last executing test programs:

6.43233664s ago: executing program 2 (id=722):
acct$auto(&(0x7f0000000080)='/proc/sys/kernel/sched_deadline\xdcBH\xc7H\xe2\x1d\b\x00ax_us\x00\xae\xb5\x86\xe9\xf6\xfe\x9b6\x91\x8f\x158\xe7qwI\t0\xc3\xd1\xcd\xf5\x04\xe0B\xe0U<\xb1\x1d\xda\xd2')
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x81c001, 0x2000000efb, 0x8000000008011, r0, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/block/ram7/queue/iostats\x00', 0x8502, 0x0)
write$auto(r1, &(0x7f0000000240)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x204c02, 0x0)
mmap$auto(0x24d, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)

6.038113292s ago: executing program 1 (id=724):
r0 = socket(0x10, 0x2, 0x4)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x1, 0x5, 0x106)
rseq$auto(&(0x7f0000000340)={0x10, 0x401, 0x0, 0x803, 0x7, 0x2}, 0x8000, 0x0, 0x8000006)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x2)
r2 = socket(0x10, 0x80002, 0x8)
close_range$auto(r2, r2, 0x0)
pipe$auto(0x0)
splice$auto(r2, 0x0, 0x2, 0x0, 0x3fb, 0x9)
write$auto(0x6, 0x0, 0x100000001)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x9}, 0x9, 0x0)
landlock_restrict_self$auto(r1, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20b42, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r3, 0x5450, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x10, 0x2, 0xc)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
getsockopt$auto_SO_BINDTODEVICE(0xffffffffffffffff, 0x0, 0x19, &(0x7f0000000040)='/dev/uinput\x00', &(0x7f0000000080))
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=0x0, @ANYBLOB="01"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80)
write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef)

5.993266284s ago: executing program 2 (id=725):
mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x406, 0x0)
poll$auto(&(0x7f0000000d40)={0x3, 0x3, 0xa}, 0x5, 0x3fc)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
io_uring_enter$auto(0x3, 0xa84, 0x7ffffffe, 0xa, 0x0, 0x46)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0xfffffffffffffffd, 0x20009, 0x4000000000df, 0x11, 0x401, 0x8400)
socket(0xa, 0x1, 0x100)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x112)
statx$auto(r0, 0x0, 0xfffffffb, 0x2, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
cachestat$auto(0xffffffffffffffff, 0x0, 0x0, 0x7)
unshare$auto(0x40000080)
bpf$auto(0x8, &(0x7f0000000280)=@bpf_attr_0={0x7, 0xb5, 0xe, 0x4, 0x53400000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x8005, 0x7, 0x7, 0x6}, 0x10)
ioctl$auto_USBDEVFS_SUBMITURB32(0xffffffffffffffff, 0x802c550a, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
open(0x0, 0x261c2, 0x84)
read$auto(0xffffffffffffffff, 0x0, 0x6)
memfd_create$auto(0x0, 0x12)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty12\x00', 0x900, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)

5.081623725s ago: executing program 3 (id=727):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6gre0\x00'})
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={0x0, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)

4.766217216s ago: executing program 1 (id=728):
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, 0x0, 0x80001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x9, 0x4, 0x4)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0xff00)
read$auto(0xffffffffffffffff, 0x0, 0x100000001)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
mmap$auto(0x0, 0x2020009, 0x400000000000003, 0xeb5, 0xfffffffffffffffa, 0x8000)
openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='x\f\x00L', @ANYRES16=0x0, @ANYBLOB="000026bd7000fedbdf250300000006000600810000000600070000800000060006000e0000000a00050000000000000000000a00010000000000000000000a000500aaaaaaaaaa400000080003003f00000008000200", @ANYRES32=0x0, @ANYBLOB="08000400800000"], 0x68}, 0x1, 0x0, 0x0, 0x20040084}, 0x44098)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1000000)

4.550872993s ago: executing program 0 (id=729):
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0)
mmap$auto(0x0, 0x40009, 0xdd, 0x9b72, 0x7, 0x28000)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/fuse\x00', 0x700, 0x0)
epoll_create$auto(0x3e)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
socket(0x2b, 0x1, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0)
socket(0x3, 0x5, 0x5)
r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0ro\x00', 0x2000, 0x0)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='+\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010026bd7000080000000f000000"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd700001dcdf2503000000040006000c000180080010000400"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
ioctl$auto_MTDFILEMODE(r1, 0x4d13, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r4 = eventfd$auto(0x80)
read$auto(r4, 0x0, 0xcc9c)
write$auto(r4, &(0x7f0000000400)='\'\x00', 0x8)
r5 = socket(0xa, 0x5, 0x84)
sendto$auto(r5, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffe0000fec0"}, 0x1c)

4.36540784s ago: executing program 2 (id=730):
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, 0x0, 0x8080, 0x0)
unshare$auto(0x40000080) (async)
keyctl$auto(0x15, 0x0, 0xfffffffffffffffc, 0x1, 0xc) (async)
ioctl$auto_USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, 0x0)
unshare$auto(0x9) (async, rerun: 64)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0) (async, rerun: 64)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
connect$auto(0xffffffffffffffff, 0x0, 0x3) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) (async)
r0 = socket(0x10, 0x3, 0xc)
setsockopt$auto(r0, 0x104000000000010e, 0x1, 0x0, 0x16) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (rerun: 64)
syz_open_procfs$namespace(0x0, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x18380, 0x0) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xffffffff, 0x1ff, 0x7, 0x1f, 0x7181, 0x1ffdf, 0x7, 0x4, 0x9, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x8000000000009, 0x8, 0x10003, 0x80, 0x4, 0x1, 0xa3ec, 0x22000, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff]}, 0x1fe, 0xd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (async, rerun: 64)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x8040}, 0x8000) (async, rerun: 64)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async, rerun: 32)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000) (rerun: 32)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80002, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)

4.347386039s ago: executing program 3 (id=731):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400005, 0xffffffffffeffffe, 0x9b72, 0xc76, 0x8000)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x1580, 0x0)
read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000000)=""/194, 0x70800)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x2, 0x80802, 0x0)
r2 = socket(0x2b, 0x1, 0x0)
r3 = ioctl$auto_TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000000)=0x425792c7)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000080), 0xffffffffffffffff)
openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x8202, 0x0)
epoll_pwait2$auto(0x1, 0xfffffffffffffffc, 0x3, 0xfffffffffffffffd, 0xffffffffffffffff, 0x6)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x5d94, 0x4002, 0x4}, 0x77, 0xfffffffc, 0x0, 0x62bd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ttyS0\x00', 0x81, 0x0)
r4 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c7"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r1, &(0x7f0000000200)='\x00\x00\xeb\xe8]\xd52Sw\xef\x91\xb7N\x88\x1b\xc6\xc3\x1e\xeccz\xe3\xe8T\x06x\xf1\xa9a3\xc4\xd5<\xeb\x06\xf0\xca\xa4\xe4y\xcc\x14GIG\a\\\x7fU\x05\xe7A\x14\x11\xaf\xfc\x00\x00\x99\x00'/92, 0x2fb)
socket(0x11, 0x80003, 0x304)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/packet\x00', 0x2840, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f0000001080)=""/244, 0xf4)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(r3, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042dbd704321dbdf2513f5ff00050028000100000024003200386ea25c05200a8c522883de50158eec17952e4c04417e2b5ed7097a9515b7570500070001000000"], 0x48}, 0x1, 0x0, 0x0, 0x90}, 0x0)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8)
sendmsg$auto_L2TP_CMD_NOOP(r3, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="2bbd", @ANYRES32], 0x218}, 0x1, 0x0, 0x0, 0xc880}, 0x4000040)
madvise$auto(0x0, 0x2003ec, 0x14)
r6 = socket(0x1d, 0x3, 0x1)
bind$auto(r6, 0x0, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
writev$auto(0xffffffffffffffff, 0x0, 0x1)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)

4.223370096s ago: executing program 1 (id=732):
mmap$auto(0x2, 0x20009, 0x4000000000df, 0x100000006bd, 0x401, 0x9)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video33\x00', 0x0, 0x0)
ioctl$auto(r0, 0xc0845657, r0)

3.752443811s ago: executing program 1 (id=733):
unshare$auto(0x40000080) (async)
read$auto(0xffffffffffffffff, 0x0, 0x6)
bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f0000002840)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x5}, 0x6)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/dummy0/stable_secret\x00', 0x200100, 0x0) (async)
ioctl$auto_dma_heap_fops_dma_heap(0xffffffffffffffff, 0xfffffffffffffc00, &(0x7f0000000240)="a2b36d0449473b7bcbcd6d7f6186e9de29e708c62b9db37658c96e1ed364c5d867daa7438de65e6d2aa369df7e32e2c897c4bd029f0845c6b5196ced8ef9b1a53b4011ed14a904f19072629f7cc6ed922acba72edc667e917861d1e7dc8a72ee61bc9cca5caba2a46a9b0656a4da3fcde38b")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0) (async)
r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r1, 0x0, 0xb4d4) (async, rerun: 64)
write$auto(r0, 0x0, 0x200) (async, rerun: 64)
write$auto(0x3, 0x0, 0xffd8) (async)
mmap$auto(0x0, 0x6, 0x9, 0x11, 0xffffffffffffffff, 0x7fff) (async, rerun: 32)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/platform/dummy_hcd.1/usbmon/usbmon2/power/autosuspend_delay_ms\x00', 0x80000, 0x0) (rerun: 32)
read$auto(r2, 0x0, 0x20)
mq_open$auto(&(0x7f0000000200)='\\j)A\x00', 0x83, 0x9, 0x0) (async, rerun: 32)
setresgid$auto(0x9, 0xffffffffffffffff, 0xffffffffffffffff) (rerun: 32)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async, rerun: 32)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
bpf$auto(0x0, 0x0, 0x10) (async, rerun: 64)
r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/028/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r5, 0x802c550a, &(0x7f0000000180)=ANY=[@ANYBLOB="4272653e906449ed30a3351a73dff1df29233a2501d07f24da9a69336a9e09e2c5b206609824b2713f6689"]) (async)
read$auto_mISDN_fops_timerdev(r4, &(0x7f0000001a00)=""/4097, 0x1001) (async)
ioctl$auto_IMADDTIMER(r4, 0x80044940, 0x0)

3.671269499s ago: executing program 0 (id=734):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = gettid()
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
ppoll$auto(0x0, 0x4, 0x0, 0x0, 0x8)
mmap$auto(0x1d, 0x9, 0xffb, 0x8000000008011, 0x3, 0x20000000008002)
socket(0xa, 0x1, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x49a400, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$auto_TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r3, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f00000006c0)={0x1470, r4, 0x9ec6579d452c1f15, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x145c, 0x1, 0x0, 0x1, [@nested={0x1458, 0x11b, 0x0, 0x1, [@nested={0x1454, 0x12c, 0x0, 0x1, [@generic="4c14bd84944bad7db8d13775970d8432", @generic="7283a80300cb43a42d3cceea215a7cff5fd94a847f3e5decc7404e7a47594158ca6eb9b93fb3b238c7240e64c1be1a7ecbf501f9e6de6edcdaf7fd1f31a05e204db3e55fb0e8c9e96fe3a04b0aec5a12d4f62cf675a13dcc864559d24d42dfd9a144906cbe73faa0a18ac68f0f552f93b6aa5f28dc5f9b9d054084d35af91532575e863de3839844e8d36a8b8561df69271349806f475e5d3650f3856069997013b9fbc4c384a8a7ca329e2df2413b5e", @nested={0x8, 0xa0, 0x0, 0x1, [@nested={0x4, 0x27}]}, @nested={0x172, 0xd3, 0x0, 0x1, [@nested={0x18, 0x1e, 0x0, 0x1, [@nested={0x4, 0x95}, @typed={0x8, 0x57, 0x0, 0x0, @pid=r1}, @typed={0x8, 0x9b, 0x0, 0x0, @u32=0x82}]}, @generic="d4adf39c7f8a348e6afd7cc6748d961c4cb02662ed8cc8d75c7a412dc0b974b9ac21cf5aee43958111878b5b0ca048bc220eb5231d12ac4f1660e9ff1e91b0069eb6e5195e6c4a8d00fc3b69d5bd90c69c195843657726bfbd88d645a4d696e0d06a260edd3de71d0307ff77d6212409befadf2375c82a7c32b4f935464881ea0186580fa0f74ad5233917e1447be16ba9510ac33b75dddcb26b01ab74a93b60e512472861aaa3d27afdfccf30d1142fe2f0a221e73517e7c46af22e775becc1ddfd7495c6156c333978d7022b36887e31ca9f3a036e1bbe24f538692445f4fafab353b70257a8319cae8849edab82c78b077782a9a7", @typed={0x8, 0xf, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x57, 0xc9, 0x0, 0x0, @binary="974f94e8989cc907fca7737d72e81d0d9fe4a1b2f14d2628be6d0b6fd375b385b28406c1de54ee39f0133ae3be01f31a257a994bbe27a6c615ac1b5905173bed7bd1611bb544f3a8f0c9cc5ee803aa2337d71f"}]}, @nested={0x1214, 0x53, 0x0, 0x1, [@typed={0xc, 0x105, 0x0, 0x0, @u64=0x3}, @typed={0x8, 0x74, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0xc, 0x140, 0x0, 0x0, @u64=0x400}, @typed={0x8, 0x4c, 0x0, 0x0, @u32=0x8}, @nested={0x1080, 0x9a, 0x0, 0x1, [@typed={0x8, 0x129, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8, 0xb1, 0x0, 0x0, @u32}, @generic, @nested={0x4, 0xfc}, @generic="9e0b038c9d8709a984e21687d60c6bb763bdff15a488524ed34b90776f58a9219cb6fe64d64b2bc77270a5ef20413b1119cc2233821b43b067b4cc05660debcbd748abd93c3ecbadd4b0e706e4507f54b735cf28365bc648245d91403f848845415faf7af58ddfb49d8158de6ce8796e46d735995f495686cef07ab79063635f40383f83aa3d3a4efbbdf9c8ed3341bc75f799505aeebcb2cadb5ab764ea4706cc90242d8a9e2426f2b079cc1a09b5dc22823bbbded687328d712434bd6369081b98c1aaeaa5af6491f52482cce9f87bcc0792f4e5ba1591791a89338a653af28e7627d1dbe54a447811acd82357f9835f739337b20eb8ffcc82881cc292b21710e75a07ae4770cd9583e4a1e7e0d3ef0065216fbfd7ffe1abb0199e0507d70af2672b1bd3c97d8bb8f89085716a0cfcd99e0ea69673fab310601b27b6ab49b393c27427daf0b57293529e42df3e78a2e003a523249182bc510d1e7e55783817f1813dcbcfaad83930416b3025e1367a9367876ee701fdb32a51070a6273a958c2341126ad9a2c1487c10b9f3229af2287e7ff5430c5973f6536aa759a4e4ef600689f8a1a274da4b574ff928f84c9b9297eaf5693fe0fe4c45c63b424b9f59fce2660728ada486b0bfd45658a66808435f2f3e9844fa14dcdaadcb80ea34592a8d2d580b45c1b1b2fa0b8d76238ee669f9542096d2b9256e7ae4ce523da6b9e81323566b8e5245302dd362d8beb8ad5109155cd021aa41fa89765cb13099e3b8baa74b74a3a6fd5effecfd587edd313bde6665efa17961a8e54bb036cada01de56d7ea16199704c6b18f2cbe92b9b4ad8838af72db557c1fb4878a11859a917ade38f43aa2e3a069f6795f48bc1309bd5f096e15422f8ac85c1b9da88ce02d33091cb5eba12c97023cf40274c9e84c224e5689341f14b94c954c672ac1ef5866b32c13b92fb736bf04d3d8fc51aa3062ccf90d5e5e06f710246b53f1618c90a18d9f8a5e373b2ad661d3ad09c9d283b7603c0c0bbe061175c86b4d5c9eec5c1bd74769e27bf9e9c0ac773c9eb4f60ba894123306f700ee5f689581dc2aa3ebbf7c3c3cda891518506607a67efd9b68e21bdee143d4017b2c42612f491f5f3a66dd23b4072b17e3614cd1a32b40c846b431d9e5a7260cbe9f07932593ac2e0618ae5b84143455c0f2c3a2cdf5a6531ff9178a531b01a983ccff334b45e9b42ac31328a393f9d82ed44dfe95f81ec49aa7cce524f1aa910e6b6b9069afc63cb2202010b6aaad1adb0a516462a4494cadb713e3862d1b4c6dad03ef7f6d395511885990d4383f763dee66896a5b025c0d68a1055e6cc15b8c5780ecb9208fe329487699b607fbe1aa0b36d77da204c925c71a048e0a6e126ddfe6d289d4345f5eb7087296d5be8f5e9d86725e6ff78104ca9bcc9a763beff03d3b53c0d183a46602328cb3d57bc14c45af51be8a18c636839a61957cbb77516e169159f20e57884b5823079ee86ab23af0a8c9c5b1279299961bcc08f13ff4ce0f08528d5f99e2d3e189e52b68d7bfb89a951949129297ff7ccee256dd69c43bd782050b9c604b332c6df5d16d56d9a190621c0a0e970533d87ff8c53e3bc2b85aaaafd691f28d455f1869d8a8a7fffe4868e8e88cf768908695f068141ec3c056019b2d8e4b2b049f0e099fb410131f2c30ae0216edf2a9b0f903bf8dbb85e275e09afff5a3c6eb91a530014071b582c0e035653389907851e4af082776b9f626c47ffa9221fc3ee3dfe02f36f5149ad3e94743bc8081ad1d91a6b5ea67cbf3d9ed9d205f5ff7b7f6bf75ca2d729ef5110440228bc407230b4feb11ec62e170b0f3432006b967c42324bfdca7e64dc341c39b13c4921ee877543eb594f9d08a964df558a20d4369d0fffe3802daf091354ba717835b4276e61480ec3c5727284e1c6143ed0e52043ba9997b6be5ba2a438df0f297055267121da1c9d2e8832c12cfab3b6948fde2578c7723ed21ad1f8a0dc5f09ed8a6bf1f44bf8fd56736f7917dfc9516831006ec0aba24cdd501876314074180ae44328ee2190b4947dd0252778687b641a115c2549d0d87ac9fd3e10bd8a9b4805b93d0c696da924edd21133a800b91f5a9c089088f5c2302810b6a8978c9474fe910126a0cfb7b9492288a435670a8de18db3df1c9e62c2856227d4438af7c5cb898bd451c4715b9ca2fd1ca24c005a50c8dccc147e6f3867e28482ea547e93c8081c8a12f1dff15b63495cb97df732359276b1e39ed44e397570cf4bdece9a6d7ef367b663a27f3182bf4f61d2abbe96d8503a9e9fcad889cc67a0c968a0a2391ec65d12654e2cd53d0cb9d700f5a1f40aa8a19ac9a24951373c4dc855c52fbd2940e23957853d1efbc27ec9b258a71bc884904701857951fd18caab71f37ae828cd5de61879e8210d919782fa3a1dbe160a084c3766212f97d647e81852ecb757985cb29cb495a64fa7e80e26aac31c5aaac3a9f3f82824d258a0c131cf30a8630668970a36ae6c2d71cf5b707047244881e1c09b10b8eb3be5938457d5e9b77c9d441a157a1a21acc1308343e5343484a3ded466cb8db3c9b00173f6849a62d5e626bc97f6dad8c94ecc8293779e56b6461b8c0560313a09a1ded0f446ff4d066b911c4245500d761349a150d3ce16ece9eac3593bcb6e829203528a8eec31c78d4febbc66f9ef95dc9cd2cad3361e7b51115bdce3b3080959466b144a16907b80eb8df3193f52fb9b1ca2527699665b393fc6b9843547314f7cf041e80dcf892acd9e0ac6f8ebd5dfdfdeea41d89a2be367f49cd7d48bc54670a7ab6a8f432f38e424ea66ee53f0c3d1fa9eace1cbddd060cff16fce669eef83471714352f0e4ef5bca74a6c979de93869139a00311724b10be3e886c7e35fb144747b548b4d37a37274308e8911635dfc00bbf0fa14a2e614f38f43175fbd7ebb1e8beaed71910d4c7e8bb85fc5fd59012d15df376b666f1c7ec81eea8e72e6581707763057dce6ea44bfaa53c3add745da82278d00e6882f7e05cab3354a57d499169f57a2c13bae34b5d86e6c9f355053e5dfb50d93a2cd5af5cedb7418c7f1515e9c3f3b0663033acd3f16526613c362477fa8072d638a614252b4c2cbe7fa71ede3175ac2f0a36838b6b80681b14f9b007ee620c3c86d69e250c55376a9477e8d7bf76188f5cc43c9ad12977f1e719c4d5e9aebd0d2adc734b826903d8c26bfce6a0a0bbf09b7552e8dc9281db835a0bf2ffeb39e95f742219b6ab06795a95d8d8229ff740ac984cc0994587be1ac7f92396b955583dbd8955f2660584b764eec734793715583c8883592be48cba566e2a74598353b0145a7af8bb865bf8bd15dbe423dd3fe79532d354c5c5ece56c95e2bbeb2399d82fbfcaae53956312e1bc439a42b45009da99827767566ce9abace4a24fb8096a27ac268a11f6d132bd5ee47b59c345039c335ce9829419a5b68f0b45285569369646c0848b83037080a629486149849a6cfb250c9c80c6d37ce3f03d001448649de34a7394b09d43bde883146736fae85d362d2e6a1ef48731bb5acf64872e3d2aff7d2b66bddea33bbb2ddda1ad75dc6c70786b3c2ace0de9d5935c5444b85c33c8b75be19a50dfa1eae8eb928803da0bd3a0c70498f4680eb3527ad0c6669a7a05957cfdbc9228d170ed568a37a7a6e41c6e94fea3152e92330b85018f44046f297efd4824290e2ba9b11b6938ef1e34bb23f4d75f1cfd225d28fd666eedee161daf519ac0da243d11ee979f555ab11b28985bb49975332ea0bbf4d46125af32dedb08633f421ec25a4bcbbb509cd142d32222e9f786f4041b426b31c0b50cf02e2205d0a109ab162df200c2f6c41d7280ebfccf58f76128a31ef956c9cc7c7ac996685141fe1064d6d97a6923df3bbfeb6a214d9815a2720be3d3eda153c097ba23d46fe68e09ad1b7f5e7fcac761ea0ee0e241d7ea14c7b3a5ae4077e61bf0819bb497fa9a751cc81718f8834eeeefcf3437c40caf5a9fa9c94ae7cf0eda7820eff60e7f2d7c50d662c88360233ad704d6bee4efa3abeda76a9c139762841a3f9ec7a8c765812b88d3bc31022ab95757f6118f23a7830a1e999c45429853304e61cefb50a9a2d5fa7fb8e4b71b863ad6b6f4e948dba22d50b8a7fce793083a711b0e514940da11e5d5353be9c95237c637f6fcffe9987cecde954f1f00a12bbddbeda945e03409e00f763861a84a4fd382e7cbbd96763108e9ed245ccee3cd3d3f4f92327be92d6c3d61ada6d3a7160d30fdbebe2b99bd59792922628df6d7d6758c182ecac2f166873da732a4f003f493a678799c3498a860a7a3d8f15da8aa836c6555486abae0fc06f7c5125307159e28455ece07591d05173d40e7ecd22a32c8f861405d3322ce3081d2b76c10954f4a14f2f66f27bb95d75fb19d4e2a44204d7cc392df570b850c398973cef4829adae266d55f56ced527f0f96e5e820eb3e7abe003596df2fa3c14592ca436e1157657efc8b8562875408f4b41859bc053a4a17b61bd131aa742df948e8714991609a17667e30d1d7ae6b47ffe288ba6c3801b15fe15323e0837de2e2d356c4fb2b33cb643029122ed65d5265fce67ef251da8a5e1c3881fa079427f0dea0c6598f3d907659a89e95111d2d3461685e105a43cf0dcfdf409153479cf43c0ca09f96f73af12deee33c1b8fe5c4fa51e25fa64477214b2629aa9239e67e673ee84a742c56cb6611dd9ea42d0c4418d1cad7dff6a336f32de32876e4b0c7c97d84c5b80610e03c2691706bbd1d5a35f163479bf30930ca38aa70a05a21713875d1b26722566d86a830cb9c5842fa56450804732c57cdbf2176dd7cdbb3fe84e1dc64677f44b3a92f3374de1fb232394c516d713e5855c198ec8f108a0b276288a727f389445274f547da6cada4228a8b6b360bed106f7937bd0c9abf8df39457081b842a3c2a90823dbda4d8a76816d83de1eae03d66918fd00ebc22ce0bc9aa51ed40e6684480f2440b79d60d587486b1763ea3d29d177806f1e9cfb9c257decbdd7f294169959ead29e64438a607f8ea5e7a2a553e31cbefdaa0a2a96a68f78911dc621ede855bb5c77dd806d4bb3a11dc449753145e3dd4b4b97f9a46b578a4d9b2cbd95dd1c8c575bb9d0c8f3546e4dd863af2bc0f528f054adee76d5b743b9daf238ccd7954beb4eadeea374cc31d0879bc76dd1935b8f13a19a9672ac79eeb88c818374350f1c85151e931cba78509f3ed944a86db5c167cfc4b29f443a1460ec06ebf483c5249050ba4e00a06cbabfec0c27247e5ad989e0444e011d2b518e4325a6564e524108ca95572dbb5424795422a71c170b2e07fea6a71ab84e9944769dcc8ecf4172516b1d7e76485af8c37589c8316b19db839731ef5cabe171210550a51cee94fb55c30ce9b4a124a04df318922bdb97e30a7c9270bfdcbf31592468f866743f9c538f208a550e6eadbec66c13b170755bd5ba4c8e5758193a01ad40eacbdfcd3e5d1e6b4fcae1388fe1c82d8a83d115a18bd5791499cd6e67bd5c12b1fabf38faa942fa2e2be3dd4e1e22645d7f4a2ff51eed15d5176340e9235cf88ddeef7d35d1e465ec238f59e7de22cff0c65277867ac0118b3ae506c3e0f03ced071184bc7d39a56801a578a3d3918f038f7f2acf2a3277ddd55dcb932cd542e481b77b04af1e0fe9a251ad728453c001986dbc3a1eb3fa7da54b719aac6daf5d4a1f4e49100311da4befdf25ad39fbf9e61d88427af21d9396f0bada3157caa11795e8c0966dd95", @generic="f423ff21c583888bf6e974ea2363f3532dcf2e1c5b19a5fa7623084e313de33aaddef6cfac20163751b6e707fed14fa1d32bc155", @typed={0x8, 0xa7, 0x0, 0x0, @fd=r0}, @generic="c4edbcb58aa90bda7af108275eeb6e46ea3b405df5fe9842863560a62a005ceb9ace2f4d", @typed={0x8, 0x41, 0x0, 0x0, @u32=0x249}]}, @generic="e61ac2ab8ddcb98c133bdccf5148bb8ad1d42a9d3404b9914efa932df37801c0dd23001d95a6bb07b1f555f53960c6e66a8db5a797d18d5fc9a072e532ee4431477dd369ea649b472961c30560f05e74436a78a414f2d5717381dac00c985a257cb0fe0b618d4b5a11e75f44011b415e07dab32189325401e33f3bb7ab63d8eff2f626f62a0daabea67c364ed9555a862a68ac9c8293ca5dff18369ac311598d1c8958dbf50d73c0ddc2cdcff447d29899152d5c6867beee6256ff2d0b845ed8c1f4ca144c41b25fc7fb833908284e3d400f73794aec8326f41e247ed139b081a827c41b", @generic="01fb64369cc7a735b167a0e560062255e4e9f1c3243c16053c1dd18867c521f2da1b9a1f292b263835a1e3eda87d7390b63b27c4daebd32163c8e22e435a8b95022d25e00e02b4a3216bd1b3abb2c5489dc6efc937d760a59ddb0d8d0696682fded5feae051a0276211f3f51318731c25d7f1f0041e88cef6ad96be2df50150b881fc4ee"]}]}]}]}]}, 0x1470}, 0x1, 0x9eff, 0x0, 0x400c014}, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x7, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x8, 0x1, 0x9, 0x1, 0xff]}, 0x0)
mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103)
r6 = open(&(0x7f00000004c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x8000, 0x50)
read$auto_kernfs_file_fops_kernfs_internal(r6, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)={0x38, r8, 0x1, 0x70bd31, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x3, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000005}, 0x24048084)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000180), r5)
msync$auto(0x1ffff000, 0x180000080000000, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_TASKSTATS_CMD_GET(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2400c8c1}, 0x20048090)

3.230441788s ago: executing program 3 (id=735):
mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x2, 0x8000)
getgroups$auto(0xeda, 0x0)
r0 = io_uring_setup$auto(0x22, 0x0)
poll$auto(&(0x7f0000000d40)={0x3, 0x3, 0xa}, 0x5, 0x3fc)
read$auto_proc_timens_offsets_operations_base(r0, &(0x7f0000000140)=""/102, 0x66)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000f9dbdf250100000006000200010000000500070058000000ef0009000a000c00000014001f23fe8000000000000000000000000000aa14002000fc000000000000000000000000000001000000000000"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
io_uring_enter$auto(0x3, 0xa84, 0x7ffffffe, 0xa, 0x0, 0x46)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0xfffffffffffffffd, 0x20009, 0x4000000000df, 0x11, 0x401, 0x8400)
socket(0xa, 0x1, 0x100)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x112)
statx$auto(r3, 0x0, 0xfffffffb, 0x2, 0x0)
unshare$auto(0x40000080)
bpf$auto(0x8, &(0x7f0000000280)=@bpf_attr_0={0x7, 0xb5, 0xe, 0x4, 0x53400000, 0xffffffffffffffff, 0x9, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x8005, 0x7, 0x7, 0x6}, 0x10)
ioctl$auto_USBDEVFS_SUBMITURB32(0xffffffffffffffff, 0x802c550a, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
open(0x0, 0x261c2, 0x84)
read$auto(0xffffffffffffffff, 0x0, 0x6)
memfd_create$auto(0x0, 0x12)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty12\x00', 0x900, 0x0)
r5 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r4, 0x541c, r5)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)

2.797735281s ago: executing program 2 (id=736):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = gettid()
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
ppoll$auto(0x0, 0x4, 0x0, 0x0, 0x8)
mmap$auto(0x1d, 0x9, 0xffb, 0x8000000008011, 0x3, 0x20000000008002)
socket(0xa, 0x1, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x49a400, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$auto_TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r3, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f00000006c0)={0x1470, r4, 0x9ec6579d452c1f15, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x145c, 0x1, 0x0, 0x1, [@nested={0x1458, 0x11b, 0x0, 0x1, [@nested={0x1454, 0x12c, 0x0, 0x1, [@generic="4c14bd84944bad7db8d13775970d8432", @generic="7283a80300cb43a42d3cceea215a7cff5fd94a847f3e5decc7404e7a47594158ca6eb9b93fb3b238c7240e64c1be1a7ecbf501f9e6de6edcdaf7fd1f31a05e204db3e55fb0e8c9e96fe3a04b0aec5a12d4f62cf675a13dcc864559d24d42dfd9a144906cbe73faa0a18ac68f0f552f93b6aa5f28dc5f9b9d054084d35af91532575e863de3839844e8d36a8b8561df69271349806f475e5d3650f3856069997013b9fbc4c384a8a7ca329e2df2413b5e", @nested={0x8, 0xa0, 0x0, 0x1, [@nested={0x4, 0x27}]}, @nested={0x172, 0xd3, 0x0, 0x1, [@nested={0x18, 0x1e, 0x0, 0x1, [@nested={0x4, 0x95}, @typed={0x8, 0x57, 0x0, 0x0, @pid=r1}, @typed={0x8, 0x9b, 0x0, 0x0, @u32=0x82}]}, @generic="d4adf39c7f8a348e6afd7cc6748d961c4cb02662ed8cc8d75c7a412dc0b974b9ac21cf5aee43958111878b5b0ca048bc220eb5231d12ac4f1660e9ff1e91b0069eb6e5195e6c4a8d00fc3b69d5bd90c69c195843657726bfbd88d645a4d696e0d06a260edd3de71d0307ff77d6212409befadf2375c82a7c32b4f935464881ea0186580fa0f74ad5233917e1447be16ba9510ac33b75dddcb26b01ab74a93b60e512472861aaa3d27afdfccf30d1142fe2f0a221e73517e7c46af22e775becc1ddfd7495c6156c333978d7022b36887e31ca9f3a036e1bbe24f538692445f4fafab353b70257a8319cae8849edab82c78b077782a9a7", @typed={0x8, 0xf, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x57, 0xc9, 0x0, 0x0, @binary="974f94e8989cc907fca7737d72e81d0d9fe4a1b2f14d2628be6d0b6fd375b385b28406c1de54ee39f0133ae3be01f31a257a994bbe27a6c615ac1b5905173bed7bd1611bb544f3a8f0c9cc5ee803aa2337d71f"}]}, @nested={0x1214, 0x53, 0x0, 0x1, [@typed={0xc, 0x105, 0x0, 0x0, @u64=0x3}, @typed={0x8, 0x74, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0xc, 0x140, 0x0, 0x0, @u64=0x400}, @typed={0x8, 0x4c, 0x0, 0x0, @u32=0x8}, @nested={0x1080, 0x9a, 0x0, 0x1, [@typed={0x8, 0x129, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8, 0xb1, 0x0, 0x0, @u32}, @generic, @nested={0x4, 0xfc}, @generic="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", @generic="f423ff21c583888bf6e974ea2363f3532dcf2e1c5b19a5fa7623084e313de33aaddef6cfac20163751b6e707fed14fa1d32bc155", @typed={0x8, 0xa7, 0x0, 0x0, @fd=r0}, @generic="c4edbcb58aa90bda7af108275eeb6e46ea3b405df5fe9842863560a62a005ceb9ace2f4d", @typed={0x8, 0x41, 0x0, 0x0, @u32=0x249}]}, @generic="e61ac2ab8ddcb98c133bdccf5148bb8ad1d42a9d3404b9914efa932df37801c0dd23001d95a6bb07b1f555f53960c6e66a8db5a797d18d5fc9a072e532ee4431477dd369ea649b472961c30560f05e74436a78a414f2d5717381dac00c985a257cb0fe0b618d4b5a11e75f44011b415e07dab32189325401e33f3bb7ab63d8eff2f626f62a0daabea67c364ed9555a862a68ac9c8293ca5dff18369ac311598d1c8958dbf50d73c0ddc2cdcff447d29899152d5c6867beee6256ff2d0b845ed8c1f4ca144c41b25fc7fb833908284e3d400f73794aec8326f41e247ed139b081a827c41b", @generic="01fb64369cc7a735b167a0e560062255e4e9f1c3243c16053c1dd18867c521f2da1b9a1f292b263835a1e3eda87d7390b63b27c4daebd32163c8e22e435a8b95022d25e00e02b4a3216bd1b3abb2c5489dc6efc937d760a59ddb0d8d0696682fded5feae051a0276211f3f51318731c25d7f1f0041e88cef6ad96be2df50150b881fc4ee"]}]}]}]}]}, 0x1470}, 0x1, 0x9eff, 0x0, 0x400c014}, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x7, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x8, 0x1, 0x9, 0x1, 0xff]}, 0x0)
mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103)
r6 = open(&(0x7f00000004c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x8000, 0x50)
read$auto_kernfs_file_fops_kernfs_internal(r6, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)={0x38, r8, 0x1, 0x70bd31, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x3, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000005}, 0x24048084)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000180), r5)
msync$auto(0x1ffff000, 0x180000080000000, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_TASKSTATS_CMD_GET(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2400c8c1}, 0x20048090)

2.508914426s ago: executing program 0 (id=737):
writev$auto(0xffffffffffffffff, 0x0, 0x3)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000280)=ANY=[@ANYBLOB="2cffffff", @ANYRES16=r1, @ANYBLOB="010023bd7000fadbdf2501000000040007800c0002000500"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x8880)

2.236908759s ago: executing program 0 (id=738):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/rose8/address\x00', 0x752502, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd0\x00', 0xc0c00, 0x0)
mmap$auto(0x1, 0x400008, 0xffffffffffffffff, 0x11, r0, 0x1000000000008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = io_uring_setup$auto(0x4, 0x0)
close_range$auto(0x2, r1, 0x0)
arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x3)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x0, 0x0)
sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="8a00000088ba70497803630e1896380c58d0131f7a16ce6963c904d98908d7ec596a5f7601117132b8be5e921692169d343d06000627e4904859a436e3a95faa31b03379010681368feb993e07ee75cb1e7fd258ce24dbbcd7acf5efa4e6353a5f59169946c04d751ffb78a04da4e40224d0e3cf4dad877f7466669497046aced353634286", @ANYRES16=0x0, @ANYBLOB="20002abd7000fddbdf250400000058000a804400018008000200040000000800020011030000080002000500000008000100da0a000008000100070000000800020009000000080001000000008008000200ff340000080007000f00000008000700020000000c0005000800000000000000"], 0x78}}, 0xc041)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
open(&(0x7f0000000140)='./file0\x00', 0x220c0, 0x20)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r3 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
read$auto(0x3, 0x0, 0x80)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x7fffffff)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
socket(0x27, 0x80000, 0x5097)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)

1.665950694s ago: executing program 3 (id=739):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x7)
chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba)
execve$auto(0x0, 0x0, 0x0)
open$auto(&(0x7f00000001c0)='./file0\x00', 0x9, 0x2)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129c00, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)={0x40, r3, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_IFINDEX={0x8}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x6}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_\x12\xff\xfe\x00\x00\x00\x00\x00\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)

1.661603295s ago: executing program 2 (id=740):
r0 = socket(0xa, 0x3, 0x5)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0xc88, 0x0, 0x0, &(0x7f00000000c0), 0x8, 0x200}, 0x5}, 0x3b8b, 0x8fc)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x2, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socketpair$auto(0x9, 0x4, 0x7, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
mlockall$auto(0x7)
madvise$auto(0x0, 0x2000040080000004, 0xc)
modify_ldt$auto(0x1, 0x0, 0x10)
modify_ldt$auto(0x4000000, 0x0, 0x40100000000aa)
recvmmsg$auto(0x3, 0x0, 0x86873cbd, 0xa, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
r2 = openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000003300), 0x80880, 0x0)
read$auto_stat_fops_(r2, &(0x7f0000003340)=""/132, 0x84)
mmap$auto(0x800000000001002, 0x6000000, 0x9, 0x16, r1, 0x300000002800)
pread64$auto(0xffffffffffffffff, 0x0, 0x20000000001, 0x7fff)
socket(0x2c, 0x80003, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x2000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x4000884)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
getpid()
pipe2$auto(&(0x7f00000000c0), 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000084}, 0x800)

1.593604837s ago: executing program 1 (id=741):
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4)
mmap$auto(0x0, 0x20009, 0xb17a, 0xeb1, 0x3fd, 0x8000)
r0 = socket(0x10, 0x2, 0xffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/firmware/acpi/interrupts/gpe_all\x00', 0x103042, 0x0)
r1 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f00000000c0), 0x54100, 0x0)
sendfile$auto(0xffffffffffffffff, r1, 0x0, 0x1000000000001c0)
set_mempolicy$auto(0x9b, &(0x7f0000000000)=0x6, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x4c004)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)="0db8de16d231bfee988a62fdc8c10e3c20ca130d6ef170a1eb870d3f8bfff72c0b6662ffc337a730322deb106bda91b499a4b7e7596cd7016caafcf3d1678ca0a70ec475f6", 0x1000000fc2}, 0x100, &(0x7f00000001c0), 0x9, 0xa505}, 0x800}, 0x7, 0x8)
move_pages$auto(0x0, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
socket(0x11, 0x3, 0x300)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x2, 0x800, 0xfffffffc)
getsockopt$auto(r2, 0x44, 0x9, 0xffffffffffffffff, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0)
mmap$auto(0x0, 0x6, 0xdf, 0x9b72, 0x2, 0x7ffd)
write$auto(0x3, 0x0, 0xffd4)
bind$auto(0x3, &(0x7f0000000040)=@llc={0x1a, 0x100, 0x6, 0x92, 0x8, 0x9, @random="b8c8bb06799e"}, 0x5)
sendmmsg$auto(r2, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x9, 0x0, 0x1f, 0x800}, 0x800009}, 0x5, 0x20000000)
mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
close_range$auto(0x2, 0x8000, 0x0)
socket(0xa, 0x2, 0x88)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01)

1.351530649s ago: executing program 0 (id=742):
umask$auto(0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3fd, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
r0 = socket(0x2, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0x2000b}, 0xfff}, 0x5, 0x311)

1.337433235s ago: executing program 3 (id=743):
openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, 0x0, 0x2dc08f24db163610, 0x0)
mmap$auto(0x0, 0x40009, 0xdd, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/fuse\x00', 0x700, 0x0)
epoll_ctl$auto(0xffffffffffffffff, 0x1, r0, 0x0)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40901, 0x0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x9, 0x81, 0xdfffffffffff628e, 0x6, 0xdeb1, 0x808})
socket(0x2b, 0x1, 0x1)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x4a801, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x12000, 0x0)
socket(0x3, 0x5, 0x5)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtd0ro\x00', 0x2000, 0x0)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='+\x00', @ANYRES16=0x0, @ANYBLOB="010026bd7000080000000f000000"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
r3 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010029bd700001dcdf2503000000040006000c000180080010000400"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
ioctl$auto_MTDFILEMODE(r2, 0x4d13, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r5 = eventfd$auto(0x80)
readv$auto(r5, &(0x7f0000000380)={0x0, 0x8}, 0x4)
read$auto(r5, 0x0, 0xcc9c)
write$auto(r5, &(0x7f0000000400)='\'\x00', 0x8)
r6 = socket(0xa, 0x5, 0x84)
sendto$auto(r6, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffe00"}, 0x1c)

942.717591ms ago: executing program 0 (id=744):
unshare$auto(0x40000080)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_NL802154_CMD_GET_SEC_DEV(0xffffffffffffffff, 0x0, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x1f40)
stat$auto(0x0, &(0x7f0000000380)={0x3, 0x3, 0x6, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0xa, 0xff, 0x100, 0x401, 0x5f57, 0x80000000, 0xaa})
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x0, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
getsockopt$auto_SO_PASSCRED(0xffffffffffffffff, 0x1, 0x10, 0x0, 0x0)
mmap$auto(0x0, 0x400005, 0x800000000000df, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x20048801)
ioperm$auto(0x400000ffff, 0xe, 0x1)
syz_genetlink_get_family_id$auto_taskstats(0x0, 0xffffffffffffffff)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
pread64$auto(0xffffffffffffffff, 0x0, 0xe, 0x100000000007)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bond0\x00'})
statmount$auto(0x0, 0x0, 0xfffff7fffffffffa, 0x81)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)
io_setup$auto(0xffff, &(0x7f0000000580))
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x11, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x15)
socket(0x2, 0x1, 0x0)
getsockopt$auto(0x4, 0x6000000000000, 0x80, 0xfffffffffffffffd, 0x0)

707.042359ms ago: executing program 1 (id=745):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = gettid()
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
ppoll$auto(0x0, 0x4, 0x0, 0x0, 0x8)
mmap$auto(0x1d, 0x9, 0xffb, 0x8000000008011, 0x3, 0x20000000008002)
socket(0xa, 0x1, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x49a400, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$auto_TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r3, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f00000006c0)={0x1480, r4, 0x9ec6579d452c1f15, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x146c, 0x1, 0x0, 0x1, [@nested={0x1468, 0x11b, 0x0, 0x1, [@nested={0x1464, 0x12c, 0x0, 0x1, [@generic="4c14bd84944bad7db8d13775970d8432", @generic="7283a80300cb43a42d3cceea215a7cff5fd94a847f3e5decc7404e7a47594158ca6eb9b93fb3b238c7240e64c1be1a7ecbf501f9e6de6edcdaf7fd1f31a05e204db3e55fb0e8c9e96fe3a04b0aec5a12d4f62cf675a13dcc864559d24d42dfd9a144906cbe73faa0a18ac68f0f552f93b6aa5f28dc5f9b9d054084d35af91532575e863de3839844e8d36a8b8561df69271349806f475e5d3650f3856069997013b9fbc4c384a8a7ca329e2df2413b5e", @nested={0x8, 0xa0, 0x0, 0x1, [@nested={0x4, 0x27}]}, @nested={0x182, 0xd3, 0x0, 0x1, [@nested={0x18, 0x1e, 0x0, 0x1, [@nested={0x4, 0x95}, @typed={0x8, 0x57, 0x0, 0x0, @pid=r1}, @typed={0x8, 0x9b, 0x0, 0x0, @u32=0x82}]}, @generic="d4adf39c7f8a348e6afd7cc6748d961c4cb02662ed8cc8d75c7a412dc0b974b9ac21cf5aee43958111878b5b0ca048bc220eb5231d12ac4f1660e9ff1e91b0069eb6e5195e6c4a8d00fc3b69d5bd90c69c195843657726bfbd88d645a4d696e0d06a260edd3de71d0307ff77d6212409befadf2375c82a7c32b4f935464881ea0186580fa0f74ad5233917e1447be16ba9510ac33b75dddcb26b01ab74a93b60e512472861aaa3d27afdfccf30d1142fe2f0a221e73517e7c46af22e775becc1ddfd7495c6156c333978d7022b36887e31ca9f3a036e1bbe24f538692445f4fafab353b70257a8319cae8849edab82c78b077782a9a7", @typed={0x8, 0xf, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x65, 0xc9, 0x0, 0x0, @binary="974f94e8989cc907fca7737d72e81d0d9fe4a1b2f14d2628be6d0b6fd375b385b28406c1de54ee39f0133ae3be01f31a257a994bbe27a6c615ac1b5905173bed7bd1611bb544f3a8f0c9cc5ee803aa2337d71fde7123b11e31657370c09e69b33b"}]}, @nested={0x1214, 0x53, 0x0, 0x1, [@typed={0xc, 0x105, 0x0, 0x0, @u64=0x3}, @typed={0x8, 0x74, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0xc, 0x140, 0x0, 0x0, @u64=0x400}, @typed={0x8, 0x4c, 0x0, 0x0, @u32=0x8}, @nested={0x1080, 0x9a, 0x0, 0x1, [@typed={0x8, 0x129, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8, 0xb1, 0x0, 0x0, @u32}, @generic, @nested={0x4, 0xfc}, @generic="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", @generic="f423ff21c583888bf6e974ea2363f3532dcf2e1c5b19a5fa7623084e313de33aaddef6cfac20163751b6e707fed14fa1d32bc155", @typed={0x8, 0xa7, 0x0, 0x0, @fd=r0}, @generic="c4edbcb58aa90bda7af108275eeb6e46ea3b405df5fe9842863560a62a005ceb9ace2f4d", @typed={0x8, 0x41, 0x0, 0x0, @u32=0x249}]}, @generic="e61ac2ab8ddcb98c133bdccf5148bb8ad1d42a9d3404b9914efa932df37801c0dd23001d95a6bb07b1f555f53960c6e66a8db5a797d18d5fc9a072e532ee4431477dd369ea649b472961c30560f05e74436a78a414f2d5717381dac00c985a257cb0fe0b618d4b5a11e75f44011b415e07dab32189325401e33f3bb7ab63d8eff2f626f62a0daabea67c364ed9555a862a68ac9c8293ca5dff18369ac311598d1c8958dbf50d73c0ddc2cdcff447d29899152d5c6867beee6256ff2d0b845ed8c1f4ca144c41b25fc7fb833908284e3d400f73794aec8326f41e247ed139b081a827c41b", @generic="01fb64369cc7a735b167a0e560062255e4e9f1c3243c16053c1dd18867c521f2da1b9a1f292b263835a1e3eda87d7390b63b27c4daebd32163c8e22e435a8b95022d25e00e02b4a3216bd1b3abb2c5489dc6efc937d760a59ddb0d8d0696682fded5feae051a0276211f3f51318731c25d7f1f0041e88cef6ad96be2df50150b881fc4ee"]}]}]}]}]}, 0x1480}, 0x1, 0x9eff, 0x0, 0x400c014}, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x7, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x8, 0x1, 0x9, 0x1, 0xff]}, 0x0)
mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103)
r6 = open(&(0x7f00000004c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x8000, 0x50)
read$auto_kernfs_file_fops_kernfs_internal(r6, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)={0x38, r8, 0x1, 0x70bd31, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@nested={0x8, 0x3, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000005}, 0x24048084)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0xc, 0x2, 0x6]}, 0x0)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000180), r5)
msync$auto(0x1ffff000, 0x180000080000000, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_TASKSTATS_CMD_GET(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2400c8c1}, 0x20048090)

372.498204ms ago: executing program 3 (id=746):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x10000, 0x7, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@link_detach={r0}, 0x5)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0xf, 0x1, 0xfffffffc)
socket(0x23, 0x80805, 0x0)
ioctl$auto(0x3, 0x89ed, 0xfffffffffffff4e0)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_CEC_G_MODE(0xffffffffffffffff, 0x80046108, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
userfaultfd$auto(0x1)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x9, 0x1}, 0x7f, 0x0, &(0x7f00000001c0)={0x3}, 0x8)
write$auto(r1, &(0x7f0000000100)='\x15!\xa8^J/\xddCx4\xa1\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\a\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x9e\x14\xe4\xa5\xfe\xb5', 0x5)
setreuid$auto(0x0, 0x0)
r2 = timerfd_create$auto(0x4, 0x1000002)
futimesat$auto(r2, 0x0, &(0x7f0000000100)={0x40, 0xffffffffffffffff})
connect$auto(0x3, 0x0, 0x54)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r3)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000001a80)={'wg2\x00', <r5=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r3, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000002f00)={&(0x7f0000000640)={0x590, r4, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_CABLE_TEST_TDR_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @ETHTOOL_A_CABLE_TEST_TDR_CFG={0x96, 0x2, 0x0, 0x1, [@generic="3d5274e5af3fb5f01d0a81e1a709033fb44f837737ed296a5939f176e19009e2d3c2559045ed04ac64e8a8625b8aeda153697b55372a5c046603e1ae23dfde1c7d2847f7b0e2fc7e2ee891a275fcffa526f64a68a0cd42f56434334899a8705e37e9d6b640a947ea6e5ed6459a9c7a0a49c27614962d35dfe9e881160e771e5571a79b1d7031c94bc77aed58e060b4151a3e"]}, @ETHTOOL_A_CABLE_TEST_TDR_CFG={0x42a, 0x2, 0x0, 0x1, [@typed={0x8, 0x11b, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x13}}, @generic="a9870cef0e1bb8837887db96a6269fdf38497a314cbc1d40f6a40f8af2a0973bb63d738fa62caaf9f680181eeadf19895f8ee26c37a3057319f1b4e36e33f4b5313b39decdf4b9d64e1a23516d6e5320b95b266b8536c17d92381f7d59fa2aaff1ed861bfebfca5ce66fc05e96563a083e2b6cadef64037866d273c5abdb5cf209cb49dd55be2597df49d3f38cbef4f73ace552738fcb275913c114d9e16505e7ca26a5e528958088d76b1ddb93fc8b8a79ec10e442f5d3e09583c067e72b9b415526c91268bea20064cd5946b59307b6769", @nested={0x15e, 0xd1, 0x0, 0x1, [@nested={0x4, 0x148}, @nested={0x4, 0xe2}, @generic="db82961dd4dda273a3ea8d4b0983bcf61a0cd3c6ea84930061bf8343da5058b688081063d93cf1b1e4ced83a725f01c760edd9fa72fbef6689bc0cc0ee6bc459a780a3f88994920ef5606d1cc99d7a80abc026e37b5d48c11da18bff009a7cc54a264983553e1b28b4a84a976267b4c0d399dae09481eed04150f0c51d57ebe46af3ac730bda638c80b082c2cfe5ee21c00cc90a0bc111", @nested={0x4, 0x115}, @generic="9209bbecc49eae46490949aacf4dcf836e12a9e2f3bc0bbddf5f3fa3f0fc14a3b0f14c0fd5af9c2ca7dc56491bf5ea6dff4110ea87ac05cb4a3212efbd77b512669b42137ee3bf1a9e85d6286bb772a658a95cc33edda5b54341e4fada0f7ccddeb0510fb49982b1aabd233b738950e483ffe7e0d181129dd8ca0cc668fd78ca3ed8b57d8417476dbc843605ab5ecaa5b40bde96bd93482bd8568e64a4aa0e3d38c648eaa491f1a05d17e870a92ab80690b3750588aa3c"]}, @typed={0x11, 0xd5, 0x0, 0x0, @str='veth1_to_hsr\x00'}, @generic="a9977dcd9ed15eebe441c893e1931293b470de148f7ff01f738f677d062e38adfd178e63ea2d8c2ac542a6090f10a43c1c92263426bbbfee3045ef64bce4c8134fdda0c99366dbe4772940e457096cb48e7f6b4de007a3ec6ca40da3aef843fb5eff6d4de384630e88a349ddeec79954cbba4c945cbce0c5ecec4779b6d0142787d1145456ffe559280108761e8d70c5bed2dae049aeb7a64772139c5a4820a1936e53e39cf37fbc6a90d76d402172b9025398b292a820897d59998596640a6af197b08903c59fd2430eae007fb152b35c034443a98a3aab62778731e190bf6b9ef1fac98ed711d5527fbc99dacf7c", @nested={0x10, 0x11, 0x0, 0x1, [@typed={0x8, 0xec, 0x0, 0x0, @u32=0x8000}, @nested={0x4, 0xce}]}, @generic="53f2135a145eb70f027adf85fd4b733df599fc06a597315b74c21f38baa21325d9ae1fbdc8534d17a21807b04de67a63bc7f44d89903e94ce9a5f60d2bd18a7bb97121756219462d748991bcaef5fd69cc502edfc9f31ac1ee5fc69b0853cca0bdad88768cc7159e677ef2c09b77f008eb51fd0d7a16600ce909a146ec9fb6bc6797b9708e20aa64b7c161883b2f1e593aa75f45836a67864de5cccc3f407499e8fec9021d49832092e9317404069f51e0961c59ae0f669b6a61e2e5c1f26d1b1d3729dcc8bbb6e90233966ea1", @typed={0xc, 0xc3, 0x0, 0x0, @u64=0x8000000000000001}]}, @ETHTOOL_A_CABLE_TEST_TDR_CFG={0x9f, 0x2, 0x0, 0x1, [@generic="86261fb3c0e8f937dfba4e0e3bf48396511c0eddd5979555a6bb5f62bcd5459e72bb9a237a9b311b6fd473003d943ad7c58d2ef6e9d4e3083a4c1734e0a55d96ebcaf2604f6c7f128a8f9f361bf13093ea330e0deac7cce645b541f4f9506692ace6a8fbe67d722862b1bc61df47b4dbadcd4e652b093e5edd270f8dc0880972e26cf677ed30e984b687e978a9e5adf5d5c2955131a2a50cae7a52"]}, @ETHTOOL_A_CABLE_TEST_TDR_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10001}]}]}, 0x590}, 0x1, 0x0, 0x0, 0x24040000}, 0x0)
syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff)
madvise$auto(0xffffffffffffffff, 0x7fffffffffffffff, 0xa)
ioctl$auto_XFS_IOC_FREESP(0xffffffffffffffff, 0x4030580b, 0x0)

0s ago: executing program 2 (id=747):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6gre0\x00'})
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={0x0, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)

kernel console output (not intermixed with test programs):

  __x64_sys_mmap+0x125/0x190
[  215.988310][ T7347]  do_syscall_64+0xcd/0x230
[  215.988362][ T7347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.988396][ T7347] RIP: 0033:0x7f49e4d8e969
[  215.988420][ T7347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.988452][ T7347] RSP: 002b:00007f49e5bfc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  215.988483][ T7347] RAX: ffffffffffffffda RBX: 00007f49e4fb5fa0 RCX: 00007f49e4d8e969
[  215.988504][ T7347] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  215.988523][ T7347] RBP: 00007f49e4e10ab1 R08: 0000000000000002 R09: 0000000000008000
[  215.988543][ T7347] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  215.988562][ T7347] R13: 0000000000000000 R14: 00007f49e4fb5fa0 R15: 00007fffd6f07618
[  215.988602][ T7347]  </TASK>
[  216.272207][    C0] vkms_vblank_simulate: vblank timer overrun
[  217.754647][ T7379] FAULT_INJECTION: forcing a failure.
[  217.754647][ T7379] name failslab, interval 1, probability 0, space 0, times 0
[  217.769786][ T7379] CPU: 1 UID: 0 PID: 7379 Comm: syz.0.317 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  217.769818][ T7379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  217.769832][ T7379] Call Trace:
[  217.769840][ T7379]  <TASK>
[  217.769850][ T7379]  dump_stack_lvl+0x16c/0x1f0
[  217.769891][ T7379]  should_fail_ex+0x512/0x640
[  217.769926][ T7379]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  217.769958][ T7379]  should_failslab+0xc2/0x120
[  217.769988][ T7379]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  217.770016][ T7379]  ? __free_frozen_pages+0x72a/0xff0
[  217.770037][ T7379]  ? ptlock_alloc+0x1f/0x70
[  217.770064][ T7379]  ptlock_alloc+0x1f/0x70
[  217.770087][ T7379]  pte_alloc_one+0x6d/0x380
[  217.770116][ T7379]  __do_fault+0x320/0x490
[  217.770150][ T7379]  do_pte_missing+0x1031/0x3fb0
[  217.770176][ T7379]  ? mtree_range_walk+0x718/0xc00
[  217.770212][ T7379]  ? find_held_lock+0x2b/0x80
[  217.770239][ T7379]  __handle_mm_fault+0x103d/0x2a40
[  217.770274][ T7379]  ? __pfx___handle_mm_fault+0x10/0x10
[  217.770324][ T7379]  ? find_vma+0xbf/0x140
[  217.770356][ T7379]  ? __pfx_find_vma+0x10/0x10
[  217.770394][ T7379]  handle_mm_fault+0x3fe/0xad0
[  217.770425][ T7379]  do_user_addr_fault+0x7a6/0x1370
[  217.770453][ T7379]  ? rcu_is_watching+0x12/0xc0
[  217.770478][ T7379]  exc_page_fault+0x5c/0xc0
[  217.770512][ T7379]  asm_exc_page_fault+0x26/0x30
[  217.770535][ T7379] RIP: 0010:__get_user_nocheck_4+0x6/0x20
[  217.770566][ T7379] Code: 01 ca e9 cd 01 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 cb 0f ae e8 <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00
[  217.770588][ T7379] RSP: 0018:ffffc9000b217c78 EFLAGS: 00050216
[  217.770606][ T7379] RAX: 0000000000000018 RBX: 0000000000000018 RCX: ffffffff850eb1ed
[  217.770620][ T7379] RDX: ffff888033361e00 RSI: ffffffff850eb1c2 RDI: 0000000000000005
[  217.770634][ T7379] RBP: ffff8880226d2000 R08: 0000000000000005 R09: 0000000000000003
[  217.770647][ T7379] R10: 00000000000000e8 R11: 0000000000000000 R12: 0000000000000100
[  217.770661][ T7379] R13: 0000000000000018 R14: 00000000000000e8 R15: ffff88807a920598
[  217.770683][ T7379]  ? proc_bus_pci_write+0x39d/0x4c0
[  217.770705][ T7379]  ? proc_bus_pci_write+0x372/0x4c0
[  217.770732][ T7379]  proc_bus_pci_write+0x37d/0x4c0
[  217.770759][ T7379]  ? __pfx_proc_bus_pci_write+0x10/0x10
[  217.770782][ T7379]  proc_reg_write+0x23d/0x330
[  217.770811][ T7379]  vfs_write+0x25c/0x1180
[  217.770832][ T7379]  ? __pfx_proc_reg_write+0x10/0x10
[  217.770860][ T7379]  ? __pfx___mutex_lock+0x10/0x10
[  217.770895][ T7379]  ? __pfx_vfs_write+0x10/0x10
[  217.770926][ T7379]  ? __fget_files+0x20e/0x3c0
[  217.770956][ T7379]  ksys_write+0x12a/0x240
[  217.770979][ T7379]  ? __pfx_ksys_write+0x10/0x10
[  217.771000][ T7379]  ? rcu_is_watching+0x12/0xc0
[  217.771029][ T7379]  do_syscall_64+0xcd/0x230
[  217.771067][ T7379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.771089][ T7379] RIP: 0033:0x7f5ad198e969
[  217.771106][ T7379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.771127][ T7379] RSP: 002b:00007f5ad283c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  217.771147][ T7379] RAX: ffffffffffffffda RBX: 00007f5ad1bb5fa0 RCX: 00007f5ad198e969
[  217.771162][ T7379] RDX: 0000000100000001 RSI: 0000000000000000 RDI: 0000000000000003
[  217.771176][ T7379] RBP: 00007f5ad283c090 R08: 0000000000000000 R09: 0000000000000000
[  217.771190][ T7379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  217.771204][ T7379] R13: 0000000000000000 R14: 00007f5ad1bb5fa0 R15: 00007ffddbc19488
[  217.771234][ T7379]  </TASK>
[  218.181351][ T7379] input: jJǸ-� as /devices/virtual/input/input14
[  218.438521][ T7375] input: jJǸ-� as /devices/virtual/input/input15
[  220.051148][ T7405] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  220.912554][ T7415] tc_dump_action: action bad kind
[  221.439313][ T7425] netlink: 'syz.1.328': attribute type 11 has an invalid length.
[  221.450703][ T7425] netlink: 'syz.1.328': attribute type 11 has an invalid length.
[  221.749629][ T7421] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  221.759393][ T7421] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  221.786669][ T7421] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  221.796116][ T7421] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  221.804832][ T7421] page dumped because: unmovable page
[  221.855073][ T7421] page_owner tracks the page as allocated
[  221.862770][ T7421] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  221.894111][ T7421]  post_alloc_hook+0x181/0x1b0
[  221.910442][ T7421]  get_page_from_freelist+0x135c/0x3920
[  221.946382][ T7421]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  221.952420][ T7421]  alloc_pages_mpol+0x1fb/0x550
[  222.010114][ T7421]  alloc_pages_noprof+0x131/0x390
[  222.015329][ T7421]  __vmalloc_node_range_noprof+0x732/0x1540
[  222.021928][ T7421]  vmalloc_user_noprof+0x6b/0x90
[  222.027549][ T7421]  kcov_ioctl+0x4c/0x730
[  222.031892][ T7421]  __x64_sys_ioctl+0x190/0x200
[  222.087886][ T7421]  do_syscall_64+0xcd/0x230
[  222.095863][ T7421]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.102028][ T7421] page last free pid 5819 tgid 5819 stack trace:
[  222.109504][ T7421]  free_unref_folios+0x999/0x1630
[  222.152102][ T7421]  folios_put_refs+0x56f/0x740
[  222.207845][ T7436] netlink: 4 bytes leftover after parsing attributes in process `syz.2.330'.
[  222.273641][ T7436] openvswitch: netlink: IPv4 tunnel dst address is zero
[  222.295135][ T7421]  free_pages_and_swap_cache+0x245/0x4a0
[  222.361487][ T7421]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  222.390337][ T7421]  tlb_finish_mmu+0x168/0x7b0
[  222.446192][ T7421]  vms_clear_ptes+0x55e/0x770
[  222.459605][ T7421]  vms_complete_munmap_vmas+0x1ca/0x970
[  222.465344][ T7421]  do_vmi_align_munmap+0x43b/0x7d0
[  222.472669][ T7421]  do_vmi_munmap+0x208/0x3e0
[  222.477627][ T7421]  __vm_munmap+0x19a/0x390
[  222.483068][ T7421]  __x64_sys_munmap+0x59/0x80
[  222.529575][ T7421]  do_syscall_64+0xcd/0x230
[  222.534214][ T7421]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  222.648027][ T7425] could not allocate digest TFM handle binfmt_misc
[  225.335471][ T7487] netlink: 'syz.2.342': attribute type 11 has an invalid length.
[  225.344660][ T7487] netlink: 'syz.2.342': attribute type 11 has an invalid length.
[  225.584413][ T7492] netlink: 'syz.1.343': attribute type 11 has an invalid length.
[  225.593281][ T7492] netlink: 'syz.1.343': attribute type 11 has an invalid length.
[  226.034970][ T7496] vivid-003: =================  START STATUS  =================
[  226.045975][ T7496] vivid-003: Radio HW Seek Mode: Bounded
[  226.051750][ T7496] vivid-003: Radio Programmable HW Seek: false
[  226.076243][ T7496] vivid-003: RDS Rx I/O Mode: Block I/O
[  226.100833][ T7496] vivid-003: Generate RBDS Instead of RDS: false
[  226.124711][ T7496] vivid-003: RDS Reception: true
[  226.139986][ T7496] vivid-003: RDS Program Type: 0 inactive
[  226.155095][ T7496] vivid-003: RDS PS Name:  inactive
[  226.216975][ T7497] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  226.235945][ T7496] vivid-003: RDS Radio Text:  inactive
[  226.242286][ T7496] vivid-003: RDS Traffic Announcement: false inactive
[  226.250696][ T7496] vivid-003: RDS Traffic Program: false inactive
[  226.258026][ T7496] vivid-003: RDS Music: false inactive
[  226.263854][ T7496] vivid-003: ==================  END STATUS  ==================
[  226.295240][ T7497] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  226.305317][ T7497] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  226.329328][ T7493] could not allocate digest TFM handle binfmt_misc
[  226.339974][ T7497] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  226.351217][ T7497] page dumped because: unmovable page
[  226.361578][ T7497] page_owner tracks the page as allocated
[  226.368772][ T7497] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  226.388210][    C1] vkms_vblank_simulate: vblank timer overrun
[  226.406220][ T7497]  post_alloc_hook+0x181/0x1b0
[  226.446217][ T7497]  get_page_from_freelist+0x135c/0x3920
[  226.456472][ T7497]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  226.466257][ T7497]  alloc_pages_mpol+0x1fb/0x550
[  226.486121][ T7497]  alloc_pages_noprof+0x131/0x390
[  226.491362][ T7497]  __vmalloc_node_range_noprof+0x732/0x1540
[  226.505751][ T7497]  vmalloc_user_noprof+0x6b/0x90
[  226.515586][ T7497]  kcov_ioctl+0x4c/0x730
[  226.520083][ T7497]  __x64_sys_ioctl+0x190/0x200
[  226.525721][ T7497]  do_syscall_64+0xcd/0x230
[  226.534390][ T7497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.541144][ T7497] page last free pid 5819 tgid 5819 stack trace:
[  226.550804][ T7497]  free_unref_folios+0x999/0x1630
[  226.736252][ T7497]  folios_put_refs+0x56f/0x740
[  226.798895][ T7497]  free_pages_and_swap_cache+0x245/0x4a0
[  226.807898][ T7497]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  226.814086][ T7497]  tlb_finish_mmu+0x168/0x7b0
[  226.819268][ T7497]  vms_clear_ptes+0x55e/0x770
[  226.856155][ T7497]  vms_complete_munmap_vmas+0x1ca/0x970
[  226.876350][ T7497]  do_vmi_align_munmap+0x43b/0x7d0
[  226.881599][ T7497]  do_vmi_munmap+0x208/0x3e0
[  226.886480][ T7497]  __vm_munmap+0x19a/0x390
[  226.903544][ T7497]  __x64_sys_munmap+0x59/0x80
[  226.967146][ T7497]  do_syscall_64+0xcd/0x230
[  226.971908][ T7497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.031861][ T7503] could not allocate digest TFM handle binfmt_misc
[  227.459646][ T5837] Bluetooth: hci1: command 0x0406 tx timeout
[  227.459668][   T55] Bluetooth: hci3: command 0x0406 tx timeout
[  227.465986][ T5837] Bluetooth: hci2: command 0x0406 tx timeout
[  227.471857][ T5142] Bluetooth: hci0: command 0x0406 tx timeout
[  228.686594][ T7526] netlink: zone id is out of range
[  230.515805][ T7552] FAULT_INJECTION: forcing a failure.
[  230.515805][ T7552] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  230.573602][ T7552] CPU: 1 UID: 0 PID: 7552 Comm: syz.2.357 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  230.573651][ T7552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  230.573671][ T7552] Call Trace:
[  230.573682][ T7552]  <TASK>
[  230.573694][ T7552]  dump_stack_lvl+0x16c/0x1f0
[  230.573753][ T7552]  should_fail_ex+0x512/0x640
[  230.573808][ T7552]  _copy_to_iter+0x2a4/0x15a0
[  230.573844][ T7552]  ? chacha_block_generic+0x189/0x260
[  230.573894][ T7552]  ? __pfx__copy_to_iter+0x10/0x10
[  230.573934][ T7552]  ? lockdep_hardirqs_on+0x7c/0x110
[  230.573990][ T7552]  ? crng_make_state+0x48e/0x6d0
[  230.574048][ T7552]  get_random_bytes_user+0x17f/0x3c0
[  230.574103][ T7552]  ? __pfx_get_random_bytes_user+0x10/0x10
[  230.574152][ T7552]  ? putname+0x154/0x1a0
[  230.574200][ T7552]  ? do_futex+0x122/0x350
[  230.574247][ T7552]  ? __sys_sendmsg+0x199/0x220
[  230.574287][ T7552]  ? import_ubuf+0x1b6/0x220
[  230.574353][ T7552]  __x64_sys_getrandom+0x183/0x290
[  230.574386][ T7552]  ? __pfx___x64_sys_getrandom+0x10/0x10
[  230.574425][ T7552]  ? xfd_validate_state+0x5d/0x180
[  230.574461][ T7552]  ? rcu_is_watching+0x12/0xc0
[  230.574515][ T7552]  do_syscall_64+0xcd/0x230
[  230.574576][ T7552]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.574611][ T7552] RIP: 0033:0x7fb17c98e969
[  230.574638][ T7552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.574673][ T7552] RSP: 002b:00007fb17d8a3038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[  230.574715][ T7552] RAX: ffffffffffffffda RBX: 00007fb17cbb5fa0 RCX: 00007fb17c98e969
[  230.574736][ T7552] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000
[  230.574756][ T7552] RBP: 00007fb17ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  230.574776][ T7552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  230.574795][ T7552] R13: 0000000000000000 R14: 00007fb17cbb5fa0 R15: 00007fffc0211378
[  230.574838][ T7552]  </TASK>
[  230.775342][    C1] vkms_vblank_simulate: vblank timer overrun
[  231.024591][ T7561] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  231.291120][ T7566] FAULT_INJECTION: forcing a failure.
[  231.291120][ T7566] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.343525][ T7566] CPU: 0 UID: 0 PID: 7566 Comm: syz.1.360 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  231.343573][ T7566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  231.343592][ T7566] Call Trace:
[  231.343603][ T7566]  <TASK>
[  231.343617][ T7566]  dump_stack_lvl+0x16c/0x1f0
[  231.343671][ T7566]  should_fail_ex+0x512/0x640
[  231.343727][ T7566]  _copy_to_user+0x32/0xd0
[  231.343762][ T7566]  simple_read_from_buffer+0xcb/0x170
[  231.343827][ T7566]  proc_fail_nth_read+0x197/0x270
[  231.343876][ T7566]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  231.343928][ T7566]  ? rw_verify_area+0xcf/0x680
[  231.343976][ T7566]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  231.344024][ T7566]  vfs_read+0x1de/0xc70
[  231.344063][ T7566]  ? __pfx___mutex_lock+0x10/0x10
[  231.344116][ T7566]  ? __pfx_vfs_read+0x10/0x10
[  231.344161][ T7566]  ? __fget_files+0x20e/0x3c0
[  231.344189][ T7566]  ? rcu_watching_snap_stopped_since+0x60/0x110
[  231.344242][ T7566]  ksys_read+0x12a/0x240
[  231.344274][ T7566]  ? __pfx_ksys_read+0x10/0x10
[  231.344303][ T7566]  ? rcu_is_watching+0x12/0xc0
[  231.344348][ T7566]  do_syscall_64+0xcd/0x230
[  231.344400][ T7566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.344434][ T7566] RIP: 0033:0x7f171038d37c
[  231.344460][ T7566] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  231.344492][ T7566] RSP: 002b:00007f1711124030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  231.344522][ T7566] RAX: ffffffffffffffda RBX: 00007f17105b5fa0 RCX: 00007f171038d37c
[  231.344543][ T7566] RDX: 000000000000000f RSI: 00007f17111240a0 RDI: 0000000000000004
[  231.344563][ T7566] RBP: 00007f1711124090 R08: 0000000000000000 R09: 0000000000000000
[  231.344583][ T7566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  231.344603][ T7566] R13: 0000000000000000 R14: 00007f17105b5fa0 R15: 00007ffd4bae7578
[  231.344646][ T7566]  </TASK>
[  233.441743][ T7596] FAULT_INJECTION: forcing a failure.
[  233.441743][ T7596] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  233.461780][ T7596] CPU: 1 UID: 0 PID: 7596 Comm: syz.1.368 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  233.461826][ T7596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  233.461845][ T7596] Call Trace:
[  233.461856][ T7596]  <TASK>
[  233.461868][ T7596]  dump_stack_lvl+0x16c/0x1f0
[  233.461921][ T7596]  should_fail_ex+0x512/0x640
[  233.461978][ T7596]  should_fail_alloc_page+0xe7/0x130
[  233.462023][ T7596]  prepare_alloc_pages+0x3c2/0x610
[  233.462084][ T7596]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  233.462128][ T7596]  ? is_bpf_text_address+0x94/0x1a0
[  233.462176][ T7596]  ? __lock_acquire+0xaa4/0x1ba0
[  233.462228][ T7596]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  233.462272][ T7596]  ? do_raw_spin_lock+0x12c/0x2b0
[  233.462334][ T7596]  ? __lock_acquire+0x5ca/0x1ba0
[  233.462375][ T7596]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  233.462422][ T7596]  ? policy_nodemask+0xea/0x4e0
[  233.462463][ T7596]  alloc_pages_mpol+0x1fb/0x550
[  233.462506][ T7596]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  233.462546][ T7596]  ? find_held_lock+0x2b/0x80
[  233.462580][ T7596]  ? __free_frozen_pages+0x72a/0xff0
[  233.462617][ T7596]  alloc_pages_noprof+0x131/0x390
[  233.462659][ T7596]  pte_alloc_one+0x19/0x380
[  233.462704][ T7596]  __do_fault+0x320/0x490
[  233.462750][ T7596]  do_pte_missing+0x1031/0x3fb0
[  233.462786][ T7596]  ? mtree_range_walk+0x718/0xc00
[  233.462834][ T7596]  ? find_held_lock+0x2b/0x80
[  233.462868][ T7596]  __handle_mm_fault+0x103d/0x2a40
[  233.462917][ T7596]  ? __pfx___handle_mm_fault+0x10/0x10
[  233.462979][ T7596]  ? find_vma+0xbf/0x140
[  233.463024][ T7596]  ? __pfx_find_vma+0x10/0x10
[  233.463077][ T7596]  handle_mm_fault+0x3fe/0xad0
[  233.463120][ T7596]  do_user_addr_fault+0x7a6/0x1370
[  233.463158][ T7596]  ? rcu_is_watching+0x12/0xc0
[  233.463196][ T7596]  exc_page_fault+0x5c/0xc0
[  233.463243][ T7596]  asm_exc_page_fault+0x26/0x30
[  233.463275][ T7596] RIP: 0010:__get_user_nocheck_4+0x6/0x20
[  233.463318][ T7596] Code: 01 ca e9 cd 01 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 cb 0f ae e8 <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00
[  233.463351][ T7596] RSP: 0018:ffffc90004207c78 EFLAGS: 00050212
[  233.463377][ T7596] RAX: 000000000000001c RBX: 000000000000001c RCX: ffffffff850eb1ed
[  233.463396][ T7596] RDX: ffff88802f221e00 RSI: ffffffff850eb1c2 RDI: 0000000000000005
[  233.463416][ T7596] RBP: ffff8880226d2000 R08: 0000000000000005 R09: 0000000000000003
[  233.463437][ T7596] R10: 00000000000000e4 R11: 0000000000000000 R12: 0000000000000100
[  233.463456][ T7596] R13: 000000000000001c R14: 00000000000000e4 R15: ffff888061a96578
[  233.463489][ T7596]  ? proc_bus_pci_write+0x39d/0x4c0
[  233.463520][ T7596]  ? proc_bus_pci_write+0x372/0x4c0
[  233.463559][ T7596]  proc_bus_pci_write+0x37d/0x4c0
[  233.463599][ T7596]  ? __pfx_proc_bus_pci_write+0x10/0x10
[  233.463632][ T7596]  proc_reg_write+0x23d/0x330
[  233.463672][ T7596]  vfs_write+0x25c/0x1180
[  233.463709][ T7596]  ? __pfx_proc_reg_write+0x10/0x10
[  233.463751][ T7596]  ? __pfx___mutex_lock+0x10/0x10
[  233.463800][ T7596]  ? __pfx_vfs_write+0x10/0x10
[  233.463845][ T7596]  ? __fget_files+0x20e/0x3c0
[  233.463888][ T7596]  ksys_write+0x12a/0x240
[  233.463921][ T7596]  ? __pfx_ksys_write+0x10/0x10
[  233.463950][ T7596]  ? rcu_is_watching+0x12/0xc0
[  233.463992][ T7596]  do_syscall_64+0xcd/0x230
[  233.464045][ T7596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.464077][ T7596] RIP: 0033:0x7f171038e969
[  233.464103][ T7596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.464134][ T7596] RSP: 002b:00007f1711124038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  233.464163][ T7596] RAX: ffffffffffffffda RBX: 00007f17105b5fa0 RCX: 00007f171038e969
[  233.464184][ T7596] RDX: 0000000100000001 RSI: 0000000000000000 RDI: 0000000000000003
[  233.464204][ T7596] RBP: 00007f1711124090 R08: 0000000000000000 R09: 0000000000000000
[  233.464223][ T7596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  233.464242][ T7596] R13: 0000000000000000 R14: 00007f17105b5fa0 R15: 00007ffd4bae7578
[  233.464287][ T7596]  </TASK>
[  233.876747][ T7597] input: jJǸ-� as /devices/virtual/input/input18
[  234.449924][ T7607] can: request_module (can-proto-4) failed.
[  236.520501][ T7646] netlink: 4 bytes leftover after parsing attributes in process `syz.1.380'.
[  236.589797][ T7646] openvswitch: netlink: IPv4 tunnel dst address is zero
[  236.593589][ T7647] netlink: 'syz.3.378': attribute type 11 has an invalid length.
[  236.605483][ T7647] netlink: 'syz.3.378': attribute type 11 has an invalid length.
[  237.399199][ T7662] netlink: zone id is out of range
[  237.749695][ T7649] could not allocate digest TFM handle binfmt_misc
[  239.335144][ T7686] WARNING! power/level is deprecated; use power/control instead
[  239.389560][ T5840] Bluetooth: hci3: unexpected subevent 0x01 length: 5 < 18
[  240.663317][ T7702] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  241.193939][ T7703] vivid-003: =================  START STATUS  =================
[  241.238673][ T7703] vivid-003: Radio HW Seek Mode: Bounded
[  241.245935][ T7703] vivid-003: Radio Programmable HW Seek: false
[  241.309674][ T7703] vivid-003: RDS Rx I/O Mode: Block I/O
[  241.331330][ T7703] vivid-003: Generate RBDS Instead of RDS: false
[  241.383879][ T7703] vivid-003: RDS Reception: true
[  241.436228][ T7703] vivid-003: RDS Program Type: 0 inactive
[  241.462646][ T7703] vivid-003: RDS PS Name:  inactive
[  241.513933][ T7703] vivid-003: RDS Radio Text:  inactive
[  241.543025][ T7703] vivid-003: RDS Traffic Announcement: false inactive
[  241.594151][ T7703] vivid-003: RDS Traffic Program: false inactive
[  241.646245][ T7703] vivid-003: RDS Music: false inactive
[  241.653316][ T7703] vivid-003: ==================  END STATUS  ==================
[  243.221518][ T7721] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  243.236115][ T7721] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  243.250536][ T7721] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  243.259544][ T7721] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  243.280200][ T7721] page dumped because: unmovable page
[  243.285736][ T7721] page_owner tracks the page as allocated
[  243.293051][ T7721] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  243.312753][ T7721]  post_alloc_hook+0x181/0x1b0
[  243.317687][ T7721]  get_page_from_freelist+0x135c/0x3920
[  243.323424][ T7721]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  243.329556][ T7721]  alloc_pages_mpol+0x1fb/0x550
[  243.646290][ T7721]  alloc_pages_noprof+0x131/0x390
[  243.651672][ T7721]  __vmalloc_node_range_noprof+0x732/0x1540
[  243.661871][ T7721]  vmalloc_user_noprof+0x6b/0x90
[  243.672039][ T7721]  kcov_ioctl+0x4c/0x730
[  243.677149][ T7721]  __x64_sys_ioctl+0x190/0x200
[  243.682020][ T7721]  do_syscall_64+0xcd/0x230
[  243.687536][ T7721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.693665][ T7721] page last free pid 5819 tgid 5819 stack trace:
[  243.795946][ T7723] could not allocate digest TFM handle binfmt_misc
[  243.875909][ T7721]  free_unref_folios+0x999/0x1630
[  243.937752][ T7721]  folios_put_refs+0x56f/0x740
[  243.942980][ T7721]  free_pages_and_swap_cache+0x245/0x4a0
[  243.966416][ T7721]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  243.972525][ T7721]  tlb_finish_mmu+0x168/0x7b0
[  243.977549][ T7721]  vms_clear_ptes+0x55e/0x770
[  243.982303][ T7721]  vms_complete_munmap_vmas+0x1ca/0x970
[  243.989670][ T7721]  do_vmi_align_munmap+0x43b/0x7d0
[  243.994911][ T7721]  do_vmi_munmap+0x208/0x3e0
[  244.016390][ T7721]  __vm_munmap+0x19a/0x390
[  244.025306][ T7721]  __x64_sys_munmap+0x59/0x80
[  244.030230][ T7721]  do_syscall_64+0xcd/0x230
[  244.037246][ T7721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.122173][ T7746] netlink: 16 bytes leftover after parsing attributes in process `syz.0.400'.
[  245.136278][ T7746] tc_dump_action: action bad kind
[  248.007243][ T7766] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  248.076585][ T7766] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  248.176474][ T7766] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  248.199368][ T7766] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  248.215166][ T7779] netlink: 16 bytes leftover after parsing attributes in process `syz.3.407'.
[  248.240947][ T7766] page dumped because: unmovable page
[  248.272845][ T7779] tc_dump_action: action bad kind
[  248.279209][ T7766] page_owner tracks the page as allocated
[  248.298157][ T7779] FAULT_INJECTION: forcing a failure.
[  248.298157][ T7779] name failslab, interval 1, probability 0, space 0, times 0
[  248.346210][ T7779] CPU: 0 UID: 0 PID: 7779 Comm: syz.3.407 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  248.346263][ T7779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  248.346282][ T7779] Call Trace:
[  248.346292][ T7779]  <TASK>
[  248.346309][ T7779]  dump_stack_lvl+0x16c/0x1f0
[  248.346362][ T7779]  should_fail_ex+0x512/0x640
[  248.346418][ T7779]  should_failslab+0xc2/0x120
[  248.346459][ T7779]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  248.346499][ T7779]  ? skb_clone+0x190/0x3f0
[  248.346547][ T7779]  skb_clone+0x190/0x3f0
[  248.346590][ T7779]  netlink_deliver_tap+0xabd/0xd30
[  248.346644][ T7779]  netlink_dump+0xb6d/0xd00
[  248.346693][ T7779]  ? __pfx_netlink_dump+0x10/0x10
[  248.346732][ T7779]  ? __rhashtable_lookup.constprop.0+0x3a5/0x760
[  248.346776][ T7779]  ? __netlink_dump_start+0x150/0x990
[  248.346836][ T7779]  ? netlink_lookup+0x258/0x520
[  248.346876][ T7779]  ? __pfx_netlink_lookup+0x10/0x10
[  248.346942][ T7779]  __netlink_dump_start+0x6d6/0x990
[  248.346988][ T7779]  ? __pfx_tc_dump_action+0x10/0x10
[  248.347020][ T7779]  rtnetlink_rcv_msg+0xb3e/0xe90
[  248.347062][ T7779]  ? __pfx_tc_dump_action+0x10/0x10
[  248.347095][ T7779]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  248.347138][ T7779]  ? __pfx_rtnl_dumpit+0x10/0x10
[  248.347168][ T7779]  ? __pfx_tc_dump_action+0x10/0x10
[  248.347215][ T7779]  netlink_rcv_skb+0x16a/0x440
[  248.347263][ T7779]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  248.347310][ T7779]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  248.347381][ T7779]  ? netlink_deliver_tap+0x1ae/0xd30
[  248.347431][ T7779]  netlink_unicast+0x53d/0x7f0
[  248.347483][ T7779]  ? __pfx_netlink_unicast+0x10/0x10
[  248.347524][ T7779]  ? __lock_acquire+0xaa4/0x1ba0
[  248.347578][ T7779]  netlink_sendmsg+0x8d1/0xdd0
[  248.347632][ T7779]  ? __pfx_netlink_sendmsg+0x10/0x10
[  248.347696][ T7779]  ____sys_sendmsg+0xa95/0xc70
[  248.347749][ T7779]  ? copy_msghdr_from_user+0x10a/0x160
[  248.347789][ T7779]  ? __pfx_____sys_sendmsg+0x10/0x10
[  248.347861][ T7779]  ___sys_sendmsg+0x134/0x1d0
[  248.347904][ T7779]  ? __pfx____sys_sendmsg+0x10/0x10
[  248.348001][ T7779]  __sys_sendmsg+0x16d/0x220
[  248.348044][ T7779]  ? __pfx___sys_sendmsg+0x10/0x10
[  248.348099][ T7779]  ? rcu_is_watching+0x12/0xc0
[  248.348144][ T7779]  do_syscall_64+0xcd/0x230
[  248.348198][ T7779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.348230][ T7779] RIP: 0033:0x7f49e4d8e969
[  248.348264][ T7779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.348295][ T7779] RSP: 002b:00007f49e5bfc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  248.348325][ T7779] RAX: ffffffffffffffda RBX: 00007f49e4fb5fa0 RCX: 00007f49e4d8e969
[  248.348346][ T7779] RDX: 0000000000008040 RSI: 0000200000000ac0 RDI: 0000000000000003
[  248.348366][ T7779] RBP: 00007f49e5bfc090 R08: 0000000000000000 R09: 0000000000000000
[  248.348385][ T7779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  248.348404][ T7779] R13: 0000000000000000 R14: 00007f49e4fb5fa0 R15: 00007fffd6f07618
[  248.348449][ T7779]  </TASK>
[  248.655872][    C0] vkms_vblank_simulate: vblank timer overrun
[  248.866851][ T7766] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  248.892122][ T7766]  post_alloc_hook+0x181/0x1b0
[  248.902296][ T7766]  get_page_from_freelist+0x135c/0x3920
[  249.031627][ T7783] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  249.331706][ T7766]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  249.341708][ T7766]  alloc_pages_mpol+0x1fb/0x550
[  249.352905][ T7766]  alloc_pages_noprof+0x131/0x390
[  249.358419][ T7766]  __vmalloc_node_range_noprof+0x732/0x1540
[  249.364425][ T7766]  vmalloc_user_noprof+0x6b/0x90
[  249.369873][ T7766]  kcov_ioctl+0x4c/0x730
[  249.374220][ T7766]  __x64_sys_ioctl+0x190/0x200
[  249.379518][ T7766]  do_syscall_64+0xcd/0x230
[  249.384275][ T7766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.390664][ T7766] page last free pid 5819 tgid 5819 stack trace:
[  249.499545][ T7769] could not allocate digest TFM handle binfmt_misc
[  249.628041][ T7766]  free_unref_folios+0x999/0x1630
[  249.633182][ T7766]  folios_put_refs+0x56f/0x740
[  249.677168][ T7766]  free_pages_and_swap_cache+0x245/0x4a0
[  249.706214][ T7766]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  249.738105][ T7766]  tlb_finish_mmu+0x168/0x7b0
[  249.745775][ T7766]  vms_clear_ptes+0x55e/0x770
[  249.750738][ T7766]  vms_complete_munmap_vmas+0x1ca/0x970
[  249.771492][ T7766]  do_vmi_align_munmap+0x43b/0x7d0
[  249.820371][ T7766]  do_vmi_munmap+0x208/0x3e0
[  249.886213][ T7766]  __vm_munmap+0x19a/0x390
[  249.890705][ T7766]  __x64_sys_munmap+0x59/0x80
[  249.895544][ T7766]  do_syscall_64+0xcd/0x230
[  249.900615][ T7766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.805379][ T7809] netlink: 72 bytes leftover after parsing attributes in process `syz.3.414'.
[  251.197075][ T7811] ima: Unable to open file: /surit��R�y/integrity?iqa/policy (-2)
[  251.297093][ T7812] ima: policy update failed
[  251.336158][   T30] audit: type=1802 audit(6043033084.460:5): pid=7812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.415" res=0 errno=0
[  253.187386][ T7859] netlink: 'syz.0.425': attribute type 11 has an invalid length.
[  253.198137][ T7859] netlink: 'syz.0.425': attribute type 11 has an invalid length.
[  253.825268][ T7866] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  253.865926][ T7866] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  254.036200][ T7866] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  254.074850][ T7866] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  254.100020][ T7866] page dumped because: unmovable page
[  254.105477][ T7866] page_owner tracks the page as allocated
[  254.127013][ T7866] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  254.149221][ T7866]  post_alloc_hook+0x181/0x1b0
[  254.154109][ T7866]  get_page_from_freelist+0x135c/0x3920
[  254.197373][ T7866]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  254.203528][ T7866]  alloc_pages_mpol+0x1fb/0x550
[  254.210454][ T7866]  alloc_pages_noprof+0x131/0x390
[  254.215743][ T7866]  __vmalloc_node_range_noprof+0x732/0x1540
[  254.223690][ T7866]  vmalloc_user_noprof+0x6b/0x90
[  254.230598][ T7866]  kcov_ioctl+0x4c/0x730
[  254.234942][ T7866]  __x64_sys_ioctl+0x190/0x200
[  254.241700][ T7866]  do_syscall_64+0xcd/0x230
[  254.247908][ T7866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.254025][ T7866] page last free pid 5819 tgid 5819 stack trace:
[  254.261765][ T7866]  free_unref_folios+0x999/0x1630
[  254.461494][ T7871] could not allocate digest TFM handle binfmt_misc
[  254.536987][ T7866]  folios_put_refs+0x56f/0x740
[  254.541877][ T7866]  free_pages_and_swap_cache+0x245/0x4a0
[  254.827027][ T7866]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  254.833132][ T7866]  tlb_finish_mmu+0x168/0x7b0
[  254.849914][ T7866]  vms_clear_ptes+0x55e/0x770
[  254.854706][ T7866]  vms_complete_munmap_vmas+0x1ca/0x970
[  254.863290][ T7866]  do_vmi_align_munmap+0x43b/0x7d0
[  254.918416][ T7866]  do_vmi_munmap+0x208/0x3e0
[  254.923138][ T7866]  __vm_munmap+0x19a/0x390
[  254.927993][ T7866]  __x64_sys_munmap+0x59/0x80
[  254.932991][ T7866]  do_syscall_64+0xcd/0x230
[  254.937824][ T7866]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.428186][ T7925] netlink: 4 bytes leftover after parsing attributes in process `syz.2.435'.
[  259.466175][ T7925] openvswitch: netlink: IPv4 tunnel dst address is zero
[  259.665211][ T7927] netlink: 346 bytes leftover after parsing attributes in process `syz.3.436'.
[  260.024260][ T7936] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  260.506678][ T7930] FAULT_INJECTION: forcing a failure.
[  260.506678][ T7930] name fail_futex, interval 1, probability 0, space 0, times 0
[  260.572768][ T7930] CPU: 0 UID: 0 PID: 7930 Comm: syz.0.437 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  260.572813][ T7930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  260.572831][ T7930] Call Trace:
[  260.572842][ T7930]  <TASK>
[  260.572854][ T7930]  dump_stack_lvl+0x16c/0x1f0
[  260.572908][ T7930]  should_fail_ex+0x512/0x640
[  260.572965][ T7930]  get_futex_key+0x1c2/0x1000
[  260.573005][ T7930]  ? __pfx_get_futex_key+0x10/0x10
[  260.573043][ T7930]  ? preempt_schedule_thunk+0x16/0x30
[  260.573106][ T7930]  futex_wake+0xe7/0x4e0
[  260.573146][ T7930]  ? lockdep_hardirqs_on+0x7c/0x110
[  260.573198][ T7930]  ? __pfx_futex_wake+0x10/0x10
[  260.573245][ T7930]  ? do_futex+0xda/0x350
[  260.573282][ T7930]  ? __sanitizer_cov_trace_switch+0x40/0x90
[  260.573333][ T7930]  do_futex+0x1e3/0x350
[  260.573369][ T7930]  ? __pfx_do_futex+0x10/0x10
[  260.573402][ T7930]  ? __might_fault+0xe3/0x190
[  260.573453][ T7930]  mm_release+0x24e/0x300
[  260.573493][ T7930]  do_exit+0x898/0x2c30
[  260.573537][ T7930]  ? __pfx_try_to_wake_up+0x10/0x10
[  260.573596][ T7930]  ? __pfx_do_exit+0x10/0x10
[  260.573643][ T7930]  ? do_raw_spin_lock+0x12c/0x2b0
[  260.573710][ T7930]  ? find_held_lock+0x2b/0x80
[  260.573755][ T7930]  do_group_exit+0xd3/0x2a0
[  260.573804][ T7930]  get_signal+0x2673/0x26d0
[  260.573842][ T7930]  ? __might_fault+0x154/0x190
[  260.573893][ T7930]  ? __pfx_get_signal+0x10/0x10
[  260.573931][ T7930]  ? do_futex+0x122/0x350
[  260.573968][ T7930]  ? __pfx_do_futex+0x10/0x10
[  260.574009][ T7930]  arch_do_signal_or_restart+0x8f/0x7a0
[  260.574057][ T7930]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  260.574118][ T7930]  ? rcu_is_watching+0x12/0xc0
[  260.574158][ T7930]  syscall_exit_to_user_mode+0x150/0x2a0
[  260.574207][ T7930]  do_syscall_64+0xda/0x230
[  260.574258][ T7930]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.574291][ T7930] RIP: 0033:0x7f5ad198e969
[  260.574316][ T7930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.574348][ T7930] RSP: 002b:00007f5ad283c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  260.574378][ T7930] RAX: 0000000000000001 RBX: 00007f5ad1bb5fa8 RCX: 00007f5ad198e969
[  260.574398][ T7930] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5ad1bb5fac
[  260.574418][ T7930] RBP: 00007f5ad1bb5fa0 R08: 00007f5ad283d000 R09: 0000000000000000
[  260.574437][ T7930] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f5ad1bb5fac
[  260.574457][ T7930] R13: 0000000000000000 R14: 00007ffddbc193a0 R15: 00007ffddbc19488
[  260.574499][ T7930]  </TASK>
[  261.921739][ T7962] netlink: zone id is out of range
[  262.813810][ T7972] HfR: entered promiscuous mode
[  263.382666][ T7981] netlink: 16 bytes leftover after parsing attributes in process `syz.3.451'.
[  263.392354][ T7981] tc_dump_action: action bad kind
[  263.842380][ T7996] netlink: 8 bytes leftover after parsing attributes in process `syz.1.456'.
[  264.815153][ T8013] netlink: 16 bytes leftover after parsing attributes in process `syz.2.462'.
[  264.840297][ T8015] random: crng reseeded on system resumption
[  264.866608][ T8013] tc_dump_action: action bad kind
[  264.899005][ T8013] FAULT_INJECTION: forcing a failure.
[  264.899005][ T8013] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  264.951219][ T8013] CPU: 1 UID: 0 PID: 8013 Comm: syz.2.462 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  264.951273][ T8013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  264.951291][ T8013] Call Trace:
[  264.951302][ T8013]  <TASK>
[  264.951313][ T8013]  dump_stack_lvl+0x16c/0x1f0
[  264.951368][ T8013]  should_fail_ex+0x512/0x640
[  264.951424][ T8013]  _copy_to_user+0x32/0xd0
[  264.951460][ T8013]  simple_read_from_buffer+0xcb/0x170
[  264.951512][ T8013]  proc_fail_nth_read+0x197/0x270
[  264.951562][ T8013]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  264.951612][ T8013]  ? rw_verify_area+0xcf/0x680
[  264.951665][ T8013]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  264.951711][ T8013]  vfs_read+0x1de/0xc70
[  264.951746][ T8013]  ? __pfx___mutex_lock+0x10/0x10
[  264.951795][ T8013]  ? __pfx_vfs_read+0x10/0x10
[  264.951835][ T8013]  ? __fget_files+0x20e/0x3c0
[  264.951878][ T8013]  ksys_read+0x12a/0x240
[  264.951910][ T8013]  ? __pfx_ksys_read+0x10/0x10
[  264.951938][ T8013]  ? rcu_is_watching+0x12/0xc0
[  264.951980][ T8013]  do_syscall_64+0xcd/0x230
[  264.952032][ T8013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.952066][ T8013] RIP: 0033:0x7fb17c98d37c
[  264.952090][ T8013] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  264.952121][ T8013] RSP: 002b:00007fb17d8a3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  264.952151][ T8013] RAX: ffffffffffffffda RBX: 00007fb17cbb5fa0 RCX: 00007fb17c98d37c
[  264.952172][ T8013] RDX: 000000000000000f RSI: 00007fb17d8a30a0 RDI: 0000000000000004
[  264.952191][ T8013] RBP: 00007fb17d8a3090 R08: 0000000000000000 R09: 0000000000000000
[  264.952211][ T8013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  264.952242][ T8013] R13: 0000000000000000 R14: 00007fb17cbb5fa0 R15: 00007fffc0211378
[  264.952286][ T8013]  </TASK>
	

	
		
	
	

	
	
	
	

	
	
	

	
		
	
	
	
	
	
	


	
		
	

	
		
		


		


	
	


	
	

	
	
	
	

	
	



		

		
		





















	
	


	
				



	














	
		

	


	

	

		
	
		
	
	



			








	

	











	
	






	






	
	

		
	
	








	










		



	







	

	









	
	







	








		




		
		
		
		
	
	
	

	
	
	

	
	
	






	






	







		










	
		
	


		
		


	
	








		


	
	









		






	
	

	












		



syzkaller
syzkaller login: [  274.385930][ T8140] netlink: 28 bytes leftover after parsing attributes in process `syz.0.487'.
[  274.390608][ T8140] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  274.391912][ T8140] batman_adv: batadv0: Removing interface: batadv_slave_0
[  274.405266][ T8140] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  274.408902][ T8140] batman_adv: batadv0: Removing interface: batadv_slave_1
[  274.713975][ T8147] ALSA: mixer_oss: invalid OSS volume '0'
[  274.715407][ T8147] ALSA: mixer_oss: invalid OSS volume ''
[  275.765826][ T8162] HfR: entered promiscuous mode
[  275.771987][ T8135] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  276.033115][ T8171] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input20
[  276.252256][ T8179] netlink: 346 bytes leftover after parsing attributes in process `syz.2.495'.
[  276.305443][ T8176] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input21
[  276.627925][ T8182] netlink: 8 bytes leftover after parsing attributes in process `syz.1.497'.
[  276.802390][ T8187] netlink: 16 bytes leftover after parsing attributes in process `syz.1.499'.
[  276.804226][ T8187] tc_dump_action: action bad kind
[  277.022357][ T8190] netlink: 28 bytes leftover after parsing attributes in process `syz.1.500'.
[  277.024386][ T8190] FAULT_INJECTION: forcing a failure.
[  277.024386][ T8190] name fail_futex, interval 1, probability 0, space 0, times 0
[  277.026777][ T8190] CPU: 1 UID: 0 PID: 8190 Comm: syz.1.500 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  277.026824][ T8190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  277.026845][ T8190] Call Trace:
[  277.026856][ T8190]  <TASK>
[  277.026868][ T8190]  dump_stack_lvl+0x16c/0x1f0
[  277.026923][ T8190]  should_fail_ex+0x512/0x640
[  277.026982][ T8190]  get_futex_key+0x49e/0x1000
[  277.027018][ T8190]  ? blk_mq_flush_plug_list+0x75a/0x1c70
[  277.027072][ T8190]  ? __pfx_get_futex_key+0x10/0x10
[  277.027106][ T8190]  ? find_vma_prev+0xda/0x160
[  277.027162][ T8190]  ? __pfx_blk_mq_flush_plug_list+0x10/0x10
[  277.027219][ T8190]  futex_wake+0xe7/0x4e0
[  277.027270][ T8190]  ? __blk_flush_plug+0x2f3/0x4b0
[  277.027316][ T8190]  ? __pfx_futex_wake+0x10/0x10
[  277.027362][ T8190]  ? madvise_walk_vmas+0x238/0x2c0
[  277.027410][ T8190]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  277.027464][ T8190]  do_futex+0x1e3/0x350
[  277.027504][ T8190]  ? __pfx_do_futex+0x10/0x10
[  277.027543][ T8190]  ? find_held_lock+0x2b/0x80
[  277.027583][ T8190]  __x64_sys_futex+0x1e0/0x4c0
[  277.027623][ T8190]  ? up_write+0x1b2/0x520
[  277.027670][ T8190]  ? __pfx___x64_sys_futex+0x10/0x10
[  277.027711][ T8190]  ? madvise_unlock+0xc6/0x190
[  277.027765][ T8190]  do_syscall_64+0xcd/0x230
[  277.027819][ T8190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.027854][ T8190] RIP: 0033:0x7f171038e969
[  277.027880][ T8190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  277.027912][ T8190] RSP: 002b:00007f17111240e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  277.027945][ T8190] RAX: ffffffffffffffda RBX: 00007f17105b5fa8 RCX: 00007f171038e969
[  277.027967][ T8190] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f17105b5fac
[  277.027988][ T8190] RBP: 00007f17105b5fa0 R08: 00007f1711125000 R09: 0000000000000000
[  277.028009][ T8190] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f17105b5fac
[  277.028032][ T8190] R13: 0000000000000000 R14: 00007ffd4bae7490 R15: 00007ffd4bae7578
[  277.028072][ T8190]  </TASK>
[  277.078312][    C1] vkms_vblank_simulate: vblank timer overrun
[  277.964372][ T8199] FAULT_INJECTION: forcing a failure.
[  277.964372][ T8199] name failslab, interval 1, probability 0, space 0, times 0
[  277.976213][ T8199] CPU: 0 UID: 0 PID: 8199 Comm: syz.2.502 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  277.976259][ T8199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  277.976276][ T8199] Call Trace:
[  277.976288][ T8199]  <TASK>
[  277.976299][ T8199]  dump_stack_lvl+0x16c/0x1f0
[  277.976351][ T8199]  should_fail_ex+0x512/0x640
[  277.976399][ T8199]  ? fs_reclaim_acquire+0xae/0x150
[  277.976449][ T8199]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  277.976496][ T8199]  should_failslab+0xc2/0x120
[  277.976537][ T8199]  __kmalloc_noprof+0xd2/0x510
[  277.976587][ T8199]  tomoyo_realpath_from_path+0xc2/0x6e0
[  277.976648][ T8199]  tomoyo_check_open_permission+0x2ab/0x3c0
[  277.976694][ T8199]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  277.976782][ T8199]  ? do_raw_spin_lock+0x12c/0x2b0
[  277.976845][ T8199]  tomoyo_file_open+0x6b/0x90
[  277.976880][ T8199]  security_file_open+0x84/0x1e0
[  277.976925][ T8199]  do_dentry_open+0x596/0x1c10
[  277.976971][ T8199]  vfs_open+0x82/0x3f0
[  277.977019][ T8199]  path_openat+0x1e5e/0x2d40
[  277.977068][ T8199]  ? __pfx_path_openat+0x10/0x10
[  277.977113][ T8199]  do_filp_open+0x20b/0x470
[  277.977147][ T8199]  ? __pfx_do_filp_open+0x10/0x10
[  277.977224][ T8199]  ? alloc_fd+0x471/0x7d0
[  277.977286][ T8199]  do_sys_openat2+0x11b/0x1d0
[  277.977329][ T8199]  ? __pfx_do_sys_openat2+0x10/0x10
[  277.977386][ T8199]  __x64_sys_openat+0x174/0x210
[  277.977431][ T8199]  ? __pfx___x64_sys_openat+0x10/0x10
[  277.977478][ T8199]  ? rcu_is_watching+0x12/0xc0
[  277.977521][ T8199]  do_syscall_64+0xcd/0x230
[  277.977572][ T8199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.977604][ T8199] RIP: 0033:0x7fb17c98e969
[  277.977629][ T8199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  277.977660][ T8199] RSP: 002b:00007fb17d882038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  277.977690][ T8199] RAX: ffffffffffffffda RBX: 00007fb17cbb6080 RCX: 00007fb17c98e969
[  277.977711][ T8199] RDX: 0000000000008001 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  277.977731][ T8199] RBP: 00007fb17ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  277.977749][ T8199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  277.977767][ T8199] R13: 0000000000000000 R14: 00007fb17cbb6080 R15: 00007fffc0211378
[  277.977808][ T8199]  </TASK>
[  277.977820][ T8199] ERROR: Out of memory at tomoyo_realpath_from_path.
[  278.692010][   T30] audit: type=1800 audit(6043033111.820:6): pid=8222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.502" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0
[  281.083553][ T8258] netlink: 'syz.0.514': attribute type 11 has an invalid length.
[  281.088993][ T8258] netlink: 'syz.0.514': attribute type 11 has an invalid length.
[  281.636732][ T8259] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  281.650691][ T8259] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  281.664294][ T8259] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  281.674586][ T8259] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  281.683725][ T8259] page dumped because: unmovable page
[  281.696089][ T8259] page_owner tracks the page as allocated
[  281.706441][ T8259] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  281.733323][    C1] vkms_vblank_simulate: vblank timer overrun
[  281.746109][ T8259]  post_alloc_hook+0x181/0x1b0
[  281.766214][ T8259]  get_page_from_freelist+0x135c/0x3920
[  281.773031][ T8259]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  281.782319][ T8259]  alloc_pages_mpol+0x1fb/0x550
[  281.789215][ T8259]  alloc_pages_noprof+0x131/0x390
[  281.796814][ T8259]  __vmalloc_node_range_noprof+0x732/0x1540
[  281.805123][ T8259]  vmalloc_user_noprof+0x6b/0x90
[  281.811856][ T8259]  kcov_ioctl+0x4c/0x730
[  281.817026][ T8259]  __x64_sys_ioctl+0x190/0x200
[  281.823123][ T8259]  do_syscall_64+0xcd/0x230
[  281.829168][ T8259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.836509][ T8259] page last free pid 5819 tgid 5819 stack trace:
[  281.845225][ T8259]  free_unref_folios+0x999/0x1630
[  282.071922][ T8259]  folios_put_refs+0x56f/0x740
[  282.110866][ T8259]  free_pages_and_swap_cache+0x245/0x4a0
[  282.144969][ T8259]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  282.196688][ T8259]  tlb_finish_mmu+0x168/0x7b0
[  282.237092][ T8259]  vms_clear_ptes+0x55e/0x770
[  282.260788][ T8259]  vms_complete_munmap_vmas+0x1ca/0x970
[  282.274791][ T8259]  do_vmi_align_munmap+0x43b/0x7d0
[  282.323687][ T8259]  do_vmi_munmap+0x208/0x3e0
[  282.330435][ T8259]  __vm_munmap+0x19a/0x390
[  282.335154][ T8259]  __x64_sys_munmap+0x59/0x80
[  282.556277][ T8259]  do_syscall_64+0xcd/0x230
[  282.571646][ T8259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.739010][ T8253] could not allocate digest TFM handle binfmt_misc
[  288.021915][ T8335] netlink: 'syz.3.531': attribute type 11 has an invalid length.
[  288.029994][ T8335] netlink: 'syz.3.531': attribute type 11 has an invalid length.
[  288.411344][ T8333] page: refcount:3 mapcount:2 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  288.476257][ T8333] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  288.546237][ T8333] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  288.576859][ T8333] raw: 00000007f6bd768e 0000000000000000 0000000300000001 0000000000000000
[  288.642479][ T8333] page dumped because: unmovable page
[  288.700850][ T8333] page_owner tracks the page as allocated
[  288.788691][ T8336] could not allocate digest TFM handle binfmt_misc
[  288.813803][ T8333] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  288.845725][ T8333]  post_alloc_hook+0x181/0x1b0
[  288.851666][ T8333]  get_page_from_freelist+0x135c/0x3920
[  288.859438][ T8333]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  288.865442][ T8333]  alloc_pages_mpol+0x1fb/0x550
[  288.871491][ T8333]  alloc_pages_noprof+0x131/0x390
[  288.876832][ T8333]  __vmalloc_node_range_noprof+0x732/0x1540
[  288.882928][ T8333]  vmalloc_user_noprof+0x6b/0x90
[  288.916897][ T8333]  kcov_ioctl+0x4c/0x730
[  288.922935][ T8333]  __x64_sys_ioctl+0x190/0x200
[  288.970961][ T8345] netlink: 346 bytes leftover after parsing attributes in process `syz.1.533'.
[  288.995820][ T8333]  do_syscall_64+0xcd/0x230
[  289.000620][ T8333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.009424][ T8333] page last free pid 5819 tgid 5819 stack trace:
[  289.015956][ T8333]  free_unref_folios+0x999/0x1630
[  289.028822][ T8333]  folios_put_refs+0x56f/0x740
[  289.033680][ T8333]  free_pages_and_swap_cache+0x245/0x4a0
[  289.047400][ T8333]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  289.096206][ T8333]  tlb_finish_mmu+0x168/0x7b0
[  289.100969][ T8333]  vms_clear_ptes+0x55e/0x770
[  289.105696][ T8333]  vms_complete_munmap_vmas+0x1ca/0x970
[  289.152494][ T8333]  do_vmi_align_munmap+0x43b/0x7d0
[  289.160907][ T8333]  do_vmi_munmap+0x208/0x3e0
[  289.175970][ T8333]  __vm_munmap+0x19a/0x390
[  289.187132][ T8333]  __x64_sys_munmap+0x59/0x80
[  289.206156][ T8333]  do_syscall_64+0xcd/0x230
[  289.212134][ T8333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.917539][ T8359] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  290.049066][ T8360] FAULT_INJECTION: forcing a failure.
[  290.049066][ T8360] name failslab, interval 1, probability 0, space 0, times 0
[  290.115179][ T8360] CPU: 1 UID: 0 PID: 8360 Comm: syz.3.538 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  290.115229][ T8360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  290.115249][ T8360] Call Trace:
[  290.115261][ T8360]  <TASK>
[  290.115274][ T8360]  dump_stack_lvl+0x16c/0x1f0
[  290.115332][ T8360]  should_fail_ex+0x512/0x640
[  290.115385][ T8360]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  290.115426][ T8360]  should_failslab+0xc2/0x120
[  290.115470][ T8360]  __kmalloc_cache_noprof+0x6a/0x3e0
[  290.115511][ T8360]  ? crtc_or_fake_commit.part.0+0x7f/0x110
[  290.115559][ T8360]  crtc_or_fake_commit.part.0+0x7f/0x110
[  290.115598][ T8360]  drm_atomic_helper_setup_commit+0x1066/0x15d0
[  290.115672][ T8360]  drm_atomic_helper_commit+0xa9/0x380
[  290.115716][ T8360]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  290.115761][ T8360]  drm_atomic_commit+0x234/0x300
[  290.115813][ T8360]  ? __pfx_drm_atomic_commit+0x10/0x10
[  290.115862][ T8360]  ? __pfx___drm_printfn_info+0x10/0x10
[  290.115927][ T8360]  ? drm_client_rotation+0x4d9/0x6a0
[  290.115979][ T8360]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[  290.116038][ T8360]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  290.116136][ T8360]  drm_client_modeset_commit_locked+0x14d/0x580
[  290.116192][ T8360]  drm_client_modeset_commit+0x4f/0x80
[  290.116240][ T8360]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[  290.116286][ T8360]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  290.116340][ T8360]  drm_fbdev_client_restore+0x2c/0x40
[  290.116394][ T8360]  drm_client_dev_restore+0x1f6/0x2a0
[  290.116448][ T8360]  drm_release+0x2c4/0x360
[  290.116495][ T8360]  ? __pfx_drm_release+0x10/0x10
[  290.116535][ T8360]  __fput+0x3ff/0xb70
[  290.116591][ T8360]  task_work_run+0x150/0x240
[  290.116657][ T8360]  ? __pfx_task_work_run+0x10/0x10
[  290.116711][ T8360]  ? __pfx___do_sys_close_range+0x10/0x10
[  290.116746][ T8360]  ? rcu_is_watching+0x12/0xc0
[  290.116790][ T8360]  syscall_exit_to_user_mode+0x27b/0x2a0
[  290.116846][ T8360]  do_syscall_64+0xda/0x230
[  290.116903][ T8360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.116937][ T8360] RIP: 0033:0x7f49e4d8e969
[  290.116966][ T8360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.116999][ T8360] RSP: 002b:00007f49e5bfc038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  290.117031][ T8360] RAX: 0000000000000000 RBX: 00007f49e4fb5fa0 RCX: 00007f49e4d8e969
[  290.117052][ T8360] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  290.117072][ T8360] RBP: 00007f49e4e10ab1 R08: 0000000000000000 R09: 0000000000000000
[  290.117095][ T8360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  290.117115][ T8360] R13: 0000000000000000 R14: 00007f49e4fb5fa0 R15: 00007fffd6f07618
[  290.117163][ T8360]  </TASK>
[  290.737761][ T8347] netlink: 28 bytes leftover after parsing attributes in process `syz.0.534'.
[  291.005561][ T8367] FAULT_INJECTION: forcing a failure.
[  291.005561][ T8367] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  291.031894][ T8367] CPU: 1 UID: 0 PID: 8367 Comm: syz.3.541 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  291.031939][ T8367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  291.031958][ T8367] Call Trace:
[  291.031969][ T8367]  <TASK>
[  291.031982][ T8367]  dump_stack_lvl+0x16c/0x1f0
[  291.032036][ T8367]  should_fail_ex+0x512/0x640
[  291.032094][ T8367]  should_fail_alloc_page+0xe7/0x130
[  291.032139][ T8367]  prepare_alloc_pages+0x3c2/0x610
[  291.032201][ T8367]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  291.032244][ T8367]  ? is_bpf_text_address+0x94/0x1a0
[  291.032291][ T8367]  ? __lock_acquire+0xaa4/0x1ba0
[  291.032345][ T8367]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  291.032390][ T8367]  ? do_raw_spin_lock+0x12c/0x2b0
[  291.032455][ T8367]  ? __lock_acquire+0x5ca/0x1ba0
[  291.032497][ T8367]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  291.032544][ T8367]  ? policy_nodemask+0xea/0x4e0
[  291.032590][ T8367]  alloc_pages_mpol+0x1fb/0x550
[  291.032633][ T8367]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  291.032676][ T8367]  ? find_held_lock+0x2b/0x80
[  291.032709][ T8367]  ? __free_frozen_pages+0x72a/0xff0
[  291.032747][ T8367]  alloc_pages_noprof+0x131/0x390
[  291.032792][ T8367]  pte_alloc_one+0x19/0x380
[  291.032840][ T8367]  __do_fault+0x320/0x490
[  291.032889][ T8367]  do_pte_missing+0x1031/0x3fb0
[  291.032924][ T8367]  ? mtree_range_walk+0x718/0xc00
[  291.032974][ T8367]  ? find_held_lock+0x2b/0x80
[  291.033009][ T8367]  __handle_mm_fault+0x103d/0x2a40
[  291.033059][ T8367]  ? __pfx___handle_mm_fault+0x10/0x10
[  291.033121][ T8367]  ? find_vma+0xbf/0x140
[  291.033168][ T8367]  ? __pfx_find_vma+0x10/0x10
[  291.033222][ T8367]  handle_mm_fault+0x3fe/0xad0
[  291.033265][ T8367]  do_user_addr_fault+0x7a6/0x1370
[  291.033305][ T8367]  ? rcu_is_watching+0x12/0xc0
[  291.033341][ T8367]  exc_page_fault+0x5c/0xc0
[  291.033390][ T8367]  asm_exc_page_fault+0x26/0x30
[  291.033423][ T8367] RIP: 0010:__get_user_nocheck_4+0x6/0x20
[  291.033466][ T8367] Code: 01 ca e9 cd 01 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 cb 0f ae e8 <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00
[  291.033497][ T8367] RSP: 0018:ffffc9000377fc78 EFLAGS: 00050216
[  291.033524][ T8367] RAX: 0000000000000024 RBX: 0000000000000024 RCX: ffffffff850eb1ed
[  291.033544][ T8367] RDX: ffff8880358f8000 RSI: ffffffff850eb1c2 RDI: 0000000000000005
[  291.033565][ T8367] RBP: ffff8880226d2000 R08: 0000000000000005 R09: 0000000000000003
[  291.033584][ T8367] R10: 00000000000000dc R11: 0000000000000000 R12: 0000000000000100
[  291.033604][ T8367] R13: 0000000000000024 R14: 00000000000000dc R15: ffff8880606a2578
[  291.033637][ T8367]  ? proc_bus_pci_write+0x39d/0x4c0
[  291.033670][ T8367]  ? proc_bus_pci_write+0x372/0x4c0
[  291.033710][ T8367]  proc_bus_pci_write+0x37d/0x4c0
[  291.033748][ T8367]  ? __pfx_proc_bus_pci_write+0x10/0x10
[  291.033781][ T8367]  proc_reg_write+0x23d/0x330
[  291.033828][ T8367]  vfs_write+0x25c/0x1180
[  291.033860][ T8367]  ? __pfx_proc_reg_write+0x10/0x10
[  291.033900][ T8367]  ? __pfx___mutex_lock+0x10/0x10
[  291.033949][ T8367]  ? __pfx_vfs_write+0x10/0x10
[  291.033995][ T8367]  ? __fget_files+0x20e/0x3c0
[  291.034037][ T8367]  ksys_write+0x12a/0x240
[  291.034069][ T8367]  ? __pfx_ksys_write+0x10/0x10
[  291.034098][ T8367]  ? rcu_is_watching+0x12/0xc0
[  291.034143][ T8367]  do_syscall_64+0xcd/0x230
[  291.034197][ T8367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.034231][ T8367] RIP: 0033:0x7f49e4d8e969
[  291.034257][ T8367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.034287][ T8367] RSP: 002b:00007f49e5bfc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  291.034315][ T8367] RAX: ffffffffffffffda RBX: 00007f49e4fb5fa0 RCX: 00007f49e4d8e969
[  291.034338][ T8367] RDX: 0000000100000001 RSI: 0000000000000000 RDI: 0000000000000003
[  291.034357][ T8367] RBP: 00007f49e5bfc090 R08: 0000000000000000 R09: 0000000000000000
[  291.034376][ T8367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  291.034396][ T8367] R13: 0000000000000000 R14: 00007f49e4fb5fa0 R15: 00007fffd6f07618
[  291.034440][ T8367]  </TASK>
[  291.480398][ T8367] input: jJǸ-� as /devices/virtual/input/input22
[  291.748486][ T8375] netlink: 'syz.0.544': attribute type 11 has an invalid length.
[  291.756454][ T8375] netlink: 'syz.0.544': attribute type 11 has an invalid length.
[  292.325021][ T8389] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  292.413947][ T8389] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  292.424665][ T8389] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  292.448892][ T8389] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  292.458043][ T8389] page dumped because: unmovable page
[  292.463496][ T8389] page_owner tracks the page as allocated
[  292.616076][ T8389] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  292.641406][ T8389]  post_alloc_hook+0x181/0x1b0
[  292.651704][ T8389]  get_page_from_freelist+0x135c/0x3920
[  292.658509][ T8389]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  292.703616][ T8389]  alloc_pages_mpol+0x1fb/0x550
[  292.716085][ T8389]  alloc_pages_noprof+0x131/0x390
[  292.721327][ T8389]  __vmalloc_node_range_noprof+0x732/0x1540
[  292.782160][ T8393] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  292.830797][ T8389]  vmalloc_user_noprof+0x6b/0x90
[  292.835937][ T8389]  kcov_ioctl+0x4c/0x730
[  292.928936][ T8389]  __x64_sys_ioctl+0x190/0x200
[  292.971870][ T8389]  do_syscall_64+0xcd/0x230
[  292.981997][ T8389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.997327][ T8389] page last free pid 5819 tgid 5819 stack trace:
[  293.014137][ T8389]  free_unref_folios+0x999/0x1630
[  293.019481][ T8389]  folios_put_refs+0x56f/0x740
[  293.024911][ T8389]  free_pages_and_swap_cache+0x245/0x4a0
[  293.035029][ T8389]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  293.056360][ T8389]  tlb_finish_mmu+0x168/0x7b0
[  293.061148][ T8389]  vms_clear_ptes+0x55e/0x770
[  293.065902][ T8389]  vms_complete_munmap_vmas+0x1ca/0x970
[  293.072054][ T8389]  do_vmi_align_munmap+0x43b/0x7d0
[  293.146313][ T8389]  do_vmi_munmap+0x208/0x3e0
[  293.151039][ T8389]  __vm_munmap+0x19a/0x390
[  293.206444][ T8389]  __x64_sys_munmap+0x59/0x80
[  293.220986][ T8389]  do_syscall_64+0xcd/0x230
[  293.249140][ T8389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.931360][ T8371] could not allocate digest TFM handle binfmt_misc
[  294.448945][ T8432] FAULT_INJECTION: forcing a failure.
[  294.448945][ T8432] name failslab, interval 1, probability 0, space 0, times 0
[  294.464596][ T8432] CPU: 1 UID: 0 PID: 8432 Comm: syz.3.555 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  294.464637][ T8432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  294.464656][ T8432] Call Trace:
[  294.464666][ T8432]  <TASK>
[  294.464679][ T8432]  dump_stack_lvl+0x16c/0x1f0
[  294.464733][ T8432]  should_fail_ex+0x512/0x640
[  294.464782][ T8432]  ? __kvmalloc_node_noprof+0x122/0x600
[  294.464823][ T8432]  should_failslab+0xc2/0x120
[  294.464864][ T8432]  __kvmalloc_node_noprof+0x135/0x600
[  294.464903][ T8432]  ? file_tty_write.constprop.0+0x6ed/0x9b0
[  294.464956][ T8432]  ? file_tty_write.constprop.0+0x6ed/0x9b0
[  294.464999][ T8432]  file_tty_write.constprop.0+0x6ed/0x9b0
[  294.465049][ T8432]  ? rw_verify_area+0xcf/0x680
[  294.465105][ T8432]  vfs_write+0x5bd/0x1180
[  294.465139][ T8432]  ? __pfx_tty_write+0x10/0x10
[  294.465193][ T8432]  ? __pfx_vfs_write+0x10/0x10
[  294.465222][ T8432]  ? find_held_lock+0x2b/0x80
[  294.465284][ T8432]  ksys_write+0x12a/0x240
[  294.465317][ T8432]  ? __pfx_ksys_write+0x10/0x10
[  294.465347][ T8432]  ? rcu_is_watching+0x12/0xc0
[  294.465390][ T8432]  do_syscall_64+0xcd/0x230
[  294.465444][ T8432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.465486][ T8432] RIP: 0033:0x7f49e4d8e969
[  294.465512][ T8432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.465544][ T8432] RSP: 002b:00007f49e5bdb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  294.465572][ T8432] RAX: ffffffffffffffda RBX: 00007f49e4fb6080 RCX: 00007f49e4d8e969
[  294.465593][ T8432] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  294.465611][ T8432] RBP: 00007f49e5bdb090 R08: 0000000000000000 R09: 0000000000000000
[  294.465630][ T8432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  294.465650][ T8432] R13: 0000000000000000 R14: 00007f49e4fb6080 R15: 00007fffd6f07618
[  294.465693][ T8432]  </TASK>
[  294.974928][ T8437] Console: switching to colour VGA+ 80x25
[  295.162244][ T8444] netlink: 16 bytes leftover after parsing attributes in process `syz.1.558'.
[  295.181743][ T8444] tc_dump_action: action bad kind
[  297.380993][ T8479] netlink: 222 bytes leftover after parsing attributes in process `syz.3.566'.
[  297.864896][ T8489] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  298.470503][ T8498] netlink: 16 bytes leftover after parsing attributes in process `syz.1.570'.
[  298.529339][ T8500] capability: warning: `syz.0.571' uses 32-bit capabilities (legacy support in use)
[  298.598697][ T8502] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input23
[  298.736532][ T8504] netlink: 4 bytes leftover after parsing attributes in process `syz.3.572'.
[  298.765866][ T8504] openvswitch: netlink: IPv4 tunnel dst address is zero
[  299.033480][ T8500] netlink: 12 bytes leftover after parsing attributes in process `syz.0.571'.
[  299.092207][ T8500] openvswitch: HfR: Dropping previously announced user features
[  300.058325][ T8518] usbip-vudc usbip-vudc.0: gadget not bound
[  300.764936][ T8547] ACPI: Can not change Invalid GPE/Fixed Event status
[  300.820635][ T8547] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  302.550671][ T8569] FAULT_INJECTION: forcing a failure.
[  302.550671][ T8569] name failslab, interval 1, probability 0, space 0, times 0
[  302.565176][ T8569] CPU: 1 UID: 0 PID: 8569 Comm: syz.3.586 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  302.565221][ T8569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  302.565239][ T8569] Call Trace:
[  302.565250][ T8569]  <TASK>
[  302.565262][ T8569]  dump_stack_lvl+0x16c/0x1f0
[  302.565315][ T8569]  should_fail_ex+0x512/0x640
[  302.565363][ T8569]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  302.565405][ T8569]  should_failslab+0xc2/0x120
[  302.565447][ T8569]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  302.565491][ T8569]  ? __pfx_acct_collect+0x10/0x10
[  302.565536][ T8569]  ? taskstats_exit+0x654/0xbe0
[  302.565586][ T8569]  taskstats_exit+0x654/0xbe0
[  302.565633][ T8569]  ? __pfx_taskstats_exit+0x10/0x10
[  302.565687][ T8569]  do_exit+0x85f/0x2c30
[  302.565731][ T8569]  ? __pfx_futex_wake_mark+0x10/0x10
[  302.565783][ T8569]  ? __pfx_do_exit+0x10/0x10
[  302.565829][ T8569]  ? do_raw_spin_lock+0x12c/0x2b0
[  302.565878][ T8569]  ? find_held_lock+0x2b/0x80
[  302.565917][ T8569]  do_group_exit+0xd3/0x2a0
[  302.565965][ T8569]  get_signal+0x2673/0x26d0
[  302.566021][ T8569]  ? __pfx_get_signal+0x10/0x10
[  302.566057][ T8569]  ? do_futex+0x122/0x350
[  302.566092][ T8569]  ? __pfx_do_futex+0x10/0x10
[  302.566132][ T8569]  arch_do_signal_or_restart+0x8f/0x7a0
[  302.566182][ T8569]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  302.566240][ T8569]  ? rcu_is_watching+0x12/0xc0
[  302.566281][ T8569]  syscall_exit_to_user_mode+0x150/0x2a0
[  302.566334][ T8569]  do_syscall_64+0xda/0x230
[  302.566387][ T8569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.566420][ T8569] RIP: 0033:0x7f49e4d8e969
[  302.566445][ T8569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.566476][ T8569] RSP: 002b:00007f49e5bfc0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  302.566512][ T8569] RAX: fffffffffffffe00 RBX: 00007f49e4fb5fa8 RCX: 00007f49e4d8e969
[  302.566533][ T8569] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f49e4fb5fa8
[  302.566553][ T8569] RBP: 00007f49e4fb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  302.566572][ T8569] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f49e4fb5fac
[  302.566592][ T8569] R13: 0000000000000000 R14: 00007fffd6f07530 R15: 00007fffd6f07618
[  302.566633][ T8569]  </TASK>
[  302.794350][    C1] vkms_vblank_simulate: vblank timer overrun
[  303.152147][ T8575] input: jJǸ-� as /devices/virtual/input/input25
[  303.675806][ T8595] netlink: 330 bytes leftover after parsing attributes in process `syz.1.592'.
[  303.820932][ T8588] FAULT_INJECTION: forcing a failure.
[  303.820932][ T8588] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  303.902896][ T8588] CPU: 0 UID: 0 PID: 8588 Comm: syz.2.591 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  303.902938][ T8588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  303.902969][ T8588] Call Trace:
[  303.902980][ T8588]  <TASK>
[  303.902991][ T8588]  dump_stack_lvl+0x16c/0x1f0
[  303.903041][ T8588]  should_fail_ex+0x512/0x640
[  303.903096][ T8588]  should_fail_alloc_page+0xe7/0x130
[  303.903135][ T8588]  prepare_alloc_pages+0x3c2/0x610
[  303.903203][ T8588]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  303.903246][ T8588]  ? is_bpf_text_address+0x94/0x1a0
[  303.903292][ T8588]  ? __lock_acquire+0xaa4/0x1ba0
[  303.903346][ T8588]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  303.903391][ T8588]  ? do_raw_spin_lock+0x12c/0x2b0
[  303.903458][ T8588]  ? __lock_acquire+0x5ca/0x1ba0
[  303.903502][ T8588]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  303.903552][ T8588]  ? policy_nodemask+0xea/0x4e0
[  303.903598][ T8588]  alloc_pages_mpol+0x1fb/0x550
[  303.903640][ T8588]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  303.903680][ T8588]  ? find_held_lock+0x2b/0x80
[  303.903714][ T8588]  ? __free_frozen_pages+0x72a/0xff0
[  303.903751][ T8588]  alloc_pages_noprof+0x131/0x390
[  303.903792][ T8588]  pte_alloc_one+0x19/0x380
[  303.903832][ T8588]  __do_fault+0x320/0x490
[  303.903879][ T8588]  do_pte_missing+0x1031/0x3fb0
[  303.903915][ T8588]  ? mtree_range_walk+0x718/0xc00
[  303.903962][ T8588]  ? find_held_lock+0x2b/0x80
[  303.903995][ T8588]  __handle_mm_fault+0x103d/0x2a40
[  303.904042][ T8588]  ? __pfx___handle_mm_fault+0x10/0x10
[  303.904102][ T8588]  ? find_vma+0xbf/0x140
[  303.904147][ T8588]  ? __pfx_find_vma+0x10/0x10
[  303.904204][ T8588]  handle_mm_fault+0x3fe/0xad0
[  303.904245][ T8588]  do_user_addr_fault+0x7a6/0x1370
[  303.904281][ T8588]  ? rcu_is_watching+0x12/0xc0
[  303.904316][ T8588]  exc_page_fault+0x5c/0xc0
[  303.904364][ T8588]  asm_exc_page_fault+0x26/0x30
[  303.904396][ T8588] RIP: 0010:__get_user_nocheck_4+0x6/0x20
[  303.904439][ T8588] Code: 01 ca e9 cd 01 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 cb 0f ae e8 <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 00
[  303.904469][ T8588] RSP: 0018:ffffc90002fdfc78 EFLAGS: 00050216
[  303.904495][ T8588] RAX: 0000000000000028 RBX: 0000000000000028 RCX: ffffffff850eb1ed
[  303.904515][ T8588] RDX: ffff888062cd5a00 RSI: ffffffff850eb1c2 RDI: 0000000000000005
[  303.904535][ T8588] RBP: ffff8880226d2000 R08: 0000000000000005 R09: 0000000000000003
[  303.904555][ T8588] R10: 00000000000000d8 R11: 0000000000000000 R12: 0000000000000100
[  303.904573][ T8588] R13: 0000000000000028 R14: 00000000000000d8 R15: ffff88807ab5aac8
[  303.904605][ T8588]  ? proc_bus_pci_write+0x39d/0x4c0
[  303.904636][ T8588]  ? proc_bus_pci_write+0x372/0x4c0
[  303.904675][ T8588]  proc_bus_pci_write+0x37d/0x4c0
[  303.904715][ T8588]  ? __pfx_proc_bus_pci_write+0x10/0x10
[  303.904749][ T8588]  proc_reg_write+0x23d/0x330
[  303.904789][ T8588]  vfs_write+0x25c/0x1180
[  303.904819][ T8588]  ? __pfx_proc_reg_write+0x10/0x10
[  303.904859][ T8588]  ? __pfx___mutex_lock+0x10/0x10
[  303.904909][ T8588]  ? __pfx_vfs_write+0x10/0x10
[  303.904954][ T8588]  ? __fget_files+0x20e/0x3c0
[  303.904999][ T8588]  ksys_write+0x12a/0x240
[  303.905031][ T8588]  ? __pfx_ksys_write+0x10/0x10
[  303.905060][ T8588]  ? rcu_is_watching+0x12/0xc0
[  303.905105][ T8588]  do_syscall_64+0xcd/0x230
[  303.905157][ T8588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.905198][ T8588] RIP: 0033:0x7fb17c98e969
[  303.905223][ T8588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  303.905253][ T8588] RSP: 002b:00007fb17d8a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  303.905282][ T8588] RAX: ffffffffffffffda RBX: 00007fb17cbb5fa0 RCX: 00007fb17c98e969
[  303.905302][ T8588] RDX: 0000000100000001 RSI: 0000000000000000 RDI: 0000000000000003
[  303.905322][ T8588] RBP: 00007fb17d8a3090 R08: 0000000000000000 R09: 0000000000000000
[  303.905342][ T8588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  303.905361][ T8588] R13: 0000000000000000 R14: 00007fb17cbb5fa0 R15: 00007fffc0211378
[  303.905405][ T8588]  </TASK>
[  303.912724][ T8596] input: jJǸ-� as /devices/virtual/input/input26
[  304.122039][ T8599] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  304.516687][ T8607] FAULT_INJECTION: forcing a failure.
[  304.516687][ T8607] name failslab, interval 1, probability 0, space 0, times 0
[  304.534915][ T8607] CPU: 0 UID: 0 PID: 8607 Comm: syz.2.595 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  304.534964][ T8607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  304.534984][ T8607] Call Trace:
[  304.534996][ T8607]  <TASK>
[  304.535010][ T8607]  dump_stack_lvl+0x16c/0x1f0
[  304.535077][ T8607]  should_fail_ex+0x512/0x640
[  304.535128][ T8607]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  304.535174][ T8607]  should_failslab+0xc2/0x120
[  304.535216][ T8607]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  304.535256][ T8607]  ? __kernfs_new_node+0xd2/0x8a0
[  304.535298][ T8607]  __kernfs_new_node+0xd2/0x8a0
[  304.535335][ T8607]  ? __pfx___kernfs_new_node+0x10/0x10
[  304.535379][ T8607]  ? find_held_lock+0x2b/0x80
[  304.535415][ T8607]  ? kernfs_root+0xee/0x2a0
[  304.535457][ T8607]  kernfs_new_node+0x13c/0x1e0
[  304.535505][ T8607]  __kernfs_create_file+0x53/0x350
[  304.535559][ T8607]  sysfs_add_file_mode_ns+0x207/0x3c0
[  304.535624][ T8607]  internal_create_group+0x578/0xf30
[  304.535670][ T8607]  ? __pfx_internal_create_group+0x10/0x10
[  304.535713][ T8607]  ? kernfs_create_link+0x1bd/0x240
[  304.535768][ T8607]  internal_create_groups+0x9d/0x150
[  304.535807][ T8607]  device_add+0x6d1/0x1a70
[  304.535860][ T8607]  ? __pfx_device_add+0x10/0x10
[  304.535906][ T8607]  ? lockdep_init_map_type+0x5c/0x280
[  304.535949][ T8607]  ? __init_waitqueue_head+0xca/0x150
[  304.535994][ T8607]  netdev_register_kobject+0x182/0x3a0
[  304.536055][ T8607]  register_netdevice+0x13dc/0x2270
[  304.536109][ T8607]  ? __pfx_register_netdevice+0x10/0x10
[  304.536169][ T8607]  internal_dev_create+0x2d3/0x520
[  304.536210][ T8607]  ovs_vport_add+0x144/0x4d0
[  304.536246][ T8607]  new_vport+0x16/0x1d0
[  304.536290][ T8607]  ovs_dp_cmd_new+0x6ba/0xe60
[  304.536369][ T8607]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  304.536429][ T8607]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  304.536485][ T8607]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  304.536551][ T8607]  genl_family_rcv_msg_doit+0x206/0x2f0
[  304.536605][ T8607]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  304.536657][ T8607]  ? trace_cap_capable+0x18d/0x200
[  304.536703][ T8607]  ? bpf_lsm_capable+0x9/0x10
[  304.536740][ T8607]  ? security_capable+0x7e/0x260
[  304.536778][ T8607]  ? ns_capable+0xd7/0x110
[  304.536820][ T8607]  genl_rcv_msg+0x55c/0x800
[  304.536877][ T8607]  ? __pfx_genl_rcv_msg+0x10/0x10
[  304.536929][ T8607]  ? __pfx___dev_queue_xmit+0x10/0x10
[  304.536964][ T8607]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  304.537015][ T8607]  ? __lock_acquire+0xaa4/0x1ba0
[  304.537077][ T8607]  netlink_rcv_skb+0x16a/0x440
[  304.537120][ T8607]  ? __pfx_genl_rcv_msg+0x10/0x10
[  304.537175][ T8607]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  304.537245][ T8607]  ? __pfx_down_read+0x10/0x10
[  304.537280][ T8607]  ? netlink_deliver_tap+0x1ae/0xd30
[  304.537331][ T8607]  genl_rcv+0x28/0x40
[  304.537377][ T8607]  netlink_unicast+0x53d/0x7f0
[  304.537427][ T8607]  ? __pfx_netlink_unicast+0x10/0x10
[  304.537471][ T8607]  ? __lock_acquire+0xaa4/0x1ba0
[  304.537528][ T8607]  netlink_sendmsg+0x8d1/0xdd0
[  304.537581][ T8607]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.537646][ T8607]  ____sys_sendmsg+0xa95/0xc70
[  304.537702][ T8607]  ? copy_msghdr_from_user+0x10a/0x160
[  304.537745][ T8607]  ? __pfx_____sys_sendmsg+0x10/0x10
[  304.537822][ T8607]  ___sys_sendmsg+0x134/0x1d0
[  304.537868][ T8607]  ? __pfx____sys_sendmsg+0x10/0x10
[  304.537967][ T8607]  __sys_sendmsg+0x16d/0x220
[  304.538009][ T8607]  ? __pfx___sys_sendmsg+0x10/0x10
[  304.538059][ T8607]  ? __x64_sys_futex+0x1e0/0x4c0
[  304.538111][ T8607]  ? rcu_is_watching+0x12/0xc0
[  304.538158][ T8607]  do_syscall_64+0xcd/0x230
[  304.538213][ T8607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.538249][ T8607] RIP: 0033:0x7fb17c98e969
[  304.538276][ T8607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.538310][ T8607] RSP: 002b:00007fb17d8a3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  304.538343][ T8607] RAX: ffffffffffffffda RBX: 00007fb17cbb5fa0 RCX: 00007fb17c98e969
[  304.538365][ T8607] RDX: 0000000002000000 RSI: 0000200000000080 RDI: 0000000000000006
[  304.538386][ T8607] RBP: 00007fb17ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  304.538406][ T8607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  304.538427][ T8607] R13: 0000000000000000 R14: 00007fb17cbb5fa0 R15: 00007fffc0211378
[  304.538472][ T8607]  </TASK>
[  305.618992][ T8625] openvswitch: HfR: Dropping previously announced user features
[  306.221664][ T8636] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  306.440147][ T8640] netlink: zone id is out of range
[  306.890066][ T8647] netlink: 'syz.2.604': attribute type 11 has an invalid length.
[  306.898386][ T8647] netlink: 'syz.2.604': attribute type 11 has an invalid length.
[  307.054456][ T8648] netlink: 16 bytes leftover after parsing attributes in process `syz.1.605'.
[  307.117755][ T8648] tc_dump_action: action bad kind
[  307.125553][ T8649] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  307.170480][ T8649] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  307.181475][ T8649] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  307.193271][ T8649] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  307.206102][ T8649] page dumped because: unmovable page
[  307.215835][ T8649] page_owner tracks the page as allocated
[  307.222275][ T8649] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  307.246072][ T8649]  post_alloc_hook+0x181/0x1b0
[  307.251084][ T8649]  get_page_from_freelist+0x135c/0x3920
[  307.261763][ T8649]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  307.270200][ T8649]  alloc_pages_mpol+0x1fb/0x550
[  307.275255][ T8649]  alloc_pages_noprof+0x131/0x390
[  307.280944][ T8649]  __vmalloc_node_range_noprof+0x732/0x1540
[  307.287125][ T8649]  vmalloc_user_noprof+0x6b/0x90
[  307.293482][ T8649]  kcov_ioctl+0x4c/0x730
[  307.299163][ T8649]  __x64_sys_ioctl+0x190/0x200
[  307.304065][ T8649]  do_syscall_64+0xcd/0x230
[  307.308761][ T8649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.314774][ T8649] page last free pid 5819 tgid 5819 stack trace:
[  307.321429][ T8649]  free_unref_folios+0x999/0x1630
[  307.393820][ T8649]  folios_put_refs+0x56f/0x740
[  307.399127][ T8649]  free_pages_and_swap_cache+0x245/0x4a0
[  307.405033][ T8649]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  307.411410][ T8649]  tlb_finish_mmu+0x168/0x7b0
[  307.417025][ T8649]  vms_clear_ptes+0x55e/0x770
[  307.422533][ T8649]  vms_complete_munmap_vmas+0x1ca/0x970
[  307.428640][ T8649]  do_vmi_align_munmap+0x43b/0x7d0
[  307.439505][ T8655] FAULT_INJECTION: forcing a failure.
[  307.439505][ T8655] name failslab, interval 1, probability 0, space 0, times 0
[  307.452463][ T8649]  do_vmi_munmap+0x208/0x3e0
[  307.456317][ T8655] CPU: 1 UID: 0 PID: 8655 Comm: syz.1.607 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  307.456364][ T8655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  307.456386][ T8655] Call Trace:
[  307.456397][ T8655]  <TASK>
[  307.456411][ T8655]  dump_stack_lvl+0x16c/0x1f0
[  307.456468][ T8655]  should_fail_ex+0x512/0x640
[  307.456520][ T8655]  ? fs_reclaim_acquire+0xae/0x150
[  307.456577][ T8655]  ? tomoyo_encode2+0x100/0x3e0
[  307.456627][ T8655]  should_failslab+0xc2/0x120
[  307.456671][ T8655]  __kmalloc_noprof+0xd2/0x510
[  307.456710][ T8655]  ? d_absolute_path+0x136/0x1a0
[  307.456760][ T8655]  tomoyo_encode2+0x100/0x3e0
[  307.456816][ T8655]  tomoyo_encode+0x29/0x50
[  307.456865][ T8655]  tomoyo_realpath_from_path+0x18f/0x6e0
[  307.456930][ T8655]  tomoyo_path_number_perm+0x245/0x580
[  307.456974][ T8655]  ? tomoyo_path_number_perm+0x237/0x580
[  307.457022][ T8655]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  307.457079][ T8655]  ? find_held_lock+0x2b/0x80
[  307.457155][ T8655]  ? find_held_lock+0x2b/0x80
[  307.457186][ T8655]  ? hook_file_ioctl_common+0x145/0x410
[  307.457232][ T8655]  ? __fget_files+0x20e/0x3c0
[  307.457268][ T8655]  security_file_ioctl+0x9b/0x240
[  307.457314][ T8655]  __x64_sys_ioctl+0xb7/0x200
[  307.457363][ T8655]  do_syscall_64+0xcd/0x230
[  307.457418][ T8655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.457451][ T8655] RIP: 0033:0x7f171038e969
[  307.457477][ T8655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  307.457508][ T8655] RSP: 002b:00007f1711124038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  307.457538][ T8655] RAX: ffffffffffffffda RBX: 00007f17105b5fa0 RCX: 00007f171038e969
[  307.457558][ T8655] RDX: 0000000000000003 RSI: 00000000c0845657 RDI: 0000000000000003
[  307.457578][ T8655] RBP: 00007f1711124090 R08: 0000000000000000 R09: 0000000000000000
[  307.457598][ T8655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  307.457616][ T8655] R13: 0000000000000000 R14: 00007f17105b5fa0 R15: 00007ffd4bae7578
[  307.457659][ T8655]  </TASK>
[  307.462151][ T8655] ERROR: Out of memory at tomoyo_realpath_from_path.
[  307.619420][    C1] vkms_vblank_simulate: vblank timer overrun
[  307.689498][ T8649]  __vm_munmap+0x19a/0x390
[  307.694284][ T8649]  __x64_sys_munmap+0x59/0x80
[  307.706283][ T8649]  do_syscall_64+0xcd/0x230
[  307.711017][ T8649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.926424][ T8651] could not allocate digest TFM handle 
[  309.451415][ T8683] FAULT_INJECTION: forcing a failure.
[  309.451415][ T8683] name fail_futex, interval 1, probability 0, space 0, times 0
[  309.491969][ T8683] CPU: 1 UID: 0 PID: 8683 Comm: syz.2.614 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  309.492020][ T8683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  309.492041][ T8683] Call Trace:
[  309.492051][ T8683]  <TASK>
[  309.492064][ T8683]  dump_stack_lvl+0x16c/0x1f0
[  309.492120][ T8683]  should_fail_ex+0x512/0x640
[  309.492179][ T8683]  get_futex_key+0x49e/0x1000
[  309.492223][ T8683]  ? __pfx_get_futex_key+0x10/0x10
[  309.492263][ T8683]  ? find_held_lock+0x2b/0x80
[  309.492304][ T8683]  futex_wait_setup+0x78/0x290
[  309.492361][ T8683]  __futex_wait+0x266/0x3c0
[  309.492411][ T8683]  ? __pfx___futex_wait+0x10/0x10
[  309.492466][ T8683]  ? __pfx_futex_wake_mark+0x10/0x10
[  309.492539][ T8683]  futex_wait+0xe8/0x380
[  309.492583][ T8683]  ? __pfx_futex_wait+0x10/0x10
[  309.492640][ T8683]  ? snd_pcm_common_ioctl+0x4db/0x3380
[  309.492690][ T8683]  do_futex+0x229/0x350
[  309.492729][ T8683]  ? __pfx_do_futex+0x10/0x10
[  309.492777][ T8683]  __x64_sys_futex+0x1e0/0x4c0
[  309.492822][ T8683]  ? __pfx___x64_sys_futex+0x10/0x10
[  309.492862][ T8683]  ? rcu_is_watching+0x12/0xc0
[  309.492906][ T8683]  do_syscall_64+0xcd/0x230
[  309.492962][ T8683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.492998][ T8683] RIP: 0033:0x7fb17c98e969
[  309.493024][ T8683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.493057][ T8683] RSP: 002b:00007fb17d8a30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  309.493088][ T8683] RAX: ffffffffffffffda RBX: 00007fb17cbb5fa8 RCX: 00007fb17c98e969
[  309.493109][ T8683] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb17cbb5fa8
[  309.493127][ T8683] RBP: 00007fb17cbb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  309.493146][ T8683] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb17cbb5fac
[  309.493167][ T8683] R13: 0000000000000000 R14: 00007fffc0211290 R15: 00007fffc0211378
[  309.493207][ T8683]  </TASK>
[  309.692544][    C1] vkms_vblank_simulate: vblank timer overrun
[  309.774917][ T8694] FAULT_INJECTION: forcing a failure.
[  309.774917][ T8694] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  309.788362][ T8694] CPU: 1 UID: 0 PID: 8694 Comm: syz.1.616 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  309.788397][ T8694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  309.788412][ T8694] Call Trace:
[  309.788419][ T8694]  <TASK>
[  309.788428][ T8694]  dump_stack_lvl+0x16c/0x1f0
[  309.788486][ T8694]  should_fail_ex+0x512/0x640
[  309.788533][ T8694]  _copy_from_user+0x2e/0xd0
[  309.788557][ T8694]  copy_msghdr_from_user+0x98/0x160
[  309.788590][ T8694]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  309.788626][ T8694]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  309.788669][ T8694]  ___sys_sendmsg+0xfe/0x1d0
[  309.788701][ T8694]  ? __pfx____sys_sendmsg+0x10/0x10
[  309.788767][ T8694]  __sys_sendmsg+0x16d/0x220
[  309.788798][ T8694]  ? __pfx___sys_sendmsg+0x10/0x10
[  309.788828][ T8694]  ? __x64_sys_futex+0x1e0/0x4c0
[  309.788864][ T8694]  ? rcu_is_watching+0x12/0xc0
[  309.788896][ T8694]  do_syscall_64+0xcd/0x230
[  309.788936][ T8694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.788961][ T8694] RIP: 0033:0x7f171038e969
[  309.788980][ T8694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.789004][ T8694] RSP: 002b:00007f1711124038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  309.789027][ T8694] RAX: ffffffffffffffda RBX: 00007f17105b5fa0 RCX: 00007f171038e969
[  309.789043][ T8694] RDX: 000000000000c800 RSI: 0000200000000140 RDI: 0000000000000008
[  309.789058][ T8694] RBP: 00007f1710410ab1 R08: 0000000000000000 R09: 0000000000000000
[  309.789073][ T8694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  309.789087][ T8694] R13: 0000000000000000 R14: 00007f17105b5fa0 R15: 00007ffd4bae7578
[  309.789116][ T8694]  </TASK>
[  309.970621][    C1] vkms_vblank_simulate: vblank timer overrun
[  310.422009][   T30] audit: type=1800 audit(6043033152.549:7): pid=8700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.617" name="lu_gp_id" dev="configfs" ino=18068 res=0 errno=0
[  310.823398][ T8705] sctp: [Deprecated]: syz.3.619 (pid 8705) Use of int in max_burst socket option.
[  310.823398][ T8705] Use struct sctp_assoc_value instead
[  310.912595][ T8705] ubi: mtd0 is already attached to ubi0
[  311.103093][ T8706] Invalid ELF header magic: != ELF
[  311.625358][ T8714] netlink: 'syz.2.620': attribute type 11 has an invalid length.
[  311.633406][ T8714] netlink: 'syz.2.620': attribute type 11 has an invalid length.
[  312.007498][ T8719] page: refcount:3 mapcount:2 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  312.033810][ T8719] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  312.046139][ T8719] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  312.054896][ T8719] raw: 00000007f6bd768e 0000000000000000 0000000300000001 0000000000000000
[  312.086172][ T8719] page dumped because: unmovable page
[  312.093789][ T8719] page_owner tracks the page as allocated
[  312.108756][ T8719] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  312.130417][ T8719]  post_alloc_hook+0x181/0x1b0
[  312.135281][ T8719]  get_page_from_freelist+0x135c/0x3920
[  312.143837][ T8719]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  312.152630][ T8719]  alloc_pages_mpol+0x1fb/0x550
[  312.161262][ T8719]  alloc_pages_noprof+0x131/0x390
[  312.174881][ T8719]  __vmalloc_node_range_noprof+0x732/0x1540
[  312.190947][ T8719]  vmalloc_user_noprof+0x6b/0x90
[  312.210310][ T8719]  kcov_ioctl+0x4c/0x730
[  312.214673][ T8719]  __x64_sys_ioctl+0x190/0x200
[  312.363249][ T8719]  do_syscall_64+0xcd/0x230
[  312.369598][ T8719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.410820][ T8719] page last free pid 5819 tgid 5819 stack trace:
[  312.449805][ T8719]  free_unref_folios+0x999/0x1630
[  312.460845][ T8719]  folios_put_refs+0x56f/0x740
[  312.466329][ T8719]  free_pages_and_swap_cache+0x245/0x4a0
[  312.476141][ T8719]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  312.487728][ T8719]  tlb_finish_mmu+0x168/0x7b0
[  312.492713][ T8719]  vms_clear_ptes+0x55e/0x770
[  312.497896][ T8719]  vms_complete_munmap_vmas+0x1ca/0x970
[  312.503755][ T8719]  do_vmi_align_munmap+0x43b/0x7d0
[  312.509159][ T8719]  do_vmi_munmap+0x208/0x3e0
[  312.515753][ T8719]  __vm_munmap+0x19a/0x390
[  312.673711][ T8719]  __x64_sys_munmap+0x59/0x80
[  312.676442][ T8719]  do_syscall_64+0xcd/0x230
[  312.676504][ T8719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.742152][ T8712] could not allocate digest TFM handle binfmt_misc
[  313.531105][ T8750] netlink: 8 bytes leftover after parsing attributes in process `syz.2.631'.
[  314.800818][ T8771] netlink: 'syz.2.636': attribute type 11 has an invalid length.
[  314.895179][ T8771] netlink: 'syz.2.636': attribute type 11 has an invalid length.
[  315.237822][ T8779] FAULT_INJECTION: forcing a failure.
[  315.237822][ T8779] name failslab, interval 1, probability 0, space 0, times 0
[  315.268791][ T8779] CPU: 1 UID: 0 PID: 8779 Comm: syz.0.638 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  315.268832][ T8779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  315.268846][ T8779] Call Trace:
[  315.268853][ T8779]  <TASK>
[  315.268862][ T8779]  dump_stack_lvl+0x16c/0x1f0
[  315.268904][ T8779]  should_fail_ex+0x512/0x640
[  315.268940][ T8779]  ? __kmalloc_noprof+0xbf/0x510
[  315.268969][ T8779]  ? video_usercopy+0x139/0x1440
[  315.269000][ T8779]  should_failslab+0xc2/0x120
[  315.269030][ T8779]  __kmalloc_noprof+0xd2/0x510
[  315.269054][ T8779]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  315.269093][ T8779]  video_usercopy+0x139/0x1440
[  315.269127][ T8779]  ? __pfx___video_do_ioctl+0x10/0x10
[  315.269160][ T8779]  ? __pfx_video_usercopy+0x10/0x10
[  315.269216][ T8779]  ? __fget_files+0x20e/0x3c0
[  315.269242][ T8779]  v4l2_ioctl+0x1bd/0x250
[  315.269272][ T8779]  ? __pfx_v4l2_ioctl+0x10/0x10
[  315.269306][ T8779]  __x64_sys_ioctl+0x190/0x200
[  315.269342][ T8779]  do_syscall_64+0xcd/0x230
[  315.269382][ T8779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.269407][ T8779] RIP: 0033:0x7f5ad198e969
[  315.269425][ T8779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.269449][ T8779] RSP: 002b:00007f5ad283c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  315.269472][ T8779] RAX: ffffffffffffffda RBX: 00007f5ad1bb5fa0 RCX: 00007f5ad198e969
[  315.269487][ T8779] RDX: 0000000000000003 RSI: 00000000c0845657 RDI: 0000000000000003
[  315.269502][ T8779] RBP: 00007f5ad283c090 R08: 0000000000000000 R09: 0000000000000000
[  315.269516][ T8779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.269530][ T8779] R13: 0000000000000000 R14: 00007f5ad1bb5fa0 R15: 00007ffddbc19488
[  315.269560][ T8779]  </TASK>
[  315.457724][    C1] vkms_vblank_simulate: vblank timer overrun
[  315.682739][ T8769] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  315.693543][ T8769] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  315.718576][ T8769] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  315.742933][ T8769] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  315.780043][ T8769] page dumped because: unmovable page
[  315.785516][ T8769] page_owner tracks the page as allocated
[  315.796059][ T8769] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  315.815837][ T8769]  post_alloc_hook+0x181/0x1b0
[  315.858659][ T8769]  get_page_from_freelist+0x135c/0x3920
[  315.865273][ T8769]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  315.871020][ T8777] netlink: zone id is out of range
[  315.878171][ T8769]  alloc_pages_mpol+0x1fb/0x550
[  315.885970][ T8769]  alloc_pages_noprof+0x131/0x390
[  315.895004][ T8769]  __vmalloc_node_range_noprof+0x732/0x1540
[  315.901218][ T8769]  vmalloc_user_noprof+0x6b/0x90
[  315.906399][ T8769]  kcov_ioctl+0x4c/0x730
[  315.910753][ T8769]  __x64_sys_ioctl+0x190/0x200
[  315.915604][ T8769]  do_syscall_64+0xcd/0x230
[  315.920409][ T8769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.932232][ T8769] page last free pid 5819 tgid 5819 stack trace:
[  315.985891][ T8772] could not allocate digest TFM handle binfmt_misc
[  316.003399][ T8769]  free_unref_folios+0x999/0x1630
[  316.004152][ T8795] netlink: zone id is out of range
[  316.014369][ T8769]  folios_put_refs+0x56f/0x740
[  316.019860][ T8769]  free_pages_and_swap_cache+0x245/0x4a0
[  316.026431][ T8769]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  316.269063][ T8769]  tlb_finish_mmu+0x168/0x7b0
[  316.287233][ T8769]  vms_clear_ptes+0x55e/0x770
[  316.304703][ T8769]  vms_complete_munmap_vmas+0x1ca/0x970
[  316.310886][ T8769]  do_vmi_align_munmap+0x43b/0x7d0
[  316.318189][ T8769]  do_vmi_munmap+0x208/0x3e0
[  316.323130][ T8769]  __vm_munmap+0x19a/0x390
[  316.333726][ T8769]  __x64_sys_munmap+0x59/0x80
[  316.353110][ T8769]  do_syscall_64+0xcd/0x230
[  316.469946][ T8769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.947090][ T8821] ptrace attach of "./syz-executor exec"[5829] was attempted by "./syz-executor exec"[8821]
[  318.110362][ T8828] netlink: 330 bytes leftover after parsing attributes in process `syz.0.649'.
[  318.197425][ T8828] veth0_macvtap: left promiscuous mode
[  318.596183][ T8837] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  318.903944][ T8842] FAULT_INJECTION: forcing a failure.
[  318.903944][ T8842] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.978904][ T8842] CPU: 1 UID: 0 PID: 8842 Comm: syz.1.653 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  318.978954][ T8842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  318.978976][ T8842] Call Trace:
[  318.978987][ T8842]  <TASK>
[  318.979000][ T8842]  dump_stack_lvl+0x16c/0x1f0
[  318.979057][ T8842]  should_fail_ex+0x512/0x640
[  318.979115][ T8842]  _copy_to_iter+0x2a4/0x15a0
[  318.979154][ T8842]  ? chacha_block_generic+0x189/0x260
[  318.979206][ T8842]  ? __pfx__copy_to_iter+0x10/0x10
[  318.979246][ T8842]  ? lockdep_hardirqs_on+0x7c/0x110
[  318.979294][ T8842]  ? crng_make_state+0x48e/0x6d0
[  318.979352][ T8842]  get_random_bytes_user+0x17f/0x3c0
[  318.979409][ T8842]  ? __pfx_get_random_bytes_user+0x10/0x10
[  318.979459][ T8842]  ? putname+0x154/0x1a0
[  318.979507][ T8842]  ? do_futex+0x122/0x350
[  318.979553][ T8842]  ? __sys_sendmsg+0x199/0x220
[  318.979602][ T8842]  ? import_ubuf+0x1b6/0x220
[  318.979663][ T8842]  __x64_sys_getrandom+0x183/0x290
[  318.979696][ T8842]  ? __pfx___x64_sys_getrandom+0x10/0x10
[  318.979729][ T8842]  ? xfd_validate_state+0x5d/0x180
[  318.979766][ T8842]  ? rcu_is_watching+0x12/0xc0
[  318.979811][ T8842]  do_syscall_64+0xcd/0x230
[  318.979868][ T8842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.979904][ T8842] RIP: 0033:0x7f171038e969
[  318.979935][ T8842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.979969][ T8842] RSP: 002b:00007f1711124038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[  318.980001][ T8842] RAX: ffffffffffffffda RBX: 00007f17105b5fa0 RCX: 00007f171038e969
[  318.980023][ T8842] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000
[  318.980045][ T8842] RBP: 00007f1710410ab1 R08: 0000000000000000 R09: 0000000000000000
[  318.980065][ T8842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  318.980086][ T8842] R13: 0000000000000000 R14: 00007f17105b5fa0 R15: 00007ffd4bae7578
[  318.980131][ T8842]  </TASK>
[  320.637745][ T8866] bridge0: port 3(team0) entered blocking state
[  320.644491][ T8866] bridge0: port 3(team0) entered disabled state
[  320.687720][ T8866] team0: entered allmulticast mode
[  320.694295][ T8866] team_slave_0: entered allmulticast mode
[  320.702459][ T8866] team_slave_1: entered allmulticast mode
[  320.726990][ T8866] team0: entered promiscuous mode
[  320.742509][ T8866] team_slave_0: entered promiscuous mode
[  320.749201][ T8866] team_slave_1: entered promiscuous mode
[  320.767011][ T8866] bridge0: port 3(team0) entered blocking state
[  320.773974][ T8866] bridge0: port 3(team0) entered forwarding state
[  322.404497][ T8890] netlink: 186 bytes leftover after parsing attributes in process `syz.2.666'.
[  323.758054][ T8909] FAULT_INJECTION: forcing a failure.
[  323.758054][ T8909] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  323.799116][ T8909] CPU: 0 UID: 0 PID: 8909 Comm: syz.0.672 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  323.799160][ T8909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  323.799179][ T8909] Call Trace:
[  323.799189][ T8909]  <TASK>
[  323.799201][ T8909]  dump_stack_lvl+0x16c/0x1f0
[  323.799253][ T8909]  should_fail_ex+0x512/0x640
[  323.799308][ T8909]  _copy_from_user+0x2e/0xd0
[  323.799340][ T8909]  video_usercopy+0x723/0x1440
[  323.799391][ T8909]  ? __pfx___video_do_ioctl+0x10/0x10
[  323.799439][ T8909]  ? __pfx_video_usercopy+0x10/0x10
[  323.799507][ T8909]  ? __fget_files+0x20e/0x3c0
[  323.799542][ T8909]  v4l2_ioctl+0x1bd/0x250
[  323.799583][ T8909]  ? __pfx_v4l2_ioctl+0x10/0x10
[  323.799629][ T8909]  __x64_sys_ioctl+0x190/0x200
[  323.799679][ T8909]  do_syscall_64+0xcd/0x230
[  323.799733][ T8909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.799767][ T8909] RIP: 0033:0x7f5ad198e969
[  323.799792][ T8909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.799823][ T8909] RSP: 002b:00007f5ad283c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  323.799852][ T8909] RAX: ffffffffffffffda RBX: 00007f5ad1bb5fa0 RCX: 00007f5ad198e969
[  323.799873][ T8909] RDX: 0000000000000003 RSI: 00000000c0845657 RDI: 0000000000000003
[  323.799892][ T8909] RBP: 00007f5ad283c090 R08: 0000000000000000 R09: 0000000000000000
[  323.799911][ T8909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  323.799930][ T8909] R13: 0000000000000000 R14: 00007f5ad1bb5fa0 R15: 00007ffddbc19488
[  323.799971][ T8909]  </TASK>
[  324.368612][ T8924] netlink: 'syz.1.675': attribute type 11 has an invalid length.
[  324.378829][ T8924] netlink: 'syz.1.675': attribute type 11 has an invalid length.
[  324.776263][ T8931] netlink: 4 bytes leftover after parsing attributes in process `syz.3.678'.
[  324.785140][ T8931] openvswitch: netlink: IPv4 tunnel dst address is zero
[  324.987269][ T8928] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  325.057537][ T8928] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  325.086430][ T8928] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  325.105768][ T8928] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  325.308420][ T8928] page dumped because: unmovable page
[  325.385048][ T8928] page_owner tracks the page as allocated
[  325.448931][ T8934] could not allocate digest TFM handle binfmt_misc
[  325.459175][ T8942] FAULT_INJECTION: forcing a failure.
[  325.459175][ T8942] name fail_futex, interval 1, probability 0, space 0, times 0
[  325.507078][ T8928] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  325.523660][ T8942] CPU: 0 UID: 0 PID: 8942 Comm: syz.3.680 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  325.523711][ T8942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  325.523732][ T8942] Call Trace:
[  325.523743][ T8942]  <TASK>
[  325.523756][ T8942]  dump_stack_lvl+0x16c/0x1f0
[  325.523814][ T8942]  should_fail_ex+0x512/0x640
[  325.523871][ T8942]  get_futex_key+0x49e/0x1000
[  325.523914][ T8942]  ? __pfx_get_futex_key+0x10/0x10
[  325.523968][ T8942]  futex_wake+0xe7/0x4e0
[  325.524012][ T8942]  ? rcu_is_watching+0x12/0xc0
[  325.524050][ T8942]  ? __pfx_futex_wake+0x10/0x10
[  325.524123][ T8942]  do_futex+0x1e3/0x350
[  325.524162][ T8942]  ? __pfx_do_futex+0x10/0x10
[  325.524198][ T8942]  ? __might_fault+0xe3/0x190
[  325.524252][ T8942]  mm_release+0x24e/0x300
[  325.524294][ T8942]  do_exit+0x898/0x2c30
[  325.524339][ T8942]  ? __pfx_futex_wake_mark+0x10/0x10
[  325.524393][ T8942]  ? __pfx_do_exit+0x10/0x10
[  325.524440][ T8942]  ? do_raw_spin_lock+0x12c/0x2b0
[  325.524492][ T8942]  ? find_held_lock+0x2b/0x80
[  325.524533][ T8942]  do_group_exit+0xd3/0x2a0
[  325.524586][ T8942]  get_signal+0x2673/0x26d0
[  325.524642][ T8942]  ? __pfx_get_signal+0x10/0x10
[  325.524681][ T8942]  ? do_futex+0x122/0x350
[  325.524720][ T8942]  ? __pfx_do_futex+0x10/0x10
[  325.524763][ T8942]  arch_do_signal_or_restart+0x8f/0x7a0
[  325.524814][ T8942]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  325.524876][ T8942]  ? rcu_is_watching+0x12/0xc0
[  325.524917][ T8942]  syscall_exit_to_user_mode+0x150/0x2a0
[  325.524972][ T8942]  do_syscall_64+0xda/0x230
[  325.525027][ T8942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.525068][ T8942] RIP: 0033:0x7f49e4d8e969
[  325.525096][ T8942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.525129][ T8942] RSP: 002b:00007f49e5bfc0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  325.525161][ T8942] RAX: fffffffffffffe00 RBX: 00007f49e4fb5fa8 RCX: 00007f49e4d8e969
[  325.525184][ T8942] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f49e4fb5fa8
[  325.525205][ T8942] RBP: 00007f49e4fb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  325.525227][ T8942] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f49e4fb5fac
[  325.525247][ T8942] R13: 0000000000000000 R14: 00007fffd6f07530 R15: 00007fffd6f07618
[  325.525292][ T8942]  </TASK>
[  325.900239][ T8928]  post_alloc_hook+0x181/0x1b0
[  325.918881][ T8928]  get_page_from_freelist+0x135c/0x3920
[  325.926703][ T8928]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  325.932821][ T8928]  alloc_pages_mpol+0x1fb/0x550
[  325.941048][ T8928]  alloc_pages_noprof+0x131/0x390
[  325.996442][ T8928]  __vmalloc_node_range_noprof+0x732/0x1540
[  326.030622][ T8928]  vmalloc_user_noprof+0x6b/0x90
[  326.053066][ T8928]  kcov_ioctl+0x4c/0x730
[  326.096205][ T8928]  __x64_sys_ioctl+0x190/0x200
[  326.106191][ T8928]  do_syscall_64+0xcd/0x230
[  326.110825][ T8928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.167067][ T8928] page last free pid 5819 tgid 5819 stack trace:
[  326.173572][ T8928]  free_unref_folios+0x999/0x1630
[  326.183359][ T8928]  folios_put_refs+0x56f/0x740
[  326.216107][ T8928]  free_pages_and_swap_cache+0x245/0x4a0
[  326.222114][ T8928]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  326.228847][ T8928]  tlb_finish_mmu+0x168/0x7b0
[  326.235325][ T8928]  vms_clear_ptes+0x55e/0x770
[  326.240704][ T8928]  vms_complete_munmap_vmas+0x1ca/0x970
[  326.290251][ T8928]  do_vmi_align_munmap+0x43b/0x7d0
[  326.304399][ T8928]  do_vmi_munmap+0x208/0x3e0
[  326.317249][ T8928]  __vm_munmap+0x19a/0x390
[  326.321921][ T8928]  __x64_sys_munmap+0x59/0x80
[  326.329909][ T8928]  do_syscall_64+0xcd/0x230
[  326.338908][ T8928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.563023][ T8960] FAULT_INJECTION: forcing a failure.
[  326.563023][ T8960] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  326.596191][ T8960] CPU: 1 UID: 0 PID: 8960 Comm: syz.2.685 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  326.596240][ T8960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  326.596261][ T8960] Call Trace:
[  326.596271][ T8960]  <TASK>
[  326.596284][ T8960]  dump_stack_lvl+0x16c/0x1f0
[  326.596342][ T8960]  should_fail_ex+0x512/0x640
[  326.596398][ T8960]  _copy_to_iter+0x2a4/0x15a0
[  326.596436][ T8960]  ? chacha_block_generic+0x189/0x260
[  326.596491][ T8960]  ? __pfx__copy_to_iter+0x10/0x10
[  326.596531][ T8960]  ? lockdep_hardirqs_on+0x7c/0x110
[  326.596579][ T8960]  ? crng_make_state+0x48e/0x6d0
[  326.596634][ T8960]  get_random_bytes_user+0x17f/0x3c0
[  326.596688][ T8960]  ? __pfx_get_random_bytes_user+0x10/0x10
[  326.596737][ T8960]  ? putname+0x154/0x1a0
[  326.596794][ T8960]  ? do_futex+0x122/0x350
[  326.596843][ T8960]  ? __sys_sendmsg+0x199/0x220
[  326.596884][ T8960]  ? import_ubuf+0x1b6/0x220
[  326.596940][ T8960]  __x64_sys_getrandom+0x183/0x290
[  326.596973][ T8960]  ? __pfx___x64_sys_getrandom+0x10/0x10
[  326.597004][ T8960]  ? xfd_validate_state+0x5d/0x180
[  326.597041][ T8960]  ? rcu_is_watching+0x12/0xc0
[  326.597086][ T8960]  do_syscall_64+0xcd/0x230
[  326.597140][ T8960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.597174][ T8960] RIP: 0033:0x7fb17c98e969
[  326.597200][ T8960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  326.597234][ T8960] RSP: 002b:00007fb17d8a3038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[  326.597266][ T8960] RAX: ffffffffffffffda RBX: 00007fb17cbb5fa0 RCX: 00007fb17c98e969
[  326.597287][ T8960] RDX: 0000000000000003 RSI: 0000000006000000 RDI: 0000000000000000
[  326.597307][ T8960] RBP: 00007fb17ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  326.597329][ T8960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  326.597348][ T8960] R13: 0000000000000000 R14: 00007fb17cbb5fa0 R15: 00007fffc0211378
[  326.597391][ T8960]  </TASK>
[  326.804473][    C1] vkms_vblank_simulate: vblank timer overrun
[  327.784706][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  327.797345][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  328.559504][ T8989] ovs_��: entered promiscuous mode
[  329.682293][ T9012] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  329.761098][ T9010] FAULT_INJECTION: forcing a failure.
[  329.761098][ T9010] name failslab, interval 1, probability 0, space 0, times 0
[  329.854502][ T9010] CPU: 1 UID: 0 PID: 9010 Comm: syz.2.699 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  329.854549][ T9010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  329.854568][ T9010] Call Trace:
[  329.854579][ T9010]  <TASK>
[  329.854591][ T9010]  dump_stack_lvl+0x16c/0x1f0
[  329.854654][ T9010]  should_fail_ex+0x512/0x640
[  329.854703][ T9010]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  329.854747][ T9010]  should_failslab+0xc2/0x120
[  329.854790][ T9010]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  329.854827][ T9010]  ? __pfx___might_resched+0x10/0x10
[  329.854864][ T9010]  ? __anon_vma_prepare+0x344/0x5e0
[  329.854910][ T9010]  __anon_vma_prepare+0x344/0x5e0
[  329.854946][ T9010]  ? __filemap_get_folio+0x333/0xc10
[  329.854998][ T9010]  __vmf_anon_prepare+0x11c/0x240
[  329.855051][ T9010]  hugetlb_fault+0x1f4e/0x2e90
[  329.855093][ T9010]  ? __pfx_hugetlb_fault+0x10/0x10
[  329.855144][ T9010]  ? find_vma+0xbf/0x140
[  329.855189][ T9010]  ? __pfx_find_vma+0x10/0x10
[  329.855244][ T9010]  handle_mm_fault+0x95d/0xad0
[  329.855287][ T9010]  do_user_addr_fault+0x7a6/0x1370
[  329.855328][ T9010]  ? rcu_is_watching+0x12/0xc0
[  329.855366][ T9010]  exc_page_fault+0x5c/0xc0
[  329.855415][ T9010]  asm_exc_page_fault+0x26/0x30
[  329.855446][ T9010] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  329.855487][ T9010] Code: cc cc cc 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 7f 09 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  329.855519][ T9010] RSP: 0018:ffffc90004707b80 EFLAGS: 00050206
[  329.855544][ T9010] RAX: 0000000000000001 RBX: 0000000000000800 RCX: 0000000000000800
[  329.855563][ T9010] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88803510f000
[  329.855584][ T9010] RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed1006a21eff
[  329.855610][ T9010] R10: ffff88803510f7ff R11: 0000000000000000 R12: 0000000000000000
[  329.855631][ T9010] R13: ffffc90004707da0 R14: 0000000000000800 R15: ffff88803510f000
[  329.855677][ T9010]  _copy_from_iter+0x391/0x15b0
[  329.855742][ T9010]  ? __pfx__copy_from_iter+0x10/0x10
[  329.855791][ T9010]  ? rcu_is_watching+0x12/0xc0
[  329.855825][ T9010]  ? rcu_is_watching+0x12/0xc0
[  329.855857][ T9010]  ? kfree+0x252/0x4d0
[  329.855883][ T9010]  ? file_tty_write.constprop.0+0x6ed/0x9b0
[  329.855938][ T9010]  file_tty_write.constprop.0+0x486/0x9b0
[  329.855995][ T9010]  vfs_write+0x5bd/0x1180
[  329.856027][ T9010]  ? __pfx_tty_write+0x10/0x10
[  329.856069][ T9010]  ? __pfx_vfs_write+0x10/0x10
[  329.856096][ T9010]  ? find_held_lock+0x2b/0x80
[  329.856160][ T9010]  ksys_write+0x12a/0x240
[  329.856192][ T9010]  ? __pfx_ksys_write+0x10/0x10
[  329.856223][ T9010]  ? rcu_is_watching+0x12/0xc0
[  329.856269][ T9010]  do_syscall_64+0xcd/0x230
[  329.856322][ T9010]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.856353][ T9010] RIP: 0033:0x7fb17c98e969
[  329.856379][ T9010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.856411][ T9010] RSP: 002b:00007fb17d8a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  329.856439][ T9010] RAX: ffffffffffffffda RBX: 00007fb17cbb5fa0 RCX: 00007fb17c98e969
[  329.856460][ T9010] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003
[  329.856480][ T9010] RBP: 00007fb17d8a3090 R08: 0000000000000000 R09: 0000000000000000
[  329.856500][ T9010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  329.856520][ T9010] R13: 0000000000000000 R14: 00007fb17cbb5fa0 R15: 00007fffc0211378
[  329.856566][ T9010]  </TASK>
[  330.610357][ T9026] netlink: 4 bytes leftover after parsing attributes in process `syz.0.703'.
[  330.650318][ T9026] openvswitch: netlink: IPv4 tunnel dst address is zero
[  330.997130][ T9042] netlink: 'syz.0.707': attribute type 11 has an invalid length.
[  331.005719][ T9042] netlink: 'syz.0.707': attribute type 11 has an invalid length.
[  331.079087][ T9043] netlink: 'syz.1.708': attribute type 11 has an invalid length.
[  331.087482][ T9043] netlink: 'syz.1.708': attribute type 11 has an invalid length.
[  331.365961][ T9042] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  331.375743][ T9042] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  331.386383][ T9042] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  331.395058][ T9042] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  331.410436][ T9042] page dumped because: unmovable page
[  331.426310][ T9042] page_owner tracks the page as allocated
[  331.433275][ T9042] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  331.459262][ T9042]  post_alloc_hook+0x181/0x1b0
[  331.464846][ T9042]  get_page_from_freelist+0x135c/0x3920
[  331.476070][ T9042]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  331.489716][ T9042]  alloc_pages_mpol+0x1fb/0x550
[  331.506174][ T9042]  alloc_pages_noprof+0x131/0x390
[  331.512219][ T9042]  __vmalloc_node_range_noprof+0x732/0x1540
[  331.519025][ T9042]  vmalloc_user_noprof+0x6b/0x90
[  331.526045][ T9042]  kcov_ioctl+0x4c/0x730
[  331.531076][ T9042]  __x64_sys_ioctl+0x190/0x200
[  331.537606][ T9042]  do_syscall_64+0xcd/0x230
[  331.542371][ T9042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.567656][ T9042] page last free pid 5819 tgid 5819 stack trace:
[  331.594829][ T9042]  free_unref_folios+0x999/0x1630
[  331.600171][ T9042]  folios_put_refs+0x56f/0x740
[  331.656549][ T9042]  free_pages_and_swap_cache+0x245/0x4a0
[  331.692203][ T9042]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  331.733752][ T9042]  tlb_finish_mmu+0x168/0x7b0
[  331.804376][ T9042]  vms_clear_ptes+0x55e/0x770
[  331.810086][ T9042]  vms_complete_munmap_vmas+0x1ca/0x970
[  331.815974][ T9042]  do_vmi_align_munmap+0x43b/0x7d0
[  331.821321][ T9042]  do_vmi_munmap+0x208/0x3e0
[  331.827318][ T9042]  __vm_munmap+0x19a/0x390
[  331.840136][ T9042]  __x64_sys_munmap+0x59/0x80
[  331.845086][ T9042]  do_syscall_64+0xcd/0x230
[  331.855526][ T9042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.029032][ T9052] could not allocate digest TFM handle binfmt_misc
[  332.617412][ T9049] could not allocate digest TFM handle binfmt_misc
[  332.856385][ T9069] netlink: 346 bytes leftover after parsing attributes in process `syz.3.711'.
[  335.868696][ T9116] netlink: 'syz.0.721': attribute type 11 has an invalid length.
[  335.876909][ T9116] netlink: 'syz.0.721': attribute type 11 has an invalid length.
[  336.188991][ T9112] netlink: 346 bytes leftover after parsing attributes in process `syz.3.723'.
[  336.420554][ T9127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.724'.
[  336.443829][ T9127] netlink: 25 bytes leftover after parsing attributes in process `syz.1.724'.
[  336.541914][ T9123] FAULT_INJECTION: forcing a failure.
[  336.541914][ T9123] name failslab, interval 1, probability 0, space 0, times 0
[  336.562056][ T9116] page: refcount:4 mapcount:3 mapping:0000000000000000 index:0x7f6bd768e pfn:0x78000
[  336.592568][ T9123] CPU: 1 UID: 0 PID: 9123 Comm: syz.2.725 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  336.592615][ T9123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  336.592636][ T9123] Call Trace:
[  336.592647][ T9123]  <TASK>
[  336.592659][ T9123]  dump_stack_lvl+0x16c/0x1f0
[  336.592716][ T9123]  should_fail_ex+0x512/0x640
[  336.592774][ T9123]  ? __kmalloc_noprof+0xbf/0x510
[  336.592815][ T9123]  ? __register_sysctl_table+0xea2/0x1900
[  336.592853][ T9123]  should_failslab+0xc2/0x120
[  336.592894][ T9123]  __kmalloc_noprof+0xd2/0x510
[  336.592930][ T9123]  ? __register_sysctl_table+0xe8e/0x1900
[  336.592980][ T9123]  __register_sysctl_table+0xea2/0x1900
[  336.593030][ T9123]  ? __pfx___register_sysctl_table+0x10/0x10
[  336.593069][ T9123]  ? is_module_address+0x69/0xf0
[  336.593114][ T9123]  ? register_net_sysctl_sz+0x228/0x3e0
[  336.593150][ T9123]  ? __asan_memcpy+0x3c/0x60
[  336.593186][ T9123]  mptcp_net_init+0x499/0x620
[  336.593236][ T9123]  ? __pfx_mptcp_net_init+0x10/0x10
[  336.593275][ T9123]  ops_init+0x1e2/0x5f0
[  336.593324][ T9123]  setup_net+0x21e/0x850
[  336.593372][ T9123]  ? __pfx_setup_net+0x10/0x10
[  336.593415][ T9123]  ? lockdep_init_map_type+0x5c/0x280
[  336.593459][ T9123]  ? __pfx_down_read_killable+0x10/0x10
[  336.593498][ T9123]  ? debug_mutex_init+0x37/0x70
[  336.593535][ T9123]  copy_net_ns+0x2a6/0x5f0
[  336.593591][ T9123]  create_new_namespaces+0x3ea/0xad0
[  336.593642][ T9123]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  336.593685][ T9123]  ksys_unshare+0x45b/0xa40
[  336.593739][ T9123]  ? __pfx_ksys_unshare+0x10/0x10
[  336.593783][ T9123]  ? xfd_validate_state+0x5d/0x180
[  336.593818][ T9123]  ? rcu_is_watching+0x12/0xc0
[  336.593862][ T9123]  __x64_sys_unshare+0x31/0x40
[  336.593908][ T9123]  do_syscall_64+0xcd/0x230
[  336.593962][ T9123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.593996][ T9123] RIP: 0033:0x7fb17c98e969
[  336.594022][ T9123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.594055][ T9123] RSP: 002b:00007fb17d882038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  336.594087][ T9123] RAX: ffffffffffffffda RBX: 00007fb17cbb6080 RCX: 00007fb17c98e969
[  336.594110][ T9123] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  336.594130][ T9123] RBP: 00007fb17ca10ab1 R08: 0000000000000000 R09: 0000000000000000
[  336.594150][ T9123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  336.594171][ T9123] R13: 0000000000000000 R14: 00007fb17cbb6080 R15: 00007fffc0211378
[  336.594214][ T9123]  </TASK>
[  336.595418][ T9123] sysctl could not get directory: /net/mptcp -12
[  336.864080][ T9116] flags: 0xfff18000000214(referenced|dirty|workingset|node=0|zone=1|lastcpupid=0x7ff)
[  336.874015][ T9116] raw: 00fff18000000214 0000000000000000 dead000000000122 0000000000000000
[  336.889816][ T9116] raw: 00000007f6bd768e 0000000000000000 0000000400000002 0000000000000000
[  336.901970][ T9116] page dumped because: unmovable page
[  336.907879][ T9116] page_owner tracks the page as allocated
[  336.943467][ T9116] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5825, tgid 5825 (syz-executor), ts 102840930252, free_ts 102580946335
[  337.021108][ T9116]  post_alloc_hook+0x181/0x1b0
[  337.036208][ T9116]  get_page_from_freelist+0x135c/0x3920
[  337.041836][ T9116]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  337.066969][ T9116]  alloc_pages_mpol+0x1fb/0x550
[  337.076886][ T9116]  alloc_pages_noprof+0x131/0x390
[  337.082627][ T9116]  __vmalloc_node_range_noprof+0x732/0x1540
[  337.116238][ T9116]  vmalloc_user_noprof+0x6b/0x90
[  337.121377][ T9116]  kcov_ioctl+0x4c/0x730
[  337.126212][ T9116]  __x64_sys_ioctl+0x190/0x200
[  337.134863][ T9116]  do_syscall_64+0xcd/0x230
[  337.139671][ T9116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.145661][ T9116] page last free pid 5819 tgid 5819 stack trace:
[  337.152190][ T9116]  free_unref_folios+0x999/0x1630
[  337.157852][ T9116]  folios_put_refs+0x56f/0x740
[  337.162737][ T9116]  free_pages_and_swap_cache+0x245/0x4a0
[  337.169050][ T9116]  __tlb_batch_free_encoded_pages+0xf9/0x290
[  337.175203][ T9116]  tlb_finish_mmu+0x168/0x7b0
[  337.180027][ T9116]  vms_clear_ptes+0x55e/0x770
[  337.184875][ T9116]  vms_complete_munmap_vmas+0x1ca/0x970
[  337.192590][ T9116]  do_vmi_align_munmap+0x43b/0x7d0
[  337.199117][ T9116]  do_vmi_munmap+0x208/0x3e0
[  337.203793][ T9116]  __vm_munmap+0x19a/0x390
[  337.208451][ T9116]  __x64_sys_munmap+0x59/0x80
[  337.213244][ T9116]  do_syscall_64+0xcd/0x230
[  337.218070][ T9116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.269192][ T9110] could not allocate digest TFM handle binfmt_misc
[  337.634327][ T9138] netlink: 330 bytes leftover after parsing attributes in process `syz.1.728'.
[  337.929406][ T9142] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  339.183774][ T9172] netlink: 56 bytes leftover after parsing attributes in process `syz.3.735'.
[  340.601337][ T9188] netlink: 40 bytes leftover after parsing attributes in process `syz.3.739'.
[  340.985784][ T9199] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  342.224616][ T9211] ==================================================================
[  342.224635][ T9211] BUG: KASAN: slab-use-after-free in fbcon_prepare_logo+0xa03/0xc70
[  342.224676][ T9211] Read of size 14 at addr ffff88803129b43e by task syz.0.744/9211
[  342.224696][ T9211] 
[  342.224707][ T9211] CPU: 0 UID: 0 PID: 9211 Comm: syz.0.744 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  342.224737][ T9211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  342.224751][ T9211] Call Trace:
[  342.224760][ T9211]  <TASK>
[  342.224768][ T9211]  dump_stack_lvl+0x116/0x1f0
[  342.224806][ T9211]  print_report+0xc3/0x670
[  342.224836][ T9211]  ? __virt_addr_valid+0x5e/0x590
[  342.224869][ T9211]  ? __phys_addr+0xc6/0x150
[  342.224902][ T9211]  ? fbcon_prepare_logo+0xa03/0xc70
[  342.224933][ T9211]  kasan_report+0xe0/0x110
[  342.224964][ T9211]  ? fbcon_prepare_logo+0xa03/0xc70
[  342.224999][ T9211]  kasan_check_range+0xef/0x1a0
[  342.225051][ T9211]  __asan_memcpy+0x23/0x60
[  342.225097][ T9211]  fbcon_prepare_logo+0xa03/0xc70
[  342.225136][ T9211]  fbcon_init+0xd77/0x1900
[  342.225168][ T9211]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  342.225200][ T9211]  visual_init+0x31d/0x620
[  342.225225][ T9211]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  342.225260][ T9211]  store_bind+0x61d/0x760
[  342.225290][ T9211]  ? sysfs_file_kobj+0xe4/0x290
[  342.225327][ T9211]  ? __pfx_store_bind+0x10/0x10
[  342.225355][ T9211]  dev_attr_store+0x55/0x80
[  342.225388][ T9211]  ? __pfx_dev_attr_store+0x10/0x10
[  342.225420][ T9211]  sysfs_kf_write+0xef/0x150
[  342.225457][ T9211]  kernfs_fop_write_iter+0x351/0x510
[  342.225489][ T9211]  ? __pfx_sysfs_kf_write+0x10/0x10
[  342.225526][ T9211]  vfs_write+0x5bd/0x1180
[  342.225550][ T9211]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  342.225584][ T9211]  ? __pfx___mutex_lock+0x10/0x10
[  342.225622][ T9211]  ? __pfx_vfs_write+0x10/0x10
[  342.225656][ T9211]  ksys_write+0x12a/0x240
[  342.225679][ T9211]  ? __pfx_ksys_write+0x10/0x10
[  342.225702][ T9211]  ? rcu_is_watching+0x12/0xc0
[  342.225730][ T9211]  do_syscall_64+0xcd/0x230
[  342.225769][ T9211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.225794][ T9211] RIP: 0033:0x7f5ad198e969
[  342.225813][ T9211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.225838][ T9211] RSP: 002b:00007f5ad27fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  342.225860][ T9211] RAX: ffffffffffffffda RBX: 00007f5ad1bb6160 RCX: 00007f5ad198e969
[  342.225877][ T9211] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  342.225892][ T9211] RBP: 00007f5ad1a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  342.225907][ T9211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  342.225922][ T9211] R13: 0000000000000000 R14: 00007f5ad1bb6160 R15: 00007ffddbc19488
[  342.225945][ T9211]  </TASK>
[  342.225953][ T9211] 
[  342.225959][ T9211] Allocated by task 3522:
[  342.225972][ T9211]  kasan_save_stack+0x33/0x60
[  342.226005][ T9211]  kasan_save_track+0x14/0x30
[  342.226037][ T9211]  __kasan_kmalloc+0xaa/0xb0
[  342.226066][ T9211]  __kmalloc_noprof+0x223/0x510
[  342.226102][ T9211]  cfg80211_inform_single_bss_data+0x53e/0x1df0
[  342.226143][ T9211]  cfg80211_inform_bss_data+0x224/0x3bc0
[  342.226182][ T9211]  cfg80211_inform_bss_frame_data+0x26e/0x7a0
[  342.226222][ T9211]  ieee80211_bss_info_update+0x310/0xab0
[  342.226253][ T9211]  ieee80211_ibss_rx_queued_mgmt+0x1905/0x2fd0
[  342.226283][ T9211]  ieee80211_iface_work+0xbf4/0x1020
[  342.226314][ T9211]  cfg80211_wiphy_work+0x3df/0x550
[  342.226340][ T9211]  process_one_work+0x9cf/0x1b70
[  342.226377][ T9211]  worker_thread+0x6c8/0xf10
[  342.226414][ T9211]  kthread+0x3c2/0x780
[  342.226446][ T9211]  ret_from_fork+0x48/0x80
[  342.226467][ T9211]  ret_from_fork_asm+0x1a/0x30
[  342.226500][ T9211] 
[  342.226506][ T9211] Freed by task 7208:
[  342.226517][ T9211]  kasan_save_stack+0x33/0x60
[  342.226541][ T9211]  kasan_save_track+0x14/0x30
[  342.226565][ T9211]  kasan_save_free_info+0x3b/0x60
[  342.226602][ T9211]  __kasan_slab_free+0x51/0x70
[  342.226628][ T9211]  kmem_cache_free_bulk.part.0+0x38d/0x7f0
[  342.226654][ T9211]  kvfree_rcu_bulk+0x1bb/0x1f0
[  342.226678][ T9211]  kfree_rcu_monitor+0x1d0/0x2f0
[  342.226702][ T9211]  process_one_work+0x9cf/0x1b70
[  342.226739][ T9211]  worker_thread+0x6c8/0xf10
[  342.226775][ T9211]  kthread+0x3c2/0x780
[  342.226808][ T9211]  ret_from_fork+0x48/0x80
[  342.226827][ T9211]  ret_from_fork_asm+0x1a/0x30
[  342.226861][ T9211] 
[  342.226866][ T9211] Last potentially related work creation:
[  342.226874][ T9211]  kasan_save_stack+0x33/0x60
[  342.226898][ T9211]  kasan_record_aux_stack+0xb8/0xd0
[  342.226934][ T9211]  kvfree_call_rcu+0x76/0x470
[  342.226956][ T9211]  cfg80211_update_known_bss+0x39f/0x11a0
[  342.226989][ T9211]  __cfg80211_bss_update+0x1b7/0x23c0
[  342.227024][ T9211]  cfg80211_inform_single_bss_data+0x7ba/0x1df0
[  342.227064][ T9211]  cfg80211_inform_bss_data+0x224/0x3bc0
[  342.227109][ T9211]  cfg80211_inform_bss_frame_data+0x26e/0x7a0
[  342.227148][ T9211]  ieee80211_bss_info_update+0x310/0xab0
[  342.227178][ T9211]  ieee80211_scan_rx+0x475/0xae0
[  342.227206][ T9211]  ieee80211_rx_list+0x1bdb/0x2980
[  342.227239][ T9211]  ieee80211_rx_napi+0xdc/0x410
[  342.227270][ T9211]  ieee80211_handle_queued_frames+0xd5/0x130
[  342.227297][ T9211]  tasklet_action_common+0x284/0x400
[  342.227326][ T9211]  handle_softirqs+0x216/0x8e0
[  342.227352][ T9211]  run_ksoftirqd+0x3a/0x60
[  342.227377][ T9211]  smpboot_thread_fn+0x3f7/0xae0
[  342.227404][ T9211]  kthread+0x3c2/0x780
[  342.227436][ T9211]  ret_from_fork+0x48/0x80
[  342.227455][ T9211]  ret_from_fork_asm+0x1a/0x30
[  342.227489][ T9211] 
[  342.227494][ T9211] The buggy address belongs to the object at ffff88803129b400
[  342.227494][ T9211]  which belongs to the cache kmalloc-96 of size 96
[  342.227514][ T9211] The buggy address is located 62 bytes inside of
[  342.227514][ T9211]  freed 96-byte region [ffff88803129b400, ffff88803129b460)
[  342.227537][ T9211] 
[  342.227543][ T9211] The buggy address belongs to the physical page:
[  342.227553][ T9211] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3129b
[  342.227575][ T9211] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  342.227594][ T9211] page_type: f5(slab)
[  342.227615][ T9211] raw: 00fff00000000000 ffff88801b441280 ffffea0000b6a600 dead000000000005
[  342.227638][ T9211] raw: 0000000000000000 0000000000200020 00000000f5000000 0000000000000000
[  342.227651][ T9211] page dumped because: kasan: bad access detected
[  342.227663][ T9211] page_owner tracks the page as allocated
[  342.227671][ T9211] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 36, tgid 36 (kworker/u8:2), ts 114368143055, free_ts 114157467669
[  342.227712][ T9211]  post_alloc_hook+0x181/0x1b0
[  342.227735][ T9211]  get_page_from_freelist+0x135c/0x3920
[  342.227761][ T9211]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  342.227789][ T9211]  alloc_pages_mpol+0x1fb/0x550
[  342.227817][ T9211]  new_slab+0x244/0x340
[  342.227836][ T9211]  ___slab_alloc+0xd9c/0x1940
[  342.227856][ T9211]  __slab_alloc.constprop.0+0x56/0xb0
[  342.227878][ T9211]  __kmalloc_noprof+0x2f2/0x510
[  342.227903][ T9211]  cfg80211_inform_single_bss_data+0x53e/0x1df0
[  342.227942][ T9211]  cfg80211_inform_bss_data+0x224/0x3bc0
[  342.227981][ T9211]  cfg80211_inform_bss_frame_data+0x26e/0x7a0
[  342.228020][ T9211]  ieee80211_bss_info_update+0x310/0xab0
[  342.228050][ T9211]  ieee80211_ibss_rx_queued_mgmt+0x1905/0x2fd0
[  342.228087][ T9211]  ieee80211_iface_work+0xbf4/0x1020
[  342.228118][ T9211]  cfg80211_wiphy_work+0x3df/0x550
[  342.228141][ T9211]  process_one_work+0x9cf/0x1b70
[  342.228180][ T9211] page last free pid 5819 tgid 5819 stack trace:
[  342.228192][ T9211]  __free_frozen_pages+0x69d/0xff0
[  342.228214][ T9211]  __folio_put+0x329/0x450
[  342.228245][ T9211]  anon_pipe_buf_release+0x3ed/0x500
[  342.228269][ T9211]  anon_pipe_read+0x5cd/0x1210
[  342.228290][ T9211]  vfs_read+0xaa6/0xc70
[  342.228310][ T9211]  ksys_read+0x205/0x240
[  342.228331][ T9211]  do_syscall_64+0xcd/0x230
[  342.228366][ T9211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.228390][ T9211] 
[  342.228395][ T9211] Memory state around the buggy address:
[  342.228407][ T9211]  ffff88803129b300: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  342.228424][ T9211]  ffff88803129b380: 00 00 00 00 00 00 00 00 06 fc fc fc fc fc fc fc
[  342.228441][ T9211] >ffff88803129b400: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  342.228455][ T9211]                                         ^
[  342.228468][ T9211]  ffff88803129b480: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  342.228485][ T9211]  ffff88803129b500: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  342.228499][ T9211] ==================================================================
[  342.337834][ T9211] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  342.337865][ T9211] CPU: 0 UID: 0 PID: 9211 Comm: syz.0.744 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[  342.337912][ T9211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  342.337933][ T9211] Call Trace:
[  342.337944][ T9211]  <TASK>
[  342.337957][ T9211]  dump_stack_lvl+0x3d/0x1f0
[  342.338001][ T9211]  panic+0x71c/0x800
[  342.338037][ T9211]  ? __pfx_panic+0x10/0x10
[  342.338072][ T9211]  ? irqentry_exit+0x3b/0x90
[  342.338118][ T9211]  ? lockdep_hardirqs_on+0x7c/0x110
[  342.338155][ T9211]  ? preempt_schedule_thunk+0x16/0x30
[  342.338195][ T9211]  ? fbcon_prepare_logo+0xa03/0xc70
[  342.338228][ T9211]  ? preempt_schedule_common+0x44/0xc0
[  342.338266][ T9211]  ? fbcon_prepare_logo+0xa03/0xc70
[  342.338297][ T9211]  check_panic_on_warn+0xab/0xb0
[  342.338334][ T9211]  end_report+0x107/0x170
[  342.338368][ T9211]  kasan_report+0xee/0x110
[  342.338397][ T9211]  ? fbcon_prepare_logo+0xa03/0xc70
[  342.338431][ T9211]  kasan_check_range+0xef/0x1a0
[  342.338465][ T9211]  __asan_memcpy+0x23/0x60
[  342.338487][ T9211]  fbcon_prepare_logo+0xa03/0xc70
[  342.338525][ T9211]  fbcon_init+0xd77/0x1900
[  342.338559][ T9211]  ? __pfx_drm_fb_helper_set_par+0x10/0x10
[  342.338591][ T9211]  visual_init+0x31d/0x620
[  342.338616][ T9211]  do_bind_con_driver.isra.0+0x57a/0xbf0
[  342.338651][ T9211]  store_bind+0x61d/0x760
[  342.338682][ T9211]  ? sysfs_file_kobj+0xe4/0x290
[  342.338719][ T9211]  ? __pfx_store_bind+0x10/0x10
[  342.338746][ T9211]  dev_attr_store+0x55/0x80
[  342.338780][ T9211]  ? __pfx_dev_attr_store+0x10/0x10
[  342.338813][ T9211]  sysfs_kf_write+0xef/0x150
[  342.338850][ T9211]  kernfs_fop_write_iter+0x351/0x510
[  342.338882][ T9211]  ? __pfx_sysfs_kf_write+0x10/0x10
[  342.338920][ T9211]  vfs_write+0x5bd/0x1180
[  342.338945][ T9211]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  342.338979][ T9211]  ? __pfx___mutex_lock+0x10/0x10
[  342.339017][ T9211]  ? __pfx_vfs_write+0x10/0x10
[  342.339051][ T9211]  ksys_write+0x12a/0x240
[  342.339074][ T9211]  ? __pfx_ksys_write+0x10/0x10
[  342.339098][ T9211]  ? rcu_is_watching+0x12/0xc0
[  342.339132][ T9211]  do_syscall_64+0xcd/0x230
[  342.339171][ T9211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.339197][ T9211] RIP: 0033:0x7f5ad198e969
[  342.339216][ T9211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.339241][ T9211] RSP: 002b:00007f5ad27fa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  342.339264][ T9211] RAX: ffffffffffffffda RBX: 00007f5ad1bb6160 RCX: 00007f5ad198e969
[  342.339281][ T9211] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  342.339297][ T9211] RBP: 00007f5ad1a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  342.339312][ T9211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  342.339327][ T9211] R13: 0000000000000000 R14: 00007f5ad1bb6160 R15: 00007ffddbc19488
[  342.339351][ T9211]  </TASK>
[  342.339683][ T9211] Kernel Offset: disabled