last executing test programs:

8m25.551219712s ago: executing program 0 (id=358):
unshare$auto(0x7)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0x7fffffffffffffff, 0x9b72, 0x2, 0xae30)
mmap$auto(0x0, 0x400008, 0xdf, 0x10, 0x2, 0x8000)
r0 = socketpair$auto(0x200, 0x4001, 0x8000000000000000, 0x0)
pidfd_open$auto(0x1, 0x6)
open_by_handle_at$auto(r0, 0x0, 0x1)
r1 = userfaultfd$auto(0x4)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x480100, 0x0)
setuid$auto(0xffffffffffffffff)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x3c1043, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x8c, 0x0, 0x8, 0x70bd2b, 0x25dfdbfe, {}, [@CTRL_ATTR_FAMILY_NAME={0x8, 0x2, '^&^\x00'}, @CTRL_ATTR_OP={0x8, 0xa, 0x1}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x798}, @CTRL_ATTR_OP={0x8, 0xa, 0xa8d}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x7}, @CTRL_ATTR_FAMILY_NAME={0x6, 0x2, ',\x00'}, @CTRL_ATTR_OP={0x8, 0xa, 0x6}, @CTRL_ATTR_FAMILY_NAME={0x2f, 0x2, '/sys/kernel/debug/tracing/trace_marker_raw\x00'}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x8f}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x2}]}, 0x8c}, 0x1, 0x0, 0x0, 0x48085}, 0x20008000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000080))
unshare$auto(0x40000080)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x400000005, 0x0)
mmap$auto(0x62, 0x400000002020009, 0x5, 0xeb1, 0xffffffffffffffff, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim0/del_port\x00', 0xa001, 0x0)
write$auto(r3, &(0x7f0000000380)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85K /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0xa, 0x2003ef, 0x15)
io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x9, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0xa, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2020}, {0x100, 0x1, 0x50, 0x5, 0x8001, 0x7, 0x8, 0x1, 0x100000002}})
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r1)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x4000000000009b72, 0x2, 0x8000)

8m22.085611947s ago: executing program 0 (id=366):
r0 = openat$auto_mgts_fops_(0xffffffffffffff9c, &(0x7f0000000240), 0x448040, 0x0)
mmap$auto(0x1, 0xffffffffffffff01, 0x7, 0x11, r0, 0x8ef)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r1 = openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/17s\x00', 0x109002, 0x0)
vmsplice$auto(r1, 0x0, 0x4, 0x9)
r2 = bpf$auto_BPF_BTF_LOAD(0x12, 0x0, 0x343)
ioctl$auto_MEMGETOOBSEL(r2, 0x80c84d0a, &(0x7f0000000140)={0x6, 0x4, [[0x3, 0x200], [0x1000, 0x6], [0x3, 0x3], [0x5, 0x2], [0x9, 0x7], [0x9, 0x7], [0x5a6, 0x3], [0xc, 0x8]], [0x800, 0x0, 0x7, 0x8, 0x0, 0xee, 0xffff, 0x1, 0x27, 0x7, 0x1, 0xfff, 0xd, 0x2, 0xa160, 0x3ff, 0x1, 0x7, 0xe7e7, 0xffffff05, 0x3, 0xa, 0x7fffffff, 0x5, 0x8001, 0xffffffff, 0x8, 0x1, 0x6, 0x1, 0xa, 0x6]})
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(0x3, 0xc0044dff, r3)

8m21.546230422s ago: executing program 0 (id=367):
mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/radio22\x00', 0x1cb502, 0x0)
ioctl$auto(r2, 0x5646, r2)
r3 = io_uring_setup$auto(0xa, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
close_range$auto(0x2, 0xa, 0x0)
io_cancel$auto(0x7, &(0x7f00000001c0)={0x8000000000000001, 0xb2fa, 0x8, 0x13, 0x9, <r4=>r3, 0x6b, 0x7, 0x101, 0x0, 0x3ff, <r5=>r0}, &(0x7f0000000280)={0x1, 0x140000000000000, 0x4, 0x7ff})
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/sunrpc/parameters/min_resvport\x00', 0xe3102, 0x0)
sendfile$auto(r6, r6, 0x0, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000680)={0x2d0, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_FRAME={0x2bc, 0x33, "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"}]}, 0x2d0}, 0x1, 0x0, 0x0, 0x400c080}, 0x20000800)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0x5, 0x200, 0x3, 0x7, 0xffffffffffffffff, 0x8, "2af051b26b658a20d8dc6b3662034b19", 0x0, 0xffffffffffffffff, 0x9, 0x7, 0x7, 0x6}, 0x10)
bpf$auto(0x19, 0x0, 0x0)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r7 = socket(0x10, 0x2, 0x0)
r8 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r8, 0x10f, 0x86, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
unshare$auto(0x8000400)
sendmsg$auto_NFSD_CMD_THREADS_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYRESHEX=r7, @ANYRES8=r7, @ANYRESHEX, @ANYRES8=r7, @ANYRESHEX=r5], 0x24}, 0x1, 0x0, 0x0, 0x24004011}, 0x20000000)
sendmsg$auto_NL80211_CMD_GET_REG(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000044}, 0x40000)
r9 = openat$auto_page_owner_stack_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000140), 0xa4142, 0x0)
io_uring_register$auto_IORING_UNREGISTER_IOWQ_AFF(r9, 0x12, &(0x7f0000000300)="5bde34fcaf6642823e691b481d59c831006aaafeb6301b3ef191f08fbe2b8e540a74f18904db9f0be3f86f00f69472e137457c93c423ae534fd3c250c0b9b24b9221413ba43dad13cfcf1d8deaf2e57ca2233bed908cd22988466b7051711584317f1ceee489f043905f142e8b4fc3096daadcb3d200ab23b612c91174b0699e14e05b1dbf002a958499794899e12fc5ca3f2e57f912da462eeff20a82d04556335a27963b2476cf3bf41fbe2b1c91c45807d42e", 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00)

8m20.464173674s ago: executing program 0 (id=371):
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)
mkdir$auto(0x0, 0x6) (async)
mkdir$auto(0x0, 0x6)

8m19.980478231s ago: executing program 0 (id=373):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEC_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400007f", @ANYRES16=r1, @ANYBLOB="11032cbd700001dcdf251d000000"], 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x800)
mmap$auto(0x0, 0x40006, 0xdf, 0x200009b72, 0x7, 0x28000)
r2 = io_uring_setup$auto(0x6, 0x0)
ustat$auto(0x801, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
r3 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = open(0x0, 0x26241, 0x20)
r5 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
socket(0x2, 0x1, 0x106)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), 0xffffffffffffffff)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x20000080)
syz_clone(0x2000300, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x5004000, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TIOCSTI2(r2, 0x5412, &(0x7f0000000000)="b68161a86e8da4110338a92ca863a91beaa8558206154cc5fbaf")
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
listen$auto(0x3, 0x81)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd)
close_range$auto(r5, r4, 0x0)
r7 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sysvipc/msg\x00', 0x8a880, 0x0)
pread64$auto(r7, 0x0, 0x7fff, 0x3)

8m19.424358305s ago: executing program 0 (id=375):
r0 = openat$auto_mgts_fops_(0xffffffffffffff9c, &(0x7f0000000240), 0x448040, 0x0)
mmap$auto(0x1, 0xffffffffffffff01, 0x7, 0x11, r0, 0x8ef)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r1 = openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/17s\x00', 0x109002, 0x0)
vmsplice$auto(r1, 0x0, 0x4, 0x9)
r2 = bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f0000000040)=@test={r1, 0x6, 0x5, 0x40, 0x4, 0xb, 0x8001, 0xffffffdc, 0x2446, 0x7f, 0x755, 0x0, 0x7, 0x6, 0xa0}, 0x343)
ioctl$auto_MEMGETOOBSEL(r2, 0x80c84d0a, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(0x3, 0xc0044dff, r3)

8m18.936904465s ago: executing program 32 (id=375):
r0 = openat$auto_mgts_fops_(0xffffffffffffff9c, &(0x7f0000000240), 0x448040, 0x0)
mmap$auto(0x1, 0xffffffffffffff01, 0x7, 0x11, r0, 0x8ef)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
r1 = openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/17s\x00', 0x109002, 0x0)
vmsplice$auto(r1, 0x0, 0x4, 0x9)
r2 = bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f0000000040)=@test={r1, 0x6, 0x5, 0x40, 0x4, 0xb, 0x8001, 0xffffffdc, 0x2446, 0x7f, 0x755, 0x0, 0x7, 0x6, 0xa0}, 0x343)
ioctl$auto_MEMGETOOBSEL(r2, 0x80c84d0a, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mtrr\x00', 0xc0000, 0x0)
ioctl$auto(0x3, 0xc0044dff, r3)

7m37.441840607s ago: executing program 2 (id=497):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
ioctl$auto(0xffffffffffffffff, 0x2, 0x9)
sysfs$auto(0x2, 0x40, 0x2)
read$auto(0xffffffffffffffff, 0x0, 0x1f40)
mmap$auto(0x100000000000004, 0x2020009, 0x3, 0xebe, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
ioctl$auto(0x3, 0x89e1, 0x91)
socket(0x2, 0x80002, 0x73)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@ax25={0x3, @null}, 0x54)
landlock_create_ruleset$auto(&(0x7f0000000100)={0xff, 0x2, 0x6}, 0x7ee3, 0x0)
unshare$auto(0x40000080)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r0 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80a00000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x104, r0, 0x800, 0x70bd2d, 0x25dfdbfb, {}, [@OVS_VPORT_ATTR_UPCALL_PID={0xed, 0x5, "2779f03473b72cbedbe28b003abd2c83e179dca1b3d40f6592776d66aa361debbaf30101581260de9f875f037474e5033a33a9507d017feca6620b3852a9006084f72017e1225904205591b5b9371f05ae79b9730696ea831c32cd9b61f04d02b75b4a5d6ed94572291698865afea90f9bee572bb6d493200a49ef1adcb289ef3dd458dd33d6b577260bf38e5ee9e732871dd962b47ea8a6afb33a810da43adfed35716c282777a69df000bb5935b2e44ebc2adc95eb455d516abd9da6a06e7e529fc402d9c3b0028d6e7635af80d6bf5b9b10bcf7422a2363c2391f02bbed8b8fc8494d9ad289f2c9"}]}, 0x104}, 0x1, 0x0, 0x0, 0x40810}, 0x4840)
r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
write$auto_ftrace_subsystem_filter_fops_trace_events(r1, &(0x7f0000000140)="8f0447fef2afea7e35a0274f508a73119aff3bc0528f45fd27fea1bb4baa95f757cf9e57a14e04353736f4a23ce2a531c678ed7d6d28d43aaea2a69abe3e93453380adf35653f5875227ce319330afe5e4cc7601a8eccbb3729f9869ca35edaf6343e41fe91304ef53273ed0cc2dfe7bfe60f2c9fa95fc93cc906a80aec437a39cd0672a169c151550a062a76e472626", 0x90)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz3\x00', 0x5f3f80, 0x0)
ioctl$auto(r2, 0x4b49, 0x1)
write$auto(0xffffffffffffffff, 0x0, 0xffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r3 = socket(0xa, 0x5, 0x84)
sendto$auto(r3, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)

7m36.788895285s ago: executing program 2 (id=502):
mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) (async)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
mremap$auto(0x0, 0x3, 0x3fda, 0x6, 0x7fffffffb000) (async)
mremap$auto(0x0, 0x3, 0x3fda, 0x6, 0x7fffffffb000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000001380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xfc\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r&\xec\xb8\xb1Z\\\xc9L\xb2\t\xddbH|\xffGP\x97)\xb9:nqn\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc$\xa0\xa5\xce\xca\xe1P\xf7\xe5_\xca\xd5\xd8\xa4g_\xb1\x88\x8cAJS\x11\x8b\xd1%a\xe5DPk\x8c\xf9\xfb\xe0+\xdb\x12\x10.F\x00\xc37\xc7\xbf\x80\xbeu\xe1V\xb2\xc5\xc9\x1a\xc7\xdc}!\x10\xb1\",1%\x0e\xeb\x15\x15me\xe1a\x03\x18{\xb03+\x93*vB\xc6\xf1\xc6\xff\xbbt\x04!\xb6\v\xde2\xc9\x89#\xbaR\xee\x13jF%\xf2\x15\x9a\x82&\x89o\xa9\xd9\xbfFY\x90\x8c\xa0\xe4\x9d\xa2\xcd\x9a\xb5TC\xc4\x9d\x9ePb]\xaa\xc7f\x06N\xc5\xfa{\x02Y\xae\xf4(\xaa\x06);{?\x1e\fu\x19b\xdf$,\x01\"\x94\x00\x00\x00\x00\x003\xcfZ\xaf~<\xba\xb7\xa03\x8c\n*krS\x19Q#\x8f\xfbW\xad\xe0\xb3o\xcb\xf7\xda\x87C\x99\x1a\xa8\xc1\xe3\xc6%\xac\x01@*\xa0\xc4\xedn-lT\xe6*?\'\x9dW=\xa7\x03\x06\x83 IT\xa3\x7ff\xb6\x95\xe5\xd2\n\xaf\x87`\xce%\xf6 &\xa7M5I\x9c\x17h\x8c\xa4\x98\x16\xe0\xd9?Y\x7f\xf6\x85_{\xfd9p$B9_\xd8\xf4\x0e\xd0\xfa\xe7\xb0\xb8\xa0\xd7\a\xff.\"\x81\b\xb0\xb4\x84\xac\xad\x1b\x93~_\xea\xfe7\x03\"\xd9\x1d.\xe5{bHX\x14\xa1\bO\x03[^\x85jP\x89\t\x06GI\xb7\x99\xb2zZf\xc8\xd4\x8d\x1c\x1e\x03\xb9\xa7Nt\xae\xfff\xf9\tx\xae\xa8\x05\xb14\xc6\x9b\x1f\xd3\x01#\xc6\nb\xd4\xb4\xc8?\xa7\xe2R\xc1\xcf\xd2\xbc\xae\xd1\xc2\x88\"\xf3\xf0\xc0uQy\xec\xfab\xd6\xcd\x16)\x19*E\vm\x8d\x1bG:\x80\'pJ', 0x4100000a3d7) (async)
write$auto(r0, &(0x7f0000001380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xfc\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r&\xec\xb8\xb1Z\\\xc9L\xb2\t\xddbH|\xffGP\x97)\xb9:nqn\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc$\xa0\xa5\xce\xca\xe1P\xf7\xe5_\xca\xd5\xd8\xa4g_\xb1\x88\x8cAJS\x11\x8b\xd1%a\xe5DPk\x8c\xf9\xfb\xe0+\xdb\x12\x10.F\x00\xc37\xc7\xbf\x80\xbeu\xe1V\xb2\xc5\xc9\x1a\xc7\xdc}!\x10\xb1\",1%\x0e\xeb\x15\x15me\xe1a\x03\x18{\xb03+\x93*vB\xc6\xf1\xc6\xff\xbbt\x04!\xb6\v\xde2\xc9\x89#\xbaR\xee\x13jF%\xf2\x15\x9a\x82&\x89o\xa9\xd9\xbfFY\x90\x8c\xa0\xe4\x9d\xa2\xcd\x9a\xb5TC\xc4\x9d\x9ePb]\xaa\xc7f\x06N\xc5\xfa{\x02Y\xae\xf4(\xaa\x06);{?\x1e\fu\x19b\xdf$,\x01\"\x94\x00\x00\x00\x00\x003\xcfZ\xaf~<\xba\xb7\xa03\x8c\n*krS\x19Q#\x8f\xfbW\xad\xe0\xb3o\xcb\xf7\xda\x87C\x99\x1a\xa8\xc1\xe3\xc6%\xac\x01@*\xa0\xc4\xedn-lT\xe6*?\'\x9dW=\xa7\x03\x06\x83 IT\xa3\x7ff\xb6\x95\xe5\xd2\n\xaf\x87`\xce%\xf6 &\xa7M5I\x9c\x17h\x8c\xa4\x98\x16\xe0\xd9?Y\x7f\xf6\x85_{\xfd9p$B9_\xd8\xf4\x0e\xd0\xfa\xe7\xb0\xb8\xa0\xd7\a\xff.\"\x81\b\xb0\xb4\x84\xac\xad\x1b\x93~_\xea\xfe7\x03\"\xd9\x1d.\xe5{bHX\x14\xa1\bO\x03[^\x85jP\x89\t\x06GI\xb7\x99\xb2zZf\xc8\xd4\x8d\x1c\x1e\x03\xb9\xa7Nt\xae\xfff\xf9\tx\xae\xa8\x05\xb14\xc6\x9b\x1f\xd3\x01#\xc6\nb\xd4\xb4\xc8?\xa7\xe2R\xc1\xcf\xd2\xbc\xae\xd1\xc2\x88\"\xf3\xf0\xc0uQy\xec\xfab\xd6\xcd\x16)\x19*E\vm\x8d\x1bG:\x80\'pJ', 0x4100000a3d7)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_3={0x7, 0x1, 0xfffffffffffffff8, 0xfd, 0x401, 0x39bb, 0x1e, 0x2, 0xffff, "f3f97f851fd1618108a569eaadec7108", 0x0, 0xb, 0xffffffffffffffff, 0x3, 0x8, 0x8001, 0x8, 0xff, 0x9, 0x7159, @attach_prog_fd, 0x0, 0x0, 0x50000000000, 0x53, 0x1780}, 0xf) (async)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_3={0x7, 0x1, 0xfffffffffffffff8, 0xfd, 0x401, 0x39bb, 0x1e, 0x2, 0xffff, "f3f97f851fd1618108a569eaadec7108", 0x0, 0xb, 0xffffffffffffffff, 0x3, 0x8, 0x8001, 0x8, 0xff, 0x9, 0x7159, @attach_prog_fd, 0x0, 0x0, 0x50000000000, 0x53, 0x1780}, 0xf)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0p/sub7/info\x00', 0x8040, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000100)=""/184, 0xb8)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/serio/drivers/rainshadow-cec/bind_mode\x00', 0x182b02, 0x0)
sendfile$auto(r2, r2, 0x0, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f2, 0x14)
madvise$auto(0x0, 0x200007, 0x19)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x5d, 0x0)
socket(0xa, 0x1, 0x84) (async)
socket(0xa, 0x1, 0x84)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb9, 0xf, 0x7, 0x400004, 0xffffffffffffffff, 0xe7b, "00000000000000e3ffffffffffffff00", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10) (async)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb9, 0xf, 0x7, 0x400004, 0xffffffffffffffff, 0xe7b, "00000000000000e3ffffffffffffff00", <r3=>0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r3, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
listen$auto(0x3, 0x83) (async)
listen$auto(0x3, 0x83)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0xf, 0x3, 0x2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
close_range$auto(0x2, 0x8, 0x0)

7m35.691899279s ago: executing program 2 (id=505):
mmap$auto(0xffffffffffffffff, 0xfff, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = io_uring_setup$auto(0x9, 0x0)
close_range$auto(0x2, r0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x181742, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
mmap$auto(0x0, 0xe980, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8008000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vivid.0/video4linux/vbi14/dev_debug\x00', 0x30d003, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f0000000200), 0xa0e01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
io_uring_setup$auto(0x11, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyyb\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
socketpair$auto(0xf3, 0x0, 0x0, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r3, &(0x7f0000000100)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\xce\x84!\xd3\xe8\xfe\x06\x94\xcf\x01\xf6S\xda\x8bN\f/J\x80\xd2\xca\x7f-\xb0\xc4\x16\x0e6\xd0x/\x89N\xf9X\x91\xdd(\x10\xcdi/\xab\tr\xbb\xe0\x81`\x9e\xf2\xff\xff\xff\xff\xff\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00\x0e\'nD\xa5\x96}\xf3\xf2\xeb W\x90\x03\xfaL\x9d\x03\a\x1c__\x0f\x94\xe4\x1c\xb5\x10\xae\x81\xbe\xf7\xad\xf3JIl\xfd\xbd^\xdf', 0x81)
write$auto(0x3, 0x0, 0xb6bd)
unshare$auto(0x40000080)
prctl$auto(0x3e, 0x1, 0x0, 0x8, 0x0)
mmap$auto(0xfffffffffffffffe, 0x12020005, 0x6, 0xeb1, r1, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NETDEV_CMD_DEV_GET(r4, 0x0, 0x28044004)
getsockopt$auto_SO_RXQ_OVFL(r4, 0x8, 0x28, 0x0, &(0x7f0000000540)=0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

7m35.168419196s ago: executing program 2 (id=509):
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8004) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
futex$auto(0x0, 0x7, 0x5, 0x0, 0x0, 0x80000001)
socket$nl_generic(0x10, 0x3, 0x10) (async)
keyctl$auto(0x1, 0x0, 0x0, 0x5, 0x8003) (async)
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x800, 0x0) (async)
mmap$auto(0x0, 0x8, 0x9, 0x9b72, 0x2, 0x8000) (async)
r1 = openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x202, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x5, 0x84)
socket(0xa, 0x3, 0x3a) (async)
setsockopt$auto(0x400000000000003, 0x29, 0xcb, 0x0, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCR(r2, &(0x7f00000004c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000380)=ANY=[@ANYRES64=r2, @ANYRES64=r1, @ANYBLOB="000127bd7000fedbdf2506000000ec3dcc0f2ea6e3c1d705719d4617ddd6aecc5385e61f58a3c47a8802f27790b71ec8ab16b828f4a93502f02d661ea1fca92b8d7ef3630e2587a5e4c47c7cd58552e81c6c69de23be883b0af261f2330b22131ccdf092072ab581e41b8da64e5b199b2abf092b112dbbbea608f5a726c6760189cf6d2129ad9cc10e6c2d5b6a9b382234b459c370d1cbe377b4a4fe041183966aecf87f7f687e5ecb0e1dcfc7178c74a572251cccbe195a66305f84df3f57afc0d6c10b94f6626d528d3957b38126"], 0xd8}, 0x1, 0x0, 0x0, 0x11}, 0xd0) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/snd_usb_audio/parameters/quirk_flags\x00', 0x121102, 0x0)
write$auto(r3, &(0x7f0000000040)='\\\x00', 0x2)
mbind$auto(0x4, 0x2091cf, 0x4, 0x0, 0x6, 0x2) (async)
r4 = syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)
unshare$auto(0x40000080) (async)
mmap$auto(0x0, 0x5, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) (async)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) (async)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x3d9440, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async)
sendmsg$auto_NL802154_CMD_SET_CCA_ED_LEVEL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYRESOCT=r4, @ANYRES16=r0, @ANYBLOB="08002dbd7000fddbdf250e000000050012004000"], 0x1c}, 0x1, 0x0, 0x0, 0x8011}, 0x40000) (async)
mmap$auto(0x200000000000007, 0x0, 0x7, 0x10, r3, 0x8000000000000002) (async)
prctl$auto(0x23, 0x6, 0x2008, 0xc, 0xfffffffffffeffff)

7m34.880389287s ago: executing program 2 (id=511):
r0 = memfd_create$auto(&(0x7f0000000300)='/sys/kernel/debug/x86/boot_params/data\x00\"F\xb6\xcd\x06\xd6\x97\\L\xe1\xb2\xee\xb8\x8e\xd6O\xa1j\x90w\xc7\x94\xb7yi\x01&\x04b/\xaa\xfb#s\xc4\xa3\xa7\xacj\xc6\x8e\xf4L\x9a\xf8\xcc\xdcy\x9f\x93\xbc\xf6\xc8\xdb\x05w,|B\xfc\x04\x97\xd3\x0f\x8b\x81\xe8\xbc\x81\x0e\xd7o\xd2\xcd\x18z\xc2\xb7|\xe1\xa6\x9a~\x96\x10rnLnt\xdb\xdb-\x1b\x99\xd4\xed;\xf8\x13a\r\xf2\a\x85%\xef\xa7\x7f#\x96\xf2S\xb0\xf1Hq\x0f;\x83\xb7\x0fz\x9dN\xc9\x1e\x15r\x97|\xbfE\xce\"', 0x4)
timerfd_create$auto_CLOCK_BOOTTIME(0x7, 0x9)
fallocate$auto(r0, 0x0, 0x9, 0x4cbd5d)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x1010001, 0x100000003)
madvise$auto(0x1000, 0x400050, 0x9)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/dummy0/flags\x00', 0x2c62, 0x0)
write$auto(r1, &(0x7f0000000580)='0\x00\xa6\xcc\r\x91QU\x9d\x15\x84\xab`\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04\x7f\x00\x00\x00\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18K\xb0D\x91OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfdFq\xe7\x03\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10)kcsZ^3H\xf1\xdf\x96\xfd)\xf3\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xaeO\x03\x91p6\xa0\xb9g.\xde\xd4`\xfa\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\x88\xd8\'\xe4\xf8\xe9f{\xf7gl\r\xdf\xc8n)J\xa2\xfa\x03\xbe%\xf6\xd1\xfb\xbcg\"\a\x03\xdef\x10K\xa1\x80z\xd1Z{\xb0\x91\ft\xf5\xaf:\xc9\x02~`\x11\x15\xa3\xd9y\xb3)~\xb6\xaaB\x16O\x1c\xdeY2\x8f*R\xf6\xb5m\xc6\x91+\x14\x04\xf7*9\x9e\x04\xe3\x03\b\x02kud\xf8j\x95I.\x04\\\x80S\xa5\n\x14\x05\x12\n^\xc9|\xf8.>\x8b\xb1y\xe7\x96\x9asW\x10}(\x9c\xc9\x84\xec\xf68\xb7\xd7\xec\xc9F\xe1v\x9aD\t\xc6f\ay\xafX\x96\xcc\xa8\xae\xcb\xac\xd5\xd4\xee1\"L\xacC\t\x81\x8b3\xc6\x1e\xbbwlK\xd2\x9e\xc8\xde\xed\xb6\xbeX\xe4`s\xec\xec]\xb3\xfa\xd8\x86\x1bP\xa3\xc4\xb4\x84\xd2\x94Z\xbeA\x1f,a\a\xf7\x7f\x12\xa9E\xfb\xcd\xa2@\x83<\xe0\xaf\xc5\'\xcf\xa3\xf2KD\x80\x8c\xac\xb1\xd6\r\xf4+\x9cSx\xa3\xf3mE\xbbD\xd3\x1bK\xdc\xc7\x9c\xa6M3\x1f\xac{\xc1\x036\xd16\b\x00\xa7\xc9&\x92\x0e~\x05LM \xb8\xf6.,\xf8\xa8\a\xa5)\x91\xc4\xe9P\xa6\xda\xef\xe1\xbdu\xa2\xb7\xa3\x0eZ\xdf\xaf\x87\xa10\xa0\xc8\xa4\xa0O\x96\xeb\xb9\x10\xf3]\\8\v\xcc\x16\xca\xadm\xd3\xcc\xa4\\\x192\xc6\xb1i/\x90$\x05Y>soi)\x12\x05@\a\xe9c\x17\x818\x1e\x8fn\\)\x1a\x96\xc0\xf6\xa4\xf1]\xfe\xa7\x1e\x02\xd3\x1f\x97MT\xd5g\x1e\x04sD\x92+', 0x9)
fallocate$auto(0x8000000000000003, 0x3, 0xf, 0x200000004)

7m34.466837094s ago: executing program 2 (id=513):
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$auto(0x3, 0xc02c5341, 0x38)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x34ba42, 0x0)
mmap$auto(0x0, 0x810005, 0xffb, 0x8000000008011, 0x3, 0x8001)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, 0x0)
madvise$auto(0xff, 0xffffffffffff0005, 0x17)
futex$auto(0x0, 0x10b, 0x1, 0x0, 0x0, 0xfbfffffa)
prctl$auto(0x23, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
pipe$auto(0x0)
pipe$auto(0x0)
tee$auto(0x2000000000000, 0x3, 0x402, 0xd)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x7ff)
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x10000, 0x6)
fcntl$auto_F_OFD_SETLK(r0, 0x25, 0x101)
mmap$auto(0x0, 0x6, 0xdb, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x1c7683, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ram0\x00', 0x16f300, 0x0)
sendfile$auto(0x3, r1, 0x0, 0x400000000006)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc)
creat$auto(&(0x7f00000000c0)='./file0/file0\x00', 0x8001)

7m18.919002444s ago: executing program 33 (id=513):
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$auto(0x3, 0xc02c5341, 0x38)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x34ba42, 0x0)
mmap$auto(0x0, 0x810005, 0xffb, 0x8000000008011, 0x3, 0x8001)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, 0x0)
madvise$auto(0xff, 0xffffffffffff0005, 0x17)
futex$auto(0x0, 0x10b, 0x1, 0x0, 0x0, 0xfbfffffa)
prctl$auto(0x23, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
pipe$auto(0x0)
pipe$auto(0x0)
tee$auto(0x2000000000000, 0x3, 0x402, 0xd)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x7ff)
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x10000, 0x6)
fcntl$auto_F_OFD_SETLK(r0, 0x25, 0x101)
mmap$auto(0x0, 0x6, 0xdb, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x1c7683, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ram0\x00', 0x16f300, 0x0)
sendfile$auto(0x3, r1, 0x0, 0x400000000006)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc)
creat$auto(&(0x7f00000000c0)='./file0/file0\x00', 0x8001)

1m18.175064878s ago: executing program 3 (id=1996):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/bus/pci/rescan\x00', 0x20081, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000200)='5', 0x1) (async)
unshare$auto(0xfffffffffffffffd)
getsockopt$auto_SO_MEMINFO(0xffffffffffffffff, 0x1000000b, 0x37, 0x0, 0x0) (async)
r1 = socket(0x2, 0x801, 0x106)
getsockopt$auto(r1, 0x11c, 0x4, 0x0, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc) (async)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/kvm/halt_poll_fail_hist\x00', 0x42, 0x0)
write$auto(r3, &(0x7f0000000180)='0\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k>\xc8\x1f\xad\xf6\xf0\xef\xe4s\x95\xf2\x00\x97S\xb9O\xac\xbe\xd6\\J<\x02YK\xd6M\xe6\xe7\xa0\xb8\xc3[\x01\xc5\xe8|\xb0\xb0\x80\xbf\xa5?=i\x88UB\x1d\x8e\xd3\xc2\x949\xb6\xfb\x006\x02\x9c\xe5\x14\x13\x99\xc7\xb4)M\xed\tN $\xd4\xb2^?J\x92\x9a?\xf8b\x03\xd8\xdd\x84\xdf\x92\xf0\xcd\xd8\xba\xab\x15\x80\x9eo,\xc8\xf2\x82\xd2\x88\xbeL\xa0\x1a\xd3\xd5Of\x95\xee\x13e\xeb}o\x9b\x86_\xf0?\f<\xf3t7\xb6\x0f\x93\xc79@\xd8x\x9e\xef!\x006\b\xdbWB\x84\xdd\xac\xdau\x86g\x8f\x02@O7\x0f\xf8\x8d(\x9c\xf2NyD\x7f3\x14\x9eg\x86%)\xd6\b\xcd\x1f\x03\x00:\xa6\x83\'\xf4\xf2\x9dT\xf4z\x89\xc5D\xc4\x02\\\x81\xcf\x02Ep\xf6`\xdc*\x1dV', 0x5)

1m17.972057765s ago: executing program 3 (id=1999):
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_BATADV_CMD_SET_MESH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x4081}, 0x24004081)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xfffffffffffffffc, 0x9}, 0x7}, 0x3, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffa, 0x8000000008011, r1, 0x8000)
fdatasync$auto(r1)
madvise$auto(0x0, 0x400053, 0x9)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000500)='/dev/sequencer\x00', 0x80102, 0x0)
unshare$auto(0x40000080)
mmap$auto(0xffffffffffffffff, 0x810000, 0xff8, 0x8000000008011, 0x3, 0x8000)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
msgsnd$auto(0x1, &(0x7f0000000240)={0x7, 0xa}, 0xfffffffffffffff9, 0xffff0001)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="13002ebd7000dddbdf251500000008000300", @ANYRES32=r4], 0x24}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894)
ioctl$auto(r3, 0x0, r1)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x123002, 0x0)
preadv2$auto(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x80000003}, 0x7, 0xffffffffffffffff, 0x8000000000000, 0x2f)
socket(0x2, 0x804, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
modify_ldt$auto(0x0, 0x0, 0xfffffffffffffffb)
process_vm_readv$auto(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f00000000c0)="551d474b1723506d29d9ff5ffdeba0f22f94bc77292be680adeb79cf6750bcc972277e", 0xd}, 0x7, &(0x7f0000000200)={&(0x7f0000000140)="293d7793", 0x9}, 0x9, 0xe9)
socket(0x10, 0x2, 0x0)
mmap$auto(0x1, 0x5, 0x100003, 0x9000000eb1, 0xffffffffffffffff, 0x2)

1m16.197485782s ago: executing program 3 (id=2004):
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
write$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000500)="0a1b9a3c3e3e006e163b99d4d7c3e76dc04c0bcdcd1cb044b3162cb440886d8ebcc2574c58e9867ecec3371cadb848770dc8f745d1c76eedba12b9f694da9dbcf3401910bb713aca465c9bbc23b5d40a", 0x50)
close_range$auto(r0, r0, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010029bd7073000000001400000008000300", @ANYRES32=r5], 0x24}, 0x1, 0x1400, 0x0, 0xaee2e45ddcc9e3a5}, 0x20040080)
sendmsg$auto_NL80211_CMD_ABORT_SCAN(r2, &(0x7f0000000a40)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000a00)={&(0x7f0000000300)={0x6f8, r3, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_BEACON_HEAD={0x6d9, 0xe, "d746c94ab0d671b83ca357eec2b26a0e88589f1569f3c3ff0949849c0c37065ae7f9b1f33344a5e784848f21aad6c852580c08b1bca21715919b3d076ee938881e3227bb4019353270e7bc6ae36dade74847cb861febce3b997323b2b5d88a3d4db2c6e56eda5bc99bd9afb226713303ef6a1ca0e179e2f1a87754959497d31ff38e8471658c08f82f8fca8ba0e4567371cb1b31022d7f11c7797b0fe3493a7d276b92fcdf0db7ad08e24ed5ef6c63b615d77a9d258c1697df29efb5742fc2152bebe5485b024ca7e3595b596d43a357a964e03d0b58b8a31ba81e07c7db29026f9af3510b0dd2938befe56a709098452fdd45f551b3df1f503afcbb4b08366d3710d60254bc306d92e38e2ac8e8bbb84e1502c8de673986ddd5e2d2bf00a4c1435540f97496431eef124df35c30ed8d2578b508c2e4ac8f44673b67df02244433cc8c0999948ae07cbb69a4ea163c74cc9529a16386c610e73407fdd3b5c5e7d0d3debb656f4c1af666e960890e998d26b3e62088106212c73936f63df13a03e84e810f2a3a734854e49b43f3d147b983c1e9380bd54eabe5e295f5cf444ec2a3958d558b52072af65ff98437f627b73cb31dcfd9f0d0c4a41be69c675ff2c99405a9818653a6d35fcb5069b9b59ceb6a888f756a320702dfa657907fc3836091049773334d1ab90db0b65bee6646e53e35b7ed894168380d4091813a0c2307c865e1194a84e8989f797d70eaa6a2f398c490b8213e144159c09e984a65dcb94cdf269a158b91b0d413aa62c5df3e0cda8c1ad2be1462339c0f28bd5fcefce5875b16d96e142b4f1bde5472a5a248eb047b974cc15c2b790722dc9132224814bb95e0d977d53f02b33e22c9b03dc44d3f70e848af286e55637a02f6978f688087d8a619652ef8e797565be0cd06449210f1003db1415004e391ec0a2c2c5a65ebaa7d2a514108be92a24c78637c2b97096e1cac405a8ea09e1912ae5dc133756903988ba935ba6c9e54ce0c0e9a63e133b0a58afb68444f4ab361e4018cd58f7aeefaf501722a3792aa32f875d636f52cad369aa0b25ee13389bf9aa529e36d51d03296fb40ef701b5c1580ee9ec238de420206a6601bc7c28e2ff2a0adbbcddf7d0cebbb6de6f89bb41a0cdbeebc861e2d1c32f2cd2eac58f31a723eeee1aea7cddd25df90a7ed22827a984ef7132bc2cd50688c4e347c8a1799a07adc0f7ffbdb7eeb08f2c9be5d964da57aeedb962abe5ebe40b15c1dd89611e1c954ff08a37f6a5ddef2465d68b06d5e26841c8df83ce069fe11bd3c4ed3be3be2f24b775f9cfa9ad23c21ccc04c35d62069a126fb144ce1b01752eff3999f1f2e2864fc6ae72a811c8d748407887a9bbcf64e5a284f23219c0c4781a6d44a0cfd489e4c30b4bfd0c46eb09933e6f754b649455851632706ca4f1e1019289f013cc398da8ab902c2eca7dd54412c0df690cce020216e9f0c87cb05948c01f97ce0e067563d88c4885a4d347a9312f8e8a83c9926556ff3761ec26fc69ef3459acf5e4e4e8bb5a04f7f0c873b5c0f4e09d885d41fe45ebb676747c9b52eb303b5a471ffdc90a4e69aec75e6d3f5088884461ccfa8438b939f2a1d34227ffb2e970a57a7287650587349d161313082f9d6c00860da94be5228714125e36d906ecd2d236aa4e80f154f7d2a60d81aa24563dd2bdd4ff3f7e8bcf7fdb629ee9dde68f8687d5cbcdbeec4b7f01a062e15634f5df276a46c532fd9a98be3d7fe097e112b2576d632ce69884f94f3dfd701b4181242dbaf3d31f171111473942a1ff0238111af3103cf8e7947d20eb0b366a0027e685ba249a766431c7a487b6e54da6ab8c3414a23bafa49414138a3e85a0e071744c19a07e312bff19e9c7f2ef4f7fa747dcc13145064f4e849fa0270d1ebba7006547bfbc1504101ddeebac41ca9f432bcf225f016f4b6a757b8e4124334f15367aade1e93aa8dfb073da96225fa293102eaaf2650774f0c1115cfd79a080985c6ddc65592824b41787eba244bf537c5a2b607a772e431b8192f4865e729bcc5414e2d713977a29db1a6ebf0b342c03fedabd82a71e3f1aec1bc14bf3b425856d4ffa71a1a9a2f75140df29c40f72da45dfb1924d6b00ecbf0e94b886c68a59548b26f131337689a0cd141b2963c970a5eb93b4c38cbc3ae33e033e160f6118d2238aa454fb03f9099c2014a5286ce2be264c589732882d191ff5004e8ef9761071e699a47db965589c2de7733670c50b690f14fc7b3d72ea237d0652649ad43bad61e773c562f430659142a10d2287d09e0de34fe833de9de3230e6d21239c013dc149490227b82adeb45e60bc015d2bbbde866e21c05da2f82d0bc5b0da265cb28401e19c695117cd7b4c31c34d768d414697cf6e20258c9b3dbc97354cdbc99c19a6663d94b7982ce5dfb689dce2ec41dded158d3631884859cf3793889dd0f95ef64be110d0f"}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x81}]}, 0x6f8}}, 0x40080)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = getpid()
r8 = setfsuid$auto(0xee01)
setresuid$auto(0x0, r8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r6, &(0x7f0000001f00)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001ec0)={&(0x7f0000001f40)=ANY=[@ANYBLOB="e4140000", @ANYRES16=r3, @ANYBLOB="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"/266, @ANYRES32=r7, @ANYBLOB="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", @ANYRES32=r8, @ANYBLOB="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"], 0x14e4}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r9 = getpgrp(0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_TDLS_CHANNEL_SWITCH(r1, &(0x7f0000001bc0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001b80)={&(0x7f0000000580)={0x15cc, r3, 0x20, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_VHT_CAPABILITY={0x6d, 0x9d, "2ddea62a262ef18be74ef5302af2c2d203b6876e0ad64202458d778a2aa8ea08290601b6e4318bd3744537a2ce6685a8b95b2f1469b8516fafe21f2c6ba896329d5b16a62aeb487bfc6370717727e3e66d6eff77a2d5c244cd0f14512b6ddcf8f3e2f0dc93e3c2da8d"}, @NL80211_ATTR_SAE_PASSWORD={0x43, 0x115, "52918c7bf9990e8f95147fbdf96694d33b55cb05091b55bb284048be19910223182e2d1ab9ae94047b1117bf7b43d6f9afdf7ce7db078ac31dd5429d63aff3"}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0x3081}, @NL80211_ATTR_WIPHY_TXQ_PARAMS={0x14f3, 0x25, 0x0, 0x1, [@generic="be3ee6505c03e1b0879fd808f02039698bb934421f8ffe33232791ccd3bd14d42164445e24064bc2eed1739ed0412483aceb0bfc5d747717fb780c0a4d8e2fc2a5f0f5cb7faf9504083ba3db81bac9833bf7d7043a9f62e798ebf90d41b43e81c51cfc340b0183c7a844cf9d8226c502912b142c6b842369c97dd14eacb9afd103eda9d3573960bf4f32103e10c0fbe3ad6548726c1cb94c18935a22032d19bc247fc894045610a5800ad25396dcdcaabcee1443343dd87e04aada278d14eb167ff0b5a61405a9d93e99a3263d19149f4f6abd9e792592c37d725f4b69c7af50cd97160fe1e0d792bac810558af81b6d28b056ecabbc4a89", @generic="6f678544563441f93ddcd9a74fe9fe314d0c172d046ab0c259da5d0de6b2da5d39e0e6a5720594ba6df690ef12c55461ec4dd617d2ef5c313b26b0691937118a7db274de1e3abbb8d681ef689e94ee6178dd44c6feb3067747c0835166e23c334786b998fb06ef3700833dce7d296d1d50237ee3f2c768de6d8ec96fe2b231aeeeed54963bf6faa75e0c5458b803713875497fa97bb7d21c120035e08ae67e239c255fb62b0da0271a7622a32856eed65d6890a4a4e7cd69d0bd0b58c68ab196a5c7db147f792274bdfc906cece7bcfb4ad6703417812786e8436f1c4f", @generic="1e22a0898516764ea30be82409655335a41979dc017c3a730e03c3d0b3269d8aebe3d111695deaedc93e3d49c682f5ab6d057c0502509bd5cd7832a4ac580453ed754d5feb1dfbb2e571088a28a0606e62b4f1fd65ed486ab41cd60cd7eecddf250a2219b4359f4f3a4ca2e06706d35f7c56ce25a7723e728d2b6ea22a5bafdab54d973d843d9a56d44aa233d806bb452367bf2224b53a3156908270f1a4bb39f10e385205560bc60373d98c5eb325cf7e3012d7432601f704d2846c5331107b850378414e6cac9d9cc29539e8c58a5aa556efe2f222e5a461bad90a3b1450fc18", @typed={0x4, 0x14f, 0x0, 0x0, @binary}, @generic="dda5aa8d4fdf4120f93569b80ba703854237052bfadd21a32f6c811468f2df1e8436eb5fe9bac0c4353c9dc07639d13336018044cf7865136951bef8f020c7bf7cce58722e220716bc4d705d1c3982f09284f20641e9d3220be345fc2a90068aecaf56db9a2c0a03cb089bffacd8296442cafc03584c94f468c6a0fe22691d259042658c8bfbf7962b3b05e442", @typed={0x8, 0x76, 0x0, 0x0, @fd=r0}, @nested={0x110, 0x115, 0x0, 0x1, [@nested={0x4, 0x33}, @nested={0x4, 0x45}, @typed={0x4, 0xc1}, @generic="82f30e3112ffded878f33a220141938959caca77f455e4f45e1f13fb1b25f8d2e15eefebe9e15ae6289f895634a832a02096f499d9d29f51903f42238532b9493d6d62c8d3a051eb5c3499d9fca6a22e5426ac01f90a213dfb12012e16eaa5b08e52964992d6127a5fdd64ed8c2b741ddeca76d71dcfea158c84bddaf302549eb8fcdc3ef5f1cc2f2ab27303a40a6ca7f3a9b60714ac79ee8559ef710f0d271b4d318f", @nested={0x4, 0x78}, @generic="0565be0570125b0f65a78e642ae9053b2f8fed2c5256ca39405cad30b1514843089d75f5be39f4810b7f15907d7a72342d67b9a3e8e56538bc80294622c5a818077220702324c4fdf3578303262bb2a9e1", @nested={0x4, 0x6a}, @nested={0x4, 0x10b}]}, @nested={0x1068, 0xc1, 0x0, 0x1, [@typed={0x1004, 0xc6, 0x0, 0x0, @binary="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"}, @typed={0x28, 0x7a, 0x0, 0x0, @str='/sys/kernel/security/tomoyo/manager\x00'}, @nested={0x4, 0xd6}, @typed={0x28, 0xe8, 0x0, 0x0, @str='/sys/kernel/security/tomoyo/manager\x00'}, @nested={0x4, 0xa7}, @typed={0x8, 0x54, 0x0, 0x0, @pid=r9}]}, @typed={0x14, 0x22, 0x0, 0x0, @ipv6=@empty}, @typed={0x14, 0x16b, 0x0, 0x0, @ipv6=@loopback}]}]}, 0x15cc}, 0x1, 0x0, 0x0, 0x2404c094}, 0x4000000)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x540b, &(0x7f0000000040)="88e8b354ddcfef27e79904d11594fc0ff97cf4c5c4c9521cd4282c1ec2e14c0cab2c0bc488e01a9b9cf90535febd1fefb6545fc872f2bcbebd501e860d0dff4c87")

1m15.995374103s ago: executing program 3 (id=2007):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x1cb603, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x5c801, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0xa, 0x801, 0x84)
fcntl$auto_F_GETFD(r2, 0x1, 0xffffffff)
io_uring_setup$auto(0x4, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS1\x00', 0x101e81, 0x0)
epoll_create$auto(0x4)
r4 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x8802, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000000080)={0x1, 0x7, 0x9, 0x4, 0x1})
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_0={0x5, 0x105, 0xc, 0xb, 0x800, 0xffffffffffffffff, 0x5, "d81ddef9d4e6d312212bab98f4060bd8", 0x0, 0xffffffffffffffff, 0x7fffffff, 0xa991, 0x7, 0x8001}, 0x7)
epoll_create$auto(0x8800001)
epoll_ctl$auto(r4, 0x1, r3, 0x0)
madvise$auto(0x0, 0xff7fffffffff0001, 0x15)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@name={0x1e, 0x2, 0x3, {{0x41, 0x3}, 0x4}}, 0x6a)
getpid()

1m14.52991231s ago: executing program 3 (id=2012):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)={0x48, r1, 0x1, 0x70bd2b, 0x25dfdbf9, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x58}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x8}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_IP6_DADDR={0x14, 0x17, @empty}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1m14.27344469s ago: executing program 3 (id=2014):
mmap$auto(0x0, 0x8001, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x28, 0x2, 0xa)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(r1, 0x400454ca, 0x38)
ioctl$auto_TUNSETVNETLE2(r1, 0x400454dc, 0x0)
mmap$auto(0xffffffffffffffff, 0x2000c, 0xe0, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/ip6tnl0/statistics/collisions\x00', 0x80000, 0x0)
read$auto(r2, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xed\xf8\xe1\xbc\x1d\x91D\xe7R\x12\xc4\xcd\xc6\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY2@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(', 0x100000a3dd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
semctl$auto(0x80001ff, 0x20802, 0x13, 0x4)
keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4)
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4010000000df, 0x40eb2, r2, 0x300004000000)
r3 = io_uring_setup$auto(0xf0, &(0x7f0000000180)={0x6, 0x18, 0xd64, 0xc852, 0x6, 0x7, 0xffffffffffffffff, [0x1, 0x401, 0x1000], {0x7, 0x5, 0x1, 0x4, 0x95, 0xf4c, 0x7fff, 0xfffffffb, 0x65f29f6d}, {0x3, 0xadc, 0x10000, 0x0, 0x5, 0xffffffff, 0x1000, 0x54f, 0x5}})
read$auto_proc_coredump_filter_operations_base(r3, &(0x7f0000000040)=""/43, 0x2b)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='r\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24048800}, 0x20004015)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xb, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='*'], 0x1ac}}, 0x40000)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x1, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa509}, 0x800}, 0x7, 0x4008)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram2\x00', 0x10ba02, 0x0)
sendfile$auto(r5, 0x3, 0x0, 0x400000000006)

59.222258592s ago: executing program 34 (id=2014):
mmap$auto(0x0, 0x8001, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x28, 0x2, 0xa)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20401, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(r1, 0x400454ca, 0x38)
ioctl$auto_TUNSETVNETLE2(r1, 0x400454dc, 0x0)
mmap$auto(0xffffffffffffffff, 0x2000c, 0xe0, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/ip6tnl0/statistics/collisions\x00', 0x80000, 0x0)
read$auto(r2, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xed\xf8\xe1\xbc\x1d\x91D\xe7R\x12\xc4\xcd\xc6\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY2@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(', 0x100000a3dd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
semctl$auto(0x80001ff, 0x20802, 0x13, 0x4)
keyctl$auto(0x1, 0x7, 0x100, 0x8, 0x4)
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4010000000df, 0x40eb2, r2, 0x300004000000)
r3 = io_uring_setup$auto(0xf0, &(0x7f0000000180)={0x6, 0x18, 0xd64, 0xc852, 0x6, 0x7, 0xffffffffffffffff, [0x1, 0x401, 0x1000], {0x7, 0x5, 0x1, 0x4, 0x95, 0xf4c, 0x7fff, 0xfffffffb, 0x65f29f6d}, {0x3, 0xadc, 0x10000, 0x0, 0x5, 0xffffffff, 0x1000, 0x54f, 0x5}})
read$auto_proc_coredump_filter_operations_base(r3, &(0x7f0000000040)=""/43, 0x2b)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='r\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24048800}, 0x20004015)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xb, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='*'], 0x1ac}}, 0x40000)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x1, &(0x7f0000000000)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa509}, 0x800}, 0x7, 0x4008)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram2\x00', 0x10ba02, 0x0)
sendfile$auto(r5, 0x3, 0x0, 0x400000000006)

9.0209141s ago: executing program 4 (id=2204):
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
socket(0x10, 0x2, 0x0)
splice$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x8a5b, 0x401)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x2)
io_uring_setup$auto(0x2, 0x0)
write$auto(0x3, 0x0, 0x81)
r0 = socket(0x2c, 0x3, 0x0)
getsockopt$auto(r0, 0x11b, 0x8, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
timer_create$auto(0x9, 0x0, 0x0)
socket(0xa, 0x1, 0x100)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x317, r1, 0x4, 0x1)
ptrace$auto(0x10, r1, 0x1, 0x7ff)
ptrace$auto(0xe, r1, 0x9, 0xfffffffffffff6de)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000c, 0xdf, 0xfffffffffffffffe, 0x40000000000a5, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x5412, &(0x7f0000000100)="8d8cfd72f1c71518ed22169e0b95f9ec78a50679ec2009e4e3018d19c40010000017fab27c8579476acec85237f8ee85a124f668e8bbf6de7eda4cce570cdc4ad25d470132")
read$auto(0xffffffffffffffff, 0x0, 0x2800000009)
write$auto(0x3, 0x0, 0xfdef)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), r3)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000040)={0x1c, r4, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x404c0c1}, 0x40000)

8.600408564s ago: executing program 1 (id=2206):
getsockopt$auto_SO_SELECT_ERR_QUEUE(0xffffffffffffffff, 0x3, 0x2d, &(0x7f0000000000)='!\'*{\\!(}:$)!-', &(0x7f0000000040)=0x5)
madvise$auto(0x7, 0xfffffffffffffff5, 0x6)
madvise$auto(0x56cc, 0xf1, 0x10)
ioctl$auto_VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f0000000080)={0xf, <r0=>0xffffffffffffffff})
write$auto_tty_fops_tty_io(r0, &(0x7f00000000c0)="8184af03835bf568b69dcc2714f62cc8872fd6be45b963aab90503d387dc9194cd5ebf5b991ce187c1ab7ec44b5afda34c2695c9097de600a558929557c9877b78ca0eff445e2838d32665d12d3a0022223dd02a611ab4912374ee31a988e79f4904c589369845d376c11aafb2b16b8af3a608e4ca51f297bacf4b8a8ce2bb1270c4721801b71f0f9006ce30bb2a03c81292d65aa299cd73885dc93af5b9bb8c088f902a60dc092aa615c194e6c96ac8ff93d2451c95d0583dd1be4041cfefeb9cd0d7", 0xc3)
r1 = getpgid$auto(0xffffffffffffffff)
ioctl$auto_LOOP_CTL_ADD(r0, 0x4c80, r1)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000200), r0)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x38, r2, 0x800, 0x70bd2a, 0x25dfdbfd, {}, [@NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x10}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x7}, @NETDEV_A_PAGE_POOL_ID={0xc, 0x1, 0x10001}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x8)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000340), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'virt_wifi0\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'batadv0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'veth0_to_batadv\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'veth0_to_team\x00', <r7=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000480)={'ip_vti0\x00', <r8=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'pim6reg1\x00', <r9=>0x0})
sendmsg$auto_ETHTOOL_MSG_EEE_GET(r0, &(0x7f0000000680)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000640)={&(0x7f0000000500)={0x114, r3, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@ETHTOOL_A_EEE_HEADER={0x90, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x81}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x53}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}]}, @ETHTOOL_A_EEE_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_EEE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}, @ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}]}, @ETHTOOL_A_EEE_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}]}, 0x114}}, 0x20004001)
r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r0)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r0, &(0x7f0000000900)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000740)={0x16c, r10, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_RADAR_BACKGROUND={0x4}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0xc26d}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x9}, @NL80211_ATTR_MAC={0x28, 0x6, "ff21c5d51599c446d9b67a336de4d0e6d62ca4845ebdaa238ee023f9d69cb1fa4ac24065"}, @NL80211_ATTR_HE_OBSS_PD={0x7c, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_NON_SRG_MAX_OFFSET={0x5, 0x3, 0x6e}, @NL80211_HE_OBSS_PD_ATTR_BSS_COLOR_BITMAP={0x6e, 0x4, "5e8404868192ff1e4ee4a7da0a29ff92afd949829a2998040ac59a8c7e1b11f92ac1b07a0e1df0428d87200e6a9b7cacbf659027729777d7d667986d034b2892b43396d71764c50daf3fe1db318372d1f9f198e75487d5979cefb9ff15cff0a9599fdf9ed8360d2de96f"}]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x8}, @NL80211_ATTR_HE_6GHZ_CAPABILITY={0x89, 0x125, "3554bf42cf38af48e210429e9b1ef8e61b98c2fef10af813272960c17814870497b2387266d6293d254b6050d66e9e16ec82eaad500d2b7229ed20df4acbfa9b1737d009f40e29a2b066a89420164a3a857c916977898a86b7cd10841777e87bfc70e7e023420d1135f14cc9a070e5483acbbb3cf198e64cbe459399fe7ce5b87b6e1fdfa7"}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x62}, @NL80211_ATTR_WIPHY_SELF_MANAGED_REG={0x4}]}, 0x16c}, 0x1, 0x0, 0x0, 0x20044004}, 0x1)
ioctl$auto_XFS_IOC_PATH_TO_HANDLE(r0, 0xc0385869, &(0x7f0000000b80)={<r11=>r0, &(0x7f0000000940)="9de3cb5a7013fde53a7d39fd09c7a5acdb83ce1e0712b0a074c0d9f2f40cd034d1f833b51884066a222f73d2f36574afd3b911100f8fb6166bbd7a45d72b617a8d864610b64a7b19b126570675642f5ffa86a4b763c83dc5a2cd615a02944caf8e52b6fdbb6be08f4e2901e8ca1719fce5753febe636479ea1526b9989c10b165dd6b6ae9bf37c3b0cce5cd7f6dd1b4b4e13957e1295185ac5e60740d667ce004e", 0xb, &(0x7f0000000a00)="37b2870398b604cd80f18fb8a0e3388bb1ec6d8c26679bf4fcfd9086aeab755a5a9ab7829565d2867bc30a7cdef92ddab0686ead05f76addd9ccd5da3f759e9c5cb59a5d924362031b69fa2e417b340cb6e5d5a4088cf05a14a607d477d26ecdb07732f4662e7a0e784c3003cb6744be81bf7f9bc6c4fbc02ba8283112424f4e095b8c1da5d53e9693c03333960094e4e0ede11155b63c5bd9207aab0c63d6d04ea1b76ea23950f51fb31302730dcee4bd2f1dd92a3c0e396880e9e73b0ebf946649af896ae44c7e0bb5138a5c89e9ed089fc1012546e654531bf5d00eb90d0963", 0x7fffffff, &(0x7f0000000b00)="d0483c7ddc060c1fd9ee5de9e9328d652e2ddb58b7f10053fd912fc2c6a494485aea23dddeb860f0ac4ef807da3b1e077c3b8b", &(0x7f0000000b40)=0x2})
r12 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_SET_CHANNEL(r12, &(0x7f0000000d00)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c00)={0xac, r10, 0x8, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_SAE_PASSWORD={0x7b, 0x115, "34fafcb825a59d3193ea9c26eed7f95e824396b1150178221a07553f1de73d3e5bfe0d7506084669520682d7f2806b2357f6f824d17a821de9a97c4c243104578bd8c29381e3e84574b8ed8a7dc91e1f1f5cac1f8cf3971cab0f3f1c1b508fc611e7ad8b07e2c6f6c38606bfdd5770939988b0ce98875a"}, @NL80211_ATTR_WIPHY_FREQ_HINT={0x8}, @NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x1}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x7}]}, 0xac}, 0x1, 0x0, 0x0, 0x1}, 0x24040000)
r13 = socket$nl_generic(0x10, 0x3, 0x10)
r14 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000d80), r11)
sendmsg$auto_TASKSTATS_CMD_GET(r13, &(0x7f0000000e80)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000dc0)={0x60, r14, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@TASKSTATS_CMD_ATTR_DEREGISTER_CPUMASK={0x5, 0x4, '\xe3'}, @TASKSTATS_CMD_ATTR_TGID={0x8, 0x2, r1}, @TASKSTATS_CMD_ATTR_REGISTER_CPUMASK={0xc, 0x3, 'ip_vti0\x00'}, @TASKSTATS_CMD_ATTR_REGISTER_CPUMASK={0x9, 0x3, '[{\b{/'}, @TASKSTATS_CMD_ATTR_TGID={0x8, 0x2, r1}, @TASKSTATS_CMD_ATTR_TGID={0x8, 0x2, r1}, @TASKSTATS_CMD_ATTR_REGISTER_CPUMASK={0x11, 0x3, '!\'*{\\!(}:$)!-'}]}, 0x60}, 0x1, 0x0, 0x0, 0x40}, 0x80)
sched_getattr$auto(r1, &(0x7f0000000ec0)={0x7, 0x68000, 0x0, 0x1000, 0xedf, 0x9, 0x5, 0x8, 0x5, 0xff}, 0xfff, 0x4)
sendmsg$auto_MAC802154_HWSIM_CMD_GET_RADIO(r12, &(0x7f0000001500)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000014c0)={&(0x7f0000000f40)={0x55c, 0x0, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@MAC802154_HWSIM_ATTR_RADIO_EDGES={0x89, 0x3, 0x0, 0x1, [@generic="4c0e8a7d91b0b3650f03c17d0085f99e8e2dd7eb5cb2d426557d88849d508f89c062", @generic="0828e64175822142a4df104ec0c72b325161a7531e60394fb69d20841dd7dd89f34275486b393834eee8904b1c0e73e4551aa1c0ee6412bb578d2ee7acfc7ff4dea9bb214671aba4a0406a5119840f3e8be4225a90ee21e3f67bcd7a81e081b38eb9d1"]}, @MAC802154_HWSIM_ATTR_RADIO_EDGE={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x52, 0x0, 0x0, @pid=r1}]}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x1}, @MAC802154_HWSIM_ATTR_RADIO_EDGE={0x4a7, 0x2, 0x0, 0x1, [@generic="988253372da3df7c47264192d818a835d2a6dc919fed3375532fb367405f73", @nested={0x28, 0x25, 0x0, 0x1, [@typed={0x8, 0x153, 0x0, 0x0, @fd=r11}, @typed={0xc, 0xed, 0x0, 0x0, @u64=0x5}, @typed={0xc, 0x6a, 0x0, 0x0, @u64=0x7ff}, @nested={0x4, 0x11d}]}, @nested={0xf3, 0x10a, 0x0, 0x1, [@generic="5282be34965087ed230c66d8dc7fb0347b18459b7566565836cf76162bb4378ace8faf71379a2bc21a7479d15a9cfd873b00dae655706054ac1c365d1da2f86943666ebbefc5d4f40a004b9ad0bda7dd44e3dc597bbd3dfeac0399f30ad8f663baf147d51a480a3f29ddf86b71e524b788051dc3382c4db8cd6c39665492afcbd856ac6a823bc804f6229379601d28458812f247fc7c4a8487198f82f01faf903542dec26cb5d48a268cc332bd8813a2ec479efcd8a00f329d9c0ca42d3282318d3ac22b2ef80bae30a62ffb3e62f872ff0ede186f91148eeeeccff134defc4d64e8c98b42d3ae", @nested={0x4, 0xd6}, @nested={0x4, 0x163}]}, @generic="370ed1b9390a380c6a3e057c8960ddaa21ea2aa1cd31c275952644da3b245e42649c4680b5205232cf09d53c8b222a3ab85ae73a4c98062a85bfab0048b9015fdff3fe8e2c9779e93244f776f2c704be4a788636affc6354c3b7ff1c5f662681388b0bfdc5d836eb55b12b14c3f440fd723bcc28160767ebade62d8ff0c03a0cabc87769c640508e80f5539d30ea1104f8b02374017516", @generic="3f6eb633b6928866cd640897581a67127a407e5625d43d3a2f566b", @typed={0x8, 0x6a, 0x0, 0x0, @pid=r1}, @generic="7e726951673deb74ee91d4c4ba71d7e00c4b85c94006b1ac104223fc94145a4473a57ba2a4ea0880f2d49422d43212a7b5d5affaaacfaf8c54d1f7e50288b9b253ff04cd3a5712454f2d3bcbba7585870da027251f8b0722d9cc9b26a3de64a120eddce35b4914b67224f282", @generic="bb3850fdcb84ddd4a4dc709e47aad1ac15598af43dc058c5b1f61e785555632b4af8b0fc9b0fd266a94315d540d373eb7b34a5019ce78fe442cd3bee61a08d3cf9a3736578989dfee69c90d9c187aa6e6990cba78f7c0c1c2486fd9e6e30785f97049ea601c9cda42d754d10e730caf88352938d314fc5647a68a28b62f25d753531c52b401c487959336313b1370f465d7a1f4cee500e8321ee722c812a764f7dc32bddeb8d2f42e296820a34e2e3b660f3fe9382468a8a38c69fc4131c44a48f865267e85878752f0d", @typed={0x8, 0xf9, 0x0, 0x0, @fd=r11}, @nested={0x170, 0x25, 0x0, 0x1, [@typed={0x6, 0x8f, 0x0, 0x0, @str='#\x00'}, @nested={0x4, 0x10a}, @typed={0x8, 0x15c, 0x0, 0x0, @ipv4=@local}, @nested={0x4, 0x103}, @nested={0x4, 0x154}, @generic="945ae0b5abd65a1e85397333da068b6a66184d279f92e766382d1099621f6ebd6b75c9c81ccead1ed27fd74a7ea2ba5e8133abb722912a86827a9a48bb00e6d0b228ee515f095df0794f03532ad9a1d39e2fe658ea7914c5bc5bc32a539e8ee0131d72392972c39e7ce9708f609b4fc198649f361eb42bf8b6c8784a623f01ac777d147f68d52fd59bb1a44358adf42e5021516d94a9901be814ef93d01eba2c26968422e6ac26a52287cee0d74c08f2e1805dd688a5789353ef3c3b1357f83ca9bcf138b956679270b1b9f4d4c043e2eb0694f4cf1bb5f99d68e12a3832a552e45e", @generic="058b1c09c08a88e14c17df233177cac1b3ed4629e347dca0fb08740541b565adfc7c5c835ed7612df7fae65719e1ed56d2fc7aaa8d5c4d00762c2e49cbb96e147b7642af4de382be55a1e94c363102181a9932fba724b3bb1cea652f2e49054116ceebdf482b906734563b34de73"]}]}]}, 0x55c}, 0x1, 0x0, 0x0, 0x1}, 0x8000)
ioctl$auto_BTRFS_IOC_SUBVOL_CREATE_V2(r11, 0x50009418, &(0x7f00000015c0)={@raw=0xffffffffffff0f1c, 0xf061, 0x9, @btrfs_ioctl_vol_args_v2_3_0={0x3, &(0x7f0000001540)={0xffffffffffff68e3, 0x6, 0x12000000000, 0x6, {0xfff, 0x8000000000000000, 0x80000000, 0x60b, 0x3}, [0xe, 0x800]}}, @devid=0x3})
openat2$auto(0xffffffffffffff9c, &(0x7f00000025c0)='./file0\x00', &(0x7f0000002600)={0x6, 0x2000, 0xffffffffffffffff}, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000002640), 0x20000, 0x0)

8.207755778s ago: executing program 4 (id=2208):
r0 = openat$auto_force_suspend_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x41a900, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x2, 0x3, 0x8000000000000000, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
unshare$auto(0x40000080)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0xc0189436, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
unshare$auto(0x1)
mmap$auto(0x0, 0x400002020009, 0x40000000003, 0xebf, r0, 0x8000000000000001)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ttyS0\x00', 0x210100, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000000)={'tunl0\x00'})
r5 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/controlC2\x00', 0xc8a40, 0x0)
ioctl$auto(r5, 0xc0045420, r1)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/oom_adj\x00', 0x4240, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000240), 0x240, 0x0)
syz_clone3(&(0x7f00000004c0)={0x6bf8fe19cf9e914a, 0x0, 0x0, 0x0, {0x22}, 0x0, 0x0, 0x0, 0x0, 0x49, {r3}}, 0x58)
r6 = socket(0x1d, 0x2, 0x6)
r7 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vcan0\x00'})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x4000010}, 0x40)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/fuse\x00', 0x48300, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, 0x0, 0x40000)
sendmsg$auto_GTP_CMD_NEWPDP(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x48000}, 0x800)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x1)

7.557905698s ago: executing program 1 (id=2209):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x123801, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0x2897)
rt_sigtimedwait$auto(&(0x7f0000000000)={0x7}, &(0x7f0000000040)={@_si_pad}, &(0x7f00000000c0)={0xb4, 0x5}, 0x8)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
unshare$auto(0x40000080) (async)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) (async)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x123801, 0x0) (async)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, 0x0) (async)
madvise$auto(0x0, 0x7fffffffffffffff, 0x2897) (async)
rt_sigtimedwait$auto(&(0x7f0000000000)={0x7}, &(0x7f0000000040)={@_si_pad}, &(0x7f00000000c0)={0xb4, 0x5}, 0x8) (async)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) (async)
clone$auto(0x8001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) (async)

5.147728739s ago: executing program 5 (id=2214):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000006900)='/sys/kernel/config/target/dbroot\x00', 0x189002, 0x0)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000001040)='/dev/dsp1\x00', 0x90342, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000001080)="7a47301037")
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp1\x00', 0x103342, 0x0)
read$auto(0x3, 0x0, 0x8080)
readv$auto(r1, &(0x7f0000000240)={0x0, 0x84d}, 0x3)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)

4.883935148s ago: executing program 1 (id=2215):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r0, 0x1, 0x7ff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x8}, 0x0, 0xf4240, 0x1)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
fsconfig$auto_HIDEPID_NOT_PTRACEABLE(r1, 0x1, &(0x7f0000000140)='MAC80211_HWSIM\x00', 0x0, 0x4)
semctl$auto_SETALL(0x0, 0xc, 0x11, 0x80)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x24040801)
sendmsg$auto_NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, 0x0, 0x4000)
wait4$auto(r0, &(0x7f0000000000)=0x3, 0x3, &(0x7f0000000040)={{0x0, 0x4}, {0x8, 0x4}, 0x100, 0xff, 0x0, 0xaf3f, 0x4b, 0x9, 0x6, 0x6, 0x6e, 0x2, 0x1000, 0x80000000, 0x4, 0x8})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptyb8\x00', 0x400000, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
bpf$auto(0x0, 0x0, 0x6f4)
io_uring_setup$auto(0x59, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d8010000", @ANYRES16, @ANYBLOB="01002dbd7000fcdbdf25010000000c0002000500000000000000c5000700c1007cf7c27c120e3984130834a73f9221887ac28e443c4a1a7da8d2ddcf2890cce5822826764f3f410e53f43f300d2e04700395778e7935c99f6a38f6f3e56e7d8a18d15791b3b4f9378d743a8f0cbbe1c604a782030626ead26826f4790233f19c29fbaf1da77e1b84522d05ca0f4237b24aead87b47d41805fa9967d02ad2deba1895652b8d630c30213ed8f72c1066f1bb9fb1b242d08a55d32398d8d3c635008f2c61049c8abf600a98d1d2d0b0027aecaf27d20b6ff4129883e111e1c858000000dc00090069fccb38f57447a8af8c40a03b"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab83, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/input/event0\x00', 0x325d42, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000001180), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x101042, 0x0)
r4 = ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap$auto_def_blk_fops_fs(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x4000010, r4, 0x9)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000200), 0x492802, 0x0)
ioctl$auto(0x3, 0xae41, r3)
bpf$auto(0x6, &(0x7f0000000000)=@bpf_attr_3={0x1, 0x9067, 0x40000080018c, 0x3, 0x0, 0x8, 0x4, 0x57b8, 0xf, "63ac0600000033ebc15774e816ef77cf", 0x0, 0x100543, 0x4, 0x207, 0x3, 0x1009, 0x4, 0x2, 0xe, 0x5, @attach_btf_obj_fd, 0x166, 0x7fb, 0x6, 0xa, 0x48000000}, 0x10)
writev$auto(0xc8, &(0x7f00000028c0)={&(0x7f0000000000), 0x200}, 0x9)
ioctl$auto_KVM_GET_MSRS(r2, 0x4138ae84, &(0x7f0000000000)={0x7, 0x179})

4.86935064s ago: executing program 4 (id=2216):
openat$auto_usbfs_devices_fops_usb(0xffffffffffffff9c, &(0x7f0000000180), 0x48402, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async, rerun: 32)
r0 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000440), 0x143041, 0x0) (rerun: 32)
write$auto(r0, 0x0, 0x2)
io_setup$auto(0x5, &(0x7f0000000100)=0xb) (async)
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0xc0482, 0x0)
write$auto_sg_fops_sg(r1, &(0x7f0000001380)="4a0200000000040000899edb615550fd8c44924d87f0010047eb02eff5d2adc245a4e1eded0e91b86c61b6b42ed6", 0x2e)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x123002, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) (async)
pipe2$auto(0x0, 0x80)
setrlimit$auto(0x7, &(0x7f0000000080)={0x0, 0x6}) (async, rerun: 32)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) (rerun: 32)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x4) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd12\x00', 0x8ee46, 0x0) (async)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000280), 0x1218a2, 0x0) (async)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x8, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0xffffffffffffffff, 0x10008000) (async)
write$auto(0x1, 0x0, 0x80000000)

4.674289531s ago: executing program 5 (id=2217):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEC_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400007f", @ANYRES16=r1, @ANYBLOB="11032cbd700001dcdf251d000000"], 0x14}}, 0x800)
mmap$auto(0x0, 0x40006, 0xdf, 0x200009b72, 0x7, 0x28000)
r2 = io_uring_setup$auto(0x6, 0x0)
ustat$auto(0x801, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
r3 = socket(0x27, 0x1, 0xfffffff9)
close_range$auto(0x2, 0x8, 0x0)
r4 = open(0x0, 0x26241, 0x20)
r5 = socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0x29}}, 0x6a)
socket(0x2, 0x1, 0x106)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001d00), 0xffffffffffffffff)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x20000080)
syz_clone(0x2000300, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x5004000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TIOCSTI2(r2, 0x5412, &(0x7f0000000000)="b68161a86e8da4110338a92ca863a91beaa8558206154cc5fbaf")
listen$auto(0x3, 0x81)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd)
setsockopt$auto(r5, 0x0, 0x9, &(0x7f0000000080)='/proc/sysvipc/msg\x00', 0x401)
mmap$auto(0x0, 0x1, 0xdf, 0x20000000000e31, 0x40000000000a5, 0x8000)
close_range$auto(r5, r4, 0x0)
r6 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sysvipc/msg\x00', 0x8a880, 0x0)
pread64$auto(r6, 0x0, 0x7fff, 0x3)

3.635809397s ago: executing program 5 (id=2218):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x64, r1, 0x1, 0x70bd27, 0x25dfdbf9, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x7d}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @ipv4={'\x00', '\xff\xff', @multicast1}}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @mcast1}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e21}]}, 0x64}, 0x1, 0x0, 0x0, 0x20040000}, 0x400c004)
acct$auto(&(0x7f00000003c0)='/dev/usbmon38\x00')

3.314770144s ago: executing program 5 (id=2219):
timer_create$auto_CLOCK_TAI(0xb, 0x0, 0x0)
mmap$auto(0x0, 0x4020005, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event0\x00', 0x101b03, 0x0)
ioctl$auto_EVIOCGMASK(r0, 0x80104592, &(0x7f0000000000)={0x11, 0x800004, 0x8})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
request_key$auto_KEY_SPEC_REQKEY_AUTH_KEY(&(0x7f0000000080)='L^[^\x00', &(0x7f00000000c0)=',^@\\([-$&$(}/\x00', &(0x7f0000000100)=',^@\\([-$&$(}/\x00', 0xfffffffffffffff9)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000140), 0xffffffffffffffff)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x4044000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x488081, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0x0)
prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff)
setreuid$auto(0x0, 0x5)
fcntl$auto(r2, 0x400, 0x1)
setresuid$auto(0x2, 0xee01, 0x8080)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x163)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
read$auto(0x3, 0x0, 0x7fffffff)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0xc2000, 0x0)
keyctl$auto(0x1d, 0xffffffffffffffff, 0x8, 0x5, 0x8)
ioctl$auto_XFS_IOC_ERROR_CLEARALL(0xffffffffffffffff, 0x40085875, &(0x7f0000000180)={r0, 0x7})

3.268618579s ago: executing program 6 (id=2220):
r0 = socket(0x2, 0x2, 0x0)
connect$auto(r0, 0x0, 0x52)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
socket(0xa, 0x1, 0x84)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0300, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0x80111500, 0xffffffffffffffff)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
socket(0xf, 0x3, 0xa)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, 0x0, 0x54)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/pcmC0D0c\x00', 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0x805, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)
gettid()
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mount$auto(0x0, 0x0, 0x0, 0x1ff, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0x2, 0x801, 0x106)
socket(0x10, 0x80002, 0x0)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
socket(0xa, 0x1, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)

3.097122598s ago: executing program 1 (id=2221):
mseal$auto(0x3, 0x5, 0x9) (async)
r0 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x10440, 0x0) (async)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'macvlan1\x00', <r2=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'nr0\x00', <r3=>0x0})
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0xbc, r1, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x4}, @ETHTOOL_A_PRIVFLAGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x80000000}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3ff}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}]}, 0xbc}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async)
r4 = socketcall$auto_SYS_SOCKET(0x1, &(0x7f0000000280)=0x4) (async)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000300), r0)
sendmsg$auto_ETHTOOL_MSG_MM_SET(r4, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x24, r5, 0x400, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_MM_VERIFY_TIME={0x8, 0x9, 0x1}, @ETHTOOL_A_MM_TX_MIN_FRAG_SIZE={0x8, 0x5, 0xfe49}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000804}, 0x20000001)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000440), r4)
sendmsg$auto_NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000540)={&(0x7f0000000480)={0x9c, r6, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_REG_ALPHA2={0x87, 0x21, "323d0f6a986b4abe2cc66bbc79db55dd67565d8adb220d16f24b7b752ab972d99bd41b2dd2e23ad45d2462aef9bf59e460ddb534f494459f65922a2dc344a6cf3d74daa0de3be98934c618c68e66be1000ddc9aad6d6eb4f4d11f0cd2e336ea341cab32cf2c32acf75cae4c3419592c0b094b3bfb4bb689e6df132d8116cc1ee8a6f7c"}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20000040}, 0x15)
ioctl$auto_SNAPSHOT_FREEZE(r0, 0xc0045878, 0x0)
recvmmsg$auto(r4, &(0x7f00000007c0)={{&(0x7f00000005c0)="878a5d31fdefcdb3c54256c10505f75418be0df6e12455604d620d1d9c053a1bacdd6e23e3f1136d4f120caa7b2e4c223bbc2b28bc12f898", 0x7f, &(0x7f0000000680)={&(0x7f0000000600)="bccbf713ba7a747d86f02bdcfa8d95f1dc19218438c530b8ba7018522b2e897111fd018126dae2b32745683329c2235c1a83087fdd72bee5dc8e13a6173e7418d6af3f899a4d5999e69d6adcfeaf6555b88c60afb95ea079460cc432438205b4d1b1276c9b7310ae20bd975f"}, 0x0, &(0x7f00000006c0)="f39798daef6ddcd50e3ac16c65d39e6ab71314d38b0875bda6ebf9494ae31c89f5406e0fe32e64a5351066062fce507c796f7ac5495ec12d597e76de037a3f04bd2889c8ddbdc2cdba03eb5571fb6f0373cc023a276f1910396bcb101f5495d74a224fdb5b039cfa843af73427803b6a38137fdd4a8e542edef2fa372f2263e2bd322e4fbb7b31f8f901c726bd9ea14ddb4e1c726e1c1604c24b61641b7ab06b296d06fca8c3667239ddba4f4a49b54f1d40441d701cbbfaa624a54dbec94a7136180aeb835091", 0x1, 0x4}, 0x40}, 0x4, 0xff, &(0x7f0000000800)={0x10, 0x4b}) (async)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000880), r0)
sendmsg$auto_NL802154_CMD_SET_PAN_ID(r0, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x3c, r7, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_NETNS_FD={0x8, 0x1d, r4}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x40}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0x3}, @NL802154_ATTR_SCAN_DURATION={0x5, 0x24, 0x2d}]}, 0x3c}}, 0x4040000) (async)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000980), r8) (async)
r9 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f00000009c0), 0x0, 0x0)
ioctl$auto_USB_RAW_IOCTL_RUN(r9, 0x5501, 0x0)
mbind$auto(0x0, 0x3, 0x964, &(0x7f0000000a00)=0x4, 0xff, 0x2) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000c00)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x580600}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000a80)={0x114, r6, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_CENTER_FREQ1_OFFSET={0x8, 0x123, 0x6}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x68}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x7}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xec60}, @NL80211_ATTR_VHT_CAPABILITY={0xc9, 0x9d, "3fc5bc706d9a0dc61c82106035d8dcf9e9d92878857a45f4a7612009eb7e8a4c73c893433dcd2fb027a0296226d14eedf51e5a6a99d112f6e9d27c8fbcecf21e0930711fe4099e5bb27e76ad563dfde3e718194d54389830db5ea5cbcc879ae67d7f2981ea938d6aa697455adceacb6078c9c4be3d1e4d9a997dae57c7c66cc96fb60da5e24c2909072118ff709dd904012c462d0a7cb77d77d6156d43a70ceb68d8c808f81cfd23f26a955070ae1416dc8680bfa01e7b3b4985d7c1fb1d2358b03e828ec3"}, @NL80211_ATTR_PMK_LIFETIME={0x8}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4e21}]}, 0x114}, 0x1, 0x0, 0x0, 0x40840}, 0x4004040)
sendmsg$auto_NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000d00)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x18, r6, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x80}, 0x4008000) (async)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000d80)={'veth0_to_hsr\x00', <r10=>0x0}) (async)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000dc0)={'team_slave_0\x00', <r11=>0x0})
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_GET(r4, &(0x7f00000010c0)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001080)={&(0x7f0000000e00)={0x26c, r1, 0x200, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xb68}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1f12}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfffff73b}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xbb9dcd9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x40}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7f}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x977}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7fffffff}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2a1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x8c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x4}]}, 0x26c}}, 0x0)
ioctl$auto_USBDEVFS_RESETEP(r4, 0x80045503, &(0x7f0000001100)=0x8)
bind$auto(r9, &(0x7f0000001140)=@isdn={0x22, 0x9, 0x2, 0x1e, 0x4}, 0x81)
setsockopt$auto_SO_CNX_ADVICE(r0, 0x9, 0x35, &(0x7f0000001180)='\x00', 0xe) (async)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NBD_CMD_CONNECT(r12, &(0x7f0000001280)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001240)={&(0x7f0000001200)={0x20, 0x0, 0x300, 0x70bd2c, 0x25dfdbff, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x100}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x90)

2.687719386s ago: executing program 4 (id=2222):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x10, 0x2, 0x14)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x40, 0x0)
socket(0x2, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
socket(0xa, 0x2, 0x73)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'veth0_to_bond\x00', <r4=>0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x38, r6, 0x1b, 0x70bd24, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x10}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "8982884700"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x44040}, 0xc800)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'vlan0\x00', <r7=>0x0})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000940)={'batadv0\x00', <r11=>0x0})
sendmsg$auto_BATADV_CMD_TP_METER(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x28, r9, 0x77bed28568c43d3b, 0x70b52a, 0x25dfdbfe, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r11}, @BATADV_ATTR_ORIG_ADDRESS={0xa}]}, 0x28}}, 0x80)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'macsec0\x00', <r12=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'ip_vti0\x00', <r13=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'vcan0\x00', <r14=>0x0})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'ipvlan1\x00', <r15=>0x0})
sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r3, &(0x7f0000000580)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000380)={0x1c0, 0x0, 0x2, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xff}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x200}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_FEATURES_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7fff}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xf}]}, @ETHTOOL_A_FEATURES_HEADER={0x4}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_FEATURES_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xd69}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_FEATURES_HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xffff0001}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7fffffff}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r15}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x1c0}}, 0x90)
memfd_create$auto(0x0, 0x6)
r16 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r16, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r16], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4010}, 0x51)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0x3, 0x0)

2.38524239s ago: executing program 1 (id=2223):
mmap$auto(0x0, 0x4020009, 0xdb, 0xebe, 0x401, 0x8000)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x83, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0x3, 0x0, 0x1)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ram5\x00', 0x14fa02, 0x0)
sendfile$auto(0x3, r1, 0x0, 0x400000000006)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'pim6reg0\x00'})
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000)

2.253435218s ago: executing program 6 (id=2224):
mmap$auto(0x3, 0x3, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
shutdown$auto(r0, 0xda6)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/veth0_vlan/seg6_require_hmac\x00', 0x420a82, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000001180)='/dev/snd/controlC2\x00', 0x40, 0x0)
read$auto(r1, 0x0, 0x1ff)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x8002, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
truncate$auto(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x6)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(r2, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="f2f34b442d7291f964195fb79493259ee483ae0eead6146147612ca6d19014f8d5f82708feb928b1fc00e5f8172bfe6cba618a9fd899bbd4762b8ffae4bae8e47a4b0ad4680780265aed4c5cada8191b9916839dce1d89c7e33d17b011fb3d71990a371692744f9b29cc4080c20ad178a5ad8d826d23749a1ca46a9fb25a7e524d6722750221978eefa80b65f3dcd00d876265c29903e151ce82", @ANYRES16=0x0, @ANYBLOB="08002dbd7000fedbdf25020000000a002400aaaaaaaaaa25000008003c000000000008001a0009000000"], 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x20000001)
socket(0x10, 0x2, 0x4)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r3 = prctl$auto(0xa0000004, 0x3, 0x0, 0x9, 0x5)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x202008d, 0x6, 0x16, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x2000001, 0x8, 0xfff, 0x0)
close_range$auto(0x2, r3, 0x0)
socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xe}, 0x6, 0x0, 0x7, 0xa505}, 0x5}, 0x7, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x73)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r4, 0x1261, 0x0)
socket(0x1, 0x2, 0x86)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200400, 0x0)

2.226764125s ago: executing program 4 (id=2225):
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
bpf$auto_BPF_MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)=@link_detach={r0}, 0x8)
r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000500)='/dev/bus/usb/038/001\x00', 0x201, 0x0)
ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r2, 0x8108551b, 0x0)
r3 = prctl$auto_PR_SET_MM_ARG_START(0x9, 0x8, 0xffffffffffffffff, 0x6, 0x400)
ioctl$auto_FS_IOC_GETFSLABEL2(r3, 0x81009431, &(0x7f00000001c0)="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")
r4 = socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000380)='./file0\x00', 0x10f140, 0xe4)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x3, 0x3b)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x20082, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x8600, 0xe6)
mmap$auto(0xfffffffffffffffa, 0x6bcb, 0xdf, 0xebe, r2, 0x4)
socketpair$auto(0x1e, 0x6, 0x8, 0x0)
socket(0x2c, 0x3, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x204c000}, 0x40854)
listmount$auto(&(0x7f00000002c0)={0x7, @raw=0x4, 0x10000, 0x1ff, 0x8}, &(0x7f0000000300)=0xb, 0x0, 0x9)
kexec_load$auto(0xffffffff, 0x2, &(0x7f0000000080)={@buf=0x0, 0x0, 0x8000, 0x403000}, 0x4)
r6 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
getdents64$auto(0xffffffffffffffff, 0x0, 0x7f)
read$auto(r6, 0x0, 0x100000001)
ioctl$auto(r5, 0xfffffffe, r4)
waitid$auto_P_ALL(0x0, 0x2, 0x0, 0x5, 0x0)
write$auto(r5, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587)
ioctl$auto_USB_RAW_IOCTL_EP_ENABLE(r1, 0x40095505, 0x0)

2.201278564s ago: executing program 5 (id=2226):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/ram6/queue/max_hw_sectors_kb\x00', 0x80000, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0xe, 0x4, 0x4, 0x10001, 0x8, 0xc, 0xffffffffffffffff, 0x9, 0x7ff}, 0xee)
mmap$auto(0x0, 0x40009, 0x1ff, 0x9b72, 0x7, 0x28000)
modify_ldt$auto(0x1, 0x0, 0x10)
modify_ldt$auto(0x0, 0x0, 0xfffffffffffffffb)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82002, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)="2dfc", 0x2)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x121000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r1, 0xc008551c, &(0x7f0000000040)={0x2, 0x9})
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x3, 0x80000000, 0x601, &(0x7f00000001c0)=0x6)
ioctl$auto_VHOST_SET_FEATURES2(r3, 0x4008af00, &(0x7f0000000040)=0x3)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mremap$auto(0xfffffffffffffe01, 0x40000000100005, 0x843, 0xc, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r4 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/tracing/trace_options\x00', 0x2, 0x0)
write$auto(r4, 0x0, 0x6)
madvise$auto(0x0, 0x2003f2, 0x15)
mmap$auto(0x0, 0x4020009, 0xdb, 0xebf, r3, 0x8000)
fanotify_init$auto(0x5, 0x0)
creat$auto(&(0x7f0000000000)='./file0\x00', 0x3ff)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r5, r5, 0x0, 0x3)
openat$auto_tracing_saved_cmdlines_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/saved_cmdlines_size\x00', 0x80001, 0x0)

1.853354267s ago: executing program 6 (id=2227):
mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x1000000007e81, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ram5\x00', 0x6aa02, 0x0)
r1 = open(0x0, 0x56042, 0xe1d2b27bdc14aabc)
fallocate$auto(r1, 0xfffffffc, 0x400, 0x4cbd5d)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_ipv6\x00', 0x1401, 0x0)
pwrite64$auto(r2, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99C\x05s\x1cJ\x99\x00:\x00!\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2y\x1f\xee\xeeE\x18A\x14\xc6\xaa\x19\x9d\x17\xcf\x9e3!\x97\xe8X\xa3,a\xd5\x14\xb9\xa9\xb3\xf7\x19\xe5\xa6\x81\xbb 3\xc3\xec\x12\xef\xfbs\x9e}\xb0\xc9\x16I\x14\xbc\x01\xf0\x93O\xf0\x9byg\xb2\xdcZ\xf8g[\xf5\x97\x16\x0fm3\xcc\xc9\xaa\x812\b\x12\xffQq\xd5\xfc\xc5\xaf\xcd:1\xef\xca\xf3\xc7\xa4\xebS\x17\x99\x0f\xa3\x83\xb9\xbe\xa0u\x90(\xd2\xa5\xbe\xaf9a\x10K&\xf7N\xb8\xf5\x19\x12\x95\x1ex\xe3\x89\x9eU\xb5\x80\x0e\xfb\xe2\xd61\b\t\xa4H*v\x9a`%\xb4)\xa0\xb6\x11\xc3\xb4\xaa^\x02\xc5E\na\x03\xd3\xf2j\xa4Ly\xfa\xfcX.\xa1\xcfU\xcc\xec\x8b\x057\xda,v\x1br\xd3\xc1\xcc\xb4p\xff\x8c\x17YW\xc2\x92\xaf\xa8\x9c\x9dX]\xa4\x9a\x1a\xd5\x80B\x10\xd1\xd5\xca\x85\x9e)FT0\xe3\xb4\x19\x9dR\xc5\xdf\xb3\x9e\xea+2\x94\xba\x8c\xbe79\xba\x92\xcb\xd5\x87kB\xbd\xda\xf9\xb6)\xb3R\"\xe5A\xcfi\xd1\xf6\xa9\x86\x00\x88\x86\x05@d\xbc\xca\xd0v\xa07\xd9\x01Z\x89\xec\xce[J\xfeM\xfc\x1f\xe7j)\xe8\xdb\xfa\xa57\xe71\x9b\xbc\xf5|\xc6\xc8\xe7N\xd3i.|\xdd\xc0h\xd6', 0x8001, 0x20000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x47, 0x8000)
syz_genetlink_get_family_id$auto_nl802154(0x0, r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r0)
r5 = setfsuid$auto(0xee00)
r6 = setfsuid$auto(0xee01)
setresuid$auto(r5, r6, r5)
open(&(0x7f0000000280)='./file0\x00', 0x18100, 0x10c)
r7 = geteuid()
sendmsg$auto_NL80211_CMD_LEAVE_OCB(r3, &(0x7f00000005c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000580)={&(0x7f0000000400)={0x174, r4, 0x8, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_SCAN_SUPP_RATES={0x114, 0x7d, 0x0, 0x1, [@nested={0xc, 0x10d, 0x0, 0x1, [@typed={0x8, 0x14d, 0x0, 0x0, @uid=r6}]}, @nested={0x103, 0x121, 0x0, 0x1, [@nested={0x4, 0x113}, @typed={0x8, 0x60, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x7d, 0x0, 0x0, @uid=r7}, @nested={0x4, 0x12}, @generic="8f56b48fa016dbc51305344d757538a0598a71bcdf32253fe222ad6cdccec7c089b282c5cc6ccaa0130fab46ddd46a255fb6c6c267172702a31760d81c7bc64c7da1404839d25aa44b744003247fc6f72375270ed86da9e52f5e09fdabc8069197b00146bef8d7a851fcf58605eb26ac7b8bdfac5cea0d1de739960186677801296c626ba02bfc51d46b339fcaca910495fc17d577854ba351a14baa7157e274a93e5a5845bf9d6a3f8b6abf9022f50314d7e823f09219902c442664e19817ef39cff1522527918434682ff9f02763a6f23f8d293273ad5cc168ce82c0d8be38ab85f9", @typed={0x4, 0xbb}]}]}, @NL80211_ATTR_MAC_ADDRS={0x39, 0xa6, 0x0, 0x1, [@generic="f6d3de5b36abf4e55ff4ac5b461d1021b0496f8ffbfd1e2596d5603ebbb2cf4097957809ac4254d9842b659c2f", @typed={0x8, 0x32, 0x0, 0x0, @pid}]}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r0}, @NL80211_ATTR_WIPHY_NAME={0x5, 0x2, '\x00'}]}, 0x174}, 0x1, 0x0, 0x0, 0x800}, 0x0)
fsconfig$auto_XFS_DAX_NEVER(0xffffffffffffffff, 0x6, &(0x7f0000000340)='/dev/snd/midiC2D0\x00', 0x0, 0x2)
r8 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
sendfile$auto(0x3, r8, 0x0, 0x400000000006)

1.57497413s ago: executing program 4 (id=2228):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = signalfd$auto(0xffffffffffffffff, 0x0, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x29, 0x5, 0x0)
write$auto(0x3, 0x0, 0x100082)
write$auto(0x3, 0x0, 0x1e)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x202000b, 0x2, 0xf8, 0xffffffffffffffff, 0x8000)
inotify_init1$auto(0x3000000000000)
timer_create$auto(0x3, 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000a40)=""/4096, 0x1000)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x0, 0x400}, {0x0, 0x87}}, 0x0)

811.158923ms ago: executing program 1 (id=2229):
r0 = openat$auto_ptdump_fops_(0xffffffffffffff9c, &(0x7f0000004c00), 0x40840, 0x0)
read$auto_ptdump_fops_(r0, &(0x7f0000004c40)=""/28, 0x1c)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/module/nfs/parameters/delay_retrans\x00', 0x102, 0x0)
close_range$auto(0x0, 0x5, 0x0)
r2 = inotify_init1$auto(0x3000000000000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop13\x00', 0x8202, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r3, 0x4c06, 0x0)
sendfile$auto(r1, r1, 0x0, 0x1000000000001)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000000), r2)

572.119914ms ago: executing program 5 (id=2230):
socket(0x2, 0x1, 0x106) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (rerun: 64)
io_uring_setup$auto(0x1, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
listmount$auto(&(0x7f0000000100)={0x20, @raw, 0xffffffffffffffff, 0xffffffffffffffff}, 0x0, 0xf423c, 0x0) (async, rerun: 64)
syz_clone3(&(0x7f000000dd80)={0xa04400, 0x0, 0x0, 0x0, {0x12}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async, rerun: 64)
close_range$auto(0x0, 0xfffffffffffff001, 0x2) (async)
socket(0x29, 0x5, 0x0)
r0 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
open_by_handle_at$auto(r0, &(0x7f0000001280)={0x8, 0x2, "0200000000000000"}, 0x6) (async)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8)
r1 = openat$auto_tracing_err_log_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/error_log\x00', 0x20000, 0x0)
setsockopt$auto_SO_PEEK_OFF(r1, 0x3, 0x2a, &(0x7f00000000c0)='[^,@\\:#/\\-!-\x00', 0x80000000)

559.709795ms ago: executing program 6 (id=2231):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rxrpc/bundles\x00', 0x8200, 0x0)
r1 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0)
ioctl$auto_USB_RAW_IOCTL_EVENT_FETCH(r1, 0x80085502, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f0000000b00)=""/147, 0x93)

288.812875ms ago: executing program 6 (id=2232):
mmap$auto(0x0, 0x400008, 0x716, 0x40000010, 0x2, 0x8000) (async)
r0 = socket(0xa, 0x801, 0x84) (async)
connect$auto(0x3, 0x0, 0x54) (async)
r1 = socket(0xa, 0x5, 0x84)
getsockopt$auto(r1, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x9b)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket(0x1e, 0x5, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$auto(r3, 0xae3d, r2) (async)
ioctl$auto_KVM_GET_MSRS(r3, 0x8040ae9f, &(0x7f0000000040)={0x2}) (async, rerun: 32)
setsockopt$auto(r0, 0x10000000084, 0x9, 0x0, 0x9c) (async, rerun: 32)
mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) (async)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) (async)
mprotect$auto(0x0, 0x806121, 0x6) (async)
r5 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000140)='/proc/devices\x00', 0x2600, 0x0)
close_range$auto(r5, 0xffffffffffffffff, 0x80000001) (async)
r6 = io_uring_setup$auto(0x6, 0x0)
r7 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(r7, r6, 0x80005) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)

0s ago: executing program 6 (id=2233):
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000001180), 0x1, 0x0)
r1 = socket(0xa, 0x3, 0x3b) (async)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
sysfs$auto(0x2, 0x10000000000000b, 0x0) (async)
r2 = socket(0x28, 0x1, 0x0)
r3 = getsockopt$auto(r2, 0x28, 0x8, 0x0, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0xffffffffffff8001) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
pread64$auto(0xffffffffffffffff, 0x0, 0xd, 0x6e9)
close_range$auto(0x2, 0x8, 0x0) (async)
pwrite64$auto(r1, 0x0, 0x4e, 0x3)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r4, &(0x7f00000002c0)='N\xd5\f\xb9GC*(,\x00\xc4bAL\xa3`\xb1\xf2\xe7\xc04b$\x99.\xb4\xcc\xc0%\xaa\xd3\xd5\xef\xa4\xd35u\xc0\xa6\r\xcaJ\x11\xaf\x93\xde\xc3|\x17\x96\xd1\x15g\x10\x1ai1(=!\xf1\xe8\xe4\xcdm\xedKW\xe7\xfbL\\\xf2sj(\v\xcd\xe5\x02B\x81ss\xdd\x8199\xa5\x1e\xb0A\xa3\xcbj7\xe9\xc9L\xcc\xc6\xa4\xaf%\xba\xda\xee\xd8%:bXj\xd5[UG\x8a\x8ab\x9a\x18\xe8K\xafU\x8d\xb1\f~\xaa\xab(\x86(\xf9\b\xf7$%\xf2\x11\xa4\x9bj\xc1)\n\x1ft\xb6\xaf\xe2\xd4\x95\xa3\xe1\x1f\xf7uw\a\xd0\x83{_>/\xff', 0x100000001) (async)
socket(0x23, 0x2, 0x0) (async)
getdents64$auto(r3, &(0x7f0000000140)={0x7, 0xaba, 0x8, 0x9, "291f3cc8074ab9d7755e1c3cd33cd173c695794637826e532d9a2f56eb22aa92795c20fd8bacd2f8c8140574c217c4f78612ca6c1215e1fe14297451493e31d17bcc85d6a1e81ec27634005b1af4c396de51b5a68b8fbc7841b69b539f2d2afd509b08ff9267d3c33911b088b8c763694977360919527c0c45708c65e822a4195b7e2856ddca44dbf9b870a36506e18094397d36a7c196ab6278737605808f704b7d091412bfa4dbaed6db4aa67c091b1c3fa9e3dee88a"}, 0x2) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff) (async)
socket(0xa, 0x1, 0x6)
setsockopt$auto(0x400000000000003, 0x29, 0x39, 0xffffffffffffffff, 0x0) (async)
sendmsg$auto_ETHTOOL_MSG_RINGS_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x14, r6, 0x30b, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
waitid$auto_P_ALL(0x0, 0xffffffff, 0x0, 0x4005, &(0x7f0000000080)={{0xffffffffffffffff}, {0xfffffffffffff4c5, 0x2}, 0x21, 0x10000, 0x0, 0xdd0, 0x7, 0x400000000000010, 0x0, 0x4, 0x7, 0x3, 0x100000, 0x96bd, 0x10000000000007ff, 0x6})
write$auto(r4, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587) (async)
ioctl$auto_PPPIOCATTCHAN(r0, 0x40047438, &(0x7f000000a040)=0x55)

kernel console output (not intermixed with test programs):

4+0x115/0x840
[  370.891841][T11222]  ? clear_bhb_loop+0x40/0x90
[  370.891859][T11222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.891875][T11222] RIP: 0033:0x7f9690d9ce59
[  370.891887][T11222] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  370.891902][T11222] RSP: 002b:00007f9691d1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  370.891916][T11222] RAX: ffffffffffffffda RBX: 00007f9691015fa0 RCX: 00007f9690d9ce59
[  370.891926][T11222] RDX: 00000000000000df RSI: 0000000000040009 RDI: 0000000000000000
[  370.891935][T11222] RBP: 00007f9690e32d6f R08: 0000000000000007 R09: 0000000000028000
[  370.891944][T11222] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  370.891953][T11222] R13: 00007f9691016038 R14: 00007f9691015fa0 R15: 00007ffc55ead0f8
[  370.891974][T11222]  </TASK>
[  371.704293][T10301] Bluetooth: hci0: command 0x0c1a tx timeout
[  371.713158][T10301] Bluetooth: hci3: command 0x0c1a tx timeout
[  371.724225][T10301] Bluetooth: hci4: command 0x0c1a tx timeout
[  371.730468][T10301] Bluetooth: hci1: command 0x0406 tx timeout
[  371.905021][ T6905] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  371.961981][T11237] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1008'.
[  372.612785][T11251] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1011'.
[  372.622742][T11253] program syz.5.1012 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  373.773445][ T6905] Bluetooth: hci0: command 0x0c1a tx timeout
[  373.848392][T11244] kexec: Could not allocate control_code_buffer
[  374.039029][T11278] : Can't lookup blockdev
[  374.811624][   T30] audit: type=1800 audit(8277292186.890:22): pid=11298 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1021" name="dbroot" dev="configfs" ino=41767 res=0 errno=0
[  377.155035][T11349] futex_wake_op: syz.5.1033 tries to shift op by -2048; fix this program
[  377.286068][T11349] futex_wake_op: syz.5.1033 tries to shift op by -2048; fix this program
[  377.782005][T11357] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1034'.
[  377.900392][T11367] ERROR: Out of memory at tomoyo_memory_ok.
[  378.261906][T11377] random: crng reseeded on system resumption
[  378.423893][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  378.430169][ T1317] ieee802154 phy1 wpan1: encryption failed: -22

[  378.701793][ T6905] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  379.163893][T11411] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1047'.
[  379.840836][T11391] Process accounting resumed
[  380.531332][T11447] netlink: 'syz.4.1054': attribute type 21 has an invalid length.
[  380.575806][T11447] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1054'.
[  380.732435][ T5849] Bluetooth: hci4: command 0x0c1a tx timeout
[  382.811733][ T6905] Bluetooth: hci4: command 0x0c1a tx timeout
[  384.759619][T11520] sd 0:0:1:0: PR command failed: 1026
[  384.792369][T11520] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  384.841639][T11520] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  386.223058][T11534] Process accounting paused
[  386.914743][T11566] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1077'.
[  387.561762][T11586] __vm_enough_memory: pid: 11586, comm: syz.1.1082, bytes: 4398046457856 not enough memory for the allocation
[  387.951502][T11601] futex_wake_op: syz.1.1083 tries to shift op by -2048; fix this program
[  388.015254][T11596] 0x001c00000000-0x100002c00000200 : ""
[  388.122905][T11596] mtd: partition "" is out of reach -- disabled
[  388.218367][T11596] ftl_cs: FTL header not found.
[  388.438855][T11604] ERROR: Out of memory at tomoyo_memory_ok.
[  388.538397][T11608] ERROR: Out of memory at tomoyo_memory_ok.
[  388.609328][T11604] ERROR: Out of memory at tomoyo_memory_ok.
[  390.207298][T11642] Process accounting resumed
[  391.781301][T11703] netlink: 50 bytes leftover after parsing attributes in process `syz.4.1103'.
[  392.753196][T11733] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1111'.
[  393.217204][T11739] FAULT_INJECTION: forcing a failure.
[  393.217204][T11739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  393.278322][T11739] CPU: 0 UID: 0 PID: 11739 Comm: syz.4.1113 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  393.278350][T11739] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  393.278356][T11739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  393.278366][T11739] Call Trace:
[  393.278372][T11739]  <TASK>
[  393.278377][T11739]  dump_stack_lvl+0x100/0x190
[  393.278397][T11739]  should_fail_ex.cold+0x5/0xa
[  393.278418][T11739]  strncpy_from_user+0x3b/0x2d0
[  393.278442][T11739]  do_getname+0x78/0x390
[  393.278466][T11739]  do_sys_openat2+0xc5/0x1e0
[  393.278488][T11739]  ? __pfx_do_sys_openat2+0x10/0x10
[  393.278517][T11739]  __x64_sys_openat+0x12d/0x210
[  393.278539][T11739]  ? __pfx___x64_sys_openat+0x10/0x10
[  393.278564][T11739]  ? rcu_is_watching+0x12/0xc0
[  393.278583][T11739]  do_syscall_64+0x115/0x840
[  393.278603][T11739]  ? clear_bhb_loop+0x40/0x90
[  393.278620][T11739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  393.278636][T11739] RIP: 0033:0x7f9690d9ce59
[  393.278648][T11739] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  393.278663][T11739] RSP: 002b:00007f9691d1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  393.278677][T11739] RAX: ffffffffffffffda RBX: 00007f9691015fa0 RCX: 00007f9690d9ce59
[  393.278687][T11739] RDX: 0000000000002c62 RSI: 0000200000000280 RDI: ffffffffffffff9c
[  393.278696][T11739] RBP: 00007f9690e32d6f R08: 0000000000000000 R09: 0000000000000000
[  393.278705][T11739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  393.278713][T11739] R13: 00007f9691016038 R14: 00007f9691015fa0 R15: 00007ffc55ead0f8
[  393.278732][T11739]  </TASK>
[  396.210328][T11791] MTRR 1 not used
[  396.243189][   T30] audit: type=1800 audit(8277292208.331:23): pid=11791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1124" name="dbroot" dev="configfs" ino=44721 res=0 errno=0
[  400.883684][T11872] netlink: 142 bytes leftover after parsing attributes in process `syz.4.1140'.
[  401.003965][T11881] device-mapper: ioctl: Unable to rename non-existent device,  to �
[  401.019899][T11883] netlink: 25 bytes leftover after parsing attributes in process `syz.5.1142'.
[  403.127737][T11918] Console: switching to colour VGA+ 80x25
[  403.884632][T11953] Device name cannot be null; rc = [-22]
[  405.083665][T11988] net_ratelimit: 1 callbacks suppressed
[  405.083680][T11988] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  405.096436][T11988] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  405.539626][T11999] ERROR: Out of memory at tomoyo_memory_ok.
[  408.397405][T12036] netlink: 186 bytes leftover after parsing attributes in process `syz.5.1177'.
[  411.441609][T12060] Process accounting paused
[  413.321407][T12114] No such timeout policy "
"
[  413.366137][T12114] netlink: Failed to associated timeout policy '
'
[  416.629242][T12174] Process accounting resumed
[  416.681378][T12166] FAULT_INJECTION: forcing a failure.
[  416.681378][T12166] name failslab, interval 1, probability 0, space 0, times 0
[  416.781279][T12166] CPU: 0 UID: 0 PID: 12166 Comm: syz.5.1205 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  416.781306][T12166] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  416.781312][T12166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  416.781322][T12166] Call Trace:
[  416.781327][T12166]  <TASK>
[  416.781332][T12166]  dump_stack_lvl+0x100/0x190
[  416.781353][T12166]  should_fail_ex.cold+0x5/0xa
[  416.781374][T12166]  should_failslab+0xc2/0x120
[  416.781393][T12166]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  416.781415][T12166]  ? security_inode_alloc+0x3b/0x2c0
[  416.781432][T12166]  ? lockdep_init_map_type+0x5c/0x250
[  416.781458][T12166]  security_inode_alloc+0x3b/0x2c0
[  416.781475][T12166]  inode_init_always_gfp+0xc77/0xfb0
[  416.781497][T12166]  alloc_inode+0x8e/0x250
[  416.781521][T12166]  new_inode+0x22/0x1c0
[  416.781545][T12166]  rpc_new_dir+0x96/0x420
[  416.781565][T12166]  rpc_populate.constprop.0+0x125/0x1c0
[  416.781592][T12166]  ? d_instantiate+0x8f/0xb0
[  416.781614][T12166]  ? __pfx_rpc_fill_super+0x10/0x10
[  416.781634][T12166]  rpc_fill_super+0x2b9/0x4f0
[  416.781654][T12166]  ? __pfx_rpc_fill_super+0x10/0x10
[  416.781672][T12166]  get_tree_keyed+0x10e/0x1d0
[  416.781690][T12166]  vfs_get_tree+0x92/0x320
[  416.781705][T12166]  vfs_cmd_create+0xd7/0x2a0
[  416.781728][T12166]  __do_sys_fsconfig+0x55a/0xcb0
[  416.781751][T12166]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  416.781774][T12166]  ? xfd_validate_state+0x129/0x190
[  416.781792][T12166]  ? rcu_is_watching+0x12/0xc0
[  416.781811][T12166]  do_syscall_64+0x115/0x840
[  416.781831][T12166]  ? clear_bhb_loop+0x40/0x90
[  416.781849][T12166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  416.781865][T12166] RIP: 0033:0x7fb3fdd9ce59
[  416.781877][T12166] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  416.781892][T12166] RSP: 002b:00007fb3fed2e028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  416.781907][T12166] RAX: ffffffffffffffda RBX: 00007fb3fe015fa0 RCX: 00007fb3fdd9ce59
[  416.781917][T12166] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  416.781925][T12166] RBP: 00007fb3fde32d6f R08: 0000000000000000 R09: 0000000000000000
[  416.781934][T12166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  416.781942][T12166] R13: 00007fb3fe016038 R14: 00007fb3fe015fa0 R15: 00007fff76b80e08
[  416.781962][T12166]  </TASK>
[  418.252230][T12166] net/sunrpc/rpc_pipe.c: rpc_populate failed to populate directory /
[  418.982659][T12204] ERROR: Out of memory at tomoyo_memory_ok.
[  419.823649][T12226] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1220'.
[  419.933335][T12224] Process accounting resumed
[  420.607648][T12218] Process accounting paused
[  421.367615][T12288] FAULT_INJECTION: forcing a failure.
[  421.367615][T12288] name fail_futex, interval 1, probability 0, space 0, times 0
[  421.461985][T12288] CPU: 0 UID: 0 PID: 12288 Comm: syz.4.1229 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  421.462012][T12288] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  421.462018][T12288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  421.462027][T12288] Call Trace:
[  421.462032][T12288]  <TASK>
[  421.462038][T12288]  dump_stack_lvl+0x100/0x190
[  421.462058][T12288]  should_fail_ex.cold+0x5/0xa
[  421.462078][T12288]  get_futex_key+0x1d2/0x1510
[  421.462111][T12288]  ? __pfx_get_futex_key+0x10/0x10
[  421.462140][T12288]  futex_wake+0xea/0x530
[  421.462158][T12288]  ? rcu_is_watching+0x12/0xc0
[  421.462176][T12288]  ? __pfx_futex_wake+0x10/0x10
[  421.462196][T12288]  ? putname+0xb1/0x110
[  421.462213][T12288]  ? kmem_cache_free+0x127/0x6c0
[  421.462238][T12288]  do_futex+0x32b/0x350
[  421.462254][T12288]  ? __pfx_do_futex+0x10/0x10
[  421.462267][T12288]  ? __pfx_do_sys_openat2+0x10/0x10
[  421.462290][T12288]  ? __fget_files+0x21f/0x3d0
[  421.462308][T12288]  __x64_sys_futex+0x34f/0x4d0
[  421.462324][T12288]  ? __x64_sys_openat+0x12d/0x210
[  421.462346][T12288]  ? __pfx___x64_sys_futex+0x10/0x10
[  421.462365][T12288]  ? rcu_is_watching+0x12/0xc0
[  421.462383][T12288]  do_syscall_64+0x115/0x840
[  421.462403][T12288]  ? clear_bhb_loop+0x40/0x90
[  421.462421][T12288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.462436][T12288] RIP: 0033:0x7f9690d9ce59
[  421.462448][T12288] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  421.462462][T12288] RSP: 002b:00007f9691cda0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  421.462478][T12288] RAX: ffffffffffffffda RBX: 00007f9691016188 RCX: 00007f9690d9ce59
[  421.462487][T12288] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f969101618c
[  421.462496][T12288] RBP: 00007f9691016180 R08: 0000000000000001 R09: 0000000000000000
[  421.462505][T12288] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[  421.462513][T12288] R13: 00007f9691016218 R14: 00007ffc55ead010 R15: 00007ffc55ead0f8
[  421.462532][T12288]  </TASK>
[  423.548566][T12332] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1236'.
[  424.389669][ T5849] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  425.711266][T12388] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1249'.
[  425.832975][T12393] FAULT_INJECTION: forcing a failure.
[  425.832975][T12393] name failslab, interval 1, probability 0, space 0, times 0
[  425.915378][T12393] CPU: 0 UID: 0 PID: 12393 Comm: syz.4.1250 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  425.915404][T12393] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  425.915410][T12393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  425.915419][T12393] Call Trace:
[  425.915425][T12393]  <TASK>
[  425.915431][T12393]  dump_stack_lvl+0x100/0x190
[  425.915451][T12393]  should_fail_ex.cold+0x5/0xa
[  425.915471][T12393]  should_failslab+0xc2/0x120
[  425.915489][T12393]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  425.915513][T12393]  ? __d_alloc+0x34/0xa40
[  425.915536][T12393]  __d_alloc+0x34/0xa40
[  425.915557][T12393]  d_alloc+0x4a/0x1e0
[  425.915577][T12393]  lookup_one_qstr_excl+0x171/0x250
[  425.915601][T12393]  start_dirop+0x59/0xb0
[  425.915617][T12393]  simple_start_creating+0xf9/0x110
[  425.915635][T12393]  ? __pfx_simple_start_creating+0x10/0x10
[  425.915661][T12393]  ? mntput+0x70/0xa0
[  425.915677][T12393]  ? simple_pin_fs+0xa3/0x190
[  425.915693][T12393]  debugfs_start_creating.part.0+0x82/0x170
[  425.915711][T12393]  __debugfs_create_file+0xb3/0x4f0
[  425.915731][T12393]  debugfs_create_file_full+0x41/0x60
[  425.915749][T12393]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  425.915765][T12393]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  425.915779][T12393]  ? ida_alloc_range+0x70d/0x830
[  425.915815][T12393]  ? lockdep_init_map_type+0x5c/0x250
[  425.915841][T12393]  preinit_net.part.0+0x252/0x920
[  425.915859][T12393]  copy_net_ns+0x339/0x7c0
[  425.915878][T12393]  create_new_namespaces+0x3ea/0xac0
[  425.915901][T12393]  unshare_nsproxy_namespaces+0xf2/0x220
[  425.915922][T12393]  ksys_unshare+0x438/0xab0
[  425.915943][T12393]  ? __pfx_ksys_unshare+0x10/0x10
[  425.915962][T12393]  ? xfd_validate_state+0x129/0x190
[  425.915976][T12393]  ? ksys_write+0x1ac/0x250
[  425.915998][T12393]  __x64_sys_unshare+0x31/0x40
[  425.916018][T12393]  do_syscall_64+0x115/0x840
[  425.916037][T12393]  ? clear_bhb_loop+0x40/0x90
[  425.916055][T12393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.916070][T12393] RIP: 0033:0x7f9690d9ce59
[  425.916083][T12393] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  425.916098][T12393] RSP: 002b:00007f9691cfb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  425.916112][T12393] RAX: ffffffffffffffda RBX: 00007f9691016090 RCX: 00007f9690d9ce59
[  425.916122][T12393] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  425.916132][T12393] RBP: 00007f9690e32d6f R08: 0000000000000000 R09: 0000000000000000
[  425.916142][T12393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  425.916155][T12393] R13: 00007f9691016128 R14: 00007f9691016090 R15: 00007ffc55ead0f8
[  425.916174][T12393]  </TASK>
[  427.743575][T12416] usb usb21: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  428.911760][T12448] kafs: addr_prefs: Invalid Command
[  429.793662][T12484] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1272'.
[  430.986151][T12523] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1275'.
[  433.371976][T12589] netlink: 'syz.5.1291': attribute type 1 has an invalid length.
[  433.550564][T12589] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1291'.
[  433.623300][T12589] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1291'.
[  434.032051][T12603] bond0: option arp_interval: invalid value ()
[  434.063042][T12603] bond0: option arp_interval: allowed values 0 - 2147483647
[  435.035370][T12617] ERROR: Out of memory at tomoyo_memory_ok.
[  435.569260][T12639] FAULT_INJECTION: forcing a failure.
[  435.569260][T12639] name failslab, interval 1, probability 0, space 0, times 0
[  435.678719][T12639] CPU: 0 UID: 0 PID: 12639 Comm: syz.4.1304 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  435.678747][T12639] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  435.678753][T12639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  435.678762][T12639] Call Trace:
[  435.678768][T12639]  <TASK>
[  435.678773][T12639]  dump_stack_lvl+0x100/0x190
[  435.678794][T12639]  should_fail_ex.cold+0x5/0xa
[  435.678814][T12639]  ? blk_rq_map_user_iov+0x2a5/0x14c0
[  435.678835][T12639]  should_failslab+0xc2/0x120
[  435.678853][T12639]  __kmalloc_noprof+0xe0/0x850
[  435.678870][T12639]  blk_rq_map_user_iov+0x2a5/0x14c0
[  435.678897][T12639]  ? __pfx_blk_rq_map_user_iov+0x10/0x10
[  435.678921][T12639]  ? policy_nodemask+0xed/0x4f0
[  435.678939][T12639]  ? find_held_lock+0x2b/0x80
[  435.678956][T12639]  ? sg_common_write.isra.0+0xe26/0x1b90
[  435.678978][T12639]  ? sg_common_write.isra.0+0xe26/0x1b90
[  435.678998][T12639]  ? import_ubuf+0x1b6/0x220
[  435.679018][T12639]  blk_rq_map_user_io+0x1ff/0x230
[  435.679040][T12639]  ? __pfx_blk_rq_map_user_io+0x10/0x10
[  435.679061][T12639]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  435.679091][T12639]  sg_common_write.isra.0+0xf74/0x1b90
[  435.679119][T12639]  ? __might_fault+0xc5/0x140
[  435.679140][T12639]  ? __pfx_sg_common_write.isra.0+0x10/0x10
[  435.679168][T12639]  sg_write+0x7eb/0xdb0
[  435.679192][T12639]  ? __pfx_sg_write+0x10/0x10
[  435.679229][T12639]  ? apparmor_file_permission+0x13f/0x1c0
[  435.679248][T12639]  ? bpf_lsm_file_permission+0x9/0x10
[  435.679261][T12639]  ? security_file_permission+0x76/0x210
[  435.679281][T12639]  ? rw_verify_area+0xce/0x6d0
[  435.679298][T12639]  vfs_write+0x2aa/0x1070
[  435.679315][T12639]  ? __pfx_sg_write+0x10/0x10
[  435.679336][T12639]  ? __pfx_vfs_write+0x10/0x10
[  435.679351][T12639]  ? find_held_lock+0x2b/0x80
[  435.679368][T12639]  ? __fget_files+0x215/0x3d0
[  435.679384][T12639]  ? __fget_files+0x215/0x3d0
[  435.679403][T12639]  ? __fget_files+0x21f/0x3d0
[  435.679425][T12639]  ksys_write+0x12a/0x250
[  435.679441][T12639]  ? __pfx_ksys_write+0x10/0x10
[  435.679459][T12639]  ? rcu_is_watching+0x12/0xc0
[  435.679478][T12639]  do_syscall_64+0x115/0x840
[  435.679497][T12639]  ? clear_bhb_loop+0x40/0x90
[  435.679515][T12639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.679530][T12639] RIP: 0033:0x7f9690d9ce59
[  435.679543][T12639] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  435.679558][T12639] RSP: 002b:00007f9691d1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  435.679572][T12639] RAX: ffffffffffffffda RBX: 00007f9691015fa0 RCX: 00007f9690d9ce59
[  435.679583][T12639] RDX: 000000000000b6bd RSI: 0000000000000000 RDI: 0000000000000003
[  435.679591][T12639] RBP: 00007f9690e32d6f R08: 0000000000000000 R09: 0000000000000000
[  435.679600][T12639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  435.679610][T12639] R13: 00007f9691016038 R14: 00007f9691015fa0 R15: 00007ffc55ead0f8
[  435.679630][T12639]  </TASK>
[  438.690805][ T5849] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  438.690828][ T5849] Bluetooth: hci1: unexpected subevent 0x0e length: 725 > 15
[  438.708183][ T5849] Bluetooth: hci1: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  439.822603][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  439.830476][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  440.493551][ T5849] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  441.184881][T12788] serio: Serial port pty173
[  441.333202][T12796] FAULT_INJECTION: forcing a failure.
[  441.333202][T12796] name failslab, interval 1, probability 0, space 0, times 0
[  441.390292][T12796] CPU: 0 UID: 0 PID: 12796 Comm: syz.1.1324 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  441.390320][T12796] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  441.390325][T12796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  441.390334][T12796] Call Trace:
[  441.390340][T12796]  <TASK>
[  441.390345][T12796]  dump_stack_lvl+0x100/0x190
[  441.390366][T12796]  should_fail_ex.cold+0x5/0xa
[  441.390385][T12796]  should_failslab+0xc2/0x120
[  441.390404][T12796]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  441.390426][T12796]  ? vm_area_alloc+0x1f/0x160
[  441.390451][T12796]  vm_area_alloc+0x1f/0x160
[  441.390471][T12796]  __mmap_region+0x104d/0x2dd0
[  441.390497][T12796]  ? __pfx___mmap_region+0x10/0x10
[  441.390529][T12796]  ? kmem_cache_free+0x44a/0x6c0
[  441.390553][T12796]  ? do_raw_spin_lock+0x128/0x260
[  441.390581][T12796]  ? do_raw_spin_lock+0x128/0x260
[  441.390597][T12796]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  441.390620][T12796]  ? hrtimer_start_range_ns+0x860/0x1a50
[  441.390637][T12796]  ? find_held_lock+0x2b/0x80
[  441.390654][T12796]  ? finish_task_switch.isra.0+0x2c6/0x1010
[  441.390697][T12796]  ? __pfx___schedule+0x10/0x10
[  441.390720][T12796]  mmap_region+0x35d/0x620
[  441.390734][T12796]  ? rcu_is_watching+0x12/0xc0
[  441.390751][T12796]  ? __pfx_mmap_region+0x10/0x10
[  441.390767][T12796]  ? cap_mmap_addr+0x4b/0x120
[  441.390780][T12796]  ? bpf_lsm_mmap_addr+0x9/0x30
[  441.390797][T12796]  ? security_mmap_addr+0x71/0x1e0
[  441.390816][T12796]  ? __get_unmapped_area+0x255/0x3e0
[  441.390837][T12796]  do_mmap+0xc63/0x12f0
[  441.390858][T12796]  ? __pfx_do_mmap+0x10/0x10
[  441.390876][T12796]  ? __pfx_down_write_killable+0x10/0x10
[  441.390903][T12796]  vm_mmap_pgoff+0x29e/0x470
[  441.390924][T12796]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  441.390944][T12796]  ? do_futex+0x192/0x350
[  441.390959][T12796]  ? __pfx_do_futex+0x10/0x10
[  441.390973][T12796]  ? __pfx_do_sys_openat2+0x10/0x10
[  441.390998][T12796]  ksys_mmap_pgoff+0xe4/0x610
[  441.391015][T12796]  ? __x64_sys_futex+0x358/0x4d0
[  441.391031][T12796]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  441.391048][T12796]  ? xfd_validate_state+0x129/0x190
[  441.391067][T12796]  __x64_sys_mmap+0x125/0x190
[  441.391092][T12796]  do_syscall_64+0x115/0x840
[  441.391112][T12796]  ? clear_bhb_loop+0x40/0x90
[  441.391132][T12796]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.391148][T12796] RIP: 0033:0x7f9f8859ce59
[  441.391161][T12796] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  441.391176][T12796] RSP: 002b:00007f9f89416028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  441.391191][T12796] RAX: ffffffffffffffda RBX: 00007f9f88816180 RCX: 00007f9f8859ce59
[  441.391201][T12796] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  441.391210][T12796] RBP: 00007f9f88632d6f R08: fffffffffffffffb R09: 0000000000008000
[  441.391221][T12796] R10: 0000000000000eb2 R11: 0000000000000246 R12: 0000000000000000
[  441.391229][T12796] R13: 00007f9f88816218 R14: 00007f9f88816180 R15: 00007fff37ecdda8
[  441.391249][T12796]  </TASK>
[  442.539319][ T6905] Bluetooth: hci1: command 0x0406 tx timeout
[  443.131609][T12805] random: crng reseeded on system resumption
[  443.490518][T12787] Process accounting resumed
[  444.618235][ T5849] Bluetooth: hci1: command 0x0406 tx timeout
[  444.725742][T12792] kexec: Could not allocate control_code_buffer
[  444.856127][T12840] binder: 12833:12840 ioctl 40086602 e20 returned -22
[  445.453073][T12852] ubi0: attaching mtd0
[  445.524628][T12858] random: crng reseeded on system resumption
[  445.612414][T12852] ubi0: scanning is finished
[  445.628358][T12848] futex_wake_op: syz.4.1335 tries to shift op by -2048; fix this program
[  445.672727][T12852] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  445.692726][T12848] futex_wake_op: syz.4.1335 tries to shift op by -2048; fix this program
[  445.786070][T12848] 0x000000000001-0x000000020000 : ""
[  445.859419][T12848] ftl_cs: FTL header corrupt!
[  446.044942][T12852] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  446.058972][T12866] ERROR: Out of memory at tomoyo_memory_ok.
[  447.569383][T12901] ERROR: Out of memory at tomoyo_memory_ok.
[  448.069878][T12889] Process accounting paused
[  448.474410][T12923] ERROR: Out of memory at tomoyo_memory_ok.
[  448.574426][T12923] FAULT_INJECTION: forcing a failure.
[  448.574426][T12923] name fail_futex, interval 1, probability 0, space 0, times 0
[  448.662000][T12923] CPU: 0 UID: 0 PID: 12923 Comm: syz.5.1348 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  448.662026][T12923] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  448.662032][T12923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  448.662040][T12923] Call Trace:
[  448.662045][T12923]  <TASK>
[  448.662051][T12923]  dump_stack_lvl+0x100/0x190
[  448.662070][T12923]  should_fail_ex.cold+0x5/0xa
[  448.662090][T12923]  get_futex_key+0x1d2/0x1510
[  448.662115][T12923]  ? __pfx_get_futex_key+0x10/0x10
[  448.662144][T12923]  futex_wake+0xea/0x530
[  448.662161][T12923]  ? rcu_is_watching+0x12/0xc0
[  448.662179][T12923]  ? __pfx_futex_wake+0x10/0x10
[  448.662198][T12923]  ? putname+0xb1/0x110
[  448.662216][T12923]  ? kmem_cache_free+0x127/0x6c0
[  448.662240][T12923]  do_futex+0x32b/0x350
[  448.662256][T12923]  ? __pfx_do_futex+0x10/0x10
[  448.662269][T12923]  ? __pfx_do_sys_openat2+0x10/0x10
[  448.662296][T12923]  __x64_sys_futex+0x34f/0x4d0
[  448.662312][T12923]  ? __x64_sys_openat+0x12d/0x210
[  448.662333][T12923]  ? __pfx___x64_sys_futex+0x10/0x10
[  448.662359][T12923]  ? rcu_is_watching+0x12/0xc0
[  448.662378][T12923]  do_syscall_64+0x115/0x840
[  448.662399][T12923]  ? clear_bhb_loop+0x40/0x90
[  448.662417][T12923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.662432][T12923] RIP: 0033:0x7fb3fdd9ce59
[  448.662445][T12923] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  448.662459][T12923] RSP: 002b:00007fb3fed2e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  448.662474][T12923] RAX: ffffffffffffffda RBX: 00007fb3fe015fa8 RCX: 00007fb3fdd9ce59
[  448.662484][T12923] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb3fe015fac
[  448.662492][T12923] RBP: 00007fb3fe015fa0 R08: 0000000000000001 R09: 0000000000000000
[  448.662501][T12923] R10: 000000000000000b R11: 0000000000000246 R12: 0000000000000000
[  448.662509][T12923] R13: 00007fb3fe016038 R14: 00007fff76b80d20 R15: 00007fff76b80e08
[  448.662529][T12923]  </TASK>
[  449.500542][T12929] Process accounting resumed
[  449.826023][T12952] binder: 12950:12952 unknown command 0
[  449.911040][T12952] binder: 12950:12952 ioctl c0306201 2000000000c0 returned -22
[  450.626854][T12972] ERROR: Out of memory at tomoyo_memory_ok.
[  451.505536][T12989] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  451.624799][T12989] CIFS mount error: No usable UNC path provided in device string!
[  451.624799][T12989] 
[  451.668979][T12989] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  451.963472][T12997] futex_wake_op: syz.1.1362 tries to shift op by -2048; fix this program
[  453.826531][T13033] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1372'.
[  454.034753][T13039] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1371'.
[  455.813596][T13080] .^: entered promiscuous mode
[  456.131477][T13095] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1384'.
[  456.233651][T13093] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1383'.
[  456.396710][ T6799] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u10:16: bg 2: bad block bitmap checksum
[  456.458631][ T6799] EXT4-fs (sda1): Delayed block allocation failed for inode 2029 at logical offset 12 with max blocks 16 with error 74
[  456.530249][ T6799] EXT4-fs (sda1): This should not happen!! Data will be lost
[  456.530249][ T6799] 
[  457.778908][T13128] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1394'.
[  458.964353][ T6905] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  458.983682][T13149] vivid-008: =================  START STATUS  =================
[  459.056482][T13149] vivid-008: ==================  END STATUS  ==================
[  460.687647][T13177] FAULT_INJECTION: forcing a failure.
[  460.687647][T13177] name failslab, interval 1, probability 0, space 0, times 0
[  460.722803][T13143] random: crng reseeded on system resumption
[  460.733486][T13177] CPU: 0 UID: 0 PID: 13177 Comm: syz.1.1399 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  460.733513][T13177] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  460.733519][T13177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  460.733528][T13177] Call Trace:
[  460.733534][T13177]  <TASK>
[  460.733539][T13177]  dump_stack_lvl+0x100/0x190
[  460.733560][T13177]  should_fail_ex.cold+0x5/0xa
[  460.733580][T13177]  should_failslab+0xc2/0x120
[  460.733600][T13177]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  460.733616][T13177]  ? __devinet_sysctl_register+0xbc/0x360
[  460.733640][T13177]  kmemdup_noprof+0x29/0x60
[  460.733656][T13177]  __devinet_sysctl_register+0xbc/0x360
[  460.733678][T13177]  ? trace_kmalloc+0xe3/0x110
[  460.733695][T13177]  ? __pfx___devinet_sysctl_register+0x10/0x10
[  460.733719][T13177]  ? __asan_memcpy+0x3c/0x60
[  460.733743][T13177]  devinet_init_net+0x334/0x8d0
[  460.733764][T13177]  ? __pfx_devinet_init_net+0x10/0x10
[  460.733784][T13177]  ops_init+0x1e2/0x5f0
[  460.733802][T13177]  setup_net+0x118/0x3a0
[  460.733818][T13177]  ? __pfx_setup_net+0x10/0x10
[  460.733834][T13177]  ? mutex_init_lockdep+0xf1/0x120
[  460.733852][T13177]  copy_net_ns+0x46f/0x7c0
[  460.733871][T13177]  create_new_namespaces+0x3ea/0xac0
[  460.733894][T13177]  unshare_nsproxy_namespaces+0xf2/0x220
[  460.733913][T13177]  ksys_unshare+0x438/0xab0
[  460.733935][T13177]  ? __pfx_ksys_unshare+0x10/0x10
[  460.733954][T13177]  ? xfd_validate_state+0x129/0x190
[  460.733975][T13177]  __x64_sys_unshare+0x31/0x40
[  460.733995][T13177]  do_syscall_64+0x115/0x840
[  460.734015][T13177]  ? clear_bhb_loop+0x40/0x90
[  460.734033][T13177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.734047][T13177] RIP: 0033:0x7f9f8859ce59
[  460.734061][T13177] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  460.734075][T13177] RSP: 002b:00007f9f89458028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  460.734093][T13177] RAX: ffffffffffffffda RBX: 00007f9f88815fa0 RCX: 00007f9f8859ce59
[  460.734103][T13177] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  460.734112][T13177] RBP: 00007f9f88632d6f R08: 0000000000000000 R09: 0000000000000000
[  460.734128][T13177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  460.734137][T13177] R13: 00007f9f88816038 R14: 00007f9f88815fa0 R15: 00007fff37ecdda8
[  460.734157][T13177]  </TASK>
[  461.299561][ T5849] Bluetooth: hci1: command 0x0406 tx timeout
[  462.532891][T13208] ERROR: Out of memory at tomoyo_memory_ok.
[  463.079443][T13216] netlink: 4394 bytes leftover after parsing attributes in process `syz.4.1409'.
[  463.329054][ T6905] Bluetooth: hci1: command 0x0406 tx timeout
[  464.442966][T13242] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  464.471386][T13242] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  464.516178][T13242] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  464.553833][T13242] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  464.703420][T13255] input input14: cannot allocate more than FF_MAX_EFFECTS effects
[  464.820168][T13242] can: request_module (can-proto-3) failed.
[  464.903440][T13264] netlink: 326 bytes leftover after parsing attributes in process `syz.5.1420'.
[  464.992156][T13265] usb usb15: usbfs: interface 0 claimed by hub while 'syz.5.1420' sets config #0
[  465.661065][T13288] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1425'.
[  465.706500][T13289] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1425'.
[  466.230448][T13299] MTRR 0 not used
[  466.318225][ T8489] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 888 with max blocks 2 with error 117
[  466.395800][ T8489] EXT4-fs (sda1): This should not happen!! Data will be lost
[  466.395800][ T8489] 
[  466.447107][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout
[  466.527870][ T6905] Bluetooth: hci3: command 0x0c1a tx timeout
[  466.533930][ T5849] Bluetooth: hci1: command 0x0406 tx timeout
[  466.607337][ T5849] Bluetooth: hci4: command 0x0c1a tx timeout
[  468.338071][T13364] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1439'.
[  469.162359][T13376] zswap: compressor  not available
[  471.188292][ T5849] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  471.197493][T13426] ERROR: Out of memory at tomoyo_memory_ok.
[  471.492957][T13433] FAULT_INJECTION: forcing a failure.
[  471.492957][T13433] name failslab, interval 1, probability 0, space 0, times 0
[  471.583771][T13433] CPU: 0 UID: 0 PID: 13433 Comm: syz.1.1450 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  471.583800][T13433] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  471.583806][T13433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  471.583820][T13433] Call Trace:
[  471.583826][T13433]  <TASK>
[  471.583831][T13433]  dump_stack_lvl+0x100/0x190
[  471.583853][T13433]  should_fail_ex.cold+0x5/0xa
[  471.583873][T13433]  should_failslab+0xc2/0x120
[  471.583892][T13433]  __kmalloc_cache_noprof+0x7a/0x6f0
[  471.583913][T13433]  ? percpu_ref_init+0xec/0x3f0
[  471.583932][T13433]  ? __pfx_io_ring_ctx_ref_free+0x10/0x10
[  471.583953][T13433]  percpu_ref_init+0xec/0x3f0
[  471.583970][T13433]  io_uring_setup.cold+0x23b/0x1c6e
[  471.583996][T13433]  ? __pfx_io_uring_setup+0x10/0x10
[  471.584020][T13433]  ? do_futex+0x192/0x350
[  471.584035][T13433]  ? __pfx_do_futex+0x10/0x10
[  471.584065][T13433]  ? xfd_validate_state+0x129/0x190
[  471.584086][T13433]  __x64_sys_io_uring_setup+0xc2/0x170
[  471.584110][T13433]  do_syscall_64+0x115/0x840
[  471.584130][T13433]  ? clear_bhb_loop+0x40/0x90
[  471.584149][T13433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  471.584164][T13433] RIP: 0033:0x7f9f8859ce59
[  471.584177][T13433] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  471.584191][T13433] RSP: 002b:00007f9f89458028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  471.584213][T13433] RAX: ffffffffffffffda RBX: 00007f9f88815fa0 RCX: 00007f9f8859ce59
[  471.584223][T13433] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000059
[  471.584231][T13433] RBP: 00007f9f88632d6f R08: 0000000000000000 R09: 0000000000000000
[  471.584240][T13433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  471.584249][T13433] R13: 00007f9f88816038 R14: 00007f9f88815fa0 R15: 00007fff37ecdda8
[  471.584267][T13433]  </TASK>
[  473.926237][T13459] Process accounting paused
[  477.116135][   T30] audit: type=1800 audit(8277292289.252:24): pid=13569 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1477" name="members" dev="configfs" ino=55094 res=0 errno=0
[  477.859144][T13587] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1482'.
[  477.887671][T13585] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  477.911319][T13588] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input17
[  477.988784][ T4984] ERROR: Out of memory at tomoyo_memory_ok.
[  478.092605][T13592] Process accounting resumed
[  479.092112][T13612] futex_wake_op: syz.1.1487 tries to shift op by -2048; fix this program
[  479.177474][T13611] 0x000000000001-0x000200000001 : ""
[  479.204571][T13611] mtd: partition "" extends beyond the end of device "mtdram test device" -- size truncated to 0x1ffff
[  479.265699][T13611] ftl_cs: FTL header corrupt!
[  479.446195][T13623] ERROR: Out of memory at tomoyo_memory_ok.
[  479.535416][T13617] Process accounting paused
[  480.499075][T13650] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1491'.
[  481.970888][T13687] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1500'.
[  484.106805][T13752] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1514'.
[  484.296881][T13758] FAULT_INJECTION: forcing a failure.
[  484.296881][T13758] name failslab, interval 1, probability 0, space 0, times 0
[  484.345137][T13758] CPU: 0 UID: 0 PID: 13758 Comm: syz.5.1514 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  484.345163][T13758] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  484.345169][T13758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  484.345178][T13758] Call Trace:
[  484.345183][T13758]  <TASK>
[  484.345189][T13758]  dump_stack_lvl+0x100/0x190
[  484.345211][T13758]  should_fail_ex.cold+0x5/0xa
[  484.345231][T13758]  should_failslab+0xc2/0x120
[  484.345252][T13758]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  484.345275][T13758]  ? alloc_inode+0x68/0x250
[  484.345298][T13758]  ? simple_start_creating+0xb0/0x110
[  484.345315][T13758]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  484.345340][T13758]  alloc_inode+0x68/0x250
[  484.345362][T13758]  new_inode+0x22/0x1c0
[  484.345385][T13758]  __debugfs_create_file+0x105/0x4f0
[  484.345403][T13758]  debugfs_create_file_full+0x41/0x60
[  484.345420][T13758]  ref_tracker_dir_debugfs+0x19e/0x2e0
[  484.345435][T13758]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  484.345449][T13758]  ? ida_alloc_range+0x70d/0x830
[  484.345486][T13758]  ? lockdep_init_map_type+0x5c/0x250
[  484.345514][T13758]  preinit_net.part.0+0x252/0x920
[  484.345531][T13758]  copy_net_ns+0x339/0x7c0
[  484.345551][T13758]  create_new_namespaces+0x3ea/0xac0
[  484.345575][T13758]  unshare_nsproxy_namespaces+0xf2/0x220
[  484.345595][T13758]  ksys_unshare+0x438/0xab0
[  484.345617][T13758]  ? __pfx_ksys_unshare+0x10/0x10
[  484.345636][T13758]  ? xfd_validate_state+0x129/0x190
[  484.345650][T13758]  ? ksys_write+0x1ac/0x250
[  484.345672][T13758]  __x64_sys_unshare+0x31/0x40
[  484.345692][T13758]  do_syscall_64+0x115/0x840
[  484.345711][T13758]  ? clear_bhb_loop+0x40/0x90
[  484.345730][T13758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  484.345745][T13758] RIP: 0033:0x7fb3fdd9ce59
[  484.345757][T13758] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  484.345772][T13758] RSP: 002b:00007fb3fecec028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  484.345787][T13758] RAX: ffffffffffffffda RBX: 00007fb3fe016180 RCX: 00007fb3fdd9ce59
[  484.345797][T13758] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  484.345805][T13758] RBP: 00007fb3fde32d6f R08: 0000000000000000 R09: 0000000000000000
[  484.345814][T13758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  484.345822][T13758] R13: 00007fb3fe016218 R14: 00007fb3fe016180 R15: 00007fff76b80e08
[  484.345842][T13758]  </TASK>
[  484.995043][T13758] debugfs: out of free dentries, can not create file 'net_refcnt@ffff88807dd9d000'
[  485.724369][T13782] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1519'.
[  485.823869][T13784] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1519'.
[  486.370851][T13791] FAULT_INJECTION: forcing a failure.
[  486.370851][T13791] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  486.538245][T13791] CPU: 0 UID: 0 PID: 13791 Comm: syz.4.1521 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  486.538273][T13791] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  486.538279][T13791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  486.538288][T13791] Call Trace:
[  486.538293][T13791]  <TASK>
[  486.538298][T13791]  dump_stack_lvl+0x100/0x190
[  486.538319][T13791]  should_fail_ex.cold+0x5/0xa
[  486.538338][T13791]  _copy_from_user+0x2e/0xd0
[  486.538360][T13791]  kstrtouint_from_user+0xd6/0x1d0
[  486.538375][T13791]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  486.538390][T13791]  ? __lock_acquire+0x4a5/0x2630
[  486.538416][T13791]  ? lock_acquire+0x1b1/0x370
[  486.538441][T13791]  proc_fail_nth_write+0x83/0x220
[  486.538465][T13791]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  486.538494][T13791]  vfs_write+0x2aa/0x1070
[  486.538511][T13791]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  486.538542][T13791]  ? __pfx_vfs_write+0x10/0x10
[  486.538558][T13791]  ? __fget_files+0x215/0x3d0
[  486.538580][T13791]  ? __fget_files+0x21f/0x3d0
[  486.538602][T13791]  ksys_write+0x12a/0x250
[  486.538618][T13791]  ? __pfx_ksys_write+0x10/0x10
[  486.538636][T13791]  ? rcu_is_watching+0x12/0xc0
[  486.538656][T13791]  do_syscall_64+0x115/0x840
[  486.538676][T13791]  ? clear_bhb_loop+0x40/0x90
[  486.538694][T13791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  486.538709][T13791] RIP: 0033:0x7f9690d9ce59
[  486.538721][T13791] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  486.538736][T13791] RSP: 002b:00007f9691d1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  486.538750][T13791] RAX: ffffffffffffffda RBX: 00007f9691015fa0 RCX: 00007f9690d9ce59
[  486.538760][T13791] RDX: 0000000000000009 RSI: 0000200000000040 RDI: 00000000000000c0
[  486.538768][T13791] RBP: 00007f9690e32d6f R08: 0000000000000000 R09: 0000000000000000
[  486.538777][T13791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  486.538785][T13791] R13: 00007f9691016038 R14: 00007f9691015fa0 R15: 00007ffc55ead0f8
[  486.538805][T13791]  </TASK>
[  488.001516][T13836] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1529'.
[  488.073559][T13836] veth1_macvtap: left promiscuous mode
[  488.639925][T13874] tipc: Started in network mode
[  488.669018][T13874] tipc: Node identity ee00, cluster identity 4711
[  488.726070][T13874] tipc: Node number set to 60928
[  488.758902][T13875] i2c i2c-0: new_device: Invalid device name
[  489.499997][T13895] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1542'.
[  489.558565][T13895] netlink: 302 bytes leftover after parsing attributes in process `syz.5.1542'.
[  489.696633][T13904] ERROR: Out of memory at tomoyo_memory_ok.
[  489.868399][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  489.878663][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  489.938249][T13898] bonding: unable to delete non-existent )
[  490.650061][T13926] FAULT_INJECTION: forcing a failure.
[  490.650061][T13926] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  490.810827][T13932] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead.
[  490.901309][T13926] CPU: 0 UID: 0 PID: 13926 Comm: syz.1.1548 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  490.901336][T13926] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  490.901341][T13926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  490.901350][T13926] Call Trace:
[  490.901356][T13926]  <TASK>
[  490.901361][T13926]  dump_stack_lvl+0x100/0x190
[  490.901382][T13926]  should_fail_ex.cold+0x5/0xa
[  490.901399][T13926]  ? prepare_alloc_pages+0x16d/0x5f0
[  490.901419][T13926]  should_fail_alloc_page+0xeb/0x140
[  490.901439][T13926]  prepare_alloc_pages+0x1f0/0x5f0
[  490.901461][T13926]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  490.901489][T13926]  ? __lock_acquire+0x4a5/0x2630
[  490.901515][T13926]  ? __lock_acquire+0x4a5/0x2630
[  490.901536][T13926]  ? __css_rstat_updated+0x1ce/0x5a0
[  490.901559][T13926]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  490.901585][T13926]  ? do_raw_spin_lock+0x128/0x260
[  490.901601][T13926]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  490.901618][T13926]  ? find_held_lock+0x2b/0x80
[  490.901641][T13926]  ? __lock_acquire+0x4a5/0x2630
[  490.901663][T13926]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  490.901685][T13926]  ? policy_nodemask+0xed/0x4f0
[  490.901704][T13926]  alloc_pages_mpol+0x1fb/0x540
[  490.901722][T13926]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  490.901740][T13926]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  490.901755][T13926]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  490.901774][T13926]  folio_alloc_mpol_noprof+0x36/0x260
[  490.901795][T13926]  shmem_alloc_folio+0x135/0x160
[  490.901817][T13926]  shmem_alloc_and_add_folio+0x371/0xd40
[  490.901845][T13926]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  490.901871][T13926]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  490.901890][T13926]  shmem_get_folio_gfp+0x6ab/0x1900
[  490.901909][T13926]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  490.901924][T13926]  ? ktime_get_coarse_real_ts64_mg+0x235/0x300
[  490.901940][T13926]  ? lockdep_hardirqs_on+0x78/0x100
[  490.901964][T13926]  shmem_fault+0x1f9/0xa20
[  490.901978][T13926]  ? __lock_acquire+0x4a5/0x2630
[  490.902001][T13926]  ? __pfx_shmem_fault+0x10/0x10
[  490.902015][T13926]  ? __up_read+0x2c1/0x6e0
[  490.902038][T13926]  ? __pfx_filemap_map_pages+0x10/0x10
[  490.902060][T13926]  __do_fault+0x10b/0x440
[  490.902075][T13926]  ? find_held_lock+0x2b/0x80
[  490.902100][T13926]  do_fault+0x2db/0x1750
[  490.902122][T13926]  __handle_mm_fault+0x187d/0x2a00
[  490.902146][T13926]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  490.902164][T13926]  ? __pfx___handle_mm_fault+0x10/0x10
[  490.902187][T13926]  ? pte_offset_map_lock+0x174/0x320
[  490.902204][T13926]  ? find_held_lock+0x2b/0x80
[  490.902228][T13926]  ? follow_page_pte+0x4d0/0x13f0
[  490.902250][T13926]  handle_mm_fault+0x37b/0xa30
[  490.902275][T13926]  __get_user_pages+0x1178/0x32a0
[  490.902301][T13926]  ? down_read_killable+0x307/0x4b0
[  490.902317][T13926]  ? __pfx___get_user_pages+0x10/0x10
[  490.902340][T13926]  faultin_page_range+0x1f1/0x9e0
[  490.902363][T13926]  madvise_do_behavior+0x354/0x510
[  490.902386][T13926]  ? __pfx_madvise_do_behavior+0x10/0x10
[  490.902416][T13926]  do_madvise+0x195/0x240
[  490.902435][T13926]  ? __pfx_do_madvise+0x10/0x10
[  490.902454][T13926]  ? do_futex+0x192/0x350
[  490.902486][T13926]  __x64_sys_madvise+0xa9/0x110
[  490.902505][T13926]  ? lockdep_hardirqs_on+0x78/0x100
[  490.902525][T13926]  do_syscall_64+0x115/0x840
[  490.902545][T13926]  ? clear_bhb_loop+0x40/0x90
[  490.902563][T13926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.902578][T13926] RIP: 0033:0x7f9f8859ce59
[  490.902591][T13926] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  490.902605][T13926] RSP: 002b:00007f9f89458028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  490.902620][T13926] RAX: ffffffffffffffda RBX: 00007f9f88815fa0 RCX: 00007f9f8859ce59
[  490.902630][T13926] RDX: 0000000000000017 RSI: ffffffffffff0005 RDI: 0000000000000000
[  490.902639][T13926] RBP: 00007f9f88632d6f R08: 0000000000000000 R09: 0000000000000000
[  490.902648][T13926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  490.902657][T13926] R13: 00007f9f88816038 R14: 00007f9f88815fa0 R15: 00007fff37ecdda8
[  490.902677][T13926]  </TASK>
[  492.058851][T13950] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1552'.
[  492.110643][   T30] audit: type=1800 audit(8277292304.109:25): pid=13946 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1551" name="lu_gp_id" dev="configfs" ino=57213 res=0 errno=0
[  494.429918][T13964] block nbd2: not configured, cannot reconfigure
[  495.906129][T14032] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  497.026177][T14062] MTRR 0 not used
[  501.234259][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  501.246701][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  501.292049][T14161] ERROR: Out of memory at tomoyo_memory_ok.
[  501.535122][T14141] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1585'.
[  504.437479][T14220] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1597'.
[  505.737035][T14259] ubi0: attaching mtd0
[  505.769379][T14259] ubi0: scanning is finished
[  505.796999][T14259] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  505.983889][T14259] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  506.326740][T14280] futex_wake_op: syz.1.1605 tries to shift op by -2048; fix this program
[  506.440524][   T30] audit: type=1804 audit(8277292318.596:26): pid=14277 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1605" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  507.407872][T14301] ptp ptp0: only physical clock in use now
[  507.998704][T14317] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1615'.
[  509.799085][T14324] Process accounting resumed
[  510.224694][   T30] audit: type=1400 audit(8277292322.378:27): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=14365 comm="syz.4.1621"
[  510.694809][T14386] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1626'.
[  511.673557][T14417] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1629'.
[  512.153888][T14433] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1631'.
[  513.657965][T14474] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1637'.
[  514.045659][T14488] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1639'.
[  514.901561][T14499] FAULT_INJECTION: forcing a failure.
[  514.901561][T14499] name fail_futex, interval 1, probability 0, space 0, times 0
[  514.975752][T14499] CPU: 0 UID: 0 PID: 14499 Comm: syz.1.1642 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  514.975781][T14499] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  514.975787][T14499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  514.975795][T14499] Call Trace:
[  514.975801][T14499]  <TASK>
[  514.975806][T14499]  dump_stack_lvl+0x100/0x190
[  514.975825][T14499]  should_fail_ex.cold+0x5/0xa
[  514.975844][T14499]  get_futex_key+0x1d2/0x1510
[  514.975870][T14499]  ? __pfx_get_futex_key+0x10/0x10
[  514.975892][T14499]  ? put_pid+0x24/0x30
[  514.975912][T14499]  ? kernel_clone+0x2bc/0x9e0
[  514.975932][T14499]  ? __pfx_kernel_clone+0x10/0x10
[  514.975953][T14499]  futex_wake+0xea/0x530
[  514.975972][T14499]  ? __pfx_futex_wake+0x10/0x10
[  514.975998][T14499]  do_futex+0x32b/0x350
[  514.976013][T14499]  ? __pfx_do_futex+0x10/0x10
[  514.976029][T14499]  ? rcu_is_watching+0x12/0xc0
[  514.976048][T14499]  __x64_sys_futex+0x34f/0x4d0
[  514.976064][T14499]  ? __pfx___x64_sys_rt_sigprocmask+0x10/0x10
[  514.976082][T14499]  ? __pfx___x64_sys_futex+0x10/0x10
[  514.976100][T14499]  ? rcu_is_watching+0x12/0xc0
[  514.976119][T14499]  do_syscall_64+0x115/0x840
[  514.976139][T14499]  ? clear_bhb_loop+0x40/0x90
[  514.976157][T14499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.976172][T14499] RIP: 0033:0x7f9f8859ce59
[  514.976184][T14499] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  514.976198][T14499] RSP: 002b:00007fff37ecdf08 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  514.976213][T14499] RAX: ffffffffffffffda RBX: 00000000000002d0 RCX: 00007f9f8859ce59
[  514.976222][T14499] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9f88816278
[  514.976231][T14499] RBP: 000000000000129c R08: 00007fff37ecdda7 R09: 0000000000000000
[  514.976240][T14499] R10: 00007f9f88815fa0 R11: 0000000000000246 R12: 0000000000000003
[  514.976248][T14499] R13: 00007f9f8881627c R14: 00007f9f88816278 R15: 00007f9f88816270
[  514.976267][T14499]  </TASK>
[  516.181507][T14524] udc dummy_udc.0: soft-connect without a gadget driver
[  516.405548][T14536] netlink: 'syz.3.1646': attribute type 1 has an invalid length.
[  516.461909][T14536] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1646'.
[  517.821339][T14572] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1650'.
[  521.540115][ T5849] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  521.791701][T14658] nbd: must specify a size in bytes for the device
[  522.844782][T14685] FAULT_INJECTION: forcing a failure.
[  522.844782][T14685] name failslab, interval 1, probability 0, space 0, times 0
[  522.968391][T14685] CPU: 0 UID: 0 PID: 14685 Comm: syz.1.1668 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  522.968417][T14685] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  522.968423][T14685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  522.968431][T14685] Call Trace:
[  522.968436][T14685]  <TASK>
[  522.968442][T14685]  dump_stack_lvl+0x100/0x190
[  522.968462][T14685]  should_fail_ex.cold+0x5/0xa
[  522.968481][T14685]  should_failslab+0xc2/0x120
[  522.968499][T14685]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  522.968525][T14685]  ? __d_alloc+0x34/0xa40
[  522.968544][T14685]  ? lockdep_init_map_type+0x5c/0x250
[  522.968571][T14685]  __d_alloc+0x34/0xa40
[  522.968592][T14685]  d_alloc_pseudo+0x1c/0xc0
[  522.968606][T14685]  alloc_file_pseudo+0xcf/0x230
[  522.968629][T14685]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  522.968650][T14685]  ? alloc_fd+0x476/0x790
[  522.968671][T14685]  sock_alloc_file+0x50/0x210
[  522.968688][T14685]  __sys_socket+0x1c0/0x260
[  522.968708][T14685]  ? __pfx___sys_socket+0x10/0x10
[  522.968727][T14685]  ? ksys_write+0x1ac/0x250
[  522.968747][T14685]  __x64_sys_socket+0x72/0xb0
[  522.968767][T14685]  ? lockdep_hardirqs_on+0x78/0x100
[  522.968787][T14685]  do_syscall_64+0x115/0x840
[  522.968807][T14685]  ? clear_bhb_loop+0x40/0x90
[  522.968824][T14685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  522.968839][T14685] RIP: 0033:0x7f9f8859ce59
[  522.968851][T14685] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  522.968865][T14685] RSP: 002b:00007f9f89437028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  522.968885][T14685] RAX: ffffffffffffffda RBX: 00007f9f88816090 RCX: 00007f9f8859ce59
[  522.968895][T14685] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  522.968903][T14685] RBP: 00007f9f88632d6f R08: 0000000000000000 R09: 0000000000000000
[  522.968912][T14685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  522.968920][T14685] R13: 00007f9f88816128 R14: 00007f9f88816090 R15: 00007fff37ecdda8
[  522.968939][T14685]  </TASK>
[  524.491093][   T30] audit: type=1800 audit(8277292336.655:28): pid=14725 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1673" name="lu_gp_id" dev="configfs" ino=60909 res=0 errno=0
[  528.489891][T14846] zswap: compressor  not available
[  529.006773][T14864] bond0: invalid ARP target specified
[  529.475469][T14865] bond0: invalid ARP target specified
[  529.974181][T14887] netlink: 'syz.5.1694': attribute type 10 has an invalid length.
[  531.198143][T14930] netlink: 'syz.1.1703': attribute type 1 has an invalid length.
[  531.378965][T14929] NFSD: Failed to start, no listeners configured.
[  532.297053][   T30] audit: type=1800 audit(8277292344.469:29): pid=14977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1709" name="lu_gp_id" dev="configfs" ino=61849 res=0 errno=0
[  532.450743][T14978] tipc: Started in network mode
[  532.503686][T14978] tipc: Node identity ee00, cluster identity 4711
[  532.561777][T14978] tipc: Node number set to 60928
[  534.569273][T15000] Invalid ELF header magic: != ELF
[  534.861566][T15044] usb usb16: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  535.910421][T15069] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1722'.
[  535.910447][T15069] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  535.910463][T15069] batman_adv: batadv0: Removing interface: batadv_slave_0
[  535.931891][T15069] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  535.931909][T15069] batman_adv: batadv0: Removing interface: batadv_slave_1
[  536.535201][T15078] ubi31: attaching mtd0
[  536.536322][T15078] ubi31: scanning is finished
[  536.536353][T15078] ubi31 error: ubi_read_volume_table: the layout volume was not found
[  536.595178][ T5849] Bluetooth: hci3: unexpected event 0x10 length: 124 > 1
[  536.597052][ T6905] Bluetooth: hci3: hardware error 0x00
[  536.686887][ T5849] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5
[  536.922481][T15078] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  537.870318][T15118] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1731'.
[  538.651073][ T6905] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  539.892431][T15167] Process accounting paused
[  541.296489][T15208] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1753'.
[  541.567381][T15224] netlink: 'syz.3.1757': attribute type 15 has an invalid length.
[  541.607315][T15224] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1757'.
[  541.764531][T15231] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1759'.
[  541.816480][T15234] ubi0: attaching mtd0
[  541.832671][T15231] netlink: zone id is out of range
[  541.860214][T15231] netlink: get zone limit has 4 unknown bytes
[  541.877372][T15234] ubi0: scanning is finished
[  541.928718][T15234] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  541.967613][T15231] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1759'.
[  542.354178][T15234] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  544.135504][   T30] audit: type=1804 audit(8277292356.305:30): pid=15269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1765" name="file0" dev="tmpfs" ino=2630 res=1 errno=0
[  544.223720][T15272] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  545.287161][T15287] ubi0: attaching mtd0
[  545.316749][T15287] ubi0: scanning is finished
[  545.346557][T15287] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  545.684768][T15287] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  546.629926][T15302] kAFS: Invalid Command on /proc/fs/afs/cells file
[  547.498049][T15315] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1777'.
[  547.629319][T15315] ��\�: renamed from lo (while UP)
[  548.191439][T15327] futex_wake_op: syz.1.1780 tries to shift op by -2048; fix this program
[  548.369094][T15327] futex_wake_op: syz.1.1780 tries to shift op by -2048; fix this program
[  548.672227][T15341] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1782'.
[  548.716411][T15343] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1782'.
[  549.389234][T15357] sd 0:0:1:0: PR command failed: 1026
[  549.431962][T15357] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  549.502602][T15357] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  549.788284][T15379] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input18
[  549.874431][ T4984] ERROR: Out of memory at tomoyo_memory_ok.
[  551.332354][T15436] nfs4: Unknown parameter 'EC�H�];^��Y�ى��ZL�`�~^g��'
[  553.910487][T15504] sctp: [Deprecated]: syz.3.1809 (pid 15504) Use of struct sctp_assoc_value in delayed_ack socket option.
[  553.910487][T15504] Use struct sctp_sack_info instead
[  554.088699][T15511] netlink: 'syz.1.1811': attribute type 1 has an invalid length.
[  554.108404][T15511] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1811'.
[  554.168216][T15514] netlink: 'syz.1.1811': attribute type 1 has an invalid length.
[  554.246134][T15514] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1811'.
[  554.524172][T15516] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  555.051168][T15535] can: request_module (can-proto-0) failed.
[  557.812686][   T30] audit: type=1326 audit(8277292369.992:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15606 comm="syz.1.1831" exe="/root/ci-qemu-gce-upstream-auto/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9f8859ce59 code=0x0
[  558.263939][T15613] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1832'.
[  561.096961][T15662] ERROR: Out of memory at tomoyo_memory_ok.
[  561.528339][ T6905] Bluetooth: hci0: ACL packet for unknown connection handle 0
[  562.111459][T15687] nbd: must specify at least one socket
[  562.644430][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  562.660206][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  563.188295][T15674] kexec: Could not allocate control_code_buffer
[  563.646157][T15719] ERROR: Out of memory at tomoyo_memory_ok.
[  569.952154][   T30] audit: type=1804 audit(8277292382.138:32): pid=15788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1865" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  570.469117][T15784] Process accounting resumed
[  570.795318][T15801] netlink: 'syz.4.1866': attribute type 23 has an invalid length.
[  573.374864][T15866] netlink: 342 bytes leftover after parsing attributes in process `syz.5.1879'.
[  573.653949][T15869] ERROR: Out of memory at tomoyo_memory_ok.
[  574.639352][T15902] FAULT_INJECTION: forcing a failure.
[  574.639352][T15902] name failslab, interval 1, probability 0, space 0, times 0
[  574.698318][T15902] CPU: 0 UID: 0 PID: 15902 Comm: syz.5.1887 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  574.698346][T15902] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  574.698352][T15902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  574.698361][T15902] Call Trace:
[  574.698367][T15902]  <TASK>
[  574.698373][T15902]  dump_stack_lvl+0x100/0x190
[  574.698393][T15902]  should_fail_ex.cold+0x5/0xa
[  574.698413][T15902]  should_failslab+0xc2/0x120
[  574.698433][T15902]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  574.698455][T15902]  ? __kernfs_new_node+0xd2/0x9f0
[  574.698476][T15902]  __kernfs_new_node+0xd2/0x9f0
[  574.698496][T15902]  ? __pfx___kernfs_new_node+0x10/0x10
[  574.698517][T15902]  ? find_held_lock+0x2b/0x80
[  574.698535][T15902]  ? kernfs_root+0xee/0x2a0
[  574.698549][T15902]  ? kernfs_root+0xee/0x2a0
[  574.698570][T15902]  kernfs_new_node+0x11b/0x1a0
[  574.698591][T15902]  __kernfs_create_file+0x53/0x350
[  574.698615][T15902]  sysfs_add_file_mode_ns+0x207/0x3c0
[  574.698644][T15902]  internal_create_group+0x593/0xfb0
[  574.698672][T15902]  ? __pfx_internal_create_group+0x10/0x10
[  574.698694][T15902]  ? sysfs_create_dir_ns+0x14c/0x2b0
[  574.698710][T15902]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  574.698725][T15902]  ? find_held_lock+0x2b/0x80
[  574.698743][T15902]  ? kobject_add_internal+0x25f/0x930
[  574.698762][T15902]  internal_create_groups+0x9d/0x150
[  574.698781][T15902]  kobject_add_internal+0x317/0x930
[  574.698799][T15902]  kobject_init_and_add+0x121/0x180
[  574.698817][T15902]  ? __pfx_kobject_init_and_add+0x10/0x10
[  574.698838][T15902]  ? kernfs_remove_by_name_ns+0xbb/0x120
[  574.698862][T15902]  do_kmem_cache_create+0x5b7/0x690
[  574.698879][T15902]  ? kstrdup+0xb3/0xe0
[  574.698896][T15902]  __kmem_cache_create_args+0x386/0x420
[  574.698921][T15902]  mon_text_open+0x333/0x510
[  574.698936][T15902]  ? __pfx_mon_text_open+0x10/0x10
[  574.698952][T15902]  ? __pfx_mon_text_ctor+0x10/0x10
[  574.698967][T15902]  ? __pfx_apparmor_file_open+0x10/0x10
[  574.698983][T15902]  ? lockdown_is_locked_down+0x3d/0x140
[  574.699005][T15902]  ? bpf_lsm_locked_down+0x9/0x10
[  574.699024][T15902]  ? __pfx_mon_text_open+0x10/0x10
[  574.699037][T15902]  full_proxy_open_regular+0x1b6/0x370
[  574.699062][T15902]  do_dentry_open+0x6ab/0x14d0
[  574.699080][T15902]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  574.699106][T15902]  vfs_open+0x82/0x3f0
[  574.699129][T15902]  path_openat+0x208c/0x31a0
[  574.699154][T15902]  ? __pfx_path_openat+0x10/0x10
[  574.699179][T15902]  do_file_open+0x20e/0x430
[  574.699199][T15902]  ? __pfx_do_file_open+0x10/0x10
[  574.699232][T15902]  ? alloc_fd+0x476/0x790
[  574.699251][T15902]  ? do_getname+0x191/0x390
[  574.699274][T15902]  do_sys_openat2+0x10d/0x1e0
[  574.699296][T15902]  ? __pfx_do_sys_openat2+0x10/0x10
[  574.699318][T15902]  ? do_sock_setsockopt+0x101/0x1d0
[  574.699335][T15902]  ? kfree+0x1dd/0x6c0
[  574.699359][T15902]  __x64_sys_openat+0x12d/0x210
[  574.699382][T15902]  ? __pfx___x64_sys_openat+0x10/0x10
[  574.699407][T15902]  ? rcu_is_watching+0x12/0xc0
[  574.699427][T15902]  do_syscall_64+0x115/0x840
[  574.699446][T15902]  ? clear_bhb_loop+0x40/0x90
[  574.699465][T15902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  574.699480][T15902] RIP: 0033:0x7fb3fdd9ce59
[  574.699493][T15902] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  574.699507][T15902] RSP: 002b:00007fb3fed0d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  574.699522][T15902] RAX: ffffffffffffffda RBX: 00007fb3fe016090 RCX: 00007fb3fdd9ce59
[  574.699532][T15902] RDX: 0000000000000a00 RSI: 0000200000000200 RDI: ffffffffffffff9c
[  574.699541][T15902] RBP: 00007fb3fde32d6f R08: 0000000000000000 R09: 0000000000000000
[  574.699550][T15902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  574.699559][T15902] R13: 00007fb3fe016128 R14: 00007fb3fe016090 R15: 00007fff76b80e08
[  574.699580][T15902]  </TASK>
[  575.230579][T15902] kobject: kobject_add_internal failed for mon_text_ffff88807acbdc00 (error: -12 parent: slab)
[  575.246343][T15902] SLUB: Unable to add cache mon_text_ffff88807acbdc00 to sysfs
[  575.609927][T15909] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1889'.
[  575.982389][T15909] ERROR: Out of memory at tomoyo_memory_ok.
[  576.063440][T15940] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1892'.
[  576.481445][T15950] netlink: 'syz.4.1894': attribute type 10 has an invalid length.
[  576.520682][T15950] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1894'.
[  576.794353][T15960] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1897'.
[  582.087034][T16070] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1921'.
[  582.671680][ T6905] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  582.990195][T16073] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz.1.1922: bg 1: bad block bitmap checksum
[  583.024202][T16073] EXT4-fs error (device sda1) in ext4_mb_clear_bb:6679: Filesystem failed CRC
[  583.363812][T16073] QAT: Stopping all acceleration devices.
[  583.674629][ T8486] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1295 with max blocks 45 with error 117
[  583.753214][ T8486] EXT4-fs (sda1): This should not happen!! Data will be lost
[  583.753214][ T8486] 
[  583.876053][ T8486] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1273 with max blocks 22 with error 117
[  583.965072][ T8486] EXT4-fs (sda1): This should not happen!! Data will be lost
[  583.965072][ T8486] 
[  584.044578][ T8486] EXT4-fs (sda1): Delayed block allocation failed for inode 2028 at logical offset 1273 with max blocks 1 with error 117
[  584.120111][ T8486] EXT4-fs (sda1): This should not happen!! Data will be lost
[  584.120111][ T8486] 
[  584.717993][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout
[  586.210804][T16162] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1937'.
[  586.789359][ T6905] Bluetooth: hci0: command 0x0c1a tx timeout
[  587.145276][T16188] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1940'.
[  587.305897][T16189] netlink: 338 bytes leftover after parsing attributes in process `syz.1.1940'.
[  589.273336][T16240] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1949'.
[  589.679265][ T5849] Bluetooth: hci4: unexpected subevent 0x01 length: 5 < 18
[  590.108219][T16245] random: crng reseeded on system resumption
[  591.592816][T16281] FAULT_INJECTION: forcing a failure.
[  591.592816][T16281] name failslab, interval 1, probability 0, space 0, times 0
[  591.790298][T16281] CPU: 0 UID: 0 PID: 16281 Comm: syz.4.1957 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  591.790327][T16281] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  591.790332][T16281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  591.790342][T16281] Call Trace:
[  591.790348][T16281]  <TASK>
[  591.790353][T16281]  dump_stack_lvl+0x100/0x190
[  591.790373][T16281]  should_fail_ex.cold+0x5/0xa
[  591.790394][T16281]  should_failslab+0xc2/0x120
[  591.790413][T16281]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  591.790436][T16281]  ? security_inode_alloc+0x3b/0x2c0
[  591.790453][T16281]  ? lockdep_init_map_type+0x5c/0x250
[  591.790479][T16281]  security_inode_alloc+0x3b/0x2c0
[  591.790495][T16281]  inode_init_always_gfp+0xc77/0xfb0
[  591.790517][T16281]  alloc_inode+0x8e/0x250
[  591.790539][T16281]  new_inode+0x22/0x1c0
[  591.790562][T16281]  shmem_get_inode+0x1e3/0xfb0
[  591.790583][T16281]  ? __pfx_shmem_get_inode+0x10/0x10
[  591.790608][T16281]  __shmem_file_setup+0x382/0x460
[  591.790628][T16281]  ? __pfx___shmem_file_setup+0x10/0x10
[  591.790650][T16281]  ? vm_area_alloc+0x1f/0x160
[  591.790673][T16281]  shmem_zero_setup+0x96/0x1b0
[  591.790689][T16281]  __mmap_region+0x2509/0x2dd0
[  591.790715][T16281]  ? __pfx___mmap_region+0x10/0x10
[  591.790752][T16281]  ? __lock_acquire+0x4a5/0x2630
[  591.790774][T16281]  ? do_raw_spin_unlock+0x145/0x1e0
[  591.790791][T16281]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  591.790820][T16281]  ? rcu_is_watching+0x12/0xc0
[  591.790845][T16281]  ? rcu_is_watching+0x12/0xc0
[  591.790861][T16281]  ? finish_task_switch.isra.0+0x2cb/0x1010
[  591.790880][T16281]  ? lockdep_hardirqs_on+0x78/0x100
[  591.790938][T16281]  mmap_region+0x35d/0x620
[  591.790954][T16281]  ? rcu_is_watching+0x12/0xc0
[  591.790971][T16281]  ? __pfx_mmap_region+0x10/0x10
[  591.790987][T16281]  ? cap_mmap_addr+0x4b/0x120
[  591.791001][T16281]  ? bpf_lsm_mmap_addr+0x9/0x30
[  591.791016][T16281]  ? security_mmap_addr+0x71/0x1e0
[  591.791035][T16281]  ? __get_unmapped_area+0x255/0x3e0
[  591.791055][T16281]  do_mmap+0xc63/0x12f0
[  591.791076][T16281]  ? __pfx_do_mmap+0x10/0x10
[  591.791094][T16281]  ? __pfx_down_write_killable+0x10/0x10
[  591.791120][T16281]  vm_mmap_pgoff+0x29e/0x470
[  591.791142][T16281]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  591.791162][T16281]  ? do_futex+0x192/0x350
[  591.791177][T16281]  ? __pfx_do_futex+0x10/0x10
[  591.791196][T16281]  ksys_mmap_pgoff+0xe4/0x610
[  591.791214][T16281]  ? __x64_sys_futex+0x358/0x4d0
[  591.791229][T16281]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  591.791246][T16281]  ? xfd_validate_state+0x129/0x190
[  591.791261][T16281]  ? ksys_write+0x1ac/0x250
[  591.791280][T16281]  __x64_sys_mmap+0x125/0x190
[  591.791298][T16281]  do_syscall_64+0x115/0x840
[  591.791317][T16281]  ? clear_bhb_loop+0x40/0x90
[  591.791335][T16281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.791350][T16281] RIP: 0033:0x7f9690d9ce59
[  591.791363][T16281] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  591.791378][T16281] RSP: 002b:00007f9691cfb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  591.791393][T16281] RAX: ffffffffffffffda RBX: 00007f9691016090 RCX: 00007f9690d9ce59
[  591.791403][T16281] RDX: 00000000000000df RSI: 000000000402200d RDI: 0000000000000000
[  591.791412][T16281] RBP: 00007f9690e32d6f R08: 0000000000000401 R09: 0000000000008000
[  591.791421][T16281] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  591.791430][T16281] R13: 00007f9691016128 R14: 00007f9691016090 R15: 00007ffc55ead0f8
[  591.791450][T16281]  </TASK>
[  592.873838][ T5849] Bluetooth: hci4: unexpected event for opcode 0x7c89
[  595.514769][T16347] .^: entered promiscuous mode
[  595.709964][T16356] netlink: 146 bytes leftover after parsing attributes in process `syz.4.1972'.
[  597.155824][T16401] 
[  597.434463][T16413] scsi_dev_info_list_add_str: bad dev info string '' '' ''
[  597.473202][ T4981] ERROR: Out of memory at tomoyo_memory_ok.
[  598.368890][   T30] audit: type=1800 audit(8277292410.562:33): pid=16422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1985" name="file0" dev="tmpfs" ino=2143 res=0 errno=0
[  599.005430][T16449] ERROR: Out of memory at tomoyo_memory_ok.
[  599.697749][T16459] can: request_module (can-proto-3) failed.
[  600.047456][T16474] ERROR: Out of memory at tomoyo_memory_ok.
[  600.071477][T16475] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1999'.
[  600.192228][T16479] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1999'.
[  600.555314][T16476] FAULT_INJECTION: forcing a failure.
[  600.555314][T16476] name failslab, interval 1, probability 0, space 0, times 0
[  600.613801][T16476] CPU: 0 UID: 0 PID: 16476 Comm: syz.5.1997 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  600.613829][T16476] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  600.613835][T16476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  600.613845][T16476] Call Trace:
[  600.613850][T16476]  <TASK>
[  600.613856][T16476]  dump_stack_lvl+0x100/0x190
[  600.613877][T16476]  should_fail_ex.cold+0x5/0xa
[  600.613899][T16476]  should_failslab+0xc2/0x120
[  600.613918][T16476]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  600.613940][T16476]  ? anon_vma_clone+0x2ba/0xcd0
[  600.613963][T16476]  anon_vma_clone+0x2ba/0xcd0
[  600.613988][T16476]  __split_vma+0x51f/0xda0
[  600.614012][T16476]  ? __pfx___split_vma+0x10/0x10
[  600.614051][T16476]  vma_modify+0x12ad/0x25c0
[  600.614081][T16476]  ? __pfx_vma_modify+0x10/0x10
[  600.614115][T16476]  vma_modify_policy+0x238/0x300
[  600.614139][T16476]  ? __pfx_vma_modify_policy+0x10/0x10
[  600.614161][T16476]  ? find_held_lock+0x2b/0x80
[  600.614194][T16476]  mbind_range+0x175/0x550
[  600.614217][T16476]  do_mbind+0x7dc/0xfd0
[  600.614241][T16476]  ? __pfx_do_mbind+0x10/0x10
[  600.614261][T16476]  ? ksys_write+0x190/0x250
[  600.614286][T16476]  ? __pfx_get_nodes+0x10/0x10
[  600.614307][T16476]  kernel_mbind+0x1b7/0x200
[  600.614328][T16476]  ? __pfx_kernel_mbind+0x10/0x10
[  600.614350][T16476]  ? rcu_is_watching+0x12/0xc0
[  600.614369][T16476]  do_syscall_64+0x115/0x840
[  600.614388][T16476]  ? clear_bhb_loop+0x40/0x90
[  600.614406][T16476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.614421][T16476] RIP: 0033:0x7fb3fdd9ce59
[  600.614434][T16476] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  600.614449][T16476] RSP: 002b:00007fb3fed0d028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  600.614464][T16476] RAX: ffffffffffffffda RBX: 00007fb3fe016090 RCX: 00007fb3fdd9ce59
[  600.614474][T16476] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000
[  600.614482][T16476] RBP: 00007fb3fde32d6f R08: 0000000000000006 R09: 0000000000000002
[  600.614491][T16476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  600.614500][T16476] R13: 00007fb3fe016128 R14: 00007fb3fe016090 R15: 00007fff76b80e08
[  600.614520][T16476]  </TASK>
[  601.419017][T16482] Process accounting paused
[  601.874499][T16500] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2004'.
[  602.052915][T16508] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2006'.
[  602.072458][T16510] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2007'.
[  602.993663][T16530] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off
[  603.091584][T16530] pci 0000:00:01.3: PCI INT A: no GSI
[  603.586039][T16539] netlink: 'syz.3.2012': attribute type 23 has an invalid length.
[  604.309075][T16567] FAULT_INJECTION: forcing a failure.
[  604.309075][T16567] name failslab, interval 1, probability 0, space 0, times 0
[  604.341565][T16567] CPU: 0 UID: 0 PID: 16567 Comm: syz.4.2017 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  604.341592][T16567] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  604.341598][T16567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  604.341607][T16567] Call Trace:
[  604.341612][T16567]  <TASK>
[  604.341618][T16567]  dump_stack_lvl+0x100/0x190
[  604.341638][T16567]  should_fail_ex.cold+0x5/0xa
[  604.341664][T16567]  ? security_inode_init_security+0x113/0x370
[  604.341689][T16567]  should_failslab+0xc2/0x120
[  604.341707][T16567]  __kmalloc_noprof+0xe0/0x850
[  604.341725][T16567]  security_inode_init_security+0x113/0x370
[  604.341749][T16567]  ? __pfx_shmem_initxattrs+0x10/0x10
[  604.341768][T16567]  ? __pfx_security_inode_init_security+0x10/0x10
[  604.341794][T16567]  ? make_vfsgid+0xf1/0x140
[  604.341809][T16567]  shmem_mknod+0x2ce/0x480
[  604.341831][T16567]  ? __pfx_shmem_mknod+0x10/0x10
[  604.341855][T16567]  vfs_create+0x301/0x6c0
[  604.341871][T16567]  filename_mknodat+0x2de/0x7f0
[  604.341893][T16567]  ? __pfx_filename_mknodat+0x10/0x10
[  604.341912][T16567]  ? strncpy_from_user+0x19d/0x2d0
[  604.341934][T16567]  ? do_getname+0x191/0x390
[  604.341957][T16567]  __x64_sys_mknod+0x8f/0xc0
[  604.341977][T16567]  do_syscall_64+0x115/0x840
[  604.341997][T16567]  ? clear_bhb_loop+0x40/0x90
[  604.342016][T16567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  604.342031][T16567] RIP: 0033:0x7f9690d9ce59
[  604.342043][T16567] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  604.342058][T16567] RSP: 002b:00007f9691cfb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  604.342073][T16567] RAX: ffffffffffffffda RBX: 00007f9691016090 RCX: 00007f9690d9ce59
[  604.342082][T16567] RDX: 0000000000000009 RSI: 0000000000000002 RDI: 0000000000000000
[  604.342091][T16567] RBP: 00007f9690e32d6f R08: 0000000000000000 R09: 0000000000000000
[  604.342099][T16567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  604.342108][T16567] R13: 00007f9691016128 R14: 00007f9691016090 R15: 00007ffc55ead0f8
[  604.342127][T16567]  </TASK>
[  606.195172][T16597] openvswitch: netlink: IPv6 tunnel dst address is zero
[  606.232784][T16600] futex_wake_op: syz.5.2028 tries to shift op by -2048; fix this program
[  606.749319][T16612] workqueue: name exceeds WQ_NAME_LEN. Truncating to: 211!phy1!netdev:wlan1!rc_rateid
[  607.306958][T16612] sysfs: cannot create duplicate filename '/class/ieee80211/211!phy1!netdev:wlan1!rc_rateidx_mcs_mas'
[  607.375584][T16612] CPU: 0 UID: 0 PID: 16612 Comm: syz.5.2030 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  607.375610][T16612] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  607.375616][T16612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  607.375624][T16612] Call Trace:
[  607.375629][T16612]  <TASK>
[  607.375635][T16612]  dump_stack_lvl+0x100/0x190
[  607.375655][T16612]  sysfs_warn_dup.cold+0x1c/0x28
[  607.375677][T16612]  sysfs_do_create_link_sd+0x113/0x140
[  607.375697][T16612]  sysfs_create_link+0x61/0xc0
[  607.375712][T16612]  device_add+0x675/0x1950
[  607.375731][T16612]  ? __pfx_device_add+0x10/0x10
[  607.375747][T16612]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  607.375770][T16612]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[  607.375798][T16612]  wiphy_register+0x1edd/0x2d90
[  607.375815][T16612]  ? __rtnl_unlock+0xb9/0xf0
[  607.375838][T16612]  ? __pfx_wiphy_register+0x10/0x10
[  607.375856][T16612]  ? __asan_memset+0x23/0x50
[  607.375879][T16612]  ? minstrel_ht_alloc+0x5e6/0x7f0
[  607.375910][T16612]  ieee80211_register_hw+0x3055/0x4570
[  607.375942][T16612]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  607.375964][T16612]  ? __pfx___debug_object_init+0x10/0x10
[  607.375987][T16612]  ? find_held_lock+0x2b/0x80
[  607.376007][T16612]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  607.376028][T16612]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  607.376051][T16612]  ? __hrtimer_setup+0x208/0x330
[  607.376069][T16612]  mac80211_hwsim_new_radio+0x2a01/0x5aa0
[  607.376100][T16612]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  607.376122][T16612]  ? __asan_memcpy+0x3c/0x60
[  607.376149][T16612]  hwsim_new_radio_nl+0xc5f/0x1370
[  607.376167][T16612]  ? rcu_is_watching+0x12/0xc0
[  607.376185][T16612]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  607.376209][T16612]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0
[  607.376232][T16612]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0
[  607.376259][T16612]  genl_family_rcv_msg_doit+0x214/0x300
[  607.376283][T16612]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  607.376306][T16612]  ? genl_get_cmd+0x3e7/0x760
[  607.376331][T16612]  ? bpf_lsm_capable+0x9/0x10
[  607.376352][T16612]  ? security_capable+0x80/0x260
[  607.376368][T16612]  ? ns_capable+0xd2/0xf0
[  607.376386][T16612]  genl_rcv_msg+0x560/0x800
[  607.376410][T16612]  ? __pfx_genl_rcv_msg+0x10/0x10
[  607.376432][T16612]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  607.376458][T16612]  netlink_rcv_skb+0x159/0x420
[  607.376477][T16612]  ? __pfx_genl_rcv_msg+0x10/0x10
[  607.376498][T16612]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  607.376526][T16612]  ? netlink_deliver_tap+0x1ae/0xcc0
[  607.376547][T16612]  genl_rcv+0x28/0x40
[  607.376565][T16612]  netlink_unicast+0x585/0x850
[  607.376587][T16612]  ? __pfx_netlink_unicast+0x10/0x10
[  607.376612][T16612]  netlink_sendmsg+0x8b0/0xda0
[  607.376635][T16612]  ? __pfx_netlink_sendmsg+0x10/0x10
[  607.376653][T16612]  ? __import_iovec+0x1d2/0x640
[  607.376675][T16612]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  607.376694][T16612]  ____sys_sendmsg+0x9e1/0xb70
[  607.376712][T16612]  ? __pfx_netlink_sendmsg+0x10/0x10
[  607.376733][T16612]  ? __pfx_____sys_sendmsg+0x10/0x10
[  607.376755][T16612]  ? rcu_is_watching+0x12/0xc0
[  607.376771][T16612]  ? ___sys_sendmsg+0x19d/0x1e0
[  607.376789][T16612]  ? kfree+0x1dd/0x6c0
[  607.376813][T16612]  ___sys_sendmsg+0x190/0x1e0
[  607.376834][T16612]  ? __pfx____sys_sendmsg+0x10/0x10
[  607.376877][T16612]  __sys_sendmsg+0x170/0x220
[  607.376893][T16612]  ? __pfx___sys_sendmsg+0x10/0x10
[  607.376908][T16612]  ? __x64_sys_futex+0x34f/0x4d0
[  607.376930][T16612]  ? rcu_is_watching+0x12/0xc0
[  607.376950][T16612]  do_syscall_64+0x115/0x840
[  607.376970][T16612]  ? clear_bhb_loop+0x40/0x90
[  607.376988][T16612]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.377003][T16612] RIP: 0033:0x7fb3fdd9ce59
[  607.377016][T16612] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  607.377030][T16612] RSP: 002b:00007fb3fed0d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  607.377045][T16612] RAX: ffffffffffffffda RBX: 00007fb3fe016090 RCX: 00007fb3fdd9ce59
[  607.377054][T16612] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000002
[  607.377063][T16612] RBP: 00007fb3fde32d6f R08: 0000000000000000 R09: 0000000000000000
[  607.377072][T16612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  607.377080][T16612] R13: 00007fb3fe016128 R14: 00007fb3fe016090 R15: 00007fff76b80e08
[  607.377099][T16612]  </TASK>
[  608.453660][T16628] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2032'.
[  610.804434][T16656] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2039'.
[  610.842295][T16656] bridge0: port 2(bridge_slave_1) entered disabled state
[  610.849536][T16656] bridge0: port 1(bridge_slave_0) entered disabled state
[  610.907906][T16656] bridge0: entered promiscuous mode
[  611.496605][ T5849] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  612.291736][T16673] ERROR: Out of memory at tomoyo_memory_ok.
[  612.358589][T16669] ERROR: Out of memory at tomoyo_memory_ok.
[  612.797681][T16679] bond0: no command found in slaves file - use +ifname or -ifname
[  613.131750][T16687] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  613.272475][T16684] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  613.844854][T16701] NFSD: Failed to start, no listeners configured.
[  614.061707][T16698] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2048'.
[  614.820362][T16720] ERROR: Out of memory at tomoyo_memory_ok.
[  616.667270][T16749] usb usb16: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  617.550555][ T8479] EXT4-fs (sda1): Delayed block allocation failed for inode 2027 at logical offset 10 with max blocks 4 with error 117
[  617.630733][ T8479] EXT4-fs (sda1): This should not happen!! Data will be lost
[  617.630733][ T8479] 
[  618.419857][T16775] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[  618.452602][T16777] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[  618.473837][T16775] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[  618.521059][T16775] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[  619.017088][ T6905] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  619.032644][ T6905] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  619.044505][ T6905] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  619.052764][ T6905] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  619.063138][ T6905] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  619.206946][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  619.219175][ T5849] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  619.227022][ T5849] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  619.237201][ T5849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  619.246806][ T5849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  620.577120][T16823] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2076'.
[  620.839224][   T30] audit: type=1800 audit(8277292433.043:34): pid=16828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2077" name="version" dev="configfs" ino=72758 res=0 errno=0
[  620.874887][T16828] ERROR: Out of memory at tomoyo_memory_ok.
[  621.170066][ T6905] Bluetooth: hci1: command tx timeout
[  621.329641][ T6905] Bluetooth: hci2: command tx timeout
[  622.043871][T16786] bridge0: port 1(bridge_slave_0) entered blocking state
[  622.070848][T16786] bridge0: port 1(bridge_slave_0) entered disabled state
[  622.102243][T16786] bridge_slave_0: entered allmulticast mode
[  622.134008][T16786] bridge_slave_0: entered promiscuous mode
[  622.260301][T16786] bridge0: port 2(bridge_slave_1) entered blocking state
[  622.292417][T16786] bridge0: port 2(bridge_slave_1) entered disabled state
[  622.320926][T16786] bridge_slave_1: entered allmulticast mode
[  622.349929][T16786] bridge_slave_1: entered promiscuous mode
[  622.636159][T16786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  622.741138][T16786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  622.859708][T16853] random: crng reseeded on system resumption
[  622.916708][T16789] bridge0: port 1(bridge_slave_0) entered blocking state
[  622.949958][T16789] bridge0: port 1(bridge_slave_0) entered disabled state
[  622.980282][T16789] bridge_slave_0: entered allmulticast mode
[  623.017398][T16789] bridge_slave_0: entered promiscuous mode
[  623.042916][T16786] team0: Port device team_slave_0 added
[  623.070683][T16786] team0: Port device team_slave_1 added
[  623.095285][T16789] bridge0: port 2(bridge_slave_1) entered blocking state
[  623.127228][T16789] bridge0: port 2(bridge_slave_1) entered disabled state
[  623.168030][T16789] bridge_slave_1: entered allmulticast mode
[  623.207680][T16789] bridge_slave_1: entered promiscuous mode
[  623.248575][ T6905] Bluetooth: hci1: command tx timeout
[  623.325358][T16786] batman_adv: batadv0: Adding interface: batadv_slave_0
[  623.360743][T16786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  623.414172][ T6905] Bluetooth: hci2: command tx timeout
[  623.495302][T16786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  623.597060][T16786] batman_adv: batadv0: Adding interface: batadv_slave_1
[  623.638506][T16786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  623.753145][T16786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  623.832439][T16789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  623.916262][T16789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  624.053870][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  624.063583][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  624.082443][T16786] hsr_slave_0: entered promiscuous mode
[  624.112425][T16786] hsr_slave_1: entered promiscuous mode
[  624.138527][T16786] debugfs: 'hsr0' already exists in 'hsr'
[  624.164685][T16786] Cannot create hsr debugfs directory
[  624.195094][T16789] team0: Port device team_slave_0 added
[  624.227128][T16789] team0: Port device team_slave_1 added
[  624.455215][T16789] batman_adv: batadv0: Adding interface: batadv_slave_0
[  624.483394][T16789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  624.617454][T16789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  624.723886][T16789] batman_adv: batadv0: Adding interface: batadv_slave_1
[  624.752034][T16789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  624.870561][T16789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  625.203800][T16789] hsr_slave_0: entered promiscuous mode
[  625.232061][T16789] hsr_slave_1: entered promiscuous mode
[  625.264605][T16789] debugfs: 'hsr0' already exists in 'hsr'
[  625.290378][T16789] Cannot create hsr debugfs directory
[  625.328033][ T6905] Bluetooth: hci1: command tx timeout
[  625.487364][ T6905] Bluetooth: hci2: command tx timeout
[  625.938800][T16786] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  626.318956][T16786] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  626.514720][T16786] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  626.753105][T16786] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  627.209253][T16862] ERROR: Out of memory at tomoyo_memory_ok.
[  627.367952][T16786] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  627.408768][ T6905] Bluetooth: hci1: command tx timeout
[  627.465191][T16786] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  627.500008][T16786] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  627.553527][T16786] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  627.566506][ T6905] Bluetooth: hci2: command tx timeout
[  627.602062][T16786] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  627.644002][T16786] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  627.792569][T16786] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  627.822205][T16786] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  628.135046][T16789] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  628.176575][T16789] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  628.211428][T16789] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  628.253694][T16789] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  628.291629][T16789] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  628.327912][T16789] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  628.372877][T16789] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  628.408947][T16789] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  628.618125][T16786] 8021q: adding VLAN 0 to HW filter on device bond0
[  628.703918][T16786] 8021q: adding VLAN 0 to HW filter on device team0
[  628.752898][ T8478] bridge0: port 1(bridge_slave_0) entered blocking state
[  628.760009][ T8478] bridge0: port 1(bridge_slave_0) entered forwarding state
[  628.821201][ T8479] bridge0: port 2(bridge_slave_1) entered blocking state
[  628.828313][ T8479] bridge0: port 2(bridge_slave_1) entered forwarding state
[  628.941975][T16789] 8021q: adding VLAN 0 to HW filter on device bond0
[  629.051206][T16789] 8021q: adding VLAN 0 to HW filter on device team0
[  629.143534][ T8479] bridge0: port 1(bridge_slave_0) entered blocking state
[  629.150659][ T8479] bridge0: port 1(bridge_slave_0) entered forwarding state
[  629.253545][ T8479] bridge0: port 2(bridge_slave_1) entered blocking state
[  629.260653][ T8479] bridge0: port 2(bridge_slave_1) entered forwarding state
[  629.706036][T16895] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2086'.
[  630.481040][T16786] 8021q: adding VLAN 0 to HW filter on device batadv0
[  631.048645][T16789] 8021q: adding VLAN 0 to HW filter on device batadv0
[  631.749740][T16932] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  631.844901][T16786] veth0_vlan: entered promiscuous mode
[  631.907968][T16929] random: crng reseeded on system resumption
[  631.938518][T16786] veth1_vlan: entered promiscuous mode
[  632.349906][T16786] veth0_macvtap: entered promiscuous mode
[  632.387188][T16786] veth1_macvtap: entered promiscuous mode
[  632.473002][T16789] veth0_vlan: entered promiscuous mode
[  632.503344][T16786] batman_adv: batadv0: Interface activated: batadv_slave_0
[  632.546943][T16789] veth1_vlan: entered promiscuous mode
[  632.582692][T16786] batman_adv: batadv0: Interface activated: batadv_slave_1
[  632.660809][ T5856] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  632.735733][ T5856] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  632.769598][ T5856] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  632.813302][ T5856] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  632.849481][T16789] veth0_macvtap: entered promiscuous mode
[  632.911561][T16789] veth1_macvtap: entered promiscuous mode
[  633.087999][T16789] batman_adv: batadv0: Interface activated: batadv_slave_0
[  633.100658][T16957] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  633.186933][T16789] batman_adv: batadv0: Interface activated: batadv_slave_1
[  633.210770][ T8486] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  633.254238][ T8486] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  633.295457][ T5856] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  633.323072][ T5856] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  633.392763][ T5856] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  633.425760][ T5856] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  633.510197][ T8479] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  633.576402][ T8479] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  634.032193][ T5856] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  634.073052][ T5856] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  634.249231][ T5856] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  634.293720][ T5856] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  634.380871][ T8486] bridge_slave_1: left allmulticast mode
[  634.403418][ T8486] bridge_slave_1: left promiscuous mode
[  634.429431][ T8486] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.476346][ T8486] bridge_slave_0: left allmulticast mode
[  634.504979][ T8486] bridge_slave_0: left promiscuous mode
[  634.531654][ T8486] bridge0: port 1(bridge_slave_0) entered disabled state
[  635.074872][ T8486] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  635.109311][ T8486] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  635.149686][ T8486] bond0 (unregistering): Released all slaves
[  635.281670][ T8486] ovs_: left promiscuous mode
[  635.883093][T16975] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  636.598859][ T8486] hsr_slave_0: left promiscuous mode
[  636.646454][ T8486] hsr_slave_1: left promiscuous mode
[  636.712190][ T8486] veth1_macvtap: left allmulticast mode
[  636.760100][ T8486] veth1_macvtap: left promiscuous mode
[  636.808623][ T8486] veth0_macvtap: left promiscuous mode
[  636.858894][ T8486] veth1_vlan: left promiscuous mode
[  636.868613][T17002] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  636.908018][ T8486] veth0_vlan: left promiscuous mode
[  638.031618][ T8486] team0 (unregistering): Port device team_slave_1 removed
[  638.116027][ T8486] team0 (unregistering): Port device team_slave_0 removed
[  639.364500][T17055] FAULT_INJECTION: forcing a failure.
[  639.364500][T17055] name failslab, interval 1, probability 0, space 0, times 0
[  639.452259][T17055] CPU: 0 UID: 0 PID: 17055 Comm: syz.6.2110 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  639.452287][T17055] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  639.452293][T17055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  639.452303][T17055] Call Trace:
[  639.452308][T17055]  <TASK>
[  639.452314][T17055]  dump_stack_lvl+0x100/0x190
[  639.452334][T17055]  should_fail_ex.cold+0x5/0xa
[  639.452353][T17055]  should_failslab+0xc2/0x120
[  639.452372][T17055]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  639.452395][T17055]  ? do_getname+0x35/0x390
[  639.452417][T17055]  ? __might_fault+0x111/0x140
[  639.452442][T17055]  do_getname+0x35/0x390
[  639.452464][T17055]  do_sys_openat2+0xc5/0x1e0
[  639.452486][T17055]  ? __pfx_do_sys_openat2+0x10/0x10
[  639.452509][T17055]  ? find_held_lock+0x2b/0x80
[  639.452531][T17055]  __x64_sys_openat+0x12d/0x210
[  639.452553][T17055]  ? __pfx___x64_sys_openat+0x10/0x10
[  639.452576][T17055]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  639.452598][T17055]  ? syscall_user_dispatch+0x76/0x130
[  639.452616][T17055]  do_syscall_64+0x115/0x840
[  639.452636][T17055]  ? clear_bhb_loop+0x40/0x90
[  639.452653][T17055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.452668][T17055] RIP: 0033:0x7f1b5399ce59
[  639.452681][T17055] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  639.452695][T17055] RSP: 002b:00007f1b548ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  639.452710][T17055] RAX: ffffffffffffffda RBX: 00007f1b53c16090 RCX: 00007f1b5399ce59
[  639.452720][T17055] RDX: 0000000000141040 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  639.452729][T17055] RBP: 00007f1b53a32d6f R08: 0000000000000000 R09: 0000000000000000
[  639.452738][T17055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  639.452746][T17055] R13: 00007f1b53c16128 R14: 00007f1b53c16090 R15: 00007ffdcb167ef8
[  639.452766][T17055]  </TASK>
[  642.403132][T17101] ERROR: Out of memory at tomoyo_memory_ok.
[  642.445804][T17101] FAULT_INJECTION: forcing a failure.
[  642.445804][T17101] name failslab, interval 1, probability 0, space 0, times 0
[  642.534864][T17101] CPU: 0 UID: 0 PID: 17101 Comm: syz.1.2117 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  642.534895][T17101] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  642.534901][T17101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  642.534911][T17101] Call Trace:
[  642.534918][T17101]  <TASK>
[  642.534924][T17101]  dump_stack_lvl+0x100/0x190
[  642.534946][T17101]  should_fail_ex.cold+0x5/0xa
[  642.534966][T17101]  should_failslab+0xc2/0x120
[  642.534984][T17101]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  642.535008][T17101]  ? alloc_empty_file+0x5b/0x1c0
[  642.535033][T17101]  alloc_empty_file+0x5b/0x1c0
[  642.535055][T17101]  alloc_file_pseudo+0x13a/0x230
[  642.535084][T17101]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  642.535112][T17101]  __shmem_file_setup+0x205/0x460
[  642.535135][T17101]  ? __pfx___shmem_file_setup+0x10/0x10
[  642.535157][T17101]  ? vm_area_alloc+0x1f/0x160
[  642.535181][T17101]  shmem_zero_setup+0x96/0x1b0
[  642.535198][T17101]  __mmap_region+0x2509/0x2dd0
[  642.535224][T17101]  ? __pfx___mmap_region+0x10/0x10
[  642.535256][T17101]  ? is_bpf_text_address+0x8a/0x1a0
[  642.535279][T17101]  ? do_raw_spin_lock+0x128/0x260
[  642.535307][T17101]  ? do_raw_spin_lock+0x128/0x260
[  642.535323][T17101]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  642.535345][T17101]  ? hrtimer_start_range_ns+0x860/0x1a50
[  642.535363][T17101]  ? find_held_lock+0x2b/0x80
[  642.535380][T17101]  ? finish_task_switch.isra.0+0x2c6/0x1010
[  642.535429][T17101]  mmap_region+0x35d/0x620
[  642.535444][T17101]  ? rcu_is_watching+0x12/0xc0
[  642.535460][T17101]  ? __pfx_mmap_region+0x10/0x10
[  642.535476][T17101]  ? cap_mmap_addr+0x4b/0x120
[  642.535490][T17101]  ? bpf_lsm_mmap_addr+0x9/0x30
[  642.535504][T17101]  ? security_mmap_addr+0x71/0x1e0
[  642.535522][T17101]  ? __get_unmapped_area+0x255/0x3e0
[  642.535542][T17101]  do_mmap+0xc63/0x12f0
[  642.535563][T17101]  ? __pfx_do_mmap+0x10/0x10
[  642.535580][T17101]  ? __pfx_down_write_killable+0x10/0x10
[  642.535607][T17101]  vm_mmap_pgoff+0x29e/0x470
[  642.535629][T17101]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  642.535648][T17101]  ? do_futex+0x192/0x350
[  642.535663][T17101]  ? __pfx_do_futex+0x10/0x10
[  642.535678][T17101]  ? __pfx___might_resched+0x10/0x10
[  642.535696][T17101]  ksys_mmap_pgoff+0xe4/0x610
[  642.535713][T17101]  ? __x64_sys_futex+0x358/0x4d0
[  642.535729][T17101]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  642.535745][T17101]  ? xfd_validate_state+0x129/0x190
[  642.535760][T17101]  ? exit_to_user_mode_loop+0xf3/0x670
[  642.535816][T17101]  __x64_sys_mmap+0x125/0x190
[  642.535839][T17101]  do_syscall_64+0x115/0x840
[  642.535860][T17101]  ? clear_bhb_loop+0x40/0x90
[  642.535878][T17101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  642.535894][T17101] RIP: 0033:0x7f9f8859ce59
[  642.535908][T17101] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  642.535922][T17101] RSP: 002b:00007f9f89458028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  642.535937][T17101] RAX: ffffffffffffffda RBX: 00007f9f88815fa0 RCX: 00007f9f8859ce59
[  642.535947][T17101] RDX: 0000000000000006 RSI: 0000000004020009 RDI: 0000000000000000
[  642.535956][T17101] RBP: 00007f9f88632d6f R08: 0000000000000401 R09: 0000000000008000
[  642.535965][T17101] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  642.535974][T17101] R13: 00007f9f88816038 R14: 00007f9f88815fa0 R15: 00007fff37ecdda8
[  642.535994][T17101]  </TASK>
[  644.476067][T17122] FAULT_INJECTION: forcing a failure.
[  644.476067][T17122] name failslab, interval 1, probability 0, space 0, times 0
[  644.641004][T17122] CPU: 0 UID: 0 PID: 17122 Comm: syz.1.2123 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  644.641031][T17122] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  644.641037][T17122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  644.641045][T17122] Call Trace:
[  644.641050][T17122]  <TASK>
[  644.641056][T17122]  dump_stack_lvl+0x100/0x190
[  644.641076][T17122]  should_fail_ex.cold+0x5/0xa
[  644.641095][T17122]  ? sk_prot_alloc+0x10b/0x2a0
[  644.641115][T17122]  should_failslab+0xc2/0x120
[  644.641133][T17122]  __kmalloc_noprof+0xe0/0x850
[  644.641151][T17122]  sk_prot_alloc+0x10b/0x2a0
[  644.641170][T17122]  sk_alloc+0x36/0xe80
[  644.641184][T17122]  __netlink_create+0x5e/0x2c0
[  644.641200][T17122]  ? __wake_up+0x3f/0x60
[  644.641221][T17122]  netlink_create+0x29b/0x610
[  644.641237][T17122]  ? __pfx_genl_bind+0x10/0x10
[  644.641256][T17122]  ? __pfx_genl_unbind+0x10/0x10
[  644.641275][T17122]  ? __pfx_genl_release+0x10/0x10
[  644.641297][T17122]  __sock_create+0x339/0x860
[  644.641320][T17122]  __sys_socket+0x14d/0x260
[  644.641340][T17122]  ? __pfx___sys_socket+0x10/0x10
[  644.641365][T17122]  __x64_sys_socket+0x72/0xb0
[  644.641385][T17122]  ? lockdep_hardirqs_on+0x78/0x100
[  644.641405][T17122]  do_syscall_64+0x115/0x840
[  644.641425][T17122]  ? clear_bhb_loop+0x40/0x90
[  644.641443][T17122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  644.641458][T17122] RIP: 0033:0x7f9f8859ce59
[  644.641470][T17122] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  644.641484][T17122] RSP: 002b:00007f9f89458028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  644.641499][T17122] RAX: ffffffffffffffda RBX: 00007f9f88815fa0 RCX: 00007f9f8859ce59
[  644.641509][T17122] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  644.641518][T17122] RBP: 00007f9f88632d6f R08: 0000000000000000 R09: 0000000000000000
[  644.641527][T17122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  644.641535][T17122] R13: 00007f9f88816038 R14: 00007f9f88815fa0 R15: 00007fff37ecdda8
[  644.641554][T17122]  </TASK>
[  645.009334][T17117] ERROR: Out of memory at tomoyo_memory_ok.
[  645.181066][T17131] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2124'.
[  645.196333][T17119] ERROR: Out of memory at tomoyo_memory_ok.
[  645.417821][ T8478] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  645.783374][ T8478] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  646.082057][ T8478] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  646.230927][ T8478] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  646.655656][T17169] FAULT_INJECTION: forcing a failure.
[  646.655656][T17169] name fail_futex, interval 1, probability 0, space 0, times 0
[  646.775519][T17169] CPU: 0 UID: 0 PID: 17169 Comm: syz.1.2132 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  646.775547][T17169] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  646.775553][T17169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  646.775562][T17169] Call Trace:
[  646.775568][T17169]  <TASK>
[  646.775574][T17169]  dump_stack_lvl+0x100/0x190
[  646.775593][T17169]  should_fail_ex.cold+0x5/0xa
[  646.775610][T17169]  ? rcu_is_watching+0x12/0xc0
[  646.775629][T17169]  get_futex_key+0x1d2/0x1510
[  646.775654][T17169]  ? __pfx_get_futex_key+0x10/0x10
[  646.775684][T17169]  futex_wait_setup+0x83/0x510
[  646.775707][T17169]  __futex_wait+0x19f/0x300
[  646.775727][T17169]  ? __pfx___futex_wait+0x10/0x10
[  646.775748][T17169]  ? __pfx_futex_wake_mark+0x10/0x10
[  646.775769][T17169]  ? find_held_lock+0x2b/0x80
[  646.775786][T17169]  ? futex_wake+0x456/0x530
[  646.775808][T17169]  futex_wait+0xe6/0x370
[  646.775825][T17169]  ? __pfx_futex_wait+0x10/0x10
[  646.775849][T17169]  ? proc_id_connector+0x2ed/0x650
[  646.775871][T17169]  do_futex+0x1ef/0x350
[  646.775885][T17169]  ? __pfx_do_futex+0x10/0x10
[  646.775900][T17169]  ? find_held_lock+0x2b/0x80
[  646.775917][T17169]  ? setid_policy_lookup+0x10c/0x350
[  646.775942][T17169]  __x64_sys_futex+0x34f/0x4d0
[  646.775960][T17169]  ? __pfx___x64_sys_futex+0x10/0x10
[  646.775978][T17169]  ? rcu_is_watching+0x12/0xc0
[  646.775997][T17169]  do_syscall_64+0x115/0x840
[  646.776016][T17169]  ? clear_bhb_loop+0x40/0x90
[  646.776034][T17169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  646.776049][T17169] RIP: 0033:0x7f9f8859ce59
[  646.776062][T17169] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  646.776076][T17169] RSP: 002b:00007f9f894160e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  646.776091][T17169] RAX: ffffffffffffffda RBX: 00007f9f88816188 RCX: 00007f9f8859ce59
[  646.776101][T17169] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9f88816188
[  646.776110][T17169] RBP: 00007f9f88816180 R08: 0000000000000000 R09: 0000000000000000
[  646.776119][T17169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  646.776127][T17169] R13: 00007f9f88816218 R14: 00007fff37ecdcc0 R15: 00007fff37ecdda8
[  646.776146][T17169]  </TASK>
[  647.536663][ T8478] netdevsim netdevsim1335 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  647.752183][T17180] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  648.521590][ T8478] bridge_slave_1: left allmulticast mode
[  648.549852][ T8478] bridge_slave_1: left promiscuous mode
[  648.582629][ T8478] bridge0: port 2(bridge_slave_1) entered disabled state
[  648.660757][ T8478] bridge_slave_0: left allmulticast mode
[  648.686249][ T8478] bridge_slave_0: left promiscuous mode
[  648.728468][ T8478] bridge0: port 1(bridge_slave_0) entered disabled state
[  649.381019][ T8478] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  649.423435][ T8478] bond0 (unregistering): Released all slaves
[  649.683585][T17208] netlink: 'syz.4.2137': attribute type 1 has an invalid length.
[  649.694056][ T5294] 8021q: adding VLAN 0 to HW filter on device eth1
[  649.723089][T17208] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2137'.
[  649.799076][ T8478] tipc: Left network mode
[  649.994030][T17212] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2138'.
[  651.595787][ T8478] hsr_slave_0: left promiscuous mode
[  651.653147][ T8478] hsr_slave_1: left promiscuous mode
[  651.693496][ T8478] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  651.788340][ T8478] batman_adv: batadv0: Removing interface: batadv_slave_0
[  651.879635][ T8478] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  651.942734][ T8478] batman_adv: batadv0: Removing interface: batadv_slave_1
[  651.960417][T17250] Setting dangerous option i915.mitigations - tainting kernel
[  652.041810][ T8478] veth1_macvtap: left promiscuous mode
[  652.090978][ T8478] veth0_macvtap: left promiscuous mode
[  652.121893][ T8478] veth1_vlan: left promiscuous mode
[  652.153304][ T8478] veth0_vlan: left promiscuous mode
[  652.290329][T17266] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5643] was attempted by "ci-qemu-gce-upstream-auto/syz-executor exec"[17266]
[  652.418130][ T8478] pim6reg (unregistering): left allmulticast mode
[  653.126352][T17276] FAULT_INJECTION: forcing a failure.
[  653.126352][T17276] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  653.160981][T17276] CPU: 0 UID: 0 PID: 17276 Comm: syz.1.2147 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  653.161007][T17276] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  653.161013][T17276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  653.161021][T17276] Call Trace:
[  653.161026][T17276]  <TASK>
[  653.161032][T17276]  dump_stack_lvl+0x100/0x190
[  653.161052][T17276]  should_fail_ex.cold+0x5/0xa
[  653.161071][T17276]  core_sys_select+0x5d1/0xbb0
[  653.161094][T17276]  ? __pfx_core_sys_select+0x10/0x10
[  653.161129][T17276]  ? do_futex+0x192/0x350
[  653.161144][T17276]  ? __pfx_do_futex+0x10/0x10
[  653.161162][T17276]  kern_select+0x1d0/0x280
[  653.161180][T17276]  ? __pfx_kern_select+0x10/0x10
[  653.161197][T17276]  ? xfd_validate_state+0x129/0x190
[  653.161216][T17276]  __x64_sys_select+0xbd/0x160
[  653.161232][T17276]  ? do_syscall_64+0x90/0x840
[  653.161252][T17276]  ? lockdep_hardirqs_on+0x78/0x100
[  653.161271][T17276]  do_syscall_64+0x115/0x840
[  653.161290][T17276]  ? clear_bhb_loop+0x40/0x90
[  653.161307][T17276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  653.161323][T17276] RIP: 0033:0x7f9f8859ce59
[  653.161335][T17276] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  653.161349][T17276] RSP: 002b:00007f9f89458028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  653.161364][T17276] RAX: ffffffffffffffda RBX: 00007f9f88815fa0 RCX: 00007f9f8859ce59
[  653.161374][T17276] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000d
[  653.161382][T17276] RBP: 00007f9f88632d6f R08: 0000000000000000 R09: 0000000000000000
[  653.161390][T17276] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000
[  653.161399][T17276] R13: 00007f9f88816038 R14: 00007f9f88815fa0 R15: 00007fff37ecdda8
[  653.161418][T17276]  </TASK>
[  653.459316][ T8478] team0 (unregistering): Port device team_slave_1 removed
[  653.571366][ T8478] team0 (unregistering): Port device team_slave_0 removed
[  653.831679][ T5294] 8021q: adding VLAN 0 to HW filter on device eth5
[  653.897729][T17280] ubi0: attaching mtd0
[  653.949203][T17280] ubi0: scanning is finished
[  653.965639][T17280] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  654.135768][T17286] usb usb16: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  654.314794][T17283] could not allocate digest TFM handle 
[  654.349870][T17280] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  655.002078][T17304] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint
[  655.255189][T17304] PCI: Can't parse resource_alignment parameter: e�C/������OV�G�Df8��=�ֶ���2|���:ht��3�
[  655.815429][T17322] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2154'.
[  656.208953][T17319] HfR: entered promiscuous mode
[  656.210035][ T5294] 8021q: adding VLAN 0 to HW filter on device eth6
[  656.242839][T17322] HfR: left promiscuous mode
[  656.568602][T17324] FAULT_INJECTION: forcing a failure.
[  656.568602][T17324] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  656.568668][T17324] CPU: 0 UID: 0 PID: 17324 Comm: syz.5.2154 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  656.568691][T17324] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  656.568698][T17324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  656.568707][T17324] Call Trace:
[  656.568712][T17324]  <TASK>
[  656.568718][T17324]  dump_stack_lvl+0x100/0x190
[  656.568738][T17324]  should_fail_ex.cold+0x5/0xa
[  656.568754][T17324]  ? prepare_alloc_pages+0x16d/0x5f0
[  656.568774][T17324]  should_fail_alloc_page+0xeb/0x140
[  656.568794][T17324]  prepare_alloc_pages+0x1f0/0x5f0
[  656.568816][T17324]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  656.568840][T17324]  ? stack_trace_save+0x8e/0xc0
[  656.568859][T17324]  ? __pfx_stack_trace_save+0x10/0x10
[  656.568877][T17324]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  656.568899][T17324]  ? stack_depot_save_flags+0x27/0x9d0
[  656.568923][T17324]  ? find_held_lock+0x2b/0x80
[  656.568940][T17324]  ? is_bpf_text_address+0x8a/0x1a0
[  656.568961][T17324]  ? kasan_save_stack+0x3f/0x50
[  656.568975][T17324]  ? kasan_save_stack+0x30/0x50
[  656.568989][T17324]  ? kasan_save_track+0x14/0x30
[  656.569002][T17324]  ? __kasan_slab_alloc+0x89/0x90
[  656.569017][T17324]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  656.569039][T17324]  ? __pmd_alloc+0xbf/0x950
[  656.569055][T17324]  ? walk_to_pmd+0x3a3/0x4c0
[  656.569073][T17324]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  656.569096][T17324]  ? kcov_mmap+0xca/0x130
[  656.569113][T17324]  ? __mmap_region+0x13e1/0x2dd0
[  656.569133][T17324]  ? mmap_region+0x527/0x620
[  656.569145][T17324]  ? vm_mmap_pgoff+0x29e/0x470
[  656.569167][T17324]  ? __x64_sys_mmap+0x125/0x190
[  656.569182][T17324]  ? do_syscall_64+0x115/0x840
[  656.569202][T17324]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.569228][T17324]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  656.569249][T17324]  ? policy_nodemask+0xed/0x4f0
[  656.569267][T17324]  alloc_pages_mpol+0x1fb/0x540
[  656.569285][T17324]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  656.569304][T17324]  ? do_raw_spin_lock+0x128/0x260
[  656.569319][T17324]  ? find_held_lock+0x2b/0x80
[  656.569338][T17324]  alloc_pages_noprof+0x1a/0x160
[  656.569358][T17324]  pte_alloc_one+0x1c/0x3d0
[  656.569387][T17324]  __pte_alloc+0x6d/0x380
[  656.569404][T17324]  ? __pfx___pte_alloc+0x10/0x10
[  656.569422][T17324]  ? walk_to_pmd+0x302/0x4c0
[  656.569442][T17324]  get_locked_pte+0xa1/0xc0
[  656.569463][T17324]  insert_page+0xcc/0x220
[  656.569482][T17324]  ? __pfx_insert_page+0x10/0x10
[  656.569499][T17324]  ? __pfx_down_read_trylock+0x10/0x10
[  656.569520][T17324]  vm_insert_page+0x2c0/0x400
[  656.569541][T17324]  kcov_mmap+0xca/0x130
[  656.569561][T17324]  __mmap_region+0x13e1/0x2dd0
[  656.569586][T17324]  ? __pfx___mmap_region+0x10/0x10
[  656.569625][T17324]  ? find_held_lock+0x2b/0x80
[  656.569642][T17324]  ? ima_match_policy+0x8c4/0x2350
[  656.569660][T17324]  ? ima_match_policy+0x8c4/0x2350
[  656.569695][T17324]  ? process_measurement+0x4c8/0x2350
[  656.569741][T17324]  mmap_region+0x527/0x620
[  656.569757][T17324]  ? __pfx_mmap_region+0x10/0x10
[  656.569773][T17324]  ? cap_mmap_addr+0x4b/0x120
[  656.569787][T17324]  ? bpf_lsm_mmap_addr+0x9/0x30
[  656.569800][T17324]  ? security_mmap_addr+0x71/0x1e0
[  656.569819][T17324]  ? __get_unmapped_area+0x255/0x3e0
[  656.569839][T17324]  do_mmap+0xc63/0x12f0
[  656.569860][T17324]  ? __pfx_do_mmap+0x10/0x10
[  656.569877][T17324]  ? __pfx_down_write_killable+0x10/0x10
[  656.569904][T17324]  vm_mmap_pgoff+0x29e/0x470
[  656.569926][T17324]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  656.569943][T17324]  ? __fget_files+0x215/0x3d0
[  656.569963][T17324]  ? __fget_files+0x21f/0x3d0
[  656.569983][T17324]  ksys_mmap_pgoff+0x3cb/0x610
[  656.570001][T17324]  ? __x64_sys_futex+0x358/0x4d0
[  656.570017][T17324]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  656.570034][T17324]  ? xfd_validate_state+0x129/0x190
[  656.570048][T17324]  ? ksys_write+0x1ac/0x250
[  656.570068][T17324]  __x64_sys_mmap+0x125/0x190
[  656.570086][T17324]  do_syscall_64+0x115/0x840
[  656.570105][T17324]  ? clear_bhb_loop+0x40/0x90
[  656.570123][T17324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.570138][T17324] RIP: 0033:0x7fb3fdd9ce59
[  656.570151][T17324] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  656.570165][T17324] RSP: 002b:00007fb3fecec028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  656.570181][T17324] RAX: ffffffffffffffda RBX: 00007fb3fe016180 RCX: 00007fb3fdd9ce59
[  656.570191][T17324] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000000000
[  656.570200][T17324] RBP: 00007fb3fde32d6f R08: 00000000000000dd R09: 0000000000000000
[  656.570209][T17324] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  656.570218][T17324] R13: 00007fb3fe016218 R14: 00007fb3fe016180 R15: 00007fff76b80e08
[  656.570238][T17324]  </TASK>
[  656.600691][T17324] kcov: kcov: vm_insert_page() failed
[  656.971225][T17340] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  658.459511][ T5294] 8021q: adding VLAN 0 to HW filter on device eth7
[  659.698390][ T5294] 8021q: adding VLAN 0 to HW filter on device eth8
[  660.914658][T17413] block nbd0: NBD_DISCONNECT
[  662.337171][T17465] openvswitch: netlink: IP tunnel dst address not specified
[  664.683318][T17525] ERROR: Out of memory at tomoyo_memory_ok.
[  664.784594][T17524] ERROR: Out of memory at tomoyo_memory_ok.
[  664.900613][T17525] ERROR: Out of memory at tomoyo_memory_ok.
[  664.954380][T17524] ERROR: Out of memory at tomoyo_memory_ok.
[  665.001500][T17525] ERROR: Out of memory at tomoyo_memory_ok.
[  665.036455][T17548] ERROR: Out of memory at tomoyo_memory_ok.
[  665.092807][T17525] ERROR: Out of memory at tomoyo_memory_ok.
[  665.473385][T17558] random: crng reseeded on system resumption
[  667.403383][T17582] FAULT_INJECTION: forcing a failure.
[  667.403383][T17582] name failslab, interval 1, probability 0, space 0, times 0
[  667.510733][T17585] netlink: 326 bytes leftover after parsing attributes in process `syz.6.2197'.
[  667.566382][T17582] CPU: 0 UID: 0 PID: 17582 Comm: syz.6.2197 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  667.566410][T17582] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  667.566423][T17582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  667.566432][T17582] Call Trace:
[  667.566437][T17582]  <TASK>
[  667.566443][T17582]  dump_stack_lvl+0x100/0x190
[  667.566464][T17582]  should_fail_ex.cold+0x5/0xa
[  667.566484][T17582]  should_failslab+0xc2/0x120
[  667.566503][T17582]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  667.566527][T17582]  ? __alloc_skb+0x140/0x710
[  667.566547][T17582]  __alloc_skb+0x140/0x710
[  667.566560][T17582]  ? __pfx___alloc_skb+0x10/0x10
[  667.566574][T17582]  ? find_held_lock+0x2b/0x80
[  667.566592][T17582]  ? tipc_node_xmit+0x1f6/0xfb0
[  667.566612][T17582]  ? lockdep_init_map_type+0x5c/0x250
[  667.566637][T17582]  tipc_buf_acquire+0x26/0xe0
[  667.566654][T17582]  tipc_msg_build+0x112/0x1100
[  667.566674][T17582]  ? __pfx_tipc_node_xmit+0x10/0x10
[  667.566695][T17582]  ? __pfx_tipc_msg_build+0x10/0x10
[  667.566717][T17582]  ? register_lock_class+0x40/0x560
[  667.566742][T17582]  __tipc_sendstream+0x6a6/0x10f0
[  667.566767][T17582]  ? __pfx___tipc_sendstream+0x10/0x10
[  667.566783][T17582]  ? do_raw_spin_lock+0x128/0x260
[  667.566800][T17582]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  667.566816][T17582]  ? __pfx_woken_wake_function+0x10/0x10
[  667.566836][T17582]  ? __local_bh_enable_ip+0x9e/0x120
[  667.566857][T17582]  tipc_send_packet+0x6c/0xa0
[  667.566873][T17582]  ____sys_sendmsg+0x9e1/0xb70
[  667.566891][T17582]  ? __pfx_tipc_send_packet+0x10/0x10
[  667.566910][T17582]  ? __pfx_____sys_sendmsg+0x10/0x10
[  667.566931][T17582]  ? rcu_is_watching+0x12/0xc0
[  667.566947][T17582]  ? ___sys_sendmsg+0x19d/0x1e0
[  667.566965][T17582]  ? kfree+0x1dd/0x6c0
[  667.566987][T17582]  ___sys_sendmsg+0x190/0x1e0
[  667.567008][T17582]  ? __pfx____sys_sendmsg+0x10/0x10
[  667.567045][T17582]  ? __pfx___might_resched+0x10/0x10
[  667.567065][T17582]  __sys_sendmmsg+0x205/0x430
[  667.567083][T17582]  ? __pfx___sys_sendmmsg+0x10/0x10
[  667.567104][T17582]  ? __pfx_do_futex+0x10/0x10
[  667.567127][T17582]  ? xfd_validate_state+0x129/0x190
[  667.567142][T17582]  ? ksys_write+0x1ac/0x250
[  667.567164][T17582]  __x64_sys_sendmmsg+0x9c/0x100
[  667.567179][T17582]  ? lockdep_hardirqs_on+0x78/0x100
[  667.567199][T17582]  do_syscall_64+0x115/0x840
[  667.567218][T17582]  ? clear_bhb_loop+0x40/0x90
[  667.567237][T17582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.567252][T17582] RIP: 0033:0x7f1b5399ce59
[  667.567265][T17582] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  667.567279][T17582] RSP: 002b:00007f1b548cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  667.567294][T17582] RAX: ffffffffffffffda RBX: 00007f1b53c15fa0 RCX: 00007f1b5399ce59
[  667.567304][T17582] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000003
[  667.567313][T17582] RBP: 00007f1b53a32d6f R08: 0000000000000000 R09: 0000000000000000
[  667.567322][T17582] R10: 0000000000001f00 R11: 0000000000000246 R12: 0000000000000000
[  667.567330][T17582] R13: 00007f1b53c16038 R14: 00007f1b53c15fa0 R15: 00007ffdcb167ef8
[  667.567349][T17582]  </TASK>
[  670.179549][T17616] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  670.203810][T17616] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  670.229455][T17616] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  670.262638][T17616] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  670.286895][T17616] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  670.311230][T17616] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  670.341284][T17616] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  671.624423][ T6905] Bluetooth: hci4: command 0x0c1a tx timeout
[  672.264361][ T6905] Bluetooth: hci1: command 0x0c1a tx timeout
[  672.344045][ T6905] Bluetooth: hci2: command 0x0c1a tx timeout
[  672.964444][   T30] audit: type=1800 audit(8277292485.200:35): pid=17679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2214" name="dbroot" dev="configfs" ino=79253 res=0 errno=0
[  672.992069][T17679] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  674.343072][ T6905] Bluetooth: hci1: command 0x0c1a tx timeout
[  674.424396][ T6905] Bluetooth: hci2: command 0x0c1a tx timeout
[  674.439332][T17705] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  675.465815][T17734] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2222'.
[  675.538687][T17734] netlink: 354 bytes leftover after parsing attributes in process `syz.4.2222'.
[  676.421908][ T6905] Bluetooth: hci1: command 0x0c1a tx timeout
[  676.501823][ T6905] Bluetooth: hci2: command 0x0c1a tx timeout
[  678.070056][T17788] ==================================================================
[  678.078158][T17788] BUG: KASAN: use-after-free in ptdump_pte_entry+0xec/0x100
[  678.085435][T17788] Read of size 8 at addr ffff88806640f530 by task syz.1.2229/17788
[  678.093301][T17788] 
[  678.095606][T17788] CPU: 0 UID: 0 PID: 17788 Comm: syz.1.2229 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  678.095630][T17788] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  678.095635][T17788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  678.095645][T17788] Call Trace:
[  678.095650][T17788]  <TASK>
[  678.095656][T17788]  dump_stack_lvl+0x100/0x190
[  678.095672][T17788]  print_report+0x13d/0x4b0
[  678.095693][T17788]  ? __virt_addr_valid+0x239/0x430
[  678.095716][T17788]  ? ptdump_pte_entry+0xec/0x100
[  678.095729][T17788]  kasan_report+0xdf/0x1d0
[  678.095747][T17788]  ? ptdump_pte_entry+0xec/0x100
[  678.095762][T17788]  ptdump_pte_entry+0xec/0x100
[  678.095776][T17788]  walk_pte_range_inner+0x258/0x370
[  678.095793][T17788]  ? __pfx_walk_pte_range_inner+0x10/0x10
[  678.095809][T17788]  ? ptdump_pmd_entry+0x286/0x430
[  678.095824][T17788]  walk_pgd_range+0xee1/0x1dd0
[  678.095840][T17788]  ? __pfx_ptdump_pte_entry+0x10/0x10
[  678.095857][T17788]  ? __pfx_walk_pgd_range+0x10/0x10
[  678.095874][T17788]  walk_page_range_debug+0x2fd/0x370
[  678.095890][T17788]  ? __pfx_walk_page_range_debug+0x10/0x10
[  678.095908][T17788]  ? __pfx_down_write+0x10/0x10
[  678.095933][T17788]  ptdump_walk_pgd+0x129/0x330
[  678.095948][T17788]  ptdump_walk_pgd_level_core+0x26c/0x300
[  678.095965][T17788]  ? __pfx_ptdump_walk_pgd_level_core+0x10/0x10
[  678.095983][T17788]  ? __pfx_note_page_pte+0x10/0x10
[  678.095996][T17788]  ? __pfx_note_page_pmd+0x10/0x10
[  678.096009][T17788]  ? __pfx_note_page_pud+0x10/0x10
[  678.096022][T17788]  ? __pfx_note_page_p4d+0x10/0x10
[  678.096035][T17788]  ? __pfx_note_page_pgd+0x10/0x10
[  678.096048][T17788]  ? __pfx_note_page_flush+0x10/0x10
[  678.096061][T17788]  ? __pfx_effective_prot_pte+0x10/0x10
[  678.096083][T17788]  ? __pfx_effective_prot_pmd+0x10/0x10
[  678.096104][T17788]  ? __pfx_effective_prot_pud+0x10/0x10
[  678.096126][T17788]  ? __pfx_effective_prot_p4d+0x10/0x10
[  678.096147][T17788]  ? __pfx_effective_prot_pgd+0x10/0x10
[  678.096172][T17788]  ? __kasan_kmalloc+0xaa/0xb0
[  678.096186][T17788]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  678.096200][T17788]  ? seq_read_iter+0x819/0x1270
[  678.096217][T17788]  ptdump_show+0x1e/0x30
[  678.096237][T17788]  seq_read_iter+0x32f/0x1270
[  678.096256][T17788]  seq_read+0x33b/0x4c0
[  678.096271][T17788]  ? __pfx_seq_read+0x10/0x10
[  678.096287][T17788]  ? lock_acquire+0x1b1/0x370
[  678.096313][T17788]  full_proxy_read+0x135/0x1a0
[  678.096333][T17788]  ? __pfx_full_proxy_read+0x10/0x10
[  678.096353][T17788]  vfs_read+0x1e4/0xb30
[  678.096370][T17788]  ? __pfx_vfs_read+0x10/0x10
[  678.096385][T17788]  ? __fget_files+0x215/0x3d0
[  678.096404][T17788]  ? __fget_files+0x21f/0x3d0
[  678.096422][T17788]  ksys_read+0x12a/0x250
[  678.096438][T17788]  ? __pfx_ksys_read+0x10/0x10
[  678.096455][T17788]  ? rcu_is_watching+0x12/0xc0
[  678.096472][T17788]  do_syscall_64+0x115/0x840
[  678.096491][T17788]  ? clear_bhb_loop+0x40/0x90
[  678.096508][T17788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  678.096523][T17788] RIP: 0033:0x7f9f8859ce59
[  678.096535][T17788] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  678.096550][T17788] RSP: 002b:00007f9f89458028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  678.096565][T17788] RAX: ffffffffffffffda RBX: 00007f9f88815fa0 RCX: 00007f9f8859ce59
[  678.096575][T17788] RDX: 000000000000001c RSI: 0000200000004c40 RDI: 0000000000000003
[  678.096585][T17788] RBP: 00007f9f88632d6f R08: 0000000000000000 R09: 0000000000000000
[  678.096594][T17788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  678.096603][T17788] R13: 00007f9f88816038 R14: 00007f9f88815fa0 R15: 00007fff37ecdda8
[  678.096618][T17788]  </TASK>
[  678.096623][T17788] 
[  678.454759][T17788] The buggy address belongs to the physical page:
[  678.461156][T17788] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6640f
[  678.469915][T17788] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  678.477009][T17788] raw: 00fff00000000000 ffffea00019900c8 ffffea00019902c8 0000000000000000
[  678.485614][T17788] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  678.494205][T17788] page dumped because: kasan: bad access detected
[  678.500604][T17788] page_owner tracks the page as freed
[  678.505946][T17788] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x40dc0(GFP_KERNEL|__GFP_ZERO|__GFP_COMP), pid 5628, tgid 5628 (syz-executor), ts 76048833593, free_ts 678067566484
[  678.523950][T17788]  post_alloc_hook+0xfd/0x120
[  678.528626][T17788]  get_page_from_freelist+0x11a6/0x3410
[  678.534159][T17788]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  678.540038][T17788]  alloc_pages_mpol+0x1fb/0x540
[  678.544870][T17788]  alloc_pages_noprof+0x1a/0x160
[  678.549796][T17788]  __pte_alloc_kernel+0x22/0x5c0
[  678.554715][T17788]  vmap_small_pages_range_noflush+0x9d8/0xd50
[  678.560766][T17788]  __vmap_pages_range_noflush+0x601/0x660
[  678.566466][T17788]  __vmalloc_node_range_noprof+0x9ed/0x1630
[  678.572346][T17788]  vmalloc_user_noprof+0x9e/0xe0
[  678.577273][T17788]  kcov_ioctl+0x4c/0x720
[  678.581502][T17788]  __x64_sys_ioctl+0x18e/0x210
[  678.586247][T17788]  do_syscall_64+0x115/0x840
[  678.590822][T17788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  678.596695][T17788] page last free pid 809 tgid 809 stack trace:
[  678.602825][T17788]  __free_frozen_pages+0x794/0x10a0
[  678.608006][T17788]  kernel_pgtable_work_func+0x21a/0x2f0
[  678.613534][T17788]  process_one_work+0xa0e/0x1980
[  678.618463][T17788]  worker_thread+0x5ef/0xe50
[  678.623040][T17788]  kthread+0x370/0x450
[  678.627099][T17788]  ret_from_fork+0x72b/0xd50
[  678.631675][T17788]  ret_from_fork_asm+0x1a/0x30
[  678.636440][T17788] 
[  678.638740][T17788] Memory state around the buggy address:
[  678.644345][T17788]  ffff88806640f400: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  678.652384][T17788]  ffff88806640f480: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  678.660422][T17788] >ffff88806640f500: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  678.668458][T17788]                                      ^
[  678.674067][T17788]  ffff88806640f580: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  678.682106][T17788]  ffff88806640f600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  678.690168][T17788] ==================================================================
[  679.435083][ T4981] ERROR: Out of memory at tomoyo_memory_ok.
[  680.698349][T17788] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  680.705559][T17788] CPU: 0 UID: 0 PID: 17788 Comm: syz.1.2229 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  680.716476][T17788] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  680.721642][T17788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  680.731671][T17788] Call Trace:
[  680.734928][T17788]  <TASK>
[  680.737842][T17788]  dump_stack_lvl+0x100/0x190
[  680.742507][T17788]  vpanic+0x552/0x970
[  680.746466][T17788]  ? __pfx_vpanic+0x10/0x10
[  680.750954][T17788]  ? mark_held_locks+0x40/0x70
[  680.755706][T17788]  ? ptdump_pte_entry+0xec/0x100
[  680.760619][T17788]  panic+0xd1/0xe0
[  680.764325][T17788]  ? __pfx_panic+0x10/0x10
[  680.768717][T17788]  ? ptdump_pte_entry+0xec/0x100
[  680.773630][T17788]  ? preempt_schedule_common+0x42/0xc0
[  680.779076][T17788]  check_panic_on_warn.cold+0x19/0x34
[  680.784429][T17788]  end_report.part.0+0x3a/0x90
[  680.789179][T17788]  kasan_report.cold+0xe/0x18
[  680.793839][T17788]  ? ptdump_pte_entry+0xec/0x100
[  680.798756][T17788]  ptdump_pte_entry+0xec/0x100
[  680.803496][T17788]  walk_pte_range_inner+0x258/0x370
[  680.808674][T17788]  ? __pfx_walk_pte_range_inner+0x10/0x10
[  680.814370][T17788]  ? ptdump_pmd_entry+0x286/0x430
[  680.819377][T17788]  walk_pgd_range+0xee1/0x1dd0
[  680.824119][T17788]  ? __pfx_ptdump_pte_entry+0x10/0x10
[  680.829471][T17788]  ? __pfx_walk_pgd_range+0x10/0x10
[  680.834652][T17788]  walk_page_range_debug+0x2fd/0x370
[  680.839919][T17788]  ? __pfx_walk_page_range_debug+0x10/0x10
[  680.845712][T17788]  ? __pfx_down_write+0x10/0x10
[  680.850553][T17788]  ptdump_walk_pgd+0x129/0x330
[  680.855298][T17788]  ptdump_walk_pgd_level_core+0x26c/0x300
[  680.860996][T17788]  ? __pfx_ptdump_walk_pgd_level_core+0x10/0x10
[  680.867216][T17788]  ? __pfx_note_page_pte+0x10/0x10
[  680.872305][T17788]  ? __pfx_note_page_pmd+0x10/0x10
[  680.877396][T17788]  ? __pfx_note_page_pud+0x10/0x10
[  680.882482][T17788]  ? __pfx_note_page_p4d+0x10/0x10
[  680.887570][T17788]  ? __pfx_note_page_pgd+0x10/0x10
[  680.892656][T17788]  ? __pfx_note_page_flush+0x10/0x10
[  680.897918][T17788]  ? __pfx_effective_prot_pte+0x10/0x10
[  680.903453][T17788]  ? __pfx_effective_prot_pmd+0x10/0x10
[  680.908986][T17788]  ? __pfx_effective_prot_pud+0x10/0x10
[  680.914520][T17788]  ? __pfx_effective_prot_p4d+0x10/0x10
[  680.920051][T17788]  ? __pfx_effective_prot_pgd+0x10/0x10
[  680.925586][T17788]  ? __kasan_kmalloc+0xaa/0xb0
[  680.930327][T17788]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  680.935851][T17788]  ? seq_read_iter+0x819/0x1270
[  680.940684][T17788]  ptdump_show+0x1e/0x30
[  680.944907][T17788]  seq_read_iter+0x32f/0x1270
[  680.949571][T17788]  seq_read+0x33b/0x4c0
[  680.953710][T17788]  ? __pfx_seq_read+0x10/0x10
[  680.958366][T17788]  ? lock_acquire+0x1b1/0x370
[  680.963034][T17788]  full_proxy_read+0x135/0x1a0
[  680.967784][T17788]  ? __pfx_full_proxy_read+0x10/0x10
[  680.973051][T17788]  vfs_read+0x1e4/0xb30
[  680.977191][T17788]  ? __pfx_vfs_read+0x10/0x10
[  680.981848][T17788]  ? __fget_files+0x215/0x3d0
[  680.986508][T17788]  ? __fget_files+0x21f/0x3d0
[  680.991170][T17788]  ksys_read+0x12a/0x250
[  680.995394][T17788]  ? __pfx_ksys_read+0x10/0x10
[  681.000144][T17788]  ? rcu_is_watching+0x12/0xc0
[  681.004894][T17788]  do_syscall_64+0x115/0x840
[  681.009473][T17788]  ? clear_bhb_loop+0x40/0x90
[  681.014128][T17788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  681.019998][T17788] RIP: 0033:0x7f9f8859ce59
[  681.024390][T17788] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  681.043976][T17788] RSP: 002b:00007f9f89458028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  681.052369][T17788] RAX: ffffffffffffffda RBX: 00007f9f88815fa0 RCX: 00007f9f8859ce59
[  681.060317][T17788] RDX: 000000000000001c RSI: 0000200000004c40 RDI: 0000000000000003
[  681.068265][T17788] RBP: 00007f9f88632d6f R08: 0000000000000000 R09: 0000000000000000
[  681.076213][T17788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  681.084161][T17788] R13: 00007f9f88816038 R14: 00007f9f88815fa0 R15: 00007fff37ecdda8
[  681.092112][T17788]  </TASK>
[  681.095188][T17788] Kernel Offset: disabled
[  681.100034][T17788] Rebooting in 86400 seconds..