last executing test programs:

7.8931144s ago: executing program 3 (id=3230):
r0 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000004c0), 0x101202, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/icmp/ratemask\x00', 0xa0202, 0x0)
ioctl$auto_UI_DEV_CREATE(0xffffffffffffffff, 0x5501, 0x0) (async)
sendfile$auto(r1, r1, 0x0, 0x3) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
write$auto_nvmf_dev_fops_fabrics(r0, &(0x7f0000001500)='7', 0x1) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NFSD_A_SERVER_LEASETIME={0x8}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x81f}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfd, {0xa, 0x0, 0xa00}}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
ioctl$auto_TUNSETSNDBUF2(0xffffffffffffffff, 0x400454d4, &(0x7f0000000000)=0x1000)

7.481271376s ago: executing program 3 (id=3233):
openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000240), 0x1811c3, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x2}, 0x100)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getpid()
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0)
unshare$auto(0x40000080)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/kvm/pages_2m\x00', 0x2, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
ioctl$auto_TCSBRKP2(r0, 0x5425, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/sound/ctl-led/speaker/card2/detach\x00', 0xa001, 0x0)
bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f0000000000)=@bpf_attr_3={0x2000, 0x7, 0x7, 0x98, 0x9, 0x8d00, 0x100000000000000, 0x101, 0x3, "f48d0b226268118e5a686efa28fe941d", 0x0, 0x5a8266be, <r2=>r1, 0x7f, 0x9ee, 0x5, 0x671d, 0x5, 0x40000, 0x7, @attach_prog_fd=r1, 0x3, 0x0, 0x2, 0xe, 0xfffffffe, r1, r1}, 0x3)
write$auto(r2, &(0x7f0000000380)='\x16ces/virtual/sound/ctl-led/speaker/caRd2/detach\x00\xaa\xef\x8e\x82\x1eP\x93 C\xe2\x1e\xc7\x11\xf3\xa5\xc4\x1d\xa7\xe5k\xf8<\\\b\x1e\xd68\x94|\xa5\x91\x05U\xd1\xd5$\xb2\x8c0w\xb1\xe6\x15e\xa9E\xd6\xbf\x8a\x9a?\xcdq\x86\x8e\\\x14\xa8\xcd\xd3\xf6\xa3\xbe3\x86T\x91\t\x00\x00\x00{\xe7(\xe7\xbbj2\x81\xd9\xb1\x18\xcd\x7fh12\xd9\x9b\x03\x84\f\x0fo8\xbd1\x92\x90\xf1\x85<\xd1\xf7\xb0\x1c\x82\xce\xa4\x81N\x84r\xb0\xd6\xc7\x15lWI\x94\x85\xc6]>a\x9a\xf2{\x0e}\x8a\xbb\xef\xd2\x19\xf6\xb2\xc4V\x9a\xaa\x90\x95s\xc7\xedj\xc6\xdf\v.*h\vX\xd0.D)\x9e\x89;>\x82\x9a\x1f\xfbo\x9a\x93\x8d\xd0\xa6#\xbd\xf2b-\x04\x8b\xeaj\x19\x153\xa4\xb8\xdd\x8e\x9eFj\xfa\r-\xc6\xab\xa8m\x93\xad\x81eq,\rD}\xc1\xa7\x84\x96\x82.\xdf\xbb\x1c\xce\xc8\xa0\xdeR\xf5\x88,\b\xc9\xcd\xdb\xf3?_\x98\x9f\xa1)V\xf3\x8f%\x90+\\\xc0\x84\x04\x94O\xd3a\\-\xeft\x1c\xf4\x88\xf0\x10\xdb\xa9\x9b\xecfu\xe8\xa2w\xb3\x9ec\xf8\xda\xf0?\xbcT\xc8\xac!_\x86\xae\xb1\xed8\xc8`\xefO\xdb5\x1eq\f?\xca\x82\x88\xde7\xc0\xa8\xd4uc\xf8b\xa8p\x93\v}\xb6b\x15\xfb\xa3\xca\x8aC\xb9\x95\xf2\xc8L\xe7\xbeWND\x8dk\xf6\xaa\xde\x06p\xdfB\x1d\xae\xa5\xd9\x12\xe6\xa5\xbe\xbf\xe1\'U\x99\x83\x9f\x1fY\xfb\xf7\x9d\x9aUds6\v\xd1t\xf58Pr\xaaY\"\xd5\xc8\x8a}K\xd9<F=\x06\xb4M\xad\x9b3\xe3I\x1b\x00\x00\x00\x00\x00\x00\x00\x00\xf68\x1c\xb4\xb5\x7f\xd9\x17\'t\xb3\xf1\x85\x0f\xcaG\x7fF\x91\xbbbg\xb1o\xd2H<\x87\xae\xb4\x1d\xdd\xfaN\xa3\xac\xa7^\xcf\xde\x0f\tJ\xd79)\xc3\"$\x10\xe7\xad\x8c!\xb4\xe6~\xfa\xde\x9cr\xbd\xd9\xea\xf6\x15}\x89UQm\v\xbf\x9d:\xd7\xec\x18\x1d\xc1\x8d\x13\xa6LF\xaa\x86:1`.bShV\xbf\xcc\x8da\xe5I\xcd\xf2L/_D]\xd0/\xa778\x99\x8f4\'NK\xf4\xa4k\x89\x9f@\xb2[\xc4\x01[\xef\xa1\xab\xc2\xfa3\x88d\x93\xa7zv\\\xf7\xb7\xf1/\xcc\xde\xfd\x93\x03\xe9\x15\x8dG\x13E\xb0\xb5-\x1c\x92.\x16\xcc\xa0g\t\"%\a\x95:&*\x9c\xc9Q\aw\xce\xa0\xf2\xc8!\'\xf3\xb6\xb0\x01\xf1\x9aHX\x8f\x15\xde\t\xd7B\xcd<\x14\xedi\x10\xd3k\xde\xf8', 0x7fffffff)
openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000240), 0x1811c3, 0x0) (async)
writev$auto(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x2}, 0x100) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
getpid() (async)
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0) (async)
unshare$auto(0x40000080) (async)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/kvm/pages_2m\x00', 0x2, 0x0) (async)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) (async)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0xad00, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0) (async)
ioctl$auto_TCSBRKP2(r0, 0x5425, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/sound/ctl-led/speaker/card2/detach\x00', 0xa001, 0x0) (async)
bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f0000000000)=@bpf_attr_3={0x2000, 0x7, 0x7, 0x98, 0x9, 0x8d00, 0x100000000000000, 0x101, 0x3, "f48d0b226268118e5a686efa28fe941d", 0x0, 0x5a8266be, r1, 0x7f, 0x9ee, 0x5, 0x671d, 0x5, 0x40000, 0x7, @attach_prog_fd=r1, 0x3, 0x0, 0x2, 0xe, 0xfffffffe, r1, r1}, 0x3) (async)
write$auto(r2, &(0x7f0000000380)='\x16ces/virtual/sound/ctl-led/speaker/caRd2/detach\x00\xaa\xef\x8e\x82\x1eP\x93 C\xe2\x1e\xc7\x11\xf3\xa5\xc4\x1d\xa7\xe5k\xf8<\\\b\x1e\xd68\x94|\xa5\x91\x05U\xd1\xd5$\xb2\x8c0w\xb1\xe6\x15e\xa9E\xd6\xbf\x8a\x9a?\xcdq\x86\x8e\\\x14\xa8\xcd\xd3\xf6\xa3\xbe3\x86T\x91\t\x00\x00\x00{\xe7(\xe7\xbbj2\x81\xd9\xb1\x18\xcd\x7fh12\xd9\x9b\x03\x84\f\x0fo8\xbd1\x92\x90\xf1\x85<\xd1\xf7\xb0\x1c\x82\xce\xa4\x81N\x84r\xb0\xd6\xc7\x15lWI\x94\x85\xc6]>a\x9a\xf2{\x0e}\x8a\xbb\xef\xd2\x19\xf6\xb2\xc4V\x9a\xaa\x90\x95s\xc7\xedj\xc6\xdf\v.*h\vX\xd0.D)\x9e\x89;>\x82\x9a\x1f\xfbo\x9a\x93\x8d\xd0\xa6#\xbd\xf2b-\x04\x8b\xeaj\x19\x153\xa4\xb8\xdd\x8e\x9eFj\xfa\r-\xc6\xab\xa8m\x93\xad\x81eq,\rD}\xc1\xa7\x84\x96\x82.\xdf\xbb\x1c\xce\xc8\xa0\xdeR\xf5\x88,\b\xc9\xcd\xdb\xf3?_\x98\x9f\xa1)V\xf3\x8f%\x90+\\\xc0\x84\x04\x94O\xd3a\\-\xeft\x1c\xf4\x88\xf0\x10\xdb\xa9\x9b\xecfu\xe8\xa2w\xb3\x9ec\xf8\xda\xf0?\xbcT\xc8\xac!_\x86\xae\xb1\xed8\xc8`\xefO\xdb5\x1eq\f?\xca\x82\x88\xde7\xc0\xa8\xd4uc\xf8b\xa8p\x93\v}\xb6b\x15\xfb\xa3\xca\x8aC\xb9\x95\xf2\xc8L\xe7\xbeWND\x8dk\xf6\xaa\xde\x06p\xdfB\x1d\xae\xa5\xd9\x12\xe6\xa5\xbe\xbf\xe1\'U\x99\x83\x9f\x1fY\xfb\xf7\x9d\x9aUds6\v\xd1t\xf58Pr\xaaY\"\xd5\xc8\x8a}K\xd9<F=\x06\xb4M\xad\x9b3\xe3I\x1b\x00\x00\x00\x00\x00\x00\x00\x00\xf68\x1c\xb4\xb5\x7f\xd9\x17\'t\xb3\xf1\x85\x0f\xcaG\x7fF\x91\xbbbg\xb1o\xd2H<\x87\xae\xb4\x1d\xdd\xfaN\xa3\xac\xa7^\xcf\xde\x0f\tJ\xd79)\xc3\"$\x10\xe7\xad\x8c!\xb4\xe6~\xfa\xde\x9cr\xbd\xd9\xea\xf6\x15}\x89UQm\v\xbf\x9d:\xd7\xec\x18\x1d\xc1\x8d\x13\xa6LF\xaa\x86:1`.bShV\xbf\xcc\x8da\xe5I\xcd\xf2L/_D]\xd0/\xa778\x99\x8f4\'NK\xf4\xa4k\x89\x9f@\xb2[\xc4\x01[\xef\xa1\xab\xc2\xfa3\x88d\x93\xa7zv\\\xf7\xb7\xf1/\xcc\xde\xfd\x93\x03\xe9\x15\x8dG\x13E\xb0\xb5-\x1c\x92.\x16\xcc\xa0g\t\"%\a\x95:&*\x9c\xc9Q\aw\xce\xa0\xf2\xc8!\'\xf3\xb6\xb0\x01\xf1\x9aHX\x8f\x15\xde\t\xd7B\xcd<\x14\xedi\x10\xd3k\xde\xf8', 0x7fffffff) (async)

6.487354957s ago: executing program 3 (id=3237):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0) (async)
r1 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/bluetooth/hci7/power\x00', 0x20800, 0x0) (async)
syz_clone3(&(0x7f00000003c0)={0x0, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)=<r2=>0x0, {0x3a}, &(0x7f0000000240)=""/154, 0x36, &(0x7f0000000300)=""/85, &(0x7f0000000380)=[0x0], 0x1}, 0x58)
ioctl$auto_XFS_IOC_ALLOCSP(r1, 0x4030580a, &(0x7f0000000440)={0x1, 0x8, 0x2, 0x2, 0x3ff, r2}) (async)
write$auto(r0, &(0x7f0000000140)='\x00\n\x00\x00\x00\x00\x00\x00', 0x2)
close_range$auto(0x2, 0x8, 0x0)
r3 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x20) (async)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy11/netdev:wlan1/rc_rateidx_vht_mcs_mask_2ghz\x00', 0x0, 0x0) (async)
r4 = socket(0xa, 0x3, 0x100) (async)
rseq$auto(&(0x7f0000000480)={0x10001, 0xa34f, 0x0, 0x9b, 0xa72, 0x7, "59c2f7e2b7337a9d31870ecd48c29efd592d18b0d1e068c1641c529901510baa21fc175b2575999c46c3c86d802146c536e0b807b1cbd239f4f9f556e79e1d923a4649f42da4ef201efdfee70498c10712214ea9f515c01bb03db8cd7aebda62cf5e97198f96cf80b1ad4c83c3b5120ff243db55"}, 0x3, 0x100, 0x0) (async)
r5 = socketpair$auto(0x8, 0x7, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x0, r5, 0x43) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socket(0x2, 0x2, 0x1) (async)
connect$auto(0x3, &(0x7f00000000c0), 0x55) (async)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) (async)
setsockopt$auto(0x3, 0x1, 0x29, 0x0, 0x28)
io_uring_setup$auto(0x6, 0x0)
write$auto(0x3, 0x0, 0xfdef) (async)
read$auto(0x3, 0x0, 0x7) (async)
sendfile$auto(r4, r3, &(0x7f0000000540)=0x7, 0x4)
getcwd$auto(0x0, 0xffffffffffffffff)
r6 = fanotify_init$auto(0xc00, 0x2000000000002)
open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98)
fanotify_mark$auto(r6, 0x105, 0x0, r3, 0x0) (async)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x151342, 0x186) (async)
socket(0x15, 0xa, 0x6) (async)
inotify_init1$auto(0x3000000000000)

5.820563686s ago: executing program 3 (id=3241):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x26, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x106)
r0 = socket(0x10, 0x2, 0xf)
close_range$auto(0x0, r0, 0x2)
pipe$auto(0x0)
socket(0xa, 0x3, 0x80000000)
pipe$auto(0x0)
bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, r0, 0xffffffff}, 0xd)
bpf$auto(0x2, &(0x7f0000000080)=@bpf_attr_3={0x5, 0x0, 0x702955be, 0x3fffd, 0x4, 0x5, 0x80, 0x2e4, 0xfffff800, "0566c8ee7c78a925488276d7697a12bd", 0x0, 0x5, 0xffffffffffffffff, 0x7, 0x421, 0x4, 0x4, 0x10001, 0x0, 0xe, @attach_prog_fd=r0, 0x7e, 0x85, 0x1, 0x5, 0x2, <r1=>0xffffffffffffffff}, 0x5)
mmap$auto(0x0, 0x5, 0x80000000000206, 0x12, r1, 0x200000006d8)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.1/usb2/2-0:1.0/usb2-port1/disable\x00', 0x102, 0x0)
sendfile$auto(r2, r2, 0x0, 0x7)
socket(0xa, 0x1, 0x100)
modify_ldt$auto(0x2, 0x0, 0xffffffffffffffff)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r3 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0x131042, 0x0)
pread64$auto(r3, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x9, 0x400)
socket(0x25, 0x1, 0x8000)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x80, 0x4a)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)

5.81956274s ago: executing program 0 (id=3242):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x88\v\xae\xa9i8W\xe5\x00W\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfded, 0x3)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="7eca46", 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/hugepages-512kB/enabled\x00', 0x129302, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xfffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_11={0xb, 0x4, 0x8, 0x1, 0x9, 0x7fffffff, 0x2}, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)
mmap$auto(0x200000000000000, 0x400006, 0xdf, 0x12, 0x2, 0x8001)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x80800, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dri/renderD128\x00', 0x9ba4133ca0d05eca, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
capset$auto(&(0x7f0000000040)={0xb}, &(0x7f0000000080)={0x4, 0x6, 0x7})
sendfile$auto(r0, r0, 0x0, 0x200)

3.951805359s ago: executing program 2 (id=3251):
socket(0x2, 0x3, 0x2)
setsockopt$auto(0x3, 0x0, 0xc8, 0xfffffffffffffffc, 0x4)
socket(0x2d, 0xa, 0x80)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x24, r1, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x4a}, @NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x11}]}, 0x24}}, 0x4000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x3, 0x89e0, 0x91)

3.564272708s ago: executing program 1 (id=3252):
setitimer$auto(0x2, &(0x7f0000000040)={{0x2, 0xd77}, {0x0, 0x8}}, 0x0)
r0 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x2, 0x0)
pwrite64$auto(r0, &(0x7f0000000080)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/inject\x00', 0x10001, 0x8c)
r1 = openat$auto_minstrel_ht_stat_fops_rc80211_minstrel_ht_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy4/netdev:wlan1/stations/08:02:11:00:00:00/rc_stats\x00', 0x688000, 0x0)
read$auto_minstrel_ht_stat_fops_rc80211_minstrel_ht_debugfs(r1, &(0x7f0000000140)=""/100, 0x64)
msgrcv$auto(0xff, 0x0, 0x2400000000, 0x6, 0x6bc2cc7d)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x2, 0x8000088)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/006/001\x00', 0x40942, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0)
openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x280, 0x0)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/tracing_cpumask\x00', 0x8042, 0x0)
mmap$auto(0x0, 0xe984, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x20000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
inotify_init1$auto(0x3000000000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8b40, 0x0)
openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x800, 0x0)
socketpair$auto(0x1e, 0x9, 0x7, 0x0)

3.299489035s ago: executing program 0 (id=3253):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mremap$auto(0x0, 0x87, 0x4, 0x4000000000003ff, 0x6667)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@NFSD_A_SERVER_LEASETIME={0x8}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf250200000008000300000000001b0004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x40040}, 0x800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
socket(0x2b, 0x1, 0x0)
setsockopt$auto(0x3, 0x6, 0x2c, 0x0, 0x9)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000229bd70001cdcdf250200000008000308"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYBLOB="1b0026bd7000fddbdf25030000002c00038028000180240006801d00748004004d808847d000", @ANYRES32, @ANYRESOCT=r0], 0x48}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

3.209700554s ago: executing program 1 (id=3254):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xbf)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x0, 0x12, 0x0, 0x28)
read$auto(0x3, 0x0, 0x80)
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16, @ANYBLOB="01002dbd7000f9dbdf25010000000600020000000000050007001000000008000900dc4c18c934781e2108000a00f2ffffff14001f00ff0100000000000000000062adfdf3e419a40000000001140020fe8000"/92], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x4008004)

2.959092672s ago: executing program 2 (id=3255):
socket(0x2, 0x801, 0x100)
connect$auto(0x3, &(0x7f0000000000), 0x55)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)
ioctl$auto(0x3, 0x800005411, 0x38)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001340)='/sys/module/l1oip/parameters/limit\x00', 0x80302, 0x0)
mmap$auto(0x0, 0x9, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_STOP_POLL(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, r1, 0x300, 0x70bd2c, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_NAME={0x13, 0x2, '/proc/self/mem\x00'}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x2}, @NFC_ATTR_LLC_PARAM_RW={0x5, 0x10, 0x3}, @NFC_ATTR_DEVICE_POWERED={0x5}]}, 0x40}}, 0x40005)
mmap$auto(0x0, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
r2 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
write$auto_proc_mem_operations_base(r2, &(0x7f0000001680)="a7", 0x80000)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(0x3, 0x0, 0xfdef)

2.61374977s ago: executing program 2 (id=3256):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010029bd7000fedbdf2503000000040008000c0001800800100004"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0x1ac}}, 0x801)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x8}, 0x7}, 0x3, 0x3)

2.455626613s ago: executing program 0 (id=3257):
r0 = ioctl$auto_TUNGETIFF2(0xffffffffffffffff, 0x800454d2, &(0x7f0000000000)=0x3)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r1, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_CHANNEL={0x5}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0xcc}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x1}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x6}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5}, @NL802154_ATTR_SCAN_DURATION={0x5, 0x24, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0x41}, 0x4004000)
shmctl$auto(0x9, 0x2, &(0x7f0000000300)={{0xffffffff, <r2=>0xee01, 0x0, 0x2, 0xd0, 0x7, 0x1}, 0x7, 0x1, 0xfff, 0x40, @inferred=<r3=>0xffffffffffffffff, @raw=0xe, 0x80, 0x0, &(0x7f0000000200)="a42df2e38ffdc535d2758bad6c8915226f371f9a4fca12924a3905cb4bbea510e5419477ce5ac865fa932ebbcaaaf64618dd386a44980320e5c91223e6b0d0d31a7a60ba735f273259f3fe", &(0x7f0000000280)="cd10fe990427fe8734b4cdffbcf4232dc1b97776697d5e5424c44625e5a7f544d33d76ad464359637edd9ee10315d86aea323caeaa6206ca573a700ea89f8a9213e7"})
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r0, &(0x7f0000000780)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000380)={0x3ac, r1, 0x804, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_ENABLED={0x5, 0x29, 0x1}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x35}, @NL802154_ATTR_PEER={0x40, 0x28, 0x0, 0x1, [@generic="b720916aa051cee92d00615e1d752ea528d07643642a3437fb03b12a5e6bb6f5647627616a910bacfaea9a646356806e0026729e667562054e010698"]}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x9}, @NL802154_ATTR_SEC_DEVKEY={0x2a0, 0x2f, 0x0, 0x1, [@nested={0xe5, 0xe0, 0x0, 0x1, [@nested={0x4, 0x4c}, @typed={0xd, 0x123, 0x0, 0x0, @str='nl802154\x00'}, @typed={0xd, 0x74, 0x0, 0x0, @str='nl802154\x00'}, @generic="f7e365472faf07f250734c838fe48ff2a4b555fad9b4e78ed2d33f39ce069f2f79ae19cb6b592e3bb8f9e03c874563d5e13693e8bcc8a1a4a560fe71d4c4d6c06ce1047162a92bdde9155b276b0c1c5a3ae57bc1aa92af77192ca959150eae04784a892c27373911cf9e3e5d973b92e917cced67ce57a1980d8953122f22e4c590c4aad772b584dc2bdd7af2a2c9e6a03598d1eec66d912695ac0c1c86fcbdcec5b21659b150cb9da8dbbf9714f1abce96bbf764757a6d77920246d1e3"]}, @nested={0x1ab, 0x90, 0x0, 0x1, [@nested={0x4, 0x17}, @nested={0x4, 0xac}, @generic="99e8dd7b1e4262ffa0e904b27c4fea451f560a6a4d54af431999577600daa77db883ffb6a882551300ae390829709cc1be1e00a74a5541d52f9ff4045761c173cc96821f423082a1bafb43ddbaa68b8bc8073cb0004ca03577da1dc74c624b021b79899fdef4d42e43233226ce3bc00103a1b7a7f951ed7ab01dd3995e1223722b9134cfb8c783659210a7591941f19e1cb61f9c157b26d0a0960b2c2a", @nested={0x4, 0x24}, @typed={0x9, 0x42, 0x0, 0x0, @str='o+^/\x00'}, @typed={0x4, 0x9f}, @typed={0xc, 0x113, 0x0, 0x0, @u64=0x9d7}, @typed={0x8, 0x14e, 0x0, 0x0, @u32=0x4}, @generic="136c207a84c99053b2f44eb949a054e39538b0255e690f949cece99b1c01c41d147721f48d5d0ca0fa17f2774cb0b162b76537ef14a7701ac577264c45e32de50404aa88eed56700ca038efab089c7c5c7ad20efae2aab1efac1b2302ab5cf1bc2684c1dbc0c32c4448d883a725a8f46da0b86905defa2dd5ec3c7df80212f2190cdd2b022991251ef1db2a00831b2a9a9f76c9e700995adc63d14681d4be079c3a18b07bd3398afd7d3c85bbd0a75e45b540e5c6258e6fae10e60626314412521033ca60e0a88db2645c85498b967af4d9d1863ca46", @nested={0x4, 0xe8}]}, @typed={0x8, 0xe, 0x0, 0x0, @ipv4=@remote}]}, @NL802154_ATTR_SEC_DEVICE={0xc, 0x2e, 0x0, 0x1, [@typed={0x8, 0xc4, 0x0, 0x0, @uid=r2}]}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x81}, @NL802154_ATTR_COORDINATOR={0x89, 0x1e, 0x0, 0x1, [@generic="acd3d2e11256db56c7511d3da0c94961594f95ecbeb114304e5dee3e1c7ce6ab899ab6fe44bae224a1c7218a920c3c09cde8f1ed3ecb060fb2ba13786a6a522a0eb8963876a21accb76db104f461f41c201d3395901190c0c1125e0940bf083adf1880088658ab7ac1529afe997cac2d3052a9cb0b25b00bd599aabe5b20bbb6508e30a7c1"]}]}, 0x3ac}, 0x1, 0x0, 0x0, 0x8000}, 0x4048000)
mknod$auto(&(0x7f00000007c0)='./file0\x00', 0x10, 0x5)
link$auto(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='./file0\x00')
r4 = ioctl$auto_NS_GET_PID_FROM_PIDNS(r0, 0x8004b706, &(0x7f0000000880)=0x5)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000900), r0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000d80)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000940)={0x3c8, r5, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x7f}, @ETHTOOL_A_LINKMODES_OURS={0x37b, 0x3, 0x0, 0x1, [@generic="09d1398f22b82d3521b23daead4bfe4b012bad759b74b6f0fa58233ad6391484e4d07f64f049049b5c1dac6ab33f76bb93a0", @typed={0x8, 0x8f, 0x0, 0x0, @u32=0xe1d}, @generic="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", @generic="6a63ac3381371622bd7fd7a742af35c9c8c9528f25fa0583741c5f9b0fc99cbfef21baec4637646307b04013ba38279fee2af494e0c3df5b9a232f6a3c2f2c767ffdff94ac03b3d07773252f691bdb958c7ee1f2f3abfc78168eeb3f05b83ebb16f6870af026540c70de302ff8da26657a015b2db0f305567b3c30c9abd9", @nested={0xf7, 0x142, 0x0, 0x1, [@nested={0x4, 0x92}, @generic="53d5f35c3f401ec42f0c696dbca7fc59861dfc928c7981c6ca7e3cdce3788f9d743608e9f1ce8a22286aec0725c4853a939e4e600faf07f51d07e626b499dd714f0f51f5610ba908f779090d7d98fb95f9cc9e657ee95789422b4e91c3683fdaa451417a99ab329ef00407e2208cdb28644800ad81c6ff1cadccb0919dc9c976f6482c8fb967cafadd6bea7a07013d70f95184a0c9d437847f8cba4745f5c2804be848d830a503043dc2fc0cd65e4820399aef3a75617713791338b6394f4b8d4bb62272e30283208dc891", @nested={0x4, 0x13f}, @typed={0x8, 0x15, 0x0, 0x0, @pid=r3}, @typed={0x8, 0x92, 0x0, 0x0, @ipv4=@broadcast}, @nested={0x4, 0x100}, @typed={0x8, 0x65, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @nested={0x4, 0x8c}]}, @generic="61e8215ea8393c804c9c0539a14221028484ad1e6d8021546da0ac9454834b7f56feb43b3bf63ae3b630a08b1308fb1f57a647663ff0c612898c06a7f0215c8feb5182fd0b078f3f57d931d713ddcfd996760a425fee2c271ec06c2f72b1a7539ffac2a1107b915dd5d533d98985b73d1297b2964fff822698023af6e84a54e8b4fc4b551f8a9b6d4864c273f701ea7a02f7e1e7ec3e6a", @generic="16a9f69a70ee9492e377e4e9ba8662b00936f91a25b1b9e95592e3e578b9c05accebd4f45de98bc6e56c009f2607959bbacfe10eb9"]}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0x80}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0x7}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0xa87}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x8001}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x60}]}, 0x3c8}, 0x1, 0x0, 0x0, 0xc0}, 0x840)
sendmsg$auto_NL802154_CMD_SEND_BEACONS(r0, &(0x7f0000001400)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000013c0)={&(0x7f0000000e00)={0x5c0, r1, 0x20, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_KEY={0x108, 0x30, 0x0, 0x1, [@typed={0xc, 0x124, 0x0, 0x0, @u64=0x1}, @typed={0x8, 0xd4, 0x0, 0x0, @u32=0xf22}, @generic="55aa5802ade526293b952fc0358ca1c013e7fa171f64a1a075d2a2de2ae04bdc1888c9761199a63c0da334886b07fec30878199247ef35c42bbd9a8c9b61427515aeb3307dabdc98ef60e5208e24d4cf99e422e8b212de6cb5a92be16918802db2f662a6537ee493ff8612bd2741f0096f894a1bf9fcc356840df9e2184892c22b444861fffb6b9fc6665a0fda9cf638acc44de089c00ceecab0405174724a936c2ced755d6575753af5d3bece2bfcd03db85863b171202fd3d772d189f57f74098e540a7d11f0d00573a2040dd18b015a4e2faf8525313741903c7188e437c101a7d9b52af6bad4", @typed={0x8, 0x124, 0x0, 0x0, @u32=0x5}]}, @NL802154_ATTR_SEC_DEVICE={0x46f, 0x2e, 0x0, 0x1, [@typed={0x8, 0xca, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x28}}, @generic="4d713a3136b586677cf2e0b1dafa84a3260c91c1d1618d2fadde57e4a7c7204f4271b919dc7dcaff75495eb1359f3753b31ea8", @nested={0x2fa, 0x27, 0x0, 0x1, [@nested={0x4, 0x6a}, @generic="23cf1b0abbebed09c7b70992e0deb46d9fb74e63ab0b15f2dc94e90114b40829dc47d96cf15010a6baf1f5fc8d74fcbf77ace5caaa11083265baec1713f9302ed91d257e0e3a55ace0e22899cc175adf4b339234831118345783f3df52b2cbc426d23879ba38cd80ccb2a276a72b95e77370dd419953aaf554a7f4c17669ef2b9193638020451ba2c1888b0f64766871937e3f53208aa532fd5075dabfca6c9d820b834e8a87e0fb30ee4be6e4758391fe9324521a9330e7930d84", @generic="fd6aaa566f95c59c584a3c8d58f603ea763116c69efa932b2cbf40fc64f4bcf6bd0dbfdb7bd47cae315d3a9b81cf7ecb6187b182259c5af4627f5dca2f7082e1684658fe49a8b96f2ddac0fc4d67d4845902cf0bca322a1f8c8d7e9a59e7bdc02990862780c47444b152ff7fc8726c1cb3cc3254616c", @nested={0x4, 0xf6}, @typed={0x8, 0x11, 0x0, 0x0, @uid=r2}, @generic="2019c2618a0d0a02e49787924196398701f5ab33dd95b00694a3d433af1c5373b7fb2405daab858ef0bd5812b8b93e41", @typed={0x8, 0xf7, 0x0, 0x0, @fd}, @generic="096c72c9dc83d7c0fcddbf6cb4b085001a6cf32334a8eac73cdb3a63e6fffba710cf07601d6fd9f4f79b8ce72ed02c8400ed07b0894e6801fec4f9851e1bebce8f8ccdcac97fe8223833bd9f53248ae501", @generic="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", @generic="3fe859b6b77210c0decabce3514035bd326bd541ff292c6ae77d30a4a3060c64e2cabfe9c43e8d159ad4a9dad353"]}, @nested={0xf1, 0x9a, 0x0, 0x1, [@generic="b5be45828d0052a3997903106d1bb344b8dcd5785e5cf0026b4f4614f007ecab7b5ed36a1793a3034e8d22e65ef97b160aa7713c490aac24ea584ad49c500c31391c1eeac3fc9a15f31a85aba87ad253daae1147d85fc0a51887f6eff35109904bc618daf0d47d79cff02b59302da17c6e28b2fc855b650fcbba3eeaeaeca3b4794dcbcc09f7860b040f9721efbcfa9f0e7a8c66494cc7a97bf1bc74ee343310d8098a48e29d2b6727d61af1814f6ef70cf8065ed32121b70f1741c4dd94a9e6643a53666be9726c8287b540f902e1f46005ffe537762327c146dee428d67574dda8f9a8b07b63102b668e8e00"]}, @typed={0x8, 0x119, 0x0, 0x0, @pid=r3}, @nested={0x38, 0x26, 0x0, 0x1, [@generic="6d9de17eb64ba0a5c8235f05dac8191b43ef9bc91e3b3d509fa1c4fbce16875af2a94a0584528daaa710d3e8", @typed={0x8, 0x7a, 0x0, 0x0, @uid=r2}]}]}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x2}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x4}, @NL802154_ATTR_IFNAME={0x14, 0x4, 'hsr0\x00'}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x6d}, @NL802154_ATTR_SCAN_DURATION={0x5}]}, 0x5c0}, 0x1, 0x0, 0x0, 0x4804}, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000001440)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x4802, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000001480)='/dev/snd/controlC0\x00', 0x400201, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001500), r0)
sendmsg$auto_NL80211_CMD_START_NAN(r4, &(0x7f00000015c0)={&(0x7f00000014c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001580)={&(0x7f0000001540)={0x18, r6, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_DISABLE_HE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20004021}, 0x4040045)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001600)='/sys/devices/platform/vhci_hcd.13/usb36/power/wakeup_abort_count\x00', 0x44000, 0x0)
ioctl$auto_XFS_IOC_FSINUMBERS(r0, 0xc0205867, &(0x7f0000001780)={&(0x7f0000001680)=0x7ff, 0x1, &(0x7f00000016c0)="a54381b69f460d2159f0109c62ef54b5bfae3d2e9640bdabefad08bab100e32e6a487acafbd69844bdfc5b17a35c1c4f5320ecc00ef6a163c80b2477a7769932e2b6e68b57984c03b93503b39c8acde1f26dadb496", &(0x7f0000001740)=0xbe94})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000001800)={'lo\x00', <r8=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(r4, &(0x7f00000018c0)={&(0x7f00000017c0)={0x10, 0x0, 0x0, 0x400020}, 0xc, &(0x7f0000001880)={&(0x7f0000001840)={0x34, 0x0, 0x10, 0x70bd28, 0x25dfdbfe, {}, [@HSR_A_IFINDEX={0x8, 0x2, r8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa, 0x1, @random="69340c6d648f"}]}, 0x34}, 0x1, 0x0, 0x0, 0x805}, 0x90)
write$auto(r7, &(0x7f0000001900)='nl802154\x00', 0x8)
r9 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000001940), 0x4000, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000001980)='/dev/usbmon35\x00', 0x400, 0x0)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r4, &(0x7f0000001a80)={&(0x7f00000019c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001a40)={&(0x7f0000001a00)={0x2c, r5, 0x8, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_COALESCE_RX_USECS_LOW={0x8, 0xe, 0xe7}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0x9}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES_HIGH={0x8, 0x14, 0x80}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x40)
shutdown$auto(r9, 0x7f)
sysfs$auto(0x6, 0x200, 0x4)
signalfd$auto(r0, &(0x7f0000001ac0)={0x5}, 0x4)
r10 = socketpair$auto(0x10, 0x3, 0xfffffffe, &(0x7f0000001b00)=0x769a)
ioctl$auto_KVM_CREATE_VM(r10, 0xae01, 0x0)
getsockopt$auto_SO_COOKIE(r0, 0x6, 0x39, &(0x7f0000001b40)='(+(^\\,+\x00', &(0x7f0000001b80)=0x7f)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000001bc0), 0xffffffffffffffff)

2.308262294s ago: executing program 2 (id=3258):
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x8, 0x6, 0x9b72, 0x2, 0x8000)
lstat$auto(0x0, &(0x7f0000000340)={0x0, 0x5, 0xfffb, 0x39b, 0x0, 0xffffffffffffffff, 0x0, 0x9, 0xfec1, 0x0, 0x8000000000000000, 0xfffffffffffffff6, 0x6, 0x3, 0x1005, 0xfffffffffffffffb, 0x9})
r0 = socket(0x10, 0x2, 0x0)
move_pages$auto(0xffffffffffffffff, 0x0, &(0x7f0000000040)=&(0x7f0000000000)="b1ed4771a1a3fb", &(0x7f0000000080)=0x40, &(0x7f00000000c0), 0x8)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x4, 0x0, 0x5, 0x0, 0x2, 0x10000008}, 0x800}, 0x107, 0x8, 0x0)

2.172815013s ago: executing program 1 (id=3259):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x4f4, 0x202000b, 0x103, 0xf8, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r1, 0x107, 0xc, 0x0, 0x4)
getsockopt$auto(r0, 0x10e, 0x9, 0xfffffffffffffffe, 0x0)

2.100800287s ago: executing program 2 (id=3260):
getpid()
mmap$auto(0x0, 0x4, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
semctl$auto_SETVAL(0x6, 0x4, 0x10, 0x8)
prctl$auto_PR_SET_MM_START_DATA(0x80000001, 0x3, 0x0, 0x9, 0xd)
mmap$auto(0xa, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x80c0}, 0x4000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
r2 = socket(0x1d, 0x2, 0x7)
r3 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r4=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r4}, 0x6a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r5=>0x0})
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r5}, 0x18)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(r2, 0x0, 0xfd33, 0x6fffffe)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)

2.048694551s ago: executing program 0 (id=3261):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x11, 0x80003, 0x300)
name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000001c0)='/\x00', &(0x7f0000000200)={0x0, 0x200}, 0x0, 0x1001)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)="4c0c5833b1dcff", 0x49}, 0x5, 0x0, 0x5, 0xe}, 0x5}, 0x2, 0x100)
r1 = socket(0x11, 0x3, 0x9)
setresuid$auto(0xffffffffffffffff, 0x8, 0x8000)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000080)=r0)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x1, 0x6, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0x5, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
r3 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000000)='/dev/media8\x00', 0x2, 0x0)
ioctl$auto(r3, 0x1, r3)
sendmmsg$auto(r1, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)="4c0300", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x5}, 0x2, 0x100)

2.023813211s ago: executing program 3 (id=3262):
socket(0xa, 0x3, 0xff)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000940)={'hsr0\x00', <r1=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="64e9e100", @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf2503000000080003000010000006000700fd7f000006000700100000000a000500000000000000000006000600080000000a000100aaaaaaaaaaaa000008000200", @ANYRES32=r1, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="0800040009000000"], 0x64}, 0x1, 0x0, 0x0, 0x40090}, 0x40090)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
utimes$auto(&(0x7f0000000080)=':,\x00', &(0x7f00000000c0)={0x80, 0xc})
socket$nl_generic(0x10, 0x3, 0x10)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socket(0xa, 0x3, 0xff)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x100000000000, 0x400008, 0x4c, 0x9b72, 0xffffffffffffffff, 0x8001)
pwrite64$auto(0xffffffffffffffff, 0x0, 0x6, 0x8)
mmap$auto(0x0, 0x1ff, 0xe5, 0x200000810, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x9, 0x3)
close_range$auto(0x2, 0x8, 0x0)

1.988846527s ago: executing program 1 (id=3263):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = openat$auto_aoe_fops_aoechr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/etherd/err\x00', 0x402, 0x0)
pread64$auto(r0, 0x0, 0x8, 0x2aa00b6e)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x23, 0x5, 0x0)
ioctl$auto(0x3, 0x541b, 0x38)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)

1.114277279s ago: executing program 0 (id=3264):
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x1, 0x0)
add_key$auto_KEY_SPEC_USER_KEYRING(&(0x7f0000000140)='\x00\x00c\x8c\x13\xd80wv-V#J?', &(0x7f0000001cc0)='\x00', 0x0, 0x0, 0xfffffffffffffffc)
mmap$auto(0x0, 0x4994, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/ext4/sda1/delayed_allocation_blocks\x00', 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dmmidi2\x00', 0x181842, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/workqueue/nvme_tcp_wq/max_active\x00', 0x182b02, 0x0)
sendfile$auto(r1, r1, 0x0, 0x3)
read$auto_fuse_dir_operations_dir(0xffffffffffffffff, &(0x7f0000000180)=""/158, 0x9e)
setsockopt$auto_SO_NOFCS(r1, 0xf1c, 0x2b, 0x0, 0x2)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/sit0/statistics/tx_compressed\x00', 0x100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000001c00)=""/4111, 0x100f)
mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0xffffffffffffffff, 0x0)
r3 = socket(0x1e, 0x1, 0x0)
bind$auto(r3, &(0x7f0000000040)=@tipc=@name={0x1e, 0x2, 0x2, {{0x1}, 0xffffdfff}}, 0x66)
write$auto(0x1, 0x0, 0x80000000)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
write$auto(0xca, 0x0, 0x2d9)
close_range$auto(0x2, 0xa, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, 0x0, 0x40800)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r0, 0x7, 0x9ec0000000000000)
fcntl$auto(0x3, 0x400, 0x2)
write$auto(0xca, 0x0, 0x2b)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
semtimedop$auto(0x401, &(0x7f0000000080)={0x8e, 0x7}, 0x5, &(0x7f00000000c0)={0x9, 0xdb})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x1ac}}, 0x40000)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)

637.331908ms ago: executing program 1 (id=3265):
r0 = socket(0x23, 0x2, 0x0)
ioctl$auto(0x3, 0x541b, 0xfffffffffffff4e0)
mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000)
fcntl$auto_F_GET_RW_HINT(r0, 0x40b, 0x8000000000000000)
mremap$auto(0x0, 0xfffffffffffffffc, 0x3fd6, 0x3, 0x7fffffffb000)
mount$auto(&(0x7f0000000000)='netdevsim0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='\x00', 0x4, &(0x7f00000000c0)="a1b18716e04971463174a66283e463b25e263e0edb0c72da02358757470062576dde1cc81689d2174f211aacee6b528ab35cb80b9429e245f43608311b06fda3187dd9996fe1e49bb2f88ffc7795bcf1a0e8728aeb9c55b48418ab586e0f7a27fabfc946edd30f59d7f78bc643b07ee9483e0d42bf4c5ba4fbfc98184f00e49ad96f6229e221e2efc95fd23bd7ffb934a5657943ec7e02940a3deca61e95bb9cf4ce75693638")
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000180), r0)
mremap$auto(0x0, 0x2, 0x9, 0x3, 0x7fffffffb000)

246.510706ms ago: executing program 1 (id=3266):
r0 = socket(0x1d, 0x3, 0x1) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$auto(0x0, 0x0, 0x6f4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0) (async, rerun: 64)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async, rerun: 64)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
madvise$auto(0x0, 0x8000000000000000, 0x15) (async)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) (async)
setsockopt$auto(r0, 0x65, 0x1, 0x0, 0x0)
r1 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async, rerun: 64)
mbind$auto(0xf000, 0x1, 0x1, 0x0, 0x7fff, 0x2) (async, rerun: 64)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) (async)
utimensat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xfffffffb) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
mbind$auto(0xffffffffffff7fff, 0x1, 0x800, &(0x7f0000000040)=0x3, 0x5, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000100), r2) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop15/queue/scheduler\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xc01) (async, rerun: 64)
sendmsg$auto_SMC_PNETID_ADD(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, r3, 0xd3bed26fbb0d8463, 0x70bd29, 0x25dfdbfe, {0x2, 0x0, 0x300}, [@SMC_PNETID_ETHNAME={0xc, 0x2, 'syz_tun\x00'}, @SMC_PNETID_NAME={0xc, 0x1, 'ethtool\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x1c054) (rerun: 64)
ioctl$auto_UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000080)={r1, 0x867c, 0x0, 0x200000008000})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000180), r2)
sendmsg$auto_OVS_VPORT_CMD_DEL(r4, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000500)={&(0x7f0000000240)={0x2a8, r5, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@OVS_VPORT_ATTR_OPTIONS={0x7e, 0x4, 0x0, 0x1, [@generic="be46920578bd4fe8652535207f1a383280046c44846795ee9b864bd3b7149efe4740734dce02a97a50dd192064e3e10db531275c784fa40757100ec9960f98d4c8de65f0725e5cee42dd4a0ff9d39dcc680ed80360e7169bdc9b076cb0bd1e6c20c98960eda7c073940411d78ec16ecb8394b1ff513240801b38"]}, @OVS_VPORT_ATTR_UPCALL_PID={0xe9, 0x5, "b3a6c19635d164768c7faf9b39975ed66ac0a8d6be4460511e7bda6e4c68ffb146ef5ead36387d6dcd1dbe8de7bb807f970118495cf789658238d121ad034dc0950b9c9614cdc4abc923187602b8c1dc34f7295809a381800551ee7df3850e39d8a8d293d2aed2c567557595f50154338f96777184f54ad6540ddd8b5e488125247c6aa94ca2e468512e1eb52442efaaa40ca0dc92caed2200869acbd5b2574832797fcf9f245feafbdba6f0f4503178c30fdba84033a007c964164bf7ba7526789d30d5193a3cb599386bd46211a957665a8948e22818588b675739f9d68a59541f5303ce"}, @OVS_VPORT_ATTR_UPCALL_STATS={0x15, 0xa, 0x0, 0x1, [@generic="a54c3e9bcb", @typed={0xc, 0x94, 0x0, 0x0, @u64=0x7}]}, @OVS_VPORT_ATTR_UPCALL_PID={0xcc, 0x5, "52b5b1bb8d1d0bebd725729799aed7cdc86352cc8a3fd249bf6a219052b6c67faf3de5876ba4b80fd6acc80f84f0ffedf3734f413972a6abcec99afa5823f8094787f8a249ef38bef509a4a04da904d310e6a3d1f09e01bc21f8bcf4405c788d437e90f11aa37fb9a2bc296a2dcc6ac4c17c67bfbfc557b326eaa076b9d1155d5a48917701529fbee1e4a397c32f7b38c9651b61ab09391311336cebaca888d124ec2c782ed124489f7ca634b58550ade56db71e5d3b25f4c4a645387261b863fadaf9d9e07b8cfc"}, @OVS_VPORT_ATTR_STATS={0x44, 0x6, {0x1, 0x1, 0xcb, 0x6, 0x7, 0x5, 0xff, 0x6}}]}, 0x2a8}, 0x1, 0x0, 0x0, 0x4000005}, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) (async, rerun: 32)
getsockopt$auto(0x4, 0x6, 0x1f, 0xfffffffffffffffc, 0x0) (rerun: 32)

103.908145ms ago: executing program 3 (id=3267):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/rose14/power/runtime_status\x00', 0x200000, 0x0)
write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001b80)='/dev/input/event2\x00', 0x40800, 0x0)
ioctl$auto_EVIOCSKEYCODE(r2, 0x40084504, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r3, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r3, 0x0, 0x98c7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x2, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000040)=0x5)
r6 = socket(0xa, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00'})
read$auto(0x3, 0x0, 0x80)
r7 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r7, 0xc1105517, &(0x7f00000002c0)={{@inferred, 0x5, 0x9, 0x1, "4941aa833e2fc65b6b3cf7cec76d6778ad8eac3cda35ba9c2b2d43eeb0dc59c8dd3500f11581916caa0d3053"}, 0x4, 0xfffffff9, 0x1, @inferred, @enumerated={0xffff, 0xffe, "4bd04167d52dbe3758dcb7641f58661870525adcaedaa5deaa336a58b7382f979a0ff0b3d9583c08610104000049d9f994ef5578e78507d4f25cd03a4c4b5700", 0x9, 0x3fd}, "6cc1888a6393f1b4285854c5368de438f8cc142ef6df1259b05ba1183bedbd31b642b4051bc7955610c61c329794e5311121c760cb8211c78e6947a99807bcc1"})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xd, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
setsockopt$auto(0x3, 0x6d, 0x7, 0xffffffffffffffff, 0x3)
mmap$auto(0x80000, 0x400001, 0xe2, 0x20000000000017, r1, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
unshare$auto(0x40000080)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_FLUSH_PMKSA(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00', @ANYRES16=r8, @ANYBLOB="010026bd7000fedbdf253600000008000300", @ANYRES32=0x0, @ANYBLOB="0c0099000200000000000000"], 0x28}}, 0x2004c054)

59.726483ms ago: executing program 2 (id=3268):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0xbf)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x0, 0x12, 0x0, 0x28)
read$auto(0x3, 0x0, 0x80)
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16, @ANYBLOB="01002dbd7000f9dbdf25010000000600020000000000050007001000000008000900dc4c18c934781e2108000a00f2ffffff14001f00ff0100000000000000000062adfdf3e419a40000000001140020fe8000"/92], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x4008004)

0s ago: executing program 0 (id=3269):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syz_tun\x00'})
bpf$auto(0x0, &(0x7f0000000040)=@bpf_attr_5={@target_fd=r0, r0, 0x99, 0x8, 0x1, @relative_fd=r0, 0x5}, 0x91)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/addr_prefs\x00', 0x102, 0x0)
writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x6}, 0x3)

kernel console output (not intermixed with test programs):

forcing a failure.
[  137.691082][ T6457] name failslab, interval 1, probability 0, space 0, times 0
[  137.839095][ T6457] CPU: 0 UID: 0 PID: 6457 Comm: syz.2.115 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  137.839142][ T6457] Tainted: [U]=USER
[  137.839151][ T6457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  137.839168][ T6457] Call Trace:
[  137.839177][ T6457]  <TASK>
[  137.839188][ T6457]  dump_stack_lvl+0x16c/0x1f0
[  137.839244][ T6457]  should_fail_ex+0x512/0x640
[  137.839287][ T6457]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  137.839326][ T6457]  should_failslab+0xc2/0x120
[  137.839362][ T6457]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  137.839398][ T6457]  ? __d_alloc+0x31/0xaa0
[  137.839436][ T6457]  __d_alloc+0x31/0xaa0
[  137.839473][ T6457]  d_alloc+0x4a/0x1e0
[  137.839507][ T6457]  __rpc_lookup_create_exclusive+0x119/0x140
[  137.839546][ T6457]  ? __pfx___rpc_lookup_create_exclusive+0x10/0x10
[  137.839597][ T6457]  rpc_populate.constprop.0+0xbe/0x5d0
[  137.839651][ T6457]  rpc_fill_super+0x2bc/0x840
[  137.839692][ T6457]  ? sget_fc+0x808/0xc20
[  137.839740][ T6457]  ? __pfx_set_anon_super_fc+0x10/0x10
[  137.839785][ T6457]  ? __pfx_rpc_fill_super+0x10/0x10
[  137.839827][ T6457]  get_tree_keyed+0x10b/0x1d0
[  137.839877][ T6457]  vfs_get_tree+0x8b/0x340
[  137.839919][ T6457]  vfs_cmd_create+0xd7/0x2a0
[  137.839954][ T6457]  __do_sys_fsconfig+0x7b8/0xbe0
[  137.839992][ T6457]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  137.840023][ T6457]  ? fput+0x70/0xf0
[  137.840059][ T6457]  ? rcu_is_watching+0x12/0xc0
[  137.840097][ T6457]  do_syscall_64+0xcd/0x230
[  137.840145][ T6457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.840176][ T6457] RIP: 0033:0x7fc96f78e969
[  137.840199][ T6457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.840236][ T6457] RSP: 002b:00007fc970525038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  137.840264][ T6457] RAX: ffffffffffffffda RBX: 00007fc96f9b5fa0 RCX: 00007fc96f78e969
[  137.840282][ T6457] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000005
[  137.840298][ T6457] RBP: 00007fc970525090 R08: 0000000000000000 R09: 0000000000000000
[  137.840315][ T6457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  137.840331][ T6457] R13: 0000000000000000 R14: 00007fc96f9b5fa0 R15: 00007ffcd19b5fe8
[  137.840370][ T6457]  </TASK>
[  137.840857][ T6457] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  138.053394][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  138.090368][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  138.345749][ T6445] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input35
[  138.505094][ T6455] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  141.345507][ T6503] nbd0: detected capacity change from 0 to 68719476736
[  141.357619][ T6115] block nbd0: Send control failed (result -22)
[  141.364165][ T6115] block nbd0: Request send failed, requeueing
[  141.383431][ T6492] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  141.400096][ T5833] block nbd0: Receive control failed (result -32)
[  141.401521][   T11] block nbd0: Dead connection, failed to find a fallback
[  141.414944][   T11] block nbd0: shutting down sockets
[  141.420943][   T11] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  141.430931][   T11] Buffer I/O error on dev nbd0, logical block 0, async page read
[  141.440547][ T6115] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  141.450158][ T6115] Buffer I/O error on dev nbd0, logical block 0, async page read
[  141.458631][ T6115] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  141.468024][ T6115] Buffer I/O error on dev nbd0, logical block 0, async page read
[  141.480688][ T6115] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  141.525597][ T6115] Buffer I/O error on dev nbd0, logical block 0, async page read
[  141.533720][ T6115] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  141.562835][ T6115] Buffer I/O error on dev nbd0, logical block 0, async page read
[  141.571549][ T6115] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  141.580824][ T6115] Buffer I/O error on dev nbd0, logical block 0, async page read
[  141.626260][ T6115] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  141.660542][ T6115] Buffer I/O error on dev nbd0, logical block 0, async page read
[  141.714420][ T6115] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  141.769541][ T6115] Buffer I/O error on dev nbd0, logical block 0, async page read
[  141.810714][ T6115] ldm_validate_partition_table(): Disk read failed.
[  141.839555][ T6115] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  141.871619][ T6115] Buffer I/O error on dev nbd0, logical block 0, async page read
[  141.889918][ T6115] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  141.905490][ T6115] Buffer I/O error on dev nbd0, logical block 0, async page read
[  141.924088][ T6115] Dev nbd0: unable to read RDB block 0
[  141.930423][ T6115]  nbd0: unable to read partition table
[  141.953193][ T6115] ldm_validate_partition_table(): Disk read failed.
[  141.966179][ T6115] Dev nbd0: unable to read RDB block 0
[  141.976410][ T6115]  nbd0: unable to read partition table
[  142.500579][ T6523] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input36
[  143.000135][ T6524] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  144.375761][ T6553] nbd1: detected capacity change from 0 to 68719476736
[  144.388240][ T6115] block nbd1: Send control failed (result -22)
[  144.407068][ T6115] block nbd1: Request send failed, requeueing
[  144.423925][ T5833] block nbd1: Receive control failed (result -32)
[  144.433299][   T25] block nbd1: Dead connection, failed to find a fallback
[  144.441069][   T25] block nbd1: shutting down sockets
[  144.458672][ T6115] ldm_validate_partition_table(): Disk read failed.
[  144.473983][ T6115] Dev nbd1: unable to read RDB block 0
[  144.501447][ T6115]  nbd1: unable to read partition table
[  144.521879][ T6115] ldm_validate_partition_table(): Disk read failed.
[  144.530471][ T6115] Dev nbd1: unable to read RDB block 0
[  144.537017][ T6115]  nbd1: unable to read partition table
[  144.821326][ T6564] kAFS: Invalid Command on /proc/fs/afs/cells file
[  144.919640][ T6568] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input38
[  144.980225][ T6570] FAULT_INJECTION: forcing a failure.
[  144.980225][ T6570] name failslab, interval 1, probability 0, space 0, times 0
[  144.998497][ T6570] CPU: 0 UID: 0 PID: 6570 Comm: syz.0.141 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  144.998549][ T6570] Tainted: [U]=USER
[  144.998559][ T6570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  144.998578][ T6570] Call Trace:
[  144.998588][ T6570]  <TASK>
[  144.998600][ T6570]  dump_stack_lvl+0x16c/0x1f0
[  144.998653][ T6570]  should_fail_ex+0x512/0x640
[  144.998699][ T6570]  ? fs_reclaim_acquire+0xae/0x150
[  144.998752][ T6570]  should_failslab+0xc2/0x120
[  144.998793][ T6570]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  144.998831][ T6570]  ? security_inode_alloc+0x3b/0x2b0
[  144.998874][ T6570]  security_inode_alloc+0x3b/0x2b0
[  144.998912][ T6570]  inode_init_always_gfp+0xce4/0x1030
[  144.998979][ T6570]  alloc_inode+0x86/0x240
[  144.999020][ T6570]  new_inode+0x22/0x1c0
[  144.999064][ T6570]  __rpc_create_common+0x57/0x2f0
[  144.999117][ T6570]  rpc_populate.constprop.0+0x153/0x5d0
[  144.999177][ T6570]  rpc_fill_super+0x2bc/0x840
[  144.999222][ T6570]  ? sget_fc+0x808/0xc20
[  144.999273][ T6570]  ? __pfx_set_anon_super_fc+0x10/0x10
[  144.999322][ T6570]  ? __pfx_rpc_fill_super+0x10/0x10
[  144.999368][ T6570]  get_tree_keyed+0x10b/0x1d0
[  144.999422][ T6570]  vfs_get_tree+0x8b/0x340
[  144.999467][ T6570]  vfs_cmd_create+0xd7/0x2a0
[  144.999505][ T6570]  __do_sys_fsconfig+0x7b8/0xbe0
[  144.999545][ T6570]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  144.999581][ T6570]  ? xfd_validate_state+0x5d/0x180
[  144.999635][ T6570]  ? rcu_is_watching+0x12/0xc0
[  144.999678][ T6570]  do_syscall_64+0xcd/0x230
[  144.999729][ T6570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.999760][ T6570] RIP: 0033:0x7f3c5318e969
[  144.999786][ T6570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.999817][ T6570] RSP: 002b:00007f3c53f4c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  144.999848][ T6570] RAX: ffffffffffffffda RBX: 00007f3c533b5fa0 RCX: 00007f3c5318e969
[  144.999868][ T6570] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008
[  144.999887][ T6570] RBP: 00007f3c53210ab1 R08: 0000000000000000 R09: 0000000000000000
[  144.999907][ T6570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  144.999925][ T6570] R13: 0000000000000000 R14: 00007f3c533b5fa0 R15: 00007ffe50f7f138
[  144.999976][ T6570]  </TASK>
[  145.000020][ T6570] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry portmap
[  145.252395][ T6570] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  145.568251][ T6571] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input39
[  145.794056][ T6583] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input40
[  146.153836][ T6583] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  147.412361][ T6614] netlink: 342 bytes leftover after parsing attributes in process `syz.2.150'.
[  147.429656][ T6615] FAULT_INJECTION: forcing a failure.
[  147.429656][ T6615] name failslab, interval 1, probability 0, space 0, times 0
[  147.459009][ T6615] CPU: 1 UID: 0 PID: 6615 Comm: syz.3.151 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  147.459061][ T6615] Tainted: [U]=USER
[  147.459070][ T6615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  147.459087][ T6615] Call Trace:
[  147.459096][ T6615]  <TASK>
[  147.459108][ T6615]  dump_stack_lvl+0x16c/0x1f0
[  147.459156][ T6615]  should_fail_ex+0x512/0x640
[  147.459199][ T6615]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  147.459232][ T6615]  should_failslab+0xc2/0x120
[  147.459270][ T6615]  __kmalloc_cache_noprof+0x6a/0x3e0
[  147.459299][ T6615]  ? resv_map_alloc+0x7e/0x400
[  147.459342][ T6615]  resv_map_alloc+0x7e/0x400
[  147.459381][ T6615]  hugetlb_reserve_pages+0x799/0xd90
[  147.459445][ T6615]  ? __pfx_hugetlb_reserve_pages+0x10/0x10
[  147.459491][ T6615]  ? atime_needs_update+0x8b/0x710
[  147.459540][ T6615]  hugetlbfs_file_mmap+0x4a1/0x730
[  147.459580][ T6615]  __mmap_region+0x1485/0x27c0
[  147.459618][ T6615]  ? __pfx___mmap_region+0x10/0x10
[  147.459650][ T6615]  ? kernel_text_address+0x8d/0x100
[  147.459727][ T6615]  ? stack_depot_save_flags+0x28/0xa50
[  147.459821][ T6615]  ? trace_cap_capable+0x18d/0x200
[  147.459855][ T6615]  ? cap_capable+0xb3/0x250
[  147.459891][ T6615]  mmap_region+0x1ab/0x3f0
[  147.459935][ T6615]  do_mmap+0xd8e/0x11b0
[  147.459988][ T6615]  ? __pfx_do_mmap+0x10/0x10
[  147.460032][ T6615]  ? __pfx_down_write_killable+0x10/0x10
[  147.460089][ T6615]  vm_mmap_pgoff+0x281/0x450
[  147.460143][ T6615]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  147.460182][ T6615]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  147.460224][ T6615]  ? hugetlbfs_get_inode+0x31f/0x730
[  147.460282][ T6615]  ksys_mmap_pgoff+0x1c8/0x5c0
[  147.460327][ T6615]  ? rcu_is_watching+0x12/0xc0
[  147.460360][ T6615]  __x64_sys_mmap+0x125/0x190
[  147.460396][ T6615]  do_syscall_64+0xcd/0x230
[  147.460460][ T6615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.460492][ T6615] RIP: 0033:0x7f316298e969
[  147.460516][ T6615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.460546][ T6615] RSP: 002b:00007f31638de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  147.460574][ T6615] RAX: ffffffffffffffda RBX: 00007f3162bb5fa0 RCX: 00007f316298e969
[  147.460593][ T6615] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000
[  147.460609][ T6615] RBP: 00007f31638de090 R08: 000000000000000d R09: 0000300000000000
[  147.460627][ T6615] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000002
[  147.460643][ T6615] R13: 0000000000000000 R14: 00007f3162bb5fa0 R15: 00007ffe6c2cdff8
[  147.460683][ T6615]  </TASK>
[  147.892766][ T6627] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input41
[  148.955877][ T6646] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input42
[  149.278821][ T6650] FAULT_INJECTION: forcing a failure.
[  149.278821][ T6650] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.292263][ T6650] CPU: 1 UID: 0 PID: 6650 Comm: syz.3.159 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  149.292311][ T6650] Tainted: [U]=USER
[  149.292320][ T6650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  149.292337][ T6650] Call Trace:
[  149.292347][ T6650]  <TASK>
[  149.292358][ T6650]  dump_stack_lvl+0x16c/0x1f0
[  149.292408][ T6650]  should_fail_ex+0x512/0x640
[  149.292458][ T6650]  _copy_from_user+0x2e/0xd0
[  149.292507][ T6650]  generic_map_update_batch+0x380/0x610
[  149.292563][ T6650]  ? __pfx_generic_map_update_batch+0x10/0x10
[  149.292614][ T6650]  ? __pfx_generic_map_update_batch+0x10/0x10
[  149.292661][ T6650]  bpf_map_do_batch+0x5a8/0x670
[  149.292710][ T6650]  __sys_bpf+0x15f3/0x4d80
[  149.292760][ T6650]  ? __pfx___sys_bpf+0x10/0x10
[  149.292806][ T6650]  ? ksys_write+0x190/0x240
[  149.292842][ T6650]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  149.292913][ T6650]  ? fput+0x70/0xf0
[  149.292950][ T6650]  ? ksys_write+0x1b9/0x240
[  149.292978][ T6650]  ? __pfx_ksys_write+0x10/0x10
[  149.293005][ T6650]  ? rcu_is_watching+0x12/0xc0
[  149.293041][ T6650]  __x64_sys_bpf+0x78/0xc0
[  149.293086][ T6650]  ? lockdep_hardirqs_on+0x7c/0x110
[  149.293128][ T6650]  do_syscall_64+0xcd/0x230
[  149.293176][ T6650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.293207][ T6650] RIP: 0033:0x7f316298e969
[  149.293231][ T6650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.293267][ T6650] RSP: 002b:00007f31638de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  149.293295][ T6650] RAX: ffffffffffffffda RBX: 00007f3162bb5fa0 RCX: 00007f316298e969
[  149.293315][ T6650] RDX: 0000000000000081 RSI: 0000200000000380 RDI: 000000000000001a
[  149.293334][ T6650] RBP: 00007f31638de090 R08: 0000000000000000 R09: 0000000000000000
[  149.293353][ T6650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  149.293372][ T6650] R13: 0000000000000000 R14: 00007f3162bb5fa0 R15: 00007ffe6c2cdff8
[  149.293411][ T6650]  </TASK>
[  149.835826][ T6647] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  149.879438][ T6659] netlink: 21 bytes leftover after parsing attributes in process `syz.1.161'.
[  150.333166][ T6673] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input43
[  152.823543][ T6737] FAULT_INJECTION: forcing a failure.
[  152.823543][ T6737] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.844442][ T6737] CPU: 1 UID: 0 PID: 6737 Comm: syz.0.178 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  152.844492][ T6737] Tainted: [U]=USER
[  152.844502][ T6737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  152.844519][ T6737] Call Trace:
[  152.844529][ T6737]  <TASK>
[  152.844540][ T6737]  dump_stack_lvl+0x16c/0x1f0
[  152.844589][ T6737]  should_fail_ex+0x512/0x640
[  152.844638][ T6737]  _copy_from_user+0x2e/0xd0
[  152.844685][ T6737]  generic_map_update_batch+0x3e9/0x610
[  152.844743][ T6737]  ? __pfx_generic_map_update_batch+0x10/0x10
[  152.844794][ T6737]  ? __pfx_generic_map_update_batch+0x10/0x10
[  152.844838][ T6737]  bpf_map_do_batch+0x5a8/0x670
[  152.844877][ T6737]  __sys_bpf+0x15f3/0x4d80
[  152.844938][ T6737]  ? __pfx___sys_bpf+0x10/0x10
[  152.844979][ T6737]  ? ksys_write+0x190/0x240
[  152.845012][ T6737]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  152.845077][ T6737]  ? fput+0x70/0xf0
[  152.845114][ T6737]  ? ksys_write+0x1b9/0x240
[  152.845141][ T6737]  ? __pfx_ksys_write+0x10/0x10
[  152.845176][ T6737]  ? rcu_is_watching+0x12/0xc0
[  152.845206][ T6737]  __x64_sys_bpf+0x78/0xc0
[  152.845243][ T6737]  ? lockdep_hardirqs_on+0x7c/0x110
[  152.845285][ T6737]  do_syscall_64+0xcd/0x230
[  152.845327][ T6737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.845353][ T6737] RIP: 0033:0x7f3c5318e969
[  152.845374][ T6737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.845399][ T6737] RSP: 002b:00007f3c53f4c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  152.845422][ T6737] RAX: ffffffffffffffda RBX: 00007f3c533b5fa0 RCX: 00007f3c5318e969
[  152.845438][ T6737] RDX: 0000000000000081 RSI: 0000200000000380 RDI: 000000000000001a
[  152.845453][ T6737] RBP: 00007f3c53f4c090 R08: 0000000000000000 R09: 0000000000000000
[  152.845468][ T6737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  152.845482][ T6737] R13: 0000000000000000 R14: 00007f3c533b5fa0 R15: 00007ffe50f7f138
[  152.845514][ T6737]  </TASK>
[  153.353163][ T6742] capability: warning: `syz.0.179' uses 32-bit capabilities (legacy support in use)
[  153.641855][ T6750] FAULT_INJECTION: forcing a failure.
[  153.641855][ T6750] name failslab, interval 1, probability 0, space 0, times 0
[  153.659791][ T6750] CPU: 1 UID: 0 PID: 6750 Comm: syz.1.181 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  153.659847][ T6750] Tainted: [U]=USER
[  153.659859][ T6750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.659877][ T6750] Call Trace:
[  153.659888][ T6750]  <TASK>
[  153.659899][ T6750]  dump_stack_lvl+0x16c/0x1f0
[  153.659951][ T6750]  should_fail_ex+0x512/0x640
[  153.659995][ T6750]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  153.660038][ T6750]  should_failslab+0xc2/0x120
[  153.660077][ T6750]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  153.660116][ T6750]  ? alloc_inode+0x61/0x240
[  153.660155][ T6750]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  153.660214][ T6750]  ? __pfx_rpc_alloc_inode+0x10/0x10
[  153.660253][ T6750]  alloc_inode+0x61/0x240
[  153.660292][ T6750]  new_inode+0x22/0x1c0
[  153.660335][ T6750]  __rpc_create_common+0x57/0x2f0
[  153.660387][ T6750]  rpc_populate.constprop.0+0x153/0x5d0
[  153.660445][ T6750]  rpc_fill_super+0x2bc/0x840
[  153.660496][ T6750]  ? sget_fc+0x808/0xc20
[  153.660547][ T6750]  ? __pfx_set_anon_super_fc+0x10/0x10
[  153.660596][ T6750]  ? __pfx_rpc_fill_super+0x10/0x10
[  153.660642][ T6750]  get_tree_keyed+0x10b/0x1d0
[  153.660695][ T6750]  vfs_get_tree+0x8b/0x340
[  153.660740][ T6750]  vfs_cmd_create+0xd7/0x2a0
[  153.660778][ T6750]  __do_sys_fsconfig+0x7b8/0xbe0
[  153.660819][ T6750]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  153.660855][ T6750]  ? xfd_validate_state+0x5d/0x180
[  153.660921][ T6750]  ? rcu_is_watching+0x12/0xc0
[  153.660962][ T6750]  do_syscall_64+0xcd/0x230
[  153.661011][ T6750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.661041][ T6750] RIP: 0033:0x7f962ff8e969
[  153.661065][ T6750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.661094][ T6750] RSP: 002b:00007f9630dbb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  153.661121][ T6750] RAX: ffffffffffffffda RBX: 00007f96301b5fa0 RCX: 00007f962ff8e969
[  153.661141][ T6750] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008
[  153.661157][ T6750] RBP: 00007f9630010ab1 R08: 0000000000000000 R09: 0000000000000000
[  153.661175][ T6750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  153.661191][ T6750] R13: 0000000000000000 R14: 00007f96301b5fa0 R15: 00007ffd14cb0dc8
[  153.661241][ T6750]  </TASK>
[  153.661254][ T6750] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry nfs
[  153.943886][ T6750] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  154.609787][ T6771] block2mtd: illegal erase size
[  155.126061][ T6780] FAULT_INJECTION: forcing a failure.
[  155.126061][ T6780] name failslab, interval 1, probability 0, space 0, times 0
[  155.155726][ T6780] CPU: 0 UID: 0 PID: 6780 Comm: syz.1.188 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  155.155772][ T6780] Tainted: [U]=USER
[  155.155781][ T6780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.155797][ T6780] Call Trace:
[  155.155806][ T6780]  <TASK>
[  155.155817][ T6780]  dump_stack_lvl+0x16c/0x1f0
[  155.155871][ T6780]  should_fail_ex+0x512/0x640
[  155.155913][ T6780]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  155.155950][ T6780]  should_failslab+0xc2/0x120
[  155.155984][ T6780]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  155.156015][ T6780]  ? vma_merge_new_range+0x3f8/0xc10
[  155.156046][ T6780]  ? vm_area_alloc+0x1f/0x160
[  155.156086][ T6780]  vm_area_alloc+0x1f/0x160
[  155.156118][ T6780]  __mmap_region+0xfd0/0x27c0
[  155.156153][ T6780]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  155.156191][ T6780]  ? __pfx___mmap_region+0x10/0x10
[  155.156223][ T6780]  ? kernel_text_address+0x8d/0x100
[  155.156299][ T6780]  ? stack_depot_save_flags+0x28/0xa50
[  155.156386][ T6780]  ? trace_cap_capable+0x18d/0x200
[  155.156416][ T6780]  ? cap_capable+0xb3/0x250
[  155.156449][ T6780]  mmap_region+0x1ab/0x3f0
[  155.156487][ T6780]  do_mmap+0xd8e/0x11b0
[  155.156538][ T6780]  ? __pfx_do_mmap+0x10/0x10
[  155.156582][ T6780]  ? __pfx_down_write_killable+0x10/0x10
[  155.156636][ T6780]  vm_mmap_pgoff+0x281/0x450
[  155.156708][ T6780]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  155.156749][ T6780]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  155.156794][ T6780]  ? hugetlbfs_get_inode+0x31f/0x730
[  155.156854][ T6780]  ksys_mmap_pgoff+0x1c8/0x5c0
[  155.156911][ T6780]  ? rcu_is_watching+0x12/0xc0
[  155.156943][ T6780]  __x64_sys_mmap+0x125/0x190
[  155.156975][ T6780]  do_syscall_64+0xcd/0x230
[  155.157021][ T6780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.157050][ T6780] RIP: 0033:0x7f962ff8e969
[  155.157072][ T6780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.157101][ T6780] RSP: 002b:00007f9630dbb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  155.157127][ T6780] RAX: ffffffffffffffda RBX: 00007f96301b5fa0 RCX: 00007f962ff8e969
[  155.157145][ T6780] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000
[  155.157163][ T6780] RBP: 00007f9630010ab1 R08: 000000000000000d R09: 0000300000000000
[  155.157180][ T6780] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[  155.157197][ T6780] R13: 0000000000000000 R14: 00007f96301b5fa0 R15: 00007ffd14cb0dc8
[  155.157233][ T6780]  </TASK>
[  155.414208][    C0] vkms_vblank_simulate: vblank timer overrun
[  156.019560][ T6788] FAULT_INJECTION: forcing a failure.
[  156.019560][ T6788] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  156.054477][ T6788] CPU: 0 UID: 0 PID: 6788 Comm: syz.3.191 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  156.054528][ T6788] Tainted: [U]=USER
[  156.054537][ T6788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.054553][ T6788] Call Trace:
[  156.054563][ T6788]  <TASK>
[  156.054575][ T6788]  dump_stack_lvl+0x16c/0x1f0
[  156.054623][ T6788]  should_fail_ex+0x512/0x640
[  156.054673][ T6788]  _copy_from_user+0x2e/0xd0
[  156.054734][ T6788]  generic_map_update_batch+0x380/0x610
[  156.054792][ T6788]  ? __pfx_generic_map_update_batch+0x10/0x10
[  156.054843][ T6788]  ? __pfx_generic_map_update_batch+0x10/0x10
[  156.054889][ T6788]  bpf_map_do_batch+0x5a8/0x670
[  156.054930][ T6788]  __sys_bpf+0x15f3/0x4d80
[  156.054979][ T6788]  ? __pfx___sys_bpf+0x10/0x10
[  156.055024][ T6788]  ? ksys_write+0x190/0x240
[  156.055060][ T6788]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  156.055130][ T6788]  ? fput+0x70/0xf0
[  156.055165][ T6788]  ? ksys_write+0x1b9/0x240
[  156.055192][ T6788]  ? __pfx_ksys_write+0x10/0x10
[  156.055219][ T6788]  ? rcu_is_watching+0x12/0xc0
[  156.055254][ T6788]  __x64_sys_bpf+0x78/0xc0
[  156.055298][ T6788]  ? lockdep_hardirqs_on+0x7c/0x110
[  156.055340][ T6788]  do_syscall_64+0xcd/0x230
[  156.055388][ T6788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.055422][ T6788] RIP: 0033:0x7f316298e969
[  156.055447][ T6788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.055476][ T6788] RSP: 002b:00007f31638de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  156.055505][ T6788] RAX: ffffffffffffffda RBX: 00007f3162bb5fa0 RCX: 00007f316298e969
[  156.055523][ T6788] RDX: 0000000000000081 RSI: 0000200000000380 RDI: 000000000000001a
[  156.055542][ T6788] RBP: 00007f31638de090 R08: 0000000000000000 R09: 0000000000000000
[  156.055560][ T6788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  156.055578][ T6788] R13: 0000000000000000 R14: 00007f3162bb5fa0 R15: 00007ffe6c2cdff8
[  156.055617][ T6788]  </TASK>
[  156.647596][ T6797] netlink: 342 bytes leftover after parsing attributes in process `syz.0.196'.
[  156.681273][ T6801] FAULT_INJECTION: forcing a failure.
[  156.681273][ T6801] name failslab, interval 1, probability 0, space 0, times 0
[  156.745960][ T6801] CPU: 0 UID: 0 PID: 6801 Comm: syz.1.195 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  156.746009][ T6801] Tainted: [U]=USER
[  156.746019][ T6801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.746037][ T6801] Call Trace:
[  156.746047][ T6801]  <TASK>
[  156.746059][ T6801]  dump_stack_lvl+0x16c/0x1f0
[  156.746109][ T6801]  should_fail_ex+0x512/0x640
[  156.746153][ T6801]  ? fs_reclaim_acquire+0xae/0x150
[  156.746204][ T6801]  should_failslab+0xc2/0x120
[  156.746242][ T6801]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  156.746276][ T6801]  ? security_inode_alloc+0x3b/0x2b0
[  156.746318][ T6801]  security_inode_alloc+0x3b/0x2b0
[  156.746355][ T6801]  inode_init_always_gfp+0xce4/0x1030
[  156.746411][ T6801]  alloc_inode+0x86/0x240
[  156.746450][ T6801]  new_inode+0x22/0x1c0
[  156.746492][ T6801]  __rpc_create_common+0x57/0x2f0
[  156.746544][ T6801]  rpc_populate.constprop.0+0x153/0x5d0
[  156.746601][ T6801]  rpc_fill_super+0x2bc/0x840
[  156.746645][ T6801]  ? sget_fc+0x808/0xc20
[  156.746703][ T6801]  ? __pfx_set_anon_super_fc+0x10/0x10
[  156.746749][ T6801]  ? __pfx_rpc_fill_super+0x10/0x10
[  156.746792][ T6801]  get_tree_keyed+0x10b/0x1d0
[  156.746845][ T6801]  vfs_get_tree+0x8b/0x340
[  156.746889][ T6801]  vfs_cmd_create+0xd7/0x2a0
[  156.746927][ T6801]  __do_sys_fsconfig+0x7b8/0xbe0
[  156.746966][ T6801]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  156.747003][ T6801]  ? fput+0x70/0xf0
[  156.747042][ T6801]  ? rcu_is_watching+0x12/0xc0
[  156.747083][ T6801]  do_syscall_64+0xcd/0x230
[  156.747133][ T6801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.747163][ T6801] RIP: 0033:0x7f962ff8e969
[  156.747186][ T6801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.747216][ T6801] RSP: 002b:00007f9630dbb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  156.747244][ T6801] RAX: ffffffffffffffda RBX: 00007f96301b5fa0 RCX: 00007f962ff8e969
[  156.747264][ T6801] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000005
[  156.747281][ T6801] RBP: 00007f9630dbb090 R08: 0000000000000000 R09: 0000000000000000
[  156.747300][ T6801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  156.747318][ T6801] R13: 0000000000000000 R14: 00007f96301b5fa0 R15: 00007ffd14cb0dc8
[  156.747360][ T6801]  </TASK>
[  156.752165][ T6801] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry nfsd
[  157.006616][ T6804] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44
[  157.006720][ T6801] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  157.887827][ T6806] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  159.020383][ T6840] netlink: 342 bytes leftover after parsing attributes in process `syz.3.206'.
[  159.128119][ T2150] Process accounting resumed
[  160.270935][ T6881] syz.1.214 uses obsolete (PF_INET,SOCK_PACKET)
[  161.098358][ T6902] netlink: 342 bytes leftover after parsing attributes in process `syz.1.218'.
[  161.864961][ T6912] FAULT_INJECTION: forcing a failure.
[  161.864961][ T6912] name failslab, interval 1, probability 0, space 0, times 0
[  161.888710][ T6912] CPU: 0 UID: 0 PID: 6912 Comm: syz.1.221 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  161.888751][ T6912] Tainted: [U]=USER
[  161.888758][ T6912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  161.888771][ T6912] Call Trace:
[  161.888783][ T6912]  <TASK>
[  161.888792][ T6912]  dump_stack_lvl+0x16c/0x1f0
[  161.888830][ T6912]  should_fail_ex+0x512/0x640
[  161.888863][ T6912]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  161.888893][ T6912]  should_failslab+0xc2/0x120
[  161.888921][ T6912]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  161.888948][ T6912]  ? __d_alloc+0x31/0xaa0
[  161.888976][ T6912]  __d_alloc+0x31/0xaa0
[  161.889003][ T6912]  d_alloc+0x4a/0x1e0
[  161.889028][ T6912]  __rpc_lookup_create_exclusive+0x119/0x140
[  161.889059][ T6912]  ? __pfx___rpc_lookup_create_exclusive+0x10/0x10
[  161.889091][ T6912]  ? d_lookup+0xe7/0x190
[  161.889124][ T6912]  rpc_mkpipe_dentry+0xf1/0x400
[  161.889159][ T6912]  rpc_pipefs_event+0x18b/0x270
[  161.889187][ T6912]  notifier_call_chain+0xb9/0x410
[  161.889213][ T6912]  ? __pfx_rpc_pipefs_event+0x10/0x10
[  161.889245][ T6912]  blocking_notifier_call_chain+0x69/0xa0
[  161.889279][ T6912]  rpc_fill_super+0x3e4/0x840
[  161.889312][ T6912]  ? sget_fc+0x808/0xc20
[  161.889352][ T6912]  ? __pfx_rpc_fill_super+0x10/0x10
[  161.889384][ T6912]  get_tree_keyed+0x10b/0x1d0
[  161.889423][ T6912]  vfs_get_tree+0x8b/0x340
[  161.889455][ T6912]  vfs_cmd_create+0xd7/0x2a0
[  161.889482][ T6912]  __do_sys_fsconfig+0x7b8/0xbe0
[  161.889516][ T6912]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  161.889543][ T6912]  ? xfd_validate_state+0x5d/0x180
[  161.889582][ T6912]  ? rcu_is_watching+0x12/0xc0
[  161.889612][ T6912]  do_syscall_64+0xcd/0x230
[  161.889649][ T6912]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.889671][ T6912] RIP: 0033:0x7f962ff8e969
[  161.889689][ T6912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.889711][ T6912] RSP: 002b:00007f9630dbb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  161.889731][ T6912] RAX: ffffffffffffffda RBX: 00007f96301b5fa0 RCX: 00007f962ff8e969
[  161.889746][ T6912] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  161.889759][ T6912] RBP: 00007f9630010ab1 R08: 0000000000000000 R09: 0000000000000000
[  161.889773][ T6912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  161.889786][ T6912] R13: 0000000000000000 R14: 00007f96301b5fa0 R15: 00007ffd14cb0dc8
[  161.889815][ T6912]  </TASK>
[  162.217090][ T6914] FAULT_INJECTION: forcing a failure.
[  162.217090][ T6914] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.231749][ T6914] CPU: 0 UID: 0 PID: 6914 Comm: syz.3.222 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  162.231795][ T6914] Tainted: [U]=USER
[  162.231804][ T6914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  162.231820][ T6914] Call Trace:
[  162.231830][ T6914]  <TASK>
[  162.231840][ T6914]  dump_stack_lvl+0x16c/0x1f0
[  162.231888][ T6914]  should_fail_ex+0x512/0x640
[  162.231933][ T6914]  _copy_to_user+0x32/0xd0
[  162.231979][ T6914]  simple_read_from_buffer+0xcb/0x170
[  162.232024][ T6914]  proc_fail_nth_read+0x197/0x270
[  162.232065][ T6914]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  162.232108][ T6914]  ? rw_verify_area+0xcf/0x680
[  162.232150][ T6914]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  162.232190][ T6914]  vfs_read+0x1de/0xc70
[  162.232220][ T6914]  ? __pfx___mutex_lock+0x10/0x10
[  162.232262][ T6914]  ? __pfx_vfs_read+0x10/0x10
[  162.232299][ T6914]  ? __fget_files+0x20e/0x3c0
[  162.232353][ T6914]  ksys_read+0x12a/0x240
[  162.232378][ T6914]  ? __pfx_ksys_read+0x10/0x10
[  162.232401][ T6914]  ? rcu_is_watching+0x12/0xc0
[  162.232446][ T6914]  do_syscall_64+0xcd/0x230
[  162.232490][ T6914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.232519][ T6914] RIP: 0033:0x7f316298d37c
[  162.232541][ T6914] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  162.232569][ T6914] RSP: 002b:00007f31638de030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  162.232594][ T6914] RAX: ffffffffffffffda RBX: 00007f3162bb5fa0 RCX: 00007f316298d37c
[  162.232613][ T6914] RDX: 000000000000000f RSI: 00007f31638de0a0 RDI: 0000000000000001
[  162.232630][ T6914] RBP: 00007f31638de090 R08: 0000000000000000 R09: 0000000000000000
[  162.232646][ T6914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.232662][ T6914] R13: 0000000000000000 R14: 00007f3162bb5fa0 R15: 00007ffe6c2cdff8
[  162.232697][ T6914]  </TASK>
[  162.489728][ T6916] FAULT_INJECTION: forcing a failure.
[  162.489728][ T6916] name failslab, interval 1, probability 0, space 0, times 0
[  162.534029][ T6916] CPU: 0 UID: 0 PID: 6916 Comm: syz.2.223 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  162.534077][ T6916] Tainted: [U]=USER
[  162.534087][ T6916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  162.534105][ T6916] Call Trace:
[  162.534114][ T6916]  <TASK>
[  162.534125][ T6916]  dump_stack_lvl+0x16c/0x1f0
[  162.534181][ T6916]  should_fail_ex+0x512/0x640
[  162.534223][ T6916]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  162.534260][ T6916]  should_failslab+0xc2/0x120
[  162.534299][ T6916]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  162.534336][ T6916]  ? alloc_inode+0x61/0x240
[  162.534373][ T6916]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  162.534422][ T6916]  ? __pfx_rpc_alloc_inode+0x10/0x10
[  162.534459][ T6916]  alloc_inode+0x61/0x240
[  162.534496][ T6916]  new_inode+0x22/0x1c0
[  162.534537][ T6916]  __rpc_create_common+0x57/0x2f0
[  162.534587][ T6916]  rpc_populate.constprop.0+0x153/0x5d0
[  162.534644][ T6916]  rpc_fill_super+0x2bc/0x840
[  162.534688][ T6916]  ? sget_fc+0x808/0xc20
[  162.534737][ T6916]  ? __pfx_set_anon_super_fc+0x10/0x10
[  162.534785][ T6916]  ? __pfx_rpc_fill_super+0x10/0x10
[  162.534828][ T6916]  get_tree_keyed+0x10b/0x1d0
[  162.534879][ T6916]  vfs_get_tree+0x8b/0x340
[  162.534921][ T6916]  vfs_cmd_create+0xd7/0x2a0
[  162.534958][ T6916]  __do_sys_fsconfig+0x7b8/0xbe0
[  162.534998][ T6916]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  162.535032][ T6916]  ? fput+0x70/0xf0
[  162.535072][ T6916]  ? rcu_is_watching+0x12/0xc0
[  162.535114][ T6916]  do_syscall_64+0xcd/0x230
[  162.535164][ T6916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.535202][ T6916] RIP: 0033:0x7fc96f78e969
[  162.535226][ T6916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.535255][ T6916] RSP: 002b:00007fc970525038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  162.535283][ T6916] RAX: ffffffffffffffda RBX: 00007fc96f9b5fa0 RCX: 00007fc96f78e969
[  162.535303][ T6916] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000005
[  162.535321][ T6916] RBP: 00007fc970525090 R08: 0000000000000000 R09: 0000000000000000
[  162.535340][ T6916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.535358][ T6916] R13: 0000000000000000 R14: 00007fc96f9b5fa0 R15: 00007ffcd19b5fe8
[  162.535403][ T6916]  </TASK>
[  162.821313][ T6916] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry gssd
[  162.834884][ T6916] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  163.196429][ T6923] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  163.318557][ T6929] netlink: 342 bytes leftover after parsing attributes in process `syz.2.228'.
[  163.493864][ T6932] FAULT_INJECTION: forcing a failure.
[  163.493864][ T6932] name failslab, interval 1, probability 0, space 0, times 0
[  163.514031][ T6932] CPU: 1 UID: 0 PID: 6932 Comm: syz.0.229 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  163.514082][ T6932] Tainted: [U]=USER
[  163.514093][ T6932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.514120][ T6932] Call Trace:
[  163.514130][ T6932]  <TASK>
[  163.514141][ T6932]  dump_stack_lvl+0x16c/0x1f0
[  163.514193][ T6932]  should_fail_ex+0x512/0x640
[  163.514239][ T6932]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  163.514279][ T6932]  should_failslab+0xc2/0x120
[  163.514317][ T6932]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  163.514352][ T6932]  ? vma_merge_new_range+0x3f8/0xc10
[  163.514386][ T6932]  ? vm_area_alloc+0x1f/0x160
[  163.514428][ T6932]  vm_area_alloc+0x1f/0x160
[  163.514464][ T6932]  __mmap_region+0xfd0/0x27c0
[  163.514500][ T6932]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  163.514536][ T6932]  ? __pfx___mmap_region+0x10/0x10
[  163.514571][ T6932]  ? kernel_text_address+0x8d/0x100
[  163.514651][ T6932]  ? stack_depot_save_flags+0x28/0xa50
[  163.514745][ T6932]  ? trace_cap_capable+0x18d/0x200
[  163.514779][ T6932]  ? cap_capable+0xb3/0x250
[  163.514817][ T6932]  mmap_region+0x1ab/0x3f0
[  163.514862][ T6932]  do_mmap+0xd8e/0x11b0
[  163.514936][ T6932]  ? __pfx_do_mmap+0x10/0x10
[  163.514985][ T6932]  ? __pfx_down_write_killable+0x10/0x10
[  163.515046][ T6932]  vm_mmap_pgoff+0x281/0x450
[  163.515109][ T6932]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  163.515151][ T6932]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  163.515185][ T6932]  ? hugetlbfs_get_inode+0x31f/0x730
[  163.515223][ T6932]  ksys_mmap_pgoff+0x1c8/0x5c0
[  163.515258][ T6932]  ? rcu_is_watching+0x12/0xc0
[  163.515282][ T6932]  __x64_sys_mmap+0x125/0x190
[  163.515309][ T6932]  do_syscall_64+0xcd/0x230
[  163.515345][ T6932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.515370][ T6932] RIP: 0033:0x7f3c5318e969
[  163.515389][ T6932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.515423][ T6932] RSP: 002b:00007f3c53f4c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  163.515451][ T6932] RAX: ffffffffffffffda RBX: 00007f3c533b5fa0 RCX: 00007f3c5318e969
[  163.515471][ T6932] RDX: 00004000000000e3 RSI: 0000000000200004 RDI: 0000000000000000
[  163.515485][ T6932] RBP: 00007f3c53210ab1 R08: 000000000000000d R09: 0000300000000000
[  163.515499][ T6932] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[  163.515513][ T6932] R13: 0000000000000000 R14: 00007f3c533b5fa0 R15: 00007ffe50f7f138
[  163.515542][ T6932]  </TASK>
[  164.010626][ T6926] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  164.233024][ T6944] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45
[  165.990173][ T6997] FAULT_INJECTION: forcing a failure.
[  165.990173][ T6997] name fail_futex, interval 1, probability 0, space 0, times 0
[  166.003982][ T6997] CPU: 0 UID: 0 PID: 6997 Comm: syz.1.243 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  166.004028][ T6997] Tainted: [U]=USER
[  166.004038][ T6997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  166.004055][ T6997] Call Trace:
[  166.004065][ T6997]  <TASK>
[  166.004076][ T6997]  dump_stack_lvl+0x16c/0x1f0
[  166.004125][ T6997]  should_fail_ex+0x512/0x640
[  166.004175][ T6997]  get_futex_key+0x1c2/0x1000
[  166.004212][ T6997]  ? __pfx_get_futex_key+0x10/0x10
[  166.004257][ T6997]  futex_wake+0xe7/0x4e0
[  166.004294][ T6997]  ? rcu_is_watching+0x12/0xc0
[  166.004326][ T6997]  ? __pfx_futex_wake+0x10/0x10
[  166.004384][ T6997]  do_futex+0x1e3/0x350
[  166.004418][ T6997]  ? __pfx_do_futex+0x10/0x10
[  166.004448][ T6997]  ? __might_fault+0xe3/0x190
[  166.004494][ T6997]  mm_release+0x24e/0x300
[  166.004529][ T6997]  do_exit+0x898/0x2c30
[  166.004567][ T6997]  ? __pfx_futex_wake_mark+0x10/0x10
[  166.004614][ T6997]  ? __pfx_do_exit+0x10/0x10
[  166.004656][ T6997]  ? do_raw_spin_lock+0x12c/0x2b0
[  166.004701][ T6997]  ? find_held_lock+0x2b/0x80
[  166.004736][ T6997]  do_group_exit+0xd3/0x2a0
[  166.004785][ T6997]  get_signal+0x2673/0x26d0
[  166.004846][ T6997]  ? __pfx_get_signal+0x10/0x10
[  166.004879][ T6997]  ? do_futex+0x122/0x350
[  166.004910][ T6997]  ? __pfx_do_futex+0x10/0x10
[  166.004962][ T6997]  arch_do_signal_or_restart+0x8f/0x7a0
[  166.005004][ T6997]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  166.005069][ T6997]  ? ksys_mmap_pgoff+0x85/0x5c0
[  166.005112][ T6997]  ? rcu_is_watching+0x12/0xc0
[  166.005146][ T6997]  syscall_exit_to_user_mode+0x150/0x2a0
[  166.005191][ T6997]  do_syscall_64+0xda/0x230
[  166.005238][ T6997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.005268][ T6997] RIP: 0033:0x7f962ff8e969
[  166.005291][ T6997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.005319][ T6997] RSP: 002b:00007f9630dbb0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  166.005346][ T6997] RAX: fffffffffffffe00 RBX: 00007f96301b5fa8 RCX: 00007f962ff8e969
[  166.005364][ T6997] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f96301b5fa8
[  166.005380][ T6997] RBP: 00007f96301b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  166.005397][ T6997] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f96301b5fac
[  166.005414][ T6997] R13: 0000000000000000 R14: 00007ffd14cb0ce0 R15: 00007ffd14cb0dc8
[  166.005451][ T6997]  </TASK>
[  166.738056][ T7010] FAULT_INJECTION: forcing a failure.
[  166.738056][ T7010] name failslab, interval 1, probability 0, space 0, times 0
[  166.751024][ T7010] CPU: 1 UID: 0 PID: 7010 Comm: syz.3.248 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  166.751076][ T7010] Tainted: [U]=USER
[  166.751086][ T7010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  166.751104][ T7010] Call Trace:
[  166.751114][ T7010]  <TASK>
[  166.751126][ T7010]  dump_stack_lvl+0x16c/0x1f0
[  166.751177][ T7010]  should_fail_ex+0x512/0x640
[  166.751221][ T7010]  ? fs_reclaim_acquire+0xae/0x150
[  166.751272][ T7010]  should_failslab+0xc2/0x120
[  166.751327][ T7010]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  166.751364][ T7010]  ? security_inode_alloc+0x3b/0x2b0
[  166.751407][ T7010]  security_inode_alloc+0x3b/0x2b0
[  166.751445][ T7010]  inode_init_always_gfp+0xce4/0x1030
[  166.751504][ T7010]  alloc_inode+0x86/0x240
[  166.751544][ T7010]  new_inode+0x22/0x1c0
[  166.751587][ T7010]  __rpc_create_common+0x57/0x2f0
[  166.751639][ T7010]  rpc_populate.constprop.0+0x153/0x5d0
[  166.751698][ T7010]  rpc_fill_super+0x2bc/0x840
[  166.751743][ T7010]  ? sget_fc+0x808/0xc20
[  166.751792][ T7010]  ? __pfx_set_anon_super_fc+0x10/0x10
[  166.751841][ T7010]  ? __pfx_rpc_fill_super+0x10/0x10
[  166.751908][ T7010]  get_tree_keyed+0x10b/0x1d0
[  166.751959][ T7010]  vfs_get_tree+0x8b/0x340
[  166.752003][ T7010]  vfs_cmd_create+0xd7/0x2a0
[  166.752040][ T7010]  __do_sys_fsconfig+0x7b8/0xbe0
[  166.752078][ T7010]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  166.752114][ T7010]  ? xfd_validate_state+0x5d/0x180
[  166.752166][ T7010]  ? rcu_is_watching+0x12/0xc0
[  166.752207][ T7010]  do_syscall_64+0xcd/0x230
[  166.752256][ T7010]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.752287][ T7010] RIP: 0033:0x7f316298e969
[  166.752312][ T7010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.752341][ T7010] RSP: 002b:00007f31638de038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  166.752370][ T7010] RAX: ffffffffffffffda RBX: 00007f3162bb5fa0 RCX: 00007f316298e969
[  166.752390][ T7010] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007
[  166.752408][ T7010] RBP: 00007f3162a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  166.752428][ T7010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  166.752446][ T7010] R13: 0000000000000000 R14: 00007f3162bb5fa0 R15: 00007ffe6c2cdff8
[  166.752487][ T7010]  </TASK>
[  166.752530][ T7010] net/sunrpc/rpc_pipe.c: __rpc_create_common failed to allocate inode for dentry nfsd
[  167.033872][ T7010] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  167.129851][ T7016] netlink: 354 bytes leftover after parsing attributes in process `syz.1.249'.
[  167.502445][ T7026] netlink: 342 bytes leftover after parsing attributes in process `syz.0.252'.
[  167.667961][ T7029] FAULT_INJECTION: forcing a failure.
[  167.667961][ T7029] name fail_futex, interval 1, probability 0, space 0, times 0
[  167.708508][ T7029] CPU: 1 UID: 0 PID: 7029 Comm: syz.3.254 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  167.708562][ T7029] Tainted: [U]=USER
[  167.708572][ T7029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  167.708590][ T7029] Call Trace:
[  167.708601][ T7029]  <TASK>
[  167.708612][ T7029]  dump_stack_lvl+0x16c/0x1f0
[  167.708662][ T7029]  should_fail_ex+0x512/0x640
[  167.708715][ T7029]  get_futex_key+0x49e/0x1000
[  167.708753][ T7029]  ? __pfx_get_futex_key+0x10/0x10
[  167.708786][ T7029]  ? pick_eevdf+0x3be/0x5b0
[  167.708822][ T7029]  ? update_curr_se+0x8b/0x270
[  167.708863][ T7029]  ? update_curr+0x74/0x800
[  167.708916][ T7029]  futex_wait_setup+0x78/0x290
[  167.708966][ T7029]  __futex_wait+0x266/0x3c0
[  167.709009][ T7029]  ? __pfx___futex_wait+0x10/0x10
[  167.709058][ T7029]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  167.709108][ T7029]  ? __pfx_futex_wake_mark+0x10/0x10
[  167.709170][ T7029]  futex_wait+0xe8/0x380
[  167.709213][ T7029]  ? __pfx_futex_wait+0x10/0x10
[  167.709267][ T7029]  ? up_write+0x1b2/0x520
[  167.709320][ T7029]  do_futex+0x229/0x350
[  167.709356][ T7029]  ? __pfx_do_futex+0x10/0x10
[  167.709389][ T7029]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  167.709442][ T7029]  __x64_sys_futex+0x1e0/0x4c0
[  167.709480][ T7029]  ? fput+0x70/0xf0
[  167.709516][ T7029]  ? __pfx___x64_sys_futex+0x10/0x10
[  167.709561][ T7029]  ? ksys_mmap_pgoff+0x85/0x5c0
[  167.709607][ T7029]  ? rcu_is_watching+0x12/0xc0
[  167.709647][ T7029]  do_syscall_64+0xcd/0x230
[  167.709696][ T7029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.709727][ T7029] RIP: 0033:0x7f316298e969
[  167.709751][ T7029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.709781][ T7029] RSP: 002b:00007f31638de0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  167.709810][ T7029] RAX: ffffffffffffffda RBX: 00007f3162bb5fa8 RCX: 00007f316298e969
[  167.709831][ T7029] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3162bb5fa8
[  167.709849][ T7029] RBP: 00007f3162bb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  167.709867][ T7029] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3162bb5fac
[  167.709886][ T7029] R13: 0000000000000000 R14: 00007ffe6c2cdf10 R15: 00007ffe6c2cdff8
[  167.709925][ T7029]  </TASK>
[  168.524456][ T7032] FAULT_INJECTION: forcing a failure.
[  168.524456][ T7032] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.554373][ T7032] CPU: 1 UID: 0 PID: 7032 Comm: syz.0.255 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  168.554423][ T7032] Tainted: [U]=USER
[  168.554433][ T7032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  168.554450][ T7032] Call Trace:
[  168.554460][ T7032]  <TASK>
[  168.554472][ T7032]  dump_stack_lvl+0x16c/0x1f0
[  168.554520][ T7032]  should_fail_ex+0x512/0x640
[  168.554569][ T7032]  core_sys_select+0x4b2/0xbe0
[  168.554628][ T7032]  ? __pfx_core_sys_select+0x10/0x10
[  168.554682][ T7032]  ? proc_fail_nth_write+0x9f/0x250
[  168.554759][ T7032]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  168.554817][ T7032]  kern_select+0x15d/0x1e0
[  168.554864][ T7032]  ? __pfx_kern_select+0x10/0x10
[  168.554918][ T7032]  ? __pfx_ksys_write+0x10/0x10
[  168.554954][ T7032]  ? rcu_is_watching+0x12/0xc0
[  168.554989][ T7032]  __x64_sys_select+0xbd/0x160
[  168.555036][ T7032]  ? do_syscall_64+0x91/0x230
[  168.555081][ T7032]  ? lockdep_hardirqs_on+0x7c/0x110
[  168.555124][ T7032]  do_syscall_64+0xcd/0x230
[  168.555173][ T7032]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.555204][ T7032] RIP: 0033:0x7f3c5318e969
[  168.555228][ T7032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.555257][ T7032] RSP: 002b:00007f3c53f4c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  168.555286][ T7032] RAX: ffffffffffffffda RBX: 00007f3c533b5fa0 RCX: 00007f3c5318e969
[  168.555305][ T7032] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e
[  168.555322][ T7032] RBP: 00007f3c53f4c090 R08: 0000000000000000 R09: 0000000000000000
[  168.555340][ T7032] R10: 0000200000000340 R11: 0000000000000246 R12: 0000000000000001
[  168.555357][ T7032] R13: 0000000000000000 R14: 00007f3c533b5fa0 R15: 00007ffe50f7f138
[  168.555400][ T7032]  </TASK>
[  169.227329][ T7062] netlink: 342 bytes leftover after parsing attributes in process `syz.0.264'.
[  169.555654][ T7071] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46
[  169.963127][ T7083] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input47
[  170.264010][ T7090] can: request_module (can-proto-3) failed.
[  170.692985][ T7075] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  170.715199][ T7100] FAULT_INJECTION: forcing a failure.
[  170.715199][ T7100] name fail_futex, interval 1, probability 0, space 0, times 0
[  170.757365][ T7100] CPU: 1 UID: 0 PID: 7100 Comm: syz.1.274 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  170.757415][ T7100] Tainted: [U]=USER
[  170.757425][ T7100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  170.757441][ T7100] Call Trace:
[  170.757451][ T7100]  <TASK>
[  170.757462][ T7100]  dump_stack_lvl+0x16c/0x1f0
[  170.757511][ T7100]  should_fail_ex+0x512/0x640
[  170.757562][ T7100]  get_futex_key+0x49e/0x1000
[  170.757599][ T7100]  ? __pfx_get_futex_key+0x10/0x10
[  170.757630][ T7100]  ? pick_eevdf+0x3be/0x5b0
[  170.757665][ T7100]  ? update_curr_se+0x8b/0x270
[  170.757704][ T7100]  ? update_curr+0x74/0x800
[  170.757757][ T7100]  futex_wait_setup+0x78/0x290
[  170.757815][ T7100]  __futex_wait+0x266/0x3c0
[  170.757859][ T7100]  ? __pfx___futex_wait+0x10/0x10
[  170.757899][ T7100]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  170.757949][ T7100]  ? __pfx_futex_wake_mark+0x10/0x10
[  170.758007][ T7100]  futex_wait+0xe8/0x380
[  170.758047][ T7100]  ? __pfx_futex_wait+0x10/0x10
[  170.758100][ T7100]  ? up_write+0x1b2/0x520
[  170.758150][ T7100]  do_futex+0x229/0x350
[  170.758183][ T7100]  ? __pfx_do_futex+0x10/0x10
[  170.758215][ T7100]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  170.758264][ T7100]  __x64_sys_futex+0x1e0/0x4c0
[  170.758322][ T7100]  ? __pfx___x64_sys_futex+0x10/0x10
[  170.758369][ T7100]  ? rcu_is_watching+0x12/0xc0
[  170.758410][ T7100]  do_syscall_64+0xcd/0x230
[  170.758461][ T7100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.758494][ T7100] RIP: 0033:0x7f962ff8e969
[  170.758519][ T7100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.758550][ T7100] RSP: 002b:00007f9630dbb0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  170.758581][ T7100] RAX: ffffffffffffffda RBX: 00007f96301b5fa8 RCX: 00007f962ff8e969
[  170.758601][ T7100] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f96301b5fa8
[  170.758620][ T7100] RBP: 00007f96301b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  170.758639][ T7100] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f96301b5fac
[  170.758658][ T7100] R13: 0000000000000000 R14: 00007ffd14cb0ce0 R15: 00007ffd14cb0dc8
[  170.758699][ T7100]  </TASK>
[  171.086714][ T7102] FAULT_INJECTION: forcing a failure.
[  171.086714][ T7102] name failslab, interval 1, probability 0, space 0, times 0
[  171.159162][ T7102] CPU: 1 UID: 0 PID: 7102 Comm: syz.2.276 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  171.159213][ T7102] Tainted: [U]=USER
[  171.159224][ T7102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  171.159242][ T7102] Call Trace:
[  171.159252][ T7102]  <TASK>
[  171.159263][ T7102]  dump_stack_lvl+0x16c/0x1f0
[  171.159315][ T7102]  should_fail_ex+0x512/0x640
[  171.159361][ T7102]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  171.159398][ T7102]  should_failslab+0xc2/0x120
[  171.159437][ T7102]  __kmalloc_cache_noprof+0x6a/0x3e0
[  171.159479][ T7102]  ? resv_map_alloc+0x46/0x400
[  171.159524][ T7102]  resv_map_alloc+0x46/0x400
[  171.159565][ T7102]  hugetlbfs_get_inode+0x33f/0x730
[  171.159611][ T7102]  hugetlb_file_setup+0x15b/0x620
[  171.159654][ T7102]  ksys_mmap_pgoff+0x189/0x5c0
[  171.159702][ T7102]  ? rcu_is_watching+0x12/0xc0
[  171.159734][ T7102]  __x64_sys_mmap+0x125/0x190
[  171.159770][ T7102]  do_syscall_64+0xcd/0x230
[  171.159819][ T7102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.159850][ T7102] RIP: 0033:0x7fc96f78e969
[  171.159875][ T7102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.159905][ T7102] RSP: 002b:00007fc970525038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  171.159934][ T7102] RAX: ffffffffffffffda RBX: 00007fc96f9b5fa0 RCX: 00007fc96f78e969
[  171.159955][ T7102] RDX: 0000000000009c0f RSI: 000000000000000c RDI: 0000000000000000
[  171.159974][ T7102] RBP: 00007fc96f810ab1 R08: 0000000000010006 R09: 0000300000000000
[  171.159995][ T7102] R10: 0000000000044eb2 R11: 0000000000000246 R12: 0000000000000000
[  171.160014][ T7102] R13: 0000000000000000 R14: 00007fc96f9b5fa0 R15: 00007ffcd19b5fe8
[  171.160055][ T7102]  </TASK>
[  171.647239][ T7106] FAULT_INJECTION: forcing a failure.
[  171.647239][ T7106] name fail_futex, interval 1, probability 0, space 0, times 0
[  171.681358][ T7106] CPU: 0 UID: 0 PID: 7106 Comm: syz.3.275 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  171.681408][ T7106] Tainted: [U]=USER
[  171.681418][ T7106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  171.681435][ T7106] Call Trace:
[  171.681445][ T7106]  <TASK>
[  171.681464][ T7106]  dump_stack_lvl+0x16c/0x1f0
[  171.681513][ T7106]  should_fail_ex+0x512/0x640
[  171.681562][ T7106]  get_futex_key+0x1c2/0x1000
[  171.681596][ T7106]  ? __pfx_get_futex_key+0x10/0x10
[  171.681641][ T7106]  futex_wake+0xe7/0x4e0
[  171.681674][ T7106]  ? rcu_is_watching+0x12/0xc0
[  171.681706][ T7106]  ? __pfx_futex_wake+0x10/0x10
[  171.681761][ T7106]  do_futex+0x1e3/0x350
[  171.681793][ T7106]  ? __pfx_do_futex+0x10/0x10
[  171.681823][ T7106]  ? __might_fault+0xe3/0x190
[  171.681865][ T7106]  mm_release+0x24e/0x300
[  171.681899][ T7106]  do_exit+0x898/0x2c30
[  171.681939][ T7106]  ? __pfx_futex_wake_mark+0x10/0x10
[  171.681986][ T7106]  ? __pfx_do_exit+0x10/0x10
[  171.682028][ T7106]  ? do_raw_spin_lock+0x12c/0x2b0
[  171.682073][ T7106]  ? find_held_lock+0x2b/0x80
[  171.682108][ T7106]  do_group_exit+0xd3/0x2a0
[  171.682155][ T7106]  get_signal+0x2673/0x26d0
[  171.682206][ T7106]  ? __pfx_get_signal+0x10/0x10
[  171.682240][ T7106]  ? do_futex+0x122/0x350
[  171.682271][ T7106]  ? __pfx_do_futex+0x10/0x10
[  171.682309][ T7106]  arch_do_signal_or_restart+0x8f/0x7a0
[  171.682355][ T7106]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  171.682409][ T7106]  ? ksys_mmap_pgoff+0x85/0x5c0
[  171.682461][ T7106]  ? rcu_is_watching+0x12/0xc0
[  171.682497][ T7106]  syscall_exit_to_user_mode+0x150/0x2a0
[  171.682543][ T7106]  do_syscall_64+0xda/0x230
[  171.682590][ T7106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.682619][ T7106] RIP: 0033:0x7f316298e969
[  171.682643][ T7106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.682672][ T7106] RSP: 002b:00007f31638de0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  171.682700][ T7106] RAX: fffffffffffffe00 RBX: 00007f3162bb5fa8 RCX: 00007f316298e969
[  171.682720][ T7106] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3162bb5fa8
[  171.682736][ T7106] RBP: 00007f3162bb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  171.682752][ T7106] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3162bb5fac
[  171.682769][ T7106] R13: 0000000000000000 R14: 00007ffe6c2cdf10 R15: 00007ffe6c2cdff8
[  171.682807][ T7106]  </TASK>
[  172.029885][ T7112] netlink: 342 bytes leftover after parsing attributes in process `syz.0.277'.
[  173.464536][ T7147] netlink: 28 bytes leftover after parsing attributes in process `syz.1.288'.
[  173.893725][ T7154] netlink: 342 bytes leftover after parsing attributes in process `syz.3.290'.
[  173.963445][ T7157] FAULT_INJECTION: forcing a failure.
[  173.963445][ T7157] name fail_futex, interval 1, probability 0, space 0, times 0
[  173.980574][ T7157] CPU: 0 UID: 0 PID: 7157 Comm: syz.2.291 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  173.980619][ T7157] Tainted: [U]=USER
[  173.980629][ T7157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  173.980645][ T7157] Call Trace:
[  173.980654][ T7157]  <TASK>
[  173.980665][ T7157]  dump_stack_lvl+0x16c/0x1f0
[  173.980712][ T7157]  should_fail_ex+0x512/0x640
[  173.980761][ T7157]  get_futex_key+0xabc/0x1000
[  173.980796][ T7157]  ? __pfx_get_futex_key+0x10/0x10
[  173.980840][ T7157]  futex_wake+0xe7/0x4e0
[  173.980875][ T7157]  ? rcu_is_watching+0x12/0xc0
[  173.980906][ T7157]  ? __pfx_futex_wake+0x10/0x10
[  173.980962][ T7157]  do_futex+0x1e3/0x350
[  173.980995][ T7157]  ? __pfx_do_futex+0x10/0x10
[  173.981024][ T7157]  ? __might_fault+0xe3/0x190
[  173.981068][ T7157]  mm_release+0x24e/0x300
[  173.981102][ T7157]  do_exit+0x898/0x2c30
[  173.981140][ T7157]  ? __pfx_futex_wake_mark+0x10/0x10
[  173.981185][ T7157]  ? __pfx_do_exit+0x10/0x10
[  173.981244][ T7157]  ? do_raw_spin_lock+0x12c/0x2b0
[  173.981291][ T7157]  ? find_held_lock+0x2b/0x80
[  173.981330][ T7157]  do_group_exit+0xd3/0x2a0
[  173.981377][ T7157]  get_signal+0x2673/0x26d0
[  173.981438][ T7157]  ? __pfx_get_signal+0x10/0x10
[  173.981470][ T7157]  ? do_futex+0x122/0x350
[  173.981502][ T7157]  ? __pfx_do_futex+0x10/0x10
[  173.981545][ T7157]  arch_do_signal_or_restart+0x8f/0x7a0
[  173.981590][ T7157]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  173.981645][ T7157]  ? rcu_is_watching+0x12/0xc0
[  173.981679][ T7157]  syscall_exit_to_user_mode+0x150/0x2a0
[  173.981725][ T7157]  do_syscall_64+0xda/0x230
[  173.981772][ T7157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.981802][ T7157] RIP: 0033:0x7fc96f78e969
[  173.981824][ T7157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.981853][ T7157] RSP: 002b:00007fc9705250e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  173.981881][ T7157] RAX: fffffffffffffe00 RBX: 00007fc96f9b5fa8 RCX: 00007fc96f78e969
[  173.981900][ T7157] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fc96f9b5fa8
[  173.981918][ T7157] RBP: 00007fc96f9b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  173.981936][ T7157] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc96f9b5fac
[  173.981954][ T7157] R13: 0000000000000000 R14: 00007ffcd19b5f00 R15: 00007ffcd19b5fe8
[  173.981993][ T7157]  </TASK>
[  174.438268][ T7161] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input48
[  175.049254][ T7183] FAULT_INJECTION: forcing a failure.
[  175.049254][ T7183] name fail_futex, interval 1, probability 0, space 0, times 0
[  175.090327][ T7183] CPU: 1 UID: 0 PID: 7183 Comm: syz.0.298 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  175.090378][ T7183] Tainted: [U]=USER
[  175.090388][ T7183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  175.090405][ T7183] Call Trace:
[  175.090416][ T7183]  <TASK>
[  175.090427][ T7183]  dump_stack_lvl+0x16c/0x1f0
[  175.090484][ T7183]  should_fail_ex+0x512/0x640
[  175.090536][ T7183]  get_futex_key+0x1c2/0x1000
[  175.090572][ T7183]  ? __pfx_get_futex_key+0x10/0x10
[  175.090618][ T7183]  futex_wake+0xe7/0x4e0
[  175.090656][ T7183]  ? rcu_is_watching+0x12/0xc0
[  175.090689][ T7183]  ? __pfx_futex_wake+0x10/0x10
[  175.090746][ T7183]  do_futex+0x1e3/0x350
[  175.090780][ T7183]  ? __pfx_do_futex+0x10/0x10
[  175.090809][ T7183]  ? __might_fault+0xe3/0x190
[  175.090856][ T7183]  mm_release+0x24e/0x300
[  175.090891][ T7183]  do_exit+0x898/0x2c30
[  175.090932][ T7183]  ? __pfx_futex_wake_mark+0x10/0x10
[  175.090979][ T7183]  ? __pfx_do_exit+0x10/0x10
[  175.091023][ T7183]  ? do_raw_spin_lock+0x12c/0x2b0
[  175.091069][ T7183]  ? find_held_lock+0x2b/0x80
[  175.091109][ T7183]  do_group_exit+0xd3/0x2a0
[  175.091156][ T7183]  get_signal+0x2673/0x26d0
[  175.091218][ T7183]  ? __pfx_get_signal+0x10/0x10
[  175.091251][ T7183]  ? do_futex+0x122/0x350
[  175.091283][ T7183]  ? __pfx_do_futex+0x10/0x10
[  175.091319][ T7183]  arch_do_signal_or_restart+0x8f/0x7a0
[  175.091365][ T7183]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  175.091417][ T7183]  ? ksys_mmap_pgoff+0x85/0x5c0
[  175.091467][ T7183]  ? rcu_is_watching+0x12/0xc0
[  175.091503][ T7183]  syscall_exit_to_user_mode+0x150/0x2a0
[  175.091549][ T7183]  do_syscall_64+0xda/0x230
[  175.091596][ T7183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.091627][ T7183] RIP: 0033:0x7f3c5318e969
[  175.091650][ T7183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.091680][ T7183] RSP: 002b:00007f3c53f4c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  175.091708][ T7183] RAX: fffffffffffffe00 RBX: 00007f3c533b5fa8 RCX: 00007f3c5318e969
[  175.091728][ T7183] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3c533b5fa8
[  175.091746][ T7183] RBP: 00007f3c533b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  175.091764][ T7183] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c533b5fac
[  175.091782][ T7183] R13: 0000000000000000 R14: 00007ffe50f7f050 R15: 00007ffe50f7f138
[  175.091821][ T7183]  </TASK>
[  175.093711][ T7164] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  177.219467][ T7211] FAULT_INJECTION: forcing a failure.
[  177.219467][ T7211] name fail_futex, interval 1, probability 0, space 0, times 0
[  177.270907][ T7211] CPU: 0 UID: 0 PID: 7211 Comm: syz.0.304 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  177.270960][ T7211] Tainted: [U]=USER
[  177.270971][ T7211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  177.270997][ T7211] Call Trace:
[  177.271011][ T7211]  <TASK>
[  177.271026][ T7211]  dump_stack_lvl+0x16c/0x1f0
[  177.271096][ T7211]  should_fail_ex+0x512/0x640
[  177.271146][ T7211]  get_futex_key+0x1c2/0x1000
[  177.271182][ T7211]  ? __pfx_get_futex_key+0x10/0x10
[  177.271228][ T7211]  futex_wake+0xe7/0x4e0
[  177.271274][ T7211]  ? rcu_is_watching+0x12/0xc0
[  177.271306][ T7211]  ? __pfx_futex_wake+0x10/0x10
[  177.271364][ T7211]  do_futex+0x1e3/0x350
[  177.271398][ T7211]  ? __pfx_do_futex+0x10/0x10
[  177.271428][ T7211]  ? __might_fault+0xe3/0x190
[  177.271475][ T7211]  mm_release+0x24e/0x300
[  177.271511][ T7211]  do_exit+0x898/0x2c30
[  177.271552][ T7211]  ? __pfx_futex_wake_mark+0x10/0x10
[  177.271600][ T7211]  ? __pfx_do_exit+0x10/0x10
[  177.271641][ T7211]  ? do_raw_spin_lock+0x12c/0x2b0
[  177.271688][ T7211]  ? find_held_lock+0x2b/0x80
[  177.271725][ T7211]  do_group_exit+0xd3/0x2a0
[  177.271770][ T7211]  get_signal+0x2673/0x26d0
[  177.271822][ T7211]  ? __pfx_get_signal+0x10/0x10
[  177.271855][ T7211]  ? do_futex+0x122/0x350
[  177.271888][ T7211]  ? __pfx_do_futex+0x10/0x10
[  177.271926][ T7211]  arch_do_signal_or_restart+0x8f/0x7a0
[  177.271972][ T7211]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  177.272026][ T7211]  ? ksys_mmap_pgoff+0x85/0x5c0
[  177.272072][ T7211]  ? rcu_is_watching+0x12/0xc0
[  177.272108][ T7211]  syscall_exit_to_user_mode+0x150/0x2a0
[  177.272157][ T7211]  do_syscall_64+0xda/0x230
[  177.272205][ T7211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.272237][ T7211] RIP: 0033:0x7f3c5318e969
[  177.272269][ T7211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.272299][ T7211] RSP: 002b:00007f3c53f4c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  177.272329][ T7211] RAX: fffffffffffffe00 RBX: 00007f3c533b5fa8 RCX: 00007f3c5318e969
[  177.272349][ T7211] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3c533b5fa8
[  177.272367][ T7211] RBP: 00007f3c533b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  177.272384][ T7211] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3c533b5fac
[  177.272402][ T7211] R13: 0000000000000000 R14: 00007ffe50f7f050 R15: 00007ffe50f7f138
[  177.272441][ T7211]  </TASK>
[  178.575770][ T7220] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  180.103074][ T7277] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input49
[  199.439715][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  199.446401][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  212.854600][ T5843] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  212.867690][ T5843] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  212.878246][ T5843] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  212.888934][ T5843] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  212.919886][ T5843] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  213.572206][ T9887] chnl_net:caif_netlink_parms(): no params data found
[  213.838839][ T9887] bridge0: port 1(bridge_slave_0) entered blocking state
[  213.846850][ T9887] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.854634][ T9887] bridge_slave_0: entered allmulticast mode
[  213.864130][ T9887] bridge_slave_0: entered promiscuous mode
[  213.873353][ T9887] bridge0: port 2(bridge_slave_1) entered blocking state
[  213.880905][ T9887] bridge0: port 2(bridge_slave_1) entered disabled state
[  213.896110][ T9887] bridge_slave_1: entered allmulticast mode
[  213.904428][ T9887] bridge_slave_1: entered promiscuous mode
[  214.024371][ T9887] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  214.059379][ T9887] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  214.233032][ T9887] team0: Port device team_slave_0 added
[  214.262723][ T9887] team0: Port device team_slave_1 added
[  214.404507][ T9887] batman_adv: batadv0: Adding interface: batadv_slave_0
[  214.425475][ T9887] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  214.501098][ T9887] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  214.552461][ T9887] batman_adv: batadv0: Adding interface: batadv_slave_1
[  214.575439][ T9887] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  214.615093][ T9887] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  214.803782][ T9887] hsr_slave_0: entered promiscuous mode
[  214.838521][ T9887] hsr_slave_1: entered promiscuous mode
[  214.844962][ T9887] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  214.892368][ T9887] Cannot create hsr debugfs directory
[  215.016398][ T5843] Bluetooth: hci4: command tx timeout
[  215.629967][ T9887] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.769202][ T9887] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.944493][ T9887] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.062461][ T9887] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.468521][ T9887] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  216.492514][ T9887] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  216.521910][ T9887] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  216.564767][ T9887] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  216.788987][ T9887] 8021q: adding VLAN 0 to HW filter on device bond0
[  216.840296][ T9887] 8021q: adding VLAN 0 to HW filter on device team0
[  216.867937][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.875143][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  216.917655][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.924885][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.085776][ T5843] Bluetooth: hci4: command tx timeout
[  217.556422][ T9887] 8021q: adding VLAN 0 to HW filter on device batadv0
[  217.699599][ T9887] veth0_vlan: entered promiscuous mode
[  217.728744][ T9887] veth1_vlan: entered promiscuous mode
[  217.824872][ T9887] veth0_macvtap: entered promiscuous mode
[  217.849459][ T9887] veth1_macvtap: entered promiscuous mode
[  217.910043][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.929282][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.953590][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.968046][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.983826][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  218.004633][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  218.015146][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  218.049981][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  218.069011][ T9887] batman_adv: batadv0: Interface activated: batadv_slave_0
[  218.098792][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  218.124869][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  218.139352][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  218.150820][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  218.167968][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  218.185463][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  218.205278][ T9887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  218.223095][ T9887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  218.242998][ T9887] batman_adv: batadv0: Interface activated: batadv_slave_1
[  218.289213][ T9887] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  218.307520][ T9887] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  218.332743][ T9887] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  218.366255][ T9887] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  218.618614][  T746] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  218.641950][  T746] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  218.758448][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  218.795092][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  219.040653][T10273] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2317'.
[  219.166801][ T5843] Bluetooth: hci4: command tx timeout
[  219.854467][ T5833] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  219.867531][ T5833] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  219.878887][ T5833] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  219.897332][   T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  219.918520][   T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  220.493073][T10301] chnl_net:caif_netlink_parms(): no params data found
[  221.245775][   T55] Bluetooth: hci4: command tx timeout
[  221.486406][T10301] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.502717][T10301] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.522772][T10301] bridge_slave_0: entered allmulticast mode
[  221.530932][T10301] bridge_slave_0: entered promiscuous mode
[  221.545238][T10301] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.554705][T10301] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.568969][T10301] bridge_slave_1: entered allmulticast mode
[  221.590274][T10301] bridge_slave_1: entered promiscuous mode
[  221.681974][T10301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  221.729431][T10301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  221.889593][T10301] team0: Port device team_slave_0 added
[  221.907720][T10301] team0: Port device team_slave_1 added
[  221.968125][   T55] Bluetooth: hci1: command tx timeout
[  221.968131][ T5843] Bluetooth: hci0: command 0x0406 tx timeout
[  221.968503][   T55] Bluetooth: hci3: command 0x0406 tx timeout
[  222.114177][T10301] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.142583][T10301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.173173][T10301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.208576][T10301] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.230897][T10301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.274974][T10301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.661159][T10301] hsr_slave_0: entered promiscuous mode
[  222.670282][ T5833] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  222.695163][T10301] hsr_slave_1: entered promiscuous mode
[  222.720201][T10301] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  222.735257][T10301] Cannot create hsr debugfs directory
[  223.541365][T10301] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.750384][T10301] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.918226][T10301] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.046293][ T5833] Bluetooth: hci1: command tx timeout
[  224.079619][T10301] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.398476][T10301] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  224.422404][T10301] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  224.450575][T10301] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  224.503211][T10301] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  224.708091][T10301] 8021q: adding VLAN 0 to HW filter on device bond0
[  224.866696][T10301] 8021q: adding VLAN 0 to HW filter on device team0
[  224.979064][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.986317][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  225.007030][ T1141] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.014343][ T1141] bridge0: port 2(bridge_slave_1) entered forwarding state
[  225.673694][T10301] 8021q: adding VLAN 0 to HW filter on device batadv0
[  225.763189][T10301] veth0_vlan: entered promiscuous mode
[  225.795373][T10301] veth1_vlan: entered promiscuous mode
[  225.938785][T10301] veth0_macvtap: entered promiscuous mode
[  225.981038][T10301] veth1_macvtap: entered promiscuous mode
[  226.028397][T10301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.050020][T10301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.070657][T10301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.095740][T10301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.116765][T10301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.129781][ T5833] Bluetooth: hci1: command tx timeout
[  226.137603][T10301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.148476][T10301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.159370][T10301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.169649][T10301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.180530][T10301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.198128][T10301] batman_adv: batadv0: Interface activated: batadv_slave_0
[  226.212206][T10301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.243540][T10301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.259747][T10301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.280621][T10301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.295854][T10301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.315730][T10301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.345445][T10301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.359762][T10301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.375435][T10301] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.404657][T10301] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.424877][T10301] batman_adv: batadv0: Interface activated: batadv_slave_1
[  226.514165][T10301] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  226.540800][T10301] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  226.565479][T10301] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  226.583850][T10301] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  227.015874][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  227.023770][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  227.105106][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  227.154334][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  227.621949][T10651] nbd: must specify an index to disconnect
[  228.205672][ T5833] Bluetooth: hci1: command tx timeout
[  228.324836][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  228.335171][ T5837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  228.347415][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  228.364586][ T5837] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  228.424205][ T5837] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  229.201836][   T62] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.632748][   T62] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.272391][   T62] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.446369][ T5833] Bluetooth: hci2: command tx timeout
[  230.567011][T10702] syz.2.2890 (10702) used greatest stack depth: 19912 bytes left
[  230.700846][   T62] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.237268][T10673] chnl_net:caif_netlink_parms(): no params data found
[  231.255874][T10736] FAULT_INJECTION: forcing a failure.
[  231.255874][T10736] name failslab, interval 1, probability 0, space 0, times 0
[  231.286736][T10736] CPU: 1 UID: 0 PID: 10736 Comm: syz.1.2911 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  231.286803][T10736] Tainted: [U]=USER
[  231.286814][T10736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  231.286832][T10736] Call Trace:
[  231.286842][T10736]  <TASK>
[  231.286854][T10736]  dump_stack_lvl+0x16c/0x1f0
[  231.286907][T10736]  should_fail_ex+0x512/0x640
[  231.286952][T10736]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  231.286996][T10736]  should_failslab+0xc2/0x120
[  231.287036][T10736]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  231.287078][T10736]  ? fib_rules_register+0x30/0x500
[  231.287117][T10736]  ? __pfx_ipmr_net_init+0x10/0x10
[  231.287155][T10736]  kmemdup_noprof+0x29/0x60
[  231.287205][T10736]  fib_rules_register+0x30/0x500
[  231.287261][T10736]  ? fib_notifier_ops_register+0x123/0x270
[  231.287303][T10736]  ? __pfx_ipmr_net_init+0x10/0x10
[  231.287340][T10736]  ipmr_net_init+0xb8/0x4e0
[  231.287378][T10736]  ? __pfx_ipmr_net_init+0x10/0x10
[  231.287415][T10736]  ops_init+0x1df/0x5f0
[  231.287460][T10736]  setup_net+0x21e/0x850
[  231.287504][T10736]  ? __pfx_setup_net+0x10/0x10
[  231.287551][T10736]  ? lockdep_init_map_type+0x5c/0x280
[  231.287597][T10736]  ? __pfx_down_read_killable+0x10/0x10
[  231.287630][T10736]  ? debug_mutex_init+0x37/0x70
[  231.287665][T10736]  copy_net_ns+0x2a6/0x5f0
[  231.287713][T10736]  create_new_namespaces+0x3ea/0xad0
[  231.287764][T10736]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  231.287805][T10736]  ksys_unshare+0x45b/0xa40
[  231.287851][T10736]  ? __pfx_ksys_unshare+0x10/0x10
[  231.287891][T10736]  ? xfd_validate_state+0x5d/0x180
[  231.287943][T10736]  ? rcu_is_watching+0x12/0xc0
[  231.287982][T10736]  __x64_sys_unshare+0x31/0x40
[  231.288024][T10736]  do_syscall_64+0xcd/0x230
[  231.288074][T10736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.288108][T10736] RIP: 0033:0x7fc391f8e969
[  231.288134][T10736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.288166][T10736] RSP: 002b:00007fc392e93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  231.288207][T10736] RAX: ffffffffffffffda RBX: 00007fc3921b5fa0 RCX: 00007fc391f8e969
[  231.288228][T10736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  231.288247][T10736] RBP: 00007fc392010ab1 R08: 0000000000000000 R09: 0000000000000000
[  231.288266][T10736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  231.288284][T10736] R13: 0000000000000000 R14: 00007fc3921b5fa0 R15: 00007ffc01a0aa88
[  231.288325][T10736]  </TASK>
[  231.783684][   T62] bridge_slave_1: left allmulticast mode
[  231.790157][   T62] bridge_slave_1: left promiscuous mode
[  231.797956][   T62] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.865104][   T62] bridge_slave_0: left allmulticast mode
[  231.915477][   T62] bridge_slave_0: left promiscuous mode
[  231.921483][   T62] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.525556][ T5833] Bluetooth: hci2: command tx timeout
[  233.452559][   T62] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  233.481657][   T62] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  233.504963][   T62] bond0 (unregistering): Released all slaves
[  233.912237][T10771] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  233.925063][T10673] bridge0: port 1(bridge_slave_0) entered blocking state
[  233.942726][T10673] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.952903][T10673] bridge_slave_0: entered allmulticast mode
[  234.015531][T10673] bridge_slave_0: entered promiscuous mode
[  234.060953][T10673] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.073641][T10673] bridge0: port 2(bridge_slave_1) entered disabled state
[  234.137614][T10673] bridge_slave_1: entered allmulticast mode
[  234.155924][T10795] tty tty45: ldisc open failed (-12), clearing slot 44
[  234.163308][T10673] bridge_slave_1: entered promiscuous mode
[  234.549545][T10673] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  234.606455][ T5833] Bluetooth: hci2: command tx timeout
[  234.658657][T10673] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  234.898745][T10673] team0: Port device team_slave_0 added
[  234.949943][   T62] hsr_slave_0: left promiscuous mode
[  234.968222][   T62] hsr_slave_1: left promiscuous mode
[  234.989082][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  235.015925][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  235.044426][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  235.065310][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  235.191541][   T62] veth1_macvtap: left promiscuous mode
[  235.198705][   T62] veth0_macvtap: left promiscuous mode
[  235.204434][   T62] veth1_vlan: left promiscuous mode
[  235.216515][   T62] veth0_vlan: left promiscuous mode
[  235.969670][   T62] team0 (unregistering): Port device team_slave_1 removed
[  236.009333][   T62] team0 (unregistering): Port device team_slave_0 removed
[  236.414154][T10673] team0: Port device team_slave_1 added
[  236.599469][T10673] batman_adv: batadv0: Adding interface: batadv_slave_0
[  236.606976][T10673] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  236.633303][T10673] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  236.649403][T10673] batman_adv: batadv0: Adding interface: batadv_slave_1
[  236.659312][T10673] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  236.686846][ T5833] Bluetooth: hci2: command tx timeout
[  236.692889][T10673] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  236.826130][T10673] hsr_slave_0: entered promiscuous mode
[  236.833067][T10673] hsr_slave_1: entered promiscuous mode
[  237.556466][T10843] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2958'.
[  238.011279][T10852] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  238.310330][T10673] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  238.348802][T10673] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  238.392996][T10673] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  238.436288][T10673] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  238.880949][T10673] 8021q: adding VLAN 0 to HW filter on device bond0
[  238.926976][T10673] 8021q: adding VLAN 0 to HW filter on device team0
[  238.949788][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.956985][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  239.037907][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.045155][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  239.270624][T10673] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  240.351813][T10673] 8021q: adding VLAN 0 to HW filter on device batadv0
[  240.649648][T10673] veth0_vlan: entered promiscuous mode
[  240.711069][T10673] veth1_vlan: entered promiscuous mode
[  240.760363][T10954] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3005'.
[  240.851178][T10673] veth0_macvtap: entered promiscuous mode
[  240.944044][T10673] veth1_macvtap: entered promiscuous mode
[  241.117242][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.155792][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.188937][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.233648][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.265541][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.295592][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.321621][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.355771][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.388508][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.424083][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.447119][T10673] batman_adv: batadv0: Interface activated: batadv_slave_0
[  241.469907][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.517065][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.541485][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.578472][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.623271][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.639834][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.656757][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.687638][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.710278][T10673] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.741529][T10673] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.773573][T10673] batman_adv: batadv0: Interface activated: batadv_slave_1
[  242.138699][T10673] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  242.147789][T10673] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  242.203676][T10673] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  242.292333][T10673] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  242.476725][T10985] random: crng reseeded on system resumption
[  243.669700][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  243.683962][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  243.958171][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  243.975208][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.606397][T11075] snd_virmidi snd_virmidi.0: control 5:9:1:IAªƒ>/Æ[k<÷ÎÇmgx­Ž¬<Ú5ºœ+-Cî°ÜYÈÝ5:0 is already present
[  245.808784][ T5837] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  245.818828][ T5837] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  245.827992][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  245.837627][ T5837] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  245.857236][ T5837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  246.062672][T11099] random: crng reseeded on system resumption
[  246.132473][ T1164] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.344786][ T1164] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
						
	
						
	

[  247.684571][T11128] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3060'.
[  247.975997][ T5833] Bluetooth: hci0: command tx timeout
[  248.105906][T11093] chnl_net:caif_netlink_parms(): no params data found
[  248.244111][ T1164] bridge_slave_1: left allmulticast mode
[  248.245011][ T1164] bridge_slave_1: left promiscuous mode
[  248.247132][ T1164] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.253401][ T1164] bridge_slave_0: left allmulticast mode
[  248.254360][ T1164] bridge_slave_0: left promiscuous mode
[  248.255868][ T1164] bridge0: port 1(bridge_slave_0) entered disabled state

syzkaller
syzkaller login: [  249.405327][ T1164] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  249.414142][ T1164] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  249.417135][ T1164] bond0 (unregistering): Released all slaves
[  249.682658][T11150] netlink: 330 bytes leftover after parsing attributes in process `syz.0.3064'.
[  249.785070][T11093] bridge0: port 1(bridge_slave_0) entered blocking state
[  249.786356][T11093] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.787538][T11093] bridge_slave_0: entered allmulticast mode
[  249.790217][T11093] bridge_slave_0: entered promiscuous mode
[  249.812146][T11093] bridge0: port 2(bridge_slave_1) entered blocking state
[  249.813361][T11093] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.814584][T11093] bridge_slave_1: entered allmulticast mode
[  249.833028][T11093] bridge_slave_1: entered promiscuous mode
[  249.903229][ T1164] hsr_slave_0: left promiscuous mode
[  249.905089][ T1164] hsr_slave_1: left promiscuous mode
[  249.912301][ T1164] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  249.913376][ T1164] batman_adv: batadv0: Removing interface: batadv_slave_0
[  249.915111][ T1164] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  249.920021][ T1164] batman_adv: batadv0: Removing interface: batadv_slave_1
[  249.941879][ T1164] veth1_macvtap: left promiscuous mode
[  249.942783][ T1164] veth0_macvtap: left promiscuous mode
[  249.944619][ T1164] veth1_vlan: left promiscuous mode
[  249.946390][ T1164] veth0_vlan: left promiscuous mode
[  250.048657][ T5833] Bluetooth: hci0: command tx timeout
[  250.412230][ T1164] team0 (unregistering): Port device team_slave_1 removed
[  250.444416][ T1164] team0 (unregistering): Port device team_slave_0 removed
[  250.860157][T11093] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  250.873183][T11093] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  251.004509][T11093] team0: Port device team_slave_0 added
[  251.040120][T11093] team0: Port device team_slave_1 added
[  251.309383][T11093] batman_adv: batadv0: Adding interface: batadv_slave_0
[  251.315502][T11093] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.340354][T11093] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  251.344660][T11093] batman_adv: batadv0: Adding interface: batadv_slave_1
[  251.346315][T11093] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.349927][T11093] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  251.554163][T11093] hsr_slave_0: entered promiscuous mode
[  251.567646][T11093] hsr_slave_1: entered promiscuous mode
[  251.569476][T11093] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  251.570920][T11093] Cannot create hsr debugfs directory
[  251.632696][T11182] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3069'.
[  252.131054][ T5833] Bluetooth: hci0: command tx timeout
[  252.674385][T11207] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3073'.
[  253.274200][T11093] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  253.305608][T11224] random: crng reseeded on system resumption
[  253.307299][ T5833] Bluetooth: hci4: unexpected event 0x3e length: 508 > 260
[  253.307336][ T5833] Bluetooth: hci4: unexpected subevent 0x02 length: 507 > 260
[  253.309657][ T5833] Bluetooth: hci4: Dropping invalid advertising data
[  253.311095][ T5833] Bluetooth: hci4: unknown advertising packet type: 0xe9
[  253.311160][ T5833] Bluetooth: hci4: Dropping invalid advertising data
[  253.313328][ T5833] Bluetooth: hci4: Malformed LE Event: 0x02
[  253.329985][T11093] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  253.379024][T11093] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  253.389560][T11093] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  253.582100][   T30] audit: type=1800 audit(6041987272.572:2): pid=11229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3076" name="dbroot" dev="configfs" ino=34194 res=0 errno=0
[  253.749624][T11093] 8021q: adding VLAN 0 to HW filter on device bond0

	
		

		
		

		
	
	

		
		

		
	
	




		
		
	


		
		
	
	
	

	

	
		


	
	

	
	

	

	


	


	
















	

	






		

	
	

















	

	






		

	
	

















	

	






		

	
	

















	

	






		

	
	

















	

	






		

	
	






	

	




















	

	






		

	
	

















	

	






		

	
	

















	

	






		

	
	

















	

	






		

	
	

















	

	






		

	
	






	

	




	

	
		
			
	
			
	
			
	
			
	


				


			
	


	
	
	

	


		




	
	
	

		




	
	
	

		




	
	
	

		




	
	
	

		




	
	
	

		




	
	
	

		




	
	
	



				
		





	

		
		

	
	
	
	

		






			
	
	
	

		










		

							

	


	
	
	
	
	
	


	

		

	



	
							

	


	
	

	

	
				
	
		


	

								



	
		

	


	
	

		
	
		
	
	

	



			








	

	
	






	







		

		

	
	
		








	
	










	
	






	




	





		














	
	

	

							

	


	
	

	
	
					
	
			
		

	
		

	


	
	

		
	
		
	
	

	



			








	




	




		












	

	



	


	
	


	






	




	




		








							

	


	
			
	
			
	

	
		
	

	
		
	
	

	

	

	
		
							

	



	
				
	
		
	
	

	
	
	
							

	



syzkaller
syzkaller login: [  285.383125][T11919] ima: policy update failed
[  285.394351][   T30] audit: type=1802 audit(6041987304.382:5): pid=11919 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.3199" res=0 errno=0
[  292.355101][ T5833] Bluetooth: hci4: unexpected subevent 0x01 length: 4 < 18
[  293.142943][T12017] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3225'.
[  293.185142][ T5833] Bluetooth: hci4: unexpected subevent 0x01 length: 122 > 18
[  293.478331][T12017] usb usb28: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  295.331166][T12075] lo: entered promiscuous mode
[  295.391375][T12087] lo: left promiscuous mode
[  295.565643][T12091] blk_print_req_error: 6 callbacks suppressed
[  295.565660][T12091] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  295.624009][T12091] buffer_io_error: 6 callbacks suppressed
[  295.624028][T12091] Buffer I/O error on dev nbd0, logical block 0, async page read
[  295.725861][T12091] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  295.760224][T12091] Buffer I/O error on dev nbd0, logical block 0, async page read
[  295.907489][T12091] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  295.922438][T12091] Buffer I/O error on dev nbd0, logical block 0, async page read
[  295.937333][T12091] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  295.994899][T12094] netlink: 342 bytes leftover after parsing attributes in process `syz.0.3235'.
[  296.008948][T12091] Buffer I/O error on dev nbd0, logical block 0, async page read
[  296.039834][T12091] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  296.085481][T12091] Buffer I/O error on dev nbd0, logical block 0, async page read
[  296.093505][T12091] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  296.162247][T12091] Buffer I/O error on dev nbd0, logical block 0, async page read
[  296.216164][T12091] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  296.225289][T12091] Buffer I/O error on dev nbd0, logical block 0, async page read
[  296.278963][T12091] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  296.374097][T12091] Buffer I/O error on dev nbd0, logical block 0, async page read
[  296.396609][T12091] ldm_validate_partition_table(): Disk read failed.
[  296.445537][T12091] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  296.454658][T12091] Buffer I/O error on dev nbd0, logical block 0, async page read
[  296.491632][T12091] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  296.532622][T12091] Buffer I/O error on dev nbd0, logical block 0, async page read
[  296.565214][T12091] Dev nbd0: unable to read RDB block 0
[  296.596216][T12091]  nbd0: unable to read partition table
[  296.922097][T12119] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3243'.
[  297.639069][T12128] Invalid ELF header magic: != ELF
[  297.907045][T12141] netlink: 334 bytes leftover after parsing attributes in process `syz.2.3248'.
[  298.017547][T12139] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3247'.
[  298.027586][T12142] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3247'.
[  298.126904][T12139] team0: Port device team_slave_0 removed
[  298.280291][T12142] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3247'.
[  298.604772][T12155] HfR: entered promiscuous mode
[  298.614126][T12155] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3250'.
[  298.635784][T12155] HfR: left promiscuous mode
[  298.689242][T12156] device-mapper: ioctl: Unable to rename non-existent device,  to „
[  299.083739][T12159] svc: failed to register nfsdv3 RPC service (errno 111).
[  299.118594][T12159] svc: failed to register nfsaclv3 RPC service (errno 111).
[  300.098313][T12176] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  300.584965][T12184] syz.2.3260: vmalloc error: size 1626112, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  300.657422][T12184] CPU: 1 UID: 0 PID: 12184 Comm: syz.2.3260 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  300.657476][T12184] Tainted: [U]=USER
[  300.657486][T12184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  300.657505][T12184] Call Trace:
[  300.657516][T12184]  <TASK>
[  300.657528][T12184]  dump_stack_lvl+0x16c/0x1f0
[  300.657582][T12184]  warn_alloc+0x248/0x3a0
[  300.657623][T12184]  ? __pfx_warn_alloc+0x10/0x10
[  300.657662][T12184]  ? alloc_pages_mpol+0x25a/0x550
[  300.657704][T12184]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  300.657748][T12184]  ? trace_kmalloc+0x2b/0xd0
[  300.657803][T12184]  __vmalloc_node_range_noprof+0x12d2/0x1540
[  300.657871][T12184]  ? __snd_dma_alloc_pages+0x50/0x90
[  300.657909][T12184]  ? do_alloc_pages+0xd7/0x280
[  300.657962][T12184]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  300.658018][T12184]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  300.658083][T12184]  ? __snd_dma_alloc_pages+0x50/0x90
[  300.658117][T12184]  vmalloc_noprof+0x6b/0x90
[  300.658168][T12184]  ? __snd_dma_alloc_pages+0x50/0x90
[  300.658198][T12184]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  300.658232][T12184]  __snd_dma_alloc_pages+0x50/0x90
[  300.658266][T12184]  snd_dma_alloc_dir_pages+0x151/0x240
[  300.658303][T12184]  do_alloc_pages+0x115/0x280
[  300.658359][T12184]  snd_pcm_lib_malloc_pages+0x3df/0x980
[  300.658398][T12184]  snd_pcm_hw_params+0x15e1/0x1b40
[  300.658435][T12184]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  300.658467][T12184]  ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0
[  300.658519][T12184]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  300.658569][T12184]  ? __asan_memset+0x23/0x50
[  300.658603][T12184]  snd_pcm_kernel_ioctl+0x147/0x2e0
[  300.658639][T12184]  snd_pcm_oss_change_params_locked+0x1432/0x3b40
[  300.658710][T12184]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  300.658763][T12184]  ? snd_pcm_oss_sync+0x30c/0x840
[  300.658840][T12184]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  300.658894][T12184]  snd_pcm_oss_sync+0x32e/0x840
[  300.658948][T12184]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  300.658997][T12184]  snd_pcm_oss_release+0x28b/0x310
[  300.659053][T12184]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  300.659102][T12184]  __fput+0x3ff/0xb70
[  300.659153][T12184]  task_work_run+0x14d/0x240
[  300.659206][T12184]  ? __pfx_task_work_run+0x10/0x10
[  300.659258][T12184]  ? __pfx___do_sys_close_range+0x10/0x10
[  300.659288][T12184]  ? rcu_is_watching+0x12/0xc0
[  300.659327][T12184]  syscall_exit_to_user_mode+0x27b/0x2a0
[  300.659377][T12184]  do_syscall_64+0xda/0x230
[  300.659429][T12184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.659462][T12184] RIP: 0033:0x7fddb5f8e969
[  300.659488][T12184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  300.659519][T12184] RSP: 002b:00007fddb6d16038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  300.659549][T12184] RAX: 0000000000000000 RBX: 00007fddb61b5fa0 RCX: 00007fddb5f8e969
[  300.659570][T12184] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  300.659590][T12184] RBP: 00007fddb6010ab1 R08: 0000000000000000 R09: 0000000000000000
[  300.659609][T12184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  300.659629][T12184] R13: 0000000000000000 R14: 00007fddb61b5fa0 R15: 00007ffe345507a8
[  300.659673][T12184]  </TASK>
[  300.659685][T12184] Mem-Info:
[  301.050043][T12184] active_anon:6045 inactive_anon:8474 isolated_anon:0
[  301.050043][T12184]  active_file:18023 inactive_file:38350 isolated_file:0
[  301.050043][T12184]  unevictable:768 dirty:311 writeback:0
[  301.050043][T12184]  slab_reclaimable:11148 slab_unreclaimable:99871
[  301.050043][T12184]  mapped:24789 shmem:8198 pagetables:820
[  301.050043][T12184]  sec_pagetables:0 bounce:0
[  301.050043][T12184]  kernel_misc_reclaimable:0
[  301.050043][T12184]  free:1317233 free_pcp:9177 free_cma:0
[  301.167198][T12184] Node 0 active_anon:24180kB inactive_anon:21096kB active_file:72084kB inactive_file:153204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:99156kB dirty:1240kB writeback:0kB shmem:18156kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11152kB pagetables:3280kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  301.201050][    C0] vkms_vblank_simulate: vblank timer overrun
[  301.305435][T12184] Node 1 active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  301.336780][    C0] vkms_vblank_simulate: vblank timer overrun
[  301.344036][T12184] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  301.378261][T12184] lowmem_reserve[]: 0 2484 2486 2486 2486
[  301.435518][T12184] Node 0 DMA32 free:1375664kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:24132kB inactive_anon:8196kB active_file:70344kB inactive_file:153128kB unevictable:1536kB writepending:1240kB present:3129332kB managed:2544164kB mlocked:0kB bounce:0kB free_pcp:32232kB local_pcp:19772kB free_cma:0kB
[  301.466579][    C0] vkms_vblank_simulate: vblank timer overrun
[  301.475579][T12184] lowmem_reserve[]: 0 0 1 1 1
[  301.480488][T12184] Node 0 Normal free:28kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:1740kB inactive_file:76kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  301.512277][T12184] lowmem_reserve[]: 0 0 0 0 0
[  301.519299][T12184] Node 1 Normal free:3897820kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:196kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:9752kB local_pcp:6200kB free_cma:0kB
[  301.548703][    C0] vkms_vblank_simulate: vblank timer overrun
[  301.555915][T12184] lowmem_reserve[]: 0 0 0 0 0
[  301.560764][T12184] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  301.586402][T12184] Node 0 DMA32: 3772*4kB (ME) 1706*8kB (UME) 1525*16kB (UME) 715*32kB (UME) 556*64kB (UME) 307*128kB (UME) 129*256kB (UME) 59*512kB (UME) 22*1024kB (UM) 8*2048kB (UME) 274*4096kB (UM) = 1375344kB
[  301.650146][T12184] Node 0 Normal: 1*4kB (M) 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB
[  301.669990][T12184] Node 1 Normal: 6*4kB (ME) 7*8kB (ME) 10*16kB (UME) 189*32kB (UME) 94*64kB (UME) 28*128kB (UE) 12*256kB (UME) 10*512kB (UM) 5*1024kB (UME) 3*2048kB (UE) 943*4096kB (UM) = 3897872kB
[  301.690421][T12184] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  301.702223][T12184] Node 0 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  301.711697][T12184] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  301.722454][T12184] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  301.734206][T12184] 57767 total pagecache pages
[  301.739210][T12184] 0 pages in swap cache
[  301.743774][T12184] Free swap  = 124996kB
[  301.748883][T12184] Total swap = 124996kB
[  301.754069][T12184] 2097051 pages RAM
[  301.761933][T12184] 0 pages HighMem/MovableOnly
[  301.773785][T12184] 428904 pages reserved
[  301.778948][T12184] 0 pages cma reserved
[  301.802164][T12199] tipc: Can't bind to reserved service type 1
[  302.621966][T12217] ==================================================================
[  302.630107][T12217] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0
[  302.632421][T12212] smc: net device syz_tun applied user defined pnetid ETHTOOL
[  302.638820][T12217] Read of size 1 at addr ffff888068731907 by task syz.0.3269/12217
[  302.638850][T12217] 
[  302.638868][T12217] CPU: 1 UID: 0 PID: 12217 Comm: syz.0.3269 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  302.638922][T12217] Tainted: [U]=USER
[  302.638933][T12217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  302.638952][T12217] Call Trace:
[  302.638962][T12217]  <TASK>
[  302.638973][T12217]  dump_stack_lvl+0x116/0x1f0
[  302.639022][T12217]  print_report+0xc3/0x670
[  302.639064][T12217]  ? __virt_addr_valid+0x5e/0x590
[  302.639108][T12217]  ? __phys_addr+0xc6/0x150
[  302.639154][T12217]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  302.639197][T12217]  kasan_report+0xe0/0x110
[  302.639237][T12217]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  302.639285][T12217]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  302.639336][T12217]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  302.639383][T12217]  ? find_held_lock+0x2b/0x80
[  302.639414][T12217]  ? __might_fault+0xe3/0x190
[  302.639452][T12217]  ? __might_fault+0xe3/0x190
[  302.639488][T12217]  ? __might_fault+0x13b/0x190
[  302.639535][T12217]  ? proc_simple_write+0x114/0x1b0
[  302.639577][T12217]  proc_simple_write+0x114/0x1b0
[  302.639620][T12217]  ? __pfx_proc_simple_write+0x10/0x10
[  302.639663][T12217]  proc_reg_write+0x23d/0x330
[  302.639697][T12217]  ? __pfx_proc_reg_write+0x10/0x10
[  302.639730][T12217]  vfs_writev+0x6c4/0xdc0
[  302.639781][T12217]  ? __pfx___mutex_trylock_common+0x10/0x10
[  302.639834][T12217]  ? __pfx_vfs_writev+0x10/0x10
[  302.639885][T12217]  ? __mutex_lock+0x1ca/0xb90
[  302.639942][T12217]  ? kmem_cache_free+0x2d4/0x4d0
[  302.639981][T12217]  ? __pfx___mutex_lock+0x10/0x10
[  302.640039][T12217]  ? __fget_files+0x20e/0x3c0
[  302.640098][T12217]  ? do_writev+0x132/0x330
[  302.640148][T12217]  do_writev+0x132/0x330
[  302.640201][T12217]  ? __pfx_do_writev+0x10/0x10
[  302.640251][T12217]  ? rcu_is_watching+0x12/0xc0
[  302.640287][T12217]  do_syscall_64+0xcd/0x230
[  302.640338][T12217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.640373][T12217] RIP: 0033:0x7f6f8298e969
[  302.640401][T12217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.640435][T12217] RSP: 002b:00007f6f83825038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  302.640467][T12217] RAX: ffffffffffffffda RBX: 00007f6f82bb5fa0 RCX: 00007f6f8298e969
[  302.640493][T12217] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000004
[  302.640515][T12217] RBP: 00007f6f82a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  302.640537][T12217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  302.640561][T12217] R13: 0000000000000000 R14: 00007f6f82bb5fa0 R15: 00007fff84ae03e8
[  302.640594][T12217]  </TASK>
[  302.640604][T12217] 
[  302.922399][T12217] Allocated by task 12217:
[  302.926826][T12217]  kasan_save_stack+0x33/0x60
[  302.931531][T12217]  kasan_save_track+0x14/0x30
[  302.936227][T12217]  __kasan_kmalloc+0xaa/0xb0
[  302.940837][T12217]  __kmalloc_node_track_caller_noprof+0x221/0x510
[  302.947367][T12217]  memdup_user_nul+0x2b/0x120
[  302.952069][T12217]  proc_simple_write+0xc7/0x1b0
[  302.957033][T12217]  proc_reg_write+0x23d/0x330
[  302.961730][T12217]  vfs_writev+0x6c4/0xdc0
[  302.966093][T12217]  do_writev+0x132/0x330
[  302.970370][T12217]  do_syscall_64+0xcd/0x230
[  302.974907][T12217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.980820][T12217] 
[  302.983152][T12217] The buggy address belongs to the object at ffff888068731900
[  302.983152][T12217]  which belongs to the cache kmalloc-8 of size 8
[  302.996877][T12217] The buggy address is located 0 bytes to the right of
[  302.996877][T12217]  allocated 7-byte region [ffff888068731900, ffff888068731907)
[  303.011212][T12217] 
[  303.013545][T12217] The buggy address belongs to the physical page:
[  303.019975][T12217] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888068731e20 pfn:0x68731
[  303.030058][T12217] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  303.037619][T12217] page_type: f5(slab)
[  303.041618][T12217] raw: 00fff00000000000 ffff88801b441500 0000000000000000 dead000000000001
[  303.050218][T12217] raw: ffff888068731e20 000000008080006f 00000000f5000000 0000000000000000
[  303.058841][T12217] page dumped because: kasan: bad access detected
[  303.065269][T12217] page_owner tracks the page as allocated
[  303.071000][T12217] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5831, tgid 5831 (syz-executor), ts 104838276359, free_ts 104837414349
[  303.090478][T12217]  post_alloc_hook+0x181/0x1b0
[  303.095266][T12217]  get_page_from_freelist+0x135c/0x3920
[  303.100831][T12217]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  303.106754][T12217]  alloc_pages_mpol+0x1fb/0x550
[  303.111629][T12217]  new_slab+0x244/0x340
[  303.115819][T12217]  ___slab_alloc+0xd9c/0x1940
[  303.120536][T12217]  __slab_alloc.constprop.0+0x56/0xb0
[  303.125922][T12217]  __kmalloc_node_noprof+0x2ed/0x500
[  303.131234][T12217]  __vmalloc_node_range_noprof+0x3eb/0x1540
[  303.137161][T12217]  vzalloc_noprof+0x6b/0x90
[  303.141697][T12217]  do_ip6t_get_ctl+0x63f/0xa50
[  303.146487][T12217]  nf_getsockopt+0x79/0xe0
[  303.150928][T12217]  ipv6_getsockopt+0x1f7/0x280
[  303.155720][T12217]  tcp_getsockopt+0x9e/0x100
[  303.160415][T12217]  do_sock_getsockopt+0x3fc/0x800
[  303.165470][T12217]  __sys_getsockopt+0x123/0x1a0
[  303.170342][T12217] page last free pid 5831 tgid 5831 stack trace:
[  303.176675][T12217]  __free_frozen_pages+0x69d/0xff0
[  303.181826][T12217]  vfree+0x176/0x960
[  303.185759][T12217]  __do_replace+0x7d1/0x9f0
[  303.190287][T12217]  do_ip6t_set_ctl+0x806/0xa70
[  303.195079][T12217]  nf_setsockopt+0x8a/0xf0
[  303.199516][T12217]  ipv6_setsockopt+0x135/0x170
[  303.204306][T12217]  tcp_setsockopt+0xa4/0x100
[  303.208910][T12217]  do_sock_setsockopt+0x221/0x470
[  303.213970][T12217]  __sys_setsockopt+0x120/0x1a0
[  303.218850][T12217]  __x64_sys_setsockopt+0xbd/0x160
[  303.223993][T12217]  do_syscall_64+0xcd/0x230
[  303.228567][T12217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.234508][T12217] 
[  303.236844][T12217] Memory state around the buggy address:
[  303.242484][T12217]  ffff888068731800: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  303.250573][T12217]  ffff888068731880: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  303.258655][T12217] >ffff888068731900: 07 fc fc fc fa fc fc fc 06 fc fc fc fa fc fc fc
[  303.266742][T12217]                    ^
[  303.270822][T12217]  ffff888068731980: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[  303.278899][T12217]  ffff888068731a00: fa fc fc fc 05 fc fc fc 04 fc fc fc fa fc fc fc
[  303.286972][T12217] ==================================================================
[  303.320136][T12217] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  303.327396][T12217] CPU: 0 UID: 0 PID: 12217 Comm: syz.0.3269 Tainted: G     U              6.15.0-rc5-syzkaller-00353-gcd802e7e5f1e #0 PREEMPT(full) 
[  303.341069][T12217] Tainted: [U]=USER
[  303.344886][T12217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  303.354963][T12217] Call Trace:
[  303.358264][T12217]  <TASK>
[  303.361216][T12217]  dump_stack_lvl+0x3d/0x1f0
[  303.365856][T12217]  panic+0x71c/0x800
[  303.369801][T12217]  ? __pfx_panic+0x10/0x10
[  303.374258][T12217]  ? mark_held_locks+0x49/0x80
[  303.379052][T12217]  ? preempt_schedule_thunk+0x16/0x30
[  303.384466][T12217]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  303.390486][T12217]  ? preempt_schedule_common+0x44/0xc0
[  303.395978][T12217]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  303.401987][T12217]  check_panic_on_warn+0xab/0xb0
[  303.406967][T12217]  end_report+0x107/0x170
[  303.411327][T12217]  kasan_report+0xee/0x110
[  303.415774][T12217]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[  303.421804][T12217]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[  303.427650][T12217]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[  303.433838][T12217]  ? find_held_lock+0x2b/0x80
[  303.438543][T12217]  ? __might_fault+0xe3/0x190
[  303.443246][T12217]  ? __might_fault+0xe3/0x190
[  303.447952][T12217]  ? __might_fault+0x13b/0x190
[  303.452747][T12217]  ? proc_simple_write+0x114/0x1b0
[  303.457882][T12217]  proc_simple_write+0x114/0x1b0
[  303.462850][T12217]  ? __pfx_proc_simple_write+0x10/0x10
[  303.468342][T12217]  proc_reg_write+0x23d/0x330
[  303.473038][T12217]  ? __pfx_proc_reg_write+0x10/0x10
[  303.478261][T12217]  vfs_writev+0x6c4/0xdc0
[  303.482624][T12217]  ? __pfx___mutex_trylock_common+0x10/0x10
[  303.488550][T12217]  ? __pfx_vfs_writev+0x10/0x10
[  303.493437][T12217]  ? __mutex_lock+0x1ca/0xb90
[  303.498149][T12217]  ? kmem_cache_free+0x2d4/0x4d0
[  303.503112][T12217]  ? __pfx___mutex_lock+0x10/0x10
[  303.508174][T12217]  ? __fget_files+0x20e/0x3c0
[  303.512889][T12217]  ? do_writev+0x132/0x330
[  303.517340][T12217]  do_writev+0x132/0x330
[  303.521620][T12217]  ? __pfx_do_writev+0x10/0x10
[  303.526421][T12217]  ? rcu_is_watching+0x12/0xc0
[  303.531210][T12217]  do_syscall_64+0xcd/0x230
[  303.535749][T12217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.541664][T12217] RIP: 0033:0x7f6f8298e969
[  303.546094][T12217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  303.565720][T12217] RSP: 002b:00007f6f83825038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  303.574155][T12217] RAX: ffffffffffffffda RBX: 00007f6f82bb5fa0 RCX: 00007f6f8298e969
[  303.582144][T12217] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000004
[  303.590133][T12217] RBP: 00007f6f82a10ab1 R08: 0000000000000000 R09: 0000000000000000
[  303.598117][T12217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  303.606104][T12217] R13: 0000000000000000 R14: 00007f6f82bb5fa0 R15: 00007fff84ae03e8
[  303.614205][T12217]  </TASK>
[  303.617569][T12217] Kernel Offset: disabled
[  303.621903][T12217] Rebooting in 86400 seconds..