last executing test programs:

8.86170741s ago: executing program 3 (id=1039):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
write$auto(r0, 0x0, 0xfffffde9)
shutdown$auto(0x200000003, 0x2)
recvfrom$auto(0x3, 0x0, 0x8000000010, 0xfc, 0x0, 0xfffffffffffffffd)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(0xca, 0x0, 0x1ff)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x108800, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x2, 0x2)
madvise$auto(0x0, 0xffffffff97fb20a5, 0x10002)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0xb0141, 0x0)
r2 = socket(0x1f, 0x800, 0xffffff01)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0x14}}, 0x4000000)
openat$auto_dvb_dvr_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x8440, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x6482, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400, 0x73, 0xfffffffffffff2dc, r2, 0x81)
socket(0xa, 0x801, 0x84)
socket(0x15, 0x1, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_DRAIN(0xffffffffffffffff, 0x4144, 0x0)
sendmsg$auto_OVS_METER_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x44}, 0x1, 0x0, 0x0, 0x4004004}, 0x8000)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="f60f00000000000000"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
io_uring_setup$auto(0x4, 0x0)

6.83275318s ago: executing program 3 (id=1045):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0xfffffffffffffffc) (async)
r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
unshare$auto(0x40000080) (async)
setregid$auto(0x5, 0x6)
close_range$auto(0x2, 0x8, 0x0) (async)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8c00, 0x0) (async)
unshare$auto(0x40000080)
mmap$auto(0x1, 0x1, 0x84000000000df, 0x19, r1, 0x6) (async)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f00000001c0))
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\x00', @ANYRES16=0x0, @ANYBLOB="1b0025bd7000fddbdf250304000004000380"], 0x18}, 0x1, 0x0, 0x0, 0x4004040}, 0x4004800) (async)
mmap$auto(0x8, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0xa000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="56d231222dddc140e11b1f1f1b2b672db606fe6c2ba4ef51b2b69bc01e73e85533f3720afe84af451ae74f8af83f25c27bba482040a87d4407714686fcff3ee587fef61a3ace284ffdbf93ebb1dc398a7be2d0ecac4935dc89b23105e9b51e1647e9f3e88acdf89fba8ede59b8a9d9d063280a18d7c800"/141], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
mmap$auto(0x6, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002)
pwrite64$auto(0xc8, 0x0, 0x84, 0xe83) (async)
mmap$auto(0x0, 0x4020009, 0x9, 0x100000000100010, r0, 0x8000) (async)
r3 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto(r3, 0x0, 0x80000000006) (async)
signalfd$auto(r3, 0x0, 0x8) (async)
mmap$auto(0x1, 0x7ff, 0x100000000, 0x11, 0xfffffffffffffff1, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socket(0xa, 0x2, 0x0)
socket(0x2b, 0x1, 0x1) (async)
io_uring_setup$auto(0x6, 0x0) (async)
setsockopt$auto(0x3, 0x0, 0x81, 0x0, 0x338) (async)
socket(0xa, 0x801, 0x84)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x0, 0x0)

6.501587361s ago: executing program 3 (id=1047):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
ioperm$auto(0x7, 0x6, 0x2)
shutdown$auto(0x200000003, 0x2)
socket(0x2c, 0x3, 0x0)
getsid$auto(0x0)
mmap$auto(0x0, 0x20009, 0xe, 0xeb1, 0x403, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x100, 0x0)
read$auto(r0, 0x0, 0x20)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x2})
mknod$auto(0x0, 0x20e9, 0x103)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x25, 0x5, 0x0)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000003040), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, &(0x7f0000000040)={0x0, 0x0, 0x38, 0xffffff01, 0x9, 0x9, 0x80000009, 0x7, 0x6, 0x5, 0xd, 0x7e, 0x2, 0x8, 0x5, 0xf, 0xffffffffffffffff, 0x9, 0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x2]}, 0x800, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/0000:00:04.0/numa_node\x00', 0x80000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001100)=""/4105, 0x1009)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r3 = io_uring_setup$auto(0x8, &(0x7f0000000140)={0x3ff, 0x3, 0x9, 0x10001, 0xc, 0xc05, 0xffffffffffffffff, [0x7fd, 0x1001, 0x8], {0x9, 0x1, 0x6, 0x0, 0x420, 0x1001, 0x3fdc, 0x3, 0x5}, {0x2, 0x140, 0x54ed, 0x0, 0x101, 0xff, 0x7, 0xa, 0x3}})
sendmmsg$auto(r3, &(0x7f0000000400)={{&(0x7f0000000280)="6bf5ac7e8d8dc2da189b9deaa79387dfe210a2148b42d135466c8174481e078f3fdd107971b6474689b23cb594ea0705b5", 0x6, &(0x7f00000003c0)={&(0x7f00000002c0)="b6ade65b66d51e94434083ad04a6506c6cf01bb60b260caf7de94c68379af37ca034017442e22c9869cd85166dd557a6f28a605d2f3cd243983fe377f9e17e23307fb0ef5b4d457c835c11e142faec1ef1a78408fd0183f568b1b9b73b40b4f58d2e1fc334e3b9f86af52c2adea3395efcb7e5ea1c6250fb9de6ae543aa277b652a72b0866b68bb6e0fdd074b112e37bc9fa0cec44fe78b1a3f1fd19543a027191fc854f01348dcdab729ff4edc66d70d2447c5045cc6899daab07fe6e36f7f454394277fa522fea59e20e6442946cfaafba944c5b2f400f7f8ad0c82fa0c7d91256e2f8183f74caa2d348233005be3583", 0xe}, 0x10001, &(0x7f0000001a80)="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", 0x3, 0x36}, 0x2}, 0x1, 0x7fff)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24c802, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000)
socket(0x18, 0x2, 0x0)

5.671437301s ago: executing program 3 (id=1048):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
syz_clone(0xa0100000, &(0x7f0000000080)="0b80731acc362068bf8c79256e14b4e4e33bfbfb0a3f7806d4ea49c8272bc1c25f432307582f778d49815586bea4963a110017c317f480f0b71b1bc1d8208b0853c3a1832785116a562f56eb98", 0x4d, &(0x7f0000000100), &(0x7f0000000180), 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
r1 = io_uring_setup$auto(0x1, 0x0)
socket(0x29, 0x2, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
sendfile$auto(0x1, 0x3, 0x0, 0x74c)
unshare$auto(0x40000080)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa)
sendmsg$auto_NLBL_MGMT_C_ADDDEF(r1, &(0x7f00000012c0)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001280)={&(0x7f0000001240)=ANY=[@ANYBLOB='\a\x00\x00', @ANYRES16, @ANYRESDEC], 0x34}, 0x1, 0x0, 0x0, 0x24000000}, 0x8040)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x169000, 0x0)
io_uring_register$auto(0x2, 0x9, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x7, 0x0)
clone$auto(0x1ff00, 0x0, 0x0, 0x0, 0x9)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x1, 0xf, 0x0)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
read$auto(0x3, 0x0, 0x80)

5.503070583s ago: executing program 2 (id=1050):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_options\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000100), 0xa2400, 0x0)
r1 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x200002, 0x0)
open_by_handle_at$auto(r1, &(0x7f0000000280)={0x8, 0x2, '\r\x00\x00\x00\x00\x00\x00\x00'}, 0x2)
unshare$auto(0x40000080)
read$auto_tracing_iter_fops_trace(r0, &(0x7f00000001c0)=""/215, 0xd7)

4.695901187s ago: executing program 2 (id=1052):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
fsopen$auto(0x0, 0x1ff)
openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
socket(0x26, 0x80805, 0x0)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
ioperm$auto(0x4000000000080, 0xfffffffffffffffb, 0x5)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88ds\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3F\xa8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18\x84\xfc\x89\v\xea\x1b\x95\xafQ;C\\\"\x11\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2\x1f\xb6\xab\xf2\x90\x91Ar\x82\xa8.\x06\xb8\x95\xf4LG\x11T\xa4q|\\\x1c\xb6\xbbY\xbd\xcbJ\xe2\xbb\x82\x90\xe8\"\xb5\x97\x85\xed\xfc\xfaw\xf7\xfd\x99\xec5\xe5\xe1\xb2\x12\xed5\x06\xfb\xee\xa6Hs\x95\xb3 e7\x9d\x11\xaa\x02\xbct\x80\xa3\x95\xdf\xde\xd7\xd3J\xeb\xf6\xa0\xbc\x1a+\x19\x899\f\xdf\xa6a\x1fd\x94\xfd\xffz\xb7M]\xee\xf2\xfb\x8f\x85\xa2\x92;\xb7\xeb\xa0\x8apV`#BK\xa7\xafc]\x85\aJ\xbe\x9fLBCD\x9c\x89\xcf\xdaP\xb6\xb3I\xb0\xe2\xa1\xd0sdDX\xa87\x81c\xc0\x00\xeb&r\v~y\x99\xb4\xba\x18H\x00Q\'\xb5\xdb\xf0\x8e\xe7\xae\xe0\xcd\xe9\xd5yu', 0x10, 0x7)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/teql0/ifindex\x00', 0x800500, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x5, 0x8, 0x0, 0x0, 0x80000001)
r1 = gettid()
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
kill$auto(r1, 0x11)
prctl$auto(0x23, 0x5, 0x2009, 0x0, 0x0)
pread64$auto(r0, 0x0, 0x2, 0xa)
r2 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x111400, 0x0)
setsockopt$auto_SO_BUF_LOCK(r2, 0x34, 0x48, &(0x7f0000000000)='+-\'$*/(}\'\x00', 0x9)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
copy_file_range$auto(r3, &(0x7f0000000140)=0xffff, r3, 0x0, 0x21c1, 0x0)
read$auto(r2, 0x0, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)

4.012776642s ago: executing program 0 (id=1054):
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368a, 0x2, {0x100000000, 0x10000}, 0x5, 0x8, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
socket(0x2b, 0x1, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0)
r1 = socket(0x3, 0x5, 0x5)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0ro\x00', 0x2000, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/011/001\x00', 0x2, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2491c8d4", @ANYRES16=0x0, @ANYBLOB="010026bd7000080000000f0000"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd700001dcdf2503000000040006000c000180080010000400"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
pwrite64$auto(0xc8, 0x0, 0xfdef, 0x3)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mincore$auto(0x0, 0x10000, 0x0)
socket(0x10, 0x2, 0x0)
r4 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x0)
read$auto(r4, 0x0, 0x1)
write$auto(0xffffffffffffffff, 0x0, 0xe)
timer_create$auto(0x597f, 0x0, &(0x7f0000000380))
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)

3.539062584s ago: executing program 2 (id=1055):
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
signalfd4$auto(0xffffffff, &(0x7f0000000080)={0x8000}, 0x8, 0x0)
unshare$auto(0x40000080)
setgroups$auto(0xc00000000, 0xfffffffffffffffc)
setresgid$auto(0x81, 0x800000a0, 0x8)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001900), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_SMC_PNETID_DEL(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r3, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@SMC_PNETID_NAME={0x5, 0x1, '\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x8000)
sendmsg$auto_ETHTOOL_MSG_MODULE_SET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fbdbdf252300000018df0180140002f0ed2b7d93305f6d616376746170000000"], 0x2c}, 0x1, 0x0, 0x0, 0x80c1}, 0x20040000)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(r2, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xd4, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@HWSIM_ATTR_ADDR_TRANSMITTER={0xb6, 0x2, "556fa401dee44c8047518e0c7a2e9fb6f6b0efd226fae80365f2a734fb9225f6bc898f3b3163d59b31a099c669f4e8f6d5b1125b0a90eef6765b5142417193ed83c9f253cc6caadab4198380cee292be3ac31165e521b2d1bacc5627065c95e0a2eeb25af45a007cecaac46904534b41441035f2bc68537b8e109f4ad0083d1906b4258b8c57a230986b63c0adedaceda2d2d0b33d229ef189bdca8249c847e8705909ea88aaac331eb36ba77a28a0422d1d"}, @HWSIM_ATTR_REG_STRICT_REG={0x4}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0xd4}, 0x1, 0x0, 0x0, 0x20000080}, 0x20044040)
keyctl$auto(0x5, 0xffffeffffffffffe, 0x107, 0x803, 0x800000000000c)
setresuid$auto(0x2, 0x7, 0x8080)
keyctl$auto(0x3800, 0xfffffbfffffffffe, 0x2, 0x32, 0xfff)
socket(0x29, 0x4, 0x4)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x1, 0x0)
r4 = socket(0xa, 0x801, 0x106)
setsockopt$auto(r4, 0x6, 0x24, 0x0, 0x9)

3.445250394s ago: executing program 0 (id=1056):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) (async)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x10, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x40000000000f, 0x7, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x9, 0x7, 0x200000100103}) (async)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x10, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x40000000000f, 0x7, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x9, 0x7, 0x200000100103})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x2, 0x88) (async)
r0 = socket(0x2, 0x2, 0x88)
setsockopt$auto(r0, 0x0, 0x20, 0x0, 0x15) (async)
setsockopt$auto(r0, 0x0, 0x20, 0x0, 0x15)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8) (async)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
r1 = getpid()
r2 = gettid()
r3 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0)
write$auto(r3, 0x0, 0x4) (async)
write$auto(r3, 0x0, 0x4)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/afs/rootcell\x00', 0x1cb842, 0x0)
write$auto(r4, &(0x7f0000000300)='*o\xd3\xa49.\xa9\xe4\xe17\x12\xb3Z\x17I\x82\xdc\xbeiw\xc1\xd1\x8d\x9b\r\x9aR\xe7\x9f\xd8\xab\x16`f\nT\xaa\xfap \xe6\xdaV\xdeD\x8dR5\xd2\xe58\n\xff\x19+\xeb\xb3+\xf6\xc6\a\x00\x00\x00\xf1A\xa5\x95\x1fk\x1f\xff\x99gP\x9e\x88\x97]\x93\xf4\xdd<\xe7p\x0e\xd4C\xdc\x84\v\xafz\xfd\x81\xa3\xb2\xbb\xa4\xd9\xf2P\xa8\xe9\x8f\x13\xa7\x98\x85\xf8\v\aB\xfc\xfa\x14E\xb8y\x884<\xa7\xffyb\x8a\b\xbb\x1b\x13W\xe3\xf7\xd8\x83\xc9\xd7\x8c', 0x6)
rt_tgsigqueueinfo$auto(r1, r2, 0x16, &(0x7f0000000400)={@siginfo_0_0={0xfffeffff, 0x0, 0x2, @_sigpoll={0x8}}})
tgkill$auto_SIGCONT(r1, r1, 0x12)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/nbd14\x00', 0x100, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

2.893565734s ago: executing program 0 (id=1057):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x8)
mmap$auto(0x0, 0x400008, 0xe3, 0xbb72, 0x2, 0x8000)
r1 = socket(0x15, 0x2, 0x3)
mmap$auto(0x0, 0x4020009, 0xfffffffffffffff6, 0x1f, r1, 0x3)
r2 = getpid()
rt_sigqueueinfo$auto(0x0, 0x7e, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x41, 0x7e73, @_sigfault={0x0, @_perf={0xc, 0x40009, 0x9}}}})
r3 = socket(0x27, 0x80000, 0x8)
sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0xe}, 0x5}, 0x2, 0x100)
process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000200)="11de85d7ff25cf5d9f1c04e3c1ef80f992db530a293014d82850d5185b62171aae6d7a2fc098410a40e6f659f9a5c651403681c63cd61a456c30000000000000000000", 0x40000100000001}, 0x6, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
setregid$auto(0x81, 0x5)
migrate_pages$auto(0x1, 0x1, 0xfffffffffffffffe, 0xffffffffffffffff)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TCFLSH2(r5, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
ioctl$auto(r4, 0x89f2, r4)
mmap$auto(0x7, 0x400008, 0xdf, 0x9b72, 0x2, 0x2)
socket(0x21, 0x1, 0x47f)
sysfs$auto(0x2, 0x10000000000048, 0x0)
r6 = fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$auto(0x3, 0x4020aeb2, r6)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
bpf$auto(0x2, &(0x7f00000000c0)=@raw_tracepoint={0x5, r0, 0x0, 0x3}, 0x91)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
name_to_handle_at$auto(0x1010, &(0x7f00000001c0)='/\x00', &(0x7f0000000000)={0xc, 0x75c0237c, "6d962c000400003344980946"}, 0x0, 0x200)

2.147035142s ago: executing program 0 (id=1058):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x1, 0x100)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f00000003c0)="80e08ca631b90e5e9a4997a0a2f075172c2529fea5d2b4b06119e7cc493e3c68f5e114fe74f6ec1d4e94daec10b05cb281b0922bcba475cea32ccf0eda11471e9c15d15fbcc3bebe4bc005053b7459c5ecbae956634304a2b3c20d024a0df7b468626e493968743cc5ed35ab320b6ffd85d87720f947e83e96c03fca21e0c585095bf40d010cd4fba6c371232889fd43cb084df47b56ff93efb0f707d371175d4dcd1c13802f7a4550e4ef765842dadd3e2bc2df160655b78b5a9438f2f8be466e2b3782469b16c9310ff6307403770f5c225820d582ab93c7ca472e799fe10d61abbfc87ea3846f44cb04eef9ed7c16b2483588")
mmap$auto(0x0, 0x2220004, 0x8, 0xebf, 0xfffffffffffffffb, 0x7ffc)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = waitid$auto(0x0, 0x5c5, 0x0, 0x4, 0x0)
setregid$auto(0x0, 0x3)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
sendmsg$auto_NL80211_CMD_SET_CQM(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=ANY=[@ANYBLOB="00000000d0083b11c859073a815149285368c11b0f4fdd190c1dbc101f4bfa876a588dbaaeeb850ba90266d04cab7ba669a1ca2eb576e1b514ee2d842651f66eea2e013cd1b33bfe4e859e185b16de72321b18575ff11a359a3f35e9d59a05033c1395cb68c95a18e9c3a011af7a9823429ef7f36d2a62209b7d2f06f074bc48b8f37bcf5ee396848ceb42ff46450e80d249b7be32e1affe2f7725af4d897f93792ff8fe30d3b734fb", @ANYRES16=r4, @ANYBLOB="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"], 0x104}, 0x1, 0x0, 0x0, 0x1}, 0x40800)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b)
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x6, 0x7, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002)
setsockopt$auto_SO_MAX_PACING_RATE(r0, 0x6, 0x2f, &(0x7f0000000300)='\xba\xf13\xa4o\xd3\xd2\xe0v\x95\xe6mAk\x90\xa1\xfd\xb0\xe1\xa6W\x85py\x91Q\xe7\xc9\x05\xce\x17\xe6<0e\x12\xe8/\x16\xf0\xd2\xe5\x06[\vFb\xd6\xc0sTv*\xa6\x97\xb4\xcf\xc8d^\xb1\x7f\xeeH\xd2\xa8\xeb\xad\xdfw\xad\x1e\xcf\x13\xd2\xbbh\xb7\xb1\xa2\x14\xbe=Q\xf3\xd6\x85\x8as\x04\x93\x8c3\n\x9e\xcc\xbdP\x89\xee\xa8\x82\x03\x97\xe6^\x85#\x11T\x8dE\xba\nF\xc2\xe2\x06k\xf0~\xa3\x86h\xc2\xb8\xcfk\x1f', 0x4)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r6 = getpgid(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x3, 0x6)
socket(0x2, 0x5, 0xfffffffe)
getsockopt$auto(0x4, 0x1, 0x4, 0xfffffffffffffffc, 0x0)
rt_tgsigqueueinfo$auto(r2, r6, 0x8, &(0x7f0000000100)={@_si_pad})

1.735356907s ago: executing program 2 (id=1060):
ioperm$auto(0x3, 0xe, 0x2000000000000149)
ioctl$auto_XFS_IOC_COMMIT_RANGE(0xffffffffffffffff, 0x40585883, &(0x7f0000000000)={<r0=>0xffffffffffffffff, 0x0, 0x7, 0xb0, 0x7f, 0x4, [0xff, 0x3, 0x2, 0x9, 0x100, 0x7]})
mmap$auto(0xfffffffffffffffc, 0x7, 0x1, 0xeb1, r0, 0x8004)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x5, 0x0)
listen$auto(0x3, 0x83)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0x21, 0x7, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0xa, 0x801, 0x84)
io_uring_setup$auto(0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00'})
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
getdents64$auto(r2, 0x0, 0x400)
r3 = openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000740)='/sys/kernel/tracing/error_log\x00', 0x101480, 0x0)
pread64$auto(r3, &(0x7f0000000780)='ethtool\x00', 0x89f, 0x65)
setsockopt$auto(0x3, 0x10000000084, 0x18, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x106)

1.709753025s ago: executing program 1 (id=1061):
r0 = socketcall$auto_SYS_SENDTO(0xb, &(0x7f0000000140)=0x2)
ioctl$auto_OTPERASE(r0, 0x400c4d19, &(0x7f0000000180)={0xffff, 0x3, 0xfff00000})
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r2 = prctl$auto(0x1000000003b, 0x1, 0x9, 0x5, 0x3)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
truncate$auto(&(0x7f00000000c0)='./file0\x00', 0x0)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
io_uring_setup$auto(0x1, &(0x7f0000000040)={0x3, 0x2, 0x8, 0x0, 0xa9ef, 0x3, r2, [0x4, 0x2, 0x5], {0x1, 0x6, 0x80000001, 0x7fffffff, 0x9, 0xfffffffb, 0x280a, 0xe, 0x7}, {0x9, 0x8, 0xfff, 0x0, 0x6, 0x1, 0x7, 0x2, 0xc}})
ioctl$auto_SNDCTL_DSP_RESET(r1, 0x5000, 0x0)
open$auto(&(0x7f0000000100)='./file0\x00', 0x5, 0xfff)

1.474550126s ago: executing program 2 (id=1062):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = getsockopt$auto(0xffffffffffffffff, 0x2, 0x1000001, 0x0, &(0x7f0000000080)=0x3)
mlock$auto(0xfbe8, 0x1000000000000004)
madvise$auto(0xff, 0x9, 0xf)
waitid$auto_P_PID(0x1, r0, &(0x7f00000000c0)={@_si_pad}, 0x101, 0x0)

1.445935125s ago: executing program 3 (id=1063):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f00000003c0))
setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b)
r0 = syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x6, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000002)
setsockopt$auto_SO_MAX_PACING_RATE(0xffffffffffffffff, 0x3, 0x2f, &(0x7f0000000300)='\xba\xf13\xa4o\xd3\xd2\xe0v\x95\xe6mAk\x90\xa1\xfd\xb0\xe1\xa6W\x85py\x91Q\xe7\xc9\x05\xce\x17\xe6<0e\x12\xe8/\x16\xf0\xd2\xe5\x06[\vFb\xd6\xc0sTv*\xa6\x97\xb4\xcf\xc8d^\xb1\x7f\xeeH\xd2\xa8\xeb\xad\xdfw\xad\x1e\xcf\x13\xd2\xbbh\xb7\xb1\xa2\x14\xbe=Q\xf3\xd6\x85\x8as\x04\x93\x8c3\n\x9e\xcc\xbdP\x89\xee\xa8\x82\x03\x97\xe6^\x85#\x11T\x8dE\xba\nF\xc2\xe2\x06k\xf0~\xa3\x86h\xc2\xb8\xcfk\x1f', 0x4)
ioctl$auto_MON_IOCQ_RING_SIZE(0xffffffffffffffff, 0x9205, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x11, 0x80003, 0x300)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1040, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x401, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r1 = pidfd_open$auto(0x0, 0x0)
setns(r1, 0x20000000)
r2 = getpgid(0x0)
socket(0x2, 0x1, 0x0)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, r2, 0x8, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', 0x0)
ptrace$auto(0x4206, r0, 0x0, 0x5)

1.362912116s ago: executing program 0 (id=1064):
mmap$auto(0x20000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) (async)
ppoll$auto(0x0, 0x6, 0x0, 0x0, 0x8) (async)
r0 = socket(0x21, 0x4, 0x8000005) (async)
r1 = socket(0x2a, 0x2, 0x1)
connect$auto(r1, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0xfffffffe}, 0x55) (async)
r2 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
read$auto(r2, 0x0, 0x0) (async)
close_range$auto(0x2, r0, 0x0) (async)
sysfs$auto(0x2, 0x10000000000002a, 0x0) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x6) (async)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x52f}, 0x0) (async)
unshare$auto(0x40000080) (async)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
r5 = socket(0x10, 0x4, 0x0)
mmap$auto(0x3, 0x4, 0x9, 0x12, 0x2, 0x9) (async)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000000)=""/226, 0xe2) (async)
r7 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r7, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r7, 0x40107447, &(0x7f00000000c0)={0x409, &(0x7f0000000180)={0x1585, 0xf1, 0x2}}) (async)
readv$auto(r7, &(0x7f0000000380)={0x0, 0x2}, 0x8000005f6) (async)
recvmmsg$auto(r5, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000080)={0x0, 0x803}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0) (async)
socket(0x2a, 0x6, 0x6) (async)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28) (async)
connect$auto(0x3, &(0x7f0000000100)=@nl=@proc={0x10, 0x0, 0x25dfdc03, 0x2000000}, 0x55)

1.30338433s ago: executing program 1 (id=1065):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
msgsnd$auto(0x1, 0x0, 0x80000000003, 0x8) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
mlock$auto(0xfbe8, 0x4)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/vhci_hcd.12/usb33/devnum\x00', 0x1c9282, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000038c0), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_MODIFY(r1, &(0x7f0000003980)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002300)=ANY=[@ANYBLOB="bfe6b38d9ab3ce750300004bff6bdecbb75ef8c916475c4ad4f1b86c2b7b65a0f58438daca00442da5689fc0160f6bf7", @ANYBLOB="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", @ANYBLOB="01002abd7000fedbdf25000900ba0000000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20008800) (async)
sendfile$auto(r0, r0, 0x0, 0x1) (async)
mlockall$auto(0x7)
socket(0x2, 0x80802, 0x0) (async)
mmap$auto(0x0, 0x4, 0xffb, 0x8000000008011, 0x3, 0x0) (async)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) (async)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) (async)
socket(0x22, 0x4, 0x73)
socket(0xa, 0x3, 0x35) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3) (async)
eventfd$auto(0x0) (async)
r3 = socket(0x1d, 0x3, 0x801)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x0, 0x4, 0x8201, 0x2, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4) (async)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r3, @new_prog_fd=0x4, 0x4}, 0xa3) (async)
ioctl$auto_PPPIOCSMRRU(r2, 0x4004743b, 0x0)

909.479379ms ago: executing program 1 (id=1066):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x60800, 0x0) (async, rerun: 64)
write$auto(0xc8, 0x0, 0x4040f6) (rerun: 64)
times$auto(0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x20, r2, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}, @HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r3) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0}, 0x4000) (async)
vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8)
syz_genetlink_get_family_id$auto_net_shaper(&(0x7f00000001c0), r3) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'wg0\x00', <r5=>0x0}) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
rseq$auto(&(0x7f0000000000)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) (async)
mmap$auto(0x5, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
brk$auto(0xffffffffffffff66) (async)
fanotify_init$auto(0xe, 0x800004) (async)
fsopen$auto(0x0, 0x1)
kcmp$auto(0x1, 0x1, 0x0, 0x100000004, 0x100000001) (async)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000240), 0x269200, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0xda)
gettid() (async)
sendmsg$auto_WG_CMD_SET_DEVICE(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x2c, r4, 0x32192137f4649d9, 0x70bd29, 0x25dfdbfb, {}, [@WGDEVICE_A_PEERS={0x10, 0x8, 0x0, 0x1, [@nested={0xc, 0xfc, 0x0, 0x1, [@typed={0x8, 0x22, 0x0, 0x0, @pid}]}]}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000811}, 0x4000010) (async)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000840)={{@raw=0x8, 0x7, 0xba28, 0x0, "708c58271a7985a7f5ed0dd58af8d149fc53d81fd4a7553c2ff48b48a8a57689adcc1ca6d2cbfa93b50590c9", @raw=0xd}, 0x0, @bytes=@data="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", "fa491e08108961dd5708680f1134935851612a52d629535f54f3832490fc4e7f79daef312b3df3307044713a4801d409aefe3f932f78fc311771094e769c0095f94ee6d74f2517f34a0bbbf502bf3392ac4d93bde5f733ba936c0890312cf035bc44117db9b683eedc5e02a703fc82750d8d6ebac0c3019ef8e6c1eecea33a59"})

730.514465ms ago: executing program 2 (id=1067):
shmctl$auto(0xfffffffa, 0x3d1, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/security/tomoyo/query\x00', 0x448a42, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x1}, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x1)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_MACSEC_CMD_ADD_RXSA(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x2cb8}, 0x1, 0x0, 0x0, 0x40}, 0x2404c084)
close_range$auto(0xffffffffffffffff, r1, 0x1ff)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x88)
arch_prctl$auto(0x1021, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
rseq$auto(&(0x7f0000000300)={0x6, 0x401, 0x2, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setuid$auto(0x800000000008)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone3$auto(&(0x7f0000000000)={0x200, 0x1, 0x7, 0x2, 0x1, 0x87, 0x8, 0xb, 0x9, 0x2, 0xcb6}, 0xaa)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
bpf$auto(0x0, &(0x7f0000000000)=@iter_create={0xffffffffffffffff, 0x6fc}, 0x7f)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_METER_CMD_SET(r0, 0x0, 0x4004084)
unshare$auto(0x200000100065)
ioctl$auto_VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f0000000180)={0x3})
mmap$auto(0x23, 0x40002, 0xe3, 0x9b76, 0x2, 0x6)
sysfs$auto(0xffffffff, 0x10000000000002d, 0x0)
ioperm$auto(0x800, 0x5, 0xd)
semctl$auto(0x0, 0xe3, 0x0, 0x5)

386.385902ms ago: executing program 1 (id=1068):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400c811}, 0x800)
r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
ioctl$auto_I2C_RDWR(r0, 0x707, &(0x7f0000000380)="4f89c17eaf789d39328d50cfa0fdaf5dfc32fac23800df3f4be39df02947b7a610b572bd7db8f78452951896e36ad430cbbf00ce80492d7352a6a325d9714d474f404cdb41de720cb0c62b79dca7f2abccbecc81ba53d4951d5fe89c4e09527374fa1dc81af0a9339297cae28834484ca54bb7bfcf2d210d00a0c187aac54639e215fdb6a1943dc34da277ab84f4a37c07d6821e76c53a3908f5ca7853ee0dbd3cef92aebdb78908ab37587ef448f1bc6766074176384597ac045fdab46bf07c992a9abaae0b0ffec290658e2f759c462040f2776feb782f80cfea4eed6ebd80ce1b73f592c14d9f0030a7a6c99ced8f6e15acb429e7ca5fd945")
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x400003, 0x7, 0x0, 0x5, 0x3, 0x2000000000010006, 0x0, 0x7, 0x5, 0x2, 0x7, 0xaf, 0x9, 0x80000000002, 0x3, 0x105, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0x1b16, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x77, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc06f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x107, 0x6, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x80000000000]}, 0x1fe, 0x81)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='-\x00', @ANYBLOB=']'], 0x1ac}}, 0x40000)
timer_delete$auto(0x5)
r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0c\x00', 0x200, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_UNLINK2(r1, 0x4161, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

273.485527ms ago: executing program 0 (id=1069):
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24c802, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(r1, 0xa, r0) (async)
ioctl$auto(r1, 0xa, r0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0)
mmap$auto(0xbb08, 0x7fff, 0x3, 0xeb4, r2, 0xdc0c) (async)
mmap$auto(0xbb08, 0x7fff, 0x3, 0xeb4, r2, 0xdc0c)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000) (async)
mmap$auto(0x0, 0x70, 0xdf, 0x9b72, 0x2, 0x80000000008000)
unshare$auto(0x40000080)
mmap$auto(0x3, 0x202000a, 0x1, 0xeb1, r0, 0x7fff)
mknod$auto(&(0x7f0000000080)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x1081, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x17, 0x2, 0x7fff)
r3 = socket(0x18, 0x1, 0x5)
io_uring_setup$auto(0x1, 0x0)
r4 = getsockopt$auto(r3, 0x0, 0x33, 0xfffffffffffffffe, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
uname$auto(0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/block/nbd9/queue/scheduler\x00', 0x48a22, 0x0)
write$auto(r5, 0x0, 0x3) (async)
write$auto(r5, 0x0, 0x3)
r6 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/ieee80211/phy3/netdev:wlan0/ap_power_level\x00', 0x802, 0x0)
r7 = prctl$auto_PR_SME_SET_VL(0x3f, 0x9, 0x0, 0x5, 0x8b00)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r7, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="5e48fedc", @ANYRES16=0x0, @ANYRES8=r4], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4048041) (async)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r7, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="5e48fedc", @ANYRES16=0x0, @ANYRES8=r4], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4048041)
write$auto(r6, 0x0, 0x30) (async)
write$auto(r6, 0x0, 0x30)
clock_gettime$auto(0x80000000, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000006c0)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_\x00', 0x6c000, 0x2)
acct$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d@\x85\x059\xb0\x15kD\x8b\n\xd8$\x9c\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x027B3/\x82\xda\x8c\xa5\xa9T\xden\xb5\xc2\x05\xad\x9c\xda\n.S\xcb\x10\x9d\xbc\x9a>\xd0\xb9\xae\x85\t\xc2\xd1\x16M\xef\x90\xcc\x19%s\x93\xa2\x9a\x06\x95\xe3\xa8C\xea\x9e\x0e\x82`\xe4\x0eZ\xac\xab_\xbd\xf3\x12\x1a\x9f\xeb{\xe3\x9d\xb6\x83H\x04\x1a\x7f\xc2\x178\xd1%\'\xd8D\xf9\xc9\xfe\x89\xa6\xdbR\xe3y\x9e\xe8:\xd8\x91\xe67t') (async)
acct$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d@\x85\x059\xb0\x15kD\x8b\n\xd8$\x9c\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x027B3/\x82\xda\x8c\xa5\xa9T\xden\xb5\xc2\x05\xad\x9c\xda\n.S\xcb\x10\x9d\xbc\x9a>\xd0\xb9\xae\x85\t\xc2\xd1\x16M\xef\x90\xcc\x19%s\x93\xa2\x9a\x06\x95\xe3\xa8C\xea\x9e\x0e\x82`\xe4\x0eZ\xac\xab_\xbd\xf3\x12\x1a\x9f\xeb{\xe3\x9d\xb6\x83H\x04\x1a\x7f\xc2\x178\xd1%\'\xd8D\xf9\xc9\xfe\x89\xa6\xdbR\xe3y\x9e\xe8:\xd8\x91\xe67t')
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000340)=""/152, 0xffffffffffffffb4)
timer_create$auto(0xfffffffc, 0x0, 0x0)

174.631507ms ago: executing program 1 (id=1070):
r0 = socket(0xa, 0x801, 0x84)
setsockopt$auto(r0, 0x10000000084, 0x0, 0x0, 0x10)
mmap$auto(0xffffffffffffffff, 0xa04006, 0x2, 0x17, r0, 0x300000040000)
sysfs$auto(0x2, 0x2b, 0x0)
r1 = fsopen$auto(0x0, 0x1)
sysfs$auto(0x1df, 0x0, 0x70)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0)

10.065995ms ago: executing program 3 (id=1071):
r0 = socket(0x2, 0x2, 0x0)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x1, 0x8000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x2e, 0x0, 0x9)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x5, 0x4, 0x7, 0x16, r0, 0x80000001)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000040), r1)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x14, r2, 0x1, 0x70bd2b, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/i8042/serio1/firmware_id\x00', 0x800, 0x0)
read$auto(r3, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.11/usb31/31-0:1.0/bInterfaceNumber\x00', 0x8)

0s ago: executing program 1 (id=1072):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/nbd12/sched/batching\x00', 0x143642, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
r1 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/dvb_usb_mxl111sf/parameters/rfswitch\x00', 0xa001, 0x0)
write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
open_by_handle_at$auto(r1, &(0x7f0000000040)={0x8, 0x2, "0200000000000000"}, 0x2)
sendfile$auto(r0, r0, 0x0, 0x2)
r3 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0xb3)
read$auto(r3, 0x0, 0x1)

kernel console output (not intermixed with test programs):

a.0+0x211/0x6b0
[  121.737718][ T6432]  ? lockdep_hardirqs_on+0x7c/0x110
[  121.737748][ T6432]  snd_pcm_oss_poll+0x549/0xaf0
[  121.737784][ T6432]  ? __pfx_ep_ptable_queue_proc+0x10/0x10
[  121.737820][ T6432]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  121.737854][ T6432]  ? do_raw_spin_lock+0x12c/0x2b0
[  121.737879][ T6432]  ? find_held_lock+0x2b/0x80
[  121.737910][ T6432]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  121.737944][ T6432]  ep_item_poll+0x13e/0x1f0
[  121.737981][ T6432]  do_epoll_ctl+0x1db8/0x3590
[  121.738039][ T6432]  ? __pfx_do_epoll_ctl+0x10/0x10
[  121.738075][ T6432]  ? find_held_lock+0x2b/0x80
[  121.738105][ T6432]  ? __might_fault+0xe3/0x190
[  121.738134][ T6432]  ? __might_fault+0xe3/0x190
[  121.738160][ T6432]  ? __pfx_ep_ptable_queue_proc+0x10/0x10
[  121.738204][ T6432]  ? __x64_sys_epoll_ctl+0x15c/0x1e0
[  121.738240][ T6432]  __x64_sys_epoll_ctl+0x15c/0x1e0
[  121.738288][ T6432]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  121.738325][ T6432]  ? rcu_is_watching+0x12/0xc0
[  121.738364][ T6432]  do_syscall_64+0xcd/0x260
[  121.738400][ T6432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.738427][ T6432] RIP: 0033:0x7f670218d169
[  121.738450][ T6432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.738475][ T6432] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  121.738501][ T6432] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  121.738519][ T6432] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[  121.738533][ T6432] RBP: 00007f6702f61090 R08: 0000000000000000 R09: 0000000000000000
[  121.738548][ T6432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  121.738563][ T6432] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  121.738593][ T6432]  </TASK>
[  122.810645][ T6450] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.876100][ T6445] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  122.919679][ T6455] syz.3.138 uses obsolete (PF_INET,SOCK_PACKET)
[  123.738788][ T6468] netlink: 'syz.1.142': attribute type 2 has an invalid length.
[  127.506768][ T6539] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  129.908520][ T1216] Process accounting resumed
[  130.116273][ T6579] Invalid ELF header magic: != ELF
[  132.385141][ T6615] FAULT_INJECTION: forcing a failure.
[  132.385141][ T6615] name failslab, interval 1, probability 0, space 0, times 0
[  132.449496][ T6615] CPU: 0 UID: 0 PID: 6615 Comm: syz.2.179 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  132.449549][ T6615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  132.449567][ T6615] Call Trace:
[  132.449577][ T6615]  <TASK>
[  132.449590][ T6615]  dump_stack_lvl+0x16c/0x1f0
[  132.449636][ T6615]  should_fail_ex+0x512/0x640
[  132.449668][ T6615]  ? __kmalloc_noprof+0xbf/0x510
[  132.449698][ T6615]  ? __seq_open_private+0x22/0xd0
[  132.449736][ T6615]  should_failslab+0xc2/0x120
[  132.449772][ T6615]  __kmalloc_noprof+0xd2/0x510
[  132.449807][ T6615]  ? __pfx_stats_fop_open+0x10/0x10
[  132.449837][ T6615]  __seq_open_private+0x22/0xd0
[  132.449881][ T6615]  sc_common_open+0x6b/0x200
[  132.449908][ T6615]  full_proxy_open_regular+0x1b6/0x360
[  132.449944][ T6615]  do_dentry_open+0x741/0x1c10
[  132.449984][ T6615]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  132.450021][ T6615]  vfs_open+0x82/0x3f0
[  132.450066][ T6615]  path_openat+0x1e5e/0x2d40
[  132.450101][ T6615]  ? __pfx_path_openat+0x10/0x10
[  132.450134][ T6615]  do_filp_open+0x20b/0x470
[  132.450160][ T6615]  ? __pfx_do_filp_open+0x10/0x10
[  132.450205][ T6615]  ? alloc_fd+0x471/0x7d0
[  132.450256][ T6615]  do_sys_openat2+0x11b/0x1d0
[  132.450287][ T6615]  ? __pfx_do_sys_openat2+0x10/0x10
[  132.450322][ T6615]  ? __pfx___might_resched+0x10/0x10
[  132.450370][ T6615]  __x64_sys_openat+0x174/0x210
[  132.450405][ T6615]  ? __pfx___x64_sys_openat+0x10/0x10
[  132.450440][ T6615]  ? rcu_is_watching+0x12/0xc0
[  132.450484][ T6615]  do_syscall_64+0xcd/0x260
[  132.450522][ T6615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.450552][ T6615] RIP: 0033:0x7f640318d169
[  132.450576][ T6615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.450603][ T6615] RSP: 002b:00007f6404063038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  132.450631][ T6615] RAX: ffffffffffffffda RBX: 00007f64033a5fa0 RCX: 00007f640318d169
[  132.450650][ T6615] RDX: 0000000000181000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  132.450667][ T6615] RBP: 00007f640320e2a0 R08: 0000000000000000 R09: 0000000000000000
[  132.450683][ T6615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  132.450699][ T6615] R13: 0000000000000000 R14: 00007f64033a5fa0 R15: 00007fffffb2ca48
[  132.450730][ T6615]  </TASK>
[  132.754901][ T6617] Invalid ELF header magic: != ELF
[  133.327935][ T6623] Invalid ELF header magic: != ELF
[  133.630922][ T6632] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  134.495992][ T5878] Process accounting resumed
[  135.507892][ T6663] Invalid ELF header magic: != ELF
[  136.006554][ T6677] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  138.065937][ T6711] Invalid ELF header magic: != ELF
[  138.860225][ T6728] Invalid ELF header magic: != ELF
[  139.008483][ T6731] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  139.022986][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  139.037646][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  140.739954][ T6764] Invalid ELF header magic: != ELF
[  141.326166][ T5878] Process accounting resumed
[  142.324862][ T6797] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  142.951337][   T52] Process accounting resumed
[  143.347132][ T6812] Invalid ELF header magic: != ELF
[  144.525207][ T6836] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  145.473349][ T6847] syz.3.243 (6847): drop_caches: 0
[  145.481477][   T10] Process accounting resumed
[  145.982055][ T6858] Invalid ELF header magic: != ELF
[  146.677461][ T6874] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  147.884885][ T6896] FAULT_INJECTION: forcing a failure.
[  147.884885][ T6896] name failslab, interval 1, probability 0, space 0, times 0
[  147.902130][ T1216] Process accounting resumed
[  147.966783][ T6896] CPU: 1 UID: 0 PID: 6896 Comm: syz.1.257 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  147.966827][ T6896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  147.966843][ T6896] Call Trace:
[  147.966851][ T6896]  <TASK>
[  147.966861][ T6896]  dump_stack_lvl+0x16c/0x1f0
[  147.966915][ T6896]  should_fail_ex+0x512/0x640
[  147.966940][ T6896]  ? fs_reclaim_acquire+0xae/0x150
[  147.966980][ T6896]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  147.967015][ T6896]  should_failslab+0xc2/0x120
[  147.967040][ T6896]  __kmalloc_noprof+0xd2/0x510
[  147.967070][ T6896]  tomoyo_realpath_from_path+0xc2/0x6e0
[  147.967102][ T6896]  ? tomoyo_profile+0x47/0x60
[  147.967138][ T6896]  tomoyo_path_number_perm+0x245/0x580
[  147.967163][ T6896]  ? tomoyo_path_number_perm+0x237/0x580
[  147.967202][ T6896]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  147.967237][ T6896]  ? find_held_lock+0x2b/0x80
[  147.967285][ T6896]  ? find_held_lock+0x2b/0x80
[  147.967312][ T6896]  ? hook_file_ioctl_common+0x145/0x410
[  147.967339][ T6896]  ? __fget_files+0x20e/0x3c0
[  147.967362][ T6896]  security_file_ioctl+0x9b/0x240
[  147.967387][ T6896]  __x64_sys_ioctl+0xb7/0x200
[  147.967410][ T6896]  do_syscall_64+0xcd/0x260
[  147.967432][ T6896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.967449][ T6896] RIP: 0033:0x7f670218d169
[  147.967464][ T6896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.967480][ T6896] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  147.967496][ T6896] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  147.967507][ T6896] RDX: 0000000000000038 RSI: 00000000c0585605 RDI: 0000000000000003
[  147.967516][ T6896] RBP: 00007f6702f61090 R08: 0000000000000000 R09: 0000000000000000
[  147.967525][ T6896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.967534][ T6896] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  147.967550][ T6896]  </TASK>
[  147.967557][ T6896] ERROR: Out of memory at tomoyo_realpath_from_path.
[  148.784058][ T6903] Invalid ELF header magic: != ELF
[  149.920313][ T6918] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  150.718704][   T10] Process accounting resumed
[  150.838068][  T977] Process accounting resumed
[  151.334535][ T6939] Invalid ELF header magic: != ELF
[  153.839176][ T6960] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  154.714519][ T6957] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  155.165693][ T6971] Invalid ELF header magic: != ELF
[  155.215406][   T10] Process accounting resumed
[  156.575040][ T7006] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  157.364203][ T7017] Invalid ELF header magic: != ELF
[  157.765311][   T10] Process accounting resumed
[  158.509011][ T7026] netlink: 334 bytes leftover after parsing attributes in process `syz.0.295'.
[  159.452982][ T7051] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  159.967005][ T7059] Invalid ELF header magic: != ELF
[  160.328142][   T10] Process accounting resumed
[  163.616764][ T5876] Process accounting resumed
[  163.775209][ T7105] FAULT_INJECTION: forcing a failure.
[  163.775209][ T7105] name failslab, interval 1, probability 0, space 0, times 0
[  163.864527][ T7105] CPU: 0 UID: 0 PID: 7105 Comm: syz.2.319 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  163.864569][ T7105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  163.864583][ T7105] Call Trace:
[  163.864591][ T7105]  <TASK>
[  163.864602][ T7105]  dump_stack_lvl+0x16c/0x1f0
[  163.864646][ T7105]  should_fail_ex+0x512/0x640
[  163.864692][ T7105]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  163.864729][ T7105]  should_failslab+0xc2/0x120
[  163.864756][ T7105]  __kmalloc_cache_noprof+0x6a/0x3e0
[  163.864788][ T7105]  ? open_substream+0xec/0x9b0
[  163.864826][ T7105]  open_substream+0xec/0x9b0
[  163.864858][ T7105]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.864886][ T7105]  rawmidi_open_priv+0x513/0x6e0
[  163.864911][ T7105]  snd_rawmidi_open+0x4cc/0xbf0
[  163.864937][ T7105]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  163.864960][ T7105]  ? __pfx_default_wake_function+0x10/0x10
[  163.864991][ T7105]  ? kobject_get_unless_zero+0x156/0x1e0
[  163.865023][ T7105]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  163.865045][ T7105]  snd_open+0x1fe/0x450
[  163.865077][ T7105]  ? __pfx_snd_open+0x10/0x10
[  163.865107][ T7105]  chrdev_open+0x231/0x6a0
[  163.865131][ T7105]  ? __pfx_apparmor_file_open+0x10/0x10
[  163.865159][ T7105]  ? __pfx_chrdev_open+0x10/0x10
[  163.865184][ T7105]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  163.865228][ T7105]  do_dentry_open+0x741/0x1c10
[  163.865265][ T7105]  ? __pfx_chrdev_open+0x10/0x10
[  163.865293][ T7105]  vfs_open+0x82/0x3f0
[  163.865323][ T7105]  path_openat+0x1e5e/0x2d40
[  163.865353][ T7105]  ? __pfx_path_openat+0x10/0x10
[  163.865381][ T7105]  do_filp_open+0x20b/0x470
[  163.865404][ T7105]  ? __pfx_do_filp_open+0x10/0x10
[  163.865439][ T7105]  ? alloc_fd+0x471/0x7d0
[  163.865481][ T7105]  do_sys_openat2+0x11b/0x1d0
[  163.865507][ T7105]  ? __pfx_do_sys_openat2+0x10/0x10
[  163.865542][ T7105]  ? __fget_files+0x20e/0x3c0
[  163.865565][ T7105]  __x64_sys_openat+0x174/0x210
[  163.865595][ T7105]  ? __pfx___x64_sys_openat+0x10/0x10
[  163.865623][ T7105]  ? ksys_write+0x1b9/0x240
[  163.865675][ T7105]  ? rcu_is_watching+0x12/0xc0
[  163.865713][ T7105]  do_syscall_64+0xcd/0x260
[  163.865747][ T7105]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.865771][ T7105] RIP: 0033:0x7f640318d169
[  163.865794][ T7105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.865815][ T7105] RSP: 002b:00007f6404063038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  163.865841][ T7105] RAX: ffffffffffffffda RBX: 00007f64033a5fa0 RCX: 00007f640318d169
[  163.865856][ T7105] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  163.865869][ T7105] RBP: 00007f6404063090 R08: 0000000000000000 R09: 0000000000000000
[  163.865882][ T7105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.865895][ T7105] R13: 0000000000000000 R14: 00007f64033a5fa0 R15: 00007fffffb2ca48
[  163.865916][ T7105]  </TASK>
[  165.650013][ T7130] zswap: compressor  not available
[  167.397808][ T7158] FAULT_INJECTION: forcing a failure.
[  167.397808][ T7158] name failslab, interval 1, probability 0, space 0, times 0
[  167.472662][ T7158] CPU: 0 UID: 0 PID: 7158 Comm: syz.1.332 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  167.472708][ T7158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  167.472724][ T7158] Call Trace:
[  167.472733][ T7158]  <TASK>
[  167.472743][ T7158]  dump_stack_lvl+0x16c/0x1f0
[  167.472799][ T7158]  should_fail_ex+0x512/0x640
[  167.472828][ T7158]  ? __kvmalloc_node_noprof+0x122/0x600
[  167.472875][ T7158]  should_failslab+0xc2/0x120
[  167.472906][ T7158]  __kvmalloc_node_noprof+0x135/0x600
[  167.472947][ T7158]  ? lockdep_init_map_type+0x5c/0x280
[  167.472974][ T7158]  ? open_substream+0x30c/0x9b0
[  167.473020][ T7158]  ? open_substream+0x30c/0x9b0
[  167.473058][ T7158]  ? open_substream+0x19a/0x9b0
[  167.473096][ T7158]  open_substream+0x30c/0x9b0
[  167.473135][ T7158]  ? lockdep_hardirqs_on+0x7c/0x110
[  167.473168][ T7158]  rawmidi_open_priv+0x513/0x6e0
[  167.473197][ T7158]  snd_rawmidi_open+0x4cc/0xbf0
[  167.473227][ T7158]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  167.473256][ T7158]  ? __pfx_default_wake_function+0x10/0x10
[  167.473295][ T7158]  ? kobject_get_unless_zero+0x156/0x1e0
[  167.473335][ T7158]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  167.473362][ T7158]  snd_open+0x1fe/0x450
[  167.473397][ T7158]  ? __pfx_snd_open+0x10/0x10
[  167.473430][ T7158]  chrdev_open+0x231/0x6a0
[  167.473456][ T7158]  ? __pfx_apparmor_file_open+0x10/0x10
[  167.473487][ T7158]  ? __pfx_chrdev_open+0x10/0x10
[  167.473514][ T7158]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  167.473558][ T7158]  do_dentry_open+0x741/0x1c10
[  167.473599][ T7158]  ? __pfx_chrdev_open+0x10/0x10
[  167.473630][ T7158]  vfs_open+0x82/0x3f0
[  167.473662][ T7158]  path_openat+0x1e5e/0x2d40
[  167.473704][ T7158]  ? __pfx_path_openat+0x10/0x10
[  167.473735][ T7158]  do_filp_open+0x20b/0x470
[  167.473759][ T7158]  ? __pfx_do_filp_open+0x10/0x10
[  167.473814][ T7158]  ? alloc_fd+0x471/0x7d0
[  167.473862][ T7158]  do_sys_openat2+0x11b/0x1d0
[  167.473893][ T7158]  ? __pfx_do_sys_openat2+0x10/0x10
[  167.473927][ T7158]  ? __fget_files+0x20e/0x3c0
[  167.473955][ T7158]  __x64_sys_openat+0x174/0x210
[  167.473987][ T7158]  ? __pfx___x64_sys_openat+0x10/0x10
[  167.474017][ T7158]  ? ksys_write+0x1b9/0x240
[  167.474056][ T7158]  ? rcu_is_watching+0x12/0xc0
[  167.474097][ T7158]  do_syscall_64+0xcd/0x260
[  167.474133][ T7158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.474161][ T7158] RIP: 0033:0x7f670218d169
[  167.474183][ T7158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.474209][ T7158] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  167.474237][ T7158] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  167.474254][ T7158] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  167.474270][ T7158] RBP: 00007f6702f61090 R08: 0000000000000000 R09: 0000000000000000
[  167.474284][ T7158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  167.474297][ T7158] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  167.474325][ T7158]  </TASK>
[  167.901282][ T5876] Process accounting resumed
[  168.903980][ T7168] netlink: 93 bytes leftover after parsing attributes in process `syz.1.334'.
[  169.294863][ T7170] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  169.583096][ T7173] netlink: 342 bytes leftover after parsing attributes in process `syz.3.337'.
[  169.620509][ T7173] netlink: 'syz.3.337': attribute type 2 has an invalid length.
[  169.642798][ T7173] netlink: 'syz.3.337': attribute type 3 has an invalid length.
[  169.678099][ T7173] netlink: 180 bytes leftover after parsing attributes in process `syz.3.337'.
[  169.750000][ T7175] Invalid ELF header magic: != ELF
[  170.048859][ T7182] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  170.967618][ T5876] Process accounting resumed
[  172.757041][ T7225] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  173.285708][ T7224] sctp: [Deprecated]: syz.2.350 (pid 7224) Use of int in max_burst socket option deprecated.
[  173.285708][ T7224] Use struct sctp_assoc_value instead
[  173.447040][ T7232] netlink: 206 bytes leftover after parsing attributes in process `syz.0.352'.
[  173.544928][ T7235] HfR: entered promiscuous mode
[  173.555286][ T7235] netlink: 12 bytes leftover after parsing attributes in process `syz.3.353'.
[  173.565881][ T7235] HfR: left promiscuous mode
[  173.624858][ T7241] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  173.636454][ T7241] netlink: 16 bytes leftover after parsing attributes in process `syz.3.353'.
[  173.721806][  T977] Process accounting resumed
[  175.085326][ T7266] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  175.492595][ T7259] snd_aloop snd_aloop.0: control 16781581:-2147483648:6:�'l?F���/��zF���
[  175.492595][ T7259] ��9�:8 is already present
[  176.483659][ T7289] netlink: 12 bytes leftover after parsing attributes in process `syz.2.367'.
[  176.995959][ T7300] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  177.140403][ T5878] Process accounting resumed
[  177.902886][ T7315] netlink: 28 bytes leftover after parsing attributes in process `syz.0.373'.
[  177.930464][ T7315] caif0: entered promiscuous mode
[  178.023044][ T7319] FAULT_INJECTION: forcing a failure.
[  178.023044][ T7319] name failslab, interval 1, probability 0, space 0, times 0
[  178.069136][ T7319] CPU: 1 UID: 0 PID: 7319 Comm: syz.3.374 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  178.069179][ T7319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  178.069195][ T7319] Call Trace:
[  178.069204][ T7319]  <TASK>
[  178.069214][ T7319]  dump_stack_lvl+0x16c/0x1f0
[  178.069254][ T7319]  should_fail_ex+0x512/0x640
[  178.069280][ T7319]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  178.069321][ T7319]  should_failslab+0xc2/0x120
[  178.069349][ T7319]  __kmalloc_cache_noprof+0x6a/0x3e0
[  178.069387][ T7319]  ? snd_midi_event_new+0x6f/0x210
[  178.069421][ T7319]  snd_midi_event_new+0x6f/0x210
[  178.069455][ T7319]  snd_virmidi_output_open+0x106/0x670
[  178.069495][ T7319]  open_substream+0x478/0x9b0
[  178.069531][ T7319]  rawmidi_open_priv+0x543/0x6e0
[  178.069560][ T7319]  snd_rawmidi_open+0x4cc/0xbf0
[  178.069588][ T7319]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  178.069613][ T7319]  ? __pfx_default_wake_function+0x10/0x10
[  178.069661][ T7319]  ? kobject_get_unless_zero+0x156/0x1e0
[  178.069702][ T7319]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  178.069728][ T7319]  snd_open+0x1fe/0x450
[  178.069764][ T7319]  ? __pfx_snd_open+0x10/0x10
[  178.069797][ T7319]  chrdev_open+0x231/0x6a0
[  178.069822][ T7319]  ? __pfx_apparmor_file_open+0x10/0x10
[  178.069852][ T7319]  ? __pfx_chrdev_open+0x10/0x10
[  178.069880][ T7319]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  178.069927][ T7319]  do_dentry_open+0x741/0x1c10
[  178.069967][ T7319]  ? __pfx_chrdev_open+0x10/0x10
[  178.069998][ T7319]  vfs_open+0x82/0x3f0
[  178.070030][ T7319]  path_openat+0x1e5e/0x2d40
[  178.070064][ T7319]  ? __pfx_path_openat+0x10/0x10
[  178.070095][ T7319]  do_filp_open+0x20b/0x470
[  178.070116][ T7319]  ? __pfx_do_filp_open+0x10/0x10
[  178.070170][ T7319]  ? alloc_fd+0x471/0x7d0
[  178.070218][ T7319]  do_sys_openat2+0x11b/0x1d0
[  178.070248][ T7319]  ? __pfx_do_sys_openat2+0x10/0x10
[  178.070282][ T7319]  ? __fget_files+0x20e/0x3c0
[  178.070310][ T7319]  __x64_sys_openat+0x174/0x210
[  178.070341][ T7319]  ? __pfx___x64_sys_openat+0x10/0x10
[  178.070371][ T7319]  ? ksys_write+0x1b9/0x240
[  178.070404][ T7319]  ? rcu_is_watching+0x12/0xc0
[  178.070437][ T7319]  do_syscall_64+0xcd/0x260
[  178.070465][ T7319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.070488][ T7319] RIP: 0033:0x7f98d538d169
[  178.070507][ T7319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.070529][ T7319] RSP: 002b:00007f98d61b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  178.070555][ T7319] RAX: ffffffffffffffda RBX: 00007f98d55a5fa0 RCX: 00007f98d538d169
[  178.070571][ T7319] RDX: 0000000000080102 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  178.070587][ T7319] RBP: 00007f98d61b4090 R08: 0000000000000000 R09: 0000000000000000
[  178.070603][ T7319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  178.070617][ T7319] R13: 0000000000000000 R14: 00007f98d55a5fa0 R15: 00007ffd8ee74738
[  178.070658][ T7319]  </TASK>
[  178.551917][ T7327] Invalid ELF header magic: != ELF
[  179.007386][ T7331] MTRR 1 not used
[  179.393411][ T5876] Process accounting resumed
[  182.874587][ T5878] Process accounting resumed
[  182.897844][ T7402] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  185.915070][ T7448] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  186.684940][ T7454] [U] /
[  186.753569][   T10] Process accounting resumed
[  188.036674][ T7473] netlink: 544 bytes leftover after parsing attributes in process `syz.0.410'.
[  188.788130][ T7488] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  189.297065][ T7487] netlink: 334 bytes leftover after parsing attributes in process `syz.3.416'.
[  189.570695][ T7494] FAULT_INJECTION: forcing a failure.
[  189.570695][ T7494] name fail_futex, interval 1, probability 0, space 0, times 1
[  189.591466][ T7494] CPU: 1 UID: 0 PID: 7494 Comm: syz.0.417 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  189.591530][ T7494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  189.591550][ T7494] Call Trace:
[  189.591564][ T7494]  <TASK>
[  189.591577][ T7494]  dump_stack_lvl+0x16c/0x1f0
[  189.591625][ T7494]  should_fail_ex+0x512/0x640
[  189.591664][ T7494]  get_futex_key+0x49e/0x1000
[  189.591712][ T7494]  ? __pfx_get_futex_key+0x10/0x10
[  189.591753][ T7494]  ? find_held_lock+0x2b/0x80
[  189.591794][ T7494]  futex_wait_setup+0x78/0x290
[  189.591831][ T7494]  __futex_wait+0x266/0x3c0
[  189.591863][ T7494]  ? __pfx___futex_wait+0x10/0x10
[  189.591900][ T7494]  ? __pfx_futex_wake_mark+0x10/0x10
[  189.591942][ T7494]  futex_wait+0xe8/0x380
[  189.591973][ T7494]  ? __pfx_futex_wait+0x10/0x10
[  189.592017][ T7494]  do_futex+0x229/0x350
[  189.592059][ T7494]  ? __pfx_do_futex+0x10/0x10
[  189.592107][ T7494]  __x64_sys_futex+0x1e0/0x4c0
[  189.592148][ T7494]  ? __pfx_native_tss_update_io_bitmap+0x10/0x10
[  189.592211][ T7494]  ? __pfx___x64_sys_futex+0x10/0x10
[  189.592252][ T7494]  ? __task_pid_nr_ns+0x17c/0x500
[  189.592282][ T7494]  do_syscall_64+0xcd/0x260
[  189.592314][ T7494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.592341][ T7494] RIP: 0033:0x7f7ff078d169
[  189.592362][ T7494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.592383][ T7494] RSP: 002b:00007f7ff168e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  189.592410][ T7494] RAX: ffffffffffffffda RBX: 00007f7ff09a5fa8 RCX: 00007f7ff078d169
[  189.592428][ T7494] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f7ff09a5fa8
[  189.592445][ T7494] RBP: 00007f7ff09a5fa0 R08: 0000000000000000 R09: 0000000000000000
[  189.592463][ T7494] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7ff09a5fac
[  189.592491][ T7494] R13: 0000000000000000 R14: 00007fff285f2a20 R15: 00007fff285f2b08
[  189.592522][ T7494]  </TASK>
[  190.801945][ T7519] Invalid ELF header magic: != ELF
[  191.375998][ T7531] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  192.106662][ T7512] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  192.130750][ T7512] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  192.153872][ T7512] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  192.178155][ T7512] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  192.677732][ T5850] Bluetooth: hci0: command 0x0c1a tx timeout
[  193.124240][ T7557] ima: policy update failed
[  193.150214][   T30] audit: type=1802 audit(6038300381.472:2): pid=7557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.433" res=0 errno=0
[  193.835840][ T7571] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  194.196780][ T5850] Bluetooth: hci3: command 0x0c1a tx timeout
[  194.203010][ T5850] Bluetooth: hci2: command 0x0c1a tx timeout
[  194.206849][ T5838] Bluetooth: hci1: command 0x0c1a tx timeout

syzkaller
syzkaller login: [  195.579431][ T7621] openvswitch: netlink: Key type 261 is out of range max 32
[  195.884425][ T7624] FAULT_INJECTION: forcing a failure.
[  195.884425][ T7624] name failslab, interval 1, probability 0, space 0, times 0
[  195.891120][ T7622] bond0: option all_slaves_active: invalid value ()
[  195.898969][ T7624] CPU: 1 UID: 0 PID: 7624 Comm: syz.2.449 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  195.899011][ T7624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  195.899028][ T7624] Call Trace:
[  195.899039][ T7624]  <TASK>
[  195.899050][ T7624]  dump_stack_lvl+0x16c/0x1f0
[  195.899092][ T7624]  should_fail_ex+0x512/0x640
[  195.899117][ T7624]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  195.899163][ T7624]  should_failslab+0xc2/0x120
[  195.899194][ T7624]  __kmalloc_cache_noprof+0x6a/0x3e0
[  195.899252][ T7624]  ? mon_bin_open+0x1a8/0x4a0
[  195.899291][ T7624]  mon_bin_open+0x1a8/0x4a0
[  195.899324][ T7624]  ? __pfx_mon_bin_open+0x10/0x10
[  195.899357][ T7624]  chrdev_open+0x231/0x6a0
[  195.899386][ T7624]  ? __pfx_chrdev_open+0x10/0x10
[  195.899415][ T7624]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  195.899463][ T7624]  do_dentry_open+0x741/0x1c10
[  195.899498][ T7624]  ? __pfx_chrdev_open+0x10/0x10
[  195.899527][ T7624]  vfs_open+0x82/0x3f0
[  195.899556][ T7624]  path_openat+0x1e5e/0x2d40
[  195.899587][ T7624]  ? __pfx_path_openat+0x10/0x10
[  195.899615][ T7624]  do_filp_open+0x20b/0x470
[  195.899637][ T7624]  ? __pfx_do_filp_open+0x10/0x10
[  195.899676][ T7624]  ? alloc_fd+0x471/0x7d0
[  195.899719][ T7624]  do_sys_openat2+0x11b/0x1d0
[  195.899746][ T7624]  ? __pfx_do_sys_openat2+0x10/0x10
[  195.899782][ T7624]  __x64_sys_openat+0x174/0x210
[  195.899811][ T7624]  ? __pfx___x64_sys_openat+0x10/0x10
[  195.899841][ T7624]  ? rcu_is_watching+0x12/0xc0
[  195.899884][ T7624]  do_syscall_64+0xcd/0x260
[  195.899916][ T7624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.899940][ T7624] RIP: 0033:0x7f640318d169
[  195.899962][ T7624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.899985][ T7624] RSP: 002b:00007f6404063038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  195.900010][ T7624] RAX: ffffffffffffffda RBX: 00007f64033a5fa0 RCX: 00007f640318d169
[  195.900025][ T7624] RDX: 0000000000080000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  195.900040][ T7624] RBP: 00007f640320e2a0 R08: 0000000000000000 R09: 0000000000000000
[  195.900054][ T7624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  195.900068][ T7624] R13: 0000000000000000 R14: 00007f64033a5fa0 R15: 00007fffffb2ca48
[  195.900096][ T7624]  </TASK>
[  196.639009][ T7649] bond0: no command found in slaves file - use +ifname or -ifname
[  196.663335][ T7645] netlink: 544 bytes leftover after parsing attributes in process `syz.1.453'.
[  196.826137][ T7644] bond0: no command found in slaves file - use +ifname or -ifname
[  198.905359][ T7695] netlink: 504 bytes leftover after parsing attributes in process `syz.2.468'.
[  199.038678][ T7698] netlink: 350 bytes leftover after parsing attributes in process `syz.2.468'.
[  199.301502][ T7705] ima: policy update failed
[  199.307034][   T30] audit: type=1802 audit(6038300387.622:3): pid=7705 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.472" res=0 errno=0
[  200.441858][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  200.448933][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  200.701427][ T7738] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  200.716697][ T7738] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  201.000145][ T7742] FAULT_INJECTION: forcing a failure.
[  201.000145][ T7742] name failslab, interval 1, probability 0, space 0, times 0
[  201.042852][ T7742] CPU: 0 UID: 0 PID: 7742 Comm: syz.3.483 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  201.042905][ T7742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  201.042924][ T7742] Call Trace:
[  201.042934][ T7742]  <TASK>
[  201.042947][ T7742]  dump_stack_lvl+0x16c/0x1f0
[  201.042994][ T7742]  should_fail_ex+0x512/0x640
[  201.043024][ T7742]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  201.043059][ T7742]  ? __pfx_stats_fop_open+0x10/0x10
[  201.043086][ T7742]  should_failslab+0xc2/0x120
[  201.043130][ T7742]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  201.043159][ T7742]  ? trace_kmalloc+0x2b/0xd0
[  201.043197][ T7742]  ? seq_open+0x55/0x170
[  201.043235][ T7742]  ? __pfx_stats_fop_open+0x10/0x10
[  201.043260][ T7742]  seq_open+0x55/0x170
[  201.043295][ T7742]  __seq_open_private+0x3e/0xd0
[  201.043335][ T7742]  sc_common_open+0x6b/0x200
[  201.043359][ T7742]  full_proxy_open_regular+0x1b6/0x360
[  201.043396][ T7742]  do_dentry_open+0x741/0x1c10
[  201.043441][ T7742]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  201.043480][ T7742]  vfs_open+0x82/0x3f0
[  201.043515][ T7742]  path_openat+0x1e5e/0x2d40
[  201.043552][ T7742]  ? __pfx_path_openat+0x10/0x10
[  201.043584][ T7742]  do_filp_open+0x20b/0x470
[  201.043610][ T7742]  ? __pfx_do_filp_open+0x10/0x10
[  201.043654][ T7742]  ? alloc_fd+0x471/0x7d0
[  201.043704][ T7742]  do_sys_openat2+0x11b/0x1d0
[  201.043738][ T7742]  ? __pfx_do_sys_openat2+0x10/0x10
[  201.043773][ T7742]  ? __pfx___might_resched+0x10/0x10
[  201.043821][ T7742]  __x64_sys_openat+0x174/0x210
[  201.043856][ T7742]  ? __pfx___x64_sys_openat+0x10/0x10
[  201.043892][ T7742]  ? rcu_is_watching+0x12/0xc0
[  201.043935][ T7742]  do_syscall_64+0xcd/0x260
[  201.043974][ T7742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.044004][ T7742] RIP: 0033:0x7f98d538d169
[  201.044029][ T7742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.044057][ T7742] RSP: 002b:00007f98d61b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  201.044087][ T7742] RAX: ffffffffffffffda RBX: 00007f98d55a5fa0 RCX: 00007f98d538d169
[  201.044120][ T7742] RDX: 0000000000181000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  201.044141][ T7742] RBP: 00007f98d540e2a0 R08: 0000000000000000 R09: 0000000000000000
[  201.044161][ T7742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  201.044180][ T7742] R13: 0000000000000000 R14: 00007f98d55a5fa0 R15: 00007ffd8ee74738
[  201.044213][ T7742]  </TASK>
[  201.637623][ T7746] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  202.753549][ T7765] netlink: 342 bytes leftover after parsing attributes in process `syz.0.490'.
[  202.840609][ T7767] cifs: Unknown parameter 'no+ 1����`��r�sFn)��a�H��ā��h`����9k�A}���1\D@��.��Z�Cg^�'
[  202.908443][ T7767] netlink: 'syz.2.489': attribute type 2 has an invalid length.
[  203.206330][ T7778] aoe: copy from user failed
[  203.232076][ T7778] aoe: could not set interface list: too many interfaces
[  203.440732][ T7785] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  205.610012][ T7850] FAULT_INJECTION: forcing a failure.
[  205.610012][ T7850] name fail_futex, interval 1, probability 0, space 0, times 0
[  205.673553][ T7850] CPU: 1 UID: 0 PID: 7850 Comm: syz.2.506 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  205.673600][ T7850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  205.673617][ T7850] Call Trace:
[  205.673627][ T7850]  <TASK>
[  205.673638][ T7850]  dump_stack_lvl+0x16c/0x1f0
[  205.673684][ T7850]  should_fail_ex+0x512/0x640
[  205.673716][ T7850]  get_futex_key+0x49e/0x1000
[  205.673760][ T7850]  ? __pfx_get_futex_key+0x10/0x10
[  205.673805][ T7850]  futex_wake+0xe7/0x4e0
[  205.673829][ T7850]  ? __pfx_futex_wake+0x10/0x10
[  205.673854][ T7850]  ? kmem_cache_free+0x2d4/0x4d0
[  205.673877][ T7850]  ? fd_install+0x225/0x750
[  205.673916][ T7850]  ? putname+0x154/0x1a0
[  205.673950][ T7850]  do_futex+0x1e3/0x350
[  205.673988][ T7850]  ? __pfx_do_futex+0x10/0x10
[  205.674038][ T7850]  ? __pfx___might_resched+0x10/0x10
[  205.674079][ T7850]  __x64_sys_futex+0x1e0/0x4c0
[  205.674119][ T7850]  ? __x64_sys_openat+0x174/0x210
[  205.674148][ T7850]  ? __pfx___x64_sys_futex+0x10/0x10
[  205.674186][ T7850]  ? rcu_is_watching+0x12/0xc0
[  205.674226][ T7850]  do_syscall_64+0xcd/0x260
[  205.674261][ T7850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.674289][ T7850] RIP: 0033:0x7f640318d169
[  205.674313][ T7850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.674337][ T7850] RSP: 002b:00007f64040630e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  205.674364][ T7850] RAX: ffffffffffffffda RBX: 00007f64033a5fa8 RCX: 00007f640318d169
[  205.674382][ T7850] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f64033a5fac
[  205.674398][ T7850] RBP: 00007f64033a5fa0 R08: 00007f6404064000 R09: 0000000000000000
[  205.674414][ T7850] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f64033a5fac
[  205.674431][ T7850] R13: 0000000000000000 R14: 00007fffffb2c960 R15: 00007fffffb2ca48
[  205.674457][ T7850]  </TASK>
[  206.165642][ T7858] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  207.894142][ T7898] FAULT_INJECTION: forcing a failure.
[  207.894142][ T7898] name failslab, interval 1, probability 0, space 0, times 0
[  207.927384][ T7898] CPU: 1 UID: 0 PID: 7898 Comm: syz.0.516 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  207.927431][ T7898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  207.927449][ T7898] Call Trace:
[  207.927457][ T7898]  <TASK>
[  207.927467][ T7898]  dump_stack_lvl+0x16c/0x1f0
[  207.927511][ T7898]  should_fail_ex+0x512/0x640
[  207.927538][ T7898]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  207.927565][ T7898]  ? __pfx_stats_fop_open+0x10/0x10
[  207.927590][ T7898]  should_failslab+0xc2/0x120
[  207.927628][ T7898]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  207.927656][ T7898]  ? trace_kmalloc+0x2b/0xd0
[  207.927687][ T7898]  ? seq_open+0x55/0x170
[  207.927722][ T7898]  ? __pfx_stats_fop_open+0x10/0x10
[  207.927744][ T7898]  seq_open+0x55/0x170
[  207.927775][ T7898]  __seq_open_private+0x3e/0xd0
[  207.927812][ T7898]  sc_common_open+0x6b/0x200
[  207.927836][ T7898]  full_proxy_open_regular+0x1b6/0x360
[  207.927869][ T7898]  do_dentry_open+0x741/0x1c10
[  207.927912][ T7898]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  207.927950][ T7898]  vfs_open+0x82/0x3f0
[  207.927983][ T7898]  path_openat+0x1e5e/0x2d40
[  207.928017][ T7898]  ? __pfx_path_openat+0x10/0x10
[  207.928069][ T7898]  do_filp_open+0x20b/0x470
[  207.928097][ T7898]  ? __pfx_do_filp_open+0x10/0x10
[  207.928137][ T7898]  ? alloc_fd+0x471/0x7d0
[  207.928180][ T7898]  do_sys_openat2+0x11b/0x1d0
[  207.928207][ T7898]  ? __pfx_do_sys_openat2+0x10/0x10
[  207.928235][ T7898]  ? __pfx___might_resched+0x10/0x10
[  207.928274][ T7898]  __x64_sys_openat+0x174/0x210
[  207.928306][ T7898]  ? __pfx___x64_sys_openat+0x10/0x10
[  207.928339][ T7898]  ? rcu_is_watching+0x12/0xc0
[  207.928374][ T7898]  do_syscall_64+0xcd/0x260
[  207.928406][ T7898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.928431][ T7898] RIP: 0033:0x7f7ff078d169
[  207.928452][ T7898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.928474][ T7898] RSP: 002b:00007f7ff168e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  207.928499][ T7898] RAX: ffffffffffffffda RBX: 00007f7ff09a5fa0 RCX: 00007f7ff078d169
[  207.928515][ T7898] RDX: 0000000000181000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  207.928530][ T7898] RBP: 00007f7ff080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  207.928544][ T7898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  207.928558][ T7898] R13: 0000000000000000 R14: 00007f7ff09a5fa0 R15: 00007fff285f2b08
[  207.928581][ T7898]  </TASK>
[  209.221442][ T7925] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  210.253522][ T7953] netlink: 544 bytes leftover after parsing attributes in process `syz.2.529'.
[  210.266737][ T7954] netlink: 544 bytes leftover after parsing attributes in process `syz.2.529'.
[  210.491973][ T7948] ima: policy update failed
[  210.524157][   T30] audit: type=1802 audit(6038300398.842:4): pid=7948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.530" res=0 errno=0
[  212.904344][ T8022] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  213.677362][ T8044] FAULT_INJECTION: forcing a failure.
[  213.677362][ T8044] name fail_futex, interval 1, probability 0, space 0, times 0
[  213.691610][ T8044] CPU: 1 UID: 0 PID: 8044 Comm: syz.3.545 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  213.691656][ T8044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  213.691673][ T8044] Call Trace:
[  213.691682][ T8044]  <TASK>
[  213.691692][ T8044]  dump_stack_lvl+0x16c/0x1f0
[  213.691734][ T8044]  should_fail_ex+0x512/0x640
[  213.691768][ T8044]  get_futex_key+0x49e/0x1000
[  213.691809][ T8044]  ? __pfx_get_futex_key+0x10/0x10
[  213.691871][ T8044]  ? stack_trace_save+0x8e/0xc0
[  213.691911][ T8044]  ? __pfx_stack_trace_save+0x10/0x10
[  213.691966][ T8044]  ? stack_depot_save_flags+0x29/0x9c0
[  213.691994][ T8044]  ? __lock_acquire+0xaa4/0x1ba0
[  213.692046][ T8044]  futex_wait_setup+0x78/0x290
[  213.692074][ T8044]  ? kasan_save_free_info+0x3b/0x60
[  213.692119][ T8044]  ? __x64_sys_openat+0x174/0x210
[  213.692155][ T8044]  __futex_wait+0x266/0x3c0
[  213.692178][ T8044]  ? __pfx___futex_wait+0x10/0x10
[  213.692206][ T8044]  ? __pfx_futex_wake_mark+0x10/0x10
[  213.692240][ T8044]  futex_wait+0xe8/0x380
[  213.692263][ T8044]  ? __pfx_futex_wait+0x10/0x10
[  213.692293][ T8044]  ? kmem_cache_free+0x2d4/0x4d0
[  213.692317][ T8044]  ? fd_install+0x225/0x750
[  213.692357][ T8044]  ? putname+0x154/0x1a0
[  213.692389][ T8044]  do_futex+0x229/0x350
[  213.692426][ T8044]  ? __pfx_do_futex+0x10/0x10
[  213.692465][ T8044]  ? __pfx___might_resched+0x10/0x10
[  213.692506][ T8044]  __x64_sys_futex+0x1e0/0x4c0
[  213.692545][ T8044]  ? __x64_sys_openat+0x174/0x210
[  213.692576][ T8044]  ? __pfx___x64_sys_futex+0x10/0x10
[  213.692615][ T8044]  ? rcu_is_watching+0x12/0xc0
[  213.692654][ T8044]  do_syscall_64+0xcd/0x260
[  213.692691][ T8044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.692718][ T8044] RIP: 0033:0x7f98d538d169
[  213.692740][ T8044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.692765][ T8044] RSP: 002b:00007f98d61b40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  213.692792][ T8044] RAX: ffffffffffffffda RBX: 00007f98d55a5fa8 RCX: 00007f98d538d169
[  213.692809][ T8044] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f98d55a5fa8
[  213.692825][ T8044] RBP: 00007f98d55a5fa0 R08: 0000000000000000 R09: 0000000000000000
[  213.692840][ T8044] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f98d55a5fac
[  213.692856][ T8044] R13: 0000000000000000 R14: 00007ffd8ee74650 R15: 00007ffd8ee74738
[  213.692884][ T8044]  </TASK>
[  214.920091][ T8053] netlink: 28 bytes leftover after parsing attributes in process `syz.3.546'.
[  215.052108][ T8053] mac80211_hwsim hwsim4 wlan1: entered allmulticast mode
[  215.665440][ T8080] ima: policy update failed
[  215.715640][   T30] audit: type=1802 audit(6038300404.032:5): pid=8080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.555" res=0 errno=0
[  216.153459][ T8090] capability: warning: `syz.3.558' uses 32-bit capabilities (legacy support in use)
[  216.537739][ T8103] netlink: 28 bytes leftover after parsing attributes in process `syz.0.561'.
[  216.583736][ T8103] mac80211_hwsim hwsim8 wlan1: entered allmulticast mode
[  218.667323][   T30] audit: type=1800 audit(6038300406.982:6): pid=8142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.571" name="features" dev="configfs" ino=17128 res=0 errno=0
[  219.069084][ T8154] ima: policy update failed
[  219.125382][   T30] audit: type=1802 audit(6038300407.442:7): pid=8154 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.575" res=0 errno=0
[  220.737598][ T8190] netlink: 8 bytes leftover after parsing attributes in process `syz.2.584'.
[  220.966505][ T8199] netlink: 'syz.3.585': attribute type 1 has an invalid length.
[  221.072238][ T8199] Invalid ELF header magic: != ELF
[  221.204815][ T8205] netlink: 8 bytes leftover after parsing attributes in process `syz.2.587'.
[  221.228855][ T8210] netlink: 8 bytes leftover after parsing attributes in process `syz.2.587'.
[  222.900205][ T8237] FAULT_INJECTION: forcing a failure.
[  222.900205][ T8237] name failslab, interval 1, probability 0, space 0, times 0
[  223.059826][ T8237] CPU: 1 UID: 7 PID: 8237 Comm: syz.1.595 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  223.059876][ T8237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  223.059895][ T8237] Call Trace:
[  223.059904][ T8237]  <TASK>
[  223.059916][ T8237]  dump_stack_lvl+0x16c/0x1f0
[  223.059962][ T8237]  should_fail_ex+0x512/0x640
[  223.059992][ T8237]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  223.060025][ T8237]  should_failslab+0xc2/0x120
[  223.060055][ T8237]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  223.060082][ T8237]  ? d_instantiate+0x77/0x90
[  223.060111][ T8237]  ? alloc_empty_file+0x55/0x1e0
[  223.060147][ T8237]  alloc_empty_file+0x55/0x1e0
[  223.060178][ T8237]  alloc_file_pseudo+0x13a/0x230
[  223.060212][ T8237]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  223.060244][ T8237]  ? do_raw_spin_unlock+0x172/0x230
[  223.060274][ T8237]  __anon_inode_getfile+0xf7/0x370
[  223.060323][ T8237]  do_epoll_create+0x31b/0x470
[  223.060363][ T8237]  __x64_sys_epoll_create+0x45/0x70
[  223.060402][ T8237]  do_syscall_64+0xcd/0x260
[  223.060438][ T8237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.060465][ T8237] RIP: 0033:0x7f670218d169
[  223.060487][ T8237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.060513][ T8237] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5
[  223.060540][ T8237] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  223.060557][ T8237] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000007ff
[  223.060572][ T8237] RBP: 00007f670220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  223.060587][ T8237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  223.060602][ T8237] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  223.060629][ T8237]  </TASK>
[  223.257127][    C1] vkms_vblank_simulate: vblank timer overrun
[  224.783026][ T8283] Invalid ELF header magic: != ELF
[  225.440119][ T8287] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  225.915302][ T8295] sp0: Synchronizing with TNC
[  226.992354][ T8323] Invalid ELF header magic: != ELF
[  227.033533][ T8326] FAULT_INJECTION: forcing a failure.
[  227.033533][ T8326] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  227.122339][ T8326] CPU: 1 UID: 0 PID: 8326 Comm: syz.0.614 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  227.122382][ T8326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  227.122397][ T8326] Call Trace:
[  227.122405][ T8326]  <TASK>
[  227.122416][ T8326]  dump_stack_lvl+0x16c/0x1f0
[  227.122458][ T8326]  should_fail_ex+0x512/0x640
[  227.122490][ T8326]  _copy_to_user+0x32/0xd0
[  227.122523][ T8326]  simple_read_from_buffer+0xcb/0x170
[  227.122566][ T8326]  proc_fail_nth_read+0x197/0x270
[  227.122608][ T8326]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  227.122659][ T8326]  ? rw_verify_area+0xcf/0x680
[  227.122694][ T8326]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  227.122733][ T8326]  vfs_read+0x1de/0xc70
[  227.122774][ T8326]  ? __pfx___mutex_lock+0x10/0x10
[  227.122803][ T8326]  ? __pfx_vfs_read+0x10/0x10
[  227.122842][ T8326]  ? __fget_files+0x20e/0x3c0
[  227.122873][ T8326]  ksys_read+0x12a/0x240
[  227.122918][ T8326]  ? __pfx_ksys_read+0x10/0x10
[  227.122949][ T8326]  ? rcu_is_watching+0x12/0xc0
[  227.122986][ T8326]  do_syscall_64+0xcd/0x260
[  227.123022][ T8326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.123050][ T8326] RIP: 0033:0x7f7ff078bb7c
[  227.123072][ T8326] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  227.123095][ T8326] RSP: 002b:00007f7ff168e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  227.123123][ T8326] RAX: ffffffffffffffda RBX: 00007f7ff09a5fa0 RCX: 00007f7ff078bb7c
[  227.123141][ T8326] RDX: 000000000000000f RSI: 00007f7ff168e0a0 RDI: 0000000000000004
[  227.123156][ T8326] RBP: 00007f7ff168e090 R08: 0000000000000000 R09: 0000000000000000
[  227.123172][ T8326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.123186][ T8326] R13: 0000000000000000 R14: 00007f7ff09a5fa0 R15: 00007fff285f2b08
[  227.123215][ T8326]  </TASK>
[  227.755428][ T8336] Invalid ELF header magic: != ELF
[  228.282990][ T8342] ima: policy update failed
[  228.289817][   T30] audit: type=1802 audit(6038300416.612:8): pid=8342 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.618" res=0 errno=0
[  228.501101][ T8349] netlink: 32 bytes leftover after parsing attributes in process `syz.1.619'.
[  229.137060][ T8348] netlink: 334 bytes leftover after parsing attributes in process `syz.0.620'.
[  229.341429][ T8366] zswap: compressor  not available
[  229.685527][ T8382] : Can't lookup blockdev
[  230.521497][ T8390] can: request_module (can-proto-0) failed.
[  233.129067][ T8435] FAULT_INJECTION: forcing a failure.
[  233.129067][ T8435] name failslab, interval 1, probability 0, space 0, times 0
[  233.188452][ T8435] CPU: 1 UID: 0 PID: 8435 Comm: syz.0.640 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  233.188501][ T8435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  233.188521][ T8435] Call Trace:
[  233.188530][ T8435]  <TASK>
[  233.188543][ T8435]  dump_stack_lvl+0x16c/0x1f0
[  233.188590][ T8435]  should_fail_ex+0x512/0x640
[  233.188623][ T8435]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  233.188658][ T8435]  should_failslab+0xc2/0x120
[  233.188691][ T8435]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  233.188723][ T8435]  ? sock_alloc_inode+0x25/0x1c0
[  233.188770][ T8435]  ? __pfx_sock_alloc_inode+0x10/0x10
[  233.188816][ T8435]  sock_alloc_inode+0x25/0x1c0
[  233.188853][ T8435]  alloc_inode+0x61/0x240
[  233.188887][ T8435]  sock_alloc+0x40/0x280
[  233.188920][ T8435]  __sock_create+0xc1/0x8d0
[  233.188958][ T8435]  __sys_socket+0x14d/0x260
[  233.188992][ T8435]  ? __pfx___sys_socket+0x10/0x10
[  233.189025][ T8435]  ? rcu_is_watching+0x12/0xc0
[  233.189056][ T8435]  __x64_sys_socket+0x72/0xb0
[  233.189088][ T8435]  ? lockdep_hardirqs_on+0x7c/0x110
[  233.189113][ T8435]  do_syscall_64+0xcd/0x260
[  233.189142][ T8435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.189164][ T8435] RIP: 0033:0x7f7ff078d169
[  233.189183][ T8435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.189204][ T8435] RSP: 002b:00007f7ff168e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  233.189227][ T8435] RAX: ffffffffffffffda RBX: 00007f7ff09a5fa0 RCX: 00007f7ff078d169
[  233.189241][ T8435] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  233.189254][ T8435] RBP: 00007f7ff080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  233.189267][ T8435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  233.189280][ T8435] R13: 0000000000000000 R14: 00007f7ff09a5fa0 R15: 00007fff285f2b08
[  233.189302][ T8435]  </TASK>
[  233.189322][ T8435] socket: no more sockets
[  237.450161][ T8506] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  237.477026][ T8506] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  237.483418][ T8506] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  237.515583][ T8506] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  238.356892][ T5850] Bluetooth: hci0: command 0x0c1a tx timeout
[  239.573748][ T5850] Bluetooth: hci3: command 0x0c1a tx timeout
[  239.580146][ T5838] Bluetooth: hci2: command 0x0c1a tx timeout
[  239.586869][ T5850] Bluetooth: hci1: command 0x0c1a tx timeout
[  242.635755][ T5850] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18

syzkaller
syzkaller login: [  243.061054][ T8659] random: crng reseeded on system resumption
[  243.178184][ T8652] Invalid ELF header magic: != ELF
[  244.595656][ T8702] nbd: must specify an index to disconnect
[  245.999059][ T8729] zswap: compressor  not available
[  247.037595][ T8757] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(7.0.4), cmd(3)
[  248.126245][   T30] audit: type=1800 audit(6038300444.433:9): pid=8774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.709" name="dummy_udc" dev="gadgetfs" ino=6432 res=0 errno=0
[  248.180560][   T30] audit: type=1326 audit(6038300444.500:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8780 comm="syz.3.711" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f98d538d169 code=0x0
[  249.727539][ T8771] random: crng reseeded on system resumption
[  250.950683][ T8849] FAULT_INJECTION: forcing a failure.
[  250.950683][ T8849] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  251.009185][ T8849] CPU: 0 UID: 0 PID: 8849 Comm: syz.0.723 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  251.009230][ T8849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  251.009245][ T8849] Call Trace:
[  251.009254][ T8849]  <TASK>
[  251.009264][ T8849]  dump_stack_lvl+0x16c/0x1f0
[  251.009306][ T8849]  should_fail_ex+0x512/0x640
[  251.009350][ T8849]  _copy_to_user+0x32/0xd0
[  251.009382][ T8849]  simple_read_from_buffer+0xcb/0x170
[  251.009425][ T8849]  proc_fail_nth_read+0x197/0x270
[  251.009464][ T8849]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  251.009504][ T8849]  ? rw_verify_area+0xcf/0x680
[  251.009551][ T8849]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  251.009588][ T8849]  vfs_read+0x1de/0xc70
[  251.009625][ T8849]  ? __pfx___mutex_lock+0x10/0x10
[  251.009656][ T8849]  ? __pfx_vfs_read+0x10/0x10
[  251.009699][ T8849]  ? __fget_files+0x20e/0x3c0
[  251.009731][ T8849]  ksys_read+0x12a/0x240
[  251.009768][ T8849]  ? __pfx_ksys_read+0x10/0x10
[  251.009813][ T8849]  do_syscall_64+0xcd/0x260
[  251.009848][ T8849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.009874][ T8849] RIP: 0033:0x7f7ff078bb7c
[  251.009895][ T8849] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  251.009918][ T8849] RSP: 002b:00007f7ff166d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  251.009943][ T8849] RAX: ffffffffffffffda RBX: 00007f7ff09a6080 RCX: 00007f7ff078bb7c
[  251.009960][ T8849] RDX: 000000000000000f RSI: 00007f7ff166d0a0 RDI: 0000000000000003
[  251.009975][ T8849] RBP: 00007f7ff166d090 R08: 0000000000000000 R09: 0000000000000000
[  251.009991][ T8849] R10: 00000000000007ff R11: 0000000000000246 R12: 0000000000000001
[  251.010006][ T8849] R13: 0000000000000001 R14: 00007f7ff09a6080 R15: 00007fff285f2b08
[  251.010032][ T8849]  </TASK>
[  251.157085][    C1] vkms_vblank_simulate: vblank timer overrun
[  251.419684][ T8863] FAULT_INJECTION: forcing a failure.
[  251.419684][ T8863] name failslab, interval 1, probability 0, space 0, times 0
[  251.510599][ T8863] CPU: 1 UID: 0 PID: 8863 Comm: syz.1.727 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  251.510637][ T8863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  251.510651][ T8863] Call Trace:
[  251.510659][ T8863]  <TASK>
[  251.510667][ T8863]  dump_stack_lvl+0x16c/0x1f0
[  251.510706][ T8863]  should_fail_ex+0x512/0x640
[  251.510731][ T8863]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  251.510757][ T8863]  should_failslab+0xc2/0x120
[  251.510784][ T8863]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  251.510807][ T8863]  ? getname_flags.part.0+0x48/0x540
[  251.510839][ T8863]  getname_flags.part.0+0x48/0x540
[  251.510870][ T8863]  getname_flags+0x93/0xf0
[  251.510910][ T8863]  do_sys_openat2+0xb8/0x1d0
[  251.510936][ T8863]  ? __pfx_do_sys_openat2+0x10/0x10
[  251.510962][ T8863]  ? __fget_files+0x20e/0x3c0
[  251.510985][ T8863]  __x64_sys_openat+0x174/0x210
[  251.511011][ T8863]  ? __pfx___x64_sys_openat+0x10/0x10
[  251.511035][ T8863]  ? ksys_write+0x1b9/0x240
[  251.511066][ T8863]  ? rcu_is_watching+0x12/0xc0
[  251.511099][ T8863]  do_syscall_64+0xcd/0x260
[  251.511127][ T8863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.511149][ T8863] RIP: 0033:0x7f670218d169
[  251.511166][ T8863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.511186][ T8863] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  251.511208][ T8863] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  251.511222][ T8863] RDX: 0000000000181000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  251.511236][ T8863] RBP: 00007f6702f61090 R08: 0000000000000000 R09: 0000000000000000
[  251.511249][ T8863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  251.511290][ T8863] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  251.511318][ T8863]  </TASK>
[  251.713575][    C1] vkms_vblank_simulate: vblank timer overrun
[  252.142611][ T8779] syz.2.707 (8779) used greatest stack depth: 20664 bytes left
[  253.510704][ T8906] netlink: 8 bytes leftover after parsing attributes in process `syz.3.734'.
[  254.799003][ T8932] FAULT_INJECTION: forcing a failure.
[  254.799003][ T8932] name fail_futex, interval 1, probability 0, space 0, times 0
[  254.892868][ T8932] CPU: 0 UID: 0 PID: 8932 Comm: syz.3.741 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  254.892902][ T8932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  254.892915][ T8932] Call Trace:
[  254.892921][ T8932]  <TASK>
[  254.892929][ T8932]  dump_stack_lvl+0x16c/0x1f0
[  254.892960][ T8932]  should_fail_ex+0x512/0x640
[  254.892986][ T8932]  get_futex_key+0x49e/0x1000
[  254.893013][ T8932]  ? __pfx_get_futex_key+0x10/0x10
[  254.893042][ T8932]  futex_wake+0xe7/0x4e0
[  254.893060][ T8932]  ? __pfx_futex_wake+0x10/0x10
[  254.893077][ T8932]  ? kmem_cache_free+0x2d4/0x4d0
[  254.893096][ T8932]  ? fd_install+0x225/0x750
[  254.893123][ T8932]  ? putname+0x154/0x1a0
[  254.893145][ T8932]  do_futex+0x1e3/0x350
[  254.893169][ T8932]  ? __pfx_do_futex+0x10/0x10
[  254.893196][ T8932]  ? __pfx___might_resched+0x10/0x10
[  254.893223][ T8932]  __x64_sys_futex+0x1e0/0x4c0
[  254.893249][ T8932]  ? __x64_sys_openat+0x174/0x210
[  254.893271][ T8932]  ? __pfx___x64_sys_futex+0x10/0x10
[  254.893317][ T8932]  ? rcu_is_watching+0x12/0xc0
[  254.893349][ T8932]  do_syscall_64+0xcd/0x260
[  254.893380][ T8932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.893400][ T8932] RIP: 0033:0x7f98d538d169
[  254.893416][ T8932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.893433][ T8932] RSP: 002b:00007f98d61b40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  254.893451][ T8932] RAX: ffffffffffffffda RBX: 00007f98d55a5fa8 RCX: 00007f98d538d169
[  254.893463][ T8932] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f98d55a5fac
[  254.893473][ T8932] RBP: 00007f98d55a5fa0 R08: 00007f98d61b5000 R09: 0000000000000000
[  254.893484][ T8932] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f98d55a5fac
[  254.893494][ T8932] R13: 0000000000000000 R14: 00007ffd8ee74650 R15: 00007ffd8ee74738
[  254.893511][ T8932]  </TASK>
[  255.416374][ T5877] smpboot: CPU 1 is now offline
[  255.904639][ T8948] FAULT_INJECTION: forcing a failure.
[  255.904639][ T8948] name failslab, interval 1, probability 0, space 0, times 0
[  256.034183][ T8948] CPU: 0 UID: 0 PID: 8948 Comm: syz.0.744 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  256.034226][ T8948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  256.034237][ T8948] Call Trace:
[  256.034244][ T8948]  <TASK>
[  256.034252][ T8948]  dump_stack_lvl+0x16c/0x1f0
[  256.034285][ T8948]  should_fail_ex+0x512/0x640
[  256.034306][ T8948]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  256.034328][ T8948]  should_failslab+0xc2/0x120
[  256.034350][ T8948]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  256.034368][ T8948]  ? __proc_create+0xc3/0x8c0
[  256.034391][ T8948]  ? __proc_create+0x2ce/0x8c0
[  256.034414][ T8948]  __proc_create+0x2ce/0x8c0
[  256.034434][ T8948]  ? __pfx___proc_create+0x10/0x10
[  256.034459][ T8948]  _proc_mkdir+0xb9/0x200
[  256.034479][ T8948]  ? __pfx__proc_mkdir+0x10/0x10
[  256.034501][ T8948]  ? trace_kmem_cache_alloc+0x28/0xc0
[  256.034524][ T8948]  ? crng_make_state+0x48e/0x6d0
[  256.034544][ T8948]  proc_net_ns_init+0x265/0x410
[  256.034564][ T8948]  ? __pfx_proc_net_ns_init+0x10/0x10
[  256.034584][ T8948]  ops_init+0x1df/0x5f0
[  256.034608][ T8948]  setup_net+0x21e/0x850
[  256.034629][ T8948]  ? __pfx_setup_net+0x10/0x10
[  256.034648][ T8948]  ? lockdep_init_map_type+0x5c/0x280
[  256.034666][ T8948]  ? __pfx_down_read_killable+0x10/0x10
[  256.034691][ T8948]  ? debug_mutex_init+0x37/0x70
[  256.034713][ T8948]  copy_net_ns+0x2a6/0x5f0
[  256.034737][ T8948]  create_new_namespaces+0x3ea/0xad0
[  256.034764][ T8948]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  256.034790][ T8948]  ksys_unshare+0x45b/0xa40
[  256.034816][ T8948]  ? __pfx_ksys_unshare+0x10/0x10
[  256.034839][ T8948]  ? xfd_validate_state+0x5d/0x180
[  256.034859][ T8948]  ? rcu_is_watching+0x12/0xc0
[  256.034882][ T8948]  __x64_sys_unshare+0x31/0x40
[  256.034907][ T8948]  do_syscall_64+0xcd/0x260
[  256.034929][ T8948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.034946][ T8948] RIP: 0033:0x7f7ff078d169
[  256.034961][ T8948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  256.034976][ T8948] RSP: 002b:00007f7ff168e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  256.034994][ T8948] RAX: ffffffffffffffda RBX: 00007f7ff09a5fa0 RCX: 00007f7ff078d169
[  256.035005][ T8948] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  256.035014][ T8948] RBP: 00007f7ff080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  256.035023][ T8948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  256.035033][ T8948] R13: 0000000000000000 R14: 00007f7ff09a5fa0 R15: 00007fff285f2b08
[  256.035049][ T8948]  </TASK>
[  256.866671][ T8935] netlink: 338 bytes leftover after parsing attributes in process `syz.1.740'.
[  256.900840][ T8936] netlink: 342 bytes leftover after parsing attributes in process `syz.1.740'.
[  256.930153][ T8937] netlink: 342 bytes leftover after parsing attributes in process `syz.1.740'.
[  257.641459][ T8956] netlink: 12 bytes leftover after parsing attributes in process `syz.0.746'.
[  258.632328][ T8972] ptrace attach of "./syz-executor exec"[5847] was attempted by "./syz-executor exec"[8972]
[  258.774762][ T8977] random: crng reseeded on system resumption
[  259.761918][ T8996] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input5
[  259.815131][ T8992] netlink: 48 bytes leftover after parsing attributes in process `syz.3.757'.
[  259.880140][ T8993] netlink: 48 bytes leftover after parsing attributes in process `syz.3.757'.
[  260.089302][ T8996] zswap: compressor  not available
[  261.749410][ T9022] netlink: 24 bytes leftover after parsing attributes in process `syz.3.764'.
[  261.880352][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  261.887937][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  263.370092][ T9061] FAULT_INJECTION: forcing a failure.
[  263.370092][ T9061] name fail_futex, interval 1, probability 0, space 0, times 0
[  263.439062][ T9061] CPU: 0 UID: 0 PID: 9061 Comm: syz.3.773 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  263.439095][ T9061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  263.439114][ T9061] Call Trace:
[  263.439121][ T9061]  <TASK>
[  263.439129][ T9061]  dump_stack_lvl+0x16c/0x1f0
[  263.439159][ T9061]  should_fail_ex+0x512/0x640
[  263.439182][ T9061]  get_futex_key+0x49e/0x1000
[  263.439221][ T9061]  ? __pfx_get_futex_key+0x10/0x10
[  263.439251][ T9061]  futex_wake+0xe7/0x4e0
[  263.439271][ T9061]  ? __pfx_futex_wake+0x10/0x10
[  263.439288][ T9061]  ? kmem_cache_free+0x2d4/0x4d0
[  263.439307][ T9061]  ? fd_install+0x225/0x750
[  263.439335][ T9061]  ? putname+0x154/0x1a0
[  263.439360][ T9061]  do_futex+0x1e3/0x350
[  263.439386][ T9061]  ? __pfx_do_futex+0x10/0x10
[  263.439418][ T9061]  ? __pfx___might_resched+0x10/0x10
[  263.439444][ T9061]  __x64_sys_futex+0x1e0/0x4c0
[  263.439469][ T9061]  ? __x64_sys_openat+0x174/0x210
[  263.439489][ T9061]  ? __pfx___x64_sys_futex+0x10/0x10
[  263.439513][ T9061]  ? rcu_is_watching+0x12/0xc0
[  263.439537][ T9061]  do_syscall_64+0xcd/0x260
[  263.439559][ T9061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.439577][ T9061] RIP: 0033:0x7f98d538d169
[  263.439591][ T9061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.439607][ T9061] RSP: 002b:00007f98d61b40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  263.439624][ T9061] RAX: ffffffffffffffda RBX: 00007f98d55a5fa8 RCX: 00007f98d538d169
[  263.439635][ T9061] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f98d55a5fac
[  263.439645][ T9061] RBP: 00007f98d55a5fa0 R08: 00007f98d61b5000 R09: 0000000000000000
[  263.439655][ T9061] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f98d55a5fac
[  263.439664][ T9061] R13: 0000000000000000 R14: 00007ffd8ee74650 R15: 00007ffd8ee74738
[  263.439681][ T9061]  </TASK>
[  264.268712][ T9070] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input6
[  264.928673][ T9075] FAULT_INJECTION: forcing a failure.
[  264.928673][ T9075] name failslab, interval 1, probability 0, space 0, times 0
[  264.990179][ T9075] CPU: 0 UID: 0 PID: 9075 Comm: syz.1.777 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  264.990212][ T9075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  264.990224][ T9075] Call Trace:
[  264.990230][ T9075]  <TASK>
[  264.990238][ T9075]  dump_stack_lvl+0x16c/0x1f0
[  264.990268][ T9075]  should_fail_ex+0x512/0x640
[  264.990290][ T9075]  ? __kmalloc_node_noprof+0xc5/0x500
[  264.990313][ T9075]  should_failslab+0xc2/0x120
[  264.990360][ T9075]  __kmalloc_node_noprof+0xd8/0x500
[  264.990389][ T9075]  ? lockdep_init_map_type+0x5c/0x280
[  264.990408][ T9075]  ? mempool_init_node+0x13c/0x760
[  264.990428][ T9075]  ? __pfx_mempool_alloc_slab+0x10/0x10
[  264.990445][ T9075]  mempool_init_node+0x13c/0x760
[  264.990462][ T9075]  ? __pfx_xa_load+0x10/0x10
[  264.990490][ T9075]  ? __pfx_mempool_alloc_slab+0x10/0x10
[  264.990507][ T9075]  ? __pfx_mempool_free_slab+0x10/0x10
[  264.990526][ T9075]  mempool_init_noprof+0x3a/0x50
[  264.990547][ T9075]  bioset_init+0x37a/0x880
[  264.990571][ T9075]  ? __pfx_bioset_init+0x10/0x10
[  264.990596][ T9075]  __alloc_disk_node+0x83/0x610
[  264.990616][ T9075]  __blk_mq_alloc_disk+0x89/0x120
[  264.990634][ T9075]  loop_add+0x496/0xb70
[  264.990660][ T9075]  ? 0xffffffff81000000
[  264.990672][ T9075]  ? do_vfs_ioctl+0x512/0x1990
[  264.990694][ T9075]  ? __pfx_loop_add+0x10/0x10
[  264.990718][ T9075]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  264.990748][ T9075]  ? find_held_lock+0x2b/0x80
[  264.990770][ T9075]  ? 0xffffffff81000000
[  264.990781][ T9075]  loop_control_ioctl+0x13c/0x630
[  264.990797][ T9075]  ? __pfx_loop_control_ioctl+0x10/0x10
[  264.990813][ T9075]  ? 0xffffffff81000000
[  264.990823][ T9075]  ? __pfx_loop_control_ioctl+0x10/0x10
[  264.990850][ T9075]  ? 0xffffffff81000000
[  264.990861][ T9075]  __x64_sys_ioctl+0x190/0x200
[  264.990884][ T9075]  do_syscall_64+0xcd/0x260
[  264.990906][ T9075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.990924][ T9075] RIP: 0033:0x7f670218d169
[  264.990938][ T9075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.990956][ T9075] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  264.990977][ T9075] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  264.990989][ T9075] RDX: ffffffff81000000 RSI: 0000000000004c80 RDI: 0000000000000007
[  264.991002][ T9075] RBP: 00007f670220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  264.991014][ T9075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  264.991025][ T9075] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  264.991038][ T9075]  ? 0xffffffff81000000
[  264.991052][ T9075]  </TASK>
[  268.527476][ T9111] netlink: 12 bytes leftover after parsing attributes in process `syz.1.785'.
[  268.628373][ T9111] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  273.694864][ T9165] netlink: 12 bytes leftover after parsing attributes in process `syz.1.796'.
[  273.902023][ T9165] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  274.213973][ T9170] FAULT_INJECTION: forcing a failure.
[  274.213973][ T9170] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  274.365004][ T9170] CPU: 0 UID: 0 PID: 9170 Comm: syz.0.797 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  274.365049][ T9170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  274.365059][ T9170] Call Trace:
[  274.365064][ T9170]  <TASK>
[  274.365071][ T9170]  dump_stack_lvl+0x16c/0x1f0
[  274.365100][ T9170]  should_fail_ex+0x512/0x640
[  274.365120][ T9170]  _copy_from_user+0x2e/0xd0
[  274.365139][ T9170]  move_addr_to_kernel+0x65/0x170
[  274.365166][ T9170]  __sys_connect+0xaf/0x170
[  274.365182][ T9170]  ? __pfx___sys_connect+0x10/0x10
[  274.365201][ T9170]  ? __pfx_ksys_write+0x10/0x10
[  274.365226][ T9170]  ? rcu_is_watching+0x12/0xc0
[  274.365249][ T9170]  __x64_sys_connect+0x72/0xb0
[  274.365269][ T9170]  ? lockdep_hardirqs_on+0x7c/0x110
[  274.365289][ T9170]  do_syscall_64+0xcd/0x260
[  274.365310][ T9170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.365327][ T9170] RIP: 0033:0x7f7ff078d169
[  274.365341][ T9170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.365356][ T9170] RSP: 002b:00007f7ff168e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  274.365373][ T9170] RAX: ffffffffffffffda RBX: 00007f7ff09a5fa0 RCX: 00007f7ff078d169
[  274.365383][ T9170] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003
[  274.365393][ T9170] RBP: 00007f7ff168e090 R08: 0000000000000000 R09: 0000000000000000
[  274.365402][ T9170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.365411][ T9170] R13: 0000000000000000 R14: 00007f7ff09a5fa0 R15: 00007fff285f2b08
[  274.365427][ T9170]  </TASK>
[  274.732576][ T8703] syz.2.686 (8703) used greatest stack depth: 20632 bytes left
[  275.662121][ T9189] netlink: 206 bytes leftover after parsing attributes in process `syz.1.803'.

syzkaller
syzkaller login: [  277.267146][ T9209] openvswitch: netlink: Message has 16 unknown bytes.
[  277.497069][ T9213] FAULT_INJECTION: forcing a failure.
[  277.497069][ T9213] name failslab, interval 1, probability 0, space 0, times 0
[  277.560392][ T9213] CPU: 0 UID: 0 PID: 9213 Comm: syz.1.808 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  277.560422][ T9213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  277.560432][ T9213] Call Trace:
[  277.560438][ T9213]  <TASK>
[  277.560444][ T9213]  dump_stack_lvl+0x16c/0x1f0
[  277.560473][ T9213]  should_fail_ex+0x512/0x640
[  277.560491][ T9213]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  277.560518][ T9213]  should_failslab+0xc2/0x120
[  277.560537][ T9213]  __kmalloc_cache_noprof+0x6a/0x3e0
[  277.560562][ T9213]  ? trace_cap_capable+0x18d/0x200
[  277.560586][ T9213]  ? sctp_association_new+0xbb/0x2a00
[  277.560622][ T9213]  sctp_association_new+0xbb/0x2a00
[  277.560648][ T9213]  ? sctp_v4_scope+0x183/0x1a0
[  277.560679][ T9213]  sctp_connect_new_asoc+0x1b6/0x790
[  277.560713][ T9213]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  277.560740][ T9213]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  277.560767][ T9213]  __sctp_connect+0x3f3/0xc60
[  277.560783][ T9213]  ? do_raw_spin_lock+0x12c/0x2b0
[  277.560810][ T9213]  ? __pfx___sctp_connect+0x10/0x10
[  277.560826][ T9213]  ? __pfx_sctp_inet_connect+0x10/0x10
[  277.560841][ T9213]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  277.560868][ T9213]  ? __pfx_sctp_inet_connect+0x10/0x10
[  277.560882][ T9213]  sctp_inet_connect+0x15f/0x200
[  277.560897][ T9213]  __sys_connect_file+0x13e/0x1a0
[  277.560916][ T9213]  __sys_connect+0x14d/0x170
[  277.560931][ T9213]  ? __pfx___sys_connect+0x10/0x10
[  277.560951][ T9213]  ? __pfx_ksys_write+0x10/0x10
[  277.560975][ T9213]  ? rcu_is_watching+0x12/0xc0
[  277.560999][ T9213]  __x64_sys_connect+0x72/0xb0
[  277.561013][ T9213]  ? lockdep_hardirqs_on+0x7c/0x110
[  277.561032][ T9213]  do_syscall_64+0xcd/0x260
[  277.561054][ T9213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.561071][ T9213] RIP: 0033:0x7f670218d169
[  277.561084][ T9213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  277.561099][ T9213] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  277.561116][ T9213] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  277.561127][ T9213] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003
[  277.561136][ T9213] RBP: 00007f6702f61090 R08: 0000000000000000 R09: 0000000000000000
[  277.561145][ T9213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.561154][ T9213] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  277.561170][ T9213]  </TASK>

syzkaller
syzkaller login: [  282.054590][ T9256] Invalid ELF header magic: != ELF
[  282.287020][ T9260] usbip-vudc usbip-vudc.0: gadget not bound
[  282.927401][ T8675] syz.2.686 (8675) used greatest stack depth: 20080 bytes left
[  285.027945][ T9288] mkiss: ax0: crc mode is auto.
[  285.702732][ T9297] FAULT_INJECTION: forcing a failure.
[  285.702732][ T9297] name failslab, interval 1, probability 0, space 0, times 0
[  285.735043][ T9297] CPU: 0 UID: 0 PID: 9297 Comm: syz.0.828 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  285.735074][ T9297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  285.735086][ T9297] Call Trace:
[  285.735094][ T9297]  <TASK>
[  285.735103][ T9297]  dump_stack_lvl+0x16c/0x1f0
[  285.735144][ T9297]  should_fail_ex+0x512/0x640
[  285.735164][ T9297]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  285.735187][ T9297]  should_failslab+0xc2/0x120
[  285.735210][ T9297]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  285.735229][ T9297]  ? __d_alloc+0x31/0xaa0
[  285.735252][ T9297]  __d_alloc+0x31/0xaa0
[  285.735272][ T9297]  d_alloc_pseudo+0x1c/0xc0
[  285.735297][ T9297]  alloc_file_pseudo+0xcf/0x230
[  285.735322][ T9297]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  285.735346][ T9297]  ? alloc_fd+0x471/0x7d0
[  285.735376][ T9297]  __anon_inode_getfile+0xf7/0x370
[  285.735440][ T9297]  anon_inode_getfile_fmode+0x37/0xa0
[  285.735459][ T9297]  __do_sys_fanotify_init+0x8e3/0xb80
[  285.735486][ T9297]  do_syscall_64+0xcd/0x260
[  285.735512][ T9297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.735533][ T9297] RIP: 0033:0x7f7ff078d169
[  285.735549][ T9297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.735565][ T9297] RSP: 002b:00007f7ff168e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c
[  285.735583][ T9297] RAX: ffffffffffffffda RBX: 00007f7ff09a5fa0 RCX: 00007f7ff078d169
[  285.735593][ T9297] RDX: 0000000000000000 RSI: 0002000000000002 RDI: 0000000000000005
[  285.735604][ T9297] RBP: 00007f7ff080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  285.735613][ T9297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  285.735623][ T9297] R13: 0000000000000000 R14: 00007f7ff09a5fa0 R15: 00007fff285f2b08
[  285.735639][ T9297]  </TASK>
[  286.098982][ T8726] syz.2.686 (8726) used greatest stack depth: 19848 bytes left
[  286.187362][ T8713] syz.2.686 (8713) used greatest stack depth: 19600 bytes left
[  286.930139][ T9307] FAULT_INJECTION: forcing a failure.
[  286.930139][ T9307] name failslab, interval 1, probability 0, space 0, times 0
[  287.001123][ T9307] CPU: 0 UID: 0 PID: 9307 Comm: syz.3.832 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  287.001155][ T9307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  287.001167][ T9307] Call Trace:
[  287.001173][ T9307]  <TASK>
[  287.001180][ T9307]  dump_stack_lvl+0x16c/0x1f0
[  287.001210][ T9307]  should_fail_ex+0x512/0x640
[  287.001230][ T9307]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  287.001251][ T9307]  should_failslab+0xc2/0x120
[  287.001272][ T9307]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  287.001288][ T9307]  ? __pfx___might_resched+0x10/0x10
[  287.001313][ T9307]  ? __anon_vma_prepare+0xae/0x5e0
[  287.001334][ T9307]  __anon_vma_prepare+0xae/0x5e0
[  287.001351][ T9307]  ? __pfx___pte_alloc+0x10/0x10
[  287.001375][ T9307]  __vmf_anon_prepare+0x11c/0x240
[  287.001399][ T9307]  do_pte_missing+0x1038/0x3ea0
[  287.001416][ T9307]  ? _raw_spin_unlock+0x28/0x50
[  287.001433][ T9307]  ? __pmd_alloc+0x3c2/0x870
[  287.001458][ T9307]  __handle_mm_fault+0x1043/0x2a50
[  287.001477][ T9307]  ? __pfx___handle_mm_fault+0x10/0x10
[  287.001505][ T9307]  handle_mm_fault+0x404/0xae0
[  287.001523][ T9307]  __get_user_pages+0x771/0x36f0
[  287.001552][ T9307]  ? __pfx_mt_find+0x10/0x10
[  287.001575][ T9307]  ? __pfx___get_user_pages+0x10/0x10
[  287.001605][ T9307]  populate_vma_page_range+0x278/0x3a0
[  287.001623][ T9307]  ? __pfx_populate_vma_page_range+0x10/0x10
[  287.001639][ T9307]  ? __pfx_find_vma_intersection+0x10/0x10
[  287.001663][ T9307]  ? do_mmap+0x69c/0x11b0
[  287.001687][ T9307]  __mm_populate+0x1d8/0x380
[  287.001703][ T9307]  ? __pfx___mm_populate+0x10/0x10
[  287.001719][ T9307]  ? up_write+0x1b2/0x520
[  287.001738][ T9307]  vm_mmap_pgoff+0x362/0x450
[  287.001776][ T9307]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  287.001805][ T9307]  ? __x64_sys_futex+0x1e0/0x4c0
[  287.001829][ T9307]  ? __x64_sys_futex+0x1e9/0x4c0
[  287.001853][ T9307]  ksys_mmap_pgoff+0x7d/0x5c0
[  287.001876][ T9307]  ? rcu_is_watching+0x12/0xc0
[  287.001900][ T9307]  __x64_sys_mmap+0x125/0x190
[  287.001923][ T9307]  do_syscall_64+0xcd/0x260
[  287.001946][ T9307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.001964][ T9307] RIP: 0033:0x7f98d538d169
[  287.001978][ T9307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  287.001994][ T9307] RSP: 002b:00007f98d61b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  287.002011][ T9307] RAX: ffffffffffffffda RBX: 00007f98d55a5fa0 RCX: 00007f98d538d169
[  287.002022][ T9307] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000
[  287.002032][ T9307] RBP: 00007f98d540e2a0 R08: 0000000000000007 R09: 0000000000028000
[  287.002041][ T9307] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  287.002051][ T9307] R13: 0000000000000000 R14: 00007f98d55a5fa0 R15: 00007ffd8ee74738
[  287.002068][ T9307]  </TASK>
[  287.792069][ T9314] FAULT_INJECTION: forcing a failure.
[  287.792069][ T9314] name fail_futex, interval 1, probability 0, space 0, times 0
[  287.821436][ T9314] CPU: 0 UID: 0 PID: 9314 Comm: syz.0.834 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  287.821468][ T9314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  287.821479][ T9314] Call Trace:
[  287.821485][ T9314]  <TASK>
[  287.821492][ T9314]  dump_stack_lvl+0x16c/0x1f0
[  287.821522][ T9314]  should_fail_ex+0x512/0x640
[  287.821543][ T9314]  get_futex_key+0x49e/0x1000
[  287.821570][ T9314]  ? __pfx_get_futex_key+0x10/0x10
[  287.821598][ T9314]  futex_wake+0xe7/0x4e0
[  287.821616][ T9314]  ? __pfx_futex_wake+0x10/0x10
[  287.821632][ T9314]  ? kmem_cache_free+0x2d4/0x4d0
[  287.821650][ T9314]  ? fd_install+0x225/0x750
[  287.821676][ T9314]  ? putname+0x154/0x1a0
[  287.821696][ T9314]  do_futex+0x1e3/0x350
[  287.821719][ T9314]  ? __pfx_do_futex+0x10/0x10
[  287.821954][ T9314]  ? __pfx___might_resched+0x10/0x10
[  287.821990][ T9314]  __x64_sys_futex+0x1e0/0x4c0
[  287.822022][ T9314]  ? __x64_sys_openat+0x174/0x210
[  287.822045][ T9314]  ? __pfx___x64_sys_futex+0x10/0x10
[  287.822081][ T9314]  ? rcu_is_watching+0x12/0xc0
[  287.822111][ T9314]  do_syscall_64+0xcd/0x260
[  287.822139][ T9314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.822156][ T9314] RIP: 0033:0x7f7ff078d169
[  287.822172][ T9314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  287.822190][ T9314] RSP: 002b:00007f7ff168e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  287.822208][ T9314] RAX: ffffffffffffffda RBX: 00007f7ff09a5fa8 RCX: 00007f7ff078d169
[  287.822219][ T9314] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7ff09a5fac
[  287.822229][ T9314] RBP: 00007f7ff09a5fa0 R08: 00007f7ff168f000 R09: 0000000000000000
[  287.822239][ T9314] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f7ff09a5fac
[  287.822249][ T9314] R13: 0000000000000000 R14: 00007fff285f2a20 R15: 00007fff285f2b08
[  287.822266][ T9314]  </TASK>
[  288.458598][ T8714] syz.2.686 (8714) used greatest stack depth: 19240 bytes left
[  290.437538][ T9342] netlink: 'syz.3.842': attribute type 10 has an invalid length.
[  290.552938][ T9344] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  290.562916][ T9342] netlink: 230 bytes leftover after parsing attributes in process `syz.3.842'.
[  290.670200][ T9342] team0: Port device team_slave_1 removed
[  291.642925][ T9364] input: f�
 as /devices/virtual/input/input7
[  291.969968][ T9369] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  292.003476][ T5846] udevd[5846]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  293.170135][ T9376] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  293.979929][ T9401] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  294.816055][ T9421] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  295.986015][ T9433] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  296.287180][ T9441] netlink: 'syz.2.866': attribute type 10 has an invalid length.
[  296.322266][ T9441] netlink: 230 bytes leftover after parsing attributes in process `syz.2.866'.
[  296.478376][ T9441] team0: Port device team_slave_1 removed
[  297.402580][ T9468] FAULT_INJECTION: forcing a failure.
[  297.402580][ T9468] name failslab, interval 1, probability 0, space 0, times 0
[  297.554825][ T9468] CPU: 0 UID: 0 PID: 9468 Comm: syz.1.872 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  297.554858][ T9468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  297.554870][ T9468] Call Trace:
[  297.554876][ T9468]  <TASK>
[  297.554884][ T9468]  dump_stack_lvl+0x16c/0x1f0
[  297.554915][ T9468]  should_fail_ex+0x512/0x640
[  297.554935][ T9468]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  297.554976][ T9468]  should_failslab+0xc2/0x120
[  297.555003][ T9468]  __kmalloc_cache_noprof+0x6a/0x3e0
[  297.555031][ T9468]  ? __do_sys_fanotify_init+0x4ca/0xb80
[  297.555056][ T9468]  ? kasan_save_track+0x14/0x30
[  297.555076][ T9468]  __do_sys_fanotify_init+0x4ca/0xb80
[  297.555103][ T9468]  do_syscall_64+0xcd/0x260
[  297.555126][ T9468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.555144][ T9468] RIP: 0033:0x7f670218d169
[  297.555158][ T9468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.555174][ T9468] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c
[  297.555191][ T9468] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  297.555201][ T9468] RDX: 0000000000000000 RSI: 0002000000000002 RDI: 0000000000000005
[  297.555211][ T9468] RBP: 00007f670220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  297.555220][ T9468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  297.555230][ T9468] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  297.555246][ T9468]  </TASK>
[  297.719896][    C0] vkms_vblank_simulate: vblank timer overrun
[  298.878313][ T9482] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  299.269483][ T9475] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  299.813530][ T9489] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  299.970761][ T9489] netlink: 28 bytes leftover after parsing attributes in process `syz.2.876'.
[  300.299576][ T9489] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  302.131030][ T9534] FAULT_INJECTION: forcing a failure.
[  302.131030][ T9534] name failslab, interval 1, probability 0, space 0, times 0
[  302.211304][ T9534] CPU: 0 UID: 0 PID: 9534 Comm: syz.0.885 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  302.211333][ T9534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  302.211343][ T9534] Call Trace:
[  302.211348][ T9534]  <TASK>
[  302.211354][ T9534]  dump_stack_lvl+0x16c/0x1f0
[  302.211384][ T9534]  should_fail_ex+0x512/0x640
[  302.211402][ T9534]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  302.211430][ T9534]  should_failslab+0xc2/0x120
[  302.211448][ T9534]  __kmalloc_cache_noprof+0x6a/0x3e0
[  302.211473][ T9534]  ? blk_mq_init_allocated_queue+0xd1/0x1230
[  302.211494][ T9534]  blk_mq_init_allocated_queue+0xd1/0x1230
[  302.211513][ T9534]  ? blk_alloc_queue+0x630/0x760
[  302.211536][ T9534]  ? blk_mq_alloc_queue+0x179/0x290
[  302.211551][ T9534]  ? blk_alloc_queue+0x1a3/0x760
[  302.211584][ T9534]  blk_mq_alloc_queue+0x1c2/0x290
[  302.211600][ T9534]  ? __pfx_blk_mq_alloc_queue+0x10/0x10
[  302.211616][ T9534]  ? blk_mq_alloc_map_and_rqs+0xb1b/0xf10
[  302.211644][ T9534]  ? debug_mutex_init+0x37/0x70
[  302.211667][ T9534]  ? blk_mq_alloc_tag_set+0xce4/0x1250
[  302.211686][ T9534]  __blk_mq_alloc_disk+0x29/0x120
[  302.211703][ T9534]  loop_add+0x496/0xb70
[  302.211731][ T9534]  ? 0xffffffff81000000
[  302.211743][ T9534]  ? do_vfs_ioctl+0x512/0x1990
[  302.211764][ T9534]  ? __pfx_loop_add+0x10/0x10
[  302.211787][ T9534]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  302.211817][ T9534]  ? find_held_lock+0x2b/0x80
[  302.211837][ T9534]  ? 0xffffffff81000000
[  302.211847][ T9534]  loop_control_ioctl+0x13c/0x630
[  302.211863][ T9534]  ? __pfx_loop_control_ioctl+0x10/0x10
[  302.211882][ T9534]  ? 0xffffffff81000000
[  302.211892][ T9534]  ? __pfx_loop_control_ioctl+0x10/0x10
[  302.211907][ T9534]  ? 0xffffffff81000000
[  302.211917][ T9534]  __x64_sys_ioctl+0x190/0x200
[  302.211939][ T9534]  do_syscall_64+0xcd/0x260
[  302.211961][ T9534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.211978][ T9534] RIP: 0033:0x7f7ff078d169
[  302.211991][ T9534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.212006][ T9534] RSP: 002b:00007f7ff168e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  302.212025][ T9534] RAX: ffffffffffffffda RBX: 00007f7ff09a5fa0 RCX: 00007f7ff078d169
[  302.212036][ T9534] RDX: ffffffff81000000 RSI: 0000000000004c80 RDI: 0000000000000008
[  302.212045][ T9534] RBP: 00007f7ff080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  302.212054][ T9534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  302.212063][ T9534] R13: 0000000000000000 R14: 00007f7ff09a5fa0 R15: 00007fff285f2b08
[  302.212076][ T9534]  ? 0xffffffff81000000
[  302.212088][ T9534]  </TASK>
[  303.111912][ T9545] netlink: 28 bytes leftover after parsing attributes in process `syz.3.888'.

syzkaller
syzkaller login: [  306.287238][ T9608] ima: policy update failed
[  306.292057][   T30] audit: type=1802 audit(6038300502.610:11): pid=9608 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.901" res=0 errno=0
[  308.667848][ T9637] FAULT_INJECTION: forcing a failure.
[  308.667848][ T9637] name failslab, interval 1, probability 0, space 0, times 0
[  308.738829][ T9637] CPU: 0 UID: 7 PID: 9637 Comm: syz.3.907 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  308.738860][ T9637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  308.738871][ T9637] Call Trace:
[  308.738877][ T9637]  <TASK>
[  308.738885][ T9637]  dump_stack_lvl+0x16c/0x1f0
[  308.738918][ T9637]  should_fail_ex+0x512/0x640
[  308.738940][ T9637]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  308.738970][ T9637]  should_failslab+0xc2/0x120
[  308.738990][ T9637]  __kmalloc_cache_noprof+0x6a/0x3e0
[  308.739017][ T9637]  ? do_epoll_create+0x62/0x470
[  308.739046][ T9637]  do_epoll_create+0x62/0x470
[  308.739070][ T9637]  __x64_sys_epoll_create+0x45/0x70
[  308.739097][ T9637]  do_syscall_64+0xcd/0x260
[  308.739121][ T9637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.739140][ T9637] RIP: 0033:0x7f98d538d169
[  308.739154][ T9637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.739170][ T9637] RSP: 002b:00007f98d61b4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5
[  308.739187][ T9637] RAX: ffffffffffffffda RBX: 00007f98d55a5fa0 RCX: 00007f98d538d169
[  308.739198][ T9637] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000007ff
[  308.739208][ T9637] RBP: 00007f98d540e2a0 R08: 0000000000000000 R09: 0000000000000000
[  308.739218][ T9637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  308.739227][ T9637] R13: 0000000000000000 R14: 00007f98d55a5fa0 R15: 00007ffd8ee74738
[  308.739244][ T9637]  </TASK>
[  308.912136][    C0] vkms_vblank_simulate: vblank timer overrun
[  311.878801][ T9681] netlink: 222 bytes leftover after parsing attributes in process `syz.1.916'.
[  312.082676][ T9681] bridge0: port 2(bridge_slave_1) entered disabled state
[  314.227793][ T9698] sp0: Synchronizing with TNC
[  314.309541][ T9699] ima: policy update failed
[  314.398608][   T30] audit: type=1802 audit(6038300510.710:12): pid=9699 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.922" res=0 errno=0
[  315.030508][ T9708] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  315.820537][ T9721] warning: `syz.0.926' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  316.496986][ T9740] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  321.589497][ T9825] netlink: 'syz.2.947': attribute type 1 has an invalid length.
[  321.691054][ T9825] Invalid ELF header magic: != ELF
[  322.688334][ T9827] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  323.319894][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  323.327080][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  323.921354][ T9847] FAULT_INJECTION: forcing a failure.
[  323.921354][ T9847] name failslab, interval 1, probability 0, space 0, times 0
[  324.008423][ T9847] CPU: 0 UID: 0 PID: 9847 Comm: syz.0.953 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  324.008459][ T9847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  324.008471][ T9847] Call Trace:
[  324.008478][ T9847]  <TASK>
[  324.008486][ T9847]  dump_stack_lvl+0x16c/0x1f0
[  324.008516][ T9847]  should_fail_ex+0x512/0x640
[  324.008535][ T9847]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  324.008557][ T9847]  should_failslab+0xc2/0x120
[  324.008579][ T9847]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  324.008595][ T9847]  ? __proc_create+0xc3/0x8c0
[  324.008617][ T9847]  ? __proc_create+0x2ce/0x8c0
[  324.008641][ T9847]  __proc_create+0x2ce/0x8c0
[  324.008664][ T9847]  ? __pfx___proc_create+0x10/0x10
[  324.008685][ T9847]  ? proc_register+0x314/0x5f0
[  324.008707][ T9847]  proc_create_reg+0x7d/0x180
[  324.008729][ T9847]  proc_create_net_data+0x8e/0x1b0
[  324.008750][ T9847]  ? __pfx_proc_create_net_data+0x10/0x10
[  324.008771][ T9847]  ? __pfx_ndisc_net_init+0x10/0x10
[  324.008796][ T9847]  ? __pfx_raw6_init_net+0x10/0x10
[  324.008814][ T9847]  raw6_init_net+0x57/0x80
[  324.008831][ T9847]  ops_init+0x1df/0x5f0
[  324.008855][ T9847]  setup_net+0x21e/0x850
[  324.008876][ T9847]  ? __pfx_setup_net+0x10/0x10
[  324.008896][ T9847]  ? lockdep_init_map_type+0x5c/0x280
[  324.008913][ T9847]  ? __pfx_down_read_killable+0x10/0x10
[  324.008939][ T9847]  ? debug_mutex_init+0x37/0x70
[  324.008961][ T9847]  copy_net_ns+0x2a6/0x5f0
[  324.008985][ T9847]  create_new_namespaces+0x3ea/0xad0
[  324.009012][ T9847]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  324.009037][ T9847]  ksys_unshare+0x45b/0xa40
[  324.009063][ T9847]  ? __pfx_ksys_unshare+0x10/0x10
[  324.009087][ T9847]  ? xfd_validate_state+0x5d/0x180
[  324.009106][ T9847]  ? rcu_is_watching+0x12/0xc0
[  324.009129][ T9847]  __x64_sys_unshare+0x31/0x40
[  324.009153][ T9847]  do_syscall_64+0xcd/0x260
[  324.009176][ T9847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.009329][ T9847] RIP: 0033:0x7f7ff078d169
[  324.009353][ T9847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.009373][ T9847] RSP: 002b:00007f7ff168e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  324.009393][ T9847] RAX: ffffffffffffffda RBX: 00007f7ff09a5fa0 RCX: 00007f7ff078d169
[  324.009406][ T9847] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  324.009418][ T9847] RBP: 00007f7ff080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  324.009430][ T9847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  324.009441][ T9847] R13: 0000000000000000 R14: 00007f7ff09a5fa0 R15: 00007fff285f2b08
[  324.009468][ T9847]  </TASK>
[  324.298162][ T9851] FAULT_INJECTION: forcing a failure.
[  324.298162][ T9851] name fail_futex, interval 1, probability 0, space 0, times 0
[  324.312029][ T9851] CPU: 0 UID: 0 PID: 9851 Comm: syz.1.954 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  324.312056][ T9851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  324.312069][ T9851] Call Trace:
[  324.312078][ T9851]  <TASK>
[  324.312087][ T9851]  dump_stack_lvl+0x16c/0x1f0
[  324.312115][ T9851]  should_fail_ex+0x512/0x640
[  324.312138][ T9851]  get_futex_key+0x49e/0x1000
[  324.312167][ T9851]  ? __pfx_get_futex_key+0x10/0x10
[  324.312191][ T9851]  ? pick_eevdf+0x3be/0x5b0
[  324.312215][ T9851]  ? update_curr_se+0x8b/0x270
[  324.312241][ T9851]  ? update_curr+0x74/0x800
[  324.312283][ T9851]  futex_wait_setup+0x78/0x290
[  324.312307][ T9851]  __futex_wait+0x266/0x3c0
[  324.312326][ T9851]  ? __pfx___futex_wait+0x10/0x10
[  324.312344][ T9851]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  324.312369][ T9851]  ? __pfx_futex_wake_mark+0x10/0x10
[  324.312394][ T9851]  futex_wait+0xe8/0x380
[  324.312412][ T9851]  ? __pfx_futex_wait+0x10/0x10
[  324.312438][ T9851]  do_futex+0x229/0x350
[  324.312465][ T9851]  ? __pfx_do_futex+0x10/0x10
[  324.312489][ T9851]  ? ksys_msgctl.constprop.0+0x15a/0x330
[  324.312515][ T9851]  ? __pfx_ksys_msgctl.constprop.0+0x10/0x10
[  324.312540][ T9851]  __x64_sys_futex+0x1e0/0x4c0
[  324.312564][ T9851]  ? __pfx___x64_sys_futex+0x10/0x10
[  324.312588][ T9851]  ? rcu_is_watching+0x12/0xc0
[  324.312613][ T9851]  do_syscall_64+0xcd/0x260
[  324.312635][ T9851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.312655][ T9851] RIP: 0033:0x7f670218d169
[  324.312670][ T9851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.312687][ T9851] RSP: 002b:00007f6702f610e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  324.312703][ T9851] RAX: ffffffffffffffda RBX: 00007f67023a5fa8 RCX: 00007f670218d169
[  324.312715][ T9851] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f67023a5fa8
[  324.312724][ T9851] RBP: 00007f67023a5fa0 R08: 0000000000000000 R09: 0000000000000000
[  324.312734][ T9851] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f67023a5fac
[  324.312744][ T9851] R13: 0000000000000000 R14: 00007ffea99292e0 R15: 00007ffea99293c8
[  324.312761][ T9851]  </TASK>
[  326.612990][ T9845] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  326.989853][ T9875] netlink: 334 bytes leftover after parsing attributes in process `syz.3.952'.
[  327.870122][ T9887] FAULT_INJECTION: forcing a failure.
[  327.870122][ T9887] name failslab, interval 1, probability 0, space 0, times 0
[  327.965231][ T9887] CPU: 0 UID: 0 PID: 9887 Comm: syz.1.963 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  327.965270][ T9887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  327.965282][ T9887] Call Trace:
[  327.965289][ T9887]  <TASK>
[  327.965297][ T9887]  dump_stack_lvl+0x16c/0x1f0
[  327.965331][ T9887]  should_fail_ex+0x512/0x640
[  327.965350][ T9887]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  327.965382][ T9887]  should_failslab+0xc2/0x120
[  327.965404][ T9887]  __kmalloc_cache_noprof+0x6a/0x3e0
[  327.965430][ T9887]  ? snd_seq_create_port+0xf7/0xad0
[  327.965456][ T9887]  snd_seq_create_port+0xf7/0xad0
[  327.965482][ T9887]  snd_seq_ioctl_create_port+0x253/0x950
[  327.965519][ T9887]  ? __pfx_snd_seq_ioctl_create_port+0x10/0x10
[  327.965543][ T9887]  ? kasan_save_stack+0x42/0x60
[  327.965562][ T9887]  ? kasan_save_stack+0x33/0x60
[  327.965578][ T9887]  ? kasan_save_track+0x14/0x30
[  327.965598][ T9887]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  327.965626][ T9887]  create_port+0x197/0x260
[  327.965652][ T9887]  ? __pfx_create_port+0x10/0x10
[  327.965680][ T9887]  ? __pfx_snd_seq_oss_event_input+0x10/0x10
[  327.965710][ T9887]  ? __pfx_free_devinfo+0x10/0x10
[  327.965745][ T9887]  ? mark_held_locks+0x49/0x80
[  327.965773][ T9887]  ? _raw_spin_unlock_irq+0x23/0x50
[  327.965793][ T9887]  snd_seq_oss_open+0x36c/0xa20
[  327.965819][ T9887]  odev_open+0x6f/0x90
[  327.965839][ T9887]  ? __pfx_odev_open+0x10/0x10
[  327.965860][ T9887]  soundcore_open+0x409/0x580
[  327.965883][ T9887]  ? __pfx_soundcore_open+0x10/0x10
[  327.965904][ T9887]  chrdev_open+0x231/0x6a0
[  327.965920][ T9887]  ? __pfx_apparmor_file_open+0x10/0x10
[  327.965940][ T9887]  ? __pfx_chrdev_open+0x10/0x10
[  327.965957][ T9887]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  327.965986][ T9887]  do_dentry_open+0x741/0x1c10
[  327.966012][ T9887]  ? __pfx_chrdev_open+0x10/0x10
[  327.966031][ T9887]  vfs_open+0x82/0x3f0
[  327.966051][ T9887]  path_openat+0x1e5e/0x2d40
[  327.966072][ T9887]  ? __pfx_path_openat+0x10/0x10
[  327.966090][ T9887]  do_filp_open+0x20b/0x470
[  327.966105][ T9887]  ? __pfx_do_filp_open+0x10/0x10
[  327.966132][ T9887]  ? alloc_fd+0x471/0x7d0
[  327.966165][ T9887]  do_sys_openat2+0x11b/0x1d0
[  327.966185][ T9887]  ? __pfx_do_sys_openat2+0x10/0x10
[  327.966205][ T9887]  ? do_raw_spin_unlock+0x172/0x230
[  327.966227][ T9887]  __x64_sys_openat+0x174/0x210
[  327.966249][ T9887]  ? __pfx___x64_sys_openat+0x10/0x10
[  327.966271][ T9887]  ? rcu_is_watching+0x12/0xc0
[  327.966295][ T9887]  do_syscall_64+0xcd/0x260
[  327.966317][ T9887]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.966334][ T9887] RIP: 0033:0x7f670218d169
[  327.966350][ T9887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.966366][ T9887] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  327.966383][ T9887] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  327.966394][ T9887] RDX: 0000000000000080 RSI: 0000200000000500 RDI: ffffffffffffff9c
[  327.966404][ T9887] RBP: 00007f670220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  327.966413][ T9887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  327.966423][ T9887] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  327.966440][ T9887]  </TASK>
[  327.966449][ T9887] ALSA: seq_oss: can't create port
[  329.149690][ T9906] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  332.894983][ T5850] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18
[  337.486775][ T9976] netlink: 544 bytes leftover after parsing attributes in process `syz.3.981'.
[  338.169277][ T9984] FAULT_INJECTION: forcing a failure.
[  338.169277][ T9984] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  338.294602][ T9984] CPU: 0 UID: 0 PID: 9984 Comm: syz.1.984 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  338.294634][ T9984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  338.294646][ T9984] Call Trace:
[  338.294653][ T9984]  <TASK>
[  338.294660][ T9984]  dump_stack_lvl+0x16c/0x1f0
[  338.294692][ T9984]  should_fail_ex+0x512/0x640
[  338.294715][ T9984]  should_fail_alloc_page+0xe7/0x130
[  338.294739][ T9984]  prepare_alloc_pages.constprop.0+0x172/0x570
[  338.294766][ T9984]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  338.294794][ T9984]  __alloc_frozen_pages_noprof+0x18f/0x24d0
[  338.294814][ T9984]  ? arch_stack_walk+0xa6/0x100
[  338.294842][ T9984]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  338.294859][ T9984]  ? stack_trace_save+0x8e/0xc0
[  338.294880][ T9984]  ? __pfx_stack_trace_save+0x10/0x10
[  338.294901][ T9984]  ? stack_depot_save_flags+0x29/0x9c0
[  338.294919][ T9984]  ? find_held_lock+0x2b/0x80
[  338.294941][ T9984]  ? kasan_save_stack+0x42/0x60
[  338.294957][ T9984]  ? interleave_nodes+0x16b/0x410
[  338.294978][ T9984]  ? policy_nodemask+0xea/0x4e0
[  338.294997][ T9984]  alloc_pages_mpol+0x1fb/0x540
[  338.295018][ T9984]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  338.295036][ T9984]  ? __page_table_check_ptes_set+0x16a/0x3e0
[  338.295054][ T9984]  ? do_raw_spin_lock+0x12c/0x2b0
[  338.295071][ T9984]  ? find_held_lock+0x2b/0x80
[  338.295093][ T9984]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  338.295120][ T9984]  alloc_pages_noprof+0x131/0x390
[  338.295138][ T9984]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  338.295164][ T9984]  get_free_pages_noprof+0xc/0x40
[  338.295184][ T9984]  kasan_populate_vmalloc_pte+0x2d/0x160
[  338.295210][ T9984]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  338.295237][ T9984]  __apply_to_page_range+0x5f9/0xd30
[  338.295274][ T9984]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  338.295302][ T9984]  ? __pfx___apply_to_page_range+0x10/0x10
[  338.295328][ T9984]  ? alloc_vmap_area+0x872/0x2970
[  338.295352][ T9984]  alloc_vmap_area+0x919/0x2970
[  338.295381][ T9984]  ? __pfx_alloc_vmap_area+0x10/0x10
[  338.295409][ T9984]  __get_vm_area_node+0x1a7/0x300
[  338.295438][ T9984]  __vmalloc_node_range_noprof+0x277/0x1540
[  338.295467][ T9984]  ? __do_sys_listmount+0x1c2/0xed0
[  338.295500][ T9984]  ? __do_sys_listmount+0x1c2/0xed0
[  338.295530][ T9984]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  338.295562][ T9984]  __kvmalloc_node_noprof+0x2ff/0x600
[  338.295589][ T9984]  ? __do_sys_listmount+0x1c2/0xed0
[  338.295614][ T9984]  ? __do_sys_listmount+0x1c2/0xed0
[  338.295645][ T9984]  ? __do_sys_listmount+0x1c2/0xed0
[  338.295668][ T9984]  __do_sys_listmount+0x1c2/0xed0
[  338.295695][ T9984]  ? __x64_sys_futex+0x1e0/0x4c0
[  338.295717][ T9984]  ? __x64_sys_futex+0x1e9/0x4c0
[  338.295741][ T9984]  ? __pfx___do_sys_listmount+0x10/0x10
[  338.295765][ T9984]  ? xfd_validate_state+0x5d/0x180
[  338.295788][ T9984]  do_syscall_64+0xcd/0x260
[  338.295813][ T9984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.295832][ T9984] RIP: 0033:0x7f670218d169
[  338.295848][ T9984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.295865][ T9984] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  338.295883][ T9984] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  338.295895][ T9984] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  338.295905][ T9984] RBP: 00007f670220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  338.295915][ T9984] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  338.295924][ T9984] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  338.295942][ T9984]  </TASK>
[  339.116639][ T9984] syz.1.984: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  339.224884][ T9984] CPU: 0 UID: 0 PID: 9984 Comm: syz.1.984 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  339.224918][ T9984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  339.224930][ T9984] Call Trace:
[  339.224937][ T9984]  <TASK>
[  339.224944][ T9984]  dump_stack_lvl+0x16c/0x1f0
[  339.224977][ T9984]  warn_alloc+0x248/0x3a0
[  339.225006][ T9984]  ? __pfx_warn_alloc+0x10/0x10
[  339.225026][ T9984]  ? kfree+0x2b6/0x4d0
[  339.225054][ T9984]  ? __get_vm_area_node+0x1e5/0x300
[  339.225081][ T9984]  __vmalloc_node_range_noprof+0xd31/0x1540
[  339.225115][ T9984]  ? __do_sys_listmount+0x1c2/0xed0
[  339.225146][ T9984]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  339.225181][ T9984]  __kvmalloc_node_noprof+0x2ff/0x600
[  339.225209][ T9984]  ? __do_sys_listmount+0x1c2/0xed0
[  339.225234][ T9984]  ? __do_sys_listmount+0x1c2/0xed0
[  339.225260][ T9984]  ? __do_sys_listmount+0x1c2/0xed0
[  339.225283][ T9984]  __do_sys_listmount+0x1c2/0xed0
[  339.225309][ T9984]  ? __x64_sys_futex+0x1e0/0x4c0
[  339.225333][ T9984]  ? __x64_sys_futex+0x1e9/0x4c0
[  339.225356][ T9984]  ? __pfx___do_sys_listmount+0x10/0x10
[  339.225380][ T9984]  ? xfd_validate_state+0x5d/0x180
[  339.225404][ T9984]  do_syscall_64+0xcd/0x260
[  339.225427][ T9984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.225445][ T9984] RIP: 0033:0x7f670218d169
[  339.225461][ T9984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  339.225477][ T9984] RSP: 002b:00007f6702f61038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  339.225495][ T9984] RAX: ffffffffffffffda RBX: 00007f67023a5fa0 RCX: 00007f670218d169
[  339.225506][ T9984] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  339.225516][ T9984] RBP: 00007f670220e2a0 R08: 0000000000000000 R09: 0000000000000000
[  339.225526][ T9984] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  339.225536][ T9984] R13: 0000000000000000 R14: 00007f67023a5fa0 R15: 00007ffea99293c8
[  339.225553][ T9984]  </TASK>
[  339.225559][ T9984] Mem-Info:

syzkaller
syzkaller login: [  340.659040][ T9997] netlink: 28 bytes leftover after parsing attributes in process `syz.3.986'.
[  340.999677][ T9984] active_anon:53715 inactive_anon:0 isolated_anon:0
[  340.999677][ T9984]  active_file:4854 inactive_file:52509 isolated_file:0
[  340.999677][ T9984]  unevictable:768 dirty:454 writeback:0
[  340.999677][ T9984]  slab_reclaimable:10667 slab_unreclaimable:95898
[  340.999677][ T9984]  mapped:34982 shmem:42573 pagetables:1007
[  340.999677][ T9984]  sec_pagetables:0 bounce:0
[  340.999677][ T9984]  kernel_misc_reclaimable:0
[  340.999677][ T9984]  free:1268362 free_pcp:1101 free_cma:0
[  341.052554][ T9999] misc userio: No port type given on /dev/userio
[  341.115826][ T9999] netlink: 222 bytes leftover after parsing attributes in process `syz.3.987'.
[  341.148273][ T9999] netlink: 222 bytes leftover after parsing attributes in process `syz.3.987'.
[  341.511921][ T9984] Node 0 active_anon:205968kB inactive_anon:0kB active_file:19416kB inactive_file:209960kB unevictable:1536kB isolated(anon):2600kB isolated(file):0kB mapped:146376kB dirty:1864kB writeback:0kB shmem:162256kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11472kB pagetables:3816kB sec_pagetables:0kB all_unreclaimable? no
[  341.624066][ T5850] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18
[  342.590208][ T9984] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:4kB sec_pagetables:0kB all_unreclaimable? no
[  343.645440][ T9984] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  344.671709][ T9984] lowmem_reserve[]: 0 2484 2486 2486 2486
[  344.746191][ T9984] Node 0 DMA32 free:1254540kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:174660kB inactive_anon:0kB active_file:19416kB inactive_file:208152kB unevictable:1536kB writepending:2112kB present:3129332kB managed:2544032kB mlocked:0kB bounce:0kB free_pcp:2256kB local_pcp:2256kB free_cma:0kB
[  345.043205][ T9984] lowmem_reserve[]: 0 0 1 1 1
[  345.079761][ T9984] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1816kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB
[  345.194142][ T9984] lowmem_reserve[]: 0 0 0 0 0
[  345.214744][ T9984] Node 1 Normal free:3906848kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:448kB local_pcp:448kB free_cma:0kB
[  345.326072][ T9984] lowmem_reserve[]: 0 0 0 0 0
[  345.344066][ T9984] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  345.401091][ T9984] Node 0 DMA32: 1741*4kB (UME) 3336*8kB (UM) 1724*16kB (UM) 1628*32kB (UME) 794*64kB (UME) 421*128kB (UME) 249*256kB (UME) 105*512kB (UME) 29*1024kB (UM) 3*2048kB (UME) 222*4096kB (M) = 1280692kB
[  345.486746][ T9984] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  345.540915][ T9984] Node 1 Normal: 171*4kB (UME) 58*8kB (UME) 49*16kB (UME) 188*32kB (UME) 95*64kB (UME) 31*128kB (UME) 17*256kB (UM) 7*512kB (UME) 4*1024kB (UM) 1*2048kB (U) 946*4096kB (M) = 3906892kB
[  345.647767][ T9984] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  345.688364][ T9984] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  345.745749][ T9984] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  345.815869][ T9984] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  345.849789][ T9984] 83504 total pagecache pages
[  345.875771][ T9984] 15 pages in swap cache
[  345.897068][ T9984] Free swap  = 123492kB
[  345.928304][ T9984] Total swap = 124996kB
[  345.945882][ T9984] 2097051 pages RAM
[  345.989575][ T9984] 0 pages HighMem/MovableOnly
[  345.994427][ T9984] 428937 pages reserved
[  346.044432][ T9984] 0 pages cma reserved
[  346.775481][T10038] nbd: must specify an index to disconnect
[  350.585398][T10072] FAULT_INJECTION: forcing a failure.
[  350.585398][T10072] name failslab, interval 1, probability 0, space 0, times 0
[  350.698409][T10072] CPU: 0 UID: 0 PID: 10072 Comm: syz.2.998 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  350.698444][T10072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  350.698456][T10072] Call Trace:
[  350.698463][T10072]  <TASK>
[  350.698470][T10072]  dump_stack_lvl+0x16c/0x1f0
[  350.698501][T10072]  should_fail_ex+0x512/0x640
[  350.698520][T10072]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  350.698542][T10072]  should_failslab+0xc2/0x120
[  350.698562][T10072]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  350.698579][T10072]  ? find_held_lock+0x2b/0x80
[  350.698602][T10072]  ? __d_alloc+0x31/0xaa0
[  350.698622][T10072]  __d_alloc+0x31/0xaa0
[  350.698641][T10072]  d_alloc+0x4a/0x1e0
[  350.698659][T10072]  d_alloc_parallel+0xe3/0x12e0
[  350.698687][T10072]  ? register_lock_class+0x41/0x4c0
[  350.698707][T10072]  ? __pfx_d_alloc_parallel+0x10/0x10
[  350.698732][T10072]  ? lockdep_init_map_type+0x5c/0x280
[  350.698748][T10072]  ? lockdep_init_map_type+0x5c/0x280
[  350.698766][T10072]  __lookup_slow+0x193/0x460
[  350.698787][T10072]  ? __pfx___lookup_slow+0x10/0x10
[  350.698827][T10072]  ? lookup_fast+0x156/0x610
[  350.698849][T10072]  ? __pfx_kernfs_iop_permission+0x10/0x10
[  350.698880][T10072]  walk_component+0x353/0x5b0
[  350.698904][T10072]  link_path_walk.part.0.constprop.0+0x682/0xd60
[  350.698935][T10072]  path_openat+0x227/0x2d40
[  350.698948][T10072]  ? __x64_sys_openat+0x174/0x210
[  350.698976][T10072]  ? __pfx_path_openat+0x10/0x10
[  350.698997][T10072]  do_filp_open+0x20b/0x470
[  350.699014][T10072]  ? __pfx_do_filp_open+0x10/0x10
[  350.699039][T10072]  ? alloc_fd+0x471/0x7d0
[  350.699069][T10072]  do_sys_openat2+0x11b/0x1d0
[  350.699089][T10072]  ? __pfx_do_sys_openat2+0x10/0x10
[  350.699109][T10072]  ? __pfx___might_resched+0x10/0x10
[  350.699137][T10072]  __x64_sys_openat+0x174/0x210
[  350.699157][T10072]  ? __pfx___x64_sys_openat+0x10/0x10
[  350.699178][T10072]  ? rcu_is_watching+0x12/0xc0
[  350.699203][T10072]  do_syscall_64+0xcd/0x260
[  350.699226][T10072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.699244][T10072] RIP: 0033:0x7f640318d169
[  350.699259][T10072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.699276][T10072] RSP: 002b:00007f6404063038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  350.699293][T10072] RAX: ffffffffffffffda RBX: 00007f64033a5fa0 RCX: 00007f640318d169
[  350.699304][T10072] RDX: 00000000001c1540 RSI: 0000200000000180 RDI: ffffffffffffff9c
[  350.699315][T10072] RBP: 00007f640320e2a0 R08: 0000000000000000 R09: 0000000000000000
[  350.699324][T10072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  350.699334][T10072] R13: 0000000000000000 R14: 00007f64033a5fa0 R15: 00007fffffb2ca48
[  350.699357][T10072]  </TASK>
[  353.617392][T10101] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  353.835278][T10095] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[  354.670336][T10114] FAULT_INJECTION: forcing a failure.
[  354.670336][T10114] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  354.741267][T10114] CPU: 0 UID: 0 PID: 10114 Comm: syz.2.1008 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  354.741306][T10114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  354.741318][T10114] Call Trace:
[  354.741326][T10114]  <TASK>
[  354.741336][T10114]  dump_stack_lvl+0x16c/0x1f0
[  354.741376][T10114]  should_fail_ex+0x512/0x640
[  354.741402][T10114]  should_fail_alloc_page+0xe7/0x130
[  354.741427][T10114]  prepare_alloc_pages.constprop.0+0x172/0x570
[  354.741455][T10114]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  354.741484][T10114]  __alloc_frozen_pages_noprof+0x18f/0x24d0
[  354.741507][T10114]  ? arch_stack_walk+0xa6/0x100
[  354.741539][T10114]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  354.741558][T10114]  ? stack_trace_save+0x8e/0xc0
[  354.741579][T10114]  ? __pfx_stack_trace_save+0x10/0x10
[  354.741600][T10114]  ? stack_depot_save_flags+0x29/0x9c0
[  354.741618][T10114]  ? find_held_lock+0x2b/0x80
[  354.741641][T10114]  ? kasan_save_stack+0x42/0x60
[  354.741656][T10114]  ? interleave_nodes+0x16b/0x410
[  354.741677][T10114]  ? policy_nodemask+0xea/0x4e0
[  354.741697][T10114]  alloc_pages_mpol+0x1fb/0x540
[  354.741716][T10114]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  354.741734][T10114]  ? __page_table_check_ptes_set+0x16a/0x3e0
[  354.741752][T10114]  ? do_raw_spin_lock+0x12c/0x2b0
[  354.741770][T10114]  ? find_held_lock+0x2b/0x80
[  354.741791][T10114]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  354.741818][T10114]  alloc_pages_noprof+0x131/0x390
[  354.741847][T10114]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  354.741874][T10114]  get_free_pages_noprof+0xc/0x40
[  354.741895][T10114]  kasan_populate_vmalloc_pte+0x2d/0x160
[  354.741924][T10114]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  354.741953][T10114]  __apply_to_page_range+0x5f9/0xd30
[  354.741983][T10114]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  354.742014][T10114]  ? __pfx___apply_to_page_range+0x10/0x10
[  354.742043][T10114]  ? alloc_vmap_area+0x872/0x2970
[  354.742069][T10114]  alloc_vmap_area+0x919/0x2970
[  354.742096][T10114]  ? __pfx_alloc_vmap_area+0x10/0x10
[  354.742122][T10114]  __get_vm_area_node+0x1a7/0x300
[  354.742148][T10114]  __vmalloc_node_range_noprof+0x277/0x1540
[  354.742174][T10114]  ? __do_sys_listmount+0x1c2/0xed0
[  354.742203][T10114]  ? __do_sys_listmount+0x1c2/0xed0
[  354.742228][T10114]  ? find_held_lock+0x2b/0x80
[  354.742248][T10114]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  354.742275][T10114]  ? kasan_quarantine_reduce+0x1be/0x1e0
[  354.742294][T10114]  __kvmalloc_node_noprof+0x2ff/0x600
[  354.742322][T10114]  ? __do_sys_listmount+0x1c2/0xed0
[  354.742347][T10114]  ? __do_sys_listmount+0x1c2/0xed0
[  354.742374][T10114]  ? __do_sys_listmount+0x1c2/0xed0
[  354.742397][T10114]  __do_sys_listmount+0x1c2/0xed0
[  354.742423][T10114]  ? __x64_sys_futex+0x1e0/0x4c0
[  354.742446][T10114]  ? __x64_sys_futex+0x1e9/0x4c0
[  354.742469][T10114]  ? __pfx___do_sys_listmount+0x10/0x10
[  354.742494][T10114]  ? xfd_validate_state+0x5d/0x180
[  354.742517][T10114]  do_syscall_64+0xcd/0x260
[  354.742540][T10114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.742558][T10114] RIP: 0033:0x7f640318d169
[  354.742573][T10114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  354.742589][T10114] RSP: 002b:00007f6404063038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  354.742608][T10114] RAX: ffffffffffffffda RBX: 00007f64033a5fa0 RCX: 00007f640318d169
[  354.742619][T10114] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  354.742629][T10114] RBP: 00007f640320e2a0 R08: 0000000000000000 R09: 0000000000000000
[  354.742639][T10114] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  354.742648][T10114] R13: 0000000000000000 R14: 00007f64033a5fa0 R15: 00007fffffb2ca48
[  354.742666][T10114]  </TASK>
[  355.199354][T10118] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  355.551988][T10114] warn_alloc: 1 callbacks suppressed
[  355.552017][T10114] syz.2.1008: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  355.626706][T10114] CPU: 0 UID: 0 PID: 10114 Comm: syz.2.1008 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  355.626740][T10114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  355.626752][T10114] Call Trace:
[  355.626758][T10114]  <TASK>
[  355.626766][T10114]  dump_stack_lvl+0x16c/0x1f0
[  355.626800][T10114]  warn_alloc+0x248/0x3a0
[  355.626821][T10114]  ? __pfx_warn_alloc+0x10/0x10
[  355.626842][T10114]  ? kfree+0x2b6/0x4d0
[  355.626873][T10114]  ? __get_vm_area_node+0x1e5/0x300
[  355.626904][T10114]  __vmalloc_node_range_noprof+0xd31/0x1540
[  355.626939][T10114]  ? __do_sys_listmount+0x1c2/0xed0
[  355.626968][T10114]  ? find_held_lock+0x2b/0x80
[  355.626994][T10114]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  355.627024][T10114]  ? kasan_quarantine_reduce+0x1be/0x1e0
[  355.627044][T10114]  __kvmalloc_node_noprof+0x2ff/0x600
[  355.627071][T10114]  ? __do_sys_listmount+0x1c2/0xed0
[  355.627105][T10114]  ? __do_sys_listmount+0x1c2/0xed0
[  355.627131][T10114]  ? __do_sys_listmount+0x1c2/0xed0
[  355.627153][T10114]  __do_sys_listmount+0x1c2/0xed0
[  355.627180][T10114]  ? __x64_sys_futex+0x1e0/0x4c0
[  355.627204][T10114]  ? __x64_sys_futex+0x1e9/0x4c0
[  355.627227][T10114]  ? __pfx___do_sys_listmount+0x10/0x10
[  355.627251][T10114]  ? xfd_validate_state+0x5d/0x180
[  355.627278][T10114]  do_syscall_64+0xcd/0x260
[  355.627305][T10114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.627324][T10114] RIP: 0033:0x7f640318d169
[  355.627338][T10114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  355.627356][T10114] RSP: 002b:00007f6404063038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  355.627373][T10114] RAX: ffffffffffffffda RBX: 00007f64033a5fa0 RCX: 00007f640318d169
[  355.627384][T10114] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  355.627394][T10114] RBP: 00007f640320e2a0 R08: 0000000000000000 R09: 0000000000000000
[  355.627404][T10114] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  355.627414][T10114] R13: 0000000000000000 R14: 00007f64033a5fa0 R15: 00007fffffb2ca48
[  355.627431][T10114]  </TASK>
[  355.627437][T10114] Mem-Info:

syzkaller
syzkaller login: [  356.480106][T10114] active_anon:64512 inactive_anon:0 isolated_anon:0
[  356.480106][T10114]  active_file:4849 inactive_file:52515 isolated_file:0
[  356.480106][T10114]  unevictable:768 dirty:632 writeback:0
[  356.480106][T10114]  slab_reclaimable:10704 slab_unreclaimable:97513
[  356.480106][T10114]  mapped:44267 shmem:51748 pagetables:1088
[  356.480106][T10114]  sec_pagetables:0 bounce:0
[  356.480106][T10114]  kernel_misc_reclaimable:0
[  356.480106][T10114]  free:1272240 free_pcp:821 free_cma:0
[  356.642238][T10114] Node 0 active_anon:207340kB inactive_anon:0kB active_file:19396kB inactive_file:209984kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:171348kB dirty:2524kB writeback:0kB shmem:154744kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11440kB pagetables:4204kB sec_pagetables:0kB all_unreclaimable? no
[  356.761059][T10114] Node 1 active_anon:63292kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:10140kB dirty:4kB writeback:0kB shmem:64832kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no
[  356.868448][T10114] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  357.058503][T10114] lowmem_reserve[]: 0 2484 2486 2486 2486
[  357.064813][T10114] Node 0 DMA32 free:1210748kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:216964kB inactive_anon:0kB active_file:19408kB inactive_file:208168kB unevictable:1536kB writepending:2528kB present:3129332kB managed:2544032kB mlocked:0kB bounce:0kB free_pcp:1908kB local_pcp:1908kB free_cma:0kB
[  357.329656][T10114] lowmem_reserve[]: 0 0 1 1 1
[  357.334653][T10114] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1816kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB
[  357.596787][T10114] lowmem_reserve[]: 0 0 0 0 0
[  357.639635][T10114] Node 1 Normal free:3841180kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:61712kB inactive_anon:0kB active_file:8kB inactive_file:76kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:3336kB local_pcp:3336kB free_cma:0kB
[  358.031749][T10114] lowmem_reserve[]: 0 0 0 0 0
[  358.066933][T10114] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  358.131549][T10114] Node 0 DMA32: 337*4kB (UE) 486*8kB (UME) 342*16kB (U) 245*32kB (UE) 660*64kB (UME) 556*128kB (UME) 266*256kB (UME) 108*512kB (UME) 33*1024kB (UM) 5*2048kB (UME) 220*4096kB (UM) = 1200500kB
[  358.248545][T10114] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  358.301058][T10114] Node 1 Normal: 1*4kB (E) 3*8kB (UE) 22*16kB (UME) 173*32kB (UME) 92*64kB (UME) 29*128kB (UE) 14*256kB (U) 3*512kB (UE) 1*1024kB (U) 1*2048kB (U) 932*4096kB (M) = 3841180kB
[  358.397564][T10114] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  358.430930][T10114] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  358.492230][T10114] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  358.558460][T10114] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  358.606667][T10114] 114293 total pagecache pages
[  358.618898][T10114] 2 pages in swap cache
[  358.643260][T10114] Free swap  = 120644kB
[  358.655548][T10137] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input8

syzkaller
syzkaller login: [  358.679602][T10114] Total swap = 124996kB
[  358.694409][T10114] 2097051 pages RAM
[  358.719165][T10114] 0 pages HighMem/MovableOnly
[  358.732851][T10114] 428937 pages reserved
[  358.761812][T10114] 0 pages cma reserved
[  359.043396][T10137] zswap: compressor  not available
[  362.112677][T10177] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  362.479837][T10151] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1018'.
[  363.721867][T10192] netlink: 'syz.2.1027': attribute type 11 has an invalid length.
[  364.139384][ T5850] Bluetooth: hci0: Malformed LE Event: 0x1d
[  365.379732][T10231] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  368.049188][T10241] netlink: 334 bytes leftover after parsing attributes in process `syz.1.1037'.
[  370.217832][T10313] : renamed from gre0 (while UP)
[  371.413193][T10323] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  371.635701][T10328] bridge0: port 3(team0) entered blocking state
[  371.671742][T10328] bridge0: port 3(team0) entered disabled state
[  371.697162][T10330] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1055'.
[  371.711683][T10328] team0: entered allmulticast mode
[  371.739450][T10328] team_slave_0: entered allmulticast mode
[  371.771729][T10328] team_slave_1: entered allmulticast mode
[  371.799451][T10328] team0: entered promiscuous mode
[  371.831126][T10328] team_slave_0: entered promiscuous mode
[  371.859900][T10328] team_slave_1: entered promiscuous mode
[  371.893155][T10328] bridge0: port 3(team0) entered blocking state
[  371.900383][T10328] bridge0: port 3(team0) entered forwarding state
[  373.387974][T10352] snd_aloop snd_aloop.0: Parsing timer source '�g' failed with -22
[  374.348521][T10375] ieee80211 phy18: Failed to add default virtual iface
[  375.157099][T10395] 
[  375.159606][T10395] ======================================================
[  375.166686][T10395] WARNING: possible circular locking dependency detected
[  375.174080][T10395] 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 Not tainted
[  375.181363][T10395] ------------------------------------------------------
[  375.188934][T10395] syz.0.1069/10395 is trying to acquire lock:
[  375.195934][T10395] ffff8880263285d8 (&q->elevator_lock){+.+.}-{4:4}, at: elv_iosched_store+0x201/0x5f0
[  375.206180][T10395] 
[  375.206180][T10395] but task is already holding lock:
[  375.214402][T10395] ffff8880263280a8 (&q->q_usage_counter(io)#58){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  375.226607][T10395] 
[  375.226607][T10395] which lock already depends on the new lock.
[  375.226607][T10395] 
[  375.237554][T10395] 
[  375.237554][T10395] the existing dependency chain (in reverse order) is:
[  375.246895][T10395] 
[  375.246895][T10395] -> #2 (&q->q_usage_counter(io)#58){++++}-{0:0}:
[  375.255790][T10395]        blk_alloc_queue+0x619/0x760
[  375.261277][T10395]        blk_mq_alloc_queue+0x179/0x290
[  375.267393][T10395]        __blk_mq_alloc_disk+0x29/0x120
[  375.274217][T10395]        nbd_dev_add+0x49d/0xbb0
[  375.279454][T10395]        nbd_init+0x181/0x320
[  375.284556][T10395]        do_one_initcall+0x120/0x6e0
[  375.290267][T10395]        kernel_init_freeable+0x5c2/0x900
[  375.296557][T10395]        kernel_init+0x1c/0x2b0
[  375.301960][T10395]        ret_from_fork+0x45/0x80
[  375.307813][T10395]        ret_from_fork_asm+0x1a/0x30
[  375.313731][T10395] 
[  375.313731][T10395] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  375.321334][T10395]        fs_reclaim_acquire+0x102/0x150
[  375.327608][T10395]        blk_mq_alloc_and_init_hctx+0x503/0x11c0
[  375.335012][T10395]        blk_mq_realloc_hw_ctxs+0x8f6/0xc00
[  375.341253][T10395]        blk_mq_init_allocated_queue+0x3af/0x1230
[  375.349136][T10395]        blk_mq_alloc_queue+0x1c2/0x290
[  375.354977][T10395]        __blk_mq_alloc_disk+0x29/0x120
[  375.360571][T10395]        loop_add+0x496/0xb70
[  375.365300][T10395]        loop_init+0x164/0x270
[  375.370068][T10395]        do_one_initcall+0x120/0x6e0
[  375.375817][T10395]        kernel_init_freeable+0x5c2/0x900
[  375.382101][T10395]        kernel_init+0x1c/0x2b0
[  375.387541][T10395]        ret_from_fork+0x45/0x80
[  375.392709][T10395]        ret_from_fork_asm+0x1a/0x30
[  375.398618][T10395] 
[  375.398618][T10395] -> #0 (&q->elevator_lock){+.+.}-{4:4}:
[  375.407285][T10395]        __lock_acquire+0x1173/0x1ba0
[  375.413161][T10395]        lock_acquire+0x179/0x350
[  375.418718][T10395]        __mutex_lock+0x199/0xb90
[  375.423794][T10395]        elv_iosched_store+0x201/0x5f0
[  375.429597][T10395]        queue_attr_store+0x270/0x310
[  375.435394][T10395]        sysfs_kf_write+0x117/0x170
[  375.441513][T10395]        kernfs_fop_write_iter+0x351/0x510
[  375.447746][T10395]        vfs_write+0x5ba/0x1180
[  375.452935][T10395]        ksys_write+0x12a/0x240
[  375.458142][T10395]        do_syscall_64+0xcd/0x260
[  375.463275][T10395]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.469982][T10395] 
[  375.469982][T10395] other info that might help us debug this:
[  375.469982][T10395] 
[  375.480452][T10395] Chain exists of:
[  375.480452][T10395]   &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#58
[  375.480452][T10395] 
[  375.496608][T10395]  Possible unsafe locking scenario:
[  375.496608][T10395] 
[  375.504683][T10395]        CPU0                    CPU1
[  375.510424][T10395]        ----                    ----
[  375.515982][T10395]   lock(&q->q_usage_counter(io)#58);
[  375.521369][T10395]                                lock(fs_reclaim);
[  375.527924][T10395]                                lock(&q->q_usage_counter(io)#58);
[  375.536154][T10395]   lock(&q->elevator_lock);
[  375.540878][T10395] 
[  375.540878][T10395]  *** DEADLOCK ***
[  375.540878][T10395] 
[  375.549232][T10395] 6 locks held by syz.0.1069/10395:
[  375.554575][T10395]  #0: ffff88802c803b38 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[  375.564228][T10395]  #1: ffff88803089e420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x240
[  375.573988][T10395]  #2: ffff88803361ac88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[  375.584005][T10395]  #3: ffff8880227c15a8 (kn->active#162){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[  375.595846][T10395]  #4: ffff8880263280a8 (&q->q_usage_counter(io)#58){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  375.608619][T10395]  #5: ffff8880263280e0 (&q->q_usage_counter(queue)#10){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  375.621509][T10395] 
[  375.621509][T10395] stack backtrace:
[  375.627664][T10395] CPU: 0 UID: 0 PID: 10395 Comm: syz.0.1069 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  375.627686][T10395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  375.627696][T10395] Call Trace:
[  375.627706][T10395]  <TASK>
[  375.627714][T10395]  dump_stack_lvl+0x116/0x1f0
[  375.627739][T10395]  print_circular_bug+0x275/0x350
[  375.627765][T10395]  check_noncircular+0x14c/0x170
[  375.627802][T10395]  __lock_acquire+0x1173/0x1ba0
[  375.627828][T10395]  ? __lock_acquire+0xaa4/0x1ba0
[  375.627853][T10395]  lock_acquire+0x179/0x350
[  375.627867][T10395]  ? elv_iosched_store+0x201/0x5f0
[  375.627892][T10395]  ? __pfx___might_resched+0x10/0x10
[  375.627917][T10395]  __mutex_lock+0x199/0xb90
[  375.627938][T10395]  ? elv_iosched_store+0x201/0x5f0
[  375.627961][T10395]  ? mark_held_locks+0x49/0x80
[  375.627985][T10395]  ? elv_iosched_store+0x201/0x5f0
[  375.628009][T10395]  ? __pfx___mutex_lock+0x10/0x10
[  375.628029][T10395]  ? blk_mq_freeze_queue_wait+0xad/0x1b0
[  375.628047][T10395]  ? __pfx_autoremove_wake_function+0x10/0x10
[  375.628072][T10395]  ? elv_iosched_store+0x201/0x5f0
[  375.628096][T10395]  elv_iosched_store+0x201/0x5f0
[  375.628120][T10395]  ? __pfx_elv_iosched_store+0x10/0x10
[  375.628145][T10395]  ? __mutex_trylock_common+0xe9/0x250
[  375.628160][T10395]  ? __pfx_elv_iosched_store+0x10/0x10
[  375.628184][T10395]  queue_attr_store+0x270/0x310
[  375.628203][T10395]  ? __pfx_queue_attr_store+0x10/0x10
[  375.628221][T10395]  ? __lock_acquire+0x5ca/0x1ba0
[  375.628246][T10395]  ? kernfs_fop_write_iter+0x28f/0x510
[  375.628271][T10395]  ? __pfx_queue_attr_store+0x10/0x10
[  375.628289][T10395]  sysfs_kf_write+0x117/0x170
[  375.628311][T10395]  kernfs_fop_write_iter+0x351/0x510
[  375.628332][T10395]  ? __pfx_sysfs_kf_write+0x10/0x10
[  375.628354][T10395]  vfs_write+0x5ba/0x1180
[  375.628379][T10395]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  375.628401][T10395]  ? __pfx___mutex_lock+0x10/0x10
[  375.628420][T10395]  ? __pfx_vfs_write+0x10/0x10
[  375.628446][T10395]  ksys_write+0x12a/0x240
[  375.628469][T10395]  ? __pfx_ksys_write+0x10/0x10
[  375.628492][T10395]  ? rcu_is_watching+0x12/0xc0
[  375.628513][T10395]  do_syscall_64+0xcd/0x260
[  375.628535][T10395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.628552][T10395] RIP: 0033:0x7f7ff078d169
[  375.628574][T10395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  375.628590][T10395] RSP: 002b:00007f7ff164c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  375.628606][T10395] RAX: ffffffffffffffda RBX: 00007f7ff09a6160 RCX: 00007f7ff078d169
[  375.628616][T10395] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000006
[  375.628625][T10395] RBP: 00007f7ff080e2a0 R08: 0000000000000000 R09: 0000000000000000
[  375.628634][T10395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  375.628647][T10395] R13: 0000000000000000 R14: 00007f7ff09a6160 R15: 00007fff285f2b08
[  375.628662][T10395]  </TASK>
[  384.766041][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  384.773365][ T1301] ieee802154 phy1 wpan1: encryption failed: -22