last executing test programs:

59.656600159s ago: executing program 2 (id=1028):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/bond0/bonding/min_links\x00', 0x88282, 0x0)
sendfile$auto(r0, r0, 0x0, 0x71)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bond0\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1ff, r1, @relative_id=0x13, 0xe600}, 0xf)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0x0, 0x3}, 0xc)
readv$auto(0x6, &(0x7f00000000c0)={0x0, 0x1}, 0x1) (fail_nth: 2)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0xc2481, 0x0)
write$auto(r5, 0x0, 0x81)
acct$auto(&(0x7f0000000000)='/dev/fb0\x00')
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), 0xffffffffffffffff)
r6 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
write$auto_console_fops_tty_io(r6, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)

58.947706707s ago: executing program 2 (id=1030):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001ac0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001b40)={'batadv0\x00', <r1=>0x0})
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop6\x00', 0x0, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r2, 0x4c00, 0xfffffffffffffffd)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000580)='/dev/audio\x00', 0x0, 0x0)
prctl$auto_PR_GET_FPEXC(0xb, 0x4, 0x0, 0x10, 0x8001)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory15/online\x00', 0xa001, 0x0)
write$auto(r3, &(0x7f0000000140)='0[.[\x00', 0xcd04)
sysfs$auto(0x2, 0x42c, 0xffffffffffffffff)
keyctl$auto(0x2000000000000017, 0x8000, 0x2d, 0xc4, 0x20803)
r4 = bpf$auto(0x0, &(0x7f0000000780)=@query={@target_ifindex=r1, 0x8, 0x2, 0xfffffffb, 0x100000001, @prog_cnt=0x7, 0x0, 0x8, 0x401, 0x8a29927, 0xab6}, 0xa3)
mmap$auto(0x0, 0x20009, 0x20004000010000df, 0xeb2, r4, 0x8000)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
socket(0x15, 0x6, 0x440a)
sendfile$auto(0x6, 0x3, 0x0, 0xfdef)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x400, 0x0)
mmap$auto(0x2000000000000, 0x2, 0x9, 0x9b71, 0xffffffffffffffff, 0x2)
io_setup$auto(0x80002, 0x0)
r5 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000001040)='/dev/snd/pcmC1D1c\x00', 0x20400, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_FORWARD2(r5, 0x40084149, &(0x7f0000001080)=0x7)
io_pgetevents$auto(0x4, 0x80000008, 0xa31f, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0x5f, 0x1b5e, 0x2, 0x8000)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS1\x00', 0x0, 0x0)
ioctl$auto_TIOCVHANGUP2(r6, 0x5437, 0x0)
openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)

58.045542733s ago: executing program 2 (id=1037):
r0 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0xb213, 0x2c, 0x800}) (async)
sendmmsg$auto(r0, &(0x7f0000000100)={{&(0x7f0000000000), 0x5aa, &(0x7f00000000c0)={&(0x7f0000000040)='f', 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x4}, 0x2, 0x100) (async, rerun: 32)
unshare$auto(0x200) (async, rerun: 32)
unshare$auto(0x6)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
setns(r1, 0x0) (async)
setreuid$auto(0x9, 0x1) (async, rerun: 64)
prctl$auto_PR_SET_NAME(0xf, 0x5, 0x0, 0x8, 0xff) (async, rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x2, 0x801, 0x106) (async)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/fs/ext4/sda1/mb_stats\x00', 0x109100, 0x0) (async, rerun: 32)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) (async, rerun: 32)
r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r3, 0x541c, r4)
mmap$auto(0x0, 0x40009, 0x36, 0x9b72, 0x7, 0x28000) (async, rerun: 32)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (rerun: 32)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
socket(0x23, 0x5, 0x0) (rerun: 64)
ioctl$auto(0x3, 0x541b, 0x38) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r6, 0x1b, 0x74bd23, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x19, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "8987714800"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) (async, rerun: 32)
unshare$auto(0x40000080) (rerun: 32)
dup2$auto(r2, r5) (async, rerun: 32)
lsm_list_modules$auto(0x0, 0x0, 0x0) (async, rerun: 32)
sendmsg$auto_IPVS_CMD_ZERO(0xffffffffffffffff, 0x0, 0x4000004) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb5, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0x10)

57.719799431s ago: executing program 2 (id=1038):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), 0xffffffffffffffff)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/net/ifb1/queues/tx-0/byte_queue_limits/limit\x00', 0x68a60, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/034/001\x00', 0x189002, 0x0)
read$auto(r2, 0x0, 0x13)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = socket(0x11, 0x3, 0x2)
getsockopt$auto(r3, 0x107, 0x3, 0x0, 0x0)
sendmsg$auto_GTP_CMD_DELPDP(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbff, {}, [@GTPA_VERSION={0x8, 0x2, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000894)

56.649374268s ago: executing program 2 (id=1046):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_DUMPHMAC(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x14, r1, 0x1701, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x40000000, 0x0, 0x801}, 0x844)

56.243719932s ago: executing program 2 (id=1050):
rt_sigqueueinfo$auto(0x0, 0xc74, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}})
socket(0x11, 0x3, 0x9)
openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_STOP_AP(r0, 0x0, 0x2000c000)
close_range$auto(0x2, 0xa, 0x0)
r1 = socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x4, 0x4, 0x8000000000eb1, r1, 0x7ffc)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0)
mmap$auto(0x6, 0x800000000007, 0x7fffffe, 0x100040ebe, 0xffffffffffffffff, 0x300000000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x15)
read$auto(0xca, 0x0, 0x200)
ioctl$auto(r2, 0xc0045401, 0x3)
fcntl$getown(r2, 0x9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x2001, 0x7, 0x1, 0x0)
r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000140), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6)
ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r3, 0x7af, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
bpf$auto(0x0, 0x0, 0x6f4)

41.193552951s ago: executing program 32 (id=1050):
rt_sigqueueinfo$auto(0x0, 0xc74, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}})
socket(0x11, 0x3, 0x9)
openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_STOP_AP(r0, 0x0, 0x2000c000)
close_range$auto(0x2, 0xa, 0x0)
r1 = socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x4, 0x4, 0x8000000000eb1, r1, 0x7ffc)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8340, 0x0)
mmap$auto(0x6, 0x800000000007, 0x7fffffe, 0x100040ebe, 0xffffffffffffffff, 0x300000000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x15)
read$auto(0xca, 0x0, 0x200)
ioctl$auto(r2, 0xc0045401, 0x3)
fcntl$getown(r2, 0x9)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x2001, 0x7, 0x1, 0x0)
r3 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000140), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r3, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6)
ioctl$auto_IOCTL_VMCI_CTX_ADD_NOTIFICATION(r3, 0x7af, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
bpf$auto(0x0, 0x0, 0x6f4)

28.864343354s ago: executing program 3 (id=1138):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x123201, 0x0)
ioctl$auto(r0, 0x400c55cb, r0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
unshare$auto(0x40000080)
openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8, 0x0)
r1 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r1, 0x84, 0x75, 0x0, &(0x7f0000000000)=0x9000c)
r2 = socket(0x11, 0x3, 0x300)
setsockopt$auto(r2, 0x107, 0x1, 0x0, 0x8004)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0xa, 0x300)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa)
mmap$auto(0x0, 0x4020009, 0x2000000000006, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0x10001, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, <r3=>0xffffffffffffffff, 0x955b, 0x8, 0x7, 0x5}, 0x10)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_fd=r3, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x8, 0x0, 0x1, 0x4}}, 0x81)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00)

25.882533423s ago: executing program 3 (id=1146):
msync$auto(0x54a6, 0xffffffffffffffff, 0x2)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
connect$auto(0x3, 0x0, 0x55)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0)
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x40, 0x0)
mmap$auto(0x1, 0x1000, 0x4, 0x80000010, r0, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0x13)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
waitid$auto(0xff, 0xffffffffffffffff, 0x0, 0x5, 0x0)
openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f00000002c0), 0x20000, 0x0)
r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D1\x00', 0x4000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x8e051, r1, 0x0)
pselect6$auto(0x9, &(0x7f00000000c0)={[0xdd, 0xfffffffffffffd68, 0x7fffffffffffffff, 0x2, 0x6, 0x28e, 0x6, 0xffffffffffffff6c, 0x8f7, 0x7, 0xfffffffffffff2f7, 0x80000000, 0xc790, 0x1, 0x8, 0x8]}, &(0x7f0000000140)={[0xfffffffffffffff2, 0x5, 0x8, 0x4, 0x8, 0x5, 0x2, 0x9, 0xa724, 0x5, 0xf1e, 0x6, 0x8, 0x20b0, 0x4, 0x100000001]}, &(0x7f00000001c0)={[0xf3, 0x3ff, 0x8000000000000000, 0x9, 0x7, 0x5, 0xc, 0x0, 0x4, 0x7f, 0x7fff, 0x200, 0x4, 0xfffffffffffffa44, 0x9, 0x629]}, &(0x7f0000000240)={0xb38, 0x9}, &(0x7f0000000280)="ecb55c7d8822e475257c184327064612dcce77ba59baf67ba69f83688f4a7f57d8")
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8300f000)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D0p\x00', 0x0, 0x0)

23.540489826s ago: executing program 3 (id=1153):
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x2000000)

23.142092943s ago: executing program 3 (id=1155):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2b, 0x1, 0x0)
io_uring_register$auto(0xffffffffffffffff, 0x1f, 0x0, 0x1)
socket(0x2b, 0x1, 0x1)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe\x00', 0x2000, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D3\x00', 0x2001, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0xd5b, 0xc, 0x37, 0x948a, 0x2, 0x15f4da0a, 0x1, 0x3, 0x3000000000006e0, 0x40080000001, 0x7, 0x6d3c, 0x5, 0x9]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
pwrite64$auto(0xc8, 0x0, 0x4e, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x1, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f7)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x11, 0xffffffffffffffff, 0x62)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x1c1041, 0x0)
r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/meminfo\x00', 0x0, 0x0)
ppoll$auto(&(0x7f00000000c0)={<r2=>r1, 0xf81, 0x27f}, 0x3, 0x0, 0x0, 0x8)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0)
sendfile$auto(r3, r2, 0x0, 0x401)
bpf$auto(0x18, 0x0, 0x92)

21.392335129s ago: executing program 3 (id=1161):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB="2f212abd7800fddb"], 0x14}}, 0x4000000)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{&(0x7f0000000100)="ba4cabc664df5d7b0e0536af8451f330ef703f7786edcff437e94c2f0420e167a15deaa1666085fe09f381832b6214f14a25347dbcdf92c5f8c3a514f4f6710c30b5867fcfd3875d2a3b4863667cded3083f4c980a8d19eb82a10ceef6b35b04b69d53b9adb269aff3286eb1224bdbd2dc306080fdecd372d454654a0d22fb48502b16b78cfbf3e37d0c467e21124b18adbf75447ee918e0a956cbd6646dea1c15b4513150d136df16ba3fdbc9d44b328ab0bed0c1b878b7da0e82", 0x8, &(0x7f00000001c0)={&(0x7f0000000300)="b7543fa45dcb9a97e0a6257ced148472d44570836ce830e5f7757a770dcc4068deb06d3ffb9fd2072640cf27e4b8c05eb15b165cf7684d7bfffab65815153f712448299d575c3979aafb65bc75012f2eec4d103c78c3d0a21d657dd3b87cef4d1739f461b667c464be08b5b566ec4720edca0706200cf7749f02adaf8ec4bb6d1736f3da929132396bc4c2c2eeb5f87a", 0x3}, 0x3488ff61, &(0x7f0000000480)="15aa39262458d9aaccbc416f2803b9c468915cb9b781fe03caa261c700b9aa281225b940dc5316586aaa08338cc6ab07a8f3d6480a0111d4a69be344d59743f750df4bc403d065baaa9f46c5bbe5bdf5568daeeecd8d65e3b7c5464d3bbc5a8a9581e2a1350cb96a8989904e312fc5599d0fe05c202ba22f29b9373dbef5ae3446a6c82cc4148e5a41eb9a0835f0da3b817bfd4558f33889c8b0c47a0c83151f8e0311d1effe3c670cee936027442233441c234a92f1019caf3c5513cfcfe8442acbea2ca5c3859c785ca955ae92a85a496d", 0x3, 0x8}, 0x8}, 0x5, 0x0)
setsockopt$auto_SO_REUSEADDR(r0, 0x6, 0x2, &(0x7f0000000580)='\x00', 0x3)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r3 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D0p\x00', 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_DELAY(r3, 0x80084121, 0x0)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x4, 0x6)
socket(0x2, 0x1, 0x84)
connect$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
listen$auto(0x3, 0x83)
accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd)
r4 = epoll_create$auto(0x7)
epoll_wait$auto(r4, 0x0, 0xe007, 0x1)
r5 = prctl$auto_PR_SET_PDEATHSIG(0x1, 0xc164, 0x0, 0x8, 0x2)
timerfd_settime$auto(r5, 0x2, &(0x7f0000000280)={{0x200000002, 0x5}, {0x4, 0x7fff}}, &(0x7f00000003c0)={{0x4d, 0xb}, {0x4, 0xffffffff}})
ioctl$auto_IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r2, 0x7a6, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_fops_x16_ro_(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/kernel/debug/x86/boot_params/version\x00', 0x541, 0x0)
ioctl$auto_TIOCSBRK2(r2, 0x5427, 0x0)
r6 = socket(0x1e, 0x1, 0x0)
bind$auto(r6, &(0x7f0000000040)=@tipc=@name={0x1e, 0x2, 0x0, {{0x2}, 0xffffffff}}, 0x66)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)

20.307172574s ago: executing program 3 (id=1163):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
iopl$auto(0x2)
iopl$auto(0x1)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, 0x0, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, r0, 0x300000000000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0x40000d4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x7}, 0xb22a, 0x2000000000400a, 0x1, 0x4, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
set_mempolicy$auto(0x2, 0x0, 0x8)
socket(0x2, 0x1, 0x0)
ioctl$auto_BLKSECTGET2(0xffffffffffffffff, 0x1267, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r3, 0xc0305710, 0x0)
r4 = socket(0x10, 0x2, 0x0)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(r4, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000240)={0x40, r5, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@ETHTOOL_A_WOL_SOPASS={0x4}, @ETHTOOL_A_WOL_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x77}]}, @ETHTOOL_A_WOL_MODES={0x14, 0x2, 0x0, 0x1, [@nested={0x10, 0x115, 0x0, 0x1, [@typed={0x4, 0x11e, 0x0, 0x0, @binary}, @typed={0x8, 0x52, 0x0, 0x0, @uid}]}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4040000}, 0x8000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c00000956a4a25d090000000a68d40c593a8dbb67a276fc233e8bfdd9f555", @ANYRESOCT=r7, @ANYBLOB="010029bd7000ffdbdf2505000000180001801400020076657468315f746f5f62617461647600"], 0x2c}, 0x1, 0x0, 0x0, 0x11}, 0x24000802)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)

17.931139727s ago: executing program 33 (id=1163):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
iopl$auto(0x2)
iopl$auto(0x1)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, 0x0, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, r0, 0x300000000000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0x40000d4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x7}, 0xb22a, 0x2000000000400a, 0x1, 0x4, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdead, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
set_mempolicy$auto(0x2, 0x0, 0x8)
socket(0x2, 0x1, 0x0)
ioctl$auto_BLKSECTGET2(0xffffffffffffffff, 0x1267, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r3, 0xc0305710, 0x0)
r4 = socket(0x10, 0x2, 0x0)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(r4, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000240)={0x40, r5, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@ETHTOOL_A_WOL_SOPASS={0x4}, @ETHTOOL_A_WOL_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x77}]}, @ETHTOOL_A_WOL_MODES={0x14, 0x2, 0x0, 0x1, [@nested={0x10, 0x115, 0x0, 0x1, [@typed={0x4, 0x11e, 0x0, 0x0, @binary}, @typed={0x8, 0x52, 0x0, 0x0, @uid}]}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x4040000}, 0x8000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c00000956a4a25d090000000a68d40c593a8dbb67a276fc233e8bfdd9f555", @ANYRESOCT=r7, @ANYBLOB="010029bd7000ffdbdf2505000000180001801400020076657468315f746f5f62617461647600"], 0x2c}, 0x1, 0x0, 0x0, 0x11}, 0x24000802)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)

10.323773142s ago: executing program 1 (id=1188):
r0 = getsockopt$auto_SO_BINDTODEVICE(0xffffffffffffffff, 0xd8cb, 0x19, &(0x7f0000000040)='/sys/devices/platform/vkms/graphics/fb0/state\x00', &(0x7f00000000c0)=0x8000)
mmap$auto(0x3, 0x8, 0x3, 0xeb1, r0, 0x8000) (async)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0xc2481, 0x0)
write$auto(r2, 0x0, 0x81)
acct$auto(&(0x7f0000000000)='/dev/fb0\x00')
recvmmsg$auto(r1, 0x0, 0x9, 0x400000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram10/ext_range\x00', 0x88282, 0x0)
sendfile$auto(r3, r3, 0x0, 0x1) (async)
r4 = fcntl$auto_F_RDLCK(0xffffffffffffffff, 0xd596, 0x0)
readv$auto(r4, &(0x7f00000001c0)={&(0x7f0000000180)="291afe70b9911873711a842e3fd5eacc9f8d2a1776ecc1d978c3c0731f8e91a22195ed798b35cccf35b2dda9", 0x1}, 0x7f) (async)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), 0xffffffffffffffff) (async)
r5 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
write$auto_console_fops_tty_io(r5, 0x0, 0x0) (async)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x5, 0x0) (async)
socket(0xa, 0x801, 0x84) (async)
listen$auto(0x3, 0x81) (async)
listen$auto(0x3, 0x0) (async)
socket(0x2, 0x80002, 0x73) (async)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)

9.771285291s ago: executing program 4 (id=1189):
r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000c40)='/dev/snd/pcmC1D0p\x00', 0x80000, 0x0)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR32(r0, 0xc0844123, &(0x7f0000000000)={0x3, @status={0xe93f, 0x0, 0x3, 0x4, 0x1, 0x2df, 0x7ff, 0xccf6}, @reserved="9d92f5c7f63e1053e7ca4e6b87cf17e2e0a0810a15882ffcb924e8313e01a3be43889309f30d430100000000000080d7a49a1d43cf93c72f0bad22eb7800"})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000080), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'batadv0\x00', <r3=>0x0})
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYRES32=r1, @ANYRES16=r2, @ANYRES64=r1, @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0xb80}, 0x20008000)

9.541538658s ago: executing program 0 (id=1190):
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (fail_nth: 17)

9.498974622s ago: executing program 4 (id=1191):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/bond0/bonding/min_links\x00', 0x88282, 0x0)
sendfile$auto(r0, r0, 0x0, 0x71)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bond0\x00', <r3=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1ff, r1, @relative_id=0x13, 0xe600}, 0xf)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, r4, 0xf000, 0x3}, 0xc)
readv$auto(0x6, &(0x7f00000000c0)={0x0, 0x1}, 0x1)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/vkms/graphics/fb0/state\x00', 0xc2481, 0x0)
write$auto(r5, 0x0, 0x81)
acct$auto(&(0x7f0000000000)='/dev/fb0\x00')
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), 0xffffffffffffffff)
r6 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, 0x0, 0x102, 0x0)
write$auto_console_fops_tty_io(r6, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)

9.139868406s ago: executing program 0 (id=1192):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x540, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0x4010ae67, 0x38)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/sctp/udp_port\x00', 0x202, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(0x3, 0x80000541b, 0xffffffffffffffff)
sendfile$auto(r1, r1, 0x0, 0x7fffe000)
getpeername$auto(0x3, 0x0, 0x0)
unshare$auto(0x40000080)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002080)={&(0x7f0000002c40)={0x1c, 0x0, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x4}, @NFSD_A_SERVER_SOCK_ADDR={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
r3 = getsockopt$auto_SO_PEERPIDFD(r2, 0x4, 0x4d, &(0x7f0000000040)='/sys/kernel/debug/dynamic_debug/control\x00', &(0x7f0000000240)=0x765)
ioctl$auto_IOCTL_VMCI_NOTIFY_RESOURCE(r3, 0x7a5, 0x0)
ioctl$auto_PPPIOCSACTIVE(r3, 0x40107446, &(0x7f00000000c0)={0xd8b, &(0x7f0000000080)={0x1, 0x8, 0xd, @raw=0x3}})
ioperm$auto(0x7, 0x6, 0x10)
rename$auto(0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
getxattrat$auto(0xffffffffffffffff, 0x0, 0x1c, 0x0, 0x0, 0x3)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
fcntl$auto(0xff80000000000000, 0x40b, 0x5)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

8.411993402s ago: executing program 0 (id=1193):
mmap$auto(0x0, 0xfffffffffffffff9, 0xdf, 0x80009b72, 0x2, 0x8000)
ioctl$auto_TIOCGDEV2(0xffffffffffffffff, 0x5429, 0x0)
socket(0x1d, 0x1, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = io_uring_setup$auto(0x86, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001280)='/dev/v4l-subdev0\x00', 0x101000, 0x0)
ioctl$auto(r1, 0xc0205647, r0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x3ff282, 0x0)
readahead$auto(r2, 0x10000000e, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
sendmsg$auto_NCSI_CMD_SEND_CMD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40014}, 0x808)
openat$auto_memtype_fops_memtype(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
read$auto_ptdump_curusr_fops_(0xffffffffffffffff, &(0x7f0000000280)=""/4096, 0x1000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/oom_adj\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x1f40)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f00000000c0)={0x0, 0x7}, 0x4)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x241, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/mount_params\x00', 0x2, 0x0)

7.454289341s ago: executing program 0 (id=1194):
msync$auto(0x54a6, 0xffffffffffffffff, 0x2)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
connect$auto(0x3, 0x0, 0x55)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0)
mmap$auto(0x1, 0x1000, 0x4, 0x80000010, 0xffffffffffffffff, 0x5)
poll$auto(0x0, 0x1, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0x13)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
waitid$auto(0xff, 0xffffffffffffffff, 0x0, 0x5, 0x0)
openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f00000002c0), 0x20000, 0x0)
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D1\x00', 0x4000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x8e051, r0, 0x0)
pselect6$auto(0x9, &(0x7f00000000c0)={[0xdd, 0xfffffffffffffd68, 0x7fffffffffffffff, 0x2, 0x6, 0x28e, 0x6, 0xffffffffffffff6c, 0x8f7, 0x7, 0xfffffffffffff2f7, 0x80000000, 0xc790, 0x1, 0x8, 0x8]}, &(0x7f0000000140)={[0xfffffffffffffff2, 0x5, 0x8, 0x4, 0x8, 0x5, 0x2, 0x9, 0xa724, 0x5, 0xf1e, 0x6, 0x8, 0x20b0, 0x4, 0x100000001]}, &(0x7f00000001c0)={[0xf3, 0x3ff, 0x8000000000000000, 0x9, 0x7, 0x5, 0xc, 0x0, 0x4, 0x7f, 0x7fff, 0x200, 0x4, 0xfffffffffffffa44, 0x9, 0x629]}, &(0x7f0000000240)={0xb38, 0x9}, &(0x7f0000000280)="ecb55c7d8822e475257c184327064612dcce77ba59baf67ba69f83688f4a7f57d8")
mmap$auto(0x0, 0x9, 0x3, 0x8012, 0x3, 0x8300f000)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D0p\x00', 0x0, 0x0)

6.623755233s ago: executing program 0 (id=1195):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = memfd_secret$auto(0x1)
read$auto_fops_u32_ro_(r0, &(0x7f0000000000)=""/109, 0x6d)
r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x405040, 0x0)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto(r2, 0x4008af10, r1)
bpf$auto(0x5, &(0x7f0000000480)=@bpf_attr_5={@target_ifindex, r0, 0xfff, 0x6, <r3=>r1, @relative_id=0x7, 0x2}, 0x40)
close_range$auto(r3, r0, 0x2000005)
socket(0x10, 0x2, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r4)
socket(0x1, 0x803, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x27, 0x2, 0xbf)
pipe$auto(0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x15, 0x5, 0x0)
r6 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000013c0)=ANY=[@ANYBLOB="18000000", @ANYRES8=r6, @ANYRES8=r5, @ANYRES32], 0x18}}, 0x80) (fail_nth: 7)

6.323752593s ago: executing program 0 (id=1196):
openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000080), 0x8000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x580f, 0xffb, 0x8000000008011, 0x3, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)
getresgid$auto(0x0, &(0x7f0000000a40)=0x1107, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
futex_requeue$auto(0x0, 0x401, 0xf9b, 0xcde8)
close_range$auto(0x2, 0x8, 0x0)
r1 = io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
r3 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000440), 0xffffffffffffffff)
r4 = setfsuid$auto(0xee00)
setreuid$auto(r4, r4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000480)={'veth0_to_bridge\x00', <r5=>0x0})
r6 = gettid()
rt_sigqueueinfo$auto(r6, 0x1, 0x0)
sendmsg$auto_WG_CMD_SET_DEVICE(r2, &(0x7f0000000880)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000840)={&(0x7f00000004c0)=ANY=[@ANYRESDEC=r4, @ANYRES16=r3, @ANYRESHEX=r0, @ANYRES32=r1, @ANYBLOB="08008000", @ANYRES32=r4, @ANYBLOB="060006004e23000008000100", @ANYRES32=r5, @ANYRES32=r1, @ANYRES32=r6, @ANYBLOB="0800a400fbffffff08002800", @ANYRES32=r3, @ANYBLOB="10335827e67d3487ef39a5d7cb99d67fb8c922a6af743c3d859b332239f8b4b5e10c89d124616c4dc34f462188cb16b30974de29053ed67166d0a0bc095aac0d9bb121417c5d53ae935366bddc4ba27620a3a9774ba292109eef3aa678ec0d38596d09886ba5285ab547ddbe886a", @ANYRES32, @ANYBLOB="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"], 0x2dc}, 0x1, 0x0, 0x0, 0x80}, 0x80)
pidfd_open$auto(0x1, 0x0)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f00000000c0)="d438ff8a33faf02d534dc677a1f129e8565c01b09bc97a09b7cbc8ca4dc54114cc2ab8aa49f2f562a25bc98ce4afa32328532058758d6855240a0d9e342c7c9997de5a5a8d5d1a196afce8eb5be43fbd6b0ceb71876bf1b7610fc0b63414dc6d939eb22039cf015a5f05b85d52ca3693aeae4593bb55d71cad", 0x69d, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x4)
futex$auto(0x0, 0x4, 0x1044, 0x0, 0x0, 0x0)
mmap$auto(0x8, 0x2020003, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7ffe)
setsockopt$auto(0x3, 0x6, 0x17, 0x0, 0x400)

4.571247695s ago: executing program 1 (id=1197):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2b, 0x1, 0x0)
io_uring_register$auto(0xffffffffffffffff, 0x1f, 0x0, 0x1)
socket(0x2b, 0x1, 0x1)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe\x00', 0x2000, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="2f212abd"], 0x14}}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D3\x00', 0x2001, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x1ff, 0xd5b, 0xc, 0x37, 0x948a, 0x2, 0x15f4da0a, 0x1, 0x3, 0x300000000003f00, 0x40080000001, 0x7, 0x6d3c, 0x5, 0x9]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
pwrite64$auto(0xc8, 0x0, 0x4e, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x1, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f7)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x11, 0xffffffffffffffff, 0x62)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x1c1041, 0x0)
r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/meminfo\x00', 0x0, 0x0)
ppoll$auto(&(0x7f00000000c0)={<r2=>r1, 0xf81, 0x27f}, 0x3, 0x0, 0x0, 0x8)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x202, 0x0)
sendfile$auto(r3, r2, 0x0, 0x401)
bpf$auto(0x18, 0x0, 0x92)

3.643517987s ago: executing program 4 (id=1198):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
pipe2$auto(0x0, 0x80)
r0 = setfsuid$auto(0xee01)
keyctl$auto(0x1e, 0xffffffffffffffff, r0, 0x5, 0x200000000088)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2, 0x801, 0x106)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
rseq$auto(&(0x7f0000000000)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x7ffe, 0x0, 0x6)
mmap$auto(0x0, 0x20009, 0x386, 0xeb1, 0x401, 0x8000)
nanosleep$auto(0x0, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @rand_addr=0xfffffffe}, 0x55)
setsockopt$auto(r1, 0x6, 0x1e, 0x0, 0xa1)
keyctl$auto(0x15, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8)

3.259326371s ago: executing program 1 (id=1199):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x401f, 0x1, 0x8e051, r0, 0x0) (async)
r1 = bpf$auto(0xd, 0x0, 0x6f5) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8003)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0x8000000000000000, 0x15) (async)
getpgid(0x0)
fcntl$auto_F_SETFD(r0, 0x2, 0x0) (async)
madvise$auto(0x0, 0x2000000080000001, 0x3) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x4, 0x0) (async, rerun: 32)
r2 = timerfd_create$auto(0x9, 0x0) (rerun: 32)
semctl$auto(0x1ff, 0x3, 0x13, 0x4) (async, rerun: 32)
read$auto(r2, 0x0, 0x80) (async, rerun: 32)
ioctl$auto(r1, 0x40085400, r1) (async, rerun: 64)
capget$auto(0x0, 0xfffffffffffffffe) (async, rerun: 64)
capset$auto(0x0, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty48\x00', 0x800, 0x0)
setresuid$auto(0x2, 0x7, 0x0) (async)
ioctl$auto(r3, 0x4b65, r3) (async)
move_mount$auto(0xffffffffffffffff, 0x0, r1, 0x0, 0x9) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x40000000001, 0x40000c, 0xe1, 0x12, r0, 0x6) (async)
openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, &(0x7f0000000180), 0x4000, 0x0) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x100000000, 0x9, 0x3, 0x12, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) (rerun: 64)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)

2.963909745s ago: executing program 1 (id=1200):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/trigger\x00', 0x800, 0x0)
connect$auto(r0, &(0x7f0000000080)=@llc={0x1a, 0x302, 0x7, 0x8, 0x8, 0x4, @remote}, 0x80000000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x4, 0x9, 0x0, 0x0)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
syz_genetlink_get_family_id$auto_seg6(0x0, 0xffffffffffffffff)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(r0, 0x0, 0x86873cbd, 0xa, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
r1 = socket(0x1d, 0x3, 0x1)
getsockopt$auto(r1, 0x65, 0x2, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
capset$auto(0x0, 0x0)
r2 = socket(0xa, 0x5, 0x0)
setsockopt$auto(r2, 0x10000000084, 0x9, 0x0, 0x98)
fanotify_init$auto(0x6a1, 0x2000000000002)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x3, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/can/reset_stats\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000140)=""/136, 0x88)
mmap$auto(0x0, 0x2000, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x21, 0x2, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x2)
connect$auto(0x5, 0x0, 0x9)

2.912698523s ago: executing program 4 (id=1201):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x8a403, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)

2.597569517s ago: executing program 4 (id=1202):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(r0, 0x10000000084, 0x3, 0x0, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
getegid()
close_range$auto(0x2, 0x8, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
setsockopt$auto(0xffffffffffffffff, 0xfffffffc, 0x1, 0x0, 0x2)
unshare$auto(0xfffffffffffffff8)
unshare$auto(0x40000080)
mmap$auto(0x2, 0x4020009, 0x3, 0xeb1, 0x401, 0x4000008000)
madvise$auto(0x80000001, 0x2, 0xffff)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44000884}, 0xc880)
socket(0x10, 0x2, 0xc)
ioctl$auto_SOUND_OLD_MIXER_INFO(r1, 0x80304d65, &(0x7f0000000200))
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
sysfs$auto(0x2, 0x4e, 0x0)
fsopen$auto(0x0, 0x1)

998.518218ms ago: executing program 1 (id=1203):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/fs/netfs/requests\x00', 0x0, 0x0)
pread64$auto(r0, 0x0, 0x100000001, 0x100)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram10\x00', 0x10d681, 0x0)
ioctl$auto_BLKGETNRZONES(r1, 0x80041285, &(0x7f0000000000))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x8000)
r3 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0)
write$auto_kmsg_fops_printk(r3, 0x0, 0x0)
keyctl$auto(0x17, 0x4, 0x7fffffffefff, 0x400, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0xe2a42, 0x5d745cb200ae4d7b)
fchown$auto(r4, 0xe5a, 0x5)
r5 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', <r6=>0x0})
sendmsg$auto_NET_SHAPER_CMD_GROUP(r2, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010029bd7000fedbdf25040000000c000180080001000100000018000a80140001800800020000020000080002000500000008000800", @ANYRES32=r6, @ANYBLOB="c273fc379d3b43a93bc2aabed08d9e5b2f8d2d6c91f22086b20ddaf912"], 0x40}, 0x1, 0x0, 0x0, 0x4c005}, 0x14)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/fs/netfs/caches\x00', 0x20000, 0x0)
lseek$auto(r8, 0x3, 0x1)
mmap$auto(0x31cd8a65, 0x8, 0x6, 0x1010, r7, 0xfff)
r9 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000180), r7)
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/uts\x00')
msgget$auto(0x100, 0x0)
r10 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio30\x00', 0x1000, 0x0)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x10004)
r11 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0)
read$auto(r11, 0x0, 0x39b8)
rt_sigsuspend$auto(0x0, 0x8)
poll$auto(&(0x7f0000000040)={r10, 0xfffa, 0x6}, 0x1, 0x80000001)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r9, @ANYRES64=0x0], 0x4f8}, 0x1, 0x0, 0x0, 0x20004041}, 0x4004040)

604.500909ms ago: executing program 5 (id=1168):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)={0x4f8, r1, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@HWSIM_ATTR_NO_VIF={0x4}, @HWSIM_ATTR_TX_INFO_FLAGS={0xa3, 0x15, "0a769f390f319a65455973099d57e8ca9c97f61474e17c723082ae46a658b6f36f1b3db5df4561a8818052576cf427cef5048396fddf4e8612d3ef1d3c300de98d048accaa54a46aacb6db19eb1e2de5869600e33d934c8c2dfda6ba5a40f5788453ea74d86d94980f75f21879a938261da927463b0fb0e54aec5acfaba9e91090a0209bb41a3b13ccf37b7ba282e85c637f4b2c6ece37495bece88f8b63b5"}, @HWSIM_ATTR_MLO_SUPPORT={0x4}, @HWSIM_ATTR_FRAME={0x438, 0x3, "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"}]}, 0x4f8}, 0x1, 0x0, 0x0, 0x20004041}, 0x4004040) (fail_nth: 16)

379.560682ms ago: executing program 4 (id=1204):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = memfd_secret$auto(0x1)
read$auto_fops_u32_ro_(r0, &(0x7f0000000000)=""/109, 0x6d)
r1 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x405040, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4008af10, r1)
bpf$auto(0x5, &(0x7f0000000480)=@bpf_attr_5={@target_ifindex, r0, 0xfff, 0x6, <r2=>r1, @relative_id=0x7, 0x2}, 0x40)
close_range$auto(r2, r0, 0x2000005)
socket(0x10, 0x2, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
select$auto(0x5, &(0x7f0000000080)={[0x49, 0x0, 0x5, 0x7, 0x7, 0x5, 0x0, 0x7, 0x9, 0x4, 0x9, 0x8000, 0xff, 0xd8, 0x8, 0x800]}, 0x0, 0x0, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)
socket(0x1, 0x803, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x27, 0x2, 0xbf)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x15, 0x5, 0x0)
socket(0x10, 0x2, 0xc)
socket(0x11, 0x3, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x155)
socket(0x11, 0x80003, 0x300)

0s ago: executing program 1 (id=1205):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/ext4/sda1/first_error_func\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/114, 0x72)
mmap$auto(0x0, 0x40009, 0xde, 0x9b72, 0x7, 0x28000)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
mbind$auto(0x2001, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0)
read$auto(r2, 0x0, 0x39b8)
capset$auto(0x0, 0x0)
capget$auto(0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/dev_mcast\x00', 0x101000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/mnt\x00')
r4 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x88100, 0x0)
read$auto_ima_ascii_measurements_ops_ima_fs(r4, &(0x7f0000000080)=""/4096, 0x1000)
ioctl$auto_MON_IOCX_GETX(r3, 0x4018920a, &(0x7f0000000140)={&(0x7f0000000080)={0x8, 0x9d, 0x0, 0xd, 0xc6, 0x8, 0x0, 0x5, 0x100000001, 0x4, 0x4d, 0x9, 0x2, @iso={0x402, 0x7f}, 0x9, 0xffffff81, 0x2, 0xfff}, &(0x7f0000000180)="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", 0xfff})
openat$auto_rb_simple_fops_trace(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
r5 = socket(0x15, 0x5, 0x0)
sendmsg$auto_NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x8001d}, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r6, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
listen$auto(0x3, 0x81)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)
socket(0x10, 0x2, 0x6)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB="010028bd7002fddbdf251100fc006fc538a5398b7fb2085e99e2d1514274a6a7fbb9e3ee0e898a359731db3cc21bcecf0983dd7383ce32e7857592394c05799b21cc297ba40bb09f729ebde6a21b42e8723651c2fabd5ea31f0cf9e1188caf6d485a79a472afe2fe79e2d1e8bc7ecb1b91b421dd06b5e76084dc4f87d6c332caec32c44c39d4db4906008c6835958426c54472b24274407f3554b7a21206ffadb880ae8b66a84561ef916f9f5fae3505b0b44ebbc065dd5c7b0a2d99f50fc08fa57113e416b10a00000000000066331e"], 0x70}, 0x1, 0x0, 0x0, 0x20008814}, 0x8044)
msync$auto(0x1ffff000, 0x180000000009100, 0x400000004)

kernel console output (not intermixed with test programs):

 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.824337][ T6252] RSP: 002b:00007f05f8f450e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   95.824360][ T6252] RAX: ffffffffffffffda RBX: 00007f05f83a6088 RCX: 00007f05f818d169
[   95.824376][ T6252] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f05f83a608c
[   95.824391][ T6252] RBP: 00007f05f83a6080 R08: 00007f05f8f67000 R09: 0000000000000000
[   95.824406][ T6252] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f05f83a608c
[   95.824419][ T6252] R13: 0000000000000000 R14: 00007fff5c8e2b80 R15: 00007fff5c8e2c68
[   95.824450][ T6252]  </TASK>
[   96.002153][    C1] vkms_vblank_simulate: vblank timer overrun
[  105.169863][ T6383] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.259097][ T6368] FAULT_INJECTION: forcing a failure.
[  105.259097][ T6368] name failslab, interval 1, probability 0, space 0, times 0
[  105.273939][ T6368] CPU: 1 UID: 0 PID: 6368 Comm: syz.1.108 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  105.273972][ T6368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  105.273984][ T6368] Call Trace:
[  105.273991][ T6368]  <TASK>
[  105.273999][ T6368]  dump_stack_lvl+0x16c/0x1f0
[  105.274036][ T6368]  should_fail_ex+0x50a/0x650
[  105.274071][ T6368]  ? fs_reclaim_acquire+0xae/0x150
[  105.274101][ T6368]  ? sk_prot_alloc+0x1a8/0x2a0
[  105.274124][ T6368]  should_failslab+0xc2/0x120
[  105.274145][ T6368]  __kmalloc_noprof+0xcb/0x510
[  105.274174][ T6368]  ? evm_inode_alloc_security+0x49/0xc0
[  105.274213][ T6368]  sk_prot_alloc+0x1a8/0x2a0
[  105.274239][ T6368]  sk_alloc+0x36/0xc20
[  105.274270][ T6368]  __netlink_create+0x5e/0x2c0
[  105.274298][ T6368]  __netlink_kernel_create+0xee/0x750
[  105.274327][ T6368]  ? __pfx___netlink_kernel_create+0x10/0x10
[  105.274366][ T6368]  audit_net_init+0x1af/0x440
[  105.274394][ T6368]  ? __pfx_audit_net_init+0x10/0x10
[  105.274423][ T6368]  ? __pfx_audit_receive+0x10/0x10
[  105.274447][ T6368]  ? __pfx_audit_multicast_bind+0x10/0x10
[  105.274472][ T6368]  ? __pfx_audit_multicast_unbind+0x10/0x10
[  105.274500][ T6368]  ? __kmalloc_noprof+0x23b/0x510
[  105.274538][ T6368]  ? __pfx_audit_net_init+0x10/0x10
[  105.274565][ T6368]  ops_init+0x1df/0x5f0
[  105.274601][ T6368]  setup_net+0x21f/0x860
[  105.274623][ T6368]  ? __pfx_setup_net+0x10/0x10
[  105.274642][ T6368]  ? down_read_killable+0xcc/0x380
[  105.274674][ T6368]  ? __pfx_down_read_killable+0x10/0x10
[  105.274706][ T6368]  ? __raw_spin_lock_init+0x3a/0x110
[  105.274730][ T6368]  ? debug_mutex_init+0x37/0x70
[  105.274770][ T6368]  copy_net_ns+0x2a6/0x5f0
[  105.274799][ T6368]  create_new_namespaces+0x3ea/0xad0
[  105.274843][ T6368]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  105.274884][ T6368]  ksys_unshare+0x45d/0xa40
[  105.274910][ T6368]  ? __pfx_ksys_unshare+0x10/0x10
[  105.274932][ T6368]  ? xfd_validate_state+0x5d/0x180
[  105.274974][ T6368]  __x64_sys_unshare+0x31/0x40
[  105.274997][ T6368]  do_syscall_64+0xcd/0x250
[  105.275029][ T6368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.275059][ T6368] RIP: 0033:0x7f3e7c38d169
[  105.275079][ T6368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.275100][ T6368] RSP: 002b:00007f3e7d10b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  105.275123][ T6368] RAX: ffffffffffffffda RBX: 00007f3e7c5a5fa0 RCX: 00007f3e7c38d169
[  105.275138][ T6368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  105.275152][ T6368] RBP: 00007f3e7c40e2a0 R08: 0000000000000000 R09: 0000000000000000
[  105.275166][ T6368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  105.275180][ T6368] R13: 0000000000000000 R14: 00007f3e7c5a5fa0 R15: 00007ffcccb23428
[  105.275212][ T6368]  </TASK>
[  105.275270][ T6368] audit: cannot initialize netlink socket in namespace
[  105.811019][ T6394] device-mapper: ioctl: Unable to rename non-existent device,  to „
[  107.759454][ T6419] FAULT_INJECTION: forcing a failure.
[  107.759454][ T6419] name fail_futex, interval 1, probability 0, space 0, times 0
[  107.773272][ T6419] CPU: 1 UID: 0 PID: 6419 Comm: syz.2.120 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  107.773303][ T6419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  107.773315][ T6419] Call Trace:
[  107.773322][ T6419]  <TASK>
[  107.773332][ T6419]  dump_stack_lvl+0x16c/0x1f0
[  107.773377][ T6419]  should_fail_ex+0x50a/0x650
[  107.773415][ T6419]  get_futex_key+0x4a3/0x1000
[  107.773446][ T6419]  ? __pfx_get_futex_key+0x10/0x10
[  107.773484][ T6419]  futex_wake+0xe8/0x4e0
[  107.773522][ T6419]  ? __pfx_futex_wake+0x10/0x10
[  107.773555][ T6419]  ? kmem_cache_free+0x2e2/0x4d0
[  107.773591][ T6419]  ? putname+0x13c/0x180
[  107.773619][ T6419]  do_futex+0x1e5/0x350
[  107.773648][ T6419]  ? __pfx_do_futex+0x10/0x10
[  107.773684][ T6419]  __x64_sys_futex+0x1e1/0x4c0
[  107.773717][ T6419]  ? __pfx___x64_sys_futex+0x10/0x10
[  107.773751][ T6419]  ? rcu_is_watching+0x12/0xc0
[  107.773786][ T6419]  do_syscall_64+0xcd/0x250
[  107.773827][ T6419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.773867][ T6419] RIP: 0033:0x7f05f818d169
[  107.773888][ T6419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.773911][ T6419] RSP: 002b:00007f05f8f660e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  107.773934][ T6419] RAX: ffffffffffffffda RBX: 00007f05f83a5fa8 RCX: 00007f05f818d169
[  107.773951][ T6419] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f05f83a5fac
[  107.773965][ T6419] RBP: 00007f05f83a5fa0 R08: 00007f05f8f67000 R09: 0000000000000000
[  107.773979][ T6419] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f05f83a5fac
[  107.774001][ T6419] R13: 0000000000000000 R14: 00007fff5c8e2b80 R15: 00007fff5c8e2c68
[  107.774033][ T6419]  </TASK>
[  108.132095][ T6423] netlink: 'syz.1.122': attribute type 1 has an invalid length.
[  108.144499][ T6423] netlink: 32 bytes leftover after parsing attributes in process `syz.1.122'.
[  108.160563][ T6423] netlink: 'syz.1.122': attribute type 1 has an invalid length.
[  108.229092][ T6426] syz.1.122 uses obsolete (PF_INET,SOCK_PACKET)
[  109.755711][ T6452] mmap: syz.2.128 (6452) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  111.068696][ T6480] netlink: 'syz.0.134': attribute type 1 has an invalid length.
[  111.076415][ T6480] netlink: 32 bytes leftover after parsing attributes in process `syz.0.134'.
[  111.085860][ T6480] netlink: 'syz.0.134': attribute type 1 has an invalid length.
[  111.923907][ T6474] FAULT_INJECTION: forcing a failure.
[  111.923907][ T6474] name failslab, interval 1, probability 0, space 0, times 0
[  111.993359][ T6474] CPU: 1 UID: 0 PID: 6474 Comm: syz.2.132 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  111.993397][ T6474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  111.993413][ T6474] Call Trace:
[  111.993422][ T6474]  <TASK>
[  111.993433][ T6474]  dump_stack_lvl+0x16c/0x1f0
[  111.993474][ T6474]  should_fail_ex+0x50a/0x650
[  111.993523][ T6474]  ? fs_reclaim_acquire+0xae/0x150
[  111.993558][ T6474]  should_failslab+0xc2/0x120
[  111.993583][ T6474]  kmem_cache_alloc_lru_noprof+0x73/0x3d0
[  111.993623][ T6474]  ? sock_alloc_inode+0x25/0x1c0
[  111.993653][ T6474]  ? __pfx_sock_alloc_inode+0x10/0x10
[  111.993677][ T6474]  sock_alloc_inode+0x25/0x1c0
[  111.993702][ T6474]  alloc_inode+0x5d/0x230
[  111.993726][ T6474]  sock_alloc+0x40/0x280
[  111.993754][ T6474]  sock_create_lite+0x82/0x120
[  111.993782][ T6474]  __netlink_kernel_create+0xbe/0x750
[  111.993820][ T6474]  ? __pfx___netlink_kernel_create+0x10/0x10
[  111.993864][ T6474]  uevent_net_init+0xf9/0x360
[  111.993887][ T6474]  ? __pfx_uevent_net_init+0x10/0x10
[  111.993912][ T6474]  ? __pfx_uevent_net_rcv+0x10/0x10
[  111.993947][ T6474]  ? __pfx_uevent_net_init+0x10/0x10
[  111.993968][ T6474]  ops_init+0x1df/0x5f0
[  111.994008][ T6474]  setup_net+0x21f/0x860
[  111.994033][ T6474]  ? __pfx_setup_net+0x10/0x10
[  111.994054][ T6474]  ? down_read_killable+0xcc/0x380
[  111.994089][ T6474]  ? __pfx_down_read_killable+0x10/0x10
[  111.994122][ T6474]  ? __raw_spin_lock_init+0x3a/0x110
[  111.994148][ T6474]  ? debug_mutex_init+0x37/0x70
[  111.994178][ T6474]  copy_net_ns+0x2a6/0x5f0
[  111.994207][ T6474]  create_new_namespaces+0x3ea/0xad0
[  111.994251][ T6474]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  111.994291][ T6474]  ksys_unshare+0x45d/0xa40
[  111.994318][ T6474]  ? __pfx_ksys_unshare+0x10/0x10
[  111.994341][ T6474]  ? xfd_validate_state+0x5d/0x180
[  111.994386][ T6474]  __x64_sys_unshare+0x31/0x40
[  111.994411][ T6474]  do_syscall_64+0xcd/0x250
[  111.994446][ T6474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.994478][ T6474] RIP: 0033:0x7f05f818d169
[  111.994504][ T6474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.994527][ T6474] RSP: 002b:00007f05f8f66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  111.994550][ T6474] RAX: ffffffffffffffda RBX: 00007f05f83a5fa0 RCX: 00007f05f818d169
[  111.994567][ T6474] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  111.994582][ T6474] RBP: 00007f05f820e2a0 R08: 0000000000000000 R09: 0000000000000000
[  111.994597][ T6474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.994612][ T6474] R13: 0000000000000000 R14: 00007f05f83a5fa0 R15: 00007fff5c8e2c68
[  111.994647][ T6474]  </TASK>
[  112.040379][ T6474] kobject_uevent: unable to create netlink socket!
[  112.044315][    C1] vkms_vblank_simulate: vblank timer overrun
[  112.277429][    C1] vkms_vblank_simulate: vblank timer overrun
[  112.283470][    C1] hrtimer: interrupt took 285567877 ns
[  112.383516][    C1] vkms_vblank_simulate: vblank timer overrun
[  113.827333][ T6527] FAULT_INJECTION: forcing a failure.
[  113.827333][ T6527] name fail_futex, interval 1, probability 0, space 0, times 0
[  113.845539][ T6527] CPU: 0 UID: 0 PID: 6527 Comm: syz.1.142 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  113.845575][ T6527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  113.845589][ T6527] Call Trace:
[  113.845597][ T6527]  <TASK>
[  113.845607][ T6527]  dump_stack_lvl+0x16c/0x1f0
[  113.845646][ T6527]  should_fail_ex+0x50a/0x650
[  113.845687][ T6527]  get_futex_key+0x4a3/0x1000
[  113.845719][ T6527]  ? __pfx_get_futex_key+0x10/0x10
[  113.845746][ T6527]  ? kasan_save_stack+0x42/0x60
[  113.845777][ T6527]  ? kasan_save_stack+0x33/0x60
[  113.845807][ T6527]  ? kasan_save_track+0x14/0x30
[  113.845838][ T6527]  ? __kasan_slab_alloc+0x89/0x90
[  113.845869][ T6527]  ? kmem_cache_alloc_noprof+0x226/0x3d0
[  113.845902][ T6527]  ? security_file_alloc+0x34/0x2b0
[  113.845937][ T6527]  futex_wait_setup+0x78/0x290
[  113.845976][ T6527]  __futex_wait+0x267/0x3c0
[  113.846009][ T6527]  ? __pfx___futex_wait+0x10/0x10
[  113.846048][ T6527]  ? __pfx_futex_wake_mark+0x10/0x10
[  113.846093][ T6527]  futex_wait+0xe9/0x380
[  113.846123][ T6527]  ? __pfx_futex_wait+0x10/0x10
[  113.846161][ T6527]  ? lock_acquire.part.0+0x11b/0x380
[  113.846193][ T6527]  ? find_held_lock+0x2d/0x110
[  113.846224][ T6527]  do_futex+0x22b/0x350
[  113.846252][ T6527]  ? __pfx_do_futex+0x10/0x10
[  113.846288][ T6527]  __x64_sys_futex+0x1e1/0x4c0
[  113.846316][ T6527]  ? __sys_socket+0xad/0x260
[  113.846344][ T6527]  ? __pfx___x64_sys_futex+0x10/0x10
[  113.846380][ T6527]  ? rcu_is_watching+0x12/0xc0
[  113.846416][ T6527]  do_syscall_64+0xcd/0x250
[  113.846452][ T6527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.846486][ T6527] RIP: 0033:0x7f3e7c38d169
[  113.846505][ T6527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.846526][ T6527] RSP: 002b:00007f3e7d10b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  113.846549][ T6527] RAX: ffffffffffffffda RBX: 00007f3e7c5a5fa8 RCX: 00007f3e7c38d169
[  113.846565][ T6527] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3e7c5a5fa8
[  113.846580][ T6527] RBP: 00007f3e7c5a5fa0 R08: 0000000000000000 R09: 0000000000000000
[  113.846594][ T6527] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3e7c5a5fac
[  113.846610][ T6527] R13: 0000000000000000 R14: 00007ffcccb23340 R15: 00007ffcccb23428
[  113.846640][ T6527]  </TASK>
[  122.167299][   T30] audit: type=1800 audit(6036530772.701:3): pid=6640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.165" name="lu_gp_id" dev="configfs" ino=11572 res=0 errno=0
[  122.765109][ T6661] netlink: 4 bytes leftover after parsing attributes in process `syz.3.169'.
[  125.516889][   T30] audit: type=1800 audit(6036563554.054:4): pid=6707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.181" name="lu_gp_id" dev="configfs" ino=11736 res=0 errno=0
[  132.205686][ T6814] netlink: 4 bytes leftover after parsing attributes in process `syz.3.209'.
[  132.355173][ T6820] netlink: 4 bytes leftover after parsing attributes in process `syz.1.211'.
[  133.331561][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  133.378163][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  134.323404][ T6852] netlink: 4 bytes leftover after parsing attributes in process `syz.1.222'.
[  142.906847][ T6994] netlink: 4 bytes leftover after parsing attributes in process `syz.2.251'.
[  146.109806][ T7059] capability: warning: `syz.3.265' uses 32-bit capabilities (legacy support in use)
[  146.124263][ T7059] FAULT_INJECTION: forcing a failure.
[  146.124263][ T7059] name failslab, interval 1, probability 0, space 0, times 0
[  146.168749][ T7059] CPU: 1 UID: 0 PID: 7059 Comm: syz.3.265 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  146.168780][ T7059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  146.168793][ T7059] Call Trace:
[  146.168800][ T7059]  <TASK>
[  146.168809][ T7059]  dump_stack_lvl+0x16c/0x1f0
[  146.168855][ T7059]  should_fail_ex+0x50a/0x650
[  146.168889][ T7059]  ? fs_reclaim_acquire+0xae/0x150
[  146.168919][ T7059]  ? alloc_pipe_info+0x1ec/0x590
[  146.168950][ T7059]  should_failslab+0xc2/0x120
[  146.168973][ T7059]  __kmalloc_noprof+0xcb/0x510
[  146.169013][ T7059]  alloc_pipe_info+0x1ec/0x590
[  146.169048][ T7059]  splice_direct_to_actor+0x793/0xa40
[  146.169079][ T7059]  ? get_pid_task+0xfc/0x250
[  146.169103][ T7059]  ? __pfx_direct_splice_actor+0x10/0x10
[  146.169134][ T7059]  ? __pfx_aa_file_perm+0x10/0x10
[  146.169164][ T7059]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  146.169196][ T7059]  ? __fget_files+0x1fc/0x3a0
[  146.169231][ T7059]  do_splice_direct+0x178/0x250
[  146.169258][ T7059]  ? __pfx_do_splice_direct+0x10/0x10
[  146.169281][ T7059]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  146.169300][ T7059]  ? rw_verify_area+0xcf/0x680
[  146.169317][ T7059]  do_sendfile+0xafb/0xe40
[  146.169337][ T7059]  ? __pfx_do_sendfile+0x10/0x10
[  146.169354][ T7059]  ? __fget_files+0x206/0x3a0
[  146.169376][ T7059]  __x64_sys_sendfile64+0x1da/0x220
[  146.169389][ T7059]  ? ksys_write+0x1ba/0x250
[  146.169406][ T7059]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  146.169423][ T7059]  do_syscall_64+0xcd/0x250
[  146.169443][ T7059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.169462][ T7059] RIP: 0033:0x7f34da78d169
[  146.169474][ T7059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.169487][ T7059] RSP: 002b:00007f34db6a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  146.169499][ T7059] RAX: ffffffffffffffda RBX: 00007f34da9a5fa0 RCX: 00007f34da78d169
[  146.169508][ T7059] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  146.169515][ T7059] RBP: 00007f34db6a2090 R08: 0000000000000000 R09: 0000000000000000
[  146.169523][ T7059] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  146.169530][ T7059] R13: 0000000000000000 R14: 00007f34da9a5fa0 R15: 00007ffe275bf338
[  146.169546][ T7059]  </TASK>
[  146.406378][    C1] vkms_vblank_simulate: vblank timer overrun
[  150.128131][ T7140] warning: `syz.2.286' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  150.714733][ T7153] FAULT_INJECTION: forcing a failure.
[  150.714733][ T7153] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  150.737243][ T7153] CPU: 1 UID: 0 PID: 7153 Comm: syz.1.291 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  150.737282][ T7153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  150.737294][ T7153] Call Trace:
[  150.737301][ T7153]  <TASK>
[  150.737310][ T7153]  dump_stack_lvl+0x16c/0x1f0
[  150.737345][ T7153]  should_fail_ex+0x50a/0x650
[  150.737393][ T7153]  _copy_from_user+0x2e/0xd0
[  150.737419][ T7153]  copy_msghdr_from_user+0x99/0x160
[  150.737452][ T7153]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  150.737500][ T7153]  ___sys_sendmsg+0xff/0x1e0
[  150.737533][ T7153]  ? __pfx____sys_sendmsg+0x10/0x10
[  150.737578][ T7153]  ? __pfx_lock_release+0x10/0x10
[  150.737606][ T7153]  ? trace_lock_acquire+0x14e/0x1f0
[  150.737644][ T7153]  ? __fget_files+0x206/0x3a0
[  150.737683][ T7153]  __sys_sendmsg+0x16e/0x220
[  150.737715][ T7153]  ? __pfx___sys_sendmsg+0x10/0x10
[  150.737774][ T7153]  do_syscall_64+0xcd/0x250
[  150.737805][ T7153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.737836][ T7153] RIP: 0033:0x7f3e7c38d169
[  150.737860][ T7153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.737880][ T7153] RSP: 002b:00007f3e7d10b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  150.737900][ T7153] RAX: ffffffffffffffda RBX: 00007f3e7c5a5fa0 RCX: 00007f3e7c38d169
[  150.737914][ T7153] RDX: 0000000020000000 RSI: 0000400000000040 RDI: 0000000000000003
[  150.737927][ T7153] RBP: 00007f3e7d10b090 R08: 0000000000000000 R09: 0000000000000000
[  150.737940][ T7153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.737952][ T7153] R13: 0000000000000000 R14: 00007f3e7c5a5fa0 R15: 00007ffcccb23428
[  150.737979][ T7153]  </TASK>
[  150.918210][    C1] vkms_vblank_simulate: vblank timer overrun
[  152.832783][ T7200] FAULT_INJECTION: forcing a failure.
[  152.832783][ T7200] name failslab, interval 1, probability 0, space 0, times 0
[  152.875344][ T7200] CPU: 0 UID: 0 PID: 7200 Comm: syz.0.310 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  152.875379][ T7200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  152.875392][ T7200] Call Trace:
[  152.875398][ T7200]  <TASK>
[  152.875407][ T7200]  dump_stack_lvl+0x16c/0x1f0
[  152.875442][ T7200]  should_fail_ex+0x50a/0x650
[  152.875482][ T7200]  should_failslab+0xc2/0x120
[  152.875505][ T7200]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  152.875538][ T7200]  ? skb_clone+0x190/0x3f0
[  152.875575][ T7200]  skb_clone+0x190/0x3f0
[  152.875608][ T7200]  netlink_deliver_tap+0xabd/0xd30
[  152.875645][ T7200]  netlink_unicast+0x6b4/0x7f0
[  152.875686][ T7200]  ? __pfx_netlink_unicast+0x10/0x10
[  152.875713][ T7200]  ? genl_rcv_msg+0x4bd/0x800
[  152.875753][ T7200]  netlink_ack+0x6ac/0xb80
[  152.875791][ T7200]  netlink_rcv_skb+0x348/0x440
[  152.875820][ T7200]  ? __pfx_genl_rcv_msg+0x10/0x10
[  152.875854][ T7200]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  152.875900][ T7200]  ? down_read+0xc9/0x330
[  152.875929][ T7200]  ? __pfx_down_read+0x10/0x10
[  152.875960][ T7200]  ? netlink_deliver_tap+0x1ae/0xd30
[  152.875988][ T7200]  genl_rcv+0x28/0x40
[  152.876013][ T7200]  netlink_unicast+0x53c/0x7f0
[  152.876042][ T7200]  ? __pfx_netlink_unicast+0x10/0x10
[  152.876068][ T7200]  ? __phys_addr_symbol+0x30/0x80
[  152.876087][ T7200]  ? __check_object_size+0x488/0x710
[  152.876109][ T7200]  netlink_sendmsg+0x8b8/0xd70
[  152.876139][ T7200]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.876174][ T7200]  ____sys_sendmsg+0xaaf/0xc90
[  152.876196][ T7200]  ? copy_msghdr_from_user+0x10b/0x160
[  152.876223][ T7200]  ? __pfx_____sys_sendmsg+0x10/0x10
[  152.876256][ T7200]  ___sys_sendmsg+0x135/0x1e0
[  152.876285][ T7200]  ? __pfx____sys_sendmsg+0x10/0x10
[  152.876323][ T7200]  ? __pfx_lock_release+0x10/0x10
[  152.876347][ T7200]  ? trace_lock_acquire+0x14e/0x1f0
[  152.876378][ T7200]  ? __fget_files+0x206/0x3a0
[  152.876411][ T7200]  __sys_sendmsg+0x16e/0x220
[  152.876439][ T7200]  ? __pfx___sys_sendmsg+0x10/0x10
[  152.876483][ T7200]  do_syscall_64+0xcd/0x250
[  152.876510][ T7200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.876535][ T7200] RIP: 0033:0x7fac61d8d169
[  152.876551][ T7200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.876568][ T7200] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  152.876585][ T7200] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  152.876598][ T7200] RDX: 0000000000008000 RSI: 0000400000002c40 RDI: 0000000000000003
[  152.876609][ T7200] RBP: 00007fac62c7b090 R08: 0000000000000000 R09: 0000000000000000
[  152.876620][ T7200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.876630][ T7200] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  152.876655][ T7200]  </TASK>
[  153.792310][ T7225] netlink: 32 bytes leftover after parsing attributes in process `syz.3.311'.
[  154.812528][ T7244] FAULT_INJECTION: forcing a failure.
[  154.812528][ T7244] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  154.826706][ T7244] CPU: 1 UID: 0 PID: 7244 Comm: syz.3.320 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  154.826737][ T7244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  154.826750][ T7244] Call Trace:
[  154.826757][ T7244]  <TASK>
[  154.826766][ T7244]  dump_stack_lvl+0x16c/0x1f0
[  154.826800][ T7244]  should_fail_ex+0x50a/0x650
[  154.826840][ T7244]  _copy_to_user+0x32/0xd0
[  154.826865][ T7244]  simple_read_from_buffer+0xd0/0x160
[  154.826897][ T7244]  proc_fail_nth_read+0x198/0x270
[  154.826926][ T7244]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  154.826956][ T7244]  ? rw_verify_area+0xcf/0x680
[  154.826983][ T7244]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  154.827011][ T7244]  vfs_read+0x1df/0xbf0
[  154.827040][ T7244]  ? __fget_files+0x1fc/0x3a0
[  154.827071][ T7244]  ? __pfx___mutex_lock+0x10/0x10
[  154.827100][ T7244]  ? __pfx_vfs_read+0x10/0x10
[  154.827137][ T7244]  ? __fget_files+0x206/0x3a0
[  154.827178][ T7244]  ksys_read+0x12b/0x250
[  154.827217][ T7244]  ? __pfx_ksys_read+0x10/0x10
[  154.827257][ T7244]  do_syscall_64+0xcd/0x250
[  154.827296][ T7244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.827327][ T7244] RIP: 0033:0x7f34da78bb7c
[  154.827346][ T7244] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  154.827366][ T7244] RSP: 002b:00007f34db6a2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  154.827387][ T7244] RAX: ffffffffffffffda RBX: 00007f34da9a5fa0 RCX: 00007f34da78bb7c
[  154.827402][ T7244] RDX: 000000000000000f RSI: 00007f34db6a20a0 RDI: 0000000000000004
[  154.827416][ T7244] RBP: 00007f34db6a2090 R08: 0000000000000000 R09: 0000000000000000
[  154.827429][ T7244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.827443][ T7244] R13: 0000000000000000 R14: 00007f34da9a5fa0 R15: 00007ffe275bf338
[  154.827475][ T7244]  </TASK>
[  156.128725][ T7257] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  156.172341][ T7257] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  156.263226][ T7257] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  156.305209][ T7257] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  156.347181][ T7257] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  156.374989][ T7257] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  156.385865][ T7257] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  156.392726][ T7257] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  156.432980][ T7257] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  156.451029][ T7257] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  156.463907][ T7257] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  156.477696][ T7257] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  156.577789][ T7281] FAULT_INJECTION: forcing a failure.
[  156.577789][ T7281] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  156.625767][ T7281] CPU: 1 UID: 0 PID: 7281 Comm: syz.1.331 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  156.625799][ T7281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  156.625812][ T7281] Call Trace:
[  156.625819][ T7281]  <TASK>
[  156.625827][ T7281]  dump_stack_lvl+0x16c/0x1f0
[  156.625862][ T7281]  should_fail_ex+0x50a/0x650
[  156.625901][ T7281]  _copy_from_user+0x2e/0xd0
[  156.625927][ T7281]  copy_msghdr_from_user+0x99/0x160
[  156.625961][ T7281]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  156.625992][ T7281]  ? __lock_acquire+0xcc5/0x3c40
[  156.626037][ T7281]  ___sys_sendmsg+0xff/0x1e0
[  156.626070][ T7281]  ? __pfx____sys_sendmsg+0x10/0x10
[  156.626114][ T7281]  ? trace_lock_acquire+0x14e/0x1f0
[  156.626162][ T7281]  __sys_sendmmsg+0x201/0x420
[  156.626198][ T7281]  ? __pfx___sys_sendmmsg+0x10/0x10
[  156.626246][ T7281]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  156.626289][ T7281]  ? fput+0x67/0x440
[  156.626312][ T7281]  ? ksys_write+0x1ba/0x250
[  156.626341][ T7281]  ? __pfx_ksys_write+0x10/0x10
[  156.626382][ T7281]  __x64_sys_sendmmsg+0x9c/0x100
[  156.626413][ T7281]  ? lockdep_hardirqs_on+0x7c/0x110
[  156.626441][ T7281]  do_syscall_64+0xcd/0x250
[  156.626473][ T7281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.626503][ T7281] RIP: 0033:0x7f3e7c38d169
[  156.626522][ T7281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.626542][ T7281] RSP: 002b:00007f3e7a1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  156.626564][ T7281] RAX: ffffffffffffffda RBX: 00007f3e7c5a6080 RCX: 00007f3e7c38d169
[  156.626579][ T7281] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  156.626593][ T7281] RBP: 00007f3e7a1f6090 R08: 0000000000000000 R09: 0000000000000000
[  156.626606][ T7281] R10: 0000000007fffffe R11: 0000000000000246 R12: 0000000000000001
[  156.626620][ T7281] R13: 0000000000000001 R14: 00007f3e7c5a6080 R15: 00007ffcccb23428
[  156.626649][ T7281]  </TASK>
[  156.832689][    C1] vkms_vblank_simulate: vblank timer overrun
[  157.894241][ T7311] FAULT_INJECTION: forcing a failure.
[  157.894241][ T7311] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.958297][ T7311] CPU: 0 UID: 0 PID: 7311 Comm: syz.2.337 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  157.958328][ T7311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  157.958341][ T7311] Call Trace:
[  157.958348][ T7311]  <TASK>
[  157.958357][ T7311]  dump_stack_lvl+0x16c/0x1f0
[  157.958392][ T7311]  should_fail_ex+0x50a/0x650
[  157.958431][ T7311]  _copy_from_iter+0x2a1/0x1560
[  157.958457][ T7311]  ? trace_lock_acquire+0x14e/0x1f0
[  157.958488][ T7311]  ? __pfx__copy_from_iter+0x10/0x10
[  157.958510][ T7311]  ? __virt_addr_valid+0x1a4/0x590
[  157.958537][ T7311]  ? __virt_addr_valid+0x5e/0x590
[  157.958561][ T7311]  ? __phys_addr_symbol+0x30/0x80
[  157.958583][ T7311]  ? __check_object_size+0x488/0x710
[  157.958612][ T7311]  skb_copy_datagram_from_iter+0x124/0x710
[  157.958643][ T7311]  ? hlock_class+0x4e/0x130
[  157.958662][ T7311]  ? __lock_acquire+0xcc5/0x3c40
[  157.958697][ T7311]  tun_get_user+0x199c/0x3e50
[  157.958733][ T7311]  ? __pfx_tun_get_user+0x10/0x10
[  157.958753][ T7311]  ? find_held_lock+0x2d/0x110
[  157.958778][ T7311]  ? __pfx_lock_release+0x10/0x10
[  157.958822][ T7311]  tun_chr_write_iter+0xdc/0x210
[  157.958848][ T7311]  vfs_write+0x5ae/0x1150
[  157.958879][ T7311]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  157.958904][ T7311]  ? __pfx_lock_release+0x10/0x10
[  157.958933][ T7311]  ? __pfx_vfs_write+0x10/0x10
[  157.958965][ T7311]  ? lock_acquire+0x2f/0xb0
[  157.958992][ T7311]  ? __fget_files+0x40/0x3a0
[  157.959038][ T7311]  __x64_sys_pwrite64+0x1f6/0x250
[  157.959070][ T7311]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  157.959111][ T7311]  do_syscall_64+0xcd/0x250
[  157.959144][ T7311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.959175][ T7311] RIP: 0033:0x7f05f818d169
[  157.959194][ T7311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.959221][ T7311] RSP: 002b:00007f05f8f66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  157.959243][ T7311] RAX: ffffffffffffffda RBX: 00007f05f83a5fa0 RCX: 00007f05f818d169
[  157.959259][ T7311] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 00000000000000c8
[  157.959272][ T7311] RBP: 00007f05f8f66090 R08: 0000000000000000 R09: 0000000000000000
[  157.959286][ T7311] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  157.959299][ T7311] R13: 0000000000000000 R14: 00007f05f83a5fa0 R15: 00007fff5c8e2c68
[  157.959330][ T7311]  </TASK>
[  158.327279][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout
[  158.347049][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout
[  158.396816][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout
[  158.476242][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout
[  160.386310][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout
[  160.392416][ T5848] Bluetooth: hci3: command 0x0c1a tx timeout
[  160.466039][ T5846] Bluetooth: hci1: command 0x0c1a tx timeout
[  160.545926][ T5846] Bluetooth: hci2: command 0x0c1a tx timeout
[  160.987639][ T7371] FAULT_INJECTION: forcing a failure.
[  160.987639][ T7371] name failslab, interval 1, probability 0, space 0, times 0
[  161.072429][ T7371] CPU: 1 UID: 0 PID: 7371 Comm: syz.0.355 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  161.072460][ T7371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  161.072471][ T7371] Call Trace:
[  161.072477][ T7371]  <TASK>
[  161.072488][ T7371]  dump_stack_lvl+0x16c/0x1f0
[  161.072522][ T7371]  should_fail_ex+0x50a/0x650
[  161.072554][ T7371]  ? fs_reclaim_acquire+0xae/0x150
[  161.072583][ T7371]  ? tomoyo_realpath_from_path+0xb9/0x720
[  161.072610][ T7371]  should_failslab+0xc2/0x120
[  161.072631][ T7371]  __kmalloc_noprof+0xcb/0x510
[  161.072662][ T7371]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  161.072695][ T7371]  ? rcu_is_watching+0x12/0xc0
[  161.072722][ T7371]  tomoyo_realpath_from_path+0xb9/0x720
[  161.072759][ T7371]  tomoyo_check_open_permission+0x2ad/0x3c0
[  161.072801][ T7371]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  161.072836][ T7371]  ? __pfx___lock_acquire+0x10/0x10
[  161.072879][ T7371]  ? __pfx_hook_file_open+0x10/0x10
[  161.072906][ T7371]  ? lock_acquire+0x2f/0xb0
[  161.072936][ T7371]  tomoyo_file_open+0x6b/0x90
[  161.072969][ T7371]  security_file_open+0x84/0x1e0
[  161.072998][ T7371]  do_dentry_open+0x57c/0x1c40
[  161.073032][ T7371]  ? inode_permission+0xdd/0x5f0
[  161.073059][ T7371]  vfs_open+0x82/0x3f0
[  161.073080][ T7371]  ? may_open+0x1f2/0x400
[  161.073107][ T7371]  path_openat+0x1e88/0x2d80
[  161.073148][ T7371]  ? __pfx_path_openat+0x10/0x10
[  161.073179][ T7371]  ? __pfx___lock_acquire+0x10/0x10
[  161.073206][ T7371]  ? lock_acquire.part.0+0x11b/0x380
[  161.073235][ T7371]  ? find_held_lock+0x2d/0x110
[  161.073263][ T7371]  do_filp_open+0x20c/0x470
[  161.073294][ T7371]  ? __pfx_do_filp_open+0x10/0x10
[  161.073322][ T7371]  ? find_held_lock+0x2d/0x110
[  161.073369][ T7371]  ? alloc_fd+0x41f/0x760
[  161.073410][ T7371]  do_sys_openat2+0x17a/0x1e0
[  161.073434][ T7371]  ? __pfx_do_sys_openat2+0x10/0x10
[  161.073462][ T7371]  ? __fget_files+0x206/0x3a0
[  161.073498][ T7371]  __x64_sys_openat+0x175/0x210
[  161.073522][ T7371]  ? __pfx___x64_sys_openat+0x10/0x10
[  161.073544][ T7371]  ? ksys_write+0x1ba/0x250
[  161.073584][ T7371]  do_syscall_64+0xcd/0x250
[  161.073614][ T7371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.073643][ T7371] RIP: 0033:0x7fac61d8d169
[  161.073662][ T7371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.073681][ T7371] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  161.073703][ T7371] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  161.073718][ T7371] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c
[  161.073732][ T7371] RBP: 00007fac62c7b090 R08: 0000000000000000 R09: 0000000000000000
[  161.073745][ T7371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.073758][ T7371] R13: 0000000000000001 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  161.073797][ T7371]  </TASK>
[  161.360462][    C1] vkms_vblank_simulate: vblank timer overrun
[  161.403295][ T7371] ERROR: Out of memory at tomoyo_realpath_from_path.
[  161.605455][ T7380] FAULT_INJECTION: forcing a failure.
[  161.605455][ T7380] name failslab, interval 1, probability 0, space 0, times 0
[  161.618646][ T7380] CPU: 0 UID: 0 PID: 7380 Comm: syz.0.357 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  161.618675][ T7380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  161.618688][ T7380] Call Trace:
[  161.618695][ T7380]  <TASK>
[  161.618704][ T7380]  dump_stack_lvl+0x16c/0x1f0
[  161.618741][ T7380]  should_fail_ex+0x50a/0x650
[  161.618782][ T7380]  should_failslab+0xc2/0x120
[  161.618813][ T7380]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  161.618849][ T7380]  ? dst_alloc+0x99/0x1a0
[  161.618882][ T7380]  dst_alloc+0x99/0x1a0
[  161.618913][ T7380]  rt_dst_alloc+0x35/0x3a0
[  161.618947][ T7380]  ip_route_output_key_hash_rcu+0x88d/0x2930
[  161.618974][ T7380]  ? save_trace+0xb02/0xb60
[  161.619007][ T7380]  ip_route_output_key_hash+0x138/0x2e0
[  161.619032][ T7380]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  161.619054][ T7380]  ? icmp_route_lookup.constprop.0+0x38a/0x13e0
[  161.619091][ T7380]  ? lock_acquire+0x2f/0xb0
[  161.619120][ T7380]  ? icmp_route_lookup.constprop.0+0x32c/0x13e0
[  161.619153][ T7380]  icmp_route_lookup.constprop.0+0x3d5/0x13e0
[  161.619187][ T7380]  ? __pfx_icmp_route_lookup.constprop.0+0x10/0x10
[  161.619222][ T7380]  ? __ip_options_echo+0x556/0x11f0
[  161.619255][ T7380]  ? trace_lock_acquire+0x14e/0x1f0
[  161.619280][ T7380]  ? do_raw_spin_trylock+0xb1/0x180
[  161.619303][ T7380]  ? __pfx___ip_options_echo+0x10/0x10
[  161.619331][ T7380]  ? lock_acquire+0x2f/0xb0
[  161.619359][ T7380]  ? __icmp_send+0x747/0x19a0
[  161.619388][ T7380]  __icmp_send+0xb09/0x19a0
[  161.619429][ T7380]  ? __pfx___icmp_send+0x10/0x10
[  161.619457][ T7380]  ? rt_add_uncached_list+0x5e/0x180
[  161.619487][ T7380]  ? __local_bh_enable_ip+0xa4/0x120
[  161.619527][ T7380]  ? find_held_lock+0x2d/0x110
[  161.619568][ T7380]  ? lock_acquire+0x2f/0xb0
[  161.619600][ T7380]  ? ipv4_link_failure+0x690/0xbc0
[  161.619638][ T7380]  ipv4_link_failure+0x426/0xbc0
[  161.619673][ T7380]  ? __pfx_ipv4_link_failure+0x10/0x10
[  161.619710][ T7380]  ? __pfx_ipv4_link_failure+0x10/0x10
[  161.619742][ T7380]  vti_tunnel_xmit+0x673/0x1e70
[  161.619780][ T7380]  ? __pfx_vti_tunnel_xmit+0x10/0x10
[  161.619821][ T7380]  ? validate_xmit_xfrm+0x492/0x12c0
[  161.619848][ T7380]  ? netif_skb_features+0x3b0/0xd50
[  161.619881][ T7380]  dev_hard_start_xmit+0x9a/0x7b0
[  161.619916][ T7380]  __dev_queue_xmit+0x7f0/0x43e0
[  161.619951][ T7380]  ? __pfx_lock_release+0x10/0x10
[  161.619980][ T7380]  ? trace_lock_acquire+0x14e/0x1f0
[  161.620011][ T7380]  ? __pfx___dev_queue_xmit+0x10/0x10
[  161.620040][ T7380]  ? __might_fault+0x50/0x190
[  161.620070][ T7380]  ? extract_iter_to_sg+0x1810/0x20b0
[  161.620116][ T7380]  ? packet_parse_headers+0x79c/0xb10
[  161.620147][ T7380]  ? __asan_memset+0x23/0x50
[  161.620173][ T7380]  ? packet_parse_headers+0x7a8/0xb10
[  161.620205][ T7380]  ? packet_parse_headers+0x21e/0xb10
[  161.620237][ T7380]  ? __phys_addr_symbol+0x30/0x80
[  161.620260][ T7380]  ? __check_object_size+0x488/0x710
[  161.620285][ T7380]  ? __pfx_packet_parse_headers+0x10/0x10
[  161.620318][ T7380]  ? skb_copy_datagram_from_iter+0x4ce/0x710
[  161.620347][ T7380]  ? lock_acquire+0x2f/0xb0
[  161.620381][ T7380]  packet_xmit+0x23e/0x360
[  161.620415][ T7380]  packet_sendmsg+0x272b/0x56c0
[  161.620470][ T7380]  ? __pfx___might_resched+0x10/0x10
[  161.620503][ T7380]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  161.620546][ T7380]  ? __pfx_packet_sendmsg+0x10/0x10
[  161.620582][ T7380]  ? aa_label_match+0xad0/0x2740
[  161.620605][ T7380]  ? __might_fault+0xe3/0x190
[  161.620628][ T7380]  ? __might_fault+0xe3/0x190
[  161.620662][ T7380]  ____sys_sendmsg+0xaaf/0xc90
[  161.620693][ T7380]  ? __pfx_____sys_sendmsg+0x10/0x10
[  161.620716][ T7380]  ? __lock_acquire+0xcc5/0x3c40
[  161.620764][ T7380]  ___sys_sendmsg+0x135/0x1e0
[  161.620806][ T7380]  ? __pfx____sys_sendmsg+0x10/0x10
[  161.620856][ T7380]  ? trace_lock_acquire+0x14e/0x1f0
[  161.620909][ T7380]  __sys_sendmmsg+0x201/0x420
[  161.620947][ T7380]  ? __pfx___sys_sendmmsg+0x10/0x10
[  161.620993][ T7380]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  161.621040][ T7380]  ? fput+0x67/0x440
[  161.621064][ T7380]  ? ksys_write+0x1ba/0x250
[  161.621094][ T7380]  ? __pfx_ksys_write+0x10/0x10
[  161.621130][ T7380]  __x64_sys_sendmmsg+0x9c/0x100
[  161.621163][ T7380]  ? lockdep_hardirqs_on+0x7c/0x110
[  161.621191][ T7380]  do_syscall_64+0xcd/0x250
[  161.621223][ T7380]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.621253][ T7380] RIP: 0033:0x7fac61d8d169
[  161.621273][ T7380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.621293][ T7380] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  161.621315][ T7380] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  161.621331][ T7380] RDX: 0000000000000002 RSI: 00004000000001c0 RDI: 0000000000000003
[  161.621344][ T7380] RBP: 00007fac62c7b090 R08: 0000000000000000 R09: 0000000000000000
[  161.621358][ T7380] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  161.621371][ T7380] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  161.621404][ T7380]  </TASK>
[  162.475625][ T5846] Bluetooth: hci0: command 0x0c1a tx timeout
[  162.475673][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout
[  162.535173][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout
[  162.614604][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout
[  163.273208][ T7409] FAULT_INJECTION: forcing a failure.
[  163.273208][ T7409] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.343038][ T7409] CPU: 1 UID: 0 PID: 7409 Comm: syz.3.366 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  163.343072][ T7409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  163.343085][ T7409] Call Trace:
[  163.343093][ T7409]  <TASK>
[  163.343102][ T7409]  dump_stack_lvl+0x16c/0x1f0
[  163.343137][ T7409]  should_fail_ex+0x50a/0x650
[  163.343176][ T7409]  _copy_from_user+0x2e/0xd0
[  163.343203][ T7409]  copy_msghdr_from_user+0x99/0x160
[  163.343236][ T7409]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  163.343267][ T7409]  ? __lock_acquire+0xcc5/0x3c40
[  163.343313][ T7409]  ___sys_sendmsg+0xff/0x1e0
[  163.343346][ T7409]  ? __pfx____sys_sendmsg+0x10/0x10
[  163.343392][ T7409]  ? trace_lock_acquire+0x14e/0x1f0
[  163.343440][ T7409]  __sys_sendmmsg+0x201/0x420
[  163.343474][ T7409]  ? __pfx___sys_sendmmsg+0x10/0x10
[  163.343517][ T7409]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  163.343561][ T7409]  ? fput+0x67/0x440
[  163.343584][ T7409]  ? ksys_write+0x1ba/0x250
[  163.343613][ T7409]  ? __pfx_ksys_write+0x10/0x10
[  163.343648][ T7409]  __x64_sys_sendmmsg+0x9c/0x100
[  163.343680][ T7409]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.343715][ T7409]  do_syscall_64+0xcd/0x250
[  163.343747][ T7409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.343782][ T7409] RIP: 0033:0x7f34da78d169
[  163.343800][ T7409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.343821][ T7409] RSP: 002b:00007f34db6a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  163.343842][ T7409] RAX: ffffffffffffffda RBX: 00007f34da9a5fa0 RCX: 00007f34da78d169
[  163.343857][ T7409] RDX: 0000000000000007 RSI: 0000400000000200 RDI: 0000000000000004
[  163.343871][ T7409] RBP: 00007f34db6a2090 R08: 0000000000000000 R09: 0000000000000000
[  163.343885][ T7409] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  163.343898][ T7409] R13: 0000000000000000 R14: 00007f34da9a5fa0 R15: 00007ffe275bf338
[  163.343931][ T7409]  </TASK>
[  163.550788][    C1] vkms_vblank_simulate: vblank timer overrun
[  164.971240][ T7442] FAULT_INJECTION: forcing a failure.
[  164.971240][ T7442] name failslab, interval 1, probability 0, space 0, times 0
[  164.971433][ T7442] CPU: 0 UID: 0 PID: 7442 Comm: syz.0.374 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  164.971459][ T7442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  164.971470][ T7442] Call Trace:
[  164.971476][ T7442]  <TASK>
[  164.971485][ T7442]  dump_stack_lvl+0x16c/0x1f0
[  164.971520][ T7442]  should_fail_ex+0x50a/0x650
[  164.971553][ T7442]  ? fs_reclaim_acquire+0xae/0x150
[  164.971584][ T7442]  ? copy_splice_read+0x1a8/0xb80
[  164.971610][ T7442]  should_failslab+0xc2/0x120
[  164.971629][ T7442]  __kmalloc_noprof+0xcb/0x510
[  164.971665][ T7442]  copy_splice_read+0x1a8/0xb80
[  164.971692][ T7442]  ? look_up_lock_class+0x59/0x150
[  164.971721][ T7442]  ? __pfx_copy_splice_read+0x10/0x10
[  164.971759][ T7442]  ? __pfx_register_lock_class+0x10/0x10
[  164.971801][ T7442]  ? __pfx_copy_splice_read+0x10/0x10
[  164.971828][ T7442]  do_splice_read+0x282/0x370
[  164.971859][ T7442]  splice_direct_to_actor+0x2a4/0xa40
[  164.971889][ T7442]  ? __pfx_direct_splice_actor+0x10/0x10
[  164.971924][ T7442]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  164.971953][ T7442]  ? __fget_files+0x1fc/0x3a0
[  164.971987][ T7442]  do_splice_direct+0x178/0x250
[  164.972016][ T7442]  ? __pfx_do_splice_direct+0x10/0x10
[  164.972046][ T7442]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  164.972079][ T7442]  ? rw_verify_area+0xcf/0x680
[  164.972109][ T7442]  do_sendfile+0xafb/0xe40
[  164.972141][ T7442]  ? __pfx_do_sendfile+0x10/0x10
[  164.972169][ T7442]  ? __fget_files+0x206/0x3a0
[  164.972207][ T7442]  __x64_sys_sendfile64+0x1da/0x220
[  164.972227][ T7442]  ? ksys_write+0x1ba/0x250
[  164.972253][ T7442]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  164.972282][ T7442]  do_syscall_64+0xcd/0x250
[  164.972314][ T7442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.972344][ T7442] RIP: 0033:0x7fac61d8d169
[  164.972362][ T7442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.972382][ T7442] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  164.972403][ T7442] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  164.972418][ T7442] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  164.972431][ T7442] RBP: 00007fac62c7b090 R08: 0000000000000000 R09: 0000000000000000
[  164.972444][ T7442] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  164.972458][ T7442] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  164.972486][ T7442]  </TASK>
[  169.472221][ T7538] FAULT_INJECTION: forcing a failure.
[  169.472221][ T7538] name failslab, interval 1, probability 0, space 0, times 0
[  169.505624][ T7538] CPU: 0 UID: 0 PID: 7538 Comm: syz.0.395 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  169.505655][ T7538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  169.505668][ T7538] Call Trace:
[  169.505675][ T7538]  <TASK>
[  169.505684][ T7538]  dump_stack_lvl+0x16c/0x1f0
[  169.505718][ T7538]  should_fail_ex+0x50a/0x650
[  169.505751][ T7538]  ? fs_reclaim_acquire+0xae/0x150
[  169.505781][ T7538]  should_failslab+0xc2/0x120
[  169.505804][ T7538]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  169.505836][ T7538]  ? __alloc_skb+0x2b1/0x380
[  169.505870][ T7538]  __alloc_skb+0x2b1/0x380
[  169.505899][ T7538]  ? __pfx___alloc_skb+0x10/0x10
[  169.505940][ T7538]  netlink_alloc_large_skb+0x69/0x130
[  169.505972][ T7538]  netlink_sendmsg+0x689/0xd70
[  169.506009][ T7538]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.506051][ T7538]  ____sys_sendmsg+0xaaf/0xc90
[  169.506076][ T7538]  ? copy_msghdr_from_user+0x10b/0x160
[  169.506104][ T7538]  ? __pfx_____sys_sendmsg+0x10/0x10
[  169.506140][ T7538]  ___sys_sendmsg+0x135/0x1e0
[  169.506198][ T7538]  ? __pfx____sys_sendmsg+0x10/0x10
[  169.506241][ T7538]  ? __pfx_lock_release+0x10/0x10
[  169.506271][ T7538]  ? trace_lock_acquire+0x14e/0x1f0
[  169.506304][ T7538]  ? __fget_files+0x206/0x3a0
[  169.506341][ T7538]  __sys_sendmsg+0x16e/0x220
[  169.506377][ T7538]  ? __pfx___sys_sendmsg+0x10/0x10
[  169.506426][ T7538]  do_syscall_64+0xcd/0x250
[  169.506461][ T7538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.506498][ T7538] RIP: 0033:0x7fac61d8d169
[  169.506517][ T7538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.506536][ T7538] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  169.506556][ T7538] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  169.506570][ T7538] RDX: 0000000020000000 RSI: 0000400000000040 RDI: 0000000000000003
[  169.506584][ T7538] RBP: 00007fac62c7b090 R08: 0000000000000000 R09: 0000000000000000
[  169.506596][ T7538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.506609][ T7538] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  169.506639][ T7538]  </TASK>
[  170.942646][ T7574] process 'syz.1.403' launched ':,' with NULL argv: empty string added
[  171.233415][ T7588] netlink: 342 bytes leftover after parsing attributes in process `syz.0.408'.
[  171.238753][ T5848] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260
[  171.247701][ T5848] Bluetooth: hci0: unexpected event 0x02 length: 726 > 260
[  172.016096][ T7618] FAULT_INJECTION: forcing a failure.
[  172.016096][ T7618] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  172.075452][ T7618] CPU: 1 UID: 0 PID: 7618 Comm: syz.3.416 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  172.075486][ T7618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  172.075498][ T7618] Call Trace:
[  172.075505][ T7618]  <TASK>
[  172.075514][ T7618]  dump_stack_lvl+0x16c/0x1f0
[  172.075549][ T7618]  should_fail_ex+0x50a/0x650
[  172.075589][ T7618]  _copy_to_user+0x32/0xd0
[  172.075617][ T7618]  simple_read_from_buffer+0xd0/0x160
[  172.075649][ T7618]  proc_fail_nth_read+0x198/0x270
[  172.075678][ T7618]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  172.075708][ T7618]  ? rw_verify_area+0xcf/0x680
[  172.075735][ T7618]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  172.075763][ T7618]  vfs_read+0x1df/0xbf0
[  172.075792][ T7618]  ? __fget_files+0x1fc/0x3a0
[  172.075823][ T7618]  ? __pfx___mutex_lock+0x10/0x10
[  172.075853][ T7618]  ? __pfx_vfs_read+0x10/0x10
[  172.075892][ T7618]  ? __fget_files+0x206/0x3a0
[  172.075933][ T7618]  ksys_read+0x12b/0x250
[  172.075961][ T7618]  ? __pfx_ksys_read+0x10/0x10
[  172.076011][ T7618]  do_syscall_64+0xcd/0x250
[  172.076043][ T7618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.076074][ T7618] RIP: 0033:0x7f34da78bb7c
[  172.076093][ T7618] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  172.076113][ T7618] RSP: 002b:00007f34db6a2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  172.076134][ T7618] RAX: ffffffffffffffda RBX: 00007f34da9a5fa0 RCX: 00007f34da78bb7c
[  172.076150][ T7618] RDX: 000000000000000f RSI: 00007f34db6a20a0 RDI: 0000000000000004
[  172.076163][ T7618] RBP: 00007f34db6a2090 R08: 0000000000000000 R09: 0000000000000000
[  172.076177][ T7618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  172.076190][ T7618] R13: 0000000000000000 R14: 00007f34da9a5fa0 R15: 00007ffe275bf338
[  172.076221][ T7618]  </TASK>
[  172.270178][    C1] vkms_vblank_simulate: vblank timer overrun
[  172.461951][ T7622] netlink: 4 bytes leftover after parsing attributes in process `syz.1.417'.
[  174.900222][ T7683] FAULT_INJECTION: forcing a failure.
[  174.900222][ T7683] name failslab, interval 1, probability 0, space 0, times 0
[  174.960318][ T7683] CPU: 1 UID: 0 PID: 7683 Comm: syz.3.437 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  174.960350][ T7683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  174.960363][ T7683] Call Trace:
[  174.960370][ T7683]  <TASK>
[  174.960378][ T7683]  dump_stack_lvl+0x16c/0x1f0
[  174.960413][ T7683]  should_fail_ex+0x50a/0x650
[  174.960446][ T7683]  ? fs_reclaim_acquire+0xae/0x150
[  174.960476][ T7683]  should_failslab+0xc2/0x120
[  174.960498][ T7683]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  174.960534][ T7683]  ? __pfx_mark_lock+0x10/0x10
[  174.960562][ T7683]  ? kvasprintf_const+0x66/0x1a0
[  174.960594][ T7683]  kvasprintf+0xbd/0x160
[  174.960619][ T7683]  ? __pfx_kvasprintf+0x10/0x10
[  174.960648][ T7683]  ? __lruvec_stat_mod_folio+0xa4/0x370
[  174.960685][ T7683]  kvasprintf_const+0x66/0x1a0
[  174.960712][ T7683]  kobject_set_name_vargs+0x5a/0x140
[  174.960746][ T7683]  dev_set_name+0xc8/0x100
[  174.960779][ T7683]  ? __pfx_dev_set_name+0x10/0x10
[  174.960813][ T7683]  ? rcu_is_watching+0x12/0xc0
[  174.960838][ T7683]  ? trace_kmalloc+0x2d/0xd0
[  174.960870][ T7683]  ? __kmalloc_noprof.cold+0x5c/0x61
[  174.960897][ T7683]  ? wiphy_new_nm+0x797/0x2160
[  174.960930][ T7683]  wiphy_new_nm+0x811/0x2160
[  174.960961][ T7683]  ? __pfx_mac80211_hwsim_add_chanctx+0x10/0x10
[  174.960985][ T7683]  ? __pfx_mac80211_hwsim_change_chanctx+0x10/0x10
[  174.961079][ T7683]  ? __pfx_mac80211_hwsim_remove_chanctx+0x10/0x10
[  174.961106][ T7683]  ieee80211_alloc_hw_nm+0x495/0x2260
[  174.961138][ T7683]  ? __local_bh_enable_ip+0xa4/0x120
[  174.961173][ T7683]  mac80211_hwsim_new_radio+0x1d6/0x54e0
[  174.961216][ T7683]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  174.961254][ T7683]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  174.961294][ T7683]  hwsim_new_radio_nl+0xb42/0x12b0
[  174.961330][ T7683]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  174.961370][ T7683]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  174.961407][ T7683]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  174.961450][ T7683]  genl_family_rcv_msg_doit+0x202/0x2f0
[  174.961488][ T7683]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  174.961523][ T7683]  ? trace_cap_capable+0x1a2/0x210
[  174.961558][ T7683]  ? bpf_lsm_capable+0x9/0x10
[  174.961583][ T7683]  ? security_capable+0x7e/0x260
[  174.961609][ T7683]  ? ns_capable+0xd7/0x110
[  174.961643][ T7683]  genl_rcv_msg+0x565/0x800
[  174.961682][ T7683]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.961719][ T7683]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  174.961764][ T7683]  netlink_rcv_skb+0x16b/0x440
[  174.961794][ T7683]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.961841][ T7683]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  174.961887][ T7683]  ? down_read+0xc9/0x330
[  174.961919][ T7683]  ? __pfx_down_read+0x10/0x10
[  174.961952][ T7683]  ? netlink_deliver_tap+0x1ae/0xd30
[  174.961989][ T7683]  genl_rcv+0x28/0x40
[  174.962020][ T7683]  netlink_unicast+0x53c/0x7f0
[  174.962056][ T7683]  ? __pfx_netlink_unicast+0x10/0x10
[  174.962089][ T7683]  ? __phys_addr_symbol+0x30/0x80
[  174.962113][ T7683]  ? __check_object_size+0x488/0x710
[  174.962142][ T7683]  netlink_sendmsg+0x8b8/0xd70
[  174.962178][ T7683]  ? __pfx_netlink_sendmsg+0x10/0x10
[  174.962224][ T7683]  ____sys_sendmsg+0xaaf/0xc90
[  174.962251][ T7683]  ? copy_msghdr_from_user+0x10b/0x160
[  174.962284][ T7683]  ? __pfx_____sys_sendmsg+0x10/0x10
[  174.962328][ T7683]  ___sys_sendmsg+0x135/0x1e0
[  174.962362][ T7683]  ? __pfx____sys_sendmsg+0x10/0x10
[  174.962408][ T7683]  ? __pfx_lock_release+0x10/0x10
[  174.962437][ T7683]  ? trace_lock_acquire+0x14e/0x1f0
[  174.962475][ T7683]  ? __fget_files+0x206/0x3a0
[  174.962511][ T7683]  __sys_sendmsg+0x16e/0x220
[  174.962544][ T7683]  ? __pfx___sys_sendmsg+0x10/0x10
[  174.962595][ T7683]  do_syscall_64+0xcd/0x250
[  174.962627][ T7683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.962657][ T7683] RIP: 0033:0x7f34da78d169
[  174.962677][ T7683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.962698][ T7683] RSP: 002b:00007f34db6a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.962720][ T7683] RAX: ffffffffffffffda RBX: 00007f34da9a5fa0 RCX: 00007f34da78d169
[  174.962735][ T7683] RDX: 0000000004004040 RSI: 0000400000000280 RDI: 0000000000000003
[  174.962749][ T7683] RBP: 00007f34db6a2090 R08: 0000000000000000 R09: 0000000000000000
[  174.962762][ T7683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.962775][ T7683] R13: 0000000000000000 R14: 00007f34da9a5fa0 R15: 00007ffe275bf338
[  174.962807][ T7683]  </TASK>
[  175.410389][    C1] vkms_vblank_simulate: vblank timer overrun
[  175.736158][ T7689] FAULT_INJECTION: forcing a failure.
[  175.736158][ T7689] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  175.806860][ T7689] CPU: 1 UID: 0 PID: 7689 Comm: syz.0.439 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  175.806891][ T7689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  175.806902][ T7689] Call Trace:
[  175.806908][ T7689]  <TASK>
[  175.806916][ T7689]  dump_stack_lvl+0x16c/0x1f0
[  175.806950][ T7689]  should_fail_ex+0x50a/0x650
[  175.806989][ T7689]  ? __pfx___might_resched+0x10/0x10
[  175.807027][ T7689]  should_fail_alloc_page+0xe7/0x130
[  175.807051][ T7689]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  175.807084][ T7689]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  175.807120][ T7689]  ? __pfx_mark_lock+0x10/0x10
[  175.807147][ T7689]  ? __pfx_stack_trace_save+0x10/0x10
[  175.807171][ T7689]  ? stack_depot_save_flags+0x28/0x9c0
[  175.807205][ T7689]  ? rcu_is_watching+0x12/0xc0
[  175.807232][ T7689]  ? kasan_save_stack+0x42/0x60
[  175.807261][ T7689]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  175.807296][ T7689]  ? hlock_class+0x4e/0x130
[  175.807320][ T7689]  ? hlock_class+0x4e/0x130
[  175.807352][ T7689]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  175.807386][ T7689]  ? policy_nodemask+0xea/0x4e0
[  175.807410][ T7689]  alloc_pages_mpol+0x1fc/0x540
[  175.807434][ T7689]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  175.807466][ T7689]  alloc_pages_noprof+0x131/0x390
[  175.807488][ T7689]  pte_alloc_one+0x20/0x390
[  175.807520][ T7689]  do_pte_missing+0x1aff/0x3e10
[  175.807552][ T7689]  ? do_raw_spin_unlock+0x172/0x230
[  175.807576][ T7689]  ? __pmd_alloc+0x3c2/0x870
[  175.807606][ T7689]  __handle_mm_fault+0x1166/0x2c60
[  175.807647][ T7689]  ? __pfx___handle_mm_fault+0x10/0x10
[  175.807678][ T7689]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  175.807726][ T7689]  ? find_vma+0xc0/0x140
[  175.807752][ T7689]  ? __pfx_find_vma+0x10/0x10
[  175.807782][ T7689]  handle_mm_fault+0x3fa/0xaa0
[  175.807819][ T7689]  do_user_addr_fault+0x7a3/0x13f0
[  175.807855][ T7689]  exc_page_fault+0x5c/0xc0
[  175.807883][ T7689]  asm_exc_page_fault+0x26/0x30
[  175.807910][ T7689] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  175.807933][ T7689] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  175.807952][ T7689] RSP: 0018:ffffc9000ca2f940 EFLAGS: 00050202
[  175.807978][ T7689] RAX: 0000000000000001 RBX: 0000000000000e80 RCX: 0000000000000e80
[  175.807991][ T7689] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888027b8c040
[  175.808006][ T7689] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1004f719d7
[  175.808019][ T7689] R10: ffff888027b8cebf R11: 0000000000000000 R12: ffffc9000ca2fd98
[  175.808033][ T7689] R13: 0000000000000e80 R14: ffff888027b8c040 R15: 00007ffffffff000
[  175.808065][ T7689]  _copy_from_iter+0x385/0x1560
[  175.808091][ T7689]  ? trace_lock_acquire+0x14e/0x1f0
[  175.808121][ T7689]  ? __pfx__copy_from_iter+0x10/0x10
[  175.808143][ T7689]  ? __virt_addr_valid+0x1a4/0x590
[  175.808171][ T7689]  ? __virt_addr_valid+0x5e/0x590
[  175.808193][ T7689]  ? __phys_addr_symbol+0x30/0x80
[  175.808214][ T7689]  ? __check_object_size+0x488/0x710
[  175.808241][ T7689]  skb_copy_datagram_from_iter+0x124/0x710
[  175.808269][ T7689]  ? hlock_class+0x4e/0x130
[  175.808292][ T7689]  ? __lock_acquire+0xcc5/0x3c40
[  175.808328][ T7689]  tun_get_user+0x199c/0x3e50
[  175.808367][ T7689]  ? __pfx_tun_get_user+0x10/0x10
[  175.808389][ T7689]  ? find_held_lock+0x2d/0x110
[  175.808420][ T7689]  ? __pfx_lock_release+0x10/0x10
[  175.808467][ T7689]  tun_chr_write_iter+0xdc/0x210
[  175.808493][ T7689]  vfs_write+0x5ae/0x1150
[  175.808523][ T7689]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  175.808547][ T7689]  ? __pfx_lock_release+0x10/0x10
[  175.808575][ T7689]  ? __pfx_vfs_write+0x10/0x10
[  175.808607][ T7689]  ? lock_acquire+0x2f/0xb0
[  175.808632][ T7689]  ? __fget_files+0x40/0x3a0
[  175.808679][ T7689]  __x64_sys_pwrite64+0x1f6/0x250
[  175.808711][ T7689]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  175.808753][ T7689]  do_syscall_64+0xcd/0x250
[  175.808784][ T7689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.808814][ T7689] RIP: 0033:0x7fac61d8d169
[  175.808832][ T7689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.808850][ T7689] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  175.808871][ T7689] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  175.808886][ T7689] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 00000000000000c8
[  175.808899][ T7689] RBP: 00007fac62c7b090 R08: 0000000000000000 R09: 0000000000000000
[  175.808912][ T7689] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  175.808925][ T7689] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  175.808954][ T7689]  </TASK>
[  176.277452][    C1] vkms_vblank_simulate: vblank timer overrun
[  177.402311][ T7714] ERROR: Out of memory at tomoyo_memory_ok.
[  179.693201][ T7763] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  180.188714][ T7780] netlink: 28 bytes leftover after parsing attributes in process `syz.2.469'.
[  180.832783][ T7789] FAULT_INJECTION: forcing a failure.
[  180.832783][ T7789] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.849743][ T7789] CPU: 1 UID: 0 PID: 7789 Comm: syz.3.471 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  180.849775][ T7789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  180.849787][ T7789] Call Trace:
[  180.849795][ T7789]  <TASK>
[  180.849804][ T7789]  dump_stack_lvl+0x16c/0x1f0
[  180.849840][ T7789]  should_fail_ex+0x50a/0x650
[  180.849879][ T7789]  _copy_from_user+0x2e/0xd0
[  180.849911][ T7789]  ____sys_sendmsg+0x590/0xc90
[  180.849940][ T7789]  ? __pfx_____sys_sendmsg+0x10/0x10
[  180.849964][ T7789]  ? __lock_acquire+0xcc5/0x3c40
[  180.850008][ T7789]  ___sys_sendmsg+0x135/0x1e0
[  180.850043][ T7789]  ? __pfx____sys_sendmsg+0x10/0x10
[  180.850094][ T7789]  ? trace_lock_acquire+0x14e/0x1f0
[  180.850142][ T7789]  __sys_sendmmsg+0x201/0x420
[  180.850178][ T7789]  ? __pfx___sys_sendmmsg+0x10/0x10
[  180.850221][ T7789]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  180.850263][ T7789]  ? fput+0x67/0x440
[  180.850286][ T7789]  ? ksys_write+0x1ba/0x250
[  180.850315][ T7789]  ? __pfx_ksys_write+0x10/0x10
[  180.850350][ T7789]  __x64_sys_sendmmsg+0x9c/0x100
[  180.850381][ T7789]  ? lockdep_hardirqs_on+0x7c/0x110
[  180.850407][ T7789]  do_syscall_64+0xcd/0x250
[  180.850438][ T7789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.850468][ T7789] RIP: 0033:0x7f34da78d169
[  180.850487][ T7789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.850507][ T7789] RSP: 002b:00007f34db6a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  180.850529][ T7789] RAX: ffffffffffffffda RBX: 00007f34da9a5fa0 RCX: 00007f34da78d169
[  180.850544][ T7789] RDX: 0000000000000007 RSI: 0000400000000200 RDI: 0000000000000004
[  180.850558][ T7789] RBP: 00007f34db6a2090 R08: 0000000000000000 R09: 0000000000000000
[  180.850572][ T7789] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  180.850589][ T7789] R13: 0000000000000000 R14: 00007f34da9a5fa0 R15: 00007ffe275bf338
[  180.850619][ T7789]  </TASK>
[  181.056530][    C1] vkms_vblank_simulate: vblank timer overrun
[  182.473062][ T7820] FAULT_INJECTION: forcing a failure.
[  182.473062][ T7820] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  182.522293][ T7820] CPU: 1 UID: 0 PID: 7820 Comm: syz.2.481 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  182.522326][ T7820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  182.522339][ T7820] Call Trace:
[  182.522346][ T7820]  <TASK>
[  182.522355][ T7820]  dump_stack_lvl+0x16c/0x1f0
[  182.522391][ T7820]  should_fail_ex+0x50a/0x650
[  182.522424][ T7820]  ? __pfx___might_resched+0x10/0x10
[  182.522461][ T7820]  should_fail_alloc_page+0xe7/0x130
[  182.522485][ T7820]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  182.522521][ T7820]  __alloc_frozen_pages_noprof+0x18e/0x2470
[  182.522556][ T7820]  ? copy_splice_read+0x1a8/0xb80
[  182.522583][ T7820]  ? stack_trace_save+0x95/0xd0
[  182.522609][ T7820]  ? __pfx_stack_trace_save+0x10/0x10
[  182.522634][ T7820]  ? stack_depot_save_flags+0x28/0x9c0
[  182.522674][ T7820]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  182.522706][ T7820]  ? kasan_save_stack+0x42/0x60
[  182.522736][ T7820]  ? kasan_save_track+0x14/0x30
[  182.522766][ T7820]  ? __kmalloc_noprof+0x21c/0x510
[  182.522796][ T7820]  ? copy_splice_read+0x1a8/0xb80
[  182.522821][ T7820]  ? do_splice_read+0x282/0x370
[  182.522846][ T7820]  ? splice_direct_to_actor+0x2a4/0xa40
[  182.522873][ T7820]  ? do_splice_direct+0x178/0x250
[  182.522899][ T7820]  ? do_sendfile+0xafb/0xe40
[  182.522925][ T7820]  ? __x64_sys_sendfile64+0x1da/0x220
[  182.522970][ T7820]  alloc_pages_bulk_noprof+0x6f9/0x1390
[  182.523013][ T7820]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  182.523054][ T7820]  ? trace_kmalloc+0x2d/0xd0
[  182.523078][ T7820]  ? __kmalloc_noprof+0x23b/0x510
[  182.523116][ T7820]  copy_splice_read+0x1e0/0xb80
[  182.523146][ T7820]  ? look_up_lock_class+0x59/0x150
[  182.523177][ T7820]  ? __pfx_copy_splice_read+0x10/0x10
[  182.523210][ T7820]  ? __pfx_register_lock_class+0x10/0x10
[  182.523253][ T7820]  ? __pfx_copy_splice_read+0x10/0x10
[  182.523286][ T7820]  do_splice_read+0x282/0x370
[  182.523321][ T7820]  splice_direct_to_actor+0x2a4/0xa40
[  182.523352][ T7820]  ? __pfx_direct_splice_actor+0x10/0x10
[  182.523387][ T7820]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  182.523419][ T7820]  ? __fget_files+0x1fc/0x3a0
[  182.523454][ T7820]  do_splice_direct+0x178/0x250
[  182.523483][ T7820]  ? __pfx_do_splice_direct+0x10/0x10
[  182.523513][ T7820]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  182.523547][ T7820]  ? rw_verify_area+0xcf/0x680
[  182.523577][ T7820]  do_sendfile+0xafb/0xe40
[  182.523611][ T7820]  ? __pfx_do_sendfile+0x10/0x10
[  182.523640][ T7820]  ? __fget_files+0x206/0x3a0
[  182.523677][ T7820]  __x64_sys_sendfile64+0x1da/0x220
[  182.523697][ T7820]  ? ksys_write+0x1ba/0x250
[  182.523724][ T7820]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  182.523755][ T7820]  do_syscall_64+0xcd/0x250
[  182.523786][ T7820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.523817][ T7820] RIP: 0033:0x7f05f818d169
[  182.523836][ T7820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.523856][ T7820] RSP: 002b:00007f05f8f45038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  182.523879][ T7820] RAX: ffffffffffffffda RBX: 00007f05f83a6080 RCX: 00007f05f818d169
[  182.523894][ T7820] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
[  182.523907][ T7820] RBP: 00007f05f8f45090 R08: 0000000000000000 R09: 0000000000000000
[  182.523920][ T7820] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  182.523933][ T7820] R13: 0000000000000000 R14: 00007f05f83a6080 R15: 00007fff5c8e2c68
[  182.523963][ T7820]  </TASK>
[  182.874232][    C1] vkms_vblank_simulate: vblank timer overrun
[  184.696620][ T7861] FAULT_INJECTION: forcing a failure.
[  184.696620][ T7861] name failslab, interval 1, probability 0, space 0, times 0
[  184.729932][ T7861] CPU: 1 UID: 0 PID: 7861 Comm: syz.1.492 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  184.729966][ T7861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  184.729979][ T7861] Call Trace:
[  184.729986][ T7861]  <TASK>
[  184.729995][ T7861]  dump_stack_lvl+0x16c/0x1f0
[  184.730031][ T7861]  should_fail_ex+0x50a/0x650
[  184.730071][ T7861]  should_failslab+0xc2/0x120
[  184.730095][ T7861]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  184.730130][ T7861]  ? skb_clone+0x190/0x3f0
[  184.730167][ T7861]  skb_clone+0x190/0x3f0
[  184.730201][ T7861]  netlink_deliver_tap+0xabd/0xd30
[  184.730239][ T7861]  netlink_unicast+0x5e1/0x7f0
[  184.730274][ T7861]  ? __pfx_netlink_unicast+0x10/0x10
[  184.730306][ T7861]  ? __phys_addr_symbol+0x30/0x80
[  184.730329][ T7861]  ? __check_object_size+0x488/0x710
[  184.730357][ T7861]  netlink_sendmsg+0x8b8/0xd70
[  184.730400][ T7861]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.730444][ T7861]  ____sys_sendmsg+0xaaf/0xc90
[  184.730470][ T7861]  ? copy_msghdr_from_user+0x10b/0x160
[  184.730503][ T7861]  ? __pfx_____sys_sendmsg+0x10/0x10
[  184.730527][ T7861]  ? __lock_acquire+0xcc5/0x3c40
[  184.730574][ T7861]  ___sys_sendmsg+0x135/0x1e0
[  184.730609][ T7861]  ? __pfx____sys_sendmsg+0x10/0x10
[  184.730656][ T7861]  ? trace_lock_acquire+0x14e/0x1f0
[  184.730707][ T7861]  __sys_sendmmsg+0x201/0x420
[  184.730742][ T7861]  ? __pfx___sys_sendmmsg+0x10/0x10
[  184.730786][ T7861]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  184.730829][ T7861]  ? fput+0x67/0x440
[  184.730852][ T7861]  ? ksys_write+0x1ba/0x250
[  184.730881][ T7861]  ? __pfx_ksys_write+0x10/0x10
[  184.730917][ T7861]  __x64_sys_sendmmsg+0x9c/0x100
[  184.730948][ T7861]  ? lockdep_hardirqs_on+0x7c/0x110
[  184.730976][ T7861]  do_syscall_64+0xcd/0x250
[  184.731009][ T7861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.731039][ T7861] RIP: 0033:0x7f3e7c38d169
[  184.731059][ T7861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.731079][ T7861] RSP: 002b:00007f3e7d10b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  184.731101][ T7861] RAX: ffffffffffffffda RBX: 00007f3e7c5a5fa0 RCX: 00007f3e7c38d169
[  184.731116][ T7861] RDX: 0000000000000003 RSI: 0000400000000080 RDI: 0000000000000003
[  184.731130][ T7861] RBP: 00007f3e7d10b090 R08: 0000000000000000 R09: 0000000000000000
[  184.731143][ T7861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  184.731157][ T7861] R13: 0000000000000000 R14: 00007f3e7c5a5fa0 R15: 00007ffcccb23428
[  184.731189][ T7861]  </TASK>
[  184.989310][    C1] vkms_vblank_simulate: vblank timer overrun
[  185.321671][ T7867] snd_virmidi snd_virmidi.0: control 3:6:1068:IAJ:127 is already present
[  186.189836][ T7881] netlink: 342 bytes leftover after parsing attributes in process `syz.2.497'.
[  187.012775][ T7896] FAULT_INJECTION: forcing a failure.
[  187.012775][ T7896] name failslab, interval 1, probability 0, space 0, times 0
[  187.043324][ T7896] CPU: 1 UID: 0 PID: 7896 Comm: syz.0.504 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  187.043360][ T7896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  187.043375][ T7896] Call Trace:
[  187.043382][ T7896]  <TASK>
[  187.043393][ T7896]  dump_stack_lvl+0x16c/0x1f0
[  187.043433][ T7896]  should_fail_ex+0x50a/0x650
[  187.043470][ T7896]  ? fs_reclaim_acquire+0xae/0x150
[  187.043505][ T7896]  should_failslab+0xc2/0x120
[  187.043530][ T7896]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  187.043568][ T7896]  ? alloc_uid+0x13f/0x4c0
[  187.043592][ T7896]  ? _raw_spin_unlock_irq+0x23/0x50
[  187.043623][ T7896]  alloc_uid+0x13f/0x4c0
[  187.043648][ T7896]  ? __pfx_alloc_uid+0x10/0x10
[  187.043671][ T7896]  ? bpf_lsm_capable+0x9/0x10
[  187.043704][ T7896]  ? security_capable+0x7e/0x260
[  187.043734][ T7896]  __sys_setreuid+0x63d/0xaf0
[  187.043772][ T7896]  do_syscall_64+0xcd/0x250
[  187.043805][ T7896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.043839][ T7896] RIP: 0033:0x7fac61d8d169
[  187.043859][ T7896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.043880][ T7896] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000071
[  187.043904][ T7896] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  187.043919][ T7896] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000003
[  187.043932][ T7896] RBP: 00007fac61e0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  187.043947][ T7896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  187.043961][ T7896] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  187.043998][ T7896]  </TASK>
[  187.217286][    C1] vkms_vblank_simulate: vblank timer overrun
[  187.537130][ T7904] Invalid ELF header magic: != ELF
[  188.347383][ T7928] lo: entered allmulticast mode
[  188.426061][ T7928] lo: left allmulticast mode
[  190.600338][ T7977] netlink: 'syz.1.527': attribute type 11 has an invalid length.
[  194.542914][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  194.549386][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  198.058009][ T8108] FAULT_INJECTION: forcing a failure.
[  198.058009][ T8108] name failslab, interval 1, probability 0, space 0, times 0
[  198.150506][ T8108] CPU: 0 UID: 0 PID: 8108 Comm: syz.2.560 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  198.150544][ T8108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  198.150558][ T8108] Call Trace:
[  198.150566][ T8108]  <TASK>
[  198.150575][ T8108]  dump_stack_lvl+0x16c/0x1f0
[  198.150614][ T8108]  should_fail_ex+0x50a/0x650
[  198.150651][ T8108]  ? fs_reclaim_acquire+0xae/0x150
[  198.150687][ T8108]  should_failslab+0xc2/0x120
[  198.150712][ T8108]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  198.150750][ T8108]  ? kfree+0x260/0x4d0
[  198.150779][ T8108]  ? snd_pcm_hw_rule_add+0x41c/0x5b0
[  198.150811][ T8108]  krealloc_noprof+0x157/0x380
[  198.150844][ T8108]  ? krealloc_noprof+0x1b1/0x380
[  198.150882][ T8108]  snd_pcm_hw_rule_add+0x41c/0x5b0
[  198.150908][ T8108]  ? __pfx_snd_pcm_hw_rule_muldivk+0x10/0x10
[  198.150948][ T8108]  ? __pfx_snd_pcm_hw_rule_add+0x10/0x10
[  198.150971][ T8108]  ? __pfx_snd_pcm_hw_rule_add+0x10/0x10
[  198.151001][ T8108]  ? debug_mutex_init+0x37/0x70
[  198.151028][ T8108]  ? snd_pcm_attach_substream+0x871/0xd20
[  198.151068][ T8108]  snd_pcm_open_substream+0x91e/0x17c0
[  198.151106][ T8108]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  198.151146][ T8108]  snd_pcm_open+0x29b/0x700
[  198.151179][ T8108]  ? __pfx_snd_pcm_open+0x10/0x10
[  198.151215][ T8108]  ? __pfx_default_wake_function+0x10/0x10
[  198.151260][ T8108]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[  198.151292][ T8108]  snd_pcm_capture_open+0x89/0xe0
[  198.151324][ T8108]  snd_open+0x1fe/0x450
[  198.151350][ T8108]  ? __pfx_snd_open+0x10/0x10
[  198.151374][ T8108]  chrdev_open+0x237/0x6a0
[  198.151419][ T8108]  ? __pfx_chrdev_open+0x10/0x10
[  198.151459][ T8108]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  198.151499][ T8108]  do_dentry_open+0x735/0x1c40
[  198.151534][ T8108]  ? __pfx_chrdev_open+0x10/0x10
[  198.151570][ T8108]  ? inode_permission+0xdd/0x5f0
[  198.151600][ T8108]  vfs_open+0x82/0x3f0
[  198.151623][ T8108]  ? may_open+0x1f2/0x400
[  198.151653][ T8108]  path_openat+0x1e88/0x2d80
[  198.151700][ T8108]  ? __pfx_path_openat+0x10/0x10
[  198.151733][ T8108]  ? __pfx___lock_acquire+0x10/0x10
[  198.151764][ T8108]  ? lock_acquire.part.0+0x11b/0x380
[  198.151796][ T8108]  ? find_held_lock+0x2d/0x110
[  198.151826][ T8108]  do_filp_open+0x20c/0x470
[  198.151860][ T8108]  ? __pfx_do_filp_open+0x10/0x10
[  198.151890][ T8108]  ? find_held_lock+0x2d/0x110
[  198.151942][ T8108]  ? alloc_fd+0x41f/0x760
[  198.151985][ T8108]  do_sys_openat2+0x17a/0x1e0
[  198.152010][ T8108]  ? __pfx_do_sys_openat2+0x10/0x10
[  198.152050][ T8108]  __x64_sys_openat+0x175/0x210
[  198.152076][ T8108]  ? __pfx___x64_sys_openat+0x10/0x10
[  198.152117][ T8108]  do_syscall_64+0xcd/0x250
[  198.152151][ T8108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.152185][ T8108] RIP: 0033:0x7f05f818d169
[  198.152205][ T8108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.152227][ T8108] RSP: 002b:00007f05f8f66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  198.152250][ T8108] RAX: ffffffffffffffda RBX: 00007f05f83a5fa0 RCX: 00007f05f818d169
[  198.152267][ T8108] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c
[  198.152282][ T8108] RBP: 00007f05f820e2a0 R08: 0000000000000000 R09: 0000000000000000
[  198.152297][ T8108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  198.152311][ T8108] R13: 0000000000000000 R14: 00007f05f83a5fa0 R15: 00007fff5c8e2c68
[  198.152344][ T8108]  </TASK>
[  199.583805][ T8119] 
[  200.181341][ T8128] FAULT_INJECTION: forcing a failure.
[  200.181341][ T8128] name failslab, interval 1, probability 0, space 0, times 0
[  200.268817][ T8128] CPU: 1 UID: 0 PID: 8128 Comm: syz.0.565 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  200.268851][ T8128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  200.268864][ T8128] Call Trace:
[  200.268871][ T8128]  <TASK>
[  200.268881][ T8128]  dump_stack_lvl+0x16c/0x1f0
[  200.268916][ T8128]  should_fail_ex+0x50a/0x650
[  200.268951][ T8128]  ? fs_reclaim_acquire+0xae/0x150
[  200.268983][ T8128]  should_failslab+0xc2/0x120
[  200.269006][ T8128]  __kmalloc_node_noprof+0xd1/0x510
[  200.269041][ T8128]  ? __pfx___debug_object_init+0x10/0x10
[  200.269069][ T8128]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  200.269105][ T8128]  __kvmalloc_node_noprof+0xad/0x1a0
[  200.269137][ T8128]  bucket_table_alloc.isra.0+0x86/0x460
[  200.269176][ T8128]  rhashtable_init_noprof+0x41a/0x7e0
[  200.269209][ T8128]  ? __init_waitqueue_head+0xca/0x150
[  200.269238][ T8128]  rhltable_init_noprof+0x20/0x60
[  200.269280][ T8128]  sta_info_init+0x27/0x160
[  200.269309][ T8128]  ieee80211_alloc_hw_nm+0x840/0x2260
[  200.269339][ T8128]  ? __local_bh_enable_ip+0xa4/0x120
[  200.269377][ T8128]  mac80211_hwsim_new_radio+0x1d6/0x54e0
[  200.269425][ T8128]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  200.269464][ T8128]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  200.269507][ T8128]  hwsim_new_radio_nl+0xb42/0x12b0
[  200.269543][ T8128]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  200.269585][ T8128]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  200.269621][ T8128]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  200.269664][ T8128]  genl_family_rcv_msg_doit+0x202/0x2f0
[  200.269702][ T8128]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  200.269736][ T8128]  ? trace_cap_capable+0x1a2/0x210
[  200.269770][ T8128]  ? bpf_lsm_capable+0x9/0x10
[  200.269794][ T8128]  ? security_capable+0x7e/0x260
[  200.269820][ T8128]  ? ns_capable+0xd7/0x110
[  200.269854][ T8128]  genl_rcv_msg+0x565/0x800
[  200.269893][ T8128]  ? __pfx_genl_rcv_msg+0x10/0x10
[  200.269928][ T8128]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  200.269973][ T8128]  netlink_rcv_skb+0x16b/0x440
[  200.270005][ T8128]  ? __pfx_genl_rcv_msg+0x10/0x10
[  200.270041][ T8128]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  200.270087][ T8128]  ? down_read+0xc9/0x330
[  200.270118][ T8128]  ? __pfx_down_read+0x10/0x10
[  200.270150][ T8128]  ? netlink_deliver_tap+0x1ae/0xd30
[  200.270186][ T8128]  genl_rcv+0x28/0x40
[  200.270216][ T8128]  netlink_unicast+0x53c/0x7f0
[  200.270259][ T8128]  ? __pfx_netlink_unicast+0x10/0x10
[  200.270292][ T8128]  ? __phys_addr_symbol+0x30/0x80
[  200.270316][ T8128]  ? __check_object_size+0x488/0x710
[  200.270344][ T8128]  netlink_sendmsg+0x8b8/0xd70
[  200.270382][ T8128]  ? __pfx_netlink_sendmsg+0x10/0x10
[  200.270427][ T8128]  ____sys_sendmsg+0xaaf/0xc90
[  200.270455][ T8128]  ? copy_msghdr_from_user+0x10b/0x160
[  200.270488][ T8128]  ? __pfx_____sys_sendmsg+0x10/0x10
[  200.270531][ T8128]  ___sys_sendmsg+0x135/0x1e0
[  200.270566][ T8128]  ? __pfx____sys_sendmsg+0x10/0x10
[  200.270613][ T8128]  ? __pfx_lock_release+0x10/0x10
[  200.270643][ T8128]  ? trace_lock_acquire+0x14e/0x1f0
[  200.270681][ T8128]  ? __fget_files+0x206/0x3a0
[  200.270720][ T8128]  __sys_sendmsg+0x16e/0x220
[  200.270754][ T8128]  ? __pfx___sys_sendmsg+0x10/0x10
[  200.270810][ T8128]  do_syscall_64+0xcd/0x250
[  200.270844][ T8128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.270875][ T8128] RIP: 0033:0x7fac61d8d169
[  200.270895][ T8128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.270915][ T8128] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  200.270938][ T8128] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  200.270954][ T8128] RDX: 0000000004004040 RSI: 0000400000000280 RDI: 0000000000000003
[  200.270967][ T8128] RBP: 00007fac62c7b090 R08: 0000000000000000 R09: 0000000000000000
[  200.270981][ T8128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  200.270994][ T8128] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  200.271025][ T8128]  </TASK>
[  200.672226][    C1] vkms_vblank_simulate: vblank timer overrun
[  201.116589][ T8133] FAULT_INJECTION: forcing a failure.
[  201.116589][ T8133] name failslab, interval 1, probability 0, space 0, times 0
[  201.144265][ T8133] CPU: 1 UID: 0 PID: 8133 Comm: syz.1.567 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  201.144299][ T8133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  201.144312][ T8133] Call Trace:
[  201.144319][ T8133]  <TASK>
[  201.144328][ T8133]  dump_stack_lvl+0x16c/0x1f0
[  201.144364][ T8133]  should_fail_ex+0x50a/0x650
[  201.144398][ T8133]  ? fs_reclaim_acquire+0xae/0x150
[  201.144430][ T8133]  should_failslab+0xc2/0x120
[  201.144454][ T8133]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  201.144488][ T8133]  ? ptlock_alloc+0x1f/0x70
[  201.144523][ T8133]  ptlock_alloc+0x1f/0x70
[  201.144553][ T8133]  pte_alloc_one+0x74/0x390
[  201.144586][ T8133]  do_pte_missing+0x1aff/0x3e10
[  201.144619][ T8133]  ? do_raw_spin_unlock+0x172/0x230
[  201.144645][ T8133]  ? __pmd_alloc+0x3c2/0x870
[  201.144677][ T8133]  __handle_mm_fault+0x1166/0x2c60
[  201.144718][ T8133]  ? __pfx___handle_mm_fault+0x10/0x10
[  201.144749][ T8133]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  201.144800][ T8133]  ? find_vma+0xc0/0x140
[  201.144826][ T8133]  ? __pfx_find_vma+0x10/0x10
[  201.144857][ T8133]  handle_mm_fault+0x3fa/0xaa0
[  201.144896][ T8133]  do_user_addr_fault+0x7a3/0x13f0
[  201.144934][ T8133]  exc_page_fault+0x5c/0xc0
[  201.144963][ T8133]  asm_exc_page_fault+0x26/0x30
[  201.144993][ T8133] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  201.145018][ T8133] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  201.145038][ T8133] RSP: 0018:ffffc900035d7940 EFLAGS: 00050202
[  201.145057][ T8133] RAX: 0000000000000001 RBX: 0000000000000e80 RCX: 0000000000000e80
[  201.145071][ T8133] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88801253c040
[  201.145085][ T8133] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed10024a79d7
[  201.145099][ T8133] R10: ffff88801253cebf R11: 0000000000000000 R12: ffffc900035d7d98
[  201.145113][ T8133] R13: 0000000000000e80 R14: ffff88801253c040 R15: 00007ffffffff000
[  201.145145][ T8133]  _copy_from_iter+0x385/0x1560
[  201.145180][ T8133]  ? trace_lock_acquire+0x14e/0x1f0
[  201.145210][ T8133]  ? __pfx__copy_from_iter+0x10/0x10
[  201.145233][ T8133]  ? __virt_addr_valid+0x1a4/0x590
[  201.145261][ T8133]  ? __virt_addr_valid+0x5e/0x590
[  201.145285][ T8133]  ? __phys_addr_symbol+0x30/0x80
[  201.145307][ T8133]  ? __check_object_size+0x488/0x710
[  201.145336][ T8133]  skb_copy_datagram_from_iter+0x124/0x710
[  201.145366][ T8133]  ? hlock_class+0x4e/0x130
[  201.145388][ T8133]  ? __lock_acquire+0xcc5/0x3c40
[  201.145426][ T8133]  tun_get_user+0x199c/0x3e50
[  201.145466][ T8133]  ? __pfx_tun_get_user+0x10/0x10
[  201.145489][ T8133]  ? find_held_lock+0x2d/0x110
[  201.145520][ T8133]  ? __pfx_lock_release+0x10/0x10
[  201.145567][ T8133]  tun_chr_write_iter+0xdc/0x210
[  201.145594][ T8133]  vfs_write+0x5ae/0x1150
[  201.145625][ T8133]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  201.145650][ T8133]  ? __pfx_lock_release+0x10/0x10
[  201.145679][ T8133]  ? __pfx_vfs_write+0x10/0x10
[  201.145711][ T8133]  ? lock_acquire+0x2f/0xb0
[  201.145739][ T8133]  ? __fget_files+0x40/0x3a0
[  201.145787][ T8133]  __x64_sys_pwrite64+0x1f6/0x250
[  201.145819][ T8133]  ? __pfx___x64_sys_pwrite64+0x10/0x10
[  201.145861][ T8133]  do_syscall_64+0xcd/0x250
[  201.145893][ T8133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.145922][ T8133] RIP: 0033:0x7f3e7c38d169
[  201.145940][ T8133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.145960][ T8133] RSP: 002b:00007f3e7d10b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  201.145980][ T8133] RAX: ffffffffffffffda RBX: 00007f3e7c5a5fa0 RCX: 00007f3e7c38d169
[  201.145995][ T8133] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 00000000000000c8
[  201.146009][ T8133] RBP: 00007f3e7d10b090 R08: 0000000000000000 R09: 0000000000000000
[  201.146023][ T8133] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  201.146036][ T8133] R13: 0000000000000000 R14: 00007f3e7c5a5fa0 R15: 00007ffcccb23428
[  201.146068][ T8133]  </TASK>
[  205.277762][ T8211] netlink: 28 bytes leftover after parsing attributes in process `syz.2.585'.
[  207.426033][ T8262] FAULT_INJECTION: forcing a failure.
[  207.426033][ T8262] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.489374][ T8262] CPU: 1 UID: 0 PID: 8262 Comm: syz.0.607 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  207.489408][ T8262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  207.489420][ T8262] Call Trace:
[  207.489427][ T8262]  <TASK>
[  207.489436][ T8262]  dump_stack_lvl+0x16c/0x1f0
[  207.489478][ T8262]  should_fail_ex+0x50a/0x650
[  207.489513][ T8262]  _copy_from_user+0x2e/0xd0
[  207.489535][ T8262]  copy_msghdr_from_user+0x99/0x160
[  207.489565][ T8262]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  207.489593][ T8262]  ? __lock_acquire+0xcc5/0x3c40
[  207.489625][ T8262]  ? hlock_class+0x4e/0x130
[  207.489645][ T8262]  ? __lock_acquire+0x15a9/0x3c40
[  207.489678][ T8262]  ___sys_sendmsg+0xff/0x1e0
[  207.489707][ T8262]  ? __pfx____sys_sendmsg+0x10/0x10
[  207.489735][ T8262]  ? __pfx___lock_acquire+0x10/0x10
[  207.489789][ T8262]  ? __pfx___might_resched+0x10/0x10
[  207.489820][ T8262]  ? __might_fault+0xe3/0x190
[  207.489846][ T8262]  __sys_sendmmsg+0x201/0x420
[  207.489879][ T8262]  ? __pfx___sys_sendmmsg+0x10/0x10
[  207.489919][ T8262]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  207.489959][ T8262]  ? fput+0x67/0x440
[  207.489981][ T8262]  ? ksys_write+0x1ba/0x250
[  207.490008][ T8262]  ? __pfx_ksys_write+0x10/0x10
[  207.490040][ T8262]  __x64_sys_sendmmsg+0x9c/0x100
[  207.490069][ T8262]  ? lockdep_hardirqs_on+0x7c/0x110
[  207.490096][ T8262]  do_syscall_64+0xcd/0x250
[  207.490127][ T8262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.490157][ T8262] RIP: 0033:0x7fac61d8d169
[  207.490175][ T8262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.490195][ T8262] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  207.490217][ T8262] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  207.490232][ T8262] RDX: 0000000000000003 RSI: 0000400000000080 RDI: 0000000000000003
[  207.490245][ T8262] RBP: 00007fac62c7b090 R08: 0000000000000000 R09: 0000000000000000
[  207.490258][ T8262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  207.490271][ T8262] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  207.490300][ T8262]  </TASK>
[  208.581051][ T8278] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  209.494282][ T8293] snd_virmidi snd_virmidi.0: control 3:6:1068:IAJ:127 is already present
[  210.103563][ T8313] kAFS: Invalid Command on /proc/fs/afs/cells file
[  211.867779][ T8355] FAULT_INJECTION: forcing a failure.
[  211.867779][ T8355] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  211.887025][ T8355] CPU: 0 UID: 0 PID: 8355 Comm: syz.3.628 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  211.887059][ T8355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  211.887072][ T8355] Call Trace:
[  211.887079][ T8355]  <TASK>
[  211.887088][ T8355]  dump_stack_lvl+0x16c/0x1f0
[  211.887124][ T8355]  should_fail_ex+0x50a/0x650
[  211.887163][ T8355]  _copy_from_iter+0x2a1/0x1560
[  211.887195][ T8355]  ? trace_lock_acquire+0x14e/0x1f0
[  211.887222][ T8355]  ? __alloc_skb+0x1fe/0x380
[  211.887254][ T8355]  ? __pfx__copy_from_iter+0x10/0x10
[  211.887277][ T8355]  ? __virt_addr_valid+0x1a4/0x590
[  211.887305][ T8355]  ? __virt_addr_valid+0x5e/0x590
[  211.887329][ T8355]  ? __phys_addr_symbol+0x30/0x80
[  211.887351][ T8355]  ? __check_object_size+0x488/0x710
[  211.887379][ T8355]  netlink_sendmsg+0x813/0xd70
[  211.887415][ T8355]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.887456][ T8355]  ____sys_sendmsg+0xaaf/0xc90
[  211.887483][ T8355]  ? copy_msghdr_from_user+0x10b/0x160
[  211.887515][ T8355]  ? __pfx_____sys_sendmsg+0x10/0x10
[  211.887556][ T8355]  ___sys_sendmsg+0x135/0x1e0
[  211.887590][ T8355]  ? __pfx____sys_sendmsg+0x10/0x10
[  211.887636][ T8355]  ? __pfx_lock_release+0x10/0x10
[  211.887665][ T8355]  ? trace_lock_acquire+0x14e/0x1f0
[  211.887702][ T8355]  ? __fget_files+0x206/0x3a0
[  211.887741][ T8355]  __sys_sendmsg+0x16e/0x220
[  211.887774][ T8355]  ? __pfx___sys_sendmsg+0x10/0x10
[  211.887827][ T8355]  do_syscall_64+0xcd/0x250
[  211.887860][ T8355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.887898][ T8355] RIP: 0033:0x7f34da78d169
[  211.887918][ T8355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.887938][ T8355] RSP: 002b:00007f34db6a2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  211.887960][ T8355] RAX: ffffffffffffffda RBX: 00007f34da9a5fa0 RCX: 00007f34da78d169
[  211.887976][ T8355] RDX: 0000000020000000 RSI: 0000400000000040 RDI: 0000000000000003
[  211.887990][ T8355] RBP: 00007f34db6a2090 R08: 0000000000000000 R09: 0000000000000000
[  211.888003][ T8355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  211.888016][ T8355] R13: 0000000000000000 R14: 00007f34da9a5fa0 R15: 00007ffe275bf338
[  211.888046][ T8355]  </TASK>
[  212.112919][    C0] vkms_vblank_simulate: vblank timer overrun
[  213.644839][ T8379] bond0: option packets_per_slave: invalid value (Xµn‘pæ)
[  213.653838][ T8379] bond0: option packets_per_slave: allowed values 0 - 65535
[  214.182123][ T8393] FAULT_INJECTION: forcing a failure.
[  214.182123][ T8393] name failslab, interval 1, probability 0, space 0, times 0
[  214.241428][ T8393] CPU: 1 UID: 0 PID: 8393 Comm: syz.1.637 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  214.241463][ T8393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  214.241477][ T8393] Call Trace:
[  214.241484][ T8393]  <TASK>
[  214.241495][ T8393]  dump_stack_lvl+0x16c/0x1f0
[  214.241535][ T8393]  should_fail_ex+0x50a/0x650
[  214.241570][ T8393]  ? fs_reclaim_acquire+0xae/0x150
[  214.241604][ T8393]  ? dummy_hrtimer_create+0x45/0x170
[  214.241632][ T8393]  should_failslab+0xc2/0x120
[  214.241657][ T8393]  __kmalloc_cache_noprof+0x68/0x410
[  214.241699][ T8393]  dummy_hrtimer_create+0x45/0x170
[  214.241729][ T8393]  ? __pfx_dummy_hrtimer_create+0x10/0x10
[  214.241757][ T8393]  dummy_pcm_open+0xd1/0x5b0
[  214.241788][ T8393]  snd_pcm_open_substream+0xa50/0x17c0
[  214.241823][ T8393]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  214.241866][ T8393]  snd_pcm_open+0x29b/0x700
[  214.241902][ T8393]  ? __pfx_snd_pcm_open+0x10/0x10
[  214.241938][ T8393]  ? __pfx_default_wake_function+0x10/0x10
[  214.241982][ T8393]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[  214.242014][ T8393]  snd_pcm_capture_open+0x89/0xe0
[  214.242045][ T8393]  snd_open+0x1fe/0x450
[  214.242070][ T8393]  ? __pfx_snd_open+0x10/0x10
[  214.242094][ T8393]  chrdev_open+0x237/0x6a0
[  214.242126][ T8393]  ? __pfx_apparmor_file_open+0x10/0x10
[  214.242156][ T8393]  ? __pfx_chrdev_open+0x10/0x10
[  214.242192][ T8393]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  214.242230][ T8393]  do_dentry_open+0x735/0x1c40
[  214.242270][ T8393]  ? __pfx_chrdev_open+0x10/0x10
[  214.242308][ T8393]  ? inode_permission+0xdd/0x5f0
[  214.242339][ T8393]  vfs_open+0x82/0x3f0
[  214.242363][ T8393]  ? may_open+0x1f2/0x400
[  214.242393][ T8393]  path_openat+0x1e88/0x2d80
[  214.242441][ T8393]  ? __pfx_path_openat+0x10/0x10
[  214.242475][ T8393]  ? __pfx___lock_acquire+0x10/0x10
[  214.242505][ T8393]  ? lock_acquire.part.0+0x11b/0x380
[  214.242536][ T8393]  ? find_held_lock+0x2d/0x110
[  214.242566][ T8393]  do_filp_open+0x20c/0x470
[  214.242599][ T8393]  ? __pfx_do_filp_open+0x10/0x10
[  214.242629][ T8393]  ? find_held_lock+0x2d/0x110
[  214.242679][ T8393]  ? alloc_fd+0x41f/0x760
[  214.242722][ T8393]  do_sys_openat2+0x17a/0x1e0
[  214.242747][ T8393]  ? __pfx_do_sys_openat2+0x10/0x10
[  214.242787][ T8393]  __x64_sys_openat+0x175/0x210
[  214.242813][ T8393]  ? __pfx___x64_sys_openat+0x10/0x10
[  214.242853][ T8393]  do_syscall_64+0xcd/0x250
[  214.242888][ T8393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.242920][ T8393] RIP: 0033:0x7f3e7c38d169
[  214.242940][ T8393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.242983][ T8393] RSP: 002b:00007f3e7d10b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  214.243007][ T8393] RAX: ffffffffffffffda RBX: 00007f3e7c5a5fa0 RCX: 00007f3e7c38d169
[  214.243023][ T8393] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c
[  214.243039][ T8393] RBP: 00007f3e7c40e2a0 R08: 0000000000000000 R09: 0000000000000000
[  214.243054][ T8393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  214.243068][ T8393] R13: 0000000000000000 R14: 00007f3e7c5a5fa0 R15: 00007ffcccb23428
[  214.243102][ T8393]  </TASK>
[  218.265805][ T8460] FAULT_INJECTION: forcing a failure.
[  218.265805][ T8460] name failslab, interval 1, probability 0, space 0, times 0
[  218.283850][ T8460] CPU: 1 UID: 0 PID: 8460 Comm: syz.1.653 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  218.283889][ T8460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  218.283905][ T8460] Call Trace:
[  218.283913][ T8460]  <TASK>
[  218.283923][ T8460]  dump_stack_lvl+0x16c/0x1f0
[  218.283963][ T8460]  should_fail_ex+0x50a/0x650
[  218.284005][ T8460]  ? fs_reclaim_acquire+0xae/0x150
[  218.284041][ T8460]  ? snd_pcm_open+0x2e8/0x700
[  218.284075][ T8460]  should_failslab+0xc2/0x120
[  218.284099][ T8460]  __kmalloc_cache_noprof+0x68/0x410
[  218.284144][ T8460]  snd_pcm_open+0x2e8/0x700
[  218.284181][ T8460]  ? __pfx_snd_pcm_open+0x10/0x10
[  218.284219][ T8460]  ? __pfx_default_wake_function+0x10/0x10
[  218.284268][ T8460]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[  218.284303][ T8460]  snd_pcm_capture_open+0x89/0xe0
[  218.284335][ T8460]  snd_open+0x1fe/0x450
[  218.284362][ T8460]  ? __pfx_snd_open+0x10/0x10
[  218.284387][ T8460]  chrdev_open+0x237/0x6a0
[  218.284420][ T8460]  ? __pfx_apparmor_file_open+0x10/0x10
[  218.284452][ T8460]  ? __pfx_chrdev_open+0x10/0x10
[  218.284488][ T8460]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  218.284524][ T8460]  do_dentry_open+0x735/0x1c40
[  218.284555][ T8460]  ? __pfx_chrdev_open+0x10/0x10
[  218.284586][ T8460]  ? inode_permission+0xdd/0x5f0
[  218.284611][ T8460]  vfs_open+0x82/0x3f0
[  218.284631][ T8460]  ? may_open+0x1f2/0x400
[  218.284655][ T8460]  path_openat+0x1e88/0x2d80
[  218.284697][ T8460]  ? __pfx_path_openat+0x10/0x10
[  218.284732][ T8460]  ? __pfx___lock_acquire+0x10/0x10
[  218.284779][ T8460]  ? lock_acquire.part.0+0x11b/0x380
[  218.284816][ T8460]  ? find_held_lock+0x2d/0x110
[  218.284849][ T8460]  do_filp_open+0x20c/0x470
[  218.284888][ T8460]  ? __pfx_do_filp_open+0x10/0x10
[  218.284917][ T8460]  ? find_held_lock+0x2d/0x110
[  218.284965][ T8460]  ? alloc_fd+0x41f/0x760
[  218.285008][ T8460]  do_sys_openat2+0x17a/0x1e0
[  218.285033][ T8460]  ? __pfx_do_sys_openat2+0x10/0x10
[  218.285075][ T8460]  __x64_sys_openat+0x175/0x210
[  218.285101][ T8460]  ? __pfx___x64_sys_openat+0x10/0x10
[  218.285144][ T8460]  do_syscall_64+0xcd/0x250
[  218.285182][ T8460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.285218][ T8460] RIP: 0033:0x7f3e7c38d169
[  218.285238][ T8460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.285263][ T8460] RSP: 002b:00007f3e7d10b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  218.285287][ T8460] RAX: ffffffffffffffda RBX: 00007f3e7c5a5fa0 RCX: 00007f3e7c38d169
[  218.285304][ T8460] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c
[  218.285319][ T8460] RBP: 00007f3e7c40e2a0 R08: 0000000000000000 R09: 0000000000000000
[  218.285334][ T8460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  218.285350][ T8460] R13: 0000000000000000 R14: 00007f3e7c5a5fa0 R15: 00007ffcccb23428
[  218.285383][ T8460]  </TASK>
[  219.902143][ T8477] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  219.909398][ T8477] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  219.915833][ T8477] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  219.923731][ T8477] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  221.630945][ T5848] Bluetooth: hci0: command 0x0c1a tx timeout
[  221.948899][ T5846] Bluetooth: hci3: command 0x0c1a tx timeout
[  221.955044][ T5835] Bluetooth: hci1: command 0x0c1a tx timeout
[  221.961513][ T5848] Bluetooth: hci2: command 0x0c1a tx timeout
[  230.155773][ T8676] kAFS: Invalid Command on /proc/fs/afs/cells file
[  230.487530][ T8679] FAULT_INJECTION: forcing a failure.
[  230.487530][ T8679] name failslab, interval 1, probability 0, space 0, times 0
[  230.735546][ T8679] CPU: 1 UID: 0 PID: 8679 Comm: syz.3.703 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  230.735578][ T8679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  230.735591][ T8679] Call Trace:
[  230.735597][ T8679]  <TASK>
[  230.735607][ T8679]  dump_stack_lvl+0x16c/0x1f0
[  230.735643][ T8679]  should_fail_ex+0x50a/0x650
[  230.735676][ T8679]  ? fs_reclaim_acquire+0xae/0x150
[  230.735708][ T8679]  ? snd_pcm_oss_change_params_locked+0x1d6/0x3a60
[  230.735735][ T8679]  should_failslab+0xc2/0x120
[  230.735757][ T8679]  __kmalloc_cache_noprof+0x68/0x410
[  230.735787][ T8679]  ? __mutex_trylock_common+0xea/0x250
[  230.735823][ T8679]  snd_pcm_oss_change_params_locked+0x1d6/0x3a60
[  230.735859][ T8679]  ? rcu_is_watching+0x12/0xc0
[  230.735884][ T8679]  ? trace_contention_end+0xee/0x140
[  230.735915][ T8679]  ? __mutex_lock+0x1cc/0xb10
[  230.735945][ T8679]  ? __pfx___lock_acquire+0x10/0x10
[  230.735975][ T8679]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  230.736003][ T8679]  ? __pfx___mutex_lock+0x10/0x10
[  230.736045][ T8679]  ? snd_pcm_stream_unlock_irq+0x90/0xb0
[  230.736077][ T8679]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  230.736104][ T8679]  snd_pcm_oss_set_trigger.isra.0+0x211/0x6b0
[  230.736130][ T8679]  ? lockdep_hardirqs_on+0x7c/0x110
[  230.736162][ T8679]  snd_pcm_oss_poll+0x54b/0xaf0
[  230.736184][ T8679]  ? lock_acquire+0x2f/0xb0
[  230.736211][ T8679]  ? __pfx___pollwait+0x10/0x10
[  230.736242][ T8679]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  230.736275][ T8679]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  230.736300][ T8679]  do_select+0xd88/0x17e0
[  230.736353][ T8679]  ? __pfx_do_select+0x10/0x10
[  230.736380][ T8679]  ? __pfx_mark_lock+0x10/0x10
[  230.736406][ T8679]  ? mark_lock+0xb5/0xc60
[  230.736435][ T8679]  ? __pfx___pollwait+0x10/0x10
[  230.736468][ T8679]  ? __pfx_pollwake+0x10/0x10
[  230.736499][ T8679]  ? __pfx_pollwake+0x10/0x10
[  230.736530][ T8679]  ? __pfx_pollwake+0x10/0x10
[  230.736560][ T8679]  ? __pfx_pollwake+0x10/0x10
[  230.736592][ T8679]  ? __pfx_pollwake+0x10/0x10
[  230.736624][ T8679]  ? __pfx_pollwake+0x10/0x10
[  230.736655][ T8679]  ? __pfx_pollwake+0x10/0x10
[  230.736686][ T8679]  ? __pfx_pollwake+0x10/0x10
[  230.736722][ T8679]  ? trace_lock_acquire+0x14e/0x1f0
[  230.736751][ T8679]  ? lock_acquire+0x2f/0xb0
[  230.736778][ T8679]  ? __might_fault+0xe3/0x190
[  230.736802][ T8679]  ? __might_fault+0xe3/0x190
[  230.736832][ T8679]  ? core_sys_select+0x459/0xb80
[  230.736867][ T8679]  core_sys_select+0x459/0xb80
[  230.736909][ T8679]  ? __pfx_core_sys_select+0x10/0x10
[  230.736945][ T8679]  ? find_held_lock+0x2d/0x110
[  230.736998][ T8679]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  230.737036][ T8679]  kern_select+0x15e/0x1e0
[  230.737065][ T8679]  ? __pfx_kern_select+0x10/0x10
[  230.737100][ T8679]  ? __pfx_ksys_write+0x10/0x10
[  230.737135][ T8679]  __x64_sys_select+0xbd/0x160
[  230.737163][ T8679]  ? do_syscall_64+0x91/0x250
[  230.737192][ T8679]  ? lockdep_hardirqs_on+0x7c/0x110
[  230.737217][ T8679]  do_syscall_64+0xcd/0x250
[  230.737248][ T8679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.737278][ T8679] RIP: 0033:0x7f34da78d169
[  230.737298][ T8679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.737318][ T8679] RSP: 002b:00007f34db681038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  230.737340][ T8679] RAX: ffffffffffffffda RBX: 00007f34da9a6080 RCX: 00007f34da78d169
[  230.737354][ T8679] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  230.737367][ T8679] RBP: 00007f34db681090 R08: 0000000000000000 R09: 0000000000000000
[  230.737381][ T8679] R10: 0000400000000180 R11: 0000000000000246 R12: 0000000000000001
[  230.737394][ T8679] R13: 0000000000000000 R14: 00007f34da9a6080 R15: 00007ffe275bf338
[  230.737425][ T8679]  </TASK>
[  231.959113][ T8698] 
[  234.364368][ T8745] 
[  234.539199][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  234.548304][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  235.052025][   T30] audit: type=1806 audit(6036565712.090:5): xattr="." res=0
[  236.981303][ T8800] 
[  237.759065][ T8815] netlink: 4 bytes leftover after parsing attributes in process `syz.1.736'.
[  238.839953][ T8833] ubi0: attaching mtd0
[  238.846317][ T8833] ubi0: scanning is finished
[  238.855647][ T8833] ubi0: empty MTD device detected
[  239.138129][ T8833] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  239.145681][ T8833] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  239.176314][ T8833] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  239.193635][ T8833] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  239.215403][ T8833] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  239.255968][ T8833] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  239.274797][ T8833] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3488514372
[  239.294744][ T8833] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  239.344941][ T8841] ubi0: background thread "ubi_bgt0d" started, PID 8841
[  239.616478][ T8852] FAULT_INJECTION: forcing a failure.
[  239.616478][ T8852] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  239.741174][ T8852] CPU: 0 UID: 0 PID: 8852 Comm: syz.0.745 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  239.741205][ T8852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  239.741217][ T8852] Call Trace:
[  239.741224][ T8852]  <TASK>
[  239.741233][ T8852]  dump_stack_lvl+0x16c/0x1f0
[  239.741269][ T8852]  should_fail_ex+0x50a/0x650
[  239.741309][ T8852]  _copy_from_user+0x2e/0xd0
[  239.741336][ T8852]  copy_msghdr_from_user+0x99/0x160
[  239.741370][ T8852]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  239.741400][ T8852]  ? __lock_acquire+0xcc5/0x3c40
[  239.741436][ T8852]  ? hlock_class+0x4e/0x130
[  239.741511][ T8852]  ? __lock_acquire+0x15a9/0x3c40
[  239.741548][ T8852]  ___sys_sendmsg+0xff/0x1e0
[  239.741583][ T8852]  ? __pfx____sys_sendmsg+0x10/0x10
[  239.741612][ T8852]  ? __pfx___lock_acquire+0x10/0x10
[  239.741677][ T8852]  ? __pfx___might_resched+0x10/0x10
[  239.741711][ T8852]  ? __might_fault+0xe3/0x190
[  239.741741][ T8852]  __sys_sendmmsg+0x201/0x420
[  239.741778][ T8852]  ? __pfx___sys_sendmmsg+0x10/0x10
[  239.741821][ T8852]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  239.741864][ T8852]  ? fput+0x67/0x440
[  239.741888][ T8852]  ? ksys_write+0x1ba/0x250
[  239.741917][ T8852]  ? __pfx_ksys_write+0x10/0x10
[  239.741953][ T8852]  __x64_sys_sendmmsg+0x9c/0x100
[  239.741985][ T8852]  ? lockdep_hardirqs_on+0x7c/0x110
[  239.742014][ T8852]  do_syscall_64+0xcd/0x250
[  239.742046][ T8852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.742077][ T8852] RIP: 0033:0x7fac61d8d169
[  239.742097][ T8852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.742118][ T8852] RSP: 002b:00007fac62c39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  239.742141][ T8852] RAX: ffffffffffffffda RBX: 00007fac61fa6160 RCX: 00007fac61d8d169
[  239.742156][ T8852] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  239.742170][ T8852] RBP: 00007fac62c39090 R08: 0000000000000000 R09: 0000000000000000
[  239.742184][ T8852] R10: 0000000007fffffe R11: 0000000000000246 R12: 0000000000000001
[  239.742197][ T8852] R13: 0000000000000001 R14: 00007fac61fa6160 R15: 00007ffd9f155f48
[  239.742228][ T8852]  </TASK>
[  239.960446][    C0] vkms_vblank_simulate: vblank timer overrun
[  240.345544][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  240.352117][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  241.935409][ T8892] block2mtd: parameter too long
[  242.772146][ T8911] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  243.847907][ T8930] FAULT_INJECTION: forcing a failure.
[  243.847907][ T8930] name failslab, interval 1, probability 0, space 0, times 0
[  243.910115][ T8930] CPU: 1 UID: 0 PID: 8930 Comm: syz.0.767 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  243.910153][ T8930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  243.910169][ T8930] Call Trace:
[  243.910176][ T8930]  <TASK>
[  243.910187][ T8930]  dump_stack_lvl+0x16c/0x1f0
[  243.910227][ T8930]  should_fail_ex+0x50a/0x650
[  243.910263][ T8930]  ? fs_reclaim_acquire+0xae/0x150
[  243.910297][ T8930]  ? snd_pcm_open+0x2e8/0x700
[  243.910326][ T8930]  should_failslab+0xc2/0x120
[  243.910351][ T8930]  __kmalloc_cache_noprof+0x68/0x410
[  243.910392][ T8930]  snd_pcm_open+0x2e8/0x700
[  243.910428][ T8930]  ? __pfx_snd_pcm_open+0x10/0x10
[  243.910465][ T8930]  ? __pfx_default_wake_function+0x10/0x10
[  243.910510][ T8930]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[  243.910544][ T8930]  snd_pcm_capture_open+0x89/0xe0
[  243.910577][ T8930]  snd_open+0x1fe/0x450
[  243.910603][ T8930]  ? __pfx_snd_open+0x10/0x10
[  243.910627][ T8930]  chrdev_open+0x237/0x6a0
[  243.910660][ T8930]  ? __pfx_apparmor_file_open+0x10/0x10
[  243.910691][ T8930]  ? __pfx_chrdev_open+0x10/0x10
[  243.910728][ T8930]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  243.910766][ T8930]  do_dentry_open+0x735/0x1c40
[  243.910799][ T8930]  ? __pfx_chrdev_open+0x10/0x10
[  243.910833][ T8930]  ? inode_permission+0xdd/0x5f0
[  243.910863][ T8930]  vfs_open+0x82/0x3f0
[  243.910885][ T8930]  ? may_open+0x1f2/0x400
[  243.910915][ T8930]  path_openat+0x1e88/0x2d80
[  243.910972][ T8930]  ? __pfx_path_openat+0x10/0x10
[  243.911007][ T8930]  ? __pfx___lock_acquire+0x10/0x10
[  243.911040][ T8930]  ? lock_acquire.part.0+0x11b/0x380
[  243.911073][ T8930]  ? find_held_lock+0x2d/0x110
[  243.911104][ T8930]  do_filp_open+0x20c/0x470
[  243.911138][ T8930]  ? __pfx_do_filp_open+0x10/0x10
[  243.911170][ T8930]  ? find_held_lock+0x2d/0x110
[  243.911220][ T8930]  ? alloc_fd+0x41f/0x760
[  243.911264][ T8930]  do_sys_openat2+0x17a/0x1e0
[  243.911289][ T8930]  ? __pfx_do_sys_openat2+0x10/0x10
[  243.911329][ T8930]  __x64_sys_openat+0x175/0x210
[  243.911355][ T8930]  ? __pfx___x64_sys_openat+0x10/0x10
[  243.911395][ T8930]  do_syscall_64+0xcd/0x250
[  243.911430][ T8930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.911463][ T8930] RIP: 0033:0x7fac61d8d169
[  243.911484][ T8930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.911506][ T8930] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  243.911530][ T8930] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  243.911547][ T8930] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c
[  243.911563][ T8930] RBP: 00007fac61e0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  243.911578][ T8930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  243.911593][ T8930] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  243.911626][ T8930]  </TASK>
[  244.735358][ T8940] FAULT_INJECTION: forcing a failure.
[  244.735358][ T8940] name failslab, interval 1, probability 0, space 0, times 0
[  244.768611][ T8940] CPU: 1 UID: 0 PID: 8940 Comm: syz.2.771 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  244.768647][ T8940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  244.768662][ T8940] Call Trace:
[  244.768670][ T8940]  <TASK>
[  244.768679][ T8940]  dump_stack_lvl+0x16c/0x1f0
[  244.768716][ T8940]  should_fail_ex+0x50a/0x650
[  244.768750][ T8940]  ? fs_reclaim_acquire+0xae/0x150
[  244.768779][ T8940]  ? snd_pcm_open+0x2e8/0x700
[  244.768805][ T8940]  should_failslab+0xc2/0x120
[  244.768827][ T8940]  __kmalloc_cache_noprof+0x68/0x410
[  244.768863][ T8940]  snd_pcm_open+0x2e8/0x700
[  244.768897][ T8940]  ? __pfx_snd_pcm_open+0x10/0x10
[  244.768938][ T8940]  ? __pfx_default_wake_function+0x10/0x10
[  244.768981][ T8940]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[  244.769014][ T8940]  snd_pcm_capture_open+0x89/0xe0
[  244.769044][ T8940]  snd_open+0x1fe/0x450
[  244.769067][ T8940]  ? __pfx_snd_open+0x10/0x10
[  244.769089][ T8940]  chrdev_open+0x237/0x6a0
[  244.769131][ T8940]  ? __pfx_apparmor_file_open+0x10/0x10
[  244.769163][ T8940]  ? __pfx_chrdev_open+0x10/0x10
[  244.769197][ T8940]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  244.769233][ T8940]  do_dentry_open+0x735/0x1c40
[  244.769264][ T8940]  ? __pfx_chrdev_open+0x10/0x10
[  244.769297][ T8940]  ? inode_permission+0xdd/0x5f0
[  244.769325][ T8940]  vfs_open+0x82/0x3f0
[  244.769346][ T8940]  ? may_open+0x1f2/0x400
[  244.769375][ T8940]  path_openat+0x1e88/0x2d80
[  244.769419][ T8940]  ? __pfx_path_openat+0x10/0x10
[  244.769450][ T8940]  ? __pfx___lock_acquire+0x10/0x10
[  244.769479][ T8940]  ? lock_acquire.part.0+0x11b/0x380
[  244.769508][ T8940]  ? find_held_lock+0x2d/0x110
[  244.769536][ T8940]  do_filp_open+0x20c/0x470
[  244.769568][ T8940]  ? __pfx_do_filp_open+0x10/0x10
[  244.769597][ T8940]  ? find_held_lock+0x2d/0x110
[  244.769645][ T8940]  ? alloc_fd+0x41f/0x760
[  244.769688][ T8940]  do_sys_openat2+0x17a/0x1e0
[  244.769713][ T8940]  ? __pfx_do_sys_openat2+0x10/0x10
[  244.769753][ T8940]  __x64_sys_openat+0x175/0x210
[  244.769778][ T8940]  ? __pfx___x64_sys_openat+0x10/0x10
[  244.769819][ T8940]  do_syscall_64+0xcd/0x250
[  244.769854][ T8940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.769885][ T8940] RIP: 0033:0x7f05f818d169
[  244.769905][ T8940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.769928][ T8940] RSP: 002b:00007f05f8f66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  244.769952][ T8940] RAX: ffffffffffffffda RBX: 00007f05f83a5fa0 RCX: 00007f05f818d169
[  244.769969][ T8940] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c
[  244.769983][ T8940] RBP: 00007f05f820e2a0 R08: 0000000000000000 R09: 0000000000000000
[  244.769996][ T8940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  244.770009][ T8940] R13: 0000000000000000 R14: 00007f05f83a5fa0 R15: 00007fff5c8e2c68
[  244.770040][ T8940]  </TASK>
[  245.084546][ T8938] can: request_module (can-proto-0) failed.
[  245.683133][ T8938] FAULT_INJECTION: forcing a failure.
[  245.683133][ T8938] name failslab, interval 1, probability 0, space 0, times 0
[  245.735106][ T8938] CPU: 1 UID: 0 PID: 8938 Comm: syz.0.770 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  245.735142][ T8938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  245.735155][ T8938] Call Trace:
[  245.735161][ T8938]  <TASK>
[  245.735169][ T8938]  dump_stack_lvl+0x16c/0x1f0
[  245.735204][ T8938]  should_fail_ex+0x50a/0x650
[  245.735238][ T8938]  ? fs_reclaim_acquire+0xae/0x150
[  245.735269][ T8938]  ? snd_midi_event_new+0xa1/0x210
[  245.735291][ T8938]  should_failslab+0xc2/0x120
[  245.735314][ T8938]  __kmalloc_noprof+0xcb/0x510
[  245.735355][ T8938]  snd_midi_event_new+0xa1/0x210
[  245.735378][ T8938]  snd_virmidi_output_open+0x106/0x640
[  245.735408][ T8938]  open_substream+0x478/0x9b0
[  245.735437][ T8938]  rawmidi_open_priv+0x542/0x6e0
[  245.735469][ T8938]  snd_rawmidi_open+0x4bf/0xbd0
[  245.735501][ T8938]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  245.735528][ T8938]  ? __pfx_lock_release+0x10/0x10
[  245.735556][ T8938]  ? __pfx_default_wake_function+0x10/0x10
[  245.735587][ T8938]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  245.735611][ T8938]  ? lock_acquire+0x2f/0xb0
[  245.735638][ T8938]  ? soundcore_open+0x8e/0x580
[  245.735663][ T8938]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  245.735694][ T8938]  soundcore_open+0x409/0x580
[  245.735721][ T8938]  ? __pfx_soundcore_open+0x10/0x10
[  245.735743][ T8938]  chrdev_open+0x237/0x6a0
[  245.735780][ T8938]  ? __pfx_chrdev_open+0x10/0x10
[  245.735816][ T8938]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  245.735854][ T8938]  do_dentry_open+0x735/0x1c40
[  245.735888][ T8938]  ? __pfx_chrdev_open+0x10/0x10
[  245.735919][ T8938]  ? inode_permission+0xdd/0x5f0
[  245.735945][ T8938]  vfs_open+0x82/0x3f0
[  245.735966][ T8938]  ? may_open+0x1f2/0x400
[  245.736002][ T8938]  path_openat+0x1e88/0x2d80
[  245.736044][ T8938]  ? __pfx_path_openat+0x10/0x10
[  245.736073][ T8938]  ? __pfx___lock_acquire+0x10/0x10
[  245.736099][ T8938]  ? lock_acquire.part.0+0x11b/0x380
[  245.736125][ T8938]  ? find_held_lock+0x2d/0x110
[  245.736148][ T8938]  do_filp_open+0x20c/0x470
[  245.736174][ T8938]  ? __pfx_do_filp_open+0x10/0x10
[  245.736199][ T8938]  ? find_held_lock+0x2d/0x110
[  245.736236][ T8938]  ? alloc_fd+0x41f/0x760
[  245.736269][ T8938]  do_sys_openat2+0x17a/0x1e0
[  245.736288][ T8938]  ? __pfx_do_sys_openat2+0x10/0x10
[  245.736318][ T8938]  __x64_sys_openat+0x175/0x210
[  245.736338][ T8938]  ? __pfx___x64_sys_openat+0x10/0x10
[  245.736368][ T8938]  do_syscall_64+0xcd/0x250
[  245.736395][ T8938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.736420][ T8938] RIP: 0033:0x7fac61d8d169
[  245.736437][ T8938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.736454][ T8938] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  245.736472][ T8938] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  245.736486][ T8938] RDX: 0000000000000241 RSI: 0000400000000040 RDI: ffffffffffffff9c
[  245.736500][ T8938] RBP: 00007fac61e0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  245.736512][ T8938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  245.736523][ T8938] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  245.736548][ T8938]  </TASK>
[  246.654312][ T8973] FAULT_INJECTION: forcing a failure.
[  246.654312][ T8973] name failslab, interval 1, probability 0, space 0, times 0
[  247.011667][ T8973] CPU: 0 UID: 0 PID: 8973 Comm: syz.1.779 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  247.011692][ T8973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  247.011701][ T8973] Call Trace:
[  247.011707][ T8973]  <TASK>
[  247.011714][ T8973]  dump_stack_lvl+0x16c/0x1f0
[  247.011739][ T8973]  should_fail_ex+0x50a/0x650
[  247.011760][ T8973]  ? fs_reclaim_acquire+0xae/0x150
[  247.011781][ T8973]  should_failslab+0xc2/0x120
[  247.011795][ T8973]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  247.011816][ T8973]  ? kfree+0x260/0x4d0
[  247.011832][ T8973]  ? snd_pcm_hw_rule_add+0x41c/0x5b0
[  247.011849][ T8973]  krealloc_noprof+0x157/0x380
[  247.011868][ T8973]  ? krealloc_noprof+0x1b1/0x380
[  247.011889][ T8973]  snd_pcm_hw_rule_add+0x41c/0x5b0
[  247.011903][ T8973]  ? __pfx_snd_pcm_hw_rule_muldivk+0x10/0x10
[  247.011926][ T8973]  ? __pfx_snd_pcm_hw_rule_add+0x10/0x10
[  247.011939][ T8973]  ? __pfx_snd_pcm_hw_rule_add+0x10/0x10
[  247.011955][ T8973]  ? debug_mutex_init+0x37/0x70
[  247.011970][ T8973]  ? snd_pcm_attach_substream+0x871/0xd20
[  247.011992][ T8973]  snd_pcm_open_substream+0x91e/0x17c0
[  247.012013][ T8973]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  247.012036][ T8973]  snd_pcm_open+0x29b/0x700
[  247.012056][ T8973]  ? __pfx_snd_pcm_open+0x10/0x10
[  247.012076][ T8973]  ? __pfx_default_wake_function+0x10/0x10
[  247.012100][ T8973]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[  247.012118][ T8973]  snd_pcm_capture_open+0x89/0xe0
[  247.012137][ T8973]  snd_open+0x1fe/0x450
[  247.012151][ T8973]  ? __pfx_snd_open+0x10/0x10
[  247.012164][ T8973]  chrdev_open+0x237/0x6a0
[  247.012183][ T8973]  ? __pfx_apparmor_file_open+0x10/0x10
[  247.012201][ T8973]  ? __pfx_chrdev_open+0x10/0x10
[  247.012222][ T8973]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  247.012243][ T8973]  do_dentry_open+0x735/0x1c40
[  247.012262][ T8973]  ? __pfx_chrdev_open+0x10/0x10
[  247.012282][ T8973]  ? inode_permission+0xdd/0x5f0
[  247.012298][ T8973]  vfs_open+0x82/0x3f0
[  247.012310][ T8973]  ? may_open+0x1f2/0x400
[  247.012326][ T8973]  path_openat+0x1e88/0x2d80
[  247.012352][ T8973]  ? __pfx_path_openat+0x10/0x10
[  247.012371][ T8973]  ? __pfx___lock_acquire+0x10/0x10
[  247.012388][ T8973]  ? lock_acquire.part.0+0x11b/0x380
[  247.012405][ T8973]  ? find_held_lock+0x2d/0x110
[  247.012422][ T8973]  do_filp_open+0x20c/0x470
[  247.012441][ T8973]  ? __pfx_do_filp_open+0x10/0x10
[  247.012458][ T8973]  ? find_held_lock+0x2d/0x110
[  247.012484][ T8973]  ? alloc_fd+0x41f/0x760
[  247.012508][ T8973]  do_sys_openat2+0x17a/0x1e0
[  247.012522][ T8973]  ? __pfx_do_sys_openat2+0x10/0x10
[  247.012543][ T8973]  __x64_sys_openat+0x175/0x210
[  247.012557][ T8973]  ? __pfx___x64_sys_openat+0x10/0x10
[  247.012579][ T8973]  do_syscall_64+0xcd/0x250
[  247.012599][ T8973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.012618][ T8973] RIP: 0033:0x7f3e7c38d169
[  247.012641][ T8973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.012655][ T8973] RSP: 002b:00007f3e7d10b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  247.012669][ T8973] RAX: ffffffffffffffda RBX: 00007f3e7c5a5fa0 RCX: 00007f3e7c38d169
[  247.012678][ T8973] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c
[  247.012687][ T8973] RBP: 00007f3e7c40e2a0 R08: 0000000000000000 R09: 0000000000000000
[  247.012695][ T8973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  247.012703][ T8973] R13: 0000000000000000 R14: 00007f3e7c5a5fa0 R15: 00007ffcccb23428
[  247.012721][ T8973]  </TASK>
[  247.695877][ T8985] netlink: 28 bytes leftover after parsing attributes in process `syz.2.781'.
[  248.092747][ T8996] FAULT_INJECTION: forcing a failure.
[  248.092747][ T8996] name failslab, interval 1, probability 0, space 0, times 0
[  248.135061][ T8996] CPU: 0 UID: 0 PID: 8996 Comm: syz.3.785 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  248.135095][ T8996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  248.135108][ T8996] Call Trace:
[  248.135115][ T8996]  <TASK>
[  248.135124][ T8996]  dump_stack_lvl+0x16c/0x1f0
[  248.135160][ T8996]  should_fail_ex+0x50a/0x650
[  248.135194][ T8996]  ? fs_reclaim_acquire+0xae/0x150
[  248.135225][ T8996]  should_failslab+0xc2/0x120
[  248.135249][ T8996]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[  248.135282][ T8996]  ? __alloc_skb+0x2b1/0x380
[  248.135317][ T8996]  __alloc_skb+0x2b1/0x380
[  248.135347][ T8996]  ? __pfx___alloc_skb+0x10/0x10
[  248.135388][ T8996]  netlink_alloc_large_skb+0x69/0x130
[  248.135422][ T8996]  netlink_sendmsg+0x689/0xd70
[  248.135457][ T8996]  ? __pfx_netlink_sendmsg+0x10/0x10
[  248.135500][ T8996]  ____sys_sendmsg+0xaaf/0xc90
[  248.135526][ T8996]  ? copy_msghdr_from_user+0x10b/0x160
[  248.135558][ T8996]  ? __pfx_____sys_sendmsg+0x10/0x10
[  248.135581][ T8996]  ? __lock_acquire+0xcc5/0x3c40
[  248.135624][ T8996]  ? hlock_class+0x4e/0x130
[  248.135645][ T8996]  ? __lock_acquire+0x15a9/0x3c40
[  248.135679][ T8996]  ___sys_sendmsg+0x135/0x1e0
[  248.135710][ T8996]  ? __pfx____sys_sendmsg+0x10/0x10
[  248.135739][ T8996]  ? __pfx___lock_acquire+0x10/0x10
[  248.135794][ T8996]  ? __pfx___might_resched+0x10/0x10
[  248.135825][ T8996]  ? __might_fault+0xe3/0x190
[  248.135850][ T8996]  __sys_sendmmsg+0x201/0x420
[  248.135883][ T8996]  ? __pfx___sys_sendmmsg+0x10/0x10
[  248.135923][ T8996]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  248.135964][ T8996]  ? fput+0x67/0x440
[  248.135986][ T8996]  ? ksys_write+0x1ba/0x250
[  248.136014][ T8996]  ? __pfx_ksys_write+0x10/0x10
[  248.136049][ T8996]  __x64_sys_sendmmsg+0x9c/0x100
[  248.136081][ T8996]  ? lockdep_hardirqs_on+0x7c/0x110
[  248.136109][ T8996]  do_syscall_64+0xcd/0x250
[  248.136141][ T8996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.136171][ T8996] RIP: 0033:0x7f34da78d169
[  248.136190][ T8996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.136210][ T8996] RSP: 002b:00007f34db6a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  248.136232][ T8996] RAX: ffffffffffffffda RBX: 00007f34da9a5fa0 RCX: 00007f34da78d169
[  248.136247][ T8996] RDX: 0000000000000003 RSI: 0000400000000080 RDI: 0000000000000003
[  248.136262][ T8996] RBP: 00007f34db6a2090 R08: 0000000000000000 R09: 0000000000000000
[  248.136276][ T8996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  248.136290][ T8996] R13: 0000000000000000 R14: 00007f34da9a5fa0 R15: 00007ffe275bf338
[  248.136319][ T8996]  </TASK>
[  248.149553][ T8998] input: f¬
 as /devices/virtual/input/input6
[  248.478271][ T9005] FAULT_INJECTION: forcing a failure.
[  248.478271][ T9005] name failslab, interval 1, probability 0, space 0, times 0
[  248.495853][ T9005] CPU: 1 UID: 0 PID: 9005 Comm: syz.3.790 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  248.495894][ T9005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  248.495911][ T9005] Call Trace:
[  248.495920][ T9005]  <TASK>
[  248.495932][ T9005]  dump_stack_lvl+0x16c/0x1f0
[  248.495978][ T9005]  should_fail_ex+0x50a/0x650
[  248.496023][ T9005]  ? fs_reclaim_acquire+0xae/0x150
[  248.496056][ T9005]  ? snd_pcm_open+0x2e8/0x700
[  248.496084][ T9005]  should_failslab+0xc2/0x120
[  248.496109][ T9005]  __kmalloc_cache_noprof+0x68/0x410
[  248.496160][ T9005]  snd_pcm_open+0x2e8/0x700
[  248.496198][ T9005]  ? __pfx_snd_pcm_open+0x10/0x10
[  248.496235][ T9005]  ? __pfx_default_wake_function+0x10/0x10
[  248.496279][ T9005]  ? __pfx_snd_pcm_capture_open+0x10/0x10
[  248.496308][ T9005]  snd_pcm_capture_open+0x89/0xe0
[  248.496338][ T9005]  snd_open+0x1fe/0x450
[  248.496362][ T9005]  ? __pfx_snd_open+0x10/0x10
[  248.496384][ T9005]  chrdev_open+0x237/0x6a0
[  248.496415][ T9005]  ? __pfx_apparmor_file_open+0x10/0x10
[  248.496443][ T9005]  ? __pfx_chrdev_open+0x10/0x10
[  248.496479][ T9005]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  248.496540][ T9005]  do_dentry_open+0x735/0x1c40
[  248.496576][ T9005]  ? __pfx_chrdev_open+0x10/0x10
[  248.496611][ T9005]  ? inode_permission+0xdd/0x5f0
[  248.496639][ T9005]  vfs_open+0x82/0x3f0
[  248.496658][ T9005]  ? may_open+0x1f2/0x400
[  248.496685][ T9005]  path_openat+0x1e88/0x2d80
[  248.496730][ T9005]  ? __pfx_path_openat+0x10/0x10
[  248.496763][ T9005]  ? __pfx___lock_acquire+0x10/0x10
[  248.496790][ T9005]  ? lock_acquire.part.0+0x11b/0x380
[  248.496818][ T9005]  ? find_held_lock+0x2d/0x110
[  248.496845][ T9005]  do_filp_open+0x20c/0x470
[  248.496875][ T9005]  ? __pfx_do_filp_open+0x10/0x10
[  248.496905][ T9005]  ? find_held_lock+0x2d/0x110
[  248.496954][ T9005]  ? alloc_fd+0x41f/0x760
[  248.497004][ T9005]  do_sys_openat2+0x17a/0x1e0
[  248.497030][ T9005]  ? __pfx_do_sys_openat2+0x10/0x10
[  248.497070][ T9005]  __x64_sys_openat+0x175/0x210
[  248.497097][ T9005]  ? __pfx___x64_sys_openat+0x10/0x10
[  248.497138][ T9005]  do_syscall_64+0xcd/0x250
[  248.497171][ T9005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.497202][ T9005] RIP: 0033:0x7f34da78d169
[  248.497222][ T9005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.497243][ T9005] RSP: 002b:00007f34db6a2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  248.497266][ T9005] RAX: ffffffffffffffda RBX: 00007f34da9a5fa0 RCX: 00007f34da78d169
[  248.497282][ T9005] RDX: 0000000000000000 RSI: 0000400000000000 RDI: ffffffffffffff9c
[  248.497297][ T9005] RBP: 00007f34da80e2a0 R08: 0000000000000000 R09: 0000000000000000
[  248.497311][ T9005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  248.497325][ T9005] R13: 0000000000000000 R14: 00007f34da9a5fa0 R15: 00007ffe275bf338
[  248.497366][ T9005]  </TASK>
[  248.792274][    C1] vkms_vblank_simulate: vblank timer overrun
[  249.154216][ T9013] snd_virmidi snd_virmidi.0: control 3:6:1068:IAJ:127 is already present
[  250.127414][ T9039] FAULT_INJECTION: forcing a failure.
[  250.127414][ T9039] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  250.141443][ T9039] CPU: 0 UID: 0 PID: 9039 Comm: syz.0.800 Not tainted 6.14.0-rc5-syzkaller-00234-gb7c90e3e717a #0
[  250.141464][ T9039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  250.141474][ T9039] Call Trace:
[  250.141478][ T9039]  <TASK>
[  250.141484][ T9039]  dump_stack_lvl+0x16c/0x1f0
[  250.141509][ T9039]  should_fail_ex+0x50a/0x650
[  250.141533][ T9039]  _copy_from_iter+0x2a1/0x1560
[  250.141550][ T9039]  ? trace_lock_acquire+0x14e/0x1f0
[  250.141569][ T9039]  ? __pfx__copy_from_iter+0x10/0x10
[  250.141582][ T9039]  ? __virt_addr_valid+0x1a4/0x590
[  250.141599][ T9039]  ? __virt_addr_valid+0x5e/0x590
[  250.141612][ T9039]  ? __phys_addr_symbol+0x30/0x80
[  250.141625][ T9039]  ? __check_object_size+0x488/0x710
[  250.141642][ T9039]  kernfs_fop_write_iter+0x19d/0x500
[  250.141660][ T9039]  vfs_write+0x5ae/0x1150
[  250.141680][ T9039]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  250.141700][ T9039]  ? __pfx___mutex_lock+0x10/0x10
[  250.141729][ T9039]  ? __pfx_vfs_write+0x10/0x10
[  250.141780][ T9039]  ksys_write+0x12b/0x250
[  250.141809][ T9039]  ? __pfx_ksys_write+0x10/0x10
[  250.141844][ T9039]  do_syscall_64+0xcd/0x250
[  250.141874][ T9039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.141904][ T9039] RIP: 0033:0x7fac61d8d169
[  250.141923][ T9039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.141948][ T9039] RSP: 002b:00007fac62c7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  250.141972][ T9039] RAX: ffffffffffffffda RBX: 00007fac61fa5fa0 RCX: 00007fac61d8d169
[  250.141988][ T9039] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000006
[  250.142002][ T9039] RBP: 00007fac61e0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  250.142016][ T9039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  250.142029][ T9039] R13: 0000000000000000 R14: 00007fac61fa5fa0 R15: 00007ffd9f155f48
[  250.142061][ T9039]  </TASK>
SYZFAIL: ShmemBuilder: too large output offset
size=262144 consumed=700688 (errno 9: Bad file descriptor)