last executing test programs:

15.642498827s ago: executing program 2 (id=1466):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1a, &(0x7f00000000c0), 0x1) (async)
io_uring_register$auto(0x2, 0x1a, &(0x7f00000000c0), 0x1)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) (async)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, 0x0)
ioctl$auto(0x3, 0xc0303e03, r0)
ppoll$auto(0x0, 0x9, 0x0, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)

13.198028117s ago: executing program 2 (id=1474):
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x900, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x8000, 0x0)
read$auto(r1, 0x0, 0xe8)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x48041, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000080), 0x0)
writev$auto(r2, 0x0, 0x3)
r4 = openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/17s\x00', 0x200000, 0x0)
read$auto_mon_fops_stat_usb_mon(r4, &(0x7f00000000c0)=""/232, 0xe8)
mmap$auto(0x0, 0x4000c, 0xb3, 0x9b72, r1, 0x27ffe)
getsockopt$auto_SO_TIMESTAMPNS_NEW(r0, 0x4, 0x40, 0x0, 0x0)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/video2\x00', 0x1ab442, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0)
read$auto(r5, 0x0, 0x0)
socket(0x11, 0x3, 0x6)
close_range$auto(0xffffffffffffffff, r6, 0x2)
r7 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/fail-nth\x00', 0xc840, 0x0)
writev$auto(r7, &(0x7f0000000200)={0x0, 0x6}, 0x6)
open(0x0, 0x22240, 0x154)
mount$auto(0x0, 0x0, &(0x7f0000000180)='nfs\x00\x00', 0x200, 0x0)
mmap$auto(0x0, 0x7, 0x4000000000df, 0x1ff, 0x401, 0x8000)
r8 = fcntl$auto_F_CREATED_QUERY(r4, 0x404, 0x0)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r0, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000001280)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x105c}}, 0x400c080)
close_range$auto(r8, 0x8, 0x0)
socket(0x2b, 0x801, 0x2)
write$auto(0x3, 0x0, 0xfdf3)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), r0)

12.691950138s ago: executing program 2 (id=1476):
mmap$auto(0x0, 0x40009, 0xdd, 0x9b72, 0x7, 0x28000)
r0 = prctl$auto_PR_GET_NAME(0x10, 0x8, 0x0, 0x8, 0x800)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
msgctl$auto_MSG_STAT_ANY(0x4, 0xd, 0x0)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000180), 0x2a80, 0x0)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket(0x11, 0x3, 0x9)
r2 = openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x200, 0x0)
r4 = socket(0x10, 0x92a5f12710c16d6c, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x4e, &(0x7f0000000100)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c010)
r5 = getsockopt$auto_SO_PASSPIDFD(r2, 0x0, 0x4c, &(0x7f00000001c0)='!-{\x00', &(0x7f0000000200)=0x8000)
mmap$auto(0x9, 0x7ffffffffffffffb, 0x99, 0x72d8, r5, 0xffffffffffffffff)
write$auto(r4, &(0x7f0000000000)='-\x00', 0x2fb)
adjtimex$auto(&(0x7f0000000700)={0xf332b6e, 0x0, 0x0, 0xfffffffffffffffd, 0xd4, 0x3, 0x6, 0x0, 0x10000, 0x1, 0x2, {0x2120000000, 0xfffe}, 0x3, 0x6, 0xfffffffffffffffd, 0x1008000, 0x0, 0x80000003, 0x83, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x2})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
sendfile$auto(0xffffffffffffffff, r1, &(0x7f00000003c0)=0x1b7e46a, 0x1)
write$auto(r6, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x3, 0x3, 0x1000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x2]}, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x9, 0x1)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyp7\x00', 0x0, 0x0)
r7 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
io_uring_setup$auto(0x40000002c55, 0x0)
ioctl$auto_UI_SET_PHYS(r0, 0x4008556c, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r7, 0x403c6f2b, 0x0)
ioctl$auto(0x3, 0x6f29, 0x10000000000402)

11.465489977s ago: executing program 2 (id=1479):
r0 = openat$auto_generic(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-monitor\x00', 0x900, 0x0)
r1 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x1)
getsockopt$auto_SO_BUF_LOCK(r0, 0x4, 0x48, &(0x7f0000000080)='\x00', &(0x7f0000000040)=0xb)

11.112139527s ago: executing program 2 (id=1480):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x0, 0x800605, 0x8003, &(0x7f0000000100)=0xfffe, 0x3, 0x3)
openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0)
r0 = openat$auto_proc_sessionid_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/sessionid\x00', 0x0, 0x0)
read$auto_proc_sessionid_operations_base(r0, &(0x7f0000001100)=""/4092, 0xffc)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
madvise$auto(0x3, 0xfffffffffffffffb, 0x10000)
r1 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/numa_maps\x00', 0x0, 0x0)
r2 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
keyctl$auto_KEYCTL_NEGATE(0xd, 0x0, 0x0, 0x0, 0x2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/amidi2\x00', 0x82040, 0x0)
mmap$auto(0x0, 0x2020009, 0x8, 0x7fffffffffffffff, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(&(0x7f00000000c0)='./file0\x00', 0x149443, 0x0)
r4 = socket(0xa, 0x2, 0x3a)
getsockopt$auto_SO_RCVBUF(r4, 0x0, 0x8, &(0x7f0000000000)='\x00\xfd\xd0', &(0x7f0000000080)=0x81)
socket(0x22, 0x2, 0x1)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x101, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r6)
ioctl$auto_KVM_CREATE_VM(r5, 0x8140aecc, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PVERSION(r3, 0x80045700, &(0x7f0000000040)=0x1)
close_range$auto(r2, r2, 0x0)
ioctl$auto_VHOST_SET_VRING_ERR2(r2, 0x4008af22, &(0x7f0000000000)={0x7, r1})
pread64$auto(r1, 0x0, 0x28, 0x5)

10.149225254s ago: executing program 2 (id=1486):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
sysfs$auto(0x2, 0x10000000000002e, 0x0)
fsopen$auto(0x0, 0x1) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155) (async)
socket(0x2, 0x80802, 0x0) (async)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1) (async)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
setresgid$auto(0xa05, 0x4, 0x0) (async)
mknod$auto(&(0x7f00000003c0)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5', 0x20e9, 0x103) (async)
access$auto(&(0x7f0000000000)=':,\x00\xbd\x80\xd6\x002\xb37\xff\x1a\x9e99\xda\xd1v\'\xc6\xd2Fw;\x00v\xdce\xad\xf4\xdb\xc7\x946\xe4\f\x9el]L+\x06\x130V\x1b,d\x8f\xa0\xabDUdk\xac\x82\\tyQ\xd8j\a\x1a[\xdb\x96\x1f{2\x04\xc5Y\xc1@\x0e\xeeWZ\x94N\xd4\xc8q=\x9b\xd1\x7fR3\xb6`\x00\xb3\xe5|1\xba\r\x85\x89\xfe\xed\xe1\xad`\x92\xc7\x9c\xd7\xd8\x15\t&\xb7\xfc\x82\xc4\xd3J\xae\x810\x19\x14\t\xc2\xa5V\xaa\x8d\x04\xf5\xf3\xd6\xd1\xe9k\xaf\x1a\xc6u\x96\xf7\xaa\x84\x92\x995m\xf9O\xc0\x1e\xa05\xdb\xa5\xae\r\x06\xe6\xc3\xd0\xf8:\xf7\xc5u\x91\xf8\x91\xee\xd8y\xb8\xc1)\xad\x05\xeb\xe9\xab\r\x9a@\aa(\x1a\xa4\xc1\xcf\\\xf0\xc3~\xbbd\x94\x9c\x02\xd4\xfc\xd2`\xd9\x83{-\x81zY\\\xac!#\xea\xba\x86)\xe9\xbc\x82\xf6\xd2\x7f\xdb\xa1\xd5\x89|\xa0O\xfcqZ\x85@A\x90\"\x11L\xdd\xa5\x9f\xf5\x00', 0x3) (async)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\x80\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x00\x0e\v9\xb5j\x00\x04\xc8\x1fa\x1c\x1a\x05 \xfdr/D\xbf\x98\x06\xe5\xf6\x8d\x1fX\xe5\xbc\xbc\"}$', 0x7fffffff) (async)
r1 = getsockopt$auto_SO_KEEPALIVE(0xffffffffffffffff, 0x40, 0x9, 0x0, &(0x7f0000000040)=0x9)
mmap$auto(0x0, 0x4020009, 0x200, 0x10, r1, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
prctl$auto(0x1000000003b, 0x1, 0x9, 0x5, 0x3)
clone3$auto(0x0, 0x1000)
mmap$auto(0x2, 0x402000c, 0x10df, 0xebd, 0x401, 0x8000) (async)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0) (async)
writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x7111}, 0x8) (async)
socket(0x2c, 0x6, 0x1) (async)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socket(0x2, 0x3, 0x100) (async)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)

4.048968786s ago: executing program 3 (id=1507):
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x5, 0x3)
socket(0xa, 0x2, 0x88)
socket(0x11, 0x3, 0x9) (async)
r0 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a}) (async)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x7, 0x4a})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0)
setsockopt$auto(0x3, 0x1, 0x2b, 0x0, 0x28)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, 0x0, 0x9, 0x0, 0x5, 0x1000}, 0x80000005}, 0x2, 0x100) (async)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, 0x0, 0x9, 0x0, 0x5, 0x1000}, 0x80000005}, 0x2, 0x100)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x14a402, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x6, 0x2)
pipe$auto(0x0) (async)
pipe$auto(0x0)
write$auto(0x6, 0x0, 0x100000001)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/workqueue/nf_ft_offload_del/nice\x00', 0x4aaa2, 0x0) (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/workqueue/nf_ft_offload_del/nice\x00', 0x4aaa2, 0x0)
read$auto(0x3, 0x0, 0x1f40)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)

2.983945202s ago: executing program 0 (id=1513):
close_range$auto(0x2, 0xfffffffffffff000, 0x2)
bpf$auto(0x8000000000000020, 0xffffffffffffffff, 0x0)
socket(0xa, 0x2, 0x3a)
mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/can/rcvlist_sff\x00', 0x8f3b7a51b80ebc01, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop11/queue/io_poll_delay\x00', 0xa8002, 0x0)
r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/dfscache\x00', 0x40080, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x1, 0x1, 0x948b, 0x4, 0x15f4da0a, 0x1, 0x3, 0x1000000, 0x80000001, 0x7, 0x6d3c, 0x5, 0x40002]}, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x10000000017, 0x28, 0x4, 0x8000000156, 0x0)
ioctl$auto_SCSI_IOCTL_PROBE_HOST(0xffffffffffffffff, 0x5385, 0x0)
write$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffffff, 0x0, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x14a402, 0x0)
read$auto(0x3, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)='ns/ipc\x00')
flistxattr$auto(0xffffffffffffffff, 0x0, 0x3)
getrandom$auto(0x0, 0x6000000, 0x3)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x68100, 0x0)
ioctl$auto_TIOCMSET2(r2, 0x5418, &(0x7f00000011c0))
getsid$auto(0xffffffffffffffff)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r3, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[], 0x14}, 0x1, 0xffff0000, 0x0, 0x20040805}, 0x0)
socket(0x1e, 0x1, 0x0)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)

2.916022707s ago: executing program 3 (id=1514):
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) (async)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) (async)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) (async)
mmap$auto(0x0, 0x9, 0x400000072, 0x8b72, 0x1000000002, 0x8000) (async)
r0 = openat$auto_proc_pid_set_timerslack_ns_operations_base(0xffffffffffffff9c, &(0x7f0000000080), 0xdaea6d7da654cc89, 0x0)
fsetxattr$auto(r0, &(0x7f00000000c0)='/dev/dma_heap/system\x00', &(0x7f0000000380), 0x7, 0x10001) (async)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x1e, 0x3, 0xc249)
getsockopt$auto(r1, 0x84, 0x75, 0x0, 0x0)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x40000, 0x0) (async)
mmap$auto(0x0, 0x9, 0xff7, 0x8000000008012, 0x1000000004, 0x0)
mlockall$auto(0x7) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)

2.558237553s ago: executing program 1 (id=1515):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x8180, 0x0)
unshare$auto(0x40000080)
futex_waitv$auto(&(0x7f0000000000)={0x0, 0x7e4, 0x2}, 0x1, 0x0, 0x0, 0x623d)
bpf$auto(0x9, &(0x7f0000000000)=@bpf_attr_7={@start_id=0x17, 0x6820, 0x7}, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
symlink$auto(&(0x7f0000000300)='\\\':.\x00', &(0x7f0000000340)='\xfb\x00')
readlink$auto(&(0x7f0000000b00)='\xfb\x00', 0x0, 0x800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r1, 0x8000)
sendmsg$auto_NL80211_CMD_GET_WIPHY(0xffffffffffffffff, 0x0, 0xc004)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/if_inet6\x00', 0x40100, 0x0)
keyctl$auto_KEYCTL_WATCH_KEY(0x20, 0x0, 0x0, 0xee00, 0x6)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000080)=""/104, 0x68)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00'})
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x2, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
r3 = socket(0x10, 0x2, 0x4)
write$auto(r3, &(0x7f0000000000)='-\x00', 0x2fb)

2.523805165s ago: executing program 3 (id=1516):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
setrlimit$auto(0x1000000007, 0x0)
epoll_create$auto(0x4)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
socket(0x2, 0x6, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast1}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x3ff, 0x0, 0x3, 0x5f, 0x0, 0x3}, 0x6f3)
r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0)
readv$auto(r0, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)

2.0052742s ago: executing program 1 (id=1517):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
socket(0xa, 0x3, 0x3a) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
setsockopt$auto(0x400000000000003, 0x29, 0xcc, 0x0, 0x567) (async)
socket(0x22, 0x2, 0x1)
openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f0000000240), 0x8002, 0x0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram11\x00', 0xe801, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0)
mmap$auto(0x0, 0x5, 0xdf, 0x1a, 0x2, 0x8000) (async)
r0 = socket(0x2, 0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x15, 0x0, 0x28) (async)
syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000040), r0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) (async)
fallocate$auto(0x8000000000000003, 0x0, 0x8000000d, 0x2cbd5d) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
newfstatat$auto(r1, &(0x7f0000000080)='./file0\x00', 0x0, 0x1000)
socket(0x2, 0x1, 0x106) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
setsockopt$auto(0x3, 0x6, 0x21, 0x0, 0x10)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0)
write$auto(r2, &(0x7f0000000040)='\xce*+#\x00', 0x80) (async)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x100000001)
io_uring_setup$auto(0x5, 0x0)

1.779823887s ago: executing program 0 (id=1518):
socket(0xa, 0x5, 0x84)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x18, 0x0, 0x8)

1.71314666s ago: executing program 1 (id=1519):
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0x19, 0x404, 0x8000)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0xc80, 0x0)
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000003340)='/dev/sg0\x00', 0x202, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, 0x0, 0x800, 0x0)
set_mempolicy$auto(0x2, &(0x7f0000000080)=0x7e, 0x4)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x24c802, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto_sg_fops_sg(r0, &(0x7f0000003380)="b25b1a8c398ef400dbcbc7a996eea7f3804ca6c7591adef6578d2f5f520f687f316ba7329774c854d58309037c0ae2ae6eb53b1d", 0x34)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x2c, 0x940, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, [0x0, 0x7eb6, 0x40000, 0x0, 0x9, 0x8, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x800, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, 0x1fe, 0x7)
r3 = socket(0x10, 0x2, 0x2)
sendmsg$auto_NL802154_CMD_TRIGGER_SCAN(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000546beca06782e16e43073a155f4abb7df85cc43918c4fe54f8100412d6b72c880060f003c6a9ff55fb39eb18781ccb0ad1d68bf77c679baf4701f7e3d8fc1265890388bebe617e09b75466d39e3754f0f02f30145a9d0e16284653f27fef4452aaf99ac8775a9e25e41ee0f9ecd2", @ANYRES16=0x0, @ANYBLOB="000128bd7000fddbdf2523000000"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4010000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
pipe$auto(&(0x7f0000000780)=<r4=>0xffffffffffffffff)
splice$auto(r4, 0x0, 0xffffffffffffffff, &(0x7f0000002100)=0x1, 0x768, 0x9)
r5 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
prctl$auto(0x41555856, 0x4, 0x2008, 0x0, 0x0)
sysfs$auto(0x0, 0xfffffffffffffffe, 0x9)

1.656455689s ago: executing program 0 (id=1520):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
r0 = prctl$auto(0x23, 0x2, 0x7fffffffeffe, 0x0, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/wireless\x00', 0x480000, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x1d, 0x7181, 0x1ffdf, 0x7, 0x4, 0x9, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x1, 0x7ff, 0x22000, 0x200, 0x0, 0x84, [0x3, 0x4, 0x0, 0x2, 0x0, 0x2000, 0x0, 0x11, 0x70624ce7, 0x1, 0xfffffffffffffffd, 0xffffffffffffffff, 0x4000, 0x0, 0x6, 0x0, 0xbffffffffffbfffd, 0x0, 0x1, 0x5, 0x7, 0x4, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x400000000005b8, 0x14ee, 0x0, 0x0, 0x4, 0x6, 0x80000000, 0x88e, 0x8, 0xfffffffffffffffe, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0x2, 0x1, 0x3, 0x0, 0x1]}, 0x1fe, 0xd)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f00"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB], 0x1ac}}, 0x4004)
recvmmsg$auto(r1, &(0x7f0000000580)={{&(0x7f0000000380), 0x6, &(0x7f0000000480)={&(0x7f0000000000)="d5fa088f3510d5bed138a6616107898aae1ee28feb6389057d84bae04b3844aa0267699d0a3ec67556569295b9031715e1db5d5d6a4f691eeb843636455bf89f837f305409b16e9dba9c3b266e6bcc5fec4328c51f5078c1c7accb5bdf61edc3fecf8e14143167d6c11cc6b55df0e608e0ad5af4bb87938916e75aea1d85130d9e48fdf1335c85bd57bd823982fde7d656ec4ec36948888d8fc9bd1bbf71c7", 0x6}, 0x6, &(0x7f00000004c0)="f34e0b01907ebc9fc73f86d77573e1e74f4421f684fd450cd8dbf6fec0625efdbe820c6240fd440662f5e695a872482ded2c966571f93639d07c1d2fdf773ae7247a9137f51fffe0f90d749d7c1f11853be83b8efb77c9ab41753f4c830589315d225e10627f8e758f5c95def5d06cb4adcc5f8685791025f641b8948b68c6533123c76a24ac5704efd1384a6b845db2a1bb75b48bd352f3aa30", 0x6, 0x4}, 0x7}, 0x180, 0x0, &(0x7f00000005c0)={0xa65a, 0xfffffffffffffff7})
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x400c810}, 0x800)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32=r3, @ANYBLOB="060006000500dfff08000d"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r6)
sendmsg$auto_NL80211_CMD_STOP_AP(r6, &(0x7f0000001940)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x1c, r7, 0x129, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x5a88314c8e109829}, 0x14)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000006c0)={'erspan0\x00', <r8=>0x0})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000700)={'gre0\x00', <r9=>0x0})
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r2, &(0x7f0000000800)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000740)={0x54, 0x0, 0x1c, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xb5}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4004000}, 0x4000)
r10 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r10, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$auto_handshake(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_HANDSHAKE_CMD_DONE(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r12, @ANYBLOB="fe11962ca02ade978617040000000000000077d8b2b47581adf06f968687371bb856782ac79f8ad96ece3f60a545ceb39e63d8844aeb2316678ae5d137e72944f0ac09e8fe6a66ca820d4a7c0b9472f05ddc98", @ANYRES32, @ANYBLOB], 0x1c}}, 0xd4)
close_range$auto(r10, r1, 0x6)
pread64$auto(r1, 0x0, 0x1ff, 0xf4)

1.477438195s ago: executing program 0 (id=1521):
r0 = openat$auto_lowpan_control_fops_6lowpan(0xffffffffffffff9c, &(0x7f0000002140), 0x0, 0x0)
read$auto_lowpan_control_fops_6lowpan(r0, &(0x7f0000002180)=""/26, 0x1a)
ioperm$auto(0x3, 0xe, 0x2000000000000149)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/mtd/mtd0/oobavail\x00', 0x42000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000100)=""/185, 0xb9)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000100)={0x10, 0x9, 0x100000, 0x7ffffffff003, 0xfffffffffffffffe, 0x3, 0x0, 0xeb, 0xfffffffffffffffe, 0x8003, 0xfffffffffffffffc, 0x2})
r2 = socket(0xa, 0x801, 0x84)
r3 = getpid()
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
setsockopt$auto(r2, 0x10000000084, 0x9, 0x0, 0x9c)
socketpair$auto(0x40, 0x0, 0xf80c, &(0x7f00000000c0)=0x9)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r4, 0x40000000029, 0x43, 0xfffffffffffffffe, 0x0)
write$auto(0x3, 0x0, 0xfdf3)
madvise$auto(0x4, 0x2, 0x15)
socketpair$auto(0x3, 0x8, 0x3, &(0x7f0000000040)=0x9c5f)
r5 = gettid()
getpid()
rt_tgsigqueueinfo$auto(r3, r5, 0x1, &(0x7f0000000600)={@_si_pad})
rt_sigsuspend$auto(&(0x7f0000000380)={0xe}, 0x8)

1.469472873s ago: executing program 3 (id=1522):
mmap$auto(0x0, 0xda32, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
select$auto(0x5, &(0x7f0000000080)={[0x20000009, 0xfffffffffffffffc, 0x9, 0x5, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0x6, 0x1]}, 0x0, 0x0, 0x0)
r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/1/msr\x00', 0xf82, 0x0)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="00042abd7000fcdb2b56b516c03d64a30d7b18df2503e1072a42d472406c8899a58955ad63f7d129519f98ba58436515efd5045b2527ee6051bd4a21e5faab0f52e953dd4758b54c1a240fcf3f9070a28413c777b45f5027d21804856582ef821dadb3ffe5f4ad8ec0e99fed6c7ff036c8c7f6c4b307e5459e33bc0b424dc73dfcc8dc821da97c9af2ffe547786c8e68e27a45af78a5970af3c0cba16fdf739cb0d8fc98c337aba2ed7364759af7f43cf778bc41b2122e839938ddd8915ed28f33ab09d7b2d06a2608ae51d3f9f223feaebafe435f898bf13e4e7d094363469b89c704765e57fff49574293cb08b010c0f09"], 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x4040804)
socket(0x1, 0x2, 0x0)
socket(0x2b, 0x1, 0x1)
readv$auto(r0, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mincore$auto(0x1003, 0x8001, 0x0)
r1 = socket(0xa, 0x801, 0x84)
getsockopt$auto(r1, 0x84, 0x73, 0x0, 0x0)
shmget$auto(0x400, 0x200000000008, 0x568c12f2)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(0x3, 0x41045508, 0x1)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0x401, 0x8)
unshare$auto(0x40000080)
statmount$auto(0x0, &(0x7f0000000600)={0x8, 0xfffffffe, 0xfd, 0x7, 0x1f, 0x7181, 0x1ffde, 0x80000000, 0x3, 0x9, 0x9, 0x3, 0x84, 0x1, 0x800b4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x22002, 0x200, 0x11, 0x84, [0x3, 0x2, 0x0, 0x2, 0x8, 0x2, 0xd3d3, 0xe, 0x4000000070624ce7, 0xff, 0xfffffffffffffffd, 0xffffffffffffffff, 0x4000, 0x7, 0x1000000006, 0xffffffffffffffff, 0xfffffffffffbfffd, 0x4, 0x1, 0x10000000000, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x400000000005b8, 0x0, 0x6, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x88e, 0x8000000000008, 0xfffffffffefffffc, 0x9, 0xa38, 0x0, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x1, 0x4], "3a92578911a87744602012384b1a68121df90000000057752524b5fcbf75b3465d91e92f6eb74845cd6b61e6767c3d2faa4d1b27ffe0682b9bed3a053123aeca"}, 0x1fe, 0xc)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1000"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0xf7374674b920089e)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x8)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000840)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4048804}, 0x20800)

1.093129482s ago: executing program 3 (id=1523):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x80102, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x800, 0x100)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x5, 0x4000000000df, 0xeb1, 0x401, 0xe0)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x9, 0x4020009, 0xdf, 0xeb1, r0, 0xb)
setns(0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="ea12e528ded30ff1309c8b1613007984"], 0x14}}, 0x4000080)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000140), 0xffffffffffffffff)
r4 = semctl$auto_SEM_STAT(0x5, 0x9, 0x12, 0x9)
openat$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/netdevsim/netdevsim1/ports/0/udp_ports_reset\x00', 0x400000, 0x0)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r2, &(0x7f0000004480)={0x0, 0x0, &(0x7f0000004440)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38020000", @ANYRES16=r3, @ANYBLOB="01002dbd7000fddbdf250300000017020180ac4ef4057fc1e86e4943361180ebd0adca39c0cb729d21e4c8deca6761e4ece02b6666567e48", @ANYBLOB="9efb056c9886", @ANYBLOB="0800160000000000ad231215a072d59fda90b93800206a743755b15913acd5f2060f16190e755b7e47050d08aee69c1a34ac24e914ca438dec2e54d20e98a24f76e66e8dfd0ba1e10a4bd9bcbd07c27b51f2cb27824362cc4d99496c0345905ef54830ea45ed538914fbf2b04cddd1c597ae51edd463", @ANYRES32=r4, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="08000400ffffffff36638f1dc2853e729acd846ad7c566d297d7e0fa9f9797516ed4d292f8e72f3c006185d94123c0546e14b439b70b3ee6c65824d3aab340ab8a8427c0d1fac6a5599c28f34850d536c0737558d3907ee4ca39c9769ee7c200c6800400438058df4d73a9becd04bf18dd0dfef2cfa4bb3639ef222c8a18b57cfe257e1f9cccee81fbe5f369b583d9c8093b01d56369c60ce24503352d2e4099dc9bdc7d09888f2850e89373afef7d3e43aca0e1d8893c8461e896fb50581c1969f6cc6e93c4c7d9c50f82ca636065db0bde5c6a7508bc1cc3503547b3f0c66888fab40744c8133bacad9155305ec63625a21f53f38c3c"], 0x238}, 0x1, 0x0, 0x0, 0x20000840}, 0x20000840)
ioctl$auto_USBDEVFS_RELEASEINTERFACE(0xffffffffffffffff, 0x80045510, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/time_for_children\x00')

1.016814018s ago: executing program 1 (id=1524):
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
signalfd$auto(0x4, 0x0, 0x8)
ioctl$auto(r0, 0x9000643c, 0xc35)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000500)=ANY=[@ANYRESHEX=r1, @ANYRES16, @ANYBLOB="f60325bd7000ffdbdf250a000000cce2a2"], 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0xc040810)
bpf$auto(0xfffff001, &(0x7f0000000000)=@token_create={0x7, r1}, 0xa3)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000080)="7ac5405ef81dc8d426384630a4ba38d7a7926c9c974f095e82a6b753b0d82d793d", 0x21)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), 0xffffffffffffffff)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
process_vm_writev$auto(0x0, &(0x7f00000011c0)={&(0x7f00000001c0)="42777dd1330b458d0b5c44ca32e94fc00cfbce962ee7d8f31c0f90c327830f55adfdceafcc0f7b5a21ea23bdf5344d47d49d60218e57bb33118d04fdd37f5fd17f96a318132a5dd282784244bd58b9a0c8adc60d2f8535b3", 0x8}, 0x7, 0x0, 0x7, 0xb5)
r4 = socket(0x11, 0x3, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48})
sendmmsg$auto(r4, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200)="4c0300000000000000a3677337f9eca9075f6bba441b", 0x49}, 0x5, 0x0, 0x5, 0x1}, 0x5}, 0x2, 0x100)
sendmsg$auto_OVS_VPORT_CMD_NEW(r2, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000480)={0x24, r3, 0x1, 0x70bd26, 0x25dfdbff, {}, [@OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x4}, @OVS_VPORT_ATTR_NAME={0x6, 0x3, '*\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x4040010}, 0x800)
lseek$auto(r2, 0xe, 0x7fff)

770.670092ms ago: executing program 1 (id=1525):
openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000003880), 0x20000, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x0, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
getsockopt$auto(0x6, 0x1, 0x11, 0xfffffffffffffffe, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYRES16=0x0, @ANYBLOB="0f"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
r2 = socket(0x10, 0x2, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x4004)
ioctl$auto_TCFLSH2(r1, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
ioctl$auto(r0, 0x8924, 0xffffffffffffffff)
ioctl$auto(r0, 0x0, r1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/nbd12/sched/batching\x00', 0x143642, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x2)
open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000040)={0x8, 0xffffffff, "0200000000000000"}, 0xd)
sendfile$auto(r3, r3, 0x0, 0x2)
syz_clone(0x5000400, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0xffffffffffffffff, 0xffffffffffff0001, 0x1b)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
mprotect$auto(0x0, 0x8000000000000001, 0x6)

347.597306ms ago: executing program 0 (id=1526):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
sysfs$auto(0x2, 0x100001000000032, 0x0)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto_SHMEM_HUGE_NEVER(r1, 0x3, &(0x7f0000001640)='+\x00', &(0x7f0000001680)="df", 0x0)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x5, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
io_uring_setup$auto(0x6, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
write$auto(0x3, 0x0, 0x81)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
write$auto(0x3, 0x0, 0xffd8)

253.74345ms ago: executing program 3 (id=1527):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r0, &(0x7f0000002f40)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[], 0x14}, 0x1, 0xffff0000, 0x0, 0x20040805}, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r1 = socket(0xa, 0x3, 0x3b)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r1, 0x890b, 0x24)
socket(0x1e, 0x1, 0x0)
r3 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/ieee80211/phy1/aql_pending\x00', 0x8800, 0x0)
read$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(r3, &(0x7f0000000200)=""/2, 0x2)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x2b, 0x6, 0x5)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/rose3/type\x00', 0x280000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/loop12/queue/nr_requests\x00', 0xa3182, 0x0)
sendfile$auto(r5, r5, 0x0, 0x2)
open(&(0x7f0000000340)='./file0\x00', 0x2a31c0, 0x0)
socket(0x2b, 0x1, 0x1)
socket(0x23, 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)

240.9584ms ago: executing program 0 (id=1528):
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socketpair$auto(0xfffff4f0, 0x1, 0x6, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xac}, 0x5, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x2, 0x9)
recvmmsg$auto(r0, 0x0, 0xb216, 0x121, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
write$auto(0x3, 0x0, 0x100082)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @local}, 0x6a)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, 0x0, 0xc800)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/pagemap\x00', 0x0, 0x0)
ioperm$auto(0x6, 0x18001, 0x80001)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0xa, 0x2, 0x0)
shutdown$auto(0xffffffffffffffff, 0x2)
sendmsg$auto_NLBL_MGMT_C_LISTDEF(0xffffffffffffffff, 0x0, 0x48811)
ioprio_set$auto(0x7, 0x0, 0xfff)
unshare$auto(0x40000080)
recvmmsg$auto(0x3, 0x0, 0x687bcbd, 0x8, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x1, 0x2)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)

0s ago: executing program 1 (id=1529):
iopl$auto(0x2)
iopl$auto(0x1)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
unshare$auto(0x40000080)
adjtimex$auto(0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9)
set_mempolicy$auto(0x2, 0x0, 0x8)
unshare$auto(0x40000000000)
r1 = openat$auto_force_suspend_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/bluetooth/hci1/force_suspend\x00', 0x40800, 0x0)
read$auto_force_suspend_fops_hci_vhci(r1, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x1d, 0x2, 0x2)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f00000000c0)="58fcb282bcbc38bfaef257e019406e8ec445cd4f7f7662ac0f8834baa918d5b3cea133243c4f2b9a39e536b67f5a1a2bfdf589da2b1c980e9ce53883444996d1721d7f3ae627c6c68118e15b5a753fd37910fbc02d898cfc8254c80582fc6184113a38c8937e")

kernel console output (not intermixed with test programs):

r parsing attributes in process `syz.1.216'.
[  173.252515][ T6974] netlink: 346 bytes leftover after parsing attributes in process `syz.0.225'.
[  173.518788][ T6971] netlink: 346 bytes leftover after parsing attributes in process `syz.1.224'.
[  176.307060][ T7006] netlink: Conntrack attr has 16 unknown bytes
[  180.188393][   T30] audit: type=1800 audit(6038308121.549:5): pid=7064 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.244" name="dbroot" dev="configfs" ino=13856 res=0 errno=0
[  180.760955][ T5849] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  180.761001][ T5849] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[  180.781982][ T5849] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[  180.782056][ T5849] Bluetooth: hci3: adv larger than maximum supported
[  180.790473][ T5849] Bluetooth: hci3: Malformed LE Event: 0x0d
[  181.405194][ T7080] netlink: 28 bytes leftover after parsing attributes in process `syz.2.250'.
[  181.881526][ T7103] netlink: 544 bytes leftover after parsing attributes in process `syz.2.254'.
[  184.313872][ T7130] netlink: 4 bytes leftover after parsing attributes in process `syz.3.264'.
[  184.681121][ T7136] nbd0: detected capacity change from 0 to 68719476736
[  184.717287][ T5848] block nbd0: Send control failed (result -22)
[  184.748686][ T5848] block nbd0: Request send failed, requeueing
[  184.768196][ T5849] block nbd0: Receive control failed (result -32)
[  184.779768][   T59] block nbd0: Dead connection, failed to find a fallback
[  184.792283][   T59] block nbd0: shutting down sockets
[  184.800344][   T59] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  184.815734][   T59] Buffer I/O error on dev nbd0, logical block 0, async page read
[  184.826083][ T5848] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  184.859369][ T5848] Buffer I/O error on dev nbd0, logical block 0, async page read
[  184.875916][ T5848] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  184.900043][ T5848] Buffer I/O error on dev nbd0, logical block 0, async page read
[  184.917953][ T5848] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  184.930959][ T5848] Buffer I/O error on dev nbd0, logical block 0, async page read
[  184.945174][ T5848] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  184.961583][ T5848] Buffer I/O error on dev nbd0, logical block 0, async page read
[  184.978126][ T5848] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  185.001481][ T5848] Buffer I/O error on dev nbd0, logical block 0, async page read
[  185.034987][ T5848] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  185.103998][ T5848] Buffer I/O error on dev nbd0, logical block 0, async page read
[  185.168562][ T5848] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  185.228914][ T5848] Buffer I/O error on dev nbd0, logical block 0, async page read
[  185.262856][ T5848] ldm_validate_partition_table(): Disk read failed.
[  185.301762][ T5848] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  185.348824][ T5848] Buffer I/O error on dev nbd0, logical block 0, async page read
[  185.364767][ T5848] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  185.471685][ T5848] Buffer I/O error on dev nbd0, logical block 0, async page read
[  185.570351][ T5848] Dev nbd0: unable to read RDB block 0
[  185.628128][ T5848]  nbd0: unable to read partition table
[  185.727340][ T5848] ldm_validate_partition_table(): Disk read failed.
[  185.796076][ T5848] Dev nbd0: unable to read RDB block 0
[  185.837578][ T5848]  nbd0: unable to read partition table
[  187.301228][ T7193] netlink: 346 bytes leftover after parsing attributes in process `syz.1.276'.
[  187.342852][ T7192] netlink: 28 bytes leftover after parsing attributes in process `syz.3.277'.
[  188.341458][ T7217] ptrace attach of "./syz-executor exec"[5842] was attempted by "./syz-executor exec"[7217]
[  190.065907][ T7241] Invalid ELF header magic: != ELF
[  190.748188][ T7254] Invalid ELF header magic: != ELF
[  190.899277][ T7258] netlink: 12 bytes leftover after parsing attributes in process `syz.2.290'.
[  191.179018][ T7270] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  191.868145][ T7287] FAULT_INJECTION: forcing a failure.
[  191.868145][ T7287] name failslab, interval 1, probability 0, space 0, times 0
[  191.893897][ T7287] CPU: 0 UID: 0 PID: 7287 Comm: syz.2.296 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  191.893946][ T7287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  191.893965][ T7287] Call Trace:
[  191.893974][ T7287]  <TASK>
[  191.893990][ T7287]  dump_stack_lvl+0x16c/0x1f0
[  191.894038][ T7287]  should_fail_ex+0x512/0x640
[  191.894069][ T7287]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  191.894477][ T7287]  should_failslab+0xc2/0x120
[  191.894518][ T7287]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  191.894549][ T7287]  ? ksys_unshare+0x45b/0xa40
[  191.894594][ T7287]  ? sock_alloc_inode+0x25/0x1c0
[  191.894639][ T7287]  ? __pfx_sock_alloc_inode+0x10/0x10
[  191.894680][ T7287]  sock_alloc_inode+0x25/0x1c0
[  191.894720][ T7287]  alloc_inode+0x61/0x240
[  191.894755][ T7287]  sock_alloc+0x40/0x280
[  191.894791][ T7287]  sock_create_lite+0x82/0x120
[  191.894830][ T7287]  __netlink_kernel_create+0xbd/0x750
[  191.894872][ T7287]  ? find_held_lock+0x2b/0x80
[  191.894908][ T7287]  ? __pfx___netlink_kernel_create+0x10/0x10
[  191.894950][ T7287]  nfnetlink_net_init+0xda/0x160
[  191.894992][ T7287]  ? __pfx_nfnetlink_net_init+0x10/0x10
[  191.895050][ T7287]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  191.895105][ T7287]  ? __pfx_nfnetlink_bind+0x10/0x10
[  191.895148][ T7287]  ? __pfx_nfnetlink_unbind+0x10/0x10
[  191.895197][ T7287]  ? __pfx_nfnetlink_net_init+0x10/0x10
[  191.895235][ T7287]  ops_init+0x1df/0x5f0
[  191.895273][ T7287]  setup_net+0x21e/0x850
[  191.895311][ T7287]  ? __pfx_setup_net+0x10/0x10
[  191.895899][ T7287]  ? lockdep_init_map_type+0x5c/0x280
[  191.895933][ T7287]  ? __pfx_down_read_killable+0x10/0x10
[  191.895976][ T7287]  ? debug_mutex_init+0x37/0x70
[  191.896013][ T7287]  copy_net_ns+0x2a6/0x5f0
[  191.896055][ T7287]  create_new_namespaces+0x3ea/0xad0
[  191.896098][ T7287]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  191.896138][ T7287]  ksys_unshare+0x45b/0xa40
[  191.896223][ T7287]  ? __pfx_ksys_unshare+0x10/0x10
[  191.896264][ T7287]  ? xfd_validate_state+0x5d/0x180
[  191.896295][ T7287]  ? rcu_is_watching+0x12/0xc0
[  191.896333][ T7287]  __x64_sys_unshare+0x31/0x40
[  191.896374][ T7287]  do_syscall_64+0xcd/0x260
[  191.896411][ T7287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.896437][ T7287] RIP: 0033:0x7f680a78d169
[  191.896459][ T7287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.896486][ T7287] RSP: 002b:00007f680b690038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  191.896511][ T7287] RAX: ffffffffffffffda RBX: 00007f680a9a5fa0 RCX: 00007f680a78d169
[  191.896528][ T7287] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  191.896544][ T7287] RBP: 00007f680a80e2a0 R08: 0000000000000000 R09: 0000000000000000
[  191.896559][ T7287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  191.896574][ T7287] R13: 0000000000000000 R14: 00007f680a9a5fa0 R15: 00007ffe28d887b8
[  191.896602][ T7287]  </TASK>
[  192.316530][    C0] vkms_vblank_simulate: vblank timer overrun
[  194.406012][ T7318] netlink: 544 bytes leftover after parsing attributes in process `syz.3.306'.
[  197.307436][ T7353] FAULT_INJECTION: forcing a failure.
[  197.307436][ T7353] name failslab, interval 1, probability 0, space 0, times 0
[  197.360727][ T7353] CPU: 1 UID: 0 PID: 7353 Comm: syz.0.312 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  197.360768][ T7353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  197.360785][ T7353] Call Trace:
[  197.360795][ T7353]  <TASK>
[  197.360806][ T7353]  dump_stack_lvl+0x16c/0x1f0
[  197.360853][ T7353]  should_fail_ex+0x512/0x640
[  197.360886][ T7353]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  197.360923][ T7353]  should_failslab+0xc2/0x120
[  197.360957][ T7353]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  197.360987][ T7353]  ? vma_merge_new_range+0x40a/0xbb0
[  197.361014][ T7353]  ? vm_area_alloc+0x1f/0x230
[  197.361058][ T7353]  vm_area_alloc+0x1f/0x230
[  197.361096][ T7353]  __mmap_region+0x10e3/0x27c0
[  197.361129][ T7353]  ? __pfx___mmap_region+0x10/0x10
[  197.361167][ T7353]  ? is_bpf_text_address+0x94/0x1a0
[  197.361258][ T7353]  ? trace_cap_capable+0x18d/0x200
[  197.361310][ T7353]  ? cap_capable+0xb3/0x250
[  197.361361][ T7353]  mmap_region+0x1ab/0x3f0
[  197.361398][ T7353]  do_mmap+0xd8e/0x11b0
[  197.361445][ T7353]  ? __pfx_do_mmap+0x10/0x10
[  197.361489][ T7353]  ? __pfx_down_write_killable+0x10/0x10
[  197.361539][ T7353]  vm_mmap_pgoff+0x281/0x450
[  197.361595][ T7353]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  197.361667][ T7353]  ksys_mmap_pgoff+0x7d/0x5c0
[  197.361711][ T7353]  ? rcu_is_watching+0x12/0xc0
[  197.361751][ T7353]  __x64_sys_mmap+0x125/0x190
[  197.361791][ T7353]  do_syscall_64+0xcd/0x260
[  197.361832][ T7353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.361863][ T7353] RIP: 0033:0x7ff1a4b8d169
[  197.361885][ T7353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.361913][ T7353] RSP: 002b:00007ff1a592a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  197.361940][ T7353] RAX: ffffffffffffffda RBX: 00007ff1a4da5fa0 RCX: 00007ff1a4b8d169
[  197.361958][ T7353] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  197.361975][ T7353] RBP: 00007ff1a4c0e2a0 R08: fffffffffffffffa R09: 0000000000008000
[  197.361993][ T7353] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  197.362009][ T7353] R13: 0000000000000000 R14: 00007ff1a4da5fa0 R15: 00007ffdec68d518
[  197.362041][ T7353]  </TASK>
[  199.777558][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  199.803019][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  201.797599][ T7411] netlink: 28 bytes leftover after parsing attributes in process `syz.1.324'.
[  202.397527][ T7419] Invalid ELF header magic: != ELF
[  202.753071][ T7426] FAULT_INJECTION: forcing a failure.
[  202.753071][ T7426] name failslab, interval 1, probability 0, space 0, times 0
[  202.821592][ T7426] CPU: 1 UID: 0 PID: 7426 Comm: syz.0.328 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  202.821656][ T7426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  202.821686][ T7426] Call Trace:
[  202.821700][ T7426]  <TASK>
[  202.821718][ T7426]  dump_stack_lvl+0x16c/0x1f0
[  202.821768][ T7426]  should_fail_ex+0x512/0x640
[  202.821806][ T7426]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  202.821844][ T7426]  should_failslab+0xc2/0x120
[  202.821880][ T7426]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  202.821913][ T7426]  ? security_file_alloc+0x34/0x2b0
[  202.821956][ T7426]  security_file_alloc+0x34/0x2b0
[  202.821994][ T7426]  init_file+0x93/0x4c0
[  202.822031][ T7426]  alloc_empty_file+0x73/0x1e0
[  202.822081][ T7426]  alloc_file_pseudo+0x13a/0x230
[  202.822121][ T7426]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  202.822162][ T7426]  ? alloc_fd+0x471/0x7d0
[  202.822216][ T7426]  __anon_inode_getfile+0xf7/0x370
[  202.822273][ T7426]  anon_inode_getfile_fmode+0x37/0xa0
[  202.822307][ T7426]  __do_sys_timerfd_create+0x216/0x3e0
[  202.822340][ T7426]  ? do_syscall_64+0x91/0x260
[  202.822384][ T7426]  do_syscall_64+0xcd/0x260
[  202.822426][ T7426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.822459][ T7426] RIP: 0033:0x7ff1a4b8d169
[  202.822484][ T7426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.822514][ T7426] RSP: 002b:00007ff1a592a038 EFLAGS: 00000246 ORIG_RAX: 000000000000011b
[  202.822545][ T7426] RAX: ffffffffffffffda RBX: 00007ff1a4da5fa0 RCX: 00007ff1a4b8d169
[  202.822565][ T7426] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  202.822583][ T7426] RBP: 00007ff1a4c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  202.822601][ T7426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  202.822618][ T7426] R13: 0000000000000000 R14: 00007ff1a4da5fa0 R15: 00007ffdec68d518
[  202.822652][ T7426]  </TASK>
[  203.987365][ T7454] FAULT_INJECTION: forcing a failure.
[  203.987365][ T7454] name failslab, interval 1, probability 0, space 0, times 0
[  204.027099][ T7457] netlink: 326 bytes leftover after parsing attributes in process `syz.0.332'.
[  204.070791][ T7457] netlink: 326 bytes leftover after parsing attributes in process `syz.0.332'.
[  204.090264][ T7454] CPU: 1 UID: 0 PID: 7454 Comm: syz.2.333 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  204.090312][ T7454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  204.090332][ T7454] Call Trace:
[  204.090341][ T7454]  <TASK>
[  204.090354][ T7454]  dump_stack_lvl+0x16c/0x1f0
[  204.090402][ T7454]  should_fail_ex+0x512/0x640
[  204.090442][ T7454]  should_failslab+0xc2/0x120
[  204.090480][ T7454]  __kmalloc_cache_noprof+0x6a/0x3e0
[  204.090534][ T7454]  ? cfmuxl_create+0x40/0x210
[  204.090575][ T7454]  ? __pfx_caif_init_net+0x10/0x10
[  204.090614][ T7454]  cfmuxl_create+0x40/0x210
[  204.090654][ T7454]  cfcnfg_create+0x78/0x500
[  204.090700][ T7454]  ? debug_mutex_init+0x37/0x70
[  204.090743][ T7454]  ? __pfx_caif_init_net+0x10/0x10
[  204.090775][ T7454]  caif_init_net+0x7d/0xe0
[  204.090809][ T7454]  ops_init+0x1df/0x5f0
[  204.090850][ T7454]  setup_net+0x21e/0x850
[  204.090892][ T7454]  ? __pfx_setup_net+0x10/0x10
[  204.090932][ T7454]  ? lockdep_init_map_type+0x5c/0x280
[  204.090961][ T7454]  ? __pfx_down_read_killable+0x10/0x10
[  204.091009][ T7454]  ? debug_mutex_init+0x37/0x70
[  204.091049][ T7454]  copy_net_ns+0x2a6/0x5f0
[  204.091093][ T7454]  create_new_namespaces+0x3ea/0xad0
[  204.091146][ T7454]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  204.091195][ T7454]  ksys_unshare+0x45b/0xa40
[  204.091245][ T7454]  ? __pfx_ksys_unshare+0x10/0x10
[  204.091294][ T7454]  ? xfd_validate_state+0x5d/0x180
[  204.091331][ T7454]  ? rcu_is_watching+0x12/0xc0
[  204.091378][ T7454]  __x64_sys_unshare+0x31/0x40
[  204.091427][ T7454]  do_syscall_64+0xcd/0x260
[  204.091471][ T7454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.091503][ T7454] RIP: 0033:0x7f680a78d169
[  204.091529][ T7454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.091560][ T7454] RSP: 002b:00007f680b690038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  204.091606][ T7454] RAX: ffffffffffffffda RBX: 00007f680a9a5fa0 RCX: 00007f680a78d169
[  204.091627][ T7454] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  204.091645][ T7454] RBP: 00007f680a80e2a0 R08: 0000000000000000 R09: 0000000000000000
[  204.091663][ T7454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  204.091680][ T7454] R13: 0000000000000000 R14: 00007f680a9a5fa0 R15: 00007ffe28d887b8
[  204.091721][ T7454]  </TASK>
[  204.856258][ T7463] netlink: 28 bytes leftover after parsing attributes in process `syz.1.335'.
[  205.022252][ T7466] batman_adv: Routing algorithm '������������' is not supported
[  205.981896][ T7480] netlink: 'syz.1.339': attribute type 2 has an invalid length.
[  207.120475][ T7503] netlink: 326 bytes leftover after parsing attributes in process `syz.0.345'.
[  207.933544][ T7509] netlink: 28 bytes leftover after parsing attributes in process `syz.2.347'.
[  210.039215][ T7554] netlink: 326 bytes leftover after parsing attributes in process `syz.2.356'.
[  210.316592][ T7558] netlink: 4626 bytes leftover after parsing attributes in process `syz.2.357'.
[  210.747452][ T7562] netlink: 544 bytes leftover after parsing attributes in process `syz.3.360'.
[  211.218329][   T30] audit: type=1107 audit(6038308152.579:6): pid=7568 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  211.261755][   T30] audit: type=1107 audit(6038308152.579:7): pid=7568 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  212.053562][ T7590] netlink: 346 bytes leftover after parsing attributes in process `syz.3.365'.
[  212.332348][ T7595] netlink: 326 bytes leftover after parsing attributes in process `syz.0.366'.
[  212.407041][ T7598] FAULT_INJECTION: forcing a failure.
[  212.407041][ T7598] name failslab, interval 1, probability 0, space 0, times 0
[  212.480603][ T7598] CPU: 0 UID: 0 PID: 7598 Comm: syz.1.368 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  212.480648][ T7598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  212.480667][ T7598] Call Trace:
[  212.480676][ T7598]  <TASK>
[  212.480688][ T7598]  dump_stack_lvl+0x16c/0x1f0
[  212.480735][ T7598]  should_fail_ex+0x512/0x640
[  212.480768][ T7598]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  212.480822][ T7598]  should_failslab+0xc2/0x120
[  212.480859][ T7598]  __kmalloc_cache_noprof+0x6a/0x3e0
[  212.480910][ T7598]  ? snd_seq_create_port+0xf7/0xad0
[  212.480982][ T7598]  snd_seq_create_port+0xf7/0xad0
[  212.481035][ T7598]  snd_seq_ioctl_create_port+0x253/0x950
[  212.481078][ T7598]  ? __pfx_snd_seq_ioctl_create_port+0x10/0x10
[  212.481122][ T7598]  ? kasan_save_stack+0x42/0x60
[  212.481151][ T7598]  ? kasan_save_stack+0x33/0x60
[  212.481180][ T7598]  ? kasan_save_track+0x14/0x30
[  212.481212][ T7598]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  212.481262][ T7598]  create_port+0x197/0x260
[  212.481306][ T7598]  ? __pfx_create_port+0x10/0x10
[  212.481355][ T7598]  ? __pfx_snd_seq_oss_event_input+0x10/0x10
[  212.481406][ T7598]  ? __pfx_free_devinfo+0x10/0x10
[  212.481473][ T7598]  ? mark_held_locks+0x49/0x80
[  212.481524][ T7598]  ? _raw_spin_unlock_irq+0x23/0x50
[  212.481562][ T7598]  snd_seq_oss_open+0x36c/0xa20
[  212.481616][ T7598]  odev_open+0x6f/0x90
[  212.481655][ T7598]  ? __pfx_odev_open+0x10/0x10
[  212.481696][ T7598]  soundcore_open+0x409/0x580
[  212.481739][ T7598]  ? __pfx_soundcore_open+0x10/0x10
[  212.481780][ T7598]  chrdev_open+0x231/0x6a0
[  212.481811][ T7598]  ? __pfx_apparmor_file_open+0x10/0x10
[  212.481849][ T7598]  ? __pfx_chrdev_open+0x10/0x10
[  212.481883][ T7598]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  212.481941][ T7598]  do_dentry_open+0x741/0x1c10
[  212.482000][ T7598]  ? __pfx_chrdev_open+0x10/0x10
[  212.482039][ T7598]  vfs_open+0x82/0x3f0
[  212.482079][ T7598]  path_openat+0x1e5e/0x2d40
[  212.482120][ T7598]  ? __pfx_path_openat+0x10/0x10
[  212.482158][ T7598]  do_filp_open+0x20b/0x470
[  212.482187][ T7598]  ? __pfx_do_filp_open+0x10/0x10
[  212.482238][ T7598]  ? alloc_fd+0x471/0x7d0
[  212.482297][ T7598]  do_sys_openat2+0x11b/0x1d0
[  212.482335][ T7598]  ? __pfx_do_sys_openat2+0x10/0x10
[  212.482375][ T7598]  ? do_raw_spin_unlock+0x172/0x230
[  212.482419][ T7598]  __x64_sys_openat+0x174/0x210
[  212.482458][ T7598]  ? __pfx___x64_sys_openat+0x10/0x10
[  212.482500][ T7598]  ? rcu_is_watching+0x12/0xc0
[  212.482548][ T7598]  do_syscall_64+0xcd/0x260
[  212.482592][ T7598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.482625][ T7598] RIP: 0033:0x7f495858d169
[  212.482650][ T7598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.482681][ T7598] RSP: 002b:00007f49563f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  212.482711][ T7598] RAX: ffffffffffffffda RBX: 00007f49587a5fa0 RCX: 00007f495858d169
[  212.482732][ T7598] RDX: 0000000000000000 RSI: 0000200000000500 RDI: ffffffffffffff9c
[  212.482752][ T7598] RBP: 00007f495860e2a0 R08: 0000000000000000 R09: 0000000000000000
[  212.482772][ T7598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  212.482790][ T7598] R13: 0000000000000000 R14: 00007f49587a5fa0 R15: 00007fff2b4dcd98
[  212.482825][ T7598]  </TASK>
[  212.482839][ T7598] ALSA: seq_oss: can't create port
[  214.184852][ T7631] FAULT_INJECTION: forcing a failure.
[  214.184852][ T7631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  214.204457][ T7631] CPU: 0 UID: 0 PID: 7631 Comm: syz.2.371 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  214.204505][ T7631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  214.204524][ T7631] Call Trace:
[  214.204533][ T7631]  <TASK>
[  214.204545][ T7631]  dump_stack_lvl+0x16c/0x1f0
[  214.204591][ T7631]  should_fail_ex+0x512/0x640
[  214.204630][ T7631]  strncpy_from_user+0x3b/0x2e0
[  214.204686][ T7631]  getname_flags.part.0+0x8b/0x540
[  214.204733][ T7631]  __x64_sys_mkdir+0xd8/0x140
[  214.204763][ T7631]  do_syscall_64+0xcd/0x260
[  214.204807][ T7631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.204850][ T7631] RIP: 0033:0x7f680a78d169
[  214.204874][ T7631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.204904][ T7631] RSP: 002b:00007f680b690038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  214.204934][ T7631] RAX: ffffffffffffffda RBX: 00007f680a9a5fa0 RCX: 00007f680a78d169
[  214.204954][ T7631] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000200000000100
[  214.204971][ T7631] RBP: 00007f680a80e2a0 R08: 0000000000000000 R09: 0000000000000000
[  214.204989][ T7631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  214.205007][ T7631] R13: 0000000000000000 R14: 00007f680a9a5fa0 R15: 00007ffe28d887b8
[  214.205039][ T7631]  </TASK>
[  214.569801][ T7647] netlink: 346 bytes leftover after parsing attributes in process `syz.3.376'.
[  214.911874][ T7655] netlink: 326 bytes leftover after parsing attributes in process `syz.3.378'.
[  214.926303][ T7655] netlink: 326 bytes leftover after parsing attributes in process `syz.3.378'.
[  216.560543][ T7682] FAULT_INJECTION: forcing a failure.
[  216.560543][ T7682] name failslab, interval 1, probability 0, space 0, times 0
[  216.684650][ T7682] CPU: 1 UID: 0 PID: 7682 Comm: syz.1.384 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  216.684695][ T7682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  216.684717][ T7682] Call Trace:
[  216.684726][ T7682]  <TASK>
[  216.684738][ T7682]  dump_stack_lvl+0x16c/0x1f0
[  216.684781][ T7682]  should_fail_ex+0x512/0x640
[  216.684813][ T7682]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  216.684848][ T7682]  should_failslab+0xc2/0x120
[  216.684884][ T7682]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  216.684914][ T7682]  ? __proc_create+0xc3/0x8c0
[  216.684952][ T7682]  ? __proc_create+0x2ce/0x8c0
[  216.684992][ T7682]  __proc_create+0x2ce/0x8c0
[  216.685030][ T7682]  ? __pfx___proc_create+0x10/0x10
[  216.685072][ T7682]  ? __pfx___netlink_kernel_create+0x10/0x10
[  216.685121][ T7682]  proc_create_reg+0x7d/0x180
[  216.685164][ T7682]  proc_create_seq_private+0x8e/0x1d0
[  216.685206][ T7682]  ? __pfx_proc_create_seq_private+0x10/0x10
[  216.685248][ T7682]  ? __pfx_nl_fib_input+0x10/0x10
[  216.685300][ T7682]  ? __pfx_ip_rt_do_proc_init+0x10/0x10
[  216.685346][ T7682]  ip_rt_do_proc_init+0x57/0x1b0
[  216.685389][ T7682]  ops_init+0x1df/0x5f0
[  216.685430][ T7682]  setup_net+0x21e/0x850
[  216.685474][ T7682]  ? __pfx_setup_net+0x10/0x10
[  216.685512][ T7682]  ? lockdep_init_map_type+0x5c/0x280
[  216.685543][ T7682]  ? __pfx_down_read_killable+0x10/0x10
[  216.685592][ T7682]  ? debug_mutex_init+0x37/0x70
[  216.685634][ T7682]  copy_net_ns+0x2a6/0x5f0
[  216.685681][ T7682]  create_new_namespaces+0x3ea/0xad0
[  216.685734][ T7682]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  216.685782][ T7682]  ksys_unshare+0x45b/0xa40
[  216.685833][ T7682]  ? __pfx_ksys_unshare+0x10/0x10
[  216.685881][ T7682]  ? xfd_validate_state+0x5d/0x180
[  216.685917][ T7682]  ? rcu_is_watching+0x12/0xc0
[  216.685958][ T7682]  __x64_sys_unshare+0x31/0x40
[  216.686002][ T7682]  do_syscall_64+0xcd/0x260
[  216.686042][ T7682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.686073][ T7682] RIP: 0033:0x7f495858d169
[  216.686096][ T7682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.686125][ T7682] RSP: 002b:00007f49563f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  216.686151][ T7682] RAX: ffffffffffffffda RBX: 00007f49587a5fa0 RCX: 00007f495858d169
[  216.686169][ T7682] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  216.686186][ T7682] RBP: 00007f495860e2a0 R08: 0000000000000000 R09: 0000000000000000
[  216.686202][ T7682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  216.686218][ T7682] R13: 0000000000000000 R14: 00007f49587a5fa0 R15: 00007fff2b4dcd98
[  216.686247][ T7682]  </TASK>
[  216.745884][   T30] audit: type=1800 audit(6038308164.054:8): pid=7678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.383" name="features" dev="configfs" ino=18243 res=0 errno=0
[  216.936581][    C0] vkms_vblank_simulate: vblank timer overrun
[  217.931991][ T7711] netlink: 346 bytes leftover after parsing attributes in process `syz.0.387'.
[  218.881895][ T7720] [U] 
[  218.884701][ T7720] [U] 
[  218.887458][ T7720] [U] 
[  218.890217][ T7720] [U] 
[  218.893864][ T7720] [U] 
[  218.896725][ T7720] [U] 
[  218.899486][ T7720] [U] 
[  218.902297][ T7720] [U] 
[  218.977410][ T7720] [U] 
[  218.980236][ T7720] [U] 
[  218.983001][ T7720] [U] 
[  218.985757][ T7720] [U] 
[  219.266948][ T7719] [U] 
[  220.012549][ T7733] netlink: 28 bytes leftover after parsing attributes in process `syz.1.394'.
[  221.131820][ T7753] FAULT_INJECTION: forcing a failure.
[  221.131820][ T7753] name failslab, interval 1, probability 0, space 0, times 0
[  221.178832][ T7753] CPU: 0 UID: 0 PID: 7753 Comm: syz.3.399 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  221.178884][ T7753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  221.178903][ T7753] Call Trace:
[  221.178991][ T7753]  <TASK>
[  221.179020][ T7753]  dump_stack_lvl+0x16c/0x1f0
[  221.179188][ T7753]  should_fail_ex+0x512/0x640
[  221.179222][ T7753]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  221.179277][ T7753]  should_failslab+0xc2/0x120
[  221.179314][ T7753]  __kmalloc_cache_noprof+0x6a/0x3e0
[  221.179366][ T7753]  ? snd_seq_prioq_new+0x3f/0x110
[  221.179406][ T7753]  snd_seq_prioq_new+0x3f/0x110
[  221.179441][ T7753]  snd_seq_queue_alloc+0x12b/0x550
[  221.179477][ T7753]  snd_seq_ioctl_create_queue+0xa9/0x380
[  221.179519][ T7753]  snd_seq_kernel_client_ctl+0x107/0x1c0
[  221.179569][ T7753]  alloc_seq_queue+0xda/0x180
[  221.179612][ T7753]  ? __pfx_alloc_seq_queue+0x10/0x10
[  221.179665][ T7753]  ? mark_held_locks+0x49/0x80
[  221.179711][ T7753]  ? _raw_spin_unlock_irq+0x23/0x50
[  221.179747][ T7753]  snd_seq_oss_open+0x38c/0xa20
[  221.179795][ T7753]  odev_open+0x6f/0x90
[  221.179833][ T7753]  ? __pfx_odev_open+0x10/0x10
[  221.179874][ T7753]  soundcore_open+0x409/0x580
[  221.179915][ T7753]  ? __pfx_soundcore_open+0x10/0x10
[  221.179952][ T7753]  chrdev_open+0x231/0x6a0
[  221.179980][ T7753]  ? __pfx_apparmor_file_open+0x10/0x10
[  221.180015][ T7753]  ? __pfx_chrdev_open+0x10/0x10
[  221.180056][ T7753]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  221.180113][ T7753]  do_dentry_open+0x741/0x1c10
[  221.180163][ T7753]  ? __pfx_chrdev_open+0x10/0x10
[  221.180197][ T7753]  vfs_open+0x82/0x3f0
[  221.180306][ T7753]  path_openat+0x1e5e/0x2d40
[  221.180360][ T7753]  ? __pfx_path_openat+0x10/0x10
[  221.180399][ T7753]  do_filp_open+0x20b/0x470
[  221.180430][ T7753]  ? __pfx_do_filp_open+0x10/0x10
[  221.180479][ T7753]  ? alloc_fd+0x471/0x7d0
[  221.180533][ T7753]  do_sys_openat2+0x11b/0x1d0
[  221.180569][ T7753]  ? __pfx_do_sys_openat2+0x10/0x10
[  221.180607][ T7753]  ? do_raw_spin_unlock+0x172/0x230
[  221.180648][ T7753]  __x64_sys_openat+0x174/0x210
[  221.180684][ T7753]  ? __pfx___x64_sys_openat+0x10/0x10
[  221.180722][ T7753]  ? rcu_is_watching+0x12/0xc0
[  221.180789][ T7753]  do_syscall_64+0xcd/0x260
[  221.180837][ T7753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.180870][ T7753] RIP: 0033:0x7f1e55b8d169
[  221.180897][ T7753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.180933][ T7753] RSP: 002b:00007f1e56944038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  221.180964][ T7753] RAX: ffffffffffffffda RBX: 00007f1e55da5fa0 RCX: 00007f1e55b8d169
[  221.180985][ T7753] RDX: 0000000000000000 RSI: 0000200000000500 RDI: ffffffffffffff9c
[  221.181005][ T7753] RBP: 00007f1e55c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  221.181023][ T7753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  221.181040][ T7753] R13: 0000000000000000 R14: 00007f1e55da5fa0 R15: 00007fff560fc178
[  221.181075][ T7753]  </TASK>
[  221.517719][    C0] vkms_vblank_simulate: vblank timer overrun
[  222.454223][ T7761] netlink: 346 bytes leftover after parsing attributes in process `syz.1.400'.
[  223.254782][ T7774] netlink: 12 bytes leftover after parsing attributes in process `syz.1.403'.
[  225.460383][ T7809] netlink: 28 bytes leftover after parsing attributes in process `syz.3.411'.
[  225.474071][ T7809] caif0: entered promiscuous mode
[  226.612643][ T7835] netlink: 'syz.2.417': attribute type 1 has an invalid length.
[  226.624047][ T7835] netlink: 63 bytes leftover after parsing attributes in process `syz.2.417'.
[  226.724197][ T7833] nbd: nbd7 already in use

syzkaller
syzkaller login: [  227.198827][ T7841] svc: failed to register nfsdv3 RPC service (errno 111).
[  227.215829][ T7841] svc: failed to register nfsaclv3 RPC service (errno 111).
[  228.866318][ T7882] random: crng reseeded on system resumption
[  229.358451][ T7895] netlink: 346 bytes leftover after parsing attributes in process `syz.0.432'.
[  230.370202][   T30] audit: type=1800 audit(6038308177.734:9): pid=7912 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.436" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0
[  230.762498][ T7918] netlink: 544 bytes leftover after parsing attributes in process `syz.3.438'.
[  231.199503][ T7901] FAULT_INJECTION: forcing a failure.
[  231.199503][ T7901] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.236358][ T7901] CPU: 0 UID: 0 PID: 7901 Comm: syz.1.433 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  231.236409][ T7901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  231.236430][ T7901] Call Trace:
[  231.236440][ T7901]  <TASK>
[  231.236453][ T7901]  dump_stack_lvl+0x16c/0x1f0
[  231.236505][ T7901]  should_fail_ex+0x512/0x640
[  231.236545][ T7901]  _copy_to_user+0x32/0xd0
[  231.236583][ T7901]  do_pages_stat+0x5a5/0x850
[  231.236634][ T7901]  ? __pfx_do_pages_stat+0x10/0x10
[  231.236703][ T7901]  ? do_raw_spin_unlock+0x172/0x230
[  231.236746][ T7901]  kernel_move_pages+0x106e/0x1550
[  231.236798][ T7901]  ? __pfx_kernel_move_pages+0x10/0x10
[  231.236846][ T7901]  ? __x64_sys_futex+0x1e0/0x4c0
[  231.236893][ T7901]  ? __x64_sys_futex+0x1e9/0x4c0
[  231.236943][ T7901]  ? xfd_validate_state+0x5d/0x180
[  231.236987][ T7901]  ? rcu_is_watching+0x12/0xc0
[  231.237031][ T7901]  __x64_sys_move_pages+0xe0/0x1c0
[  231.237074][ T7901]  ? do_syscall_64+0x91/0x260
[  231.237116][ T7901]  ? lockdep_hardirqs_on+0x7c/0x110
[  231.237156][ T7901]  do_syscall_64+0xcd/0x260
[  231.237204][ T7901]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.237237][ T7901] RIP: 0033:0x7f495858d169
[  231.237263][ T7901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.237294][ T7901] RSP: 002b:00007f49563f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[  231.237323][ T7901] RAX: ffffffffffffffda RBX: 00007f49587a5fa0 RCX: 00007f495858d169
[  231.237350][ T7901] RDX: 0000000000000000 RSI: 0000000000000f54 RDI: 0000000000000001
[  231.237370][ T7901] RBP: 00007f495860e2a0 R08: 0000000000000000 R09: 8000000000000000
[  231.237392][ T7901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  231.237411][ T7901] R13: 0000000000000000 R14: 00007f49587a5fa0 R15: 00007fff2b4dcd98
[  231.237447][ T7901]  </TASK>
[  231.572319][ T7923] syz.0.439 uses obsolete (PF_INET,SOCK_PACKET)
[  231.724338][ T7929] netlink: 28 bytes leftover after parsing attributes in process `syz.3.441'.
[  231.824418][ T7929] veth1_macvtap: left promiscuous mode
[  231.861880][ T7930] Invalid ELF header magic: != ELF
[  231.903977][ T7936] netlink: 28 bytes leftover after parsing attributes in process `syz.0.442'.
[  232.048504][ T7934] netlink: 28 bytes leftover after parsing attributes in process `syz.1.443'.
[  232.492232][ T7945] random: crng reseeded on system resumption
[  232.834890][ T7936] syz.0.442 (7936) used greatest stack depth: 21528 bytes left
[  233.467444][ T7966] netlink: 544 bytes leftover after parsing attributes in process `syz.1.450'.
[  234.777121][ T7997] =======================================================
[  234.777121][ T7997] WARNING: The mand mount option has been deprecated and
[  234.777121][ T7997]          and is ignored by this kernel. Remove the mand
[  234.777121][ T7997]          option from the mount to silence this warning.
[  234.777121][ T7997] =======================================================
[  234.815578][    C1] vkms_vblank_simulate: vblank timer overrun
[  234.963053][ T7998] netlink: 346 bytes leftover after parsing attributes in process `syz.2.456'.
[  236.235095][ T8011] random: crng reseeded on system resumption
[  236.784636][ T8029] netlink: 28 bytes leftover after parsing attributes in process `syz.3.463'.
[  236.795111][ T8025] FAULT_INJECTION: forcing a failure.
[  236.795111][ T8025] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  236.819142][ T8025] CPU: 1 UID: 0 PID: 8025 Comm: syz.3.463 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  236.819184][ T8025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  236.819200][ T8025] Call Trace:
[  236.819209][ T8025]  <TASK>
[  236.819220][ T8025]  dump_stack_lvl+0x16c/0x1f0
[  236.819266][ T8025]  should_fail_ex+0x512/0x640
[  236.819300][ T8025]  _copy_from_user+0x2e/0xd0
[  236.819346][ T8025]  tracing_trace_options_write+0x102/0x270
[  236.819410][ T8025]  ? __pfx_tracing_trace_options_write+0x10/0x10
[  236.819471][ T8025]  vfs_write+0x25c/0x1180
[  236.819516][ T8025]  ? __pfx_tracing_trace_options_write+0x10/0x10
[  236.819568][ T8025]  ? __pfx___mutex_lock+0x10/0x10
[  236.819607][ T8025]  ? __pfx_vfs_write+0x10/0x10
[  236.819663][ T8025]  ? __fget_files+0x20e/0x3c0
[  236.819699][ T8025]  ksys_write+0x12a/0x240
[  236.819745][ T8025]  ? __pfx_ksys_write+0x10/0x10
[  236.819790][ T8025]  ? rcu_is_watching+0x12/0xc0
[  236.819837][ T8025]  do_syscall_64+0xcd/0x260
[  236.819878][ T8025]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.819909][ T8025] RIP: 0033:0x7f1e55b8d169
[  236.819931][ T8025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  236.819960][ T8025] RSP: 002b:00007f1e56944038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  236.819988][ T8025] RAX: ffffffffffffffda RBX: 00007f1e55da5fa0 RCX: 00007f1e55b8d169
[  236.820008][ T8025] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  236.820024][ T8025] RBP: 00007f1e56944090 R08: 0000000000000000 R09: 0000000000000000
[  236.820042][ T8025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  236.820060][ T8025] R13: 0000000000000000 R14: 00007f1e55da5fa0 R15: 00007fff560fc178
[  236.820094][ T8025]  </TASK>
[  237.012945][    C1] vkms_vblank_simulate: vblank timer overrun
[  237.235359][ T8022] bond0: option all_slaves_active: invalid value ()
[  238.691776][ T8044] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  238.959586][ T8046] netlink: 28 bytes leftover after parsing attributes in process `syz.0.464'.
[  239.152700][ T8055] netlink: 'syz.3.473': attribute type 3 has an invalid length.
[  239.212133][ T8055] netlink: 'syz.3.473': attribute type 3 has an invalid length.
[  239.248614][ T8055] netlink: 'syz.3.473': attribute type 3 has an invalid length.
[  239.288754][ T8055] netlink: 'syz.3.473': attribute type 3 has an invalid length.
[  239.348714][ T8055] netlink: 'syz.3.473': attribute type 3 has an invalid length.
[  239.388681][ T8055] netlink: 'syz.3.473': attribute type 3 has an invalid length.
[  239.438733][ T8055] netlink: 'syz.3.473': attribute type 3 has an invalid length.
[  239.468585][ T8055] netlink: 'syz.3.473': attribute type 3 has an invalid length.
[  239.532073][ T8055] netlink: 'syz.3.473': attribute type 3 has an invalid length.
[  239.608740][ T8055] netlink: 'syz.3.473': attribute type 3 has an invalid length.
[  240.016791][ T8073] netlink: 346 bytes leftover after parsing attributes in process `syz.1.475'.
[  240.909866][ T8083] netlink: 28 bytes leftover after parsing attributes in process `syz.3.478'.
[  241.949007][ T5849] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5
[  242.908871][ T8099] netlink: 4 bytes leftover after parsing attributes in process `syz.3.482'.
[  245.073531][ T8120] netlink: 326 bytes leftover after parsing attributes in process `syz.1.488'.
[  245.302934][ T8120] netlink: 326 bytes leftover after parsing attributes in process `syz.1.488'.
[  245.542344][ T8129] KVM: debugfs: duplicate directory 8129-3
[  245.859639][ T8136] netlink: 28 bytes leftover after parsing attributes in process `syz.2.492'.
[  245.917098][ T8136] ipvlan1: entered allmulticast mode
[  245.938400][ T8136] veth0_vlan: entered allmulticast mode
[  246.194066][ T8139] program syz.1.493 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  246.886564][ T8153] netlink: 28 bytes leftover after parsing attributes in process `syz.3.495'.
[  248.105945][ T8184] netlink: 8 bytes leftover after parsing attributes in process `syz.2.501'.
[  248.779578][ T8196] netlink: zone id is out of range
[  249.010432][ T8205] netlink: 326 bytes leftover after parsing attributes in process `syz.0.503'.
[  249.024054][ T8205] netlink: 326 bytes leftover after parsing attributes in process `syz.0.503'.
[  249.666634][ T8213] netlink: 346 bytes leftover after parsing attributes in process `syz.2.506'.
[  253.983520][ T8295] netlink: 326 bytes leftover after parsing attributes in process `syz.3.524'.
[  254.060097][ T8295] netlink: 326 bytes leftover after parsing attributes in process `syz.3.524'.
[  254.640954][ T8300] delete_channel: no stack
[  255.180806][ T8327] vhci_hcd: default hub control req: c408 v0003 i0002 l5
[  255.211434][ T8328] vhci_hcd: default hub control req: c408 v0003 i0002 l5
[  256.294310][ T8355] FAULT_INJECTION: forcing a failure.
[  256.294310][ T8355] name failslab, interval 1, probability 0, space 0, times 0
[  256.325511][ T8355] CPU: 0 UID: 0 PID: 8355 Comm: syz.2.534 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  256.325559][ T8355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  256.325579][ T8355] Call Trace:
[  256.325589][ T8355]  <TASK>
[  256.325601][ T8355]  dump_stack_lvl+0x16c/0x1f0
[  256.325653][ T8355]  should_fail_ex+0x512/0x640
[  256.325687][ T8355]  ? __kmalloc_noprof+0xbf/0x510
[  256.325722][ T8355]  ? __register_sysctl_table+0xea2/0x1900
[  256.325763][ T8355]  should_failslab+0xc2/0x120
[  256.325798][ T8355]  __kmalloc_noprof+0xd2/0x510
[  256.325829][ T8355]  ? __register_sysctl_table+0xe8e/0x1900
[  256.325875][ T8355]  __register_sysctl_table+0xea2/0x1900
[  256.325921][ T8355]  ? __pfx___register_sysctl_table+0x10/0x10
[  256.325985][ T8355]  ? is_module_address+0x2a/0x50
[  256.326015][ T8355]  ? register_net_sysctl_sz+0x228/0x3e0
[  256.326070][ T8355]  ? __asan_memcpy+0x3c/0x60
[  256.326120][ T8355]  ? __pfx_nf_lwtunnel_net_init+0x10/0x10
[  256.326161][ T8355]  nf_lwtunnel_net_init+0x60/0xf0
[  256.326201][ T8355]  ops_init+0x1df/0x5f0
[  256.326245][ T8355]  setup_net+0x21e/0x850
[  256.326288][ T8355]  ? __pfx_setup_net+0x10/0x10
[  256.326329][ T8355]  ? lockdep_init_map_type+0x5c/0x280
[  256.326361][ T8355]  ? __pfx_down_read_killable+0x10/0x10
[  256.326412][ T8355]  ? debug_mutex_init+0x37/0x70
[  256.326454][ T8355]  copy_net_ns+0x2a6/0x5f0
[  256.326501][ T8355]  create_new_namespaces+0x3ea/0xad0
[  256.326554][ T8355]  copy_namespaces+0x468/0x560
[  256.326600][ T8355]  copy_process+0x2b75/0x9130
[  256.326666][ T8355]  ? __pfx_copy_process+0x10/0x10
[  256.326711][ T8355]  ? __pfx___futex_wait+0x10/0x10
[  256.326766][ T8355]  kernel_clone+0xfc/0x960
[  256.326816][ T8355]  ? __pfx_kernel_clone+0x10/0x10
[  256.326880][ T8355]  __do_sys_clone+0xce/0x120
[  256.326928][ T8355]  ? __pfx___do_sys_clone+0x10/0x10
[  256.326991][ T8355]  ? rcu_is_watching+0x12/0xc0
[  256.327044][ T8355]  do_syscall_64+0xcd/0x260
[  256.327088][ T8355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.327122][ T8355] RIP: 0033:0x7f680a78d169
[  256.327147][ T8355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  256.327178][ T8355] RSP: 002b:00007f680b68ffe8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038
[  256.327207][ T8355] RAX: ffffffffffffffda RBX: 00007f680a9a5fa0 RCX: 00007f680a78d169
[  256.327227][ T8355] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000001432a0091
[  256.327246][ T8355] RBP: 00007f680a80e2a0 R08: 0000000000000000 R09: 0000000000000000
[  256.327263][ T8355] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  256.327281][ T8355] R13: 0000000000000000 R14: 00007f680a9a5fa0 R15: 00007ffe28d887b8
[  256.327314][ T8355]  </TASK>
[  256.327327][ T8355] sysctl could not get directory: /net -12
[  258.569340][ T8409] netlink: 272 bytes leftover after parsing attributes in process `syz.1.541'.
[  258.630197][ T8409] nbd: must specify a device to reconfigure
[  259.146813][ T8424] overlayfs: "check_copy_up" module option is obsolete
[  259.472999][ T8428] netlink: 544 bytes leftover after parsing attributes in process `syz.3.545'.
[  260.080357][ T8441] netlink: 8 bytes leftover after parsing attributes in process `syz.2.547'.
[  261.162161][ T8469] netlink: 326 bytes leftover after parsing attributes in process `syz.2.550'.
[  261.212653][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  261.219981][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  261.242379][ T8469] netlink: 326 bytes leftover after parsing attributes in process `syz.2.550'.
[  262.209700][ T8490] FAULT_INJECTION: forcing a failure.
[  262.209700][ T8490] name failslab, interval 1, probability 0, space 0, times 0
[  262.228427][ T8490] CPU: 0 UID: 0 PID: 8490 Comm: syz.2.556 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  262.228476][ T8490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  262.228498][ T8490] Call Trace:
[  262.228508][ T8490]  <TASK>
[  262.228521][ T8490]  dump_stack_lvl+0x16c/0x1f0
[  262.228571][ T8490]  should_fail_ex+0x512/0x640
[  262.228605][ T8490]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  262.228646][ T8490]  should_failslab+0xc2/0x120
[  262.228683][ T8490]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  262.228716][ T8490]  ? __debug_object_init+0x2de/0x3d0
[  262.228758][ T8490]  ? sock_alloc_inode+0x25/0x1c0
[  262.228807][ T8490]  ? __pfx_sock_alloc_inode+0x10/0x10
[  262.228850][ T8490]  sock_alloc_inode+0x25/0x1c0
[  262.228893][ T8490]  alloc_inode+0x61/0x240
[  262.228935][ T8490]  sock_alloc+0x40/0x280
[  262.228976][ T8490]  __sock_create+0xc1/0x8d0
[  262.229029][ T8490]  smc_create_clcsk+0x37/0xd0
[  262.229062][ T8490]  ? __pfx_smc_inet_init_sock+0x10/0x10
[  262.229107][ T8490]  inet_create+0x936/0x1090
[  262.229156][ T8490]  ? inet_create+0x93/0x1090
[  262.229208][ T8490]  __sock_create+0x335/0x8d0
[  262.229261][ T8490]  __sys_socket+0x14d/0x260
[  262.229311][ T8490]  ? __pfx___sys_socket+0x10/0x10
[  262.229361][ T8490]  ? rcu_is_watching+0x12/0xc0
[  262.229417][ T8490]  __x64_sys_socket+0x72/0xb0
[  262.229469][ T8490]  ? lockdep_hardirqs_on+0x7c/0x110
[  262.229511][ T8490]  do_syscall_64+0xcd/0x260
[  262.229559][ T8490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.229594][ T8490] RIP: 0033:0x7f680a78d169
[  262.229620][ T8490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.229651][ T8490] RSP: 002b:00007f680b66f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  262.229682][ T8490] RAX: ffffffffffffffda RBX: 00007f680a9a6080 RCX: 00007f680a78d169
[  262.229704][ T8490] RDX: 0000000000000100 RSI: 0000000000000801 RDI: 0000000000000002
[  262.229724][ T8490] RBP: 00007f680a80e2a0 R08: 0000000000000000 R09: 0000000000000000
[  262.229744][ T8490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  262.229761][ T8490] R13: 0000000000000000 R14: 00007f680a9a6080 R15: 00007ffe28d887b8
[  262.229794][ T8490]  </TASK>
[  262.229809][ T8490] socket: no more sockets
[  265.873621][ T8545] validate_nla: 23 callbacks suppressed
[  265.873649][ T8545] netlink: 'syz.1.570': attribute type 4 has an invalid length.
[  266.589905][ T8553] netlink: 4 bytes leftover after parsing attributes in process `syz.1.573'.
[  266.904354][ T8566] netlink: 330 bytes leftover after parsing attributes in process `syz.2.575'.
[  266.984037][ T8566] netlink: 330 bytes leftover after parsing attributes in process `syz.2.575'.
[  272.560252][ T8653] netlink: 330 bytes leftover after parsing attributes in process `syz.0.594'.
[  272.701203][ T8653] netlink: 330 bytes leftover after parsing attributes in process `syz.0.594'.
[  274.615416][ T8680] WARNING! power/level is deprecated; use power/control instead
[  274.639251][ T8685] netlink: 544 bytes leftover after parsing attributes in process `syz.1.603'.
[  274.888273][ T8689] netlink: 330 bytes leftover after parsing attributes in process `syz.1.605'.
[  274.985000][ T8689] netlink: 330 bytes leftover after parsing attributes in process `syz.1.605'.
[  276.304424][ T8717] netlink: 544 bytes leftover after parsing attributes in process `syz.3.613'.
[  277.399232][ T8737] netlink: 326 bytes leftover after parsing attributes in process `syz.3.618'.
[  277.414084][ T8737] netlink: 326 bytes leftover after parsing attributes in process `syz.3.618'.
[  278.264690][ T8750] netlink: 544 bytes leftover after parsing attributes in process `syz.2.623'.
[  279.817433][ T8772] netlink: 326 bytes leftover after parsing attributes in process `syz.3.629'.
[  280.469843][ T8776] netlink: 326 bytes leftover after parsing attributes in process `syz.3.629'.
[  281.099072][ T8783] random: crng reseeded on system resumption
[  281.469096][ T8797] FAULT_INJECTION: forcing a failure.
[  281.469096][ T8797] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  281.549627][ T8797] CPU: 1 UID: 0 PID: 8797 Comm: syz.0.633 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  281.549669][ T8797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  281.549685][ T8797] Call Trace:
[  281.549693][ T8797]  <TASK>
[  281.549703][ T8797]  dump_stack_lvl+0x16c/0x1f0
[  281.549745][ T8797]  should_fail_ex+0x512/0x640
[  281.549780][ T8797]  _copy_from_user+0x2e/0xd0
[  281.549815][ T8797]  copy_msghdr_from_user+0x98/0x160
[  281.549853][ T8797]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  281.549902][ T8797]  ___sys_sendmsg+0xfe/0x1d0
[  281.549939][ T8797]  ? __pfx____sys_sendmsg+0x10/0x10
[  281.550007][ T8797]  __sys_sendmsg+0x16d/0x220
[  281.550043][ T8797]  ? __pfx___sys_sendmsg+0x10/0x10
[  281.550088][ T8797]  ? rcu_is_watching+0x12/0xc0
[  281.550134][ T8797]  do_syscall_64+0xcd/0x260
[  281.550176][ T8797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.550207][ T8797] RIP: 0033:0x7ff1a4b8d169
[  281.550230][ T8797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  281.550259][ T8797] RSP: 002b:00007ff1a592a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  281.550288][ T8797] RAX: ffffffffffffffda RBX: 00007ff1a4da5fa0 RCX: 00007ff1a4b8d169
[  281.550307][ T8797] RDX: 0000000000040000 RSI: 0000200000000140 RDI: 0000000000000003
[  281.550325][ T8797] RBP: 00007ff1a592a090 R08: 0000000000000000 R09: 0000000000000000
[  281.550343][ T8797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  281.550360][ T8797] R13: 0000000000000000 R14: 00007ff1a4da5fa0 R15: 00007ffdec68d518
[  281.550393][ T8797]  </TASK>
[  281.740530][ T5849] Bluetooth: hci0: Unable to find connection for big 0xd2
[  282.098932][ T8805] Invalid ELF header magic: != ELF
[  283.419505][ T8801] netlink: 28 bytes leftover after parsing attributes in process `syz.1.635'.
[  283.658295][ T8827] netlink: 28 bytes leftover after parsing attributes in process `syz.3.639'.
[  283.683244][ T8830] netlink: 326 bytes leftover after parsing attributes in process `syz.1.640'.
[  283.712738][ T8828] netlink: 8 bytes leftover after parsing attributes in process `syz.3.639'.
[  283.740541][ T8832] netlink: 8 bytes leftover after parsing attributes in process `syz.3.639'.
[  283.846133][ T8827] team0: Port device team_slave_0 removed
[  284.045346][ T8830] netlink: 326 bytes leftover after parsing attributes in process `syz.1.640'.
[  284.989440][ T8840] netlink: 4 bytes leftover after parsing attributes in process `syz.1.643'.
[  285.147706][ T8851] netlink: 334 bytes leftover after parsing attributes in process `syz.2.646'.
[  285.562887][ T8864] netlink: 544 bytes leftover after parsing attributes in process `syz.2.649'.
[  287.727713][ T8911] netlink: 544 bytes leftover after parsing attributes in process `syz.1.660'.
[  288.590551][ T8931] netlink: 342 bytes leftover after parsing attributes in process `syz.2.665'.
[  288.835618][ T8931] random: crng reseeded on system resumption
[  290.444373][ T8959] FAULT_INJECTION: forcing a failure.
[  290.444373][ T8959] name failslab, interval 1, probability 0, space 0, times 0
[  290.500538][ T8959] CPU: 1 UID: 0 PID: 8959 Comm: syz.3.673 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  290.500586][ T8959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  290.500604][ T8959] Call Trace:
[  290.500613][ T8959]  <TASK>
[  290.500625][ T8959]  dump_stack_lvl+0x16c/0x1f0
[  290.500671][ T8959]  should_fail_ex+0x512/0x640
[  290.500701][ T8959]  ? __kmalloc_node_noprof+0xc5/0x500
[  290.500737][ T8959]  should_failslab+0xc2/0x120
[  290.500772][ T8959]  __kmalloc_node_noprof+0xd8/0x500
[  290.500803][ T8959]  ? lockdep_init_map_type+0x5c/0x280
[  290.500833][ T8959]  ? mempool_init_node+0x13c/0x760
[  290.500867][ T8959]  ? __pfx_mempool_alloc_slab+0x10/0x10
[  290.500899][ T8959]  mempool_init_node+0x13c/0x760
[  290.500930][ T8959]  ? __pfx_xa_load+0x10/0x10
[  290.500977][ T8959]  ? __pfx_mempool_alloc_slab+0x10/0x10
[  290.501008][ T8959]  ? __pfx_mempool_free_slab+0x10/0x10
[  290.501040][ T8959]  mempool_init_noprof+0x3a/0x50
[  290.501077][ T8959]  bioset_init+0x37a/0x880
[  290.501121][ T8959]  ? __pfx_bioset_init+0x10/0x10
[  290.501174][ T8959]  __alloc_disk_node+0x83/0x610
[  290.501204][ T8959]  ? blk_alloc_queue+0x1a3/0x760
[  290.501254][ T8959]  __blk_alloc_disk+0xd7/0x170
[  290.501287][ T8959]  ? __pfx___blk_alloc_disk+0x10/0x10
[  290.501445][ T8959]  ? lockdep_init_map_type+0x5c/0x280
[  290.501479][ T8959]  ? __raw_spin_lock_init+0x3a/0x110
[  290.501518][ T8959]  ? __pfx_hot_add_show+0x10/0x10
[  290.501545][ T8959]  zram_add+0x16e/0x6c0
[  290.501579][ T8959]  ? __pfx_zram_add+0x10/0x10
[  290.501606][ T8959]  ? __pfx___might_resched+0x10/0x10
[  290.501676][ T8959]  ? __pfx_hot_add_show+0x10/0x10
[  290.501707][ T8959]  hot_add_show+0x21/0x80
[  290.501734][ T8959]  class_attr_show+0x6f/0xa0
[  290.501783][ T8959]  ? __pfx_class_attr_show+0x10/0x10
[  290.501830][ T8959]  sysfs_kf_seq_show+0x23e/0x410
[  290.501882][ T8959]  seq_read_iter+0x506/0x12c0
[  290.501943][ T8959]  kernfs_fop_read_iter+0x40f/0x5a0
[  290.501984][ T8959]  ? rw_verify_area+0xcf/0x680
[  290.502030][ T8959]  vfs_read+0x8c8/0xc70
[  290.502081][ T8959]  ? __pfx___mutex_lock+0x10/0x10
[  290.502123][ T8959]  ? __pfx_vfs_read+0x10/0x10
[  290.502193][ T8959]  ksys_read+0x12a/0x240
[  290.502241][ T8959]  ? __pfx_ksys_read+0x10/0x10
[  290.502310][ T8959]  ? rcu_is_watching+0x12/0xc0
[  290.502371][ T8959]  do_syscall_64+0xcd/0x260
[  290.502420][ T8959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.502452][ T8959] RIP: 0033:0x7f1e55b8d169
[  290.502477][ T8959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.502509][ T8959] RSP: 002b:00007f1e56944038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  290.502539][ T8959] RAX: ffffffffffffffda RBX: 00007f1e55da5fa0 RCX: 00007f1e55b8d169
[  290.502560][ T8959] RDX: 0000000000001000 RSI: 0000200000000ec0 RDI: 0000000000000008
[  290.502577][ T8959] RBP: 00007f1e55c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  290.502595][ T8959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  290.502614][ T8959] R13: 0000000000000000 R14: 00007f1e55da5fa0 R15: 00007fff560fc178
[  290.502650][ T8959]  </TASK>
[  290.854917][ T8965] netlink: 326 bytes leftover after parsing attributes in process `syz.0.674'.
[  290.872828][ T8965] netlink: 326 bytes leftover after parsing attributes in process `syz.0.674'.
[  291.002021][ T8959] zram: Error allocating disk structure for device 1
[  291.429108][ T8969] netlink: 28 bytes leftover after parsing attributes in process `syz.0.676'.
[  291.511344][ T8981] netlink: 12 bytes leftover after parsing attributes in process `syz.3.678'.
[  292.886704][ T8991] FAULT_INJECTION: forcing a failure.
[  292.886704][ T8991] name failslab, interval 1, probability 0, space 0, times 0
[  292.914880][ T8991] CPU: 1 UID: 0 PID: 8991 Comm: syz.1.680 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  292.914914][ T8991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  292.914928][ T8991] Call Trace:
[  292.914934][ T8991]  <TASK>
[  292.914942][ T8991]  dump_stack_lvl+0x16c/0x1f0
[  292.914977][ T8991]  should_fail_ex+0x512/0x640
[  292.915001][ T8991]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  292.915039][ T8991]  should_failslab+0xc2/0x120
[  292.915064][ T8991]  __kmalloc_cache_noprof+0x6a/0x3e0
[  292.915100][ T8991]  ? sctp_auth_init+0x1e0/0x570
[  292.915144][ T8991]  ? kasan_save_track+0x14/0x30
[  292.915168][ T8991]  sctp_auth_init+0x1e0/0x570
[  292.915204][ T8991]  sctp_setsockopt+0xa371/0xb870
[  292.915229][ T8991]  ? __pfx_sctp_setsockopt+0x10/0x10
[  292.915248][ T8991]  ? __lock_acquire+0x5ca/0x1ba0
[  292.915285][ T8991]  ? __pfx_aa_sk_perm+0x10/0x10
[  292.915311][ T8991]  ? sock_common_setsockopt+0x2e/0xf0
[  292.915344][ T8991]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  292.915377][ T8991]  do_sock_setsockopt+0x221/0x470
[  292.915408][ T8991]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  292.915451][ T8991]  __sys_setsockopt+0x1a0/0x230
[  292.915479][ T8991]  __x64_sys_setsockopt+0xbd/0x160
[  292.915502][ T8991]  ? do_syscall_64+0x91/0x260
[  292.915530][ T8991]  ? lockdep_hardirqs_on+0x7c/0x110
[  292.915557][ T8991]  do_syscall_64+0xcd/0x260
[  292.915587][ T8991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.915610][ T8991] RIP: 0033:0x7f495858d169
[  292.915628][ T8991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.915650][ T8991] RSP: 002b:00007f49563f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  292.915671][ T8991] RAX: ffffffffffffffda RBX: 00007f49587a5fa0 RCX: 00007f495858d169
[  292.915686][ T8991] RDX: 0000000000000081 RSI: 0000010000000084 RDI: 0000000000000003
[  292.915699][ T8991] RBP: 00007f495860e2a0 R08: 0000000000000008 R09: 0000000000000000
[  292.915713][ T8991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  292.915727][ T8991] R13: 0000000000000000 R14: 00007f49587a5fa0 R15: 00007fff2b4dcd98
[  292.915752][ T8991]  </TASK>
[  293.371471][ T5153] Bluetooth: hci0: ACL packet for unknown connection handle 0
[  294.559177][ T9024] FAULT_INJECTION: forcing a failure.
[  294.559177][ T9024] name failslab, interval 1, probability 0, space 0, times 0
[  294.572545][ T9024] CPU: 0 UID: 0 PID: 9024 Comm: syz.0.688 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  294.572591][ T9024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  294.572611][ T9024] Call Trace:
[  294.572623][ T9024]  <TASK>
[  294.572637][ T9024]  dump_stack_lvl+0x16c/0x1f0
[  294.572686][ T9024]  should_fail_ex+0x512/0x640
[  294.572720][ T9024]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  294.572780][ T9024]  should_failslab+0xc2/0x120
[  294.572819][ T9024]  __kmalloc_cache_noprof+0x6a/0x3e0
[  294.572869][ T9024]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  294.572914][ T9024]  ? fscontext_alloc_log+0x4a/0x1b0
[  294.572962][ T9024]  fscontext_alloc_log+0x4a/0x1b0
[  294.573006][ T9024]  __x64_sys_fsopen+0x157/0x240
[  294.573049][ T9024]  do_syscall_64+0xcd/0x260
[  294.573093][ T9024]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.573126][ T9024] RIP: 0033:0x7ff1a4b8d169
[  294.573152][ T9024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.573187][ T9024] RSP: 002b:00007ff1a5909038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  294.573218][ T9024] RAX: ffffffffffffffda RBX: 00007ff1a4da6080 RCX: 00007ff1a4b8d169
[  294.573238][ T9024] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  294.573255][ T9024] RBP: 00007ff1a4c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  294.573272][ T9024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  294.573289][ T9024] R13: 0000000000000000 R14: 00007ff1a4da6080 R15: 00007ffdec68d518
[  294.573322][ T9024]  </TASK>
[  294.759968][    C0] vkms_vblank_simulate: vblank timer overrun
[  294.861593][ T9016] vivid-007: =================  START STATUS  =================
[  294.870357][ T9016] vivid-007: Generate PTS: true
[  294.877426][ T9016] vivid-007: Generate SCR: true
[  295.067358][ T9016] tpg source WxH: 640x360 (Y'CbCr)
[  295.168964][ T9016] tpg field: 1
[  295.172615][ T9016] tpg crop: (0,0)/640x360
[  295.177286][ T9016] tpg compose: (0,0)/640x360
[  295.247372][ T9033] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT
[  295.262585][ T9028] can: request_module (can-proto-0) failed.
[  295.278481][ T9016] tpg colorspace: 8
[  295.282635][ T9016] tpg transfer function: 0/0
[  295.287461][ T9016] tpg Y'CbCr encoding: 0/0
[  295.293010][ T9016] tpg quantization: 0/0
[  295.298966][ T9016] tpg RGB range: 0/2
[  295.303931][ T9016] vivid-007: ==================  END STATUS  ==================
[  295.549578][ T9038] openvswitch: netlink: IP tunnel dst address not specified
[  295.846078][ T9043] FAULT_INJECTION: forcing a failure.
[  295.846078][ T9043] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  295.926101][ T9043] CPU: 1 UID: 0 PID: 9043 Comm: syz.0.695 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  295.926144][ T9043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  295.926161][ T9043] Call Trace:
[  295.926170][ T9043]  <TASK>
[  295.926181][ T9043]  dump_stack_lvl+0x16c/0x1f0
[  295.926226][ T9043]  should_fail_ex+0x512/0x640
[  295.926262][ T9043]  _copy_from_user+0x2e/0xd0
[  295.926297][ T9043]  memdup_user+0x6b/0xe0
[  295.926342][ T9043]  udmabuf_ioctl+0x26f/0x310
[  295.926384][ T9043]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  295.926423][ T9043]  ? find_held_lock+0x2b/0x80
[  295.926462][ T9043]  ? hook_file_ioctl_common+0x145/0x410
[  295.926499][ T9043]  ? __fget_files+0x20e/0x3c0
[  295.926531][ T9043]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  295.926573][ T9043]  __x64_sys_ioctl+0x190/0x200
[  295.926618][ T9043]  do_syscall_64+0xcd/0x260
[  295.926661][ T9043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.926692][ T9043] RIP: 0033:0x7ff1a4b8d169
[  295.926715][ T9043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.926744][ T9043] RSP: 002b:00007ff1a592a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  295.926772][ T9043] RAX: ffffffffffffffda RBX: 00007ff1a4da5fa0 RCX: 00007ff1a4b8d169
[  295.926791][ T9043] RDX: 0000200000000000 RSI: 0000000040087543 RDI: 0000000000000007
[  295.926809][ T9043] RBP: 00007ff1a4c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  295.926826][ T9043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  295.926843][ T9043] R13: 0000000000000000 R14: 00007ff1a4da5fa0 R15: 00007ffdec68d518
[  295.926875][ T9043]  </TASK>
[  296.236583][ T9049] netlink: 326 bytes leftover after parsing attributes in process `syz.0.698'.
[  296.309683][ T9052] netlink: 326 bytes leftover after parsing attributes in process `syz.1.699'.
[  296.382363][ T9052] netlink: 326 bytes leftover after parsing attributes in process `syz.1.699'.
[  297.495219][ T9088] netlink: 326 bytes leftover after parsing attributes in process `syz.3.708'.
[  297.858861][ T9100] FAULT_INJECTION: forcing a failure.
[  297.858861][ T9100] name failslab, interval 1, probability 0, space 0, times 0
[  297.885437][ T9100] CPU: 1 UID: 0 PID: 9100 Comm: syz.2.710 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  297.885481][ T9100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  297.885497][ T9100] Call Trace:
[  297.885506][ T9100]  <TASK>
[  297.885517][ T9100]  dump_stack_lvl+0x16c/0x1f0
[  297.885562][ T9100]  should_fail_ex+0x512/0x640
[  297.885592][ T9100]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  297.885643][ T9100]  should_failslab+0xc2/0x120
[  297.885678][ T9100]  __kmalloc_cache_noprof+0x6a/0x3e0
[  297.885725][ T9100]  ? ila_xlat_nl_dump_start+0xee/0x1c0
[  297.885767][ T9100]  ? __pfx_ila_xlat_nl_dump_start+0x10/0x10
[  297.885807][ T9100]  ila_xlat_nl_dump_start+0xee/0x1c0
[  297.885860][ T9100]  genl_start+0x5fc/0x980
[  297.885910][ T9100]  __netlink_dump_start+0x60b/0x990
[  297.885956][ T9100]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  297.886008][ T9100]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  297.886056][ T9100]  ? kfree_skbmem+0x1a4/0x1f0
[  297.886111][ T9100]  ? __pfx_genl_get_cmd+0x10/0x10
[  297.886153][ T9100]  ? __pfx_genl_start+0x10/0x10
[  297.886195][ T9100]  ? __pfx_genl_dumpit+0x10/0x10
[  297.886238][ T9100]  ? __pfx_genl_done+0x10/0x10
[  297.886286][ T9100]  ? __local_bh_enable_ip+0xa4/0x120
[  297.886326][ T9100]  ? __dev_queue_xmit+0x896/0x43e0
[  297.886355][ T9100]  ? __radix_tree_lookup+0x21f/0x2c0
[  297.886395][ T9100]  genl_rcv_msg+0x46e/0x800
[  297.886446][ T9100]  ? __pfx_genl_rcv_msg+0x10/0x10
[  297.886491][ T9100]  ? __pfx___dev_queue_xmit+0x10/0x10
[  297.886521][ T9100]  ? __pfx_ila_xlat_nl_dump_start+0x10/0x10
[  297.886561][ T9100]  ? __pfx_ila_xlat_nl_dump+0x10/0x10
[  297.886599][ T9100]  ? __pfx_ila_xlat_nl_dump_done+0x10/0x10
[  297.886642][ T9100]  ? __lock_acquire+0xaa4/0x1ba0
[  297.886699][ T9100]  netlink_rcv_skb+0x16a/0x440
[  297.886741][ T9100]  ? __pfx_genl_rcv_msg+0x10/0x10
[  297.886789][ T9100]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  297.886851][ T9100]  ? __pfx_down_read+0x10/0x10
[  297.886896][ T9100]  ? netlink_deliver_tap+0x1ae/0xd30
[  297.886938][ T9100]  genl_rcv+0x28/0x40
[  297.886983][ T9100]  netlink_unicast+0x53a/0x7f0
[  297.887027][ T9100]  ? __pfx_netlink_unicast+0x10/0x10
[  297.887066][ T9100]  ? __lock_acquire+0xaa4/0x1ba0
[  297.887122][ T9100]  netlink_sendmsg+0x8d1/0xdd0
[  297.887168][ T9100]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.887221][ T9100]  ____sys_sendmsg+0xa95/0xc70
[  297.887269][ T9100]  ? copy_msghdr_from_user+0x10a/0x160
[  297.887306][ T9100]  ? __pfx_____sys_sendmsg+0x10/0x10
[  297.887367][ T9100]  ___sys_sendmsg+0x134/0x1d0
[  297.887405][ T9100]  ? __pfx____sys_sendmsg+0x10/0x10
[  297.887477][ T9100]  __sys_sendmsg+0x16d/0x220
[  297.887514][ T9100]  ? __pfx___sys_sendmsg+0x10/0x10
[  297.887560][ T9100]  ? rcu_is_watching+0x12/0xc0
[  297.887606][ T9100]  do_syscall_64+0xcd/0x260
[  297.887648][ T9100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.887679][ T9100] RIP: 0033:0x7f680a78d169
[  297.887703][ T9100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.887732][ T9100] RSP: 002b:00007f680b690038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  297.887760][ T9100] RAX: ffffffffffffffda RBX: 00007f680a9a5fa0 RCX: 00007f680a78d169
[  297.887781][ T9100] RDX: 0000000000040000 RSI: 0000200000000140 RDI: 0000000000000003
[  297.887800][ T9100] RBP: 00007f680b690090 R08: 0000000000000000 R09: 0000000000000000
[  297.887818][ T9100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.887858][ T9100] R13: 0000000000000000 R14: 00007f680a9a5fa0 R15: 00007ffe28d887b8
[  297.887891][ T9100]  </TASK>
[  298.301908][ T9098] bridge0: port 3(ipvlan0) entered blocking state
[  298.329409][ T9098] bridge0: port 3(ipvlan0) entered disabled state
[  298.357534][ T9098] ipvlan0: entered allmulticast mode
[  298.366785][ T9098] veth0_vlan: entered allmulticast mode
[  298.395590][ T9098] ipvlan0: left allmulticast mode
[  298.435822][ T9098] veth0_vlan: left allmulticast mode
[  299.304530][ T9110] Invalid ELF header magic: != ELF
[  300.301049][ T9128] FAULT_INJECTION: forcing a failure.
[  300.301049][ T9128] name failslab, interval 1, probability 0, space 0, times 0
[  300.326891][ T9128] CPU: 0 UID: 0 PID: 9128 Comm: syz.2.719 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  300.326934][ T9128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  300.326962][ T9128] Call Trace:
[  300.326971][ T9128]  <TASK>
[  300.326983][ T9128]  dump_stack_lvl+0x16c/0x1f0
[  300.327036][ T9128]  should_fail_ex+0x512/0x640
[  300.327067][ T9128]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  300.327111][ T9128]  should_failslab+0xc2/0x120
[  300.327146][ T9128]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  300.327177][ T9128]  ? __kasan_kmalloc+0xaa/0xb0
[  300.327203][ T9128]  ? ila_xlat_nl_dump_start+0xee/0x1c0
[  300.327243][ T9128]  ? __alloc_skb+0x2b2/0x380
[  300.327289][ T9128]  __alloc_skb+0x2b2/0x380
[  300.327321][ T9128]  ? __pfx___alloc_skb+0x10/0x10
[  300.327356][ T9128]  ? __lock_acquire+0xaa4/0x1ba0
[  300.327415][ T9128]  netlink_dump+0x698/0xd00
[  300.327457][ T9128]  ? __pfx_netlink_dump+0x10/0x10
[  300.327493][ T9128]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  300.327540][ T9128]  ? _raw_spin_unlock+0x28/0x50
[  300.327580][ T9128]  ? ila_xlat_nl_dump_start+0x158/0x1c0
[  300.327621][ T9128]  ? genl_start+0x67f/0x980
[  300.327676][ T9128]  __netlink_dump_start+0x6d6/0x990
[  300.327720][ T9128]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  300.327771][ T9128]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  300.327825][ T9128]  ? kfree_skbmem+0x1a4/0x1f0
[  300.327881][ T9128]  ? __pfx_genl_get_cmd+0x10/0x10
[  300.327921][ T9128]  ? __pfx_genl_start+0x10/0x10
[  300.327962][ T9128]  ? __pfx_genl_dumpit+0x10/0x10
[  300.328005][ T9128]  ? __pfx_genl_done+0x10/0x10
[  300.328060][ T9128]  ? __local_bh_enable_ip+0xa4/0x120
[  300.328101][ T9128]  ? __dev_queue_xmit+0x896/0x43e0
[  300.328130][ T9128]  ? __radix_tree_lookup+0x21f/0x2c0
[  300.328170][ T9128]  genl_rcv_msg+0x46e/0x800
[  300.328230][ T9128]  ? __pfx_genl_rcv_msg+0x10/0x10
[  300.328282][ T9128]  ? __pfx___dev_queue_xmit+0x10/0x10
[  300.328310][ T9128]  ? __pfx_ila_xlat_nl_dump_start+0x10/0x10
[  300.328349][ T9128]  ? __pfx_ila_xlat_nl_dump+0x10/0x10
[  300.328398][ T9128]  ? __pfx_ila_xlat_nl_dump_done+0x10/0x10
[  300.328441][ T9128]  ? __lock_acquire+0xaa4/0x1ba0
[  300.328494][ T9128]  netlink_rcv_skb+0x16a/0x440
[  300.328533][ T9128]  ? __pfx_genl_rcv_msg+0x10/0x10
[  300.328588][ T9128]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  300.328644][ T9128]  ? __pfx_down_read+0x10/0x10
[  300.328686][ T9128]  ? netlink_deliver_tap+0x1ae/0xd30
[  300.328728][ T9128]  genl_rcv+0x28/0x40
[  300.328769][ T9128]  netlink_unicast+0x53a/0x7f0
[  300.328813][ T9128]  ? __pfx_netlink_unicast+0x10/0x10
[  300.328850][ T9128]  ? __lock_acquire+0xaa4/0x1ba0
[  300.328952][ T9128]  netlink_sendmsg+0x8d1/0xdd0
[  300.328998][ T9128]  ? __pfx_netlink_sendmsg+0x10/0x10
[  300.329049][ T9128]  ____sys_sendmsg+0xa95/0xc70
[  300.329099][ T9128]  ? copy_msghdr_from_user+0x10a/0x160
[  300.329134][ T9128]  ? __pfx_____sys_sendmsg+0x10/0x10
[  300.329190][ T9128]  ___sys_sendmsg+0x134/0x1d0
[  300.329225][ T9128]  ? __pfx____sys_sendmsg+0x10/0x10
[  300.329289][ T9128]  __sys_sendmsg+0x16d/0x220
[  300.329576][ T9128]  ? __pfx___sys_sendmsg+0x10/0x10
[  300.329629][ T9128]  ? rcu_is_watching+0x12/0xc0
[  300.329673][ T9128]  do_syscall_64+0xcd/0x260
[  300.329715][ T9128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.329744][ T9128] RIP: 0033:0x7f680a78d169
[  300.329767][ T9128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  300.329796][ T9128] RSP: 002b:00007f680b690038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  300.329823][ T9128] RAX: ffffffffffffffda RBX: 00007f680a9a5fa0 RCX: 00007f680a78d169
[  300.329843][ T9128] RDX: 0000000000040000 RSI: 0000200000000140 RDI: 0000000000000003
[  300.329859][ T9128] RBP: 00007f680b690090 R08: 0000000000000000 R09: 0000000000000000
[  300.329877][ T9128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  300.329895][ T9128] R13: 0000000000000000 R14: 00007f680a9a5fa0 R15: 00007ffe28d887b8
[  300.329928][ T9128]  </TASK>
[  300.794748][ T9131] netlink: 326 bytes leftover after parsing attributes in process `syz.1.718'.
[  302.503922][ T9172] netlink: 338 bytes leftover after parsing attributes in process `syz.1.727'.
[  302.660713][ T9184] netlink: 326 bytes leftover after parsing attributes in process `syz.3.729'.
[  302.697572][ T9184] netlink: 326 bytes leftover after parsing attributes in process `syz.3.729'.
[  303.486400][ T9204] netlink: 544 bytes leftover after parsing attributes in process `syz.0.733'.
[  303.710032][ T9212] netlink: 448 bytes leftover after parsing attributes in process `syz.1.730'.
[  303.745417][ T9211] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  303.794258][ T9211] netlink: 28 bytes leftover after parsing attributes in process `syz.2.735'.
[  303.901627][ T9211] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  304.037498][ T5847] Process accounting resumed
[  305.343411][ T9252] FAULT_INJECTION: forcing a failure.
[  305.343411][ T9252] name failslab, interval 1, probability 0, space 0, times 0
[  305.428533][ T9252] CPU: 1 UID: 0 PID: 9252 Comm: syz.3.745 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  305.428578][ T9252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  305.428597][ T9252] Call Trace:
[  305.428607][ T9252]  <TASK>
[  305.428618][ T9252]  dump_stack_lvl+0x16c/0x1f0
[  305.428664][ T9252]  should_fail_ex+0x512/0x640
[  305.428701][ T9252]  should_failslab+0xc2/0x120
[  305.428737][ T9252]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  305.428771][ T9252]  ? skb_clone+0x190/0x3f0
[  305.428813][ T9252]  skb_clone+0x190/0x3f0
[  305.428852][ T9252]  netlink_deliver_tap+0xabd/0xd30
[  305.428898][ T9252]  netlink_dump+0x638/0xd00
[  305.428940][ T9252]  ? __pfx_netlink_dump+0x10/0x10
[  305.428978][ T9252]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  305.429035][ T9252]  ? _raw_spin_unlock+0x28/0x50
[  305.429068][ T9252]  ? ila_xlat_nl_dump_start+0x158/0x1c0
[  305.429112][ T9252]  ? genl_start+0x67f/0x980
[  305.429161][ T9252]  __netlink_dump_start+0x6d6/0x990
[  305.429205][ T9252]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  305.429256][ T9252]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  305.429305][ T9252]  ? kfree_skbmem+0x1a4/0x1f0
[  305.429360][ T9252]  ? __pfx_genl_get_cmd+0x10/0x10
[  305.429402][ T9252]  ? __pfx_genl_start+0x10/0x10
[  305.429451][ T9252]  ? __pfx_genl_dumpit+0x10/0x10
[  305.429496][ T9252]  ? __pfx_genl_done+0x10/0x10
[  305.429543][ T9252]  ? __local_bh_enable_ip+0xa4/0x120
[  305.429589][ T9252]  ? __dev_queue_xmit+0x896/0x43e0
[  305.429619][ T9252]  ? __radix_tree_lookup+0x21f/0x2c0
[  305.429660][ T9252]  genl_rcv_msg+0x46e/0x800
[  305.429710][ T9252]  ? __pfx_genl_rcv_msg+0x10/0x10
[  305.429755][ T9252]  ? __pfx___dev_queue_xmit+0x10/0x10
[  305.429784][ T9252]  ? __pfx_ila_xlat_nl_dump_start+0x10/0x10
[  305.429825][ T9252]  ? __pfx_ila_xlat_nl_dump+0x10/0x10
[  305.429864][ T9252]  ? __pfx_ila_xlat_nl_dump_done+0x10/0x10
[  305.429908][ T9252]  ? __lock_acquire+0xaa4/0x1ba0
[  305.429962][ T9252]  netlink_rcv_skb+0x16a/0x440
[  305.430003][ T9252]  ? __pfx_genl_rcv_msg+0x10/0x10
[  305.430060][ T9252]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  305.430116][ T9252]  ? __pfx_down_read+0x10/0x10
[  305.430162][ T9252]  ? netlink_deliver_tap+0x1ae/0xd30
[  305.430205][ T9252]  genl_rcv+0x28/0x40
[  305.430248][ T9252]  netlink_unicast+0x53a/0x7f0
[  305.430291][ T9252]  ? __pfx_netlink_unicast+0x10/0x10
[  305.430332][ T9252]  ? __lock_acquire+0xaa4/0x1ba0
[  305.430389][ T9252]  netlink_sendmsg+0x8d1/0xdd0
[  305.430436][ T9252]  ? __pfx_netlink_sendmsg+0x10/0x10
[  305.430488][ T9252]  ____sys_sendmsg+0xa95/0xc70
[  305.430536][ T9252]  ? copy_msghdr_from_user+0x10a/0x160
[  305.430574][ T9252]  ? __pfx_____sys_sendmsg+0x10/0x10
[  305.430633][ T9252]  ___sys_sendmsg+0x134/0x1d0
[  305.430672][ T9252]  ? __pfx____sys_sendmsg+0x10/0x10
[  305.430744][ T9252]  __sys_sendmsg+0x16d/0x220
[  305.430783][ T9252]  ? __pfx___sys_sendmsg+0x10/0x10
[  305.430838][ T9252]  ? rcu_is_watching+0x12/0xc0
[  305.430884][ T9252]  do_syscall_64+0xcd/0x260
[  305.430927][ T9252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  305.430958][ T9252] RIP: 0033:0x7f1e55b8d169
[  305.430982][ T9252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  305.431024][ T9252] RSP: 002b:00007f1e56944038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  305.431054][ T9252] RAX: ffffffffffffffda RBX: 00007f1e55da5fa0 RCX: 00007f1e55b8d169
[  305.431074][ T9252] RDX: 0000000000040000 RSI: 0000200000000140 RDI: 0000000000000003
[  305.431092][ T9252] RBP: 00007f1e56944090 R08: 0000000000000000 R09: 0000000000000000
[  305.431111][ T9252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  305.431128][ T9252] R13: 0000000000000000 R14: 00007f1e55da5fa0 R15: 00007fff560fc178
[  305.431161][ T9252]  </TASK>
[  306.058096][ T9235] Dead loop on virtual device ip6_vti0, fix it urgently!
[  306.094010][ T9235] Dead loop on virtual device ip6_vti0, fix it urgently!
[  306.222917][ T9235] Dead loop on virtual device ip6_vti0, fix it urgently!
[  306.307084][ T9247] netlink: 28 bytes leftover after parsing attributes in process `syz.0.740'.
[  306.344386][ T9247] macvtap0: entered promiscuous mode
[  306.364851][ T9247] macvtap0: entered allmulticast mode
[  306.380731][ T9247] veth0_macvtap: entered allmulticast mode
[  307.566847][ T9280] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input16
[  307.690405][ T9295] FAULT_INJECTION: forcing a failure.
[  307.690405][ T9295] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  307.726609][ T9295] CPU: 1 UID: 0 PID: 9295 Comm: syz.1.754 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  307.726653][ T9295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  307.726672][ T9295] Call Trace:
[  307.726681][ T9295]  <TASK>
[  307.726692][ T9295]  dump_stack_lvl+0x16c/0x1f0
[  307.726738][ T9295]  should_fail_ex+0x512/0x640
[  307.726784][ T9295]  _copy_to_user+0x32/0xd0
[  307.726820][ T9295]  simple_read_from_buffer+0xcb/0x170
[  307.726870][ T9295]  proc_fail_nth_read+0x197/0x270
[  307.726917][ T9295]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  307.726965][ T9295]  ? rw_verify_area+0xcf/0x680
[  307.727006][ T9295]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  307.727054][ T9295]  vfs_read+0x1de/0xc70
[  307.727103][ T9295]  ? __pfx___mutex_lock+0x10/0x10
[  307.727143][ T9295]  ? __pfx_vfs_read+0x10/0x10
[  307.727198][ T9295]  ? __fget_files+0x20e/0x3c0
[  307.727234][ T9295]  ksys_read+0x12a/0x240
[  307.727280][ T9295]  ? __pfx_ksys_read+0x10/0x10
[  307.727324][ T9295]  ? rcu_is_watching+0x12/0xc0
[  307.727371][ T9295]  do_syscall_64+0xcd/0x260
[  307.727412][ T9295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.727440][ T9295] RIP: 0033:0x7f495858bb7c
[  307.727461][ T9295] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  307.727490][ T9295] RSP: 002b:00007f49563f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  307.727519][ T9295] RAX: ffffffffffffffda RBX: 00007f49587a5fa0 RCX: 00007f495858bb7c
[  307.727539][ T9295] RDX: 000000000000000f RSI: 00007f49563f60a0 RDI: 0000000000000004
[  307.727557][ T9295] RBP: 00007f49563f6090 R08: 0000000000000000 R09: 0000000000000000
[  307.727574][ T9295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  307.727591][ T9295] R13: 0000000000000000 R14: 00007f49587a5fa0 R15: 00007fff2b4dcd98
[  307.727624][ T9295]  </TASK>
[  308.709392][ T9303] netlink: 544 bytes leftover after parsing attributes in process `syz.0.757'.
[  309.467221][ T9317] sctp: [Deprecated]: syz.3.758 (pid 9317) Use of struct sctp_assoc_value in delayed_ack socket option.
[  309.467221][ T9317] Use struct sctp_sack_info instead
[  309.502880][ T9316] netlink: 326 bytes leftover after parsing attributes in process `syz.0.759'.
[  309.525778][ T9320] netlink: 342 bytes leftover after parsing attributes in process `syz.2.760'.
[  310.111295][ T9339] misc userio: Invalid payload size
[  310.584340][ T9346] netlink: 330 bytes leftover after parsing attributes in process `syz.0.766'.
[  310.639271][ T9346] netlink: 330 bytes leftover after parsing attributes in process `syz.0.766'.
[  312.534846][ T9364] mkiss: ax0: crc mode is auto.
[  313.259230][ T9382] netlink: 330 bytes leftover after parsing attributes in process `syz.2.776'.
[  313.449731][ T9387] netlink: 330 bytes leftover after parsing attributes in process `syz.2.776'.
[  315.492447][ T9428] netlink: 544 bytes leftover after parsing attributes in process `syz.0.786'.
[  317.917067][ T9455] netlink: 326 bytes leftover after parsing attributes in process `syz.0.794'.
[  317.977718][ T9455] netlink: 326 bytes leftover after parsing attributes in process `syz.0.794'.
[  319.687683][ T9482] ptrace attach of "./syz-executor exec"[5850] was attempted by "�!)��L!ʷ�w��\x1b7N��C}�g�vG{?��qmka�P�\x0a�x�1 I�J\x09�:�_���J�A#��A�����ۋ.!�'�-GJ�^u˟�e��T�� z���f����ÏM�\x5c�˵Aa�t]w����.-gP�X�Y,F2������À��.x�fB)qȐ~lcY�@E<��ڹΚ�����^�;�\x0d��Lpg�s-�#����B9�|����W�Q�l��ܤ��I��K���҈�%�M���ك� }�7��u�%��$��A�!M����h���D\x1b�s�L�s��^G��J}𑤫���I�Ԫŋ�\x07Vcv��\x0c�k�*L<�l�v�+�Óѭ�z�i�j��:|e�$#q.1�'l��\x0aZ�UZ��Y���B�J!�ZN�\x0b�<I%-�<���+����v75�=��{\x1b�4>�v,9�I�rU)A�U{�(֭Y ��D���0\x0b4��`4���g\x0b[��۷���C%P���aY*�e\x0d۞��b�%_�>#�\x0dQ4�X\x07�\x0dJ�}{KE�'\x22����gd�o`\x09Ϣ܅!#�]���T4=�P1�0�f8���\x22\x0aH^V�:�?Q)\x22�����v�q@������\x0c=s��o �X
\x0a�w�JZ@En���A��\x0c�\x0aH#�s�cᡓjp��\x22zƔ��K?��vw���VA�=f�F4h�ݽT�
����Odw�6;��Ц�`�r�ƛKSQrI�!�W��wuH5<[<&R���3qGc� ��fH;���j�n������(�b��\x22��o�L�/mT Xc��)Y�W�E�'�o��61\x07sy�x;훲1��^x9-\x0d��Ϝ�ʦ}���ykSt�\x0a�+9/AfM��y��&��ә�����\x22����.��f�Y��A;��.��{z�_~S�
[  319.895259][ T9484] netlink: zone id is out of range
[  320.018241][    C0] vkms_vblank_simulate: vblank timer overrun
[  320.067965][ T9484] netlink: zone id is out of range
[  320.081159][ T9484] netlink: zone id is out of range
[  320.091304][ T9484] netlink: zone id is out of range
[  320.098591][ T9484] netlink: zone id is out of range
[  320.107238][ T9484] netlink: del zone limit has 4 unknown bytes
[  321.379680][ T9500] netlink: 326 bytes leftover after parsing attributes in process `syz.3.805'.
[  322.384456][ T9508] netlink: 326 bytes leftover after parsing attributes in process `syz.3.805'.
[  322.656284][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  322.663405][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  325.218489][ T9563] netlink: 544 bytes leftover after parsing attributes in process `syz.3.818'.
[  325.621042][ T9565] netlink: 326 bytes leftover after parsing attributes in process `syz.0.819'.
[  325.777499][ T9565] netlink: 326 bytes leftover after parsing attributes in process `syz.0.819'.
[  328.642396][ T9614] netlink: 326 bytes leftover after parsing attributes in process `syz.1.831'.
[  328.724064][ T9614] netlink: 326 bytes leftover after parsing attributes in process `syz.1.831'.
[  330.767931][ T9669] netlink: 326 bytes leftover after parsing attributes in process `syz.3.843'.
[  330.823206][ T9669] netlink: 326 bytes leftover after parsing attributes in process `syz.3.843'.
[  330.828960][ T9672] openvswitch: netlink: Key 15 has unexpected len 16 expected 4
[  331.287972][ T9674] netlink: 544 bytes leftover after parsing attributes in process `syz.3.845'.
[  332.906263][ T9709] netlink: 342 bytes leftover after parsing attributes in process `syz.0.853'.
[  333.205912][ T9713] netlink: 326 bytes leftover after parsing attributes in process `syz.0.854'.
[  333.224815][ T9713] netlink: 326 bytes leftover after parsing attributes in process `syz.0.854'.
[  333.734819][ T9715] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  333.756814][ T9722] GUP no longer grows the stack in syz.2.857 (9722): 1000-10000 (0)
[  333.813441][ T9722] CPU: 0 UID: 0 PID: 9722 Comm: syz.2.857 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  333.813490][ T9722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  333.813511][ T9722] Call Trace:
[  333.813522][ T9722]  <TASK>
[  333.813540][ T9722]  dump_stack_lvl+0x16c/0x1f0
[  333.813586][ T9722]  gup_vma_lookup+0x1d2/0x220
[  333.813633][ T9722]  fixup_user_fault+0x26f/0x540
[  333.813685][ T9722]  ? futex_wake_op+0x92b/0xd40
[  333.813718][ T9722]  fault_in_user_writeable+0x70/0xe0
[  333.813763][ T9722]  futex_wake_op+0x959/0xd40
[  333.813800][ T9722]  ? __pfx_futex_wake_op+0x10/0x10
[  333.813828][ T9722]  ? __pfx_futex_wait+0x10/0x10
[  333.813867][ T9722]  ? up_write+0x1b2/0x520
[  333.813904][ T9722]  do_futex+0x2e9/0x350
[  333.813949][ T9722]  ? __pfx_do_futex+0x10/0x10
[  333.814039][ T9722]  __x64_sys_futex+0x1e0/0x4c0
[  333.814087][ T9722]  ? __pfx___x64_sys_futex+0x10/0x10
[  333.814139][ T9722]  ? rcu_is_watching+0x12/0xc0
[  333.814187][ T9722]  do_syscall_64+0xcd/0x260
[  333.814230][ T9722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.814261][ T9722] RIP: 0033:0x7f680a78d169
[  333.814284][ T9722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  333.814315][ T9722] RSP: 002b:00007f680b66f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  333.814345][ T9722] RAX: ffffffffffffffda RBX: 00007f680a9a6080 RCX: 00007f680a78d169
[  333.814364][ T9722] RDX: 0000000000000002 RSI: 0000000000000085 RDI: 0000000000000000
[  333.814382][ T9722] RBP: 00007f680a80e2a0 R08: 0000000000000000 R09: 0000000000000001
[  333.814399][ T9722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  333.814417][ T9722] R13: 0000000000000000 R14: 00007f680a9a6080 R15: 00007ffe28d887b8
[  333.814449][ T9722]  </TASK>
[  334.489668][ T9737] netlink: 544 bytes leftover after parsing attributes in process `syz.2.859'.
[  337.236050][ T9802] netlink: 544 bytes leftover after parsing attributes in process `syz.2.873'.
[  338.305215][ T9819] netlink: 326 bytes leftover after parsing attributes in process `syz.2.878'.
[  338.394210][ T9819] netlink: 326 bytes leftover after parsing attributes in process `syz.2.878'.
[  338.992085][ T9833] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  339.447616][ T9841] program syz.0.883 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  341.053446][ T9870] netlink: 326 bytes leftover after parsing attributes in process `syz.1.889'.
[  341.284172][ T9870] netlink: 326 bytes leftover after parsing attributes in process `syz.1.889'.
[  341.378801][ T9865] netlink: 544 bytes leftover after parsing attributes in process `syz.3.887'.
[  344.967392][ T9918] netlink: 326 bytes leftover after parsing attributes in process `syz.3.899'.
[  345.087808][ T9918] netlink: 326 bytes leftover after parsing attributes in process `syz.3.899'.
[  345.192720][ T9920] netlink: 544 bytes leftover after parsing attributes in process `syz.1.900'.
[  346.902814][ T9961] netlink: 326 bytes leftover after parsing attributes in process `syz.1.910'.
[  346.927187][ T9961] netlink: 326 bytes leftover after parsing attributes in process `syz.1.910'.
[  347.094538][ T9966] FAULT_INJECTION: forcing a failure.
[  347.094538][ T9966] name failslab, interval 1, probability 0, space 0, times 0
[  347.107844][ T9966] CPU: 1 UID: 0 PID: 9966 Comm: syz.1.911 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  347.107877][ T9966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  347.107891][ T9966] Call Trace:
[  347.107898][ T9966]  <TASK>
[  347.107906][ T9966]  dump_stack_lvl+0x16c/0x1f0
[  347.107939][ T9966]  should_fail_ex+0x512/0x640
[  347.107962][ T9966]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  347.107989][ T9966]  should_failslab+0xc2/0x120
[  347.108015][ T9966]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  347.108038][ T9966]  ? crng_make_state+0x48e/0x6d0
[  347.108061][ T9966]  ? proc_net_ns_init+0x42/0x410
[  347.108092][ T9966]  ? __pfx_proc_net_ns_init+0x10/0x10
[  347.108122][ T9966]  proc_net_ns_init+0x42/0x410
[  347.108151][ T9966]  ? __pfx_proc_net_ns_init+0x10/0x10
[  347.108189][ T9966]  ops_init+0x1df/0x5f0
[  347.108232][ T9966]  setup_net+0x21e/0x850
[  347.108275][ T9966]  ? __pfx_setup_net+0x10/0x10
[  347.108323][ T9966]  ? lockdep_init_map_type+0x5c/0x280
[  347.108355][ T9966]  ? __pfx_down_read_killable+0x10/0x10
[  347.108406][ T9966]  ? debug_mutex_init+0x37/0x70
[  347.108448][ T9966]  copy_net_ns+0x2a6/0x5f0
[  347.108496][ T9966]  create_new_namespaces+0x3ea/0xad0
[  347.108548][ T9966]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  347.108583][ T9966]  ksys_unshare+0x45b/0xa40
[  347.108618][ T9966]  ? __pfx_ksys_unshare+0x10/0x10
[  347.108652][ T9966]  ? xfd_validate_state+0x5d/0x180
[  347.108678][ T9966]  ? rcu_is_watching+0x12/0xc0
[  347.108711][ T9966]  __x64_sys_unshare+0x31/0x40
[  347.108745][ T9966]  do_syscall_64+0xcd/0x260
[  347.108776][ T9966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.108799][ T9966] RIP: 0033:0x7f495858d169
[  347.108816][ T9966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.108838][ T9966] RSP: 002b:00007f49563f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  347.108859][ T9966] RAX: ffffffffffffffda RBX: 00007f49587a5fa0 RCX: 00007f495858d169
[  347.108874][ T9966] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  347.108888][ T9966] RBP: 00007f495860e2a0 R08: 0000000000000000 R09: 0000000000000000
[  347.108901][ T9966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  347.108915][ T9966] R13: 0000000000000000 R14: 00007f49587a5fa0 R15: 00007fff2b4dcd98
[  347.108939][ T9966]  </TASK>
[  348.241132][ T9992] overlayfs: "check_copy_up" module option is obsolete
[  350.419326][T10038] ima: policy update failed
[  350.425533][   T30] audit: type=1802 audit(4294967400.030:10): pid=10038 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.932" res=0 errno=0
[  350.444674][T10038] netlink: 350 bytes leftover after parsing attributes in process `syz.1.932'.
[  351.785002][T10076] netlink: 342 bytes leftover after parsing attributes in process `syz.1.939'.
[  351.828163][T10076] ima: policy update failed
[  351.835356][   T30] audit: type=1802 audit(4294967401.440:11): pid=10076 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.939" res=0 errno=0
[  353.145403][T10099] netlink: 326 bytes leftover after parsing attributes in process `syz.3.945'.
[  353.175355][T10099] netlink: 326 bytes leftover after parsing attributes in process `syz.3.945'.
[  353.555209][T10106] FAULT_INJECTION: forcing a failure.
[  353.555209][T10106] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  353.602837][T10106] CPU: 1 UID: 0 PID: 10106 Comm: syz.3.948 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  353.602890][T10106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  353.602911][T10106] Call Trace:
[  353.602921][T10106]  <TASK>
[  353.602935][T10106]  dump_stack_lvl+0x16c/0x1f0
[  353.602989][T10106]  should_fail_ex+0x512/0x640
[  353.603028][T10106]  should_fail_alloc_page+0xe7/0x130
[  353.603071][T10106]  prepare_alloc_pages.constprop.0+0x172/0x570
[  353.603126][T10106]  ? stack_trace_save+0x8e/0xc0
[  353.603175][T10106]  __alloc_frozen_pages_noprof+0x18f/0x24d0
[  353.603212][T10106]  ? kasan_save_stack+0x42/0x60
[  353.603254][T10106]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  353.603293][T10106]  ? __lock_acquire+0x5ca/0x1ba0
[  353.603357][T10106]  ? lock_acquire+0x179/0x350
[  353.603404][T10106]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  353.603454][T10106]  ? policy_nodemask+0xea/0x4e0
[  353.603498][T10106]  alloc_pages_mpol+0x1fb/0x540
[  353.603539][T10106]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  353.603580][T10106]  ? __lock_acquire+0x5ca/0x1ba0
[  353.603636][T10106]  folio_alloc_mpol_noprof+0x36/0x2f0
[  353.603750][T10106]  vma_alloc_folio_noprof+0xed/0x1e0
[  353.603799][T10106]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  353.603856][T10106]  do_pte_missing+0x2049/0x3ea0
[  353.603897][T10106]  __handle_mm_fault+0x1043/0x2a50
[  353.603939][T10106]  ? __pfx___handle_mm_fault+0x10/0x10
[  353.603973][T10106]  ? __pte_offset_map_lock+0x155/0x2f0
[  353.604025][T10106]  ? find_held_lock+0x2b/0x80
[  353.604066][T10106]  ? find_held_lock+0x2b/0x80
[  353.604126][T10106]  handle_mm_fault+0x404/0xae0
[  353.604162][T10106]  __get_user_pages+0x771/0x36f0
[  353.604223][T10106]  ? __pfx_mt_find+0x10/0x10
[  353.604272][T10106]  ? __pfx___get_user_pages+0x10/0x10
[  353.604340][T10106]  populate_vma_page_range+0x278/0x3a0
[  353.604380][T10106]  ? __pfx_populate_vma_page_range+0x10/0x10
[  353.604412][T10106]  ? __pfx_find_vma_intersection+0x10/0x10
[  353.604463][T10106]  ? do_mmap+0x69c/0x11b0
[  353.604511][T10106]  __mm_populate+0x1d8/0x380
[  353.604543][T10106]  ? __pfx___mm_populate+0x10/0x10
[  353.604576][T10106]  ? up_write+0x1b2/0x520
[  353.604610][T10106]  vm_mmap_pgoff+0x362/0x450
[  353.604664][T10106]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  353.604740][T10106]  ? 0xffffffffff600000
[  353.604769][T10106]  ? __x64_sys_futex+0x1e0/0x4c0
[  353.604813][T10106]  ? __x64_sys_futex+0x1e9/0x4c0
[  353.604863][T10106]  ksys_mmap_pgoff+0x7d/0x5c0
[  353.604910][T10106]  ? __pfx___x64_sys_semget+0x10/0x10
[  353.604950][T10106]  ? rcu_is_watching+0x12/0xc0
[  353.605000][T10106]  __x64_sys_mmap+0x125/0x190
[  353.605046][T10106]  do_syscall_64+0xcd/0x260
[  353.605096][T10106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.605133][T10106] RIP: 0033:0x7f1e55b8d169
[  353.605156][T10106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  353.605193][T10106] RSP: 002b:00007f1e56944038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  353.605224][T10106] RAX: ffffffffffffffda RBX: 00007f1e55da5fa0 RCX: 00007f1e55b8d169
[  353.605246][T10106] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000
[  353.605265][T10106] RBP: 00007f1e55c0e2a0 R08: 0000000000000007 R09: 0000000000028000
[  353.605286][T10106] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  353.605304][T10106] R13: 0000000000000000 R14: 00007f1e55da5fa0 R15: 00007fff560fc178
[  353.605341][T10106]  </TASK>
[  354.973815][T10130] netlink: 12 bytes leftover after parsing attributes in process `syz.3.952'.
[  355.873516][T10143] netlink: 326 bytes leftover after parsing attributes in process `syz.3.955'.
[  355.887353][T10143] netlink: 326 bytes leftover after parsing attributes in process `syz.3.955'.
[  356.747401][T10164] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  357.029585][T10169] netlink: 544 bytes leftover after parsing attributes in process `syz.3.961'.

syzkaller
syzkaller login: [  357.907545][T10180] nfs: Unknown parameter '���ީi��ʟ�b�y�7J� �؀��V�{�
[  357.907545][T10180] �\����9-*;#r��RcF��GL��֍*�'
[  358.115601][T10184] netlink: 326 bytes leftover after parsing attributes in process `syz.3.966'.
[  358.270311][T10184] netlink: 326 bytes leftover after parsing attributes in process `syz.3.966'.
[  358.891789][T10178] ima: policy update failed
[  358.915498][   T30] audit: type=1802 audit(4294967408.520:12): pid=10178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.965" res=0 errno=0
[  360.389865][T10222] netlink: 544 bytes leftover after parsing attributes in process `syz.2.973'.
[  361.629797][T10240] scsi_dev_info_list_add_str: bad dev info string '][!+^+' '' ''
[  363.637199][T10256] __vm_enough_memory: pid: 10256, comm: syz.1.982, bytes: 4503599627366400 not enough memory for the allocation
[  363.695536][T10270] netlink: 544 bytes leftover after parsing attributes in process `syz.0.985'.
[  365.275633][T10299] netlink: 8 bytes leftover after parsing attributes in process `syz.3.993'.
[  366.107498][T10307] usbip-vudc usbip-vudc.0: gadget not bound
[  366.525313][T10314] netlink: 544 bytes leftover after parsing attributes in process `syz.2.996'.
[  367.773322][T10333] FAULT_INJECTION: forcing a failure.
[  367.773322][T10333] name failslab, interval 1, probability 0, space 0, times 0
[  367.788383][T10333] CPU: 0 UID: 0 PID: 10333 Comm: syz.2.1000 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  367.788429][T10333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  367.788449][T10333] Call Trace:
[  367.788458][T10333]  <TASK>
[  367.788471][T10333]  dump_stack_lvl+0x16c/0x1f0
[  367.788522][T10333]  should_fail_ex+0x512/0x640
[  367.788555][T10333]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  367.788612][T10333]  should_failslab+0xc2/0x120
[  367.788650][T10333]  __kmalloc_cache_noprof+0x6a/0x3e0
[  367.788701][T10333]  ? kobject_uevent_env+0x265/0x1870
[  367.788756][T10333]  kobject_uevent_env+0x265/0x1870
[  367.788806][T10333]  ? __pfx_dev_uevent_name+0x10/0x10
[  367.788845][T10333]  ? __pfx_dev_add_physical_location+0x10/0x10
[  367.788893][T10333]  ? bus_to_subsys+0x12d/0x160
[  367.788927][T10333]  ? bus_to_subsys+0x12d/0x160
[  367.788963][T10333]  device_add+0x10dd/0x1a70
[  367.789016][T10333]  ? __pfx_device_add+0x10/0x10
[  367.789068][T10333]  ? lockdep_init_map_type+0x5c/0x280
[  367.789102][T10333]  ? __init_waitqueue_head+0xca/0x150
[  367.789149][T10333]  wakeup_source_device_create+0x214/0x2a0
[  367.789201][T10333]  wakeup_source_sysfs_add+0x1c/0x90
[  367.789251][T10333]  wakeup_source_register+0xaa/0x140
[  367.789292][T10333]  ep_create_wakeup_source+0x1dd/0x2e0
[  367.789352][T10333]  ? __pfx_ep_create_wakeup_source+0x10/0x10
[  367.789408][T10333]  ? do_epoll_ctl+0x154d/0x3590
[  367.789463][T10333]  do_epoll_ctl+0x1d6a/0x3590
[  367.789528][T10333]  ? __pfx_do_epoll_ctl+0x10/0x10
[  367.789576][T10333]  ? find_held_lock+0x2b/0x80
[  367.789616][T10333]  ? __might_fault+0xe3/0x190
[  367.789653][T10333]  ? __might_fault+0xe3/0x190
[  367.789702][T10333]  ? __x64_sys_epoll_ctl+0x15c/0x1e0
[  367.789750][T10333]  __x64_sys_epoll_ctl+0x15c/0x1e0
[  367.789801][T10333]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  367.789851][T10333]  ? rcu_is_watching+0x12/0xc0
[  367.789900][T10333]  do_syscall_64+0xcd/0x260
[  367.789945][T10333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.789979][T10333] RIP: 0033:0x7f680a78d169
[  367.790005][T10333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.790040][T10333] RSP: 002b:00007f680b690038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  367.790070][T10333] RAX: ffffffffffffffda RBX: 00007f680a9a5fa0 RCX: 00007f680a78d169
[  367.790091][T10333] RDX: 8000000000000000 RSI: 0000000000000001 RDI: 0000000000000005
[  367.790110][T10333] RBP: 00007f680a80e2a0 R08: 0000000000000000 R09: 0000000000000000
[  367.790129][T10333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  367.790147][T10333] R13: 0000000000000000 R14: 00007f680a9a5fa0 R15: 00007ffe28d887b8
[  367.790181][T10333]  </TASK>
[  367.915462][    C0] vkms_vblank_simulate: vblank timer overrun
[  368.075053][    C0] vkms_vblank_simulate: vblank timer overrun
[  368.081177][    C0] hrtimer: interrupt took 282991927 ns
[  368.181220][    C0] vkms_vblank_simulate: vblank timer overrun
[  368.965574][T10350] syz.0.1004 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  369.442779][   T30] audit: type=1800 audit(4294967427.048:13): pid=10362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1005" name="dbroot" dev="configfs" ino=30524 res=0 errno=0
[  370.599927][T10373] netlink: 544 bytes leftover after parsing attributes in process `syz.3.1009'.
[  371.254577][T10382] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1012'.
[  371.282594][T10382] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1012'.
[  371.822999][T10390] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1014'.
[  372.091251][T10399] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1015'.
[  372.121250][T10399] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1015'.
[  372.173273][T10399] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1015'.
[  372.749681][T10422] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1023'.
[  372.796643][T10422] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1023'.
[  373.315434][T10427] nvme_fcloop: unknown parameter or missing value ''
[  373.594818][T10424] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1022'.
[  373.862237][T10441] random: crng reseeded on system resumption
[  374.359998][T10468] bond0: no command found in slaves file - use +ifname or -ifname
[  376.748726][T10518] __nla_validate_parse: 3 callbacks suppressed
[  376.748753][T10518] netlink: 272 bytes leftover after parsing attributes in process `syz.2.1045'.
[  376.823237][T10518] nbd: must specify a device to reconfigure
[  377.690206][T10516] svc: failed to register nfsdv3 RPC service (errno 512).
[  377.755386][T10516] svc: failed to register nfsaclv3 RPC service (errno 512).
[  379.871642][T10543] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1051'.
[  379.883249][T10544] sd 0:0:1:0: PR command failed: 1026
[  379.923977][T10544] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  380.096462][T10544] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  384.092500][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  384.100238][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  384.390888][T10635] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1070'.
[  384.525694][T10635] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1070'.
[  387.380640][T10679] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1083'.
[  387.479454][T10679] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1083'.
[  387.904539][T10693] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1085'.
[  388.124252][T10696] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1085'.
[  390.704423][T10728] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1093'.
[  390.747421][T10728] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1093'.
[  390.969223][T10729] synth uevent: /module/ipv6: unknown uevent action string
[  393.648340][T10768] netlink: 544 bytes leftover after parsing attributes in process `syz.1.1101'.
[  395.826023][T10791] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1109'.
[  397.305319][T10815] netlink: 544 bytes leftover after parsing attributes in process `syz.1.1113'.
[  398.515219][T10841] ptrace attach of "./syz-executor exec"[5839] was attempted by "./syz-executor exec"[10841]
[  400.293941][T10877] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1125'.
[  403.413300][T10941] netlink: 544 bytes leftover after parsing attributes in process `syz.0.1137'.
[  404.346410][T10949] Invalid ELF header magic: != ELF
[  411.507633][T11068] netlink: 544 bytes leftover after parsing attributes in process `syz.0.1165'.
[  412.652299][T11077] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1168'.
[  413.633423][T11077] veth0_macvtap (unregistering): left allmulticast mode
[  413.666176][T11086] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1170'.
[  413.781896][T11086] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1170'.
[  415.587770][T11114] netlink: 448 bytes leftover after parsing attributes in process `syz.2.1175'.
[  416.379203][T11126] Invalid ELF header magic: != ELF
[  417.767392][T11135] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1182'.
[  417.782024][T11135] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1182'.
[  418.351417][T11142] netlink: 544 bytes leftover after parsing attributes in process `syz.3.1184'.
[  420.157375][T11158] netlink: 544 bytes leftover after parsing attributes in process `syz.1.1187'.
[  420.395760][T11168] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1192'.
[  420.420351][T11168] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1192'.
[  420.571066][T11170] ptrace attach of "./syz-executor exec"[5840] was attempted by "��>����MKf���h(o�,Y��y²����npqrh &���$�5\x1b|
'���>b�U
އ�d,u��z�múfkM�M)T�4w�S~e���,���־p�\x0a#�'�R�ʼn��[\x09���)�|�9�j���Jg\x0aܮ�|/�H�Rbo�6ꥀ����l�@87�qVz���c�~/`�^\x0a��o8s��%'䠄��� /����3b��4�e�ȠQ^u����*�<���x��V���l(\x0d��u�>n��3��]��bFw8�dƄYN�\x07��?�9-�m�6�q_�VԔq�j#+\x09�퓫#{f��/��?ۋ������h�
k���3hA�\x22��X�+��\x5cE+P��Ί50x{v:*�pk7��?�>D�}�تj��E�|ä�Y�+-��关m��$�>���\x0a�ڀ5�x��m��N��?����^î�R�li��oXSm#X��[��>���ؕ���<� �� ~���i�„��-\x07i��܆{���\x07��R
Z(��A�G���u$��\x0a�i\x1b�\x22�ae��a�[f�������̪Jt$�=tԺu�7�?g�\x0c^� sc97�B�����Ne�pj�(�*Ť[k0�q\x22W�<��:�vy��\x0dZO(�c|1ȼ\x0c���~g��\x5c�(ir��C��'V����ϣO�k5� [@/\x0ar��F��g��xP\x0b\x0b�$sd�1��,�Μ��nZ�z�) ��5v����O��_�a���g��ܸ��8���]���Kr���$ZIAtw�:�˦�����3����0�;�S���Kx7P���Ա��_��6�����`�EG��\x0df�h=gp��ĵ
m\x22B?4��M\x09��B��kn3�j2I:(Tt����m�)ƈ�5:�\x09Ȱ�.�x�`��彨\
[  421.475249][T11181] Invalid ELF header magic: != ELF
[  423.162882][T11202] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1201'.
[  423.242594][T11202] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1201'.
[  424.339674][T11221] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1206'.
[  424.370250][T11219] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1205'.
[  425.824074][T11241] netlink: 138 bytes leftover after parsing attributes in process `syz.0.1211'.
[  426.021086][T11243] netlink: 'syz.3.1212': attribute type 1 has an invalid length.
[  426.056549][T11243] nbd: error processing sock list
[  427.132210][T11262] netlink: 544 bytes leftover after parsing attributes in process `syz.1.1217'.
[  429.122036][T11269] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  429.133782][T11269] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  429.146817][T11269] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  429.158039][T11269] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  429.448382][ T5153] Bluetooth: hci1: command 0x0c1a tx timeout
[  430.249277][T11324] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  430.298656][T11324] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  430.306980][T11324] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  430.410737][T11324] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  430.989419][T11339] netlink: 544 bytes leftover after parsing attributes in process `syz.0.1230'.
[  432.338845][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout
[  432.346647][ T5849] Bluetooth: hci2: command 0x0c1a tx timeout
[  432.357094][ T5849] Bluetooth: hci1: command 0x0c1a tx timeout
[  432.489120][T11360] Bluetooth: hci3: command 0x0c1a tx timeout
[  433.219857][T11372] usbip-vudc usbip-vudc.0: gadget not bound
[  434.104260][T11393] netlink: 544 bytes leftover after parsing attributes in process `syz.0.1243'.
[  434.408058][T11399] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1244'.
[  436.553116][T11431] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1250'.
[  436.678918][T11431] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1250'.
[  437.599958][T11449] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1255'.
[  438.551727][T11466] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1259'.
[  438.897703][T11474] Invalid ELF header magic: != ELF
[  440.701373][T11507] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1266'.
[  440.991995][T11515] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1267'.
[  441.732544][T11360] Bluetooth: hci3: unexpected subevent 0x01 length: 4 < 18
[  441.791692][   T30] audit: type=1800 audit(4294967507.405:14): pid=11530 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1271" name="dbroot" dev="configfs" ino=36368 res=0 errno=0
[  445.090659][T11572] openvswitch: netlink: Unknown nsh attribute 0
[  445.284338][T11569] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1280'.
[  445.344152][T11584] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1284'.
[  445.464248][T11586] Invalid ELF header magic: != ELF
[  445.531067][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  445.542786][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  446.294362][T11611] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1289'.
[  446.518776][T11611] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1289'.
[  447.139356][T11624] FAULT_INJECTION: forcing a failure.
[  447.139356][T11624] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  447.209477][T11624] CPU: 0 UID: 0 PID: 11624 Comm: syz.1.1292 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  447.209520][T11624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  447.209538][T11624] Call Trace:
[  447.209547][T11624]  <TASK>
[  447.209558][T11624]  dump_stack_lvl+0x16c/0x1f0
[  447.209605][T11624]  should_fail_ex+0x512/0x640
[  447.209642][T11624]  _copy_to_user+0x32/0xd0
[  447.209678][T11624]  simple_read_from_buffer+0xcb/0x170
[  447.209727][T11624]  proc_fail_nth_read+0x197/0x270
[  447.209775][T11624]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  447.209835][T11624]  ? rw_verify_area+0xcf/0x680
[  447.209877][T11624]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  447.209925][T11624]  vfs_read+0x1de/0xc70
[  447.209976][T11624]  ? __pfx___mutex_lock+0x10/0x10
[  447.210017][T11624]  ? __pfx_vfs_read+0x10/0x10
[  447.210071][T11624]  ? __fget_files+0x20e/0x3c0
[  447.210107][T11624]  ksys_read+0x12a/0x240
[  447.210153][T11624]  ? __pfx_ksys_read+0x10/0x10
[  447.210197][T11624]  ? rcu_is_watching+0x12/0xc0
[  447.210244][T11624]  do_syscall_64+0xcd/0x260
[  447.210286][T11624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  447.210318][T11624] RIP: 0033:0x7f495858bb7c
[  447.210342][T11624] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  447.210373][T11624] RSP: 002b:00007f49563d5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  447.210402][T11624] RAX: ffffffffffffffda RBX: 00007f49587a6080 RCX: 00007f495858bb7c
[  447.210422][T11624] RDX: 000000000000000f RSI: 00007f49563d50a0 RDI: 0000000000000004
[  447.210440][T11624] RBP: 00007f49563d5090 R08: 0000000000000000 R09: 0000000000000000
[  447.210458][T11624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  447.210477][T11624] R13: 0000000000000000 R14: 00007f49587a6080 R15: 00007fff2b4dcd98
[  447.210510][T11624]  </TASK>
[  447.835733][T11627] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000
[  448.098032][T11635] ptrace attach of "./syz-executor exec"[5850] was attempted by "./syz-executor exec"[11635]
[  448.116267][T11635] FAULT_INJECTION: forcing a failure.
[  448.116267][T11635] name failslab, interval 1, probability 0, space 0, times 0
[  448.177933][T11636] Invalid ELF header magic: != ELF
[  448.201261][T11635] CPU: 1 UID: 0 PID: 11635 Comm: syz.3.1296 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  448.201308][T11635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  448.201326][T11635] Call Trace:
[  448.201334][T11635]  <TASK>
[  448.201345][T11635]  dump_stack_lvl+0x16c/0x1f0
[  448.201389][T11635]  should_fail_ex+0x512/0x640
[  448.201416][T11635]  ? fs_reclaim_acquire+0xae/0x150
[  448.201458][T11635]  should_failslab+0xc2/0x120
[  448.201487][T11635]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  448.201516][T11635]  ? security_inode_alloc+0x3b/0x2b0
[  448.201545][T11635]  security_inode_alloc+0x3b/0x2b0
[  448.201570][T11635]  inode_init_always_gfp+0xce4/0x1030
[  448.201599][T11635]  alloc_inode+0x86/0x240
[  448.201632][T11635]  iget_locked+0x2e4/0x830
[  448.201665][T11635]  ? __pfx_iget_locked+0x10/0x10
[  448.201700][T11635]  ? down_read+0x13d/0x480
[  448.201761][T11635]  kernfs_get_inode+0x48/0x460
[  448.201788][T11635]  kernfs_iop_lookup+0x1ec/0x330
[  448.201820][T11635]  __lookup_slow+0x24e/0x460
[  448.201853][T11635]  ? __pfx___lookup_slow+0x10/0x10
[  448.201898][T11635]  ? lookup_fast+0x156/0x610
[  448.201932][T11635]  ? __pfx_kernfs_iop_permission+0x10/0x10
[  448.201982][T11635]  walk_component+0x353/0x5b0
[  448.202025][T11635]  link_path_walk.part.0.constprop.0+0x682/0xd60
[  448.202080][T11635]  path_openat+0x227/0x2d40
[  448.202100][T11635]  ? __x64_sys_openat+0x174/0x210
[  448.202140][T11635]  ? __pfx_path_openat+0x10/0x10
[  448.202167][T11635]  do_filp_open+0x20b/0x470
[  448.202189][T11635]  ? __pfx_do_filp_open+0x10/0x10
[  448.202232][T11635]  ? alloc_fd+0x471/0x7d0
[  448.202284][T11635]  do_sys_openat2+0x11b/0x1d0
[  448.202314][T11635]  ? __pfx_do_sys_openat2+0x10/0x10
[  448.202355][T11635]  __x64_sys_openat+0x174/0x210
[  448.202388][T11635]  ? __pfx___x64_sys_openat+0x10/0x10
[  448.202425][T11635]  ? rcu_is_watching+0x12/0xc0
[  448.202472][T11635]  do_syscall_64+0xcd/0x260
[  448.202515][T11635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.202544][T11635] RIP: 0033:0x7f1e55b8d169
[  448.202568][T11635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.202600][T11635] RSP: 002b:00007f1e56944038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  448.202643][T11635] RAX: ffffffffffffffda RBX: 00007f1e55da5fa0 RCX: 00007f1e55b8d169
[  448.202664][T11635] RDX: 00000000001a1842 RSI: 00002000000003c0 RDI: ffffffffffffff9c
[  448.202684][T11635] RBP: 00007f1e55c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  448.202711][T11635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  448.202729][T11635] R13: 0000000000000000 R14: 00007f1e55da5fa0 R15: 00007fff560fc178
[  448.202765][T11635]  </TASK>
[  449.275733][T11648] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1299'.
[  449.593581][T11658] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1301'.
[  449.939688][T11360] Bluetooth: hci3: unexpected event 0x1d length: 6 > 5
[  450.629437][T11643] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1298'.
[  453.214455][T11747] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1316'.
[  454.119111][T11777] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1322'.
[  454.684425][T11789] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1323'.
[  456.349467][T11816] FAULT_INJECTION: forcing a failure.
[  456.349467][T11816] name failslab, interval 1, probability 0, space 0, times 0
[  456.379014][T11816] CPU: 0 UID: 0 PID: 11816 Comm: syz.3.1327 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  456.379064][T11816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  456.379085][T11816] Call Trace:
[  456.379095][T11816]  <TASK>
[  456.379107][T11816]  dump_stack_lvl+0x16c/0x1f0
[  456.379158][T11816]  should_fail_ex+0x512/0x640
[  456.379191][T11816]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  456.379230][T11816]  should_failslab+0xc2/0x120
[  456.379267][T11816]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  456.379302][T11816]  ? alloc_inode+0x61/0x240
[  456.379346][T11816]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  456.379387][T11816]  alloc_inode+0x61/0x240
[  456.379426][T11816]  new_inode+0x22/0x1c0
[  456.379464][T11816]  ? start_creating.part.0+0x25d/0x3a0
[  456.379509][T11816]  __debugfs_create_file+0x11c/0x6b0
[  456.379592][T11816]  debugfs_create_file_full+0x41/0x60
[  456.379703][T11816]  kvm_dev_ioctl+0x14ff/0x1ad0
[  456.379778][T11816]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  456.379835][T11816]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  456.379882][T11816]  __x64_sys_ioctl+0x190/0x200
[  456.379932][T11816]  do_syscall_64+0xcd/0x260
[  456.379974][T11816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.380007][T11816] RIP: 0033:0x7f1e55b8d169
[  456.380035][T11816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  456.380068][T11816] RSP: 002b:00007f1e56923038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  456.380099][T11816] RAX: ffffffffffffffda RBX: 00007f1e55da6080 RCX: 00007f1e55b8d169
[  456.380120][T11816] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006
[  456.380139][T11816] RBP: 00007f1e55c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  456.380157][T11816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  456.380176][T11816] R13: 0000000000000000 R14: 00007f1e55da6080 R15: 00007fff560fc178
[  456.380210][T11816]  </TASK>
[  456.380224][T11816] debugfs: out of free dentries, can not create file 'max_mmu_page_hash_collisions'
[  458.663017][T11835] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1332'.
[  458.682282][T11835] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1332'.
[  463.358891][T11897] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1347'.
[  463.520118][   T30] audit: type=1800 audit(4294967529.135:15): pid=11894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1346" name="dummy_udc" dev="gadgetfs" ino=6520 res=0 errno=0
[  464.977270][T11937] netlink: 82 bytes leftover after parsing attributes in process `syz.2.1352'.
[  465.568073][T11949] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1357'.
[  465.594723][T11949] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1357'.
[  469.165690][T11990] MTRR 1 not used
[  469.847550][T11978] kexec: Could not allocate control_code_buffer
[  469.974662][T11998] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1367'.
[  470.007583][T11998] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1367'.
[  471.804751][T12032] kexec: Could not allocate control_code_buffer
[  472.127043][T12040] MTRR 1 not used
[  472.200824][T12042] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1377'.
[  472.222702][T12043] netlink: 82 bytes leftover after parsing attributes in process `syz.2.1376'.
[  472.402199][T12042] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1377'.
[  472.835997][T12048] snd_aloop snd_aloop.0: control 16781581:65535:6:�'x?F���/��zF˷fC���:8 is already present
[  474.814677][T12082] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1386'.
[  474.830052][T12082] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1386'.
[  475.028010][T12087] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1388'.
[  476.702262][T12109] netlink: 'syz.3.1393': attribute type 2 has an invalid length.
[  476.939148][T12116] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1396'.
[  476.962848][T12116] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1396'.
[  477.164212][T12117] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1395'.
[  477.391361][T12130] vivid-003: =================  START STATUS  =================
[  477.400654][T12130] vivid-003: Radio HW Seek Mode: Bounded
[  477.410045][T12130] vivid-003: Radio Programmable HW Seek: false
[  477.417567][T12130] vivid-003: RDS Rx I/O Mode: Block I/O
[  477.423972][T12130] vivid-003: Generate RBDS Instead of RDS: false
[  477.431191][T12130] vivid-003: RDS Reception: true
[  477.436432][T12130] vivid-003: RDS Program Type: 0 inactive
[  477.443992][T12130] vivid-003: RDS PS Name:  inactive
[  477.451306][T12130] vivid-003: RDS Radio Text:  inactive
[  477.457557][T12130] vivid-003: RDS Traffic Announcement: false inactive
[  477.465424][T12130] vivid-003: RDS Traffic Program: false inactive
[  477.473142][T12130] vivid-003: RDS Music: false inactive
[  477.479297][T12130] vivid-003: ==================  END STATUS  ==================
[  478.488319][   T30] audit: type=1800 audit(4294967544.095:16): pid=12141 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1405" name="discovery_nqn" dev="configfs" ino=38739 res=0 errno=0
[  478.731541][T12146] ptrace attach of "./syz-executor exec"[5842] was attempted by "./syz-executor exec"[12146]
[  479.277557][T11360] Bluetooth: hci1: unexpected event 0x1d length: 6 > 5
[  480.291538][T12163] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1408'.
[  481.837890][T12193] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  481.940157][T12193] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1414'.
[  484.951426][T12241] Invalid ELF header magic: != ELF
[  485.894655][T12261] Invalid ELF header magic: != ELF
[  486.428792][T12285] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1432'.
[  486.477448][T12285] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1432'.
[  486.862120][T12296] netlink: 544 bytes leftover after parsing attributes in process `syz.2.1435'.
[  488.680132][T12331] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1442'.
[  488.703359][T12331] netlink: 326 bytes leftover after parsing attributes in process `syz.2.1442'.
[  491.159579][T12360] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  491.283308][T11360] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  493.721882][T12434] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1460'.
[  494.486003][T12431] Invalid ELF header magic: != ELF
[  494.580385][T12445] netlink: 'syz.2.1463': attribute type 1 has an invalid length.
[  494.601482][T12431] Invalid ELF header magic: != ELF
[  495.192992][T12431] Invalid ELF header magic: != ELF
[  495.522848][T12431] Invalid ELF header magic: != ELF
[  495.911219][T12434] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  495.992471][T12434] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  496.070323][T12434] bond0 (unregistering): Released all slaves
[  497.543094][T12459] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1467'.
[  497.591667][T12460] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1467'.
[  500.886946][T12518] netlink: 244 bytes leftover after parsing attributes in process `syz.1.1477'.
[  501.926218][T12531] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1481'.
[  501.949362][T12531] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1481'.
[  502.476628][T12544] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1484'.
[  502.819215][T12561] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1487'.
[  502.930367][T12563] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1487'.
[  503.661964][T12584] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1492'.
[  503.729097][T12584] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1492'.
[  503.929652][T12595] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1494'.
[  505.716802][T12638] FAULT_INJECTION: forcing a failure.
[  505.716802][T12638] name failslab, interval 1, probability 0, space 0, times 0
[  505.739568][T12638] CPU: 0 UID: 0 PID: 12638 Comm: syz.1.1499 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  505.739646][T12638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  505.739673][T12638] Call Trace:
[  505.739684][T12638]  <TASK>
[  505.739699][T12638]  dump_stack_lvl+0x16c/0x1f0
[  505.739754][T12638]  should_fail_ex+0x512/0x640
[  505.739791][T12638]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  505.739830][T12638]  should_failslab+0xc2/0x120
[  505.739870][T12638]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  505.739906][T12638]  ? ptlock_alloc+0x1f/0x70
[  505.739942][T12638]  ptlock_alloc+0x1f/0x70
[  505.739974][T12638]  pte_alloc_one+0x6d/0x380
[  505.740019][T12638]  do_pte_missing+0x1b1c/0x3ea0
[  505.740048][T12638]  ? do_raw_spin_unlock+0x172/0x230
[  505.740089][T12638]  ? __pmd_alloc+0x3c2/0x870
[  505.740129][T12638]  ? find_held_lock+0x2b/0x80
[  505.740171][T12638]  __handle_mm_fault+0x1043/0x2a50
[  505.740206][T12638]  ? __pfx___handle_mm_fault+0x10/0x10
[  505.740255][T12638]  ? find_vma+0xbf/0x140
[  505.740294][T12638]  ? __pfx_find_vma+0x10/0x10
[  505.740335][T12638]  handle_mm_fault+0x404/0xae0
[  505.740391][T12638]  do_user_addr_fault+0x7a9/0x1430
[  505.740442][T12638]  exc_page_fault+0x5c/0xc0
[  505.740485][T12638]  asm_exc_page_fault+0x26/0x30
[  505.740520][T12638] RIP: 0010:strncpy_from_user+0x147/0x2e0
[  505.740576][T12638] Code: 00 00 4d 89 74 1d 00 48 83 ed 08 bf 07 00 00 00 48 83 c3 08 48 89 ee e8 77 c3 bf fc 48 83 fd 07 76 22 e8 0c c8 bf fc 45 31 ff <49> 8b 04 1c 31 ff 44 89 fe 49 89 c6 e8 28 c3 bf fc 45 85 ff 0f 84
[  505.740610][T12638] RSP: 0018:ffffc9000b6ffd18 EFLAGS: 00050246
[  505.740652][T12638] RAX: 0000000000000038 RBX: 0000000000000000 RCX: ffffc9000bd7a000
[  505.740673][T12638] RDX: 0000000000080000 RSI: ffffffff84fb5454 RDI: 0000000000000007
[  505.740693][T12638] RBP: 0000000000000fe0 R08: 0000000000000007 R09: 0000000000000007
[  505.740712][T12638] R10: 0000000000000fe0 R11: 0000000000000000 R12: 0000000000000000
[  505.740730][T12638] R13: ffff88805e6ba220 R14: 0000000000000fe0 R15: 0000000000000000
[  505.740760][T12638]  ? strncpy_from_user+0x144/0x2e0
[  505.740813][T12638]  ? strncpy_from_user+0x144/0x2e0
[  505.740871][T12638]  getname_flags.part.0+0x8b/0x540
[  505.740917][T12638]  getname_flags+0x93/0xf0
[  505.740968][T12638]  do_sys_openat2+0xb8/0x1d0
[  505.741007][T12638]  ? __pfx_do_sys_openat2+0x10/0x10
[  505.741058][T12638]  __x64_sys_openat+0x174/0x210
[  505.741093][T12638]  ? __pfx___x64_sys_openat+0x10/0x10
[  505.741137][T12638]  ? rcu_is_watching+0x12/0xc0
[  505.741187][T12638]  do_syscall_64+0xcd/0x260
[  505.741235][T12638]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.741270][T12638] RIP: 0033:0x7f495858d169
[  505.741297][T12638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.741331][T12638] RSP: 002b:00007f49563f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  505.741362][T12638] RAX: ffffffffffffffda RBX: 00007f49587a5fa0 RCX: 00007f495858d169
[  505.741387][T12638] RDX: 0000000000000001 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  505.741410][T12638] RBP: 00007f495860e2a0 R08: 0000000000000000 R09: 0000000000000000
[  505.741430][T12638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.741452][T12638] R13: 0000000000000000 R14: 00007f49587a5fa0 R15: 00007fff2b4dcd98
[  505.741490][T12638]  </TASK>
[  506.792106][T12647] netlink: 346 bytes leftover after parsing attributes in process `syz.3.1501'.
[  506.971061][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  506.989533][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  509.614133][T12696] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1511'.
[  509.632503][T12696] netlink: 326 bytes leftover after parsing attributes in process `syz.1.1511'.
[  509.940925][T12700] netlink: 346 bytes leftover after parsing attributes in process `syz.1.1512'.
[  511.117518][T12733] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1520'.
[  511.132402][T12733] netlink: 326 bytes leftover after parsing attributes in process `syz.0.1520'.
[  511.475144][T12734] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1519'.
[  511.901145][T12748] netlink: 544 bytes leftover after parsing attributes in process `syz.3.1523'.
[  512.822243][T12770] 
[  512.824741][T12770] ======================================================
[  512.832243][T12770] WARNING: possible circular locking dependency detected
[  512.841908][T12770] 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 Not tainted
[  512.851797][T12770] ------------------------------------------------------
[  512.861700][T12770] syz.3.1527/12770 is trying to acquire lock:
[  512.870089][T12770] ffff888143311958 (&q->elevator_lock){+.+.}-{4:4}, at: queue_requests_store+0x1c7/0x310
[  512.885250][T12770] 
[  512.885250][T12770] but task is already holding lock:
[  512.896004][T12770] ffff888143311428 (&q->q_usage_counter(io)#29){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  512.915138][T12770] 
[  512.915138][T12770] which lock already depends on the new lock.
[  512.915138][T12770] 
[  512.927430][T12770] 
[  512.927430][T12770] the existing dependency chain (in reverse order) is:
[  512.940677][T12770] 
[  512.940677][T12770] -> #2 (&q->q_usage_counter(io)#29){++++}-{0:0}:
[  512.951292][T12770]        blk_alloc_queue+0x619/0x760
[  512.960029][T12770]        blk_mq_alloc_queue+0x179/0x290
[  512.966706][T12770]        __blk_mq_alloc_disk+0x29/0x120
[  512.974795][T12770]        loop_add+0x496/0xb70
[  512.981248][T12770]        loop_init+0x164/0x270
[  512.988254][T12770]        do_one_initcall+0x120/0x6e0
[  512.996062][T12770]        kernel_init_freeable+0x5c2/0x900
[  513.003126][T12770]        kernel_init+0x1c/0x2b0
[  513.009373][T12770]        ret_from_fork+0x45/0x80
[  513.015834][T12770]        ret_from_fork_asm+0x1a/0x30
[  513.021989][T12770] 
[  513.021989][T12770] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  513.030604][T12770]        fs_reclaim_acquire+0x102/0x150
[  513.039585][T12770]        blk_mq_alloc_and_init_hctx+0x503/0x11c0
[  513.048900][T12770]        blk_mq_realloc_hw_ctxs+0x8f6/0xc00
[  513.059374][T12770]        blk_mq_init_allocated_queue+0x3af/0x1230
[  513.067085][T12770]        blk_mq_alloc_queue+0x1c2/0x290
[  513.073971][T12770]        __blk_mq_alloc_disk+0x29/0x120
[  513.081300][T12770]        loop_add+0x496/0xb70
[  513.086254][T12770]        loop_init+0x164/0x270
[  513.092945][T12770]        do_one_initcall+0x120/0x6e0
[  513.101619][T12770]        kernel_init_freeable+0x5c2/0x900
[  513.109330][T12770]        kernel_init+0x1c/0x2b0
[  513.116272][T12770]        ret_from_fork+0x45/0x80
[  513.124107][T12770]        ret_from_fork_asm+0x1a/0x30
[  513.133214][T12770] 
[  513.133214][T12770] -> #0 (&q->elevator_lock){+.+.}-{4:4}:
[  513.145954][T12770]        __lock_acquire+0x1173/0x1ba0
[  513.153651][T12770]        lock_acquire+0x179/0x350
[  513.160629][T12770]        __mutex_lock+0x199/0xb90
[  513.167597][T12770]        queue_requests_store+0x1c7/0x310
[  513.175211][T12770]        queue_attr_store+0x270/0x310
[  513.182139][T12770]        sysfs_kf_write+0x117/0x170
[  513.187609][T12770]        kernfs_fop_write_iter+0x351/0x510
[  513.194828][T12770]        iter_file_splice_write+0x91c/0x1150
[  513.201233][T12770]        direct_splice_actor+0x18f/0x6c0
[  513.209727][T12770]        splice_direct_to_actor+0x342/0xa30
[  513.218339][T12770]        do_splice_direct+0x174/0x240
[  513.226104][T12770]        do_sendfile+0xafd/0xe50
[  513.233378][T12770]        __x64_sys_sendfile64+0x1d8/0x220
[  513.241392][T12770]        do_syscall_64+0xcd/0x260
[  513.247657][T12770]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  513.256373][T12770] 
[  513.256373][T12770] other info that might help us debug this:
[  513.256373][T12770] 
[  513.270168][T12770] Chain exists of:
[  513.270168][T12770]   &q->elevator_lock --> fs_reclaim --> &q->q_usage_counter(io)#29
[  513.270168][T12770] 
[  513.286847][T12770]  Possible unsafe locking scenario:
[  513.286847][T12770] 
[  513.296200][T12770]        CPU0                    CPU1
[  513.302853][T12770]        ----                    ----
[  513.308925][T12770]   lock(&q->q_usage_counter(io)#29);
[  513.315842][T12770]                                lock(fs_reclaim);
[  513.324224][T12770]                                lock(&q->q_usage_counter(io)#29);
[  513.332898][T12770]   lock(&q->elevator_lock);
[  513.338090][T12770] 
[  513.338090][T12770]  *** DEADLOCK ***
[  513.338090][T12770] 
[  513.350384][T12770] 5 locks held by syz.3.1527/12770:
[  513.350409][T12770]  #0: ffff8880359e8420 (sb_writers#7){.+.+}-{0:0}, at: splice_direct_to_actor+0x342/0xa30
[  513.350529][T12770]  #1: ffff88814b4e2088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x510
[  513.350621][T12770]  #2: ffff8881472bdd28 (kn->active#251){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2b2/0x510
[  513.350719][T12770]  #3: ffff888143311428 (&q->q_usage_counter(io)#29){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  513.350827][T12770]  #4: ffff888143311460 (&q->q_usage_counter(queue)#23){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  513.350932][T12770] 
[  513.350932][T12770] stack backtrace:
[  513.350949][T12770] CPU: 0 UID: 0 PID: 12770 Comm: syz.3.1527 Not tainted 6.14.0-syzkaller-10514-g7f2ff7b62617 #0 PREEMPT(full) 
[  513.350988][T12770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  513.351006][T12770] Call Trace:
[  513.351016][T12770]  <TASK>
[  513.351028][T12770]  dump_stack_lvl+0x116/0x1f0
[  513.351070][T12770]  print_circular_bug+0x275/0x350
[  513.351119][T12770]  check_noncircular+0x14c/0x170
[  513.351172][T12770]  __lock_acquire+0x1173/0x1ba0
[  513.351222][T12770]  ? __lock_acquire+0xaa4/0x1ba0
[  513.351274][T12770]  lock_acquire+0x179/0x350
[  513.351301][T12770]  ? queue_requests_store+0x1c7/0x310
[  513.351341][T12770]  ? __pfx___might_resched+0x10/0x10
[  513.351389][T12770]  __mutex_lock+0x199/0xb90
[  513.351428][T12770]  ? queue_requests_store+0x1c7/0x310
[  513.351474][T12770]  ? mark_held_locks+0x49/0x80
[  513.351522][T12770]  ? queue_requests_store+0x1c7/0x310
[  513.351562][T12770]  ? __pfx___mutex_lock+0x10/0x10
[  513.351602][T12770]  ? blk_mq_freeze_queue_wait+0xad/0x1b0
[  513.351637][T12770]  ? __pfx_autoremove_wake_function+0x10/0x10
[  513.351690][T12770]  ? queue_requests_store+0x1c7/0x310
[  513.351833][T12770]  queue_requests_store+0x1c7/0x310
[  513.351882][T12770]  ? __pfx_queue_requests_store+0x10/0x10
[  513.351924][T12770]  ? __mutex_trylock_common+0xe9/0x250
[  513.351955][T12770]  ? __pfx_queue_requests_store+0x10/0x10
[  513.351993][T12770]  queue_attr_store+0x270/0x310
[  513.352030][T12770]  ? __pfx_queue_attr_store+0x10/0x10
[  513.352069][T12770]  ? __lock_acquire+0x5ca/0x1ba0
[  513.352122][T12770]  ? kernfs_fop_write_iter+0x28f/0x510
[  513.352175][T12770]  ? __pfx_queue_attr_store+0x10/0x10
[  513.352213][T12770]  sysfs_kf_write+0x117/0x170
[  513.352260][T12770]  kernfs_fop_write_iter+0x351/0x510
[  513.352304][T12770]  ? __pfx_sysfs_kf_write+0x10/0x10
[  513.352354][T12770]  iter_file_splice_write+0x91c/0x1150
[  513.352428][T12770]  ? __pfx_iter_file_splice_write+0x10/0x10
[  513.352485][T12770]  ? __pfx_copy_splice_read+0x10/0x10
[  513.352540][T12770]  ? __pfx_iter_file_splice_write+0x10/0x10
[  513.352596][T12770]  direct_splice_actor+0x18f/0x6c0
[  513.352651][T12770]  splice_direct_to_actor+0x342/0xa30
[  513.352705][T12770]  ? __pfx_direct_splice_actor+0x10/0x10
[  513.352761][T12770]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  513.352823][T12770]  do_splice_direct+0x174/0x240
[  513.352874][T12770]  ? __pfx_do_splice_direct+0x10/0x10
[  513.352926][T12770]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  513.352980][T12770]  ? rw_verify_area+0xcf/0x680
[  513.353026][T12770]  do_sendfile+0xafd/0xe50
[  513.353082][T12770]  ? __pfx_do_sendfile+0x10/0x10
[  513.353133][T12770]  ? __x64_sys_futex+0x1e0/0x4c0
[  513.353183][T12770]  ? __x64_sys_futex+0x1e9/0x4c0
[  513.353229][T12770]  __x64_sys_sendfile64+0x1d8/0x220
[  513.353264][T12770]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  513.353301][T12770]  ? rcu_is_watching+0x12/0xc0
[  513.353348][T12770]  do_syscall_64+0xcd/0x260
[  513.353400][T12770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  513.353435][T12770] RIP: 0033:0x7f1e55b8d169
[  513.353462][T12770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  513.353491][T12770] RSP: 002b:00007f1e56923038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  513.353518][T12770] RAX: ffffffffffffffda RBX: 00007f1e55da6080 RCX: 00007f1e55b8d169
[  513.353539][T12770] RDX: 0000000000000000 RSI: 000000000000000a RDI: 000000000000000a
[  513.353557][T12770] RBP: 00007f1e55c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  513.353576][T12770] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  513.353595][T12770] R13: 0000000000000000 R14: 00007f1e55da6080 R15: 00007fff560fc178
[  513.353621][T12770]  </TASK>
[  513.353739][    C0] vkms_vblank_simulate: vblank timer overrun
[  514.556388][    C0] vkms_vblank_simulate: vblank timer overrun