last executing test programs:

3m12.584384673s ago: executing program 0 (id=177):
r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents64$auto(r0, 0x0, 0x400) (async)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR32(r0, 0xc0844123, &(0x7f0000000340)={0x8001, @status={0x9, 0x0, 0x98d, 0x2, 0xf, 0x1c19, 0x9, 0x9}, @reserved="135cc1cdcaf68383adff5c94b713fc4fcbc9aa0eba9dece988692052305353ddbfe732bb3333963cf1fff599173d5aa8bcf9eec25724e2cd4cf949ec280e4155"})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clock_nanosleep$auto(0x0, 0x3, 0x0, 0x0) (async)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop3\x00', 0x607c2, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async, rerun: 64)
write$auto(0x3, 0x0, 0x7fffffff)
r2 = fanotify_init$auto(0x8101, 0x7)
bpf$auto(0xfffff011, &(0x7f0000000000)=@link_create={@prog_fd=r1, @target_fd=r2, 0xdd, 0x6, @uprobe_multi={0x7, 0x1, 0x8c5, 0x2, 0x9, 0xa}}, 0xa3) (async)
writev$auto(0xca, &(0x7f0000000080)={&(0x7f0000000240)="839a1175cbe09a4730c4d4e635814744341ebe304a0a00da00f7c8b377e3527b7ff1402f9480a872c0c55026846163e4dfdb2be719690fa5ae7a421dd2c117cbc67d6e4dca6c1678a5ea87adabedc8a028ac351b8273c457662c9f4bdffffc79179ea72be7370e9b8816bf7da811d6a7c0589262b9498df087199728a7496e6bcbe852f37af8324be0ab8697732f6a8b900b8f5fe9d72c51dfa986f113bd12e648e084d5c278bb16616351b2dc2fe4f6887873c89c9a330de9c7fe1c795fea7fe192b717543ad4cb79b97db4157cff8f0433ae6cef07d8c4427bf3d5171f18", 0x1}, 0x7e)
r3 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe) (async)
capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x8}) (async, rerun: 32)
openat$auto_bch_chardev_fops_chardev(0xffffffffffffff9c, &(0x7f0000000580), 0x400, 0x0) (rerun: 32)
execveat$auto(r3, &(0x7f0000000200)='\x00', 0x0, 0x0, 0x11000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0) (async)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
syz_clone3(&(0x7f0000000400)={0x9840100, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0) (async)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0) (async)
preadv$auto(r3, &(0x7f0000000040)={0x0, 0xffffffff}, 0x4, 0x8, 0x4000000007)

3m10.911227298s ago: executing program 0 (id=182):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
r0 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x4000, 0x0)
write$auto(r0, &(0x7f0000000040)='\x04\"\x00\x00\x00\x00\xa6\xb8\xd8\xc6\xb05>ha9\x89|d\x00\x00\x00\x00\x00\x00', 0xd)
shmctl$auto_SHM_LOCK(0x9, 0xb, &(0x7f0000000240)={{0x0, 0xee01, 0xee00, 0x2, 0x6, 0xffffffff}, 0x6, 0x0, 0x4, 0x6, @inferred, @inferred, 0x4, 0x0, 0x0, 0x0})
close_range$auto(0x2, 0xa, 0x0)
r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, 0x0)
ioctl$auto_MON_IOCH_MFLUSH(r1, 0x9208, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/010/001\x00', 0x20000, 0x0)
futex_waitv$auto(0x0, 0x77, 0xfffffffc, 0x0, 0x62bd)
getsockopt$auto_SO_NOFCS(r1, 0x3, 0x2b, &(0x7f0000000000)='/dev/dvb/adapter0/demux0\x00', &(0x7f0000000080)=0x7)

3m10.224122193s ago: executing program 0 (id=183):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC2\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000001c0)=0x6)
unshare$auto(0x40000080)
unshare$auto(0x9)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
mmap$auto(0x0, 0x2000d, 0x5, 0xeb1, r1, 0xa)
r2 = socket(0x2b, 0x1, 0x1)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdds\x1cJ\x99\x00:2\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xda\xb9_\xdd*\xd1\x14^\xbe\xa2\x00'/97, 0x4c, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, r2, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x18, &(0x7f0000000040)=@iter_create={r1, 0x3}, 0x92)
socket(0x9, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0x3, 0x9)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
prctl$auto(0xc, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
getdents$auto(r4, 0x0, 0xfff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x18380, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x100400000000000, 0x8001, 0x7, 0xfffffffffffff810, 0xfffffffffffffffa, 0x1000000008000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'tunl0\x00'})
sendmsg$auto_NCSI_CMD_PKG_INFO(r5, &(0x7f0000000880)={0x0, 0xfffffffffffffe48, &(0x7f0000000840)={0x0}, 0x1, 0x0, 0x0, 0x41}, 0x44088)

3m8.909106701s ago: executing program 0 (id=189):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x3, 0x1, 0x4)
process_madvise$auto_MADV_POPULATE_READ(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)="cd42e9b05c7eeb4ca3b0b5cf8b99b2aae9744add075355a11effe643cf912d17151c7f98c5955727c8a28c04376d93a365d5e579860d9d2e7a3e65fb35575ec9ff56494269113c212e0174dccecde19814bcd107a3a9b1429971a6b31467835bab12e5ed2cb90d0f317435e6be8cd9b705f8a11224888b090e4997c8de2a1ea0a29af34fde148c17d98572181029da36d9eb14f0", 0x3}, 0x0, 0x16, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
r1 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/ns/cgroup\x00', 0x40, 0x0)
ioctl$auto_NS_GET_PARENT(r1, 0xb702, 0x0)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
write$auto(r0, 0x0, 0xfffffde9)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
mmap$auto(0x0, 0x20009, 0x4000000000de, 0xeb4, 0x401, 0x7ffd)
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/card1/pcm1c/xrun_debug\x00', 0x20440, 0x0)
socket(0x10, 0x2, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/v4l-touch13\x00', 0x280, 0x0)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r2, 0x541c, r3)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x9)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f00000000c0)={0x0, 0x7}, 0x2)
openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, 0x0, 0x781dc0, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x184b01, 0x0)
socket(0x2, 0x1, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, 0x0, 0x48000, 0x0)
r6 = socket(0x10, 0x2, 0x4000004)
sendmsg$auto_NFSD_CMD_THREADS_SET(r6, 0x0, 0x400c000)
write$auto(0x3, 0x0, 0xfffffdef)

3m7.924933421s ago: executing program 0 (id=193):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r0, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x400003f}, 0x0)

3m7.396538187s ago: executing program 0 (id=195):
r0 = socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x400, 0x8000000000004, 0x5, 0x40eb5, r0, 0x300000000000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, 0x0, 0x0, 0x0)
pread64$auto(r2, 0x0, 0x59, 0x7)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0)
r3 = fanotify_init$auto(0x200, 0x2010000000000)
r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000240), 0x48900, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x2c, r6, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x1}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x1}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0xe0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000840}, 0x2000c840)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000440)={'nicvf0\x00'})
syz_clone3(&(0x7f0000000380)={0x50200000, &(0x7f0000000140), &(0x7f0000000180), &(0x7f0000000280), {0x3f}, &(0x7f00000002c0)=""/47, 0x2f, &(0x7f0000000300)=""/16, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0], 0x8, {r3}}, 0x58)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
unlink$auto(0x0)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
bpf$auto(0xfffffffd, &(0x7f0000000040)=@bpf_attr_5={@target_fd=r1, 0x7f, 0x99, 0x8, r4, @relative_id=0x42, 0xd}, 0x8f)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x6)
open(0x0, 0x261c2, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
migrate_pages$auto(0x0, 0x7, &(0x7f0000000500)=0xa93c, &(0x7f0000000540)=0xc7)

2m51.548499123s ago: executing program 32 (id=195):
r0 = socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x400, 0x8000000000004, 0x5, 0x40eb5, r0, 0x300000000000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, 0x0, 0x0, 0x0)
pread64$auto(r2, 0x0, 0x59, 0x7)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/adsp1\x00', 0x1, 0x0)
r3 = fanotify_init$auto(0x200, 0x2010000000000)
r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000240), 0x48900, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x2c, r6, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x1}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x1}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0xe0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000840}, 0x2000c840)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000440)={'nicvf0\x00'})
syz_clone3(&(0x7f0000000380)={0x50200000, &(0x7f0000000140), &(0x7f0000000180), &(0x7f0000000280), {0x3f}, &(0x7f00000002c0)=""/47, 0x2f, &(0x7f0000000300)=""/16, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0], 0x8, {r3}}, 0x58)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
unlink$auto(0x0)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300)
socket(0xa, 0x3, 0x6)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
bpf$auto(0xfffffffd, &(0x7f0000000040)=@bpf_attr_5={@target_fd=r1, 0x7f, 0x99, 0x8, r4, @relative_id=0x42, 0xd}, 0x8f)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x6)
open(0x0, 0x261c2, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
migrate_pages$auto(0x0, 0x7, &(0x7f0000000500)=0xa93c, &(0x7f0000000540)=0xc7)

10.74787123s ago: executing program 2 (id=697):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event1\x00', 0x22040, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x1fe, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_KVM_GET_VCPU_MMAP_SIZE(r0, 0x4008ae90, 0x0)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
clock_nanosleep$auto(0x1, 0x200, &(0x7f0000000140)={0x0, 0x2800000a}, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x22242, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x101001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptyrd\x00', 0x161843, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x109302, 0x0)
mmap$auto(0x0, 0xffff, 0x3, 0xeb1, r2, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/mtd/mtd0/mtd0/nvmem\x00', 0x0, 0x0)
read$auto(r3, &(0x7f0000002440)='\x00', 0xd)
sysfs$auto(0x2, 0x0, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/i8042/serio0/force_release\x00', 0xc2082, 0x0)
write$auto(r4, &(0x7f00000004c0)='N\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7ff)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x10, 0x0, 0xe6, 0x0, 0x2, 0xb}, 0xfff}, 0x6, 0x311)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)

8.650820831s ago: executing program 3 (id=704):
r0 = ioctl$auto_TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, &(0x7f0000000000)=0x7)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), 0xffffffffffffffff)
r2 = fcntl$getown(0xffffffffffffffff, 0x9)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x4c, r1, 0x20, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0x9}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0xb7}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x7}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2c, 0x3}, @NL802154_ATTR_PID={0x8, 0x1c, r2}, @NL802154_ATTR_WPAN_PHY_NAME={0x5, 0x2, '\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40040}, 0x48010)
r3 = open$auto(&(0x7f00000001c0)='./file0\x00', 0xc, 0x1000)
ioctl$auto_PPPIOCSFLAGS(r3, 0x40047459, &(0x7f0000000200)=0x6)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000280), r0)
sendmsg$auto_TIPC_NL_KEY_SET(r0, &(0x7f0000000740)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000700)={&(0x7f00000002c0)={0x438, r4, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@TIPC_NLA_BEARER={0x1dc, 0x1, 0x0, 0x1, [@typed={0x4, 0xb7}, @typed={0x14, 0x108, 0x0, 0x0, @ipv6=@mcast1}, @typed={0x4, 0xf4}, @typed={0x8, 0x22, 0x0, 0x0, @u32=0x9}, @nested={0x1b1, 0xd8, 0x0, 0x1, [@generic="eea9a3763255413c9fc5c6bbcf2371dabfb89bd1a1a81a4c4990f5af0269af1b2e48caaed15520c9f138fa4b27374af85b0d659dbcd7d01f652384335d95599512920be68dc384103723baa03395a97522e389ad6fc74ed3337eeff3d316673605a7aa575380e12a9f7a82229dfe14637b1ebe54b28b", @generic="46c6d117a36f2af367dbee042c373259322de21f65eb97d4ba01c784a50c1559ebc3ee34a25b62cc26353df63f2e016367565ec677e167d535e2a5cdd7f6485ee87f31b47bda9c346268edcd6ee7cb6d5d094a722db9e206a1471e62971ebfc4b0489d8d512af2176246682feb005648def3941c156fb38ac783968652b4e0ec04d9d316e84decda8e0d46c82596eb97a39b8069c1e4213a3f13ccf1ba22ab6c9aa0da38a53cda726e753cd0b8ecc969f70aa957d1440993d5be1eff0ed64e65d4ca51603bbc002adfbc1771fd45abb23d6b97b1b7308f4001186a05c04f18c6a50e8e5cee", @generic="2549e7deff9d13a2f0956ae7096b3a9386", @generic="2c3778ded4ae1a0dc0", @typed={0x8, 0x3b, 0x0, 0x0, @u32=0x6}, @nested={0x4, 0x95}, @typed={0x8, 0x111, 0x0, 0x0, @u32=0x2}, @typed={0x14, 0x14d, 0x0, 0x0, @ipv6=@private0}, @typed={0xc, 0x2f, 0x0, 0x0, @u64=0xa2a}, @nested={0x4, 0x9f}]}]}, @TIPC_NLA_PUBL={0x34, 0x3, 0x0, 0x1, [@typed={0x14, 0x10d, 0x0, 0x0, @ipv6=@loopback}, @typed={0x8, 0xec, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x14, 0x12f, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, @TIPC_NLA_UNSPEC={0xbd, 0x0, "48b25041978935d3788b9521927d485355cbc45adf342a66839bda25055427328465b9b2e837b3c4fe967cb9a44915bad1a3a46e045ca2c4153d031d95db2d1f38e4774ac046fcefdd8d60ddb1cec95b10acf7ea8ff94be7a397a098d4972599825e348a3529f628b1d820d55158b97e36293bb41e6f9ab3b8a14a0a373a5033fb4cde612ece971445388364ad58e0b5c746fb6cb46588b218c2ebbc35a66f58acff5281d9dabf9a3e8a364552228524d83750cbdde06c0c0a"}, @TIPC_NLA_BEARER={0x151, 0x1, 0x0, 0x1, [@typed={0x4, 0x61}, @generic="61b1ca4d748e2face5a2d8f57bace81754c17549dcf08dbce8e1455114e0ee79f16e0203a12b11c2f34095841460f0acbe7b986a725305d394f9e4da3bd72520555b8fd1b2d9b648f983c0292272bd7060b59b34f446e08a7345772ff63a7407b2fa08fb3f059d17a0c9d76992a1f136ef48dee96d939b473967b0be6cdf79fd685e4bb16905e3f169897e", @typed={0xd, 0x67, 0x0, 0x0, @str='nl802154\x00'}, @generic="41f76918a0b86f417c33980c785bfd7c2980100e58e35df241adb1631a4df12439fbc167c9903514b7e3227ee65eb954c7df5349b0f1db112dda6c51792ba3ae2dd3c6a0e102de64df5bae11539d6feca44406754b48c2d07eee452b758923b6bf40225e918da025a6048b82f225105816f5deee9649afaeb764290ec97fdd8bf734b3ffec6c4fefce4371eb50c4fc8a99603689a9f2ec8754006953d51a81912f3e3517d90d8b7a1204e829faa2"]}]}, 0x438}, 0x1, 0x0, 0x0, 0x24004c80}, 0x4008040)
ioctl$auto_TIOCSETD2(r3, 0x5423, &(0x7f0000000780)="f329bd7fa22b0a666cedc40774ba3822c9305a29ab2d33451bae8d48f23ab669f51f9ffa16cb42fe078ee1c8fb")
r5 = ioctl$auto_TUNSETPERSIST(r3, 0x400454cb, &(0x7f00000007c0)=0x6)
write$auto(r5, &(0x7f0000000800)='%!\x00', 0x3)
r6 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000840)='/proc/self/oom_adj\x00', 0xa000, 0x0)
syz_clone(0x20000, &(0x7f0000000880)="9ed2fbbdd4b8381cc34346026aeb39646013ee1585a43905768fc2f69cc0f38172fe849c5de0df2d2a6dc1f67b72928dda7f87d5d32396385e94bcc34dbfa35e8fab1a6bcab2c1e142c9482ddb2258986ba171a81d31858f4e33d0ec82bbae822a3c5231e1d65fe037e0f86d6681c02949457eb7d4905723a03fc13554bbc6cdb428c00724f54a0f36f545769ef04f1a26b5783c1f6ab43cc0b8a8bf2b83481b29136f88287c8e36c2783d1d704fea86fed760170c474e3207a36b314ecb828fd5", 0xc1, &(0x7f0000000980), &(0x7f00000009c0), &(0x7f0000000a00)="343a2a1e4211b7872bf79a3b8327a9864129be81af0dbb5344452d1967f80283ec9a4e5a0bd6bf00161109706ff4e1518d8fe149612148d557e54d2616645c1b88f74353b3b56857596e4786999f39976d16cb043bb01b0ba4a8a5dd468721fd003781a010d304f5a35073b3ab3500782dd0526469825e4403c7a19262a954ba82508c25730f0cfdb07f6fbd8686bc43dd6490709c0ecdbc2537fd4bfd20b971cff57cf277d761ce047152a82b985d565f8297f7211bcbf80f614eef4a0a3ac7b5687bb6349f23eb04767c6c8cea15ee74279b2e29f9768a5c9e0af5f8ea27702fb0c65a18de49d47635a27e14d9dbfe960fc7f1b67334495c750111db484107ea477fe1459a966bb55ddb4de1a9cb6b993404f4d41b0c10389893e6ce31f20300a7bd9ebdb864697a541389302193f7b0e0c30bdaae02ca6783ffcd78e3ae1a7356bf3b720c4f7c1a7293da6e099f12857e17e24eca80aa5660fd294f956d1cdebecf9e4b87426630c2d19942b2d3f274f1b0b66edbf9cd202a53d4f9b48828a8b8c494334171e4467874000b8bc8c27f6e6abe9e222cb1be4e526b7b5a3ff560a0a8d67207f90720854aec6082c4f37645853ee813975450766fd64588783c848af058ee9c8d5d85e9e0d6c51e2dd00013fc377a825ec749942297d7579dd6d0b7f1e35b051ccf23c8407c9d161bad007de396469b99f857a072f5b0f5af3adeceefbf5e1cf5f573a6bb7fc8b0d8982a8b87401699555d3969859b54069e157bd02a4a6b720c5c2b5f4e0c23ed9ca63fc160655ee93bac84a4678211589e212d735801294afdec51665a60e5842bfd4c7bf92b6dc1d7d20bef5ff4406d44d34caf9c5af40551aca1f09b8050f81bae459c3f7eac07db86ac5edb38924435c08dc24cbb8d2edc0fdf299bc2c9db0615b7890125b57c16c8c9949f8a6467a751bac2c21d740679851f06d5ec0ab4f1ac0c2ba5e4878d139eb0c56291748180c52af7e59612ed093aa5c4291a0b4500a50cd6ee59da4ce19125267b427f19d8af208d387047867f0f46b952a81d949a7b3b60278ef129c1410621133d9c5688eaa27c705b6da7699d69a9489d8d0d4c0ebd75c610da2a140457c295058903788e01a542bce039845ad3b5d512866af5133c16fe5444e1fd69fa355447f64a5ecc57061b7844a7beb1e127227c5ced563430f4650f755e945a61527736a9268c1545cb5c3fc5032c8d30e73d419e0cd9dd0851a4707601158a4535d76ab243fc1c56023afd36107055dbc0e80c5a253be6a051ce27698ff94392dff713a577f57a6b77c5743105f8313b5d6e0e9303792ccfd2a510e7f5b0cfe51d2f258177d1d06bdbc9f16bc9f44360815ea4434773f5b7daae54710bbb2965f89823cf946da85ed16a219b4c31270a992786ce48dc571e8a4cd79273373e5d9824cd025d89fa1ce4379a95eb30e1c7500e73c06149fe3028bb596f05fbb914d87f8d25054ad099adcdb4ad68889aed38985b24b7d378a2fdddbc3e3f00ceeff54cad692341c5cb2ef95a5960b021313bb1f15e12f85e493b9d6214dea01552531cd3710b27340320b3c32c6a5307001cd140e782bfb6a0cc0c73d81b6065f6b58391483d2154ae329b10e2825d40e99341fa574fe93cddb66899e772bdf5fa4243f964f8466859f952f772677b4aa9ed3fdd98d07541f565a2323509d704219a52af7bd8d7c6dc6b2d991639a152c0819d7f1d9c26176cab5976f94650a1a13cb9f0e9790700b803963b824e1b9a5301ba61fed5a925325ff7209eb114fbbca9248bed7599961ae0a8c0dd0bf8574533842f82f4099525c1c8be27a889e0a72ae282f5402673f616becd477840a07e3df28bd326ab57a68707a8018efaadc1697a1875fc67f406db6d2442be4e4788419e6a41049f7c25f3bceb831aa2b74245784e47e6fd9bdbba960a097e7c09bf9af0aae0bd1ae4a9c9318eee416eaaca96225b435f10c05ce288ecad5d76341accc809fc3d515e6bad86dff2e0eb58763dda3845b61b4142f82fad41a6249f1d1dbe9fe7bb2d775cbe08c75506c1dd9c2123e80424e6ba0d52a46835629607eb5edcf1bb55b6df1781dca39b2cc3e68797eb50c31ab97c1aa7a99086699c2b6189481415245fa852862a00cb7c92ae7a4b1560d9f34f159df7d3292696e250582ab7b88f67a26968bff090b58ddbde74745806a653c47571efb334881cecea6106ce26c96935dd4ea56a2fd902a2a5991661c21f41cf092811a9a2f433b60447e8ef49605154857f52b2ff987afcace0ad0fa0c7cbfebb605d8d52d6b3fc690850b938af91e42dc396140610053890e13f2816b02a8db392777edff776db5be362f1461317d8b3be3a9fc72cae2c65296779322d3d021c8c6507e040a3011d93282f384b3d14657cdf5a438be1bb76f33af030aa0ef0309810823532a90ec1fa6e610a6bc4da878719c57d8396c78dbd6ef0242fdcaa6411b391bf26f86dac7ac992439fac56963283409002445f976ea483ad0c5c8db8a1a47e9d6846c63b9cb928ad314f35447b40290932fd9b04eaabda3390662e7ed5955807c957e09c6011f476a3cc6b3120ca65ac7bd9bd8e261bf6b79fd16aede1e5e0ed7ef59df5a753785f97c96701691f314753092e72ae6c73ddbefae76e652813900b90d141df64dc9195d161247d291cb5fa5f94a493ead2ae79d505db4481645b7e50a6b6ced4cafc3c5b81343a991f7f6df1249cc45e7a66437a0bde8e2b5ee1857af5b4a6c7d1bb36ccb9281048508afbe25a44620c76771f48d9ef2013ea64c107ea7a11e3e4d1eec4f39af9ca9f7076a054d9581ccaa46a7b85376a0f0672dafacae2598678ec61803b15119893839f1151e3ea5401d7fabbee998e6230823627e37cb42d446a6939d4ea77aa6cd3a32924625dc0a22dd11709439720a85f6bc9058762c79c9588464546ffb138f4338c3e67334c62b7905c4986d9c95bec1518041e186f2f0cdcfe79bc740be5ac6910a41740bcb35253e7de04f93d4857de3659869d652403456063502d56b8c81ee76f45b6376b82e55a46d313305da4d1e749f5aa62109c17aeb25381aeb13d5e20f63fcd2f96ea3d0b65aa45e43c14b224f66c85b4a7dab898008b31412bf65b8226d561b568998734871a859d9a263ef74c62951c45260804769d863419fa69f998ccb93afa94fc7b77851177a996e752fb373b4963ddbb422e437109d73221075ff449d3b8a529649dc77a1878d326a12fe40c198d4c150f206b79e9a6bb63f29dd6b6a55def7959696cfbf9df9e7cb2eb1ed1becb0df1ac9f905d5c9d2cf63356c3f552eccb7232ab57fa90715feca039b830c68f0164e7f27c091a595e3075af73c39c1c3c6969b71a60f2a84df22f4c40d16969e5a1892c5a4522467b55793a44327798b56a73df38e5865d8120fe83cf57abad0e4f508c669e78dcd87e8f757011a01aaf6e819c9338629b2f32fb169d92458f2db3a40dcfc9772c901de097a4d8f99166d49f0765b344d137872cc4053a3d47fe6ae9580543a2539586d29cdf4d67cabefb0ddfba1eea90984b0fb066a0843636f07eb0b21f31f716880cefc095b6b0a758c721bd6fd0ea5cad16bc06bc1b8eee72e28dad0fcba374b680e592f18390ac95eefe407e644d67c34e6dafba9a764bb36df363369a6a563fd18b433a9b62358976e409a063cf7826c015b0496e3e4e4cad48bcef8d1410713d84230d329d8abc538181de399c908513f164a0080785763d532ec5cdc54c771692a90174963bfdabccc37aed82b2445b009d0bce0d21fcafbadeea1e7a910d5e65b71cb9633e6b98d66530f965f2f083ad8edf41adf6aee73d109f1e0e0440d713565a4698e31592a9060c12cf0ac677673409fdfcd7c738ef35bc6b0def1ef7727a3da6c02c59b1bc6c35a146257cd0c846425d04e26dae616069d027eeb8414f7d96376e74425628f6965b45a93b7e7874743c91683f585252fe9ac746ded3ec1dbc24b51623fafd134baaf2e16c02e37aae36a998b00c8b8574985eb7615b1a27e9b42f72c72bf305dae03152a93b08c78d9e781d78b8b955127796f07f85b55f83011468b2e974c3d568603ab1a022913c9b7fb399ddbefa6a84f5ff8223eaa809fef780dfe0aa4e27a46c42ff63346367cc8288e89c3c291f181a78e59b1ef6f0f89a8053a707b46f5b7d67314616967dacbbc8265d14df808a579567a0f6712afc7e166065029e02486c00348c18e4c0c32c396c41edee29528d258401bb99aca2b2664ba670d5bc1aec2deda2c7c926ebb40f7ce5185ae5127ac5b4f241d9e65c0d72630a429ac204005ae9cedee2c2256422184f25f26ec3eb638ad222516e06a2660847be0597cfd24f73a2d9275b032320ff7bff41b59f4078b308e230e278f5a5a690c6aa6f0430aac712c2baab20eb20f178de1236d1f7b95f99fb9d7d3d46d1e499752825fdd444073c8c717b12f0864b3f97848e78dc17bb97321314cc4714a2981d3c5eb8ecb94defd2a443804aabedd243e1e992fbab138ba66fffca020cfecca5dc8def914139fa4c68652f46e62d9c64f741846ceea5b66923c91b36781ba7def2191c1adca9590497793182f454b394c76cc895e417c735195956ff29e5380467dcab04d280859fc768bac4af1605855af437abfa8b5359e38289291fa8534b48544a046a486281201b9452bb5aa11ae2b9d0094032fd2538285b097ab5c25631043dcdb2daf2072c4e6add6a9ef87c7a71a4bef046e51d17cd1c2f7cd1bce835e2fcc4bd497b4e248ee65b625408f12f7b97f3e8eb168f59f11a942e76196e756e7c7b3238d70d70da0ea6862937ec74c3ec43b218f3594896302813814853e32f805949199f11e04abe65f8212d1d92d5bd6f4e146816bc5973f312d6e1d81ec11ae4a4e61b52340e77e87ac4b821b85424df11c7ee5ad06a7997f8cfa25f3960a2bf1d8fc847a6be48cecf55d9a249770f1c9dff93020e9571b261d5fe02bc6cd80a95474c2b9de5dbdee7c521622480f624ea6e9f7c8fbf023a18561dbaf5b6719edd41a1ead78f3d524f7dbc33cbd3abdf6c0a3ed4ab1d99aab3215c401d2b26d13ecc4ae1e5fc549475bba2b07f84926352b4958bb4cf01d129100fcd38945ed1ac930dae4302822cac61e917cd475cc178af8a5535809b59bf6c96a2b4347bf2ddb7caf8527f563dad7e9c0bdc385adf06055b297c777d75afcde73d8343953bb755f11bb54bb950288f818a08826ff90c51fbcff45940630c89e7d88d9705673660d723c2dd4593e48ab5f30ff0b8d4433de2b9d0715449cd143ae147b52868e74d5360d5e25a00e2386727eeb13dba7ab5c1dc5b73065d70677216000163c8698cd237468fe01ca03419e0eb4e68841e20eebc2a67e8e7ddb36afdef1311385ee4ba07e1be05e868b4bb15fb7922604493abc5b3f2c6b56df75caf4ce7ed8889c60fd54edd9f8eff66b524ace5c00ae90502633b3cfc7e79adbf0a8d2b8964e4d7535df46e93b0e72e956ac26f3f585dffecf131cd2ca2d4ffac326b174bc709db30ab71c9d356b36087795c853ebc25dadd0321ad88d1f26fd4cd0f1a060db9f80c8877e655e713a74962ae280286829c7209e9d17b3522e577b66d04462c42889f1f5edbb4a3b7147b1754258aee534cef3115dd71730afef92a628b6cea0c1b4b5393df18da720400aea534f9db80dba69bf6060b6d812b8b4a576f0b86d31ac7a2261ad8ff7e9e8405ebbe71b1ddd1a38f91b982f2f2810c37a1")
r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001a00)='/proc/sys/net/ipv6/conf/veth0_macvtap/mc_forwarding\x00', 0x488400, 0x0)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001a80), r3)
sendmsg$auto_NL80211_CMD_DEAUTHENTICATE(r3, &(0x7f0000001bc0)={&(0x7f0000001a40)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001b80)={&(0x7f0000001ac0)={0x88, r8, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_KEY_DATA={0xf, 0x7, "4f73d38354e21cf6a8ac07"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x7}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xffff}, @NL80211_ATTR_REG_ALPHA2={0x4c, 0x21, "afdcc80a74867810a0a4a482577d896fbbc3ff7642fd8c95205352a27e58c14f84c05778b87ef7227582f60cf9af19904bb60b6bfe27970bfc44fdc9c5bfdcccded4a0f93473104e"}, @NL80211_ATTR_USE_RRM={0x4}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}]}, 0x88}, 0x1, 0x0, 0x0, 0x800}, 0x4000071)
ioctl$auto_TIOCSBRK2(r0, 0x5427, &(0x7f0000001c00)="eabbfc667de5886677129cf126a712b4f4666cd64c677ca7751c285ada774b4df343941feb1c77e7771dd87a7bda6f52ad156ecc5b38371f3202a6b258b3f5b1e837c58a5a31fc7d5e9aa78a246d175a540ead4bdb30367cde55c0f9090e7640f25b0631fef997ae98fff69cbcae588d8b35a122de1060c21ae404429452b045c49db747248e737c407f5ff29f807ee21efdba689973ed2d344c8a658d40838bd2f6fffcf4bcab4b9fae7edb06623015ad782eeb289fad8d8c37f2366557af06817d84370ed226443d685c4991cf9b")
r9 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001d40), r3)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000001d80)={'veth1_vlan\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000001dc0)={'netdevsim0\x00', <r11=>0x0})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000001e00)={'nr0\x00', <r12=>0x0})
r13 = bpf$auto(0x9, &(0x7f0000001e40)=@bpf_attr_4={0x480000000, r0, 0x7}, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001f00)={'tunl0\x00', <r14=>0x0})
sendmsg$auto_NETDEV_CMD_BIND_RX(r5, &(0x7f0000002000)={&(0x7f0000001d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f40)={0x74, r9, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r10}, @NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r11}, @NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r12}, @NETDEV_A_DMABUF_QUEUES={0xc, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_ID={0x8, 0x1, 0x4}]}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r6}, @NETDEV_A_DMABUF_QUEUES={0x1c, 0x2, 0x0, 0x1, [@NETDEV_A_QUEUE_ID={0x8}, @NETDEV_A_QUEUE_TYPE={0x8, 0x3, 0x8}, @NETDEV_A_QUEUE_ID={0x8, 0x1, 0x5}]}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r13}, @NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r14}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r7}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000004}, 0x4)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000002040)='/dev/audio1\x00', 0x2000, 0x0)
write$auto(r0, &(0x7f0000002080)='nl80211\x00', 0x4)
r15 = socket$nl_generic(0x10, 0x3, 0x10)
r16 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000002100), r13)
sendmsg$auto_KSMBD_EVENT_SHARE_CONFIG_REQUEST(r15, &(0x7f00000021c0)={&(0x7f00000020c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000002180)={&(0x7f0000002140)={0x14, r16, 0x1, 0x70bd28, 0x25dfdbff, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1000}, 0x20000000)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000002200)='/proc/meminfo\x00', 0x180, 0x0)

6.693805533s ago: executing program 3 (id=705):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
read$auto_virtual_ncidev_fops_virtual_ncidev(r0, &(0x7f0000000880)=""/4096, 0x1000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
socket(0x2, 0x1, 0x0)
sendmsg$auto_NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x4000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0)
sched_get_priority_min$auto(0x40)
socket(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000200)='/dev/input/event2\x00', 0x1e1180, 0x0)
getsockopt$auto(0x3, 0x200000000001, 0x19, 0x0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
faccessat2$auto(0x1, 0x0, 0x4, 0x1000)
write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x01\x00\xb6', 0x7f)

6.576526259s ago: executing program 2 (id=706):
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
write$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000180)="0a1b9a5c2a00006e163bb154d7886d8edeea371cadb848770dc8f745d1c76eedba12b9f694dabdbcf340", 0x2a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7)
pidfd_open$auto(0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket(0x2, 0x1, 0x106)
shutdown$auto(0x200000003, 0x2)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0)
listen$auto(0x3, 0x3fffff)
mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000)
io_submit$auto(0x7, 0x1, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/tty/ttywb/power/runtime_active_time\x00', 0x200000, 0x0)
capget$auto(&(0x7f00000000c0)={0x20071026, 0xffffffffffffffff}, 0x0)
sendfile$auto(r2, r2, 0x0, 0x2)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
capget$auto(&(0x7f0000000040)={0x3, <r3=>0x0}, &(0x7f0000000340)={0x79c9c37d, 0x10000, 0x7})
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/amidi2\x00', 0x302, 0x0)
r4 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@rc={0x1f, @any, 0x7}, 0x6a)
r5 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000140), r1)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(r4, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f00000018c0)={0x134c, r5, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x401}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x81}, @IPVS_CMD_ATTR_DEST={0x1190, 0x2, 0x0, 0x1, [@typed={0x8, 0xe9, 0x0, 0x0, @u32=0x7}, @generic="7a551e16bb508b7bda95cb643bfe89188766776682df96aed7022260ce8179be285072214d553facb8eee66132ee5767cf0ec462adf9964884db358816c263ea75b249fb9458c5e8da99d0", @generic="ceb7d4ceffed93061b6f53cf6eaf6052f1c59710fcb835e41bb8a2f686fac0e215db23731e584e475a4d6f50cb8bf5aaad57ba54f364b236580aa1a897dad25e28d288b6bb5f3072834fc4daca637cbd9f5752d40e086698a5c93df360964cfc08a945790d2a2e1536c7f5a2a2753603c5effd6c076d8a18367e5ca19bdc389247e20b77e4b0e9608ab860b1e546f3cb0f4077c6b115de82e98ac03c3d4c09ab7c0c3f60f8dcaedd962db55488ca2ff3c8f71be27d50797a66b5500eda888f5ee52622d6bbdaa2e1bbae26cf8e5ff2edc9aa04c7a706278dd6384f7c377d9efb81b111a2f0f2309035cf8adaeb3c50de062f2b4e1a9d82b54cf1d8a04f5f22cf9ca63c0953130c0899a6ec16ca606b972e9ac24efdc29e733d6ad04953d52ce207cce56ce9cd40ed1d59fa0e46233b521310096d69cad1137ee74aea65245108a832c316e1568cbbc9a1037c3fb0c37caa645ac550497c9a6ca03c6dcd8bf0cb9f0eb581996dfa1554e303ddc68f6bc3a9182bcf764f691c3387ea913b26a8d1c3ec771a4ab1b03e6582bb809abd09715c1e6c78012c03496edf524954583ee9f33087678003873078fc9f0fe7e7372296c6f98a8028cc4e66ea00698e747681936844358f34167abe63938eb40c982777e96f4debbdd0eb108cf60dc3fe4c30b9f22250bba170a126ced5f323e0f5b75cf79e1be460c262bd5b504204ab294b4fe086c0080777bceeddbceedf807b241a16fb5b1f0f649884733cb77a055ef5b0b50039b480a13421156cf2aa2156a6a1301d578e37237f99d648e16f791292bae21eced017c3675b03c380737ce7b5f21ee40c1275af52a4a43ad4ae0b5191347f3359b2e4509809c070ab1c2edee291371fb139cf5216cdf6da8ad88771819fcc8c4928c496c46aa3d7b61d30d156297e416b7efce80948062b525b6d1c3143e5d428d8329e879832ba1cadd115dd414605956fe69c2cf9b6f0ffa634e33fcbdb3f06b5ae3e03155b8da3dfc5783c7091d44ca31a4c4df91a052f6bed9fdf0a836154fed51e5aa4703edc53b6c95c7030b8d4669923592be60b133f2d8b72c49c5796f8933d589073afd80d349ef2436ac304118182de713feb96776edf604b3dedb635c2f02046aa43cb166df328a0b47da83fdc0e786d7191a36f481dd757b2d20d4abfc7594e23b0331ec05719c2e531396c52cd0f5934a413df964b835b2f2838201f7e48f990ba04341aa37f2bf6cd301c51578e02d909c3814910e6af77a4087e79bc706fc70420ae13da8591a93af613f9d715acb58d3ddb6e397988ec9422c20bb8b1aa4c836a021ee9c6959daa257255cc0b27d5a087a79d9db5ebf6c79f0369fbf110fd94b78e11f88d58f6abb6561fcb718b00edc8ca87963b28e8ab1efd5358b2d0b49b9fec745efcfd77fb6280021e8c3af6ba923491a0bc8cf89738d8edca9c56caf6f2fa764f2238be26d7bfc4e1a34391dc3e4d84b5325a87a0523828fc404105ce9fa30f96574aba8bd87405ae00ac3cb806c9639dad1ac2053949b07d34464364b584650079cff5cdb76e0d2185b49f66b5de470ba6fa48a63940e30ebced152283935bba669a578a484785b702bc3548350a931053352c2f82b1be8578a36ecbb3e5d7efb116cccf3340a2f95646b7a97499c1a59468b0770a0ed6613319703501b9c3242b986df9a698715e5d56e520317654af1d46c8f75d0ac2edd5cb9781bcb6867f2eed0aa8016e5580c8e7ea886c3e00929759e53fd37aece3351462b70af99cddbfb96954291ae55ca1b9fb07f60c09a6a1e1d29fd4941f89b7bff51367634a6fe202928d071e751ac35246ca9d27deb51bfd78c5dc86fdc8f7ffd034bc03c5c026c42ed3436c8575f55a47343a8c42efa0daab0f89ae93605371ea190bbd93bf0eddd2976bd36c09a91b5156a4e210d7c515278cc54aab66b2f8647774e97d394f11bd4cb8bbc2c280fcd8ac9af273bb05a4870ebf0b38a5fdadff005ea2febbb008b3d46f5fbf36f3ea35123bfc02af4764e8da19f208fb4779f6ebc734f1da687a9ae9e35ddbe6bb67bd83159705477f5bc0a51ac516ba57ee10e9544c1ad4db1413f913ae6150efaed55a0205c66c2ea69113277b2ac5ef90ec0a367f1886244094db53cd520290eaa2a09279321566ac4e8c1635d39707ed3c660a15f6cf3c3f8cf81129612ab18d607dbb0400005ad9ca3191711a662ac1e7fd59ae206b0e11a92e1bfb516f53f7ed99ff439900e90f6f4cd196c43845aaf5e621aeea3fec17d60e908bcc209b492b7c4d9d5d4f4c06750b70599d095f741244511a31320f833cff4b8a2c4faa43d5a2c4f99fb094d6b10f85e0b8020485ca784faa88ca06c02f6082c5b939513a6505cac240abd5720eed1d1fddf37d364eea96a0fd7b7f3d329f4827148dafe6e0acc90f4098d4b120d429c76c98d3d18a411670526ce1d6e509ed9f7d18778d3646f4e85c6d0a074396aad234daf45d7a893fdaf57882fb75c453c974810ca73a61a4f725adeed4b89fea292e861b0020a459569e5eaed3a6f524889331edec0e6edd5ec414150436ea02d41636f6490e1c3341842fed6581cba0e6f1e34e1449533c5a41b7c5f3517ca807df8784b6aef8939b2159ba53639967b7f366f141b1ecf32a558c21bfb6aaa2af1484df905c92e0980c3f52df947d2ae573615ca63eaf6c30d04c30874818854953234e7b7791a58ab9c574c2aaf47c0b56ae5d4bba0404929929a4b1d0b80e16250caa3c5371c25d824e89a80a7ac08a29860fcf8df2cca677c290a6c9f7eaf38dc686135e559547498fa992fed990ec89ec94ac7d2433892c581069e4a51425457ac5768e95e9f3a30c76bddcb3f6690828c42970b686428a3cdc6bd58fb75cc4bcfa0292019696d28d2789bd9bfcc60feaedd983353c5f9d1db96f78c0bb3b43ea1ffed663baf732a02829fe4a99632405e5cca31022f9adb3d57f79a847cbace1733a1f80d355e065f859cfa549fb0a707127564172c5b1870608e079ce3a4ffb542ea8bc01e9fa91cbaeb7c8d303dac611400d1797e19967181d1125ee444b9d2243a3975e8c9bde5ed9b56314d7b9a61a3c1477d53f8ba3d5e40f7c8b41449c585231dbb3efd185417abf6044db36c156d5b8a10e20adcf55ffb37ad35d9489fa2113de0dfed88746cda61582164337095cb6234e34f8dd665ba283b948ef8d725f24cccebc5432193fc9676ace5e96b42a7c5857299f797f84aafad3d35d865e1314065783bd09790e0b1db6cbe973a3dbaf5c11d62ea73e475de763685ee3bb781a9aa58ecb7ef49f7866603854ba785545cb4b17653ca86cc0a91cce3e19636055e3eb17722fae4b43cc71bb4cb889ad9cc477f802cf39b0f8b9ce7881257092cbb09710235f5aacfe0502626b3de7629c851ac6fd10960298b99cea3ad00f1f5c40591b1186cd9ae9b10ce02799b26c97e0f19f4360d2b0555e6bf45e3d5dc934a712f69845f7397e76347fa735dd0a3f2506087cf245f725620f595f1651b36899391b6000afe97cde5f47bef02f39d1800ede4b080e8ee52c5ed63992b381ed5bad07fa6da0114f1e8f10f64cd82d63295e68e5f8e3e9f8d87d90da09d2079c3fb6da78292189fe6b85fc5a6d55eb06e1accf464eb04206f51144927087013044a45a66d8393c21edd3ec55f28f389d4e24d2e6dbe8d9448c8ba5b3193006ea2ebeef23dbfa841fb61325f60343d316dc2675544e9a84dafa29357847bb1baf325a49862958f74cf57fde626ffff4c8070f342ddcced36db940454d8b3bbec5577c4d66253a944c321dc1ef1f9cb3307f3a06cfe6054642307cb8c19bd4d1ec6a35d2053cbaa1569f5a7564d064b30aa66dc37e9e4ed7b24db1837afb6485c6400f009947a1fcc0f966e91f70565ecbff7ad383791dc00e6b22abe5e133d2d02f0caabdaae2c4f2fa03177c54cec7f9c39a38abd051af8ddb5fd4ac4f9f0a0817192fee2673a3493cb4b35131df8ba8ab5f63aacd28d504d2c81985548f69ca13df85568d1b5757890c557c9ccc3d247e799c38cd34dbc0db35c37ac852b3046c0b7804ff1bb240af5aea3c6744ac5f42585e68a360a57ef38971ab541657da6d60e37fcd5da5a190c612a91b226a78c00989f0c571b6deaf5dddc11de71a8e6e95dab3227c4739cef194ffc5e08189116ee2890e92fa3e68005cda537ff2971b97ac367e324913b3ecc8714b497195646237a13eecb25a2417db9bd5623063a1b69023d94b4cdcb5af1dc0625e000ae1060c102f4939b55ce3a0ba2e90b39f241b8b59501306711a4c4a45974ecab2c2cf500b8f5b37235eee6255da1d036f0bba337ea209cf25c15a060a895adf300e1f9522331e9905599513caa3e54725e2c7c06359b7a5b363198709b58e60e9d9f12a8e651c0183b65f45e72f1dba99d2867409d8df84f950eb2c1053f5b5dc62d4f171e8e8148abe4035f30f6fe1eb151cd1878a2d5f1003f0e3de01401d38863da7323010649bb3d55882311c53af1c1a70622a0292a4b29cb3d050558568b3407cb69bfbc0d3c573a4ae2fcccbaf480092bd8492b1b0518ef75f1e2696cebd91ebfbd0020c433ce964102c66f8a3f0ade960fa3638a7d9037a4b9ac92b3773d6e46df2adb9061dfafca8fc202458872e6c324bc4966cd31ed2c056e1c132d92beb725f965537eed30ee519693a34e794d48cc530b1d77dd45232b98d27a9ddcf38d2cd7abc1dd745d4026e0f201f3f0fb9ddc42fdf926c43b4842002b0469fb64a398119c511d60fff693c875f90f683aed5702a0ffb86cedc99b5f7177d340b31455b876c5f5824977bb05dfecdf592c217e58c32503e729266d29a188c4b78c79faf5f3132d81c76386d6a0a30180c93344e8768eda70851f44f6f41d229b9523e9605c36dda75167b22045af1742b457bd24e3c702dafb00cf3dc2b0d08a668361e2911a53ac2394b767500042ea110b95976a49d0a4e927f3397dfb8ad799eaed2b014e705b7c49732b55899cd4d8906e939e687f8b2f9c2897daa35c669b87bc44502ff6c2ff926404878ddc9866169a4a9a90923b744592e8bff9e971f361379788ad5ef596f2795eaf1c9606df3121d195671ccf40536606f1a02264c20e927fde53c750cfde314d3a1d5622b109b4c888be05d205497b7073a215f478e3e30a84d6de9e923b6b7b8662238678ad44e2bad2eb95f2e21d58f8d0dec8bb5f5367e928be6523c354c1ac0fb530bdc20565513954c60262bc7cd54e322429af950500a1f4dedef8012090814589ec32b1d1aff135806866971d8e0bcc5659d2d64e6d9fab163a3bf7cd4c7402ada2df3637e3915951ea03b8c93ae8741d5d440c9bd12587262d1c39c8647fcd31ddbc9b06454c784b98715edb71e0bd949042502aa0dacfb9c60298e542df33659273c0d76f6538d648f174cd617356eb581316cb1ede6f288c771c0272eef4c817f3049b12064d869a40af1c021659f45dbe5bfd720736cc99d025785c7a130927f6badbd6ab85a48cd54c4d5057b004d9e6f31a2bf7ab36b066e00f23c22b634d4546ee17fcb413c1bdd44de6244f27039574e0b4884748e619d30f6aecd1ca66879241610fecf9bd65c37fd615fb19d455d391b66e9a44bc963b3265d4a67d1180a235f4c91ed2987a57729873d1f8ae31fb28a795838f08236c76fa5d64f877d82ba9637186c43ca765a946013b9f179dd5295b012320c570da596c4c693d40922c832abb960c3562133de5871b6265b71ce74", @generic="9a35aa1947a992371ec5d7733e1b3a5baba95405ba62369a9f8f46651f1c3116c7b0058d4dda45d77f6edba8104ef7358508fa099fdfdb69eb3051e15e", @nested={0xf9, 0x64, 0x0, 0x1, [@generic="c51fa65e1825658c268002ba8d0be80d44b0b0bcd6e8536e0d9d3db2cf0161b74218dbace331f7c435f90090d441ed474dccf9b76f25b064b1c735a8c3b2e5835771a57d15797ac4c20c4af9", @typed={0x4, 0x124}, @generic="e6c5fcc309f9e2806aee47d691f60f48b27105367a10df3e5ede4cbfa4a95f324a60b833b7671157c5557c9262057cb4014c22266aa97916901a8fb31e9511cf32652bfc7258371edbf97ae7092ece5a73d251f8a65043692b3bf2b10f7951788bcd882b35c304a682fa046ef7d44c29bd4d38cc9dff6b2529cdfa8d10c892f2c49e34b24fb6026eeb3bd51b1aabaf3798ba450a97bf7f415abb3c1a1ac91a53b8758cd1cb"]}]}, @IPVS_CMD_ATTR_DEST={0xc8, 0x2, 0x0, 0x1, [@nested={0xc1, 0x89, 0x0, 0x1, [@typed={0x8, 0x100, 0x0, 0x0, @ipv4=@broadcast}, @generic="868f1a7badf5f1e633241bbba704493b776bbbe3b4732184839323f406c29e6cf969845c28efdd55c11e91feec5e90d8c9bb5572e99b47088dcb422e9118e9de167c1c48d3ec296798a83d4ce1c2acced82043c13554d31129316a34a63faf2f1067e272a710fef1654a7d2a323c0e7296ee231dc1223e30de01ae3e93e52dc11904414e73229938cb7fa1ca124af2b94106b113f17a415163f34beb994fcf473bbbeb443944e1b82139f1babf643e212ef6bb92b2"]}]}, @IPVS_CMD_ATTR_DEST={0xbf, 0x2, 0x0, 0x1, [@typed={0x8, 0xe, 0x0, 0x0, @pid=r3}, @generic="7e89a5e58874b066bea7c4a8d25e0169f024cd886a4474ca85b0287c83dac152d955b68355896562b8144dcb3638708b52fe8ec38c8c67ae055edb94d4dde3909076798a3bd7d81a11eb7df809befa4aa0f25e3c3442fdf72374f472243c0458c9851300ef9812792edaa17b9eccd84d715553ebe88da93e4e6a3dfc1f0261f71275dc59ed09b8aa003de5be8074055634c86c4a46e08970a7f44560e3037b52ec39b31677e2a162bfd648b559c584d424b336"]}]}, 0x134c}, 0x1, 0x0, 0x0, 0x4000084}, 0x100)
connect$auto(r4, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0xb, 0x10000, 0xfff, 0x401, 0x8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioperm$auto(0x401, 0x8001, 0x400)

5.26778354s ago: executing program 1 (id=710):
select$auto(0x5, 0x0, 0x0, 0x0, 0x0) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
sendfile$auto(r0, r0, 0x0, 0xc01)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9) (async)
r2 = openat$auto_ftrace_event_id_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/id\x00', 0xc800, 0x0)
recvmmsg$auto(r2, 0x0, 0x7, 0x1e1, 0x0) (async)
ioctl$auto_TUNGETIFF2(r1, 0x800454d2, &(0x7f0000000040)) (async)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x2c201, 0x0) (async)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
pipe$auto(0x0) (async)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80004001, 0x9)
write$auto(0x6, 0x0, 0x100000001) (async)
open(0x0, 0x400, 0x40)

4.729813491s ago: executing program 2 (id=711):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mprotect$auto(0x1000, 0x400000, 0x4) (async)
madvise$auto(0x0, 0x2003f0, 0x15)
mlock$auto(0x5, 0xffff) (async)
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001a80)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x3, 0x0)
mmap$auto(0x0, 0x4, 0x1, 0x110, r0, 0x8020) (async)
vmsplice$auto(0x1, 0x0, 0xa, 0x6) (async)
mmap$auto(0x5, 0x4020009, 0xdf, 0x19, 0xffffffffffffffff, 0x8000) (async)
close_range$auto(0xffffffffffffffff, r0, 0xfffffffe) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
open(0x0, 0x22240, 0x155) (async)
close_range$auto(0x2, 0x8, 0x1000) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182400, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0) (async)
setsockopt$auto(0x6, 0x8000000000000006, 0x1b, 0x0, 0x7ffffc)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) (async)
r1 = socket(0x1d, 0x2, 0x6) (async)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0) (async)
sendfile$auto(0x1, 0x3, 0x0, 0x74c)
mmap$auto(0x0, 0x500008, 0xdf, 0x9b72, 0x2, 0x8000)
capset$auto(0x0, 0x0) (async)
fcntl$auto(r1, 0x400, 0x0) (async)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kcore\x00', 0x101000, 0x0)
preadv$auto(r1, &(0x7f00000000c0)={0x0, 0xfffffffffffffffd}, 0x1, 0xf8, 0xfffffffffffffffe) (async)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/lru_gen_full\x00', 0x80a03, 0x0)
writev$auto(r0, &(0x7f0000000100)={0x0, 0x407114}, 0x8)

4.415911863s ago: executing program 3 (id=712):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x200, 0x0, 0xdc, 0xc1d, r0, 0x7ffe)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x80002, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
write$auto_proc_projid_map_operations_base(0xffffffffffffffff, 0x0, 0x0)
bind$auto(0x3, 0x0, 0x69)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
mincore$auto(0x1000, 0x4000000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)

4.231792908s ago: executing program 1 (id=713):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) (async)
unshare$auto(0x40000080)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
socket(0x1e, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
getdents$auto(r1, 0x0, 0xfff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop15/queue/discard_granularity\x00', 0x8000, 0x0)
unshare$auto(0x40000080)
madvise$auto(0x0, 0xffffffffffff0009, 0x13) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
unshare$auto(0xc59) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'tunl0\x00'}) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0x43403d05, 0x0)

4.112921245s ago: executing program 4 (id=714):
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
r1 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x6, 0x23, 0x0, 0x0)
ioctl$auto(r0, 0x8100451b, r0)
r2 = setfsuid$auto(0xee00)
r3 = setfsuid$auto(0xee01)
setresuid$auto(r2, r3, r2)
sendmsg$auto_NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f0000000800)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000080)={0x708, 0x0, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_MAC_ADDRS={0x628, 0xa6, 0x0, 0x1, [@nested={0x17d, 0x105, 0x0, 0x1, [@generic="568675ba45e5e387d2db4a0642074d368436272a889c8098242670bdd87415879a25a97095b8df64f086b80c14f87a8694c247acbf616121ecd5ddcabde4da37c9652e993ce4a7d9fd7e9a59b9fd8e9a99038f61098e22a017c0aad556b1059c7bf8e80eea92f9785069fe9bcb19a6895df11713a20522146ae58712434410d60024911d3571c9a23fb1a43526b11a73df0a43438da95cc87715bd9de24283be0feec62de03d847efe14724ec5e51f012605a760d0f28b5abc6e5fe42709e6a7392fe86f56ede1c8552234c24360d4608877f002571d3a5613c276719edb8a768824020761f1d08953a17552c3d68b5c7e67", @generic="188d022432845bf0e04f22a64987783ed567b79fdc5931eb991711d3bc558ca732cb0b46bee812a1cbf1dcfde590e73476cb016946e1b25f9e8a73ec8ac653b660ce913e7163f15236d0c6055cd4f650e45a8d3bde33dcf01c29cfee15b55ddb0531fc4c60f93d9f0235ebf209774dec2608c2c04d81c8cf6ee6d3", @typed={0xc, 0xbb, 0x0, 0x0, @u64=0x8}]}, @generic="5dc0e35dec614533412d51a12442b8770e09dea52c29cb6a85afa653c6d5c87eeb03a9bd715280a3cae9e49587ac671ca2610bb78b37d8db197c8c83c91982ea4fa044a1b4c9925a3361b8001936d825f184ec4895ebdca8", @nested={0x2cc, 0x14c, 0x0, 0x1, [@generic="b9c617901a6869cb40827a416057a1e8143ba6d8191be1936fbd09d4532c92fed4c637ff8c4d93367e81befa09772189056ff750c80ad5a4f04f40fbfcf2be7ea0b9732e0bf8a2fdd6ea3528b5a12234be06d053eafe413e3ed313c8b482541f0a50b943623f156ef1946bf33fc2f2bdc9ee0e7f5663d0fb", @generic="03d896673c44ec39b9211a33ffe96dbe2ce9310b5a3de5f580f8c286b0d4dd6165ad5a99fc25e038887a7baf6545f43c45339dad1bd13b7cfda65beade08ea91748da4375f29b86603893e085d55f86995acae7e1422571c1fc3d1f27f1aa6df6c0b60a683a4de62380a94a026ce3b9654342856e5f9d9685b57f2d6358a007a65a328216f46064f88e5841003", @typed={0x8, 0x7, 0x0, 0x0, @ipv4=@loopback}, @nested={0x4, 0x7b}, @nested={0x4, 0x8b}, @generic="07bb6d702f74bcea245f4a141c3e3964ead9cf80c7b90d2dc12aa553bd72635c592b2ffb530dff03efa67489ca2bf3e60b4a634ebb659ebc57ccd638fa39de44005a73608ceab85444584c0bcf98f4dd57e0ffe23cacf0772e0ecbd4c2c0a9080736c8379fb1016876b56e2873cae36bf9c858e10bbf153c10a36ea0d6114ceb33f6a63de54e71ff49a082782467799e37fa0b6a125cb9c6e339e6ded586e1d6625ea3590d018cf5835ebb2ae32e774e82082a3634ddeef17c8f", @generic="f48d0c359896963bb0783341279956389214b82a2d1b96adf91618ee010e844349544b3bb08bfe2f384ae5cc1004744f67b96f215e086e0b146842b1246862840d5edd40a94cb959618a95336f4ab80ae368da4c62eecf282f8df3c34951ce0065d3244092b40f4d3ea1c8d6f0be30d37bea1d2371bc4a64bdd9408669e7d4e06c130722b1227c6a9cf90d7a60a029648d37b20a3759ffad1f2036d602535582f121f94c4f30c8ed1250e0c66e09c7c6813f4ac17b64d32f41afd752abde24ca96ffa271c91c43e04cfd5410246c23232a31573bec39097dfabd6294b493c13a1625428c457961cee258fb86713dbe753cc326c39c18c57340"]}, @generic="5bee88b433788923f8bb8dc3cfdef47bdc92f0b3ec6d211111ea15bd287e6dcdf4e6ade5f3a72ac2f298d81e0280769c287ba97e03a1b4153d3796a0dd36a6b022cd7cdbc63e7dcb3ffd9482e8919174c22a9002bba2e2574df98758d1cac47ee061c961b4b5be46c1fe6417f33eaff5f721d5192a8f1b99935d4233e047966778f01ca55ba8983b2bfa07e10587e23da786d3e23a5e7e003ee54d7e089227e2dc76473f", @generic="88746a09449620167093bc550bd21bd0f881fa3f120b6cc2c7392add9976f177b8e12e459e7ec634a84fbd7d0aecd418d7a97e095520e65c675d016e31b1af4dc5f3364f02bbe0bf63592ef37c228c28b50ebf59870a5145ff7f1f44cb5c8bd3b77775a9772bd06bfe6e3f59817c8c5a94e20ef79e673e7fca8c297d23a993ab066083ea5e5daaf691346d84e4e0ff123d1fab5fbc57e85e4b230a510bdda7fac116ca2c1afe9861", @nested={0x14, 0x13b, 0x0, 0x1, [@nested={0x4, 0x2c}, @typed={0x8, 0x88, 0x0, 0x0, @uid=r3}, @nested={0x4, 0x111}]}, @typed={0x5, 0x5d, 0x0, 0x0, @str='\x00'}, @typed={0x16, 0x66, 0x0, 0x0, @str='/dev/input/event0\x00'}]}, @NL80211_ATTR_VENDOR_DATA={0xb6, 0xc5, "fb9e1cc4ed783cb59b916de4e1105bbc0859a541ecfcd64db0d2244a5e781a9a7a5b350937252f9d95b6ea1ad14e84ec12742757b4b914e8bec29645b518a5493588a6678530d5b93ce60b15da50b621bffd926d59d9d0fe4e0eb00d6e14328252975264f573765ed4db529aa67a3862fcd237f56d0b11281f9acb30faa03fde0636d3b38e91c996ba7ef95bf1b1bd650d524b251c3354e46bfa723e59d0e9d1e455678617b8c5e48205c2acf3b319cb6664"}, @NL80211_ATTR_KEY_SEQ={0x14, 0xa, "c9f264da1132917085b29d11d07cb869"}]}, 0x708}, 0x1, 0x0, 0x0, 0x4041}, 0x40a5)

3.960255483s ago: executing program 3 (id=715):
r0 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
rseq$auto(0x0, 0x7ffd, 0xfffffff4, 0x6)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(0x0, 0x1efe01, 0x31)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x2, 0x2020009, 0x3, 0xeb1, r0, 0x28000)
open(0x0, 0x1e1401, 0xe5)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
rt_sigtimedwait$auto(&(0x7f0000000000)={0x86e}, 0x0, 0x0, 0x8)
tkill$auto(0x0, 0x7)
write$auto(0x3, 0x0, 0x100082)
open(&(0x7f0000000080)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
mmap$auto(0x0, 0x4020209, 0x5, 0xeb2, 0xffffffffffffffff, 0x2)
clone$auto(0x4, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x100000000006)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
r1 = socket(0x5, 0x2, 0x73)
getsockname$auto(r1, 0x0, &(0x7f0000000040)=0x1)
mlockall$auto(0x7)
mmap$auto(0x0, 0x200004, 0x4000000000df, 0x40eb5, 0xffffffffffffffff, 0x300000000000)
rseq$auto(0x0, 0x4, 0x0, 0x4)
open(&(0x7f0000000000)='./file0\x00', 0x40440, 0x40)
mmap$auto(0x9, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x3, 0x3a)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
shutdown$auto(0x200000003, 0x2)

3.875756418s ago: executing program 2 (id=716):
keyctl$auto(0xe, 0x2, 0x76f, 0x9, 0xf13)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
fanotify_init$auto(0x9, 0x2000000000002)
inotify_init1$auto(0x3000000000000)
socket(0x15, 0x5, 0x0)
getsockopt$auto(0x2, 0x114, 0x2711, 0xfffffffffffffffc, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
read$auto(0xffffffffffffffff, 0x0, 0x9)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC2\x00', 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b8162d21, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0x2, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x1d, 0xa, 0x4)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f00000007c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010028bd70f3fedbdf250c00080000000600ae35a93a"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x9a6, 0x7001000)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_open_procfs$namespace(0x0, 0x0)

3.210201187s ago: executing program 4 (id=717):
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x80000000000000a, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x103, 0x0)
shutdown$auto(0x200000003, 0x2)
recvfrom$auto(0x4, 0x0, 0xee1c, 0x3ffffd, 0x0, 0x0)
r1 = socket(0xa, 0x801, 0x84)
bind$auto(r0, 0x0, 0x6a)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x14)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0xffffffffffffffff, &(0x7f0000000200)=@generic={0x2, "a7d7363b4fd495c01bdb1a0f9518"}, 0x7ff)
socket(0xf, 0x3, 0x2)
write$auto(0xca, &(0x7f00000001c0)='\x04>\x01\r\xfb\xff\xf6OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9)
r3 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x28, r3, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@SEG6_ATTR_DST={0x14, 0x1, @rand_addr=' \x01\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x814}, 0x4)
sendmsg$auto_SEG6_CMD_DUMPHMAC(r0, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000600)={0x204, r3, 0x10, 0x70bd29, 0x25dfdbff, {}, [@SEG6_ATTR_DST={0x14, 0x1, @remote}, @SEG6_ATTR_SECRET={0xfc, 0x4, "9efdb2fb71b930c242a071136e5d9693e5e49664545284ba1d74bfd63ca060c01539e6e8d88def89fb50dda2171f599d590a2afbcd924a0d461f73d29017f5022e78345dd100fb180e1b9a2a8095b8007c5c39549878b48f8c6636012e0a44e60708b629d6f1181dbffabf9cd6f236c5f3881c24001b82dfcce546f445dac3dabadce3beb3c2c9e40a14e69d8c64a3adcbfd20376e25bfa0274fe40d41ea25b14cf6e69d1c15b9387ac8412e17aa32ba87662314a702a66bfd75159e2185116bc66d02d5917d7687f4aec817f85f1fa2b42506f7c05125f59c6be2cc456d364850ff7e7fdb3d812dc41dbb4d2a11fcbfe95ae9262bbcbc14"}, @SEG6_ATTR_HMACINFO={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0xe0, 0x0, 0x0, @fd=r1}]}, @SEG6_ATTR_HMACINFO={0xd1, 0x7, 0x0, 0x1, [@generic="7ac6bd777d38739cc32b2141765ccd958be9f745ea93e2b382c194407d80b7d2cbd608c32f", @generic="7a8963d1dc1718a824fb9f1426434226c6b067f62600e6c2ae8368e425c8663c99f1a5fa8c7fa24f724e46b58ec01d87e8f0e8307128bedd900ab64cc1c29a7ec834508028", @generic="9cc5927cbac3de22808429e82dd087b3f8c6bca8bd8e2f9eeca489bf577fcb707418768ad832edac6fe5bd850c8684f5ebdb0fb605f369accedaeda191b95dfe54a8fa63d16af4bd43ff404d7a73be67fdaa96ae0f4e3b27d3efcf0d0b075282e155c1"]}]}, 0x204}, 0x1, 0x0, 0x0, 0x44001}, 0x20000040)
getsockopt$auto(r1, 0x84, 0x6c, 0x0, &(0x7f0000000280)=0x1000c0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)

2.759326211s ago: executing program 3 (id=718):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x20b42, 0x0)
write$auto(r0, 0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/trace_options\x00', 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
open(0x0, 0x22240, 0x154)
open(0x0, 0x22240, 0x154)
fcntl$auto(0x3, 0x400, 0x9ec0000000000000)
bind$auto(r2, &(0x7f0000000040)=@in={0x2, 0x4e25, @remote}, 0x6d)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x51}, 0x1, 0x0, 0x0, 0x20000010}, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x6f, 0x0, 0x1, 0x0, 0x4, 0x9}, 0x7}, 0x3, 0x9)
select$auto(0x5, 0x0, &(0x7f0000000100)={[0x8, 0x200, 0x0, 0x9, 0x1000000008001, 0x3, 0x6, 0x8, 0xd888, 0x5e58296d, 0x342, 0x1000, 0xb, 0x9, 0x8, 0x1ff]}, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xffffeffe, 0x2)
io_uring_setup$auto(0x59, 0x0)
open(0x0, 0x64842, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x28, 0x1, 0x0)
getsockopt$auto(r1, 0x28, 0x20002, 0x0, 0x0)
r3 = socket(0x200000000000011, 0x2, 0x0)
io_uring_setup$auto(0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x89b0, &(0x7f0000000140)={'bond0\x00'})
ioctl$auto_SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000000040))
r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
ioctl$auto_PPPIOCCONNECT(r4, 0x4004743a, &(0x7f00000000c0)=0x4)
r5 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/net\x00')
setns(r5, 0x0)

2.714672679s ago: executing program 4 (id=719):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/block/loop5/mq/0/nr_reserved_tags\x00', 0x201, 0x0)
r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000000c0), 0xffffffffffffffff)
mmap$auto(0x4, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
memfd_create$auto(0x0, 0xd)
ftruncate$auto(0x0, 0x8800000)
sendmsg$auto_SMC_NETLINK_DUMP_UEID(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x68, r1, 0x10, 0x70bd2d, 0x25dfdbff, {}, "248c11570189665b0c0b63bc6ebd69c40af63a3ae73a35fe60771843d0bc90a727e2f95b8ebf3aae7dc16e803f0f0c6238d2cc5ec28811f7e672562cdbb8cccbbb9495e6eee362c42d030cf9efcd56b91d61fe"}, 0x68}, 0x1, 0x0, 0x0, 0x4000001}, 0x4001)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x13, 0x401, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/suspend_stats/failed_resume\x00', 0x8d40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)=""/203, 0xcb)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_fops_atomic_t_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/fail_make_request/space\x00', 0x48981, 0x0)
write$auto(r4, &(0x7f0000000200)='0\x00\xa6C\x1b\xad\xb1\x9e\xc8Tt\xa8\x87\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\xaf\x14\x8a\xcf\xe8\xe8,-d\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\xf6\xf1\xe9\x17\xb3\xc1\x13\x00\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3Ch\x03&\x1c\r&\xf9i\xa8\x01\xdbBr\'\x83\'d`\x05\x10\x9d\x8f*E\xfb\x9c\rTD\xa3\xc5\x1bWZ\xb8Q7]E\x84v\x17M\xd3\xf3\x1c\xd4.\vA\xad\x88\x85\xe3vi\xd6', 0x4)
exit$auto(0x8)
mmap$auto(0x0, 0x8, 0x1000000004, 0x13, 0x3, 0x0)
sendmsg$auto_SMC_NETLINK_ENABLE_HS_LIMITATION(r3, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000004c0)={&(0x7f00000003c0)={0xdc, r1, 0x20, 0x70bd29, 0x25dfdbfc, {}, "3981b97b0a416b48a095d2889cdb025a9b5e1787fb529a62f37f88ea62ad1e9b825f793ff69845e708bb9ba52281f7110f8ccee9f9b781865d8edbc535cd5ce1e4d27d393cd8cfcb9742252dc6d27e3e716d7c5bd638c214e4a7942243c7e5901c180a85bc14e444c196d06c010872cf224e05db2ace84c49680fbb8d0cc1add3e526bb63559f740f5293626574cc3a6bde07824ceb284912276b9a4f893540e31c74b83c9447d44b7c126ac38da65ce1740a0d1e633dcf07f8f09561a8464893af53b5bd529058b"}, 0xdc}, 0x1, 0x0, 0x0, 0x20000880}, 0x240c4011)
read$auto(0x3, 0x0, 0x8)

1.659625671s ago: executing program 4 (id=720):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x4000804)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000180), 0xffffffffffffffff)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
semctl$auto(0x7, 0x2, 0x13, 0x1)
lsm_list_modules$auto(0x0, 0x0, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0xff00)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x3000000, 0x0, 0x1, 0x0, 0x10000000000000, 0x2}, 0x895}, 0x3, 0x0)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x15, 0x8}, 0x7)

1.527874411s ago: executing program 1 (id=721):
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
name_to_handle_at$auto(0x1010, &(0x7f00000001c0)='/\x00', &(0x7f0000000000)={0xc, 0x75c0237c, "6d962c000400003344980946"}, 0x0, 0x200)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
get_mempolicy$auto(0xfffffffffffffffe, 0x0, 0x3, 0x1ff, 0x3)

1.424635698s ago: executing program 2 (id=722):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) (async)
r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0) (async)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x6d75) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
socket(0x2b, 0x1, 0x1)
mmap$auto(0xffffffffffffffff, 0x8000000000000001, 0x4000000000df, 0x10eb1, r2, 0x8001) (async)
r3 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/007/001\x00', 0x8c002, 0x0)
read$auto(r3, 0x0, 0x80) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000007c0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r4, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000f00)=ANY=[@ANYBLOB="33040000", @ANYRES16=r5, @ANYBLOB="050725bd7000fbdbdf251c000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x880) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
setsockopt$auto(r1, 0x6, 0x1, 0x0, 0x1) (async)
ioctl$auto(0x3, 0xae60, 0x10000000000402) (async)
write$auto(r0, &(0x7f0000000080)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x5) (async)
ioctl$auto(0x3, 0xae41, 0x38) (async)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000) (async)
socket(0x2, 0x5, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0x4138ae84, 0x0) (async)
request_key$auto_KEY_SPEC_REQUESTOR_KEYRING(0x0, 0x0, 0x0, 0xfffffffffffffff8)
sendmsg$auto_WG_CMD_GET_DEVICE(0xffffffffffffffff, 0x0, 0x2000c041) (async)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) (async)
r7 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r7, 0x107, 0x1012, 0x0, 0x8)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mbind$auto(0x6000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)

1.337574013s ago: executing program 3 (id=723):
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/audit\x00', 0x200, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d5)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/pcmC0D0p\x00', 0xa00, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ram4\x00', 0xdd01, 0x0)
ioctl$auto_BLKRRPART(r1, 0x125f, 0x27)
open(0x0, 0x161342, 0x100)
msync$auto(0x1ffff000, 0x1800000ff010000, 0x400000004)
r2 = open(0x0, 0xeee00, 0x31)
mmap$auto(0x0, 0x4b, 0xc, 0xeb1, r1, 0x8000)
ioctl$auto_USB_RAW_IOCTL_EP_WRITE(r2, 0x40085507, &(0x7f0000000140)={0x7f, 0x0, 0xfffffff8, "b99c42edbbba4d43f1b0d8bcbe48ee4379900f1c499f211d89f130fb7481f254aebda947fd11c7274f995e703f20a4a428c8bba5d60017171c82d6ad45c286d1add862458a742eaab4e1320d80702befbb69300dfc9601ad0b184d0e9606525791c6999a51e246059c7e96ebfabc2e3b78cdc9f5a5a81ce7f2cea36d"})
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/fail-nth\x00', 0x24000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
socket(0xa, 0x801, 0x106)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
statx$auto(0x564, 0xfffffffffffffffc, 0x1000, 0x3, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r7, &(0x7f0000004240)={0x0, 0x0, &(0x7f0000004200)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010029bd7000fedbdf25043451bd88ace2d46d290000f212e8cf854959eb3603b71da06887e6bd851bd7aaafafd6ca8baef5cd1a9cf551dabf57478f0955db42352dd9f4d7548088159ad60884337448c8bdf090c761f8a8a0b6434d0d514479e971c2dc1c3560eff8cdfdac549d2d548c50db9ed0af1413f9b1bc4402d1bc5960ed3560bd9cef04925700ead52fab184120edffda972f"], 0x1c}, 0x1, 0x0, 0x0, 0x4000060}, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
read$auto(r6, 0x0, 0x3)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="01002bbd7000fadbdf250400000008000c0002000000f1b899364135157c9f24eedcf1c5af"], 0x1c}}, 0x4044820)
mmap$auto(0x4, 0x2020009, 0x0, 0xeb0, 0xfffffffffffffffa, 0x48)

1.336643841s ago: executing program 1 (id=724):
mmap$auto(0x0, 0x0, 0xa, 0x7c, 0xffffffffffffffff, 0xffffffffffeffffb)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x406095e3f928701a, 0x0)
pwrite64$auto(r0, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x5)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="9ccffa036c25bd7000fddbdf2504000008"], 0x14}, 0x1, 0x0, 0x0, 0x404c884}, 0x64004890)
readahead$auto(r0, 0x4, 0x0)
sysfs$auto(0x3, 0x401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setgroups$auto(0xc00000000, 0xfffffffffffffffc)
setresgid$auto(0x81, 0x800000a0, 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
keyctl$auto(0x5, 0xffffeffffffffffe, 0x107, 0x803, 0x800000000000c)
setresuid$auto(0x2, 0x7, 0x8080)
keyctl$auto(0x6, 0xfffffbfffffffffe, 0x2, 0x32, 0xfff)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
semget$auto(0x0, 0x13e, 0x1ff)
recvmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x1c, &(0x7f00000000c0)={0x0, 0x8001}, 0x400000000000002, 0x0, 0x5, 0xfff}}, 0x7, 0x5, 0x0)
semtimedop$auto(0x0, &(0x7f0000000140)={0x7, 0x81, 0x70}, 0x1f4, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0xa, 0x0)
r3 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r3, 0x8, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x9, 0xfffffffffffeffff, 0x10000df, 0xfdfffffffffffff7, 0xffffffffffffffff, 0xf)

1.077374767s ago: executing program 4 (id=725):
r0 = socket(0xa, 0x2, 0x73)
sendto$auto(r0, 0x0, 0x402, 0xfffffffe, &(0x7f0000000000)=@llc={0x1a, 0x337, 0x7, 0x2, 0x6, 0x40, @multicast}, 0x1c)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x102, 0x0)
ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r2, 0x80045104, &(0x7f0000000040))
read$auto_mon_fops_binary_mon_bin(0xffffffffffffffff, &(0x7f0000000100)=""/83, 0x53)
pread64$auto(r1, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{W\xed>\xe7l\xcb\x90\\/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x400)
adjtimex$auto(&(0x7f0000000000)={0xffffeff0, 0x0, 0x7, 0x21f8, 0xe1d, 0x3, 0x3, 0x0, 0xfffffffffffffff7, 0x4, 0x80000000004, {0x5, 0x2}, 0x8000000252, 0x5, 0x400000003, 0x1, 0x0, 0x4, 0x9, 0xc578, 0x6, 0x400, 0x7ff})
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x25, 0x6, 0x8001)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r4)
ioctl$auto_KVM_GET_MSRS(r3, 0xc008ae88, &(0x7f0000000040)={0x2, 0x0, [{0x40000108, 0x400, 0x9}]})
mmap$auto(0x100000000, 0xe8, 0x78c, 0x10, r1, 0x7ff)

672.504967ms ago: executing program 4 (id=726):
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001640), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31)
ioctl$auto_SNDRV_TIMER_IOCTL_START_OLD(r1, 0x5420, 0x0)
mmap$auto(0x0, 0x99, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
read$auto(r2, 0x0, 0x7)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
socket(0x2b, 0x1, 0x1)
socket(0x8, 0x80805, 0x0)
keyctl$auto_KEYCTL_CLEAR(0x7, 0x7, 0x9, 0x2, 0x4662)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/printk_devkmsg\x00', 0x202, 0x0)
read$auto(r4, &(0x7f0000000040)='/proc/sys/kernel/printk_devkmsg\x00', 0x9)
sendfile$auto(r4, r4, 0x0, 0x7fffe000)
setsockopt$auto(0x1, 0x1, 0x4c, &(0x7f0000000000)='\x00', 0xbb)
unshare$auto(0x40000080)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000140)={{0x1, 0xfffffffd, 0x2007fd, 0xffffffff, 0xfffffffb}, "0dd7fd00d6d51700001000"})
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, 0x0)

462.70421ms ago: executing program 1 (id=727):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_secret$auto(0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate$auto(0x3, 0x700)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4)
r0 = gettid()
r1 = socket(0x1e, 0x1, 0x0)
listen$auto(0x3, 0x81)
r2 = accept$auto(0x3, 0x0, 0x0)
kill$auto(r0, 0x11)
io_uring_setup$auto(0x6, 0x0)
r3 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), r1)
sendmsg$auto_NFC_CMD_LLC_SDREQ(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x84, r3, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0x6c500000}, @NFC_ATTR_SE_APDU={0x18, 0x19, "0c237ed6739d525683e8beef9ea01c4e35f3b0cb"}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x5}, @NFC_ATTR_RF_MODE={0x5, 0xb, 0x9}, @NFC_ATTR_FIRMWARE_NAME={0x5, 0x14, ')'}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0xc}, @NFC_ATTR_FIRMWARE_NAME={0x4}, @NFC_ATTR_FIRMWARE_NAME={0x6, 0x14, '$!'}, @NFC_ATTR_LLC_SDP={0x24, 0x13, 0x0, 0x1, [@typed={0x4, 0x20}, @nested={0x1c, 0x5, 0x0, 0x1, [@nested={0x4, 0x104}, @typed={0x8, 0x85, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0xc, 0xde, 0x0, 0x0, @u64=0x7}]}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x4000000}, 0x40804)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
memfd_secret$auto(0x0) (async)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ftruncate$auto(0x3, 0x700) (async)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x4) (async)
gettid() (async)
socket(0x1e, 0x1, 0x0) (async)
listen$auto(0x3, 0x81) (async)
accept$auto(0x3, 0x0, 0x0) (async)
kill$auto(r0, 0x11) (async)
io_uring_setup$auto(0x6, 0x0) (async)
syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), r1) (async)
sendmsg$auto_NFC_CMD_LLC_SDREQ(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x84, r3, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0x6c500000}, @NFC_ATTR_SE_APDU={0x18, 0x19, "0c237ed6739d525683e8beef9ea01c4e35f3b0cb"}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x5}, @NFC_ATTR_RF_MODE={0x5, 0xb, 0x9}, @NFC_ATTR_FIRMWARE_NAME={0x5, 0x14, ')'}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, 0xc}, @NFC_ATTR_FIRMWARE_NAME={0x4}, @NFC_ATTR_FIRMWARE_NAME={0x6, 0x14, '$!'}, @NFC_ATTR_LLC_SDP={0x24, 0x13, 0x0, 0x1, [@typed={0x4, 0x20}, @nested={0x1c, 0x5, 0x0, 0x1, [@nested={0x4, 0x104}, @typed={0x8, 0x85, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0xc, 0xde, 0x0, 0x0, @u64=0x7}]}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x4000000}, 0x40804) (async)

247.565328ms ago: executing program 2 (id=728):
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000) (async)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) (async, rerun: 64)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f00000089c0)='/sys/kernel/debug/netdevsim/netdevsim1/max_vfs\x00', 0x101000, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0xfffffffffffffffd, 0xdf, 0x10, 0x2, 0x8000) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x6, 0x4, 0xb4, 0x9, 0x6, 0x10003, 0x7c, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x5, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x575]}, 0x1fe, 0xd)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) (rerun: 32)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1100"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) (async, rerun: 64)
r1 = socket(0x10, 0x2, 0x0) (rerun: 64)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1f, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async)
socket(0x3, 0x80000, 0x6) (async)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socketpair$auto(0x1, 0x2164, 0x8000000000000000, 0x0) (async)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async, rerun: 64)
mmap$auto(0x6, 0x400008, 0xe2, 0x9b72, r0, 0x8000) (async, rerun: 64)
close_range$auto(0x2, 0xa, 0x0) (async, rerun: 64)
r3 = socket(0xa, 0x3, 0x101) (rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sysfs$auto(0x3ff, 0x401, 0x1)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2021082}, 0xc, &(0x7f0000000380)={&(0x7f0000000440)={0x1a0, 0x0, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@HWSIM_ATTR_USE_CHANCTX={0x4}, @HWSIM_ATTR_CIPHER_SUPPORT={0x96, 0x18, "aff33d2b70176fd46e7f04ea5482be3bb170287df35e836094b63511396d24a0f09a3cc0e3383a01b6ca6036b21c227276b69494a8487745008995b41e8970fe591c27a927a08f9c9e508fd2ce993b319e4b58fa623d713b5ce8449e34c5ef3bd19e005d84af39cc331bbc838cc20928c2b504125be7f53dcaa0d0bf0d3f8d1f44008999394c391e938da859da238e3c39e6"}, @HWSIM_ATTR_SIGNAL={0x8}, @HWSIM_ATTR_PMSR_SUPPORT={0xcc, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0xc8, 0x4, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x7b}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x5}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x8d}, @NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0xffff}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x10}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0xd}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xfffffffc}, @NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST={0x5, 0x8, 0x3}, @NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_CAPA_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS={0x8, 0x6, 0x2}, @NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES={0x8, 0x5, 0xc}]}]}]}, @HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x7}, @HWSIM_ATTR_TX_INFO={0x6, 0x7, [{0x8, 0x80}]}, @HWSIM_ATTR_PMSR_SUPPORT={0xc, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}, @NL80211_PMSR_ATTR_REPORT_AP_TSF={0x4}]}]}, 0x1a0}, 0x1, 0x0, 0x0, 0x804}, 0x0) (rerun: 64)
read$auto(0x3, 0x0, 0xf34) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'bond0\x00'})

0s ago: executing program 1 (id=729):
open(0x0, 0x90400, 0x92)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x31000, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/tunl0/statistics/tx_bytes\x00', 0x121040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000300)=""/6, 0x6)
io_uring_setup$auto(0xf, 0x0)
socket(0x18, 0xa, 0x1)
ioctl$auto(0x3, 0x80045500, 0x38)
r1 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000400), 0x80001, 0x0)
ioctl$auto(r1, 0x3b8a, 0x38)
open(0x0, 0x90400, 0x92) (async)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) (async)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x31000, 0x0) (async)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/tunl0/statistics/tx_bytes\x00', 0x121040, 0x0) (async)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000300)=""/6, 0x6) (async)
io_uring_setup$auto(0xf, 0x0) (async)
socket(0x18, 0xa, 0x1) (async)
ioctl$auto(0x3, 0x80045500, 0x38) (async)
openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000400), 0x80001, 0x0) (async)
ioctl$auto(r1, 0x3b8a, 0x38) (async)

kernel console output (not intermixed with test programs):

enamed from eth2
[  108.771031][ T5834] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  108.832796][ T5835] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  108.867339][ T5835] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  108.888303][ T5835] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  108.925437][ T5835] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  109.005604][ T5840] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  109.017271][ T5840] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  109.030149][ T5840] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  109.042220][ T5840] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  109.138851][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.199714][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.230534][ T5831] 8021q: adding VLAN 0 to HW filter on device team0
[  109.252634][ T3498] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.259965][ T3498] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.312770][ T3498] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.319998][ T3498] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.350846][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[  109.383796][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.405347][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.412615][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.445309][ T5139] Bluetooth: hci0: command tx timeout
[  109.467402][ T1331] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.474650][ T1331] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.524337][ T5139] Bluetooth: hci1: command tx timeout
[  109.539258][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[  109.588186][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.595416][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.605580][ T5139] Bluetooth: hci2: command tx timeout
[  109.613333][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.620534][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.640565][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.684689][ T5139] Bluetooth: hci3: command tx timeout
[  109.699013][ T5840] 8021q: adding VLAN 0 to HW filter on device team0
[  109.778856][ T1129] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.786075][ T1129] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.799445][ T1129] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.806691][ T1129] bridge0: port 2(bridge_slave_1) entered forwarding state
[  110.284648][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.380598][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.441570][ T5831] veth0_vlan: entered promiscuous mode
[  110.495251][ T5831] veth1_vlan: entered promiscuous mode
[  110.572180][ T5834] veth0_vlan: entered promiscuous mode
[  110.598278][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.612159][ T5834] veth1_vlan: entered promiscuous mode
[  110.625447][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.638755][ T5831] veth0_macvtap: entered promiscuous mode
[  110.668222][ T5831] veth1_macvtap: entered promiscuous mode
[  110.739695][ T5834] veth0_macvtap: entered promiscuous mode
[  110.758051][ T5834] veth1_macvtap: entered promiscuous mode
[  110.784004][ T5840] veth0_vlan: entered promiscuous mode
[  110.798704][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.827919][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.847798][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.856601][ T5840] veth1_vlan: entered promiscuous mode
[  110.876144][ T5835] veth0_vlan: entered promiscuous mode
[  110.894088][ T5835] veth1_vlan: entered promiscuous mode
[  110.905389][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.913884][ T5831] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.923113][ T5831] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.932908][ T5831] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.941991][ T5831] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.981514][ T5834] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.991102][ T5834] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.000451][ T5834] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.009318][ T5834] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.099424][ T5840] veth0_macvtap: entered promiscuous mode
[  111.171284][   T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.180577][ T5840] veth1_macvtap: entered promiscuous mode
[  111.188399][   T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.196810][ T5835] veth0_macvtap: entered promiscuous mode
[  111.242494][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0
[  111.271645][ T5835] veth1_macvtap: entered promiscuous mode
[  111.288375][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1
[  111.341397][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.352778][ T5840] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  111.356485][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.369151][ T5840] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.369224][ T5840] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.369267][ T5840] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.457425][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[  111.470319][ T1331] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.479087][ T1331] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.485525][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[  111.509869][ T5835] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  111.520534][ T5835] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.529846][ T5139] Bluetooth: hci0: command tx timeout
[  111.536310][ T5835] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.546257][ T5835] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.561587][ T1331] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.577789][ T1331] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.604704][ T5139] Bluetooth: hci1: command tx timeout
[  111.636104][ T3498] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.652390][ T5831] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  111.653300][ T3498] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.684381][ T5139] Bluetooth: hci2: command tx timeout
[  111.765125][ T5139] Bluetooth: hci3: command tx timeout
[  111.807285][ T3498] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.816570][ T3498] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.231472][   T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.297353][   T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.467453][   T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.467484][   T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.541104][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  113.604720][ T5139] Bluetooth: hci0: command tx timeout
[  113.684378][ T5139] Bluetooth: hci1: command tx timeout
[  113.764400][ T5139] Bluetooth: hci2: command tx timeout
[  113.859077][ T5139] Bluetooth: hci3: command tx timeout
[  113.873435][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  113.883361][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  113.995170][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  114.003804][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  114.077227][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  114.322850][ T5922] mmap: syz.0.5 (5922) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  115.234464][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  115.254452][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  115.263107][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  115.534752][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[  116.097191][ T5933] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  116.951266][ T5941] bond0: option all_slaves_active: invalid value ()
[  118.289627][ T5966] =======================================================
[  118.289627][ T5966] WARNING: The mand mount option has been deprecated and
[  118.289627][ T5966]          and is ignored by this kernel. Remove the mand
[  118.289627][ T5966]          option from the mount to silence this warning.
[  118.289627][ T5966] =======================================================
[  118.522336][ T5971] Invalid ELF header magic: != ELF
[  118.574026][ T5974] capability: warning: `syz.3.14' uses 32-bit capabilities (legacy support in use)
[  119.417361][ T5967] bond0: option all_slaves_active: invalid value ()
[  119.914841][ T5964] bond0: option all_slaves_active: invalid value ()
[  120.306165][ T5977] kexec: Could not allocate control_code_buffer
[  121.735489][ T6010] Zero length message leads to an empty skb
[  122.729137][ T6018] ubi0: attaching mtd0
[  122.737747][ T6018] ubi0: scanning is finished
[  122.746751][ T6018] ubi0: empty MTD device detected
[  123.157072][ T6030] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations!
[  123.450650][ T6018] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  123.513089][ T6018] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  123.715723][ T6018] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  123.804207][ T6018] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  124.035792][ T6018] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  124.044517][ T6018] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  124.064304][ T6018] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1094882837
[  124.076186][ T6018] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  124.105434][ T6032] ubi0: background thread "ubi_bgt0d" started, PID 6032
[  125.618449][ T6059] netlink: 40 bytes leftover after parsing attributes in process `syz.3.29'.
[  126.811376][ T6064] syz.1.30 (6064) used greatest stack depth: 19912 bytes left
[  128.037512][ T6088] program syz.0.33 is using a deprecated SCSI ioctl, please convert it to SG_IO

syzkaller
syzkaller login: [  133.823415][ T6151] QAT: failed to copy from user.
[  134.579323][ T6144] ICMPv6: process `syz.3.44' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead
[  135.806794][ T6155] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  135.813238][ T6155] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  136.033516][ T6155] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  136.055232][ T6155] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  136.079054][ T6155] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  136.202811][ T6155] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  136.353837][ T6155] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  136.361582][ T6155] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  136.373329][ T6155] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  136.402857][ T6155] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  136.418461][ T6155] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  136.444975][ T6155] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  137.045168][ T5139] Bluetooth: hci0: command 0x0c1a tx timeout
[  137.785410][ T6201] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5
[  138.013507][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  138.020104][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  138.087431][ T5139] Bluetooth: hci1: command 0x0c1a tx timeout
[  138.405146][ T5139] Bluetooth: hci3: command 0x0c1a tx timeout
[  138.411224][ T5139] Bluetooth: hci2: command 0x0c1a tx timeout
[  138.496280][ T6203] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6
[  139.124423][ T5139] Bluetooth: hci0: command 0x0c1a tx timeout
[  140.007722][ T6210] bond0: option all_slaves_active: invalid value ()
[  140.037925][ T6212] bond0: option all_slaves_active: invalid value ()
[  140.172294][ T5139] Bluetooth: hci1: command 0x0c1a tx timeout
[  140.484244][ T5139] Bluetooth: hci2: command 0x0c1a tx timeout
[  140.491059][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout
[  140.591524][ T6226] netlink: 326 bytes leftover after parsing attributes in process `syz.1.57'.
[  141.054037][ T6233] bond0: option all_slaves_active: invalid value ()
[  141.207887][ T5837] Bluetooth: hci0: command 0x0c1a tx timeout
[  142.244303][ T5837] Bluetooth: hci1: command 0x0c1a tx timeout
[  142.564514][ T5837] Bluetooth: hci3: command 0x0c1a tx timeout
[  142.570569][ T5139] Bluetooth: hci2: command 0x0c1a tx timeout
[  145.274383][ T6277] bond0: option all_slaves_active: invalid value ()
[  145.379240][ T6278] bond0: option all_slaves_active: invalid value ()
[  145.602481][ T6302] FAULT_INJECTION: forcing a failure.
[  145.602481][ T6302] name failslab, interval 1, probability 0, space 0, times 1
[  145.735574][ T6302] CPU: 0 UID: 0 PID: 6302 Comm: syz.2.70 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  145.735620][ T6302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  145.735637][ T6302] Call Trace:
[  145.735646][ T6302]  <TASK>
[  145.735657][ T6302]  dump_stack_lvl+0x16c/0x1f0
[  145.735700][ T6302]  should_fail_ex+0x512/0x640
[  145.735736][ T6302]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  145.735769][ T6302]  should_failslab+0xc2/0x120
[  145.735801][ T6302]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  145.735829][ T6302]  ? __kernfs_new_node+0xd2/0x8a0
[  145.735857][ T6302]  __kernfs_new_node+0xd2/0x8a0
[  145.735884][ T6302]  ? __pfx___kernfs_new_node+0x10/0x10
[  145.735915][ T6302]  ? find_held_lock+0x2b/0x80
[  145.735947][ T6302]  ? kernfs_root+0xee/0x2a0
[  145.735976][ T6302]  kernfs_new_node+0x13c/0x1e0
[  145.736009][ T6302]  __kernfs_create_file+0x53/0x350
[  145.736047][ T6302]  sysfs_add_file_mode_ns+0x207/0x3c0
[  145.736095][ T6302]  internal_create_group+0x578/0xf30
[  145.736128][ T6302]  ? __pfx_internal_create_group+0x10/0x10
[  145.736157][ T6302]  ? kernfs_create_link+0x1bd/0x240
[  145.736198][ T6302]  internal_create_groups+0x9d/0x150
[  145.736226][ T6302]  device_add+0x6d1/0x1a70
[  145.736265][ T6302]  ? __pfx_device_add+0x10/0x10
[  145.736301][ T6302]  ? lockdep_init_map_type+0x5c/0x280
[  145.736346][ T6302]  ? __init_waitqueue_head+0xca/0x150
[  145.736384][ T6302]  netdev_register_kobject+0x182/0x3a0
[  145.736435][ T6302]  register_netdevice+0x13dc/0x2270
[  145.736490][ T6302]  ? __pfx_register_netdevice+0x10/0x10
[  145.736551][ T6302]  ldisc_open+0x481/0x970
[  145.736582][ T6302]  ? __pfx_ldisc_open+0x10/0x10
[  145.736614][ T6302]  ? tty_set_ldisc+0x2b8/0x780
[  145.736650][ T6302]  ? down_write+0x14d/0x200
[  145.736685][ T6302]  ? __pfx_ldisc_open+0x10/0x10
[  145.736723][ T6302]  tty_ldisc_open+0x9c/0x120
[  145.736760][ T6302]  tty_set_ldisc+0x32b/0x780
[  145.736792][ T6302]  tty_ioctl+0xc42/0x1610
[  145.736825][ T6302]  ? __pfx_tty_ioctl+0x10/0x10
[  145.736866][ T6302]  ? find_held_lock+0x2b/0x80
[  145.736888][ T6302]  ? hook_file_ioctl_common+0x145/0x410
[  145.736925][ T6302]  ? __fget_files+0x20e/0x3c0
[  145.736982][ T6302]  ? __pfx_tty_ioctl+0x10/0x10
[  145.737014][ T6302]  __x64_sys_ioctl+0x193/0x200
[  145.737051][ T6302]  do_syscall_64+0xcd/0x230
[  145.737093][ T6302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.737117][ T6302] RIP: 0033:0x7fb3fbd8e969
[  145.737136][ T6302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.737166][ T6302] RSP: 002b:00007fb3fcca5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  145.737190][ T6302] RAX: ffffffffffffffda RBX: 00007fb3fbfb6080 RCX: 00007fb3fbd8e969
[  145.737206][ T6302] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000014
[  145.737220][ T6302] RBP: 00007fb3fbe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  145.737234][ T6302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  145.737248][ T6302] R13: 0000000000000000 R14: 00007fb3fbfb6080 R15: 00007ffd57a13a08
[  145.737279][ T6302]  </TASK>
[  146.577869][ T6276] bond0: option all_slaves_active: invalid value ()
[  146.681975][ T6277] bond0: option all_slaves_active: invalid value ()
[  149.852722][ T6326] bond0: option all_slaves_active: invalid value ()
[  152.166513][ T6374] netlink: 'syz.0.79': attribute type 1 has an invalid length.
[  152.400161][ T6358] bond0: option all_slaves_active: invalid value ()
[  156.279829][ T6397] FAULT_INJECTION: forcing a failure.
[  156.279829][ T6397] name fail_futex, interval 1, probability 0, space 0, times 1
[  156.323554][ T6397] CPU: 1 UID: 0 PID: 6397 Comm: syz.1.82 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  156.323598][ T6397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.323616][ T6397] Call Trace:
[  156.323626][ T6397]  <TASK>
[  156.323638][ T6397]  dump_stack_lvl+0x16c/0x1f0
[  156.323690][ T6397]  should_fail_ex+0x512/0x640
[  156.323745][ T6397]  get_futex_key+0x49e/0x1000
[  156.323784][ T6397]  ? __pfx_get_futex_key+0x10/0x10
[  156.323831][ T6397]  futex_wake+0xe7/0x4e0
[  156.323874][ T6397]  ? __pfx_futex_wake+0x10/0x10
[  156.323917][ T6397]  ? kmem_cache_free+0x2d4/0x4d0
[  156.323950][ T6397]  ? fd_install+0x225/0x750
[  156.323993][ T6397]  ? putname+0x154/0x1a0
[  156.324033][ T6397]  do_futex+0x1e3/0x350
[  156.324069][ T6397]  ? __pfx_do_futex+0x10/0x10
[  156.324112][ T6397]  ? __pfx___schedule+0x10/0x10
[  156.324157][ T6397]  __x64_sys_futex+0x1e0/0x4c0
[  156.324195][ T6397]  ? __x64_sys_openat+0x174/0x210
[  156.324252][ T6397]  ? __pfx___x64_sys_futex+0x10/0x10
[  156.324280][ T6397]  ? rcu_is_watching+0x12/0xc0
[  156.324325][ T6397]  do_syscall_64+0xcd/0x230
[  156.324364][ T6397]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.324387][ T6397] RIP: 0033:0x7f849758e969
[  156.324406][ T6397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.324428][ T6397] RSP: 002b:00007f84983680e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  156.324449][ T6397] RAX: ffffffffffffffda RBX: 00007f84977b6248 RCX: 00007f849758e969
[  156.324464][ T6397] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f84977b624c
[  156.324479][ T6397] RBP: 00007f84977b6240 R08: 00007f84983cc000 R09: 0000000000000000
[  156.324493][ T6397] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f84977b624c
[  156.324507][ T6397] R13: 0000000000000000 R14: 00007fffb5d9ba20 R15: 00007fffb5d9bb08
[  156.324535][ T6397]  </TASK>
[  156.923761][ T6397] input input7: cannot allocate more than FF_MAX_EFFECTS effects
[  158.606443][ T6410] netlink: 'syz.3.84': attribute type 11 has an invalid length.
[  158.625144][ T6410] netlink: 'syz.3.84': attribute type 11 has an invalid length.
[  158.633406][ T6410] netlink: 'syz.3.84': attribute type 11 has an invalid length.
[  159.477363][ T6413] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78808
[  159.544290][ T6413] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  159.627915][ T6413] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  159.648404][ T6413] page_type: f5(slab)
[  159.658591][ T6413] raw: 00fff00000000040 ffff88801ca91640 0000000000000000 0000000000000001
[  159.674845][ T6413] raw: 0000000000000000 0000000000070007 00000000f5000000 0000000000000000
[  159.683625][ T6413] head: 00fff00000000040 ffff88801ca91640 0000000000000000 0000000000000001
[  159.696133][ T6413] head: 0000000000000000 0000000000070007 00000000f5000000 0000000000000000
[  159.705047][ T6413] head: 00fff00000000003 ffffea0001e20201 00000000ffffffff 00000000ffffffff
[  159.713842][ T6413] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  159.771173][ T6413] page dumped because: unmovable page
[  159.776897][ T6413] page_owner tracks the page as allocated
[  159.783705][ T6413] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5843, tgid 5843 (udevd), ts 141269933494, free_ts 141261266661
[  159.804870][ T6413]  post_alloc_hook+0x181/0x1b0
[  159.809803][ T6413]  get_page_from_freelist+0x135c/0x3920
[  159.834428][ T6413]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  159.840448][ T6413]  alloc_pages_mpol+0x1fb/0x550
[  159.892897][ T6413]  new_slab+0x244/0x340
[  159.897676][ T6413]  ___slab_alloc+0xd9c/0x1940
[  159.902702][ T6413]  __slab_alloc.constprop.0+0x56/0xb0
[  159.908678][ T6413]  kmem_cache_alloc_noprof+0xef/0x3b0
[  159.918535][ T6413]  getname_flags.part.0+0x4c/0x550
[  159.928983][ T6413]  __x64_sys_unlink+0xb0/0x110
[  159.935719][ T6413]  do_syscall_64+0xcd/0x230
[  159.943613][ T6413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.958654][ T6413] page last free pid 6241 tgid 6236 stack trace:
[  159.967155][ T6413]  __free_frozen_pages+0x69d/0xff0
[  159.977487][ T6413]  __put_partials+0x16d/0x1c0
[  159.994564][ T6413]  qlist_free_all+0x4e/0x120
[  160.000522][ T6413]  kasan_quarantine_reduce+0x195/0x1e0
[  160.042639][ T6413]  __kasan_slab_alloc+0x69/0x90
[  160.205525][ T6413]  __kmalloc_node_track_caller_noprof+0x1d3/0x510
[  160.297696][ T6413]  kstrndup+0x6d/0x160
[  160.302024][ T6413]  bonding_sysfs_store_option+0x67/0x120
[  160.307895][ T6413]  dev_attr_store+0x55/0x80
[  160.312553][ T6413]  sysfs_kf_write+0xef/0x150
[  160.332660][ T6413]  kernfs_fop_write_iter+0x354/0x510
[  160.362500][ T6410] could not allocate digest TFM handle 
[  160.362626][ T6413]  do_iter_readv_writev+0x657/0x950
[  160.373505][ T6413]  vfs_writev+0x353/0xdc0
[  160.453058][ T6413]  do_pwritev+0x1af/0x270
[  160.467058][ T6413]  do_syscall_64+0xcd/0x230
[  160.516331][ T6413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.903939][ T6442] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  163.020317][ T6447] Invalid ELF header magic: != ELF
[  174.339833][ T6579] kexec: Could not allocate control_code_buffer
[  174.517991][ T6599] ACPI: Can not change Invalid GPE/Fixed Event status
[  182.609744][ T6731] syz.0.144 uses obsolete (PF_INET,SOCK_PACKET)
[  186.759546][ T6805] binder: 6803:6805 ioctl c0306201 0 returned -14
[  189.718308][ T6873] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[  189.919596][ T6878] process 'syz.0.177' launched '/dev/fd/4' with NULL argv: empty string added
[  189.973681][ T6883] openvswitch: netlink: push_nsh: missing base or metadata attributes
[  190.341214][ T6888] FAULT_INJECTION: forcing a failure.
[  190.341214][ T6888] name failslab, interval 1, probability 0, space 0, times 0
[  190.364668][ T6888] CPU: 1 UID: 0 PID: 6888 Comm: syz.3.179 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  190.364715][ T6888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  190.364733][ T6888] Call Trace:
[  190.364744][ T6888]  <TASK>
[  190.364759][ T6888]  dump_stack_lvl+0x16c/0x1f0
[  190.364814][ T6888]  should_fail_ex+0x512/0x640
[  190.364863][ T6888]  ? fs_reclaim_acquire+0xae/0x150
[  190.364916][ T6888]  should_failslab+0xc2/0x120
[  190.364956][ T6888]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  190.365004][ T6888]  ? security_inode_alloc+0x3b/0x2b0
[  190.365051][ T6888]  security_inode_alloc+0x3b/0x2b0
[  190.365091][ T6888]  inode_init_always_gfp+0xce4/0x1030
[  190.365130][ T6888]  alloc_inode+0x86/0x240
[  190.365173][ T6888]  new_inode+0x22/0x1c0
[  190.365209][ T6888]  ? alloc_fd+0x471/0x7d0
[  190.365240][ T6888]  shmem_get_inode+0x19a/0xfb0
[  190.365279][ T6888]  __shmem_file_setup+0x16f/0x300
[  190.365318][ T6888]  __do_sys_memfd_create+0x267/0x8a0
[  190.365367][ T6888]  do_syscall_64+0xcd/0x230
[  190.365419][ T6888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.365452][ T6888] RIP: 0033:0x7efe90f8e969
[  190.365477][ T6888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.365507][ T6888] RSP: 002b:00007efe91e7e038 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  190.365537][ T6888] RAX: ffffffffffffffda RBX: 00007efe911b6080 RCX: 00007efe90f8e969
[  190.365558][ T6888] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  190.365575][ T6888] RBP: 00007efe91010ab1 R08: 0000000000000000 R09: 0000000000000000
[  190.365593][ T6888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  190.365612][ T6888] R13: 0000000000000000 R14: 00007efe911b6080 R15: 00007ffc2a37d3b8
[  190.365651][ T6888]  </TASK>
[  193.351181][ T6933] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  194.178306][ T6938] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  194.189900][ T6938] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  194.197596][ T6938] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  194.213169][ T6938] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  195.766880][ T5139] Bluetooth: hci0: command 0x0c1a tx timeout
[  196.256055][ T5139] Bluetooth: hci3: command 0x0c1a tx timeout
[  196.256096][ T5833] Bluetooth: hci2: command 0x0c1a tx timeout
[  196.262138][ T5139] Bluetooth: hci1: command 0x0c1a tx timeout
[  198.376665][ T7014] FAULT_INJECTION: forcing a failure.
[  198.376665][ T7014] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  198.411296][ T7014] CPU: 1 UID: 0 PID: 7014 Comm: syz.1.204 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  198.411337][ T7014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  198.411354][ T7014] Call Trace:
[  198.411363][ T7014]  <TASK>
[  198.411374][ T7014]  dump_stack_lvl+0x16c/0x1f0
[  198.411425][ T7014]  should_fail_ex+0x512/0x640
[  198.411478][ T7014]  should_fail_alloc_page+0xe7/0x130
[  198.411519][ T7014]  prepare_alloc_pages+0x3c2/0x610
[  198.411574][ T7014]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  198.411618][ T7014]  ? __lock_acquire+0x5ca/0x1ba0
[  198.411682][ T7014]  ? find_held_lock+0x2b/0x80
[  198.411714][ T7014]  ? __update_page_owner_handle+0x37c/0x530
[  198.411756][ T7014]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  198.411799][ T7014]  ? __lock_acquire+0xaa4/0x1ba0
[  198.411858][ T7014]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  198.411908][ T7014]  ? policy_nodemask+0xea/0x4e0
[  198.411951][ T7014]  alloc_pages_mpol+0x1fb/0x550
[  198.411994][ T7014]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  198.412049][ T7014]  alloc_pages_noprof+0x131/0x390
[  198.412091][ T7014]  __pud_alloc+0x39/0x690
[  198.412141][ T7014]  __handle_mm_fault+0x996/0x2a40
[  198.412188][ T7014]  ? __pfx___handle_mm_fault+0x10/0x10
[  198.412256][ T7014]  ? find_vma+0xbf/0x140
[  198.412302][ T7014]  ? __pfx_find_vma+0x10/0x10
[  198.412354][ T7014]  handle_mm_fault+0x3fe/0xad0
[  198.412398][ T7014]  do_user_addr_fault+0x7a6/0x1370
[  198.412432][ T7014]  ? rcu_is_watching+0x12/0xc0
[  198.412465][ T7014]  ? rcu_is_watching+0x12/0xc0
[  198.412499][ T7014]  exc_page_fault+0x5c/0xc0
[  198.412546][ T7014]  asm_exc_page_fault+0x26/0x30
[  198.412576][ T7014] RIP: 0010:copy_iovec_from_user+0x84/0x170
[  198.412627][ T7014] Code: e8 61 dd ee fc 4d 85 ff 0f 85 c6 00 00 00 e8 a3 e2 ee fc 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 8e e2 ee fc 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 bc dd ee fc 85 db 0f 85 b1 00
[  198.412657][ T7014] RSP: 0018:ffffc90003c3fb90 EFLAGS: 00050246
[  198.412682][ T7014] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff84cbcd1f
[  198.412701][ T7014] RDX: ffff8880268e5a00 RSI: ffffffff84cbcd42 RDI: 0000000000000006
[  198.412720][ T7014] RBP: 0000200000000000 R08: 0000000000000006 R09: 0000200000000000
[  198.412738][ T7014] R10: 0000200000000010 R11: 0000000000000000 R12: ffffc90003c3fcd0
[  198.412757][ T7014] R13: 0000000000000001 R14: 00007ffffffff000 R15: dffffc0000000000
[  198.412788][ T7014]  ? copy_iovec_from_user+0x5f/0x170
[  198.412838][ T7014]  ? copy_iovec_from_user+0x82/0x170
[  198.412900][ T7014]  iovec_from_user+0xa2/0x140
[  198.412949][ T7014]  io_sqe_buffers_register+0x318/0x850
[  198.412986][ T7014]  ? __lock_acquire+0xaa4/0x1ba0
[  198.413029][ T7014]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  198.413075][ T7014]  ? __pfx___mutex_trylock_common+0x10/0x10
[  198.413123][ T7014]  __io_uring_register+0x2248/0x2310
[  198.413157][ T7014]  ? trace_contention_end+0xdd/0x130
[  198.413197][ T7014]  ? __pfx___io_uring_register+0x10/0x10
[  198.413225][ T7014]  ? __mutex_lock+0x1ca/0xb90
[  198.413284][ T7014]  ? __x64_sys_io_uring_register+0x159/0x280
[  198.413318][ T7014]  ? __pfx___mutex_lock+0x10/0x10
[  198.413398][ T7014]  ? __fget_files+0x20e/0x3c0
[  198.413424][ T7014]  ? __fput_deferred+0x350/0x370
[  198.413476][ T7014]  __x64_sys_io_uring_register+0x169/0x280
[  198.413517][ T7014]  do_syscall_64+0xcd/0x230
[  198.413567][ T7014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.413598][ T7014] RIP: 0033:0x7f849758e969
[  198.413623][ T7014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.413653][ T7014] RSP: 002b:00007f8498368038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  198.413681][ T7014] RAX: ffffffffffffffda RBX: 00007f84977b6240 RCX: 00007f849758e969
[  198.413701][ T7014] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  198.413719][ T7014] RBP: 00007f8498368090 R08: 0000000000000000 R09: 0000000000000000
[  198.413737][ T7014] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000001
[  198.413754][ T7014] R13: 0000000000000000 R14: 00007f84977b6240 R15: 00007fffb5d9bb08
[  198.413795][ T7014]  </TASK>
[  199.458542][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  199.465156][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  201.455379][ T7056] netlink: 8 bytes leftover after parsing attributes in process `syz.2.213'.
[  201.797634][ T7063] FAULT_INJECTION: forcing a failure.
[  201.797634][ T7063] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  201.811360][ T7063] CPU: 0 UID: 0 PID: 7063 Comm: syz.1.214 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  201.811397][ T7063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  201.811414][ T7063] Call Trace:
[  201.811423][ T7063]  <TASK>
[  201.811434][ T7063]  dump_stack_lvl+0x16c/0x1f0
[  201.811484][ T7063]  should_fail_ex+0x512/0x640
[  201.811548][ T7063]  should_fail_alloc_page+0xe7/0x130
[  201.811587][ T7063]  prepare_alloc_pages+0x3c2/0x610
[  201.811639][ T7063]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  201.811679][ T7063]  ? __lock_acquire+0x5ca/0x1ba0
[  201.811720][ T7063]  ? find_held_lock+0x2b/0x80
[  201.811750][ T7063]  ? __update_page_owner_handle+0x37c/0x530
[  201.811783][ T7063]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  201.811840][ T7063]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  201.811881][ T7063]  ? policy_nodemask+0xea/0x4e0
[  201.811922][ T7063]  alloc_pages_mpol+0x1fb/0x550
[  201.811959][ T7063]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  201.812004][ T7063]  ? do_raw_spin_lock+0x12c/0x2b0
[  201.812047][ T7063]  ? find_held_lock+0x2b/0x80
[  201.812081][ T7063]  alloc_pages_noprof+0x131/0x390
[  201.812120][ T7063]  __pmd_alloc+0x3f/0x870
[  201.812169][ T7063]  __handle_mm_fault+0x948/0x2a40
[  201.812211][ T7063]  ? __pfx___handle_mm_fault+0x10/0x10
[  201.812265][ T7063]  ? find_vma+0xbf/0x140
[  201.812306][ T7063]  ? __pfx_find_vma+0x10/0x10
[  201.812351][ T7063]  handle_mm_fault+0x3fe/0xad0
[  201.812388][ T7063]  do_user_addr_fault+0x7a6/0x1370
[  201.812417][ T7063]  ? rcu_is_watching+0x12/0xc0
[  201.812447][ T7063]  ? rcu_is_watching+0x12/0xc0
[  201.812478][ T7063]  exc_page_fault+0x5c/0xc0
[  201.812520][ T7063]  asm_exc_page_fault+0x26/0x30
[  201.812548][ T7063] RIP: 0010:copy_iovec_from_user+0x84/0x170
[  201.812595][ T7063] Code: e8 61 dd ee fc 4d 85 ff 0f 85 c6 00 00 00 e8 a3 e2 ee fc 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 8e e2 ee fc 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 bc dd ee fc 85 db 0f 85 b1 00
[  201.812620][ T7063] RSP: 0018:ffffc90003687b90 EFLAGS: 00050246
[  201.812642][ T7063] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff84cbcd1f
[  201.812659][ T7063] RDX: ffff88803000da00 RSI: ffffffff84cbcd42 RDI: 0000000000000006
[  201.812676][ T7063] RBP: 0000200000000000 R08: 0000000000000006 R09: 0000200000000000
[  201.812692][ T7063] R10: 0000200000000010 R11: 0000000000000000 R12: ffffc90003687cd0
[  201.812709][ T7063] R13: 0000000000000001 R14: 00007ffffffff000 R15: dffffc0000000000
[  201.812738][ T7063]  ? copy_iovec_from_user+0x5f/0x170
[  201.812783][ T7063]  ? copy_iovec_from_user+0x82/0x170
[  201.812840][ T7063]  iovec_from_user+0xa2/0x140
[  201.812873][ T7063]  io_sqe_buffers_register+0x318/0x850
[  201.812905][ T7063]  ? __lock_acquire+0xaa4/0x1ba0
[  201.812967][ T7063]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  201.813016][ T7063]  ? __pfx___mutex_trylock_common+0x10/0x10
[  201.813064][ T7063]  __io_uring_register+0x2248/0x2310
[  201.813098][ T7063]  ? trace_contention_end+0xdd/0x130
[  201.813142][ T7063]  ? __pfx___io_uring_register+0x10/0x10
[  201.813171][ T7063]  ? __mutex_lock+0x1ca/0xb90
[  201.813222][ T7063]  ? __x64_sys_io_uring_register+0x159/0x280
[  201.813260][ T7063]  ? __pfx___mutex_lock+0x10/0x10
[  201.813318][ T7063]  ? __fget_files+0x20e/0x3c0
[  201.813343][ T7063]  ? __fput_deferred+0x350/0x370
[  201.813394][ T7063]  __x64_sys_io_uring_register+0x169/0x280
[  201.813433][ T7063]  do_syscall_64+0xcd/0x230
[  201.813484][ T7063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.813514][ T7063] RIP: 0033:0x7f849758e969
[  201.813538][ T7063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.813566][ T7063] RSP: 002b:00007f8498368038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  201.813592][ T7063] RAX: ffffffffffffffda RBX: 00007f84977b6240 RCX: 00007f849758e969
[  201.813611][ T7063] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  201.813628][ T7063] RBP: 00007f8498368090 R08: 0000000000000000 R09: 0000000000000000
[  201.813646][ T7063] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000001
[  201.813662][ T7063] R13: 0000000000000000 R14: 00007f84977b6240 R15: 00007fffb5d9bb08
[  201.813702][ T7063]  </TASK>
[  203.019761][ T7050] zswap: compressor  not available
[  204.471042][ T7094] zswap: compressor  not available
[  205.434287][ T7121] FAULT_INJECTION: forcing a failure.
[  205.434287][ T7121] name failslab, interval 1, probability 0, space 0, times 0
[  205.447145][ T7121] CPU: 0 UID: 0 PID: 7121 Comm: syz.2.225 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  205.447183][ T7121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  205.447200][ T7121] Call Trace:
[  205.447210][ T7121]  <TASK>
[  205.447221][ T7121]  dump_stack_lvl+0x16c/0x1f0
[  205.447293][ T7121]  should_fail_ex+0x512/0x640
[  205.447341][ T7121]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  205.447384][ T7121]  should_failslab+0xc2/0x120
[  205.447425][ T7121]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  205.447462][ T7121]  ? __pmd_alloc+0xc3/0x870
[  205.447515][ T7121]  __pmd_alloc+0xc3/0x870
[  205.447570][ T7121]  __handle_mm_fault+0x948/0x2a40
[  205.447617][ T7121]  ? __pfx___handle_mm_fault+0x10/0x10
[  205.447676][ T7121]  ? find_vma+0xbf/0x140
[  205.447720][ T7121]  ? __pfx_find_vma+0x10/0x10
[  205.447770][ T7121]  handle_mm_fault+0x3fe/0xad0
[  205.447813][ T7121]  do_user_addr_fault+0x7a6/0x1370
[  205.447846][ T7121]  ? rcu_is_watching+0x12/0xc0
[  205.447880][ T7121]  ? rcu_is_watching+0x12/0xc0
[  205.447921][ T7121]  exc_page_fault+0x5c/0xc0
[  205.447969][ T7121]  asm_exc_page_fault+0x26/0x30
[  205.448000][ T7121] RIP: 0010:copy_iovec_from_user+0x84/0x170
[  205.448052][ T7121] Code: e8 61 dd ee fc 4d 85 ff 0f 85 c6 00 00 00 e8 a3 e2 ee fc 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 8e e2 ee fc 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 bc dd ee fc 85 db 0f 85 b1 00
[  205.448082][ T7121] RSP: 0018:ffffc90003447b90 EFLAGS: 00050246
[  205.448107][ T7121] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff84cbcd1f
[  205.448125][ T7121] RDX: ffff888030eb8000 RSI: ffffffff84cbcd42 RDI: 0000000000000006
[  205.448145][ T7121] RBP: 0000200000000000 R08: 0000000000000006 R09: 0000200000000000
[  205.448165][ T7121] R10: 0000200000000010 R11: 0000000000000000 R12: ffffc90003447cd0
[  205.448184][ T7121] R13: 0000000000000001 R14: 00007ffffffff000 R15: dffffc0000000000
[  205.448216][ T7121]  ? copy_iovec_from_user+0x5f/0x170
[  205.448265][ T7121]  ? copy_iovec_from_user+0x82/0x170
[  205.448330][ T7121]  iovec_from_user+0xa2/0x140
[  205.448366][ T7121]  io_sqe_buffers_register+0x318/0x850
[  205.448402][ T7121]  ? __lock_acquire+0xaa4/0x1ba0
[  205.448450][ T7121]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  205.448507][ T7121]  ? __pfx___mutex_trylock_common+0x10/0x10
[  205.448555][ T7121]  __io_uring_register+0x2248/0x2310
[  205.448589][ T7121]  ? trace_contention_end+0xdd/0x130
[  205.448629][ T7121]  ? __pfx___io_uring_register+0x10/0x10
[  205.448658][ T7121]  ? __mutex_lock+0x1ca/0xb90
[  205.448709][ T7121]  ? __x64_sys_io_uring_register+0x159/0x280
[  205.448745][ T7121]  ? __pfx___mutex_lock+0x10/0x10
[  205.448804][ T7121]  ? __fget_files+0x20e/0x3c0
[  205.448829][ T7121]  ? __fput_deferred+0x350/0x370
[  205.448882][ T7121]  __x64_sys_io_uring_register+0x169/0x280
[  205.448927][ T7121]  do_syscall_64+0xcd/0x230
[  205.448978][ T7121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.449009][ T7121] RIP: 0033:0x7fb3fbd8e969
[  205.449033][ T7121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.449062][ T7121] RSP: 002b:00007fb3fcc63038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  205.449089][ T7121] RAX: ffffffffffffffda RBX: 00007fb3fbfb6240 RCX: 00007fb3fbd8e969
[  205.449108][ T7121] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  205.449125][ T7121] RBP: 00007fb3fcc63090 R08: 0000000000000000 R09: 0000000000000000
[  205.449142][ T7121] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000001
[  205.449159][ T7121] R13: 0000000000000000 R14: 00007fb3fbfb6240 R15: 00007ffd57a13a08
[  205.449199][ T7121]  </TASK>

syzkaller
syzkaller login: [  209.660308][ T7175] FAULT_INJECTION: forcing a failure.
[  209.660308][ T7175] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  209.673781][ T7175] CPU: 0 UID: 0 PID: 7175 Comm: syz.2.235 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  209.673820][ T7175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  209.673837][ T7175] Call Trace:
[  209.673847][ T7175]  <TASK>
[  209.673857][ T7175]  dump_stack_lvl+0x16c/0x1f0
[  209.673908][ T7175]  should_fail_ex+0x512/0x640
[  209.673959][ T7175]  should_fail_alloc_page+0xe7/0x130
[  209.674002][ T7175]  prepare_alloc_pages+0x3c2/0x610
[  209.674060][ T7175]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  209.674095][ T7175]  ? arch_stack_walk+0xa6/0x100
[  209.674150][ T7175]  ? stack_trace_save+0x8e/0xc0
[  209.674183][ T7175]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  209.674226][ T7175]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  209.674279][ T7175]  ? kasan_save_track+0x14/0x30
[  209.674311][ T7175]  ? __kasan_slab_alloc+0x89/0x90
[  209.674345][ T7175]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[  209.674379][ T7175]  ? __pmd_alloc+0xc3/0x870
[  209.674423][ T7175]  ? __handle_mm_fault+0x948/0x2a40
[  209.674452][ T7175]  ? handle_mm_fault+0x3fe/0xad0
[  209.674479][ T7175]  ? do_user_addr_fault+0x7a6/0x1370
[  209.674507][ T7175]  ? exc_page_fault+0x5c/0xc0
[  209.674548][ T7175]  ? asm_exc_page_fault+0x26/0x30
[  209.674575][ T7175]  ? copy_iovec_from_user+0x84/0x170
[  209.674620][ T7175]  ? iovec_from_user+0xa2/0x140
[  209.674646][ T7175]  ? io_sqe_buffers_register+0x318/0x850
[  209.674674][ T7175]  ? __io_uring_register+0x2248/0x2310
[  209.674701][ T7175]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  209.674745][ T7175]  ? policy_nodemask+0xea/0x4e0
[  209.674787][ T7175]  alloc_pages_mpol+0x1fb/0x550
[  209.674827][ T7175]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  209.674879][ T7175]  alloc_pages_noprof+0x131/0x390
[  209.674917][ T7175]  pte_alloc_one+0x19/0x380
[  209.674954][ T7175]  __pte_alloc+0x6d/0x3c0
[  209.674995][ T7175]  ? __pfx___pte_alloc+0x10/0x10
[  209.675040][ T7175]  ? do_raw_spin_lock+0x12c/0x2b0
[  209.675087][ T7175]  ? find_held_lock+0x2b/0x80
[  209.675120][ T7175]  do_pte_missing+0x2925/0x3fb0
[  209.675157][ T7175]  ? _raw_spin_unlock+0x28/0x50
[  209.675197][ T7175]  ? __pmd_alloc+0x3c2/0x870
[  209.675259][ T7175]  __handle_mm_fault+0x103d/0x2a40
[  209.675305][ T7175]  ? __pfx___handle_mm_fault+0x10/0x10
[  209.675364][ T7175]  ? find_vma+0xbf/0x140
[  209.675407][ T7175]  ? __pfx_find_vma+0x10/0x10
[  209.675457][ T7175]  handle_mm_fault+0x3fe/0xad0
[  209.675498][ T7175]  do_user_addr_fault+0x7a6/0x1370
[  209.675530][ T7175]  ? rcu_is_watching+0x12/0xc0
[  209.675562][ T7175]  ? rcu_is_watching+0x12/0xc0
[  209.675596][ T7175]  exc_page_fault+0x5c/0xc0
[  209.675640][ T7175]  asm_exc_page_fault+0x26/0x30
[  209.675669][ T7175] RIP: 0010:copy_iovec_from_user+0x84/0x170
[  209.675715][ T7175] Code: e8 61 dd ee fc 4d 85 ff 0f 85 c6 00 00 00 e8 a3 e2 ee fc 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 8e e2 ee fc 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 bc dd ee fc 85 db 0f 85 b1 00
[  209.675744][ T7175] RSP: 0018:ffffc90003c7fb90 EFLAGS: 00050246
[  209.675769][ T7175] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff84cbcd1f
[  209.675787][ T7175] RDX: ffff88802b9cbc00 RSI: ffffffff84cbcd42 RDI: 0000000000000006
[  209.675806][ T7175] RBP: 0000200000000000 R08: 0000000000000006 R09: 0000200000000000
[  209.675825][ T7175] R10: 0000200000000010 R11: 0000000000000000 R12: ffffc90003c7fcd0
[  209.675844][ T7175] R13: 0000000000000001 R14: 00007ffffffff000 R15: dffffc0000000000
[  209.675876][ T7175]  ? copy_iovec_from_user+0x5f/0x170
[  209.675924][ T7175]  ? copy_iovec_from_user+0x82/0x170
[  209.675984][ T7175]  iovec_from_user+0xa2/0x140
[  209.676020][ T7175]  io_sqe_buffers_register+0x318/0x850
[  209.676055][ T7175]  ? __lock_acquire+0xaa4/0x1ba0
[  209.676099][ T7175]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  209.676144][ T7175]  ? __pfx___mutex_trylock_common+0x10/0x10
[  209.676193][ T7175]  __io_uring_register+0x2248/0x2310
[  209.676226][ T7175]  ? trace_contention_end+0xdd/0x130
[  209.676275][ T7175]  ? __pfx___io_uring_register+0x10/0x10
[  209.676304][ T7175]  ? __mutex_lock+0x1ca/0xb90
[  209.676353][ T7175]  ? __x64_sys_io_uring_register+0x159/0x280
[  209.676390][ T7175]  ? __pfx___mutex_lock+0x10/0x10
[  209.676448][ T7175]  ? __fget_files+0x20e/0x3c0
[  209.676474][ T7175]  ? __fput_deferred+0x350/0x370
[  209.676526][ T7175]  __x64_sys_io_uring_register+0x169/0x280
[  209.676566][ T7175]  do_syscall_64+0xcd/0x230
[  209.676616][ T7175]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.676647][ T7175] RIP: 0033:0x7fb3fbd8e969
[  209.676671][ T7175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.676700][ T7175] RSP: 002b:00007fb3fcc63038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  209.676727][ T7175] RAX: ffffffffffffffda RBX: 00007fb3fbfb6240 RCX: 00007fb3fbd8e969
[  209.676747][ T7175] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  209.676765][ T7175] RBP: 00007fb3fcc63090 R08: 0000000000000000 R09: 0000000000000000
[  209.676784][ T7175] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000001
[  209.676802][ T7175] R13: 0000000000000000 R14: 00007fb3fbfb6240 R15: 00007ffd57a13a08
[  209.676844][ T7175]  </TASK>
[  211.966555][ T5833] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  211.987125][ T5833] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  211.997407][ T5833] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  212.019070][ T5833] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  212.031175][ T5833] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  213.575739][ T7190] chnl_net:caif_netlink_parms(): no params data found
[  214.054404][ T7190] bridge0: port 1(bridge_slave_0) entered blocking state
[  214.062389][ T7190] bridge0: port 1(bridge_slave_0) entered disabled state
[  214.071809][ T7190] bridge_slave_0: entered allmulticast mode
[  214.084869][ T5139] Bluetooth: hci4: command tx timeout
[  214.155654][ T7190] bridge_slave_0: entered promiscuous mode
[  214.165908][ T7190] bridge0: port 2(bridge_slave_1) entered blocking state
[  214.173111][ T7190] bridge0: port 2(bridge_slave_1) entered disabled state
[  214.215156][ T7190] bridge_slave_1: entered allmulticast mode
[  214.223139][ T7190] bridge_slave_1: entered promiscuous mode
[  214.374467][ T7190] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  214.421780][ T7190] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  214.590685][ T7235] FAULT_INJECTION: forcing a failure.
[  214.590685][ T7235] name failslab, interval 1, probability 0, space 0, times 0
[  214.604244][ T7235] CPU: 1 UID: 0 PID: 7235 Comm: syz.3.249 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  214.604281][ T7235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  214.604298][ T7235] Call Trace:
[  214.604309][ T7235]  <TASK>
[  214.604320][ T7235]  dump_stack_lvl+0x16c/0x1f0
[  214.604369][ T7235]  should_fail_ex+0x512/0x640
[  214.604414][ T7235]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  214.604453][ T7235]  should_failslab+0xc2/0x120
[  214.604493][ T7235]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  214.604530][ T7235]  ? ptlock_alloc+0x1f/0x70
[  214.604568][ T7235]  ptlock_alloc+0x1f/0x70
[  214.604598][ T7235]  pte_alloc_one+0x6d/0x380
[  214.604634][ T7235]  __pte_alloc+0x6d/0x3c0
[  214.604694][ T7235]  ? __pfx___pte_alloc+0x10/0x10
[  214.604738][ T7235]  ? do_raw_spin_lock+0x12c/0x2b0
[  214.604787][ T7235]  ? find_held_lock+0x2b/0x80
[  214.604832][ T7235]  do_pte_missing+0x2925/0x3fb0
[  214.604871][ T7235]  ? _raw_spin_unlock+0x28/0x50
[  214.604912][ T7235]  ? __pmd_alloc+0x3c2/0x870
[  214.604966][ T7235]  __handle_mm_fault+0x103d/0x2a40
[  214.605013][ T7235]  ? __pfx___handle_mm_fault+0x10/0x10
[  214.605073][ T7235]  ? find_vma+0xbf/0x140
[  214.605118][ T7235]  ? __pfx_find_vma+0x10/0x10
[  214.605169][ T7235]  handle_mm_fault+0x3fe/0xad0
[  214.605212][ T7235]  do_user_addr_fault+0x7a6/0x1370
[  214.605246][ T7235]  ? rcu_is_watching+0x12/0xc0
[  214.605279][ T7235]  ? rcu_is_watching+0x12/0xc0
[  214.605314][ T7235]  exc_page_fault+0x5c/0xc0
[  214.605360][ T7235]  asm_exc_page_fault+0x26/0x30
[  214.605390][ T7235] RIP: 0010:copy_iovec_from_user+0x84/0x170
[  214.605439][ T7235] Code: e8 61 dd ee fc 4d 85 ff 0f 85 c6 00 00 00 e8 a3 e2 ee fc 0f 01 cb 0f ae e8 49 bf 00 00 00 00 00 fc ff df e8 8e e2 ee fc 31 db <48> 8b 45 08 31 ff 89 de 49 89 c6 e8 bc dd ee fc 85 db 0f 85 b1 00
[  214.605469][ T7235] RSP: 0018:ffffc90003357b90 EFLAGS: 00050246
[  214.605494][ T7235] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff84cbcd1f
[  214.605513][ T7235] RDX: ffff888036aeda00 RSI: ffffffff84cbcd42 RDI: 0000000000000006
[  214.605532][ T7235] RBP: 0000200000000000 R08: 0000000000000006 R09: 0000200000000000
[  214.605550][ T7235] R10: 0000200000000010 R11: 0000000000000000 R12: ffffc90003357cd0
[  214.605568][ T7235] R13: 0000000000000001 R14: 00007ffffffff000 R15: dffffc0000000000
[  214.605598][ T7235]  ? copy_iovec_from_user+0x5f/0x170
[  214.605648][ T7235]  ? copy_iovec_from_user+0x82/0x170
[  214.605711][ T7235]  iovec_from_user+0xa2/0x140
[  214.605747][ T7235]  io_sqe_buffers_register+0x318/0x850
[  214.605785][ T7235]  ? __lock_acquire+0xaa4/0x1ba0
[  214.605841][ T7235]  ? __pfx_io_sqe_buffers_register+0x10/0x10
[  214.605888][ T7235]  ? __pfx___mutex_trylock_common+0x10/0x10
[  214.605939][ T7235]  __io_uring_register+0x2248/0x2310
[  214.605975][ T7235]  ? trace_contention_end+0xdd/0x130
[  214.606020][ T7235]  ? __pfx___io_uring_register+0x10/0x10
[  214.606050][ T7235]  ? __mutex_lock+0x1ca/0xb90
[  214.606100][ T7235]  ? __x64_sys_io_uring_register+0x159/0x280
[  214.606139][ T7235]  ? __pfx___mutex_lock+0x10/0x10
[  214.606200][ T7235]  ? __fget_files+0x20e/0x3c0
[  214.606227][ T7235]  ? __fput_deferred+0x350/0x370
[  214.606279][ T7235]  __x64_sys_io_uring_register+0x169/0x280
[  214.606320][ T7235]  do_syscall_64+0xcd/0x230
[  214.606372][ T7235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.606404][ T7235] RIP: 0033:0x7efe90f8e969
[  214.606429][ T7235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.606459][ T7235] RSP: 002b:00007efe91e3c038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  214.606488][ T7235] RAX: ffffffffffffffda RBX: 00007efe911b6240 RCX: 00007efe90f8e969
[  214.606508][ T7235] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  214.606527][ T7235] RBP: 00007efe91e3c090 R08: 0000000000000000 R09: 0000000000000000
[  214.606545][ T7235] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000001
[  214.606563][ T7235] R13: 0000000000000000 R14: 00007efe911b6240 R15: 00007ffc2a37d3b8
[  214.606605][ T7235]  </TASK>
[  215.510294][ T7190] team0: Port device team_slave_0 added
[  215.579887][ T7190] team0: Port device team_slave_1 added
[  215.713704][ T7190] batman_adv: batadv0: Adding interface: batadv_slave_0
[  215.722908][ T7241] netlink: 330 bytes leftover after parsing attributes in process `syz.3.251'.
[  215.742649][ T7190] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  215.798844][ T7190] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  215.867724][ T7190] batman_adv: batadv0: Adding interface: batadv_slave_1
[  215.889056][ T7190] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  215.945457][ T7190] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  216.180883][ T5139] Bluetooth: hci4: command tx timeout
[  216.201708][ T7246] netlink: 12 bytes leftover after parsing attributes in process `syz.3.252'.
[  216.224674][ T7190] hsr_slave_0: entered promiscuous mode
[  216.246616][ T7190] hsr_slave_1: entered promiscuous mode
[  216.274844][ T7190] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  216.289326][ T7190] Cannot create hsr debugfs directory
[  216.481356][ T7247] FAULT_INJECTION: forcing a failure.
[  216.481356][ T7247] name failslab, interval 1, probability 0, space 0, times 0
[  216.495205][ T7247] CPU: 1 UID: 0 PID: 7247 Comm: syz.3.252 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  216.495246][ T7247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  216.495264][ T7247] Call Trace:
[  216.495273][ T7247]  <TASK>
[  216.495285][ T7247]  dump_stack_lvl+0x16c/0x1f0
[  216.495337][ T7247]  should_fail_ex+0x512/0x640
[  216.495383][ T7247]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  216.495429][ T7247]  should_failslab+0xc2/0x120
[  216.495470][ T7247]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  216.495512][ T7247]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  216.495554][ T7247]  ? fib_notifier_ops_register+0x32/0x270
[  216.495602][ T7247]  kmemdup_noprof+0x29/0x60
[  216.495657][ T7247]  fib_notifier_ops_register+0x32/0x270
[  216.495704][ T7247]  fib4_notifier_init+0x4f/0xd0
[  216.495745][ T7247]  fib_net_init+0xbf/0x3f0
[  216.495786][ T7247]  ? __pfx___register_sysctl_table+0x10/0x10
[  216.495826][ T7247]  ? __pfx_fib_net_init+0x10/0x10
[  216.495874][ T7247]  ? lockdep_init_map_type+0x5c/0x280
[  216.495921][ T7247]  ? do_init_timer+0xc9/0x110
[  216.495959][ T7247]  ? devinet_init_net+0x5c2/0x910
[  216.496010][ T7247]  ? __pfx_fib_net_init+0x10/0x10
[  216.496049][ T7247]  ops_init+0x1e2/0x5f0
[  216.496097][ T7247]  setup_net+0x21e/0x850
[  216.496145][ T7247]  ? __pfx_setup_net+0x10/0x10
[  216.496188][ T7247]  ? lockdep_init_map_type+0x5c/0x280
[  216.496232][ T7247]  ? __pfx_down_read_killable+0x10/0x10
[  216.496270][ T7247]  ? debug_mutex_init+0x37/0x70
[  216.496308][ T7247]  copy_net_ns+0x2a6/0x5f0
[  216.496361][ T7247]  create_new_namespaces+0x3ea/0xad0
[  216.496408][ T7247]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  216.496452][ T7247]  ksys_unshare+0x45b/0xa40
[  216.496499][ T7247]  ? __pfx_ksys_unshare+0x10/0x10
[  216.496541][ T7247]  ? xfd_validate_state+0x5d/0x180
[  216.496574][ T7247]  ? rcu_is_watching+0x12/0xc0
[  216.496634][ T7247]  __x64_sys_unshare+0x31/0x40
[  216.496680][ T7247]  do_syscall_64+0xcd/0x230
[  216.496733][ T7247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.496765][ T7247] RIP: 0033:0x7efe90f8e969
[  216.496792][ T7247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.496835][ T7247] RSP: 002b:00007efe91e5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  216.496874][ T7247] RAX: ffffffffffffffda RBX: 00007efe911b6160 RCX: 00007efe90f8e969
[  216.496895][ T7247] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  216.496914][ T7247] RBP: 00007efe91010ab1 R08: 0000000000000000 R09: 0000000000000000
[  216.496932][ T7247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  216.496950][ T7247] R13: 0000000000000000 R14: 00007efe911b6160 R15: 00007ffc2a37d3b8
[  216.496991][ T7247]  </TASK>
[  216.811518][ T7245] Invalid ELF header magic: != ELF
[  217.688980][ T7190] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  217.862657][ T7190] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  217.977497][ T7190] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  218.006697][ T7190] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  218.244367][ T5139] Bluetooth: hci4: command tx timeout
[  218.326302][ T7190] 8021q: adding VLAN 0 to HW filter on device bond0
[  218.403596][ T7190] 8021q: adding VLAN 0 to HW filter on device team0
[  218.426480][ T6787] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.433864][ T6787] bridge0: port 1(bridge_slave_0) entered forwarding state
[  218.563574][ T7270] FAULT_INJECTION: forcing a failure.
[  218.563574][ T7270] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  218.577945][ T7270] CPU: 1 UID: 0 PID: 7270 Comm: syz.2.258 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  218.577984][ T7270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  218.578001][ T7270] Call Trace:
[  218.578012][ T7270]  <TASK>
[  218.578023][ T7270]  dump_stack_lvl+0x16c/0x1f0
[  218.578075][ T7270]  should_fail_ex+0x512/0x640
[  218.578128][ T7270]  _copy_to_user+0x32/0xd0
[  218.578161][ T7270]  simple_read_from_buffer+0xcb/0x170
[  218.578213][ T7270]  proc_fail_nth_read+0x197/0x270
[  218.578259][ T7270]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  218.578307][ T7270]  ? rw_verify_area+0xcf/0x680
[  218.578356][ T7270]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  218.578404][ T7270]  vfs_read+0x1de/0xc70
[  218.578453][ T7270]  ? __pfx___mutex_lock+0x10/0x10
[  218.578505][ T7270]  ? __pfx_vfs_read+0x10/0x10
[  218.578548][ T7270]  ? __fget_files+0x20e/0x3c0
[  218.578589][ T7270]  ksys_read+0x12a/0x240
[  218.578618][ T7270]  ? __pfx_ksys_read+0x10/0x10
[  218.578660][ T7270]  do_syscall_64+0xcd/0x230
[  218.578710][ T7270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.578740][ T7270] RIP: 0033:0x7fb3fbd8d37c
[  218.578764][ T7270] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  218.578792][ T7270] RSP: 002b:00007fb3fcc63030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  218.578820][ T7270] RAX: ffffffffffffffda RBX: 00007fb3fbfb6240 RCX: 00007fb3fbd8d37c
[  218.578839][ T7270] RDX: 000000000000000f RSI: 00007fb3fcc630a0 RDI: 0000000000000003
[  218.578856][ T7270] RBP: 00007fb3fcc63090 R08: 0000000000000000 R09: 0000000000000000
[  218.578874][ T7270] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000001
[  218.578893][ T7270] R13: 0000000000000000 R14: 00007fb3fbfb6240 R15: 00007ffd57a13a08
[  218.578934][ T7270]  </TASK>
[  218.811367][ T7190] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  218.823925][ T7190] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  219.018871][ T6787] bridge0: port 2(bridge_slave_1) entered blocking state
[  219.026124][ T6787] bridge0: port 2(bridge_slave_1) entered forwarding state
[  219.508238][ T7190] 8021q: adding VLAN 0 to HW filter on device batadv0
[  219.622068][ T7280] netlink: 330 bytes leftover after parsing attributes in process `syz.2.260'.
[  220.339844][ T5139] Bluetooth: hci4: command tx timeout
[  220.519160][ T5139] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  220.816552][ T7190] veth0_vlan: entered promiscuous mode
[  220.830455][ T7190] veth1_vlan: entered promiscuous mode
[  220.850306][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  220.858653][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  220.874275][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  220.889888][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  220.900860][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  220.914133][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  220.922605][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  220.931491][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  221.294782][ T7190] veth0_macvtap: entered promiscuous mode
[  221.622584][ T7190] veth1_macvtap: entered promiscuous mode
[  221.890634][ T7190] batman_adv: batadv0: Interface activated: batadv_slave_0
[  221.948864][ T7190] batman_adv: batadv0: Interface activated: batadv_slave_1
[  221.978254][ T7190] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.989475][ T7190] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.999005][ T7190] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  222.014602][ T7190] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  222.197183][ T6790] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  222.228919][ T6790] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  222.281540][ T6790] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  222.309928][ T6790] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  224.225593][ T5833] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[  224.225640][ T5833] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[  224.246432][ T5833] Bluetooth: hci4: Unknown advertising packet type: 0x7f
[  224.246506][ T5833] Bluetooth: hci4: adv larger than maximum supported
[  224.253848][ T5833] Bluetooth: hci4: Malformed LE Event: 0x0d
[  224.319181][ T7308] Invalid ELF header magic: != ELF
[  224.811699][ T7346] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  224.934269][ T7346] CIFS mount error: No usable UNC path provided in device string!
[  224.934269][ T7346] 
[  225.033613][ T7346] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  225.238066][   T30] audit: type=1400 audit(6043209100.539:2): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=7348 comm="syz.3.273"
[  227.031803][ T7386] netlink: 28 bytes leftover after parsing attributes in process `syz.1.280'.
[  228.024546][ T7402] ima: policy update failed
[  228.038526][   T30] audit: type=1802 audit(6043209103.329:3): pid=7402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.284" res=0 errno=0
[  229.669617][ T7421] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(3)
[  232.071112][ T7452] [U] 
[  234.771576][ T7513] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  237.805379][ T7556] debugfs: Directory 'ttyS2' with parent 'caif_serial' already present!
[  239.731034][ T7579] FAULT_INJECTION: forcing a failure.
[  239.731034][ T7579] name failslab, interval 1, probability 0, space 0, times 0
[  239.773763][ T7579] CPU: 0 UID: 0 PID: 7579 Comm: syz.1.319 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  239.773809][ T7579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  239.773827][ T7579] Call Trace:
[  239.773843][ T7579]  <TASK>
[  239.773856][ T7579]  dump_stack_lvl+0x16c/0x1f0
[  239.773910][ T7579]  should_fail_ex+0x512/0x640
[  239.773955][ T7579]  ? fs_reclaim_acquire+0xae/0x150
[  239.774006][ T7579]  ? tomoyo_init_log+0x1385/0x2140
[  239.774048][ T7579]  should_failslab+0xc2/0x120
[  239.774089][ T7579]  __kmalloc_noprof+0xd2/0x510
[  239.774123][ T7579]  ? __pfx_from_kuid+0x10/0x10
[  239.774179][ T7579]  tomoyo_init_log+0x1385/0x2140
[  239.774250][ T7579]  ? __pfx_tomoyo_init_log+0x10/0x10
[  239.774296][ T7579]  ? tomoyo_profile+0x47/0x60
[  239.774328][ T7579]  ? tomoyo_domain_quota_is_ok+0x2f6/0x5a0
[  239.774374][ T7579]  tomoyo_supervisor+0x302/0x13b0
[  239.774413][ T7579]  ? __pfx_tomoyo_supervisor+0x10/0x10
[  239.774471][ T7579]  ? tomoyo_check_path_acl+0xad/0x210
[  239.774512][ T7579]  ? tomoyo_check_acl+0x1f7/0x410
[  239.774575][ T7579]  tomoyo_path_permission+0x270/0x3b0
[  239.774621][ T7579]  tomoyo_check_open_permission+0x37b/0x3c0
[  239.774667][ T7579]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  239.774749][ T7579]  ? do_raw_spin_lock+0x12c/0x2b0
[  239.774807][ T7579]  tomoyo_file_open+0x6b/0x90
[  239.774849][ T7579]  security_file_open+0x84/0x1e0
[  239.774895][ T7579]  do_dentry_open+0x596/0x1c10
[  239.774943][ T7579]  vfs_open+0x82/0x3f0
[  239.774992][ T7579]  path_openat+0x1e5e/0x2d40
[  239.775039][ T7579]  ? __pfx_path_openat+0x10/0x10
[  239.775082][ T7579]  do_filp_open+0x20b/0x470
[  239.775115][ T7579]  ? __pfx_do_filp_open+0x10/0x10
[  239.775177][ T7579]  ? alloc_fd+0x471/0x7d0
[  239.775217][ T7579]  do_sys_openat2+0x11b/0x1d0
[  239.775259][ T7579]  ? __pfx_do_sys_openat2+0x10/0x10
[  239.775320][ T7579]  __x64_sys_openat+0x174/0x210
[  239.775365][ T7579]  ? __pfx___x64_sys_openat+0x10/0x10
[  239.775413][ T7579]  ? rcu_is_watching+0x12/0xc0
[  239.775455][ T7579]  do_syscall_64+0xcd/0x230
[  239.775506][ T7579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.775537][ T7579] RIP: 0033:0x7f849758e969
[  239.775563][ T7579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.775591][ T7579] RSP: 002b:00007f84983cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  239.775620][ T7579] RAX: ffffffffffffffda RBX: 00007f84977b5fa0 RCX: 00007f849758e969
[  239.775640][ T7579] RDX: 0000000000040a40 RSI: 0000200000001d40 RDI: ffffffffffffff9c
[  239.775660][ T7579] RBP: 00007f8497610ab1 R08: 0000000000000000 R09: 0000000000000000
[  239.775679][ T7579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  239.775698][ T7579] R13: 0000000000000000 R14: 00007f84977b5fa0 R15: 00007fffb5d9bb08
[  239.775738][ T7579]  </TASK>
[  240.842336][ T7589] FAULT_INJECTION: forcing a failure.
[  240.842336][ T7589] name failslab, interval 1, probability 0, space 0, times 0
[  240.953311][ T7589] CPU: 0 UID: 0 PID: 7589 Comm: syz.2.320 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  240.953355][ T7589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  240.953372][ T7589] Call Trace:
[  240.953382][ T7589]  <TASK>
[  240.953394][ T7589]  dump_stack_lvl+0x16c/0x1f0
[  240.953446][ T7589]  should_fail_ex+0x512/0x640
[  240.953491][ T7589]  ? __kmalloc_noprof+0xbf/0x510
[  240.953528][ T7589]  ? __register_sysctl_table+0xb3/0x1900
[  240.953563][ T7589]  should_failslab+0xc2/0x120
[  240.953606][ T7589]  __kmalloc_noprof+0xd2/0x510
[  240.953650][ T7589]  __register_sysctl_table+0xb3/0x1900
[  240.953688][ T7589]  ? is_module_address+0x5f/0xf0
[  240.953741][ T7589]  ? __pfx___register_sysctl_table+0x10/0x10
[  240.953775][ T7589]  ? is_module_address+0x69/0xf0
[  240.953813][ T7589]  ? register_net_sysctl_sz+0x228/0x3e0
[  240.953846][ T7589]  ? __asan_memcpy+0x3c/0x60
[  240.953878][ T7589]  devinet_init_net+0x378/0x910
[  240.953923][ T7589]  ? __pfx_devinet_init_net+0x10/0x10
[  240.953964][ T7589]  ops_init+0x1e2/0x5f0
[  240.954008][ T7589]  setup_net+0x21e/0x850
[  240.954052][ T7589]  ? __pfx_setup_net+0x10/0x10
[  240.954090][ T7589]  ? lockdep_init_map_type+0x5c/0x280
[  240.954132][ T7589]  ? __pfx_down_read_killable+0x10/0x10
[  240.954169][ T7589]  ? debug_mutex_init+0x37/0x70
[  240.954202][ T7589]  copy_net_ns+0x2a6/0x5f0
[  240.954250][ T7589]  create_new_namespaces+0x3ea/0xad0
[  240.954293][ T7589]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  240.954331][ T7589]  ksys_unshare+0x45b/0xa40
[  240.954373][ T7589]  ? __pfx_ksys_unshare+0x10/0x10
[  240.954412][ T7589]  ? xfd_validate_state+0x5d/0x180
[  240.954462][ T7589]  ? rcu_is_watching+0x12/0xc0
[  240.954501][ T7589]  __x64_sys_unshare+0x31/0x40
[  240.954542][ T7589]  do_syscall_64+0xcd/0x230
[  240.954593][ T7589]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.954641][ T7589] RIP: 0033:0x7fb3fbd8e969
[  240.954666][ T7589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.954706][ T7589] RSP: 002b:00007fb3fccc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  240.954736][ T7589] RAX: ffffffffffffffda RBX: 00007fb3fbfb5fa0 RCX: 00007fb3fbd8e969
[  240.954756][ T7589] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  240.954775][ T7589] RBP: 00007fb3fbe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  240.954794][ T7589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  240.954812][ T7589] R13: 0000000000000000 R14: 00007fb3fbfb5fa0 R15: 00007ffd57a13a08
[  240.954853][ T7589]  </TASK>
[  243.147881][ T7618] random: crng reseeded on system resumption
	
	

	

	
	

	
	

				
		
	
	
	

	

	
				
	
		


	
	

	
		
	
	
	
	
	
	
	

				


		

				

	

	
				
	
	



	
		
	

	
		
	

	
		
	

	

	
	
		
		


	

	

	
	
		
		



	
		

	


	
	

		
	
		
	
	



			








	



	




	







	









	



























	

	
	



	
	

	

	

















	



	











	


	


	



	

			
				
	
	
	
	
	
	
	

	
	
	






	




	





		








	
	

	

	
				
	
		


	
	

	
		
	
	

		

	
		
			
			


	




















	





		
	
	

	
		
	

	
		

	
		

	


	
	

		
	
		
	
	



			








	

	
	



	













		

		

	
	
		








	
	






	




	
	






	




	





		















	
		

	


	
	

		
	
		
	
	



			








	

	
	






	







		

		

	
	
		








	
	






	




	
	






	





	




		














syzkaller
syzkaller login: [  296.734465][ T8419] block nbd7: not configured, cannot reconfigure
[  299.504598][ T8454] can: request_module (can-proto-4) failed.
[  299.970297][ T8462] ALSA: mixer_oss: invalid OSS volume '0'
[  300.158878][ T8462] ALSA: mixer_oss: invalid OSS volume ''
[  300.253000][ T8465] FAULT_INJECTION: forcing a failure.
[  300.253000][ T8465] name failslab, interval 1, probability 0, space 0, times 0
[  300.274268][ T8465] CPU: 0 UID: 0 PID: 8465 Comm: syz.4.485 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  300.274310][ T8465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  300.274328][ T8465] Call Trace:
[  300.274338][ T8465]  <TASK>
[  300.274349][ T8465]  dump_stack_lvl+0x16c/0x1f0
[  300.274421][ T8465]  should_fail_ex+0x512/0x640
[  300.274468][ T8465]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  300.274503][ T8465]  should_failslab+0xc2/0x120
[  300.274542][ T8465]  __kmalloc_cache_noprof+0x6a/0x3e0
[  300.274573][ T8465]  ? shrinker_alloc+0xf5/0xbf0
[  300.274620][ T8465]  shrinker_alloc+0xf5/0xbf0
[  300.274662][ T8465]  ? mark_held_locks+0x49/0x80
[  300.274701][ T8465]  ? pcpu_memcg_post_alloc_hook+0x1e/0x740
[  300.274747][ T8465]  ? __pfx_shrinker_alloc+0x10/0x10
[  300.274794][ T8465]  ? lockdep_init_map_type+0x5c/0x280
[  300.274837][ T8465]  ? __raw_spin_lock_init+0x3a/0x110
[  300.274881][ T8465]  ? __init_rwsem+0x12d/0x1b0
[  300.274949][ T8465]  alloc_super+0x7c8/0xbd0
[  300.274983][ T8465]  ? __pfx_test_keyed_super+0x10/0x10
[  300.275027][ T8465]  sget_fc+0x116/0xc20
[  300.275057][ T8465]  ? __pfx_set_anon_super_fc+0x10/0x10
[  300.275106][ T8465]  ? __pfx_nfsd_fill_super+0x10/0x10
[  300.275137][ T8465]  get_tree_keyed+0x59/0x1d0
[  300.275178][ T8465]  vfs_get_tree+0x8b/0x340
[  300.275222][ T8465]  path_mount+0x14d4/0x1f20
[  300.275260][ T8465]  ? kmem_cache_free+0x2d4/0x4d0
[  300.275294][ T8465]  ? __pfx_path_mount+0x10/0x10
[  300.275334][ T8465]  ? putname+0x154/0x1a0
[  300.275376][ T8465]  __x64_sys_mount+0x28d/0x310
[  300.275419][ T8465]  ? __pfx___x64_sys_mount+0x10/0x10
[  300.275452][ T8465]  ? rcu_is_watching+0x12/0xc0
[  300.275495][ T8465]  do_syscall_64+0xcd/0x230
[  300.275547][ T8465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.275578][ T8465] RIP: 0033:0x7fd27b18e969
[  300.275602][ T8465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  300.275631][ T8465] RSP: 002b:00007fd27c02d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  300.275660][ T8465] RAX: ffffffffffffffda RBX: 00007fd27b3b6080 RCX: 00007fd27b18e969
[  300.275681][ T8465] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000
[  300.275700][ T8465] RBP: 00007fd27b210ab1 R08: 0000000000000000 R09: 0000000000000000
[  300.275718][ T8465] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  300.275737][ T8465] R13: 0000000000000000 R14: 00007fd27b3b6080 R15: 00007fff308d76f8
[  300.275779][ T8465]  </TASK>
[  301.038180][ T8470] FAULT_INJECTION: forcing a failure.
[  301.038180][ T8470] name failslab, interval 1, probability 0, space 0, times 0
[  301.107674][ T8470] CPU: 0 UID: 0 PID: 8470 Comm: syz.2.486 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  301.107719][ T8470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  301.107737][ T8470] Call Trace:
[  301.107748][ T8470]  <TASK>
[  301.107760][ T8470]  dump_stack_lvl+0x16c/0x1f0
[  301.107814][ T8470]  should_fail_ex+0x512/0x640
[  301.107860][ T8470]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  301.107898][ T8470]  should_failslab+0xc2/0x120
[  301.107940][ T8470]  __kmalloc_cache_noprof+0x6a/0x3e0
[  301.107973][ T8470]  ? kasan_save_stack+0x42/0x60
[  301.108006][ T8470]  ? kasan_save_stack+0x33/0x60
[  301.108038][ T8470]  ? snd_seq_queue_alloc+0x56/0x550
[  301.108112][ T8470]  snd_seq_queue_alloc+0x56/0x550
[  301.108155][ T8470]  snd_seq_ioctl_create_queue+0xa9/0x380
[  301.108204][ T8470]  snd_seq_kernel_client_ctl+0x10a/0x1c0
[  301.108261][ T8470]  alloc_seq_queue+0xda/0x180
[  301.108309][ T8470]  ? __pfx_alloc_seq_queue+0x10/0x10
[  301.108384][ T8470]  ? mark_held_locks+0x49/0x80
[  301.108427][ T8470]  ? _raw_spin_unlock_irq+0x23/0x50
[  301.108476][ T8470]  snd_seq_oss_open+0x38c/0xa20
[  301.108533][ T8470]  odev_open+0x6f/0x90
[  301.108575][ T8470]  ? __pfx_odev_open+0x10/0x10
[  301.108618][ T8470]  soundcore_open+0x40c/0x580
[  301.108666][ T8470]  ? __pfx_soundcore_open+0x10/0x10
[  301.108709][ T8470]  chrdev_open+0x231/0x6a0
[  301.108746][ T8470]  ? __pfx_apparmor_file_open+0x10/0x10
[  301.108791][ T8470]  ? __pfx_chrdev_open+0x10/0x10
[  301.108832][ T8470]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  301.108894][ T8470]  do_dentry_open+0x741/0x1c10
[  301.108932][ T8470]  ? __pfx_chrdev_open+0x10/0x10
[  301.108978][ T8470]  vfs_open+0x82/0x3f0
[  301.109028][ T8470]  path_openat+0x1e5e/0x2d40
[  301.109103][ T8470]  ? __pfx_path_openat+0x10/0x10
[  301.109152][ T8470]  do_filp_open+0x20b/0x470
[  301.109186][ T8470]  ? __pfx_do_filp_open+0x10/0x10
[  301.109253][ T8470]  ? alloc_fd+0x471/0x7d0
[  301.109295][ T8470]  do_sys_openat2+0x11b/0x1d0
[  301.109391][ T8470]  ? __pfx_do_sys_openat2+0x10/0x10
[  301.109447][ T8470]  ? find_held_lock+0x2b/0x80
[  301.109493][ T8470]  __x64_sys_openat+0x174/0x210
[  301.109540][ T8470]  ? __pfx___x64_sys_openat+0x10/0x10
[  301.109591][ T8470]  ? rcu_is_watching+0x12/0xc0
[  301.109645][ T8470]  do_syscall_64+0xcd/0x230
[  301.109703][ T8470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.109738][ T8470] RIP: 0033:0x7fb3fbd8e969
[  301.109766][ T8470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  301.109797][ T8470] RSP: 002b:00007fb3fccc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  301.109827][ T8470] RAX: ffffffffffffffda RBX: 00007fb3fbfb5fa0 RCX: 00007fb3fbd8e969
[  301.109847][ T8470] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  301.109867][ T8470] RBP: 00007fb3fbe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  301.109886][ T8470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  301.109904][ T8470] R13: 0000000000000000 R14: 00007fb3fbfb5fa0 R15: 00007ffd57a13a08
[  301.109947][ T8470]  </TASK>
[  304.248596][ T8036] syz.3.421 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  304.262684][ T8036] CPU: 0 UID: 0 PID: 8036 Comm: syz.3.421 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  304.262725][ T8036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  304.262743][ T8036] Call Trace:
[  304.262753][ T8036]  <TASK>
[  304.262764][ T8036]  dump_stack_lvl+0x16c/0x1f0
[  304.262815][ T8036]  dump_header+0x101/0x930
[  304.262861][ T8036]  oom_kill_process+0x270/0xa60
[  304.262917][ T8036]  out_of_memory+0x350/0x1700
[  304.262968][ T8036]  ? __pfx_out_of_memory+0x10/0x10
[  304.263025][ T8036]  mem_cgroup_out_of_memory+0x205/0x270
[  304.263075][ T8036]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  304.263134][ T8036]  ? do_raw_spin_unlock+0x172/0x230
[  304.263188][ T8036]  try_charge_memcg+0xa07/0x10c0
[  304.263235][ T8036]  ? __pfx_try_charge_memcg+0x10/0x10
[  304.263276][ T8036]  ? __print_lock_name+0xd1/0xe0
[  304.263307][ T8036]  ? rcu_read_unlock+0x17/0x60
[  304.263359][ T8036]  charge_memcg+0x8a/0x230
[  304.263397][ T8036]  __mem_cgroup_charge+0x2b/0x1e0
[  304.263443][ T8036]  shmem_alloc_and_add_folio+0x514/0xc20
[  304.263493][ T8036]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  304.263536][ T8036]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  304.263582][ T8036]  shmem_get_folio_gfp+0x687/0x1530
[  304.263626][ T8036]  ? __lock_acquire+0xaa4/0x1ba0
[  304.263667][ T8036]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  304.263707][ T8036]  ? __pte_offset_map_lock+0x155/0x2f0
[  304.263759][ T8036]  shmem_write_begin+0x160/0x300
[  304.263803][ T8036]  ? __pfx_shmem_write_begin+0x10/0x10
[  304.263845][ T8036]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  304.263915][ T8036]  ? __pfx_timestamp_truncate+0x10/0x10
[  304.263954][ T8036]  generic_perform_write+0x3d0/0x930
[  304.264009][ T8036]  ? __pfx_generic_perform_write+0x10/0x10
[  304.264048][ T8036]  ? inode_needs_update_time.part.0+0x191/0x270
[  304.264093][ T8036]  shmem_file_write_iter+0x10e/0x140
[  304.264140][ T8036]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  304.264180][ T8036]  __kernel_write_iter+0x317/0xa90
[  304.264214][ T8036]  ? __pfx___kernel_write_iter+0x10/0x10
[  304.264243][ T8036]  ? __up_read+0x1f8/0x750
[  304.264291][ T8036]  ? dump_user_range+0x73d/0xb30
[  304.264341][ T8036]  dump_user_range+0x418/0xb30
[  304.264392][ T8036]  ? __pfx_dump_user_range+0x10/0x10
[  304.264435][ T8036]  ? elf_coredump_extra_notes_write+0xbd/0x430
[  304.264475][ T8036]  ? __pfx_writenote+0x10/0x10
[  304.264529][ T8036]  elf_core_dump+0x288a/0x3a90
[  304.264595][ T8036]  ? __pfx_elf_core_dump+0x10/0x10
[  304.264637][ T8036]  ? kasan_save_stack+0x42/0x60
[  304.264665][ T8036]  ? kasan_save_stack+0x33/0x60
[  304.264695][ T8036]  ? kasan_save_track+0x14/0x30
[  304.264724][ T8036]  ? __kasan_kmalloc+0xaa/0xb0
[  304.264771][ T8036]  ? do_coredump+0x17aa/0x4480
[  304.264809][ T8036]  ? get_signal+0x22e3/0x26d0
[  304.264841][ T8036]  ? arch_do_signal_or_restart+0x8f/0x7a0
[  304.264900][ T8036]  ? 0xffffffffff600000
[  304.264996][ T8036]  ? do_coredump+0x3183/0x4480
[  304.265036][ T8036]  do_coredump+0x3183/0x4480
[  304.265094][ T8036]  ? __pfx_do_coredump+0x10/0x10
[  304.265141][ T8036]  ? stack_trace_save+0x8e/0xc0
[  304.265173][ T8036]  ? __pfx_stack_trace_save+0x10/0x10
[  304.265203][ T8036]  ? stack_depot_save_flags+0x28/0xa50
[  304.265253][ T8036]  ? __lock_acquire+0xaa4/0x1ba0
[  304.265302][ T8036]  ? __kasan_slab_free+0x51/0x70
[  304.265336][ T8036]  ? kmem_cache_free+0x2d4/0x4d0
[  304.265366][ T8036]  ? __sigqueue_free+0xba/0x2a0
[  304.265404][ T8036]  ? get_signal+0xcba/0x26d0
[  304.265434][ T8036]  ? arch_do_signal_or_restart+0x8f/0x7a0
[  304.265532][ T8036]  ? proc_coredump_connector+0x2d1/0x4f0
[  304.265582][ T8036]  ? __pfx_proc_coredump_connector+0x10/0x10
[  304.265643][ T8036]  ? rcu_is_watching+0x12/0xc0
[  304.265678][ T8036]  get_signal+0x22e3/0x26d0
[  304.265730][ T8036]  ? __pfx_get_signal+0x10/0x10
[  304.265766][ T8036]  ? rcu_is_watching+0x12/0xc0
[  304.265793][ T8036]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  304.265842][ T8036]  arch_do_signal_or_restart+0x8f/0x7a0
[  304.265898][ T8036]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  304.265968][ T8036]  irqentry_exit_to_user_mode+0x13f/0x280
[  304.266016][ T8036]  asm_exc_page_fault+0x26/0x30
[  304.266046][ T8036] RIP: 0033:0x1000
[  304.266074][ T8036] Code: Unable to access opcode bytes at 0xfd6.
[  304.266086][ T8036] RSP: 002b:000000000000000a EFLAGS: 00010282
[  304.266109][ T8036] RAX: 0000000000000002 RBX: 00007efe911b5fa0 RCX: 00007efe90f8e969
[  304.266127][ T8036] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  304.266144][ T8036] RBP: 00007efe91010ab1 R08: 0000000000000002 R09: 0000000000000000
[  304.266161][ T8036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  304.266178][ T8036] R13: 0000000000000000 R14: 00007efe911b5fa0 R15: 00007ffc2a37d3b8
[  304.266218][ T8036]  </TASK>
[  304.946172][ T8036] memory: usage 307200kB, limit 307200kB, failcnt 18998
[  304.980706][ T8036] memory+swap: usage 432112kB, limit 9007199254740988kB, failcnt 0
[  304.988827][ T8036] kmem: usage 3448kB, limit 9007199254740988kB, failcnt 0
[  304.995973][ T8036] Memory cgroup stats for /syz3:
[  304.996223][ T8036] cache 309649408
[  305.004847][ T8036] rss 1314816
[  305.008222][ T8036] rss_huge 0
[  305.011419][ T8036] shmem 309649408
[  305.015075][ T8036] mapped_file 17870848
[  305.019141][ T8036] dirty 0
[  305.022081][ T8036] writeback 0
[  305.025420][ T8036] workingset_refault_anon 375
[  305.030096][ T8036] workingset_refault_file 62
[  305.034703][ T8036] swap 127909888
[  305.038248][ T8036] swapcached 77824
[  305.041963][ T8036] pgpgin 212602
[  305.045566][ T8036] pgpgout 137175
[  305.049117][ T8036] pgfault 117019
[  305.054426][ T8036] pgmajfault 173
[  305.057987][ T8036] inactive_anon 162902016
[  305.062332][ T8036] active_anon 144535552
[  305.066554][ T8036] inactive_file 0
[  305.070210][ T8036] active_file 0
[  305.073672][ T8036] unevictable 0
[  305.077228][ T8036] hierarchical_memory_limit 314572800
[  305.082626][ T8036] hierarchical_memsw_limit 9223372036854771712
[  305.088859][ T8036] total_cache 309649408
[  305.093016][ T8036] total_rss 1314816
[  305.096857][ T8036] total_rss_huge 0
[  305.100580][ T8036] total_shmem 309649408
[  305.104785][ T8036] total_mapped_file 17870848
[  305.109380][ T8036] total_dirty 0
[  305.112841][ T8036] total_writeback 0
[  305.116686][ T8036] total_workingset_refault_anon 375
[  305.121904][ T8036] total_workingset_refault_file 62
[  305.127060][ T8036] total_swap 127909888
[  305.131136][ T8036] total_swapcached 77824
[  305.135397][ T8036] total_pgpgin 212602
[  305.139400][ T8036] total_pgpgout 137175
[  305.143483][ T8036] total_pgfault 117019
[  305.147623][ T8036] total_pgmajfault 173
[  305.151699][ T8036] total_inactive_anon 162902016
[  305.158079][ T8036] total_active_anon 144535552
[  305.162773][ T8036] total_inactive_file 0
[  305.166979][ T8036] total_active_file 0
[  305.170963][ T8036] total_unevictable 0
[  305.174971][ T8036] anon_cost 0
[  305.178286][ T8036] file_cost 0
[  305.181587][ T8036] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.421,pid=8064,uid=0
[  305.196672][ T8036] Memory cgroup out of memory: Killed process 8064 (syz.3.421) total-vm:131268kB, anon-rss:944kB, file-rss:21532kB, shmem-rss:17536kB, UID:0 pgtables:172kB oom_score_adj:1000
[  307.930186][   T32] oom_reaper: reaped process 8064 (syz.3.421), now anon-rss:84kB, file-rss:20432kB, shmem-rss:17536kB
[  308.706416][ T8047] syz.3.421 (8047) used greatest stack depth: 19640 bytes left
[  310.395616][ T8617] FAULT_INJECTION: forcing a failure.
[  310.395616][ T8617] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  310.571399][ T8623] i2c i2c-0: new_device: Invalid device name
[  310.690550][ T8617] CPU: 1 UID: 0 PID: 8617 Comm: syz.3.498 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  310.690614][ T8617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.690641][ T8617] Call Trace:
[  310.690656][ T8617]  <TASK>
[  310.690674][ T8617]  dump_stack_lvl+0x16c/0x1f0
[  310.690726][ T8617]  should_fail_ex+0x512/0x640
[  310.690776][ T8617]  _copy_from_iter+0x2a4/0x15b0
[  310.690827][ T8617]  ? __alloc_skb+0x200/0x380
[  310.690861][ T8617]  ? __pfx__copy_from_iter+0x10/0x10
[  310.690911][ T8617]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  310.690948][ T8617]  ? __lock_acquire+0xaa4/0x1ba0
[  310.690997][ T8617]  netlink_sendmsg+0x829/0xdd0
[  310.691044][ T8617]  ? __pfx_netlink_sendmsg+0x10/0x10
[  310.691098][ T8617]  ____sys_sendmsg+0xa95/0xc70
[  310.691145][ T8617]  ? copy_msghdr_from_user+0x10a/0x160
[  310.691181][ T8617]  ? __pfx_____sys_sendmsg+0x10/0x10
[  310.691251][ T8617]  ___sys_sendmsg+0x134/0x1d0
[  310.691287][ T8617]  ? __pfx____sys_sendmsg+0x10/0x10
[  310.691370][ T8617]  __sys_sendmsg+0x16d/0x220
[  310.691405][ T8617]  ? __pfx___sys_sendmsg+0x10/0x10
[  310.691454][ T8617]  ? rcu_is_watching+0x12/0xc0
[  310.691494][ T8617]  do_syscall_64+0xcd/0x230
[  310.691541][ T8617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.691575][ T8617] RIP: 0033:0x7efe90f8e969
[  310.691598][ T8617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.691625][ T8617] RSP: 002b:00007efe91e9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  310.691651][ T8617] RAX: ffffffffffffffda RBX: 00007efe911b5fa0 RCX: 00007efe90f8e969
[  310.691670][ T8617] RDX: fdf31875370e1716 RSI: 0000200000000140 RDI: 0000000000000003
[  310.691688][ T8617] RBP: 00007efe91e9f090 R08: 0000000000000000 R09: 0000000000000000
[  310.691706][ T8617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  310.691722][ T8617] R13: 0000000000000000 R14: 00007efe911b5fa0 R15: 00007ffc2a37d3b8
[  310.691759][ T8617]  </TASK>
[  311.812359][ T8631] FAULT_INJECTION: forcing a failure.
[  311.812359][ T8631] name failslab, interval 1, probability 0, space 0, times 0
[  311.851865][ T8631] CPU: 0 UID: 0 PID: 8631 Comm: syz.2.503 Not tainted 6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  311.851912][ T8631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  311.851931][ T8631] Call Trace:
[  311.851941][ T8631]  <TASK>
[  311.851954][ T8631]  dump_stack_lvl+0x16c/0x1f0
[  311.852010][ T8631]  should_fail_ex+0x512/0x640
[  311.852060][ T8631]  ? fs_reclaim_acquire+0xae/0x150
[  311.852115][ T8631]  should_failslab+0xc2/0x120
[  311.852160][ T8631]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  311.852200][ T8631]  ? security_inode_alloc+0x3b/0x2b0
[  311.852260][ T8631]  security_inode_alloc+0x3b/0x2b0
[  311.852301][ T8631]  inode_init_always_gfp+0xce4/0x1030
[  311.852339][ T8631]  alloc_inode+0x86/0x240
[  311.852379][ T8631]  alloc_anon_inode+0x28/0x3e0
[  311.852420][ T8631]  secretmem_file_create.constprop.0+0x4d/0x2c0
[  311.852467][ T8631]  __x64_sys_memfd_secret+0xc5/0x1a0
[  311.852509][ T8631]  do_syscall_64+0xcd/0x230
[  311.852559][ T8631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.852591][ T8631] RIP: 0033:0x7fb3fbd8e969
[  311.852615][ T8631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.852644][ T8631] RSP: 002b:00007fb3fcca5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[  311.852674][ T8631] RAX: ffffffffffffffda RBX: 00007fb3fbfb6080 RCX: 00007fb3fbd8e969
[  311.852695][ T8631] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  311.852712][ T8631] RBP: 00007fb3fbe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  311.852730][ T8631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  311.852748][ T8631] R13: 0000000000000000 R14: 00007fb3fbfb6080 R15: 00007ffd57a13a08
[  311.852789][ T8631]  </TASK>
[  312.129522][ T8050] syz.3.421 (8050) used greatest stack depth: 19320 bytes left
[  312.169414][ T8631] netlink: 'syz.2.503': attribute type 1 has an invalid length.
[  312.431229][ T8037] syz.3.421 (8037) used greatest stack depth: 18376 bytes left
[  313.471548][    C1] vcan0: j1939_xtp_rx_dat: no tx connection found
[  314.228373][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807d4d0000: rx timeout, send abort
[  314.413814][ T8659] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  314.737773][    C1] vcan0: j1939_tp_rxtimer: 0xffff88807d4d0000: abort rx timeout. Force session deactivation
[  315.370694][ T8668] block2mtd: illegal erase size
[  315.377953][   T30] audit: type=1326 audit(6043209190.679:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8667 comm="syz.1.512" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f849758e969 code=0x0
[  320.524570][ T8784] sg_read: process 807 (syz.3.530) changed security contexts after opening file descriptor, this is not allowed.
[  320.785820][ T8793] random: crng reseeded on system resumption
[  321.441306][ T8811] netlink: 28 bytes leftover after parsing attributes in process `syz.4.536'.
[  321.748371][ T8811] bond0: (slave bond_slave_0): Releasing backup interface
[  322.330184][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  322.344071][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  323.499214][ T8843] netlink: 296 bytes leftover after parsing attributes in process `syz.2.545'.
[  324.310936][ T8871] sd 0:0:1:0: PR command failed: 1026
[  324.343234][ T8871] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  324.412271][ T8862] Setting dangerous option i915.mitigations - tainting kernel
[  324.427904][ T8871] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  325.598293][ T8887] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  326.153245][ T8912] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9
[  326.302246][ T5833] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  326.302292][ T5833] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[  326.318413][ T5833] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  327.312754][ T8928] FAULT_INJECTION: forcing a failure.
[  327.312754][ T8928] name failslab, interval 1, probability 0, space 0, times 0
[  327.336305][ T8928] CPU: 1 UID: 0 PID: 8928 Comm: syz.2.559 Tainted: G     U              6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  327.336360][ T8928] Tainted: [U]=USER
[  327.336371][ T8928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  327.336389][ T8928] Call Trace:
[  327.336400][ T8928]  <TASK>
[  327.336412][ T8928]  dump_stack_lvl+0x16c/0x1f0
[  327.336466][ T8928]  should_fail_ex+0x512/0x640
[  327.336514][ T8928]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  327.336551][ T8928]  should_failslab+0xc2/0x120
[  327.336591][ T8928]  __kmalloc_cache_noprof+0x6a/0x3e0
[  327.336623][ T8928]  ? snd_seq_pool_new+0x44/0x230
[  327.336653][ T8928]  ? __pfx_snd_seq_open+0x10/0x10
[  327.336698][ T8928]  snd_seq_pool_new+0x44/0x230
[  327.336729][ T8928]  seq_create_client1+0x66/0x5e0
[  327.336780][ T8928]  ? __pfx_snd_seq_open+0x10/0x10
[  327.336822][ T8928]  snd_seq_open+0x59/0x550
[  327.336871][ T8928]  ? __pfx_snd_seq_open+0x10/0x10
[  327.336914][ T8928]  snd_open+0x1fe/0x450
[  327.336961][ T8928]  ? __pfx_snd_open+0x10/0x10
[  327.337003][ T8928]  chrdev_open+0x231/0x6a0
[  327.337046][ T8928]  ? __pfx_apparmor_file_open+0x10/0x10
[  327.337093][ T8928]  ? __pfx_chrdev_open+0x10/0x10
[  327.337131][ T8928]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  327.337190][ T8928]  do_dentry_open+0x741/0x1c10
[  327.337227][ T8928]  ? __pfx_chrdev_open+0x10/0x10
[  327.337274][ T8928]  vfs_open+0x82/0x3f0
[  327.337322][ T8928]  path_openat+0x1e5e/0x2d40
[  327.337371][ T8928]  ? __pfx_path_openat+0x10/0x10
[  327.337417][ T8928]  do_filp_open+0x20b/0x470
[  327.337452][ T8928]  ? __pfx_do_filp_open+0x10/0x10
[  327.337518][ T8928]  ? alloc_fd+0x471/0x7d0
[  327.337560][ T8928]  do_sys_openat2+0x11b/0x1d0
[  327.337605][ T8928]  ? __pfx_do_sys_openat2+0x10/0x10
[  327.337666][ T8928]  __x64_sys_openat+0x174/0x210
[  327.337713][ T8928]  ? __pfx___x64_sys_openat+0x10/0x10
[  327.337763][ T8928]  ? rcu_is_watching+0x12/0xc0
[  327.337808][ T8928]  do_syscall_64+0xcd/0x230
[  327.337862][ T8928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.337894][ T8928] RIP: 0033:0x7fb3fbd8e969
[  327.337920][ T8928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.337952][ T8928] RSP: 002b:00007fb3fccc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  327.337982][ T8928] RAX: ffffffffffffffda RBX: 00007fb3fbfb5fa0 RCX: 00007fb3fbd8e969
[  327.338003][ T8928] RDX: 0000000000040a40 RSI: 0000200000001d40 RDI: ffffffffffffff9c
[  327.338022][ T8928] RBP: 00007fb3fbe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  327.338050][ T8928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  327.338069][ T8928] R13: 0000000000000000 R14: 00007fb3fbfb5fa0 R15: 00007ffd57a13a08
[  327.338113][ T8928]  </TASK>
[  327.344736][ T8913] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input10
[  328.340699][ T8943] netlink: 330 bytes leftover after parsing attributes in process `syz.2.562'.
[  329.267573][ T8943] ubi0: detaching mtd0
[  329.341629][ T8943] ubi0: mtd0 is detached
[  329.431632][ T5833] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  329.439742][ T5833] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:0'
[  329.452114][ T5833] CPU: 0 UID: 0 PID: 5833 Comm: kworker/u9:2 Tainted: G     U              6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  329.452165][ T5833] Tainted: [U]=USER
[  329.452176][ T5833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  329.452196][ T5833] Workqueue: hci2 hci_rx_work
[  329.452230][ T5833] Call Trace:
[  329.452242][ T5833]  <TASK>
[  329.452253][ T5833]  dump_stack_lvl+0x16c/0x1f0
[  329.452303][ T5833]  sysfs_warn_dup+0x7f/0xa0
[  329.452355][ T5833]  sysfs_create_dir_ns+0x24b/0x2b0
[  329.452405][ T5833]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  329.452451][ T5833]  ? find_held_lock+0x2b/0x80
[  329.452489][ T5833]  ? do_raw_spin_unlock+0x172/0x230
[  329.452540][ T5833]  kobject_add_internal+0x2c4/0x9b0
[  329.452589][ T5833]  kobject_add+0x16e/0x240
[  329.452620][ T5833]  ? __pfx_kobject_add+0x10/0x10
[  329.452652][ T5833]  ? do_raw_spin_unlock+0x172/0x230
[  329.452704][ T5833]  ? kobject_put+0xab/0x5a0
[  329.452744][ T5833]  device_add+0x288/0x1a70
[  329.452789][ T5833]  ? __pfx_dev_set_name+0x10/0x10
[  329.452839][ T5833]  ? __pfx_device_add+0x10/0x10
[  329.452886][ T5833]  ? mgmt_send_event_skb+0x2fb/0x460
[  329.452950][ T5833]  hci_conn_add_sysfs+0x17e/0x230
[  329.452987][ T5833]  le_conn_complete_evt+0x1075/0x1d70
[  329.453045][ T5833]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  329.453096][ T5833]  ? bt_warn+0xe4/0x120
[  329.453141][ T5833]  ? __pfx_bt_warn+0x10/0x10
[  329.453196][ T5833]  hci_le_conn_complete_evt+0x23c/0x370
[  329.453280][ T5833]  hci_le_meta_evt+0x2f6/0x5e0
[  329.453314][ T5833]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  329.453373][ T5833]  hci_event_packet+0x66c/0x1190
[  329.453428][ T5833]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  329.453465][ T5833]  ? __pfx_hci_event_packet+0x10/0x10
[  329.453525][ T5833]  ? kcov_remote_start+0x3c9/0x6d0
[  329.453580][ T5833]  ? lockdep_hardirqs_on+0x7c/0x110
[  329.453639][ T5833]  hci_rx_work+0x2c5/0x16b0
[  329.453677][ T5833]  ? rcu_is_watching+0x12/0xc0
[  329.453715][ T5833]  process_one_work+0x9cf/0x1b70
[  329.453785][ T5833]  ? __pfx_process_one_work+0x10/0x10
[  329.453850][ T5833]  ? assign_work+0x1a0/0x250
[  329.453903][ T5833]  worker_thread+0x6c8/0xf10
[  329.453968][ T5833]  ? __kthread_parkme+0x19e/0x250
[  329.454011][ T5833]  ? __pfx_worker_thread+0x10/0x10
[  329.454060][ T5833]  kthread+0x3c2/0x780
[  329.454109][ T5833]  ? __pfx_kthread+0x10/0x10
[  329.454153][ T5833]  ? __pfx_kthread+0x10/0x10
[  329.454198][ T5833]  ? __pfx_kthread+0x10/0x10
[  329.454243][ T5833]  ? __pfx_kthread+0x10/0x10
[  329.454287][ T5833]  ? rcu_is_watching+0x12/0xc0
[  329.454316][ T5833]  ? __pfx_kthread+0x10/0x10
[  329.454361][ T5833]  ret_from_fork+0x48/0x80
[  329.454389][ T5833]  ? __pfx_kthread+0x10/0x10
[  329.454432][ T5833]  ret_from_fork_asm+0x1a/0x30
[  329.454506][ T5833]  </TASK>
[  329.454543][ T5833] kobject: kobject_add_internal failed for hci2:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  329.743665][ T5833] Bluetooth: hci2: failed to register connection device
[  331.219342][ T8978] usb usb24: check_ctrlrecip: process 8978 (syz.1.568) requesting ep 01 but needs 81
[  331.270779][ T8978] usb usb24: usbfs: process 8978 (syz.1.568) did not claim interface 0 before use
[  332.292413][ T8985] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input11
[  333.204637][ T8997] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12
[  334.598498][ T5139] Bluetooth: hci4: command 0x0406 tx timeout
[  338.341116][   T30] audit: type=1804 audit(6043211266.692:9): pid=9061 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.587" name="/newroot/152/file0" dev="tmpfs" ino=823 res=1 errno=0
[  338.425263][   T30] audit: type=1800 audit(6043211266.712:10): pid=9061 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.587" name="file0" dev="tmpfs" ino=823 res=0 errno=0
[  341.043860][ T9101] random: crng reseeded on system resumption
[  342.475813][ T9121] netlink: zone id is out of range
[  342.614893][ T9121] netlink: zone id is out of range
[  343.013631][ T9129] FAULT_INJECTION: forcing a failure.
[  343.013631][ T9129] name failslab, interval 1, probability 0, space 0, times 0
[  343.061859][ T9129] CPU: 1 UID: 0 PID: 9129 Comm: syz.4.600 Tainted: G     U              6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  343.061914][ T9129] Tainted: [U]=USER
[  343.061925][ T9129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  343.061942][ T9129] Call Trace:
[  343.061952][ T9129]  <TASK>
[  343.061964][ T9129]  dump_stack_lvl+0x16c/0x1f0
[  343.062018][ T9129]  should_fail_ex+0x512/0x640
[  343.062069][ T9129]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  343.062109][ T9129]  should_failslab+0xc2/0x120
[  343.062153][ T9129]  __kmalloc_cache_node_noprof+0x6d/0x420
[  343.062189][ T9129]  ? sbitmap_init_node+0x2ca/0x770
[  343.062224][ T9129]  ? sbitmap_queue_init_node+0x341/0x560
[  343.062269][ T9129]  sbitmap_queue_init_node+0x341/0x560
[  343.062315][ T9129]  blk_mq_init_tags+0x162/0x2b0
[  343.062351][ T9129]  blk_mq_alloc_map_and_rqs+0x237/0xf10
[  343.062416][ T9129]  ? blk_mq_map_queues+0x211/0x410
[  343.062464][ T9129]  __blk_mq_alloc_map_and_rqs+0x128/0x1f0
[  343.062514][ T9129]  blk_mq_alloc_tag_set+0x75e/0x1250
[  343.062566][ T9129]  loop_add+0x3b7/0xb70
[  343.062605][ T9129]  ? do_vfs_ioctl+0x512/0x1990
[  343.062644][ T9129]  ? __pfx_loop_add+0x10/0x10
[  343.062680][ T9129]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  343.062740][ T9129]  ? find_held_lock+0x2b/0x80
[  343.062771][ T9129]  loop_control_ioctl+0x13c/0x630
[  343.062812][ T9129]  ? __pfx_loop_control_ioctl+0x10/0x10
[  343.062857][ T9129]  ? __pfx_loop_control_ioctl+0x10/0x10
[  343.062900][ T9129]  __x64_sys_ioctl+0x193/0x200
[  343.062944][ T9129]  do_syscall_64+0xcd/0x230
[  343.062989][ T9129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.063016][ T9129] RIP: 0033:0x7fd27b18e969
[  343.063038][ T9129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.063077][ T9129] RSP: 002b:00007fd27c04e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  343.063102][ T9129] RAX: ffffffffffffffda RBX: 00007fd27b3b5fa0 RCX: 00007fd27b18e969
[  343.063119][ T9129] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007
[  343.063135][ T9129] RBP: 00007fd27b210ab1 R08: 0000000000000000 R09: 0000000000000000
[  343.063150][ T9129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  343.063165][ T9129] R13: 0000000000000000 R14: 00007fd27b3b5fa0 R15: 00007fff308d76f8
[  343.063196][ T9129]  </TASK>
[  343.301037][ T9129] blk-mq: reduced tag depth (128 -> 64)
[  346.700771][ T9192] netlink: 80 bytes leftover after parsing attributes in process `syz.3.611'.
[  348.026269][ T5139] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  348.026313][ T5139] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[  348.027999][ T9215] netlink: 20 bytes leftover after parsing attributes in process `syz.1.616'.
[  348.034185][ T5139] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[  348.060159][ T5139] Bluetooth: hci3: Malformed LE Event: 0x0d
[  348.287974][ T5833] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  348.514474][ T9216] netlink: 8 bytes leftover after parsing attributes in process `syz.2.615'.
[  348.569798][ T9216] FAULT_INJECTION: forcing a failure.
[  348.569798][ T9216] name fail_futex, interval 1, probability 0, space 0, times 0
[  348.585831][ T9216] CPU: 1 UID: 0 PID: 9216 Comm: syz.2.615 Tainted: G     U              6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  348.585892][ T9216] Tainted: [U]=USER
[  348.585903][ T9216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  348.585921][ T9216] Call Trace:
[  348.585931][ T9216]  <TASK>
[  348.585944][ T9216]  dump_stack_lvl+0x16c/0x1f0
[  348.586000][ T9216]  should_fail_ex+0x512/0x640
[  348.586057][ T9216]  get_futex_key+0x49e/0x1000
[  348.586096][ T9216]  ? __pfx_get_futex_key+0x10/0x10
[  348.586130][ T9216]  ? pick_eevdf+0x175/0x5b0
[  348.586166][ T9216]  ? update_curr_se+0x8b/0x270
[  348.586208][ T9216]  ? update_curr+0x74/0x800
[  348.586265][ T9216]  futex_wait_setup+0x78/0x290
[  348.586321][ T9216]  __futex_wait+0x266/0x3c0
[  348.586365][ T9216]  ? __pfx___futex_wait+0x10/0x10
[  348.586408][ T9216]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  348.586462][ T9216]  ? __pfx_futex_wake_mark+0x10/0x10
[  348.586524][ T9216]  futex_wait+0xe8/0x380
[  348.586566][ T9216]  ? __pfx_futex_wait+0x10/0x10
[  348.586616][ T9216]  ? percpu_counter_add_batch+0xb8/0x1f0
[  348.586659][ T9216]  ? errseq_sample+0x53/0x70
[  348.586686][ T9216]  ? file_init_path+0x4fe/0x760
[  348.586734][ T9216]  do_futex+0x229/0x350
[  348.586770][ T9216]  ? __pfx_do_futex+0x10/0x10
[  348.586806][ T9216]  ? fd_install+0x225/0x750
[  348.586842][ T9216]  __x64_sys_futex+0x1e0/0x4c0
[  348.586889][ T9216]  ? __sys_socket+0xac/0x260
[  348.586920][ T9216]  ? __pfx___x64_sys_futex+0x10/0x10
[  348.586960][ T9216]  ? rcu_is_watching+0x12/0xc0
[  348.587004][ T9216]  do_syscall_64+0xcd/0x230
[  348.587057][ T9216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.587090][ T9216] RIP: 0033:0x7fb3fbd8e969
[  348.587116][ T9216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.587147][ T9216] RSP: 002b:00007fb3fcca50e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  348.587177][ T9216] RAX: ffffffffffffffda RBX: 00007fb3fbfb6088 RCX: 00007fb3fbd8e969
[  348.587198][ T9216] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb3fbfb6088
[  348.587217][ T9216] RBP: 00007fb3fbfb6080 R08: 0000000000000000 R09: 0000000000000000
[  348.587235][ T9216] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb3fbfb608c
[  348.587254][ T9216] R13: 0000000000000000 R14: 00007ffd57a13920 R15: 00007ffd57a13a08
[  348.587295][ T9216]  </TASK>
[  348.829779][    C1] vkms_vblank_simulate: vblank timer overrun
[  349.158021][ T9222] sysfs_service_op_show: Client not running :-5:
[  350.134519][ T9247] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff81630d69 (__mcheck_cpu_init_clear_banks+0x109/0x1f0)
[  350.150298][ T9247] Call Trace:
[  350.153627][ T9247]  <TASK>
[  350.156605][ T9247]  mce_cpu_restart+0x98/0xb0
[  350.161260][ T9247]  ? __pfx_mce_cpu_restart+0x10/0x10
[  350.166604][ T9247]  smp_call_function_many_cond+0xd7d/0x1290
[  350.172584][ T9247]  ? __pfx_mce_cpu_restart+0x10/0x10
[  350.177952][ T9247]  ? __pfx_mce_cpu_restart+0x10/0x10
[  350.183489][ T9247]  on_each_cpu_cond_mask+0x40/0x90
[  350.188683][ T9247]  set_bank+0x240/0x3a0
[  350.192901][ T9247]  ? __pfx_set_bank+0x10/0x10
[  350.197639][ T9247]  ? find_held_lock+0x2b/0x80
[  350.202356][ T9247]  ? __pfx_set_bank+0x10/0x10
[  350.207063][ T9247]  dev_attr_store+0x55/0x80
[  350.211617][ T9247]  ? __pfx_dev_attr_store+0x10/0x10
[  350.216849][ T9247]  sysfs_kf_write+0xef/0x150
[  350.221485][ T9247]  kernfs_fop_write_iter+0x354/0x510
[  350.226806][ T9247]  ? __pfx_sysfs_kf_write+0x10/0x10
[  350.232047][ T9247]  vfs_write+0x5bd/0x1180
[  350.236411][ T9247]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  350.242258][ T9247]  ? __pfx___mutex_lock+0x10/0x10
[  350.247348][ T9247]  ? __pfx_vfs_write+0x10/0x10
[  350.252176][ T9247]  ksys_write+0x12a/0x240
[  350.256534][ T9247]  ? __pfx_ksys_write+0x10/0x10
[  350.261430][ T9247]  do_syscall_64+0xcd/0x230
[  350.265981][ T9247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.271916][ T9247] RIP: 0033:0x7fb3fbd8e969
[  350.276366][ T9247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.296015][ T9247] RSP: 002b:00007fb3fcc84038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  350.304468][ T9247] RAX: ffffffffffffffda RBX: 00007fb3fbfb6160 RCX: 00007fb3fbd8e969
[  350.312463][ T9247] RDX: 0000000000000003 RSI: 0000200000000240 RDI: 0000000000000003
[  350.320453][ T9247] RBP: 00007fb3fbe10ab1 R08: 0000000000000000 R09: 0000000000000000
[  350.328531][ T9247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  350.336535][ T9247] R13: 0000000000000001 R14: 00007fb3fbfb6160 R15: 00007ffd57a13a08
[  350.344549][ T9247]  </TASK>
[  351.026286][ T9256] usb usb24: usbfs: process 9256 (syz.1.624) did not claim interface 0 before use
[  351.582630][   T30] audit: type=1107 audit(6043211280.021:11): pid=9270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  351.620265][   T30] audit: type=1107 audit(6043211280.021:12): pid=9270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  352.221046][ T9269] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  352.237318][ T9269] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  352.252072][ T9269] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  352.342870][ T9269] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  352.359819][ T9269] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  352.401076][ T9269] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  352.441659][ T9269] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  352.463419][ T9269] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  352.482131][ T9269] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  352.592258][ T9289] input input14: cannot allocate more than FF_MAX_EFFECTS effects
[  353.619391][ T5833] Bluetooth: hci0: command 0x0c1a tx timeout
[  353.641387][ T9301] can: request_module (can-proto-3) failed.
[  354.257810][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout
[  354.335752][ T5833] Bluetooth: hci2: command 0x0c1a tx timeout
[  354.495143][ T5833] Bluetooth: hci4: command 0x0406 tx timeout
[  354.501288][ T5833] Bluetooth: hci3: command 0x0c1a tx timeout
[  356.330899][ T5139] Bluetooth: hci1: command 0x0c1a tx timeout
[  356.404869][ T5139] Bluetooth: hci2: command 0x0c1a tx timeout
[  356.575104][ T5139] Bluetooth: hci4: command 0x0406 tx timeout
[  358.478014][ T5139] Bluetooth: hci2: command 0x0c1a tx timeout
[  358.971656][ T9408] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  359.220909][ T9412] netlink: 4 bytes leftover after parsing attributes in process `syz.2.658'.
[  359.249017][ T9414] netlink: 146 bytes leftover after parsing attributes in process `syz.4.659'.
[  359.985882][ T9428] netlink: 4 bytes leftover after parsing attributes in process `syz.2.662'.

syzkaller
syzkaller login: [  365.004953][ T9524] FAULT_INJECTION: forcing a failure.
[  365.004953][ T9524] name failslab, interval 1, probability 0, space 0, times 0
[  365.042988][ T9511] Invalid ELF header magic: != ELF
[  365.071206][ T9524] CPU: 1 UID: 0 PID: 9524 Comm: syz.1.674 Tainted: G     U              6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  365.071261][ T9524] Tainted: [U]=USER
[  365.071272][ T9524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  365.071291][ T9524] Call Trace:
[  365.071302][ T9524]  <TASK>
[  365.071314][ T9524]  dump_stack_lvl+0x16c/0x1f0
[  365.071366][ T9524]  should_fail_ex+0x512/0x640
[  365.071416][ T9524]  ? fs_reclaim_acquire+0xae/0x150
[  365.071479][ T9524]  ? tomoyo_encode2+0x100/0x3e0
[  365.071525][ T9524]  should_failslab+0xc2/0x120
[  365.071577][ T9524]  __kmalloc_noprof+0xd2/0x510
[  365.071622][ T9524]  tomoyo_encode2+0x100/0x3e0
[  365.071674][ T9524]  tomoyo_encode+0x29/0x50
[  365.071720][ T9524]  tomoyo_realpath_from_path+0x18f/0x6e0
[  365.071778][ T9524]  tomoyo_check_open_permission+0x2ab/0x3c0
[  365.071821][ T9524]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  365.071907][ T9524]  ? find_held_lock+0x2b/0x80
[  365.071950][ T9524]  tomoyo_file_open+0x6b/0x90
[  365.071983][ T9524]  security_file_open+0x84/0x1e0
[  365.072031][ T9524]  do_dentry_open+0x596/0x1c10
[  365.072097][ T9524]  vfs_open+0x82/0x3f0
[  365.072147][ T9524]  path_openat+0x1e5e/0x2d40
[  365.072196][ T9524]  ? __pfx_path_openat+0x10/0x10
[  365.072242][ T9524]  do_filp_open+0x20b/0x470
[  365.072277][ T9524]  ? __pfx_do_filp_open+0x10/0x10
[  365.072344][ T9524]  ? alloc_fd+0x471/0x7d0
[  365.072386][ T9524]  do_sys_openat2+0x11b/0x1d0
[  365.072438][ T9524]  ? __pfx_do_sys_openat2+0x10/0x10
[  365.072500][ T9524]  __x64_sys_openat+0x174/0x210
[  365.072547][ T9524]  ? __pfx___x64_sys_openat+0x10/0x10
[  365.072596][ T9524]  ? rcu_is_watching+0x12/0xc0
[  365.072640][ T9524]  do_syscall_64+0xcd/0x230
[  365.072695][ T9524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.072726][ T9524] RIP: 0033:0x7f849758e969
[  365.072751][ T9524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.072782][ T9524] RSP: 002b:00007f84983aa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  365.072813][ T9524] RAX: ffffffffffffffda RBX: 00007f84977b6080 RCX: 00007f849758e969
[  365.072835][ T9524] RDX: 0000000000109041 RSI: 0000200000007380 RDI: ffffffffffffff9c
[  365.072855][ T9524] RBP: 00007f8497610ab1 R08: 0000000000000000 R09: 0000000000000000
[  365.072876][ T9524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  365.072896][ T9524] R13: 0000000000000000 R14: 00007f84977b6080 R15: 00007fffb5d9bb08
[  365.072939][ T9524]  </TASK>
[  365.072978][ T9524] ERROR: Out of memory at tomoyo_realpath_from_path.
[  367.930235][ T9573] can: request_module (can-proto-3) failed.
[  368.063778][ T9582] netlink: 1356 bytes leftover after parsing attributes in process `syz.3.686'.
[  368.106815][ T9582] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  369.505123][ T9580] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  371.387334][ T9576] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  374.194893][ T9666] ksmbd: Unknown IPC event: 6, ignore.
[  376.568574][ T9681] capability: warning: `syz.2.706' uses deprecated v2 capabilities in a way that may be insecure
[  376.589003][ T5139] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  379.284566][ T9730] can: request_module (can-proto-4) failed.
[  379.469530][ T5833] Bluetooth: hci4: unexpected event 0x3e length: 726 > 260
[  379.469562][ T5833] Bluetooth: hci4: unexpected subevent 0x0d length: 725 > 260
[  379.484484][ T5833] Bluetooth: hci4: Unknown advertising packet type: 0x7f
[  379.484534][ T5833] Bluetooth: hci4: Malformed LE Event: 0x0d
[  379.605729][ T9730] netlink: 8 bytes leftover after parsing attributes in process `syz.2.716'.
[  381.366006][ T9759] Invalid ELF header magic: != ELF
[  381.535702][ T9761] netlink: 8 bytes leftover after parsing attributes in process `syz.3.723'.
[  381.884772][ T9771] FAULT_INJECTION: forcing a failure.
[  381.884772][ T9771] name failslab, interval 1, probability 0, space 0, times 0
[  381.932766][ T9771] CPU: 0 UID: 0 PID: 9771 Comm: syz.4.726 Tainted: G     U              6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  381.932820][ T9771] Tainted: [U]=USER
[  381.932830][ T9771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  381.932848][ T9771] Call Trace:
[  381.932859][ T9771]  <TASK>
[  381.932871][ T9771]  dump_stack_lvl+0x16c/0x1f0
[  381.932935][ T9771]  should_fail_ex+0x512/0x640
[  381.932985][ T9771]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  381.933028][ T9771]  should_failslab+0xc2/0x120
[  381.933070][ T9771]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  381.933107][ T9771]  ? __proc_create+0xc3/0x8c0
[  381.933145][ T9771]  ? __proc_create+0x2ce/0x8c0
[  381.933188][ T9771]  __proc_create+0x2ce/0x8c0
[  381.933228][ T9771]  ? __pfx___proc_create+0x10/0x10
[  381.933274][ T9771]  ? _raw_write_unlock+0x28/0x50
[  381.933319][ T9771]  ? proc_register+0x314/0x5f0
[  381.933376][ T9771]  proc_create_reg+0x7d/0x180
[  381.933419][ T9771]  proc_create_net_data+0x8e/0x1b0
[  381.933478][ T9771]  ? __pfx_proc_create_net_data+0x10/0x10
[  381.933534][ T9771]  nfs_fs_proc_net_init+0x141/0x1e0
[  381.933601][ T9771]  nfs_net_init+0x130/0x300
[  381.933649][ T9771]  ? __pfx_nfs_net_init+0x10/0x10
[  381.933691][ T9771]  ops_init+0x1e2/0x5f0
[  381.933737][ T9771]  setup_net+0x21e/0x850
[  381.933784][ T9771]  ? __pfx_setup_net+0x10/0x10
[  381.933823][ T9771]  ? lockdep_init_map_type+0x5c/0x280
[  381.933867][ T9771]  ? __pfx_down_read_killable+0x10/0x10
[  381.934012][ T9771]  ? debug_mutex_init+0x37/0x70
[  381.934048][ T9771]  copy_net_ns+0x2a6/0x5f0
[  381.934100][ T9771]  create_new_namespaces+0x3ea/0xad0
[  381.934147][ T9771]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  381.934293][ T9771]  ksys_unshare+0x45b/0xa40
[  381.934341][ T9771]  ? __pfx_ksys_unshare+0x10/0x10
[  381.934384][ T9771]  ? xfd_validate_state+0x5d/0x180
[  381.934420][ T9771]  ? rcu_is_watching+0x12/0xc0
[  381.934465][ T9771]  __x64_sys_unshare+0x31/0x40
[  381.934510][ T9771]  do_syscall_64+0xcd/0x230
[  381.934565][ T9771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.934597][ T9771] RIP: 0033:0x7fd27b18e969
[  381.934624][ T9771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.934655][ T9771] RSP: 002b:00007fd27c02d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  381.934687][ T9771] RAX: ffffffffffffffda RBX: 00007fd27b3b6080 RCX: 00007fd27b18e969
[  381.934709][ T9771] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  381.934729][ T9771] RBP: 00007fd27b210ab1 R08: 0000000000000000 R09: 0000000000000000
[  381.934751][ T9771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  381.934772][ T9771] R13: 0000000000000000 R14: 00007fd27b3b6080 R15: 00007fff308d76f8
[  381.934817][ T9771]  </TASK>
[  382.278593][ T9771] ------------[ cut here ]------------
[  382.284363][ T9771] remove_proc_entry: removing non-empty directory 'net/rpc', leaking at least 'nfs'
[  382.346664][ T9771] WARNING: CPU: 0 PID: 9771 at fs/proc/generic.c:727 remove_proc_entry+0x45e/0x530
[  382.356813][ T9771] Modules linked in:
[  382.361528][ T9771] CPU: 0 UID: 0 PID: 9771 Comm: syz.4.726 Tainted: G     U              6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  382.375222][ T9771] Tainted: [U]=USER
[  382.380481][ T9771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  382.391615][ T9771] RIP: 0010:remove_proc_entry+0x45e/0x530
[  382.397430][ T9771] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 80 72 a2 8b 48 c7 c7 a0 71 a2 8b e8 f3 eb 1f ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 f4 08 60 ff 90 48 b8 00 00 00 00 00
[  382.417547][ T9771] RSP: 0018:ffffc9000f2e7b70 EFLAGS: 00010282
[  382.423783][ T9771] RAX: 0000000000000000 RBX: ffff8880354be500 RCX: ffffc90018819000
[  382.431920][ T9771] RDX: 0000000000080000 RSI: ffffffff817a9465 RDI: 0000000000000001
[  382.440031][ T9771] RBP: ffff88807e519ac0 R08: 0000000000000001 R09: 0000000000000000
[  382.448075][ T9771] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88807e519a00
[  382.456211][ T9771] R13: ffff88807e519ae4 R14: ffff88807c9a64a4 R15: dffffc0000000000
[  382.464659][ T9771] FS:  00007fd27c02d6c0(0000) GS:ffff8881249e7000(0000) knlGS:0000000000000000
[  382.473775][ T9771] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  382.481800][ T9771] CR2: 0000001b2cd06ffc CR3: 000000004c570000 CR4: 00000000003526f0
[  382.490935][ T9771] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  382.498967][ T9771] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  382.507146][ T9771] Call Trace:
[  382.510733][ T9771]  <TASK>
[  382.513717][ T9771]  ? __pfx_remove_proc_entry+0x10/0x10
[  382.519313][ T9771]  ? kfree+0x2b6/0x4d0
[  382.523438][ T9771]  ? cache_destroy_net+0x31/0x50
[  382.528450][ T9771]  ? sunrpc_exit_net+0x37/0x90
[  382.533375][ T9771]  sunrpc_exit_net+0x46/0x90
[  382.538044][ T9771]  ? __pfx_sunrpc_exit_net+0x10/0x10
[  382.543517][ T9771]  ops_exit_list+0xb3/0x180
[  382.548192][ T9771]  setup_net+0x4e8/0x850
[  382.552560][ T9771]  ? __pfx_setup_net+0x10/0x10
[  382.557397][ T9771]  ? lockdep_init_map_type+0x5c/0x280
[  382.562898][ T9771]  ? __pfx_down_read_killable+0x10/0x10
[  382.568525][ T9771]  ? debug_mutex_init+0x37/0x70
[  382.573516][ T9771]  copy_net_ns+0x2a6/0x5f0
[  382.578020][ T9771]  create_new_namespaces+0x3ea/0xad0
[  382.584569][ T9771]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  382.591248][ T9771]  ksys_unshare+0x45b/0xa40
[  382.595819][ T9771]  ? __pfx_ksys_unshare+0x10/0x10
[  382.600991][ T9771]  ? xfd_validate_state+0x5d/0x180
[  382.606172][ T9771]  ? rcu_is_watching+0x12/0xc0
[  382.611075][ T9771]  __x64_sys_unshare+0x31/0x40
[  382.615909][ T9771]  do_syscall_64+0xcd/0x230
[  382.620576][ T9771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.626523][ T9771] RIP: 0033:0x7fd27b18e969
[  382.631112][ T9771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  382.650866][ T9771] RSP: 002b:00007fd27c02d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  382.659445][ T9771] RAX: ffffffffffffffda RBX: 00007fd27b3b6080 RCX: 00007fd27b18e969
[  382.667470][ T9771] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  382.675625][ T9771] RBP: 00007fd27b210ab1 R08: 0000000000000000 R09: 0000000000000000
[  382.684867][ T9771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  382.693910][ T9771] R13: 0000000000000000 R14: 00007fd27b3b6080 R15: 00007fff308d76f8
[  382.702009][ T9771]  </TASK>
[  382.705087][ T9771] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  382.712405][ T9771] CPU: 0 UID: 0 PID: 9771 Comm: syz.4.726 Tainted: G     U              6.15.0-rc7-syzkaller-00175-g0f8c0258bf04 #0 PREEMPT(full) 
[  382.725901][ T9771] Tainted: [U]=USER
[  382.729719][ T9771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  382.739793][ T9771] Call Trace:
[  382.743092][ T9771]  <TASK>
[  382.746042][ T9771]  dump_stack_lvl+0x3d/0x1f0
[  382.750678][ T9771]  panic+0x71c/0x800
[  382.754609][ T9771]  ? __pfx_panic+0x10/0x10
[  382.759072][ T9771]  ? show_trace_log_lvl+0x29b/0x3e0
[  382.764308][ T9771]  ? remove_proc_entry+0x45e/0x530
[  382.769453][ T9771]  check_panic_on_warn+0xab/0xb0
[  382.774429][ T9771]  __warn+0xf6/0x3c0
[  382.778364][ T9771]  ? preempt_schedule_notrace+0x62/0xe0
[  382.783948][ T9771]  ? remove_proc_entry+0x45e/0x530
[  382.789098][ T9771]  report_bug+0x3c3/0x580
[  382.793487][ T9771]  ? remove_proc_entry+0x45e/0x530
[  382.798636][ T9771]  handle_bug+0x184/0x210
[  382.802994][ T9771]  exc_invalid_op+0x17/0x50
[  382.807540][ T9771]  asm_exc_invalid_op+0x1a/0x20
[  382.812458][ T9771] RIP: 0010:remove_proc_entry+0x45e/0x530
[  382.818217][ T9771] Code: 3c 02 00 0f 85 85 00 00 00 48 8b 93 d8 00 00 00 4d 89 f0 4c 89 e9 48 c7 c6 80 72 a2 8b 48 c7 c7 a0 71 a2 8b e8 f3 eb 1f ff 90 <0f> 0b 90 90 e9 5f fe ff ff e8 f4 08 60 ff 90 48 b8 00 00 00 00 00
[  382.837855][ T9771] RSP: 0018:ffffc9000f2e7b70 EFLAGS: 00010282
[  382.843953][ T9771] RAX: 0000000000000000 RBX: ffff8880354be500 RCX: ffffc90018819000
[  382.851972][ T9771] RDX: 0000000000080000 RSI: ffffffff817a9465 RDI: 0000000000000001
[  382.859965][ T9771] RBP: ffff88807e519ac0 R08: 0000000000000001 R09: 0000000000000000
[  382.867959][ T9771] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88807e519a00
[  382.875975][ T9771] R13: ffff88807e519ae4 R14: ffff88807c9a64a4 R15: dffffc0000000000
[  382.883988][ T9771]  ? __warn_printk+0x1a5/0x350
[  382.888816][ T9771]  ? __pfx_remove_proc_entry+0x10/0x10
[  382.894407][ T9771]  ? kfree+0x2b6/0x4d0
[  382.898586][ T9771]  ? cache_destroy_net+0x31/0x50
[  382.903577][ T9771]  ? sunrpc_exit_net+0x37/0x90
[  382.908386][ T9771]  sunrpc_exit_net+0x46/0x90
[  382.913017][ T9771]  ? __pfx_sunrpc_exit_net+0x10/0x10
[  382.918346][ T9771]  ops_exit_list+0xb3/0x180
[  382.922888][ T9771]  setup_net+0x4e8/0x850
[  382.927172][ T9771]  ? __pfx_setup_net+0x10/0x10
[  382.931977][ T9771]  ? lockdep_init_map_type+0x5c/0x280
[  382.937400][ T9771]  ? __pfx_down_read_killable+0x10/0x10
[  382.942999][ T9771]  ? debug_mutex_init+0x37/0x70
[  382.947880][ T9771]  copy_net_ns+0x2a6/0x5f0
[  382.952337][ T9771]  create_new_namespaces+0x3ea/0xad0
[  382.957659][ T9771]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  382.963328][ T9771]  ksys_unshare+0x45b/0xa40
[  382.967869][ T9771]  ? __pfx_ksys_unshare+0x10/0x10
[  382.972928][ T9771]  ? xfd_validate_state+0x5d/0x180
[  382.978066][ T9771]  ? rcu_is_watching+0x12/0xc0
[  382.982970][ T9771]  __x64_sys_unshare+0x31/0x40
[  382.987781][ T9771]  do_syscall_64+0xcd/0x230
[  382.992347][ T9771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.998272][ T9771] RIP: 0033:0x7fd27b18e969
[  383.002712][ T9771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.022349][ T9771] RSP: 002b:00007fd27c02d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  383.030883][ T9771] RAX: ffffffffffffffda RBX: 00007fd27b3b6080 RCX: 00007fd27b18e969
[  383.038967][ T9771] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  383.047059][ T9771] RBP: 00007fd27b210ab1 R08: 0000000000000000 R09: 0000000000000000
[  383.055055][ T9771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  383.063058][ T9771] R13: 0000000000000000 R14: 00007fd27b3b6080 R15: 00007fff308d76f8
[  383.071067][ T9771]  </TASK>
[  383.074458][ T9771] Kernel Offset: disabled
[  383.078814][ T9771] Rebooting in 86400 seconds..