][ T2989] bridge0: port 1(bridge_slave_0) entered forwarding state
[  989.508165][ T2989] bridge0: port 2(bridge_slave_1) entered blocking state
[  989.515422][ T2989] bridge0: port 2(bridge_slave_1) entered forwarding state
[  990.157725][T17878] FAULT_INJECTION: forcing a failure.
[  990.157725][T17878] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  990.181132][T17878] CPU: 0 UID: 0 PID: 17878 Comm: syz.3.2481 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[  990.181182][T17878] Tainted: [U]=USER
[  990.181193][T17878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  990.181212][T17878] Call Trace:
[  990.181221][T17878]  <TASK>
[  990.181233][T17878]  dump_stack_lvl+0x16c/0x1f0
[  990.181285][T17878]  should_fail_ex+0x512/0x640
[  990.181329][T17878]  should_fail_alloc_page+0xe7/0x130
[  990.181367][T17878]  prepare_alloc_pages+0x3c2/0x610
[  990.181409][T17878]  ? rcu_is_watching+0x12/0xc0
[  990.181439][T17878]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  990.181477][T17878]  ? __kernel_text_address+0xd/0x40
[  990.181513][T17878]  ? unwind_get_return_address+0x59/0xa0
[  990.181540][T17878]  ? arch_stack_walk+0xa6/0x100
[  990.181575][T17878]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  990.181601][T17878]  ? stack_trace_save+0x8e/0xc0
[  990.181625][T17878]  ? __pfx_stack_trace_save+0x10/0x10
[  990.181647][T17878]  ? stack_depot_save_flags+0x28/0xa50
[  990.181678][T17878]  ? find_held_lock+0x2b/0x80
[  990.181703][T17878]  ? kasan_save_stack+0x42/0x60
[  990.181731][T17878]  ? __lock_acquire+0xaa4/0x1ba0
[  990.181775][T17878]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  990.181809][T17878]  ? policy_nodemask+0xea/0x4e0
[  990.181839][T17878]  alloc_pages_mpol+0x1fb/0x550
[  990.181869][T17878]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  990.181895][T17878]  ? __page_table_check_ptes_set+0x1ae/0x420
[  990.181924][T17878]  ? find_held_lock+0x2b/0x80
[  990.181950][T17878]  alloc_pages_noprof+0x131/0x390
[  990.181980][T17878]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  990.182003][T17878]  get_free_pages_noprof+0xc/0x40
[  990.182033][T17878]  kasan_populate_vmalloc_pte+0x2d/0x160
[  990.182057][T17878]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  990.182080][T17878]  __apply_to_page_range+0x617/0xd60
[  990.182120][T17878]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  990.182148][T17878]  ? __pfx___apply_to_page_range+0x10/0x10
[  990.182185][T17878]  ? alloc_vmap_area+0x872/0x2970
[  990.182223][T17878]  alloc_vmap_area+0x919/0x2970
[  990.182268][T17878]  ? __pfx_alloc_vmap_area+0x10/0x10
[  990.182309][T17878]  __get_vm_area_node+0x1a7/0x300
[  990.182350][T17878]  __vmalloc_node_range_noprof+0x277/0x1540
[  990.182388][T17878]  ? sock_hash_alloc+0x336/0x510
[  990.182422][T17878]  ? sock_hash_alloc+0x336/0x510
[  990.182452][T17878]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  990.182499][T17878]  ? rcu_is_watching+0x12/0xc0
[  990.182520][T17878]  ? trace_kmalloc+0x2b/0xd0
[  990.182550][T17878]  ? __kmalloc_node_noprof+0x23b/0x500
[  990.182576][T17878]  ? trace_cap_capable+0x18d/0x200
[  990.182616][T17878]  ? sock_hash_alloc+0x336/0x510
[  990.182641][T17878]  __bpf_map_area_alloc+0xeb/0x190
[  990.182679][T17878]  ? sock_hash_alloc+0x336/0x510
[  990.182705][T17878]  sock_hash_alloc+0x336/0x510
[  990.182737][T17878]  map_create+0x58f/0x1db0
[  990.182777][T17878]  ? __pfx_map_create+0x10/0x10
[  990.182805][T17878]  ? __might_fault+0xe3/0x190
[  990.182830][T17878]  ? __might_fault+0xe3/0x190
[  990.182855][T17878]  ? __might_fault+0x13b/0x190
[  990.182891][T17878]  __sys_bpf+0x47cc/0x4d80
[  990.182928][T17878]  ? __pfx___sys_bpf+0x10/0x10
[  990.182961][T17878]  ? ksys_write+0x190/0x240
[  990.182998][T17878]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  990.183042][T17878]  ? fput+0x70/0xf0
[  990.183067][T17878]  ? ksys_write+0x1b9/0x240
[  990.183087][T17878]  ? __pfx_ksys_write+0x10/0x10
[  990.183107][T17878]  ? rcu_is_watching+0x12/0xc0
[  990.183131][T17878]  __x64_sys_bpf+0x78/0xc0
[  990.183162][T17878]  ? lockdep_hardirqs_on+0x7c/0x110
[  990.183189][T17878]  do_syscall_64+0xcd/0x230
[  990.183218][T17878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  990.183241][T17878] RIP: 0033:0x7f27c218e969
[  990.183259][T17878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  990.183281][T17878] RSP: 002b:00007f27c3052038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  990.183302][T17878] RAX: ffffffffffffffda RBX: 00007f27c23b5fa0 RCX: 00007f27c218e969
[  990.183318][T17878] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[  990.183332][T17878] RBP: 00007f27c3052090 R08: 0000000000000000 R09: 0000000000000000
[  990.183346][T17878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  990.183359][T17878] R13: 0000000000000000 R14: 00007f27c23b5fa0 R15: 00007ffc4c7cd8f8
[  990.183387][T17878]  </TASK>
[  990.733057][T17885] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2482'.
[  990.800153][T17884] FAULT_INJECTION: forcing a failure.
[  990.800153][T17884] name failslab, interval 1, probability 0, space 0, times 0
[  990.829109][T17890] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2482'.
[  990.868667][T17884] CPU: 1 UID: 0 PID: 17884 Comm: syz.3.2484 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[  990.868725][T17884] Tainted: [U]=USER
[  990.868739][T17884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  990.868761][T17884] Call Trace:
[  990.868773][T17884]  <TASK>
[  990.868787][T17884]  dump_stack_lvl+0x16c/0x1f0
[  990.868838][T17884]  should_fail_ex+0x512/0x640
[  990.868886][T17884]  ? fs_reclaim_acquire+0xae/0x150
[  990.868940][T17884]  ? tomoyo_open_control+0x51f/0xa30
[  990.869002][T17884]  should_failslab+0xc2/0x120
[  990.869051][T17884]  __kmalloc_noprof+0xd2/0x510
[  990.869093][T17884]  tomoyo_open_control+0x51f/0xa30
[  990.869145][T17884]  do_dentry_open+0x741/0x1c10
[  990.869175][T17884]  ? __pfx_tomoyo_open+0x10/0x10
[  990.869223][T17884]  vfs_open+0x82/0x3f0
[  990.869266][T17884]  path_openat+0x1e5e/0x2d40
[  990.869309][T17884]  ? __pfx_path_openat+0x10/0x10
[  990.869346][T17884]  do_filp_open+0x20b/0x470
[  990.869384][T17884]  ? __pfx_do_filp_open+0x10/0x10
[  990.869441][T17884]  ? alloc_fd+0x471/0x7d0
[  990.869499][T17884]  do_sys_openat2+0x11b/0x1d0
[  990.869538][T17884]  ? __pfx_do_sys_openat2+0x10/0x10
[  990.869592][T17884]  __x64_sys_openat+0x174/0x210
[  990.869631][T17884]  ? __pfx___x64_sys_openat+0x10/0x10
[  990.869672][T17884]  ? rcu_is_watching+0x12/0xc0
[  990.869710][T17884]  do_syscall_64+0xcd/0x230
[  990.869752][T17884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  990.869782][T17884] RIP: 0033:0x7f27c218e969
[  990.869805][T17884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  990.869847][T17884] RSP: 002b:00007f27c3052038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  990.869877][T17884] RAX: ffffffffffffffda RBX: 00007f27c23b5fa0 RCX: 00007f27c218e969
[  990.869897][T17884] RDX: 0000000000040040 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  990.869916][T17884] RBP: 00007f27c2210ab1 R08: 0000000000000000 R09: 0000000000000000
[  990.869933][T17884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  990.869951][T17884] R13: 0000000000000000 R14: 00007f27c23b5fa0 R15: 00007ffc4c7cd8f8
[  990.869987][T17884]  </TASK>
[  991.622493][T17704] 8021q: adding VLAN 0 to HW filter on device batadv0
[  991.824129][T17704] veth0_vlan: entered promiscuous mode
[  991.841965][T17704] veth1_vlan: entered promiscuous mode
[  991.951110][T17704] veth0_macvtap: entered promiscuous mode
[  992.047051][T17704] veth1_macvtap: entered promiscuous mode
[  992.280670][T17704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  992.320623][T17704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  992.331208][T17704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  992.343172][T17704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  992.353502][T17704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  992.364526][T17704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  992.408303][T17704] batman_adv: batadv0: Interface activated: batadv_slave_0
[  992.524773][T17704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  992.558266][T17704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  992.604320][T17704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  992.646460][T17704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  992.684218][T17704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  992.697190][T17704] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  992.712867][T17704] batman_adv: batadv0: Interface activated: batadv_slave_1
[  992.879584][T17704] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  992.894246][T17704] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  992.916053][T17704] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  992.924811][T17704] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  993.301222][T17606] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  993.329919][T17606] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  993.473788][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  993.494221][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  997.332250][T18034] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2501'.
[  997.594610][T18034] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2501'.
[  999.334749][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  999.343620][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1001.105923][T18098] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2514'.
[ 1001.136296][T18098] mac80211_hwsim hwsim26 : renamed from wlan0 (while UP)
[ 1001.225780][T18098] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2514'.
[ 1002.607607][T18127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2520'.
[ 1002.644994][T18127] netlink: 354 bytes leftover after parsing attributes in process `syz.1.2520'.
[ 1003.778159][T18148] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2525'.
[ 1003.844001][T18148] mac80211_hwsim hwsim24 : renamed from wlan0 (while UP)
[ 1004.005520][T18148] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2525'.
[ 1004.473035][T16974] Bluetooth: hci2: Malformed LE Event: 0x1b
[ 1005.270650][T18169] Invalid ELF header magic: != ELF
[ 1011.391903][T18242] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2547'.
[ 1011.416544][T18242] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2547'.
[ 1012.642711][T18261] bridge0: port 3(gretap0) entered blocking state
[ 1012.661477][T18261] bridge0: port 3(gretap0) entered disabled state
[ 1012.707701][T18261] gretap0: entered allmulticast mode
[ 1012.748467][T18261] gretap0: entered promiscuous mode
[ 1012.775807][T18261] bridge0: port 3(gretap0) entered blocking state
[ 1012.783485][T18261] bridge0: port 3(gretap0) entered forwarding state
[ 1012.969469][   T30] audit: type=1804 audit(6040628827.586:14): pid=18267 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2551" name="/newroot/34/file0" dev="tmpfs" ino=196 res=1 errno=0
[ 1013.014400][   T30] audit: type=1800 audit(6040628827.586:15): pid=18267 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2551" name="file0" dev="tmpfs" ino=196 res=0 errno=0
[ 1013.076888][   T30] audit: type=1800 audit(6040628827.586:16): pid=18267 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2551" name="file0" dev="tmpfs" ino=196 res=0 errno=0
[ 1015.882315][   T30] audit: type=1804 audit(6040628830.496:17): pid=18321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2564" name="/newroot/41/file0" dev="tmpfs" ino=230 res=1 errno=0
[ 1015.973317][   T30] audit: type=1800 audit(6040628830.496:18): pid=18321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2564" name="file0" dev="tmpfs" ino=230 res=0 errno=0
[ 1016.048580][   T30] audit: type=1800 audit(6040628830.496:19): pid=18321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2564" name="file0" dev="tmpfs" ino=230 res=0 errno=0
[ 1019.502490][T18366] FAULT_INJECTION: forcing a failure.
[ 1019.502490][T18366] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1019.589528][T18366] CPU: 1 UID: 0 PID: 18366 Comm: syz.0.2573 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1019.589577][T18366] Tainted: [U]=USER
[ 1019.589587][T18366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1019.589604][T18366] Call Trace:
[ 1019.589614][T18366]  <TASK>
[ 1019.589625][T18366]  dump_stack_lvl+0x16c/0x1f0
[ 1019.589685][T18366]  should_fail_ex+0x512/0x640
[ 1019.589735][T18366]  _copy_from_user+0x2e/0xd0
[ 1019.589781][T18366]  copy_msghdr_from_user+0x98/0x160
[ 1019.589829][T18366]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1019.589884][T18366]  ? kfree+0x252/0x4d0
[ 1019.589926][T18366]  ? __pfx__kstrtoull+0x10/0x10
[ 1019.589965][T18366]  ___sys_sendmsg+0xfe/0x1d0
[ 1019.589995][T18366]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1019.590076][T18366]  ? __pfx___might_resched+0x10/0x10
[ 1019.590117][T18366]  __sys_sendmmsg+0x200/0x420
[ 1019.590150][T18366]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1019.590191][T18366]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1019.590245][T18366]  ? fput+0x70/0xf0
[ 1019.590280][T18366]  ? ksys_write+0x1b9/0x240
[ 1019.590306][T18366]  ? __pfx_ksys_write+0x10/0x10
[ 1019.590331][T18366]  ? rcu_is_watching+0x12/0xc0
[ 1019.590366][T18366]  __x64_sys_sendmmsg+0x9c/0x100
[ 1019.590392][T18366]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1019.590434][T18366]  do_syscall_64+0xcd/0x230
[ 1019.590473][T18366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1019.590503][T18366] RIP: 0033:0x7f7a7658e969
[ 1019.590527][T18366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1019.590556][T18366] RSP: 002b:00007f7a77489038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1019.590584][T18366] RAX: ffffffffffffffda RBX: 00007f7a767b5fa0 RCX: 00007f7a7658e969
[ 1019.590617][T18366] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[ 1019.590635][T18366] RBP: 00007f7a77489090 R08: 0000000000000000 R09: 0000000000000000
[ 1019.590654][T18366] R10: 00000000070000ee R11: 0000000000000246 R12: 0000000000000002
[ 1019.590672][T18366] R13: 0000000000000000 R14: 00007f7a767b5fa0 R15: 00007ffc6507f288
[ 1019.590709][T18366]  </TASK>
[ 1026.438970][T18461] FAULT_INJECTION: forcing a failure.
[ 1026.438970][T18461] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1026.476289][T18461] CPU: 1 UID: 0 PID: 18461 Comm: syz.1.2595 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1026.476334][T18461] Tainted: [U]=USER
[ 1026.476342][T18461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1026.476355][T18461] Call Trace:
[ 1026.476363][T18461]  <TASK>
[ 1026.476371][T18461]  dump_stack_lvl+0x16c/0x1f0
[ 1026.476403][T18461]  should_fail_ex+0x512/0x640
[ 1026.476437][T18461]  should_fail_alloc_page+0xe7/0x130
[ 1026.476465][T18461]  prepare_alloc_pages+0x3c2/0x610
[ 1026.476496][T18461]  ? rcu_is_watching+0x12/0xc0
[ 1026.476519][T18461]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1026.476542][T18461]  ? __kernel_text_address+0xd/0x40
[ 1026.476582][T18461]  ? unwind_get_return_address+0x59/0xa0
[ 1026.476608][T18461]  ? arch_stack_walk+0xa6/0x100
[ 1026.476640][T18461]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1026.476665][T18461]  ? stack_trace_save+0x8e/0xc0
[ 1026.476686][T18461]  ? __pfx_stack_trace_save+0x10/0x10
[ 1026.476706][T18461]  ? stack_depot_save_flags+0x28/0xa50
[ 1026.476736][T18461]  ? find_held_lock+0x2b/0x80
[ 1026.476759][T18461]  ? kasan_save_stack+0x42/0x60
[ 1026.476784][T18461]  ? __lock_acquire+0xaa4/0x1ba0
[ 1026.476809][T18461]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1026.476840][T18461]  ? policy_nodemask+0xea/0x4e0
[ 1026.476866][T18461]  alloc_pages_mpol+0x1fb/0x550
[ 1026.476893][T18461]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1026.476916][T18461]  ? __page_table_check_ptes_set+0x1ae/0x420
[ 1026.476942][T18461]  ? find_held_lock+0x2b/0x80
[ 1026.476965][T18461]  alloc_pages_noprof+0x131/0x390
[ 1026.476990][T18461]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1026.477010][T18461]  get_free_pages_noprof+0xc/0x40
[ 1026.477037][T18461]  kasan_populate_vmalloc_pte+0x2d/0x160
[ 1026.477058][T18461]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1026.477079][T18461]  __apply_to_page_range+0x617/0xd60
[ 1026.477114][T18461]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1026.477138][T18461]  ? __pfx___apply_to_page_range+0x10/0x10
[ 1026.477171][T18461]  ? alloc_vmap_area+0x872/0x2970
[ 1026.477204][T18461]  alloc_vmap_area+0x919/0x2970
[ 1026.477243][T18461]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1026.477278][T18461]  __get_vm_area_node+0x1a7/0x300
[ 1026.477316][T18461]  __vmalloc_node_range_noprof+0x277/0x1540
[ 1026.477350][T18461]  ? sock_hash_alloc+0x336/0x510
[ 1026.477381][T18461]  ? sock_hash_alloc+0x336/0x510
[ 1026.477407][T18461]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1026.477442][T18461]  ? rcu_is_watching+0x12/0xc0
[ 1026.477460][T18461]  ? trace_kmalloc+0x2b/0xd0
[ 1026.477486][T18461]  ? __kmalloc_node_noprof+0x23b/0x500
[ 1026.477509][T18461]  ? trace_cap_capable+0x18d/0x200
[ 1026.477544][T18461]  ? sock_hash_alloc+0x336/0x510
[ 1026.477572][T18461]  __bpf_map_area_alloc+0xeb/0x190
[ 1026.477605][T18461]  ? sock_hash_alloc+0x336/0x510
[ 1026.477627][T18461]  sock_hash_alloc+0x336/0x510
[ 1026.477653][T18461]  map_create+0x58f/0x1db0
[ 1026.477690][T18461]  ? __pfx_map_create+0x10/0x10
[ 1026.477715][T18461]  ? __might_fault+0xe3/0x190
[ 1026.477737][T18461]  ? __might_fault+0xe3/0x190
[ 1026.477758][T18461]  ? __might_fault+0x13b/0x190
[ 1026.477791][T18461]  __sys_bpf+0x47cc/0x4d80
[ 1026.477824][T18461]  ? __pfx___sys_bpf+0x10/0x10
[ 1026.477854][T18461]  ? ksys_write+0x190/0x240
[ 1026.477897][T18461]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1026.477943][T18461]  ? fput+0x70/0xf0
[ 1026.477969][T18461]  ? ksys_write+0x1b9/0x240
[ 1026.477989][T18461]  ? __pfx_ksys_write+0x10/0x10
[ 1026.478009][T18461]  ? rcu_is_watching+0x12/0xc0
[ 1026.478034][T18461]  __x64_sys_bpf+0x78/0xc0
[ 1026.478066][T18461]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1026.478092][T18461]  do_syscall_64+0xcd/0x230
[ 1026.478122][T18461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1026.478146][T18461] RIP: 0033:0x7f277dd8e969
[ 1026.478164][T18461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1026.478186][T18461] RSP: 002b:00007f277bbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1026.478209][T18461] RAX: ffffffffffffffda RBX: 00007f277dfb5fa0 RCX: 00007f277dd8e969
[ 1026.478226][T18461] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[ 1026.478241][T18461] RBP: 00007f277bbf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1026.478255][T18461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1026.478269][T18461] R13: 0000000000000000 R14: 00007f277dfb5fa0 R15: 00007fff8766c838
[ 1026.478297][T18461]  </TASK>
[ 1027.103821][T18459] bridge0: port 3(gretap0) entered blocking state
[ 1027.145804][T18459] bridge0: port 3(gretap0) entered disabled state
[ 1027.152583][T18459] gretap0: entered allmulticast mode
[ 1027.160512][T18459] gretap0: entered promiscuous mode
[ 1027.166596][T18459] bridge0: port 3(gretap0) entered blocking state
[ 1027.173195][T18459] bridge0: port 3(gretap0) entered forwarding state
[ 1029.965749][T18493] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2602'.
[ 1029.994943][T18493] mac80211_hwsim hwsim20 : renamed from wlan0 (while UP)
[ 1030.055504][T18496] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2602'.
[ 1035.993942][T18546] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[ 1040.067204][T18587] FAULT_INJECTION: forcing a failure.
[ 1040.067204][T18587] name failslab, interval 1, probability 0, space 0, times 0
[ 1040.080263][T18587] CPU: 1 UID: 0 PID: 18587 Comm: syz.0.2619 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1040.080308][T18587] Tainted: [U]=USER
[ 1040.080318][T18587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1040.080335][T18587] Call Trace:
[ 1040.080342][T18587]  <TASK>
[ 1040.080351][T18587]  dump_stack_lvl+0x16c/0x1f0
[ 1040.080383][T18587]  should_fail_ex+0x512/0x640
[ 1040.080412][T18587]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1040.080439][T18587]  should_failslab+0xc2/0x120
[ 1040.080464][T18587]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1040.080486][T18587]  ? __fget_files+0x204/0x3c0
[ 1040.080517][T18587]  ? create_new_namespaces+0x30/0xad0
[ 1040.080545][T18587]  create_new_namespaces+0x30/0xad0
[ 1040.080573][T18587]  __do_sys_setns+0x229/0x1910
[ 1040.080596][T18587]  ? fput+0x70/0xf0
[ 1040.080619][T18587]  ? __pfx___do_sys_setns+0x10/0x10
[ 1040.080650][T18587]  do_syscall_64+0xcd/0x230
[ 1040.080677][T18587]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1040.080699][T18587] RIP: 0033:0x7f7a7658e969
[ 1040.080715][T18587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1040.080736][T18587] RSP: 002b:00007f7a77426038 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[ 1040.080757][T18587] RAX: ffffffffffffffda RBX: 00007f7a767b6240 RCX: 00007f7a7658e969
[ 1040.080777][T18587] RDX: 0000000000000000 RSI: 0000000060020000 RDI: 000000000000000a
[ 1040.080790][T18587] RBP: 00007f7a77426090 R08: 0000000000000000 R09: 0000000000000000
[ 1040.080803][T18587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1040.080815][T18587] R13: 0000000000000000 R14: 00007f7a767b6240 R15: 00007ffc6507f288
[ 1040.080841][T18587]  </TASK>
[ 1041.178359][T18595] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2621'.
[ 1042.717559][T18612] FAULT_INJECTION: forcing a failure.
[ 1042.717559][T18612] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1042.739320][T18612] CPU: 1 UID: 0 PID: 18612 Comm: syz.1.2625 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1042.739356][T18612] Tainted: [U]=USER
[ 1042.739364][T18612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1042.739377][T18612] Call Trace:
[ 1042.739385][T18612]  <TASK>
[ 1042.739394][T18612]  dump_stack_lvl+0x16c/0x1f0
[ 1042.739425][T18612]  should_fail_ex+0x512/0x640
[ 1042.739459][T18612]  should_fail_alloc_page+0xe7/0x130
[ 1042.739488][T18612]  prepare_alloc_pages+0x3c2/0x610
[ 1042.739520][T18612]  ? rcu_is_watching+0x12/0xc0
[ 1042.739542][T18612]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1042.739566][T18612]  ? __kernel_text_address+0xd/0x40
[ 1042.739599][T18612]  ? unwind_get_return_address+0x59/0xa0
[ 1042.739623][T18612]  ? arch_stack_walk+0xa6/0x100
[ 1042.739656][T18612]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1042.739680][T18612]  ? stack_trace_save+0x8e/0xc0
[ 1042.739702][T18612]  ? __pfx_stack_trace_save+0x10/0x10
[ 1042.739722][T18612]  ? stack_depot_save_flags+0x28/0xa50
[ 1042.739752][T18612]  ? find_held_lock+0x2b/0x80
[ 1042.739775][T18612]  ? kasan_save_stack+0x42/0x60
[ 1042.739805][T18612]  ? __lock_acquire+0xaa4/0x1ba0
[ 1042.739830][T18612]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1042.739861][T18612]  ? policy_nodemask+0xea/0x4e0
[ 1042.739887][T18612]  alloc_pages_mpol+0x1fb/0x550
[ 1042.739914][T18612]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1042.739937][T18612]  ? __page_table_check_ptes_set+0x1ae/0x420
[ 1042.739962][T18612]  ? find_held_lock+0x2b/0x80
[ 1042.739985][T18612]  alloc_pages_noprof+0x131/0x390
[ 1042.740010][T18612]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1042.740030][T18612]  get_free_pages_noprof+0xc/0x40
[ 1042.740056][T18612]  kasan_populate_vmalloc_pte+0x2d/0x160
[ 1042.740077][T18612]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1042.740116][T18612]  __apply_to_page_range+0x617/0xd60
[ 1042.740153][T18612]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1042.740180][T18612]  ? __pfx___apply_to_page_range+0x10/0x10
[ 1042.740214][T18612]  ? alloc_vmap_area+0x872/0x2970
[ 1042.740250][T18612]  alloc_vmap_area+0x919/0x2970
[ 1042.740292][T18612]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1042.740330][T18612]  __get_vm_area_node+0x1a7/0x300
[ 1042.740368][T18612]  __vmalloc_node_range_noprof+0x277/0x1540
[ 1042.740405][T18612]  ? sock_hash_alloc+0x336/0x510
[ 1042.740437][T18612]  ? sock_hash_alloc+0x336/0x510
[ 1042.740465][T18612]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1042.740503][T18612]  ? rcu_is_watching+0x12/0xc0
[ 1042.740522][T18612]  ? trace_kmalloc+0x2b/0xd0
[ 1042.740549][T18612]  ? __kmalloc_node_noprof+0x23b/0x500
[ 1042.740574][T18612]  ? trace_cap_capable+0x18d/0x200
[ 1042.740611][T18612]  ? sock_hash_alloc+0x336/0x510
[ 1042.740634][T18612]  __bpf_map_area_alloc+0xeb/0x190
[ 1042.740669][T18612]  ? sock_hash_alloc+0x336/0x510
[ 1042.740693][T18612]  sock_hash_alloc+0x336/0x510
[ 1042.740721][T18612]  map_create+0x58f/0x1db0
[ 1042.740759][T18612]  ? __pfx_map_create+0x10/0x10
[ 1042.740786][T18612]  ? __might_fault+0xe3/0x190
[ 1042.740814][T18612]  ? __might_fault+0xe3/0x190
[ 1042.740837][T18612]  ? __might_fault+0x13b/0x190
[ 1042.740872][T18612]  __sys_bpf+0x47cc/0x4d80
[ 1042.740906][T18612]  ? __pfx___sys_bpf+0x10/0x10
[ 1042.740938][T18612]  ? ksys_write+0x190/0x240
[ 1042.740963][T18612]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1042.741008][T18612]  ? fput+0x70/0xf0
[ 1042.741032][T18612]  ? ksys_write+0x1b9/0x240
[ 1042.741052][T18612]  ? __pfx_ksys_write+0x10/0x10
[ 1042.741071][T18612]  ? rcu_is_watching+0x12/0xc0
[ 1042.741095][T18612]  __x64_sys_bpf+0x78/0xc0
[ 1042.741125][T18612]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1042.741151][T18612]  do_syscall_64+0xcd/0x230
[ 1042.741180][T18612]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1042.741203][T18612] RIP: 0033:0x7f277dd8e969
[ 1042.741220][T18612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1042.741243][T18612] RSP: 002b:00007f277bbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1042.741264][T18612] RAX: ffffffffffffffda RBX: 00007f277dfb5fa0 RCX: 00007f277dd8e969
[ 1042.741279][T18612] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[ 1042.741293][T18612] RBP: 00007f277bbf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1042.741307][T18612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1042.741320][T18612] R13: 0000000000000000 R14: 00007f277dfb5fa0 R15: 00007fff8766c838
[ 1042.741348][T18612]  </TASK>
[ 1043.684635][ T5837] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1043.698810][ T5837] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1043.706900][ T5837] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1043.715314][ T5837] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1043.723247][ T5837] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1044.339123][T18615] chnl_net:caif_netlink_parms(): no params data found
[ 1044.954150][T18615] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1044.971650][T18615] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1045.000118][T18615] bridge_slave_0: entered allmulticast mode
[ 1045.086451][T18615] bridge_slave_0: entered promiscuous mode
[ 1045.098867][T18615] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1045.127298][T18615] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1045.156997][T18615] bridge_slave_1: entered allmulticast mode
[ 1045.164880][T18615] bridge_slave_1: entered promiscuous mode
[ 1045.635384][T18615] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1045.649004][T18615] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1045.806550][ T5837] Bluetooth: hci3: command tx timeout
[ 1045.849719][T18615] team0: Port device team_slave_0 added
[ 1045.860731][T18615] team0: Port device team_slave_1 added
[ 1046.176435][T18615] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1046.225605][T18615] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1046.350418][T18615] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1046.364672][T18615] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1046.553216][T18615] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1046.583948][T18615] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1046.967708][T18615] hsr_slave_0: entered promiscuous mode
[ 1046.974601][T18615] hsr_slave_1: entered promiscuous mode
[ 1046.987418][T18615] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1046.996120][T18615] Cannot create hsr debugfs directory
[ 1047.886425][ T5837] Bluetooth: hci3: command tx timeout
[ 1048.874749][T18615] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1049.028373][T18615] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1049.206689][T18615] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1049.271421][T18615] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1049.966422][T16974] Bluetooth: hci3: command tx timeout
[ 1050.019394][T18615] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1050.075577][T18615] 8021q: adding VLAN 0 to HW filter on device team0
[ 1050.250210][ T2962] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1050.257464][ T2962] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1050.327666][ T2962] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1050.334836][ T2962] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1051.505081][T18615] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1051.890548][T18705] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2641'.
[ 1052.046756][ T5837] Bluetooth: hci3: command tx timeout
[ 1052.606251][ T5837] Bluetooth: hci2: command 0x0406 tx timeout
[ 1053.345421][T18615] veth0_vlan: entered promiscuous mode
[ 1053.359607][T18615] veth1_vlan: entered promiscuous mode
[ 1053.400462][T18615] veth0_macvtap: entered promiscuous mode
[ 1053.617877][T18615] veth1_macvtap: entered promiscuous mode
[ 1053.714776][T18615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1053.757355][T18615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1053.778053][T18615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1053.799268][T18615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1053.826503][T18615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1053.837337][T18615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1053.861085][T18615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1053.881917][T18615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1053.908718][T18615] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1053.971063][T18615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1053.988918][T18615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1054.006100][T18615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1054.026034][T18615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1054.046435][T18615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1054.066155][T18615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1054.090435][T18615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1054.115442][T18615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1054.141506][T18615] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1054.223567][T18615] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1054.240488][T18615] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1054.258835][T18615] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1054.268196][T18615] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1054.699408][ T2962] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1054.715155][ T2962] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1054.796211][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1054.805182][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1054.978183][T18731] FAULT_INJECTION: forcing a failure.
[ 1054.978183][T18731] name failslab, interval 1, probability 0, space 0, times 0
[ 1054.996243][T18731] CPU: 1 UID: 0 PID: 18731 Comm: syz.0.2644 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1054.996293][T18731] Tainted: [U]=USER
[ 1054.996304][T18731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1054.996323][T18731] Call Trace:
[ 1054.996334][T18731]  <TASK>
[ 1054.996346][T18731]  dump_stack_lvl+0x16c/0x1f0
[ 1054.996393][T18731]  should_fail_ex+0x512/0x640
[ 1054.996447][T18731]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 1054.996485][T18731]  should_failslab+0xc2/0x120
[ 1054.996519][T18731]  kmem_cache_alloc_noprof+0x6d/0x3b0
[ 1054.996548][T18731]  ? copy_cgroup_ns+0xa4/0x6f0
[ 1054.996573][T18731]  ? copy_fs_struct+0x49/0x340
[ 1054.996611][T18731]  copy_fs_struct+0x49/0x340
[ 1054.996648][T18731]  __do_sys_setns+0x51d/0x1910
[ 1054.996678][T18731]  ? fput+0x70/0xf0
[ 1054.996707][T18731]  ? __pfx___do_sys_setns+0x10/0x10
[ 1054.996746][T18731]  do_syscall_64+0xcd/0x230
[ 1054.996784][T18731]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1054.996813][T18731] RIP: 0033:0x7f7a7658e969
[ 1054.996834][T18731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1054.996860][T18731] RSP: 002b:00007f7a77426038 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[ 1054.996886][T18731] RAX: ffffffffffffffda RBX: 00007f7a767b6240 RCX: 00007f7a7658e969
[ 1054.996905][T18731] RDX: 0000000000000000 RSI: 0000000060020000 RDI: 000000000000000a
[ 1054.996922][T18731] RBP: 00007f7a77426090 R08: 0000000000000000 R09: 0000000000000000
[ 1054.996939][T18731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1054.996955][T18731] R13: 0000000000000000 R14: 00007f7a767b6240 R15: 00007ffc6507f288
[ 1054.996990][T18731]  </TASK>
[ 1055.768145][T18741] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2646'.
[ 1055.769687][T18744] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2626'.
[ 1055.823418][T18747] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2626'.
[ 1055.866350][T18744] mac80211_hwsim hwsim28 : renamed from wlan0 (while UP)
[ 1056.485100][T18756] FAULT_INJECTION: forcing a failure.
[ 1056.485100][T18756] name failslab, interval 1, probability 0, space 0, times 0
[ 1056.584607][T18756] CPU: 0 UID: 0 PID: 18756 Comm: syz.4.2648 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1056.584662][T18756] Tainted: [U]=USER
[ 1056.584673][T18756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1056.584693][T18756] Call Trace:
[ 1056.584704][T18756]  <TASK>
[ 1056.584716][T18756]  dump_stack_lvl+0x16c/0x1f0
[ 1056.584763][T18756]  should_fail_ex+0x512/0x640
[ 1056.584806][T18756]  ? fs_reclaim_acquire+0xae/0x150
[ 1056.584856][T18756]  ? tomoyo_open_control+0x51f/0xa30
[ 1056.584920][T18756]  should_failslab+0xc2/0x120
[ 1056.584969][T18756]  __kmalloc_noprof+0xd2/0x510
[ 1056.585009][T18756]  tomoyo_open_control+0x51f/0xa30
[ 1056.585056][T18756]  do_dentry_open+0x741/0x1c10
[ 1056.585101][T18756]  ? __pfx_tomoyo_open+0x10/0x10
[ 1056.585147][T18756]  vfs_open+0x82/0x3f0
[ 1056.585189][T18756]  path_openat+0x1e5e/0x2d40
[ 1056.585227][T18756]  ? __pfx_path_openat+0x10/0x10
[ 1056.585262][T18756]  do_filp_open+0x20b/0x470
[ 1056.585288][T18756]  ? __pfx_do_filp_open+0x10/0x10
[ 1056.585339][T18756]  ? alloc_fd+0x471/0x7d0
[ 1056.585389][T18756]  do_sys_openat2+0x11b/0x1d0
[ 1056.585432][T18756]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1056.585489][T18756]  __x64_sys_openat+0x174/0x210
[ 1056.585535][T18756]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1056.585581][T18756]  ? rcu_is_watching+0x12/0xc0
[ 1056.585624][T18756]  do_syscall_64+0xcd/0x230
[ 1056.585677][T18756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1056.585711][T18756] RIP: 0033:0x7f420bb8e969
[ 1056.585736][T18756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1056.585768][T18756] RSP: 002b:00007f420ca5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1056.585797][T18756] RAX: ffffffffffffffda RBX: 00007f420bdb5fa0 RCX: 00007f420bb8e969
[ 1056.585819][T18756] RDX: 0000000000040040 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1056.585838][T18756] RBP: 00007f420bc10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1056.585857][T18756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1056.585885][T18756] R13: 0000000000000000 R14: 00007f420bdb5fa0 R15: 00007ffe5b9f1098
[ 1056.585921][T18756]  </TASK>
[ 1058.041111][T18771] Invalid ELF header magic: != ELF
[ 1059.395003][T18797] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2657'.
[ 1059.443752][T18794] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2657'.
[ 1060.071001][T18802] can: request_module (can-proto-0) failed.
[ 1060.771183][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1060.777749][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1062.853060][ T5837] Bluetooth: hci4: command 0x0406 tx timeout
[ 1065.582457][T18861] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2667'.
[ 1066.740413][ T1152] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1066.947651][ T1152] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1067.123348][ T1152] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1067.836853][ T1152] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1068.694655][ T1152] bridge_slave_1: left allmulticast mode
[ 1068.712053][ T1152] bridge_slave_1: left promiscuous mode
[ 1068.760304][ T1152] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1068.871312][T18902] FAULT_INJECTION: forcing a failure.
[ 1068.871312][T18902] name failslab, interval 1, probability 0, space 0, times 0
[ 1068.899867][T18902] CPU: 1 UID: 0 PID: 18902 Comm: syz.0.2679 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1068.899921][T18902] Tainted: [U]=USER
[ 1068.899933][T18902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1068.899954][T18902] Call Trace:
[ 1068.899965][T18902]  <TASK>
[ 1068.899977][T18902]  dump_stack_lvl+0x16c/0x1f0
[ 1068.900026][T18902]  should_fail_ex+0x512/0x640
[ 1068.900081][T18902]  ? fs_reclaim_acquire+0xae/0x150
[ 1068.900129][T18902]  ? tomoyo_open_control+0x51f/0xa30
[ 1068.900175][T18902]  should_failslab+0xc2/0x120
[ 1068.900232][T18902]  __kmalloc_noprof+0xd2/0x510
[ 1068.900277][T18902]  tomoyo_open_control+0x51f/0xa30
[ 1068.900335][T18902]  do_dentry_open+0x741/0x1c10
[ 1068.900368][T18902]  ? __pfx_tomoyo_open+0x10/0x10
[ 1068.900417][T18902]  vfs_open+0x82/0x3f0
[ 1068.900473][T18902]  path_openat+0x1e5e/0x2d40
[ 1068.900521][T18902]  ? __pfx_path_openat+0x10/0x10
[ 1068.900564][T18902]  do_filp_open+0x20b/0x470
[ 1068.900596][T18902]  ? __pfx_do_filp_open+0x10/0x10
[ 1068.900655][T18902]  ? alloc_fd+0x471/0x7d0
[ 1068.900713][T18902]  do_sys_openat2+0x11b/0x1d0
[ 1068.900755][T18902]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1068.900814][T18902]  __x64_sys_openat+0x174/0x210
[ 1068.900857][T18902]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1068.900902][T18902]  ? rcu_is_watching+0x12/0xc0
[ 1068.900937][ T1152] bridge_slave_0: left allmulticast mode
[ 1068.900943][T18902]  do_syscall_64+0xcd/0x230
[ 1068.900987][T18902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1068.901019][T18902] RIP: 0033:0x7f7a7658e969
[ 1068.901049][T18902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1068.901089][T18902] RSP: 002b:00007f7a77489038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1068.901125][T18902] RAX: ffffffffffffffda RBX: 00007f7a767b5fa0 RCX: 00007f7a7658e969
[ 1068.901149][T18902] RDX: 0000000000040040 RSI: 0000200000000080 RDI: ffffffffffffff9c
[ 1068.901172][T18902] RBP: 00007f7a76610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1068.901194][T18902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1068.901215][T18902] R13: 0000000000000000 R14: 00007f7a767b5fa0 R15: 00007ffc6507f288
[ 1068.901259][T18902]  </TASK>
[ 1069.129807][ T1152] bridge_slave_0: left promiscuous mode
[ 1069.136032][ T1152] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1070.130323][T18920] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2680'.
[ 1070.358518][ T1152] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1070.392412][ T1152] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1070.432859][ T1152] bond0 (unregistering): Released all slaves
[ 1070.474356][T18924] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2680'.
[ 1071.407845][ T1152] hsr_slave_0: left promiscuous mode
[ 1071.435567][ T1152] hsr_slave_1: left promiscuous mode
[ 1071.462753][ T1152] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1071.482596][ T1152] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1071.494987][ T1152] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1071.535433][ T1152] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1071.614380][ T1152] veth1_macvtap: left promiscuous mode
[ 1071.630381][ T1152] veth0_macvtap: left promiscuous mode
[ 1071.647386][ T1152] veth1_vlan: left promiscuous mode
[ 1071.669565][ T1152] veth0_vlan: left promiscuous mode
[ 1071.964739][T18938] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2691'.
[ 1072.533242][T18947] can: request_module (can-proto-0) failed.
[ 1073.398006][ T1152] team0 (unregistering): Port device team_slave_1 removed
[ 1073.465288][ T1152] team0 (unregistering): Port device team_slave_0 removed
[ 1075.444445][T18990] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2693'.
[ 1075.544278][T18990] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2693'.
[ 1080.230684][T19075] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2702'.
[ 1080.335453][T19075] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2702'.
[ 1081.751783][T19096] netlink: 186 bytes leftover after parsing attributes in process `syz.0.2703'.
[ 1087.039375][T19182] FAULT_INJECTION: forcing a failure.
[ 1087.039375][T19182] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1087.069257][T19182] CPU: 1 UID: 0 PID: 19182 Comm: syz.0.2723 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1087.069309][T19182] Tainted: [U]=USER
[ 1087.069319][T19182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1087.069337][T19182] Call Trace:
[ 1087.069349][T19182]  <TASK>
[ 1087.069370][T19182]  dump_stack_lvl+0x16c/0x1f0
[ 1087.069428][T19182]  should_fail_ex+0x512/0x640
[ 1087.069475][T19182]  _copy_from_user+0x2e/0xd0
[ 1087.069520][T19182]  move_addr_to_kernel+0x65/0x170
[ 1087.069564][T19182]  __sys_connect+0xaf/0x170
[ 1087.069604][T19182]  ? __pfx___sys_connect+0x10/0x10
[ 1087.069659][T19182]  ? __pfx_ksys_write+0x10/0x10
[ 1087.069686][T19182]  ? rcu_is_watching+0x12/0xc0
[ 1087.069722][T19182]  __x64_sys_connect+0x72/0xb0
[ 1087.069760][T19182]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1087.069794][T19182]  do_syscall_64+0xcd/0x230
[ 1087.069833][T19182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.069863][T19182] RIP: 0033:0x7f7a7658e969
[ 1087.069885][T19182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1087.069914][T19182] RSP: 002b:00007f7a77489038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1087.069942][T19182] RAX: ffffffffffffffda RBX: 00007f7a767b5fa0 RCX: 00007f7a7658e969
[ 1087.069962][T19182] RDX: 0000000000000018 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1087.069981][T19182] RBP: 00007f7a77489090 R08: 0000000000000000 R09: 0000000000000000
[ 1087.069999][T19182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1087.070017][T19182] R13: 0000000000000000 R14: 00007f7a767b5fa0 R15: 00007ffc6507f288
[ 1087.070055][T19182]  </TASK>
[ 1087.419607][T19192] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2715'.
[ 1087.508523][T19192] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2715'.
[ 1089.523689][T19238] bond0: option all_slaves_active: invalid value ()
[ 1089.743427][T19239] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2720'.
[ 1090.898036][T19246] Process accounting resumed
[ 1093.651299][T19305] vivid-007: =================  START STATUS  =================
[ 1093.663388][T19306] FAULT_INJECTION: forcing a failure.
[ 1093.663388][T19306] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1093.706162][T19305] vivid-007: Generate PTS: true
[ 1093.711457][T19305] vivid-007: Generate SCR: true
[ 1093.713944][T19306] CPU: 1 UID: 0 PID: 19306 Comm: syz.0.2734 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1093.713999][T19306] Tainted: [U]=USER
[ 1093.714011][T19306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1093.714033][T19306] Call Trace:
[ 1093.714045][T19306]  <TASK>
[ 1093.714058][T19306]  dump_stack_lvl+0x16c/0x1f0
[ 1093.714107][T19306]  should_fail_ex+0x512/0x640
[ 1093.714162][T19306]  should_fail_alloc_page+0xe7/0x130
[ 1093.714209][T19306]  prepare_alloc_pages+0x3c2/0x610
[ 1093.714263][T19306]  ? rcu_is_watching+0x12/0xc0
[ 1093.714298][T19306]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1093.714338][T19306]  ? __kernel_text_address+0xd/0x40
[ 1093.714395][T19306]  ? unwind_get_return_address+0x59/0xa0
[ 1093.714437][T19306]  ? arch_stack_walk+0xa6/0x100
[ 1093.714492][T19306]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1093.714531][T19306]  ? stack_trace_save+0x8e/0xc0
[ 1093.714567][T19306]  ? __pfx_stack_trace_save+0x10/0x10
[ 1093.714600][T19306]  ? stack_depot_save_flags+0x28/0xa50
[ 1093.714647][T19306]  ? find_held_lock+0x2b/0x80
[ 1093.714686][T19306]  ? kasan_save_stack+0x42/0x60
[ 1093.714727][T19306]  ? __lock_acquire+0xaa4/0x1ba0
[ 1093.714768][T19306]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1093.714817][T19306]  ? policy_nodemask+0xea/0x4e0
[ 1093.714873][T19306]  alloc_pages_mpol+0x1fb/0x550
[ 1093.714917][T19306]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1093.714956][T19306]  ? __page_table_check_ptes_set+0x1ae/0x420
[ 1093.714999][T19306]  ? find_held_lock+0x2b/0x80
[ 1093.715038][T19306]  alloc_pages_noprof+0x131/0x390
[ 1093.715080][T19306]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1093.715114][T19306]  get_free_pages_noprof+0xc/0x40
[ 1093.715158][T19306]  kasan_populate_vmalloc_pte+0x2d/0x160
[ 1093.715194][T19306]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1093.715228][T19306]  __apply_to_page_range+0x617/0xd60
[ 1093.715287][T19306]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1093.715327][T19306]  ? __pfx___apply_to_page_range+0x10/0x10
[ 1093.715381][T19306]  ? alloc_vmap_area+0x872/0x2970
[ 1093.715438][T19306]  alloc_vmap_area+0x919/0x2970
[ 1093.715503][T19306]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1093.715563][T19306]  __get_vm_area_node+0x1a7/0x300
[ 1093.715622][T19306]  __vmalloc_node_range_noprof+0x277/0x1540
[ 1093.715678][T19306]  ? sock_hash_alloc+0x336/0x510
[ 1093.715728][T19306]  ? sock_hash_alloc+0x336/0x510
[ 1093.715774][T19306]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1093.715831][T19306]  ? rcu_is_watching+0x12/0xc0
[ 1093.715868][T19306]  ? trace_kmalloc+0x2b/0xd0
[ 1093.715912][T19306]  ? __kmalloc_node_noprof+0x23b/0x500
[ 1093.715949][T19306]  ? trace_cap_capable+0x18d/0x200
[ 1093.716007][T19306]  ? sock_hash_alloc+0x336/0x510
[ 1093.716042][T19306]  __bpf_map_area_alloc+0xeb/0x190
[ 1093.716096][T19306]  ? sock_hash_alloc+0x336/0x510
[ 1093.716134][T19306]  sock_hash_alloc+0x336/0x510
[ 1093.716178][T19306]  map_create+0x58f/0x1db0
[ 1093.716236][T19306]  ? __pfx_map_create+0x10/0x10
[ 1093.716277][T19306]  ? __might_fault+0xe3/0x190
[ 1093.716313][T19306]  ? __might_fault+0xe3/0x190
[ 1093.716347][T19306]  ? __might_fault+0x13b/0x190
[ 1093.716396][T19306]  __sys_bpf+0x47cc/0x4d80
[ 1093.716445][T19306]  ? __pfx___sys_bpf+0x10/0x10
[ 1093.716490][T19306]  ? ksys_write+0x190/0x240
[ 1093.716526][T19306]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1093.716588][T19306]  ? fput+0x70/0xf0
[ 1093.716623][T19306]  ? ksys_write+0x1b9/0x240
[ 1093.716652][T19306]  ? __pfx_ksys_write+0x10/0x10
[ 1093.716678][T19306]  ? rcu_is_watching+0x12/0xc0
[ 1093.716713][T19306]  __x64_sys_bpf+0x78/0xc0
[ 1093.716756][T19306]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1093.716793][T19306]  do_syscall_64+0xcd/0x230
[ 1093.716836][T19306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1093.716876][T19306] RIP: 0033:0x7f7a7658e969
[ 1093.716901][T19306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1093.716943][T19306] RSP: 002b:00007f7a77489038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1093.716975][T19306] RAX: ffffffffffffffda RBX: 00007f7a767b5fa0 RCX: 00007f7a7658e969
[ 1093.716997][T19306] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[ 1093.717020][T19306] RBP: 00007f7a77489090 R08: 0000000000000000 R09: 0000000000000000
[ 1093.717042][T19306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1093.717064][T19306] R13: 0000000000000000 R14: 00007f7a767b5fa0 R15: 00007ffc6507f288
[ 1093.717109][T19306]  </TASK>
[ 1093.823579][T19305] tpg source WxH: 640x360 (Y'CbCr)
[ 1094.023756][T19313] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2733'.
[ 1094.086049][T19305] tpg field: 1
[ 1094.185777][T19305] tpg crop: (0,0)/640x360
[ 1094.241013][T19305] tpg compose: (0,0)/640x360
[ 1094.245683][T19305] tpg colorspace: 8
[ 1094.318741][T19305] tpg transfer function: 0/0
[ 1094.446184][T19305] tpg Y'CbCr encoding: 0/0
[ 1094.514902][T19305] tpg quantization: 0/0
[ 1094.706251][T19305] tpg RGB range: 0/2
[ 1094.710222][T19305] vivid-007: ==================  END STATUS  ==================
[ 1095.647980][T19339] FAULT_INJECTION: forcing a failure.
[ 1095.647980][T19339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1095.702139][T19339] CPU: 0 UID: 0 PID: 19339 Comm: syz.1.2737 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1095.702191][T19339] Tainted: [U]=USER
[ 1095.702202][T19339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1095.702220][T19339] Call Trace:
[ 1095.702232][T19339]  <TASK>
[ 1095.702243][T19339]  dump_stack_lvl+0x16c/0x1f0
[ 1095.702287][T19339]  should_fail_ex+0x512/0x640
[ 1095.702339][T19339]  _copy_to_user+0x32/0xd0
[ 1095.702388][T19339]  simple_read_from_buffer+0xcb/0x170
[ 1095.702440][T19339]  proc_fail_nth_read+0x197/0x270
[ 1095.702486][T19339]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1095.702532][T19339]  ? rw_verify_area+0xcf/0x680
[ 1095.702577][T19339]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1095.702620][T19339]  vfs_read+0x1de/0xc70
[ 1095.702662][T19339]  ? __pfx___mutex_lock+0x10/0x10
[ 1095.702701][T19339]  ? __pfx_vfs_read+0x10/0x10
[ 1095.702742][T19339]  ? __fget_files+0x20e/0x3c0
[ 1095.702801][T19339]  ksys_read+0x12a/0x240
[ 1095.702830][T19339]  ? __pfx_ksys_read+0x10/0x10
[ 1095.702856][T19339]  ? rcu_is_watching+0x12/0xc0
[ 1095.702896][T19339]  do_syscall_64+0xcd/0x230
[ 1095.702935][T19339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1095.702977][T19339] RIP: 0033:0x7f277dd8d37c
[ 1095.702999][T19339] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1095.703029][T19339] RSP: 002b:00007f277bbf6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1095.703057][T19339] RAX: ffffffffffffffda RBX: 00007f277dfb5fa0 RCX: 00007f277dd8d37c
[ 1095.703077][T19339] RDX: 000000000000000f RSI: 00007f277bbf60a0 RDI: 0000000000000004
[ 1095.703096][T19339] RBP: 00007f277bbf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1095.703115][T19339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1095.703133][T19339] R13: 0000000000000000 R14: 00007f277dfb5fa0 R15: 00007fff8766c838
[ 1095.703172][T19339]  </TASK>
[ 1100.145434][T19405] FAULT_INJECTION: forcing a failure.
[ 1100.145434][T19405] name failslab, interval 1, probability 0, space 0, times 0
[ 1100.203041][T19405] CPU: 1 UID: 0 PID: 19405 Comm: syz.0.2747 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1100.203089][T19405] Tainted: [U]=USER
[ 1100.203099][T19405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1100.203122][T19405] Call Trace:
[ 1100.203133][T19405]  <TASK>
[ 1100.203143][T19405]  dump_stack_lvl+0x16c/0x1f0
[ 1100.203184][T19405]  should_fail_ex+0x512/0x640
[ 1100.203223][T19405]  ? __kmalloc_cache_noprof+0x57/0x3e0
[ 1100.203272][T19405]  should_failslab+0xc2/0x120
[ 1100.203305][T19405]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 1100.203367][T19405]  ? j1939_session_new+0x7a/0x4e0
[ 1100.203403][T19405]  j1939_session_new+0x7a/0x4e0
[ 1100.203436][T19405]  j1939_tp_send+0x1fd/0x860
[ 1100.203482][T19405]  j1939_sk_sendmsg+0xaf8/0x13d0
[ 1100.203533][T19405]  ? iovec_from_user+0xbb/0x140
[ 1100.203580][T19405]  ? __pfx_j1939_sk_sendmsg+0x10/0x10
[ 1100.203638][T19405]  ? __might_fault+0x13b/0x190
[ 1100.203681][T19405]  ____sys_sendmsg+0xa95/0xc70
[ 1100.203722][T19405]  ? copy_msghdr_from_user+0x10a/0x160
[ 1100.203770][T19405]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1100.203812][T19405]  ? kfree+0x252/0x4d0
[ 1100.203853][T19405]  ? __pfx__kstrtoull+0x10/0x10
[ 1100.203893][T19405]  ___sys_sendmsg+0x134/0x1d0
[ 1100.203924][T19405]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1100.204008][T19405]  ? __pfx___might_resched+0x10/0x10
[ 1100.204049][T19405]  __sys_sendmmsg+0x200/0x420
[ 1100.204082][T19405]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1100.204129][T19405]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1100.204195][T19405]  ? fput+0x70/0xf0
[ 1100.204226][T19405]  ? ksys_write+0x1b9/0x240
[ 1100.204251][T19405]  ? __pfx_ksys_write+0x10/0x10
[ 1100.204275][T19405]  ? rcu_is_watching+0x12/0xc0
[ 1100.204306][T19405]  __x64_sys_sendmmsg+0x9c/0x100
[ 1100.204332][T19405]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1100.204363][T19405]  do_syscall_64+0xcd/0x230
[ 1100.204400][T19405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1100.204429][T19405] RIP: 0033:0x7f7a7658e969
[ 1100.204450][T19405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1100.204477][T19405] RSP: 002b:00007f7a77489038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1100.204504][T19405] RAX: ffffffffffffffda RBX: 00007f7a767b5fa0 RCX: 00007f7a7658e969
[ 1100.204522][T19405] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[ 1100.204539][T19405] RBP: 00007f7a77489090 R08: 0000000000000000 R09: 0000000000000000
[ 1100.204556][T19405] R10: 00000000070000ee R11: 0000000000000246 R12: 0000000000000002
[ 1100.204573][T19405] R13: 0000000000000000 R14: 00007f7a767b5fa0 R15: 00007ffc6507f288
[ 1100.204609][T19405]  </TASK>
[ 1100.784105][T19414] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2749'.
[ 1100.899221][T19414] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2749'.
[ 1101.879438][T19439] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2752'.
[ 1103.813993][ T5837] Bluetooth: hci1: command 0x0406 tx timeout
[ 1103.867515][T19480] FAULT_INJECTION: forcing a failure.
[ 1103.867515][T19480] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1103.921099][T19480] CPU: 0 UID: 0 PID: 19480 Comm: syz.4.2758 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1103.921151][T19480] Tainted: [U]=USER
[ 1103.921162][T19480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1103.921181][T19480] Call Trace:
[ 1103.921192][T19480]  <TASK>
[ 1103.921205][T19480]  dump_stack_lvl+0x16c/0x1f0
[ 1103.921251][T19480]  should_fail_ex+0x512/0x640
[ 1103.921301][T19480]  _copy_from_user+0x2e/0xd0
[ 1103.921349][T19480]  __sys_bpf+0x21d/0x4d80
[ 1103.921401][T19480]  ? __pfx___sys_bpf+0x10/0x10
[ 1103.921445][T19480]  ? ksys_write+0x190/0x240
[ 1103.921481][T19480]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1103.921544][T19480]  ? fput+0x70/0xf0
[ 1103.921578][T19480]  ? ksys_write+0x1b9/0x240
[ 1103.921606][T19480]  ? __pfx_ksys_write+0x10/0x10
[ 1103.921632][T19480]  ? rcu_is_watching+0x12/0xc0
[ 1103.921667][T19480]  __x64_sys_bpf+0x78/0xc0
[ 1103.921718][T19480]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1103.921755][T19480]  do_syscall_64+0xcd/0x230
[ 1103.921794][T19480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1103.921825][T19480] RIP: 0033:0x7f420bb8e969
[ 1103.921849][T19480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1103.921877][T19480] RSP: 002b:00007f420ca5e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1103.921907][T19480] RAX: ffffffffffffffda RBX: 00007f420bdb5fa0 RCX: 00007f420bb8e969
[ 1103.921928][T19480] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[ 1103.921947][T19480] RBP: 00007f420ca5e090 R08: 0000000000000000 R09: 0000000000000000
[ 1103.921966][T19480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1103.921984][T19480] R13: 0000000000000000 R14: 00007f420bdb5fa0 R15: 00007ffe5b9f1098
[ 1103.922023][T19480]  </TASK>
[ 1105.551998][T19509] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2761'.
[ 1105.640828][T19513] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2761'.
[ 1106.114507][T19526] FAULT_INJECTION: forcing a failure.
[ 1106.114507][T19526] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1106.156327][T19526] CPU: 1 UID: 0 PID: 19526 Comm: syz.1.2771 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1106.156380][T19526] Tainted: [U]=USER
[ 1106.156391][T19526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1106.156411][T19526] Call Trace:
[ 1106.156422][T19526]  <TASK>
[ 1106.156434][T19526]  dump_stack_lvl+0x16c/0x1f0
[ 1106.156480][T19526]  should_fail_ex+0x512/0x640
[ 1106.156529][T19526]  _copy_from_user+0x2e/0xd0
[ 1106.156578][T19526]  __sys_bpf+0x21d/0x4d80
[ 1106.156627][T19526]  ? __pfx___sys_bpf+0x10/0x10
[ 1106.156670][T19526]  ? ksys_write+0x190/0x240
[ 1106.156707][T19526]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1106.156767][T19526]  ? fput+0x70/0xf0
[ 1106.156802][T19526]  ? ksys_write+0x1b9/0x240
[ 1106.156830][T19526]  ? __pfx_ksys_write+0x10/0x10
[ 1106.156857][T19526]  ? rcu_is_watching+0x12/0xc0
[ 1106.156892][T19526]  __x64_sys_bpf+0x78/0xc0
[ 1106.156934][T19526]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1106.156970][T19526]  do_syscall_64+0xcd/0x230
[ 1106.157009][T19526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1106.157049][T19526] RIP: 0033:0x7f277dd8e969
[ 1106.157075][T19526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1106.157106][T19526] RSP: 002b:00007f277bbf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1106.157136][T19526] RAX: ffffffffffffffda RBX: 00007f277dfb5fa0 RCX: 00007f277dd8e969
[ 1106.157157][T19526] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[ 1106.157190][T19526] RBP: 00007f277bbf6090 R08: 0000000000000000 R09: 0000000000000000
[ 1106.157208][T19526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1106.157225][T19526] R13: 0000000000000000 R14: 00007f277dfb5fa0 R15: 00007fff8766c838
[ 1106.157264][T19526]  </TASK>
[ 1107.219233][T19552] FAULT_INJECTION: forcing a failure.
[ 1107.219233][T19552] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1107.241456][T19552] CPU: 1 UID: 0 PID: 19552 Comm: syz.0.2766 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1107.241508][T19552] Tainted: [U]=USER
[ 1107.241518][T19552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1107.241535][T19552] Call Trace:
[ 1107.241558][T19552]  <TASK>
[ 1107.241570][T19552]  dump_stack_lvl+0x16c/0x1f0
[ 1107.241615][T19552]  should_fail_ex+0x512/0x640
[ 1107.241664][T19552]  _copy_from_user+0x2e/0xd0
[ 1107.241712][T19552]  copy_msghdr_from_user+0x98/0x160
[ 1107.241763][T19552]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1107.241820][T19552]  ? kfree+0x252/0x4d0
[ 1107.241864][T19552]  ? __pfx__kstrtoull+0x10/0x10
[ 1107.241904][T19552]  ___sys_sendmsg+0xfe/0x1d0
[ 1107.241954][T19552]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1107.242038][T19552]  ? __pfx___might_resched+0x10/0x10
[ 1107.242081][T19552]  __sys_sendmmsg+0x200/0x420
[ 1107.242125][T19552]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1107.242169][T19552]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1107.242225][T19552]  ? fput+0x70/0xf0
[ 1107.242259][T19552]  ? ksys_write+0x1b9/0x240
[ 1107.242288][T19552]  ? __pfx_ksys_write+0x10/0x10
[ 1107.242315][T19552]  ? rcu_is_watching+0x12/0xc0
[ 1107.242351][T19552]  __x64_sys_sendmmsg+0x9c/0x100
[ 1107.242381][T19552]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1107.242417][T19552]  do_syscall_64+0xcd/0x230
[ 1107.242460][T19552]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1107.242492][T19552] RIP: 0033:0x7f7a7658e969
[ 1107.242528][T19552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1107.242558][T19552] RSP: 002b:00007f7a77489038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1107.242585][T19552] RAX: ffffffffffffffda RBX: 00007f7a767b5fa0 RCX: 00007f7a7658e969
[ 1107.242606][T19552] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[ 1107.242624][T19552] RBP: 00007f7a77489090 R08: 0000000000000000 R09: 0000000000000000
[ 1107.242643][T19552] R10: 00000000070000ee R11: 0000000000000246 R12: 0000000000000002
[ 1107.242661][T19552] R13: 0000000000000000 R14: 00007f7a767b5fa0 R15: 00007ffc6507f288
[ 1107.242697][T19552]  </TASK>
[ 1110.519644][T19605] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2774'.
[ 1110.592770][T19602] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2774'.
[ 1111.897322][T19643] FAULT_INJECTION: forcing a failure.
[ 1111.897322][T19643] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1111.939843][T19643] CPU: 0 UID: 0 PID: 19643 Comm: syz.2.2784 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1111.939887][T19643] Tainted: [U]=USER
[ 1111.939896][T19643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1111.939909][T19643] Call Trace:
[ 1111.939917][T19643]  <TASK>
[ 1111.939926][T19643]  dump_stack_lvl+0x16c/0x1f0
[ 1111.939959][T19643]  should_fail_ex+0x512/0x640
[ 1111.939995][T19643]  should_fail_alloc_page+0xe7/0x130
[ 1111.940026][T19643]  prepare_alloc_pages+0x3c2/0x610
[ 1111.940060][T19643]  ? rcu_is_watching+0x12/0xc0
[ 1111.940083][T19643]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 1111.940109][T19643]  ? __kernel_text_address+0xd/0x40
[ 1111.940144][T19643]  ? unwind_get_return_address+0x59/0xa0
[ 1111.940170][T19643]  ? arch_stack_walk+0xa6/0x100
[ 1111.940204][T19643]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1111.940249][T19643]  ? stack_trace_save+0x8e/0xc0
[ 1111.940272][T19643]  ? __pfx_stack_trace_save+0x10/0x10
[ 1111.940295][T19643]  ? stack_depot_save_flags+0x28/0xa50
[ 1111.940328][T19643]  ? find_held_lock+0x2b/0x80
[ 1111.940353][T19643]  ? kasan_save_stack+0x42/0x60
[ 1111.940380][T19643]  ? __lock_acquire+0xaa4/0x1ba0
[ 1111.940407][T19643]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1111.940440][T19643]  ? policy_nodemask+0xea/0x4e0
[ 1111.940471][T19643]  alloc_pages_mpol+0x1fb/0x550
[ 1111.940500][T19643]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1111.940526][T19643]  ? __page_table_check_ptes_set+0x1ae/0x420
[ 1111.940555][T19643]  ? find_held_lock+0x2b/0x80
[ 1111.940581][T19643]  alloc_pages_noprof+0x131/0x390
[ 1111.940616][T19643]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1111.940638][T19643]  get_free_pages_noprof+0xc/0x40
[ 1111.940668][T19643]  kasan_populate_vmalloc_pte+0x2d/0x160
[ 1111.940692][T19643]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1111.940715][T19643]  __apply_to_page_range+0x617/0xd60
[ 1111.940753][T19643]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 1111.940781][T19643]  ? __pfx___apply_to_page_range+0x10/0x10
[ 1111.940817][T19643]  ? alloc_vmap_area+0x872/0x2970
[ 1111.940854][T19643]  alloc_vmap_area+0x919/0x2970
[ 1111.940899][T19643]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 1111.940939][T19643]  __get_vm_area_node+0x1a7/0x300
[ 1111.940979][T19643]  __vmalloc_node_range_noprof+0x277/0x1540
[ 1111.941016][T19643]  ? sock_hash_alloc+0x336/0x510
[ 1111.941050][T19643]  ? sock_hash_alloc+0x336/0x510
[ 1111.941079][T19643]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1111.941118][T19643]  ? rcu_is_watching+0x12/0xc0
[ 1111.941138][T19643]  ? trace_kmalloc+0x2b/0xd0
[ 1111.941167][T19643]  ? __kmalloc_node_noprof+0x23b/0x500
[ 1111.941192][T19643]  ? trace_cap_capable+0x18d/0x200
[ 1111.941231][T19643]  ? sock_hash_alloc+0x336/0x510
[ 1111.941255][T19643]  __bpf_map_area_alloc+0xeb/0x190
[ 1111.941290][T19643]  ? sock_hash_alloc+0x336/0x510
[ 1111.941316][T19643]  sock_hash_alloc+0x336/0x510
[ 1111.941345][T19643]  map_create+0x58f/0x1db0
[ 1111.941396][T19643]  ? __pfx_map_create+0x10/0x10
[ 1111.941424][T19643]  ? __might_fault+0xe3/0x190
[ 1111.941449][T19643]  ? __might_fault+0xe3/0x190
[ 1111.941472][T19643]  ? __might_fault+0x13b/0x190
[ 1111.941508][T19643]  __sys_bpf+0x47cc/0x4d80
[ 1111.941544][T19643]  ? __pfx___sys_bpf+0x10/0x10
[ 1111.941576][T19643]  ? ksys_write+0x190/0x240
[ 1111.941602][T19643]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 1111.941653][T19643]  ? fput+0x70/0xf0
[ 1111.941678][T19643]  ? ksys_write+0x1b9/0x240
[ 1111.941698][T19643]  ? __pfx_ksys_write+0x10/0x10
[ 1111.941718][T19643]  ? rcu_is_watching+0x12/0xc0
[ 1111.941743][T19643]  __x64_sys_bpf+0x78/0xc0
[ 1111.941775][T19643]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1111.941802][T19643]  do_syscall_64+0xcd/0x230
[ 1111.941832][T19643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1111.941856][T19643] RIP: 0033:0x7fc45b98e969
[ 1111.941874][T19643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1111.941898][T19643] RSP: 002b:00007fc45c76f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1111.941921][T19643] RAX: ffffffffffffffda RBX: 00007fc45bbb5fa0 RCX: 00007fc45b98e969
[ 1111.941937][T19643] RDX: 00000000000000a3 RSI: 0000200000000000 RDI: 0000000000000000
[ 1111.941952][T19643] RBP: 00007fc45c76f090 R08: 0000000000000000 R09: 0000000000000000
[ 1111.941966][T19643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1111.941980][T19643] R13: 0000000000000000 R14: 00007fc45bbb5fa0 R15: 00007ffebb672d38
[ 1111.942009][T19643]  </TASK>
[ 1113.778053][T19674] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2789'.
[ 1113.841863][T19677] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2789'.
[ 1122.210308][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1122.219107][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1170.376115][ T5837] Bluetooth: hci3: command 0x0406 tx timeout
[ 1183.656688][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1183.663067][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1245.091952][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 1245.098452][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 1263.646357][   T31] INFO: task syz-executor:5822 blocked for more than 143 seconds.
[ 1263.654236][   T31]       Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0
[ 1263.663530][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1263.672332][   T31] task:syz-executor    state:D stack:22440 pid:5822  tgid:5822  ppid:5820   task_flags:0x440100 flags:0x00000002
[ 1263.684490][   T31] Call Trace:
[ 1263.687868][   T31]  <TASK>
[ 1263.690841][   T31]  __schedule+0x116f/0x5de0
[ 1263.695426][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1263.700961][   T31]  ? __pfx___schedule+0x10/0x10
[ 1263.705985][   T31]  ? find_held_lock+0x2b/0x80
[ 1263.710714][   T31]  ? schedule+0x2d7/0x3a0
[ 1263.715105][   T31]  schedule+0xe7/0x3a0
[ 1263.719541][   T31]  io_schedule+0xbf/0x130
[ 1263.723919][   T31]  bit_wait_io+0x15/0xe0
[ 1263.729773][   T31]  __wait_on_bit+0x62/0x180
[ 1263.734337][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1263.742904][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1263.748592][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1263.754703][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1263.763209][   T31]  do_get_write_access+0x93d/0x12a0
[ 1263.768551][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1263.774722][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1263.783903][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1263.790523][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1263.799317][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1263.805059][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1263.817262][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1263.822079][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1263.828609][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1263.833870][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1263.839707][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1263.845402][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1263.850516][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1263.856057][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1263.860865][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1263.865663][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1263.871551][   T31]  generic_update_time+0xcf/0xf0
[ 1263.879021][   T31]  file_update_time+0x17d/0x1c0
[ 1263.883938][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1263.889958][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1263.895478][   T31]  do_page_mkwrite+0x171/0x380
[ 1263.902934][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1263.908852][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[ 1263.914197][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1263.921926][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1263.928475][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1263.933747][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1263.939430][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1263.944286][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1263.950262][   T31]  exc_page_fault+0x5c/0xc0
[ 1263.954824][   T31]  asm_exc_page_fault+0x26/0x30
[ 1263.960743][   T31] RIP: 0033:0x7f1eb8877dcf
[ 1263.965211][   T31] RSP: 002b:00007ffd4aa43070 EFLAGS: 00010246
[ 1263.974294][   T31] RAX: 00007f1eb6ecc000 RBX: 0000555557458ab0 RCX: 0000000000000000
[ 1263.982766][   T31] RDX: 1ffffffff04155b0 RSI: 000055555745ed58 RDI: 0000000000000001
[ 1263.991203][   T31] RBP: 00007ffd4aa43360 R08: 000055555745ed68 R09: 0000000000002ab6
[ 1263.999316][   T31] R10: 0000000000000001 R11: 00007ffd4aa43570 R12: 00007ffd4aa433c0
[ 1264.007621][   T31] R13: 0000000000000004 R14: 00007ffd4aa430e0 R15: 00007ffd4aa431b0
[ 1264.015622][   T31]  </TASK>
[ 1264.018859][   T31] INFO: task syz.4.2799:19721 blocked for more than 143 seconds.
[ 1264.026634][   T31]       Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0
[ 1264.035827][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1264.044562][   T31] task:syz.4.2799      state:D stack:26488 pid:19721 tgid:19721 ppid:18615  task_flags:0x440040 flags:0x00000004
[ 1264.056803][   T31] Call Trace:
[ 1264.060091][   T31]  <TASK>
[ 1264.063058][   T31]  __schedule+0x116f/0x5de0
[ 1264.067734][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1264.072729][   T31]  ? __pfx___schedule+0x10/0x10
[ 1264.077666][   T31]  ? find_held_lock+0x2b/0x80
[ 1264.082376][   T31]  ? schedule+0x2d7/0x3a0
[ 1264.086809][   T31]  schedule+0xe7/0x3a0
[ 1264.090928][   T31]  io_schedule+0xbf/0x130
[ 1264.095302][   T31]  bit_wait_io+0x15/0xe0
[ 1264.099644][   T31]  __wait_on_bit+0x62/0x180
[ 1264.104189][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1264.109213][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1264.114773][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1264.120871][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1264.126569][   T31]  do_get_write_access+0x93d/0x12a0
[ 1264.131818][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1264.137904][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1264.144051][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1264.149673][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1264.155204][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1264.160654][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1264.166923][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1264.171710][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1264.177452][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1264.182702][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1264.188423][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1264.194107][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1264.199132][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1264.204545][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1264.209362][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1264.214305][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1264.219430][   T31]  generic_update_time+0xcf/0xf0
[ 1264.224421][   T31]  file_update_time+0x17d/0x1c0
[ 1264.229376][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1264.234441][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1264.239963][   T31]  do_page_mkwrite+0x171/0x380
[ 1264.244760][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1264.249615][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[ 1264.254932][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1264.260135][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1264.265627][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1264.270892][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1264.276416][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1264.281214][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1264.286917][   T31]  exc_page_fault+0x5c/0xc0
[ 1264.291470][   T31]  asm_exc_page_fault+0x26/0x30
[ 1264.296417][   T31] RIP: 0033:0x7f420ba6f282
[ 1264.300861][   T31] RSP: 002b:00007ffe5b9f10f0 EFLAGS: 00010202
[ 1264.306999][   T31] RAX: 0000000000039008 RBX: 00007f420c8e5720 RCX: 0000000000000000
[ 1264.315142][   T31] RDX: 0000001b2f3e7000 RSI: 0000000000000008 RDI: 00007f420c8e5720
[ 1264.323175][   T31] RBP: 000000000000064d R08: 00007f420adfd050 R09: 00007f420bda2000
[ 1264.331189][   T31] R10: 00007f420adfd008 R11: 0000000000000012 R12: ffffffff823d8138
[ 1264.339231][   T31] R13: 00007f420bdb6118 R14: 0000000000000111 R15: fffffffffffc7000
[ 1264.347300][   T31]  ? simple_xattr_get+0x28/0x1d0
[ 1264.352288][   T31]  </TASK>
[ 1264.355309][   T31] INFO: task syz.0.2801:19732 blocked for more than 144 seconds.
[ 1264.363110][   T31]       Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0
[ 1264.372461][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1264.381234][   T31] task:syz.0.2801      state:D stack:26488 pid:19732 tgid:19732 ppid:16973  task_flags:0x440040 flags:0x00000004
[ 1264.393472][   T31] Call Trace:
[ 1264.396950][   T31]  <TASK>
[ 1264.399925][   T31]  __schedule+0x116f/0x5de0
[ 1264.404450][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1264.409646][   T31]  ? __pfx___schedule+0x10/0x10
[ 1264.414548][   T31]  ? find_held_lock+0x2b/0x80
[ 1264.419650][   T31]  ? schedule+0x2d7/0x3a0
[ 1264.424027][   T31]  schedule+0xe7/0x3a0
[ 1264.428180][   T31]  io_schedule+0xbf/0x130
[ 1264.432550][   T31]  bit_wait_io+0x15/0xe0
[ 1264.436919][   T31]  __wait_on_bit+0x62/0x180
[ 1264.441461][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1264.446605][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1264.452032][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1264.458222][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1264.463749][   T31]  do_get_write_access+0x93d/0x12a0
[ 1264.469032][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1264.475077][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1264.481305][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1264.487042][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1264.492574][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1264.498117][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1264.504175][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1264.509035][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1264.514717][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1264.520260][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1264.526059][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1264.531753][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1264.536749][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1264.542125][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1264.547369][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1264.552162][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1264.557294][   T31]  generic_update_time+0xcf/0xf0
[ 1264.562263][   T31]  file_update_time+0x17d/0x1c0
[ 1264.567236][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1264.572304][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1264.577863][   T31]  do_page_mkwrite+0x171/0x380
[ 1264.582672][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1264.587522][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[ 1264.592834][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1264.598052][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1264.603559][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1264.608886][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1264.614160][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1264.618996][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1264.624322][   T31]  exc_page_fault+0x5c/0xc0
[ 1264.628918][   T31]  asm_exc_page_fault+0x26/0x30
[ 1264.633816][   T31] RIP: 0033:0x7f7a7646eada
[ 1264.638345][   T31] RSP: 002b:00007ffc6507f310 EFLAGS: 00010202
[ 1264.644465][   T31] RAX: 0000001b309f3000 RBX: 00007f7a772e5720 RCX: 0000001b309f2ff8
[ 1264.652517][   T31] RDX: 0000001b30620220 RSI: 0000000000000008 RDI: 00007f7a772e5720
[ 1264.660554][   T31] RBP: ffffffff81f75d3b R08: 00007f7a767b6118 R09: 00007f7a767a2000
[ 1264.668611][   T31] R10: 00007f7a757fd008 R11: 000000000000001d R12: 000000000000001d
[ 1264.676680][   T31] R13: 00000000000001d6 R14: ffffffff81f758b2 R15: 0000000000000c07
[ 1264.684677][   T31]  ? folio_evictable+0x52/0x270
[ 1264.689681][   T31]  ? get_pmd_pfn+0x25b/0x8c0
[ 1264.694324][   T31]  </TASK>
[ 1264.697415][   T31] INFO: task syz.2.2802:19735 blocked for more than 144 seconds.
[ 1264.705160][   T31]       Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0
[ 1264.714670][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1264.723583][   T31] task:syz.2.2802      state:D stack:26488 pid:19735 tgid:19735 ppid:17171  task_flags:0x440040 flags:0x00000004
[ 1264.736170][   T31] Call Trace:
[ 1264.739508][   T31]  <TASK>
[ 1264.742456][   T31]  __schedule+0x116f/0x5de0
[ 1264.747140][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1264.752136][   T31]  ? __pfx___schedule+0x10/0x10
[ 1264.757097][   T31]  ? find_held_lock+0x2b/0x80
[ 1264.761824][   T31]  ? schedule+0x2d7/0x3a0
[ 1264.766387][   T31]  schedule+0xe7/0x3a0
[ 1264.770501][   T31]  io_schedule+0xbf/0x130
[ 1264.775045][   T31]  bit_wait_io+0x15/0xe0
[ 1264.779426][   T31]  __wait_on_bit+0x62/0x180
[ 1264.783970][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1264.788995][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1264.794442][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1264.800524][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1264.806126][   T31]  do_get_write_access+0x93d/0x12a0
[ 1264.811379][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1264.817456][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1264.823581][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1264.829453][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1264.834951][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1264.840401][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1264.848417][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1264.853242][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1264.859408][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1264.864667][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1264.870375][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1264.876093][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1264.881070][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1264.886525][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1264.891332][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1264.896184][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1264.901258][   T31]  generic_update_time+0xcf/0xf0
[ 1264.906280][   T31]  file_update_time+0x17d/0x1c0
[ 1264.911172][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1264.916300][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1264.921809][   T31]  do_page_mkwrite+0x171/0x380
[ 1264.926843][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1264.931930][   T31]  ? __handle_mm_fault+0x1010/0x2a40
[ 1264.937318][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1264.942473][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1264.948031][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1264.953283][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1264.958811][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1264.963598][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1264.968809][   T31]  exc_page_fault+0x5c/0xc0
[ 1264.973355][   T31]  asm_exc_page_fault+0x26/0x30
[ 1264.978276][   T31] RIP: 0033:0x7fc45b86eada
[ 1264.982720][   T31] RSP: 002b:00007ffebb672d70 EFLAGS: 00010202
[ 1264.988841][   T31] RAX: 0000001b2c411000 RBX: 00007fc45c6e5720 RCX: 0000001b2c410ff8
[ 1264.996867][   T31] RDX: 0000001b2c020220 RSI: 0000000000000008 RDI: 00007fc45c6e5720
[ 1265.004839][   T31] RBP: ffffffff820ac1bf R08: 00007fc45bbb6118 R09: 00007fc45bba2000
[ 1265.012893][   T31] R10: 00007fc45abfd008 R11: 000000000000000f R12: 000000000000000f
[ 1265.020929][   T31] R13: 0000000000000109 R14: ffffffff820aceb8 R15: 0000000000000616
[ 1265.028974][   T31]  ? walk_page_test+0x18/0x180
[ 1265.034007][   T31]  ? page_vma_mapped_walk+0x203f/0x2d10
[ 1265.039639][   T31]  </TASK>
[ 1265.042664][   T31] INFO: task syz.1.2803:19741 blocked for more than 144 seconds.
[ 1265.050421][   T31]       Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0
[ 1265.059663][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1265.068581][   T31] task:syz.1.2803      state:D stack:27560 pid:19741 tgid:19741 ppid:17704  task_flags:0x440040 flags:0x00000004
[ 1265.080725][   T31] Call Trace:
[ 1265.084033][   T31]  <TASK>
[ 1265.087089][   T31]  __schedule+0x116f/0x5de0
[ 1265.091642][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[ 1265.096691][   T31]  ? __pfx___schedule+0x10/0x10
[ 1265.101578][   T31]  ? find_held_lock+0x2b/0x80
[ 1265.106423][   T31]  ? schedule+0x2d7/0x3a0
[ 1265.110808][   T31]  schedule+0xe7/0x3a0
[ 1265.114884][   T31]  io_schedule+0xbf/0x130
[ 1265.119284][   T31]  bit_wait_io+0x15/0xe0
[ 1265.123559][   T31]  __wait_on_bit+0x62/0x180
[ 1265.128131][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[ 1265.133112][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[ 1265.138850][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[ 1265.144895][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[ 1265.150471][   T31]  do_get_write_access+0x93d/0x12a0
[ 1265.155710][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[ 1265.161805][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[ 1265.167964][   T31]  ext4_reserve_inode_write+0x1be/0x320
[ 1265.173561][   T31]  __ext4_mark_inode_dirty+0x197/0x870
[ 1265.179311][   T31]  ? trace_kmem_cache_alloc+0x28/0xc0
[ 1265.184741][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[ 1265.190780][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1265.195568][   T31]  ? trace_jbd2_handle_start+0x1a8/0x230
[ 1265.201280][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[ 1265.206551][   T31]  ? __ext4_journal_start_sb+0x195/0x690
[ 1265.212218][   T31]  ? __ext4_journal_start_sb+0x19e/0x690
[ 1265.217950][   T31]  ? ext4_dirty_inode+0xa1/0x130
[ 1265.222943][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 1265.228383][   T31]  ext4_dirty_inode+0xd9/0x130
[ 1265.233178][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1265.238306][   T31]  __mark_inode_dirty+0x1eb/0xe50
[ 1265.243388][   T31]  generic_update_time+0xcf/0xf0
[ 1265.248414][   T31]  file_update_time+0x17d/0x1c0
[ 1265.253310][   T31]  ext4_page_mkwrite+0x35e/0x1750
[ 1265.258456][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1265.263975][   T31]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1265.269533][   T31]  ? pte_alloc_one+0x2b1/0x380
[ 1265.274366][   T31]  do_page_mkwrite+0x171/0x380
[ 1265.279246][   T31]  do_pte_missing+0x29c/0x3fb0
[ 1265.284034][   T31]  ? do_raw_spin_unlock+0x172/0x230
[ 1265.289501][   T31]  ? __pmd_alloc+0x3c2/0x870
[ 1265.294139][   T31]  __handle_mm_fault+0x103d/0x2a40
[ 1265.299347][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1265.304848][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1265.310127][   T31]  ? lock_vma_under_rcu+0x47d/0x970
[ 1265.315387][   T31]  handle_mm_fault+0x3fe/0xad0
[ 1265.320231][   T31]  do_user_addr_fault+0x60c/0x1370
[ 1265.325380][   T31]  exc_page_fault+0x5c/0xc0
[ 1265.330398][   T31]  asm_exc_page_fault+0x26/0x30
[ 1265.335286][   T31] RIP: 0033:0x7f277dc6547b
[ 1265.339955][   T31] RSP: 002b:00007fff8766c9a0 EFLAGS: 00010246
[ 1265.346090][   T31] RAX: 000000000003fde8 RBX: 0000000000000000 RCX: 0000000000000000
[ 1265.354083][   T31] RDX: 0000001b2e020000 RSI: 0000000000040000 RDI: 00007f277de98d50
[ 1265.362141][   T31] RBP: 0000000000000000 R08: 000000000000000a R09: 00007fff8766c6e4
[ 1265.370173][   T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1265.378227][   T31] R13: 00000000000927c0 R14: 0000000000111092 R15: 00007fff8766cc50
[ 1265.386286][   T31]  </TASK>
[ 1265.389339][   T31] 
[ 1265.389339][   T31] Showing all locks held in the system:
[ 1265.397356][   T31] 2 locks held by kworker/u8:1/13:
[ 1265.402501][   T31]  #0: ffff8880b8439f18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[ 1265.412554][   T31]  #1: ffff8880b8423c48 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x201/0x8e0
[ 1265.424091][   T31] 1 lock held by khungtaskd/31:
[ 1265.429004][   T31]  #0: ffffffff8e3bf440 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[ 1265.438974][   T31] 6 locks held by kworker/u8:3/53:
[ 1265.444238][   T31]  #0: ffff8881412e4948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 1265.455112][   T31]  #1: ffffc90000be7d18 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 1265.467129][   T31]  #2: ffff8880357520e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[ 1265.477793][   T31]  #3: ffff888035754b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b2/0x820
[ 1265.488359][   T31]  #4: ffff888035756950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1265.498098][   T31]  #5: ffff88807a04dbf0 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x355/0x1390
[ 1265.508259][   T31] 3 locks held by syz-executor/5822:
[ 1265.513582][   T31]  #0: ffff88807b0d6d08 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1265.525143][   T31]  #1: ffff888035752518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1265.534822][   T31]  #2: ffff888035756950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1265.544796][   T31] 2 locks held by getty/16896:
[ 1265.549626][   T31]  #0: ffff888031d5f0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1265.559465][   T31]  #1: ffffc9000b42d2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[ 1265.570458][   T31] 3 locks held by syz.4.2799/19721:
[ 1265.575672][   T31]  #0: ffff88807f9b4088 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1265.585362][   T31]  #1: ffff888035752518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1265.594996][   T31]  #2: ffff888035756950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1265.604787][   T31] 3 locks held by syz.0.2801/19732:
[ 1265.610034][   T31]  #0: ffff888025dfebc8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1265.619463][   T31]  #1: ffff888035752518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1265.629180][   T31]  #2: ffff888035756950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1265.638994][   T31] 3 locks held by syz.2.2802/19735:
[ 1265.644233][   T31]  #0: ffff88801277d6c8 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1265.653960][   T31]  #1: ffff888035752518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1265.663619][   T31]  #2: ffff888035756950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1265.673276][   T31] 3 locks held by syz.1.2803/19741:
[ 1265.678558][   T31]  #0: ffff888050918088 (vm_lock){++++}-{0:0}, at: do_user_addr_fault+0x452/0x1370
[ 1265.688019][   T31]  #1: ffff888035752518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x171/0x380
[ 1265.697660][   T31]  #2: ffff888035756950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e4/0x1410
[ 1265.707373][   T31] 
[ 1265.709892][   T31] =============================================
[ 1265.709892][   T31] 
[ 1265.718540][   T31] NMI backtrace for cpu 0
[ 1265.718567][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1265.718611][   T31] Tainted: [U]=USER
[ 1265.718622][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1265.718642][   T31] Call Trace:
[ 1265.718652][   T31]  <TASK>
[ 1265.718664][   T31]  dump_stack_lvl+0x116/0x1f0
[ 1265.718708][   T31]  nmi_cpu_backtrace+0x27b/0x390
[ 1265.718759][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1265.718808][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[ 1265.718861][   T31]  watchdog+0xf70/0x12c0
[ 1265.718916][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1265.718953][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1265.718990][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1265.719027][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1265.719067][   T31]  kthread+0x3c2/0x780
[ 1265.719112][   T31]  ? __pfx_kthread+0x10/0x10
[ 1265.719150][   T31]  ? __pfx_kthread+0x10/0x10
[ 1265.719213][   T31]  ? __pfx_kthread+0x10/0x10
[ 1265.719250][   T31]  ? __pfx_kthread+0x10/0x10
[ 1265.719287][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1265.719314][   T31]  ? __pfx_kthread+0x10/0x10
[ 1265.719353][   T31]  ret_from_fork+0x45/0x80
[ 1265.719396][   T31]  ? __pfx_kthread+0x10/0x10
[ 1265.719436][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1265.719492][   T31]  </TASK>
[ 1265.719502][   T31] Sending NMI from CPU 0 to CPUs 1:
[ 1265.857378][    C1] NMI backtrace for cpu 1
[ 1265.857402][    C1] CPU: 1 UID: 0 PID: 2989 Comm: kworker/u8:11 Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1265.857438][    C1] Tainted: [U]=USER
[ 1265.857446][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1265.857462][    C1] Workqueue:  0x0 (events_unbound)
[ 1265.857498][    C1] RIP: 0010:__cpu_to_node+0x16/0x120
[ 1265.857534][    C1] Code: 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 53 48 63 df e8 12 fb 4d 00 48 83 3d 32 70 fd 0e 00 <75> 78 e8 03 fb 4d 00 48 c7 c5 d8 48 a3 93 48 83 fb 07 0f 87 db 00
[ 1265.857557][    C1] RSP: 0018:ffffc9000b207a70 EFLAGS: 00000046
[ 1265.857574][    C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 1ffff1100618a3df
[ 1265.857589][    C1] RDX: ffff888030c51e00 RSI: ffffffff816cb02e RDI: 0000000000000001
[ 1265.857604][    C1] RBP: ffff888030c51f28 R08: 0000000000000000 R09: fffffbfff210a1a2
[ 1265.857619][    C1] R10: ffffffff90850d17 R11: ffffffff9ad7cbe0 R12: 00000000ffffffff
[ 1265.857634][    C1] R13: ffff8880b853a018 R14: ffff8880b8539f00 R15: ffff8880b8539fc0
[ 1265.857650][    C1] FS:  0000000000000000(0000) GS:ffff888124aef000(0000) knlGS:0000000000000000
[ 1265.857671][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1265.857686][    C1] CR2: 00007f9d7fa0e6c0 CR3: 000000000e180000 CR4: 00000000003526f0
[ 1265.857701][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1265.857715][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1265.857729][    C1] Call Trace:
[ 1265.857737][    C1]  <TASK>
[ 1265.857745][    C1]  dequeue_entity+0xbc1/0x1450
[ 1265.857783][    C1]  ? kvm_sched_clock_read+0x11/0x20
[ 1265.857808][    C1]  ? sched_clock+0x38/0x60
[ 1265.857841][    C1]  dequeue_entities+0x33f/0x16e0
[ 1265.857883][    C1]  dequeue_task_fair+0x187/0x490
[ 1265.857920][    C1]  ? schedule+0xe7/0x3a0
[ 1265.857942][    C1]  __schedule+0x54c/0x5de0
[ 1265.857965][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1265.858040][    C1]  ? __lock_acquire+0x5ca/0x1ba0
[ 1265.858075][    C1]  ? __pfx___schedule+0x10/0x10
[ 1265.858104][    C1]  ? find_held_lock+0x2b/0x80
[ 1265.858126][    C1]  ? schedule+0x2d7/0x3a0
[ 1265.858160][    C1]  schedule+0xe7/0x3a0
[ 1265.858184][    C1]  ? worker_thread+0x28b/0xf10
[ 1265.858221][    C1]  worker_thread+0x2e5/0xf10
[ 1265.858267][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 1265.858305][    C1]  kthread+0x3c2/0x780
[ 1265.858339][    C1]  ? __pfx_kthread+0x10/0x10
[ 1265.858372][    C1]  ? __pfx_kthread+0x10/0x10
[ 1265.858405][    C1]  ? __pfx_kthread+0x10/0x10
[ 1265.858439][    C1]  ? __pfx_kthread+0x10/0x10
[ 1265.858472][    C1]  ? rcu_is_watching+0x12/0xc0
[ 1265.858512][    C1]  ? __pfx_kthread+0x10/0x10
[ 1265.858547][    C1]  ret_from_fork+0x45/0x80
[ 1265.858585][    C1]  ? __pfx_kthread+0x10/0x10
[ 1265.858619][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1265.858664][    C1]  </TASK>
[ 1265.859530][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1266.143822][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U              6.15.0-rc3-syzkaller-00244-gc3137514f1f1 #0 PREEMPT(full) 
[ 1266.157218][   T31] Tainted: [U]=USER
[ 1266.161024][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 1266.171093][   T31] Call Trace:
[ 1266.174380][   T31]  <TASK>
[ 1266.177326][   T31]  dump_stack_lvl+0x3d/0x1f0
[ 1266.181943][   T31]  panic+0x71c/0x800
[ 1266.185864][   T31]  ? __pfx_panic+0x10/0x10
[ 1266.190307][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 1266.195715][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1266.201718][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 1266.207120][   T31]  ? watchdog+0xdda/0x12c0
[ 1266.211560][   T31]  ? watchdog+0xdcd/0x12c0
[ 1266.216001][   T31]  watchdog+0xdeb/0x12c0
[ 1266.220271][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1266.224966][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1266.230186][   T31]  ? __kthread_parkme+0x19e/0x250
[ 1266.235233][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1266.239953][   T31]  kthread+0x3c2/0x780
[ 1266.244048][   T31]  ? __pfx_kthread+0x10/0x10
[ 1266.248664][   T31]  ? __pfx_kthread+0x10/0x10
[ 1266.253284][   T31]  ? __pfx_kthread+0x10/0x10
[ 1266.257908][   T31]  ? __pfx_kthread+0x10/0x10
[ 1266.262528][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1266.267305][   T31]  ? __pfx_kthread+0x10/0x10
[ 1266.271918][   T31]  ret_from_fork+0x45/0x80
[ 1266.276356][   T31]  ? __pfx_kthread+0x10/0x10
[ 1266.280972][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1266.285770][   T31]  </TASK>
[ 1266.289178][   T31] Kernel Offset: disabled
[ 1266.293531][   T31] Rebooting in 86400 seconds..