last executing test programs:

6m8.935764497s ago: executing program 2 (id=863):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f0000000000)={@_si_pad}, 0x5d, &(0x7f0000000080)={{0x1000, 0x8001}, {0xb437, 0x8}, 0x6, 0xffffffffffffff81, 0x6, 0x81, 0xa4c0, 0x2, 0x0, 0x2, 0xf, 0x1, 0x7, 0xe05, 0xe, 0x8})
r1 = prctl$auto(0x6, 0x5, r0, 0x7ff, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
newfstatat$auto(r1, 0x0, 0x0, 0x8)

6m8.0424692s ago: executing program 2 (id=867):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKSTATE_GET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x2c, r2, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_LINKSTATE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20004001}, 0x20c84)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
getdents$auto(r3, 0x0, 0x101)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), r0)
r5 = getpgid(0x0)
pidfd_open$auto(r5, 0x0)
sendmsg$auto_TIPC_NL_BEARER_GET(r1, &(0x7f0000000780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000740)={&(0x7f0000000180)={0x5c0, r4, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@TIPC_NLA_NAME_TABLE={0x186, 0x8, 0x0, 0x1, [@generic="b54237f256cb3547af262e6026492df1b1b580f402336ef9ae469d2e6395ba729d04235c9139ff3b227a62340d1244ab6e8b187cf4f7029fc31beaba9fcfa2ad358c40f702e237e6f26383230ef8414613c71a4a94ff041655ead9e43b5a44e59ac175dc14429b40094c924d51e1da88536fb44e010324e6d89d62324d045e95f0ff", @generic="d14c845f8494f10d303c4cce3a66180ccb63f18cbd3ace1b091c64918b59740f4fe0482ed7dfa46e233e693cd750cca939aae2edf534c88fe344f04d2aeec09d78f1df999e5263065b233958f7568b199003624499bf84c8c20b059a89c3dee1920aa9bc2f015d79c41d6a3ba0153dbb276d452ae3c747a21697e6a174fb6ccd74a089dfe9b8ad6b49fe97ebdaf7c0ce5b8aba7a95622fcac88b733f588d76cc021bea2b72b17ec69ee5e890decbf50cc8f1f01b5e", @generic="c7075860be354c98773ff92fa892b85e9d4ca0c530f78753d155cb65ffe77a6fced81ca27be09ee4a3e15a5450b0b9079ba77542336a27cef375637b7529733d094b863e0a90afcd4334b7"]}, @TIPC_NLA_BEARER={0x17a, 0x1, 0x0, 0x1, [@generic="22ae2572", @typed={0x14, 0x84, 0x0, 0x0, @ipv6=@mcast1}, @generic, @generic="09060b55c2f39b55a21bfc1703472587c6d18e210870efbbec42726a2337c164f3199964160e4959c9b157ba7024c1d4eba9d3309dac565143caa02506395e6d4726fb5d9f33d0520fe99c1f684dac1bcc417df58b10fe613e197e31f8f13b6ca658e696ae9c3fc07b27f1be2490e90b2bc180f21c3e41643a2baea4f3c21eaad1f818ee3b19400cc6b44044045a7da0f213451185564c258c59cc0b52b1cc511040328660a99bd28bd247458d1d6c2e9027a1082a96cd2001e2fc234e53881904f194600dc39dc08ad12370e3d2539c8fa0f17f134ec10e457a6690fc60cd2e97dedea9368682b4ba12568684a7d0e2f8", @generic="63a29bbdd39163a628540960c203c45ff41aaae2ed98e875a1e2", @generic="f4e0f0911d3780ef6390d92b45e366901263dc72ea4b780f5cf6c06c265ba73d917bccb21a6cdf4ac9ad997041704633703dc53ecee8a21f7e31b831d19d50fa0561ca78a94f34", @typed={0xc, 0x140, 0x0, 0x0, @u64=0x40}]}, @TIPC_NLA_MEDIA={0x2a8, 0x5, 0x0, 0x1, [@typed={0x7, 0x94, 0x0, 0x0, @str='lo\x00'}, @nested={0x101, 0x55, 0x0, 0x1, [@typed={0x8, 0x83, 0x0, 0x0, @pid=r5}, @typed={0x8, 0x13, 0x0, 0x0, @fd=r0}, @typed={0x7, 0x3, 0x0, 0x0, @str='lo\x00'}, @nested={0x4, 0xfd}, @nested={0x4, 0xce}, @generic="4c839a2dfe32a928de0dff7a765ba73fae1213d97c9aef6daef05570a4d2ba1c0869c999ad837dc598ea0228803f346ed60468d5f3d234aac36acea38320bdbc5b26468eed234efc0fae345e35f693a64f60060b4cb76fb9ab141b4a0f9c8ba0d5697c74634bf32ec4b2dd41d449b4d8f8cad435c94d3f5d861f0b017c76ec645a27a5fd651c39b00ecc1edc3ba4d5ca382bb8d893d973194d5451a527341a576bd8db04566bbf63cd6c388b955aac2614e2a6a0667046c38d2c4b3b5724db1c8bf64bd23fedb48aaa81745b48e9a28734d65f320b3d6545b032cdb7d8"]}, @typed={0x95, 0x39, 0x0, 0x0, @binary="a99f9989585986d2801b07bd464ae2faf570cf2164abaf9ca69ef5a2d5629dc8261ee5673b2ec3e15a9d1195c11cad0719f53872b7af357d44cabfb859623bc81e1db4c7ec512f4e94860d008707848366c668d78b8bd24e329c68f4af06423fbbae47a155326bbf17fd192a09c1725d2b18f0522d17871eea3f76ecd710cf4a0d08b94f6edf110cfbc6e1e776ccd97720"}, @nested={0xc, 0x125, 0x0, 0x1, [@nested={0x4, 0x44}, @nested={0x4, 0x88}]}, @nested={0xf4, 0x82, 0x0, 0x1, [@generic="44f8de13f63c981254090f7029a51facdac5b3e3a34d9d7fcc331348b0351fa6abbfcd39a9d4ab9a70a488a3f820c25e763a8744e2121538fd7aee13c33dfc1ed2cd78adbb6479936a9ac2de57dbdcd47fa7447aa79d979e2a8c55f61b7f13d7ce7ee2853f99f046a8c60ebbb26a56fa685cfff885afaff26f1683a0b999472429d9e48ba8b99ad124e35b9136436d3f03bf6240f2db72f5ca3263ebcea7f7fa2b33dfdb74d105f6faa6dfa1316744df12b2ac7fa2b605ec162fc253e7ce71d8a2749791db2a9af767d9655a850125bab2da746b7649daa5a9495fac0fb6dca0a0c5fd9e5b14ffb581402a2ca0d9b1c9"]}]}]}, 0x5c0}, 0x1, 0x0, 0x0, 0x20000000}, 0x40011)
mmap$auto(0x3, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x5, 0x3, 0x0)
socketpair$auto(0x2d, 0x2, 0x8000000000000000, 0x0)

6m7.749936637s ago: executing program 2 (id=868):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu1/buffer_size_kb\x00', 0xc0102, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$auto_PR_SCHED_CORE_SHARE_TO(0xc0000, 0x2, 0x0, 0x59, 0x2)
r1 = userfaultfd$auto(0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/veth0_to_bridge/hop_limit\x00', 0x101000, 0x0)
read$auto(r2, 0x0, 0x1ff)
r3 = syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000012c0), r1)
sendmsg$auto_TIPC_NL_PEER_REMOVE(r0, &(0x7f0000001680)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8851}, 0x844)
sendmsg$auto_NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000001240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001200)={&(0x7f0000000100)={0x1000, r3, 0x404, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_IE={0x784, 0x2a, "784d0527d3840fb0ed5157d727a0a7288ccd219921f0f5ec251f51b90b13552186274d17719da120f54c96db2232ffee6210651684d64ad4738b54591a895f05640829cee5c3ad393ed5b27978faafe5e33986bf96f87aa22aef7c705466807cffc54f23b835ce8244ab9c45bd163c56fa1e23efde64004d1160b5a8dc750df8628a9adf6b25bbda97b743bcc4135dab9a6697f79d7b067e45054ae6cd9e8d97397b16517269ebfcb42a8abe4e4d15fdd82c37664090f0f6e46c5e378600cb8b0b33e94c3a4d2dd5b2d021cf81bcf599d0378e085aaa4d41e084f7628003c341add0dd39d14195d8fa104b20937be041b39213284acb38ab0d8be0fd39f07f6bbf234babbf7f9063220df267e84c103d3c7e13e6f49a481554b7746bbed16bf1ed86e6da281caadb5e07c898663b4338c0003d3143e0ef2fa885a898abc3178919afd45563d122bba3172009160beb62f697b98846c1d4db43640f2731759fc1ac2983b0cdc587d7085896284b23dacbe04189fa69c8c2f84c69ddfe4bbc6a2bee0214860c788de83bf072250506c1336ca9a24e3e4c2b8fb550ce8b939694d2abcf8b011a017cfab28df8f34536abb796c5b11eeaa9a45875d0f5f330dad4171a266475b0d71bcd661f4ba369bf6617ec979f29f5a4ee9482b9905747461b9445482ca267c797833264c21a33d4cd197a391fae393e9f1ce077420a51e3765510aa65922886d8b8fbadaf81b7751b8b795bf837eae694b424b038b0ae84f88fd3e850b7c6573c207febb74ef6892542314bd9e8f7710ad99a5bd2358009d14f3f7e3eab66bdb8f9cedb3de8406a85d309bf23d50d9a2b06f800db9bbd1e4163b0fcbf8d0d5672c12d9b3b36c8d89e2c8fcec2a5a1c2b1adf75a11a23ca04460f32e59fa980be8b745e344ff314baacc3b5319995d574c01738f498caf640b263c95788811ec866a6567ca4686427c780c328f22fa95a4a6e92ffd4c5ac5b2aa7de6e86a54b92be8041116b3096c30cf353e1643dab0242c2d1cc7271976b7c9a186760a4eb17e854bc676546ba4f1b5fbdc3fca1d6d45dd897c4b8fb8c06c0795908b9217243a53466a36905767e04e824810a522187cbd2459e43682830127be62a7338417bb47854680b96da31ec9c661f1ab6214981da4764e3752b9cbd2130e84aa298c4a05e9e67c65b0604b85e152a688779e69c584afd976d9c0d545f7546be3549efe4e13eb67c4e7ce5c7de2c4e2b328556cc779a106fa0834ca8bb275a9ebc24c9e10b4bff278de7fd90461315f9cdb883b913ded7befc349d5c47c10a87d6a8013f01994985f979ac702bef61ebe49e5c7cace748efcbb250329a190e25ce8826cadfe7f584870359192eb06e1523216b27752e110626f74971ed14ac523bb67985f1d9f41cd2ddaaa247244d4b557794133d619520aeaff779c8587de5acc9967f86a817090c6637802cc47af763bbb7daf233c5e666a2c7efb75e7bdc07d3de6e3dd6ffd4df5e89aedbe5e8b9dd772ab3e00159ec7ff89376311f3045873f997cb816691810b1fd2450c32bcbde9c9a92b7d2bf0cd4827b65b2f47e4ce0e4f576572343091ebf44b4fa1ef8b55c9e95323fe4b9c1648e05d2f66327ba90b6475ebb230f0fc832d76fbd68b5da05dcd25386c86f57282afce19839fddc55a9381096c7ad6bc59491dde84a0e5b61896860cf0f42f557ed8fe78fe7d832b14bba7f56509aa57d45a5292f76335841f992f6308102294e9b49685c04501795e1bcdf75b96e142ad1a41d372ebe3227a08690bee672cf0323900e6baebcce5a1dde3a69ba060d84d677884cf14a9d8ef7140512868ceca56780ef5e9b5b1033066a481c139f067d39bfbb4398b2a9771a16a1400a49616c4adb13b733468da4e56f8f704776a096bf03f334051bd22c6b9d72147ccf64941782767d698c4d3e2231cf096b4bb4734297538a340ed07e78b0d7bbf576ab214ec1b0ab14822106c8430d86a7e040ab967a9239157dddebda3811a62006742b64eff8a095b36872ca8d20e1fe8eca6d3cd35b06c29275464c45806b846f1af7c2f8f1433ef833a5516e599f758b91623db56e03ce131ac81818320976c03b28b9ee50408a04ff7d0bdaae423fb890014c3b9f7b61fe1dc0199ac0ae5d685a58b83dfbee41a684ea28ef8829f87c7c38bf93bbfddd8aa15cb69a7b21a2a9c1bfe50901914b271915a5b1f3fd180b03effe80afafcca08e419e2def663d19b5fdc6bb9ccffffaee6ff090187b44272c4f16fd2247f48e9bf548f8acf1157815409e38dc4ba1fab89bb2eb141a2b75dbcadb97bf4ae860eff8f60d3402cf41a2673b324eb1f61016a44ce6feaebbca5609baedada683de6fa8218c331ee08450493f1cbbb1795b051d7556e0380f382736288940cbcc6191f50d6d3503a0fb635cd892965f751f836a3bb29cb3ae9d7dda4c87f3003bf444c24a83ae4e5946e02f6810abc12b88a3c10f66c3651886887e00299bc906640acc5f5f6166b186d0bb0e3dc3c9693e53c6f83a21985bb93dfeea862635ecad180e5299ae977cfdd469c89723a3c6003bfd1725e0dbbc581717650e3877d4936902b8abf274ff3159af3966dcb3ffd4366ffe7d9398c4513497a1d3e2bb8e32229ee6915efeee033a4fdf1558c104c2e8a9c37352570712fcebc81675cd864f79afbfb7fdaa97182b434bcaf64"}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x2ad, 0x6e, 0x0, 0x1, [@typed={0x8, 0xfb, 0x0, 0x0, @u32=0x1f8b}, @nested={0x1c4, 0x99, 0x0, 0x1, [@nested={0x4, 0x7f}, @typed={0x8, 0xae, 0x0, 0x0, @ipv4=@private=0xa010102}, @generic="fb436dc66904f657eb5e43c2cda5e558dfc1b137e822a49bebcac0d2307926cfb1d15481a463ea9e2869a0a49b14f09647e09211ce37b9cb1fd6e08ca318c6ed6d54970415ff57bf41d9e5934865bde84900c8895b5f776b100f7dbc9553e1042697cac3924230e50021f369ae1b6e0c84405593f679bf770c105c54ec28cc41064ed56ee322d8f4295dac8d24eb21d945ffacf1bf1012ea9fcd", @typed={0x8, 0x15, 0x0, 0x0, @u32=0x6}, @generic="ba61f9f444e94f4f0c8d2e1f4c9a7c0e4af652f61a3b505a5ab0829c3fb6ab2eb144a22044294566167c38597b3c665d2530f97c0d3696b10146c4d9e0716a95f88f6bc3db4a211f2aad1a958196df2ab75e73a5bcf0196e2d33ea7d677e9ff1b280295b", @nested={0x4, 0xf1}, @generic="4f9dad309b23a5c804379aa49a3a6e5f2152ca948670aca9ee3119345bbc31c4416e9c4f9592c1b92c2ea76bec496931e63e4327e83e24b58c8ccb024a8b995df38c052a93c34437540fd88eaec055972d29cfd1afa826b032dc822bb07c67a5ab1d7bac8be47fe246580faa18e552697806fc44ecd9fc90e4a40c39e823b8d05d49c8a2c5777aa3f2d9482fbd3aed18a117ed52d1628454fb41481072ed936879336c5252a514", @generic="7e03d4"]}, @generic="b6418a4470f4a318090bf5a872174489fa7db68a7a60f75698a7f4497f4f1e6292fd2477e5a643b62f6c82b6c4832ca3f900ba924ff8699bfdde6f4322525a6f25969a8af0e268a72ccb28ff7bf1e65c3dab280fba0ddd3a06e0a52c271a5c4b90a02ba57832128485f2a90b869372cdda5c2fc9be5be2043d3f6791e93b4c1d13056509fe7c19b898d791ca042d29ac0a91ed347ca0eacf8dcff070f13db53d3d13b667e0231ecfabbf27e62449fe7e51751292c4d89b7c27c7c46cfeed8caf8d7ac29d4a011d389b4d31ab3fd7cd9e005aeb31bbd2bd8aa0824de1a0"]}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x6}, @NL80211_ATTR_SCAN_SUPP_RATES={0x57a, 0x7d, 0x0, 0x1, [@nested={0xa4, 0xd, 0x0, 0x1, [@typed={0x3a, 0x149, 0x0, 0x0, @str='/sys/kernel/debug/tracing/per_cpu/cpu1/buffer_size_kb\x00'}, @generic="8cdd8e5fd3effce4074b29f84c996463389a524fa62ef61682b717f07bb98ec875192d5131bbee147b4407064d4874da1ba3447b6762d13c18bd78718d4950c71f7d18b63679edb93a754974aa76f1f53a737ea85dd7fada431e122b8683123e8cf26759"]}, @nested={0x113, 0xb0, 0x0, 0x1, [@generic="f6ef87a29bf1574d18fb7b5976d8f0649a1d6a1ff05ce1080e2c74933de9fa803737c9444a2d88405afdef0d51473f6cfe70fe98c08eebe6d960b97e6c17bdc36ae62d860877139304c121bb80f6f2d0d8e3f889ae6c8adb451f3c7bca78a98825e4b762917e1bf4873e7fa1bd479dc0d42c1babd42c1f89a414425c43f58d9005c41aa8491b0f0990590bc3c646d748e42d263307be686613e4c8aeabe5ed3878b841665d0e486ee42695f448dca78b37c9e6c774cb80b9b6f33432ba4f615c0e6ba906b5923259d7b0ccc8d65cec54ee55f539b64b2acbc3325e214523fc1b8a4e3f32945c52ffb535ba62eade8c88b35380", @typed={0x14, 0x39, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @nested={0x4, 0x7f}, @nested={0x4, 0xc2}]}, @nested={0x291, 0xb1, 0x0, 0x1, [@generic="cb069fa9b76576a690264b5f374435318ac6ec820da91a2f81454ca39c26b21cda7b86040531b07f9b42b514f2b41a7a44eeef338be01662fa30104074e1c4fa8a9de1ab283bf8e33142", @generic="bb8fbb2a25867473fb42a7172b90c59c0de98a695c9c5a7c227f62c538502cab3ef14799607ea3ebd09c61c3fe0fa99a2420946ef6e1d58213afc81d8886a964813d2aad48c8d05750c60566470d85ab86e1d3dcd1b7dce21ae6bca666211f879b45ed74e33eea44371ef2909d137cb1962670d42a148f97eaffd483d00b8732477ebd549f991a98f3fc3c2d32b6aa690224097924c5370584a6ccd47abbee7f32012181d171da81b9db17aa5a9c", @generic="099e3a229a9f9aae486a96ab682fc39b02bcbe767c909ef1d8f44eeefe46397b62475c114afec1999b8288f7b28a6ef84749855ca2d932f06fbc7292313db78da572c85ce96b8d02b807c7954d7a5f643ea50399c9553f6624f264687928faf9e918fc84227581c4428214159b8f5d5d9bd47043bc55d8e93a3d25301f7eb3b3b505db9e22a05e6cc68f329ce108324990ab6fb3151e514d8b5951426d3e0cf600581f35874772149864c63b7329317fb3005c81e6f938260f734cac2b3b", @generic="54f7053c4aae0a7df53b75cb39afb9548fd7e70fdd3d43cfec0dfc884ded8f56c62c39c52e0ee0cfa3c865fc9d71decea4c33017f969bfd30828e3e664f435c5337b58813ea35716c76c98b0926a6b093469fe55f8c1e0d1448621f9a76258f755bb74ab36f288cf657d02417fb32c030b54054d588a601de481886269478873ca73ec034010051e62f7d20ad789dd563bc3172f7736dfe22df5099fae07d2ae0aaca24280bab50cb519b0c7b06d302b73dfe8072f1f9c", @typed={0x12, 0x148, 0x0, 0x0, @str='!\\\x85)-/\x90(!-#,%\x00'}, @typed={0xc, 0x14e, 0x0, 0x0, @u64=0xb}]}, @generic="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", @generic="2fdbcc8dd2827129e69fa0051de433afa4c7ccebd633e080d1593dad7289a0d9f413040d87556c3e9267719ff6bb"]}, @NL80211_ATTR_SAE_PASSWORD={0xd, 0x115, "936154b1335645edc5"}, @NL80211_ATTR_TDLS_SUPPORT={0x4}, @NL80211_ATTR_KEY_DATA={0x13, 0x7, "2c75894add4d5ab82bb3bec185967c"}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x4}]}, 0x1000}, 0x1, 0x0, 0x0, 0x1842}, 0x40)
write$auto(0x3, 0x0, 0xfdef)

6m7.345617924s ago: executing program 2 (id=870):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000540), 0xa0100, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xb, 0x5, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x20000000003, 0x5, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x2}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xc20f0000, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0x4140aecd, 0x0)

6m6.638351932s ago: executing program 2 (id=876):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000004080)='/sys/kernel/debug/zswap/pool_total_size\x00', 0x2, 0x0)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0x10b000, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0x7fff, 0xfffffffffffffffa, 0x8001)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x42c883, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x1000000003b, 0x4, 0x4, 0x9, 0x7)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
msgrcv$auto(0x71, &(0x7f0000000040)={0x4, 0x7}, 0x0, 0x7fffffffffffffff, 0x5)
prctl$auto(0x1000000001a, 0x1, 0x0, 0xd, 0x32)
msgget$auto(0x0, 0x5)
msgsnd$auto(0x0, &(0x7f0000000080)={0x1, 0x6}, 0x8, 0x7)
madvise$auto_MADV_GUARD_INSTALL(0x3, 0x9978, 0x66)
msgsnd$auto(0x0, &(0x7f00000000c0)={0x7fc, 0x3}, 0x400, 0x2)
msgrcv$auto(0x0, 0x0, 0x4bd, 0x1, 0xf1)
socket(0x1d, 0x3, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x106)

6m5.293893184s ago: executing program 2 (id=880):
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_SEQ_GETTIME(r0, 0x80045113, &(0x7f0000000340))
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/can/rcvlist_fil\x00', 0x101002, 0x0)
timerfd_create$auto_CLOCK_REALTIME(0x0, 0x7f9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x3, 0x0, 0x1, 0x8000000008011, r1, 0x9)
mmap$auto(0x0, 0x40008, 0x1000000004, 0x9b72, 0x2, 0x8000)
userfaultfd$auto(0x1)
ioctl$auto(0x3, 0xc018aa3f, 0xf0b) (async)
ioctl$auto(0x3, 0xc018aa3f, 0xf0b)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), r2)
socket(0xa, 0x1, 0x84) (async)
socket(0xa, 0x1, 0x84)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38) (async)
ioctl$auto(0x3, 0x400454ca, 0x38)
write$auto(0x3, 0x0, 0xfdf3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) (async)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
setsockopt$auto(0x3, 0xfffffffb, 0x2, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram9\x00', 0x60140, 0x0)
listen$auto(0x3, 0x81) (async)
listen$auto(0x3, 0x81)
iopl$auto(0x3)
prctl$auto(0x10000000016, 0x1, 0x4, 0x5, 0x0)
r3 = fanotify_init$auto(0x6a1, 0x2000000000002)
read$auto_media_devnode_fops_mc_devnode(r3, 0x0, 0x0)
kill$auto(0x0, 0x11) (async)
kill$auto(0x0, 0x11)
rt_sigqueueinfo$auto(0x0, 0x3, 0x0) (async)
rt_sigqueueinfo$auto(0x0, 0x3, 0x0)
openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace_options\x00', 0x20600, 0x0)

5m50.109608506s ago: executing program 32 (id=880):
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_SEQ_GETTIME(r0, 0x80045113, &(0x7f0000000340))
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/net/can/rcvlist_fil\x00', 0x101002, 0x0)
timerfd_create$auto_CLOCK_REALTIME(0x0, 0x7f9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x3, 0x0, 0x1, 0x8000000008011, r1, 0x9)
mmap$auto(0x0, 0x40008, 0x1000000004, 0x9b72, 0x2, 0x8000)
userfaultfd$auto(0x1)
ioctl$auto(0x3, 0xc018aa3f, 0xf0b) (async)
ioctl$auto(0x3, 0xc018aa3f, 0xf0b)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000002c0), r2)
socket(0xa, 0x1, 0x84) (async)
socket(0xa, 0x1, 0x84)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000) (async)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38) (async)
ioctl$auto(0x3, 0x400454ca, 0x38)
write$auto(0x3, 0x0, 0xfdf3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0) (async)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
setsockopt$auto(0x3, 0xfffffffb, 0x2, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000080), 0x6b)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ram9\x00', 0x60140, 0x0)
listen$auto(0x3, 0x81) (async)
listen$auto(0x3, 0x81)
iopl$auto(0x3)
prctl$auto(0x10000000016, 0x1, 0x4, 0x5, 0x0)
r3 = fanotify_init$auto(0x6a1, 0x2000000000002)
read$auto_media_devnode_fops_mc_devnode(r3, 0x0, 0x0)
kill$auto(0x0, 0x11) (async)
kill$auto(0x0, 0x11)
rt_sigqueueinfo$auto(0x0, 0x3, 0x0) (async)
rt_sigqueueinfo$auto(0x0, 0x3, 0x0)
openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace_options\x00', 0x20600, 0x0)

11.546490205s ago: executing program 4 (id=2186):
r0 = socket(0x1d, 0x3, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x80002, 0x73)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x80805, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
timer_create$auto(0x0, 0x0, 0x0)
timer_create$auto(0x3, 0x0, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x23, 0x0, 0x8)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x6, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x100000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x983, 0xfffffffffffffffd, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x81)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x489, 0x400, 0x9}]})
socket(0x1d, 0x3, 0x1)
r2 = socket(0x10, 0x2, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/loop14/queue/stable_writes\x00', 0x182b02, 0x0)
poll$auto(&(0x7f00000010c0)={0xc8, 0x20, 0x7}, 0xc, 0x4)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000340)=""/219, 0xdb)
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f00000000c0), r0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40400c4)
r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event1\x00', 0x2080, 0x0)
r5 = socket(0x18, 0x5, 0x1)
getsockopt$auto_SO_TYPE(r5, 0x7, 0x3, 0x0, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
clone$auto(0x8, 0xfffffffffffffff7, 0xffffffffffffffff, 0xfffffffffffffffc, 0x9)
ioctl$auto_EVIOCGMASK(r4, 0x80104592, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

10.741171519s ago: executing program 4 (id=2189):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x2020009, 0x9, 0xeb1, 0xfffefffffffffffa, 0x8001)
prctl$auto_PR_SET_FPEXC(0xc, 0x9, 0x0, 0x5, 0xfef)
ioctl$auto_TIOCSTI2(0xffffffffffffffff, 0x5412, &(0x7f0000000000)="cdb8941ca55f8ccb74")
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40200081)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x4008)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0x8000000000000eb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x2, 0x88)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
fcntl$auto_F_SETLK(0xffffffffffffffff, 0x6, 0xffffffffffffffff)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
mprotect$auto(0x0, 0x6, 0x4)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)
r1 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r1, @new_prog_fd=0x4, 0x7, @old_prog_fd=r1}, 0xa3)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0xa, 0x5, 0x1007181, 0x8a0d, 0x7, 0x7, 0x7ff, 0x0, 0x26, 0x4, 0x200004000001, 0x384, 0xfffffffffffffffa, 0x3, 0x0, 0x30, 0x0, 0x864, 0xe, 0x22000, 0x200, 0x0, 0x84}, 0xb, 0xd)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffff7effffd0e, &(0x7f00000001c0))
write$auto(r1, 0x0, 0x1000002000000000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_DEL_TXSA(r3, &(0x7f00000056c0)={0x0, 0x0, &(0x7f0000005680)={&(0x7f0000000200)={0x24, r4, 0xbb484b3ccf0b22b, 0x70bd2b, 0x25dfdbfb, {}, [@MACSEC_ATTR_SA_CONFIG={0x8, 0x3, 0x0, 0x1, [@typed={0x4, 0x1}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000050}, 0x40094)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/sound/ctl-led/mic/card0/reset\x00', 0xa001, 0x0)
write$auto(r5, &(0x7f0000000180)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

9.281076494s ago: executing program 4 (id=2194):
clock_getres$auto(0xfffffffe, 0x0)
r0 = openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000180), 0x28400, 0x0) (async)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio0\x00', 0x1600, 0x0)
fsetxattr$auto(r1, &(0x7f0000000100)='\x00', &(0x7f00000001c0)="906cf03529a156ef9f606faf63a5c5d6a5414135883befc736d3b26f732ee0b7d15efe2f07b4c7a4144c8095c0d552b380df90493cb3277c4aa1181b9048342d7edbd304bc17c4d08ae6d8db9b959ae210cec61b876dcee0760f50b3550c2da969372239ab94699d3f8896493c43da2996cc70cea5a7f45120dcbcfbb8e20a5e3a67cae3df8be1bad84e3803ae15036927ebf182e7d176f045c4018e6ac3df78b72b1261d38f93af0076c6c738fc1dbca77bff344263fb7d26ed582091ca34a41d35165f784d301504", 0xffffffff, 0x1000) (async)
adjtimex$auto(&(0x7f0000000000)={0xfffffff0, 0x0, 0x7, 0x9c, 0xe1d, 0x3, 0x3, 0x0, 0xfffffffffffffff7, 0x4, 0x80000000004, {0x100000000, 0x2}, 0x8000000252, 0x5, 0x3, 0x1, 0x0, 0x4, 0x9, 0xc578, 0x4, 0x400, 0x7ff}) (async, rerun: 32)
writev$auto(r0, &(0x7f0000000140)={&(0x7f00000002c0)="2629f2aa4cd7bf012b049bfc7237db87e0fd986bca20d822e03a906865395e42b5620691e3f8e23355b9e522db704aeb42989e1ee1f3a547c8abb3d46fbae758690cf01a026f89175cd550f065456cf973d2bf296a0ab130ccdcd4abe4dfd1503f8bdf56943fda07a366acb6ed07800d588f43c60db084239bdbeb0a5a25c58819f2ea510333bd35b81a2c60477db4d1da4f6c5bd49ed959ca4de47aca8af45daf8d3e77e9e2a8e0db1e643703d92e319338a1d4e29eac6ad6707a3d0a41dc5aa6b0d1e03deb641a9158c38b90b7b5b71f5a84c736e5958888b310baa0bcbe342bfc3b89f3bbcc1c17cd0e639854c3bf7e", 0x3}, 0x3) (async, rerun: 32)
readv$auto(0x3, &(0x7f0000000040)={&(0x7f0000000000), 0x36a}, 0x6) (async)
clock_nanosleep$auto(0x8, 0xfe000000, &(0x7f0000000000)={0x2, 0xefe0}, &(0x7f0000000040)={0x6d88, 0x4}) (async)
read$auto(r0, 0x0, 0x0)

8.956422662s ago: executing program 4 (id=2199):
rseq$auto(&(0x7f0000000100)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2, "3adc8f861bc4a6a9a750f0c4b7154b4211a826cacfd47e9951f8b813e1aa66d73073eae7f7486d3083ff78263a5507fa26b6de528b2631df0ee47758171785ea99d9dee4c2a114bbde7161dc4032588c32c961b692517aa5011c698e6fd4fa556f1235f41e23ac6618682c574d21c6c2d2b85784b3c3e17eab8a102ccf775a6cec2579a3b9a48934420fdbf7dbdedf4285"}, 0xfffffff4, 0x0, 0x7)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x6, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x401, 0xfffffffffffffffd, 0xd4, 0x4, 0x28c, 0x0, 0x3, 0x368e, 0x9, {0xfffffffe, 0x10000}, 0x5, 0x6, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/nilfs2/features/README\x00', 0x40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/6, 0x6)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
stat$auto(&(0x7f0000000300)='./cgroup\x00', &(0x7f0000000340)={0x800000007, 0x8000, 0x6, 0x8001, 0xee00, 0xee01, 0x0, 0x187, 0x2, 0x8, 0x3, 0x5fd0, 0x7f, 0x6, 0xfff, 0x2003, 0x1})
setsockopt$auto(0x3, 0x0, 0x13, 0xffffffffffffffff, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3a600, 0x0)
ioctl$auto_KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000000)=0x3)
mmap$auto(0x9, 0x8, 0xdf, 0x9b72, 0x2, 0x3ff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
unshare$auto(0x40000080)
ioperm$auto(0x3, 0xe, 0x2000000000000149)
delete_module$auto(&(0x7f00000001c0)='%-+,C^$^!\x00', 0x7)

8.807253086s ago: executing program 0 (id=2201):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
nanosleep$auto(0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000500)='/dev/ttya6\x00', 0x101502, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x400, 0x0)
capget$auto(0x0, 0xfffffffffffffffe)
unshare$auto(0x40000080)
r2 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$auto_IMADDTIMER(r2, 0x80044940, &(0x7f0000000140))
bpf$auto(0x4c2a, &(0x7f00000001c0)=@task_fd_query={0x0, r1, 0x97bc, 0x3, 0x7, 0xa, r0, 0x82, 0x3}, 0x10)
ioctl$auto_TIOCSWINSZ(0xffffffffffffffff, 0x5414, &(0x7f0000000840)="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")
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/038/001\x00', 0xa821, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r3, 0x802c550a, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
signalfd4$auto(r3, 0x0, 0x8000, 0x8)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_congestion_control\x00', 0x121482, 0x0)
pwrite64$auto(r5, &(0x7f0000000200)='/proc\'sis/ne4/ipv4/tcp^\xff\xf7\x00\x00', 0x4bf, 0x200)
socket(0x2a, 0x6, 0xfffffffd)
ioctl$auto_SNAPSHOT_UNFREEZE(0xffffffffffffffff, 0x3302, 0x0)
r6 = socket(0x23, 0x2, 0x0)
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000280), 0xc, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYRESHEX, @ANYRES16, @ANYRESOCT=r6], 0x1c}, 0x1, 0x0, 0x0, 0x200080c5}, 0x40440d1)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x815f4da0a, 0x5, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
r7 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
ioctl$auto_VHOST_SET_BACKEND_FEATURES2(r7, 0x4008af25, &(0x7f0000000080)=0x9)
write$auto_console_fops_tty_io(r0, &(0x7f0000000440)="671d264add69b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763ac8caf4bde4c30b530ac6ebbff950e1a647d6a08a1b55dde5a409b4b", 0x3a)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYRES8, @ANYRESHEX=r2], 0x1c}, 0x1, 0x0, 0x0, 0x200400f0}, 0x4000850)

7.121217055s ago: executing program 0 (id=2210):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x8a603, 0x0)
mlockall$auto(0x7)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x5, 0x80000000, 0x0)
sysfs$auto(0x2, 0x810000000000003a, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)

6.707461508s ago: executing program 0 (id=2211):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
close_range$auto(0x2, r0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
getrandom$auto(0x0, 0x6000000, 0x3)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x8c00, 0x0)
mmap$auto(0x0, 0xf6, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x640, 0x0)
read$auto_mon_fops_binary_mon_bin(r1, 0x0, 0x0)
timer_settime$auto(0x10000009, 0xfffbf38f, 0x0, 0x0)
mmap$auto(0xfffffffffffffffb, 0x1, 0xdf, 0x9b72, 0x7, 0x27fff)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x101, 0x0)
ioctl$auto_EVIOCGRAB(r2, 0x40044590, &(0x7f0000000140)=0x3)
writev$auto(r2, &(0x7f0000001100)={&(0x7f0000001080), 0xff}, 0x7f)
setgroups$auto(0xe32, 0x0)
sendmsg$auto_NL802154_CMD_GET_SEC_DEV(0xffffffffffffffff, 0x0, 0x0)
read$auto(r0, 0x0, 0x8000a)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
bpf$auto(0x99d, 0x0, 0x6f3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000680)='/sys/module/dvb_usb_vp7045/uevent\x00', 0x248002, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20048801)
ioperm$auto(0xffff, 0xe, 0x1)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, 0x0, 0x602002, 0x0)

5.259104334s ago: executing program 4 (id=2213):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/cpu_byteorder\x00', 0x181040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000010c0)=""/4096, 0x1000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/lapb1/dormant\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/124, 0x7c)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x8, 0x8000)
recvfrom$auto(r1, &(0x7f0000000140)="977974709f9d5f54ed355f03b1a5a542f65e0056debfa79a0980d68a839433192c351f37ebfddf85d8a065ce2c5bd5cf063fa0dcd1ec91b80e2618a669562d6cb89baaccb7a44112f1196ea18e7e", 0x22d6, 0x8, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x2}, &(0x7f00000001c0)=0x9)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0xa, 0x801, 0x84)
capget$auto(0x0, 0xfffffffffffffffe)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
getsockopt$auto(r3, 0x84, 0x72, 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, 0x0)

5.13735418s ago: executing program 3 (id=2214):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x810000000000003a, 0x0)
fsopen$auto(0x0, 0x1)

5.005610715s ago: executing program 1 (id=2215):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sigaltstack$auto(&(0x7f0000000040)={0x0, 0x1, 0x10401}, 0x0)
r1 = getpid()
r2 = gettid()
rt_tgsigqueueinfo$auto(r1, r2, 0x21, 0x0)
execveat$auto(r0, 0x0, 0x0, 0x0, 0x11000)

4.973464739s ago: executing program 4 (id=2216):
r0 = socket(0x22, 0x801, 0x104)
mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/filter\x00', 0x262083, 0x0)
setsockopt$auto_SO_TIMESTAMPING_NEW(0xffffffffffffffff, 0x101, 0x41, 0x0, 0x8)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xff7f}, 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x1ff, 0xdf, 0x200000810, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
madvise$auto(0x4d50, 0x0, 0x15)
write$auto(r0, 0x0, 0x100084)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x29a02, 0x0)
socket(0x15, 0x3, 0x7ff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="11002bbd7000fcdbdf25040000000400100008000c00"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
syz_genetlink_get_family_id$auto_wireguard(0x0, 0xffffffffffffffff)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid$auto_P_ALL(0x0, 0xffffffffffffffff, &(0x7f0000000080)={@siginfo_0_0={0x4, 0xe70, 0x9}}, 0x5, 0x0)
sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(0xffffffffffffffff, 0x0, 0x4000)
vmsplice$auto(0x1, &(0x7f0000000000)={0x0, 0x5}, 0x6, 0x8)
mmap$auto(0x0, 0x8, 0xdf, 0x9b73, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)

4.898721349s ago: executing program 3 (id=2217):
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0, 0x52a0}, 0x1, 0x0, 0x0, 0x4048040}, 0x2400c840)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa53ba42933ae74c3d173663248ff0945dd2e405e0d378b5a8e4643a7bc3b35a7248431450ca8901467ea6dc5d86de1e90f869f6a04ac10043676f3b2c7f1339b2d7468133fb8447d17846b6b78079ecc31d7d0f74caa4a3db1ac4d312bfdb34bd331f1f771a2396108561a52153d63a7b2a3a077a7e4c1a22bcb23e1f3e511fee310baa67904d2aad4d6671e8b77c7720e37e84e0efecb60a35f188cbe8b8b2fb3967b78aa482aabb103f23083baa9b2ae653731d5993db4054233dea4af25795e12eb4d6b046bdeea6adce8626e0def15dd32b0ec16a85d93e1dea980794033f4b46973062c64c0209f9d3efc6ea7704c8e8dfea8cdfbe2cb1e367bf634a1952190e0660994f79f0c622d47ee8f93ce1c2852db907ae68a29bcc960b26e0e634173287fd012c4bb3063c41d35c92e896b44080bc5a98e90907cd1d01cc0708019cc1c93c71f29bfe841c873ad2aa0565dfaeb86c8b8e58ea2075de2a562ba1b5dc4ca452df21f25453b7c7f9a3e31547f4e803cefbac3b94715f2ab1f9fc66570244472f2f29deb9bdf6dc5b18d54e3c2264f9598f2ea749d170a66d351acf003c3f37fe74a09a8a964ce2818e4b4efd1eb0e3bca5dfd2a053eeb5735b96d282d2e03866bd6581b5e5e541c74f0b92b932b234ac117342f156b4b23fc6dcbc92ada00ce404f54443b6e7fdac9acb79e5258a865ced633ff5356d13a3e9923bcd8e6d177c9fb8618f9393798d90d70c78207e40f95bb2b0a9308f29f4331bbdfc1021dface5a740473b462c47286fee1c9d0036c78134e108b5b218d3022fd277e1cdf0cdf8cd4b37d74c8dd47e00e50fcf8d336978a0e7624f94b8fdcd1c9459201231f343c7cb602083aa5e1aea8974a9e22d77cb94cae6c89e239bacfe656d9b0948de480ce2ba3b4dbcb180089d5eb0f8f481e02f7d4628e9134b6e52881572a398e4edd6f01f90983826d721dddc7d4ba3f293288ba54f696fa25cc2f8721c3e380dd04bf05801f90019498601fcbcea6aa6a2d7983e6823f480185ef9c3b4ed19c4f94c108067c89d69bc4e0da0112280ecd0caff8a454fb3e6655dc6a35cdd053aef882e403458754f5e84bd2210f18a61106af8c5a2c18dc48ff87cfda6d545014009a167570f0550e5121d0bdf4b20a1177b708e5515ee33db3baf29633440999ddd36eb0299a1efcd8934ab60c1a88d9db6fa0d2b3f0bf12e87630e0dc5eddca8f291ad85141391e6f9fe56ee4ddb39a1ac7a573cb69ec14f012ea0b721df3ea40747d1130a61802e859519ae1bc5a3673105fa87485f88b8981a3a208a3576848c2df152a023f5e573c867b43b10247336b110956eb28e5288d7aa19219e8324857cdf6d17530385720afd5a1ffd23aa1bd061b73caafa05afdd1441040989d081814635347f1d55669b1c38be4698e3a085e2010e35d2747b4e39ef4920f58d6b4585d737c13221a44ad5543099bb0ab228722ef9cbc0d621178012495837d6a220eeaaf498ccc01", 0xfe04)

4.55139976s ago: executing program 3 (id=2218):
rseq$auto(&(0x7f0000000100)={0xe, 0x400, 0x0, 0x20006, 0xffffffff, 0x2, "3adc8f861bc4a6a9a750f0c4b7154b4211a826cacfd47e9951f8b813e1aa66d73073eae7f7486d3083ff78263a5507fa26b6de528b2631df0ee47758171785ea99d9dee4c2a114bbde7161dc4032588c32c961b692517aa5011c698e6fd4fa556f1235f41e23ac6618682c574d21c6c2d2b85784b3c3e17eab8a102ccf775a6cec2579a3b9a48934420fdbf7dbdedf4285"}, 0xfffffff4, 0x0, 0x7)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x6, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x401, 0xfffffffffffffffd, 0xd4, 0x4, 0x28c, 0x0, 0x3, 0x368e, 0x9, {0xfffffffe, 0x10000}, 0x5, 0x6, 0xfffffffffff7fffd, 0x1007ffd, 0x0, 0xfe, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/nilfs2/features/README\x00', 0x40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/6, 0x6)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
stat$auto(&(0x7f0000000300)='./cgroup\x00', &(0x7f0000000340)={0x800000007, 0x8000, 0x6, 0x8001, 0xee00, 0xee01, 0x0, 0x187, 0x2, 0x8, 0x3, 0x5fd0, 0x7f, 0x6, 0xfff, 0x2003, 0x1})
setsockopt$auto(0x3, 0x0, 0x13, 0xffffffffffffffff, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f000000fc00), 0x3a600, 0x0)
ioctl$auto_KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000000)=0x3)
mmap$auto(0x9, 0x8, 0xdf, 0x9b72, 0x2, 0x3ff)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
ioctl$auto_USBDEVFS_CONTROL32(r3, 0xc0105500, &(0x7f0000000080)={0x7a, 0x7d, 0x7, 0x4, 0x100, 0x7, 0xa})
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
ioperm$auto(0x3, 0xe, 0x2000000000000149)
delete_module$auto(&(0x7f00000001c0)='%-+,C^$^!\x00', 0x7)

3.742707528s ago: executing program 1 (id=2219):
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0)
shmctl$auto_IPC_RMID(0x40, 0x0, &(0x7f0000000400)={{0x1, 0x0, 0xee00, 0x3, 0x403fa, 0x1, 0x8}, 0x2, 0x1, 0x5, 0x9, @raw=0xd2, @inferred, 0x3, 0x0, &(0x7f00000002c0), 0x0})
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
sendmmsg$auto(r0, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, 0x0, 0x1, 0x0, 0x4, 0x3}, 0x4}, 0x2, 0x100)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
socket(0x2b, 0x1, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0)
mmap$auto(0x2, 0x2020009, 0x3, 0xeb5, 0xfffffffffffffffb, 0x10)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0)
socket(0x3, 0x5, 0x5)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, 0x0, 0x810)
syz_genetlink_get_family_id$auto_hsr(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/btrfs/features/extended_iref\x00', 0x18b440, 0x0)
read$auto(r2, 0x0, 0x9)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, 0x0, 0x800)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r3 = eventfd$auto(0x80)
write$auto(r3, &(0x7f0000000400)='\'\x00', 0x8)
r4 = socket(0xa, 0x5, 0x84)
sendto$auto(r4, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffe00"}, 0x1c)

3.453905418s ago: executing program 3 (id=2220):
r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
socket(0x2b, 0x1, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0)
mmap$auto(0x2, 0x2020009, 0x3, 0xeb5, r1, 0x10)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0)
r2 = socket(0x3, 0x5, 0x5)
statx$auto(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0xfffffff8, 0xa154, &(0x7f0000000140)={0x7, 0x0, 0x8, 0x5, <r3=>0xffffffffffffffff, 0x0, 0x2f, 0xd240, 0xa35, 0x10001, 0x1, 0x9, {0xfb1, 0x3}, {0x4, 0x7}, {0x9, 0xffffffff}, {0x1, 0x7}, 0x5, 0x0, 0x0, 0x4, 0x24f, 0xf, 0x1800, 0x821, 0x36c, 0xf7b, 0x1, 0x6, [0x2bf, 0x3, 0x0, 0x9, 0x9, 0x9, 0x1, 0x9, 0xae5c]})
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000240)={&(0x7f0000001c00)=ANY=[@ANYBLOB="2c0400ef42e9ef337ee3b2342b545c7eb8b8006b76de6e8549c85dedfbaa2a9cb50000005748cbc5178c10ae", @ANYRES16=0x0, @ANYBLOB="00012abd7000fbdbdf2503000000101002800800a200", @ANYRES32=r0, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="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"], 0x162c}}, 0x40840)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r4 = socket(0x2, 0x5, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
bind$auto(r4, &(0x7f0000000040)=@in={0x2, 0x4e21, @remote}, 0x6a)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, 0x0, 0x810)
syz_genetlink_get_family_id$auto_hsr(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/btrfs/features/extended_iref\x00', 0x18b440, 0x0)
read$auto(r5, 0x0, 0x9)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, 0x0, 0x800)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r6 = eventfd$auto(0x80)
read$auto(r6, 0x0, 0xcc9c)
write$auto(r6, &(0x7f0000000400)='\'\x00', 0x8)
socket(0xa, 0x5, 0x84)

2.933863473s ago: executing program 0 (id=2221):
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x20000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
iopl$auto(0x3)
socket(0x1e, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16], 0x24}, 0x1, 0x0, 0x0, 0x4088}, 0x20000010)
socket(0x21, 0x3, 0xffffffff)
setsockopt$auto(0x2, 0x1, 0x50, &(0x7f0000000000)='\x00', 0x40)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0x4c2, 0x0)
ioperm$auto(0xc5, 0x3, 0xc115)
getrusage$auto(0xffffffff, &(0x7f0000000300)={{0x8000000000000000, 0x7fff}, {0xb, 0x200}, 0xffffffffffffffff, 0x8000, 0x4, 0x9, 0x2, 0x3ff, 0x6, 0xb97, 0x3d6, 0x1, 0x5, 0x7, 0x8, 0x8000000000000001})
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
munmap$auto(0x20001000, 0x7fb3)
madvise$auto(0x1, 0x69cd, 0x1)
select$auto(0x2, &(0x7f0000000040)={[0x100000000, 0x7f95, 0x0, 0x100, 0x8, 0x5, 0x4, 0x1, 0xffffffffffffffff, 0x0, 0x4, 0x1, 0xfffffffffffffff8, 0x4, 0x1, 0x617e]}, &(0x7f0000000100)={[0x6, 0x6, 0x3ff, 0xfffffffffffffffe, 0x2, 0x5, 0xfffffffffffffffc, 0x65, 0x4, 0x1000, 0xb4c3, 0x8, 0x4, 0x8, 0x7, 0x3]}, &(0x7f0000000180)={[0x450, 0x1000, 0x5, 0x3, 0x62, 0x2, 0x4, 0x80c, 0x4, 0x1ff, 0x10, 0x3, 0x17ac, 0x3820, 0x9, 0x2]}, &(0x7f0000000200)={0x3bca, 0x7fff})
ptrace$auto(0x10, 0x10000000000001, 0xffffffffffffff56, 0x868f)
syz_clone3(&(0x7f0000000300)={0x28020000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0)
io_uring_register$auto(r1, 0x80000000, 0x0, 0x7fff)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000000c0), r0)
write$auto(0xca, &(0x7f0000000040)='\x04>\x01\f\r\a\x00\xf6OL\xc8\xbe\x94\xf2\xa2\x00', 0x2db)

2.552948513s ago: executing program 3 (id=2222):
r0 = socket(0x1d, 0x3, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x80002, 0x73)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x80805, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
timer_create$auto(0x0, 0x0, 0x0)
timer_create$auto(0x3, 0x0, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x23, 0x0, 0x8)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x1ffde, 0x3, 0x2000000000000006, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x6, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x100000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x983, 0xfffffffffffffffd, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe]}, 0x1fe, 0x81)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x489, 0x400, 0x9}]})
socket(0x1d, 0x3, 0x1)
r2 = socket(0x10, 0x2, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/loop14/queue/stable_writes\x00', 0x182b02, 0x0)
poll$auto(&(0x7f00000010c0)={0xc8, 0x20, 0x7}, 0xc, 0x4)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000340)=""/219, 0xdb)
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f00000000c0), r0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40400c4)
r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event1\x00', 0x2080, 0x0)
r5 = socket(0x18, 0x5, 0x1)
getsockopt$auto_SO_TYPE(r5, 0x7, 0x3, 0x0, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
clone$auto(0x8, 0xfffffffffffffff7, 0xffffffffffffffff, 0xfffffffffffffffc, 0x9)
ioctl$auto_EVIOCGMASK(r4, 0x80104592, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

1.659262596s ago: executing program 3 (id=2223):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20008, 0x3, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
r0 = socket(0x2, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16, @ANYBLOB="afa72dbd7000ffdbdf250e000000"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x89\x06s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x10, 0x6)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, r2)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001600)={'macvtap0\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r5, &(0x7f0000001d80)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001d40)={&(0x7f0000001640)={0x6f8, 0x0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_STATS_GROUPS={0x211, 0x3, 0x0, 0x1, [@typed={0x10, 0x6a, 0x0, 0x0, @str='tcp_metrics\x00'}, @typed={0x8, 0xe9, 0x0, 0x0, @pid}, @generic="7fa4c44e61a1b20ae8f9bdec52cf6768ce4fcd75831b74b45276521af7645c171f9dd3fea5fa5b93dd27267bfbbb5ccd99107c124182a4a98b581c2a95f02a87954210a3785e462e31da4d216faf09cdd2", @typed={0xc, 0xe3, 0x0, 0x0, @u64}, @nested={0x198, 0x13d, 0x0, 0x1, [@typed={0x8, 0x7c, 0x0, 0x0, @pid}, @generic="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", @generic="019b7a67f00fbb459f80dd0efedee0ff51a29dd6668468870cf965f9fbc501ea3ede92d0957f47b62ee7ee6cf90d90493b507eb0e7d4b2d6a0ad5dfbe56fa1dd53b7c52d5fd6bd777ff513db1db4212c0464e717779b3718f2ec2c379c9110ebd954917df483961e0cb4096e332210bb7f02616bfc6fc0488dcc2b4e35c05d4619403d54feee03b667a53c843ab75809c9e8"]}]}, @ETHTOOL_A_STATS_GROUPS={0x14b, 0x3, 0x0, 0x1, [@generic="ffea24d454c64683280f87c7ea1176d8bfd1a7fa74f418f28bc2b056e4938167144021d0", @nested={0xc, 0x125, 0x0, 0x1, [@typed={0x8, 0xd9, 0x0, 0x0, @uid}]}, @nested={0xe9, 0xdb, 0x0, 0x1, [@generic="25a2b62a7ef0d6cbb7d2299ecdd8293202e0e4f421ae2cdadf5b9c587b9f66aae2371dcc36613dc6dea13fae0d482dfb983f68d388596381924f024d90fc4397d72d4091013325a0ecdae69a9d3ba44382685307e281b428e4d97ea5aa7629eb8a2f5873f3e800b57a498fbf2dd410af552e6d2de1af5b8b5767aa66d7ba169203dff10c627b2f50c69f3e4e8e04379cc12a1f916f0f4b55aa0485b0d9e3407d4836bc0f73b9a0c9d33819c9b466e1179cb52a7815d6c08950bbec7fbc40cb6c00ca88c84c70caef9f7a282104", @nested={0x4, 0x5e}, @nested={0x4, 0x14}, @nested={0x4, 0x2c}, @typed={0x8, 0x9c, 0x0, 0x0, @uid}, @nested={0x4, 0x12d}]}, @generic="f8dfe0e68f138ef497b6a6d348c1785a7435f748b14db76f7e483765e4904894a0944ea6e80a2e62393171"]}, @ETHTOOL_A_STATS_GROUPS={0x308, 0x3, 0x0, 0x1, [@generic="492462872045e68500eb3b97e57e5e07ecf78b1281862112", @generic="dc71c6d1a08352c7d4b15d86e41bfa5936094b868f6e7da53bd869752cb943dc3ad11453e5552231606855b0fede96", @nested={0x134, 0x111, 0x0, 0x1, [@typed={0x14, 0xff, 0x0, 0x0, @ipv6=@local}, @typed={0x4, 0x12f}, @typed={0xc, 0x9a, 0x0, 0x0, @u64=0x5}, @nested={0x4, 0x2b}, @nested={0x4, 0x10c}, @generic="9ac5e4575b14a10ecbb8937ed3bacc49e46387c4756a2e575d844a9087becbfedc6b97648e95a2ed125ef5eb9b2218264366d82eacc2c6e84b477644a3b51239d8c80b6920d6fe7dd05e2574e7ebc63b38c75ee8b18bb89db34769238d78b5", @nested={0x4, 0xbf}, @nested={0x4, 0x5d}, @generic="cb8ae3c45d22de71c7222020be4f2e90fe29143ba203ad18a6138fc4666c5bf2b3bf59aeb671b56ffee450cb77a1ff88c92862ef55fcd2c5535a5d508289707376b201d52f0909ad9b9280e042dd5c954df5ce8f93cdee3c2c087782249d91d9e2de02f33adc0461d4a3da678cf925f8b446f7b3c84147e76cbb2256bd43ac459b68dbb583e3cf2a881cf0020848e50577686864a2026a797d59378406"]}, @typed={0x8, 0x1e, 0x0, 0x0, @fd=r4}, @nested={0x14f, 0xaa, 0x0, 0x1, [@nested={0x4, 0x8d}, @generic="f8f69ae3b49110d1d5d64469c9156dd04f536a1cc4a22e654adf5c0ece93ff80c484b89a0761365765bc98777b2fb6428263b5fa22cf28d9f93c97b47713f2cad344", @nested={0x4, 0x11a}, @nested={0x4, 0x72}, @generic="5cfd1a5d214e9e5b41121edbd93beb243e3fff0655044d8a39d5a60439b93a8d109c561699626ba381b20aaab55afbb2ed11c7ee880ca37f786b545fe2b65fc2f6be703eb40dcc8bc949f94fee5fc7fafc4d70e650e86311570cc8d28e6de1ff3b9003135b3a511045881dab02f59947711bb5cc386a8948c5c53dea18a6fdc94b211fa0340c5d76ad2b844ad4e65c2331089c9defa2f49cba49b4a7b0c92a2c67a16883e21deaa29ddecaf2b2a39d6d8ac2276099b3b2af2571ed6574d2dbce2b7f6774089634abc63165b0fa1ddd5e30c89adde3e44b482e0436b893dcaf4d1f36472e93ae1ac74490c5bd3b37ee2833d6903a3631ab7381c2004a26"]}, @generic="1927a05c11298532cb14246c19e448c45696e8ac860ccccbbc8f20a40eb2b7f5f7d46b5b44b8d0a4dc", @typed={0x8, 0x126, 0x0, 0x0, @u32=0x3}]}, @ETHTOOL_A_STATS_HEADER={0x74, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xff}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10001}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}]}, @ETHTOOL_A_STATS_SRC={0x8, 0x5, 0x5ed}]}, 0x6f8}, 0x1, 0x0, 0x0, 0x10}, 0x8000)
syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f00000001c0), r3)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0xf, 0x29f, 0x100, 0x83, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83)
fsopen$auto(&(0x7f0000000000)='nlctrl\x00', 0x3)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)

1.652112643s ago: executing program 1 (id=2231):
r0 = ioctl$auto_TUNDETACHFILTER(0xffffffffffffffff, 0x401054d6, &(0x7f0000000040)={0x7, &(0x7f0000000000)={0x1d7, 0x8, 0x3, @raw=0x5}})
ioctl$auto_BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000000080)={@raw=0x6, 0xb3b4, 0x8, @unused, @devid=0xffffffffffffffff})
getsockopt$auto_SO_ZEROCOPY(r0, 0x80000001, 0x3c, &(0x7f0000001080)='\x00', &(0x7f00000010c0)=0x7)
close_range$auto(r0, r0, 0x10)
write$auto_nsim_dev_take_snapshot_fops_dev(r0, &(0x7f0000001100)="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", 0xff)
r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000001200)='/dev/snd/pcmC1D0c\x00', 0x26000, 0x0)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR322(r1, 0xc0844123, &(0x7f0000001240)={0x7, @reserved="1278f3df99f171e6addcab9d0fd61a14cf2fbecc414d3aa8ef17e3c7ec0d9c9c5d51a52b5766ee6df00e7ac22120d0efa117ccf760fa3af0020840d0ee979957", @control={0x3ff, 0x9}})
r2 = openat$auto_proc_gid_map_operations_base(0xffffffffffffff9c, &(0x7f0000001300)='/proc/thread-self/gid_map\x00', 0x400240, 0x0)
mmap$auto(0xfd39, 0xb, 0xfffffffffffffffb, 0x475, r1, 0x0)
connect$auto(r2, &(0x7f0000001340)=@ax25={0x3, @null, 0x7}, 0x7)
r3 = clone$auto(0x80000001, 0xfff, &(0x7f0000001380)=0xea6, &(0x7f00000013c0)=0x4, 0x10)
read$auto_cgwb_debug_stats_fops_(r0, &(0x7f0000001400), 0x0)
setsockopt$auto_SO_PREFER_BUSY_POLL(r0, 0x2, 0x45, &(0x7f0000001440)='/proc/thread-self/gid_map\x00', 0x0)
shmctl$auto_SHM_STAT_ANY(0x1, 0xf, &(0x7f0000001580)={{0x40, <r4=>0x0, 0x0, 0x3, 0x6, 0x65f7, 0xf}, 0x2, 0x9, 0x7, 0x8, @inferred=r3, @raw=0x1, 0x195, 0x0, &(0x7f0000001480)="6d64e800", &(0x7f00000014c0)="294ccba2992229d0e21a99b4af42ec5a7d2206001d3b5b2b007e8438cf2b46c02b0c06ae619f58051bec61bb5cd113f77b5feb435ed9adce3cabe54eeadfa0fb5dfe8dc3a9db6bc7f0a8c411497f426dd9d408dd9fa57e2c1fcb49676c6600cf96b536f773db38740bfe26842934940622bfc39fda2032cd5406d824258687a9a170e4996f8f5aa6ae05b3f39103ed75bf55c22105dfe623204b92216c4f9f67d98dae209ed7a2588a9042f57a6566640ad82d4574322e5182"})
shmctl$auto_SHM_INFO(0x5, 0xe, &(0x7f0000001800)={{0xff, <r5=>0xffffffffffffffff, 0x0, 0x3, 0x1, 0x8, 0x400}, 0x1000, 0x40, 0x3, 0x2, @raw=0x80000000, @inferred=r3, 0x1, 0x0, &(0x7f0000001600)="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", &(0x7f0000001700)="1251c0b8cd1526f5d0043762a86e29051f8e8a0948d50939e889f2b4a3063d21ae91fe44c892967ce42190a6ea5b1da4103f3518da6655a4c3add785c64c6e1118582bd3ccde0f8d46bf3ea39375ded57a5bd20d4bae2678704f67f8deed677c1ac232d064fd1563b17728ea6df6d30403af34a4f880b6366ccb7bd649d9d8c5d3713837950f9c65fc33d6c0e5d3be2e31f5ddf2832d017daf9edc012ab253f1632dca5bae9b3ce91e094a5c16fc7545e174ce0f93a00124b0265abeb6e07683c47022d8fa43bc8578"})
keyctl$auto(0x0, r4, r5, 0xee01, 0xb)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001880)=""/81, 0x51)
ioctl$auto_SNDRV_PCM_IOCTL_RESET2(r1, 0x4141, 0x0)
mount_setattr$auto(r0, &(0x7f0000001900)='./file0\x00', 0x8001, &(0x7f0000001940)={0x8, 0x80000001, 0x9}, 0x1000)
mmap$auto(0x7fffffff, 0x100000000, 0x2, 0x12, r2, 0x8a)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001980)='/proc/self/net/dev_snmp6/tunl0\x00', 0x101000, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
creat$auto(&(0x7f00000019c0)='./file0\x00', 0xb)
bpf$auto_BPF_LINK_DETACH(0x22, &(0x7f0000001a00)=@batch={0x5, 0x5, 0xe681, 0x0, 0xa, r6, 0x8000000000000001, 0x1000}, 0xfffffffb)
unshare$auto(0x9)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001b00), r0)
sendmsg$auto_NL80211_CMD_SET_COALESCE(0xffffffffffffffff, &(0x7f0000001bc0)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001b80)={&(0x7f0000001b40)={0x40, r7, 0x100, 0x70bd2d, 0x25dfdbfe, {}, [@NL80211_ATTR_OBSS_COLOR_BITMAP={0xc, 0x12e, 0x7fffffffffffffff}, @NL80211_ATTR_FILS_KEK={0xc, 0xf2, "15e1281b0987d015"}, @NL80211_ATTR_SPLIT_WIPHY_DUMP={0x4}, @NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0xffffffff}]}, 0x40}, 0x1, 0x0, 0x0, 0x4045}, 0x48001)
eventfd2$auto(0xb, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
fadvise64$auto_POSIX_FADV_SEQUENTIAL(r6, 0x0, 0x8, 0x2)

1.530391191s ago: executing program 1 (id=2224):
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sysfs$auto(0x2, 0x0, 0x0)
r0 = epoll_create$auto(0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/khugepaged/full_scans\x00', 0x40080, 0x0)
read$auto(r2, 0x0, 0x20)
epoll_ctl$auto(r0, 0x1, r1, 0x0)

1.395083932s ago: executing program 0 (id=2225):
mmap$auto(0x0, 0x7, 0x80000003, 0xeb4, 0xfffffffffffffffa, 0x40000008000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x40000, 0x4000a, 0x8001, 0x9b72, 0x7, 0x28000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0)
r1 = open(0x0, 0x161342, 0x100)
msync$auto(0x1ffff000, 0x1800000ff010004, 0x400000004)
open(0x0, 0xeee00, 0xf7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xf, 0xa, 0x5)
write$auto_tracing_cpumask_fops_trace(r1, &(0x7f0000000100)="bf8337a406170de23ad621187d7158b6cfeefb394b7683bfa986d722e10d53cf5a812be3562f5c1f8d229300957b0344a8652c676e604c3cfe3283e94f66530f86c91aa70ea177ebe73c90c95bbaaadde4d0cabdf2e552cfdbd63b4159d03a88edc59faa894e1a9c22c1376edf62f11604d5b88be400d49dd8557748f6caf14fa6e376f9f31cb902746e480ff22fdd4c16e2db7023530bfe200291eb1c793800b2cabf57", 0xa4)
sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x2000c814}, 0x40000)
socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x801, 0x1000a, 0x400, 0x1000049, 0xffffffffffffffff, 0x20000000000804, 0xfffffffffffffffe}, 0x6f3)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket(0x21, 0x2, 0x2)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)

1.068956831s ago: executing program 1 (id=2226):
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000006300)=ANY=[], 0x52a0}, 0x1, 0x0, 0x0, 0x4048040}, 0x2400c840)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="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", 0xfe04)

4.304261ms ago: executing program 1 (id=2227):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, 0x0, 0x800, 0x0)
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24c802, 0x0)
write$auto_nsim_pp_hold_fops_netdev(0xffffffffffffffff, &(0x7f00000000c0)="435e174e5b1efc4e11013baba49bb3e9dafaf218696aa3daabe65845ad797286b85a749405baf2c67fb9ab2323872e83f89ae04b10bfbb65ea2ae14b0d7947b8aa2c19ddce97074127cbd4b80a1f1b88964560bbef3fe42ae4cca2e941425ca84c66ca62544a1d293b2554599453f55c1f01610dff3038655c900ba1564eea1e76bf80c9807c30f6c51c", 0x8a)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

0s ago: executing program 0 (id=2228):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop3/queue/wbt_lat_usec\x00', 0x10b001, 0x0)
bpf$auto(0x9, &(0x7f0000000280)=@token_create={0xfffffffe}, 0x5)
write$auto(r0, &(0x7f0000000180)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
bind$auto(r0, &(0x7f0000000000)=@rc={0x1f, @none, 0xc4}, 0x8)

kernel console output (not intermixed with test programs):

000009
[  481.526743][T12590] RAX: ffffffffffffffda RBX: 00007f778cfb5fa0 RCX: 00007f778cd8e169
[  481.526765][T12590] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000
[  481.526785][T12590] RBP: 00007f778ce10a68 R08: 000000000000000d R09: 0000300000000000
[  481.526807][T12590] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[  481.526824][T12590] R13: 0000000000000000 R14: 00007f778cfb5fa0 R15: 00007ffd5bb61948
[  481.526865][T12590]  </TASK>
[  482.870064][T12619] FAULT_INJECTION: forcing a failure.
[  482.870064][T12619] name failslab, interval 1, probability 0, space 0, times 0
[  482.924243][T12619] CPU: 0 UID: 0 PID: 12619 Comm: syz.1.1405 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  482.924285][T12619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  482.924299][T12619] Call Trace:
[  482.924307][T12619]  <TASK>
[  482.924316][T12619]  dump_stack_lvl+0x16c/0x1f0
[  482.924354][T12619]  should_fail_ex+0x512/0x640
[  482.924382][T12619]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  482.924410][T12619]  should_failslab+0xc2/0x120
[  482.924441][T12619]  __kmalloc_cache_noprof+0x6a/0x3e0
[  482.924466][T12619]  ? kvm_dev_ioctl+0xa45/0x1ad0
[  482.924500][T12619]  kvm_dev_ioctl+0xa45/0x1ad0
[  482.924535][T12619]  ? find_held_lock+0x2b/0x80
[  482.924559][T12619]  ? hook_file_ioctl_common+0x145/0x410
[  482.924586][T12619]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  482.924620][T12619]  ? __fget_files+0x20e/0x3c0
[  482.924645][T12619]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  482.924687][T12619]  __x64_sys_ioctl+0x190/0x200
[  482.924735][T12619]  do_syscall_64+0xcd/0x230
[  482.924774][T12619]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  482.924798][T12619] RIP: 0033:0x7ffa0478e169
[  482.924816][T12619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  482.924839][T12619] RSP: 002b:00007ffa055c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  482.924862][T12619] RAX: ffffffffffffffda RBX: 00007ffa049b5fa0 RCX: 00007ffa0478e169
[  482.924877][T12619] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  482.924892][T12619] RBP: 00007ffa04810a68 R08: 0000000000000000 R09: 0000000000000000
[  482.924906][T12619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  482.924920][T12619] R13: 0000000000000000 R14: 00007ffa049b5fa0 R15: 00007ffdf64731e8
[  482.924950][T12619]  </TASK>
[  484.703392][T12656] FAULT_INJECTION: forcing a failure.
[  484.703392][T12656] name failslab, interval 1, probability 0, space 0, times 0
[  484.716192][T12656] CPU: 0 UID: 0 PID: 12656 Comm: syz.1.1414 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  484.716233][T12656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  484.716253][T12656] Call Trace:
[  484.716265][T12656]  <TASK>
[  484.716278][T12656]  dump_stack_lvl+0x16c/0x1f0
[  484.716331][T12656]  should_fail_ex+0x512/0x640
[  484.716378][T12656]  should_failslab+0xc2/0x120
[  484.716423][T12656]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  484.716464][T12656]  ? dst_alloc+0x99/0x1a0
[  484.716510][T12656]  dst_alloc+0x99/0x1a0
[  484.716559][T12656]  rt_dst_alloc+0x35/0x3a0
[  484.716612][T12656]  ip_route_output_key_hash_rcu+0x87a/0x28f0
[  484.716664][T12656]  ip_route_output_key_hash+0x137/0x2e0
[  484.716701][T12656]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  484.716751][T12656]  ? icmp_route_lookup.constprop.0+0x389/0x13d0
[  484.716804][T12656]  icmp_route_lookup.constprop.0+0x3d4/0x13d0
[  484.716852][T12656]  ? __pfx_icmp_route_lookup.constprop.0+0x10/0x10
[  484.716899][T12656]  ? __ip_options_echo+0x54c/0x1210
[  484.716945][T12656]  ? lock_acquire+0x179/0x350
[  484.716989][T12656]  ? __pfx___ip_options_echo+0x10/0x10
[  484.717029][T12656]  ? find_held_lock+0x2b/0x80
[  484.717069][T12656]  __icmp_send+0xacd/0x1950
[  484.717122][T12656]  ? __pfx___icmp_send+0x10/0x10
[  484.717157][T12656]  ? ip_output+0x13b/0x2a0
[  484.717199][T12656]  ? ip_send_skb+0x391/0x560
[  484.717242][T12656]  ? udp_send_skb+0x71d/0x15b0
[  484.717280][T12656]  ? udp_sendmsg+0x18d6/0x29e0
[  484.717319][T12656]  ? inet_sendmsg+0x105/0x140
[  484.717348][T12656]  ? ___sys_sendmsg+0x134/0x1d0
[  484.717388][T12656]  ? __sys_sendmmsg+0x200/0x420
[  484.717428][T12656]  ? __x64_sys_sendmmsg+0x9c/0x100
[  484.717514][T12656]  ? __pfx_xfrm_lookup_with_ifid+0x10/0x10
[  484.717572][T12656]  ipv4_link_failure+0x424/0xbc0
[  484.717611][T12656]  ? __pfx_ipv4_link_failure+0x10/0x10
[  484.717649][T12656]  ? __pfx_ipv4_link_failure+0x10/0x10
[  484.717680][T12656]  vti_tunnel_xmit+0x672/0x1e70
[  484.717740][T12656]  ? __pfx_vti_tunnel_xmit+0x10/0x10
[  484.717823][T12656]  dev_hard_start_xmit+0x93/0x740
[  484.717871][T12656]  __dev_queue_xmit+0x7eb/0x43e0
[  484.717928][T12656]  ? __pfx___dev_queue_xmit+0x10/0x10
[  484.717968][T12656]  ? register_lock_class+0x41/0x4c0
[  484.718014][T12656]  ? arp_constructor+0x3ab/0xdc0
[  484.718052][T12656]  ? __lock_acquire+0xaa4/0x1ba0
[  484.718101][T12656]  ? ___neigh_create+0x1945/0x28c0
[  484.718141][T12656]  ? find_held_lock+0x2b/0x80
[  484.718186][T12656]  neigh_connected_output+0x3da/0x620
[  484.718250][T12656]  ip_finish_output2+0x7f5/0x21a0
[  484.718298][T12656]  ? ip_skb_dst_mtu+0x487/0xe90
[  484.718347][T12656]  ? __pfx_ip_finish_output2+0x10/0x10
[  484.718391][T12656]  ? ip_skb_dst_mtu+0x496/0xe90
[  484.718434][T12656]  ? skb_gso_transport_seglen+0x1a5/0x3b0
[  484.718493][T12656]  __ip_finish_output+0x49e/0x950
[  484.718545][T12656]  ip_finish_output+0x35/0x380
[  484.718606][T12656]  ip_output+0x13b/0x2a0
[  484.718647][T12656]  ? __pfx_ip_output+0x10/0x10
[  484.718694][T12656]  ip_send_skb+0x3e8/0x560
[  484.718746][T12656]  udp_send_skb+0x71d/0x15b0
[  484.718803][T12656]  udp_sendmsg+0x18d6/0x29e0
[  484.718851][T12656]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  484.718899][T12656]  ? __pfx_udp_sendmsg+0x10/0x10
[  484.718962][T12656]  ? __lock_acquire+0xaa4/0x1ba0
[  484.719006][T12656]  ? __pfx___might_resched+0x10/0x10
[  484.719055][T12656]  ? aa_sk_perm+0x2f4/0xb10
[  484.719102][T12656]  ? __import_iovec+0x1c8/0x660
[  484.719145][T12656]  ? __might_fault+0xe3/0x190
[  484.719181][T12656]  ? __might_fault+0x13b/0x190
[  484.719222][T12656]  ? __pfx_udp_sendmsg+0x10/0x10
[  484.719266][T12656]  inet_sendmsg+0x105/0x140
[  484.719300][T12656]  ____sys_sendmsg+0x973/0xc70
[  484.719331][T12656]  ? copy_msghdr_from_user+0x10a/0x160
[  484.719374][T12656]  ? __pfx_____sys_sendmsg+0x10/0x10
[  484.719402][T12656]  ? __pfx___schedule+0x10/0x10
[  484.719465][T12656]  ___sys_sendmsg+0x134/0x1d0
[  484.719512][T12656]  ? __pfx____sys_sendmsg+0x10/0x10
[  484.719588][T12656]  ? find_held_lock+0x2b/0x80
[  484.719651][T12656]  __sys_sendmmsg+0x200/0x420
[  484.719702][T12656]  ? __pfx___sys_sendmmsg+0x10/0x10
[  484.719759][T12656]  ? __pfx_do_futex+0x10/0x10
[  484.719792][T12656]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  484.719861][T12656]  ? xfd_validate_state+0x5d/0x180
[  484.719899][T12656]  ? rcu_is_watching+0x12/0xc0
[  484.719940][T12656]  __x64_sys_sendmmsg+0x9c/0x100
[  484.719984][T12656]  ? lockdep_hardirqs_on+0x7c/0x110
[  484.720029][T12656]  do_syscall_64+0xcd/0x230
[  484.720080][T12656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  484.720112][T12656] RIP: 0033:0x7ffa0478e169
[  484.720139][T12656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  484.720172][T12656] RSP: 002b:00007ffa055c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  484.720202][T12656] RAX: ffffffffffffffda RBX: 00007ffa049b5fa0 RCX: 00007ffa0478e169
[  484.720222][T12656] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  484.720241][T12656] RBP: 00007ffa04810a68 R08: 0000000000000000 R09: 0000000000000000
[  484.720260][T12656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  484.720278][T12656] R13: 0000000000000000 R14: 00007ffa049b5fa0 R15: 00007ffdf64731e8
[  484.720320][T12656]  </TASK>
[  485.259177][T12663] nbd: couldn't find device at index 33904
[  486.593096][T12715] syz_tun: tun_chr_ioctl cmd 2147767506
[  489.294150][T12770] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1440'.
[  489.359895][T12762] Invalid ELF header magic: != ELF
[  497.106887][T12898] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1472'.
[  499.734509][ T5842] Bluetooth: hci2: unexpected event 0x3e length: 508 > 260
[  499.734558][ T5842] Bluetooth: hci2: unexpected subevent 0x02 length: 507 > 260
[  499.749668][ T5842] Bluetooth: hci2: Dropping invalid advertising data
[  499.756399][ T5842] Bluetooth: hci2: unknown advertising packet type: 0xe9
[  500.137656][ T5842] Bluetooth: hci3: unexpected event 0x3e length: 728 > 260
[  500.145938][ T5842] Bluetooth: hci3: unexpected subevent 0x0c length: 727 > 5
[  506.672680][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  506.684032][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  508.015702][T13067] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1502'.
[  508.479644][T13087] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1507'.
[  509.106596][T13091] FAULT_INJECTION: forcing a failure.
[  509.106596][T13091] name failslab, interval 1, probability 0, space 0, times 0
[  509.227003][T13091] CPU: 1 UID: 0 PID: 13091 Comm: syz.4.1506 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  509.227054][T13091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  509.227074][T13091] Call Trace:
[  509.227084][T13091]  <TASK>
[  509.227095][T13091]  dump_stack_lvl+0x16c/0x1f0
[  509.227146][T13091]  should_fail_ex+0x512/0x640
[  509.227184][T13091]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  509.227227][T13091]  ? __pfx_cec_config_thread_func+0x10/0x10
[  509.227278][T13091]  should_failslab+0xc2/0x120
[  509.227323][T13091]  __kmalloc_cache_noprof+0x6a/0x3e0
[  509.227359][T13091]  ? lockdep_init_map_type+0x5c/0x280
[  509.227405][T13091]  ? __kthread_create_on_node+0xce/0x3f0
[  509.227451][T13091]  ? __init_swait_queue_head+0xca/0x150
[  509.227487][T13091]  ? __pfx_cec_config_thread_func+0x10/0x10
[  509.227538][T13091]  __kthread_create_on_node+0xce/0x3f0
[  509.227587][T13091]  ? __pfx___kthread_create_on_node+0x10/0x10
[  509.227646][T13091]  ? cec_adap_enable+0x77c/0xc30
[  509.227705][T13091]  ? __pfx_cec_config_thread_func+0x10/0x10
[  509.227758][T13091]  kthread_create_on_node+0xc7/0x100
[  509.227803][T13091]  ? __pfx_kthread_create_on_node+0x10/0x10
[  509.227847][T13091]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  509.227898][T13091]  ? preempt_schedule_thunk+0x16/0x30
[  509.227936][T13091]  ? lockdep_init_map_type+0x5c/0x280
[  509.227985][T13091]  ? lockdep_init_map_type+0x5c/0x280
[  509.228040][T13091]  cec_claim_log_addrs+0x13e/0x2e0
[  509.228094][T13091]  __cec_s_log_addrs+0xdc9/0x1670
[  509.228158][T13091]  cec_ioctl+0x4b8/0x2970
[  509.228195][T13091]  ? __pfx_cec_ioctl+0x10/0x10
[  509.228245][T13091]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  509.228311][T13091]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  509.228363][T13091]  ? do_vfs_ioctl+0x512/0x1990
[  509.228412][T13091]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  509.228489][T13091]  ? find_held_lock+0x2b/0x80
[  509.228523][T13091]  ? hook_file_ioctl_common+0x145/0x410
[  509.228580][T13091]  ? __pfx_cec_ioctl+0x10/0x10
[  509.228612][T13091]  __x64_sys_ioctl+0x190/0x200
[  509.228664][T13091]  do_syscall_64+0xcd/0x230
[  509.228717][T13091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  509.228750][T13091] RIP: 0033:0x7f778cd8e169
[  509.228778][T13091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  509.228811][T13091] RSP: 002b:00007f778db0e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  509.228842][T13091] RAX: ffffffffffffffda RBX: 00007f778cfb6160 RCX: 00007f778cd8e169
[  509.228864][T13091] RDX: 00002000000000c0 RSI: 00000000c05c6104 RDI: 0000000000000005
[  509.228883][T13091] RBP: 00007f778ce10a68 R08: 0000000000000000 R09: 0000000000000000
[  509.228902][T13091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  509.228921][T13091] R13: 0000000000000000 R14: 00007f778cfb6160 R15: 00007ffd5bb61948
[  509.228961][T13091]  </TASK>
[  510.753502][T13113] svc: failed to register nfsdv3 RPC service (errno 111).
[  510.777256][T13113] svc: failed to register nfsaclv3 RPC service (errno 111).
[  510.907164][T13122] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1511'.
[  513.722922][T13149] could not allocate digest TFM handle 
[  515.751946][T13193] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1530'.
[  517.527106][T13236] can: request_module (can-proto-0) failed.
[  520.307334][T13302] could not allocate digest TFM handle 
[  521.083742][T13313] Invalid ELF header magic: != ELF
[  524.009073][T13371] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1564'.
[  524.516255][T13383] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1569'.
[  525.609528][T13402] could not allocate digest TFM handle 
[  526.200033][T13427] WARNING! power/level is deprecated; use power/control instead
[  527.133841][T13444] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1582'.
[  527.183097][T13444] mac80211_hwsim hwsim8 wlan1: entered allmulticast mode
[  527.572115][T13459] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1587'.
[  527.609905][T13459] netlink: 274 bytes leftover after parsing attributes in process `syz.0.1587'.
[  527.742606][T13463] netlink: 274 bytes leftover after parsing attributes in process `syz.0.1587'.
[  529.775267][T13520] nbd: illegal input index -65536
[  530.225726][T13522] Invalid ELF header magic: != ELF
[  530.849927][T13556] ovs_ÿþ: entered promiscuous mode
[  532.346158][T13576] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1612'.
[  532.425621][T13579] ip_vti0: entered allmulticast mode
[  533.512775][T13623] syz.1.1626 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  533.540126][T13623] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1626'.
[  533.999923][T13637] FAULT_INJECTION: forcing a failure.
[  533.999923][T13637] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  534.028409][T13637] CPU: 1 UID: 0 PID: 13637 Comm: syz.1.1628 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  534.028444][T13637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  534.028457][T13637] Call Trace:
[  534.028464][T13637]  <TASK>
[  534.028473][T13637]  dump_stack_lvl+0x16c/0x1f0
[  534.028512][T13637]  should_fail_ex+0x512/0x640
[  534.028543][T13637]  _copy_from_user+0x2e/0xd0
[  534.028573][T13637]  copy_msghdr_from_user+0x98/0x160
[  534.028604][T13637]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  534.028638][T13637]  ? __pfx__kstrtoull+0x10/0x10
[  534.028685][T13637]  ___sys_sendmsg+0xfe/0x1d0
[  534.028718][T13637]  ? __pfx____sys_sendmsg+0x10/0x10
[  534.028762][T13637]  ? find_held_lock+0x2b/0x80
[  534.028805][T13637]  __sys_sendmmsg+0x200/0x420
[  534.028839][T13637]  ? __pfx___sys_sendmmsg+0x10/0x10
[  534.028880][T13637]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  534.028927][T13637]  ? fput+0x70/0xf0
[  534.028956][T13637]  ? ksys_write+0x1b9/0x240
[  534.028979][T13637]  ? __pfx_ksys_write+0x10/0x10
[  534.029001][T13637]  ? rcu_is_watching+0x12/0xc0
[  534.029029][T13637]  __x64_sys_sendmmsg+0x9c/0x100
[  534.029060][T13637]  ? lockdep_hardirqs_on+0x7c/0x110
[  534.029092][T13637]  do_syscall_64+0xcd/0x230
[  534.029128][T13637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.029151][T13637] RIP: 0033:0x7ffa0478e169
[  534.029168][T13637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.029191][T13637] RSP: 002b:00007ffa055a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  534.029213][T13637] RAX: ffffffffffffffda RBX: 00007ffa049b6080 RCX: 00007ffa0478e169
[  534.029228][T13637] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  534.029243][T13637] RBP: 00007ffa055a4090 R08: 0000000000000000 R09: 0000000000000000
[  534.029256][T13637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  534.029270][T13637] R13: 0000000000000000 R14: 00007ffa049b6080 R15: 00007ffdf64731e8
[  534.029299][T13637]  </TASK>
[  534.732511][T13646] random: crng reseeded on system resumption
[  535.198655][ T5842] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  535.206962][ T5842] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:0'
[  535.217832][ T5842] CPU: 0 UID: 0 PID: 5842 Comm: kworker/u9:2 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  535.217874][ T5842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  535.217891][ T5842] Workqueue: hci3 hci_rx_work
[  535.217922][ T5842] Call Trace:
[  535.217930][ T5842]  <TASK>
[  535.217939][ T5842]  dump_stack_lvl+0x16c/0x1f0
[  535.217976][ T5842]  sysfs_warn_dup+0x7f/0xa0
[  535.217999][ T5842]  sysfs_create_dir_ns+0x24b/0x2b0
[  535.218022][ T5842]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  535.218044][ T5842]  ? find_held_lock+0x2b/0x80
[  535.218075][ T5842]  ? do_raw_spin_unlock+0x172/0x230
[  535.218099][ T5842]  kobject_add_internal+0x2c4/0x9b0
[  535.218144][ T5842]  kobject_add+0x16e/0x240
[  535.218165][ T5842]  ? __pfx_kobject_add+0x10/0x10
[  535.218189][ T5842]  ? do_raw_spin_unlock+0x172/0x230
[  535.218211][ T5842]  ? kobject_put+0xab/0x5a0
[  535.218256][ T5842]  device_add+0x288/0x1a70
[  535.218283][ T5842]  ? __pfx_dev_set_name+0x10/0x10
[  535.218313][ T5842]  ? __pfx_device_add+0x10/0x10
[  535.218340][ T5842]  ? mgmt_send_event_skb+0x2fb/0x460
[  535.218374][ T5842]  hci_conn_add_sysfs+0x17e/0x230
[  535.218405][ T5842]  le_conn_complete_evt+0x1075/0x1d70
[  535.218439][ T5842]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  535.218463][ T5842]  ? bt_warn+0xe4/0x120
[  535.218484][ T5842]  ? __pfx_bt_warn+0x10/0x10
[  535.218514][ T5842]  hci_le_conn_complete_evt+0x23c/0x370
[  535.218555][ T5842]  hci_le_meta_evt+0x2f3/0x5e0
[  535.218583][ T5842]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  535.218614][ T5842]  hci_event_packet+0x669/0x1190
[  535.218639][ T5842]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  535.218669][ T5842]  ? __pfx_hci_event_packet+0x10/0x10
[  535.218697][ T5842]  ? kcov_remote_start+0x3c9/0x6d0
[  535.218731][ T5842]  ? lockdep_hardirqs_on+0x7c/0x110
[  535.218774][ T5842]  hci_rx_work+0x2c5/0x16b0
[  535.218803][ T5842]  ? rcu_is_watching+0x12/0xc0
[  535.218831][ T5842]  process_one_work+0x9cc/0x1b70
[  535.218866][ T5842]  ? __pfx_process_one_work+0x10/0x10
[  535.218898][ T5842]  ? assign_work+0x1a0/0x250
[  535.218938][ T5842]  worker_thread+0x6c8/0xf10
[  535.218970][ T5842]  ? __kthread_parkme+0x19e/0x250
[  535.219004][ T5842]  ? __pfx_worker_thread+0x10/0x10
[  535.219026][ T5842]  kthread+0x3c2/0x780
[  535.219063][ T5842]  ? __pfx_kthread+0x10/0x10
[  535.219097][ T5842]  ? __pfx_kthread+0x10/0x10
[  535.219216][ T5842]  ? __pfx_kthread+0x10/0x10
[  535.219288][ T5842]  ? __pfx_kthread+0x10/0x10
[  535.219355][ T5842]  ? rcu_is_watching+0x12/0xc0
[  535.219397][ T5842]  ? __pfx_kthread+0x10/0x10
[  535.219464][ T5842]  ret_from_fork+0x45/0x80
[  535.219506][ T5842]  ? __pfx_kthread+0x10/0x10
[  535.219587][ T5842]  ret_from_fork_asm+0x1a/0x30
[  535.219678][ T5842]  </TASK>
[  535.219800][ T5842] kobject: kobject_add_internal failed for hci3:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  535.506950][ T5842] Bluetooth: hci3: failed to register connection device
[  535.781535][T13665] nvme_fabrics: unknown parameter or missing value '7' in ctrl creation request
[  536.260123][T13660] Bluetooth: hci0: unexpected event 0x3e length: 728 > 260
[  536.260169][T13660] Bluetooth: hci0: unexpected subevent 0x0c length: 727 > 5
[  537.161995][T13699] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  539.495362][T13786] FAULT_INJECTION: forcing a failure.
[  539.495362][T13786] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  539.542596][T13786] CPU: 0 UID: 0 PID: 13786 Comm: syz.4.1657 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  539.542642][T13786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  539.542660][T13786] Call Trace:
[  539.542670][T13786]  <TASK>
[  539.542681][T13786]  dump_stack_lvl+0x16c/0x1f0
[  539.542733][T13786]  should_fail_ex+0x512/0x640
[  539.542778][T13786]  _copy_from_user+0x2e/0xd0
[  539.542821][T13786]  move_addr_to_kernel+0x65/0x170
[  539.542857][T13786]  __sys_connect+0xaf/0x170
[  539.542893][T13786]  ? __pfx___sys_connect+0x10/0x10
[  539.542942][T13786]  ? __pfx_ksys_write+0x10/0x10
[  539.542974][T13786]  ? rcu_is_watching+0x12/0xc0
[  539.543020][T13786]  __x64_sys_connect+0x72/0xb0
[  539.543053][T13786]  ? lockdep_hardirqs_on+0x7c/0x110
[  539.543095][T13786]  do_syscall_64+0xcd/0x230
[  539.543142][T13786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.543172][T13786] RIP: 0033:0x7f778cd8e169
[  539.543197][T13786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  539.543227][T13786] RSP: 002b:00007f778db50038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  539.543255][T13786] RAX: ffffffffffffffda RBX: 00007f778cfb5fa0 RCX: 00007f778cd8e169
[  539.543277][T13786] RDX: 0000000000000055 RSI: 00002000000000c0 RDI: 0000000000000003
[  539.543296][T13786] RBP: 00007f778db50090 R08: 0000000000000000 R09: 0000000000000000
[  539.543315][T13786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  539.543333][T13786] R13: 0000000000000000 R14: 00007f778cfb5fa0 R15: 00007ffd5bb61948
[  539.543372][T13786]  </TASK>
[  539.915775][T13789] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1658'.
[  540.010652][T13789] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  541.225442][T13792] random: crng reseeded on system resumption
[  541.639344][T13829] FAULT_INJECTION: forcing a failure.
[  541.639344][T13829] name failslab, interval 1, probability 0, space 0, times 0
[  541.668003][T13829] CPU: 0 UID: 0 PID: 13829 Comm: syz.0.1667 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  541.668063][T13829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  541.668081][T13829] Call Trace:
[  541.668091][T13829]  <TASK>
[  541.668102][T13829]  dump_stack_lvl+0x16c/0x1f0
[  541.668153][T13829]  should_fail_ex+0x512/0x640
[  541.668190][T13829]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  541.668235][T13829]  should_failslab+0xc2/0x120
[  541.668278][T13829]  __kmalloc_cache_noprof+0x6a/0x3e0
[  541.668310][T13829]  ? virtio_transport_destruct+0xa9/0x1c0
[  541.668351][T13829]  ? virtio_transport_do_socket_init+0x4a/0x350
[  541.668399][T13829]  virtio_transport_do_socket_init+0x4a/0x350
[  541.668444][T13829]  vsock_assign_transport+0x4de/0x830
[  541.668495][T13829]  vsock_connect+0x201/0xee0
[  541.668539][T13829]  ? __pfx___might_resched+0x10/0x10
[  541.668576][T13829]  ? get_pid_task+0x106/0x250
[  541.668621][T13829]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  541.668672][T13829]  ? __pfx_vsock_connect+0x10/0x10
[  541.668717][T13829]  ? aa_sk_perm+0x2f4/0xb10
[  541.668759][T13829]  ? __pfx_autoremove_wake_function+0x10/0x10
[  541.668800][T13829]  ? __might_fault+0xe3/0x190
[  541.668836][T13829]  ? __might_fault+0x13b/0x190
[  541.668899][T13829]  ? __pfx_vsock_connect+0x10/0x10
[  541.668942][T13829]  __sys_connect_file+0x13e/0x1a0
[  541.668985][T13829]  __sys_connect+0x14d/0x170
[  541.669021][T13829]  ? __pfx___sys_connect+0x10/0x10
[  541.669073][T13829]  ? __pfx_ksys_write+0x10/0x10
[  541.669105][T13829]  ? rcu_is_watching+0x12/0xc0
[  541.669145][T13829]  __x64_sys_connect+0x72/0xb0
[  541.669180][T13829]  ? lockdep_hardirqs_on+0x7c/0x110
[  541.669223][T13829]  do_syscall_64+0xcd/0x230
[  541.669273][T13829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.669306][T13829] RIP: 0033:0x7fc93f18e169
[  541.669331][T13829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  541.669362][T13829] RSP: 002b:00007fc93cff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  541.669392][T13829] RAX: ffffffffffffffda RBX: 00007fc93f3b5fa0 RCX: 00007fc93f18e169
[  541.669412][T13829] RDX: 0000000000000055 RSI: 00002000000000c0 RDI: 0000000000000003
[  541.669431][T13829] RBP: 00007fc93cff6090 R08: 0000000000000000 R09: 0000000000000000
[  541.669450][T13829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  541.669468][T13829] R13: 0000000000000000 R14: 00007fc93f3b5fa0 R15: 00007fff873e8848
[  541.669509][T13829]  </TASK>
[  541.975919][T13660] Bluetooth: hci0: Malformed Event: 0x02
[  542.795583][T13794] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1659'.
[  544.662732][T13660] Bluetooth: hci3: unexpected event 0x3e length: 728 > 260
[  544.662777][T13660] Bluetooth: hci3: unexpected subevent 0x0c length: 727 > 5
[  545.115895][T13887] nvme_fcloop: unknown parameter or missing value '^/]'
[  545.351409][T13855] kexec: Could not allocate control_code_buffer
[  545.583454][   T30] audit: type=1800 audit(6040079164.927:63): pid=13894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1681" name="lu_gp_id" dev="configfs" ino=45589 res=0 errno=0
[  545.727800][T13899] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1683'.
[  546.531452][T13660] Bluetooth: hci4: unexpected event 0x3e length: 728 > 260
[  546.531506][T13660] Bluetooth: hci4: unexpected subevent 0x0c length: 727 > 5
[  547.307564][T13897] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1682'.
[  547.928494][T13934] ip_vti0: entered allmulticast mode
[  549.506743][T13660] Bluetooth: hci2: unexpected event 0x3e length: 728 > 260
[  549.506849][T13660] Bluetooth: hci2: unexpected subevent 0x0c length: 727 > 5
[  550.250901][T13988] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J8fi‘ as /devices/virtual/input/input10
[  551.050582][T13996] netlink: 346 bytes leftover after parsing attributes in process `syz.4.1705'.
[  551.271859][T13969] kexec: Could not allocate control_code_buffer
[  552.139036][T13660] Bluetooth: hci0: unexpected event 0x3e length: 728 > 260
[  552.139079][T13660] Bluetooth: hci0: unexpected subevent 0x0c length: 727 > 5
[  552.703545][T14036] Invalid ELF header magic: != ELF
[  553.247988][T14049] ip_vti0: entered allmulticast mode
[  555.485365][T13660] Bluetooth: hci4: unexpected event 0x3e length: 728 > 260
[  555.485410][T13660] Bluetooth: hci4: unexpected subevent 0x0c length: 727 > 5
[  556.974794][T14126] cougar: G6 mapped to space
[  557.246716][T14138] ptrace attach of "./syz-executor exec"[5847] was attempted by "Ä€$lw7\x0a3Ž?æ0Ð�e‚ÑÞïZ�\x0d)O/Þ!P•‚ÒíКjJ±Z¸ÕYê« †?|Z¨à&µð¡€1ÏýÄï/QåÁ+Çõ*’8¤p$Snn}Ôž‡<è€ñÓþÑxµ–Ç>¦Xõ äª ¥¦ªÐÞ€�¤úKÁNá¾<\x0c’†rüo-a¶}ë–™à//¬P…y·’ŒŽ¢|u…ÜÅP˜*àìÂôáú:À£\x0c˜ºôPaÑ4uý{}/ÁÁ¬2%ú·�ÃÂô~\x07‹«\x0cÞ¤¨ÉÖ8t¨vÅ}¯ËÙæíz¨½-\x22ôð\x22'WÂÑ¿ÂZ+”wÑ�o“€<;\x5cúÅ6$6ç‘�ÉÇ8\x09 Á¢˜P(cAŒ.¼~öËþaV÷°-(BJ»‹Dæίá�>�@ûô�·Ù4Þ*äiÙq1òÔëÉ
˜Ž€\x09®Ïq]EÙís*-ˆeðëÏ|Šª
êi•ƒœ¡—½ÊtŒ˜e\x22J{�ŸhF&£®= u%‚=?8Â\x09ðÓö̱ÒT¤\x0dþ#Ò(�‰J
�ù‘ÕQ;¡¹Ø¦\x5cé NCûeñ’5‚Ǽß!úÐzâ‘ZOÑÊ1éÄrÂH¿ 62{¿Tÿ÷EžDö1'íQ2:ÍñD!½‰bŠÖ…\x0bKcñtDð7¬C|W…&úZRJ$D�o\x0cY¸ø²â¬9ËRro„Œ—&/x\x07‹˜Û›æ�õ$pÕvÑï‘·Àþà]©éÌ@Žl\x09mXhp {Ÿð\x5cˆF<(µaG‚éa¤(•Ô¯MÔM-Äu½ŸÓà€cNTyXúš)»°¬+I—ŸeÄép\x5c¿®$sX”jˆÕ�ŠÁú '.mªóò_'Ñ3Vµ­Lõ£'=6öƒáøT·Ïja5Ý1Ñ5ê“4Zº¨�î\x0dŸò)¬}®¹t�W\x0dXÜ
BàÁo–™‡àõj„^&‡ž~êÜï\x1bßéj�ïªIDdçÛ`Qû™cœÖIV\x1bÍ®�%î½õþêµ.Ir\x22;h\x0cœ!\x0bÊ£AÅO·Î�•A ¾4æ¸Û|Ð�bàM~òŒˆWÀ™„EŽ  ’ªží?Ôã©\x0d_HÏÜÎaä<´}´V½*Œ[p�Ï´Ëj}:FÌi!ß�O¥Ê”Ž –³BÞ,6P\x5c)[vÍl´Cñà
[  559.709006][T14191] cougar: G6 mapped to space
[  560.479452][T14201] FAULT_INJECTION: forcing a failure.
[  560.479452][T14201] name failslab, interval 1, probability 0, space 0, times 0
[  560.525943][T14201] CPU: 1 UID: 0 PID: 14201 Comm: syz.0.1745 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  560.526006][T14201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  560.526035][T14201] Call Trace:
[  560.526051][T14201]  <TASK>
[  560.526064][T14201]  dump_stack_lvl+0x16c/0x1f0
[  560.526142][T14201]  should_fail_ex+0x512/0x640
[  560.526191][T14201]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  560.526249][T14201]  should_failslab+0xc2/0x120
[  560.526303][T14201]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  560.526351][T14201]  ? __kernfs_new_node+0xd2/0x8a0
[  560.526396][T14201]  __kernfs_new_node+0xd2/0x8a0
[  560.526424][T14201]  ? __pfx___kernfs_new_node+0x10/0x10
[  560.526457][T14201]  ? find_held_lock+0x2b/0x80
[  560.526490][T14201]  ? kernfs_root+0xee/0x2a0
[  560.526524][T14201]  kernfs_new_node+0x13c/0x1e0
[  560.526558][T14201]  ? kasan_save_stack+0x42/0x60
[  560.526589][T14201]  kernfs_create_dir_ns+0x4c/0x1a0
[  560.526622][T14201]  sysfs_create_dir_ns+0x13a/0x2b0
[  560.526647][T14201]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  560.526679][T14201]  ? kfree+0x252/0x4d0
[  560.526716][T14201]  kobject_add_internal+0x2c4/0x9b0
[  560.526767][T14201]  kobject_add+0x16e/0x240
[  560.526796][T14201]  ? __pfx_kobject_add+0x10/0x10
[  560.526858][T14201]  kobject_create_and_add+0x7e/0xf0
[  560.526898][T14201]  add_disk_fwnode+0x83b/0x13a0
[  560.526955][T14201]  zram_add+0x494/0x6c0
[  560.526998][T14201]  ? __pfx_zram_add+0x10/0x10
[  560.527069][T14201]  ? find_held_lock+0x2b/0x80
[  560.527111][T14201]  ? __pfx_hot_add_show+0x10/0x10
[  560.527146][T14201]  ? __pfx_class_attr_show+0x10/0x10
[  560.527179][T14201]  hot_add_show+0x21/0x80
[  560.527222][T14201]  class_attr_show+0x6f/0xa0
[  560.527258][T14201]  sysfs_kf_seq_show+0x213/0x3e0
[  560.527316][T14201]  seq_read_iter+0x506/0x12c0
[  560.527387][T14201]  kernfs_fop_read_iter+0x40f/0x5a0
[  560.527426][T14201]  ? rw_verify_area+0xcf/0x680
[  560.527473][T14201]  vfs_read+0x8c8/0xc70
[  560.527504][T14201]  ? __pfx___mutex_lock+0x10/0x10
[  560.527544][T14201]  ? __pfx_vfs_read+0x10/0x10
[  560.527594][T14201]  ksys_read+0x12a/0x240
[  560.527621][T14201]  ? __pfx_ksys_read+0x10/0x10
[  560.527647][T14201]  ? rcu_is_watching+0x12/0xc0
[  560.527685][T14201]  do_syscall_64+0xcd/0x230
[  560.527727][T14201]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.527754][T14201] RIP: 0033:0x7fc93f18e169
[  560.527776][T14201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  560.527803][T14201] RSP: 002b:00007fc93cff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  560.527829][T14201] RAX: ffffffffffffffda RBX: 00007fc93f3b5fa0 RCX: 00007fc93f18e169
[  560.527846][T14201] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000005
[  560.527863][T14201] RBP: 00007fc93f210a68 R08: 0000000000000000 R09: 0000000000000000
[  560.527885][T14201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  560.527900][T14201] R13: 0000000000000000 R14: 00007fc93f3b5fa0 R15: 00007fff873e8848
[  560.527935][T14201]  </TASK>
[  560.835404][T14201] kobject: kobject_add_internal failed for holders (error: -12 parent: zram1)
[  560.845272][T14201] kobject: kobject_create_and_add: kobject_add error: -12
[  561.967535][T14236] Invalid ELF header magic: != ELF
[  563.796408][T14284] ptrace attach of "./syz-executor exec"[10149] was attempted by "ž¤:øHe³“ge¥{ðÎÙî1Ó8c6/ÐnÏÑ7òW\x5c?C\x09qj¥¤×˜\x09„6/G’W:•TxÊ9±g
ÙGv\x07KËÛ»ÎѬ[½½-ýL¾‚[�m¤nhL87#!@)5\x0aõ¦ø¿‘pí}«ÊEUpÖ°¾õk\x225ë÷æzþÈ_\x0a�N¨:Ú+_\x09“dö½iÐyÍ»7™éâ÷DÑnš{Ú~“D>ŒÁ4Aþ¿,lE(Ó½4;xVÐcÁº1Õ¼­b#¦–IO„”pol8ævË€'�|#�ˆHQ™QnÉë\x0c�¥ðFªŸKy¨\x09©™®l0ºGp΢g–ˆ
�íÀåŒ)^…ÚÁL(BølqdÇV„ZL«(Ï9BX÷¥Pï\x0a3�ù©-$Y)uú¤$2®zZ�7¹�²_D=&!3~|nÉÊ�œüá\x0a‘�ŽÄ°×´-n`8øÔÉ”[²KGLË9'N†:¸HçðrO*Èš1$“p|¯C<ä¶ÿx[0g\x07ö·\x22 á¹�Û#à~¾P6›(�Ò~ƒTâ®ë’bŸ˜þaµ#ˆÂFÜ=uF�YMXh¤>?ø Nxµ|v©•´ãã÷Cß/ÔŠfõ\x5c*ÜIã\x0c¥>µ§ô�4Ëå†ñ—öµÐwRp\x5cÕ\x09Ñe'W*¾=\x07ª”vŒ°;ø¿¶7ÝeŸ“|VXT\x0bÿ¸Ýp˵!|*%s(\x07æèš–å?5ƒ÷XŽçK•' €qT„açÍk0í¸‡a`e´aµf|\x0bAS„qq†’µ1'×ãŸà¨°ŸN>¬e{V¢D§­¤2\x09\x07J%o¢’�+*j¨K\x0a© \x09
‚ø\x0cÒw\x22óyábÝ‘UìüÂá0—7ß öùÑ®(m·ì.\x224¿êdš¥»ì©è²ˆxIN9¼CT\x07‡\x22ì#Þ ­)\x07'ÉêL¸¯6ˆ�^óf\x0d¿6\x070�\x0d\x22Ž×ù‚n¦sÙ’yPøí¨ßXùê`'$À«IdA[ÞrÌáJ‡¯÷ëûþsò“›x ¨§”ÈPã^œUöZ\x22ÙÄ‘1ÐÔæg?œ†ÙüØIH\x07üªu|\x0d…ãà6/ŒÄîmx¬ÅÛ&ôQ—-ô^Ì
[  565.515736][   T30] audit: type=1800 audit(6040079184.857:64): pid=14312 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1770" name="discovery_nqn" dev="configfs" ino=47513 res=0 errno=0
[  565.968140][T13660] Bluetooth: hci3: unexpected event 0x3e length: 728 > 260
[  565.968189][T13660] Bluetooth: hci3: unexpected subevent 0x0c length: 727 > 5
[  568.104017][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  568.169112][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  568.222489][T14336] kernel read not supported for file /\*)A (pid: 14336 comm: syz.4.1778)
[  568.244818][   T30] audit: type=1800 audit(6040079187.587:65): pid=14336 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1778" name="\*)A" dev="mqueue" ino=48246 res=0 errno=0
[  568.352984][T13660] Bluetooth: hci3: unexpected event 0x3e length: 728 > 260
[  568.353031][T13660] Bluetooth: hci3: unexpected subevent 0x0c length: 727 > 5
[  570.119174][T14397] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1791'.
[  570.131566][T14397] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  570.231095][T14386] could not allocate digest TFM handle 
[  571.510106][T14420] kernel read not supported for file /\*)A (pid: 14420 comm: syz.1.1793)
[  571.552042][   T30] audit: type=1800 audit(6040079190.897:66): pid=14420 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1793" name="\*)A" dev="mqueue" ino=7420 res=0 errno=0
[  572.183033][T14429] FAULT_INJECTION: forcing a failure.
[  572.183033][T14429] name failslab, interval 1, probability 0, space 0, times 0
[  572.195770][T14429] CPU: 1 UID: 0 PID: 14429 Comm: syz.0.1796 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  572.195815][T14429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  572.195835][T14429] Call Trace:
[  572.195845][T14429]  <TASK>
[  572.195859][T14429]  dump_stack_lvl+0x16c/0x1f0
[  572.195915][T14429]  should_fail_ex+0x512/0x640
[  572.195954][T14429]  ? ip_dst_mtu_maybe_forward.constprop.0+0x307/0x6e0
[  572.196017][T14429]  should_failslab+0xc2/0x120
[  572.196063][T14429]  __kmalloc_cache_noprof+0x6a/0x3e0
[  572.196098][T14429]  ? __pfx_ip_dst_mtu_maybe_forward.constprop.0+0x10/0x10
[  572.196155][T14429]  ? ip_setup_cork+0x6dc/0xae0
[  572.196204][T14429]  ip_setup_cork+0x6dc/0xae0
[  572.196257][T14429]  ip_append_data+0x163/0x1a0
[  572.196305][T14429]  ? __pfx_icmp_glue_bits+0x10/0x10
[  572.196346][T14429]  icmp_push_reply+0xa8/0x440
[  572.196393][T14429]  __icmp_send+0xcd8/0x1950
[  572.196455][T14429]  ? __pfx___icmp_send+0x10/0x10
[  572.196492][T14429]  ? ip_output+0x13b/0x2a0
[  572.196535][T14429]  ? ip_send_skb+0x391/0x560
[  572.196581][T14429]  ? udp_send_skb+0x71d/0x15b0
[  572.196621][T14429]  ? udp_sendmsg+0x18d6/0x29e0
[  572.196661][T14429]  ? inet_sendmsg+0x105/0x140
[  572.196691][T14429]  ? ___sys_sendmsg+0x134/0x1d0
[  572.196731][T14429]  ? __sys_sendmmsg+0x200/0x420
[  572.196777][T14429]  ? __x64_sys_sendmmsg+0x9c/0x100
[  572.196861][T14429]  ? __pfx_xfrm_lookup_with_ifid+0x10/0x10
[  572.196907][T14429]  ipv4_link_failure+0x424/0xbc0
[  572.196945][T14429]  ? __pfx_ipv4_link_failure+0x10/0x10
[  572.196986][T14429]  ? __pfx_ipv4_link_failure+0x10/0x10
[  572.197021][T14429]  vti_tunnel_xmit+0x672/0x1e70
[  572.197085][T14429]  ? __pfx_vti_tunnel_xmit+0x10/0x10
[  572.197165][T14429]  dev_hard_start_xmit+0x93/0x740
[  572.197214][T14429]  __dev_queue_xmit+0x7eb/0x43e0
[  572.197264][T14429]  ? csum_and_copy_from_iter_full+0x3c9/0x1e20
[  572.197304][T14429]  ? __pfx___dev_queue_xmit+0x10/0x10
[  572.197340][T14429]  ? ipt_do_table+0xd48/0x1ac0
[  572.197393][T14429]  ? __local_bh_enable_ip+0xa4/0x120
[  572.197444][T14429]  ? lockdep_hardirqs_on+0x7c/0x110
[  572.197487][T14429]  ? ipt_do_table+0xd48/0x1ac0
[  572.197545][T14429]  ? __lock_acquire+0xaa4/0x1ba0
[  572.197614][T14429]  ? find_held_lock+0x2b/0x80
[  572.197661][T14429]  neigh_connected_output+0x3da/0x620
[  572.197725][T14429]  ip_finish_output2+0x7f5/0x21a0
[  572.197775][T14429]  ? ip_skb_dst_mtu+0x487/0xe90
[  572.197827][T14429]  ? __pfx_ip_finish_output2+0x10/0x10
[  572.197872][T14429]  ? ip_skb_dst_mtu+0x496/0xe90
[  572.197915][T14429]  ? skb_gso_transport_seglen+0x1a5/0x3b0
[  572.197975][T14429]  __ip_finish_output+0x49e/0x950
[  572.198027][T14429]  ip_finish_output+0x35/0x380
[  572.198079][T14429]  ip_output+0x13b/0x2a0
[  572.198121][T14429]  ? __pfx_ip_output+0x10/0x10
[  572.198169][T14429]  ip_send_skb+0x3e8/0x560
[  572.198221][T14429]  udp_send_skb+0x71d/0x15b0
[  572.198278][T14429]  udp_sendmsg+0x18d6/0x29e0
[  572.198327][T14429]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  572.198382][T14429]  ? __pfx_udp_sendmsg+0x10/0x10
[  572.198433][T14429]  ? __perf_event_task_sched_in+0x27a/0xa10
[  572.198500][T14429]  ? __lock_acquire+0xaa4/0x1ba0
[  572.198546][T14429]  ? __pfx___might_resched+0x10/0x10
[  572.198595][T14429]  ? aa_sk_perm+0x2f4/0xb10
[  572.198641][T14429]  ? __import_iovec+0x1c8/0x660
[  572.198685][T14429]  ? __might_fault+0xe3/0x190
[  572.198722][T14429]  ? __might_fault+0x13b/0x190
[  572.198764][T14429]  ? __pfx_udp_sendmsg+0x10/0x10
[  572.198811][T14429]  inet_sendmsg+0x105/0x140
[  572.198844][T14429]  ____sys_sendmsg+0x973/0xc70
[  572.198879][T14429]  ? copy_msghdr_from_user+0x10a/0x160
[  572.198923][T14429]  ? __pfx_____sys_sendmsg+0x10/0x10
[  572.198963][T14429]  ? schedule+0x2d7/0x3a0
[  572.199015][T14429]  ___sys_sendmsg+0x134/0x1d0
[  572.199063][T14429]  ? __pfx____sys_sendmsg+0x10/0x10
[  572.199130][T14429]  ? find_held_lock+0x2b/0x80
[  572.199193][T14429]  __sys_sendmmsg+0x200/0x420
[  572.199244][T14429]  ? __pfx___sys_sendmmsg+0x10/0x10
[  572.199301][T14429]  ? __pfx_do_futex+0x10/0x10
[  572.199337][T14429]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  572.199415][T14429]  ? xfd_validate_state+0x5d/0x180
[  572.199454][T14429]  ? rcu_is_watching+0x12/0xc0
[  572.199495][T14429]  __x64_sys_sendmmsg+0x9c/0x100
[  572.199540][T14429]  ? lockdep_hardirqs_on+0x7c/0x110
[  572.199585][T14429]  do_syscall_64+0xcd/0x230
[  572.199638][T14429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  572.199674][T14429] RIP: 0033:0x7fc93f18e169
[  572.199700][T14429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  572.199732][T14429] RSP: 002b:00007fc93cfd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  572.199764][T14429] RAX: ffffffffffffffda RBX: 00007fc93f3b6080 RCX: 00007fc93f18e169
[  572.199785][T14429] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  572.199805][T14429] RBP: 00007fc93f210a68 R08: 0000000000000000 R09: 0000000000000000
[  572.199823][T14429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  572.199842][T14429] R13: 0000000000000000 R14: 00007fc93f3b6080 R15: 00007fff873e8848
[  572.199885][T14429]  </TASK>
[  574.743596][T14459] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1804'.
[  576.427336][T14504] random: crng reseeded on system resumption
[  576.511229][T13660] Bluetooth: hci3: unexpected event 0x3e length: 728 > 260
[  576.511279][T13660] Bluetooth: hci3: unexpected subevent 0x0c length: 727 > 5
[  576.999918][T14517] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  577.056149][T14517] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
		

	



		





	

	
		
	
		
	

	
		

	


	
	

		
	
		
	
	



			








	




	








	













	

		










	
	










	
	






	




	





		







	

	
		
	
	
	
		

	




	


		

		
		

	
		

	


	
	

		
	
		
	
	



			








	
	



	





	


	

	

	




		
	

	
	
	

	


	



			
		
	
		
	
		
	
		
		


	
	

	
	
	




	


	
	



	



	
	

			

	
			
	



			
			
	

	
	


		



	



	



	



		
	

	


	








	






	


	
	


	






	






	







		









	
	
	

	
		

	
		

	


		

		
	
		
	
	



			








	


			



			

			


	
			
				
	


	

			
	
	
	
	
	
	
	
	






	






	








		













	
	

	
		




		

	
	

syzkaller
syzkaller login: [  597.944858][T14915] HfR: entered promiscuous mode
[  598.938419][T14934] FAULT_INJECTION: forcing a failure.
[  598.938419][T14934] name failslab, interval 1, probability 0, space 0, times 0
[  598.981055][T14934] CPU: 1 UID: 0 PID: 14934 Comm: syz.4.1908 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  598.981108][T14934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  598.981129][T14934] Call Trace:
[  598.981139][T14934]  <TASK>
[  598.981151][T14934]  dump_stack_lvl+0x16c/0x1f0
[  598.981201][T14934]  should_fail_ex+0x512/0x640
[  598.981238][T14934]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  598.981277][T14934]  should_failslab+0xc2/0x120
[  598.981322][T14934]  __kmalloc_cache_noprof+0x6a/0x3e0
[  598.981357][T14934]  ? netdev_create_hash+0x3c/0xc0
[  598.981411][T14934]  ? kasan_save_track+0x14/0x30
[  598.981451][T14934]  ? __pfx_netdev_init+0x10/0x10
[  598.981481][T14934]  netdev_create_hash+0x3c/0xc0
[  598.981512][T14934]  ? __pfx_netdev_init+0x10/0x10
[  598.981539][T14934]  netdev_init+0xa5/0x230
[  598.981568][T14934]  ops_init+0x1df/0x5f0
[  598.981617][T14934]  setup_net+0x21e/0x850
[  598.981669][T14934]  ? __pfx_setup_net+0x10/0x10
[  598.981712][T14934]  ? lockdep_init_map_type+0x5c/0x280
[  598.981760][T14934]  ? __pfx_down_read_killable+0x10/0x10
[  598.981809][T14934]  ? debug_mutex_init+0x37/0x70
[  598.981862][T14934]  copy_net_ns+0x2a6/0x5f0
[  598.981917][T14934]  create_new_namespaces+0x3ea/0xad0
[  598.981967][T14934]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  598.982017][T14934]  ksys_unshare+0x45b/0xa40
[  598.982065][T14934]  ? __pfx_ksys_unshare+0x10/0x10
[  598.982110][T14934]  ? xfd_validate_state+0x5d/0x180
[  598.982147][T14934]  ? rcu_is_watching+0x12/0xc0
[  598.982190][T14934]  __x64_sys_unshare+0x31/0x40
[  598.982238][T14934]  do_syscall_64+0xcd/0x230
[  598.982290][T14934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  598.982323][T14934] RIP: 0033:0x7f778cd8e169
[  598.982349][T14934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  598.982382][T14934] RSP: 002b:00007f778db50038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  598.982412][T14934] RAX: ffffffffffffffda RBX: 00007f778cfb5fa0 RCX: 00007f778cd8e169
[  598.982433][T14934] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  598.982450][T14934] RBP: 00007f778ce10a68 R08: 0000000000000000 R09: 0000000000000000
[  598.982468][T14934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  598.982486][T14934] R13: 0000000000000000 R14: 00007f778cfb5fa0 R15: 00007ffd5bb61948
[  598.982533][T14934]  </TASK>
[  599.309636][T14939] FAULT_INJECTION: forcing a failure.
[  599.309636][T14939] name fail_futex, interval 1, probability 0, space 0, times 0
[  599.355177][T14939] CPU: 0 UID: 0 PID: 14939 Comm: syz.4.1908 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  599.355226][T14939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  599.355246][T14939] Call Trace:
[  599.355256][T14939]  <TASK>
[  599.355268][T14939]  dump_stack_lvl+0x16c/0x1f0
[  599.355321][T14939]  should_fail_ex+0x512/0x640
[  599.355366][T14939]  get_futex_key+0x49e/0x1000
[  599.355408][T14939]  ? __pfx_get_futex_key+0x10/0x10
[  599.355443][T14939]  ? kfree+0x252/0x4d0
[  599.355487][T14939]  futex_wake+0xe7/0x4e0
[  599.355534][T14939]  ? __pfx_futex_wake+0x10/0x10
[  599.355590][T14939]  ? __pfx_vfs_writev+0x10/0x10
[  599.355627][T14939]  ? do_writev+0x218/0x330
[  599.355666][T14939]  do_futex+0x1e3/0x350
[  599.355705][T14939]  ? __pfx_do_futex+0x10/0x10
[  599.355739][T14939]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  599.355800][T14939]  __x64_sys_futex+0x1e0/0x4c0
[  599.355841][T14939]  ? fput+0x70/0xf0
[  599.355881][T14939]  ? __pfx___x64_sys_futex+0x10/0x10
[  599.355921][T14939]  ? __pfx_do_writev+0x10/0x10
[  599.355949][T14939]  ? rcu_is_watching+0x12/0xc0
[  599.355995][T14939]  do_syscall_64+0xcd/0x230
[  599.356045][T14939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  599.356078][T14939] RIP: 0033:0x7f778cd8e169
[  599.356104][T14939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  599.356136][T14939] RSP: 002b:00007f778db2f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  599.356167][T14939] RAX: ffffffffffffffda RBX: 00007f778cfb6088 RCX: 00007f778cd8e169
[  599.356189][T14939] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f778cfb608c
[  599.356209][T14939] RBP: 00007f778cfb6080 R08: 00007f778db51000 R09: 0000000000000000
[  599.356229][T14939] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f778cfb608c
[  599.356249][T14939] R13: 0000000000000000 R14: 00007ffd5bb61860 R15: 00007ffd5bb61948
[  599.356290][T14939]  </TASK>
[  601.823402][T14972] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1915'.
[  601.866889][T14972] openvswitch: netlink: Flow key attr not present in new flow.

syzkaller
syzkaller login: [  602.317222][T14983] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1915'.
[  610.955662][T15087] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1942'.
[  611.480905][T15085] CIFS mount error: No usable UNC path provided in device string!
[  611.480905][T15085] 
[  611.495505][T15085] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  614.040405][T15122] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1949'.
[  614.106403][T15122] openvswitch: netlink: Flow key attr not present in new flow.
[  614.679242][T12946] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  614.746321][T15133] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1949'.
[  615.094975][T12946] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  615.374419][T12946] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  615.556206][T12946] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  615.591862][T15141] : Can't lookup blockdev
[  616.010213][T12946] bridge_slave_1: left allmulticast mode
[  616.028323][T12946] bridge_slave_1: left promiscuous mode
[  616.050847][T12946] bridge0: port 2(bridge_slave_1) entered disabled state
[  616.088395][T12946] bridge_slave_0: left allmulticast mode
[  616.094156][T12946] bridge_slave_0: left promiscuous mode
[  616.111135][T12946] bridge0: port 1(bridge_slave_0) entered disabled state
[  616.534234][T15160] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  616.558791][T15160] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  616.592293][T15160] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  616.601808][T15160] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  616.610294][T15160] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  616.934123][T12946] ip_vti0 (unregistering): left allmulticast mode
[  617.832270][T12946] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  617.845029][T12946] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  617.867020][T12946] bond0 (unregistering): Released all slaves
[  618.660601][T15160] Bluetooth: hci1: command tx timeout
[  619.450635][T15158] chnl_net:caif_netlink_parms(): no params data found
[  620.081578][T15242] lo: entered promiscuous mode
[  620.170754][T15158] bridge0: port 1(bridge_slave_0) entered blocking state
[  620.182930][T15158] bridge0: port 1(bridge_slave_0) entered disabled state
[  620.198795][T15158] bridge_slave_0: entered allmulticast mode
[  620.214061][T15158] bridge_slave_0: entered promiscuous mode
[  620.257638][T15242] lo: left promiscuous mode
[  620.280758][T15158] bridge0: port 2(bridge_slave_1) entered blocking state
[  620.323941][T15158] bridge0: port 2(bridge_slave_1) entered disabled state
[  620.396564][T15158] bridge_slave_1: entered allmulticast mode
[  620.437795][T15158] bridge_slave_1: entered promiscuous mode
[  620.672593][T12946] hsr_slave_0: left promiscuous mode
[  620.716926][T12946] hsr_slave_1: left promiscuous mode
[  620.740020][T15160] Bluetooth: hci1: command tx timeout
[  620.769323][T12946] batman_adv: batadv0: Removing interface: batadv_slave_0
[  620.809867][T12946] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  620.825707][T12946] batman_adv: batadv0: Removing interface: batadv_slave_1
[  621.039499][T12946] veth1_macvtap: left promiscuous mode
[  621.045128][T12946] veth0_macvtap: left promiscuous mode
[  621.109118][T12946] veth1_vlan: left promiscuous mode
[  621.116375][T12946] veth0_vlan: left promiscuous mode
[  622.237027][T15291] CIFS mount error: No usable UNC path provided in device string!
[  622.237027][T15291] 
[  622.272851][T15291] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  622.816872][T15160] Bluetooth: hci1: command tx timeout
[  622.894157][T12946] team0 (unregistering): Port device team_slave_1 removed
[  622.976282][T12946] team0 (unregistering): Port device team_slave_0 removed
[  623.465155][T15158] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  623.482104][T15158] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  623.678919][T15158] team0: Port device team_slave_0 added
[  623.711328][T15160] Bluetooth: hci2: unexpected event 0x3e length: 728 > 260
[  623.711368][T15160] Bluetooth: hci2: unexpected subevent 0x0c length: 727 > 5
[  623.749431][T15158] team0: Port device team_slave_1 added
[  623.835006][T15158] batman_adv: batadv0: Adding interface: batadv_slave_0
[  623.858571][T15158] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  623.885619][T15158] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  623.960146][T15303] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1981'.
[  624.022017][T15158] batman_adv: batadv0: Adding interface: batadv_slave_1
[  624.051621][T15158] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  624.085716][T15158] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  624.251274][T15158] hsr_slave_0: entered promiscuous mode
[  624.270600][T15158] hsr_slave_1: entered promiscuous mode
[  624.281464][T15158] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  624.301116][T15158] Cannot create hsr debugfs directory
[  624.457416][T15316] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[  624.810680][T15160] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  624.886504][T15160] Bluetooth: hci2: ACL packet for unknown connection handle 0
[  624.901468][T15160] Bluetooth: hci1: command tx timeout
[  627.969148][T15158] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  628.025980][T15158] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  628.050255][T15158] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  628.091120][T15158] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  628.119149][T15399] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1995'.
[  628.985903][T15158] 8021q: adding VLAN 0 to HW filter on device bond0
[  629.071302][T15158] 8021q: adding VLAN 0 to HW filter on device team0
[  629.151366][T12946] bridge0: port 1(bridge_slave_0) entered blocking state
[  629.158740][T12946] bridge0: port 1(bridge_slave_0) entered forwarding state
[  629.256641][T10301] bridge0: port 2(bridge_slave_1) entered blocking state
[  629.263913][T10301] bridge0: port 2(bridge_slave_1) entered forwarding state
[  629.545521][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  629.552062][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  630.969340][T15158] 8021q: adding VLAN 0 to HW filter on device batadv0
[  632.514000][T15158] veth0_vlan: entered promiscuous mode
[  632.557040][T15158] veth1_vlan: entered promiscuous mode
[  632.779533][T15158] veth0_macvtap: entered promiscuous mode
[  632.819750][T15158] veth1_macvtap: entered promiscuous mode
[  632.905231][T15158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  632.953257][T15158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  632.982170][T15158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  633.013078][T15158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.037263][T15158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  633.081635][T15158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.103685][T15158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  633.115084][T15158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.129696][T15158] batman_adv: batadv0: Interface activated: batadv_slave_0
[  633.144567][T15158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  633.156145][T15158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.166812][T15158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  633.177882][T15158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.194103][T15158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  633.254127][T15158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.269966][T15158] batman_adv: batadv0: Interface activated: batadv_slave_1
[  633.413895][T15158] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  633.489604][T15158] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  633.524536][T15158] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  633.534298][T15158] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  633.764717][T15507] program syz.0.2009 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  633.946819][ T9718] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  633.954810][ T9718] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  633.962383][T10301] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  633.988588][T10301] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  634.461543][T15535] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1954'.
[  634.498168][T15535] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.645255][T15535] bridge_slave_1 (unregistering): left allmulticast mode
[  634.666299][T15535] bridge_slave_1 (unregistering): left promiscuous mode
[  634.675431][T15535] bridge0: port 2(bridge_slave_1) entered disabled state
[  638.054756][T15606] FAULT_INJECTION: forcing a failure.
[  638.054756][T15606] name failslab, interval 1, probability 0, space 0, times 0
[  638.068487][T15606] CPU: 0 UID: 0 PID: 15606 Comm: syz.0.2021 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  638.068533][T15606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  638.068553][T15606] Call Trace:
[  638.068564][T15606]  <TASK>
[  638.068577][T15606]  dump_stack_lvl+0x16c/0x1f0
[  638.068633][T15606]  should_fail_ex+0x512/0x640
[  638.068673][T15606]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  638.068725][T15606]  should_failslab+0xc2/0x120
[  638.068778][T15606]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  638.068823][T15606]  ? rhashtable_init_noprof+0x4ed/0x7e0
[  638.068861][T15606]  ? rhashtable_init_noprof+0x55e/0x7e0
[  638.068897][T15606]  ? lowpan_frags_init_net+0x113/0x3a0
[  638.068955][T15606]  kmemdup_noprof+0x29/0x60
[  638.069001][T15606]  lowpan_frags_init_net+0x113/0x3a0
[  638.069054][T15606]  ? __pfx_lowpan_frags_init_net+0x10/0x10
[  638.069104][T15606]  ops_init+0x1df/0x5f0
[  638.069156][T15606]  setup_net+0x21e/0x850
[  638.069208][T15606]  ? __pfx_setup_net+0x10/0x10
[  638.069252][T15606]  ? lockdep_init_map_type+0x5c/0x280
[  638.069301][T15606]  ? __pfx_down_read_killable+0x10/0x10
[  638.069337][T15606]  ? debug_mutex_init+0x37/0x70
[  638.069375][T15606]  copy_net_ns+0x2a6/0x5f0
[  638.069431][T15606]  create_new_namespaces+0x3ea/0xad0
[  638.069481][T15606]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  638.069531][T15606]  ksys_unshare+0x45b/0xa40
[  638.069581][T15606]  ? __pfx_ksys_unshare+0x10/0x10
[  638.069627][T15606]  ? xfd_validate_state+0x5d/0x180
[  638.069665][T15606]  ? rcu_is_watching+0x12/0xc0
[  638.069708][T15606]  __x64_sys_unshare+0x31/0x40
[  638.069763][T15606]  do_syscall_64+0xcd/0x230
[  638.069815][T15606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  638.069849][T15606] RIP: 0033:0x7fc93f18e169
[  638.069876][T15606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  638.069909][T15606] RSP: 002b:00007fc93cff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  638.069939][T15606] RAX: ffffffffffffffda RBX: 00007fc93f3b5fa0 RCX: 00007fc93f18e169
[  638.069961][T15606] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  638.069981][T15606] RBP: 00007fc93f210a68 R08: 0000000000000000 R09: 0000000000000000
[  638.070000][T15606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  638.070019][T15606] R13: 0000000000000000 R14: 00007fc93f3b5fa0 R15: 00007fff873e8848
[  638.070061][T15606]  </TASK>
[  638.498605][ T5844] Bluetooth: hci4: command 0x1003 tx timeout
[  638.512669][T15160] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  640.155675][T15661] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2032'.
[  640.196482][T15661] vxcan1: entered promiscuous mode
[  640.246124][T15667] HfR: entered promiscuous mode
[  641.104205][T15674] Invalid ELF header magic: != ELF
[  641.601183][T15706] [U] 
[  641.604101][T15706] [U] 
[  641.606874][T15706] [U] 
[  641.609646][T15706] [U] 
[  641.643066][T15706] [U] 
[  641.645892][T15706] [U] 
[  641.648755][T15706] [U] 
[  641.651518][T15706] [U] 
[  641.687885][T15706] [U] 
[  641.690674][T15706] [U] 
[  641.693430][T15706] [U] 
[  641.696173][T15706] [U] 
[  641.817458][T15706] [U] 
[  641.820257][T15706] [U] 
[  641.823014][T15706] [U] 
[  641.825764][T15706] [U] 
[  641.830050][T15706] [U] 
[  641.832835][T15706] [U] 
[  641.835589][T15706] [U] 
[  641.838358][T15706] [U] 
[  641.843953][T15706] [U] 
[  641.846732][T15706] [U] 
[  641.849484][T15706] [U] 
[  641.852233][T15706] [U] 
[  641.856465][T15706] [U] 
[  641.859242][T15706] [U] 
[  641.862004][T15706] [U] 
[  641.864752][T15706] [U] 
[  641.869218][T15706] [U] 
[  641.872001][T15706] [U] 
[  641.874772][T15706] [U] 
[  641.877543][T15706] [U] 
[  641.881680][T15706] [U] 
[  641.884465][T15706] [U] 
[  641.887242][T15706] [U] 
[  641.890003][T15706] [U] 
[  642.001835][T15706] [U] 
[  642.004633][T15706] [U] 
[  642.007404][T15706] [U] 
[  642.010157][T15706] [U] 
[  642.160883][T15706] [U] 
[  642.163689][T15706] [U] 
[  642.166440][T15706] [U] 
[  642.169190][T15706] [U] 
[  642.172265][T15706] [U] 
[  642.175023][T15706] [U] 
[  642.177774][T15706] [U] 
[  642.180535][T15706] [U] 
[  642.192203][T15706] [U] 
[  642.194998][T15706] [U] 
[  642.197757][T15706] [U] 
[  642.200510][T15706] [U] 
[  642.227259][T15706] [U] 
[  642.230049][T15706] [U] 
[  642.232822][T15706] [U] 
[  642.235583][T15706] [U] 
[  642.239473][T15706] [U] 
[  642.242257][T15706] [U] 
[  642.245039][T15706] [U] 
[  642.247806][T15706] [U] 
[  642.254516][T15706] [U] 
[  642.257391][T15706] [U] 
[  642.260111][T15706] [U] 
[  642.262823][T15706] [U] 
[  642.267046][T15706] [U] 
[  642.269832][T15706] [U] 
[  642.272590][T15706] [U] 
[  642.275352][T15706] [U] 
[  642.279068][T15706] [U] 
[  642.281837][T15706] [U] 
[  642.284584][T15706] [U] 
[  642.287325][T15706] [U] 
[  642.291143][T15706] [U] 
[  642.293913][T15706] [U] 
[  642.296655][T15706] [U] 
[  642.299384][T15706] [U] 
[  642.303134][T15706] [U] 
[  642.305906][T15706] [U] 
[  642.308658][T15706] [U] 
[  642.311408][T15706] [U] 
[  642.315117][T15706] [U] 
[  642.317864][T15706] [U] 
[  642.320576][T15706] [U] 
[  642.323289][T15706] [U] 
[  642.326983][T15706] [U] 
[  642.329766][T15706] [U] 
[  642.332517][T15706] [U] 
[  642.335265][T15706] [U] 
[  642.339379][T15706] [U] 
[  642.342120][T15706] [U] 
[  642.344859][T15706] [U] 
[  642.347605][T15706] [U] 
[  642.352262][T15706] [U] 
[  642.355037][T15706] [U] 
[  642.357795][T15706] [U] 
[  642.360543][T15706] [U] 
[  642.364315][T15706] [U] 
[  644.969067][T15760] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2054'.
[  646.164632][T15777] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2058'.
[  646.280454][ T5844] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  646.293182][ T5844] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  646.307266][ T5844] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  646.330420][ T5844] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  646.342159][ T5844] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  646.675058][T15793] openvswitch: HfR: Dropping previously announced user features

syzkaller
syzkaller login: [  647.622589][T15778] chnl_net:caif_netlink_parms(): no params data found
[  647.626025][T15804] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  647.638548][T15804] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  647.667982][T15804] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  647.720724][T15804] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  647.738386][T15804] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  647.744710][T15804] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  647.793847][T15804] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  647.818449][T15804] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  647.834828][T15804] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  647.855364][T15804] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  647.955976][T15778] bridge0: port 1(bridge_slave_0) entered blocking state
[  647.964792][T15778] bridge0: port 1(bridge_slave_0) entered disabled state
[  647.984760][T15778] bridge_slave_0: entered allmulticast mode
[  648.006898][T15778] bridge_slave_0: entered promiscuous mode
[  648.042901][T15778] bridge0: port 2(bridge_slave_1) entered blocking state
[  648.066643][T15778] bridge0: port 2(bridge_slave_1) entered disabled state
[  648.074081][T15778] bridge_slave_1: entered allmulticast mode
[  648.099111][T15778] bridge_slave_1: entered promiscuous mode
[  648.122032][T15822] FAULT_INJECTION: forcing a failure.
[  648.122032][T15822] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  648.405617][T15822] CPU: 0 UID: 0 PID: 15822 Comm: syz.4.2065 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  648.405666][T15822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  648.405688][T15822] Call Trace:
[  648.405698][T15822]  <TASK>
[  648.405712][T15822]  dump_stack_lvl+0x16c/0x1f0
[  648.405765][T15822]  should_fail_ex+0x512/0x640
[  648.405816][T15822]  should_fail_alloc_page+0xe7/0x130
[  648.405863][T15822]  prepare_alloc_pages+0x3c2/0x610
[  648.405917][T15822]  ? rcu_is_watching+0x12/0xc0
[  648.405956][T15822]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  648.406002][T15822]  ? arch_stack_walk+0xa6/0x100
[  648.406059][T15822]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  648.406098][T15822]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  648.406142][T15822]  ? __pfx_stack_trace_save+0x10/0x10
[  648.406178][T15822]  ? stack_depot_save_flags+0x28/0xa50
[  648.406229][T15822]  ? kasan_save_stack+0x42/0x60
[  648.406272][T15822]  ? __lock_acquire+0xaa4/0x1ba0
[  648.406314][T15822]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  648.406364][T15822]  ? policy_nodemask+0xea/0x4e0
[  648.406420][T15822]  alloc_pages_mpol+0x1fb/0x550
[  648.406467][T15822]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  648.406508][T15822]  ? __page_table_check_ptes_set+0x1ae/0x420
[  648.406553][T15822]  ? find_held_lock+0x2b/0x80
[  648.406595][T15822]  alloc_pages_noprof+0x131/0x390
[  648.406641][T15822]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  648.406678][T15822]  get_free_pages_noprof+0xc/0x40
[  648.406721][T15822]  kasan_populate_vmalloc_pte+0x2d/0x160
[  648.406760][T15822]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  648.406796][T15822]  __apply_to_page_range+0x617/0xd60
[  648.406832][T15822]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  648.406876][T15822]  ? __pfx___apply_to_page_range+0x10/0x10
[  648.406909][T15822]  ? alloc_vmap_area+0x872/0x2970
[  648.406969][T15822]  alloc_vmap_area+0x919/0x2970
[  648.407037][T15822]  ? __pfx_alloc_vmap_area+0x10/0x10
[  648.407100][T15822]  __get_vm_area_node+0x1a7/0x300
[  648.407162][T15822]  __vmalloc_node_range_noprof+0x277/0x1540
[  648.407196][T15822]  ? __do_sys_listmount+0x1c2/0xed0
[  648.407260][T15822]  ? __do_sys_listmount+0x1c2/0xed0
[  648.407319][T15822]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  648.407372][T15822]  __kvmalloc_node_noprof+0x2ff/0x600
[  648.407416][T15822]  ? __do_sys_listmount+0x1c2/0xed0
[  648.407470][T15822]  ? __do_sys_listmount+0x1c2/0xed0
[  648.407529][T15822]  ? __do_sys_listmount+0x1c2/0xed0
[  648.407578][T15822]  __do_sys_listmount+0x1c2/0xed0
[  648.407639][T15822]  ? __x64_sys_futex+0x1e0/0x4c0
[  648.407676][T15822]  ? __x64_sys_futex+0x1e9/0x4c0
[  648.407716][T15822]  ? __pfx___do_sys_listmount+0x10/0x10
[  648.407766][T15822]  ? xfd_validate_state+0x5d/0x180
[  648.407817][T15822]  do_syscall_64+0xcd/0x230
[  648.407869][T15822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  648.407902][T15822] RIP: 0033:0x7fb1e598e169
[  648.407929][T15822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  648.407963][T15822] RSP: 002b:00007fb1e67aa038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  648.407995][T15822] RAX: ffffffffffffffda RBX: 00007fb1e5bb6160 RCX: 00007fb1e598e169
[  648.408016][T15822] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  648.408035][T15822] RBP: 00007fb1e5a10a68 R08: 0000000000000000 R09: 0000000000000000
[  648.408054][T15822] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  648.408073][T15822] R13: 0000000000000000 R14: 00007fb1e5bb6160 R15: 00007ffc3cc03da8
[  648.408114][T15822]  </TASK>
[  648.897398][T15822] syz.4.2065: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  648.980622][T15822] CPU: 1 UID: 0 PID: 15822 Comm: syz.4.2065 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  648.980673][T15822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  648.980691][T15822] Call Trace:
[  648.980702][T15822]  <TASK>
[  648.980715][T15822]  dump_stack_lvl+0x16c/0x1f0
[  648.980767][T15822]  warn_alloc+0x248/0x3a0
[  648.980810][T15822]  ? __pfx_warn_alloc+0x10/0x10
[  648.980852][T15822]  ? kfree+0x2b6/0x4d0
[  648.980892][T15822]  ? __get_vm_area_node+0x1e5/0x300
[  648.980953][T15822]  __vmalloc_node_range_noprof+0xd31/0x1540
[  648.981002][T15822]  ? __do_sys_listmount+0x1c2/0xed0
[  648.981062][T15822]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  648.981113][T15822]  __kvmalloc_node_noprof+0x2ff/0x600
[  648.981151][T15822]  ? __do_sys_listmount+0x1c2/0xed0
[  648.981202][T15822]  ? __do_sys_listmount+0x1c2/0xed0
[  648.981260][T15822]  ? __do_sys_listmount+0x1c2/0xed0
[  648.981308][T15822]  __do_sys_listmount+0x1c2/0xed0
[  648.981366][T15822]  ? __x64_sys_futex+0x1e0/0x4c0
[  648.981404][T15822]  ? __x64_sys_futex+0x1e9/0x4c0
[  648.981444][T15822]  ? __pfx___do_sys_listmount+0x10/0x10
[  648.981495][T15822]  ? xfd_validate_state+0x5d/0x180
[  648.981545][T15822]  do_syscall_64+0xcd/0x230
[  648.981606][T15822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  648.981641][T15822] RIP: 0033:0x7fb1e598e169
[  648.981666][T15822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  648.981700][T15822] RSP: 002b:00007fb1e67aa038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  648.981732][T15822] RAX: ffffffffffffffda RBX: 00007fb1e5bb6160 RCX: 00007fb1e598e169
[  648.981753][T15822] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  648.981772][T15822] RBP: 00007fb1e5a10a68 R08: 0000000000000000 R09: 0000000000000000
[  648.981790][T15822] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  648.981808][T15822] R13: 0000000000000000 R14: 00007fb1e5bb6160 R15: 00007ffc3cc03da8
[  648.981847][T15822]  </TASK>
[  648.981858][T15822] Mem-Info:
[  649.229252][T15778] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  649.231010][T15822] active_anon:20927 inactive_anon:0 isolated_anon:0
[  649.231010][T15822]  active_file:12326 inactive_file:42976 isolated_file:0
[  649.231010][T15822]  unevictable:768 dirty:714 writeback:0
[  649.231010][T15822]  slab_reclaimable:11504 slab_unreclaimable:107379
[  649.231010][T15822]  mapped:27440 shmem:1631 pagetables:1056
[  649.231010][T15822]  sec_pagetables:0 bounce:0
[  649.231010][T15822]  kernel_misc_reclaimable:0
[  649.231010][T15822]  free:1297778 free_pcp:5876 free_cma:0
[  649.284035][    C1] vkms_vblank_simulate: vblank timer overrun
[  649.311913][T15778] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  649.392552][T15822] Node 0 active_anon:82848kB inactive_anon:0kB active_file:49404kB inactive_file:171768kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:109640kB dirty:1292kB writeback:0kB shmem:132kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12432kB pagetables:4208kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  649.475656][T15822] Node 1 active_anon:60kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:120kB dirty:64kB writeback:0kB shmem:5792kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:16kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  649.576919][T15822] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  649.603052][T15778] team0: Port device team_slave_0 added
[  649.604049][    C1] vkms_vblank_simulate: vblank timer overrun
[  649.629804][T15778] team0: Port device team_slave_1 added
[  649.675399][T15822] lowmem_reserve[]: 0 2482 2483 2483 2483
[  649.681744][T15822] Node 0 DMA32 free:1295564kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:82804kB inactive_anon:0kB active_file:49404kB inactive_file:170196kB unevictable:1536kB writepending:1388kB present:3129332kB managed:2541760kB mlocked:0kB bounce:0kB free_pcp:2264kB local_pcp:560kB free_cma:0kB
[  649.714090][ T5844] Bluetooth: hci2: command 0x0406 tx timeout
[  649.714174][T15160] Bluetooth: hci3: command 0x0406 tx timeout
[  649.736894][T15822] lowmem_reserve[]: 0 0 1 1 1
[  649.765800][T15778] batman_adv: batadv0: Adding interface: batadv_slave_0
[  649.773712][T15822] Node 0 Normal free:20kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1572kB unevictable:0kB writepending:4kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:4kB free_cma:0kB
[  649.779379][T15778] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  649.801940][T15822] lowmem_reserve[]:
[  649.827360][    C1] vkms_vblank_simulate: vblank timer overrun
[  649.828444][T15160] Bluetooth: hci1: command 0x0c1a tx timeout
[  649.833696][T15822]  0 0 0 0 0
[  649.847950][T15822] Node 1 Normal free:3886488kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:60kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:64kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:13920kB local_pcp:7944kB free_cma:0kB
[  649.877574][    C1] vkms_vblank_simulate: vblank timer overrun
[  649.886448][T15160] Bluetooth: hci0: command 0x041b tx timeout
[  649.890709][T15822] lowmem_reserve[]: 0 0 0 0 0
[  649.899546][T15822] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  649.912430][T15778] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  649.923670][T15822] Node 0 DMA32: 2735*4kB (ME) 1572*8kB (UME) 1400*16kB (UME) 890*32kB (UME) 530*64kB (UME) 264*128kB (UME) 269*256kB (UME) 127*512kB (UM) 52*1024kB (UME) 28*2048kB (UME) 222*4096kB (UME) = 1295900kB
[  649.947078][T15822] Node 0 Normal: 1*4kB (M) 2*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  649.959641][T15822] Node 1 Normal: 1*4kB (E) 6*8kB (UE) 22*16kB (UME) 194*32kB (UE) 109*64kB (UME) 23*128kB (UE) 12*256kB (UM) 5*512kB (UM) 8*1024kB (UME) 3*2048kB (UE) 940*4096kB (M) = 3886740kB
[  649.986207][T15822] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  649.996402][T15822] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  650.006314][T15822] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  650.016517][T15822] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  650.029368][T15822] 56790 total pagecache pages
[  650.034143][T15822] 0 pages in swap cache
[  650.039518][T15822] Free swap  = 124996kB
[  650.043785][T15822] Total swap = 124996kB
[  650.048755][T15822] 2097051 pages RAM
[  650.052672][T15822] 0 pages HighMem/MovableOnly
[  650.057894][T15822] 429569 pages reserved
[  650.066503][T15822] 0 pages cma reserved
[  650.074069][T15778] batman_adv: batadv0: Adding interface: batadv_slave_1
[  650.081631][T15778] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  650.107565][    C1] vkms_vblank_simulate: vblank timer overrun
[  650.113915][T15778] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  650.306033][T15778] hsr_slave_0: entered promiscuous mode
[  650.313635][T15778] hsr_slave_1: entered promiscuous mode
[  650.320217][T15778] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  650.329501][T15778] Cannot create hsr debugfs directory
[  651.078334][T15778] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  651.166252][T15839] netlink: 'syz.1.2068': attribute type 15 has an invalid length.
[  651.204773][T15839] netlink: 186 bytes leftover after parsing attributes in process `syz.1.2068'.
[  651.306055][T15778] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  651.437966][T15778] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  651.560207][T15778] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  651.777500][T15160] Bluetooth: hci3: command 0x0406 tx timeout
[  651.857018][T15160] Bluetooth: hci1: command 0x0c1a tx timeout
[  651.942941][T15160] Bluetooth: hci0: command 0x041b tx timeout
[  652.001182][T15852] random: crng reseeded on system resumption
[  652.095430][T15778] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  652.136104][T15778] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  652.171044][T15778] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  652.211187][T15778] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  652.460924][T15778] 8021q: adding VLAN 0 to HW filter on device bond0
[  652.553828][T15778] 8021q: adding VLAN 0 to HW filter on device team0
[  652.598064][T12946] bridge0: port 1(bridge_slave_0) entered blocking state
[  652.605301][T12946] bridge0: port 1(bridge_slave_0) entered forwarding state
[  652.642631][T12946] bridge0: port 2(bridge_slave_1) entered blocking state
[  652.649887][T12946] bridge0: port 2(bridge_slave_1) entered forwarding state
[  653.247968][T15778] 8021q: adding VLAN 0 to HW filter on device batadv0
[  653.349850][T15160] Bluetooth: hci3: Unable to find connection for big 0xd2
[  653.372486][ T5844] Bluetooth: hci3: Unable to find connection for big 0xd2
[  653.654046][T15778] veth0_vlan: entered promiscuous mode
[  653.688027][T15778] veth1_vlan: entered promiscuous mode
[  653.856799][T15160] Bluetooth: hci3: command 0x0406 tx timeout
[  653.937088][T15160] Bluetooth: hci1: command 0x0c1a tx timeout
[  653.953214][T15778] veth0_macvtap: entered promiscuous mode
[  654.017168][T15160] Bluetooth: hci0: command 0x041b tx timeout
[  654.363374][T15778] veth1_macvtap: entered promiscuous mode
[  654.513892][T15778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  654.551665][T15778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.591204][T15778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  654.607030][T15778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.617260][T15778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  654.631177][T15778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.643749][T15778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  654.654977][T15778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.673599][T15778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  654.684247][T15778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.700892][T15778] batman_adv: batadv0: Interface activated: batadv_slave_0
[  654.816637][T15778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  654.846912][T15778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.866774][T15778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  654.901406][T15778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.949626][T15778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  654.964915][T15778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.975902][T15778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  654.992406][T15778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  655.037375][T15778] batman_adv: batadv0: Interface activated: batadv_slave_1
[  655.121998][T15778] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  655.155696][T15778] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  655.169581][T15778] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  655.181501][T15778] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  655.557087][ T9723] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  655.586342][ T9723] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  655.808925][ T9718] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  655.833565][T15924] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2085'.
[  655.837428][ T9718] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  655.863060][T15924] netlink: 334 bytes leftover after parsing attributes in process `syz.1.2085'.
[  656.103178][T15160] Bluetooth: hci0: command 0x041b tx timeout
[  656.189902][T15931] FAULT_INJECTION: forcing a failure.
[  656.189902][T15931] name fail_futex, interval 1, probability 0, space 0, times 0
[  656.216877][T15931] CPU: 1 UID: 0 PID: 15931 Comm: syz.4.2088 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  656.216925][T15931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  656.216944][T15931] Call Trace:
[  656.216953][T15931]  <TASK>
[  656.216965][T15931]  dump_stack_lvl+0x16c/0x1f0
[  656.217017][T15931]  should_fail_ex+0x512/0x640
[  656.217062][T15931]  get_futex_key+0x49e/0x1000
[  656.217104][T15931]  ? __pfx_get_futex_key+0x10/0x10
[  656.217152][T15931]  futex_wake+0xe7/0x4e0
[  656.217198][T15931]  ? __pfx_futex_wake+0x10/0x10
[  656.217244][T15931]  ? kmem_cache_free+0x2d4/0x4d0
[  656.217281][T15931]  ? fd_install+0x225/0x750
[  656.217308][T15931]  ? putname+0x154/0x1a0
[  656.217355][T15931]  do_futex+0x1e3/0x350
[  656.217394][T15931]  ? __pfx_do_futex+0x10/0x10
[  656.217443][T15931]  __x64_sys_futex+0x1e0/0x4c0
[  656.217485][T15931]  ? __x64_sys_openat+0x174/0x210
[  656.217544][T15931]  ? __pfx___x64_sys_futex+0x10/0x10
[  656.217586][T15931]  ? rcu_is_watching+0x12/0xc0
[  656.217632][T15931]  do_syscall_64+0xcd/0x230
[  656.217684][T15931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.217718][T15931] RIP: 0033:0x7fb1e598e169
[  656.217744][T15931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  656.217776][T15931] RSP: 002b:00007fb1e67ec0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  656.217808][T15931] RAX: ffffffffffffffda RBX: 00007fb1e5bb5fa8 RCX: 00007fb1e598e169
[  656.217830][T15931] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb1e5bb5fac
[  656.217852][T15931] RBP: 00007fb1e5bb5fa0 R08: 00007fb1e67ed000 R09: 0000000000000000
[  656.217873][T15931] R10: 000000000000000c R11: 0000000000000246 R12: 00007fb1e5bb5fac
[  656.217893][T15931] R13: 0000000000000000 R14: 00007ffc3cc03cc0 R15: 00007ffc3cc03da8
[  656.217935][T15931]  </TASK>
[  656.417997][T15928] Invalid ELF header magic: != ELF
[  656.605519][T15935] Invalid ELF header magic: != ELF
[  656.916101][T15932] Invalid ELF header magic: != ELF
[  657.554653][T15961] [U] 
[  657.557550][T15961] [U] 
[  657.560302][T15961] [U] 
[  657.563045][T15961] [U] 
[  657.667085][T15961] [U] 
[  657.669887][T15961] [U] 
[  657.672657][T15961] [U] 
[  657.675426][T15961] [U] 
[  657.681020][   T30] audit: type=1800 audit(6040079277.027:67): pid=15963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2090" name="SYSV00000400" dev="tmpfs" ino=0 res=0 errno=0
[  657.846985][T15961] [U] 
[  657.849787][T15961] [U] 
[  657.852550][T15961] [U] 
[  657.855309][T15961] [U] 
[  657.956166][T15961] [U] 
[  657.958971][T15961] [U] 
[  657.961727][T15961] [U] 
[  657.964481][T15961] [U] 
[  658.083885][T15961] [U] 
[  658.086697][T15961] [U] 
[  658.089462][T15961] [U] 
[  658.092222][T15961] [U] 
[  658.197056][T15160] Bluetooth: hci0: command 0x041b tx timeout
[  658.203584][T15961] [U] 
[  658.206353][T15961] [U] 
[  658.209118][T15961] [U] 
[  658.211870][T15961] [U] 
[  658.373325][T15961] [U] 
[  658.376140][T15961] [U] 
[  658.378907][T15961] [U] 
[  658.381664][T15961] [U] 
[  658.455649][T15961] [U] 
[  658.458465][T15961] [U] 
[  658.461224][T15961] [U] 
[  658.463975][T15961] [U] 
[  658.567501][T15961] [U] 
[  658.570333][T15961] [U] 
[  658.573106][T15961] [U] 
[  658.575856][T15961] [U] 
[  658.716829][T15961] [U] 
[  659.666491][T15990] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2099'.
[  659.687277][T15990] ipvlan1: entered allmulticast mode
[  659.692641][T15990] veth0_vlan: entered allmulticast mode
[  660.274374][T15160] Bluetooth: hci0: command 0x041b tx timeout
[  660.439867][T15989] kexec: Could not allocate control_code_buffer
[  660.595476][T16008] delete_channel: no stack
[  660.750534][T16016] FAULT_INJECTION: forcing a failure.
[  660.750534][T16016] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  660.797675][T16016] CPU: 0 UID: 0 PID: 16016 Comm: syz.1.2107 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  660.797723][T16016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  660.797742][T16016] Call Trace:
[  660.797752][T16016]  <TASK>
[  660.797764][T16016]  dump_stack_lvl+0x16c/0x1f0
[  660.797818][T16016]  should_fail_ex+0x512/0x640
[  660.797865][T16016]  should_fail_alloc_page+0xe7/0x130
[  660.797911][T16016]  prepare_alloc_pages+0x3c2/0x610
[  660.797964][T16016]  ? rcu_is_watching+0x12/0xc0
[  660.798002][T16016]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  660.798045][T16016]  ? __kernel_text_address+0xd/0x40
[  660.798079][T16016]  ? unwind_get_return_address+0x59/0xa0
[  660.798121][T16016]  ? arch_stack_walk+0xa6/0x100
[  660.798174][T16016]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  660.798216][T16016]  ? stack_trace_save+0x8e/0xc0
[  660.798251][T16016]  ? __pfx_stack_trace_save+0x10/0x10
[  660.798287][T16016]  ? stack_depot_save_flags+0x28/0xa50
[  660.798327][T16016]  ? find_held_lock+0x2b/0x80
[  660.798376][T16016]  ? kasan_save_stack+0x42/0x60
[  660.798420][T16016]  ? __lock_acquire+0xaa4/0x1ba0
[  660.798464][T16016]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  660.798519][T16016]  ? policy_nodemask+0xea/0x4e0
[  660.798565][T16016]  alloc_pages_mpol+0x1fb/0x550
[  660.798610][T16016]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  660.798650][T16016]  ? __page_table_check_ptes_set+0x1ae/0x420
[  660.798694][T16016]  ? find_held_lock+0x2b/0x80
[  660.798733][T16016]  alloc_pages_noprof+0x131/0x390
[  660.798778][T16016]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  660.798812][T16016]  get_free_pages_noprof+0xc/0x40
[  660.798857][T16016]  kasan_populate_vmalloc_pte+0x2d/0x160
[  660.798896][T16016]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  660.798933][T16016]  __apply_to_page_range+0x617/0xd60
[  660.798968][T16016]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  660.799011][T16016]  ? __pfx___apply_to_page_range+0x10/0x10
[  660.799043][T16016]  ? alloc_vmap_area+0x872/0x2970
[  660.799100][T16016]  alloc_vmap_area+0x919/0x2970
[  660.799168][T16016]  ? __pfx_alloc_vmap_area+0x10/0x10
[  660.799229][T16016]  __get_vm_area_node+0x1a7/0x300
[  660.799291][T16016]  __vmalloc_node_range_noprof+0x277/0x1540
[  660.799327][T16016]  ? __do_sys_listmount+0x1c2/0xed0
[  660.799398][T16016]  ? __do_sys_listmount+0x1c2/0xed0
[  660.799460][T16016]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  660.799512][T16016]  __kvmalloc_node_noprof+0x2ff/0x600
[  660.799552][T16016]  ? __do_sys_listmount+0x1c2/0xed0
[  660.799603][T16016]  ? __do_sys_listmount+0x1c2/0xed0
[  660.799664][T16016]  ? __do_sys_listmount+0x1c2/0xed0
[  660.799715][T16016]  __do_sys_listmount+0x1c2/0xed0
[  660.799774][T16016]  ? __x64_sys_futex+0x1e0/0x4c0
[  660.799812][T16016]  ? __x64_sys_futex+0x1e9/0x4c0
[  660.799852][T16016]  ? __pfx___do_sys_listmount+0x10/0x10
[  660.799902][T16016]  ? xfd_validate_state+0x5d/0x180
[  660.799952][T16016]  do_syscall_64+0xcd/0x230
[  660.800006][T16016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  660.800040][T16016] RIP: 0033:0x7ffa0478e169
[  660.800068][T16016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  660.800102][T16016] RSP: 002b:00007ffa055a4038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  660.800134][T16016] RAX: ffffffffffffffda RBX: 00007ffa049b6080 RCX: 00007ffa0478e169
[  660.800156][T16016] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  660.800175][T16016] RBP: 00007ffa04810a68 R08: 0000000000000000 R09: 0000000000000000
[  660.800194][T16016] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  660.800212][T16016] R13: 0000000000000000 R14: 00007ffa049b6080 R15: 00007ffdf64731e8
[  660.800252][T16016]  </TASK>
[  661.169673][    C0] vkms_vblank_simulate: vblank timer overrun
[  661.217067][T16016] warn_alloc: 1 callbacks suppressed
[  661.217095][T16016] syz.1.2107: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  661.344931][T16016] CPU: 1 UID: 0 PID: 16016 Comm: syz.1.2107 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  661.344974][T16016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  661.344993][T16016] Call Trace:
[  661.345004][T16016]  <TASK>
[  661.345025][T16016]  dump_stack_lvl+0x16c/0x1f0
[  661.345076][T16016]  warn_alloc+0x248/0x3a0
[  661.345116][T16016]  ? __pfx_warn_alloc+0x10/0x10
[  661.345156][T16016]  ? kfree+0x2b6/0x4d0
[  661.345189][T16016]  ? __get_vm_area_node+0x1e5/0x300
[  661.345238][T16016]  __vmalloc_node_range_noprof+0xd31/0x1540
[  661.345279][T16016]  ? __do_sys_listmount+0x1c2/0xed0
[  661.345328][T16016]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  661.345368][T16016]  __kvmalloc_node_noprof+0x2ff/0x600
[  661.345399][T16016]  ? __do_sys_listmount+0x1c2/0xed0
[  661.345441][T16016]  ? __do_sys_listmount+0x1c2/0xed0
[  661.345488][T16016]  ? __do_sys_listmount+0x1c2/0xed0
[  661.345527][T16016]  __do_sys_listmount+0x1c2/0xed0
[  661.345574][T16016]  ? __x64_sys_futex+0x1e0/0x4c0
[  661.345604][T16016]  ? __x64_sys_futex+0x1e9/0x4c0
[  661.345635][T16016]  ? __pfx___do_sys_listmount+0x10/0x10
[  661.345676][T16016]  ? xfd_validate_state+0x5d/0x180
[  661.345717][T16016]  do_syscall_64+0xcd/0x230
[  661.345758][T16016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.345785][T16016] RIP: 0033:0x7ffa0478e169
[  661.345805][T16016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  661.345831][T16016] RSP: 002b:00007ffa055a4038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  661.345855][T16016] RAX: ffffffffffffffda RBX: 00007ffa049b6080 RCX: 00007ffa0478e169
[  661.345873][T16016] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  661.345889][T16016] RBP: 00007ffa04810a68 R08: 0000000000000000 R09: 0000000000000000
[  661.345909][T16016] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  661.345924][T16016] R13: 0000000000000000 R14: 00007ffa049b6080 R15: 00007ffdf64731e8
[  661.345956][T16016]  </TASK>
[  661.346066][T16016] Mem-Info:
[  661.673192][T16016] active_anon:40668 inactive_anon:0 isolated_anon:0
[  661.673192][T16016]  active_file:14272 inactive_file:43063 isolated_file:0
[  661.673192][T16016]  unevictable:768 dirty:827 writeback:0
[  661.673192][T16016]  slab_reclaimable:12008 slab_unreclaimable:107964
[  661.673192][T16016]  mapped:34717 shmem:19241 pagetables:1182
[  661.673192][T16016]  sec_pagetables:0 bounce:0
[  661.673192][T16016]  kernel_misc_reclaimable:0
[  661.673192][T16016]  free:1268979 free_pcp:12911 free_cma:0
[  661.823179][T16016] Node 0 active_anon:163472kB inactive_anon:0kB active_file:57088kB inactive_file:172116kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:143408kB dirty:3344kB writeback:0kB shmem:72032kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12416kB pagetables:4728kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  661.856892][    C0] vkms_vblank_simulate: vblank timer overrun
[  661.910944][T16016] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:60kB dirty:64kB writeback:0kB shmem:5732kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  662.081980][T16016] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  662.178439][T16016] lowmem_reserve[]: 0 2482 2483 2483 2483
[  662.184353][T16016] Node 0 DMA32 free:1205688kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:167332kB inactive_anon:0kB active_file:57088kB inactive_file:170544kB unevictable:1536kB writepending:3340kB present:3129332kB managed:2541760kB mlocked:0kB bounce:0kB free_pcp:1708kB local_pcp:712kB free_cma:0kB
[  662.236812][T16016] lowmem_reserve[]: 0 0 1 1 1
[  662.241637][T16016] Node 0 Normal free:20kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1572kB unevictable:0kB writepending:4kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:4kB free_cma:0kB
[  662.269002][    C0] vkms_vblank_simulate: vblank timer overrun
[  662.385180][T16016] lowmem_reserve[]: 0 0 0 0 0
[  662.441750][T16016] Node 1 Normal free:3855444kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:64kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:44900kB local_pcp:19704kB free_cma:0kB
[  662.484407][T16016] lowmem_reserve[]: 0 0 0 0 0
[  662.524636][T16016] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  662.663826][T16016] Node 0 DMA32: 676*4kB (UME) 266*8kB (UME) 66*16kB (UE) 85*32kB (UM) 214*64kB (UME) 265*128kB (UME) 256*256kB (UME) 127*512kB (UM) 53*1024kB (UME) 27*2048kB (UME) 222*4096kB (UME) = 1205664kB
[  662.756816][T16016] Node 0 Normal: 1*4kB (M) 2*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  662.846787][T16016] Node 1 Normal: 2*4kB (ME) 6*8kB (ME) 3*16kB (E) 11*32kB (E) 7*64kB (UME) 2*128kB (E) 2*256kB (U) 1*512kB (U) 1*1024kB (E) 3*2048kB (UME) 939*4096kB (M) = 3855496kB
[  662.936882][T16016] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  662.946520][T16016] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  663.034085][T16016] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  663.086093][T16016] Node 1 hugepages_total=4 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  663.119603][T16016] 74070 total pagecache pages
[  663.133461][T16016] 0 pages in swap cache
[  663.217070][T16016] Free swap  = 124996kB
[  663.242137][T16016] Total swap = 124996kB
[  663.246334][T16016] 2097051 pages RAM
[  663.312668][T16016] 0 pages HighMem/MovableOnly
[  663.353615][T16016] 429569 pages reserved
[  663.398136][T16016] 0 pages cma reserved
[  663.765782][T16057] block2mtd: illegal erase size
[  663.842677][T16059] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2115'.
[  664.281549][T16062] FAULT_INJECTION: forcing a failure.
[  664.281549][T16062] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  664.589799][T16062] CPU: 0 UID: 0 PID: 16062 Comm: syz.1.2113 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  664.589851][T16062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  664.589870][T16062] Call Trace:
[  664.589881][T16062]  <TASK>
[  664.589894][T16062]  dump_stack_lvl+0x16c/0x1f0
[  664.589945][T16062]  should_fail_ex+0x512/0x640
[  664.589993][T16062]  should_fail_alloc_page+0xe7/0x130
[  664.590040][T16062]  prepare_alloc_pages+0x3c2/0x610
[  664.590092][T16062]  ? rcu_is_watching+0x12/0xc0
[  664.590130][T16062]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  664.590171][T16062]  ? __kernel_text_address+0xd/0x40
[  664.590203][T16062]  ? unwind_get_return_address+0x59/0xa0
[  664.590244][T16062]  ? arch_stack_walk+0xa6/0x100
[  664.590299][T16062]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  664.590340][T16062]  ? stack_trace_save+0x8e/0xc0
[  664.590376][T16062]  ? __pfx_stack_trace_save+0x10/0x10
[  664.590412][T16062]  ? stack_depot_save_flags+0x28/0xa50
[  664.590452][T16062]  ? find_held_lock+0x2b/0x80
[  664.590492][T16062]  ? kasan_save_stack+0x42/0x60
[  664.590534][T16062]  ? __lock_acquire+0xaa4/0x1ba0
[  664.590575][T16062]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  664.590625][T16062]  ? policy_nodemask+0xea/0x4e0
[  664.590671][T16062]  alloc_pages_mpol+0x1fb/0x550
[  664.590721][T16062]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  664.590762][T16062]  ? __page_table_check_ptes_set+0x1ae/0x420
[  664.590804][T16062]  ? find_held_lock+0x2b/0x80
[  664.590845][T16062]  alloc_pages_noprof+0x131/0x390
[  664.590889][T16062]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  664.590922][T16062]  get_free_pages_noprof+0xc/0x40
[  664.590968][T16062]  kasan_populate_vmalloc_pte+0x2d/0x160
[  664.591005][T16062]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  664.591040][T16062]  __apply_to_page_range+0x617/0xd60
[  664.591075][T16062]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  664.591117][T16062]  ? __pfx___apply_to_page_range+0x10/0x10
[  664.591149][T16062]  ? alloc_vmap_area+0x872/0x2970
[  664.591206][T16062]  alloc_vmap_area+0x919/0x2970
[  664.591272][T16062]  ? __pfx_alloc_vmap_area+0x10/0x10
[  664.591332][T16062]  __get_vm_area_node+0x1a7/0x300
[  664.591392][T16062]  __vmalloc_node_range_noprof+0x277/0x1540
[  664.591426][T16062]  ? __do_sys_listmount+0x1c2/0xed0
[  664.591489][T16062]  ? __do_sys_listmount+0x1c2/0xed0
[  664.591547][T16062]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  664.591599][T16062]  __kvmalloc_node_noprof+0x2ff/0x600
[  664.591635][T16062]  ? __do_sys_listmount+0x1c2/0xed0
[  664.591688][T16062]  ? __do_sys_listmount+0x1c2/0xed0
[  664.591751][T16062]  ? __do_sys_listmount+0x1c2/0xed0
[  664.591799][T16062]  __do_sys_listmount+0x1c2/0xed0
[  664.591855][T16062]  ? __x64_sys_futex+0x1e0/0x4c0
[  664.591893][T16062]  ? __x64_sys_futex+0x1e9/0x4c0
[  664.591931][T16062]  ? __pfx___do_sys_listmount+0x10/0x10
[  664.591980][T16062]  ? xfd_validate_state+0x5d/0x180
[  664.592031][T16062]  do_syscall_64+0xcd/0x230
[  664.592083][T16062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  664.592116][T16062] RIP: 0033:0x7ffa0478e169
[  664.592143][T16062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  664.592174][T16062] RSP: 002b:00007ffa05583038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  664.592207][T16062] RAX: ffffffffffffffda RBX: 00007ffa049b6160 RCX: 00007ffa0478e169
[  664.592228][T16062] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  664.592249][T16062] RBP: 00007ffa04810a68 R08: 0000000000000000 R09: 0000000000000000
[  664.592268][T16062] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  664.592287][T16062] R13: 0000000000000000 R14: 00007ffa049b6160 R15: 00007ffdf64731e8
[  664.592329][T16062]  </TASK>
[  664.959522][    C0] vkms_vblank_simulate: vblank timer overrun
[  672.164158][T15160] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  672.798885][T15160] Bluetooth: hci2: unexpected event 0x3e length: 728 > 260
[  672.798932][T15160] Bluetooth: hci2: unexpected subevent 0x0c length: 727 > 5
[  672.890401][T16178] random: crng reseeded on system resumption
[  672.955399][T16178] FAULT_INJECTION: forcing a failure.
[  672.955399][T16178] name failslab, interval 1, probability 0, space 0, times 0
[  672.973042][T16178] CPU: 0 UID: 0 PID: 16178 Comm: syz.4.2141 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  672.973090][T16178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  672.973110][T16178] Call Trace:
[  672.973120][T16178]  <TASK>
[  672.973132][T16178]  dump_stack_lvl+0x16c/0x1f0
[  672.973187][T16178]  should_fail_ex+0x512/0x640
[  672.973225][T16178]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  672.973264][T16178]  should_failslab+0xc2/0x120
[  672.973307][T16178]  __kmalloc_cache_noprof+0x6a/0x3e0
[  672.973341][T16178]  ? create_basic_memory_bitmaps+0xef/0x680
[  672.973386][T16178]  create_basic_memory_bitmaps+0xef/0x680
[  672.973435][T16178]  snapshot_open+0x235/0x2b0
[  672.973475][T16178]  ? __pfx_snapshot_open+0x10/0x10
[  672.973518][T16178]  misc_open+0x35a/0x420
[  672.973562][T16178]  ? __pfx_misc_open+0x10/0x10
[  672.973625][T16178]  chrdev_open+0x231/0x6a0
[  672.973663][T16178]  ? __pfx_apparmor_file_open+0x10/0x10
[  672.973708][T16178]  ? __pfx_chrdev_open+0x10/0x10
[  672.973751][T16178]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  672.973813][T16178]  do_dentry_open+0x741/0x1c10
[  672.973857][T16178]  ? __pfx_chrdev_open+0x10/0x10
[  672.973905][T16178]  vfs_open+0x82/0x3f0
[  672.973957][T16178]  path_openat+0x1e5e/0x2d40
[  672.974008][T16178]  ? __pfx_path_openat+0x10/0x10
[  672.974055][T16178]  do_filp_open+0x20b/0x470
[  672.974090][T16178]  ? __pfx_do_filp_open+0x10/0x10
[  672.974157][T16178]  ? alloc_fd+0x471/0x7d0
[  672.974200][T16178]  do_sys_openat2+0x11b/0x1d0
[  672.974247][T16178]  ? __pfx_do_sys_openat2+0x10/0x10
[  672.974312][T16178]  __x64_sys_openat+0x174/0x210
[  672.974360][T16178]  ? __pfx___x64_sys_openat+0x10/0x10
[  672.974411][T16178]  ? rcu_is_watching+0x12/0xc0
[  672.974456][T16178]  do_syscall_64+0xcd/0x230
[  672.974508][T16178]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  672.974540][T16178] RIP: 0033:0x7fb1e598e169
[  672.974567][T16178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  672.974600][T16178] RSP: 002b:00007fb1e67ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  672.974631][T16178] RAX: ffffffffffffffda RBX: 00007fb1e5bb5fa0 RCX: 00007fb1e598e169
[  672.974651][T16178] RDX: 0000000000184b01 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  672.974671][T16178] RBP: 00007fb1e5a10a68 R08: 0000000000000000 R09: 0000000000000000
[  672.974690][T16178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  672.974709][T16178] R13: 0000000000000000 R14: 00007fb1e5bb5fa0 R15: 00007ffc3cc03da8
[  672.974751][T16178]  </TASK>
[  674.257451][T15160] Bluetooth: hci0: command 0x041b tx timeout
[  676.936166][T16238] lo: entered allmulticast mode
[  677.032465][T16239] lo: left allmulticast mode
[  677.095560][T15160] Bluetooth: hci3: unexpected event 0x3e length: 728 > 260
[  677.095616][T15160] Bluetooth: hci3: unexpected subevent 0x0c length: 727 > 5
[  677.375325][T16243] openvswitch: netlink: IP tunnel dst address not specified
[  679.493053][T16269] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2160'.
[  679.555164][T16269] netlink: 'syz.3.2160': attribute type 1 has an invalid length.
[  681.642756][T16312] FAULT_INJECTION: forcing a failure.
[  681.642756][T16312] name fail_futex, interval 1, probability 0, space 0, times 0
[  681.655988][T16312] CPU: 1 UID: 0 PID: 16312 Comm: syz.0.2171 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  681.656031][T16312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  681.656049][T16312] Call Trace:
[  681.656058][T16312]  <TASK>
[  681.656069][T16312]  dump_stack_lvl+0x16c/0x1f0
[  681.656119][T16312]  should_fail_ex+0x512/0x640
[  681.656169][T16312]  ? unwind_get_return_address+0x59/0xa0
[  681.656213][T16312]  get_futex_key+0x49e/0x1000
[  681.656253][T16312]  ? __pfx_get_futex_key+0x10/0x10
[  681.656291][T16312]  ? stack_trace_save+0x8e/0xc0
[  681.656326][T16312]  ? __pfx_stack_trace_save+0x10/0x10
[  681.656361][T16312]  ? stack_depot_save_flags+0x28/0xa50
[  681.656405][T16312]  futex_wait_setup+0x78/0x290
[  681.656454][T16312]  ? kasan_record_aux_stack+0xb8/0xd0
[  681.656510][T16312]  __futex_wait+0x266/0x3c0
[  681.656557][T16312]  ? __pfx___futex_wait+0x10/0x10
[  681.656610][T16312]  ? __pfx_futex_wake_mark+0x10/0x10
[  681.656795][T16312]  futex_wait+0xe8/0x380
[  681.656843][T16312]  ? __pfx_futex_wait+0x10/0x10
[  681.656911][T16312]  do_futex+0x229/0x350
[  681.656949][T16312]  ? __pfx_do_futex+0x10/0x10
[  681.656990][T16312]  ? __pfx___might_resched+0x10/0x10
[  681.657033][T16312]  __x64_sys_futex+0x1e0/0x4c0
[  681.657074][T16312]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  681.657131][T16312]  ? __pfx___x64_sys_futex+0x10/0x10
[  681.657179][T16312]  ? rcu_is_watching+0x12/0xc0
[  681.657224][T16312]  do_syscall_64+0xcd/0x230
[  681.657274][T16312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  681.657307][T16312] RIP: 0033:0x7fc93f18e169
[  681.657331][T16312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  681.657363][T16312] RSP: 002b:00007fc93cfd50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  681.657394][T16312] RAX: ffffffffffffffda RBX: 00007fc93f3b6088 RCX: 00007fc93f18e169
[  681.657415][T16312] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc93f3b6088
[  681.657435][T16312] RBP: 00007fc93f3b6080 R08: 0000000000000000 R09: 0000000000000000
[  681.657453][T16312] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc93f3b608c
[  681.657471][T16312] R13: 0000000000000000 R14: 00007fff873e8760 R15: 00007fff873e8848
[  681.657511][T16312]  </TASK>
[  682.158861][T16314] Console: switching to colour VGA+ 80x25
[  683.601456][T16345] FAULT_INJECTION: forcing a failure.
[  683.601456][T16345] name failslab, interval 1, probability 0, space 0, times 0
[  683.626951][T16345] CPU: 1 UID: 0 PID: 16345 Comm: syz.4.2179 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  683.627003][T16345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  683.627024][T16345] Call Trace:
[  683.627036][T16345]  <TASK>
[  683.627048][T16345]  dump_stack_lvl+0x16c/0x1f0
[  683.627102][T16345]  should_fail_ex+0x512/0x640
[  683.627140][T16345]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  683.627187][T16345]  should_failslab+0xc2/0x120
[  683.627231][T16345]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  683.627273][T16345]  ? __d_alloc+0x31/0xaa0
[  683.627316][T16345]  __d_alloc+0x31/0xaa0
[  683.627357][T16345]  d_alloc+0x4a/0x1e0
[  683.627395][T16345]  d_alloc_parallel+0xe3/0x12e0
[  683.627448][T16345]  ? is_bpf_text_address+0x94/0x1a0
[  683.627493][T16345]  ? kernel_text_address+0x8d/0x100
[  683.627522][T16345]  ? __x64_sys_ioctl+0x190/0x200
[  683.627568][T16345]  ? __kernel_text_address+0xd/0x40
[  683.627599][T16345]  ? unwind_get_return_address+0x59/0xa0
[  683.627642][T16345]  ? __pfx_d_alloc_parallel+0x10/0x10
[  683.627694][T16345]  ? lockdep_init_map_type+0x5c/0x280
[  683.627744][T16345]  ? lockdep_init_map_type+0x5c/0x280
[  683.627800][T16345]  __lookup_slow+0x193/0x460
[  683.627846][T16345]  ? __pfx___lookup_slow+0x10/0x10
[  683.627896][T16345]  ? trace_mm_compaction_deferred+0x90/0x1e0
[  683.627968][T16345]  ? trace_mm_compaction_deferred+0x90/0x1e0
[  683.628024][T16345]  ? d_lookup+0xe7/0x190
[  683.628078][T16345]  lookup_one_len+0x17f/0x1b0
[  683.628124][T16345]  ? __pfx_lookup_one_len+0x10/0x10
[  683.628173][T16345]  ? mntput+0x10/0x90
[  683.628226][T16345]  start_creating.part.0+0x12f/0x3a0
[  683.628279][T16345]  __debugfs_create_file+0xa7/0x6b0
[  683.628335][T16345]  debugfs_create_file_full+0x41/0x60
[  683.628389][T16345]  kvm_dev_ioctl+0x14ff/0x1ad0
[  683.628447][T16345]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  683.628506][T16345]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  683.628552][T16345]  __x64_sys_ioctl+0x190/0x200
[  683.628603][T16345]  do_syscall_64+0xcd/0x230
[  683.628656][T16345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  683.628688][T16345] RIP: 0033:0x7fb1e598e169
[  683.628714][T16345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  683.628746][T16345] RSP: 002b:00007fb1e67cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  683.628778][T16345] RAX: ffffffffffffffda RBX: 00007fb1e5bb6080 RCX: 00007fb1e598e169
[  683.628799][T16345] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  683.628818][T16345] RBP: 00007fb1e5a10a68 R08: 0000000000000000 R09: 0000000000000000
[  683.628836][T16345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  683.628853][T16345] R13: 0000000000000000 R14: 00007fb1e5bb6080 R15: 00007ffc3cc03da8
[  683.628895][T16345]  </TASK>
[  684.317934][T16351] FAULT_INJECTION: forcing a failure.
[  684.317934][T16351] name failslab, interval 1, probability 0, space 0, times 0
[  684.384677][T16351] CPU: 1 UID: 0 PID: 16351 Comm: syz.3.2180 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  684.384722][T16351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  684.384742][T16351] Call Trace:
[  684.384751][T16351]  <TASK>
[  684.384762][T16351]  dump_stack_lvl+0x16c/0x1f0
[  684.384811][T16351]  should_fail_ex+0x512/0x640
[  684.384847][T16351]  ? fs_reclaim_acquire+0xae/0x150
[  684.384898][T16351]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  684.384936][T16351]  should_failslab+0xc2/0x120
[  684.384971][T16351]  __kmalloc_noprof+0xd2/0x510
[  684.385010][T16351]  tomoyo_realpath_from_path+0xc2/0x6e0
[  684.385058][T16351]  tomoyo_check_open_permission+0x2ab/0x3c0
[  684.385092][T16351]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  684.385157][T16351]  ? find_held_lock+0x2b/0x80
[  684.385193][T16351]  tomoyo_file_open+0x6b/0x90
[  684.385218][T16351]  security_file_open+0x84/0x1e0
[  684.385266][T16351]  do_dentry_open+0x596/0x1c10
[  684.385303][T16351]  vfs_open+0x82/0x3f0
[  684.385341][T16351]  path_openat+0x1e5e/0x2d40
[  684.385378][T16351]  ? __pfx_path_openat+0x10/0x10
[  684.385412][T16351]  do_filp_open+0x20b/0x470
[  684.385438][T16351]  ? __pfx_do_filp_open+0x10/0x10
[  684.385487][T16351]  ? alloc_fd+0x471/0x7d0
[  684.385519][T16351]  do_sys_openat2+0x11b/0x1d0
[  684.385561][T16351]  ? __pfx_do_sys_openat2+0x10/0x10
[  684.385609][T16351]  __x64_sys_openat+0x174/0x210
[  684.385645][T16351]  ? __pfx___x64_sys_openat+0x10/0x10
[  684.385683][T16351]  ? rcu_is_watching+0x12/0xc0
[  684.385719][T16351]  do_syscall_64+0xcd/0x230
[  684.385765][T16351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  684.385796][T16351] RIP: 0033:0x7f370238e169
[  684.385820][T16351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  684.385850][T16351] RSP: 002b:00007f3703271038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  684.385877][T16351] RAX: ffffffffffffffda RBX: 00007f37025b5fa0 RCX: 00007f370238e169
[  684.385896][T16351] RDX: 00000000001c1041 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  684.385915][T16351] RBP: 00007f3702410a68 R08: 0000000000000000 R09: 0000000000000000
[  684.385932][T16351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  684.385948][T16351] R13: 0000000000000000 R14: 00007f37025b5fa0 R15: 00007ffed846fda8
[  684.385984][T16351]  </TASK>
[  684.385999][T16351] ERROR: Out of memory at tomoyo_realpath_from_path.
[  685.035112][T16369] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2186'.
[  685.144196][T16369] vcan0: entered promiscuous mode
[  685.966487][T16380] netlink: 'syz.3.2190': attribute type 1 has an invalid length.
[  685.982601][T16385] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2189'.
[  688.568361][T16440] FAULT_INJECTION: forcing a failure.
[  688.568361][T16440] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  688.653581][T16440] CPU: 1 UID: 0 PID: 16440 Comm: syz.1.2206 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  688.653615][T16440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  688.653628][T16440] Call Trace:
[  688.653636][T16440]  <TASK>
[  688.653644][T16440]  dump_stack_lvl+0x16c/0x1f0
[  688.653682][T16440]  should_fail_ex+0x512/0x640
[  688.653715][T16440]  _copy_from_user+0x2e/0xd0
[  688.653746][T16440]  memdup_user+0x6b/0xe0
[  688.653779][T16440]  strndup_user+0x78/0xe0
[  688.653811][T16440]  __x64_sys_fsopen+0x9c/0x240
[  688.653842][T16440]  do_syscall_64+0xcd/0x230
[  688.653878][T16440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  688.653900][T16440] RIP: 0033:0x7ffa0478e169
[  688.653917][T16440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  688.653940][T16440] RSP: 002b:00007ffa055c5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  688.653962][T16440] RAX: ffffffffffffffda RBX: 00007ffa049b5fa0 RCX: 00007ffa0478e169
[  688.653978][T16440] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  688.653992][T16440] RBP: 00007ffa055c5090 R08: 0000000000000000 R09: 0000000000000000
[  688.654006][T16440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  688.654020][T16440] R13: 0000000000000000 R14: 00007ffa049b5fa0 R15: 00007ffdf64731e8
[  688.654048][T16440]  </TASK>
[  690.989939][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  690.996534][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  694.182308][T16517] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2222'.
[  694.215729][T16517] vcan0: entered promiscuous mode
[  694.307084][T16510] ptrace attach of "./syz-executor exec"[5848] was attempted by "./syz-executor exec"[16510]
[  694.537007][T15160] Bluetooth: hci2: unexpected event 0x3e length: 728 > 260
[  694.537052][T15160] Bluetooth: hci2: unexpected subevent 0x0c length: 727 > 5
[  696.539585][T16546] 
[  696.541968][T16546] ======================================================
[  696.549010][T16546] WARNING: possible circular locking dependency detected
[  696.556055][T16546] 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 Not tainted
[  696.563195][T16546] ------------------------------------------------------
[  696.570243][T16546] syz.0.2228/16546 is trying to acquire lock:
[  696.576337][T16546] ffff8881443b4058 (&q->elevator_lock){+.+.}-{4:4}, at: queue_wb_lat_store+0x187/0x3d0
[  696.586089][T16546] 
[  696.586089][T16546] but task is already holding lock:
[  696.593484][T16546] ffff8881443b3b28 (&q->q_usage_counter(io)#20){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  696.604813][T16546] 
[  696.604813][T16546] which lock already depends on the new lock.
[  696.604813][T16546] 
[  696.615250][T16546] 
[  696.615250][T16546] the existing dependency chain (in reverse order) is:
[  696.624299][T16546] 
[  696.624299][T16546] -> #2 (&q->q_usage_counter(io)#20){++++}-{0:0}:
[  696.632974][T16546]        blk_alloc_queue+0x619/0x760
[  696.638305][T16546]        blk_mq_alloc_queue+0x179/0x290
[  696.643905][T16546]        __blk_mq_alloc_disk+0x29/0x120
[  696.649510][T16546]        loop_add+0x496/0xb70
[  696.654232][T16546]        loop_init+0x164/0x270
[  696.659045][T16546]        do_one_initcall+0x120/0x6e0
[  696.664390][T16546]        kernel_init_freeable+0x5c2/0x900
[  696.670164][T16546]        kernel_init+0x1c/0x2b0
[  696.675048][T16546]        ret_from_fork+0x45/0x80
[  696.680019][T16546]        ret_from_fork_asm+0x1a/0x30
[  696.685361][T16546] 
[  696.685361][T16546] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  696.692654][T16546]        fs_reclaim_acquire+0x102/0x150
[  696.698269][T16546]        kmem_cache_alloc_noprof+0x53/0x3b0
[  696.704216][T16546]        __kernfs_new_node+0xd2/0x8a0
[  696.709629][T16546]        kernfs_new_node+0x13c/0x1e0
[  696.714958][T16546]        kernfs_create_dir_ns+0x4c/0x1a0
[  696.720645][T16546]        sysfs_create_dir_ns+0x13a/0x2b0
[  696.726326][T16546]        kobject_add_internal+0x2c4/0x9b0
[  696.732120][T16546]        kobject_add+0x16e/0x240
[  696.737103][T16546]        elv_register_queue+0xd3/0x2a0
[  696.742606][T16546]        blk_register_queue+0x3c4/0x560
[  696.748213][T16546]        add_disk_fwnode+0x911/0x13a0
[  696.753643][T16546]        nbd_dev_add+0x78e/0xbb0
[  696.758643][T16546]        nbd_init+0x181/0x320
[  696.763370][T16546]        do_one_initcall+0x120/0x6e0
[  696.768713][T16546]        kernel_init_freeable+0x5c2/0x900
[  696.774511][T16546]        kernel_init+0x1c/0x2b0
[  696.779411][T16546]        ret_from_fork+0x45/0x80
[  696.784414][T16546]        ret_from_fork_asm+0x1a/0x30
[  696.789774][T16546] 
[  696.789774][T16546] -> #0 (&q->elevator_lock){+.+.}-{4:4}:
[  696.797661][T16546]        __lock_acquire+0x1173/0x1ba0
[  696.803118][T16546]        lock_acquire+0x179/0x350
[  696.808200][T16546]        __mutex_lock+0x199/0xb90
[  696.813281][T16546]        queue_wb_lat_store+0x187/0x3d0
[  696.818876][T16546]        queue_attr_store+0x270/0x310
[  696.824299][T16546]        sysfs_kf_write+0xef/0x150
[  696.829556][T16546]        kernfs_fop_write_iter+0x351/0x510
[  696.835418][T16546]        vfs_write+0x5ba/0x1180
[  696.840317][T16546]        ksys_write+0x12a/0x240
[  696.845205][T16546]        do_syscall_64+0xcd/0x230
[  696.850299][T16546]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  696.856751][T16546] 
[  696.856751][T16546] other info that might help us debug this:
[  696.856751][T16546] 
[  696.867005][T16546] Chain exists of:
[  696.867005][T16546]   &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#20
[  696.867005][T16546] 
[  696.880827][T16546]  Possible unsafe locking scenario:
[  696.880827][T16546] 
[  696.888311][T16546]        CPU0                    CPU1
[  696.893709][T16546]        ----                    ----
[  696.899105][T16546]   lock(&q->q_usage_counter(io)#20);
[  696.904535][T16546]                                lock(fs_reclaim);
[  696.911106][T16546]                                lock(&q->q_usage_counter(io)#20);
[  696.919064][T16546]   lock(&q->elevator_lock);
[  696.923691][T16546] 
[  696.923691][T16546]  *** DEADLOCK ***
[  696.923691][T16546] 
[  696.931866][T16546] 6 locks held by syz.0.2228/16546:
[  696.937095][T16546]  #0: ffff8880283450b8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[  696.946240][T16546]  #1: ffff8880315b8420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x240
[  696.955302][T16546]  #2: ffff888021f8e088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[  696.965151][T16546]  #3: ffff88814050c3c8 (kn->active#252){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[  696.975354][T16546]  #4: ffff8881443b3b28 (&q->q_usage_counter(io)#20){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  696.987177][T16546]  #5: ffff8881443b3b60 (&q->q_usage_counter(queue)#27){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  696.999218][T16546] 
[  696.999218][T16546] stack backtrace:
[  697.005135][T16546] CPU: 0 UID: 0 PID: 16546 Comm: syz.0.2228 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  697.005197][T16546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  697.005215][T16546] Call Trace:
[  697.005224][T16546]  <TASK>
[  697.005235][T16546]  dump_stack_lvl+0x116/0x1f0
[  697.005302][T16546]  print_circular_bug+0x275/0x350
[  697.005346][T16546]  check_noncircular+0x14c/0x170
[  697.005393][T16546]  __lock_acquire+0x1173/0x1ba0
[  697.005444][T16546]  lock_acquire+0x179/0x350
[  697.005490][T16546]  ? queue_wb_lat_store+0x187/0x3d0
[  697.005531][T16546]  ? __pfx___might_resched+0x10/0x10
[  697.005568][T16546]  ? do_raw_spin_lock+0x12c/0x2b0
[  697.005596][T16546]  __mutex_lock+0x199/0xb90
[  697.005638][T16546]  ? queue_wb_lat_store+0x187/0x3d0
[  697.005680][T16546]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  697.005722][T16546]  ? queue_wb_lat_store+0x187/0x3d0
[  697.005783][T16546]  ? lockdep_hardirqs_on+0x7c/0x110
[  697.005827][T16546]  ? __pfx___mutex_lock+0x10/0x10
[  697.005877][T16546]  ? __pfx_autoremove_wake_function+0x10/0x10
[  697.005921][T16546]  ? __pfx_queue_wb_lat_store+0x10/0x10
[  697.005961][T16546]  ? queue_wb_lat_store+0x187/0x3d0
[  697.006001][T16546]  queue_wb_lat_store+0x187/0x3d0
[  697.006044][T16546]  ? __pfx_queue_wb_lat_store+0x10/0x10
[  697.006088][T16546]  ? __mutex_trylock_common+0xe9/0x250
[  697.006134][T16546]  ? __pfx_queue_wb_lat_store+0x10/0x10
[  697.006175][T16546]  queue_attr_store+0x270/0x310
[  697.006218][T16546]  ? __pfx_queue_attr_store+0x10/0x10
[  697.006269][T16546]  ? find_held_lock+0x2b/0x80
[  697.006302][T16546]  ? sysfs_file_kobj+0xe4/0x290
[  697.006352][T16546]  ? __pfx_queue_attr_store+0x10/0x10
[  697.006394][T16546]  sysfs_kf_write+0xef/0x150
[  697.006443][T16546]  kernfs_fop_write_iter+0x351/0x510
[  697.006493][T16546]  ? __pfx_sysfs_kf_write+0x10/0x10
[  697.006543][T16546]  vfs_write+0x5ba/0x1180
[  697.006574][T16546]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  697.006619][T16546]  ? __pfx___mutex_lock+0x10/0x10
[  697.006661][T16546]  ? __pfx_vfs_write+0x10/0x10
[  697.006702][T16546]  ksys_write+0x12a/0x240
[  697.006732][T16546]  ? __pfx_ksys_write+0x10/0x10
[  697.006761][T16546]  ? rcu_is_watching+0x12/0xc0
[  697.006797][T16546]  do_syscall_64+0xcd/0x230
[  697.006845][T16546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  697.006890][T16546] RIP: 0033:0x7fc93f18e169
[  697.006914][T16546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  697.006946][T16546] RSP: 002b:00007fc93cff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  697.006975][T16546] RAX: ffffffffffffffda RBX: 00007fc93f3b5fa0 RCX: 00007fc93f18e169
[  697.006996][T16546] RDX: 0000000000000081 RSI: 0000200000000180 RDI: 0000000000000003
[  697.007015][T16546] RBP: 00007fc93f210a68 R08: 0000000000000000 R09: 0000000000000000
[  697.007033][T16546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  697.007051][T16546] R13: 0000000000000000 R14: 00007fc93f3b5fa0 R15: 00007fff873e8848
[  697.007079][T16546]  </TASK>