last executing test programs:
1m45.200786134s ago: executing program 0 (id=1037):
r0 = socket(0xa, 0x5, 0x84)
openat$auto_transaction_log_fops_(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x10c01, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/assocs\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f00000001c0), 0x40, 0x0)
ioctl$auto_RTC_IRQP_READ(r2, 0x8008700b, &(0x7f0000000200)=0x9)
r3 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, 0x0, 0x1fe, 0x200d)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, 0x0, 0x800, 0x70bd25, 0x25dfdbfb, {}, [@NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x4}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x5}, 0x40040)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
recvmmsg$auto(r4, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c001b"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmsg$auto_IEEE802154_LLSEC_DEL_DEV(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x3c, 0x0, 0x0, 0x70bd25, 0x25dfdbff, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0xfff}, @IEEE802154_ATTR_SRC_PAN_ID={0x6, 0xd, 0x8}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0xa}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5, 0x37, 0xf}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0x85}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x200000c0)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f00000000c0)={0x0, "e6c26c22ab89af11056b0001ac097e0a072859300000c500", @raw=0x8})
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000080)={0x81, "36a2662b59209f6bd4aafa4ed15fdb9c791daf044ae6ff089930def80ce28999", @inferred=r2})
newfstatat$auto(0xffffffffffffff9c, 0x0, &(0x7f0000000380)={0x5, 0x6, 0xa9, 0x4, 0x0, 0xee01, 0x0, 0x6, 0x3, 0x0, 0x4, 0x8, 0xbc, 0x1, 0xb456, 0x9, 0x53}, 0x1)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8)
ioctl$auto_SW_SYNC_IOC_INC(r1, 0x40045701, &(0x7f0000000040)=0x8)
1m43.325123986s ago: executing program 0 (id=1043):
r0 = socket(0x9, 0x1, 0x7)
r1 = ioctl$auto_dma_heap_fops_dma_heap(0xffffffffffffffff, 0x2, &(0x7f0000000040)="c4475ba8b50ccc8bb6436280c003d48c38f5136b8fa6c342ab0a6033c155c5e6262480c802ff956d7bc12a168e3a3d4d4454d927b022a4907c35ce5efcf642b01334fbbe097020fa835537947c5ef23f29fba3da2ea5750c70941d96b08e6db136fb692737d1dd072158c15828b596b37aff4147821bde4a99476e1a987015250299abca62bda9b7fea3b960f13c84b6ccd6584f6c84a21960f96f004a39dc6007c3858fc30cf3cdcea6b2396cc3c3812b51afd36ec9ab3387b30b0f0b2f965d5bceee838d5192e77d6c28d8fdcaa93da721d43db42d60a4adc3c9b02d265435cc026f1c1b64157dbd6e3e5829986e186e")
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), r1)
connect$auto(r1, &(0x7f0000000140)=@llc={0x1a, 0x205, 0x5, 0x3, 0xfa, 0x9, @broadcast}, 0xe83b)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC1\x00', 0x20800, 0x0)
connect$auto(r0, &(0x7f00000001c0)=@l2={0x1f, 0x8, @any, 0x7, 0x2}, 0xf9)
bpf$auto_BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)=@bpf_attr_7={@start_id=0x200, 0xfffffe01, 0x62320d1b, <r2=>0xffffffffffffffff}, 0x100)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000300), r1)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x54, r3, 0x4, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_TT_TTVN={0x5, 0x11, 0x7}, @BATADV_ATTR_TT_TTVN={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_TT_CRC32={0x8, 0x13, 0x1f}, @BATADV_ATTR_MCAST_FLAGS={0x8, 0x26, 0x52c}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x4}, @BATADV_ATTR_MCAST_FLAGS={0x8, 0x26, 0x8}, @BATADV_ATTR_BLA_VID={0x6, 0x20, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x10}, 0x80)
r4 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000480), r1)
sendmsg$auto_CTRL_CMD_GETPOLICY(r0, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x4c, r4, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@CTRL_ATTR_OP={0x8, 0xa, 0x8}, @CTRL_ATTR_OP={0x8, 0xa, 0xe89}, @CTRL_ATTR_FAMILY_ID={0x6}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x9}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x5}, @CTRL_ATTR_OP={0x8, 0xa, 0x7}, @CTRL_ATTR_OP={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x40800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000600), r1)
sendmsg$auto_SMC_PNETID_ADD(r5, &(0x7f0000000700)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x70, r6, 0x0, 0x70bd2d, 0x25dfdbff, {}, [@SMC_PNETID_ETHNAME={0xb, 0x2, 'nlctrl\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1c}, @SMC_PNETID_ETHNAME={0x11, 0x2, '*\\,-)\xa7.$/#9*\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x81}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x5}, @SMC_PNETID_ETHNAME={0x7, 0x2, '[\x0f\x00'}, @SMC_PNETID_NAME={0x12, 0x1, '{/[[]:%$%$)+\'\x00'}]}, 0x70}, 0x1, 0x0, 0x0, 0x40080}, 0x4048000)
sendmsg$auto_SMC_PNETID_DEL(r5, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000800)={&(0x7f0000000780)={0x64, r6, 0x402, 0x70bd2a, 0x25dfdbff, {}, [@SMC_PNETID_ETHNAME={0x5, 0x2, '\x00'}, @SMC_PNETID_ETHNAME={0x17, 0x2, '/dev/snd/controlC1\x00'}, @SMC_PNETID_IBNAME={0x5, 0x3, '\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x5}, @SMC_PNETID_ETHNAME={0x8, 0x2, '-#\xca\x00'}, @SMC_PNETID_IBNAME={0x17, 0x3, '/dev/snd/controlC1\x00'}]}, 0x64}, 0x1, 0x0, 0x0, 0x4040840}, 0x40810)
io_uring_register$auto_IORING_UNREGISTER_EVENTFD(r1, 0x5, &(0x7f0000000880)="3db8008292ba9204c7260a87e37362d941bb488f16dd8e267a3c544291add4cabd25d4669fd96623f5", 0x9)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000900), r1)
sendmsg$auto_NL80211_CMD_REMOVE_LINK(r5, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x28, r8, 0x300, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0xb, 0x13, "b62ffe4c22c45a"}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0xfffd}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x800)
r9 = socket(0x29, 0x6, 0x1)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000a00), r7)
sendmmsg$auto(r2, &(0x7f0000000cc0)={{&(0x7f0000000a40)="b3b57194ad9e7cf4dfe8e4212f6a83fae62421d4f78e603fa1e1606ff5069018535ac035264818d41f3515896452d63a0ba66a116d82398b57b1d4bb9f8fc28a20fcf51461240b20f47198e2b4e18415ec044f8b68a43b148171f9ea1f2e10020802c1e2c275d88406675e8bffd00b6cd837064ee7e04b9fbb9dee30256ccb1fd7d2246f490b4dd8edf1e676992a9e104bd1b7bb7c7780b7ae72013c2c809041ec99a14c78b144771ded391cfb27238d03132905250fb0d42fe53e1f731c18c98965b8b2dd7bc6b875984561f01126468cd3985413753625863eccaeb8eb8f05a96ef3b1d4d08459928cbd6bfc3115f70c08", 0xd, &(0x7f0000000c00)={&(0x7f0000000b40)="e73dd4ae5512fcb74665fc6293d3042166ef1810f562b8bf7b5f1c59e39d0bf1e3220b4b5778c0c8b30b89de47d6021be05684ca1477775cfbe34b0e9b6df5136d00272cbf12c8654645101ca7cc043c38b72de3c63cdd01781e23f8178005876283530e92d618e373f96cc6b51b8ef72f0cf34ed3add10fadf5f31f3a1cd236e79452f4a6f330b15dc9ea208d7087150faf02971448df", 0x2}, 0xed3, &(0x7f0000000c40)="e302ed89eca0bd6faef494f6be845867f62185c0da8a8632657d50f9894d9eca5856bbb2fad96efa044cddf9da3f0d2f952276ecc2e65b6d126ff3416869bae00d5b8ea8b07c48fb8feb4fbc2cf3c71fede8f06a12eecee1c743f473249a61e25e4a42f281c9", 0xbfc, 0x2}, 0x8}, 0xfffffff9, 0x1)
read$auto_ftrace_event_id_fops_trace_events(r1, &(0x7f0000000d00)=""/107, 0x6b)
write$auto_clear_warn_once_fops_(r2, &(0x7f0000000d80)="6331d675045c961a6c7af8b11217", 0xe)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000dc0), r2)
r10 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000e40), r2)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r0, &(0x7f0000001f00)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001ec0)={&(0x7f0000000e80)={0x1014, r10, 0x400, 0x70bd25, 0x25dfdbfb, {}, "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"}, 0x1014}, 0x1, 0x0, 0x0, 0x4000000}, 0x40014)
signalfd4$auto(r0, &(0x7f0000001f40)={0x2d7}, 0x0, 0x3)
r11 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000001fc0), r9)
sendmsg$auto_IEEE802154_LLSEC_SETPARAMS(r5, &(0x7f00000020c0)={&(0x7f0000001f80)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000002080)={&(0x7f0000002000)={0x4c, r11, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x5}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x5}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x3}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0xffff}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0xc}, @IEEE802154_ATTR_CSMA_MIN_BE={0x5}, @IEEE802154_ATTR_CHANNEL={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
1m41.677574138s ago: executing program 0 (id=1047):
r0 = prctl$auto_PR_SYS_DISPATCH_OFF(0x4, 0x0, 0x0, 0xfffffffffffffffe, 0x200)
recvmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000)="966d8db406adfd7a0fbff5b0d41a00881f7aa2883c", 0x7, &(0x7f0000000100)={&(0x7f0000000040)="4b777bfac1760b4b27c6a7cd5c3074f2e13ce8e1d7dcd0ea7c4737cb402942c68d85d74cf0526e9fb9667917e9640adbc3c275e9371cb9c8ecc232a992d972fc1cf7609aa096fd56bbb26577a9cc4c50318fa2c4bdf8a38707ba48fac758617b95eaffe7d742d81ad76a732292f1603b3fd47cf0075e5c40cb0e506b04bae7fd385010305fd94557750e3e0a8240620e50e1b5ba42b111305e409a4cfb610fb092261ea664d7355f084ea347e4faa01caba5ab490301127709d7", 0x9}, 0x2716605a, &(0x7f0000000140)="ea9b5982cdfc17baa4c468b0e9003746f0a7e53f72a5885bbf14e8d57f6c226ee7735455a7203c684fe868a72eb7f8f850aeab31a09e6f63bd76d27ef86d0b69caa6918210f47c336e2e905a69e611c3a0f16641c7436f", 0x2, 0x1}}, 0xa, 0x1, &(0x7f0000000200)={0x6f, 0x1})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x8002, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x101080, 0x0)
read$auto_snd_rawmidi_f_ops_rawmidi(r1, &(0x7f0000000080)=""/45, 0x2d)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x100000, 0x0)
ioctl$auto_BTRFS_IOC_QUOTA_RESCAN_STATUS(r2, 0x8040942d, &(0x7f0000000280)={0x10, 0x81, [0x4, 0x88c5, 0x8001, 0x6, 0x8, 0x6]})
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/blank\x00', 0xa001, 0x0)
write$auto(r3, &(0x7f0000000140)='7\x00\xb1\x9a\xc0\xf9\xc0e\xd2T\xbe\xb6I\x9d\xd9\x18\xf5\x91\xbfq\xfe\xf2\x9a\x02\x9fC0xb\xccW(\xc1n+\n|5\xa5\x9c=^\xf1\x11H\x1c\xf73\x16\xd2\a\xfaw\xcc\xf1\xff7\xab\xa1\xeaF\x04\x17\x99\xd3\xd1\x83\xccG^\xbbdC\x8a\n\x88\xbcW@+\xafD\xd1\x8a\xc13W\xf66\x86\xe5\xee\xa7\x1d\x0f\x90\x00\xcf\xdb\xf5\xbf\xd4\xc8\x84\xb3\xeeb\xb0\xc7kN\x80\x93\xfd\x89\xe1\xc9tp\xd4jm\x7f\xf0a\xc3\x02\x14\xcf\xcf\\e!\a\x82\t,\xa7\x00\xbd&\xcax\xf8P\xc1\x8f\x87\x83\x0f\x93z', 0x81)
write$auto(r3, &(0x7f0000000100)='%\x00', 0x38f)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x7)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socketpair$auto(0x1, 0x8, 0x8000000000000000, 0x0)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptyv6\x00', 0x4e8c02, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000002c00), 0xffffffffffffffff)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(r6, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={0x0, 0x14}}, 0x4000)
ioctl$auto_TIOCSETD2(r7, 0x5423, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x881}, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/erofs/parameters/global_buffers\x00', 0x1d1900, 0x0)
1m36.723997347s ago: executing program 0 (id=1060):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002ac0), r1)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="831f2abd7000fbdbdf250100"], 0x1c}, 0x1, 0x0, 0x0, 0x20004041}, 0x40004)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', <r3=>0x0})
syz_clone3(&(0x7f0000000480)={0xc0007000, &(0x7f00000001c0), &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000240), {0x22}, &(0x7f00000002c0)=""/207, 0xcf, &(0x7f00000003c0)=""/65, &(0x7f0000000440)=[0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x7}, 0x58)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000500)={0x2cc, r2, 0x300, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x5}, @NL802154_ATTR_SEC_KEY={0x2a0, 0x30, 0x0, 0x1, [@nested={0x11b, 0x5d, 0x0, 0x1, [@generic="48757b743a029465a58b2b00d4d5550202cc52e926a04d91618782a459f3a0dba419a113242256aedbcfa5d6f6d9f3c29e280dc2804886c0e4cec5ddf2bd9b487fe5e12d398c1001d87d399de16cad59232d724f62478e197a5cbfc06d28d06d392326", @generic="51070c20975102d523a3e441d1c7f7e1b24479b42d793d45724b6f69ffc1f38f451baad1b6158915cfcccc7c788a20a6eaf830fa585f1f9d6b9b2e933b3d3ccb5a6440e1363848e2f00c30c37a1391193a9d85b3044d1180dd16e0af9f6a9c80469f58ef3e117571536f003f41af0b1f91ce7065e211efad4a088d914d334d3b6d809489b214b99620299fad536e0bc7f035d61d78125e27c9ee33a399067978f1ecfe34f0213e532478701254ee1cb9ab62474d"]}, @typed={0xc, 0x6e, 0x0, 0x0, @u64=0x8}, @nested={0x14, 0xc6, 0x0, 0x1, [@typed={0x8, 0xc9, 0x0, 0x0, @u32=0x1}, @nested={0x4, 0x6d}, @nested={0x4, 0xcb}]}, @nested={0x4f, 0x26, 0x0, 0x1, [@generic="df876cec41a59f9cc02bbf44c98ed814c411588dc0a40ab4411204c2659cc4ab6aef286a3a924899116d641cad3ac6bb1e8785e07375d19ee18cc0459545503bcc4a088b851740db395b80"]}, @nested={0x10d, 0xdf, 0x0, 0x1, [@typed={0x8, 0x10d, 0x0, 0x0, @pid=r4}, @generic="04d597fcef74905aa5ad991c009f24127121a7f3416c94335005fec1cf8dcc598b914af6e7b1637c4c2354f14f6b0903f5996f42b6d1d1744b33c14e1e0c53b2d627438c924d5b61a6af993f7f850df35d1b4135cd83e05f8c1d4ab93dd34fe29a776aa8b99a083180824333c203934d492580937048e1e60582112d7a3fa6f12caf1344f5bc69f28dcd99fe1131ee07d3afbfacfb8cb8315b", @generic="010ce9341be5ff6f3bf91432d6bddd85c409f20e3b77c44b8f6ef0dcd8c48f951098f03d60775b703cc6875869a9f08b33f2fbc0255af23e3478d41c149afd1d7d13c43145342ffd0a2aa25118d200a68a85d5837bf781b4e810df5341cd1aeeb96965bb", @nested={0x4, 0x4b}]}]}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x3}]}, 0x2cc}, 0x1, 0x0, 0x0, 0x22001811}, 0x801)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5)
mmap$auto(0x0, 0x9, 0x2, 0x8000000008011, 0x4, 0x0)
mmap$auto(0x0, 0x9, 0xa861, 0x8000000008012, 0x1000000004, 0x0)
epoll_ctl$auto_EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000000)={0x15e, 0x4001ff})
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0xffffffffffffffff, 0x8000)
1m29.429000321s ago: executing program 0 (id=1082):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)="205c2020027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19)
ioctl$auto_USBDEVFS_CONTROL32(r0, 0xc0105500, &(0x7f0000000140)={0x7a, 0x7d, 0x1ff, 0x0, 0xfc, 0x7, 0x4020000a})
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
setresuid$auto(0x0, 0x0, 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200002)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
iopl$auto(0x1)
poll$auto(&(0x7f0000003640)={r3, 0x7, 0x6}, 0x4, 0x100000)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$auto(0x3, 0x541b, 0x7f)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
sendfile$auto(r4, r4, 0x0, 0x200)
1m15.788212079s ago: executing program 0 (id=1110):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket(0x2, 0x1, 0x0)
r1 = socket(0x23, 0x2, 0x0)
ioctl$auto(0x8000000000000001, 0x89ef, 0x9)
r2 = socket(0x10, 0x2, 0x0)
io_uring_setup$auto(0x3, &(0x7f0000000340)={0x2, 0x4, 0x10, 0x1, 0x0, 0xe941, r1, [0x9, 0x6, 0x6], {0x100, 0xec, 0xc36, 0x6, 0x437, 0x0, 0xb9, 0x7, 0x45a}, {0x101, 0x80000000, 0x1, 0x4, 0x5, 0xc43, 0x1, 0x3, 0xffffffff}})
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
unshare$auto(0x7)
r3 = socket(0x23, 0x80805, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000b80), r4)
sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r4, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x1c, r5, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x3}]}, 0x1c}}, 0x40040)
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x30, r5, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@IOAM6_ATTR_NS_ID={0x6, 0x1, 0xb}, @IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_SC_ID={0x8}, @IOAM6_ATTR_NS_ID={0x6, 0x1, 0x8a7}]}, 0x30}, 0x1, 0x0, 0x0, 0x8801}, 0x80)
poll$auto(&(0x7f0000000040)={<r6=>r3, 0x7, 0x8}, 0x80, 0x400400)
setsockopt$auto(r6, 0x113, 0xffffffff, 0x0, 0x81)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="7201", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r2, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'team0\x00'})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="72010000", @ANYBLOB="114a22e4eff618175a71c95c3171b1256af1d6da225c4424e343b901a5e6fdad2b84a69dd70c29d92784c1c83816cb65"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0)
1m14.189555993s ago: executing program 2 (id=1116):
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x40400, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x1004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
socket(0x1, 0x803, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, r0, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x2, 0x73)
r1 = socketpair$auto(0x1, 0x5, 0xa0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(r1, 0xffffffffffffffff, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/nfsd.fh/flush\x00', 0xc8201, 0x0)
write$auto(r2, 0x0, 0x6)
1m13.749416311s ago: executing program 2 (id=1119):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)="205c2020027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19)
ioctl$auto_USBDEVFS_CONTROL32(r0, 0xc0105500, &(0x7f0000000140)={0x7a, 0x7d, 0x1ff, 0x0, 0xfc, 0x7, 0x4020000a})
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
setresuid$auto(0x0, 0x0, 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200002)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
iopl$auto(0x1)
poll$auto(&(0x7f0000003640)={r3, 0x7, 0x6}, 0x4, 0x100000)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$auto(0x3, 0x541b, 0x7f)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
sendfile$auto(r4, r4, 0x0, 0x200)
1m11.415718975s ago: executing program 2 (id=1121):
socket(0xa, 0x5, 0x0)
clone$auto(0x30051c, 0x9, 0x0, 0xffffffffffffffff, 0x80000001)
setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x4)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x0)
r0 = io_uring_setup$auto(0x9, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
clone$auto(0x20003b4b, 0x8000000000000000, 0x0, 0x0, 0x1b0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x73)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x20b42, 0x0)
write$auto(0x3, 0x0, 0x100082)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r2, 0x40045010, 0x0)
sendmsg$auto_NL80211_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000227bd7000fedbdf25080000000400870005003e00040000000800f800040000000c001d8008000080040004"], 0x34}, 0x1, 0x0, 0x0, 0xd5}, 0x30048000)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x24004800}, 0x4000000)
sendmsg$auto_NL802154_CMD_DEL_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="20002abd7100fddbdf251e00000048001e80654a14ad3b1a2a29f29a4a9efefcdb0f855b8cbded58b82a5db67afdfb5a974d032841c1a142db075c0365092c3c2906e71609826c65b728d149e7d1ba0e58adea3d046908000e000100000094a8318dd950209be4020dba93269b4a68a2b546dbfe293cd3b12daadaa42e5ab5c6d78662d3a93f5393f477bbad66b45814743138c84b"], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket(0x2b, 0x1, 0x0)
sendmmsg$auto(r5, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r5)
sendmsg$auto_NL80211_CMD_DISASSOCIATE(r5, 0x0, 0x1)
r6 = syz_genetlink_get_family_id$auto_nfc(0x0, r5)
sendmsg$auto_NFC_CMD_FW_DOWNLOAD(r5, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYRES16, @ANYRESDEC=r1, @ANYRES32=r6], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x4004880)
msgctl$auto_MSG_STAT(0x0, 0xb, &(0x7f0000000480)={{0x2e9c65db, 0xee01, 0xee00, 0x4, 0x5, 0x3, 0x6f5c}, &(0x7f0000000400)=0x1, &(0x7f0000000440)=0x8, 0x8, 0x7, 0x9, 0x1, 0x9, 0x1, 0x40, 0x3a, @inferred, @inferred=0xffffffffffffffff})
read$auto_uinput_fops_uinput(r0, &(0x7f0000000240)=""/101, 0x65)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x20081, 0x0)
1m10.247677182s ago: executing program 2 (id=1122):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x696b}, 0xed7138c}, 0x2, 0x9)
r0 = socket(0xa, 0x5, 0x84)
sendto$auto(r0, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/assocs\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r3)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
r5 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r5, 0xc0285700, &(0x7f00000000c0)={0x1, "e6c26c22ab89af11056b0001ac097e0a0728d9300000c500"})
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r5, 0xc0285700, &(0x7f0000000080)={0x1, "36a2662b59209f6bd4aafa4ed15fdb9c791daf044ae6ff089930def80ce28999", @raw=0x3cf51fcb})
newfstatat$auto(0xffffffffffffff9c, 0x0, &(0x7f0000000380)={0x5, 0x6, 0xa9, 0x4, 0x0, 0xee01, 0x0, 0x6, 0x3, 0x0, 0x4, 0x8, 0xbc, 0x1, 0xb456, 0x9, 0x53}, 0x1)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8)
ioctl$auto_SW_SYNC_IOC_INC(r5, 0x40045701, &(0x7f0000000040)=0x8)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="2f212cbd7000fcdbdf"], 0x48}}, 0x4000000)
sendmsg$auto_NL80211_CMD_JOIN_OCB(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="44010000", @ANYBLOB="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"], 0x144}, 0x1, 0x0, 0x0, 0x200000c0}, 0x10)
mmap$auto(0x0, 0x40009, 0x8000df, 0x9b72, 0x4, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x3, 0x7, 0x8000000000000000, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
1m6.856716703s ago: executing program 2 (id=1131):
r0 = open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1b}, 0x403)
ioctl$auto_SNDCTL_DSP_GETCAPS(r0, 0x8004500f, &(0x7f0000000140)="ed918a9068408a28d5bdbef9668da0db4631737c1841f27ad145cf00a6c4de2cdcb41503d60771c58e263dd5d98d6f76c002d9c96e0edae29c3639097c3e24fa1ede3d19")
r1 = socket(0x11, 0x2, 0x9)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x18, 0x5, 0x0)
socket(0xa, 0x2, 0x73)
socket(0x2, 0x80002, 0x73)
r2 = fcntl$auto(0x3, 0x401, 0x3)
ioctl$auto_FIDEDUPERANGE(r2, 0xc0189436, 0x3)
sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f0000000180), 0x6, 0x1000}, 0x5}, 0x2, 0x100)
mmap$auto(0x6, 0xfffffffffffffff8, 0x3, 0x18, r0, 0x8)
1m6.224376336s ago: executing program 2 (id=1132):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)="205c2020027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19)
ioctl$auto_USBDEVFS_CONTROL32(r0, 0xc0105500, &(0x7f0000000140)={0x7a, 0x7d, 0x1ff, 0x0, 0xfc, 0x7, 0x4020000a})
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
setresuid$auto(0x0, 0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
iopl$auto(0x1)
poll$auto(&(0x7f0000003640)={r5, 0x7, 0x6}, 0x4, 0x100000)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$auto(0x3, 0x541b, 0x7f)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800)
memfd_secret$auto(0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
sendfile$auto(r6, r6, 0x0, 0x200)
1m0.119593222s ago: executing program 32 (id=1110):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket(0x2, 0x1, 0x0)
r1 = socket(0x23, 0x2, 0x0)
ioctl$auto(0x8000000000000001, 0x89ef, 0x9)
r2 = socket(0x10, 0x2, 0x0)
io_uring_setup$auto(0x3, &(0x7f0000000340)={0x2, 0x4, 0x10, 0x1, 0x0, 0xe941, r1, [0x9, 0x6, 0x6], {0x100, 0xec, 0xc36, 0x6, 0x437, 0x0, 0xb9, 0x7, 0x45a}, {0x101, 0x80000000, 0x1, 0x4, 0x5, 0xc43, 0x1, 0x3, 0xffffffff}})
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
unshare$auto(0x7)
r3 = socket(0x23, 0x80805, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000b80), r4)
sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r4, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x1c, r5, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x3}]}, 0x1c}}, 0x40040)
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x30, r5, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@IOAM6_ATTR_NS_ID={0x6, 0x1, 0xb}, @IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_SC_ID={0x8}, @IOAM6_ATTR_NS_ID={0x6, 0x1, 0x8a7}]}, 0x30}, 0x1, 0x0, 0x0, 0x8801}, 0x80)
poll$auto(&(0x7f0000000040)={<r6=>r3, 0x7, 0x8}, 0x80, 0x400400)
setsockopt$auto(r6, 0x113, 0xffffffff, 0x0, 0x81)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="7201", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r2, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'team0\x00'})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="72010000", @ANYBLOB="114a22e4eff618175a71c95c3171b1256af1d6da225c4424e343b901a5e6fdad2b84a69dd70c29d92784c1c83816cb65"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0)
50.954819975s ago: executing program 33 (id=1132):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)="205c2020027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19)
ioctl$auto_USBDEVFS_CONTROL32(r0, 0xc0105500, &(0x7f0000000140)={0x7a, 0x7d, 0x1ff, 0x0, 0xfc, 0x7, 0x4020000a})
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
setresuid$auto(0x0, 0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
iopl$auto(0x1)
poll$auto(&(0x7f0000003640)={r5, 0x7, 0x6}, 0x4, 0x100000)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$auto(0x3, 0x541b, 0x7f)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800)
memfd_secret$auto(0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
sendfile$auto(r6, r6, 0x0, 0x200)
8.430571778s ago: executing program 1 (id=1252):
mmap$auto(0xd, 0x2020009, 0x1, 0xeb1, 0xffffffffffffffff, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6})
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/wg2/drop_unicast_in_l2_multicast\x00', 0x40300, 0x0)
mmap$auto(0x0, 0x4020009, 0x0, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyxb\x00', 0x8dd7526b021612b6, 0x0)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_IOC_PR_REGISTER(r1, 0x401870c8, &(0x7f00000000c0)={0xfffffffeffffffff, 0x5})
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x10000948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0xfffffffffffffffb, 0x80000005, 0x0, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000005540)='/dev/input/event2\x00', 0xa481, 0x0)
ioctl$auto_EVIOCSKEYCODE_V2(r2, 0x40284504, 0x0)
7.692730039s ago: executing program 5 (id=1255):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x149443, 0x14)
fcntl$auto(r1, 0x409, 0x40003f)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001100)=""/192, 0xc0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0xffffffffffffffff, 0x8, 0xc, 0x0, 0x567)
unshare$auto(0x40000080)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x8080)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008)
acct$auto(0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x2, 0x0)
migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
mprotect$auto(0x0, 0x806121, 0x6)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0)
r4 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$auto_TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)=0x4)
sendfile$auto(r3, r3, 0x0, 0x5)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x6d2fc1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x408440, 0x0)
6.93586393s ago: executing program 4 (id=1256):
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x40300, 0x0)
mmap$auto(0x0, 0x4020009, 0x0, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyxb\x00', 0x8dd7526b021612b6, 0x0)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_IOC_PR_REGISTER(r1, 0x401870c8, &(0x7f00000000c0)={0xfffffffeffffffff, 0x5})
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x10000948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0xfffffffffffffffb, 0x80000005, 0x0, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000005540)='/dev/input/event2\x00', 0xa481, 0x0)
ioctl$auto_EVIOCSKEYCODE_V2(r2, 0x40284504, 0x0)
6.935124981s ago: executing program 1 (id=1257):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pnp0/00:01/options\x00', 0x0, 0x0)
read$auto(0x3, 0x0, 0x1f40)
syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0)
ioctl$auto_TUNGETIFF(r1, 0x800454d2, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x4000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x6, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0xfffffffe, 0x0)
recvmmsg$auto(r3, &(0x7f0000000100)={{0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x4000800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x2)
write$auto(0x3, 0x0, 0x100082)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r5], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
6.336710797s ago: executing program 5 (id=1258):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x1, 0x100)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/oss/sndstat\x00', 0x40441, 0x0)
r1 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, 0x0)
sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0)="4a67d23edb3100000000000000000075210d2de44406c2", 0x49}, 0x5, &(0x7f0000000180), 0x5}, 0x1}, 0x2, 0x101)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mknod$auto(&(0x7f00000000c0)='./file0\x00', 0x1001, 0x804)
ioctl$auto_FIONBIO(r1, 0x5421, 0x80000000009)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x7, 0x7)
mount_setattr$auto(0x0, 0xfffffffffffffffe, 0x100, 0x0, 0x48)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
msync$auto(0x809, 0x3, 0x7)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8003)
r3 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000140), 0x1778c1, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r3, 0x40095505, &(0x7f0000000080)={0x8, 0x1, 0x0, 0x3, 0x2, 0xd, 0x4, 0x7})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setns(0xffffffffffffffff, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14f602, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/hid_cougar/parameters/g6_is_space\x00', 0x129102, 0x0)
write$auto(r0, 0x0, 0x200000000009)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_force_suspend_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/bluetooth/hci1/force_suspend\x00', 0x5015c0, 0x0)
read$auto_force_suspend_fops_hci_vhci(r2, 0x0, 0xfffffffffffffef0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
5.854769917s ago: executing program 1 (id=1259):
socket(0x2, 0x801, 0x100)
socket(0xa, 0x801, 0x84)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000a00)={0x2c, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/thread-self/net/sctp/remaddr\x00', 0x8200, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000b00)=""/147, 0x93)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x4, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002240)='/dev/cec17\x00', 0x181680, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(0x3, 0x0, 0x86873cbd, 0xa, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
capset$auto(0x0, 0x0)
socket(0xa, 0x5, 0x0)
5.839461714s ago: executing program 5 (id=1260):
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
name_to_handle_at$auto(0x1010, 0x0, 0x0, 0x0, 0x202)
getsockopt$auto_SO_PRIORITY(0xffffffffffffffff, 0x5, 0xc, &(0x7f0000000080)='\"\x81=\x00\xfdhhZ\xa0\x16\xda`\x00\x00\x00\x00\x00\x00\x00\xe0\x18\x98\x99\x00\x00\xbf\x04\xd7', 0x0)
r0 = socket(0x15, 0x5, 0x0)
fchmodat$auto(0xffffffffffffffff, 0x0, 0x111f)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
sysfs$auto(0x2, 0x2, 0x0)
unshare$auto(0x40000080)
mbind$auto(0x8000, 0x7f, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1)
r1 = getpgid(0x0)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, r1, 0x8, 0x0)
syz_clone3(0x0, 0x0)
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
mmap$auto(0x2, 0x200, 0xdf, 0x997, 0x3fd, 0x3)
r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101600, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_UI_GET_VERSION(r2, 0x8004552d, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0)
ioctl$auto_FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, 0xffffffffffffffff)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/virtual/block/zram0/queue/io_poll\x00', 0xa001, 0x0)
r4 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_clock\x00', 0xc0002, 0x0)
writev$auto(r4, 0x0, 0x5)
write$auto(r3, 0x0, 0x7f)
read$auto(0xffffffffffffffff, 0x0, 0x9)
setrlimit$auto(0x1000000007, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
5.70899997s ago: executing program 4 (id=1261):
mmap$auto(0xd, 0x2020009, 0x1, 0xeb1, 0xffffffffffffffff, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6})
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/wg2/drop_unicast_in_l2_multicast\x00', 0x40300, 0x0)
mmap$auto(0x0, 0x4020009, 0x0, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyxb\x00', 0x8dd7526b021612b6, 0x0)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$auto_IOC_PR_REGISTER(0xffffffffffffffff, 0x401870c8, &(0x7f00000000c0)={0xfffffffeffffffff, 0x5})
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x10000948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0xfffffffffffffffb, 0x80000005, 0x0, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000005540)='/dev/input/event2\x00', 0xa481, 0x0)
ioctl$auto_EVIOCSKEYCODE_V2(r1, 0x40284504, 0x0)
5.155328776s ago: executing program 3 (id=1263):
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/wg2/drop_unicast_in_l2_multicast\x00', 0x40300, 0x0)
mmap$auto(0x0, 0x4020009, 0x0, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyxb\x00', 0x8dd7526b021612b6, 0x0)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_IOC_PR_REGISTER(r1, 0x401870c8, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x10000948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0xfffffffffffffffb, 0x80000005, 0x0, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000005540)='/dev/input/event2\x00', 0xa481, 0x0)
ioctl$auto_EVIOCSKEYCODE_V2(r2, 0x40284504, 0x0)
4.604565689s ago: executing program 3 (id=1264):
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x40400, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, r0, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
r1 = socketpair$auto(0x1, 0x5, 0xa0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(r1, 0xffffffffffffffff, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/nfsd.fh/flush\x00', 0xc8201, 0x0)
write$auto(r2, 0x0, 0x6)
4.577126179s ago: executing program 4 (id=1265):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
gettid()
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x152)
rseq$auto(&(0x7f0000000080)={0x9, 0x8, 0x0, 0x7, 0xffffffff, 0x2}, 0x7ffd, 0xfffffff4, 0xa)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x100000000000000, 0x2, 0x4000000000df, 0x40df, 0x401, 0x2)
mmap$auto(0x0, 0x9, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000)
ioprio_set$auto(0x2, 0x800000000, 0x8)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
ioctl$auto(r1, 0x5609, r2)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
write$auto(0xffffffffffffffff, &(0x7f0000000140)='\x00', 0x0)
rt_sigtimedwait$auto(0x0, 0x0, 0x0, 0x8)
bpf$auto(0x0, &(0x7f0000000780)=@bpf_attr_5={@target_fd=r0, 0xffffffffffffffff, 0x5, 0x4, r2, @relative_id=0xfffffff4, 0xa5ef}, 0xa3)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x9)
unshare$auto(0x40000080)
fallocate$auto(0x8000000000000003, 0x2, 0x6, 0xcbd5d)
r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto(r3, 0xc0404d1a, r3)
socket(0x12, 0x4, 0x440a)
r4 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff)
ioctl$auto_SNDCTL_DSP_SETFMT(r4, 0xc0045005, &(0x7f0000000040))
socket(0x25, 0x5, 0x0)
sendfile$auto(0x6, 0x3, 0x0, 0xfdef)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x200dc0, 0x0)
io_setup$auto(0x10000, 0x0)
4.330376231s ago: executing program 3 (id=1267):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket(0x2, 0x1, 0x0)
r1 = socket(0x23, 0x2, 0x0)
ioctl$auto(0x8000000000000001, 0x89ef, 0x9)
r2 = socket(0x10, 0x2, 0x0)
io_uring_setup$auto(0x3, &(0x7f0000000340)={0x2, 0x4, 0x10, 0x1, 0x0, 0xe941, r1, [0x9, 0x6, 0x6], {0x100, 0xec, 0xc36, 0x6, 0x437, 0x0, 0xb9, 0x7, 0x45a}, {0x101, 0x80000000, 0x1, 0x4, 0x5, 0xc43, 0x1, 0x3, 0xffffffff}})
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
unshare$auto(0x7)
r3 = socket(0x23, 0x80805, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000b80), r4)
sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r4, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x1c, r5, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x3}]}, 0x1c}}, 0x40040)
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x30, r5, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@IOAM6_ATTR_NS_ID={0x6, 0x1, 0xb}, @IOAM6_ATTR_SC_NONE={0x4}, @IOAM6_ATTR_SC_ID={0x8}, @IOAM6_ATTR_NS_ID={0x6, 0x1, 0x8a7}]}, 0x30}, 0x1, 0x0, 0x0, 0x8801}, 0x80)
poll$auto(&(0x7f0000000040)={<r6=>r3, 0x7, 0x8}, 0x80, 0x400400)
setsockopt$auto(r6, 0x113, 0xffffffff, 0x0, 0x81)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r2, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'team0\x00'})
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="72010000", @ANYBLOB="114a22e4eff618175a71c95c3171b1256af1d6da225c4424e343b901a5e6fdad2b84a69dd70c29d92784c1c83816cb65"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x1}, 0x2, 0x0)
3.96703143s ago: executing program 5 (id=1268):
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x40400, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x1004, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
socket(0x1, 0x803, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, r0, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x141241, 0x0)
socket(0xa, 0x2, 0x73)
r1 = socketpair$auto(0x1, 0x5, 0xa0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(r1, 0xffffffffffffffff, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/nfsd.fh/flush\x00', 0xc8201, 0x0)
write$auto(r2, 0x0, 0x6)
3.966266415s ago: executing program 1 (id=1276):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)="205c2020027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19)
ioctl$auto_USBDEVFS_CONTROL32(r0, 0xc0105500, &(0x7f0000000140)={0x7a, 0x7d, 0x1ff, 0x0, 0xfc, 0x7, 0x4020000a})
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
setresuid$auto(0x0, 0x0, 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200002)
unshare$auto(0x40000080)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
iopl$auto(0x1)
poll$auto(&(0x7f0000003640)={r5, 0x7, 0x6}, 0x4, 0x100000)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$auto(0x3, 0x541b, 0x7f)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), r2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800)
memfd_secret$auto(0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
sendfile$auto(r6, r6, 0x0, 0x200)
3.019316952s ago: executing program 3 (id=1269):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x14a402, 0x0)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80800, 0x0)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
r1 = openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0)
ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r1, 0x4018bc13, 0x0)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x2000000009)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
process_madvise$auto_MADV_NORMAL(r2, 0x0, 0xfffffffffffff1c8, 0x0, 0x5)
2.06150057s ago: executing program 4 (id=1270):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x1, 0x100)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/oss/sndstat\x00', 0x40441, 0x0)
r1 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, 0x0)
sendmmsg$auto(r1, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0)="4a67d23edb3100000000000000000075210d2de44406c2", 0x49}, 0x5, &(0x7f0000000180), 0x5}, 0x1}, 0x2, 0x101)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mknod$auto(&(0x7f00000000c0)='./file0\x00', 0x1001, 0x804)
ioctl$auto_FIONBIO(r1, 0x5421, 0x80000000009)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x7, 0x7)
mount_setattr$auto(0x0, 0xfffffffffffffffe, 0x100, 0x0, 0x48)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
msync$auto(0x809, 0x3, 0x7)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8003)
r3 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000140), 0x1778c1, 0x0)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r3, 0x40095505, &(0x7f0000000080)={0x8, 0x1, 0x0, 0x3, 0x2, 0xd, 0x4, 0x7})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setns(0xffffffffffffffff, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14f602, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/hid_cougar/parameters/g6_is_space\x00', 0x129102, 0x0)
write$auto(r0, 0x0, 0x200000000009)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_force_suspend_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/bluetooth/hci1/force_suspend\x00', 0x5015c0, 0x0)
read$auto_force_suspend_fops_hci_vhci(r2, 0x0, 0xfffffffffffffef0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
2.060159524s ago: executing program 5 (id=1271):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)="205c2020027e0dc0023af10e9bfa1babfa203753ca9a20370a", 0x19)
ioctl$auto_USBDEVFS_CONTROL32(r0, 0xc0105500, &(0x7f0000000140)={0x7a, 0x7d, 0x1ff, 0x0, 0xfc, 0x7, 0x4020000a})
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
setresuid$auto(0x0, 0x0, 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x200002)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
iopl$auto(0x1)
poll$auto(&(0x7f0000003640)={r3, 0x7, 0x6}, 0x4, 0x100000)
openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$auto(0x3, 0x541b, 0x7f)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x800)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
sendfile$auto(r4, r4, 0x0, 0x200)
1.991882183s ago: executing program 1 (id=1272):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000040), 0x2002, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
clone$auto(0xffffffff00000000, 0x12, 0x0, 0x0, 0xfffffffffffffffd)
mmap$auto(0x0, 0x2020009, 0x10000000000000a, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(r0, 0x4b49, 0x9)
1.720455532s ago: executing program 3 (id=1273):
r0 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
sysfs$auto(0x2, 0x2, 0x0)
clock_nanosleep$auto(0x1f, 0x5c, 0x0, 0x0)
sendmsg$auto_NLBL_MGMT_C_LISTDEF(r1, 0x0, 0x200048d0)
unshare$auto(0x40000080)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
mbind$auto(0x8000, 0x7f, 0x2, &(0x7f0000000280)=0x20000000000000fb, 0x3, 0x1)
setsockopt$auto(0x3, 0x8, 0x21, 0x0, 0x9)
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x1010004)
writev$auto(0x1, 0x0, 0x1)
madvise$auto(0x0, 0x20200, 0x15)
1.171622992s ago: executing program 4 (id=1274):
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/wg2/drop_unicast_in_l2_multicast\x00', 0x40300, 0x0)
mmap$auto(0x0, 0x4020009, 0x0, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyxb\x00', 0x8dd7526b021612b6, 0x0)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_IOC_PR_REGISTER(r1, 0x401870c8, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x10000948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0xfffffffffffffffb, 0x80000005, 0x0, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000005540)='/dev/input/event2\x00', 0xa481, 0x0)
ioctl$auto_EVIOCSKEYCODE_V2(r2, 0x40284504, 0x0)
788.255806ms ago: executing program 3 (id=1275):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x20040894)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/tty/ptye4/power/runtime_suspended_time\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
socket(0x2, 0x80002, 0x73)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/usb_storage/parameters/delay_use\x00', 0x181942, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket(0x1d, 0x2, 0x6)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
read$auto(r3, 0x0, 0x6)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r5 = socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_nl802154(0x0, r2)
sendmsg$auto_NL802154_CMD_GET_SEC_KEY(r5, 0x0, 0x4040000)
r6 = getsockopt$auto(r5, 0x6, 0x12, 0xfffffffffffffffc, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x0, 0xfa9d, 0x8001, &(0x7f0000000300)=0xc9e, 0x400, 0x1)
unshare$auto(0x40000080)
write$auto_nsim_psample_enable_fops_psample(r6, &(0x7f0000000080)="4a847b050b2c13b7842af7c67af27a44788145fd9fa87213d6e30776912d1ba08a2be16a15dff6439444850e2c6564b94eb4a5a29a8fee4283a8adad25966721e4fd70b144fbbf4b0ac126e98c0a12b8640f5333f82fb75b17f7", 0x5a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
335.407658ms ago: executing program 5 (id=1277):
socket(0x2, 0x801, 0x100)
socket(0xa, 0x801, 0x84)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000a00)={0x2c, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/thread-self/net/sctp/remaddr\x00', 0x8200, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000b00)=""/147, 0x93)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x4, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002240)='/dev/cec17\x00', 0x181680, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(0x3, 0x0, 0x86873cbd, 0xa, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
capset$auto(0x0, 0x0)
socket(0xa, 0x5, 0x0)
334.04762ms ago: executing program 1 (id=1278):
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6})
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/wg2/drop_unicast_in_l2_multicast\x00', 0x40300, 0x0)
mmap$auto(0x0, 0x4020009, 0x0, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyxb\x00', 0x8dd7526b021612b6, 0x0)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0xf, 0x3, 0x2)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_IOC_PR_REGISTER(r1, 0x401870c8, &(0x7f00000000c0)={0xfffffffeffffffff, 0x5})
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x10000948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0xfffffffffffffffb, 0x80000005, 0x0, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x81, 0x9488, 0x4000009, 0x15f4da0a, 0x3, 0x3, 0x8000080, 0x1, 0x7, 0x100000006d3e, 0x0, 0x2, 0x2]}, 0x0)
unshare$auto(0x40000080)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/1:12/power/runtime_suspended_time\x00', 0x200, 0x0)
r2 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x68200, 0x0)
read$auto(r2, 0x0, 0x67)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000005540)='/dev/input/event2\x00', 0xa481, 0x0)
ioctl$auto_EVIOCSKEYCODE_V2(r3, 0x40284504, 0x0)
socket(0x22, 0x5, 0x86)
move_pages$auto(0x0, 0x8001, 0x0, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x810002, 0xffc, 0x15, 0x3, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x0)
0s ago: executing program 4 (id=1279):
capget$auto(0x0, 0xfffffffffffffffe)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
socket(0x2, 0x800, 0x106)
getcwd$auto(0x0, 0xffffffffffffffff)
inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(0x4, 0x0, 0x9)
getcwd$auto(0x0, 0xffffffffffffffff) (async)
inotify_add_watch$auto(0x4, 0x0, 0x9)
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x3, 0x0) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0xfffe, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
socket(0x23, 0x5, 0x20)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
getsockopt$auto(0xffffffffffffffff, 0x10d, 0x10, 0x0, &(0x7f0000000000)=0xb) (async)
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f00000024c0)='/dev/cec7\x00', 0x2000, 0x0)
ioctl$auto_CEC_G_MODE(r0, 0x80046108, &(0x7f0000002500)=0xff) (async)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000240)=""/4096, 0x1000) (async)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x9, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
connect$auto(0x3, 0x0, 0x54) (async)
sendto$auto(0x3, 0x0, 0x18, 0x101, 0x0, 0x1c)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) (async)
socket(0xa, 0x5, 0x2c)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
kernel console output (not intermixed with test programs):
28kB (UME) 16*256kB (UM) 4*512kB (UME) 7*1024kB (UME) 3*2048kB (UE) 943*4096kB (M) = 3902112kB
[ 505.503455][T11080] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 505.503490][T11080] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 505.503515][T11080] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 505.503537][T11080] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 505.503561][T11080] 78815 total pagecache pages
[ 505.503574][T11080] 1 pages in swap cache
[ 505.503585][T11080] Free swap = 124992kB
[ 505.503597][T11080] Total swap = 124996kB
[ 505.503610][T11080] 2097051 pages RAM
[ 505.503622][T11080] 0 pages HighMem/MovableOnly
[ 505.503633][T11080] 429591 pages reserved
[ 505.503644][T11080] 0 pages cma reserved
[ 506.339874][T11100] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1016'.
[ 506.369111][T11105] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1016'.
[ 506.390499][T11103] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1016'.
[ 507.083747][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 507.083826][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 509.211232][T11141] Invalid ELF header magic: != ELF
[ 512.057074][T11161] FAULT_INJECTION: forcing a failure.
[ 512.057074][T11161] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 512.081248][T11161] CPU: 0 UID: 0 PID: 11161 Comm: syz.3.1027 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 512.081309][T11161] Tainted: [U]=USER
[ 512.081320][T11161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 512.081336][T11161] Call Trace:
[ 512.081347][T11161] <TASK>
[ 512.081359][T11161] dump_stack_lvl+0x16c/0x1f0
[ 512.081405][T11161] should_fail_ex+0x512/0x640
[ 512.081446][T11161] should_fail_alloc_page+0xe7/0x130
[ 512.081491][T11161] prepare_alloc_pages+0x3c2/0x610
[ 512.081529][T11161] ? rcu_is_watching+0x12/0xc0
[ 512.081573][T11161] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 512.081634][T11161] ? __lock_acquire+0xaa4/0x1ba0
[ 512.081686][T11161] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 512.081747][T11161] ? __lock_acquire+0x5ca/0x1ba0
[ 512.081796][T11161] ? __lock_acquire+0x5ca/0x1ba0
[ 512.081839][T11161] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 512.081875][T11161] ? policy_nodemask+0xea/0x4e0
[ 512.081927][T11161] alloc_pages_mpol+0x1fb/0x550
[ 512.081956][T11161] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 512.081983][T11161] ? __lock_acquire+0x5ca/0x1ba0
[ 512.082030][T11161] folio_alloc_mpol_noprof+0x36/0x2f0
[ 512.082066][T11161] vma_alloc_folio_noprof+0xed/0x1e0
[ 512.082100][T11161] ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 512.082146][T11161] do_pte_missing+0x223d/0x3fb0
[ 512.082201][T11161] __handle_mm_fault+0x103d/0x2a40
[ 512.082251][T11161] ? __pfx___handle_mm_fault+0x10/0x10
[ 512.082289][T11161] ? __pte_offset_map_lock+0x155/0x2f0
[ 512.082323][T11161] ? find_held_lock+0x2b/0x80
[ 512.082357][T11161] ? find_held_lock+0x2b/0x80
[ 512.082415][T11161] handle_mm_fault+0x3fe/0xad0
[ 512.082471][T11161] __get_user_pages+0x771/0x36f0
[ 512.082516][T11161] ? __pfx_mt_find+0x10/0x10
[ 512.082561][T11161] ? __pfx___get_user_pages+0x10/0x10
[ 512.082612][T11161] populate_vma_page_range+0x278/0x3a0
[ 512.082653][T11161] ? __pfx_populate_vma_page_range+0x10/0x10
[ 512.082691][T11161] ? __pfx_find_vma_intersection+0x10/0x10
[ 512.082726][T11161] ? do_mmap+0x69c/0x11b0
[ 512.082763][T11161] __mm_populate+0x1d8/0x380
[ 512.082802][T11161] ? __pfx___mm_populate+0x10/0x10
[ 512.082841][T11161] ? up_write+0x1b2/0x520
[ 512.082875][T11161] vm_mmap_pgoff+0x362/0x450
[ 512.082912][T11161] ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 512.082954][T11161] ? __x64_sys_futex+0x1e0/0x4c0
[ 512.082993][T11161] ? __x64_sys_futex+0x1e9/0x4c0
[ 512.083039][T11161] ksys_mmap_pgoff+0x7d/0x5c0
[ 512.083072][T11161] ? rcu_is_watching+0x12/0xc0
[ 512.083110][T11161] __x64_sys_mmap+0x125/0x190
[ 512.083148][T11161] do_syscall_64+0xcd/0x260
[ 512.083193][T11161] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 512.083219][T11161] RIP: 0033:0x7f6462d8e169
[ 512.083245][T11161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 512.083274][T11161] RSP: 002b:00007f6463c09038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 512.083303][T11161] RAX: ffffffffffffffda RBX: 00007f6462fb5fa0 RCX: 00007f6462d8e169
[ 512.083323][T11161] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[ 512.083342][T11161] RBP: 00007f6462e10a68 R08: 0000000000000002 R09: 0000000000008000
[ 512.083359][T11161] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 512.083375][T11161] R13: 0000000000000000 R14: 00007f6462fb5fa0 R15: 00007ffd18204378
[ 512.083411][T11161] </TASK>
[ 514.179883][T11173] Invalid ELF header magic: != ELF
[ 514.346079][T11179] ubi: mtd0 is already attached to ubi0
[ 515.186848][T11196] Invalid ELF header magic: != ELF
[ 515.872226][T11199] random: crng reseeded on system resumption
[ 517.311014][T11218] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1037'.
[ 517.552233][T11218] netlink: 'syz.0.1037': attribute type 13 has an invalid length.
[ 517.986001][T11232] ubi: mtd0 is already attached to ubi0
[ 518.326869][T11238] FAULT_INJECTION: forcing a failure.
[ 518.326869][T11238] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 518.371121][T11238] CPU: 0 UID: 0 PID: 11238 Comm: syz.3.1044 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 518.371170][T11238] Tainted: [U]=USER
[ 518.371180][T11238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 518.371197][T11238] Call Trace:
[ 518.371217][T11238] <TASK>
[ 518.371229][T11238] dump_stack_lvl+0x16c/0x1f0
[ 518.371278][T11238] should_fail_ex+0x512/0x640
[ 518.371316][T11238] should_fail_alloc_page+0xe7/0x130
[ 518.371345][T11238] prepare_alloc_pages+0x3c2/0x610
[ 518.371378][T11238] ? rcu_is_watching+0x12/0xc0
[ 518.371416][T11238] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 518.371458][T11238] ? __kernel_text_address+0xd/0x40
[ 518.371495][T11238] ? unwind_get_return_address+0x59/0xa0
[ 518.371534][T11238] ? arch_stack_walk+0xa6/0x100
[ 518.371583][T11238] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 518.371628][T11238] ? stack_trace_save+0x8e/0xc0
[ 518.371667][T11238] ? __pfx_stack_trace_save+0x10/0x10
[ 518.371706][T11238] ? stack_depot_save_flags+0x28/0xa50
[ 518.371742][T11238] ? find_held_lock+0x2b/0x80
[ 518.371785][T11238] ? kasan_save_stack+0x42/0x60
[ 518.371833][T11238] ? __lock_acquire+0xaa4/0x1ba0
[ 518.371877][T11238] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 518.371912][T11238] ? policy_nodemask+0xea/0x4e0
[ 518.371962][T11238] alloc_pages_mpol+0x1fb/0x550
[ 518.371993][T11238] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 518.372019][T11238] ? __page_table_check_ptes_set+0x1ae/0x420
[ 518.372068][T11238] ? find_held_lock+0x2b/0x80
[ 518.372113][T11238] alloc_pages_noprof+0x131/0x390
[ 518.372142][T11238] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 518.372182][T11238] get_free_pages_noprof+0xc/0x40
[ 518.372222][T11238] kasan_populate_vmalloc_pte+0x2d/0x160
[ 518.372265][T11238] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 518.372307][T11238] __apply_to_page_range+0x5f9/0xd30
[ 518.372356][T11238] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 518.372405][T11238] ? __pfx___apply_to_page_range+0x10/0x10
[ 518.372444][T11238] ? alloc_vmap_area+0x872/0x2970
[ 518.372483][T11238] alloc_vmap_area+0x919/0x2970
[ 518.372534][T11238] ? __pfx_alloc_vmap_area+0x10/0x10
[ 518.372580][T11238] __get_vm_area_node+0x1a7/0x300
[ 518.372624][T11238] __vmalloc_node_range_noprof+0x277/0x1540
[ 518.372661][T11238] ? __do_sys_listmount+0x1c2/0xed0
[ 518.372709][T11238] ? __do_sys_listmount+0x1c2/0xed0
[ 518.372756][T11238] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 518.372811][T11238] __kvmalloc_node_noprof+0x2ff/0x600
[ 518.372858][T11238] ? __do_sys_listmount+0x1c2/0xed0
[ 518.372898][T11238] ? __do_sys_listmount+0x1c2/0xed0
[ 518.372944][T11238] ? __do_sys_listmount+0x1c2/0xed0
[ 518.372980][T11238] __do_sys_listmount+0x1c2/0xed0
[ 518.373027][T11238] ? __x64_sys_futex+0x1e0/0x4c0
[ 518.373069][T11238] ? __x64_sys_futex+0x1e9/0x4c0
[ 518.373112][T11238] ? __pfx___do_sys_listmount+0x10/0x10
[ 518.373152][T11238] ? xfd_validate_state+0x5d/0x180
[ 518.373210][T11238] do_syscall_64+0xcd/0x260
[ 518.373259][T11238] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 518.373291][T11238] RIP: 0033:0x7f6462d8e169
[ 518.373317][T11238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 518.373347][T11238] RSP: 002b:00007f6463be8038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 518.373377][T11238] RAX: ffffffffffffffda RBX: 00007f6462fb6080 RCX: 00007f6462d8e169
[ 518.373396][T11238] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 518.373414][T11238] RBP: 00007f6462e10a68 R08: 0000000000000000 R09: 0000000000000000
[ 518.373433][T11238] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 518.373451][T11238] R13: 0000000000000000 R14: 00007f6462fb6080 R15: 00007ffd18204378
[ 518.373489][T11238] </TASK>
[ 518.753290][ C0] vkms_vblank_simulate: vblank timer overrun
[ 518.762217][T11238] syz.3.1044: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 518.777808][T11238] CPU: 0 UID: 0 PID: 11238 Comm: syz.3.1044 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 518.777861][T11238] Tainted: [U]=USER
[ 518.777872][T11238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 518.777891][T11238] Call Trace:
[ 518.777902][T11238] <TASK>
[ 518.777914][T11238] dump_stack_lvl+0x16c/0x1f0
[ 518.777965][T11238] warn_alloc+0x248/0x3a0
[ 518.778013][T11238] ? __pfx_warn_alloc+0x10/0x10
[ 518.778061][T11238] ? kfree+0x2b6/0x4d0
[ 518.778110][T11238] ? __get_vm_area_node+0x1e5/0x300
[ 518.778155][T11238] __vmalloc_node_range_noprof+0xd31/0x1540
[ 518.778208][T11238] ? __do_sys_listmount+0x1c2/0xed0
[ 518.778267][T11238] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 518.778324][T11238] __kvmalloc_node_noprof+0x2ff/0x600
[ 518.778367][T11238] ? __do_sys_listmount+0x1c2/0xed0
[ 518.778408][T11238] ? __do_sys_listmount+0x1c2/0xed0
[ 518.778454][T11238] ? __do_sys_listmount+0x1c2/0xed0
[ 518.778490][T11238] __do_sys_listmount+0x1c2/0xed0
[ 518.778536][T11238] ? __x64_sys_futex+0x1e0/0x4c0
[ 518.778577][T11238] ? __x64_sys_futex+0x1e9/0x4c0
[ 518.778619][T11238] ? __pfx___do_sys_listmount+0x10/0x10
[ 518.778659][T11238] ? xfd_validate_state+0x5d/0x180
[ 518.778709][T11238] do_syscall_64+0xcd/0x260
[ 518.778757][T11238] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 518.778787][T11238] RIP: 0033:0x7f6462d8e169
[ 518.778814][T11238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 518.778843][T11238] RSP: 002b:00007f6463be8038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 518.778874][T11238] RAX: ffffffffffffffda RBX: 00007f6462fb6080 RCX: 00007f6462d8e169
[ 518.778893][T11238] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 518.778911][T11238] RBP: 00007f6462e10a68 R08: 0000000000000000 R09: 0000000000000000
[ 518.778929][T11238] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 518.778946][T11238] R13: 0000000000000000 R14: 00007f6462fb6080 R15: 00007ffd18204378
[ 518.778984][T11238] </TASK>
[ 518.778995][T11238] Mem-Info:
[ 518.939085][ C0] vkms_vblank_simulate: vblank timer overrun
[ 519.001952][T11238] active_anon:64766 inactive_anon:16923 isolated_anon:0
[ 519.001952][T11238] active_file:16384 inactive_file:38965 isolated_file:0
[ 519.001952][T11238] unevictable:768 dirty:536 writeback:0
[ 519.001952][T11238] slab_reclaimable:10706 slab_unreclaimable:96042
[ 519.001952][T11238] mapped:32963 shmem:70100 pagetables:1361
[ 519.001952][T11238] sec_pagetables:0 bounce:0
[ 519.001952][T11238] kernel_misc_reclaimable:0
[ 519.001952][T11238] free:1262513 free_pcp:1002 free_cma:0
[ 519.048127][ C0] vkms_vblank_simulate: vblank timer overrun
[ 519.054547][T11238] Node 0 active_anon:259864kB inactive_anon:67188kB active_file:65536kB inactive_file:155788kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:131852kB dirty:2140kB writeback:0kB shmem:277912kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB writeback_tmp:0kB kernel_stack:10988kB pagetables:5344kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 519.089095][ C0] vkms_vblank_simulate: vblank timer overrun
[ 519.096324][T11238] Node 1 active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:2388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 519.127542][ C0] vkms_vblank_simulate: vblank timer overrun
[ 519.134131][T11238] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 519.161305][ C0] vkms_vblank_simulate: vblank timer overrun
[ 519.211542][T11238] lowmem_reserve[]: 0 2482 2483 2483 2483
[ 519.221118][T11238] Node 0 DMA32 free:1131452kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:267420kB inactive_anon:59088kB active_file:63936kB inactive_file:154220kB unevictable:1536kB writepending:2140kB present:3129332kB managed:2541672kB mlocked:0kB bounce:0kB free_pcp:6236kB local_pcp:5240kB free_cma:0kB
[ 519.323064][T11238] lowmem_reserve[]: 0 0 1 1 1
[ 519.327982][T11238] Node 0 Normal free:24kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 519.355747][ C0] vkms_vblank_simulate: vblank timer overrun
[ 519.542714][T11238] lowmem_reserve[]: 0 0 0 0 0
[ 519.542781][T11238] Node 1 Normal free:3902984kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 519.542857][T11238] lowmem_reserve[]: 0 0 0 0 0
[ 519.542962][T11238] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 519.543150][T11238] Node 0 DMA32: 1045*4kB (UM) 674*8kB (UE) 465*16kB (UME) 273*32kB (UME) 173*64kB (UME) 100*128kB (UM) 66*256kB (UME) 42*512kB (UME) 41*1024kB (UME) 17*2048kB (UM) 236*4096kB (M) = 1131476kB
[ 519.543412][T11238] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[ 519.543609][T11238] Node 1 Normal: 214*4kB (UM) 86*8kB (UME) 52*16kB (UME) 206*32kB (UME) 86*64kB (UME) 35*128kB (UME) 16*256kB (UM) 2*512kB (UE) 6*1024kB (UME) 3*2048kB (UE) 944*4096kB (M) = 3902984kB
[ 519.547474][T11238] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 519.547501][T11238] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 519.547526][T11238] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 519.547550][T11238] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 519.547574][T11238] 125547 total pagecache pages
[ 519.547586][T11238] 21 pages in swap cache
[ 519.547598][T11238] Free swap = 60168kB
[ 519.547610][T11238] Total swap = 124996kB
[ 519.547623][T11238] 2097051 pages RAM
[ 519.547635][T11238] 0 pages HighMem/MovableOnly
[ 519.547646][T11238] 429591 pages reserved
[ 519.547657][T11238] 0 pages cma reserved
[ 519.747815][ C0] vkms_vblank_simulate: vblank timer overrun
[ 521.471123][T11274] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1051'.
[ 521.487438][T11274] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1051'.
[ 521.533906][T11274] netlink: 218 bytes leftover after parsing attributes in process `syz.1.1051'.
[ 523.810862][T11299] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 523.848881][T11299] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 523.889940][T11302] program syz.2.1058 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 524.993116][T11329] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1062'.
[ 525.161973][T11333] ubi: mtd0 is already attached to ubi0
[ 525.954478][T11347] Invalid ELF header magic: != ELF
[ 528.061808][T11376] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1073'.
[ 528.716149][T11383] zram: Added device: zram1
[ 529.188286][T11392] FAULT_INJECTION: forcing a failure.
[ 529.188286][T11392] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 529.336832][T11392] CPU: 0 UID: 0 PID: 11392 Comm: syz.3.1078 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 529.336865][T11392] Tainted: [U]=USER
[ 529.336872][T11392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 529.336883][T11392] Call Trace:
[ 529.336890][T11392] <TASK>
[ 529.336897][T11392] dump_stack_lvl+0x16c/0x1f0
[ 529.336940][T11392] should_fail_ex+0x512/0x640
[ 529.336977][T11392] should_fail_alloc_page+0xe7/0x130
[ 529.337010][T11392] prepare_alloc_pages+0x3c2/0x610
[ 529.337036][T11392] ? rcu_is_watching+0x12/0xc0
[ 529.337061][T11392] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 529.337089][T11392] ? __kernel_text_address+0xd/0x40
[ 529.337110][T11392] ? unwind_get_return_address+0x59/0xa0
[ 529.337134][T11392] ? arch_stack_walk+0xa6/0x100
[ 529.337164][T11392] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 529.337191][T11392] ? stack_trace_save+0x8e/0xc0
[ 529.337223][T11392] ? __pfx_stack_trace_save+0x10/0x10
[ 529.337246][T11392] ? stack_depot_save_flags+0x28/0xa50
[ 529.337266][T11392] ? find_held_lock+0x2b/0x80
[ 529.337291][T11392] ? kasan_save_stack+0x42/0x60
[ 529.337324][T11392] ? __lock_acquire+0xaa4/0x1ba0
[ 529.337349][T11392] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 529.337370][T11392] ? policy_nodemask+0xea/0x4e0
[ 529.337399][T11392] alloc_pages_mpol+0x1fb/0x550
[ 529.337417][T11392] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 529.337432][T11392] ? __page_table_check_ptes_set+0x1ae/0x420
[ 529.337462][T11392] ? find_held_lock+0x2b/0x80
[ 529.337487][T11392] alloc_pages_noprof+0x131/0x390
[ 529.337505][T11392] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 529.337528][T11392] get_free_pages_noprof+0xc/0x40
[ 529.337546][T11392] kasan_populate_vmalloc_pte+0x2d/0x160
[ 529.337571][T11392] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 529.337595][T11392] __apply_to_page_range+0x5f9/0xd30
[ 529.337619][T11392] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 529.337648][T11392] ? __pfx___apply_to_page_range+0x10/0x10
[ 529.337670][T11392] ? alloc_vmap_area+0x872/0x2970
[ 529.337693][T11392] alloc_vmap_area+0x919/0x2970
[ 529.337721][T11392] ? __pfx_alloc_vmap_area+0x10/0x10
[ 529.337747][T11392] __get_vm_area_node+0x1a7/0x300
[ 529.337773][T11392] __vmalloc_node_range_noprof+0x277/0x1540
[ 529.337796][T11392] ? __do_sys_listmount+0x1c2/0xed0
[ 529.337827][T11392] ? __do_sys_listmount+0x1c2/0xed0
[ 529.337855][T11392] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 529.337886][T11392] __kvmalloc_node_noprof+0x2ff/0x600
[ 529.337911][T11392] ? __do_sys_listmount+0x1c2/0xed0
[ 529.337935][T11392] ? __do_sys_listmount+0x1c2/0xed0
[ 529.337961][T11392] ? __do_sys_listmount+0x1c2/0xed0
[ 529.337983][T11392] __do_sys_listmount+0x1c2/0xed0
[ 529.338010][T11392] ? __x64_sys_futex+0x1e0/0x4c0
[ 529.338034][T11392] ? __x64_sys_futex+0x1e9/0x4c0
[ 529.338072][T11392] ? __pfx___do_sys_listmount+0x10/0x10
[ 529.338108][T11392] ? xfd_validate_state+0x5d/0x180
[ 529.338148][T11392] do_syscall_64+0xcd/0x260
[ 529.338177][T11392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 529.338195][T11392] RIP: 0033:0x7f6462d8e169
[ 529.338219][T11392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 529.338237][T11392] RSP: 002b:00007f6463bc7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 529.338255][T11392] RAX: ffffffffffffffda RBX: 00007f6462fb6160 RCX: 00007f6462d8e169
[ 529.338267][T11392] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 529.338279][T11392] RBP: 00007f6462e10a68 R08: 0000000000000000 R09: 0000000000000000
[ 529.338290][T11392] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 529.338301][T11392] R13: 0000000000000000 R14: 00007f6462fb6160 R15: 00007ffd18204378
[ 529.338323][T11392] </TASK>
[ 529.717243][ C0] vkms_vblank_simulate: vblank timer overrun
[ 529.737209][T11392] syz.3.1078: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 529.763811][T11392] CPU: 0 UID: 0 PID: 11392 Comm: syz.3.1078 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 529.763870][T11392] Tainted: [U]=USER
[ 529.763880][T11392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 529.763899][T11392] Call Trace:
[ 529.763910][T11392] <TASK>
[ 529.763923][T11392] dump_stack_lvl+0x16c/0x1f0
[ 529.763972][T11392] warn_alloc+0x248/0x3a0
[ 529.764017][T11392] ? __pfx_warn_alloc+0x10/0x10
[ 529.764061][T11392] ? kfree+0x2b6/0x4d0
[ 529.764104][T11392] ? __get_vm_area_node+0x1e5/0x300
[ 529.764147][T11392] __vmalloc_node_range_noprof+0xd31/0x1540
[ 529.764196][T11392] ? __do_sys_listmount+0x1c2/0xed0
[ 529.764255][T11392] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 529.764311][T11392] __kvmalloc_node_noprof+0x2ff/0x600
[ 529.764354][T11392] ? __do_sys_listmount+0x1c2/0xed0
[ 529.764395][T11392] ? __do_sys_listmount+0x1c2/0xed0
[ 529.764441][T11392] ? __do_sys_listmount+0x1c2/0xed0
[ 529.764478][T11392] __do_sys_listmount+0x1c2/0xed0
[ 529.764525][T11392] ? __x64_sys_futex+0x1e0/0x4c0
[ 529.764566][T11392] ? __x64_sys_futex+0x1e9/0x4c0
[ 529.764607][T11392] ? __pfx___do_sys_listmount+0x10/0x10
[ 529.764647][T11392] ? xfd_validate_state+0x5d/0x180
[ 529.764695][T11392] do_syscall_64+0xcd/0x260
[ 529.764738][T11392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 529.764767][T11392] RIP: 0033:0x7f6462d8e169
[ 529.764793][T11392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 529.764822][T11392] RSP: 002b:00007f6463bc7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 529.764849][T11392] RAX: ffffffffffffffda RBX: 00007f6462fb6160 RCX: 00007f6462d8e169
[ 529.764866][T11392] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 529.764884][T11392] RBP: 00007f6462e10a68 R08: 0000000000000000 R09: 0000000000000000
[ 529.764902][T11392] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 529.764920][T11392] R13: 0000000000000000 R14: 00007f6462fb6160 R15: 00007ffd18204378
[ 529.764959][T11392] </TASK>
[ 529.764971][T11392] Mem-Info:
[ 529.989573][T11392] active_anon:53297 inactive_anon:28291 isolated_anon:0
[ 529.989573][T11392] active_file:15639 inactive_file:38969 isolated_file:0
[ 529.989573][T11392] unevictable:768 dirty:587 writeback:0
[ 529.989573][T11392] slab_reclaimable:10786 slab_unreclaimable:95798
[ 529.989573][T11392] mapped:31734 shmem:70706 pagetables:1378
[ 529.989573][T11392] sec_pagetables:0 bounce:0
[ 529.989573][T11392] kernel_misc_reclaimable:0
[ 529.989573][T11392] free:1261618 free_pcp:635 free_cma:0
[ 530.036295][ C0] vkms_vblank_simulate: vblank timer overrun
[ 530.046807][T11392] Node 0 active_anon:217588kB inactive_anon:108860kB active_file:62556kB inactive_file:155804kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:126936kB dirty:2348kB writeback:0kB shmem:280436kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10892kB pagetables:5512kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 530.046937][T11392] Node 1 active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:2388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 530.047009][T11392] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 530.047088][T11392] lowmem_reserve[]: 0 2482 2483 2483 2483
[ 530.047148][T11392] Node 0 DMA32 free:1127680kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:217544kB inactive_anon:108860kB active_file:62556kB inactive_file:154236kB unevictable:1536kB writepending:2348kB present:3129332kB managed:2541672kB mlocked:0kB bounce:0kB free_pcp:2796kB local_pcp:1996kB free_cma:0kB
[ 530.047238][T11392] lowmem_reserve[]: 0 0 1 1 1
[ 530.047293][T11392] Node 0 Normal free:24kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 530.047368][T11392] lowmem_reserve[]: 0 0 0 0 0
[ 530.047424][T11392] Node 1 Normal free:3902984kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 530.047500][T11392] lowmem_reserve[]: 0 0 0 0 0
[ 530.047555][T11392] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 530.047734][T11392] Node 0 DMA32: 309*4kB (UM) 785*8kB (UME) 514*16kB (UME) 188*32kB (UME) 163*64kB (UME) 102*128kB (UME) 74*256kB (UME) 51*512kB (UME) 47*1024kB (UME) 19*2048kB (UM) 232*4096kB (UM) = 1127612kB
[ 530.047989][T11392] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[ 530.048161][T11392] Node 1 Normal: 214*4kB (UM) 86*8kB (UME) 52*16kB (UME) 206*32kB (UME) 86*64kB (UME) 35*128kB (UME) 16*256kB (UM) 2*512kB (UE) 6*1024kB (UME) 3*2048kB (UE) 944*4096kB (M) = 3902984kB
[ 530.048425][T11392] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 530.048450][T11392] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 530.048473][T11392] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 530.048497][T11392] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 530.048522][T11392] 125555 total pagecache pages
[ 530.048535][T11392] 240 pages in swap cache
[ 530.048546][T11392] Free swap = 18912kB
[ 530.048558][T11392] Total swap = 124996kB
[ 530.048570][T11392] 2097051 pages RAM
[ 530.048581][T11392] 0 pages HighMem/MovableOnly
[ 530.048593][T11392] 429591 pages reserved
[ 530.048604][T11392] 0 pages cma reserved
[ 530.276807][T11399] FAULT_INJECTION: forcing a failure.
[ 530.276807][T11399] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 530.276857][T11399] CPU: 1 UID: 0 PID: 11399 Comm: syz.1.1079 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 530.276899][T11399] Tainted: [U]=USER
[ 530.276908][T11399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 530.276926][T11399] Call Trace:
[ 530.276937][T11399] <TASK>
[ 530.276949][T11399] dump_stack_lvl+0x16c/0x1f0
[ 530.276997][T11399] should_fail_ex+0x512/0x640
[ 530.277037][T11399] should_fail_alloc_page+0xe7/0x130
[ 530.277066][T11399] prepare_alloc_pages+0x3c2/0x610
[ 530.277099][T11399] ? rcu_is_watching+0x12/0xc0
[ 530.277138][T11399] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 530.277181][T11399] ? __kernel_text_address+0xd/0x40
[ 530.277225][T11399] ? unwind_get_return_address+0x59/0xa0
[ 530.277269][T11399] ? __pfx___schedule+0x10/0x10
[ 530.277307][T11399] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 530.277351][T11399] ? __pfx_stack_trace_save+0x10/0x10
[ 530.277388][T11399] ? stack_depot_save_flags+0x28/0xa50
[ 530.277427][T11399] ? irqentry_exit+0x3b/0x90
[ 530.277460][T11399] ? lockdep_hardirqs_on+0x7c/0x110
[ 530.277503][T11399] ? __lock_acquire+0xaa4/0x1ba0
[ 530.277542][T11399] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 530.277576][T11399] ? policy_nodemask+0xea/0x4e0
[ 530.277623][T11399] alloc_pages_mpol+0x1fb/0x550
[ 530.277653][T11399] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 530.277677][T11399] ? __page_table_check_ptes_set+0x1ae/0x420
[ 530.277722][T11399] ? find_held_lock+0x2b/0x80
[ 530.277764][T11399] alloc_pages_noprof+0x131/0x390
[ 530.277790][T11399] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 530.277827][T11399] get_free_pages_noprof+0xc/0x40
[ 530.277856][T11399] kasan_populate_vmalloc_pte+0x2d/0x160
[ 530.277896][T11399] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 530.277933][T11399] __apply_to_page_range+0x5f9/0xd30
[ 530.277972][T11399] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 530.278016][T11399] ? __pfx___apply_to_page_range+0x10/0x10
[ 530.278053][T11399] ? alloc_vmap_area+0x872/0x2970
[ 530.278091][T11399] alloc_vmap_area+0x919/0x2970
[ 530.278139][T11399] ? __pfx_alloc_vmap_area+0x10/0x10
[ 530.278184][T11399] __get_vm_area_node+0x1a7/0x300
[ 530.278235][T11399] __vmalloc_node_range_noprof+0x277/0x1540
[ 530.278274][T11399] ? __do_sys_listmount+0x1c2/0xed0
[ 530.278324][T11399] ? __do_sys_listmount+0x1c2/0xed0
[ 530.278370][T11399] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 530.278424][T11399] __kvmalloc_node_noprof+0x2ff/0x600
[ 530.278461][T11399] ? __do_sys_listmount+0x1c2/0xed0
[ 530.278498][T11399] ? __do_sys_listmount+0x1c2/0xed0
[ 530.278538][T11399] ? __do_sys_listmount+0x1c2/0xed0
[ 530.278571][T11399] __do_sys_listmount+0x1c2/0xed0
[ 530.278613][T11399] ? __x64_sys_futex+0x1e0/0x4c0
[ 530.278649][T11399] ? __x64_sys_futex+0x1e9/0x4c0
[ 530.278687][T11399] ? __pfx___do_sys_listmount+0x10/0x10
[ 530.278721][T11399] ? xfd_validate_state+0x5d/0x180
[ 530.278767][T11399] do_syscall_64+0xcd/0x260
[ 530.278808][T11399] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 530.278834][T11399] RIP: 0033:0x7f357b18e169
[ 530.278859][T11399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 530.278885][T11399] RSP: 002b:00007f357bfca038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 530.278914][T11399] RAX: ffffffffffffffda RBX: 00007f357b3b6160 RCX: 00007f357b18e169
[ 530.278936][T11399] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 530.278953][T11399] RBP: 00007f357b210a68 R08: 0000000000000000 R09: 0000000000000000
[ 530.278972][T11399] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 530.278988][T11399] R13: 0000000000000000 R14: 00007f357b3b6160 R15: 00007ffc08854048
[ 530.279026][T11399] </TASK>
[ 530.321118][T11401] FAULT_INJECTION: forcing a failure.
[ 530.321118][T11401] name failslab, interval 1, probability 0, space 0, times 0
[ 530.321191][T11401] CPU: 0 UID: 0 PID: 11401 Comm: syz.2.1080 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 530.321237][T11401] Tainted: [U]=USER
[ 530.321248][T11401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 530.321267][T11401] Call Trace:
[ 530.321278][T11401] <TASK>
[ 530.321291][T11401] dump_stack_lvl+0x16c/0x1f0
[ 530.321334][T11401] should_fail_ex+0x512/0x640
[ 530.321367][T11401] ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 530.321414][T11401] should_failslab+0xc2/0x120
[ 530.321442][T11401] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 530.321491][T11401] ? __proc_create+0xc3/0x8c0
[ 530.321516][T11401] ? __proc_create+0x2ce/0x8c0
[ 530.321543][T11401] __proc_create+0x2ce/0x8c0
[ 530.321568][T11401] ? __pfx___proc_create+0x10/0x10
[ 530.321598][T11401] ? _raw_write_unlock+0x28/0x50
[ 530.321628][T11401] ? proc_register+0x314/0x5f0
[ 530.321663][T11401] proc_create_reg+0x7d/0x180
[ 530.321693][T11401] proc_create_data+0x86/0x110
[ 530.321720][T11401] ? __pfx_proc_create_data+0x10/0x10
[ 530.321749][T11401] ? cache_register_net+0x137/0x5e0
[ 530.321783][T11401] cache_register_net+0x2d6/0x5e0
[ 530.321814][T11401] unix_gid_cache_create+0x8b/0x130
[ 530.321842][T11401] ? __pfx_sunrpc_init_net+0x10/0x10
[ 530.321863][T11401] sunrpc_init_net+0x71/0x190
[ 530.321885][T11401] ops_init+0x1df/0x5f0
[ 530.321921][T11401] setup_net+0x21e/0x850
[ 530.321955][T11401] ? __pfx_setup_net+0x10/0x10
[ 530.321984][T11401] ? lockdep_init_map_type+0x5c/0x280
[ 530.322006][T11401] ? __pfx_down_read_killable+0x10/0x10
[ 530.322032][T11401] ? debug_mutex_init+0x37/0x70
[ 530.322064][T11401] copy_net_ns+0x2a6/0x5f0
[ 530.322100][T11401] create_new_namespaces+0x3ea/0xad0
[ 530.322140][T11401] unshare_nsproxy_namespaces+0xc0/0x1f0
[ 530.322175][T11401] ksys_unshare+0x45b/0xa40
[ 530.322210][T11401] ? __pfx_ksys_unshare+0x10/0x10
[ 530.322242][T11401] ? xfd_validate_state+0x5d/0x180
[ 530.322269][T11401] ? rcu_is_watching+0x12/0xc0
[ 530.322305][T11401] __x64_sys_unshare+0x31/0x40
[ 530.322338][T11401] do_syscall_64+0xcd/0x260
[ 530.322373][T11401] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 530.322396][T11401] RIP: 0033:0x7fa47418e169
[ 530.322415][T11401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 530.322438][T11401] RSP: 002b:00007fa4750cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 530.322470][T11401] RAX: ffffffffffffffda RBX: 00007fa4743b5fa0 RCX: 00007fa47418e169
[ 530.322486][T11401] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 530.322501][T11401] RBP: 00007fa474210a68 R08: 0000000000000000 R09: 0000000000000000
[ 530.322515][T11401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 530.322528][T11401] R13: 0000000000000000 R14: 00007fa4743b5fa0 R15: 00007ffeb74150c8
[ 530.322560][T11401] </TASK>
[ 530.765637][ C0] vkms_vblank_simulate: vblank timer overrun
[ 530.852903][ C0] vkms_vblank_simulate: vblank timer overrun
[ 530.928947][ C0] vkms_vblank_simulate: vblank timer overrun
[ 530.996319][ C0] vkms_vblank_simulate: vblank timer overrun
[ 531.062050][ C0] vkms_vblank_simulate: vblank timer overrun
[ 531.126252][ C0] vkms_vblank_simulate: vblank timer overrun
[ 531.290397][ C0] vkms_vblank_simulate: vblank timer overrun
[ 533.211463][T11422] Invalid ELF header magic: != ELF
[ 533.462753][T11058] Bluetooth: hci1: Unable to find connection for big 0xd2
[ 535.655792][T11430] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1086'.
[ 537.776785][T11415] syz.0.1082 (11415) used greatest stack depth: 20840 bytes left
[ 539.137994][T11506] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 539.918517][T11433] warn_alloc: 1 callbacks suppressed
[ 539.918544][T11433] syz.0.1082: vmalloc error: size 8003584, failed to allocated page array size 15632, mode:0x400cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 539.942880][T11433] CPU: 0 UID: 0 PID: 11433 Comm: syz.0.1082 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 539.942929][T11433] Tainted: [U]=USER
[ 539.942940][T11433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 539.942956][T11433] Call Trace:
[ 539.942966][T11433] <TASK>
[ 539.942978][T11433] dump_stack_lvl+0x16c/0x1f0
[ 539.943026][T11433] warn_alloc+0x248/0x3a0
[ 539.943073][T11433] ? __pfx_warn_alloc+0x10/0x10
[ 539.943130][T11433] ? __get_vm_area_node+0x1b9/0x300
[ 539.943165][T11433] ? __get_vm_area_node+0x1e5/0x300
[ 539.943298][T11433] __vmalloc_node_range_noprof+0x1110/0x1540
[ 539.943350][T11433] ? __do_sys_listmount+0x1c2/0xed0
[ 539.943398][T11433] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 539.943451][T11433] __kvmalloc_node_noprof+0x2ff/0x600
[ 539.943495][T11433] ? __do_sys_listmount+0x1c2/0xed0
[ 539.943535][T11433] ? __do_sys_listmount+0x1c2/0xed0
[ 539.943579][T11433] ? __do_sys_listmount+0x1c2/0xed0
[ 539.943615][T11433] __do_sys_listmount+0x1c2/0xed0
[ 539.943662][T11433] ? __x64_sys_futex+0x1e0/0x4c0
[ 539.943702][T11433] ? __x64_sys_futex+0x1e9/0x4c0
[ 539.943744][T11433] ? __pfx___do_sys_listmount+0x10/0x10
[ 539.943783][T11433] ? xfd_validate_state+0x5d/0x180
[ 539.943833][T11433] do_syscall_64+0xcd/0x260
[ 539.943880][T11433] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 539.943910][T11433] RIP: 0033:0x7f1e6938e169
[ 539.943936][T11433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 539.943965][T11433] RSP: 002b:00007f1e6a271038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 539.943993][T11433] RAX: ffffffffffffffda RBX: 00007f1e695b6160 RCX: 00007f1e6938e169
[ 539.944012][T11433] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 539.944030][T11433] RBP: 00007f1e69410a68 R08: 0000000000000000 R09: 0000000000000000
[ 539.944048][T11433] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 539.944065][T11433] R13: 0000000000000000 R14: 00007f1e695b6160 R15: 00007ffcab3b9478
[ 539.944103][T11433] </TASK>
[ 539.944114][T11433] Mem-Info:
[ 540.501462][T11433] active_anon:33034 inactive_anon:56124 isolated_anon:0
[ 540.501462][T11433] active_file:9585 inactive_file:39010 isolated_file:0
[ 540.501462][T11433] unevictable:768 dirty:57 writeback:0
[ 540.501462][T11433] slab_reclaimable:10763 slab_unreclaimable:95655
[ 540.501462][T11433] mapped:26938 shmem:77064 pagetables:1402
[ 540.501462][T11433] sec_pagetables:0 bounce:0
[ 540.501462][T11433] kernel_misc_reclaimable:0
[ 540.501462][T11433] free:1260467 free_pcp:1045 free_cma:0
[ 540.547731][ C1] vkms_vblank_simulate: vblank timer overrun
[ 540.589511][T11053] syz.0.1007 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 540.609966][T11523] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1097'.
[ 540.620770][T11433] Node 0 active_anon:130600kB inactive_anon:226032kB active_file:38340kB inactive_file:155968kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:107752kB dirty:228kB writeback:0kB shmem:305868kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11652kB pagetables:5608kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 540.640330][T11053] CPU: 1 UID: 0 PID: 11053 Comm: syz.0.1007 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 540.640373][T11053] Tainted: [U]=USER
[ 540.640382][T11053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 540.640396][T11053] Call Trace:
[ 540.640406][T11053] <TASK>
[ 540.640416][T11053] dump_stack_lvl+0x16c/0x1f0
[ 540.640474][T11053] dump_header+0x101/0x930
[ 540.640506][T11053] oom_kill_process+0x270/0xa60
[ 540.640531][T11053] ? mem_cgroup_out_of_memory+0x8c/0x270
[ 540.640568][T11053] out_of_memory+0x350/0x1700
[ 540.640594][T11053] ? __lock_acquire+0xaa4/0x1ba0
[ 540.640639][T11053] ? __pfx_out_of_memory+0x10/0x10
[ 540.640676][T11053] mem_cgroup_out_of_memory+0x205/0x270
[ 540.640707][T11053] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 540.640747][T11053] ? do_raw_spin_unlock+0x172/0x230
[ 540.640783][T11053] try_charge_memcg+0x8ca/0xfa0
[ 540.640814][T11053] ? __pfx_try_charge_memcg+0x10/0x10
[ 540.640839][T11053] ? __print_lock_name+0xd1/0xe0
[ 540.640871][T11053] ? rcu_read_unlock+0x17/0x60
[ 540.640906][T11053] charge_memcg+0x8a/0x230
[ 540.640932][T11053] __mem_cgroup_charge+0x2b/0x1e0
[ 540.640962][T11053] shmem_alloc_and_add_folio+0x514/0xc20
[ 540.641010][T11053] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 540.641053][T11053] ? shmem_allowable_huge_orders+0xcb/0x2f0
[ 540.641099][T11053] shmem_get_folio_gfp+0x687/0x1530
[ 540.641143][T11053] ? __lock_acquire+0xaa4/0x1ba0
[ 540.641181][T11053] ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 540.641221][T11053] ? __pte_offset_map_lock+0x155/0x2f0
[ 540.641255][T11053] shmem_write_begin+0x160/0x300
[ 540.641298][T11053] ? __pfx_shmem_write_begin+0x10/0x10
[ 540.641339][T11053] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[ 540.641371][T11053] ? __pfx_timestamp_truncate+0x10/0x10
[ 540.641415][T11053] generic_perform_write+0x3cd/0x930
[ 540.641473][T11053] ? __pfx_generic_perform_write+0x10/0x10
[ 540.641514][T11053] ? inode_needs_update_time.part.0+0x191/0x270
[ 540.641549][T11053] shmem_file_write_iter+0x10e/0x140
[ 540.641581][T11053] ? __pfx_shmem_file_write_iter+0x10/0x10
[ 540.641607][T11053] __kernel_write_iter+0x317/0xa90
[ 540.641645][T11053] ? __pfx___kernel_write_iter+0x10/0x10
[ 540.641678][T11053] ? __up_read+0x1f8/0x750
[ 540.641711][T11053] ? dump_user_range+0x73d/0xb30
[ 540.641752][T11053] dump_user_range+0x418/0xb30
[ 540.641794][T11053] ? __pfx_dump_user_range+0x10/0x10
[ 540.641830][T11053] ? elf_coredump_extra_notes_write+0xbd/0x430
[ 540.641869][T11053] ? __pfx_writenote+0x10/0x10
[ 540.641914][T11053] elf_core_dump+0x288a/0x3a90
[ 540.641969][T11053] ? __pfx_elf_core_dump+0x10/0x10
[ 540.642003][T11053] ? kasan_save_stack+0x42/0x60
[ 540.642036][T11053] ? kasan_save_stack+0x33/0x60
[ 540.642069][T11053] ? kasan_save_track+0x14/0x30
[ 540.642101][T11053] ? __kasan_kmalloc+0xaa/0xb0
[ 540.642133][T11053] ? do_coredump+0x17aa/0x4480
[ 540.642163][T11053] ? get_signal+0x22e3/0x26d0
[ 540.642193][T11053] ? arch_do_signal_or_restart+0x8f/0x7d0
[ 540.642238][T11053] ? 0xffffffffff600000
[ 540.642324][T11053] ? do_coredump+0x3183/0x4480
[ 540.642353][T11053] do_coredump+0x3183/0x4480
[ 540.642399][T11053] ? __pfx_do_coredump+0x10/0x10
[ 540.642428][T11053] ? __pfx___cant_migrate+0x10/0x10
[ 540.642474][T11053] ? do_raw_spin_unlock+0x172/0x230
[ 540.642504][T11053] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 540.642537][T11053] ? stack_depot_save_flags+0x3e6/0xa50
[ 540.642580][T11053] ? __kasan_slab_free+0x51/0x70
[ 540.642615][T11053] ? kmem_cache_free+0x2d4/0x4d0
[ 540.642647][T11053] ? __sigqueue_free+0xba/0x2a0
[ 540.642668][T11053] ? get_signal+0xcba/0x26d0
[ 540.642698][T11053] ? arch_do_signal_or_restart+0x8f/0x7d0
[ 540.642786][T11053] ? proc_coredump_connector+0x2d1/0x4f0
[ 540.642817][T11053] ? __pfx_proc_coredump_connector+0x10/0x10
[ 540.642857][T11053] ? rcu_is_watching+0x12/0xc0
[ 540.642893][T11053] get_signal+0x22e3/0x26d0
[ 540.642941][T11053] ? __pfx_get_signal+0x10/0x10
[ 540.642986][T11053] arch_do_signal_or_restart+0x8f/0x7d0
[ 540.643025][T11053] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 540.643071][T11053] ? trace_irq_disable.constprop.0+0xd4/0x120
[ 540.643098][T11053] ? do_error_trap+0x214/0x240
[ 540.643143][T11053] irqentry_exit_to_user_mode+0x13f/0x280
[ 540.643180][T11053] asm_exc_invalid_op+0x1a/0x20
[ 540.643204][T11053] RIP: 0033:0x14
[ 540.643223][T11053] Code: Unable to access opcode bytes at 0xffffffffffffffea.
[ 540.643235][T11053] RSP: 002b:000000000000000f EFLAGS: 00010202
[ 540.643256][T11053] RAX: 0000000000000000 RBX: 00007f1e695b6080 RCX: 00007f1e6938e169
[ 540.643273][T11053] RDX: 9999999999999999 RSI: 0000000000000007 RDI: 0000000000000021
[ 540.643289][T11053] RBP: 00007f1e69410a68 R08: 0000000000000006 R09: 0000000000000000
[ 540.643306][T11053] R10: ffffffff81000000 R11: 0000000000000246 R12: 0000000000000000
[ 540.643322][T11053] R13: 0000000000000000 R14: 00007f1e695b6080 R15: 00007ffcab3b9478
[ 540.643345][T11053] ? 0xffffffff81000000
[ 540.643375][T11053] </TASK>
[ 540.645200][T11053] memory: usage 307200kB, limit 307200kB, failcnt 21561
[ 541.343116][T11053] memory+swap: usage 432196kB, limit 9007199254740988kB, failcnt 0
[ 541.403341][T11053] kmem: usage 4396kB, limit 9007199254740988kB, failcnt 0
[ 541.410633][T11053] Memory cgroup stats for /syz0:
[ 541.410872][T11053] cache 309866496
[ 541.429240][T11433] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:2388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 541.546833][T11053] rss 204800
[ 541.572990][T11053] rss_huge 0
[ 541.600237][T11053] shmem 309825536
[ 541.661278][T11053] mapped_file 8192
[ 541.679724][T11053] dirty 0
[ 541.727895][T11053] writeback 0
[ 541.766373][T11433] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 541.793609][ C1] vkms_vblank_simulate: vblank timer overrun
[ 541.801245][T11053] workingset_refault_anon 5033
[ 541.810040][T11053] workingset_refault_file 2490
[ 541.816154][T11053] swap 127995904
[ 541.920618][T11433] lowmem_reserve[]: 0 2482 2483 2483 2483
[ 541.985378][T11433] Node 0 DMA32 free:1125716kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:345780kB inactive_anon:11216kB active_file:38280kB inactive_file:154272kB unevictable:1536kB writepending:632kB present:3129332kB managed:2541672kB mlocked:0kB bounce:0kB free_pcp:2076kB local_pcp:1340kB free_cma:0kB
[ 542.117471][T11053] swapcached 0
[ 542.121123][T11053] pgpgin 485205
[ 542.124830][T11053] pgpgout 415764
[ 542.128750][T11053] pgfault 340172
[ 542.132463][T11053] pgmajfault 752
[ 542.136498][T11053] inactive_anon 305172480
[ 542.140997][T11053] active_anon 4595712
[ 542.145354][T11053] inactive_file 0
[ 542.149322][T11053] active_file 40960
[ 542.153503][T11053] unevictable 0
[ 542.157162][T11053] hierarchical_memory_limit 314572800
[ 542.162759][T11053] hierarchical_memsw_limit 9223372036854771712
[ 542.169393][T11053] total_cache 309866496
[ 542.174218][T11053] total_rss 204800
[ 542.178156][T11053] total_rss_huge 0
[ 542.182649][T11053] total_shmem 309825536
[ 542.187398][T11053] total_mapped_file 8192
[ 542.193093][T11053] total_dirty 0
[ 542.197902][T11053] total_writeback 0
[ 542.215574][T11053] total_workingset_refault_anon 5033
[ 542.223825][T11053] total_workingset_refault_file 2490
[ 542.229408][T11053] total_swap 127995904
[ 542.234393][T11053] total_swapcached 0
[ 542.238490][T11053] total_pgpgin 485205
[ 542.254367][T11433] lowmem_reserve[]: 0 0 1 1 1
[ 542.272352][T11053] total_pgpgout 415764
[ 542.277057][T11053] total_pgfault 340172
[ 542.281566][T11053] total_pgmajfault 752
[ 542.285677][T11053] total_inactive_anon 305172480
[ 542.290541][T11053] total_active_anon 4595712
[ 542.295362][T11053] total_inactive_file 0
[ 542.299708][T11053] total_active_file 40960
[ 542.304285][T11053] total_unevictable 0
[ 542.309436][T11053] anon_cost 0
[ 542.312796][T11053] file_cost 0
[ 542.316106][T11053] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.1082,pid=11414,uid=0
[ 542.331787][T11053] Memory cgroup out of memory: Killed process 11433 (syz.0.1082) total-vm:171908kB, anon-rss:940kB, file-rss:25920kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:0
[ 542.446994][T11433] Node 0 Normal free:24kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 542.845237][T11433] lowmem_reserve[]: 0 0 0 0 0
[ 542.929754][T11433] Node 1 Normal free:3902988kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 543.005862][T11433] lowmem_reserve[]: 0 0 0 0 0
[ 543.235326][T11433] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 543.796503][T11556] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1105'.
[ 543.843929][T11433] Node 0 DMA32: 3*4kB (UME) 448*8kB (UME) 314*16kB (UM) 269*32kB (UM) 201*64kB (UME) 108*128kB (UM) 75*256kB (UME) 53*512kB (UME) 49*1024kB (UME) 16*2048kB (UM) 231*4096kB (M) = 1119372kB
[ 543.864076][T11433] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[ 543.877001][T11433] Node 1 Normal: 213*4kB (UM) 85*8kB (UME) 51*16kB (UME) 205*32kB (UME) 85*64kB (UME) 34*128kB (UME) 15*256kB (UM) 3*512kB (UME) 6*1024kB (UME) 3*2048kB (UE) 944*4096kB (M) = 3902988kB
[ 543.911087][T11433] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 544.041563][ T5848] Bluetooth: hci1: unexpected subevent 0x01 length: 4 < 18
[ 544.346939][T11433] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 544.475496][T11433] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 544.514697][ T32] oom_reaper: reaped process 11433 (syz.0.1082), now anon-rss:0kB, file-rss:24708kB, shmem-rss:0kB
[ 544.579562][T11073] syz.0.1007 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 544.621405][T11570] Invalid ELF header magic: != ELF
[ 544.681260][T11073] CPU: 0 UID: 0 PID: 11073 Comm: syz.0.1007 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 544.681305][T11073] Tainted: [U]=USER
[ 544.681314][T11073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 544.681329][T11073] Call Trace:
[ 544.681339][T11073] <TASK>
[ 544.681350][T11073] dump_stack_lvl+0x16c/0x1f0
[ 544.681395][T11073] dump_header+0x101/0x930
[ 544.681427][T11073] oom_kill_process+0x270/0xa60
[ 544.681450][T11073] ? mem_cgroup_out_of_memory+0x8c/0x270
[ 544.681487][T11073] out_of_memory+0x350/0x1700
[ 544.681525][T11073] ? __lock_acquire+0xaa4/0x1ba0
[ 544.681571][T11073] ? __pfx_out_of_memory+0x10/0x10
[ 544.681609][T11073] mem_cgroup_out_of_memory+0x205/0x270
[ 544.681642][T11073] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 544.681684][T11073] ? do_raw_spin_unlock+0x172/0x230
[ 544.681721][T11073] try_charge_memcg+0x8ca/0xfa0
[ 544.681754][T11073] ? __pfx_try_charge_memcg+0x10/0x10
[ 544.681780][T11073] ? __print_lock_name+0xd1/0xe0
[ 544.681814][T11073] ? rcu_read_unlock+0x17/0x60
[ 544.681851][T11073] charge_memcg+0x8a/0x230
[ 544.681877][T11073] __mem_cgroup_charge+0x2b/0x1e0
[ 544.681909][T11073] shmem_alloc_and_add_folio+0x514/0xc20
[ 544.681961][T11073] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 544.682007][T11073] ? shmem_allowable_huge_orders+0xcb/0x2f0
[ 544.682056][T11073] shmem_get_folio_gfp+0x687/0x1530
[ 544.682106][T11073] ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 544.682148][T11073] ? lockdep_hardirqs_on+0x7c/0x110
[ 544.682193][T11073] shmem_write_begin+0x160/0x300
[ 544.682239][T11073] ? __pfx_shmem_write_begin+0x10/0x10
[ 544.682277][T11073] ? __pfx_inode_to_bdi+0x10/0x10
[ 544.682305][T11073] ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[ 544.682349][T11073] generic_perform_write+0x3cd/0x930
[ 544.682404][T11073] ? __pfx_generic_perform_write+0x10/0x10
[ 544.682450][T11073] ? generic_update_time+0xcf/0xf0
[ 544.682477][T11073] ? mnt_put_write_access_file+0x45/0xf0
[ 544.682529][T11073] shmem_file_write_iter+0x10e/0x140
[ 544.682562][T11073] ? __pfx_shmem_file_write_iter+0x10/0x10
[ 544.682590][T11073] __kernel_write_iter+0x317/0xa90
[ 544.682632][T11073] ? __pfx___kernel_write_iter+0x10/0x10
[ 544.682691][T11073] dump_user_range+0x418/0xb30
[ 544.682736][T11073] ? __pfx_dump_user_range+0x10/0x10
[ 544.682774][T11073] ? elf_coredump_extra_notes_write+0xbd/0x430
[ 544.682815][T11073] ? __pfx_writenote+0x10/0x10
[ 544.682870][T11073] elf_core_dump+0x288a/0x3a90
[ 544.682930][T11073] ? __pfx_elf_core_dump+0x10/0x10
[ 544.682966][T11073] ? kasan_save_stack+0x42/0x60
[ 544.683001][T11073] ? kasan_save_stack+0x33/0x60
[ 544.683036][T11073] ? kasan_save_track+0x14/0x30
[ 544.683071][T11073] ? __kasan_kmalloc+0xaa/0xb0
[ 544.683107][T11073] ? do_coredump+0x17aa/0x4480
[ 544.683138][T11073] ? get_signal+0x22e3/0x26d0
[ 544.683170][T11073] ? arch_do_signal_or_restart+0x8f/0x7d0
[ 544.683219][T11073] ? 0xffffffffff600000
[ 544.683306][T11073] ? do_coredump+0x3183/0x4480
[ 544.683337][T11073] do_coredump+0x3183/0x4480
[ 544.683387][T11073] ? __pfx_do_coredump+0x10/0x10
[ 544.683424][T11073] ? stack_trace_save+0x8e/0xc0
[ 544.683459][T11073] ? __pfx_stack_trace_save+0x10/0x10
[ 544.683494][T11073] ? stack_depot_save_flags+0x28/0xa50
[ 544.683536][T11073] ? __lock_acquire+0xaa4/0x1ba0
[ 544.683588][T11073] ? __kasan_slab_free+0x51/0x70
[ 544.683626][T11073] ? kmem_cache_free+0x2d4/0x4d0
[ 544.683662][T11073] ? __sigqueue_free+0xba/0x2a0
[ 544.683684][T11073] ? get_signal+0xcba/0x26d0
[ 544.683715][T11073] ? arch_do_signal_or_restart+0x8f/0x7d0
[ 544.683802][T11073] ? proc_coredump_connector+0x2d1/0x4f0
[ 544.683835][T11073] ? __pfx_proc_coredump_connector+0x10/0x10
[ 544.683888][T11073] ? rcu_is_watching+0x12/0xc0
[ 544.683931][T11073] get_signal+0x22e3/0x26d0
[ 544.683978][T11073] ? force_sig_fault+0xc4/0x100
[ 544.684018][T11073] ? __pfx_get_signal+0x10/0x10
[ 544.684069][T11073] arch_do_signal_or_restart+0x8f/0x7d0
[ 544.684109][T11073] ? trace_irq_disable.constprop.0+0xd4/0x120
[ 544.684141][T11073] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 544.684209][T11073] irqentry_exit_to_user_mode+0x13f/0x280
[ 544.684254][T11073] asm_exc_page_fault+0x26/0x30
[ 544.684282][T11073] RIP: 0033:0x21000
[ 544.684310][T11073] Code: Unable to access opcode bytes at 0x20fd6.
[ 544.684323][T11073] RSP: 002b:000000000000000f EFLAGS: 00010246
[ 544.684347][T11073] RAX: 0000000000000000 RBX: 00007f1e695b6080 RCX: 00007f1e6938e169
[ 544.684365][T11073] RDX: 9999999999999999 RSI: 0000000000000007 RDI: 0000000000000021
[ 544.684384][T11073] RBP: 00007f1e69410a68 R08: 0000000000000006 R09: 0000000000000000
[ 544.684401][T11073] R10: ffffffff81000000 R11: 0000000000000246 R12: 0000000000000000
[ 544.684419][T11073] R13: 0000000000000000 R14: 00007f1e695b6080 R15: 00007ffcab3b9478
[ 544.684445][T11073] ? 0xffffffff81000000
[ 544.684479][T11073] </TASK>
[ 544.694839][T11433] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 544.714576][T11073] memory: usage 307200kB, limit 307200kB, failcnt 22209
[ 545.085653][T11433] 131716 total pagecache pages
[ 545.085675][T11433] 0 pages in swap cache
[ 545.085685][T11433] Free swap = 12kB
[ 545.085696][T11433] Total swap = 124996kB
[ 545.085710][T11433] 2097051 pages RAM
[ 545.085721][T11433] 0 pages HighMem/MovableOnly
[ 545.085733][T11433] 429591 pages reserved
[ 545.085743][T11433] 0 pages cma reserved
[ 545.339261][T11073] memory+swap: usage 432180kB, limit 9007199254740988kB, failcnt 0
[ 545.348558][T11073] kmem: usage 4396kB, limit 9007199254740988kB, failcnt 0
[ 545.369709][T11073] Memory cgroup stats for /syz0:
[ 545.369910][T11073] cache 310018048
[ 545.436254][T11073] rss 49152
[ 545.456080][T11073] rss_huge 0
[ 545.459537][T11073] shmem 310001664
[ 545.543551][T11073] mapped_file 0
[ 545.547106][T11073] dirty 0
[ 545.573831][T11073] writeback 0
[ 545.577314][T11073] workingset_refault_anon 5033
[ 545.638005][T11073] workingset_refault_file 2534
[ 545.668849][T11073] swap 127979520
[ 545.691533][T11073] swapcached 0
[ 545.695181][T11073] pgpgin 485293
[ 545.698686][T11073] pgpgout 415852
[ 545.760250][T11073] pgfault 340183
[ 545.797235][T11073] pgmajfault 759
[ 545.821125][T11073] inactive_anon 6569984
[ 545.847393][T11073] active_anon 303480832
[ 545.859804][T11073] inactive_file 16384
[ 545.864592][T11073] active_file 0
[ 545.868194][T11073] unevictable 0
[ 545.871769][T11073] hierarchical_memory_limit 314572800
[ 545.877869][T11073] hierarchical_memsw_limit 9223372036854771712
[ 545.884275][T11073] total_cache 310018048
[ 545.888642][T11073] total_rss 49152
[ 545.892767][T11073] total_rss_huge 0
[ 545.896662][T11073] total_shmem 310001664
[ 545.900944][T11073] total_mapped_file 0
[ 545.905366][T11073] total_dirty 0
[ 545.911458][T11073] total_writeback 0
[ 545.915333][T11073] total_workingset_refault_anon 5033
[ 545.920852][T11073] total_workingset_refault_file 2534
[ 545.926437][T11073] total_swap 127979520
[ 545.930575][T11073] total_swapcached 0
[ 545.934686][T11073] total_pgpgin 485293
[ 545.982636][T11073] total_pgpgout 415852
[ 545.994552][T11073] total_pgfault 340183
[ 546.072336][T11073] total_pgmajfault 759
[ 546.076770][T11073] total_inactive_anon 6569984
[ 546.101662][T11073] total_active_anon 303480832
[ 546.106417][T11073] total_inactive_file 16384
[ 546.132482][T11073] total_active_file 0
[ 546.136597][T11073] total_unevictable 0
[ 546.140582][T11073] anon_cost 0
[ 546.200088][T11073] file_cost 0
[ 546.203991][T11073] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.1007,pid=11053,uid=0
[ 546.234590][T11073] Memory cgroup out of memory: Killed process 11053 (syz.0.1007) total-vm:98296kB, anon-rss:916kB, file-rss:23212kB, shmem-rss:0kB, UID:0 pgtables:208kB oom_score_adj:0
[ 546.654231][T11598] netlink: 'syz.1.1115': attribute type 1 has an invalid length.
[ 548.056111][T11615] FAULT_INJECTION: forcing a failure.
[ 548.056111][T11615] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 548.149954][T11618] FAULT_INJECTION: forcing a failure.
[ 548.149954][T11618] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 548.166211][T11618] CPU: 0 UID: 0 PID: 11618 Comm: syz.3.1120 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 548.166263][T11618] Tainted: [U]=USER
[ 548.166275][T11618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 548.166293][T11618] Call Trace:
[ 548.166304][T11618] <TASK>
[ 548.166316][T11618] dump_stack_lvl+0x16c/0x1f0
[ 548.166363][T11618] should_fail_ex+0x512/0x640
[ 548.166402][T11618] should_fail_alloc_page+0xe7/0x130
[ 548.166443][T11618] prepare_alloc_pages+0x3c2/0x610
[ 548.166480][T11618] ? rcu_is_watching+0x12/0xc0
[ 548.166523][T11618] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 548.166570][T11618] ? __kernel_text_address+0xd/0x40
[ 548.166605][T11618] ? unwind_get_return_address+0x59/0xa0
[ 548.166642][T11618] ? arch_stack_walk+0xa6/0x100
[ 548.166692][T11618] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 548.166737][T11618] ? stack_trace_save+0x8e/0xc0
[ 548.166776][T11618] ? __pfx_stack_trace_save+0x10/0x10
[ 548.166814][T11618] ? stack_depot_save_flags+0x28/0xa50
[ 548.166850][T11618] ? find_held_lock+0x2b/0x80
[ 548.166893][T11618] ? kasan_save_stack+0x42/0x60
[ 548.166939][T11618] ? __lock_acquire+0xaa4/0x1ba0
[ 548.166981][T11618] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 548.167016][T11618] ? policy_nodemask+0xea/0x4e0
[ 548.167066][T11618] alloc_pages_mpol+0x1fb/0x550
[ 548.167095][T11618] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 548.167120][T11618] ? __page_table_check_ptes_set+0x1ae/0x420
[ 548.167168][T11618] ? find_held_lock+0x2b/0x80
[ 548.167203][T11618] alloc_pages_noprof+0x131/0x390
[ 548.167225][T11618] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 548.167261][T11618] get_free_pages_noprof+0xc/0x40
[ 548.167291][T11618] kasan_populate_vmalloc_pte+0x2d/0x160
[ 548.167334][T11618] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 548.167375][T11618] __apply_to_page_range+0x5f9/0xd30
[ 548.167416][T11618] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 548.167472][T11618] ? __pfx___apply_to_page_range+0x10/0x10
[ 548.167510][T11618] ? alloc_vmap_area+0x872/0x2970
[ 548.167550][T11618] alloc_vmap_area+0x919/0x2970
[ 548.167600][T11618] ? __pfx_alloc_vmap_area+0x10/0x10
[ 548.167645][T11618] __get_vm_area_node+0x1a7/0x300
[ 548.167688][T11618] __vmalloc_node_range_noprof+0x277/0x1540
[ 548.167729][T11618] ? __do_sys_listmount+0x1c2/0xed0
[ 548.167782][T11618] ? __do_sys_listmount+0x1c2/0xed0
[ 548.167829][T11618] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 548.167878][T11618] __kvmalloc_node_noprof+0x2ff/0x600
[ 548.167918][T11618] ? __do_sys_listmount+0x1c2/0xed0
[ 548.167956][T11618] ? __do_sys_listmount+0x1c2/0xed0
[ 548.167999][T11618] ? __do_sys_listmount+0x1c2/0xed0
[ 548.168035][T11618] __do_sys_listmount+0x1c2/0xed0
[ 548.168078][T11618] ? __x64_sys_futex+0x1e0/0x4c0
[ 548.168115][T11618] ? __x64_sys_futex+0x1e9/0x4c0
[ 548.168155][T11618] ? __pfx___do_sys_listmount+0x10/0x10
[ 548.168192][T11618] ? xfd_validate_state+0x5d/0x180
[ 548.168240][T11618] do_syscall_64+0xcd/0x260
[ 548.168286][T11618] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 548.168315][T11618] RIP: 0033:0x7f6462d8e169
[ 548.168339][T11618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 548.168368][T11618] RSP: 002b:00007f6463bc7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 548.168397][T11618] RAX: ffffffffffffffda RBX: 00007f6462fb6160 RCX: 00007f6462d8e169
[ 548.168416][T11618] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 548.168444][T11618] RBP: 00007f6462e10a68 R08: 0000000000000000 R09: 0000000000000000
[ 548.168462][T11618] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 548.168479][T11618] R13: 0000000000000000 R14: 00007f6462fb6160 R15: 00007ffd18204378
[ 548.168518][T11618] </TASK>
[ 548.545405][ C0] vkms_vblank_simulate: vblank timer overrun
[ 548.555439][T11615] CPU: 0 UID: 0 PID: 11615 Comm: syz.1.1118 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 548.555509][T11615] Tainted: [U]=USER
[ 548.555520][T11615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 548.555539][T11615] Call Trace:
[ 548.555550][T11615] <TASK>
[ 548.555563][T11615] dump_stack_lvl+0x16c/0x1f0
[ 548.555613][T11615] should_fail_ex+0x512/0x640
[ 548.555654][T11615] should_fail_alloc_page+0xe7/0x130
[ 548.555688][T11615] prepare_alloc_pages+0x3c2/0x610
[ 548.555726][T11615] ? rcu_is_watching+0x12/0xc0
[ 548.555769][T11615] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 548.555816][T11615] ? __kernel_text_address+0xd/0x40
[ 548.555852][T11615] ? unwind_get_return_address+0x59/0xa0
[ 548.555893][T11615] ? arch_stack_walk+0xa6/0x100
[ 548.555946][T11615] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 548.555992][T11615] ? stack_trace_save+0x8e/0xc0
[ 548.556031][T11615] ? __pfx_stack_trace_save+0x10/0x10
[ 548.556071][T11615] ? stack_depot_save_flags+0x28/0xa50
[ 548.556106][T11615] ? find_held_lock+0x2b/0x80
[ 548.556149][T11615] ? kasan_save_stack+0x42/0x60
[ 548.556196][T11615] ? __lock_acquire+0xaa4/0x1ba0
[ 548.556239][T11615] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 548.556274][T11615] ? policy_nodemask+0xea/0x4e0
[ 548.556325][T11615] alloc_pages_mpol+0x1fb/0x550
[ 548.556357][T11615] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 548.556383][T11615] ? __page_table_check_ptes_set+0x1ae/0x420
[ 548.556431][T11615] ? find_held_lock+0x2b/0x80
[ 548.556486][T11615] alloc_pages_noprof+0x131/0x390
[ 548.556516][T11615] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 548.556556][T11615] get_free_pages_noprof+0xc/0x40
[ 548.556587][T11615] kasan_populate_vmalloc_pte+0x2d/0x160
[ 548.556630][T11615] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 548.556672][T11615] __apply_to_page_range+0x5f9/0xd30
[ 548.556714][T11615] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 548.556764][T11615] ? __pfx___apply_to_page_range+0x10/0x10
[ 548.556804][T11615] ? alloc_vmap_area+0x872/0x2970
[ 548.556846][T11615] alloc_vmap_area+0x919/0x2970
[ 548.556897][T11615] ? __pfx_alloc_vmap_area+0x10/0x10
[ 548.556943][T11615] __get_vm_area_node+0x1a7/0x300
[ 548.556988][T11615] __vmalloc_node_range_noprof+0x277/0x1540
[ 548.557028][T11615] ? __do_sys_listmount+0x1c2/0xed0
[ 548.557079][T11615] ? __do_sys_listmount+0x1c2/0xed0
[ 548.557128][T11615] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 548.557185][T11615] __kvmalloc_node_noprof+0x2ff/0x600
[ 548.557228][T11615] ? __do_sys_listmount+0x1c2/0xed0
[ 548.557269][T11615] ? __do_sys_listmount+0x1c2/0xed0
[ 548.557315][T11615] ? __do_sys_listmount+0x1c2/0xed0
[ 548.557353][T11615] __do_sys_listmount+0x1c2/0xed0
[ 548.557400][T11615] ? __x64_sys_futex+0x1e0/0x4c0
[ 548.557441][T11615] ? __x64_sys_futex+0x1e9/0x4c0
[ 548.557492][T11615] ? __pfx___do_sys_listmount+0x10/0x10
[ 548.557532][T11615] ? xfd_validate_state+0x5d/0x180
[ 548.557582][T11615] do_syscall_64+0xcd/0x260
[ 548.557628][T11615] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 548.557660][T11615] RIP: 0033:0x7f357b18e169
[ 548.557686][T11615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 548.557715][T11615] RSP: 002b:00007f357bfca038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 548.557745][T11615] RAX: ffffffffffffffda RBX: 00007f357b3b6160 RCX: 00007f357b18e169
[ 548.557766][T11615] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 548.557786][T11615] RBP: 00007f357b210a68 R08: 0000000000000000 R09: 0000000000000000
[ 548.557805][T11615] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 548.557824][T11615] R13: 0000000000000000 R14: 00007f357b3b6160 R15: 00007ffc08854048
[ 548.557865][T11615] </TASK>
[ 548.935631][ C0] vkms_vblank_simulate: vblank timer overrun
[ 550.805474][T11053] syz.0.1007 (11053) used greatest stack depth: 19208 bytes left
[ 551.441868][T11635] Invalid ELF header magic: != ELF
[ 552.975245][T11650] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1125'.
[ 553.035688][T11651] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1125'.
[ 553.187520][T11650] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1125'.
[ 554.396027][T11670] input: j�J�Ǹ-���9�%v����l��Q� J86��� as /devices/virtual/input/input14
[ 555.847283][T11687] FAULT_INJECTION: forcing a failure.
[ 555.847283][T11687] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 555.847321][T11687] CPU: 0 UID: 0 PID: 11687 Comm: syz.2.1132 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 555.847348][T11687] Tainted: [U]=USER
[ 555.847355][T11687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 555.847365][T11687] Call Trace:
[ 555.847371][T11687] <TASK>
[ 555.847379][T11687] dump_stack_lvl+0x16c/0x1f0
[ 555.847409][T11687] should_fail_ex+0x512/0x640
[ 555.847432][T11687] should_fail_alloc_page+0xe7/0x130
[ 555.847452][T11687] prepare_alloc_pages+0x3c2/0x610
[ 555.847474][T11687] ? rcu_is_watching+0x12/0xc0
[ 555.847507][T11687] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 555.847539][T11687] ? __lock_acquire+0xaa4/0x1ba0
[ 555.847570][T11687] ? __perf_event_task_sched_in+0x27a/0xa10
[ 555.847590][T11687] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 555.847617][T11687] ? lock_acquire+0x179/0x350
[ 555.847633][T11687] ? find_held_lock+0x2b/0x80
[ 555.847658][T11687] ? rcu_is_watching+0x12/0xc0
[ 555.847678][T11687] ? finish_task_switch.isra.0+0x221/0xc10
[ 555.847707][T11687] ? __lock_acquire+0xaa4/0x1ba0
[ 555.847732][T11687] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 555.847753][T11687] ? policy_nodemask+0xea/0x4e0
[ 555.847783][T11687] alloc_pages_mpol+0x1fb/0x550
[ 555.847807][T11687] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 555.847823][T11687] ? __page_table_check_ptes_set+0x1ae/0x420
[ 555.847851][T11687] ? find_held_lock+0x2b/0x80
[ 555.847876][T11687] alloc_pages_noprof+0x131/0x390
[ 555.847896][T11687] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 555.847930][T11687] get_free_pages_noprof+0xc/0x40
[ 555.847958][T11687] kasan_populate_vmalloc_pte+0x2d/0x160
[ 555.848000][T11687] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 555.848040][T11687] __apply_to_page_range+0x5f9/0xd30
[ 555.848076][T11687] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 555.848121][T11687] ? __pfx___apply_to_page_range+0x10/0x10
[ 555.848159][T11687] ? alloc_vmap_area+0x872/0x2970
[ 555.848199][T11687] alloc_vmap_area+0x919/0x2970
[ 555.848248][T11687] ? __pfx_alloc_vmap_area+0x10/0x10
[ 555.848294][T11687] __get_vm_area_node+0x1a7/0x300
[ 555.848337][T11687] __vmalloc_node_range_noprof+0x277/0x1540
[ 555.848385][T11687] ? __do_sys_listmount+0x1c2/0xed0
[ 555.848434][T11687] ? rcu_is_watching+0x12/0xc0
[ 555.848472][T11687] ? __do_sys_listmount+0x1c2/0xed0
[ 555.848531][T11687] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 555.848577][T11687] ? __kasan_kmalloc_large+0x77/0x90
[ 555.848631][T11687] __kvmalloc_node_noprof+0x2ff/0x600
[ 555.848674][T11687] ? __do_sys_listmount+0x1c2/0xed0
[ 555.848717][T11687] ? __do_sys_listmount+0x1c2/0xed0
[ 555.848763][T11687] ? __do_sys_listmount+0x1c2/0xed0
[ 555.848802][T11687] __do_sys_listmount+0x1c2/0xed0
[ 555.848849][T11687] ? __x64_sys_futex+0x1e0/0x4c0
[ 555.848890][T11687] ? __x64_sys_futex+0x1e9/0x4c0
[ 555.848932][T11687] ? __pfx___do_sys_listmount+0x10/0x10
[ 555.848971][T11687] ? xfd_validate_state+0x5d/0x180
[ 555.849021][T11687] do_syscall_64+0xcd/0x260
[ 555.849068][T11687] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 555.849099][T11687] RIP: 0033:0x7fa47418e169
[ 555.849124][T11687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 555.849153][T11687] RSP: 002b:00007fa475089038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 555.849182][T11687] RAX: ffffffffffffffda RBX: 00007fa4743b6160 RCX: 00007fa47418e169
[ 555.849202][T11687] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 555.849231][T11687] RBP: 00007fa474210a68 R08: 0000000000000000 R09: 0000000000000000
[ 555.849247][T11687] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 555.849265][T11687] R13: 0000000000000000 R14: 00007fa4743b6160 R15: 00007ffeb74150c8
[ 555.849312][T11687] </TASK>
[ 556.014193][T11687] warn_alloc: 2 callbacks suppressed
[ 556.014211][T11687] syz.2.1132: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 556.014272][T11687] CPU: 0 UID: 0 PID: 11687 Comm: syz.2.1132 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 556.014300][T11687] Tainted: [U]=USER
[ 556.014306][T11687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 556.014316][T11687] Call Trace:
[ 556.014323][T11687] <TASK>
[ 556.014330][T11687] dump_stack_lvl+0x16c/0x1f0
[ 556.014360][T11687] warn_alloc+0x248/0x3a0
[ 556.014387][T11687] ? __pfx_warn_alloc+0x10/0x10
[ 556.014415][T11687] ? kfree+0x2b6/0x4d0
[ 556.014442][T11687] ? __get_vm_area_node+0x1e5/0x300
[ 556.014468][T11687] __vmalloc_node_range_noprof+0xd31/0x1540
[ 556.014506][T11687] ? rcu_is_watching+0x12/0xc0
[ 556.014528][T11687] ? __do_sys_listmount+0x1c2/0xed0
[ 556.014556][T11687] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 556.014582][T11687] ? __kasan_kmalloc_large+0x77/0x90
[ 556.014613][T11687] __kvmalloc_node_noprof+0x2ff/0x600
[ 556.014639][T11687] ? __do_sys_listmount+0x1c2/0xed0
[ 556.014663][T11687] ? __do_sys_listmount+0x1c2/0xed0
[ 556.014690][T11687] ? __do_sys_listmount+0x1c2/0xed0
[ 556.014712][T11687] __do_sys_listmount+0x1c2/0xed0
[ 556.014740][T11687] ? __x64_sys_futex+0x1e0/0x4c0
[ 556.014764][T11687] ? __x64_sys_futex+0x1e9/0x4c0
[ 556.014788][T11687] ? __pfx___do_sys_listmount+0x10/0x10
[ 556.014812][T11687] ? xfd_validate_state+0x5d/0x180
[ 556.014839][T11687] do_syscall_64+0xcd/0x260
[ 556.014866][T11687] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 556.014884][T11687] RIP: 0033:0x7fa47418e169
[ 556.014904][T11687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 556.014921][T11687] RSP: 002b:00007fa475089038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 556.014938][T11687] RAX: ffffffffffffffda RBX: 00007fa4743b6160 RCX: 00007fa47418e169
[ 556.014949][T11687] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 556.014960][T11687] RBP: 00007fa474210a68 R08: 0000000000000000 R09: 0000000000000000
[ 556.014970][T11687] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 556.014981][T11687] R13: 0000000000000000 R14: 00007fa4743b6160 R15: 00007ffeb74150c8
[ 556.015003][T11687] </TASK>
[ 556.015048][T11687] Mem-Info:
[ 556.015058][T11687] active_anon:54454 inactive_anon:48792 isolated_anon:0
[ 556.015058][T11687] active_file:11380 inactive_file:38981 isolated_file:0
[ 556.015058][T11687] unevictable:768 dirty:494 writeback:0
[ 556.015058][T11687] slab_reclaimable:10858 slab_unreclaimable:95754
[ 556.015058][T11687] mapped:38937 shmem:92105 pagetables:1466
[ 556.015058][T11687] sec_pagetables:0 bounce:0
[ 556.015058][T11687] kernel_misc_reclaimable:0
[ 556.015058][T11687] free:1243912 free_pcp:1631 free_cma:0
[ 556.015104][T11687] Node 0 active_anon:217816kB inactive_anon:195168kB active_file:45520kB inactive_file:155852kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:155748kB dirty:1972kB writeback:0kB shmem:366032kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11756kB pagetables:5864kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 556.015151][T11687] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:2388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 556.015195][T11687] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 556.015244][T11687] lowmem_reserve[]: 0 2482 2483 2483 2483
[ 556.015279][T11687] Node 0 DMA32 free:1057312kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:217772kB inactive_anon:195168kB active_file:45520kB inactive_file:154284kB unevictable:1536kB writepending:1972kB present:3129332kB managed:2541672kB mlocked:0kB bounce:0kB free_pcp:6516kB local_pcp:208kB free_cma:0kB
[ 556.015327][T11687] lowmem_reserve[]: 0 0 1 1 1
[ 556.015359][T11687] Node 0 Normal free:24kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 556.015403][T11687] lowmem_reserve[]: 0 0 0 0 0
[ 556.015435][T11687] Node 1 Normal free:3902952kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 556.015481][T11687] lowmem_reserve[]: 0 0 0 0 0
[ 556.015523][T11687] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 556.015629][T11687] Node 0 DMA32: 842*4kB (UME) 493*8kB (UE) 241*16kB (UME) 297*32kB (U) 118*64kB (UE) 79*128kB (UM) 60*256kB (U) 40*512kB (UME) 42*1024kB (UME) 1*2048kB (U) 229*4096kB (M) = 1057216kB
[ 556.015778][T11687] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[ 556.015882][T11687] Node 1 Normal: 214*4kB (UM) 84*8kB (UME) 51*16kB (UME) 204*32kB (UME) 85*64kB (UME) 34*128kB (UME) 15*256kB (UM) 3*512kB (UME) 6*1024kB (UME) 3*2048kB (UE) 944*4096kB (M) = 3902952kB
[ 556.016027][T11687] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 556.016042][T11687] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 556.016055][T11687] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 556.016070][T11687] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 556.016083][T11687] 142518 total pagecache pages
[ 556.016090][T11687] 2 pages in swap cache
[ 556.016097][T11687] Free swap = 30428kB
[ 556.016103][T11687] Total swap = 124996kB
[ 556.016111][T11687] 2097051 pages RAM
[ 556.016117][T11687] 0 pages HighMem/MovableOnly
[ 556.016124][T11687] 429591 pages reserved
[ 556.016130][T11687] 0 pages cma reserved
[ 561.090588][T11062] syz.0.1007 (11062) used greatest stack depth: 18376 bytes left
[ 562.198096][T11058] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 562.202184][T11058] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 562.221511][T11058] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 562.222953][T11058] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 562.223892][T11058] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 562.988219][T11709] chnl_net:caif_netlink_parms(): no params data found
[ 563.919904][T11709] bridge0: port 1(bridge_slave_0) entered blocking state
[ 563.920034][T11709] bridge0: port 1(bridge_slave_0) entered disabled state
[ 563.920239][T11709] bridge_slave_0: entered allmulticast mode
[ 563.923086][T11709] bridge_slave_0: entered promiscuous mode
[ 563.926002][T11709] bridge0: port 2(bridge_slave_1) entered blocking state
[ 563.926206][T11709] bridge0: port 2(bridge_slave_1) entered disabled state
[ 563.926356][T11709] bridge_slave_1: entered allmulticast mode
[ 563.928261][T11709] bridge_slave_1: entered promiscuous mode
[ 564.251753][ T5848] Bluetooth: hci4: command tx timeout
[ 564.304823][T11709] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 564.308724][T11709] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 564.584495][T11709] team0: Port device team_slave_0 added
[ 564.589026][T11709] team0: Port device team_slave_1 added
[ 564.839945][T11709] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 564.839969][T11709] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 564.840003][T11709] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 564.843129][T11709] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 564.843152][T11709] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 564.843200][T11709] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 565.159390][T11709] hsr_slave_0: entered promiscuous mode
[ 565.160564][T11709] hsr_slave_1: entered promiscuous mode
[ 565.182914][T11709] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 565.182999][T11709] Cannot create hsr debugfs directory
[ 566.331418][ T5848] Bluetooth: hci4: command tx timeout
[ 566.333341][T11709] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 566.386982][T11709] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 566.392130][T11709] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 566.426462][T11709] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 566.715448][T11709] 8021q: adding VLAN 0 to HW filter on device bond0
[ 566.765634][T11709] 8021q: adding VLAN 0 to HW filter on device team0
[ 566.779406][T11498] bridge0: port 1(bridge_slave_0) entered blocking state
[ 566.779594][T11498] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 566.806071][T11502] bridge0: port 2(bridge_slave_1) entered blocking state
[ 566.806215][T11502] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 566.903537][T11709] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 567.497837][T11709] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 568.261456][T11709] veth0_vlan: entered promiscuous mode
[ 568.384810][T11709] veth1_vlan: entered promiscuous mode
[ 568.412511][ T5848] Bluetooth: hci4: command tx timeout
[ 568.502752][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 568.502843][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 568.523727][T11709] veth0_macvtap: entered promiscuous mode
[ 568.554395][T11709] veth1_macvtap: entered promiscuous mode
[ 568.603088][T11709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 568.603147][T11709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 568.603163][T11709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 568.603184][T11709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 568.603208][T11709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 568.603229][T11709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 568.603243][T11709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 568.603264][T11709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 568.604998][T11709] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 568.628682][T11709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 568.628713][T11709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 568.628729][T11709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 568.628750][T11709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 568.628764][T11709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 568.628784][T11709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 568.628799][T11709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 568.628819][T11709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 568.630493][T11709] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 568.655540][T11709] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 568.655590][T11709] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 568.655631][T11709] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 568.655670][T11709] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 569.421449][T11502] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 569.421508][T11502] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 569.512381][T11502] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 569.512410][T11502] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 570.063644][T11747] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1136'.
[ 570.130020][T11743] ubi: mtd0 is already attached to ubi0
[ 570.501697][ T5848] Bluetooth: hci4: command tx timeout
[ 570.607622][T11499] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 570.957038][T11499] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 571.200369][T11499] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 571.562111][T11058] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 571.611774][T11058] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 571.635825][T11058] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 571.667429][T11058] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 571.714993][T11058] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 572.072936][T11499] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 573.861191][T11058] Bluetooth: hci5: command tx timeout
[ 574.019619][T11499] bridge_slave_0: left allmulticast mode
[ 574.041438][T11499] bridge_slave_0: left promiscuous mode
[ 574.049283][T11499] bridge0: port 1(bridge_slave_0) entered disabled state
[ 574.769727][T11777] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1145'.
[ 574.835295][T11499] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 574.846794][T11499] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 574.858434][T11499] bond0 (unregistering): Released all slaves
[ 575.404262][T11499] hsr_slave_0: left promiscuous mode
[ 575.426615][T11499] hsr_slave_1: left promiscuous mode
[ 575.443556][T11499] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 575.461207][T11499] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 575.483231][T11499] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 575.509561][T11499] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 575.584280][T11499] veth1_macvtap: left promiscuous mode
[ 575.610010][T11499] veth1_vlan: left promiscuous mode
[ 575.626677][T11499] veth0_vlan: left promiscuous mode
[ 575.931294][T11058] Bluetooth: hci5: command tx timeout
[ 576.779122][T11499] team0 (unregistering): Port device team_slave_1 removed
[ 576.827829][T11499] team0 (unregistering): Port device team_slave_0 removed
[ 577.316325][T11817] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1151'.
[ 577.328264][T11763] chnl_net:caif_netlink_parms(): no params data found
[ 577.335966][T11809] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 577.345742][T11809] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 577.352569][T11809] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 577.359024][T11809] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 577.372867][T11809] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 577.396811][T11809] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 577.416245][T11809] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 577.442089][T11809] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 577.629261][T11823] ubi: mtd0 is already attached to ubi0
[ 577.683588][T11763] bridge0: port 1(bridge_slave_0) entered blocking state
[ 577.690989][T11763] bridge0: port 1(bridge_slave_0) entered disabled state
[ 577.698750][T11763] bridge_slave_0: entered allmulticast mode
[ 577.707876][T11763] bridge_slave_0: entered promiscuous mode
[ 577.767817][T11763] bridge0: port 2(bridge_slave_1) entered blocking state
[ 577.779631][T11763] bridge0: port 2(bridge_slave_1) entered disabled state
[ 577.788384][T11763] bridge_slave_1: entered allmulticast mode
[ 577.802934][T11763] bridge_slave_1: entered promiscuous mode
[ 577.859156][T11826] zswap: zpool not available
[ 577.917952][T11763] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 577.958767][T11763] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 577.990214][T11826] zswap: zpool not available
[ 578.111286][T11833] zswap: zpool not available
[ 578.120856][T11763] team0: Port device team_slave_0 added
[ 578.179630][T11763] team0: Port device team_slave_1 added
[ 578.278227][T11763] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 578.290812][T11763] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 578.328079][T11763] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 578.378934][T11763] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 578.386740][T11763] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 578.465233][T11763] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 578.760205][T11763] hsr_slave_0: entered promiscuous mode
[ 578.788519][T11763] hsr_slave_1: entered promiscuous mode
[ 579.104359][T11863] Invalid ELF header magic: != ELF
[ 579.372609][T11058] Bluetooth: hci4: command 0x0c1a tx timeout
[ 579.380032][T11058] Bluetooth: hci3: command 0x0c1a tx timeout
[ 579.386753][ T5848] Bluetooth: hci1: command 0x0c1a tx timeout
[ 579.452598][ T5848] Bluetooth: hci5: command 0x0419 tx timeout
[ 579.844493][T11763] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 579.974537][T11763] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 580.027062][T11763] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 580.143236][T11763] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 580.843401][T11763] 8021q: adding VLAN 0 to HW filter on device bond0
[ 580.918821][T11903] ubi: mtd0 is already attached to ubi0
[ 580.976958][T11763] 8021q: adding VLAN 0 to HW filter on device team0
[ 581.026699][T11485] bridge0: port 1(bridge_slave_0) entered blocking state
[ 581.034125][T11485] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 581.078905][T11493] bridge0: port 2(bridge_slave_1) entered blocking state
[ 581.086189][T11493] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 581.097899][T11902] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1161'.
[ 581.109291][T11902] unsupported nlmsg_type 40
[ 581.305373][T11763] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 581.455517][ T5848] Bluetooth: hci4: command 0x0c1a tx timeout
[ 581.533310][ T5848] Bluetooth: hci5: command 0x0419 tx timeout
[ 582.278163][T11763] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 582.345957][T11946] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1167'.
[ 582.707804][T11957] netlink: 'syz.4.1169': attribute type 1 has an invalid length.
[ 583.070494][T11965] ubi: mtd0 is already attached to ubi0
[ 583.209728][T11763] veth0_vlan: entered promiscuous mode
[ 583.296233][T11763] veth1_vlan: entered promiscuous mode
[ 583.536158][ T5848] Bluetooth: hci4: command 0x0c1a tx timeout
[ 583.611628][ T5848] Bluetooth: hci5: command 0x0419 tx timeout
[ 583.834673][T11763] veth0_macvtap: entered promiscuous mode
[ 583.839926][T11763] veth1_macvtap: entered promiscuous mode
[ 584.026157][T11763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 584.026199][T11763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 584.026214][T11763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 584.026235][T11763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 584.026249][T11763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 584.026268][T11763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 584.026284][T11763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 584.026303][T11763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 584.028041][T11763] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 584.261925][T11763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 584.261955][T11763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 584.261969][T11763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 584.261990][T11763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 584.262003][T11763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 584.262023][T11763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 584.262039][T11763] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 584.262060][T11763] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 584.264163][T11763] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 584.402330][T11763] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 584.402381][T11763] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 584.402422][T11763] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 584.402484][T11763] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 585.636063][T11487] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 585.691684][ T5848] Bluetooth: hci5: command 0x0419 tx timeout
[ 585.700653][T11487] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 585.988250][T11487] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 586.054262][T11487] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 586.635940][T12045] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1180'.
[ 586.678396][T12045] netlink: 274 bytes leftover after parsing attributes in process `syz.1.1180'.
[ 586.888888][T12052] ubi: mtd0 is already attached to ubi0
[ 586.919290][T12056] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1181'.
[ 587.060545][T12059] Invalid ELF header magic: != ELF
[ 589.396358][T12114] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1191'.
[ 590.476585][T12146] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1196'.
[ 590.882936][T12160] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1201'.
[ 591.612720][T12170] Invalid ELF header magic: != ELF
[ 592.105775][T12184] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1205'.
[ 592.187568][T12184] bridge0: port 2(bridge_slave_1) entered disabled state
[ 592.330390][T12184] bridge_slave_1 (unregistering): left allmulticast mode
[ 592.330427][T12184] bridge_slave_1 (unregistering): left promiscuous mode
[ 592.331404][T12184] bridge0: port 2(bridge_slave_1) entered disabled state
[ 594.579522][T12241] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1211'.
[ 594.679736][T12251] input: j�J�Ǹ-���9�%v����l��Q� J86��� as /devices/virtual/input/input16
[ 595.207698][T12262] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 595.236583][T12262] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 596.579290][T12303] FAULT_INJECTION: forcing a failure.
[ 596.579290][T12303] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 596.619235][T12303] CPU: 1 UID: 0 PID: 12303 Comm: syz.1.1221 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 596.619287][T12303] Tainted: [U]=USER
[ 596.619296][T12303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 596.619314][T12303] Call Trace:
[ 596.619324][T12303] <TASK>
[ 596.619334][T12303] dump_stack_lvl+0x16c/0x1f0
[ 596.619380][T12303] should_fail_ex+0x512/0x640
[ 596.619416][T12303] should_fail_alloc_page+0xe7/0x130
[ 596.619454][T12303] prepare_alloc_pages+0x3c2/0x610
[ 596.619487][T12303] ? rcu_is_watching+0x12/0xc0
[ 596.619526][T12303] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 596.619570][T12303] ? __kernel_text_address+0xd/0x40
[ 596.619601][T12303] ? unwind_get_return_address+0x59/0xa0
[ 596.619637][T12303] ? arch_stack_walk+0xa6/0x100
[ 596.619685][T12303] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 596.619727][T12303] ? stack_trace_save+0x8e/0xc0
[ 596.619764][T12303] ? __pfx_stack_trace_save+0x10/0x10
[ 596.619799][T12303] ? stack_depot_save_flags+0x28/0xa50
[ 596.619831][T12303] ? find_held_lock+0x2b/0x80
[ 596.619871][T12303] ? kasan_save_stack+0x42/0x60
[ 596.619914][T12303] ? __lock_acquire+0xaa4/0x1ba0
[ 596.619954][T12303] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 596.619985][T12303] ? policy_nodemask+0xea/0x4e0
[ 596.620032][T12303] alloc_pages_mpol+0x1fb/0x550
[ 596.620060][T12303] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 596.620083][T12303] ? __page_table_check_ptes_set+0x1ae/0x420
[ 596.620127][T12303] ? find_held_lock+0x2b/0x80
[ 596.620193][T12303] alloc_pages_noprof+0x131/0x390
[ 596.620220][T12303] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 596.620265][T12303] get_free_pages_noprof+0xc/0x40
[ 596.620294][T12303] kasan_populate_vmalloc_pte+0x2d/0x160
[ 596.620334][T12303] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 596.620373][T12303] __apply_to_page_range+0x5f9/0xd30
[ 596.620412][T12303] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 596.620467][T12303] ? __pfx___apply_to_page_range+0x10/0x10
[ 596.620504][T12303] ? alloc_vmap_area+0x872/0x2970
[ 596.620544][T12303] alloc_vmap_area+0x919/0x2970
[ 596.620592][T12303] ? __pfx_alloc_vmap_area+0x10/0x10
[ 596.620636][T12303] __get_vm_area_node+0x1a7/0x300
[ 596.620678][T12303] __vmalloc_node_range_noprof+0x277/0x1540
[ 596.620715][T12303] ? __do_sys_listmount+0x1c2/0xed0
[ 596.620766][T12303] ? __do_sys_listmount+0x1c2/0xed0
[ 596.620814][T12303] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 596.620867][T12303] __kvmalloc_node_noprof+0x2ff/0x600
[ 596.620908][T12303] ? __do_sys_listmount+0x1c2/0xed0
[ 596.620948][T12303] ? __do_sys_listmount+0x1c2/0xed0
[ 596.620990][T12303] ? __do_sys_listmount+0x1c2/0xed0
[ 596.621020][T12303] __do_sys_listmount+0x1c2/0xed0
[ 596.621059][T12303] ? __x64_sys_futex+0x1e0/0x4c0
[ 596.621094][T12303] ? __x64_sys_futex+0x1e9/0x4c0
[ 596.621131][T12303] ? __pfx___do_sys_listmount+0x10/0x10
[ 596.621165][T12303] ? xfd_validate_state+0x5d/0x180
[ 596.621211][T12303] do_syscall_64+0xcd/0x260
[ 596.621253][T12303] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 596.621279][T12303] RIP: 0033:0x7f357b18e169
[ 596.621301][T12303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 596.621326][T12303] RSP: 002b:00007f357bfca038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 596.621352][T12303] RAX: ffffffffffffffda RBX: 00007f357b3b6160 RCX: 00007f357b18e169
[ 596.621371][T12303] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 596.621386][T12303] RBP: 00007f357b210a68 R08: 0000000000000000 R09: 0000000000000000
[ 596.621403][T12303] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 596.621418][T12303] R13: 0000000000000000 R14: 00007f357b3b6160 R15: 00007ffc08854048
[ 596.621461][T12303] </TASK>
[ 596.643560][T12303] syz.1.1221: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 596.643665][T12303] CPU: 1 UID: 0 PID: 12303 Comm: syz.1.1221 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 596.643711][T12303] Tainted: [U]=USER
[ 596.643721][T12303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 596.643738][T12303] Call Trace:
[ 596.643749][T12303] <TASK>
[ 596.643761][T12303] dump_stack_lvl+0x16c/0x1f0
[ 596.643809][T12303] warn_alloc+0x248/0x3a0
[ 596.643858][T12303] ? __pfx_warn_alloc+0x10/0x10
[ 596.643904][T12303] ? kfree+0x2b6/0x4d0
[ 596.643951][T12303] ? __get_vm_area_node+0x1e5/0x300
[ 596.643997][T12303] __vmalloc_node_range_noprof+0xd31/0x1540
[ 596.644056][T12303] ? __do_sys_listmount+0x1c2/0xed0
[ 596.644106][T12303] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 596.644162][T12303] __kvmalloc_node_noprof+0x2ff/0x600
[ 596.644200][T12303] ? __do_sys_listmount+0x1c2/0xed0
[ 596.644241][T12303] ? __do_sys_listmount+0x1c2/0xed0
[ 596.644286][T12303] ? __do_sys_listmount+0x1c2/0xed0
[ 596.644322][T12303] __do_sys_listmount+0x1c2/0xed0
[ 596.644369][T12303] ? __x64_sys_futex+0x1e0/0x4c0
[ 596.644409][T12303] ? __x64_sys_futex+0x1e9/0x4c0
[ 596.644459][T12303] ? __pfx___do_sys_listmount+0x10/0x10
[ 596.644498][T12303] ? xfd_validate_state+0x5d/0x180
[ 596.644548][T12303] do_syscall_64+0xcd/0x260
[ 596.644594][T12303] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 596.644624][T12303] RIP: 0033:0x7f357b18e169
[ 596.644649][T12303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 596.644679][T12303] RSP: 002b:00007f357bfca038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 596.644708][T12303] RAX: ffffffffffffffda RBX: 00007f357b3b6160 RCX: 00007f357b18e169
[ 596.644729][T12303] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 596.644748][T12303] RBP: 00007f357b210a68 R08: 0000000000000000 R09: 0000000000000000
[ 596.644766][T12303] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 596.644784][T12303] R13: 0000000000000000 R14: 00007f357b3b6160 R15: 00007ffc08854048
[ 596.644823][T12303] </TASK>
[ 596.649344][T12303] Mem-Info:
[ 596.649365][T12303] active_anon:17946 inactive_anon:0 isolated_anon:0
[ 596.649365][T12303] active_file:18033 inactive_file:39497 isolated_file:0
[ 596.649365][T12303] unevictable:768 dirty:818 writeback:0
[ 596.649365][T12303] slab_reclaimable:11000 slab_unreclaimable:106071
[ 596.649365][T12303] mapped:30781 shmem:5358 pagetables:1048
[ 596.649365][T12303] sec_pagetables:0 bounce:0
[ 596.649365][T12303] kernel_misc_reclaimable:0
[ 596.649365][T12303] free:1312491 free_pcp:737 free_cma:0
[ 596.649449][T12303] Node 0 active_anon:71784kB inactive_anon:0kB active_file:72132kB inactive_file:157916kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:123124kB dirty:3264kB writeback:0kB shmem:19044kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12428kB pagetables:4192kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 596.649528][T12303] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:8kB writeback:0kB shmem:2388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 596.649601][T12303] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 596.649679][T12303] lowmem_reserve[]: 0 2482 2483 2483 2483
[ 596.649734][T12303] Node 0 DMA32 free:1331584kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:71740kB inactive_anon:0kB active_file:72132kB inactive_file:156348kB unevictable:1536kB writepending:3260kB present:3129332kB managed:2541672kB mlocked:0kB bounce:0kB free_pcp:2940kB local_pcp:1644kB free_cma:0kB
[ 596.649812][T12303] lowmem_reserve[]: 0 0 1 1 1
[ 596.649862][T12303] Node 0 Normal free:24kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:4kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 596.649935][T12303] lowmem_reserve[]: 0 0 0 0 0
[ 596.649985][T12303] Node 1 Normal free:3902996kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:8kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 596.650061][T12303] lowmem_reserve[]: 0 0 0 0 0
[ 596.650111][T12303] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 596.650277][T12303] Node 0 DMA32: 23*4kB (UE) 5*8kB (UME) 1752*16kB (UME) 1471*32kB (UME) 1133*64kB (UME) 656*128kB (UME) 274*256kB (M) 189*512kB (UM) 113*1024kB (UME) 23*2048kB (UM) 188*4096kB (UM) = 1331492kB
[ 596.667713][T12303] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[ 596.667881][T12303] Node 1 Normal: 217*4kB (UM) 84*8kB (UME) 51*16kB (UME) 205*32kB (UME) 85*64kB (UME) 34*128kB (UME) 15*256kB (UM) 3*512kB (UME) 6*1024kB (UME) 3*2048kB (UE) 944*4096kB (M) = 3902996kB
[ 596.668112][T12303] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 596.668136][T12303] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 596.668159][T12303] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 596.668181][T12303] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 596.668203][T12303] 62888 total pagecache pages
[ 597.664552][T12303] 0 pages in swap cache
[ 597.668817][T12303] Free swap = 124996kB
[ 597.681082][T12303] Total swap = 124996kB
[ 597.692123][T12303] 2097051 pages RAM
[ 597.735843][T12303] 0 pages HighMem/MovableOnly
[ 597.740695][T12303] 429591 pages reserved
[ 597.795769][T12303] 0 pages cma reserved
[ 598.765795][T12322] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1223'.
[ 600.475628][T12333] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1226'.
[ 602.118079][T12366] Invalid ELF header magic: != ELF
[ 602.817036][T12383] Invalid ELF header magic: != ELF
[ 603.315567][T12393] FAULT_INJECTION: forcing a failure.
[ 603.315567][T12393] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 603.392231][T12393] CPU: 1 UID: 0 PID: 12393 Comm: syz.3.1236 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 603.392283][T12393] Tainted: [U]=USER
[ 603.392294][T12393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 603.392312][T12393] Call Trace:
[ 603.392323][T12393] <TASK>
[ 603.392335][T12393] dump_stack_lvl+0x16c/0x1f0
[ 603.392381][T12393] should_fail_ex+0x512/0x640
[ 603.392419][T12393] should_fail_alloc_page+0xe7/0x130
[ 603.392462][T12393] prepare_alloc_pages+0x3c2/0x610
[ 603.392499][T12393] ? rcu_is_watching+0x12/0xc0
[ 603.392539][T12393] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 603.392583][T12393] ? __kernel_text_address+0xd/0x40
[ 603.392618][T12393] ? unwind_get_return_address+0x59/0xa0
[ 603.392658][T12393] ? arch_stack_walk+0xa6/0x100
[ 603.392708][T12393] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 603.392754][T12393] ? stack_trace_save+0x8e/0xc0
[ 603.392793][T12393] ? __pfx_stack_trace_save+0x10/0x10
[ 603.392833][T12393] ? stack_depot_save_flags+0x28/0xa50
[ 603.392868][T12393] ? find_held_lock+0x2b/0x80
[ 603.392911][T12393] ? kasan_save_stack+0x42/0x60
[ 603.392958][T12393] ? __lock_acquire+0xaa4/0x1ba0
[ 603.393001][T12393] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 603.393036][T12393] ? policy_nodemask+0xea/0x4e0
[ 603.393086][T12393] alloc_pages_mpol+0x1fb/0x550
[ 603.393116][T12393] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 603.393141][T12393] ? __page_table_check_ptes_set+0x1ae/0x420
[ 603.393187][T12393] ? find_held_lock+0x2b/0x80
[ 603.393230][T12393] alloc_pages_noprof+0x131/0x390
[ 603.393258][T12393] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 603.393298][T12393] get_free_pages_noprof+0xc/0x40
[ 603.393328][T12393] kasan_populate_vmalloc_pte+0x2d/0x160
[ 603.393370][T12393] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 603.393409][T12393] __apply_to_page_range+0x5f9/0xd30
[ 603.393460][T12393] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 603.393508][T12393] ? __pfx___apply_to_page_range+0x10/0x10
[ 603.393545][T12393] ? alloc_vmap_area+0x872/0x2970
[ 603.393586][T12393] alloc_vmap_area+0x919/0x2970
[ 603.393637][T12393] ? __pfx_alloc_vmap_area+0x10/0x10
[ 603.393681][T12393] __get_vm_area_node+0x1a7/0x300
[ 603.393727][T12393] __vmalloc_node_range_noprof+0x277/0x1540
[ 603.393767][T12393] ? __do_sys_listmount+0x1c2/0xed0
[ 603.393838][T12393] ? __do_sys_listmount+0x1c2/0xed0
[ 603.393887][T12393] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 603.393944][T12393] __kvmalloc_node_noprof+0x2ff/0x600
[ 603.393986][T12393] ? __do_sys_listmount+0x1c2/0xed0
[ 603.394029][T12393] ? __do_sys_listmount+0x1c2/0xed0
[ 603.394077][T12393] ? __do_sys_listmount+0x1c2/0xed0
[ 603.394115][T12393] __do_sys_listmount+0x1c2/0xed0
[ 603.394163][T12393] ? __x64_sys_futex+0x1e0/0x4c0
[ 603.394203][T12393] ? __x64_sys_futex+0x1e9/0x4c0
[ 603.394245][T12393] ? __pfx___do_sys_listmount+0x10/0x10
[ 603.394284][T12393] ? xfd_validate_state+0x5d/0x180
[ 603.394333][T12393] do_syscall_64+0xcd/0x260
[ 603.394378][T12393] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 603.394408][T12393] RIP: 0033:0x7f6462d8e169
[ 603.394446][T12393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 603.394476][T12393] RSP: 002b:00007f6463bc7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 603.394506][T12393] RAX: ffffffffffffffda RBX: 00007f6462fb6160 RCX: 00007f6462d8e169
[ 603.394527][T12393] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 603.394546][T12393] RBP: 00007f6462e10a68 R08: 0000000000000000 R09: 0000000000000000
[ 603.394565][T12393] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 603.394583][T12393] R13: 0000000000000000 R14: 00007f6462fb6160 R15: 00007ffd18204378
[ 603.394623][T12393] </TASK>
[ 606.213960][T12431] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1239'.
[ 606.394703][T12435] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1248'.
[ 608.804297][T12500] FAULT_INJECTION: forcing a failure.
[ 608.804297][T12500] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 608.937191][T12500] CPU: 0 UID: 0 PID: 12500 Comm: syz.5.1247 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 608.937242][T12500] Tainted: [U]=USER
[ 608.937253][T12500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 608.937268][T12500] Call Trace:
[ 608.937278][T12500] <TASK>
[ 608.937290][T12500] dump_stack_lvl+0x16c/0x1f0
[ 608.937338][T12500] should_fail_ex+0x512/0x640
[ 608.937377][T12500] should_fail_alloc_page+0xe7/0x130
[ 608.937406][T12500] prepare_alloc_pages+0x3c2/0x610
[ 608.937453][T12500] ? rcu_is_watching+0x12/0xc0
[ 608.937488][T12500] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 608.937529][T12500] ? __kernel_text_address+0xd/0x40
[ 608.937560][T12500] ? unwind_get_return_address+0x59/0xa0
[ 608.937588][T12500] ? arch_stack_walk+0xa6/0x100
[ 608.937634][T12500] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 608.937678][T12500] ? stack_trace_save+0x8e/0xc0
[ 608.937713][T12500] ? __pfx_stack_trace_save+0x10/0x10
[ 608.937744][T12500] ? stack_depot_save_flags+0x28/0xa50
[ 608.937781][T12500] ? kasan_save_stack+0x42/0x60
[ 608.937825][T12500] ? __lock_acquire+0xaa4/0x1ba0
[ 608.937865][T12500] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 608.937898][T12500] ? policy_nodemask+0xea/0x4e0
[ 608.937944][T12500] alloc_pages_mpol+0x1fb/0x550
[ 608.937970][T12500] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 608.937991][T12500] ? __page_table_check_ptes_set+0x1ae/0x420
[ 608.938032][T12500] ? find_held_lock+0x2b/0x80
[ 608.938070][T12500] alloc_pages_noprof+0x131/0x390
[ 608.938096][T12500] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 608.938131][T12500] get_free_pages_noprof+0xc/0x40
[ 608.938157][T12500] kasan_populate_vmalloc_pte+0x2d/0x160
[ 608.938195][T12500] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 608.938232][T12500] __apply_to_page_range+0x5f9/0xd30
[ 608.938268][T12500] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 608.938308][T12500] ? __pfx___apply_to_page_range+0x10/0x10
[ 608.938340][T12500] ? alloc_vmap_area+0x872/0x2970
[ 608.938375][T12500] alloc_vmap_area+0x919/0x2970
[ 608.938419][T12500] ? __pfx_alloc_vmap_area+0x10/0x10
[ 608.938469][T12500] __get_vm_area_node+0x1a7/0x300
[ 608.938507][T12500] __vmalloc_node_range_noprof+0x277/0x1540
[ 608.938543][T12500] ? __do_sys_listmount+0x1c2/0xed0
[ 608.938588][T12500] ? __do_sys_listmount+0x1c2/0xed0
[ 608.938634][T12500] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 608.938692][T12500] __kvmalloc_node_noprof+0x2ff/0x600
[ 608.938737][T12500] ? __do_sys_listmount+0x1c2/0xed0
[ 608.938779][T12500] ? __do_sys_listmount+0x1c2/0xed0
[ 608.938825][T12500] ? __do_sys_listmount+0x1c2/0xed0
[ 608.938860][T12500] __do_sys_listmount+0x1c2/0xed0
[ 608.938907][T12500] ? __x64_sys_futex+0x1e0/0x4c0
[ 608.938948][T12500] ? __x64_sys_futex+0x1e9/0x4c0
[ 608.938992][T12500] ? __pfx___do_sys_listmount+0x10/0x10
[ 608.939033][T12500] ? xfd_validate_state+0x5d/0x180
[ 608.939091][T12500] do_syscall_64+0xcd/0x260
[ 608.939140][T12500] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 608.939171][T12500] RIP: 0033:0x7f8bb138e169
[ 608.939195][T12500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 608.939224][T12500] RSP: 002b:00007f8bb21de038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 608.939254][T12500] RAX: ffffffffffffffda RBX: 00007f8bb15b6160 RCX: 00007f8bb138e169
[ 608.939275][T12500] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 608.939294][T12500] RBP: 00007f8bb1410a68 R08: 0000000000000000 R09: 0000000000000000
[ 608.939311][T12500] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 608.939329][T12500] R13: 0000000000000000 R14: 00007f8bb15b6160 R15: 00007ffe3866c898
[ 608.939369][T12500] </TASK>
[ 608.978938][T12500] warn_alloc: 1 callbacks suppressed
[ 608.978964][T12500] syz.5.1247: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 608.979060][T12500] CPU: 0 UID: 0 PID: 12500 Comm: syz.5.1247 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 608.979106][T12500] Tainted: [U]=USER
[ 608.979117][T12500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 608.979134][T12500] Call Trace:
[ 608.979145][T12500] <TASK>
[ 608.979156][T12500] dump_stack_lvl+0x16c/0x1f0
[ 608.979202][T12500] warn_alloc+0x248/0x3a0
[ 608.979249][T12500] ? __pfx_warn_alloc+0x10/0x10
[ 608.979296][T12500] ? kfree+0x2b6/0x4d0
[ 608.979343][T12500] ? __get_vm_area_node+0x1e5/0x300
[ 608.979388][T12500] __vmalloc_node_range_noprof+0xd31/0x1540
[ 608.979449][T12500] ? __do_sys_listmount+0x1c2/0xed0
[ 608.979498][T12500] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 608.979553][T12500] __kvmalloc_node_noprof+0x2ff/0x600
[ 608.979594][T12500] ? __do_sys_listmount+0x1c2/0xed0
[ 608.979634][T12500] ? __do_sys_listmount+0x1c2/0xed0
[ 608.979681][T12500] ? __do_sys_listmount+0x1c2/0xed0
[ 608.979718][T12500] __do_sys_listmount+0x1c2/0xed0
[ 608.979763][T12500] ? __x64_sys_futex+0x1e0/0x4c0
[ 608.979802][T12500] ? __x64_sys_futex+0x1e9/0x4c0
[ 608.979844][T12500] ? __pfx___do_sys_listmount+0x10/0x10
[ 608.979882][T12500] ? xfd_validate_state+0x5d/0x180
[ 608.979931][T12500] do_syscall_64+0xcd/0x260
[ 608.979978][T12500] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 608.980008][T12500] RIP: 0033:0x7f8bb138e169
[ 608.980032][T12500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 608.980060][T12500] RSP: 002b:00007f8bb21de038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 608.980087][T12500] RAX: ffffffffffffffda RBX: 00007f8bb15b6160 RCX: 00007f8bb138e169
[ 608.980107][T12500] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 608.980125][T12500] RBP: 00007f8bb1410a68 R08: 0000000000000000 R09: 0000000000000000
[ 608.980180][T12500] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 608.980199][T12500] R13: 0000000000000000 R14: 00007f8bb15b6160 R15: 00007ffe3866c898
[ 608.980239][T12500] </TASK>
[ 608.980251][T12500] Mem-Info:
[ 608.980264][T12500] active_anon:16938 inactive_anon:0 isolated_anon:0
[ 608.980264][T12500] active_file:18010 inactive_file:39516 isolated_file:0
[ 608.980264][T12500] unevictable:768 dirty:552 writeback:0
[ 608.980264][T12500] slab_reclaimable:10929 slab_unreclaimable:110136
[ 608.980264][T12500] mapped:32961 shmem:5275 pagetables:1103
[ 608.980264][T12500] sec_pagetables:0 bounce:0
[ 608.980264][T12500] kernel_misc_reclaimable:0
[ 608.980264][T12500] free:1306741 free_pcp:2175 free_cma:0
[ 608.980338][T12500] Node 0 active_anon:64752kB inactive_anon:0kB active_file:72040kB inactive_file:157992kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:128844kB dirty:2204kB writeback:0kB shmem:16264kB shmem_thp:2048kB shmem_pmdmapped:2048kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12972kB pagetables:4412kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 608.980415][T12500] Node 1 active_anon:3000kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:3000kB dirty:4kB writeback:0kB shmem:4836kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 608.980494][T12500] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 608.980572][T12500] lowmem_reserve[]: 0 2482 2483 2483 2483
[ 608.980633][T12500] Node 0 DMA32 free:1316136kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:64708kB inactive_anon:0kB active_file:72040kB inactive_file:156424kB unevictable:1536kB writepending:2204kB present:3129332kB managed:2541672kB mlocked:0kB bounce:0kB free_pcp:4296kB local_pcp:1900kB free_cma:0kB
[ 608.980714][T12500] lowmem_reserve[]: 0 0 1 1 1
[ 608.980772][T12500] Node 0 Normal free:24kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 608.980848][T12500] lowmem_reserve[]: 0 0 0 0 0
[ 608.980905][T12500] Node 1 Normal free:3895444kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:3000kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:4472kB local_pcp:3940kB free_cma:0kB
[ 608.981084][T12500] lowmem_reserve[]: 0 0 0 0 0
[ 608.981144][T12500] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 608.981330][T12500] Node 0 DMA32: 23*4kB (UME) 555*8kB (UME) 1908*16kB (UME) 1473*32kB (UME) 1137*64kB (UME) 659*128kB (UME) 278*256kB (M) 154*512kB (M) 111*1024kB (UME) 21*2048kB (UM) 188*4096kB (UM) = 1316052kB
[ 608.981628][T12500] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[ 608.981881][T12500] Node 1 Normal: 24*4kB (UM) 82*8kB (UE) 49*16kB (UE) 195*32kB (UME) 82*64kB (UE) 31*128kB (UE) 14*256kB (UM) 2*512kB (UE) 5*1024kB (UE) 3*2048kB (UE) 943*4096kB (M) = 3895392kB
[ 608.982137][T12500] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 608.982163][T12500] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[ 608.982187][T12500] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 608.982210][T12500] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 608.982233][T12500] 62877 total pagecache pages
[ 608.982246][T12500] 1 pages in swap cache
[ 608.982257][T12500] Free swap = 122952kB
[ 608.982268][T12500] Total swap = 124996kB
[ 608.982281][T12500] 2097051 pages RAM
[ 608.982292][T12500] 0 pages HighMem/MovableOnly
[ 608.982304][T12500] 429591 pages reserved
[ 608.982315][T12500] 0 pages cma reserved
[ 611.968866][ C0] vkms_vblank_simulate: vblank timer overrun
[ 612.224986][ C0] vkms_vblank_simulate: vblank timer overrun
[ 613.881254][T12583] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1253'.
[ 614.569767][T12591] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1257'.
[ 617.625521][T12639] FAULT_INJECTION: forcing a failure.
[ 617.625521][T12639] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 617.686311][T12639] CPU: 0 UID: 0 PID: 12639 Comm: syz.1.1276 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 617.686368][T12639] Tainted: [U]=USER
[ 617.686379][T12639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 617.686398][T12639] Call Trace:
[ 617.686408][T12639] <TASK>
[ 617.686421][T12639] dump_stack_lvl+0x16c/0x1f0
[ 617.686469][T12639] should_fail_ex+0x512/0x640
[ 617.686510][T12639] should_fail_alloc_page+0xe7/0x130
[ 617.686542][T12639] prepare_alloc_pages+0x3c2/0x610
[ 617.686580][T12639] ? rcu_is_watching+0x12/0xc0
[ 617.686622][T12639] __alloc_frozen_pages_noprof+0x18f/0x23a0
[ 617.686669][T12639] ? __kernel_text_address+0xd/0x40
[ 617.686705][T12639] ? unwind_get_return_address+0x59/0xa0
[ 617.686745][T12639] ? arch_stack_walk+0xa6/0x100
[ 617.686798][T12639] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 617.686844][T12639] ? stack_trace_save+0x8e/0xc0
[ 617.686884][T12639] ? __pfx_stack_trace_save+0x10/0x10
[ 617.686922][T12639] ? stack_depot_save_flags+0x28/0xa50
[ 617.686967][T12639] ? kasan_save_stack+0x42/0x60
[ 617.687013][T12639] ? __lock_acquire+0xaa4/0x1ba0
[ 617.687058][T12639] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 617.687091][T12639] ? policy_nodemask+0xea/0x4e0
[ 617.687136][T12639] alloc_pages_mpol+0x1fb/0x550
[ 617.687165][T12639] ? __pfx_alloc_pages_mpol+0x10/0x10
[ 617.687201][T12639] ? __page_table_check_ptes_set+0x1ae/0x420
[ 617.687246][T12639] ? find_held_lock+0x2b/0x80
[ 617.687288][T12639] alloc_pages_noprof+0x131/0x390
[ 617.687316][T12639] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 617.687355][T12639] get_free_pages_noprof+0xc/0x40
[ 617.687384][T12639] kasan_populate_vmalloc_pte+0x2d/0x160
[ 617.687426][T12639] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 617.687466][T12639] __apply_to_page_range+0x5f9/0xd30
[ 617.687506][T12639] ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[ 617.687550][T12639] ? __pfx___apply_to_page_range+0x10/0x10
[ 617.687588][T12639] ? alloc_vmap_area+0x872/0x2970
[ 617.687627][T12639] alloc_vmap_area+0x919/0x2970
[ 617.687677][T12639] ? __pfx_alloc_vmap_area+0x10/0x10
[ 617.687721][T12639] __get_vm_area_node+0x1a7/0x300
[ 617.687765][T12639] __vmalloc_node_range_noprof+0x277/0x1540
[ 617.687804][T12639] ? __do_sys_listmount+0x1c2/0xed0
[ 617.687856][T12639] ? __do_sys_listmount+0x1c2/0xed0
[ 617.687903][T12639] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 617.687956][T12639] __kvmalloc_node_noprof+0x2ff/0x600
[ 617.687996][T12639] ? __do_sys_listmount+0x1c2/0xed0
[ 617.688033][T12639] ? __do_sys_listmount+0x1c2/0xed0
[ 617.688078][T12639] ? __do_sys_listmount+0x1c2/0xed0
[ 617.688114][T12639] __do_sys_listmount+0x1c2/0xed0
[ 617.688160][T12639] ? __x64_sys_futex+0x1e0/0x4c0
[ 617.688205][T12639] ? __x64_sys_futex+0x1e9/0x4c0
[ 617.688243][T12639] ? __pfx___do_sys_listmount+0x10/0x10
[ 617.688280][T12639] ? xfd_validate_state+0x5d/0x180
[ 617.688327][T12639] do_syscall_64+0xcd/0x260
[ 617.688374][T12639] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 617.688402][T12639] RIP: 0033:0x7f357b18e169
[ 617.688424][T12639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 617.688452][T12639] RSP: 002b:00007f357bfca038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[ 617.688480][T12639] RAX: ffffffffffffffda RBX: 00007f357b3b6160 RCX: 00007f357b18e169
[ 617.688500][T12639] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[ 617.688517][T12639] RBP: 00007f357b210a68 R08: 0000000000000000 R09: 0000000000000000
[ 617.688535][T12639] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 617.688552][T12639] R13: 0000000000000000 R14: 00007f357b3b6160 R15: 00007ffc08854048
[ 617.688589][T12639] </TASK>
[ 618.058923][ C0] vkms_vblank_simulate: vblank timer overrun
[ 621.429875][ T5896]
[ 621.432412][ T5896] ======================================================
[ 621.439730][ T5896] WARNING: possible circular locking dependency detected
[ 621.447598][ T5896] 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 Tainted: G U
[ 621.456749][ T5896] ------------------------------------------------------
[ 621.464171][ T5896] kworker/1:5/5896 is trying to acquire lock:
[ 621.471486][ T5896] ffffffff9012e6e8 (rtnl_mutex){+.+.}-{4:4}, at: smc_vlan_by_tcpsk+0x251/0x620
[ 621.481313][ T5896]
[ 621.481313][ T5896] but task is already holding lock:
[ 621.489576][ T5896] ffff888057405e58 (sk_lock-AF_INET){+.+.}-{0:0}, at: smc_connect_work+0x53a/0xae0
[ 621.500838][ T5896]
[ 621.500838][ T5896] which lock already depends on the new lock.
[ 621.500838][ T5896]
[ 621.511463][ T5896]
[ 621.511463][ T5896] the existing dependency chain (in reverse order) is:
[ 621.520701][ T5896]
[ 621.520701][ T5896] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}:
[ 621.528547][ T5896] lock_sock_nested+0x41/0xf0
[ 621.533851][ T5896] sockopt_lock_sock+0x54/0x70
[ 621.539344][ T5896] do_ip_getsockopt+0x13e4/0x2220
[ 621.545907][ T5896] ip_getsockopt+0x9b/0x1e0
[ 621.551000][ T5896] raw_getsockopt+0x4d/0x1f0
[ 621.556882][ T5896] do_sock_getsockopt+0x3fc/0x800
[ 621.562573][ T5896] __sys_getsockopt+0x12f/0x260
[ 621.568915][ T5896] __x64_sys_getsockopt+0xbd/0x160
[ 621.575144][ T5896] do_syscall_64+0xcd/0x260
[ 621.581578][ T5896] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 621.588873][ T5896]
[ 621.588873][ T5896] -> #0 (rtnl_mutex){+.+.}-{4:4}:
[ 621.597852][ T5896] __lock_acquire+0x1173/0x1ba0
[ 621.605298][ T5896] lock_acquire+0x179/0x350
[ 621.611394][ T5896] __mutex_lock+0x199/0xb90
[ 621.617189][ T5896] smc_vlan_by_tcpsk+0x251/0x620
[ 621.623160][ T5896] __smc_connect+0x44b/0x4880
[ 621.628896][ T5896] smc_connect_work+0x54c/0xae0
[ 621.634943][ T5896] process_one_work+0x9cc/0x1b70
[ 621.640696][ T5896] worker_thread+0x6c8/0xf10
[ 621.647144][ T5896] kthread+0x3c2/0x780
[ 621.651769][ T5896] ret_from_fork+0x45/0x80
[ 621.657485][ T5896] ret_from_fork_asm+0x1a/0x30
[ 621.662909][ T5896]
[ 621.662909][ T5896] other info that might help us debug this:
[ 621.662909][ T5896]
[ 621.674203][ T5896] Possible unsafe locking scenario:
[ 621.674203][ T5896]
[ 621.684143][ T5896] CPU0 CPU1
[ 621.690677][ T5896] ---- ----
[ 621.698815][ T5896] lock(sk_lock-AF_INET);
[ 621.704634][ T5896] lock(rtnl_mutex);
[ 621.712307][ T5896] lock(sk_lock-AF_INET);
[ 621.721499][ T5896] lock(rtnl_mutex);
[ 621.726856][ T5896]
[ 621.726856][ T5896] *** DEADLOCK ***
[ 621.726856][ T5896]
[ 621.735566][ T5896] 3 locks held by kworker/1:5/5896:
[ 621.741058][ T5896] #0: ffff88803138ad48 ((wq_completion)smc_hs_wq){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[ 621.751886][ T5896] #1: ffffc9000452fd18 ((work_completion)(&smc->connect_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[ 621.763768][ T5896] #2: ffff888057405e58 (sk_lock-AF_INET){+.+.}-{0:0}, at: smc_connect_work+0x53a/0xae0
[ 621.773807][ T5896]
[ 621.773807][ T5896] stack backtrace:
[ 621.779963][ T5896] CPU: 1 UID: 0 PID: 5896 Comm: kworker/1:5 Tainted: G U 6.15.0-rc2-syzkaller-00048-gc62f4b82d571 #0 PREEMPT(full)
[ 621.779991][ T5896] Tainted: [U]=USER
[ 621.779998][ T5896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 621.780010][ T5896] Workqueue: smc_hs_wq smc_connect_work
[ 621.780034][ T5896] Call Trace:
[ 621.780041][ T5896] <TASK>
[ 621.780048][ T5896] dump_stack_lvl+0x116/0x1f0
[ 621.780074][ T5896] print_circular_bug+0x275/0x350
[ 621.780103][ T5896] check_noncircular+0x14c/0x170
[ 621.780131][ T5896] __lock_acquire+0x1173/0x1ba0
[ 621.780180][ T5896] lock_acquire+0x179/0x350
[ 621.780201][ T5896] ? smc_vlan_by_tcpsk+0x251/0x620
[ 621.780225][ T5896] ? __pfx___might_resched+0x10/0x10
[ 621.780250][ T5896] ? kasan_save_stack+0x42/0x60
[ 621.780275][ T5896] ? kasan_save_stack+0x33/0x60
[ 621.780299][ T5896] ? kasan_save_track+0x14/0x30
[ 621.780325][ T5896] __mutex_lock+0x199/0xb90
[ 621.780350][ T5896] ? smc_vlan_by_tcpsk+0x251/0x620
[ 621.780373][ T5896] ? smc_vlan_by_tcpsk+0x251/0x620
[ 621.780395][ T5896] ? __pfx___mutex_lock+0x10/0x10
[ 621.780423][ T5896] ? find_held_lock+0x2b/0x80
[ 621.780448][ T5896] ? smc_vlan_by_tcpsk+0x251/0x620
[ 621.780470][ T5896] ? rtnl_lock+0x9/0x20
[ 621.780485][ T5896] smc_vlan_by_tcpsk+0x251/0x620
[ 621.780507][ T5896] ? __pfx_smc_vlan_by_tcpsk+0x10/0x10
[ 621.780532][ T5896] __smc_connect+0x44b/0x4880
[ 621.780555][ T5896] ? __pfx___smc_connect+0x10/0x10
[ 621.780575][ T5896] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 621.780597][ T5896] ? __local_bh_enable_ip+0xa4/0x120
[ 621.780621][ T5896] smc_connect_work+0x54c/0xae0
[ 621.780642][ T5896] ? __pfx_smc_connect_work+0x10/0x10
[ 621.780664][ T5896] ? rcu_is_watching+0x12/0xc0
[ 621.780687][ T5896] process_one_work+0x9cc/0x1b70
[ 621.780710][ T5896] ? __pfx_process_one_work+0x10/0x10
[ 621.780732][ T5896] ? assign_work+0x1a0/0x250
[ 621.780751][ T5896] worker_thread+0x6c8/0xf10
[ 621.780773][ T5896] ? __kthread_parkme+0x19e/0x250
[ 621.780799][ T5896] ? __pfx_worker_thread+0x10/0x10
[ 621.780819][ T5896] kthread+0x3c2/0x780
[ 621.780836][ T5896] ? __pfx_kthread+0x10/0x10
[ 621.780853][ T5896] ? __pfx_kthread+0x10/0x10
[ 621.780869][ T5896] ? __pfx_kthread+0x10/0x10
[ 621.780885][ T5896] ? __pfx_kthread+0x10/0x10
[ 621.780902][ T5896] ? rcu_is_watching+0x12/0xc0
[ 621.780931][ T5896] ? __pfx_kthread+0x10/0x10
[ 621.780957][ T5896] ret_from_fork+0x45/0x80
[ 621.780981][ T5896] ? __pfx_kthread+0x10/0x10
[ 621.781007][ T5896] ret_from_fork_asm+0x1a/0x30
[ 621.781051][ T5896] </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 629.934100][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[ 629.940475][ T1300] ieee802154 phy1 wpan1: encryption failed: -22