last executing test programs:

6.824531469s ago: executing program 3 (id=2004):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), r1)
ioctl$auto(r0, 0x80045440, r0)
r2 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_LLSEC_LIST_DEV(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r2, 0x20, 0x70bd28, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0xaef5}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x60000c0}, 0x0)
r3 = openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/buffer_subbuf_size_kb\x00', 0x40000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x1c8300, 0x0)
r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
r5 = syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000200), r1)
sendmsg$auto_NLBL_UNLABEL_C_STATICLIST(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r5, 0x100, 0x70bd25, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @loopback}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x60048050)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000140)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"})
ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r4, 0x40505412, &(0x7f0000000180)={0xf8000000, 0xffffffff, 0x0, 0xe, 0x6, "938ea2d173ab8e40fe2a9879b43f6898a29bf86e6f763339cb35e64d09000000000000009e26168eeb6c1e333da4c61f57ff1de9d205133fc67c2e1d"})
readv$auto(r3, &(0x7f0000004d80)={&(0x7f0000000000)="8a5300d4de00cf0db1eb582b583dd7f97609256098013936087990d4771776a7599b96de55eaae0b8dadf7b36c48d26434dab21a1549373bd6d1fd7cc7e72f28ff4ba9cd072e4da07cb9f648892bf782fb430d0fba65dac177608bfb340b3dd8f7ff0f000000000000de012b8911d98304839c112b07ce22a7b79cf3ccbfb6019f859407ae832f5640856409eea3066baf48136800c34a0a00000035643f1e31d149209f07933c5f2c17e6de", 0x2000000000073a5}, 0x2)

6.675072768s ago: executing program 3 (id=2005):
r0 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="120087"], 0x1ac}}, 0x810)
recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000180)={0x0, 0x800}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(r0, 0x10000000084, 0x0, 0x0, 0x10)

5.921158001s ago: executing program 3 (id=2008):
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x63a2)
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/v4l-subdev3\x00', 0x16ba00, 0x0)
ioctl$auto(r0, 0x800004, r0)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x40c041, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vidtv.0/i2c-0/dvb/dvb0.demux0/dev\x00', 0x404c0, 0x0)
read$auto(r2, 0x0, 0x20)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendfile$auto(0xffffffffffffffff, 0x3, 0x0, 0xc01)
r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7fffffffffffffff, 0x4)
mmap$auto(0x9, 0x400008, 0xdf, 0xbb7c, 0x2, 0xe0)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)
setfsgid$auto(0xee01)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
setsockopt$auto_SO_MARK(0xffffffffffffffff, 0xd, 0x24, &(0x7f0000000100)='c\x00\x00\x00#/\'.\x00', 0x6)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/vcan0/forwarding\x00', 0x8882, 0x0)
read$auto(0x3, 0x0, 0x80)
r4 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
sendmsg$auto_NL802154_CMD_SET_LBT_MODE(r1, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000580)={0x1dc, 0x0, 0x26, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_DEVICE={0x50, 0x2e, 0x0, 0x1, [@typed={0x14, 0xa3, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @typed={0x14, 0x15, 0x0, 0x0, @ipv6=@mcast1}, @typed={0xe, 0xc8, 0x0, 0x0, @str='/dev/rtc0\x00'}, @typed={0xa, 0x4c, 0x0, 0x0, @str=',%{&*\x00'}, @typed={0x8, 0x134, 0x0, 0x0, @ipv4=@loopback}]}, @NL802154_ATTR_WPAN_PHY_CAPS={0x138, 0x18, 0x0, 0x1, [@nested={0x60, 0x121, 0x0, 0x1, [@generic="f0b60079d1c2517ba565a987471297b0a17785851c9aca5c79c6daa24f5ff2c65f08dc34255cd52c9c6177012a85ce8ae6a75c4417a1b605f561ef6c84725c7726312c11e1b9d9f3e0ee3e65534ab478d799bc67c20a3312d7c8134c"]}, @nested={0xbb, 0x81, 0x0, 0x1, [@generic="8ad9124720c04fef6103f6d01bad390baea65aa60961bb61bb0f42cc16351d2c389234c184668b709815c32ec53a2e7152d15b625e5f97b1e5709958ebb837b67e581d638a2a2c55a124b6586ab72ba18b0de588cf6f040d100effeab7119eda707829204ebe07f6c0860fcbd2160660489c7f5fd2929a74b4547c9ed2d82671825b637fea2b34f91b5dc6fcbe1333798a6a78f310351bd60a30a13f9f3f49940b53d66d81715067fb22ffaed093b20c55d5b57594decb"]}, @typed={0x8, 0x9, 0x0, 0x0, @ipv4=@remote}, @nested={0x10, 0x118, 0x0, 0x1, [@typed={0x8, 0xa9, 0x0, 0x0, @pid}, @typed={0x4, 0x9c}]}]}, @NL802154_ATTR_IFNAME={0x14, 0x4, 'dvmrp1\x00'}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x456}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0x3}, @NL802154_ATTR_WPAN_PHY_NAME={0x5, 0x2, '}'}, @NL802154_ATTR_SCAN_TYPE={0x5, 0x1f, 0x5}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r3}]}, 0x1dc}, 0x1, 0x0, 0x0, 0x20008005}, 0x8040)
write$auto(r4, 0x0, 0xc70)

4.819912188s ago: executing program 1 (id=2010):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/irq/3/smp_affinity_list\x00', 0x8f3b7a51b8162d21, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
socketpair$auto(0xffff7fff, 0x4, 0x80000001, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000280)="e971")
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0)

4.632307989s ago: executing program 0 (id=2011):
r0 = socket(0xa, 0x5, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x4, 0x6, 0xffffffffffffffff, @relative_id=0x2, 0x9}, 0xa3)
sendto$auto(r0, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)

4.444078371s ago: executing program 0 (id=2012):
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2802, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82400, 0x0)
socket(0x3, 0x5, 0x0)
eventfd$auto(0x7)
open(&(0x7f0000004080)='./file0\x00', 0x40, 0x23)
r1 = socket(0x2, 0x3, 0x6)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='/dev/snd/midiC2D0\x00', 0xffffffffffff6c28)
getsockopt$auto(0x100000006, 0x0, 0x21, 0xfffffffffffffffe, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
fanotify_init$auto(0x5, 0xfffffff7)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r2 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/dynamic_events\x00', 0x542, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(r2, &(0x7f0000000140)="65507307ff6587a725ca87720ef9769f20592e775f", 0x15)
io_uring_setup$auto(0xdec7, &(0x7f00000000c0)={0x4, 0x4, 0xfffffff7, 0x3, 0x4, 0x4, r1, [0xf6, 0x10001, 0xba60], {0x4b, 0x7, 0x105ac756, 0x8001, 0x4, 0x9, 0x2, 0x401}, {0x69d6cd8b, 0x5, 0x8, 0x2, 0x778, 0x8, 0x0, 0xa96, 0x7}})
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto(r3, 0x4000457b, 0x10000000000402)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)

4.443953174s ago: executing program 1 (id=2013):
getcwd$auto(0x0, 0xffffffffffffffff)

4.055978272s ago: executing program 3 (id=2014):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="120087"], 0x1ac}}, 0x810)
recvmmsg$auto(r0, &(0x7f0000000140)={{0x0, 0x4, &(0x7f0000000180)={0x0, 0x800}, 0x5, 0x0, 0x2, 0x8}, 0x800}, 0x10a, 0x8, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x0, 0x0, 0x10)

4.034540787s ago: executing program 1 (id=2015):
socket(0x11, 0x80003, 0x300)
rt_sigqueueinfo$auto(0x0, 0xc74, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x7e73, @_timer={0x0, 0x80000001, @sival_ptr=0x0, 0x5}}})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000040)='./file0\x00', 0x44, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000003c0)=""/192, 0xc0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/info\x00', 0x1c1282, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/README\x00', 0x8100, 0x0)
socket(0xa, 0x1, 0x100)
r0 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001400c7d2a2e1917949643de42b"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x2b, 0x1, 0x1)
recvmmsg$auto(r0, &(0x7f0000000580)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x5, 0x80000001}, 0x1}, 0x3, 0x6, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap$auto(0x0, 0x10000, 0x8000, 0xeb1, 0xfffffffffffffffa, 0x8000)
ppoll$auto(0x0, 0x9, 0x0, 0x0, 0x8)
madvise$auto(0x0, 0x200007, 0x19)
syz_clone3(0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)

3.837973838s ago: executing program 2 (id=2016):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x454042, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x2, 0xffffffffffff0005, 0x76)
madvise$auto(0x0, 0x2003f0, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
fsconfig$auto_FSCONFIG_SET_PATH_EMPTY(r3, 0x4, 0x0, 0x0, 0x38b)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), r3)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(r2, &(0x7f0000006940)={0x0, 0x0, &(0x7f0000006900)={&(0x7f0000006980)=ANY=[@ANYBLOB="36c29976", @ANYRES16=r4, @ANYBLOB="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"], 0x124c}, 0x1, 0x0, 0x0, 0x20000041}, 0x800)
mmap$auto(0xfffffffffffffffd, 0x2020009, 0x8000000003, 0xeb4, 0xffffffffffffffff, 0x8000)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x100018000)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x444d01, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000080))
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
prctl$auto(0x3f, 0x7ff, 0x0, 0x5, 0x5)
rename$auto(&(0x7f0000000200)='./file0\x00', &(0x7f0000000380)='./file0\x00')
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r2)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000034c0)=ANY=[@ANYBLOB="3c180000", @ANYRES16=r5, @ANYBLOB="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", @ANYRESOCT=r3], 0x183c}, 0x1, 0x0, 0x0, 0x80}, 0x8880)
mkdir$auto(0x0, 0x8)
madvise$auto(0x4000000000e9ea, 0x0, 0x0)
io_uring_setup$auto(0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptye4\x00', 0x400800, 0x0)

3.263939696s ago: executing program 0 (id=2017):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x48a22, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x8, 0x20009, 0xf, 0x800000000000ebf, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
socket(0x2, 0x80802, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000005c40)='/dev/nbd9\x00', 0x2000, 0x0)
fadvise64$auto_POSIX_FADV_SEQUENTIAL(r0, 0x86, 0x8, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b70, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r1 = socket(0x2, 0x801, 0x106)
getsockopt$auto(r1, 0x11c, 0x3, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4e32, @rand_addr=0x64010101}, 0x51)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
socket(0x10, 0x2, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptye6\x00', 0x400600, 0x0)
r2 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154)
unshare$auto(0x20000)
execveat$auto(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x11000)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000100), 0x240, 0x0)

3.105115417s ago: executing program 2 (id=2018):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/040/001\x00', 0xa901, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_udc.0/gadget.0/function\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001080)=""/98, 0x62)
ioctl$auto(r0, 0x5522, 0xf15)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff)
keyctl$auto(0x9, 0xfffffffffffffffb, 0xfffffffffffffffd, 0x1, 0x3)
mmap$auto(0x0, 0x20007, 0x4000000000df, 0x2eb1, r0, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r2 = open(&(0x7f0000000800)='./file0\x00', 0x600c00, 0x86)
fcntl$auto(r2, 0x400, 0x1)
socket(0x20, 0x6, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ip6_mr_vif\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000140)=""/12, 0xc)
setsockopt$auto(0x400000000000003, 0x1000, 0x1b, 0x0, 0x9)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/loop9/queue/max_segment_size\x00', 0x226c1, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
r4 = openat$auto_buffer_percent_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_percent\x00', 0x1, 0x0)
writev$auto(r4, 0x0, 0x9)
fcntl$auto(r1, 0xf, 0x0)
r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x101a02, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r5, 0xc1105517, &(0x7f00000001c0)={{@raw=0xfff, 0x100110d, 0xfffd, 0x40000006, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa0000000000040000660e0701000000000000008000", @raw=0xb072}, 0x6, 0x0, 0x4, @raw=0x404, @reserved="2fd3bd3025f4321f5facc45cb72348ad398fc2da15a209bbcfc17cc5c5ab3d965f4e2ad345355d68f1c1e2d4f28197da1d7c06ba6226ffbbc4343010240cfbd08da557a5ed0723552fed99ee474bcc2b15fe80f05a93aa59c59ccd9bcd7c11e692ec22f5a8490a5e9a714112fb6a3e71b1f63f638788433081c3c730772916f1", "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"})
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f00000000c0)='-7', 0x2)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/blank\x00', 0xa001, 0x0)
write$auto(r6, &(0x7f0000000140)='7\x00\xb1\x9a\xc0\xf9\xc0e\xd2T\xbe\xb6I\x9d\xd9\x18\xf5\x91\xbfq\xfe\xf2\x9a\x02\x9fC0xb\xccW(\xc1n+\n|5\xa5\x9c=^\xf1\x11H\x1c\xf73\x16\xd2\a\xfaw\xcc\xf1\xff7\xab\xa1\xeaF\x04\x17\x99\xd3\xd1\x83\xccG^\xbbdC\x8a\n\x88\xbcW@+\xafD\xd1\x8a\xc13W\xf66\x86\xe5\xee\xa7\x1d\x0f\x90\x00\xcf\xdb\xf5\xbf\xd4\xc8\x84\xb3\xeeb\xb0\xc7kN\x80\x93\xfd\x89\xe1\xc9tp\xd4jm\x7f\xf0a\xc3\x02\x14\xcf\xcf\\e!\a\x82\t,\xa7\x00\xbd&\xcax\xf8P\xc1\x8f\x87\x83\x0f\x93z', 0x1)
ioctl$auto(r0, 0x5521, r0)

2.8379481s ago: executing program 3 (id=2019):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x5)
socket(0x1d, 0x2, 0x2)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000)
io_uring_setup$auto(0x1, 0x0)
socket(0x1f, 0x2, 0x200000)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/timer_source\x00', 0x189001, 0x0)
write$auto(r1, 0x0, 0xe)
close_range$auto(0x2, 0x8, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
unshare$auto(0x40000080)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x3b87, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100)
mmap$auto(0x0, 0x4020009, 0xdf, 0x10000000000eb1, 0x401, 0x8000)
capset$auto(0x0, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x1e, 0x1, 0x2000a)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, r3, 0x8000)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)

2.654244491s ago: executing program 1 (id=2020):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r0, 0x0, 0x81)
write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/ip_vs_conn\x00', 0xf00, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x400000000000003, 0x29, 0x37, 0xffffffffffffffff, 0x0)
socket(0xa, 0x2, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x491, 0x400, 0x9}]})
openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000180), 0x80080, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
write$auto(r2, &(0x7f0000000440)='Y\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x1c}}, 0x4044820)
bpf$auto(0x22, &(0x7f0000000140)=@bpf_attr_11={0xffff, 0x6, 0x6, 0x800, 0x4000ffff, 0x3c09, 0xffffffff}, 0x81)
r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0)
mmap$auto(0x2000, 0x80009, 0xb, 0x8000000008011, r5, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000)
shutdown$auto(0x200000003, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)

2.643103253s ago: executing program 0 (id=2021):
socket(0x11, 0x80003, 0x300)
rt_sigqueueinfo$auto(0x0, 0xc74, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000040)='./file0\x00', 0x44, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000003c0)=""/192, 0xc0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0p/sub0/info\x00', 0x1c1282, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000280)=""/65, 0x41)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/README\x00', 0x8100, 0x0)
socket(0xa, 0x1, 0x100)
r1 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001400c7d2a2e1917949643de42b"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x2b, 0x1, 0x1)
recvmmsg$auto(r1, &(0x7f0000000580)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x5, 0x80000001}, 0x1}, 0x3, 0x6, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap$auto(0x0, 0x10000, 0x8000, 0xeb1, 0xfffffffffffffffa, 0x8000)
ppoll$auto(0x0, 0x9, 0x0, 0x0, 0x8)
madvise$auto(0x0, 0x200007, 0x19)
syz_clone3(0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)

2.009931976s ago: executing program 2 (id=2022):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/irq/3/smp_affinity_list\x00', 0x8f3b7a51b8162d21, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
socketpair$auto(0xffff7fff, 0x4, 0x80000001, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
ioctl$auto_TIOCSTI2(r0, 0x5412, &(0x7f0000000280)="e971")
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0)

1.850043812s ago: executing program 2 (id=2023):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x22, 0x2, 0x4)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x400000000000003, 0x29, 0x46, 0x0, 0x3)

1.833174674s ago: executing program 0 (id=2024):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x28641, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x10b402, 0x0)
socket(0xf, 0x3, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x3, 0x8000001f, 0x2, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
symlinkat$auto(0x0, r2, 0x0)
mmap$auto(0x0, 0x4994, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/irq/3/smp_affinity_list\x00', 0x8f3b7a51b8162d21, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000280)="e971")
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, 0x0, 0x82, 0x0)

1.678200263s ago: executing program 2 (id=2025):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x20, 0x0, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@SMC_NLA_EID_TABLE_ENTRY={0xc, 0x1, 'nl80211\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
ioctl$auto(r0, 0x80045440, r0)
r2 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_LLSEC_LIST_DEV(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, r2, 0x20, 0x70bd28, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0xaef5}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x60000c0}, 0x0)
r3 = openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/buffer_subbuf_size_kb\x00', 0x40000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x1c8300, 0x0)
r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
r5 = syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000200), r1)
sendmsg$auto_NLBL_UNLABEL_C_STATICLIST(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r5, 0x100, 0x70bd25, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @loopback}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000084}, 0x60048050)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000140)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"})
ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r4, 0x40505412, &(0x7f0000000180)={0xf8000000, 0xffffffff, 0x0, 0xe, 0x6, "938ea2d173ab8e40fe2a9879b43f6898a29bf86e6f763339cb35e64d09000000000000009e26168eeb6c1e333da4c61f57ff1de9d205133fc67c2e1d"})
readv$auto(r3, &(0x7f0000004d80)={&(0x7f0000000000)="8a5300d4de00cf0db1eb582b583dd7f97609256098013936087990d4771776a7599b96de55eaae0b8dadf7b36c48d26434dab21a1549373bd6d1fd7cc7e72f28ff4ba9cd072e4da07cb9f648892bf782fb430d0fba65dac177608bfb340b3dd8f7ff0f000000000000de012b8911d98304839c112b07ce22a7b79cf3ccbfb6019f859407ae832f5640856409eea3066baf48136800c34a0a00000035643f1e31d149209f07933c5f2c17e6de", 0x2000000000073a5}, 0x2)

1.614715102s ago: executing program 1 (id=2026):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x28641, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x6)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x10b402, 0x0)
socket(0xf, 0x3, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/irq/3/smp_affinity_list\x00', 0x8f3b7a51b8162d21, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0)
socketpair$auto(0xffff7fff, 0x4, 0x80000001, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x5412, &(0x7f0000000280)="e971")

1.197828585s ago: executing program 2 (id=2027):
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_virtual_ncidev_fops_virtual_ncidev(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0xecc6, 0x0, 0x7352, 0x2d, 0x200000000045f, 0x6, 0x7, 0x3, 0x2, 0x9, 0x36e, 0x6, 0x2, 0x3000, 0x9, 0x8, 0x10003, 0x8, 0x1, 0x0, 0x5, 0x1ffb, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffff00, 0x0, 0x0, 0x0, 0x3ba0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffffffffff3, 0x0, 0x0, 0xffffffffffffffff]}, 0x9, 0x11)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x42003, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x10000, 0x98)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-touch0\x00', 0xe0800, 0x0)
ioctl$auto(r1, 0xc0205648, r1)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/cmdline\x00', 0x2000, 0x0)
read$auto_proc_pid_cmdline_ops_base(r2, 0x0, 0x0)
r3 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xf7s\x1cJ\x99\x8a>c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
memfd_create$auto(0x0, 0x7)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x6b)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @loopback}, 0x55)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r4, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/devices/virtual/block/nbd12/queue/max_hw_sectors_kb\x00', 0x40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000500)=""/4104, 0x1008)

784.580077ms ago: executing program 0 (id=2028):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='/sys/devices/virtual/block/loop1/queue/wbt_lat_usec\x00', 0x2062, 0x0)
write$auto(r1, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x9)
ioctl$auto(r0, 0x400454ca, 0x38)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x80900, 0x0)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20a01, 0x0)
r3 = timerfd_create$auto_CLOCK_TAI(0xb, 0xb)
sendmsg$auto_NL802154_CMD_SET_MAX_ASSOCIATIONS(r3, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)=ANY=[@ANYBLOB="8376b709", @ANYRES16=0x0, @ANYBLOB="00042cbd7000fcdbdf252a000000050024000300000008002700020000000500080002000000b60028800400e480d3a1ad07c68cd2d3bf08d9ec1dbca5906354998d7b0b28f7eed045edf6159e6980d8a25fcf688fd87939d36fe96ad310f11f8b63d65eba5d94fe6812094bab90604dd6bfa272d97e1ae193d6c64ec7fdacca27aed987aecd2f08df2ea91f42ac0aab4a88dd6bb34f4c9f413dc576dab5ac87a1cd06cacf8011a4df89f802cb91ab3767d12c08b76c6d2f4de3d4a403cb13204a796a48e5e644d232e14d39520467838c6e3b3d3e60e86501ad658a0000"], 0xe4}}, 0x4000)
ioctl$auto_BLKFLSBUF(r2, 0x1261, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcsa\x00', 0x80, 0x0)
mmap$auto(0xb2, 0x14, 0xffb, 0x8000000008015, 0xffffffffffffffff, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/rpc/auth.rpcsec.context/channel\x00', 0x0, 0x0)
readv$auto(0x3, 0x0, 0x1)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
socket(0x29, 0x4, 0xfffffffc)
r4 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x201, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(r4, &(0x7f0000000140)='!Ps\a', 0x4)
socket(0x1e, 0x1, 0x5)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r5, 0xffffffffffdffe00, &(0x7f0000000140))
r6 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup$auto(r6)

136.329927ms ago: executing program 1 (id=2029):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x48a22, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x8, 0x20009, 0xf, 0x800000000000ebf, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x6a)
socket(0x2, 0x80802, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000005c40)='/dev/nbd9\x00', 0x2000, 0x0)
fadvise64$auto_POSIX_FADV_SEQUENTIAL(r0, 0x86, 0x8, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b70, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r1 = socket(0x2, 0x801, 0x106)
getsockopt$auto(r1, 0x11c, 0x3, 0x0, 0x0)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4e32, @rand_addr=0x64010101}, 0x51)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
socket(0x10, 0x2, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptye6\x00', 0x400600, 0x0)
r2 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154)
unshare$auto(0x20000)
execveat$auto(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x11000)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000100), 0x240, 0x0)

0s ago: executing program 3 (id=2030):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001040)='/sys/module/nfs/parameters/nfs_mountpoint_expiry_timeout\x00', 0x80040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000000)=""/4118, 0x1016)

kernel console output (not intermixed with test programs):

 
       	 
        
     	  	 
        
        
        
    
   	       					
   	     	 	 	   
   	     	 	 	   
   	       					
      	  		 	 	 	  
	  				  	  	  
   	       					
    		 	 
     
   	       					
    	 
    	 
   	   
   	     	 	 	   
     	 	
      	  	
   	     	 	 	   
   	     	 	 	   
     	 	
    	 
   	       					
   	       					
    	 
   	     	 	 	   

[  646.763218][T12326] block nbd7: not configured, cannot reconfigure

syzkaller
syzkaller login: [  649.807484][T12369] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1227'.
[  650.010759][   T31] audit: type=1800 audit(4294967409.300:52): pid=12373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1227" name="file0" dev="tmpfs" ino=1614 res=0 errno=0
[  651.299477][T12391] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1232'.
[  653.099714][T12420] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1238'.
[  653.174760][T12420] : renamed from bond_slave_1
[  653.283147][   T31] audit: type=1800 audit(4294967412.570:53): pid=12421 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1238" name="file0" dev="tmpfs" ino=1779 res=0 errno=0
[  655.644030][T12450] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1244'.
[  656.733316][T12357] Process accounting resumed
[  656.811756][T12469] sp0: Synchronizing with TNC
[  656.841057][T12465] sp0: Found TNC
[  657.174418][T12475] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1248'.
[  657.224770][T12475] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1248'.
[  658.357057][T12490] FAULT_INJECTION: forcing a failure.
[  658.357057][T12490] name failslab, interval 1, probability 0, space 0, times 0
[  658.391958][T12490] CPU: 0 UID: 0 PID: 12490 Comm: syz.3.1252 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  658.392008][T12490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  658.392027][T12490] Call Trace:
[  658.392038][T12490]  <TASK>
[  658.392049][T12490]  dump_stack_lvl+0x16c/0x1f0
[  658.392085][T12490]  should_fail_ex+0x512/0x640
[  658.392134][T12490]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  658.392185][T12490]  should_failslab+0xc2/0x120
[  658.392216][T12490]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  658.392267][T12490]  ? __pmd_alloc+0xbf/0x930
[  658.392310][T12490]  __pmd_alloc+0xbf/0x930
[  658.392349][T12490]  __handle_mm_fault+0xaac/0x5490
[  658.392404][T12490]  ? __pfx___handle_mm_fault+0x10/0x10
[  658.392485][T12490]  handle_mm_fault+0x589/0xd10
[  658.392538][T12490]  __get_user_pages+0x589/0x3b80
[  658.392588][T12490]  ? __pfx_mt_find+0x10/0x10
[  658.392623][T12490]  ? __pfx___get_user_pages+0x10/0x10
[  658.392676][T12490]  populate_vma_page_range+0x278/0x3a0
[  658.392718][T12490]  ? __pfx_populate_vma_page_range+0x10/0x10
[  658.392762][T12490]  ? __pfx_find_vma_intersection+0x10/0x10
[  658.392801][T12490]  ? do_mmap+0x69c/0x1210
[  658.392842][T12490]  __mm_populate+0x1d8/0x380
[  658.392883][T12490]  ? __pfx___mm_populate+0x10/0x10
[  658.392925][T12490]  ? up_write+0x1b2/0x520
[  658.392978][T12490]  vm_mmap_pgoff+0x362/0x450
[  658.393023][T12490]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  658.393060][T12490]  ? __fget_files+0x20e/0x3c0
[  658.393118][T12490]  ksys_mmap_pgoff+0x7d/0x5c0
[  658.393152][T12490]  ? __pfx_ksys_write+0x10/0x10
[  658.393205][T12490]  __x64_sys_mmap+0x125/0x190
[  658.393254][T12490]  do_syscall_64+0xcd/0x490
[  658.393288][T12490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.393320][T12490] RIP: 0033:0x7f7b7798e929
[  658.393345][T12490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  658.393375][T12490] RSP: 002b:00007f7b78833038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  658.393402][T12490] RAX: ffffffffffffffda RBX: 00007f7b77bb5fa0 RCX: 00007f7b7798e929
[  658.393421][T12490] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  658.393438][T12490] RBP: 00007f7b78833090 R08: 0000000000000002 R09: 0000000000008000
[  658.393457][T12490] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001
[  658.393475][T12490] R13: 0000000000000000 R14: 00007f7b77bb5fa0 R15: 00007ffe0b596448
[  658.393514][T12490]  </TASK>
[  658.838366][T12493] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input135
[  658.942236][T12488] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  658.974524][T12488] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  659.019908][T12488] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  659.030031][T12488] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  660.988624][T11866] Bluetooth: hci1: command 0x0406 tx timeout
[  660.994741][T11866] Bluetooth: hci0: command 0x0406 tx timeout
[  661.071811][T12525] Bluetooth: hci3: command 0x0406 tx timeout
[  661.071823][ T5154] Bluetooth: hci2: command 0x0406 tx timeout
[  661.688275][T12539] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input137
[  661.718504][T12542] block nbd7: not configured, cannot reconfigure
[  662.815909][T12555] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1268'.
[  662.846154][T12557] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1268'.
[  663.455063][T12568] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input140
[  663.756672][T12571] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1270'.
[  664.236950][T12574] sp0: Synchronizing with TNC
[  664.244168][T12580] sp0: Found TNC
[  664.938990][T12596] block nbd7: not configured, cannot reconfigure
[  665.268415][T12601] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input141
[  666.347843][T12623] FAULT_INJECTION: forcing a failure.
[  666.347843][T12623] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  666.366554][T12623] CPU: 0 UID: 0 PID: 12623 Comm: syz.2.1281 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  666.366597][T12623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  666.366617][T12623] Call Trace:
[  666.366626][T12623]  <TASK>
[  666.366638][T12623]  dump_stack_lvl+0x16c/0x1f0
[  666.366673][T12623]  should_fail_ex+0x512/0x640
[  666.366728][T12623]  _copy_from_iter+0x29f/0x16f0
[  666.366762][T12623]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  666.366814][T12623]  ? __pfx__copy_from_iter+0x10/0x10
[  666.366843][T12623]  ? alloc_pages_mpol+0x25a/0x550
[  666.366875][T12623]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  666.366916][T12623]  copy_page_from_iter+0xde/0x180
[  666.366954][T12623]  anon_pipe_write+0xbe7/0x1a70
[  666.367021][T12623]  ? __pfx_anon_pipe_write+0x10/0x10
[  666.367081][T12623]  ? apparmor_file_permission+0x251/0x400
[  666.367121][T12623]  ? bpf_lsm_file_permission+0x9/0x10
[  666.367154][T12623]  ? security_file_permission+0x71/0x210
[  666.367202][T12623]  ? rw_verify_area+0xcf/0x680
[  666.367248][T12623]  vfs_write+0x6c7/0x1150
[  666.367296][T12623]  ? __pfx_anon_pipe_write+0x10/0x10
[  666.367349][T12623]  ? __pfx_vfs_write+0x10/0x10
[  666.367393][T12623]  ? find_held_lock+0x2b/0x80
[  666.367451][T12623]  ksys_write+0x1f8/0x250
[  666.367496][T12623]  ? __pfx_ksys_write+0x10/0x10
[  666.367563][T12623]  do_syscall_64+0xcd/0x490
[  666.367600][T12623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  666.367631][T12623] RIP: 0033:0x7f2e8038e929
[  666.367657][T12623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  666.367687][T12623] RSP: 002b:00007f2e81284038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  666.367714][T12623] RAX: ffffffffffffffda RBX: 00007f2e805b5fa0 RCX: 00007f2e8038e929
[  666.367732][T12623] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  666.367750][T12623] RBP: 00007f2e81284090 R08: 0000000000000000 R09: 0000000000000000
[  666.367766][T12623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  666.367783][T12623] R13: 0000000000000000 R14: 00007f2e805b5fa0 R15: 00007ffc6d6a8278
[  666.367823][T12623]  </TASK>
[  666.896481][T12635] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1279'.
[  667.284028][   T31] audit: type=1800 audit(4294967426.570:54): pid=12624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1279" name="file0" dev="tmpfs" ino=1758 res=0 errno=0
[  667.409945][T12648] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1283'.
[  667.597216][   T31] audit: type=1800 audit(4294967426.870:55): pid=12651 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1283" name="file0" dev="tmpfs" ino=1702 res=0 errno=0
[  668.077090][T12659] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1285'.
[  669.312799][T12675] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1288'.
[  669.325490][T12675] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1288'.
[  669.413543][T12644] Process accounting resumed
[  669.656271][T12674] Process accounting paused
[  670.501778][T12691] block nbd7: not configured, cannot reconfigure
[  671.890327][T12670] Process accounting resumed
[  672.608582][T12711] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1295'.
[  672.936101][T12715] block nbd7: not configured, cannot reconfigure
[  673.213491][T12717] FAULT_INJECTION: forcing a failure.
[  673.213491][T12717] name failslab, interval 1, probability 0, space 0, times 0
[  673.273889][T12717] CPU: 0 UID: 0 PID: 12717 Comm: syz.0.1298 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  673.273946][T12717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  673.273965][T12717] Call Trace:
[  673.273976][T12717]  <TASK>
[  673.273989][T12717]  dump_stack_lvl+0x16c/0x1f0
[  673.274031][T12717]  should_fail_ex+0x512/0x640
[  673.274084][T12717]  ? fs_reclaim_acquire+0xae/0x150
[  673.274128][T12717]  should_failslab+0xc2/0x120
[  673.274162][T12717]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  673.274215][T12717]  ? security_inode_alloc+0x3b/0x2b0
[  673.274258][T12717]  security_inode_alloc+0x3b/0x2b0
[  673.274298][T12717]  inode_init_always_gfp+0xce4/0x1030
[  673.274353][T12717]  alloc_inode+0x86/0x240
[  673.274388][T12717]  sock_alloc+0x40/0x280
[  673.274425][T12717]  __sock_create+0xc1/0x8d0
[  673.274486][T12717]  __sys_socket+0x14d/0x260
[  673.274552][T12717]  ? __pfx___sys_socket+0x10/0x10
[  673.274596][T12717]  ? xfd_validate_state+0x61/0x180
[  673.274636][T12717]  ? do_user_addr_fault+0x843/0x1370
[  673.274697][T12717]  __x64_sys_socket+0x72/0xb0
[  673.274735][T12717]  ? lockdep_hardirqs_on+0x7c/0x110
[  673.274808][T12717]  do_syscall_64+0xcd/0x490
[  673.274842][T12717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  673.274874][T12717] RIP: 0033:0x7f1c6cb90847
[  673.274899][T12717] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  673.274931][T12717] RSP: 002b:00007f1c6da7bfa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  673.274961][T12717] RAX: ffffffffffffffda RBX: 00007f1c6cdb5fa0 RCX: 00007f1c6cb90847
[  673.274982][T12717] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  673.274999][T12717] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  673.275017][T12717] R10: 0000200000000080 R11: 0000000000000286 R12: 0000000000000000
[  673.275036][T12717] R13: 0000000000000000 R14: 00007f1c6cdb5fa0 R15: 00007ffc1a89bc48
[  673.275075][T12717]  </TASK>
[  673.478914][T12717] socket: no more sockets
[  673.728157][   T31] audit: type=1326 audit(4294967433.000:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12716 comm="syz.0.1298" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1c6cb8e929 code=0x0
[  673.749859][    C1] vkms_vblank_simulate: vblank timer overrun
[  674.541717][T12727] Process accounting paused
[  675.529281][T12744] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1304'.
[  675.910027][T12747] tipc: Started in network mode
[  675.921127][T12747] tipc: Node identity ee00, cluster identity 4711
[  675.938233][T12747] tipc: Node number set to 60928
[  677.001493][T12723] Process accounting resumed
[  678.052425][T12780] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1314'.
[  679.218510][T12793] FAULT_INJECTION: forcing a failure.
[  679.218510][T12793] name failslab, interval 1, probability 0, space 0, times 0
[  679.231589][T12793] CPU: 0 UID: 0 PID: 12793 Comm: syz.2.1316 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  679.231626][T12793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  679.231642][T12793] Call Trace:
[  679.231650][T12793]  <TASK>
[  679.231662][T12793]  dump_stack_lvl+0x16c/0x1f0
[  679.231694][T12793]  should_fail_ex+0x512/0x640
[  679.231740][T12793]  ? __kmalloc_noprof+0xbf/0x510
[  679.231787][T12793]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  679.231828][T12793]  should_failslab+0xc2/0x120
[  679.231857][T12793]  __kmalloc_noprof+0xd2/0x510
[  679.231911][T12793]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  679.231970][T12793]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  679.232014][T12793]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  679.232056][T12793]  ? trace_cap_capable+0x18d/0x200
[  679.232097][T12793]  ? bpf_lsm_capable+0x9/0x10
[  679.232131][T12793]  ? security_capable+0x7e/0x260
[  679.232161][T12793]  ? ns_capable+0xd7/0x110
[  679.232195][T12793]  genl_rcv_msg+0x55c/0x800
[  679.232240][T12793]  ? __pfx_genl_rcv_msg+0x10/0x10
[  679.232282][T12793]  ? __pfx_ovs_vport_cmd_new+0x10/0x10
[  679.232325][T12793]  netlink_rcv_skb+0x158/0x420
[  679.232376][T12793]  ? __pfx_genl_rcv_msg+0x10/0x10
[  679.232422][T12793]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  679.232476][T12793]  ? netlink_deliver_tap+0x1ae/0xd30
[  679.232517][T12793]  genl_rcv+0x28/0x40
[  679.232555][T12793]  netlink_unicast+0x53d/0x7f0
[  679.232599][T12793]  ? __pfx_netlink_unicast+0x10/0x10
[  679.232648][T12793]  netlink_sendmsg+0x8d1/0xdd0
[  679.232694][T12793]  ? __pfx_netlink_sendmsg+0x10/0x10
[  679.232748][T12793]  ____sys_sendmsg+0xa95/0xc70
[  679.232790][T12793]  ? copy_msghdr_from_user+0x10a/0x160
[  679.232822][T12793]  ? __pfx_____sys_sendmsg+0x10/0x10
[  679.232882][T12793]  ___sys_sendmsg+0x134/0x1d0
[  679.232914][T12793]  ? __pfx____sys_sendmsg+0x10/0x10
[  679.232949][T12793]  ? __lock_acquire+0x622/0x1c90
[  679.233034][T12793]  __sys_sendmsg+0x16d/0x220
[  679.233068][T12793]  ? __pfx___sys_sendmsg+0x10/0x10
[  679.233136][T12793]  do_syscall_64+0xcd/0x490
[  679.233174][T12793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  679.233210][T12793] RIP: 0033:0x7f2e8038e929
[  679.233239][T12793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  679.233271][T12793] RSP: 002b:00007f2e81284038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  679.233304][T12793] RAX: ffffffffffffffda RBX: 00007f2e805b5fa0 RCX: 00007f2e8038e929
[  679.233328][T12793] RDX: 0000000000000800 RSI: 00002000000011c0 RDI: 0000000000000003
[  679.233348][T12793] RBP: 00007f2e81284090 R08: 0000000000000000 R09: 0000000000000000
[  679.233369][T12793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  679.233391][T12793] R13: 0000000000000000 R14: 00007f2e805b5fa0 R15: 00007ffc6d6a8278
[  679.233436][T12793]  </TASK>
[  679.393891][T12795] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1315'.
[  679.394616][T12795] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1315'.
[  682.448330][T12844] block nbd7: not configured, cannot reconfigure
[  683.632538][T12525] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  684.375839][T12863] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input143
[  684.450376][T12867] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input144
[  684.632234][T12869] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1330'.
[  685.055128][T12865] Invalid ELF header magic: != ELF
[  685.413399][T12883] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input145
[  685.680790][T12888] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1338'.
[  686.863076][T12907] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1343'.
[  688.504426][T12931] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[  690.278692][T12941] syz.2.1350: vmalloc error: size 268435456, failed to allocated page array size 524288, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  690.328748][T12941] CPU: 1 UID: 0 PID: 12941 Comm: syz.2.1350 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  690.328810][T12941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  690.328828][T12941] Call Trace:
[  690.328838][T12941]  <TASK>
[  690.328849][T12941]  dump_stack_lvl+0x16c/0x1f0
[  690.328883][T12941]  warn_alloc+0x248/0x3a0
[  690.328944][T12941]  ? __pfx_warn_alloc+0x10/0x10
[  690.329010][T12941]  ? packet_set_ring+0xb07/0x18d0
[  690.329056][T12941]  ? __vmalloc_node_noprof+0xad/0xf0
[  690.329107][T12941]  __vmalloc_node_range_noprof+0x101b/0x14b0
[  690.329190][T12941]  ? packet_set_ring+0xb07/0x18d0
[  690.329254][T12941]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  690.329300][T12941]  ? alloc_pages_mpol+0x25a/0x550
[  690.329336][T12941]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  690.329377][T12941]  ? packet_set_ring+0xb07/0x18d0
[  690.329423][T12941]  __vmalloc_node_noprof+0xad/0xf0
[  690.329465][T12941]  ? packet_set_ring+0xb07/0x18d0
[  690.329515][T12941]  packet_set_ring+0xb07/0x18d0
[  690.329579][T12941]  packet_setsockopt+0x121b/0x33c0
[  690.329653][T12941]  ? __pfx_packet_setsockopt+0x10/0x10
[  690.329713][T12941]  ? aa_sk_perm+0x2f4/0xb10
[  690.329757][T12941]  ? __pfx_aa_sk_perm+0x10/0x10
[  690.329798][T12941]  ? errseq_sample+0x53/0x70
[  690.329837][T12941]  ? __pfx_packet_setsockopt+0x10/0x10
[  690.329907][T12941]  do_sock_setsockopt+0x224/0x470
[  690.329958][T12941]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  690.330024][T12941]  __sys_setsockopt+0x120/0x1a0
[  690.330096][T12941]  __x64_sys_setsockopt+0xbd/0x160
[  690.330146][T12941]  ? do_syscall_64+0x91/0x490
[  690.330176][T12941]  ? lockdep_hardirqs_on+0x7c/0x110
[  690.330224][T12941]  do_syscall_64+0xcd/0x490
[  690.330274][T12941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  690.330305][T12941] RIP: 0033:0x7f2e8038e929
[  690.330328][T12941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  690.330357][T12941] RSP: 002b:00007f2e81263038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  690.330385][T12941] RAX: ffffffffffffffda RBX: 00007f2e805b6080 RCX: 00007f2e8038e929
[  690.330405][T12941] RDX: 0000000000000005 RSI: 0000000000000107 RDI: 000000000000000a
[  690.330421][T12941] RBP: 00007f2e80410b39 R08: 000000000000ce24 R09: 0000000000000000
[  690.330440][T12941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  690.330457][T12941] R13: 0000000000000000 R14: 00007f2e805b6080 R15: 00007ffc6d6a8278
[  690.330495][T12941]  </TASK>
[  690.330587][T12941] Mem-Info:
[  690.605279][T12941] active_anon:22173 inactive_anon:1 isolated_anon:0
[  690.605279][T12941]  active_file:13803 inactive_file:48441 isolated_file:0
[  690.605279][T12941]  unevictable:768 dirty:1033 writeback:0
[  690.605279][T12941]  slab_reclaimable:11287 slab_unreclaimable:98236
[  690.605279][T12941]  mapped:30526 shmem:8074 pagetables:1413
[  690.605279][T12941]  sec_pagetables:0 bounce:0
[  690.605279][T12941]  kernel_misc_reclaimable:0
[  690.605279][T12941]  free:1288125 free_pcp:19837 free_cma:0
[  690.650795][    C0] vkms_vblank_simulate: vblank timer overrun
[  690.660511][T12941] Node 0 active_anon:88292kB inactive_anon:4kB active_file:55212kB inactive_file:193564kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:122104kB dirty:4128kB writeback:0kB shmem:30360kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12060kB pagetables:5512kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  690.694237][    C0] vkms_vblank_simulate: vblank timer overrun
[  690.763786][T12941] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  690.795365][    C0] vkms_vblank_simulate: vblank timer overrun
[  690.818849][T12941] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  690.865948][T12941] lowmem_reserve[]: 0 2481 2482 2482 2482
[  690.917379][T12941] Node 0 DMA32 free:1226372kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB free_highatomic:0KB active_anon:83196kB inactive_anon:4kB active_file:55212kB inactive_file:191984kB unevictable:1536kB writepending:2964kB present:3129332kB managed:2540896kB mlocked:0kB bounce:0kB free_pcp:74260kB local_pcp:40132kB free_cma:0kB
[  690.949831][    C0] vkms_vblank_simulate: vblank timer overrun
[  690.976427][T12941] lowmem_reserve[]: 0 0 1 1 1
[  691.018878][T12957] FAULT_INJECTION: forcing a failure.
[  691.018878][T12957] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  691.032353][T12941] Node 0 Normal free:20kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1580kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  691.061606][    C0] vkms_vblank_simulate: vblank timer overrun
[  691.110853][T12957] CPU: 1 UID: 0 PID: 12957 Comm: syz.3.1352 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  691.110896][T12957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  691.110914][T12957] Call Trace:
[  691.110927][T12957]  <TASK>
[  691.110939][T12957]  dump_stack_lvl+0x16c/0x1f0
[  691.110974][T12957]  should_fail_ex+0x512/0x640
[  691.111028][T12957]  should_fail_alloc_page+0xe7/0x130
[  691.111070][T12957]  prepare_alloc_pages+0x3c2/0x610
[  691.111116][T12957]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  691.111167][T12957]  ? __pfx_stack_trace_save+0x10/0x10
[  691.111202][T12957]  ? stack_depot_save_flags+0x28/0xa40
[  691.111254][T12957]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  691.111305][T12957]  ? kasan_save_stack+0x42/0x60
[  691.111350][T12957]  ? kasan_save_stack+0x33/0x60
[  691.111395][T12957]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  691.111443][T12957]  ? __pmd_alloc+0xbf/0x930
[  691.111477][T12957]  ? handle_mm_fault+0x589/0xd10
[  691.111535][T12957]  ? populate_vma_page_range+0x278/0x3a0
[  691.111576][T12957]  ? __mm_populate+0x1d8/0x380
[  691.111612][T12957]  ? vm_mmap_pgoff+0x362/0x450
[  691.111641][T12957]  ? ksys_mmap_pgoff+0x7d/0x5c0
[  691.111674][T12957]  ? __x64_sys_mmap+0x125/0x190
[  691.111717][T12957]  ? do_syscall_64+0xcd/0x490
[  691.111747][T12957]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  691.111796][T12957]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  691.111849][T12957]  ? policy_nodemask+0xea/0x4e0
[  691.111886][T12957]  alloc_pages_mpol+0x1fb/0x550
[  691.111922][T12957]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  691.111952][T12957]  ? css_rstat_updated+0x9d/0xd30
[  691.111998][T12957]  alloc_pages_noprof+0x131/0x390
[  691.112043][T12957]  pte_alloc_one+0x1c/0x3a0
[  691.112098][T12957]  __pte_alloc+0x6d/0x3c0
[  691.112132][T12957]  ? __pfx___pte_alloc+0x10/0x10
[  691.112168][T12957]  ? _raw_spin_unlock+0x28/0x50
[  691.112213][T12957]  ? __pmd_alloc+0x3fb/0x930
[  691.112255][T12957]  __handle_mm_fault+0x4358/0x5490
[  691.112312][T12957]  ? __pfx___handle_mm_fault+0x10/0x10
[  691.112392][T12957]  handle_mm_fault+0x589/0xd10
[  691.112448][T12957]  __get_user_pages+0x589/0x3b80
[  691.112499][T12957]  ? __pfx_mt_find+0x10/0x10
[  691.112535][T12957]  ? __pfx___get_user_pages+0x10/0x10
[  691.112591][T12957]  populate_vma_page_range+0x278/0x3a0
[  691.112638][T12957]  ? __pfx_populate_vma_page_range+0x10/0x10
[  691.112677][T12957]  ? __pfx_find_vma_intersection+0x10/0x10
[  691.112718][T12957]  ? do_mmap+0x69c/0x1210
[  691.112759][T12957]  __mm_populate+0x1d8/0x380
[  691.112809][T12957]  ? __pfx___mm_populate+0x10/0x10
[  691.112853][T12957]  ? up_write+0x1b2/0x520
[  691.112906][T12957]  vm_mmap_pgoff+0x362/0x450
[  691.112945][T12957]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  691.112990][T12957]  ? __x64_sys_futex+0x1e0/0x4c0
[  691.113028][T12957]  ? __x64_sys_futex+0x1e9/0x4c0
[  691.113095][T12957]  ksys_mmap_pgoff+0x7d/0x5c0
[  691.113131][T12957]  ? xfd_validate_state+0x61/0x180
[  691.113173][T12957]  ? __pfx_ksys_write+0x10/0x10
[  691.113230][T12957]  __x64_sys_mmap+0x125/0x190
[  691.113279][T12957]  do_syscall_64+0xcd/0x490
[  691.113315][T12957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  691.113347][T12957] RIP: 0033:0x7f7b7798e929
[  691.113372][T12957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  691.113404][T12957] RSP: 002b:00007f7b787d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  691.113434][T12957] RAX: ffffffffffffffda RBX: 00007f7b77bb6240 RCX: 00007f7b7798e929
[  691.113456][T12957] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  691.113476][T12957] RBP: 00007f7b77a10b39 R08: 0000000000000002 R09: 0000000000008000
[  691.113496][T12957] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  691.113517][T12957] R13: 0000000000000000 R14: 00007f7b77bb6240 R15: 00007ffe0b596448
[  691.113559][T12957]  </TASK>
[  691.636361][T12941] lowmem_reserve[]: 0 0 0 0 0
[  691.645459][T12941] Node 1 Normal free:3913704kB boost:0kB min:55788kB low:69732kB high:83676kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:6588kB local_pcp:6460kB free_cma:0kB
[  691.676603][    C0] vkms_vblank_simulate: vblank timer overrun
[  691.905040][T12941] lowmem_reserve[]: 0 0 0 0 0
[  691.920047][T12941] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  691.933441][T12941] Node 0 DMA32: 3131*4kB (UM) 1766*8kB (UM) 1460*16kB (UM) 815*32kB (UME) 1221*64kB (UME) 636*128kB (UME) 370*256kB (UME) 188*512kB (UME) 63*1024kB (UME) 2*2048kB (UM) 183*4096kB (UM) = 1244796kB
[  691.971877][T12941] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  692.050855][T12941] Node 1 Normal: 231*4kB (UME) 62*8kB (UME) 42*16kB (UME) 227*32kB (UME) 128*64kB (UME) 41*128kB (UME) 14*256kB (UME) 4*512kB (UM) 2*1024kB (ME) 2*2048kB (ME) 947*4096kB (M) = 3913484kB
[  692.106413][T12941] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  692.120453][T12941] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  692.238353][T12941] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  692.278315][T12941] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  692.287701][T12941] 63892 total pagecache pages
[  692.328931][T12941] 2 pages in swap cache
[  692.333187][T12941] Free swap  = 122264kB
[  692.337383][T12941] Total swap = 124996kB
[  692.378136][T12941] 2097051 pages RAM
[  692.382025][T12941] 0 pages HighMem/MovableOnly
[  692.386743][T12941] 429785 pages reserved
[  692.408146][T12941] 0 pages cma reserved
[  692.412600][T12967] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1357'.
[  692.451966][T12970] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1357'.
[  695.390226][T13009] binder: 13007:13009 ioctl 4030582b 6 returned -22
[  695.444616][T13009] binder: 13007:13009 ioctl c0306201 2000000000c0 returned -11
[  695.958730][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  695.965698][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  696.222014][T13026] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1370'.
[  696.242223][T13025] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1370'.
[  696.983934][T13034] sp0: Synchronizing with TNC
[  696.992357][T13034] sp0: Found TNC
[  698.064881][T13036] block nbd7: not configured, cannot reconfigure
[  698.929692][T13053] FAULT_INJECTION: forcing a failure.
[  698.929692][T13053] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  698.948192][T13053] CPU: 0 UID: 0 PID: 13053 Comm: syz.2.1378 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  698.948235][T13053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  698.948254][T13053] Call Trace:
[  698.948264][T13053]  <TASK>
[  698.948276][T13053]  dump_stack_lvl+0x16c/0x1f0
[  698.948311][T13053]  should_fail_ex+0x512/0x640
[  698.948361][T13053]  _copy_to_user+0x32/0xd0
[  698.948390][T13053]  simple_read_from_buffer+0xcb/0x170
[  698.948433][T13053]  proc_fail_nth_read+0x197/0x270
[  698.948474][T13053]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  698.948516][T13053]  ? rw_verify_area+0xcf/0x680
[  698.948558][T13053]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  698.948597][T13053]  vfs_read+0x1e1/0xc60
[  698.948649][T13053]  ? __pfx___mutex_lock+0x10/0x10
[  698.948680][T13053]  ? __pfx_vfs_read+0x10/0x10
[  698.948739][T13053]  ? __fget_files+0x20e/0x3c0
[  698.948796][T13053]  ksys_read+0x12a/0x250
[  698.948844][T13053]  ? __pfx_ksys_read+0x10/0x10
[  698.948896][T13053]  ? fput+0x70/0xf0
[  698.948936][T13053]  do_syscall_64+0xcd/0x490
[  698.948972][T13053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  698.949006][T13053] RIP: 0033:0x7f2e8038d33c
[  698.949039][T13053] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  698.949070][T13053] RSP: 002b:00007f2e81263030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  698.949101][T13053] RAX: ffffffffffffffda RBX: 00007f2e805b6080 RCX: 00007f2e8038d33c
[  698.949121][T13053] RDX: 000000000000000f RSI: 00007f2e812630a0 RDI: 0000000000000004
[  698.949139][T13053] RBP: 00007f2e81263090 R08: 0000000000000000 R09: 0000000000000000
[  698.949157][T13053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  698.949175][T13053] R13: 0000000000000000 R14: 00007f2e805b6080 R15: 00007ffc6d6a8278
[  698.949216][T13053]  </TASK>
[  699.863700][T13073] sp0: Synchronizing with TNC
[  699.906835][T13067] sp0: Found TNC
[  700.821054][T13087] sp0: Synchronizing with TNC
[  700.857193][T13081] sp0: Found TNC
[  701.031495][T13075] Process accounting resumed
[  701.133309][T13090] random: crng reseeded on system resumption
[  701.668290][T13098] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input148
[  702.739980][T13118] block nbd7: not configured, cannot reconfigure
[  702.858774][T13120] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input149
[  703.195028][T13105] Process accounting paused
[  703.278829][T13133] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1393'.
[  703.562596][T13132] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1392'.
[  704.308411][T13146] FAULT_INJECTION: forcing a failure.
[  704.308411][T13146] name failslab, interval 1, probability 0, space 0, times 0
[  704.333530][T13146] CPU: 0 UID: 0 PID: 13146 Comm: syz.3.1395 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  704.333575][T13146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  704.333593][T13146] Call Trace:
[  704.333604][T13146]  <TASK>
[  704.333616][T13146]  dump_stack_lvl+0x16c/0x1f0
[  704.333653][T13146]  should_fail_ex+0x512/0x640
[  704.333710][T13146]  should_failslab+0xc2/0x120
[  704.333754][T13146]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  704.333804][T13146]  ? skb_clone+0x190/0x3f0
[  704.333850][T13146]  skb_clone+0x190/0x3f0
[  704.333884][T13146]  netlink_deliver_tap+0xabd/0xd30
[  704.333931][T13146]  netlink_unicast+0x5df/0x7f0
[  704.333975][T13146]  ? __pfx_netlink_unicast+0x10/0x10
[  704.334024][T13146]  ? security_netlink_send+0x13/0x210
[  704.334058][T13146]  ? security_netlink_send+0x1d3/0x210
[  704.334102][T13146]  netlink_sendmsg+0x8d1/0xdd0
[  704.334149][T13146]  ? __pfx_netlink_sendmsg+0x10/0x10
[  704.334205][T13146]  ____sys_sendmsg+0xa95/0xc70
[  704.334251][T13146]  ? __pfx_____sys_sendmsg+0x10/0x10
[  704.334300][T13146]  ? __pfx__kstrtoull+0x10/0x10
[  704.334351][T13146]  ___sys_sendmsg+0x134/0x1d0
[  704.334385][T13146]  ? __pfx____sys_sendmsg+0x10/0x10
[  704.334458][T13146]  ? find_held_lock+0x2b/0x80
[  704.334518][T13146]  __sys_sendmmsg+0x200/0x420
[  704.334557][T13146]  ? __pfx___sys_sendmmsg+0x10/0x10
[  704.334606][T13146]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  704.334658][T13146]  ? fput+0x70/0xf0
[  704.334691][T13146]  ? ksys_write+0x1ac/0x250
[  704.334750][T13146]  ? __pfx_ksys_write+0x10/0x10
[  704.334805][T13146]  __x64_sys_sendmmsg+0x9c/0x100
[  704.334843][T13146]  ? lockdep_hardirqs_on+0x7c/0x110
[  704.334895][T13146]  do_syscall_64+0xcd/0x490
[  704.334930][T13146]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  704.334962][T13146] RIP: 0033:0x7f7b7798e929
[  704.334987][T13146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  704.335017][T13146] RSP: 002b:00007f7b78833038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  704.335045][T13146] RAX: ffffffffffffffda RBX: 00007f7b77bb5fa0 RCX: 00007f7b7798e929
[  704.335063][T13146] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000006
[  704.335080][T13146] RBP: 00007f7b78833090 R08: 0000000000000000 R09: 0000000000000000
[  704.335097][T13146] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  704.335114][T13146] R13: 0000000000000000 R14: 00007f7b77bb5fa0 R15: 00007ffe0b596448
[  704.335152][T13146]  </TASK>
[  704.336219][T13146] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1395'.
[  704.663160][T13158] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  704.687902][T13152] Process accounting resumed
[  705.191316][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  705.197747][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  705.209069][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  705.215451][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  705.231641][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  705.239191][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  705.249613][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  705.255937][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  705.480777][T13172] FAULT_INJECTION: forcing a failure.
[  705.480777][T13172] name failslab, interval 1, probability 0, space 0, times 0
[  705.544105][T13172] CPU: 1 UID: 0 PID: 13172 Comm: syz.2.1399 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  705.544152][T13172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  705.544180][T13172] Call Trace:
[  705.544191][T13172]  <TASK>
[  705.544204][T13172]  dump_stack_lvl+0x16c/0x1f0
[  705.544240][T13172]  should_fail_ex+0x512/0x640
[  705.544292][T13172]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  705.544351][T13172]  should_failslab+0xc2/0x120
[  705.544394][T13172]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  705.544456][T13172]  ? __pmd_alloc+0xbf/0x930
[  705.544501][T13172]  __pmd_alloc+0xbf/0x930
[  705.544545][T13172]  __handle_mm_fault+0xaac/0x5490
[  705.544602][T13172]  ? __pfx___handle_mm_fault+0x10/0x10
[  705.544685][T13172]  handle_mm_fault+0x589/0xd10
[  705.544740][T13172]  __get_user_pages+0x589/0x3b80
[  705.544793][T13172]  ? __pfx_mt_find+0x10/0x10
[  705.544841][T13172]  ? __pfx___get_user_pages+0x10/0x10
[  705.544914][T13172]  populate_vma_page_range+0x278/0x3a0
[  705.544959][T13172]  ? __pfx_populate_vma_page_range+0x10/0x10
[  705.544999][T13172]  ? __pfx_find_vma_intersection+0x10/0x10
[  705.545041][T13172]  ? do_mmap+0x69c/0x1210
[  705.545084][T13172]  __mm_populate+0x1d8/0x380
[  705.545125][T13172]  ? __pfx___mm_populate+0x10/0x10
[  705.545169][T13172]  ? up_write+0x1b2/0x520
[  705.545221][T13172]  vm_mmap_pgoff+0x362/0x450
[  705.545278][T13172]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  705.545323][T13172]  ? __x64_sys_futex+0x1e0/0x4c0
[  705.545364][T13172]  ? __x64_sys_futex+0x1e9/0x4c0
[  705.545423][T13172]  ksys_mmap_pgoff+0x7d/0x5c0
[  705.545460][T13172]  ? xfd_validate_state+0x61/0x180
[  705.545501][T13172]  ? __pfx_ksys_write+0x10/0x10
[  705.545556][T13172]  __x64_sys_mmap+0x125/0x190
[  705.545607][T13172]  do_syscall_64+0xcd/0x490
[  705.545645][T13172]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.545679][T13172] RIP: 0033:0x7f2e8038e929
[  705.545705][T13172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  705.545738][T13172] RSP: 002b:00007f2e81263038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  705.545769][T13172] RAX: ffffffffffffffda RBX: 00007f2e805b6080 RCX: 00007f2e8038e929
[  705.545791][T13172] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  705.545811][T13172] RBP: 00007f2e80410b39 R08: 0000000000000002 R09: 0000000000008000
[  705.545830][T13172] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  705.545850][T13172] R13: 0000000000000000 R14: 00007f2e805b6080 R15: 00007ffc6d6a8278
[  705.545894][T13172]  </TASK>
[  707.594421][T13197] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input151
[  709.080202][T13210] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1409'.
[  709.775985][T13183] Process accounting paused
[  709.969198][T13226] FAULT_INJECTION: forcing a failure.
[  709.969198][T13226] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  709.982752][T13226] CPU: 0 UID: 0 PID: 13226 Comm: syz.3.1412 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  709.982788][T13226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  709.982802][T13226] Call Trace:
[  709.982811][T13226]  <TASK>
[  709.982819][T13226]  dump_stack_lvl+0x16c/0x1f0
[  709.982846][T13226]  should_fail_ex+0x512/0x640
[  709.982889][T13226]  should_fail_alloc_page+0xe7/0x130
[  709.982916][T13226]  prepare_alloc_pages+0x3c2/0x610
[  709.982958][T13226]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  709.982999][T13226]  ? __pfx_stack_trace_save+0x10/0x10
[  709.983027][T13226]  ? stack_depot_save_flags+0x28/0xa40
[  709.983068][T13226]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  709.983109][T13226]  ? kasan_save_stack+0x42/0x60
[  709.983145][T13226]  ? kasan_save_stack+0x33/0x60
[  709.983181][T13226]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  709.983218][T13226]  ? __pmd_alloc+0xbf/0x930
[  709.983244][T13226]  ? handle_mm_fault+0x589/0xd10
[  709.983275][T13226]  ? populate_vma_page_range+0x278/0x3a0
[  709.983305][T13226]  ? __mm_populate+0x1d8/0x380
[  709.983331][T13226]  ? vm_mmap_pgoff+0x362/0x450
[  709.983354][T13226]  ? ksys_mmap_pgoff+0x7d/0x5c0
[  709.983379][T13226]  ? __x64_sys_mmap+0x125/0x190
[  709.983410][T13226]  ? do_syscall_64+0xcd/0x490
[  709.983431][T13226]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  709.983467][T13226]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  709.983506][T13226]  ? policy_nodemask+0xea/0x4e0
[  709.983533][T13226]  alloc_pages_mpol+0x1fb/0x550
[  709.983557][T13226]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  709.983579][T13226]  ? css_rstat_updated+0x9d/0xd30
[  709.983612][T13226]  alloc_pages_noprof+0x131/0x390
[  709.983636][T13226]  pte_alloc_one+0x1c/0x3a0
[  709.983674][T13226]  __pte_alloc+0x6d/0x3c0
[  709.983698][T13226]  ? __pfx___pte_alloc+0x10/0x10
[  709.983734][T13226]  ? _raw_spin_unlock+0x28/0x50
[  709.983765][T13226]  ? __pmd_alloc+0x3fb/0x930
[  709.983794][T13226]  __handle_mm_fault+0x4358/0x5490
[  709.983832][T13226]  ? __pfx___handle_mm_fault+0x10/0x10
[  709.983886][T13226]  handle_mm_fault+0x589/0xd10
[  709.983922][T13226]  __get_user_pages+0x589/0x3b80
[  709.983962][T13226]  ? __pfx_mt_find+0x10/0x10
[  709.983987][T13226]  ? __pfx___get_user_pages+0x10/0x10
[  709.984023][T13226]  populate_vma_page_range+0x278/0x3a0
[  709.984054][T13226]  ? __pfx_populate_vma_page_range+0x10/0x10
[  709.984082][T13226]  ? __pfx_find_vma_intersection+0x10/0x10
[  709.984110][T13226]  ? do_mmap+0x69c/0x1210
[  709.984157][T13226]  __mm_populate+0x1d8/0x380
[  709.984187][T13226]  ? __pfx___mm_populate+0x10/0x10
[  709.984220][T13226]  ? up_write+0x1b2/0x520
[  709.984258][T13226]  vm_mmap_pgoff+0x362/0x450
[  709.984286][T13226]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  709.984317][T13226]  ? __x64_sys_futex+0x1e0/0x4c0
[  709.984346][T13226]  ? __x64_sys_futex+0x1e9/0x4c0
[  709.984379][T13226]  ksys_mmap_pgoff+0x7d/0x5c0
[  709.984405][T13226]  ? xfd_validate_state+0x61/0x180
[  709.984447][T13226]  ? __pfx_ksys_write+0x10/0x10
[  709.984483][T13226]  __x64_sys_mmap+0x125/0x190
[  709.984516][T13226]  do_syscall_64+0xcd/0x490
[  709.984540][T13226]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  709.984562][T13226] RIP: 0033:0x7f7b7798e929
[  709.984580][T13226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  709.984602][T13226] RSP: 002b:00007f7b78812038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  709.984622][T13226] RAX: ffffffffffffffda RBX: 00007f7b77bb6080 RCX: 00007f7b7798e929
[  709.984637][T13226] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  709.984651][T13226] RBP: 00007f7b77a10b39 R08: 0000000000000002 R09: 0000000000008000
[  709.984664][T13226] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  709.984678][T13226] R13: 0000000000000000 R14: 00007f7b77bb6080 R15: 00007ffe0b596448
[  709.984705][T13226]  </TASK>
[  710.364805][    C0] vkms_vblank_simulate: vblank timer overrun
[  710.905595][T13228] FAULT_INJECTION: forcing a failure.
[  710.905595][T13228] name failslab, interval 1, probability 0, space 0, times 0
[  710.978176][T13228] CPU: 0 UID: 0 PID: 13228 Comm: syz.0.1413 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  710.978229][T13228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  710.978245][T13228] Call Trace:
[  710.978253][T13228]  <TASK>
[  710.978269][T13228]  dump_stack_lvl+0x16c/0x1f0
[  710.978297][T13228]  should_fail_ex+0x512/0x640
[  710.978336][T13228]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  710.978378][T13228]  should_failslab+0xc2/0x120
[  710.978402][T13228]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  710.978439][T13228]  ? __proc_create+0xc3/0x8c0
[  710.978462][T13228]  ? __proc_create+0x2ce/0x8c0
[  710.978487][T13228]  __proc_create+0x2ce/0x8c0
[  710.978511][T13228]  ? __pfx___proc_create+0x10/0x10
[  710.978538][T13228]  ? _raw_write_unlock+0x28/0x50
[  710.978576][T13228]  ? proc_register+0x314/0x5f0
[  710.978602][T13228]  proc_create_reg+0x7d/0x180
[  710.978628][T13228]  proc_create_data+0x86/0x110
[  710.978653][T13228]  ? __pfx_proc_create_data+0x10/0x10
[  710.978679][T13228]  ? cache_register_net+0x137/0x5e0
[  710.978714][T13228]  cache_register_net+0x2d6/0x5e0
[  710.978745][T13228]  nfsd_export_init+0xb6/0x250
[  710.978773][T13228]  ? __pfx_nfsd_net_init+0x10/0x10
[  710.978799][T13228]  nfsd_net_init+0x33/0x3d0
[  710.978827][T13228]  ? __pfx_nfsd_net_init+0x10/0x10
[  710.978854][T13228]  ops_init+0x1df/0x5f0
[  710.978883][T13228]  setup_net+0x1ff/0x510
[  710.978907][T13228]  ? lockdep_init_map_type+0x5c/0x280
[  710.978944][T13228]  ? __pfx_setup_net+0x10/0x10
[  710.978973][T13228]  ? debug_mutex_init+0x37/0x70
[  710.979000][T13228]  copy_net_ns+0x2a6/0x5f0
[  710.979033][T13228]  create_new_namespaces+0x3ea/0xa90
[  710.979066][T13228]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  710.979096][T13228]  ksys_unshare+0x45b/0xa40
[  710.979130][T13228]  ? __pfx_ksys_unshare+0x10/0x10
[  710.979169][T13228]  ? xfd_validate_state+0x61/0x180
[  710.979211][T13228]  __x64_sys_unshare+0x31/0x40
[  710.979250][T13228]  do_syscall_64+0xcd/0x490
[  710.979285][T13228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.979319][T13228] RIP: 0033:0x7f1c6cb8e929
[  710.979345][T13228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  710.979389][T13228] RSP: 002b:00007f1c6da7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  710.979419][T13228] RAX: ffffffffffffffda RBX: 00007f1c6cdb5fa0 RCX: 00007f1c6cb8e929
[  710.979435][T13228] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  710.979449][T13228] RBP: 00007f1c6cc10b39 R08: 0000000000000000 R09: 0000000000000000
[  710.979464][T13228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  710.979477][T13228] R13: 0000000000000000 R14: 00007f1c6cdb5fa0 R15: 00007ffc1a89bc48
[  710.979507][T13228]  </TASK>
[  711.258458][    C0] vkms_vblank_simulate: vblank timer overrun
[  711.762990][T13243] FAULT_INJECTION: forcing a failure.
[  711.762990][T13243] name failslab, interval 1, probability 0, space 0, times 0
[  711.777538][T13243] CPU: 1 UID: 0 PID: 13243 Comm: syz.3.1415 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  711.777582][T13243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  711.777602][T13243] Call Trace:
[  711.777612][T13243]  <TASK>
[  711.777625][T13243]  dump_stack_lvl+0x16c/0x1f0
[  711.777663][T13243]  should_fail_ex+0x512/0x640
[  711.777712][T13243]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  711.777766][T13243]  should_failslab+0xc2/0x120
[  711.777801][T13243]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  711.777856][T13243]  ? __pmd_alloc+0xbf/0x930
[  711.777901][T13243]  __pmd_alloc+0xbf/0x930
[  711.777948][T13243]  __handle_mm_fault+0xaac/0x5490
[  711.778005][T13243]  ? __pfx___handle_mm_fault+0x10/0x10
[  711.778097][T13243]  handle_mm_fault+0x589/0xd10
[  711.778154][T13243]  __get_user_pages+0x589/0x3b80
[  711.778207][T13243]  ? __pfx_mt_find+0x10/0x10
[  711.778246][T13243]  ? __pfx___get_user_pages+0x10/0x10
[  711.778302][T13243]  populate_vma_page_range+0x278/0x3a0
[  711.778348][T13243]  ? __pfx_populate_vma_page_range+0x10/0x10
[  711.778389][T13243]  ? __pfx_find_vma_intersection+0x10/0x10
[  711.778431][T13243]  ? do_mmap+0x69c/0x1210
[  711.778475][T13243]  __mm_populate+0x1d8/0x380
[  711.778519][T13243]  ? __pfx___mm_populate+0x10/0x10
[  711.778564][T13243]  ? up_write+0x1b2/0x520
[  711.778620][T13243]  vm_mmap_pgoff+0x362/0x450
[  711.778660][T13243]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  711.778717][T13243]  ? __x64_sys_futex+0x1e0/0x4c0
[  711.778754][T13243]  ? __x64_sys_futex+0x1e9/0x4c0
[  711.778797][T13243]  ksys_mmap_pgoff+0x7d/0x5c0
[  711.778830][T13243]  ? xfd_validate_state+0x61/0x180
[  711.778868][T13243]  ? __pfx_ksys_write+0x10/0x10
[  711.778935][T13243]  __x64_sys_mmap+0x125/0x190
[  711.778983][T13243]  do_syscall_64+0xcd/0x490
[  711.779018][T13243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  711.779062][T13243] RIP: 0033:0x7f7b7798e929
[  711.779088][T13243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  711.779118][T13243] RSP: 002b:00007f7b787d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  711.779148][T13243] RAX: ffffffffffffffda RBX: 00007f7b77bb6240 RCX: 00007f7b7798e929
[  711.779167][T13243] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  711.779185][T13243] RBP: 00007f7b77a10b39 R08: 0000000000000002 R09: 0000000000008000
[  711.779202][T13243] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  711.779220][T13243] R13: 0000000000000000 R14: 00007f7b77bb6240 R15: 00007ffe0b596448
[  711.779260][T13243]  </TASK>
[  712.391509][T13253] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1416'.
[  712.549154][T13254] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1417'.
[  712.643411][T13246] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  713.428907][T13268] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[  713.535362][T13266] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1419'.
[  713.547632][T13266] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1419'.
[  714.291709][T13280] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[  714.346259][T13285] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1423'.
[  714.401374][T13285] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  714.416342][T13285] batman_adv: batadv0: Removing interface: batadv_slave_0
[  714.444348][T13285] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  714.474014][T13285] batman_adv: batadv0: Removing interface: batadv_slave_1
[  714.869574][T13300] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1427'.
[  715.849816][T13317] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1430'.
[  715.869748][T13324] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1431'.
[  715.944783][T13317] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  717.293628][T13338] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1433'.
[  718.852609][T13360] FAULT_INJECTION: forcing a failure.
[  718.852609][T13360] name failslab, interval 1, probability 0, space 0, times 0
[  718.903813][T13360] CPU: 1 UID: 0 PID: 13360 Comm: syz.1.1438 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  718.903853][T13360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  718.903871][T13360] Call Trace:
[  718.903882][T13360]  <TASK>
[  718.903893][T13360]  dump_stack_lvl+0x16c/0x1f0
[  718.903946][T13360]  should_fail_ex+0x512/0x640
[  718.904002][T13360]  ? fs_reclaim_acquire+0xae/0x150
[  718.904044][T13360]  ? tomoyo_encode2+0x100/0x3e0
[  718.904087][T13360]  should_failslab+0xc2/0x120
[  718.904127][T13360]  __kmalloc_noprof+0xd2/0x510
[  718.904169][T13360]  ? d_absolute_path+0x136/0x1a0
[  718.904204][T13360]  tomoyo_encode2+0x100/0x3e0
[  718.904247][T13360]  tomoyo_encode+0x29/0x50
[  718.904283][T13360]  tomoyo_realpath_from_path+0x18f/0x6e0
[  718.904333][T13360]  tomoyo_check_open_permission+0x2ab/0x3c0
[  718.904370][T13360]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  718.904440][T13360]  ? do_raw_spin_lock+0x12c/0x2b0
[  718.904491][T13360]  tomoyo_file_open+0x6b/0x90
[  718.904518][T13360]  security_file_open+0x84/0x1e0
[  718.904556][T13360]  do_dentry_open+0x596/0x1c10
[  718.904609][T13360]  vfs_open+0x82/0x3f0
[  718.904644][T13360]  path_openat+0x1de4/0x2cb0
[  718.904695][T13360]  ? __pfx_path_openat+0x10/0x10
[  718.904737][T13360]  ? __lock_acquire+0xb8a/0x1c90
[  718.904776][T13360]  do_filp_open+0x20b/0x470
[  718.904816][T13360]  ? __pfx_do_filp_open+0x10/0x10
[  718.904881][T13360]  ? alloc_fd+0x471/0x7d0
[  718.904928][T13360]  do_sys_openat2+0x11b/0x1d0
[  718.904959][T13360]  ? __pfx_do_sys_openat2+0x10/0x10
[  718.904995][T13360]  ? __fget_files+0x20e/0x3c0
[  718.905038][T13360]  __x64_sys_openat+0x174/0x210
[  718.905070][T13360]  ? __pfx___x64_sys_openat+0x10/0x10
[  718.905101][T13360]  ? ksys_write+0x1ac/0x250
[  718.905160][T13360]  do_syscall_64+0xcd/0x490
[  718.905189][T13360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  718.905218][T13360] RIP: 0033:0x7f02b938e929
[  718.905239][T13360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  718.905265][T13360] RSP: 002b:00007f02ba197038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  718.905289][T13360] RAX: ffffffffffffffda RBX: 00007f02b95b5fa0 RCX: 00007f02b938e929
[  718.905307][T13360] RDX: 0000000000180b01 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  718.905324][T13360] RBP: 00007f02ba197090 R08: 0000000000000000 R09: 0000000000000000
[  718.905340][T13360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  718.905356][T13360] R13: 0000000000000001 R14: 00007f02b95b5fa0 R15: 00007ffcfe51e1d8
[  718.905390][T13360]  </TASK>
[  719.172357][T13360] ERROR: Out of memory at tomoyo_realpath_from_path.
[  719.189395][T13360] random: crng reseeded on system resumption
[  719.472868][T13366] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input152
[  719.690173][T13375] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1440'.
[  719.933859][T13371] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1442'.
[  719.979100][T13378] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1442'.
[  719.992968][T13380] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input153
[  720.226290][T13384] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1443'.
[  721.922628][T13403] block nbd7: not configured, cannot reconfigure
[  722.807040][T13412] block nbd7: not configured, cannot reconfigure
[  724.470922][T13427] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1453'.
[  724.707370][T13430] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1453'.
[  726.785476][T13452] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1459'.
[  726.840680][T13452] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1459'.
[  728.006465][T13478] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1465'.
[  729.074661][T13492] Process accounting resumed
[  731.090446][T13498] Process accounting paused
[  731.964291][T13534] Process accounting resumed
[  732.101029][T13538] FAULT_INJECTION: forcing a failure.
[  732.101029][T13538] name failslab, interval 1, probability 0, space 0, times 0
[  732.127558][T13538] CPU: 1 UID: 0 PID: 13538 Comm: syz.1.1479 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  732.127608][T13538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  732.127627][T13538] Call Trace:
[  732.127638][T13538]  <TASK>
[  732.127651][T13538]  dump_stack_lvl+0x16c/0x1f0
[  732.127689][T13538]  should_fail_ex+0x512/0x640
[  732.127743][T13538]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  732.127799][T13538]  should_failslab+0xc2/0x120
[  732.127833][T13538]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  732.127886][T13538]  ? __pmd_alloc+0xbf/0x930
[  732.127931][T13538]  __pmd_alloc+0xbf/0x930
[  732.127973][T13538]  __handle_mm_fault+0xaac/0x5490
[  732.128034][T13538]  ? __pfx___handle_mm_fault+0x10/0x10
[  732.128115][T13538]  handle_mm_fault+0x589/0xd10
[  732.128177][T13538]  __get_user_pages+0x589/0x3b80
[  732.128228][T13538]  ? __pfx_mt_find+0x10/0x10
[  732.128266][T13538]  ? __pfx___get_user_pages+0x10/0x10
[  732.128323][T13538]  populate_vma_page_range+0x278/0x3a0
[  732.128381][T13538]  ? __pfx_populate_vma_page_range+0x10/0x10
[  732.128421][T13538]  ? __pfx_find_vma_intersection+0x10/0x10
[  732.128461][T13538]  ? do_mmap+0x69c/0x1210
[  732.128503][T13538]  __mm_populate+0x1d8/0x380
[  732.128546][T13538]  ? __pfx___mm_populate+0x10/0x10
[  732.128587][T13538]  ? up_write+0x1b2/0x520
[  732.128639][T13538]  vm_mmap_pgoff+0x362/0x450
[  732.128679][T13538]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  732.128722][T13538]  ? __x64_sys_futex+0x1e0/0x4c0
[  732.128759][T13538]  ? __x64_sys_futex+0x1e9/0x4c0
[  732.128804][T13538]  ksys_mmap_pgoff+0x7d/0x5c0
[  732.128839][T13538]  ? xfd_validate_state+0x61/0x180
[  732.128878][T13538]  ? __pfx_ksys_write+0x10/0x10
[  732.128931][T13538]  __x64_sys_mmap+0x125/0x190
[  732.128979][T13538]  do_syscall_64+0xcd/0x490
[  732.129014][T13538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  732.129048][T13538] RIP: 0033:0x7f02b938e929
[  732.129073][T13538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  732.129103][T13538] RSP: 002b:00007f02ba197038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  732.129131][T13538] RAX: ffffffffffffffda RBX: 00007f02b95b5fa0 RCX: 00007f02b938e929
[  732.129160][T13538] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  732.129179][T13538] RBP: 00007f02b9410b39 R08: 0000000000000002 R09: 0000000000008000
[  732.129198][T13538] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  732.129217][T13538] R13: 0000000000000000 R14: 00007f02b95b5fa0 R15: 00007ffcfe51e1d8
[  732.129258][T13538]  </TASK>
[  732.552346][T13540] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1480'.
[  732.571291][T13540] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1480'.
[  732.983867][T13552] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1483'.
[  733.118539][   T31] audit: type=1800 audit(4294967492.390:57): pid=13552 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1483" name="file0" dev="tmpfs" ino=2040 res=0 errno=0
[  734.075897][T13572] FAULT_INJECTION: forcing a failure.
[  734.075897][T13572] name failslab, interval 1, probability 0, space 0, times 0
[  734.137389][T13572] CPU: 1 UID: 0 PID: 13572 Comm: syz.0.1487 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  734.137434][T13572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  734.137453][T13572] Call Trace:
[  734.137463][T13572]  <TASK>
[  734.137474][T13572]  dump_stack_lvl+0x16c/0x1f0
[  734.137512][T13572]  should_fail_ex+0x512/0x640
[  734.137559][T13572]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  734.137608][T13572]  should_failslab+0xc2/0x120
[  734.137642][T13572]  __kmalloc_cache_noprof+0x6a/0x3e0
[  734.137687][T13572]  ? snd_seq_port_connect+0x61/0x550
[  734.137730][T13572]  snd_seq_port_connect+0x61/0x550
[  734.137765][T13572]  ? _raw_read_unlock+0x28/0x50
[  734.137812][T13572]  ? check_subscription_permission.isra.0+0xf5/0x240
[  734.137864][T13572]  snd_seq_ioctl_subscribe_port+0x211/0x450
[  734.137909][T13572]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[  734.137967][T13572]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  734.138014][T13572]  snd_seq_oss_midi_open+0x442/0x660
[  734.138060][T13572]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[  734.138129][T13572]  snd_seq_oss_synth_reset+0x437/0x880
[  734.138180][T13572]  ? __pfx_snd_seq_oss_synth_reset+0x10/0x10
[  734.138228][T13572]  ? __pfx___fsnotify_parent+0x10/0x10
[  734.138279][T13572]  snd_seq_oss_reset+0x73/0x290
[  734.138319][T13572]  ? __pfx_odev_release+0x10/0x10
[  734.138364][T13572]  snd_seq_oss_release+0x7c/0x180
[  734.138401][T13572]  odev_release+0x4c/0x70
[  734.138432][T13572]  __fput+0x3ff/0xb70
[  734.138473][T13572]  task_work_run+0x150/0x240
[  734.138522][T13572]  ? __pfx_task_work_run+0x10/0x10
[  734.138569][T13572]  ? __pfx___do_sys_close_range+0x10/0x10
[  734.138625][T13572]  exit_to_user_mode_loop+0xeb/0x110
[  734.138676][T13572]  do_syscall_64+0x3f6/0x490
[  734.138710][T13572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.138741][T13572] RIP: 0033:0x7f1c6cb8e929
[  734.138765][T13572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  734.138794][T13572] RSP: 002b:00007f1c6da5c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  734.138823][T13572] RAX: 0000000000000000 RBX: 00007f1c6cdb6080 RCX: 00007f1c6cb8e929
[  734.138842][T13572] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  734.138867][T13572] RBP: 00007f1c6da5c090 R08: 0000000000000000 R09: 0000000000000000
[  734.138885][T13572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  734.138903][T13572] R13: 0000000000000000 R14: 00007f1c6cdb6080 R15: 00007ffc1a89bc48
[  734.138943][T13572]  </TASK>
[  734.497237][T13563] Process accounting resumed
[  735.100960][T13585] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1491'.
[  736.055604][T13594] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1492'.
[  736.094169][T13594] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1492'.
[  737.669946][T13625] vivid-007: =================  START STATUS  =================
[  737.753131][T13625] vivid-007: Generate PTS: true
[  737.759659][T13625] vivid-007: Generate SCR: true
[  737.764608][T13625] tpg source WxH: 320x240 (Y'CbCr)
[  737.801379][T13625] tpg field: 1
[  737.878266][T13625] tpg crop: (0,0)/320x240
[  737.940004][T13625] tpg compose: (0,0)/320x240
[  737.945005][T13625] tpg colorspace: 8
[  737.999765][T13625] tpg transfer function: 0/0
[  738.004487][T13625] tpg Y'CbCr encoding: 0/0
[  738.032306][T13625] tpg quantization: 0/0
[  738.056466][T13625] tpg RGB range: 0/2
[  738.060873][T13625] vivid-007: ==================  END STATUS  ==================
[  738.938873][T13654] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1505'.
[  739.095044][T13658] block nbd7: not configured, cannot reconfigure
[  739.132132][   T31] audit: type=1800 audit(4294967498.410:58): pid=13659 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1505" name="file0" dev="tmpfs" ino=1947 res=0 errno=0
[  740.195138][T13667] Process accounting resumed
[  743.355711][T13715] Process accounting resumed
[  743.903809][T13731] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input154
[  744.245090][T13733] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1522'.
[  745.708714][T13770] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1530'.
[  746.110532][T13777] can: request_module (can-proto-3) failed.
[  747.909117][T13810] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input155
[  748.989734][T13816] Process accounting resumed
[  749.474332][T13832] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1542'.
[  750.172298][T13841] block nbd7: not configured, cannot reconfigure
[  751.070105][T13851] FAULT_INJECTION: forcing a failure.
[  751.070105][T13851] name failslab, interval 1, probability 0, space 0, times 0
[  751.091994][T13851] CPU: 1 UID: 0 PID: 13851 Comm: syz.0.1543 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  751.092042][T13851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  751.092061][T13851] Call Trace:
[  751.092072][T13851]  <TASK>
[  751.092085][T13851]  dump_stack_lvl+0x16c/0x1f0
[  751.092125][T13851]  should_fail_ex+0x512/0x640
[  751.092177][T13851]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  751.092245][T13851]  should_failslab+0xc2/0x120
[  751.092281][T13851]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  751.092334][T13851]  ? __pmd_alloc+0xbf/0x930
[  751.092380][T13851]  __pmd_alloc+0xbf/0x930
[  751.092423][T13851]  __handle_mm_fault+0xaac/0x5490
[  751.092482][T13851]  ? __pfx___handle_mm_fault+0x10/0x10
[  751.092565][T13851]  handle_mm_fault+0x589/0xd10
[  751.092617][T13851]  __get_user_pages+0x589/0x3b80
[  751.092667][T13851]  ? __pfx_mt_find+0x10/0x10
[  751.092704][T13851]  ? __pfx___get_user_pages+0x10/0x10
[  751.092757][T13851]  populate_vma_page_range+0x278/0x3a0
[  751.092800][T13851]  ? __pfx_populate_vma_page_range+0x10/0x10
[  751.092841][T13851]  ? __pfx_find_vma_intersection+0x10/0x10
[  751.092885][T13851]  ? do_mmap+0x69c/0x1210
[  751.092929][T13851]  __mm_populate+0x1d8/0x380
[  751.092979][T13851]  ? __pfx___mm_populate+0x10/0x10
[  751.093025][T13851]  ? up_write+0x1b2/0x520
[  751.093081][T13851]  vm_mmap_pgoff+0x362/0x450
[  751.093123][T13851]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  751.093166][T13851]  ? __x64_sys_futex+0x1e0/0x4c0
[  751.093213][T13851]  ? __x64_sys_futex+0x1e9/0x4c0
[  751.093261][T13851]  ksys_mmap_pgoff+0x7d/0x5c0
[  751.093298][T13851]  ? xfd_validate_state+0x61/0x180
[  751.093341][T13851]  ? __pfx_ksys_write+0x10/0x10
[  751.093397][T13851]  __x64_sys_mmap+0x125/0x190
[  751.093448][T13851]  do_syscall_64+0xcd/0x490
[  751.093485][T13851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  751.093519][T13851] RIP: 0033:0x7f1c6cb8e929
[  751.093547][T13851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  751.093579][T13851] RSP: 002b:00007f1c6da7d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  751.093611][T13851] RAX: ffffffffffffffda RBX: 00007f1c6cdb5fa0 RCX: 00007f1c6cb8e929
[  751.093633][T13851] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  751.093653][T13851] RBP: 00007f1c6cc10b39 R08: 0000000000000002 R09: 0000000000008000
[  751.093673][T13851] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  751.093692][T13851] R13: 0000000000000000 R14: 00007f1c6cdb5fa0 R15: 00007ffc1a89bc48
[  751.093734][T13851]  </TASK>
[  751.662842][T13857] block nbd7: not configured, cannot reconfigure
[  752.435620][T13865] Process accounting resumed
[  752.463233][T13864] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1549'.
[  752.509408][T13864] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1549'.
[  752.784582][T13873] block nbd7: not configured, cannot reconfigure
[  753.903288][T13891] FAULT_INJECTION: forcing a failure.
[  753.903288][T13891] name failslab, interval 1, probability 0, space 0, times 0
[  753.966807][T13891] CPU: 1 UID: 0 PID: 13891 Comm: syz.2.1556 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  753.966849][T13891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  753.966867][T13891] Call Trace:
[  753.966878][T13891]  <TASK>
[  753.966890][T13891]  dump_stack_lvl+0x16c/0x1f0
[  753.966925][T13891]  should_fail_ex+0x512/0x640
[  753.966970][T13891]  ? fs_reclaim_acquire+0xae/0x150
[  753.967022][T13891]  should_failslab+0xc2/0x120
[  753.967053][T13891]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  753.967100][T13891]  ? jbd2__journal_start+0x193/0x6a0
[  753.967128][T13891]  ? __pfx___might_resched+0x10/0x10
[  753.967182][T13891]  jbd2__journal_start+0x193/0x6a0
[  753.967218][T13891]  __ext4_journal_start_sb+0x195/0x690
[  753.967262][T13891]  ? ext4_do_writepages+0xc5f/0x3490
[  753.967313][T13891]  ext4_do_writepages+0xc5f/0x3490
[  753.967360][T13891]  ? __lock_acquire+0xb8a/0x1c90
[  753.967429][T13891]  ? __pfx_ext4_do_writepages+0x10/0x10
[  753.967494][T13891]  ? ext4_writepages+0x37a/0x7d0
[  753.967538][T13891]  ext4_writepages+0x37a/0x7d0
[  753.967600][T13891]  ? __pfx_ext4_writepages+0x10/0x10
[  753.967664][T13891]  ? do_writepages+0x4b7/0x600
[  753.967706][T13891]  ? __pfx_ext4_writepages+0x10/0x10
[  753.967757][T13891]  do_writepages+0x277/0x600
[  753.967801][T13891]  ? __pfx_do_writepages+0x10/0x10
[  753.967838][T13891]  ? do_raw_spin_unlock+0x172/0x230
[  753.967887][T13891]  ? _raw_spin_unlock+0x28/0x50
[  753.967935][T13891]  filemap_fdatawrite_wbc+0x104/0x160
[  753.967978][T13891]  __filemap_fdatawrite_range+0xb2/0xf0
[  753.968041][T13891]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  753.968091][T13891]  ? __lock_acquire+0x622/0x1c90
[  753.968192][T13891]  file_write_and_wait_range+0xca/0x140
[  753.968227][T13891]  ext4_sync_file+0x310/0xf10
[  753.968270][T13891]  ? __pfx___up_read+0x10/0x10
[  753.968319][T13891]  ? __pfx_ext4_sync_file+0x10/0x10
[  753.968374][T13891]  vfs_fsync_range+0x136/0x220
[  753.968424][T13891]  __do_sys_msync+0x3cb/0x5c0
[  753.968484][T13891]  do_syscall_64+0xcd/0x490
[  753.968517][T13891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  753.968548][T13891] RIP: 0033:0x7f2e8038e929
[  753.968572][T13891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  753.968600][T13891] RSP: 002b:00007f2e81263038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a
[  753.968629][T13891] RAX: ffffffffffffffda RBX: 00007f2e805b6080 RCX: 00007f2e8038e929
[  753.968648][T13891] RDX: 0000000400000004 RSI: 0180000000000000 RDI: 000000001ffff000
[  753.968666][T13891] RBP: 00007f2e81263090 R08: 0000000000000000 R09: 0000000000000000
[  753.968684][T13891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  753.968701][T13891] R13: 0000000000000000 R14: 00007f2e805b6080 R15: 00007ffc6d6a8278
[  753.968740][T13891]  </TASK>
[  753.978136][T13891] EXT4-fs (sda1): ext4_do_writepages: jbd2_start: 9223372036854775807 pages, ino 2021; err -12
[  756.540049][T13917] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1563'.
[  756.705867][T13917] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1563'.
[  756.715538][T13923] block nbd7: not configured, cannot reconfigure
[  757.405352][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  757.415542][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  757.671694][T13957] FAULT_INJECTION: forcing a failure.
[  757.671694][T13957] name failslab, interval 1, probability 0, space 0, times 0
[  757.686292][T13957] CPU: 0 UID: 0 PID: 13957 Comm: syz.0.1572 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  757.686329][T13957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  757.686348][T13957] Call Trace:
[  757.686358][T13957]  <TASK>
[  757.686369][T13957]  dump_stack_lvl+0x16c/0x1f0
[  757.686399][T13957]  should_fail_ex+0x512/0x640
[  757.686450][T13957]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  757.686623][T13957]  should_failslab+0xc2/0x120
[  757.686652][T13957]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  757.686692][T13957]  ? mark_held_locks+0x49/0x80
[  757.686724][T13957]  ? key_alloc+0x3e0/0x1390
[  757.686761][T13957]  key_alloc+0x3e0/0x1390
[  757.686805][T13957]  ? __pfx_key_alloc+0x10/0x10
[  757.686838][T13957]  ? __pfx_key_default_cmp+0x10/0x10
[  757.686876][T13957]  ? __pfx_keyring_search_iterator+0x10/0x10
[  757.686919][T13957]  keyring_alloc+0x44/0xc0
[  757.686959][T13957]  look_up_user_keyrings+0x510/0x760
[  757.686993][T13957]  ? __pfx_look_up_user_keyrings+0x10/0x10
[  757.687035][T13957]  lookup_user_key+0x1a3/0x1300
[  757.687070][T13957]  ? __pfx_lookup_user_key+0x10/0x10
[  757.687099][T13957]  ? do_futex+0x122/0x350
[  757.687138][T13957]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  757.687175][T13957]  ? fput+0x70/0xf0
[  757.687228][T13957]  keyctl_keyring_clear+0x24/0x1a0
[  757.687255][T13957]  __do_sys_keyctl+0x355/0x590
[  757.687285][T13957]  do_syscall_64+0xcd/0x490
[  757.687345][T13957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  757.687371][T13957] RIP: 0033:0x7f1c6cb8e929
[  757.687391][T13957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  757.687416][T13957] RSP: 002b:00007f1c6da7d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  757.687439][T13957] RAX: ffffffffffffffda RBX: 00007f1c6cdb5fa0 RCX: 00007f1c6cb8e929
[  757.687456][T13957] RDX: 0000000000000002 RSI: 00000000fffffffb RDI: 0000000000000007
[  757.687471][T13957] RBP: 00007f1c6cc10b39 R08: 0000000000000008 R09: 0000000000000000
[  757.687487][T13957] R10: 000000000000003e R11: 0000000000000246 R12: 0000000000000000
[  757.687502][T13957] R13: 0000000000000000 R14: 00007f1c6cdb5fa0 R15: 00007ffc1a89bc48
[  757.687533][T13957]  </TASK>
[  758.215861][T13964] block nbd7: not configured, cannot reconfigure
[  758.701554][T13967] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1575'.
[  758.711932][T13967] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1575'.
[  759.174233][T13985] FAULT_INJECTION: forcing a failure.
[  759.174233][T13985] name failslab, interval 1, probability 0, space 0, times 0
[  759.208074][   T31] audit: type=1800 audit(4294967518.480:59): pid=13977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1577" name="dbroot" dev="configfs" ino=35819 res=0 errno=0
[  759.252267][T13985] CPU: 1 UID: 0 PID: 13985 Comm: syz.3.1581 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  759.252310][T13985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  759.252328][T13985] Call Trace:
[  759.252338][T13985]  <TASK>
[  759.252350][T13985]  dump_stack_lvl+0x16c/0x1f0
[  759.252388][T13985]  should_fail_ex+0x512/0x640
[  759.252455][T13985]  should_failslab+0xc2/0x120
[  759.252488][T13985]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  759.252539][T13985]  ? skb_clone+0x190/0x3f0
[  759.252578][T13985]  skb_clone+0x190/0x3f0
[  759.252613][T13985]  netlink_deliver_tap+0xabd/0xd30
[  759.252661][T13985]  netlink_unicast+0x5df/0x7f0
[  759.252708][T13985]  ? __pfx_netlink_unicast+0x10/0x10
[  759.252759][T13985]  netlink_sendmsg+0x8d1/0xdd0
[  759.252807][T13985]  ? __pfx_netlink_sendmsg+0x10/0x10
[  759.252864][T13985]  ____sys_sendmsg+0xa95/0xc70
[  759.252909][T13985]  ? copy_msghdr_from_user+0x10a/0x160
[  759.252942][T13985]  ? __pfx_____sys_sendmsg+0x10/0x10
[  759.253007][T13985]  ___sys_sendmsg+0x134/0x1d0
[  759.253042][T13985]  ? __pfx____sys_sendmsg+0x10/0x10
[  759.253075][T13985]  ? __lock_acquire+0x622/0x1c90
[  759.253171][T13985]  __sys_sendmsg+0x16d/0x220
[  759.253207][T13985]  ? __pfx___sys_sendmsg+0x10/0x10
[  759.253268][T13985]  do_syscall_64+0xcd/0x490
[  759.253304][T13985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  759.253338][T13985] RIP: 0033:0x7f7b7798e929
[  759.253364][T13985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  759.253395][T13985] RSP: 002b:00007f7b78833038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  759.253426][T13985] RAX: ffffffffffffffda RBX: 00007f7b77bb5fa0 RCX: 00007f7b7798e929
[  759.253455][T13985] RDX: 0000000004048040 RSI: 0000200000000140 RDI: 0000000000000003
[  759.253488][T13985] RBP: 00007f7b78833090 R08: 0000000000000000 R09: 0000000000000000
[  759.253507][T13985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  759.253526][T13985] R13: 0000000000000000 R14: 00007f7b77bb5fa0 R15: 00007ffe0b596448
[  759.253568][T13985]  </TASK>
[  759.889771][T13993] Process accounting resumed
[  760.242787][T14004] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1585'.
[  760.372912][T14000] mkiss: ax0: crc mode is auto.
[  761.078741][T14021] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1589'.
[  761.107884][T14021] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1589'.
[  761.310851][T14030] FAULT_INJECTION: forcing a failure.
[  761.310851][T14030] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  761.397550][T14030] CPU: 0 UID: 0 PID: 14030 Comm: syz.2.1591 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  761.397592][T14030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  761.397611][T14030] Call Trace:
[  761.397621][T14030]  <TASK>
[  761.397633][T14030]  dump_stack_lvl+0x16c/0x1f0
[  761.397670][T14030]  should_fail_ex+0x512/0x640
[  761.397725][T14030]  should_fail_alloc_page+0xe7/0x130
[  761.397760][T14030]  prepare_alloc_pages+0x3c2/0x610
[  761.397807][T14030]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  761.397872][T14030]  ? __lock_acquire+0x622/0x1c90
[  761.397919][T14030]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  761.397967][T14030]  ? __lock_acquire+0x622/0x1c90
[  761.398017][T14030]  ? __lock_acquire+0x622/0x1c90
[  761.398065][T14030]  ? __lock_acquire+0x622/0x1c90
[  761.398108][T14030]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  761.398160][T14030]  ? policy_nodemask+0xea/0x4e0
[  761.398195][T14030]  alloc_pages_mpol+0x1fb/0x550
[  761.398240][T14030]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  761.398297][T14030]  folio_alloc_mpol_noprof+0x36/0x2f0
[  761.398337][T14030]  shmem_alloc_folio+0x135/0x160
[  761.398377][T14030]  shmem_alloc_and_add_folio+0x499/0xc20
[  761.398434][T14030]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  761.398486][T14030]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  761.398540][T14030]  shmem_get_folio_gfp+0x67f/0x1600
[  761.398595][T14030]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  761.398645][T14030]  ? filemap_map_pages+0xf6f/0x1680
[  761.398698][T14030]  shmem_fault+0x1fe/0xa30
[  761.398746][T14030]  ? __pfx_shmem_fault+0x10/0x10
[  761.398799][T14030]  ? __pfx_filemap_map_pages+0x10/0x10
[  761.398860][T14030]  __do_fault+0x10d/0x490
[  761.398912][T14030]  __handle_mm_fault+0x3c2a/0x5490
[  761.398966][T14030]  ? __pfx___handle_mm_fault+0x10/0x10
[  761.399005][T14030]  ? __pfx_mt_find+0x10/0x10
[  761.399060][T14030]  ? find_vma+0xbf/0x140
[  761.399112][T14030]  ? __pfx_find_vma+0x10/0x10
[  761.399151][T14030]  handle_mm_fault+0x589/0xd10
[  761.399197][T14030]  ? __pkru_allows_pkey+0x21/0xb0
[  761.399252][T14030]  do_user_addr_fault+0x7a6/0x1370
[  761.399302][T14030]  ? rcu_is_watching+0x12/0xc0
[  761.399340][T14030]  exc_page_fault+0x5c/0xb0
[  761.399393][T14030]  asm_exc_page_fault+0x26/0x30
[  761.399424][T14030] RIP: 0010:rep_movs_alternative+0x4a/0x90
[  761.399467][T14030] Code: 10 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb c5 <f3> a4 e9 8f 10 04 00 48 8b 06 48 89 07 48 8d 47 08 48 83 e0 f8 48
[  761.399498][T14030] RSP: 0018:ffffc900040bfa48 EFLAGS: 00050206
[  761.399524][T14030] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000001000
[  761.399544][T14030] RDX: 0000000000000000 RSI: 0000000000001000 RDI: ffff888085ebd000
[  761.399563][T14030] RBP: 0000000000001000 R08: 0000000000000001 R09: ffffed1010bd7bff
[  761.399581][T14030] R10: ffff888085ebdfff R11: 0000000000000000 R12: ffffc900040bfda0
[  761.399600][T14030] R13: 0000000000002000 R14: ffff888085ebd000 R15: 00007ffffffff000
[  761.399644][T14030]  _copy_from_iter+0x383/0x16f0
[  761.399680][T14030]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  761.399731][T14030]  ? __pfx__copy_from_iter+0x10/0x10
[  761.399765][T14030]  ? alloc_pages_mpol+0x25a/0x550
[  761.399800][T14030]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  761.399841][T14030]  copy_page_from_iter+0xde/0x180
[  761.399879][T14030]  anon_pipe_write+0xbe7/0x1a70
[  761.399948][T14030]  ? __pfx_anon_pipe_write+0x10/0x10
[  761.400002][T14030]  ? apparmor_file_permission+0x251/0x400
[  761.400041][T14030]  ? bpf_lsm_file_permission+0x9/0x10
[  761.400075][T14030]  ? security_file_permission+0x71/0x210
[  761.400120][T14030]  ? rw_verify_area+0xcf/0x680
[  761.400167][T14030]  vfs_write+0x6c7/0x1150
[  761.400215][T14030]  ? __pfx_anon_pipe_write+0x10/0x10
[  761.400279][T14030]  ? __pfx_vfs_write+0x10/0x10
[  761.400325][T14030]  ? find_held_lock+0x2b/0x80
[  761.400386][T14030]  ksys_write+0x1f8/0x250
[  761.400433][T14030]  ? __pfx_ksys_write+0x10/0x10
[  761.400492][T14030]  do_syscall_64+0xcd/0x490
[  761.400528][T14030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  761.400559][T14030] RIP: 0033:0x7f2e8038e929
[  761.400583][T14030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  761.400614][T14030] RSP: 002b:00007f2e81242038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  761.400641][T14030] RAX: ffffffffffffffda RBX: 00007f2e805b6160 RCX: 00007f2e8038e929
[  761.400661][T14030] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000001
[  761.400679][T14030] RBP: 00007f2e81242090 R08: 0000000000000000 R09: 0000000000000000
[  761.400698][T14030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  761.400716][T14030] R13: 0000000000000001 R14: 00007f2e805b6160 R15: 00007ffc6d6a8278
[  761.400757][T14030]  </TASK>
[  762.028689][T14034] Process accounting resumed
[  763.546929][T14057] mkiss: ax0: crc mode is auto.
[  763.823557][T14065] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1601'.
[  763.872380][T14065] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1601'.
[  764.161212][T14073] FAULT_INJECTION: forcing a failure.
[  764.161212][T14073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  764.174679][T14073] CPU: 0 UID: 0 PID: 14073 Comm: syz.3.1604 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  764.174719][T14073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  764.174737][T14073] Call Trace:
[  764.174747][T14073]  <TASK>
[  764.174759][T14073]  dump_stack_lvl+0x16c/0x1f0
[  764.174824][T14073]  should_fail_ex+0x512/0x640
[  764.174881][T14073]  _copy_to_user+0x32/0xd0
[  764.174927][T14073]  do_pagemap_scan+0xb81/0xcf0
[  764.174976][T14073]  ? __pfx_do_pagemap_scan+0x10/0x10
[  764.175052][T14073]  ? __fget_files+0x20e/0x3c0
[  764.175104][T14073]  do_pagemap_cmd+0x58/0x80
[  764.175143][T14073]  ? __pfx_do_pagemap_cmd+0x10/0x10
[  764.175184][T14073]  __x64_sys_ioctl+0x18b/0x210
[  764.175226][T14073]  do_syscall_64+0xcd/0x490
[  764.175260][T14073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  764.175291][T14073] RIP: 0033:0x7f7b7798e929
[  764.175314][T14073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  764.175344][T14073] RSP: 002b:00007f7b78833038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  764.175371][T14073] RAX: ffffffffffffffda RBX: 00007f7b77bb5fa0 RCX: 00007f7b7798e929
[  764.175391][T14073] RDX: 000020000000c380 RSI: 00000000c0606610 RDI: 0000000000000003
[  764.175409][T14073] RBP: 00007f7b78833090 R08: 0000000000000000 R09: 0000000000000000
[  764.175426][T14073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  764.175443][T14073] R13: 0000000000000000 R14: 00007f7b77bb5fa0 R15: 00007ffe0b596448
[  764.175500][T14073]  </TASK>
[  764.356030][T14070] Process accounting resumed
[  764.469919][T14074] ptrace attach of "./syz-executor exec"[5837] was attempted by "./syz-executor exec"[14074]
[  765.277070][T14087] Invalid ELF header magic: != ELF
[  765.469264][T14092] FAULT_INJECTION: forcing a failure.
[  765.469264][T14092] name failslab, interval 1, probability 0, space 0, times 0
[  765.490685][T14092] CPU: 0 UID: 0 PID: 14092 Comm: syz.2.1609 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  765.490731][T14092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  765.490751][T14092] Call Trace:
[  765.490762][T14092]  <TASK>
[  765.490774][T14092]  dump_stack_lvl+0x16c/0x1f0
[  765.490811][T14092]  should_fail_ex+0x512/0x640
[  765.490861][T14092]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  765.490917][T14092]  should_failslab+0xc2/0x120
[  765.490950][T14092]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  765.491004][T14092]  ? __pmd_alloc+0xbf/0x930
[  765.491047][T14092]  __pmd_alloc+0xbf/0x930
[  765.491089][T14092]  __handle_mm_fault+0xaac/0x5490
[  765.491146][T14092]  ? __pfx___handle_mm_fault+0x10/0x10
[  765.491227][T14092]  handle_mm_fault+0x589/0xd10
[  765.491281][T14092]  __get_user_pages+0x589/0x3b80
[  765.491330][T14092]  ? __pfx_mt_find+0x10/0x10
[  765.491365][T14092]  ? __pfx___get_user_pages+0x10/0x10
[  765.491415][T14092]  populate_vma_page_range+0x278/0x3a0
[  765.491454][T14092]  ? __pfx_populate_vma_page_range+0x10/0x10
[  765.491493][T14092]  ? __pfx_find_vma_intersection+0x10/0x10
[  765.491533][T14092]  ? do_mmap+0x69c/0x1210
[  765.491574][T14092]  __mm_populate+0x1d8/0x380
[  765.491628][T14092]  ? __pfx___mm_populate+0x10/0x10
[  765.491672][T14092]  ? up_write+0x1b2/0x520
[  765.491734][T14092]  vm_mmap_pgoff+0x362/0x450
[  765.491771][T14092]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  765.491811][T14092]  ? __x64_sys_futex+0x1e0/0x4c0
[  765.491848][T14092]  ? __x64_sys_futex+0x1e9/0x4c0
[  765.491891][T14092]  ksys_mmap_pgoff+0x7d/0x5c0
[  765.491924][T14092]  ? xfd_validate_state+0x61/0x180
[  765.491962][T14092]  ? __pfx_ksys_write+0x10/0x10
[  765.492011][T14092]  __x64_sys_mmap+0x125/0x190
[  765.492057][T14092]  do_syscall_64+0xcd/0x490
[  765.492090][T14092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  765.492120][T14092] RIP: 0033:0x7f2e8038e929
[  765.492145][T14092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  765.492174][T14092] RSP: 002b:00007f2e81284038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  765.492221][T14092] RAX: ffffffffffffffda RBX: 00007f2e805b5fa0 RCX: 00007f2e8038e929
[  765.492241][T14092] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  765.492260][T14092] RBP: 00007f2e80410b39 R08: 0000000000000002 R09: 0000000000008000
[  765.492278][T14092] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  765.492297][T14092] R13: 0000000000000000 R14: 00007f2e805b5fa0 R15: 00007ffc6d6a8278
[  765.492346][T14092]  </TASK>
[  766.137660][T14102] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1613'.
[  766.178486][T14102] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1613'.
[  767.320576][T14121] FAULT_INJECTION: forcing a failure.
[  767.320576][T14121] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  767.381668][T14121] CPU: 0 UID: 0 PID: 14121 Comm: syz.3.1618 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  767.381713][T14121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  767.381728][T14121] Call Trace:
[  767.381735][T14121]  <TASK>
[  767.381743][T14121]  dump_stack_lvl+0x16c/0x1f0
[  767.381771][T14121]  should_fail_ex+0x512/0x640
[  767.381813][T14121]  should_fail_alloc_page+0xe7/0x130
[  767.381840][T14121]  prepare_alloc_pages+0x3c2/0x610
[  767.381874][T14121]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  767.381921][T14121]  ? __lock_acquire+0x622/0x1c90
[  767.381954][T14121]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  767.381992][T14121]  ? kernel_text_address+0x8d/0x100
[  767.382037][T14121]  ? filemap_get_entry+0x1a7/0x3b0
[  767.382062][T14121]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  767.382099][T14121]  ? policy_nodemask+0xea/0x4e0
[  767.382124][T14121]  alloc_pages_mpol+0x1fb/0x550
[  767.382148][T14121]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  767.382173][T14121]  ? _raw_spin_unlock+0x28/0x50
[  767.382206][T14121]  ? swap_entry_swapped+0x122/0x190
[  767.382229][T14121]  ? __pfx_swap_entry_swapped+0x10/0x10
[  767.382255][T14121]  folio_alloc_mpol_noprof+0x36/0x2f0
[  767.382286][T14121]  __read_swap_cache_async+0x3b6/0x5a0
[  767.382326][T14121]  ? __pfx___read_swap_cache_async+0x10/0x10
[  767.382361][T14121]  ? swp_swap_info+0xce/0x130
[  767.382385][T14121]  ? __pfx_swp_swap_info+0x10/0x10
[  767.382417][T14121]  swap_cluster_readahead+0x4e1/0x710
[  767.382453][T14121]  ? shmem_split_large_entry.isra.0+0x4b4/0x570
[  767.382497][T14121]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  767.382530][T14121]  ? xa_get_order+0x152/0x2c0
[  767.382557][T14121]  ? __pfx_shmem_split_large_entry.isra.0+0x10/0x10
[  767.382591][T14121]  ? xa_get_order+0x15c/0x2c0
[  767.382630][T14121]  shmem_swapin_folio+0x192c/0x2220
[  767.382676][T14121]  ? __pfx_shmem_swapin_folio+0x10/0x10
[  767.382708][T14121]  ? __pfx_filemap_get_entry+0x10/0x10
[  767.382744][T14121]  shmem_get_folio_gfp+0x2c5/0x1600
[  767.382785][T14121]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  767.382824][T14121]  ? find_held_lock+0x2b/0x80
[  767.382849][T14121]  shmem_get_folio+0x84/0xb0
[  767.382887][T14121]  collapse_file+0xd31/0x3180
[  767.382920][T14121]  ? __lock_acquire+0x622/0x1c90
[  767.382951][T14121]  ? __pfx_collapse_file+0x10/0x10
[  767.382976][T14121]  ? xas_move_index+0xb0/0x110
[  767.383007][T14121]  ? find_held_lock+0x2b/0x80
[  767.383030][T14121]  ? hpage_collapse_scan_file+0xf7e/0x19d0
[  767.383061][T14121]  hpage_collapse_scan_file+0x102e/0x19d0
[  767.383089][T14121]  ? hpage_collapse_scan_file+0x1a8/0x19d0
[  767.383121][T14121]  ? __pfx_hpage_collapse_scan_file+0x10/0x10
[  767.383155][T14121]  ? madvise_collapse+0x3f5/0xb20
[  767.383188][T14121]  madvise_collapse+0x412/0xb20
[  767.383221][T14121]  ? __pfx_madvise_collapse+0x10/0x10
[  767.383252][T14121]  ? mtree_range_walk+0x718/0xc00
[  767.383286][T14121]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  767.383326][T14121]  madvise_vma_behavior+0x118d/0x2420
[  767.383353][T14121]  ? mas_prev_setup.constprop.0+0x1/0x830
[  767.383394][T14121]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  767.383422][T14121]  ? __pfx_mas_prev+0x10/0x10
[  767.383451][T14121]  ? find_vma_prev+0xda/0x160
[  767.383485][T14121]  ? __pfx_find_vma_prev+0x10/0x10
[  767.383528][T14121]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  767.383553][T14121]  madvise_walk_vmas+0x1d1/0x2c0
[  767.383580][T14121]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  767.383612][T14121]  madvise_do_behavior+0x15d/0x3f0
[  767.383642][T14121]  ? __pfx_madvise_do_behavior+0x10/0x10
[  767.383686][T14121]  do_madvise+0x161/0x230
[  767.383712][T14121]  ? __pfx_do_madvise+0x10/0x10
[  767.383750][T14121]  ? ksys_write+0x1ac/0x250
[  767.383785][T14121]  ? __pfx_ksys_write+0x10/0x10
[  767.383818][T14121]  ? xfd_validate_state+0x61/0x180
[  767.383855][T14121]  __x64_sys_madvise+0xa9/0x110
[  767.383881][T14121]  ? lockdep_hardirqs_on+0x7c/0x110
[  767.383918][T14121]  do_syscall_64+0xcd/0x490
[  767.383948][T14121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  767.383972][T14121] RIP: 0033:0x7f7b7798e929
[  767.383991][T14121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  767.384014][T14121] RSP: 002b:00007f7b787f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  767.384036][T14121] RAX: ffffffffffffffda RBX: 00007f7b77bb6160 RCX: 00007f7b7798e929
[  767.384051][T14121] RDX: 0000000000000019 RSI: 0000000000200007 RDI: 0000000000000000
[  767.384066][T14121] RBP: 00007f7b787f1090 R08: 0000000000000000 R09: 0000000000000000
[  767.384080][T14121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  767.384094][T14121] R13: 0000000000000001 R14: 00007f7b77bb6160 R15: 00007ffe0b596448
[  767.384124][T14121]  </TASK>
[  769.012113][T14135] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1620'.
[  769.407284][ T5154] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  769.417302][ T5154] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  769.426078][ T5154] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  769.435108][ T5154] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  769.443901][ T5154] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  770.396394][T14140] chnl_net:caif_netlink_parms(): no params data found
[  771.222319][T14172] block nbd7: not configured, cannot reconfigure
[  771.548395][T12525] Bluetooth: hci2: command tx timeout
[  771.799017][T14140] bridge0: port 1(bridge_slave_0) entered blocking state
[  771.836219][T14140] bridge0: port 1(bridge_slave_0) entered disabled state
[  771.882176][T14186] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1631'.
[  771.908610][T14140] bridge_slave_0: entered allmulticast mode
[  771.956322][T14140] bridge_slave_0: entered promiscuous mode
[  772.026402][T14140] bridge0: port 2(bridge_slave_1) entered blocking state
[  772.081436][T14140] bridge0: port 2(bridge_slave_1) entered disabled state
[  772.170122][T14140] bridge_slave_1: entered allmulticast mode
[  772.181229][   T31] audit: type=1800 audit(4294967531.460:60): pid=14192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1631" name="file0" dev="tmpfs" ino=2220 res=0 errno=0
[  772.226851][T14140] bridge_slave_1: entered promiscuous mode
[  772.632479][T14140] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  772.664163][T14140] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  772.953988][T14140] team0: Port device team_slave_0 added
[  772.975784][T14140] team0: Port device team_slave_1 added
[  773.191667][T14140] batman_adv: batadv0: Adding interface: batadv_slave_0
[  773.201487][T14140] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  773.247298][T14140] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  773.289690][T14140] batman_adv: batadv0: Adding interface: batadv_slave_1
[  773.297805][T14140] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  773.328206][T14140] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  773.451822][T14140] hsr_slave_0: entered promiscuous mode
[  773.460810][T14140] hsr_slave_1: entered promiscuous mode
[  773.467935][T14140] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  773.477005][T14140] Cannot create hsr debugfs directory
[  773.509936][T14183] Process accounting paused
[  773.628316][T12525] Bluetooth: hci2: command tx timeout
[  773.814169][T14208] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1634'.
[  774.235838][T14140] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  774.342556][T14140] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  774.460713][T14140] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  774.589846][T14140] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  775.013076][T14140] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  775.039693][T14140] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  775.055323][T14140] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  775.093149][T14140] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  775.227952][T14239] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078006000 pfn:0x78000
[  775.240123][T14239] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  775.248808][T14239] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  775.298196][T14239] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000
[  775.306973][T14239] raw: ffff888078006000 0000000000000000 00000001ffffffff 0000000000000000
[  775.361618][T14239] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000
[  775.370554][T14239] head: ffff888078006000 0000000000000000 00000001ffffffff 0000000000000000
[  775.384619][T14239] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  775.393706][T14239] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  775.402510][T14239] page dumped because: unmovable page
[  775.407948][T14239] page_owner tracks the page as allocated
[  775.414676][T14239] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x528c0(GFP_NOWAIT|__GFP_IO|__GFP_FS|__GFP_NORETRY|__GFP_COMP), pid 13262, tgid 13260 (syz.3.1418), ts 713200266796, free_ts 646384485829
[  775.435142][T14239]  post_alloc_hook+0x1c0/0x230
[  775.440381][T14239]  get_page_from_freelist+0x1321/0x3890
[  775.446037][T14239]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  775.473148][T14239]  alloc_pages_mpol+0x1fb/0x550
[  775.496954][T14243] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input156
[  775.518560][T14239]  alloc_pages_noprof+0x131/0x390
[  775.531640][T14239]  skb_page_frag_refill+0x186/0x5a0
[  775.547243][T14239]  sk_page_frag_refill+0x58/0x300
[  775.558535][T14239]  tcp_sendmsg_locked+0x8b5/0x4300
[  775.563761][T14239]  tcp_sendmsg+0x2e/0x50
[  775.577260][T14239]  inet_sendmsg+0xb9/0x140
[  775.590576][T14239]  sock_write_iter+0x4aa/0x5b0
[  775.601815][T14239]  vfs_write+0x6c7/0x1150
[  775.615482][T14239]  ksys_write+0x1f8/0x250
[  775.641097][T14239]  do_syscall_64+0xcd/0x490
[  775.645715][T14239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  775.664413][T14140] 8021q: adding VLAN 0 to HW filter on device bond0
[  775.674085][T14239] page last free pid 5823 tgid 5823 stack trace:
[  775.708144][T12525] Bluetooth: hci2: command tx timeout
[  775.717242][T14239]  __free_frozen_pages+0x7fe/0x1180
[  775.738502][T14239]  __folio_put+0x329/0x450
[  775.743047][T14239]  skb_release_data+0x7fb/0x9c0
[  775.767507][T14140] 8021q: adding VLAN 0 to HW filter on device team0
[  775.768512][T14239]  __kfree_skb+0x4f/0x70
[  775.824931][T14239]  tcp_ack+0x19b2/0x5c90
[  775.839431][ T2219] bridge0: port 1(bridge_slave_0) entered blocking state
[  775.846665][ T2219] bridge0: port 1(bridge_slave_0) entered forwarding state
[  775.851340][T14239]  tcp_rcv_established+0xda1/0x22e0
[  775.865952][T14247] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1641'.
[  775.910429][T14239]  tcp_v4_do_rcv+0x5ca/0xa90
[  775.915042][ T2219] bridge0: port 2(bridge_slave_1) entered blocking state
[  775.922396][ T2219] bridge0: port 2(bridge_slave_1) entered forwarding state
[  775.947138][T14239]  __release_sock+0x31b/0x400
[  775.966992][T14239]  release_sock+0x5a/0x220
[  776.008304][T14239]  tcp_sendmsg+0x38/0x50
[  776.036202][T14239]  inet_sendmsg+0xb9/0x140
[  776.074904][T14251] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1643'.
[  776.084272][T14239]  sock_write_iter+0x4aa/0x5b0
[  776.099832][T14251] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1643'.
[  776.118631][T14239]  vfs_write+0x6c7/0x1150
[  776.140114][T14239]  ksys_write+0x1f8/0x250
[  776.167617][T14239]  do_syscall_64+0xcd/0x490
[  776.208625][T14239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  776.602174][T14140] 8021q: adding VLAN 0 to HW filter on device batadv0
[  776.774575][T14140] veth0_vlan: entered promiscuous mode
[  776.894515][T14140] veth1_vlan: entered promiscuous mode
[  776.995756][T14140] veth0_macvtap: entered promiscuous mode
[  777.015676][T14140] veth1_macvtap: entered promiscuous mode
[  777.076633][T14140] batman_adv: batadv0: Interface activated: batadv_slave_0
[  777.106176][T14140] batman_adv: batadv0: Interface activated: batadv_slave_1
[  777.151998][T14140] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  777.162379][T14140] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  777.173819][T14140] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  777.193835][T14140] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  777.446260][T11824] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  777.468731][T11824] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  777.789034][T12525] Bluetooth: hci2: command tx timeout
[  777.842100][   T30] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  777.900755][   T30] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  777.988490][T11824] bridge_slave_0: left allmulticast mode
[  778.025947][T11824] bridge_slave_0: left promiscuous mode
[  778.069899][T11824] bridge0: port 1(bridge_slave_0) entered disabled state
[  778.442131][T14285] vivid-007: =================  START STATUS  =================
[  778.466849][T14291] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1651'.
[  778.469868][T14285] vivid-007: Generate PTS: true
[  778.485081][T14285] vivid-007: Generate SCR: true
[  778.490468][T14285] tpg source WxH: 320x240 (Y'CbCr)
[  778.504980][T14285] tpg field: 1
[  778.509045][T14285] tpg crop: (0,0)/320x240
[  778.513750][T14285] tpg compose: (0,0)/320x240
[  778.532817][T14285] tpg colorspace: 8
[  778.536722][T14285] tpg transfer function: 0/0
[  778.558209][T14285] tpg Y'CbCr encoding: 0/0
[  778.562720][T14285] tpg quantization: 0/0
[  778.601689][T14285] tpg RGB range: 0/2
[  778.625230][T14285] vivid-007: ==================  END STATUS  ==================
[  779.272215][T11824] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  779.285661][T11824] bond0 (unregistering): (slave ): Releasing backup interface
[  779.294964][T11824] bond0 (unregistering): Released all slaves
[  779.416116][T11824] HfR: left promiscuous mode
[  779.552782][T11824] .SR: left promiscuous mode
[  780.402404][T14327] mkiss: ax0: crc mode is auto.
[  780.629184][T14332] FAULT_INJECTION: forcing a failure.
[  780.629184][T14332] name failslab, interval 1, probability 0, space 0, times 0
[  780.660735][T14332] CPU: 0 UID: 0 PID: 14332 Comm: syz.2.1663 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  780.660779][T14332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  780.660796][T14332] Call Trace:
[  780.660806][T14332]  <TASK>
[  780.660817][T14332]  dump_stack_lvl+0x16c/0x1f0
[  780.660852][T14332]  should_fail_ex+0x512/0x640
[  780.660898][T14332]  ? __kvmalloc_node_noprof+0x124/0x620
[  780.660947][T14332]  should_failslab+0xc2/0x120
[  780.660979][T14332]  __kvmalloc_node_noprof+0x137/0x620
[  780.661026][T14332]  ? io_alloc_cache_init+0x33/0x170
[  780.661080][T14332]  ? io_alloc_cache_init+0x33/0x170
[  780.661125][T14332]  io_alloc_cache_init+0x33/0x170
[  780.661186][T14332]  io_uring_setup+0x61d/0x2080
[  780.661234][T14332]  ? __pfx_io_uring_setup+0x10/0x10
[  780.661275][T14332]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  780.661313][T14332]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  780.661351][T14332]  ? __fget_files+0x20e/0x3c0
[  780.661412][T14332]  ? ksys_write+0x1ac/0x250
[  780.661457][T14332]  ? __pfx_ksys_write+0x10/0x10
[  780.661510][T14332]  __x64_sys_io_uring_setup+0xc2/0x170
[  780.661556][T14332]  do_syscall_64+0xcd/0x490
[  780.661591][T14332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  780.661623][T14332] RIP: 0033:0x7f2e8038e929
[  780.661648][T14332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  780.661677][T14332] RSP: 002b:00007f2e81284038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  780.661705][T14332] RAX: ffffffffffffffda RBX: 00007f2e805b5fa0 RCX: 00007f2e8038e929
[  780.661726][T14332] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000001
[  780.661744][T14332] RBP: 00007f2e81284090 R08: 0000000000000000 R09: 0000000000000000
[  780.661762][T14332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  780.661780][T14332] R13: 0000000000000001 R14: 00007f2e805b5fa0 R15: 00007ffc6d6a8278
[  780.661821][T14332]  </TASK>
[  781.483270][T11824] hsr_slave_1: left promiscuous mode
[  781.530990][T11824] veth1_macvtap: left promiscuous mode
[  781.543206][T11824] veth0_macvtap: left promiscuous mode
[  781.564673][T11824] veth1_vlan: left promiscuous mode
[  781.580074][T11824] veth0_vlan: left promiscuous mode
[  781.750497][T14350] Process accounting resumed
[  783.504136][T11824] team0 (unregistering): Port device team_slave_1 removed
[  783.565960][T11824] team0 (unregistering): Port device team_slave_0 removed
[  784.151368][T14360] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1671'.
[  784.165822][T14358] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  784.181553][T14358] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  784.198131][T14363] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1672'.
[  784.238100][T14358] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  784.625965][T14377] FAULT_INJECTION: forcing a failure.
[  784.625965][T14377] name failslab, interval 1, probability 0, space 0, times 0
[  784.726560][T14377] CPU: 1 UID: 0 PID: 14377 Comm: syz.3.1676 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  784.726605][T14377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  784.726624][T14377] Call Trace:
[  784.726635][T14377]  <TASK>
[  784.726647][T14377]  dump_stack_lvl+0x16c/0x1f0
[  784.726683][T14377]  should_fail_ex+0x512/0x640
[  784.726741][T14377]  should_failslab+0xc2/0x120
[  784.726773][T14377]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  784.726826][T14377]  ? skb_clone+0x190/0x3f0
[  784.726865][T14377]  skb_clone+0x190/0x3f0
[  784.726900][T14377]  netlink_deliver_tap+0xabd/0xd30
[  784.726947][T14377]  netlink_unicast+0x6b2/0x7f0
[  784.727001][T14377]  ? __pfx_netlink_unicast+0x10/0x10
[  784.727046][T14377]  ? find_held_lock+0x2b/0x80
[  784.727083][T14377]  netlink_ack+0x696/0xb80
[  784.727142][T14377]  netlink_rcv_skb+0x332/0x420
[  784.727181][T14377]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  784.727235][T14377]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  784.727293][T14377]  ? netlink_deliver_tap+0x1ae/0xd30
[  784.727339][T14377]  netlink_unicast+0x53d/0x7f0
[  784.727384][T14377]  ? __pfx_netlink_unicast+0x10/0x10
[  784.727436][T14377]  netlink_sendmsg+0x8d1/0xdd0
[  784.727483][T14377]  ? __pfx_netlink_sendmsg+0x10/0x10
[  784.727540][T14377]  sock_write_iter+0x4ff/0x5b0
[  784.727585][T14377]  ? __pfx_sock_write_iter+0x10/0x10
[  784.727642][T14377]  ? bpf_lsm_file_permission+0x9/0x10
[  784.727677][T14377]  ? security_file_permission+0x71/0x210
[  784.727723][T14377]  ? rw_verify_area+0xcf/0x680
[  784.727771][T14377]  vfs_write+0x6c7/0x1150
[  784.727820][T14377]  ? __pfx_sock_write_iter+0x10/0x10
[  784.727868][T14377]  ? __pfx_vfs_write+0x10/0x10
[  784.727919][T14377]  ? find_held_lock+0x2b/0x80
[  784.727986][T14377]  ksys_write+0x1f8/0x250
[  784.728031][T14377]  ? __pfx_ksys_write+0x10/0x10
[  784.728088][T14377]  do_syscall_64+0xcd/0x490
[  784.728125][T14377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  784.728159][T14377] RIP: 0033:0x7f7b7798e929
[  784.728183][T14377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  784.728214][T14377] RSP: 002b:00007f7b78833038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  784.728243][T14377] RAX: ffffffffffffffda RBX: 00007f7b77bb5fa0 RCX: 00007f7b7798e929
[  784.728263][T14377] RDX: 00000000000002fb RSI: 0000200000000000 RDI: 0000000000000005
[  784.728282][T14377] RBP: 00007f7b78833090 R08: 0000000000000000 R09: 0000000000000000
[  784.728300][T14377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  784.728317][T14377] R13: 0000000000000000 R14: 00007f7b77bb5fa0 R15: 00007ffe0b596448
[  784.728358][T14377]  </TASK>
[  785.530539][T14387] Process accounting resumed
[  785.706395][T14393] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input157
[  785.845238][T14400] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1680'.
[  789.083862][T14435] ubi0: attaching mtd0
[  789.107699][T14435] ubi0: scanning is finished
[  789.574750][T14443] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input158
[  789.644424][T14435] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  789.736670][T14435] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  789.840443][T14450] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1689'.
[  789.856513][T14435] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  789.864338][T14435] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  789.886261][T14435] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  790.004388][T14435] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  790.119295][T14435] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 796626483
[  790.248244][T14435] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  790.380854][T14445] ubi0: background thread "ubi_bgt0d" started, PID 14445
[  790.916885][T14459] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input159
[  791.132367][T14451] Process accounting paused
[  791.156601][T14464] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1692'.
[  791.626049][T14477] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1695'.
[  792.680722][T14477] hsr_slave_0 (unregistering): left promiscuous mode
[  793.341768][T14502] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input160
[  793.603728][T14506] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1704'.
[  793.936938][T14515] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1707'.
[  794.950665][T14540] FAULT_INJECTION: forcing a failure.
[  794.950665][T14540] name failslab, interval 1, probability 0, space 0, times 0
[  795.043331][T14540] CPU: 0 UID: 0 PID: 14540 Comm: syz.3.1713 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  795.043381][T14540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  795.043403][T14540] Call Trace:
[  795.043414][T14540]  <TASK>
[  795.043427][T14540]  dump_stack_lvl+0x16c/0x1f0
[  795.043466][T14540]  should_fail_ex+0x512/0x640
[  795.043518][T14540]  ? __kmalloc_noprof+0xbf/0x510
[  795.043595][T14540]  ? xfrm_hash_alloc+0xd1/0x100
[  795.043643][T14540]  should_failslab+0xc2/0x120
[  795.043679][T14540]  __kmalloc_noprof+0xd2/0x510
[  795.043745][T14540]  ? __pfx_xfrm_statistics_seq_show+0x1/0x10
[  795.043790][T14540]  ? __pfx_xfrm_net_init+0x10/0x10
[  795.043823][T14540]  xfrm_hash_alloc+0xd1/0x100
[  795.043876][T14540]  xfrm_state_init+0xdd/0x630
[  795.043943][T14540]  ? __pfx_xfrm_net_init+0x10/0x10
[  795.043975][T14540]  xfrm_net_init+0x210/0xcc0
[  795.044014][T14540]  ? __pfx_xfrm_net_init+0x10/0x10
[  795.044046][T14540]  ops_init+0x1df/0x5f0
[  795.044086][T14540]  setup_net+0x1ff/0x510
[  795.044120][T14540]  ? lockdep_init_map_type+0x5c/0x280
[  795.044169][T14540]  ? __pfx_setup_net+0x10/0x10
[  795.044208][T14540]  ? debug_mutex_init+0x37/0x70
[  795.044246][T14540]  copy_net_ns+0x2a6/0x5f0
[  795.044291][T14540]  create_new_namespaces+0x3ea/0xa90
[  795.044343][T14540]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  795.044383][T14540]  ksys_unshare+0x45b/0xa40
[  795.044429][T14540]  ? __pfx_ksys_unshare+0x10/0x10
[  795.044474][T14540]  ? xfd_validate_state+0x61/0x180
[  795.044532][T14540]  __x64_sys_unshare+0x31/0x40
[  795.044576][T14540]  do_syscall_64+0xcd/0x490
[  795.044614][T14540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  795.044648][T14540] RIP: 0033:0x7f7b7798e929
[  795.044675][T14540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  795.044708][T14540] RSP: 002b:00007f7b78833038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  795.044749][T14540] RAX: ffffffffffffffda RBX: 00007f7b77bb5fa0 RCX: 00007f7b7798e929
[  795.044772][T14540] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  795.044793][T14540] RBP: 00007f7b77a10b39 R08: 0000000000000000 R09: 0000000000000000
[  795.044813][T14540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  795.044834][T14540] R13: 0000000000000000 R14: 00007f7b77bb5fa0 R15: 00007ffe0b596448
[  795.044879][T14540]  </TASK>
[  795.841683][T14554] Process accounting resumed
[  795.912665][T14558] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input162
[  796.028218][T14565] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1717'.
[  796.458335][T14566] block nbd7: not configured, cannot reconfigure
[  796.509089][T14564] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1720'.
[  797.568546][T14586] sp0: Synchronizing with TNC
[  797.615886][T14585] sp0: Found TNC
[  798.006170][T14596] Process accounting resumed
[  799.039748][T14610] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1730'.
[  799.238197][T14620] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input163
[  799.466289][T14627] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1731'.
[  799.773826][T14635] sp0: Synchronizing with TNC
[  799.810097][T14637] sp0: Found TNC
[  802.097444][T14672] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input164
[  802.137959][   T31] audit: type=1804 audit(4294967561.420:61): pid=14669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1744" name="/newroot/sys/kernel/debug/tracing/available_events" dev="tracefs" ino=1060 res=1 errno=0
[  802.154575][T14660] sp0: Synchronizing with TNC
[  802.290789][T14660] sp0: Found TNC
[  802.314989][T14674] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1745'.
[  803.224133][T14686] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1748'.
[  803.406367][T14692] sp0: Synchronizing with TNC
[  803.443262][T14692] sp0: Found TNC
[  805.313462][T14716] FAULT_INJECTION: forcing a failure.
[  805.313462][T14716] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  805.347657][T14716] CPU: 0 UID: 0 PID: 14716 Comm: syz.2.1757 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  805.347701][T14716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  805.347719][T14716] Call Trace:
[  805.347732][T14716]  <TASK>
[  805.347741][T14716]  dump_stack_lvl+0x16c/0x1f0
[  805.347768][T14716]  should_fail_ex+0x512/0x640
[  805.347812][T14716]  _copy_to_user+0x32/0xd0
[  805.347838][T14716]  simple_read_from_buffer+0xcb/0x170
[  805.347873][T14716]  proc_fail_nth_read+0x197/0x270
[  805.347905][T14716]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  805.347936][T14716]  ? rw_verify_area+0xcf/0x680
[  805.347974][T14716]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  805.348016][T14716]  vfs_read+0x1e1/0xc60
[  805.348061][T14716]  ? __pfx___mutex_lock+0x10/0x10
[  805.348085][T14716]  ? __pfx_vfs_read+0x10/0x10
[  805.348128][T14716]  ? __fget_files+0x20e/0x3c0
[  805.348171][T14716]  ksys_read+0x12a/0x250
[  805.348205][T14716]  ? __pfx_ksys_read+0x10/0x10
[  805.348248][T14716]  do_syscall_64+0xcd/0x490
[  805.348273][T14716]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  805.348297][T14716] RIP: 0033:0x7f2e8038d33c
[  805.348316][T14716] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  805.348339][T14716] RSP: 002b:00007f2e81284030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  805.348361][T14716] RAX: ffffffffffffffda RBX: 00007f2e805b5fa0 RCX: 00007f2e8038d33c
[  805.348377][T14716] RDX: 000000000000000f RSI: 00007f2e812840a0 RDI: 0000000000000003
[  805.348391][T14716] RBP: 00007f2e81284090 R08: 0000000000000000 R09: 0000000000000000
[  805.348406][T14716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  805.348420][T14716] R13: 0000000000000001 R14: 00007f2e805b5fa0 R15: 00007ffc6d6a8278
[  805.348449][T14716]  </TASK>
[  805.498510][T14718] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input165
[  805.667145][T14718] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1756'.
[  805.797386][T14719] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input166
[  806.334620][T14734] sp0: Synchronizing with TNC
[  806.340835][T14734] sp0: Found TNC
[  806.953020][T14745] binder: 14742:14745 ioctl 4030582b 6 returned -22
[  806.986618][T14745] binder: 14742:14745 ioctl c0306201 2000000000c0 returned -11
[  808.112288][T14762] block nbd7: not configured, cannot reconfigure
[  809.102687][T14775] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1769'.
[  809.291400][T14782] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input167
[  809.445913][T14786] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1771'.
[  809.510910][T14785] sp0: Synchronizing with TNC
[  809.530386][T14789] sp0: Found TNC
[  810.416240][T14796] block nbd7: not configured, cannot reconfigure
[  810.560512][T14804] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1776'.
[  812.020876][T14819] Process accounting paused
[  812.184014][T14841] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input168
[  812.456143][T14842] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1783'.
[  812.991406][T14851] block nbd7: not configured, cannot reconfigure
[  813.385647][T14855] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1787'.
[  816.193664][T14902] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input169
[  816.357693][T14903] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input170
[  816.461310][T14904] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1795'.
[  817.434433][T14912] block nbd7: not configured, cannot reconfigure
[  818.400654][T14920] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1798'.
[  818.831548][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  818.837938][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  821.361300][T14955] Process accounting resumed
[  821.748303][T14970] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  822.191790][T14987] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input171
[  822.424085][T14989] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1815'.
[  823.969646][T15009] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1819'.
[  824.991814][T15018] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input172
[  825.099111][T15019] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1822'.
[  825.787680][T15030] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1825'.
[  825.881108][T15030] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1825'.
[  826.430026][T15049] ptrace attach of "./syz-executor exec"[5837] was attempted by ""[15049]
[  826.493072][T15044] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1826'.
[  826.850690][T15048] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  828.063234][T15065] Process accounting paused
[  828.305419][T15048] Process accounting paused
[  830.733722][T15095] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input173
[  830.893147][T15098] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1838'.
[  832.203748][T15116] block nbd7: not configured, cannot reconfigure
[  833.816291][T15139] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1846'.
[  834.074276][T15144] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1847'.
[  836.166427][T15179] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1857'.
[  838.238062][T15214] sp0: Synchronizing with TNC
[  838.268515][T15216] sp0: Found TNC
[  839.483783][T15239] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input174
[  839.735063][T15245] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1870'.
[  839.917144][T15248] Invalid ELF header magic: != ELF
[  840.474428][T15261] sp0: Synchronizing with TNC
[  840.545439][T15264] sp0: Found TNC
[  841.693048][T15275] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1878'.
[  842.307546][T15280] Process accounting resumed
[  846.565610][T15342] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1890'.
[  848.838981][T15391] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1899'.
[  849.690995][T15400] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1901'.
[  849.927680][T15408] block nbd7: not configured, cannot reconfigure
[  850.124115][T15413] block nbd7: not configured, cannot reconfigure
[  850.634313][T15400] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1901'.
[  852.025806][T15435] Process accounting paused
[  853.027770][T15459] block nbd7: not configured, cannot reconfigure
[  855.569687][T15485] mkiss: ax0: crc mode is auto.
[  856.691740][T15496] FAULT_INJECTION: forcing a failure.
[  856.691740][T15496] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  856.738846][T15496] CPU: 1 UID: 0 PID: 15496 Comm: syz.0.1923 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  856.738890][T15496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  856.738910][T15496] Call Trace:
[  856.738920][T15496]  <TASK>
[  856.738931][T15496]  dump_stack_lvl+0x16c/0x1f0
[  856.738975][T15496]  should_fail_ex+0x512/0x640
[  856.739027][T15496]  _copy_to_user+0x32/0xd0
[  856.739057][T15496]  simple_read_from_buffer+0xcb/0x170
[  856.739098][T15496]  proc_fail_nth_read+0x197/0x270
[  856.739135][T15496]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  856.739172][T15496]  ? rw_verify_area+0xcf/0x680
[  856.739209][T15496]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  856.739244][T15496]  vfs_read+0x1e1/0xc60
[  856.739290][T15496]  ? __pfx___mutex_lock+0x10/0x10
[  856.739318][T15496]  ? __pfx_vfs_read+0x10/0x10
[  856.739369][T15496]  ? __fget_files+0x20e/0x3c0
[  856.739421][T15496]  ksys_read+0x12a/0x250
[  856.739463][T15496]  ? __pfx_ksys_read+0x10/0x10
[  856.739514][T15496]  do_syscall_64+0xcd/0x490
[  856.739544][T15496]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  856.739573][T15496] RIP: 0033:0x7f1c6cb8d33c
[  856.739608][T15496] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  856.739639][T15496] RSP: 002b:00007f1c6da7d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  856.739666][T15496] RAX: ffffffffffffffda RBX: 00007f1c6cdb5fa0 RCX: 00007f1c6cb8d33c
[  856.739683][T15496] RDX: 000000000000000f RSI: 00007f1c6da7d0a0 RDI: 0000000000000003
[  856.739700][T15496] RBP: 00007f1c6da7d090 R08: 0000000000000000 R09: 0000000000000000
[  856.739716][T15496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  856.739731][T15496] R13: 0000000000000001 R14: 00007f1c6cdb5fa0 R15: 00007ffc1a89bc48
[  856.739776][T15496]  </TASK>
[  857.031921][T15496] ima: policy update failed
[  857.036727][   T31] audit: type=1802 audit(4295005878.145:62): pid=15496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1923" res=0 errno=0
[  858.760231][T15516] Process accounting resumed
[  858.922420][T15520] Process accounting resumed
[  860.566208][T15558] block nbd7: not configured, cannot reconfigure
[  861.915901][T15573] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1943'.
[  861.954821][T15573] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1943'.
[  863.994834][T15609] block nbd7: not configured, cannot reconfigure
[  872.047886][T15728] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1981'.
[  872.065186][T15728] netlink: 218 bytes leftover after parsing attributes in process `syz.1.1981'.
[  872.937013][T15730] Process accounting paused
[  874.174841][T15766] block nbd7: not configured, cannot reconfigure
[  875.040356][T15775] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1990'.
[  877.907010][T15827] block nbd7: not configured, cannot reconfigure
[  880.277221][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  880.284374][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  882.379180][T15897] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  882.422618][T15898] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2020'.
[  882.796847][T15884] Process accounting resumed
[  884.914916][T15934] 
[  884.917294][T15934] ======================================================
[  884.924323][T15934] WARNING: possible circular locking dependency detected
[  884.931352][T15934] 6.15.0-syzkaller-13743-g8630c59e9936 #0 Not tainted
[  884.938142][T15934] ------------------------------------------------------
[  884.945174][T15934] syz.0.2028/15934 is trying to acquire lock:
[  884.951269][T15934] ffffffff8e52f648 (pcpu_alloc_mutex){+.+.}-{4:4}, at: pcpu_alloc_noprof+0xb4c/0x1470
[  884.960891][T15934] 
[  884.960891][T15934] but task is already holding lock:
[  884.968288][T15934] ffff888142fa27c8 (&q->q_usage_counter(io)#18){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  884.979636][T15934] 
[  884.979636][T15934] which lock already depends on the new lock.
[  884.979636][T15934] 
[  884.990096][T15934] 
[  884.990096][T15934] the existing dependency chain (in reverse order) is:
[  884.999136][T15934] 
[  884.999136][T15934] -> #2 (&q->q_usage_counter(io)#18){++++}-{0:0}:
[  885.007802][T15934]        blk_alloc_queue+0x619/0x760
[  885.013141][T15934]        blk_mq_alloc_queue+0x175/0x290
[  885.018820][T15934]        __blk_mq_alloc_disk+0x29/0x120
[  885.024413][T15934]        loop_add+0x49e/0xb70
[  885.029129][T15934]        loop_init+0x164/0x270
[  885.033927][T15934]        do_one_initcall+0x120/0x6e0
[  885.039239][T15934]        kernel_init_freeable+0x5c2/0x900
[  885.045083][T15934]        kernel_init+0x1c/0x2b0
[  885.049963][T15934]        ret_from_fork+0x5d7/0x6f0
[  885.055112][T15934]        ret_from_fork_asm+0x1a/0x30
[  885.060445][T15934] 
[  885.060445][T15934] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  885.067693][T15934]        fs_reclaim_acquire+0x102/0x150
[  885.073279][T15934]        prepare_alloc_pages+0x162/0x610
[  885.078960][T15934]        __alloc_frozen_pages_noprof+0x18b/0x23f0
[  885.085410][T15934]        __alloc_pages_noprof+0xb/0x1b0
[  885.090994][T15934]        pcpu_populate_chunk+0x110/0xb00
[  885.096659][T15934]        pcpu_alloc_noprof+0x86a/0x1470
[  885.102241][T15934]        xt_percpu_counter_alloc+0x13e/0x1b0
[  885.108267][T15934]        find_check_entry.constprop.0+0xbc/0x9b0
[  885.114645][T15934]        translate_table+0xc98/0x1720
[  885.120058][T15934]        ipt_register_table+0x102/0x430
[  885.125643][T15934]        iptable_raw_table_init+0x63/0x90
[  885.131383][T15934]        xt_find_table_lock+0x2e4/0x520
[  885.136969][T15934]        xt_request_find_table_lock+0x28/0xf0
[  885.143106][T15934]        get_info+0x190/0x610
[  885.147816][T15934]        do_ipt_get_ctl+0x169/0xa10
[  885.153057][T15934]        nf_getsockopt+0x79/0xe0
[  885.158035][T15934]        ip_getsockopt+0x18c/0x1e0
[  885.163191][T15934]        tcp_getsockopt+0xa1/0x100
[  885.168332][T15934]        do_sock_getsockopt+0x3fc/0x800
[  885.173939][T15934]        __sys_getsockopt+0x123/0x1b0
[  885.179334][T15934]        __x64_sys_getsockopt+0xbd/0x160
[  885.184998][T15934]        do_syscall_64+0xcd/0x490
[  885.190077][T15934]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  885.196639][T15934] 
[  885.196639][T15934] -> #0 (pcpu_alloc_mutex){+.+.}-{4:4}:
[  885.204413][T15934]        __lock_acquire+0x126f/0x1c90
[  885.209827][T15934]        lock_acquire+0x179/0x350
[  885.214911][T15934]        __mutex_lock+0x199/0xb90
[  885.219966][T15934]        pcpu_alloc_noprof+0xb4c/0x1470
[  885.225557][T15934]        blk_stat_alloc_callback+0xc8/0x280
[  885.231474][T15934]        wbt_init+0xac/0x540
[  885.236088][T15934]        queue_wb_lat_store+0x354/0x3d0
[  885.241657][T15934]        queue_attr_store+0x279/0x320
[  885.247132][T15934]        sysfs_kf_write+0xef/0x150
[  885.252297][T15934]        kernfs_fop_write_iter+0x351/0x510
[  885.258127][T15934]        vfs_write+0x6c7/0x1150
[  885.263014][T15934]        ksys_write+0x12a/0x250
[  885.267902][T15934]        do_syscall_64+0xcd/0x490
[  885.272959][T15934]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  885.279391][T15934] 
[  885.279391][T15934] other info that might help us debug this:
[  885.279391][T15934] 
[  885.289636][T15934] Chain exists of:
[  885.289636][T15934]   pcpu_alloc_mutex --> fs_reclaim --> &q->q_usage_counter(io)#18
[  885.289636][T15934] 
[  885.303334][T15934]  Possible unsafe locking scenario:
[  885.303334][T15934] 
[  885.310789][T15934]        CPU0                    CPU1
[  885.316166][T15934]        ----                    ----
[  885.321639][T15934]   lock(&q->q_usage_counter(io)#18);
[  885.327250][T15934]                                lock(fs_reclaim);
[  885.333780][T15934]                                lock(&q->q_usage_counter(io)#18);
[  885.341704][T15934]   lock(pcpu_alloc_mutex);
[  885.346228][T15934] 
[  885.346228][T15934]  *** DEADLOCK ***
[  885.346228][T15934] 
[  885.354407][T15934] 6 locks held by syz.0.2028/15934:
[  885.359622][T15934]  #0: ffff888031f60b78 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[  885.368752][T15934]  #1: ffff888030f6a428 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  885.377797][T15934]  #2: ffff8880356a3888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[  885.387608][T15934]  #3: ffff888140b61698 (kn->active#143){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[  885.397773][T15934]  #4: ffff888142fa27c8 (&q->q_usage_counter(io)#18){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  885.409513][T15934]  #5: ffff888142fa2800 (&q->q_usage_counter(queue)#20){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  885.421502][T15934] 
[  885.421502][T15934] stack backtrace:
[  885.427407][T15934] CPU: 1 UID: 0 PID: 15934 Comm: syz.0.2028 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(full) 
[  885.427441][T15934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  885.427458][T15934] Call Trace:
[  885.427467][T15934]  <TASK>
[  885.427477][T15934]  dump_stack_lvl+0x116/0x1f0
[  885.427504][T15934]  print_circular_bug+0x275/0x350
[  885.427542][T15934]  check_noncircular+0x14c/0x170
[  885.427580][T15934]  __lock_acquire+0x126f/0x1c90
[  885.427621][T15934]  lock_acquire+0x179/0x350
[  885.427656][T15934]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  885.427696][T15934]  ? __pfx___might_resched+0x10/0x10
[  885.427723][T15934]  ? ksys_write+0x12a/0x250
[  885.427761][T15934]  ? do_syscall_64+0xcd/0x490
[  885.427786][T15934]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  885.427816][T15934]  __mutex_lock+0x199/0xb90
[  885.427842][T15934]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  885.427881][T15934]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  885.427921][T15934]  ? __pfx___mutex_lock+0x10/0x10
[  885.427960][T15934]  ? pcpu_alloc_noprof+0xb4c/0x1470
[  885.428004][T15934]  pcpu_alloc_noprof+0xb4c/0x1470
[  885.428047][T15934]  ? __pfx_wbt_data_dir+0x10/0x10
[  885.428089][T15934]  ? __pfx_wb_timer_fn+0x10/0x10
[  885.428117][T15934]  blk_stat_alloc_callback+0xc8/0x280
[  885.428146][T15934]  ? kasan_save_track+0x14/0x30
[  885.428188][T15934]  wbt_init+0xac/0x540
[  885.428219][T15934]  queue_wb_lat_store+0x354/0x3d0
[  885.428246][T15934]  ? __pfx_queue_wb_lat_store+0x10/0x10
[  885.428273][T15934]  ? __mutex_trylock_common+0xe9/0x250
[  885.428311][T15934]  ? __pfx_queue_wb_lat_store+0x10/0x10
[  885.428336][T15934]  queue_attr_store+0x279/0x320
[  885.428362][T15934]  ? __pfx_queue_attr_store+0x10/0x10
[  885.428398][T15934]  ? __lock_acquire+0x622/0x1c90
[  885.428439][T15934]  ? find_held_lock+0x2b/0x80
[  885.428464][T15934]  ? sysfs_file_kobj+0xe4/0x290
[  885.428497][T15934]  ? __pfx_queue_attr_store+0x10/0x10
[  885.428522][T15934]  sysfs_kf_write+0xef/0x150
[  885.428554][T15934]  kernfs_fop_write_iter+0x351/0x510
[  885.428582][T15934]  ? __pfx_sysfs_kf_write+0x10/0x10
[  885.428615][T15934]  vfs_write+0x6c7/0x1150
[  885.428652][T15934]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  885.428682][T15934]  ? __pfx___mutex_lock+0x10/0x10
[  885.428706][T15934]  ? __pfx_vfs_write+0x10/0x10
[  885.428753][T15934]  ksys_write+0x12a/0x250
[  885.428790][T15934]  ? __pfx_ksys_write+0x10/0x10
[  885.428832][T15934]  do_syscall_64+0xcd/0x490
[  885.428858][T15934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  885.428884][T15934] RIP: 0033:0x7f1c6cb8e929
[  885.428905][T15934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  885.428930][T15934] RSP: 002b:00007f1c6da3b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  885.428954][T15934] RAX: ffffffffffffffda RBX: 00007f1c6cdb6160 RCX: 00007f1c6cb8e929
[  885.428971][T15934] RDX: 0000000000000009 RSI: 00002000000001c0 RDI: 0000000000000004
[  885.428993][T15934] RBP: 00007f1c6cc10b39 R08: 0000000000000000 R09: 0000000000000000
[  885.429008][T15934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  885.429023][T15934] R13: 0000000000000000 R14: 00007f1c6cdb6160 R15: 00007ffc1a89bc48
[  885.429048][T15934]  </TASK>
[  892.588136][ T5154] Bluetooth: hci2: command 0x0406 tx timeout