last executing test programs:

9m34.855458348s ago: executing program 2 (id=860):
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129c00, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/asound/card0/pcm0p/oss\x00', 0x88400, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async, rerun: 64)
epoll_create$auto(0x9) (async, rerun: 64)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/conf/batadv_slave_0/proxy_ndp\x00', 0x382, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x4000b, 0x7, 0x9b72, 0x7, 0x28000) (rerun: 32)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
inotify_init1$auto(0x3000000000000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40942, 0x0) (async)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
openat$auto_l2cap_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x48380, 0x0)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x240, 0x0) (async, rerun: 64)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (rerun: 64)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0) (async, rerun: 32)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x20000, 0x0) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10)
inotify_init1$auto(0x3000000000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x880, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socketpair$auto(0x1e, 0x9, 0x7, 0x0) (async)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55) (async)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async, rerun: 64)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0) (rerun: 64)
ioctl$auto(0x3, 0x80106f53, r0)

9m34.625472464s ago: executing program 2 (id=861):
setgroups$auto(0x3, 0xfffffffffffffffc)
r0 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/apparmor/prev\x00', 0x4ccd43, 0x0)
r1 = setfsuid$auto(0xee01)
keyctl$auto_KEYCTL_GET_PERSISTENT(0x16, r1, 0x7fffffffffffffff, 0xffffffffffffe6d6, 0x2)
ioctl$auto_EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000000)={<r2=>0xffffffffffffffff, 0x9, 0x4, 0x4, 0x6, 0x10})
r3 = waitid$auto_P_ALL(0x0, 0x3, &(0x7f0000000080)={@_si_pad}, 0x8, &(0x7f0000000100)={{0x6, 0x5}, {0x8, 0x1a}, 0x7, 0x1, 0x7, 0x40000, 0x0, 0x4, 0x3, 0x1, 0x1, 0x4, 0x400, 0x48, 0xc8da, 0x4})
r4 = getpid()
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0)
r5 = socket(0xa, 0x801, 0x84)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xa, 0x0)
r6 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000006900)='/sys/kernel/config/target/dbroot\x00', 0x189002, 0x0)
write$auto(r6, &(0x7f0000000100)='/dev/audio1\x00', 0x100000a3d7)
r7 = socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r7, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
r8 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/nfsfs/volumes\x00', 0x800, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r8, &(0x7f0000000040)=""/248, 0xf8)
getsockopt$auto(r5, 0x84, 0x6d, 0x0, 0x0)
process_vm_readv$auto(r4, &(0x7f0000000000)={0x0, 0xfff}, 0x1, 0x0, 0x6, 0x0)
shmctl$auto(0x401, 0x2, &(0x7f00000002c0)={{0x4, r1, r2, 0x4, 0x8001, 0x4, 0x1}, 0x8, 0x10000, 0x3, 0x1ff, @inferred=r3, @inferred=r4, 0x800, 0x0, &(0x7f00000001c0)="e943da0f05a047a76f1c856f612a9b3139cbea06f2b9a16b4a65eca527d074c3e61d6657901746042442b6fcaaaafc763b9948f382bc2fd6128548ea49bd6899e48d6f2161e5d743fb8920591aed480d1149afbd30335b644d37c863544723", &(0x7f0000000240)="0fcfeecf7f6e9460edf32900c693618fd7ecc185e07650e6c749366b4b396b641ec1ae8daf20d5f993ecf628ac806b7a2ebe65e97d852b68c5ce7b19b50f874eb3ba275cf56d8936e54af0158d4442"})
read$auto_proc_pid_attr_operations_base(r0, 0x0, 0x0)

9m34.352618641s ago: executing program 2 (id=862):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
setrlimit$auto(0xb, 0x0)
r0 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/numa_maps\x00', 0x22000, 0x0)
read$auto_proc_sessionid_operations_base(r0, &(0x7f00000000c0)=""/4096, 0x1000)
r1 = socket(0xa, 0x2, 0x73)
sendto$auto(r1, 0x0, 0x402, 0xfffffffe, &(0x7f0000000000)=@generic={0xa, "e2c483400200ff803636166b00"}, 0x1c)
syz_genetlink_get_family_id$auto_l2tp(0x0, r1)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
r2 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0)
ioctl$auto_LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
ioctl$auto_LOOP_CTL_GET_FREE(r2, 0x4c82, 0x0)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video48\x00', 0x18a041, 0x0)
syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000040), 0xffffffffffffffff)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
getsockopt$auto(0xffffffffffffffff, 0x119, 0x1, 0x0, 0x0)
epoll_ctl$auto(0xffffffffffffffff, 0x1, r3, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/hid/drivers/hid-retrode/bind\x00', 0x32000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0xc7f16bff2a10ba01, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f00000000c0), 0x1000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/nr4/statistics/tx_window_errors\x00', 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x1056c0, 0x0)
mq_open$auto(&(0x7f00000020c0)='.\xf1\x00', 0x56a, 0x2d, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0)

9m31.324047811s ago: executing program 2 (id=864):
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) (async)
write$auto(r0, 0x0, 0x2)
getrlimit$auto(0x3, 0x0)
fdatasync$auto(r0) (async)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x1102, 0x0) (async, rerun: 64)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0) (async, rerun: 64)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) (async)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0) (async)
init_module$auto(0x0, 0xffff9, 0x0) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r2 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r2, 0xffffffffffdffe00, &(0x7f0000000140)=';') (async)
pselect6$auto(0x9, &(0x7f0000000300)={[0x9, 0x2, 0x9, 0x0, 0x8001, 0x4000000000002bc8, 0xf0, 0x9, 0x3, 0x80005, 0x8000000000000001, 0x0, 0x4c, 0x2, 0x8, 0x3ff]}, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0x8030ae7c, r3) (async, rerun: 64)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (rerun: 64)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)

9m29.145624858s ago: executing program 2 (id=869):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000f9dbdf250100000006000200000000000500070080000000080009000100000008000a000800000014001f00000000a9110000000000ffffac1414aa14002000"], 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004)

9m29.044691556s ago: executing program 2 (id=871):
unshare$auto(0x40000080) (async, rerun: 64)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x20008800) (async, rerun: 64)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="08002bbd7060fddbdf251f0000000400500108009e007f0000001900130012dac3a31fb8066b35cf4e6b0096f4e08eee92e47c5ba249"], 0x3c}, 0x1, 0x0, 0x0, 0x4040}, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
acct$auto(&(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_gps/degp/dT\x02\xa2%h\xdd\xfep\x0e\xe6\x96w\x05r\x9c\xb6L\t0\x0f\x954\xf6\b\xa0&C\x83L\xc0\xe9\t\"\xa5\x8f\xce\x03\xb6\x16\x90\xc3\x97\xb7\n\"zB\xedCf\xfd \x87\xdb\x8f\x87\xe9\xea\x89-B\x06\x97\xcb+\xf09\xa1\xa5\x8d\x9b\b\xc8\x15\xb6|\xc7 t\xc8#\xf8,\xab\xa7\xf6\x03Z\x93\xf5\xc8\x87\xc9z}]\x85\xcc\xd5d\x02\x90{\xc3_\xd4>b\x96\xc5\x93\xb1\xa0E\xda\xb8\xb1\xa5G\r\xf4[\xec \"\xd9\x13\x803\xa6V\xe3\x06\xc72\xc0d|?\xfaA\xd2\xd6\xce\xfa\x9a\x98\x01\aXV.\xf15>;\xfat9\x8f\xbf\x8dRQf\xa4\x11\x13\xa0R\xcb\xc2v\x0f\xfc\xb3:f\x8f\xae\xcc\xbb\xd2\xfa\xef%\xfa\x85\xd9\x7fL\xad\xab\xd0\xd1\xc9vJr\x89\x90vq\x17\xbb\x82[D\xedJ\xe3{re\x8a\xeb~\xf1V<\xc2p~\x90\xe6\x1c\xf86\xeb\x11\xe2\x90\rr\xda.\x82\xbd\x0f\xbd{\x861\x03\xda-#\\^`\xc8\x01%V\xab\r\b\xde\xaa\xf8s\x86K\bR\x12\xbc{\xef\xc5<\xfd\x02\xe2\xf0\br\xde\n\xe4\xa6\v\xbcd\x9e\xe9\xbd\x18\x89\xa1\xe8w\x0e7\xae\x10e\xb6\xce\xe25\xdf\xd8\x12X`\xec\n\x87\x86X\x9b\x80i7\xcb\xed\xbdQ\xe4\xbb*\xedq\xb0>\x92\xb6W\b\x1eV\xadk\x11\xa9\xa1\x1f\xe1\xac\xb7\xd0\xcc\x94\xc1g\x8c\xe5\xf0\"\xe1\xc2. \\X\xe0\xd30\xa9X\x8dB\xb1\xddS\xbey\xb4]j \x96\xe3\x84\xcc\x02C\xd23\x16T\xden\"\xea\xf2j\b\xd2\xf6\xe5\xc2a\xaa\xefr\x80\rZ\x06s\xa0\xaf\x93MmM|\xfdN\x19\xf0RS\xc4\xca\x84H\x19T\xd4\xc4\x00\rO\xce\x04\x00\x00\x00\x00\x00\x00\x8a\xd0\xd48\xb4\x0e0\xff\x98\xce\x01\'\x83i\xd9\x94\xcf\xd7\x03_|J\x9b\x06q\x0e\xdf_/\x00\xfa\xcd\xb9\"L\x17\xc3\xdc\x16\xc7\x02\xb7\x91\x85Ot\xd0r\xc2r\xee\xce\xefU\x1a\x89\xd6,\x04\x96o<o\x814\xb4\v?6>\xb9\x1b\x19b&O\xf2\xf1\xef\xd1\x04A\x00q?\xa0\x00\xec\xf17\xbbpu\xeeW\xd7HSXt\xe4\xf07+\xc8\xd3\x87|\x15\x9b\x95t\x195l\xcb\xfd\xae@\xbd>\xdcd\xaa\x19r\xec_>\xf2\x7f\xe6\xe7\x1c\x1dE\x87k(k\x98\x81\xe8\t\"\xed\x94\xe33\xebk*\xc1\xcc\x98\x1d\xdd\x9c\v\xc3\xef\x9b\xc3\xca\x14\xb54\x8aS\xa0`*\xc4\xe6|n\xc7\xbf1\x02yc\xc2\xf3\xb1\x0e\xb4\xc5\xf3\xe2\x10\xa9\xbdQ\xb6\xc7\x81_3^y\x06\x0f\xec\x95\xf0QP\x1c\xc7;\x7f\x03i\x91\xff\xa0\xfek\xb1\xd1\xa3w\x1b\'[\x00|\xe6\xaa\xe3 \x9d\xb6g\xe2l\xe3q!\xfa\x15\xab\x9e\xe0\xbbp\xcfqT<\xe0\"\x17\x1a\xd3\xa6\x05\xa40\x9a\x90\x12\x17t%\x17+\x8b\xf7u\x93\xf9') (async)
fanotify_init$auto(0x65, 0x2) (async)
socket(0x1d, 0x2, 0x2) (async, rerun: 64)
connect$auto(0x3, 0x0, 0x55) (rerun: 64)
socket(0x10, 0x3, 0x6) (async)
socketpair$auto(0x1e, 0xb, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x38}, 0x6, 0x0, 0x4, 0x9}, 0x9}, 0x6, 0x1f00)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001480)='/proc/sys/net/ipv6/conf/geneve0/disable_ipv6\x00', 0x40001, 0x0)
write$auto(r0, &(0x7f0000001680)='\v\x90\xd1\xda\xbc>1\x8ag\x14\x18\xbe\xdc\x00', 0x1)

9m13.365640578s ago: executing program 32 (id=871):
unshare$auto(0x40000080) (async, rerun: 64)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x20008800) (async, rerun: 64)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="08002bbd7060fddbdf251f0000000400500108009e007f0000001900130012dac3a31fb8066b35cf4e6b0096f4e08eee92e47c5ba249"], 0x3c}, 0x1, 0x0, 0x0, 0x4040}, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
acct$auto(&(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_gps/degp/dT\x02\xa2%h\xdd\xfep\x0e\xe6\x96w\x05r\x9c\xb6L\t0\x0f\x954\xf6\b\xa0&C\x83L\xc0\xe9\t\"\xa5\x8f\xce\x03\xb6\x16\x90\xc3\x97\xb7\n\"zB\xedCf\xfd \x87\xdb\x8f\x87\xe9\xea\x89-B\x06\x97\xcb+\xf09\xa1\xa5\x8d\x9b\b\xc8\x15\xb6|\xc7 t\xc8#\xf8,\xab\xa7\xf6\x03Z\x93\xf5\xc8\x87\xc9z}]\x85\xcc\xd5d\x02\x90{\xc3_\xd4>b\x96\xc5\x93\xb1\xa0E\xda\xb8\xb1\xa5G\r\xf4[\xec \"\xd9\x13\x803\xa6V\xe3\x06\xc72\xc0d|?\xfaA\xd2\xd6\xce\xfa\x9a\x98\x01\aXV.\xf15>;\xfat9\x8f\xbf\x8dRQf\xa4\x11\x13\xa0R\xcb\xc2v\x0f\xfc\xb3:f\x8f\xae\xcc\xbb\xd2\xfa\xef%\xfa\x85\xd9\x7fL\xad\xab\xd0\xd1\xc9vJr\x89\x90vq\x17\xbb\x82[D\xedJ\xe3{re\x8a\xeb~\xf1V<\xc2p~\x90\xe6\x1c\xf86\xeb\x11\xe2\x90\rr\xda.\x82\xbd\x0f\xbd{\x861\x03\xda-#\\^`\xc8\x01%V\xab\r\b\xde\xaa\xf8s\x86K\bR\x12\xbc{\xef\xc5<\xfd\x02\xe2\xf0\br\xde\n\xe4\xa6\v\xbcd\x9e\xe9\xbd\x18\x89\xa1\xe8w\x0e7\xae\x10e\xb6\xce\xe25\xdf\xd8\x12X`\xec\n\x87\x86X\x9b\x80i7\xcb\xed\xbdQ\xe4\xbb*\xedq\xb0>\x92\xb6W\b\x1eV\xadk\x11\xa9\xa1\x1f\xe1\xac\xb7\xd0\xcc\x94\xc1g\x8c\xe5\xf0\"\xe1\xc2. \\X\xe0\xd30\xa9X\x8dB\xb1\xddS\xbey\xb4]j \x96\xe3\x84\xcc\x02C\xd23\x16T\xden\"\xea\xf2j\b\xd2\xf6\xe5\xc2a\xaa\xefr\x80\rZ\x06s\xa0\xaf\x93MmM|\xfdN\x19\xf0RS\xc4\xca\x84H\x19T\xd4\xc4\x00\rO\xce\x04\x00\x00\x00\x00\x00\x00\x8a\xd0\xd48\xb4\x0e0\xff\x98\xce\x01\'\x83i\xd9\x94\xcf\xd7\x03_|J\x9b\x06q\x0e\xdf_/\x00\xfa\xcd\xb9\"L\x17\xc3\xdc\x16\xc7\x02\xb7\x91\x85Ot\xd0r\xc2r\xee\xce\xefU\x1a\x89\xd6,\x04\x96o<o\x814\xb4\v?6>\xb9\x1b\x19b&O\xf2\xf1\xef\xd1\x04A\x00q?\xa0\x00\xec\xf17\xbbpu\xeeW\xd7HSXt\xe4\xf07+\xc8\xd3\x87|\x15\x9b\x95t\x195l\xcb\xfd\xae@\xbd>\xdcd\xaa\x19r\xec_>\xf2\x7f\xe6\xe7\x1c\x1dE\x87k(k\x98\x81\xe8\t\"\xed\x94\xe33\xebk*\xc1\xcc\x98\x1d\xdd\x9c\v\xc3\xef\x9b\xc3\xca\x14\xb54\x8aS\xa0`*\xc4\xe6|n\xc7\xbf1\x02yc\xc2\xf3\xb1\x0e\xb4\xc5\xf3\xe2\x10\xa9\xbdQ\xb6\xc7\x81_3^y\x06\x0f\xec\x95\xf0QP\x1c\xc7;\x7f\x03i\x91\xff\xa0\xfek\xb1\xd1\xa3w\x1b\'[\x00|\xe6\xaa\xe3 \x9d\xb6g\xe2l\xe3q!\xfa\x15\xab\x9e\xe0\xbbp\xcfqT<\xe0\"\x17\x1a\xd3\xa6\x05\xa40\x9a\x90\x12\x17t%\x17+\x8b\xf7u\x93\xf9') (async)
fanotify_init$auto(0x65, 0x2) (async)
socket(0x1d, 0x2, 0x2) (async, rerun: 64)
connect$auto(0x3, 0x0, 0x55) (rerun: 64)
socket(0x10, 0x3, 0x6) (async)
socketpair$auto(0x1e, 0xb, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x38}, 0x6, 0x0, 0x4, 0x9}, 0x9}, 0x6, 0x1f00)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001480)='/proc/sys/net/ipv6/conf/geneve0/disable_ipv6\x00', 0x40001, 0x0)
write$auto(r0, &(0x7f0000001680)='\v\x90\xd1\xda\xbc>1\x8ag\x14\x18\xbe\xdc\x00', 0x1)

1m55.194420554s ago: executing program 1 (id=2491):
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x1)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
r1 = socket(0xa, 0x2, 0x3a)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x602, 0x1)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
fanotify_mark$auto(0x0, 0x451, 0xa, r2, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
fallocate$auto(r3, 0x0, 0x400000a, 0x4b)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, r1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
timer_gettime$auto(0x4, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socketpair$auto(0x6, 0x3ff, 0x8000000000000000, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@ethernet={0x1, @link_local}, 0x6a)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000)
setsockopt$auto(r1, 0x29, 0x42, 0x0, 0x3)
fanotify_mark$auto(0x0, 0x55, 0x9, r0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
chdir$auto(&(0x7f0000000040)='}[,&*}\x00')
ioctl$auto_TUNSETVNETLE2(r4, 0x400454dc, &(0x7f0000000080))
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_dma_heap_fops_dma_heap(0xffffffffffffffff, 0xffffffffffdffe00, &(0x7f0000000140))

1m51.437227503s ago: executing program 1 (id=2498):
openat$auto_proc_pid_set_timerslack_ns_operations_base(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fedbdf250200000008002700040000000a001800aa"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000540)='/proc/sys/kernel/watchdog_thresh\x00', 0x20402, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
bpf$auto(0x12, &(0x7f0000000040)=@enable_stats={0x1}, 0x26)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0)
r2 = prctl$auto(0x1000000003b, 0x2, 0x4, 0x5, 0x7)
mq_timedsend$auto(r2, 0x0, 0x2, 0x9, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f00000001c0))
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r3, 0x5001, 0x0)
read$auto(r1, 0x0, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0)
socket(0x22, 0x3, 0x0)
sendfile$auto(r0, r4, 0x0, 0x1000200)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000b00)='/dev/cuse\x00', 0x0, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x801, 0x106)
select$auto(0x5, 0x0, &(0x7f0000000140)={[0x9, 0x8, 0x3, 0x10, 0x3, 0x9, 0x9, 0xff, 0x3, 0x2, 0x2, 0x7, 0x100000001, 0x8000000000000001, 0x4, 0x9]}, 0x0, 0x0)
socket(0x11, 0x80000, 0x84)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x460802, 0x0)
ioctl$auto_MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, &(0x7f0000000180)={0x0, 0x3, 0x1830})
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)

1m49.707880746s ago: executing program 1 (id=2502):
pipe$auto(0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xcfk', 0x81)
move_pages$auto(0x0, 0x5, &(0x7f0000000380)=&(0x7f0000000280), &(0x7f00000003c0)=0x1, 0x0, 0x2)
mmap$auto(0x0, 0x3, 0x2, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0xe, 0x0)
ioprio_set$auto(0x2, 0xee01, 0xc100000)
lsm_list_modules$auto(0x0, 0x0, 0x0)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
mmap$auto(0x0, 0x20009, 0xdb, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x301880, 0x0)
socket(0x1e, 0x2, 0x84)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$auto_KVM_GET_MSRS(r0, 0xc008ae88, &(0x7f0000000040)={0x10, 0x0, [{0x48d, 0x400, 0x9}]})
io_uring_setup$auto(0x6, 0x0)
socketpair$auto(0x10001e, 0x5, 0xfffffffc, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
socketpair$auto(0x1, 0x1, 0x0, 0x0)
r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0xfffffbfffffffffc, 0xe983, 0xdf, 0x13, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8000)
connect$auto(0x4, 0x0, 0x10)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
read$auto(0x3, 0x0, 0x1f40)
read$auto(0x4, 0x0, 0xfdef)
close_range$auto(r1, r1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vbi8\x00', 0xa240, 0x0)

1m48.3947686s ago: executing program 1 (id=2504):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b) (async)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x2, 0x1, 0x0, 0x1, 0x6) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
unshare$auto(0x40000080) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4901b3374a6ece17d18d", @ANYRES16=r1, @ANYBLOB="cf5728bd7000fedbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x7f) (async)
mprotect$auto(0x8000, 0x8, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, 0x0) (async)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
read$auto(r0, 0x0, 0x3) (async)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
fanotify_init$auto(0x2, 0x8a) (async)
process_vm_readv$auto(0x0, 0x0, 0x800000001, 0x0, 0x6, 0x0)
r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x1000000a, 0xfffffffd, 0x44b, 0x7, 0x5, 0x1007181, 0xff, 0x7, 0x7, 0x7ff, 0x800c, 0x80000001, 0x4, 0x80200000000001, 0x800000000fbf, 0xde3, 0x9809588, 0xfffffffd, 0x2, 0x0, 0x864, 0x6, 0x22000, 0x40200, 0xfffffffe, 0xc3f, 0x2000000, 0x0, 0x0, 0x0, 0x0, [0x1000000000000000, 0x0, 0x0, 0x7fdf, 0x47, 0x0, 0x100, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44cd98b, 0xfffffffffffffffd, 0x0, 0x0, 0x8000000000000, 0x0, 0x6, 0x6, 0x0, 0x0, 0x6, 0x10001, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x3, 0x10000000, 0x0, 0x6, 0xfffffffffffffffe, 0x0, 0x0, 0x3, 0x0, 0x2000000000000]}, 0xa, 0xd) (async)
ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffffffffffd02, &(0x7f00000001c0))

1m42.470084333s ago: executing program 1 (id=2514):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x88400, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x7, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000db, 0xeb1, 0x400, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
inotify_init1$auto(0x800)
pipe$auto(0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
open(0x0, 0x22240, 0x55)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$auto(0x3, 0x40106f52, r2)
r3 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0)
r4 = socket(0x22, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x80044943, 0x0)
ioctl$auto_I2C_SMBUS(r3, 0x720, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="97940800ab05c6000000000000000000020000d30b3efe48267fad1a7a16eff8f5b8c4da3372bf3f371c96f16bed86a560bf77a644ff1056e2c35b52fe6b81a0d3f7d6e666830a325653a18d4638bdd15510c384aeba8324e7819116a5b145a110cc7d9b9baca3414a617f", @ANYRES16=0x0, @ANYBLOB="010025bd7000ffdbdf25040000000a0016000002000000000000"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x4004040)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r0)

1m41.649583547s ago: executing program 1 (id=2515):
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x7, 0xd, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/kernel/watchdog_cpumask\x00', 0x141241, 0x0)
write$auto(r1, 0x0, 0x0)
sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x400c1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0x100000000)
socket(0x2, 0x1, 0x106)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x74c)
shutdown$auto(0x200000003, 0x2)
r2 = getpgrp(0xffffffffffffffff)
fcntl$auto_F_SETOWN(0xffffffffffffffff, 0x8, r2)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r0, &(0x7f0000003600)={0x0, 0x0, &(0x7f00000035c0)={0x0, 0x1dac}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xcd, 0x0, 0x567)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)

1m26.001759167s ago: executing program 33 (id=2515):
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/security/tomoyo/manager\x00', 0x2, 0x0)
mmap$auto(0x2, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
fadvise64$auto_POSIX_FADV_NORMAL(0xffffffffffffffff, 0x7, 0xd, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/kernel/watchdog_cpumask\x00', 0x141241, 0x0)
write$auto(r1, 0x0, 0x0)
sendmsg$auto_IEEE802154_LLSEC_LIST_SECLEVEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4000001}, 0x400c1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0x100000000)
socket(0x2, 0x1, 0x106)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x74c)
shutdown$auto(0x200000003, 0x2)
r2 = getpgrp(0xffffffffffffffff)
fcntl$auto_F_SETOWN(0xffffffffffffffff, 0x8, r2)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r0, &(0x7f0000003600)={0x0, 0x0, &(0x7f00000035c0)={0x0, 0x1dac}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xcd, 0x0, 0x567)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)

11.765196481s ago: executing program 4 (id=2622):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2, 0x800000dc, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@inferred, 0x1, 0x1, 0x81, "3112d585005a614d19e22af9ffb683dbede3d0bf828bbfba40f035f4be6b7fe5e2f94bd90484b0755015e48d", @inferred=<r1=>0x0}, 0x401, 0x5, 0x4, @inferred, @integer={0xdbe, 0x255, 0x8}, "7a9fc199a16a2311eacf2fc7ae1d8778dc618090334fdd73340238d21000debe0eda71bdd709254592b67f9cb5adb17884a16f7ce8cbce0bb32791702b8d7c2d"})
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000640)={0x0, 0x1d, 0x3800, 0x2, 0x7, 0x400a, <r2=>0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7b, 0x0, 0x5, 0xfffffffffffffffd}, {0x100, 0x20001, 0x52, 0x85, 0x2, 0x0, 0x2072c2, 0xc, 0x100000000}})
io_uring_register$auto(0x2, 0x20, &(0x7f0000000240), 0x1)
adjtimex$auto(0x0)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mtd/mtd0/bitflip_threshold\x00', 0x2062, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000026c0)={0x16f4, r6, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xf}, @IPVS_CMD_ATTR_DAEMON={0x16d5, 0x3, 0x0, 0x1, [@nested={0x59c, 0x117, 0x0, 0x1, [@typed={0x8, 0x51, 0x0, 0x0, @fd=r5}, @typed={0x8, 0xf5, 0x0, 0x0, @pid=r1}, @nested={0x584, 0xba, 0x0, 0x1, [@nested={0x311, 0x7f, 0x0, 0x1, [@nested={0x14f, 0xce, 0x0, 0x1, [@typed={0x6, 0x15, 0x0, 0x0, @str=':\x00'}, @generic="7ab672e94a0a402f7de7baf35855b24f745e28db025d8f0067d146007c13d94cd3d3d5b74365c7193f5f981e5d1fed36b20ecad903532030bb9934b1d383a105b5c54a267cf22a2ac8a49ad7955be5ebd73e4959ba2d9cf653c8877bc9fae8eb10a5042749da0b8c57c943c85244bdb62fabfdc65a046883d448067d6ea847ad035c082a537a2f37086802e74943bfe90becae35c8de58", @typed={0xaa, 0x144, 0x0, 0x0, @binary="06000abc58623c8c976ae5ae6cf8a0995cf9fc4b285eb50363c760c6ef9cef73a3509223588af6a891416b9d66704956f564e3a296b5fb8b9c9e45b0a33fc7d86353e4370f86be4ebd49e0e4fbf6eeb9a9c620eb5859ac006699e7826d618ed06d784f6ad8c1c1c5f37fe7449dde79914f5001e5f8d43b9a3da98fb581eb4b793f3ed96e4da2b0546081c7fb60cdad70fd0c35a270204e56a461f69f2460858d623c30662f21"}]}, @nested={0x130, 0x107, 0x0, 0x1, [@generic="12c71ff4479d6d7984e6fcdb687bbf25992ff1101de54911a373719f79175178c58cdd", @typed={0xc7, 0x2f, 0x0, 0x0, @binary="47e5dfdfe806015ac055c701d7f0c9325860dbe68c89a079b7bc1ccf9dc50b442c7af3084c31b6924d8026c84755fbec17d7228d8ad479db94f3b1a592ace03bd93e647a290698869ee4613bbaa0efa4211754e347e993a5609bc6acd186060a4c0b639672f8ec3b7c0c48ce2530c1cda759f464ccdcb965d5d68a01a1bf7c31f1eb6dcb2b5b7502ed7f3791d901a638ab2d0beb4c13fd2fb57cca44d918a578e68073d97f57edf4a56c8eebc7941a24d01a1d94eff53c000a699698904d7c4a4d8345"}, @generic="d9a3523ef136e1392a25e00e35f5d87e301f7b31463733f094460accbb7749faede1d7adc1fe39f87b26f6df306e23f7311de5782a", @typed={0x5, 0x146, 0x0, 0x0, @str='\x00'}, @nested={0x4, 0xc9}]}, @generic="4cfd6cbc5d82288080631ffb5ea2945a18f68039e122cebb90c8fab07b3891cccc6e9fd5f7a42eecd15226be984a225da25806e5a35d12ac80a67441ce4ce7be44e5f46ad35820bde62e32d7644aa7b35b064fe462bad0455a055b0508beb24fcf2fed1930e3e68ccfb18b265e7670e6fa9e0aa590a6eed0938b22659edcf3dbe26b25ffc2a1d59c2db8b064a0"]}, @nested={0x26c, 0x19, 0x0, 0x1, [@nested={0x265, 0x124, 0x0, 0x1, [@typed={0xc, 0x11d, 0x0, 0x0, @u64=0x9}, @typed={0xbc, 0x8d, 0x0, 0x0, @binary="10ca8e5b0ea2faf01860f67992b6f7c16fcc322b30082c2e83b45c71f83445662116872f4be4a9d08778a72ccef0a4a11bf2aecc25268f873539544a5f271838a99d161cee61c6f78be3dc867329c084677975aed1858095f09f74aabd69d8277a57f45ffbf806bbfdada0e6dffa8ddb043e6be8b7277069bbc979f79b51eb66fe198f1c4eca833cfbb281003597954ebfae0e174dcaaf3eac4786a8ea9381194478664a7b5f56cb1d77c55c6ba1090147a675425aeab482"}, @nested={0x4, 0x132}, @nested={0x4, 0x129}, @typed={0x4, 0xdc}, @typed={0x8, 0x150, 0x0, 0x0, @fd=r5}, @generic="45afc7074792787e0864ff849d7d3b6922007973849ff335b79735af0f81fac4ffdbe22ac011c5ae0795db63d63755831271c6073baee63c2c5e252f0f803c9b8871ab12b07b05addaa1511664c2312eb630abff66f93dc07cb5a83638873c32686ef91aa86b15792a22f27f38cb6a779ad3f7561886a706c0d8b404a3493cb6aeb1a99f65cc8b62ab16bda4aa4aafd53b552d58761ffd9b2e1bc3dd111872542ff37129", @generic="c76604418a46984c4bb5d7cf00c66cfd50958c06fcfaa1239abd1aca75d0f32fbf0f6682078d28dc323bf9a02b9d2d1253e672c113e017fb536744a014a91f3f42c3860726693c6d", @generic="c07e41f6a0a1be4b6de00d31be5c93703ce39f37d56b4bb898c25ba71a06aa94932ac218d7d283636907424fcc0a991019a9576b2cc3e742bd93267f67f563098072d1afe2583a29fa7a40c91237ef377088a8104a13f5ddc2c52ee140e65943addaf4bc8b7d71e2338583a9b470d9825b568ed0d41a9055ed9f2f5bc79be3a1429d142c163553a079f243e3db3505f6e29a51089f08fc3a6b"]}]}]}, @nested={0x4, 0x77}]}, @generic="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", @typed={0xdd, 0x154, 0x0, 0x0, @binary="d7edc1b395e2333b5d81436546503fbcdfb0e0db009ce84301ee42614c33e4b9f71b2aab9edcde10eecaef8158f812cee8fad5998ffcadc9fa6abfc2d5c229969829cbdfb0934a452054f8af81fbe4bad4242a385fea2dba863d65015d80c6419857b02d668c2ccdc14e2dd0933bc52223b9a826de8ae7d6f8e8ff7b596f081193990ebe910fc09188a3dc2988a21c4f29b862cb9b52cd766d38341465dc224f9565ac10effdece1775c14befadd51ac7f54d493c10705e6acaf83209d916e785ce591d95c0f639c9a9b874ff2ffe9685985a14ffae25b7ebf"}]}]}, 0x16f4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r7 = syz_clone(0x20000000, &(0x7f00000001c0), 0x0, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)="2918758169251555183442853a27ba37074b62633f338d1a7b74c6ff4c91676d9a5e0078ab1db0f30dc404f23fd5820a80ed88704e31ac2c5f3169cb36f22141f45b35a2e04fe71bc918ec46671bf5d28d8d26ce4970c811a8b669c7011c3e9ff8b2109640c07450f5b7b624fde03bb975adc229120a3b8750efcf8a90044854f04b55f429540f9fc390d24df293299b9c4395aed65212fdd9a1597ffcfaf9b3008f77bcc5a593486eb61127560aa974af592514e14d7d")
r8 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f00000003c0)={@_si_pad}, 0x1ecc, &(0x7f0000000440)={{0xffffffff, 0x2}, {0x7, 0x19}, 0x9, 0x80000000, 0x4, 0x5, 0x8000000000000001, 0x6, 0x6, 0x0, 0x9, 0x0, 0x0, 0x1000, 0x0, 0x4})
set_tid_address$auto(&(0x7f0000000500)=0x5)
r9 = getpgid$auto(0x0)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r4, &(0x7f0000000ac0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000a80)={&(0x7f0000000540)=ANY=[@ANYBLOB="3405", @ANYRES16=r6, @ANYBLOB="000226bd7000fbdbdf25020000000800050007000000080006000300000008000400050000001001028075ff83876574dcf7444c53b88992e69a471bfa58053dc94ad66d0953fb1b9cb401c147df5f31671dfc0f9284424129a2c5ce70c649ade9aae6d814619bf71bbd80efe680cd9bc3e7aa59478b4e3e4d0ce05691deebfebdb666888d6f5549d48d92470028f2ccb239e0e683f1107459a18b09a092829949129087a8c782cb94fd36de9315f583a56ceee0e6023fa204fdb92ada8640c18311479406aa31ba39687f786747f4eaef95", @ANYRES32=0x0, @ANYBLOB="19e833e93fdf0b102a18ee6b8436634483ed5729eb26e2267dcf5d3a2eaf51db79c25d370c37cf662d480e08f268f1743cd215589548d9cb71", @ANYRES32=r7, @ANYBLOB="1800fd80040086807290395bf5dd39680400b5800400098021011a800400", @ANYRES32=r8, @ANYRES32=0x0, @ANYBLOB="490f786928777dc08e0861d26a194926ce9dc2c2fcb0dd40666bd041f1c1ee6c8800c408008000", @ANYBLOB="0800e300", @ANYRES32=r9, @ANYBLOB="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"], 0x534}, 0x1, 0x0, 0x0, 0x28014044}, 0x0)
r10 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x8203, 0x0)
ioctl$auto(r10, 0x80046f45, 0x38)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
r11 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$auto_tomoyo_operations_securityfs_if(r11, &(0x7f0000000100)="0a1b9a3c3e3e006e163bb154d788", 0xe)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)

9.755755513s ago: executing program 4 (id=2624):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/013/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000100)={0x2, 0x80, 0xffff, 0x5, &(0x7f0000000240)="00000100007a8b00", 0xc694, 0x3, 0x80005, @stream_id=0x7, 0x2004b, 0xc, 0x0})
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\x0e\x1c\xc7k', 0x1)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/net/rpc/auth.unix.gid/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000040)="20edd9d1027e0dc0023af10e9bfa1babfa3a3753ca9aee370a", 0x19)
socket(0x2, 0x5, 0x0)
socket(0xa, 0x80803, 0x6) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) (async)
shutdown$auto(0x200000003, 0x2) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
setrlimit$auto(0x7, 0x0)
signalfd$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x8000000000000000}, 0x8) (async)
write$auto(0xffffffffffffffff, &(0x7f00000002c0)='Y\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\xe21\xdeD\x82\xed\xdbJ\xda^\xceY\xa4\xbe\x06\x7fKE\xa2\xa5\v\"e\xe4\xb9\xe2\t\a_\xe5\xd0\xfd\xbb\xdb\xba{4\xba\x85\x85\x18\xbbQ\x85\xfeG<\xdd\xb1XS\xc3\xaa\xce\xf9\x87\xc1\x18\xb48\x7f\xec\x94\\5\x98\x1fl\x9d\xe0m\'\xc2v9\xce\x14d3\xf4M\xe3\xf9\x1bY\x9c\xbei|\xd0\xa7Q\x03?\x97(b\xb9\x8bK$\x96%\x9aBUw\xd9\f\xd8h\x96u\xe8\xf4@\xdb\xc7\xfe\xd7\xa0\n0\xbc\x82\xea\x1f\x92\x8a]3]z=\x02\x85\x05\xfa\v\xcd\xf5\xa3m\xbem\xb7\xc4\x12\xce\x05F]\xd3\x9c\x85\xb1\xe0\xc8\x8c\x9a\x9a\x8c\xaa\xa3Md\xd6-8^\xb5\x84\xd0\xe4\xd5M\x14Aa?A\x8a\xd0:\x81\xae\xaf\xd4\xe3;E1<\xec\x12\xf2\xe0\xfc\xb4\xacD\xbc\xd6}\xca\xa6\x9a\xaa\x8c w\xd5DSbW\xa9<W\x9f\x9e\x00\xf1\x95\xc8\xc1\b\xdc\xf4n+\xd4\x04\xf6\xea\x8a\x91\xe2\xd5\xe1u\x00\x00\x00m`\xaa\xe1Tl\x00\x00\x00', 0x5)

8.906196082s ago: executing program 5 (id=2626):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/rxrpc/peers\x00', 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r1 = epoll_create$auto(0x5)
fremovexattr$auto(r1, &(0x7f00000005c0)='6\x00\x99z\xfd\xa2\xbb\xda\x1f\x0e,\x93;ft\xd564P\xbf\x9fBupw\x05\x12\xbf\x0f\x91&\xaa\xd8\xa3x~\xb1\xbc\x13@Ul\xfe\xb9\xb7%\xa5@\xe2\xee6y\xccf)\x9a\x06\x12\xd0\x17#\xa9\xe2\x1d\xff{j$\xbbfZ0\xcaUL-\xf5P\x95\x894#$\x837P\xd7\xa2\x1d\xd8a\x02\x7f\x1b\xe7\xcfM\xad\x81\xd3tN\x06I\xcc\x86Z-\x01m\x8e\xd9nR\xe3\xff\xf5+\x8bz\x83\xadi\x1c<\x8fPm\xdaIX\xa3\x11\xb9\x01\xa6b\xaf\x91ev\x17Gl6\x9a\xdb\xa2LzB\xa1\xfcl\x05H\x88Ya\x9a\xa3;g\x02\nuD\x8b\xa8%\xbd\xf7AU\xc7\x0fL.\xec\x99\xfb\x12pg8\x9ar\xbf\xc1\xf7EC\x16\xfb\xbfz-XKny\x95\xde\xe4u\xb4\xf9/\x81\xfb\x8e\xfd\xb0\xed\xa0{\xfedvt\xbd\x83\x9e\bvu\xe7\x03\x00\x00\x00b*\xea\xf9\\\xe7\xf6\xde\x1fQ\xbc\xda\xf8\a9}\x973\x87\x10\x14T\xa1 r</[5\x11\n\xe60p\va\xdb\xb41\xdd\xb8T\xb8\x9c\xa2\x98FBo\x17B \x1c\x87\x81,\xbd\xff\xe9(\x0e\xddy\xe0\xdd\xcdT\xb9*\x1b\xad\xaf\x84d\x8c\xa1.Jd\xfe\x1cz\x18\x12~X\xc6L\x13\xed\xa5\x97G\xe1\xbf\xb3\xbdi\xbc\x18w\xa7\x1d\xefo]bP\xcd)\x87\xda\xabS*]\xcfM\xd9\xf8\xf2\x98S\x8c\x9c\x9d\xee\xc63\x03\xcd\x02C\xfa\xab\xdd\x17\xe0\xf2\xe5 \xc0\xbe\xberR\xc8\x99/\x96\x82V\x02Iwp\x9a\x1b\xecue\xa8\xb6\x82\xb7\xa1\xe0\xf5\x9a\xf6s-\xe1vr7u\x00\x99\xc9C\x9cK\xd9\x82l\x12}\xe1\xd3\v3\xdc\x95\xc5\xdc\xc6h\x18\a;\xca\xb6GvI\xbe\x8e3\xa1=8\xcf\x91\x1a<\xff\xf2\xb6\xb4\x97\a\'\x1ai\xb8\xfe\x8b\xce\x9e\x95\xfa\x11\x03n\xe0d.\xa8W:k\xc6:Ar\xfd\xf1\xf5\xbc\x80\xb9\xe6\x8a\x7f\fg{\x02\xd2\xac\xa7|\xbd>c*\xbd\xbe|f\xab\xfb\x1c(\xaeWF\xee\x95\xe7\x9d\xdb\xe3\x0f\'x\xce\x111\xfa\xd6\xfb\\\xe88\xe4\'\x88\x7f\a\xd4}\xad\x87@1\xe6\x88\xddc\t\xd7qSGg\xbbW\xf5\x0el\xe5I\x14\xe3\xca\xce\xac\xef\xa5\x13|\xac\"\x1b\xe9\x18\xcc\xa9\x88\xa6\xfd\"\x81qY\x06\x9b\xdb\xd8bcZB\xd8a\x10$\xac\x9e[\xbf\xf5\xbc\xa0k\x8d\xe7\x05\x8er\x8d\f`\a\xc1\x1c\x06\xeb\xaf\xa3Tu\xdcH\x14\x17@\xba$\x14+\xb8\xc6\x910\x8e\xdc\xe1#\x10\xad\x1e\x97d\t\x85L\xc3q6:\x0f!\x14\xf8\x82\xbdV}\xce3\xaf\xa0\xfa\xb69\xef\xb2\x06\xfa\x8d\xb5\x1b\xa01\x17m\x11m\x1a\xa7\xf4B\x9e\xe5\aI\xe7\x13\xdb\x1f\xbb@\xfd\n\x82j\xa6{\xd7\xeejN\x7f\xaf\xdc6\x00\xec+IA*\xf9O\xc4\x84\xf5\x81\x8d\xafo\xf5\xc0`\xaa\x84\xce:\xa4-\xaa\xdf\xdf)!4\xf1$.\x9a$\x9e$>\x10\xe5\x99i0\xe3]\x8bU\x95\xeb\x10\xa4\x8a\x13\x8d;\xfe\xf4u\xb2 U\x12\x88\x84\xf8\xc7m\xa9\x17\xe1\x99\x94=E^l\xd5\xd8S\xd5\xe5 /\xc3\xec\x92\xde\xd3\xa9\xd3\xc4c\xb3\r\xb7\x84\xa0\xa7\xae\xe9\x1d\x9e3\xaeL\x91Z\x8e2\xc1\xeb\xd2\x91\xb5\x88\xb7=\x1f\xa2\x0f\xec\voa\x01\xbb\xe3\xe6\x86i\tSS\xaa\xae\x0e\xc8\xdb\xa7\xffv\xfc\x10\x85\x12\xc7M\xe6\xc0\'-\xb9\v,\xae<\x02\x8aj\xba3t\x17\x98wK\xeb\xd38\xa5\x010\xe8\xcd\x99\xe9\xf76\xe3\x8c\\\"\b3\xc1\x15\x94V\xab\xe4\x10P+\xe2[\x86\xf6D\x80\xdf\xc1*\xc4\xf3\x9b\r^\xdc\xbd\x92\xdd\x9f\xf6-\x1e\xab\x9d#\xf2@\xe7\x1d\x9cT')
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
socket(0x2, 0x1, 0x106)
write$auto(0x3, 0x0, 0xffd8)
r2 = getpid()
r3 = gettid()
rt_tgsigqueueinfo$auto(r2, r3, 0x16, &(0x7f0000000400)={@siginfo_0_0={0xfffeffff, 0x0, 0x2, @_sigpoll={0x8}}})
tgkill$auto_SIGCONT(r2, r2, 0x12)
read$auto_v4l2_fops_v4l2_dev(r1, &(0x7f0000000280)=""/54, 0x36)
write$auto_proc_oom_score_adj_operations_base(r1, &(0x7f0000000000)="5b286625222f246a8bf7435a9a915118354c3122bf13575d9f6670779ab980655882b25b0141d31807488e753c2221462c38e12057d2c190b0180e297885b2d3e19d17f06618c1f51387055a3f3f", 0x4e)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
add_key$auto_KEY_SPEC_REQKEY_AUTH_KEY(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9)
socket(0x2c, 0x3, 0x0)
r4 = socket(0xa, 0x5, 0x84)
sendto$auto(r4, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80000700"}, 0x1c)
bind$auto(r4, 0x0, 0x3)
pread64$auto(r0, 0x0, 0x3ef, 0x9)

7.601846328s ago: executing program 4 (id=2628):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x24, 0x0, 0x100, 0xfffffb9a, 0x25dfdbfc, {}, [@BATADV_ATTR_TT_FLAGS={0x8, 0x15, 0x8}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x58cc0}, 0x20000044)
r1 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000001c0), 0xffffffffffffffff)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
ioctl$auto(r2, 0x8004b70b, 0x1)
sendmsg$auto_MACSEC_CMD_DEL_RXSA(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x24, r1, 0x501, 0x70bd2b, 0x25dfdbff, {}, [@MACSEC_ATTR_SA_CONFIG={0x4}, @MACSEC_ATTR_IFINDEX={0x8}, @MACSEC_ATTR_RXSC_CONFIG={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x80)
capset$auto(&(0x7f00000014c0)={0x4}, &(0x7f0000001500)={0x83e, 0xfc, 0x800})
gettid()
r3 = pidfd_open$auto(0x1, 0x0)
setns(r3, 0x60020000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone3(&(0x7f0000000300)={0x10120000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x4242, 0x5bbd64a1e7297024)
flock$auto(r4, 0x6)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
flock$auto(r5, 0x2)
close_range$auto(0x2, 0x8, 0x0)
gettid()
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r0, &(0x7f0000001e40)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001e00)={&(0x7f0000001540)={0x2c, r1, 0x100, 0x70bd27, 0x25dfdbff, {}, [@MACSEC_ATTR_OFFLOAD={0x4}, @MACSEC_ATTR_RXSC_CONFIG={0x11, 0x2, 0x0, 0x1, [@typed={0x8, 0x10d, 0x0, 0x0, @fd=r0}, @generic="d5cd814e43"]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0xc800)
sendmsg$auto_NFC_CMD_DEACTIVATE_TARGET(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x40)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000100), r0)
msgctl$auto_MSG_STAT_ANY(0x0, 0xd, &(0x7f0000000400)={{0x2, <r8=>0x0, 0xee00, 0x10, 0x8, 0x6b, 0x401}, &(0x7f0000000140)=0x18, &(0x7f00000004c0)=0x8, 0x3, 0x7, 0x7, 0x6, 0x1f, 0x5, 0xfe00, 0x9e, @raw=0xf, @raw=0x6})
sendmsg$auto_IPVS_CMD_NEW_SERVICE(r6, &(0x7f0000000480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000002280)={0x2420, r7, 0x20, 0x70bd2c, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x2261, 0x3, 0x0, 0x1, [@nested={0x20f5, 0xfd, 0x0, 0x1, [@generic="e200a8f557b25126fbcfa8c0cba8a221a368182b42cd0eb4cf6c22bb6b18b7d786310f7fce676cd6e8c26a9dc992f9ba185114dcc32fb20a5cb7c97c2f4931f1f40a61", @generic="0813fb5f59fc520faff24d5677568dc3b902cd8ba561d70fe657f437857dde34040446315ee68a541842fc25582c1601e394fdf8cacd341355585e17db8cf8a58dc132b58f043497f73b1d726ad02f721dea956b963d4219feb486b0749f43d4200ebb7b44b89ae4b0b124ddd96723a159f17f7f4581fc1cc94a3cc8a6db97647ec36ebd35b4e2ec86fa7ec7a6e2f243940b0cc7ab8139357671f02ec0b1a946abaee69f8ad56ecd7c3aeb571df117230d31f7f6d5390b8385f7fa4cbfe887d96a24915e5cad1b57d1fee6b2b808381eeb5f22e1abfee66fb2b0fc2d500555b8aeca4f6c079f6ad5edc6b35c38ee7748d22979985d78ea202a8fc74f01f5149b3287945d78c8d8ccc251692c342164fde993453b21835480dbb3f8318ab5088db8b231098d605a14158defdff10e4c825569ae2b13e5e26e8276366826945dd7467ac251fb0b1d5d332d54243da61fea0c270d5c25df8984c445b324716dee11e95fde04ee03155fa055369ba0cc530194e583fe66430803e1f0d4e4a94e4ec774fe16e95ead72bb1ea98096bfeacc45e72c97776a8883b9e85dc2546044b15a631c8b015a194245fc954e3a3e145aa7ff8d069ff43b9e6787a1f2deb5aafcd2703d20aaa2e46c982571ac5cb73981e584813f65e5f7e4724c20f5b4d5a9cd7e70f8c47b6b18b1924f32fad71dec98861c0a8a0187a25499f6309596c21cc6694483ebc6c4fe4f55de617017589d7eaa919e2f00e89f09b50fa55212218bd4b524e563edfcec2bf7a17f1c115ccd831642871f53c4f87812eb9bbfff5fc075b8583e2b19c8dd78dc289ac84b45e9c310e2a2328bcd2a554f4f2837b5e8238928fd0886675977ef3877119b2b7bff31a714b6eb8366c513fcb7948dbb197e005806db16e2e4f1972145de152d11c04f325b71f7e0b692c0c7147cc15b22b890590619e2267b9f207af506cf2d248fb6ce44f887223e9c3240f98246c2da82e87bb6ba084b588f204f18ab7ecb45d94c56c4efbd652b9f0036e2613a53384e9effa9f23e741ac7e36b6dcae89b96c8ec61897dbf6ffca44d27033f61bb88c732443503a915d6f56fd0d3e288b288da3fd39a3c7ac000cf82d44cd8ae30ffdf77e9cf23fd8cae03f7dbb4f6570a1b5aaabf1546c60eebe25bdea79ead6c17b18531e091f426f32fce66d89ff8f7eed60847e1d2d68991b3fea26bf0eac9405985f69777ffaa54a6f718a1b8546bd74c2073bb4244a8eaadf7cbeb704326e1838ce95a45bf78e4c1d92889a6747fc9660156c1b5062ac8c65f1a977b473bc26f9896ac1dc3f3ecd3f0f4f469a0fe0142a29c81147507060423e4c0a82a419b12a19f2d23fc762654fbd3952f1ee78f2e847d603ab86f8e6092023fed90281994a0c055dad91b129d5b1fdf62f8f93d0493852c416aa9fd9d81ccc82f1f48df4822507e157e19883fe94abd527a9fcfe26e32d23ba39e51755df671c6c03d5d85acaf11bae61ca46c68a846f835656a80c5fb6b0e89e283937643fba9aa2cb4e8d81ab7d9c131269c75ab10a275ca59af38a13b6b937cc947c9c5976e35ba14b4404dcbcd999a87e008dc03dc074267bf041794c777e74a5d5c06bdf3cb76f7ab0244581e30409416a5994a07819ff3649acf71799984715dd3c5c449a6d33f3f1f5a94edcecf0740a288b560c78c25867f7a38dfa9911d42223f1c2c1f89218b6ba0a4087cce7ef53c9bf65bd4a540ccbab65619a6633c3951b26723eb386590868a58771c9c612681d8e0551ba1e869c6fc324dbb8faed3656f9ba0be1bb2cd5e9a9f0f68e6491d1876d2985d44d8961667480638bdb5bb7fe3cd04155521b85e25ecdb86fb2d71c475a2f0910617a9db719fce1f11bba5a24a0a804c6db408806feea983a3aa67fee30ee34441f5a14a62977649bed574c478eb715dfd918cf46da5e5816a7139179da71f20be945388da89458d996a0ab554b5b20c0622dfa9d33a915326eb413810fd14fde6d0a26a178b1e2c1b23f0f54c37f774985178967b6166a08cb33fc3ac64bc4094aa4786012c6b76608205e20e78a02a07e6aa7c16f13889fd37145ac3f87098f7d542fe26e3e9b0677c76c0280b3982b529cdb614fc15928a241662db59dba2b49f67e6483f5fa2e463c14019542890dd1080ff731af540a8639ec75ad93c9fc05d556ae0af14166feb6d01d81ffdd9f8567936448a457c5e12b18e1512eceba484a536be5fa54a145bc07304633218ab9bb869314c78e932af16c482ad027a8972488eacb0585380402c34c7132e2c248918f1c878168fd1febfbe82cb66102de000bec6a94883d2e0ce2f8963685d7d434103999570613206d2b2fb4dea177686e8da14e2c374d7b9618533b9a741b2cfa8bc22f14d4f53b8989c05eeacc1cd48891ad2e6f4e269d37c045b1a9a765549eb9552cec606fe418be2e6ea80e291c7eac111dd691fd45a931b18b7c3e690a3d88657451329457e210f0b2f8dd8751ac39c278e959903e8f8dc2724ffafe1f3bfc17b360e2fa925054af6791bb5b5648ffb3852c3865eeb86dee387f8c5c04cc8f50fe82be395642808f734f4a31ac4112f8c5d31a9b9986363f638fd2551350a308f367b42ac3bdd9954597ed3011561b49c7e08089705158660236c1d2c56d0e32dbc183e9c9d59a30760707204baa0803aceb0d3458d7ea28c86e0bb32e63e25aba12f43b143a544d27af46f74271fb2a367b5821dd8a91dbd7c9958cc7f0657c9be65661e3eb8449417fee93653190b54983a0c25c77d1187764caa535a3df7c0b7685f54a2eb19ac7a3b590ba8d1c51e975c607109f7df9798f686057070befba331900b1693a4182db5a9b6320ef01275722f4d36736d4603a32629eeb03efd8e2e224d43aba441e365945a297ac1eee6ac6fb2af0714c296a3239b60e0a6ec70dcc1be73464ad6541ff09b024befd8f899935f0b25501330b6a9cde77a252ba2efbccdcffa3ebdd1dbb2c4b91c5370eed860a56d7bf6ed7cea5ce48215d4ce92bfb06c36cc6f5f9cc22c7b81c1b09242d28729099e31c2043a68c97ef1e40b804b0ee6f61c93b57872853fd81cfd8450ec449f72b7a9a80492a00a2c9151fe1c51e831349d2ccbbff623ca150db3082111e6a74a738058c34323734f44e1836b280c0ae586ffdced877a8b531904a0083b3a3f22d2747d14d7b99d4dac6a5b8ef98f6644bcf32d81b06d0ded4b84a1bf1708496c9bc75dc06e67785fef30e160c5c5e7e5d2785cf3c5716fb3098225f27097f6ca4806bfdb5abadd45becc90b5ecabb13d92eefe437935ea8622f1845690b01c528e5e01993bb0937389a235ec22de11811b317fa0092bc39084a2b3c13cf3a4c5ab2263bc81bca5847a97897e1e8286abb7726f0932a0c0737d4d2791191d9cf214b0f6586182784477d099be2568ec51129665b6a8542ddaad7e423c2904a6495a12ccb39dc4ba4a09ab330093997f7c0b0c0327d894b56be02dd00724e8ed47bafd4f37dd227a9af83b6f2060ae8400ed7ae0c83548de13cf7fb0333e6d9a89871286bda9ba60c978c4a5cf4bed7ee467a4ee71834ce0bd004fd2111017681061796fc7d97cec144514420625354602b130de5ca9a5ba916a43c81c6deb8d64f75aefa99e18ccacaac93a8d51c439e1e4f481fa356663ae0bdd64ec155db5a81d2986f5c97fa55a441d94b5e69bc6aff6a78bb643f2e2a1649b18a71b6f1484ef613423c6321a74cf8231e1e38936506aec05c851dbe52045697e36eed0318ebf7a09132ccd00a11a6abe0352d790e23ceb051648fc85c33450c83251857312a225c61c60753ca8ffd92032f8f6d3a18817e4a765627dd69e799a0c613806fb72f989ed83bc17ca40afbf8fb7911fbab61a99126358a43b4b8b7e42a88ab82232b07f1a31fec6cff7dafffb412464b61c3d8bf842e9937dc7fd159214ea5f368d0fa981128d79710eff6b23f9424b053c2c3866eaa491fac74d3654edcc80ba8209f3227f1df4ff73eeaff02877d01364d3487623296ce5b04ad176c890e70c56610859b4d2b30f19676c5e7c7ca2719c4aab3762d66df1dfe5dcacbd300862765467fa1dbc51d2d145fcdd6d0354e7fd4b55f99535e623f7f574a179d9537e572ac860822e21a4edd51e6be29f0dc37cbebd8248175422939ec14fb46f2a1e413e8540c6dc700e66693dea1062068f4321c5cf482406c04bb39b5c259dbc7fc3ebd465640be6f86e27f8b98ee7e3be6de202bb8e443095186741d8ac5483336bad73fb94dc9d1c0be449a3aa95dccab89867276e5fd8744d3a162800e86ebec8e9f029bcfd349c29fbfda82b94676a4291378216c8f95a9ede06900ce78906038c641689653f8a36376e960371cd6e3463d2296b5d30c37e2321ed5ec2005826ea91f13184f3e4aa561a1d6346744eb145d38ca59490b35eeb787d75e48c03ea0c1185b34febb20622ec02e10432b99355b011a0d84ebc169a6269c9fa684b41ecf5f31261e290ed3182c665b3bb3773d824fdc6e5dd2c8251c233c997482aed03b48701ee7299402853a8eb7a1e21c5cdf5c832a97dd4aa7e10585925e7f5f078458c026298d5437c957ee55ced276bc9b425414a2c2c61ec5de689c075a33976f52f898fe54a00d76b94b03c36c01e70c4bcf81aa0d16cd4169b291ea77eef7fb4c89dab07d84d6d6c0f1fd489f7d6ac91558b3ad4d215c4075ee1328fd963cc7fba3e2d9239095e6ebe212ba140219c9ec86e2da08a15b47a1721bb94ff1fb47d0427312c289e7d1f6312c2791d95b1e3d4dac401bae1bfe92f08c37d025e5ac7e51a1e069eb3ca0f72c0c1eac9302372fc294549b2003c77dacf62beb4c386782f2e94d7c2abc58b8be1990ecd1f8a63181c7e4692dbbfa84b564dbf11987c31d9d07af4f694eeb03eb06b09e475983a175e6edf517f1dd411d8f3dd95752dc71285847c4f1aa65b7e5cae0de4414672dac1e9868fcab71d0e5839db44513329365462ee1901805740859784f162f7f93d46ddb178e8c1261f03db5b77fea3b08b986828063aa9be27fd2fadeba0b54ffceca36b538ce8ca91addb534de3aa12f561723243f90d7d9545c5f1fdbb66870dff6ec2aba14a371a12a55f0dee949833a40c49ac6f5e5724acfd864c9786dcec6300a67a62b5a5204b8181420785dba0d10e602ab5df6815c36f2ebf9496dcddad1378a57db95b1c5949c7ed559439fb6168d080ea6ed37a4b9dd0f31896b0e48c5f5856e5ccb3e94de2f235b7b17b949d0f63f0e9f6dc0c92cb9b70566b08d76e602e53e20d6b25233c6ef3f0871eee664921e5746b20b6150aad70eb263f67ebd34192e97c102479c4fa4fd13739843ba37a73c14d7e83c213714e1d7631f01c318f706bc3b421d7cdc271f4167efb2bb876f2a03b69119a21fc2145f36ce334163dd3844b02184de5259e64e541515e8479aecf2167b0ee9a02be1697d053408d9e932f57f30756bb692b74b195109ce4b9c2820cdee85748657e7db251904d45ddb68086f98143537b75cc4c4e79976bd8f4e8cec4c4f4d57857ef99db67daa6e176eebc3d49475349918b13511b0a404c8203eb777d48fb8ae88af35ca82902f3e5346585f436df9cefa7959ad715b987f7d30530c6acc70087e79b8556589eca45b0d226e5cf0fcefacb1d5122f574ffe11ef17f2ce70d069f1762844734b0fc2122eb46ef18d4bf70f764556dfcc395ec577407f1be87921ad934505603813655326998d5d0812509ca4e4f016b1127235f1b02", @generic="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", @typed={0x8, 0xdd, 0x0, 0x0, @ipv4=@local}, @nested={0x4, 0xa2}, @nested={0x4, 0x95}, @generic="6854434b5194617b5ad4ba910d6b4cf73020e5e6f6b30d98c3779ee5ae73b98e263aaba7c4cb0d13a9e52464b679eba54fb576b1bbb9ae80149b1de00ad4a8e9887131a23b46df03e30fc255731fd25fd192611d9297ce64551221173f46e8af3f9143a0d8e45ef37679714cce1e1efe0fd1597b5727db2b4e9917e794e531444eb25f61753b36ced747", @typed={0x8, 0x109, 0x0, 0x0, @uid=r8}, @nested={0x4, 0xe9}, @typed={0x8, 0x10c, 0x0, 0x0, @fd=r4}]}, @generic="77af59aa658a104e3330b33e179cf27bb8828fe8030a3a493deca7a8d04e79d0e781c8f51dfc3c511505ce72ebdfee94811d3e3aa76ff848fab7d846be970fa11f989b94cc6d5b8df45c3aa2087601af09bd4a265e2d898189b9e31f94b22bc9829360a3097b163ca08386eeebbd9fc7e2f5648b3abe39d60707e0e114c3f9c6fa89128262e9c34a8078152bf2ef648fc4c1b59ce11c34da53d3935151fb480d24e6eaf9a4f9e3c16b39efe6a616362b4d44f58d56fa8472f89eb93b94dcbd436d0e3605f3239a6b760f6afde5be9e6a2ac3e7097ecc4248e3dbccb9280edbce4022a696f69687f7be362e61bdbfca5b8e4e854bf23adb", @generic="91555961b3ab", @generic="03cc051be4aa1f34af8787a38206326f5643b4789470ad46dc254201e9dd22ffb035f36b5c31e043167048adff09e4e1535e714087a2a96649ccc09980a2ec69366ac755de3faec5700a3635f54f92522abb07190352c0694e4ced9a666682a8f07613a43b3d4368"]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x80000000}, @IPVS_CMD_ATTR_SERVICE={0x177, 0x1, 0x0, 0x1, [@generic="fa7ff53b01c8c45dcc1f57699ed6453726e511054071c1c1f42d642264d709a26b61b15de3dfb4acb376b0317aaebea0ea1230a109182f4857594436a770bdbeed728f904488d1a564f54cedae749ffc09f9d828df06bd3fd38052d6d680a4f363dc43cfddbbfdd3c9ca1b78bed831ded10153a41b73ceae3eeccd427064231a0eadc8395304cb42840a8f65fd87588821824b562ba5e10a9b2512602805f8533bfe62cb9454386c7051329eb2c6f8a07a1e2ceb6c396db0014136dd3aca45163c86506d3d3b47cdf16ff398821cc9d31a", @generic="dbe1e94c5a37722878f0b380dc2eada4a93db8b4cb564d3306fe81ea3e6952e9f56aabfab05ce227e4eb39b2adffb78d9b4c594668ccc2be46594f69bf8e01127a3b6f3455151a0e41e594dc46c804a9a0d43e2f1c8221c05d07e07fa41b6a6ea7093de23634006a159a4270cbb395c302ad22ab5e94f9c8bd955b7b5eb55585f5d0c28fdf3afd54ce8f8963f6cff3623b6169a7031d00cbeb02729458f2a104857a"]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x700}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x10, 0x3, 0x0, 0x1, [@typed={0x9, 0x7b, 0x0, 0x0, @str='\\/[$\x00'}]}]}, 0x2420}, 0x1, 0x0, 0x0, 0x4000}, 0x88)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_clone3(0x0, 0x0)
r9 = io_uring_setup$auto(0x1d48, 0x0)
io_uring_register$auto(r9, 0x15, 0x0, 0x9)
r10 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
write$auto_tty_fops_tty_io(r10, &(0x7f0000002200)="972e51fe7285a86f3fe36136c8535f593331280bb0b4ba01dd7932ab185cca064833fda24d0f81d1b16c3cca5b2611827c2f1ca88bb01e672131ac62d346b5601f538ccf285e7aac854a18b76ff16e4cab4b61107cdae019761b2830", 0x5c)

7.466269821s ago: executing program 0 (id=2629):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x9, 0x3ff57697, 0x9b72, 0x2, 0x8000000000008000)
mlockall$auto(0x7)
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC1D0c\x00', 0x20000, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_DROP2(r0, 0x4143, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
r2 = waitid$auto_P_PID(0x1, 0xffffffffffffffff, &(0x7f0000000000)={@_si_pad}, 0x8, &(0x7f0000000080)={{0xfff}, {0x0, 0x5}, 0x7fff, 0x8, 0x5, 0x3, 0xffffffffffffffff, 0x7, 0x4f9f, 0x1, 0x2, 0xb00000000000000, 0x935, 0x228, 0x3, 0x7})
getpgid$auto(r2)
sendfile$auto(r1, r1, 0x0, 0x3)

6.985970626s ago: executing program 4 (id=2630):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdd, 0x9b72, 0x2, 0x20000000008000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x2, 0x1, 0x100)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = socket(0x21, 0x1, 0x0)
setsockopt$auto(r1, 0x29, 0x12, 0x0, 0x56b)
setsockopt$auto(0xffffffffffffffff, 0x1, 0xb, 0x0, 0x80000001)
io_uring_register$auto_IORING_REGISTER_RESIZE_RINGS(r0, 0x21, &(0x7f0000000240)="709fc3cbd4e699121f8b59862d5a853d3f5db07c4cb946b8e45a058b0cf1224e549d6fce4d4c0906ed967fe99e4e108c4fb3039d8857e5a938a3b14c333406a1b4c37643187352fbb0", 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/mem\x00', 0x101181, 0x0)
r2 = socket(0x11, 0x2, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/firmware/acpi/hotplug/pci_root/enabled\x00', 0x2, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0xa, 0x80000000000eb1, 0xfffffffffffffffa, 0x8000)
write$auto(r2, &(0x7f0000000040)='7\x00\\\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x82;\x1e\xc4\x12G\x139i\x14\xc4_~\xf2r*\xff\xf0\x18m\xd2i\xe9\x80\xe2\t\xc3\t\xa4=\x13\xc2\xeeA\x86\xa8\x1e\xb1%\xbb\x8c\xb9\x8f\xae%$\xe1- \xc8\x87m\xb5\xdb\x8d5\x12\x11\xc4\x8bm\x1c\x88t\x88f9:~\x86Fy<\xd4\xe27\x10\x14\x8b\x90\xa9\xdcP\xdb\x14p\xef\xe3Uc\xf8\x8ce7\xb2U\x7fA\x94\xd1\xcf\x02\x10\x90\xba\xfa<\xd8$\x06\xa4\xd4\x04\xa7\xdb\xbb\n\xed\x80>\xb8\x85\x89\xc7\xed\xa3C\xee\f[^)O\"\xdb\xf1\xcd\x16Fh\a\x8en\xa6tS~\xd93~\xee\x17<T\x84\x93\f^\x94&y\xe6\x90\xbb\xeb=>\x1bh\x9e~\x1f\xf2ID\xdaP#\xdc\x82G\xc0j\x9b\x13%\x97\x80\xabK7\xa4\x92lA\x04\x94\xff$aOQG\xd4U.\xc3C\x0f\xf3?_\x15{]G\x01H\xc0\x05\x95\xe9\xff\x06\xc6\x81\x05\x9d(\xb0\x87\x8b\\Qa>>H\x11k\xf8\f\xab\xa2P\xd0\xf9\xd6\xc4q\x99\x12h_\x84s\xe9x\xd0o\xabv\xb0\x81\t\x19\xdb\b\x95\x90\x8bD\x03E<\xd7H\r)\xb5\xf2\x831\xd2', 0xc67)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="011d3da4420008bd7100f9db5f250200000000000010", @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x20044011}, 0x80)
r5 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x45, 0x0)
r6 = fsopen$auto(0x0, 0x1)
close_range$auto(r6, 0x8, 0x0)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r8, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000000)={0x14, r7, 0x101, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x64004401}, 0x800)
sendmmsg$auto(r5, &(0x7f00000001c0)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)="3c0bdb13851a4de96239f4a09818624b1afc970acbe24731daa2b759e6ed33704edcf8384298865ee5caf7befd8e16735d3c8857b2320be2040694912f5e45490106e25a724e515ed231feddb7ffc2e63e50750d95", 0xfc6}, 0x2, &(0x7f0000000440)="68a3d688e136a504fa079c51fc384f5af8980531ca1d42ae120a02eb79417578131ad0003fa444b4b55c265f02468ffd467982f849c20beed77429966299349a23abd0090641edb22e", 0x7, 0xa505}, 0x800}, 0x27, 0x4008)
r9 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x81004000000008dd, 0x1000000eb1, r9, 0x0)

6.598052122s ago: executing program 3 (id=2631):
mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000)
r0 = socket(0x10, 0x2, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000000)="c80d1b5d399b71", 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1e, 0x805, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
ioctl$auto(0x3, 0x40045532, 0x38)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0xa803, 0x0)
r1 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcsa\x00', 0x22a342, 0x0)
sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0xc}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r0, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
r2 = open(&(0x7f0000000100)='./bus\x00', 0x14d27e, 0x72)
copy_file_range$auto(r2, 0x0, r2, &(0x7f0000000080)=0xeb2f, 0xfffffffffffffffe, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r5=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r5], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097d751f33e}, 0x80)
syz_genetlink_get_family_id$auto_tipcv2(0x0, r0)

6.118427456s ago: executing program 0 (id=2632):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = bpf$auto(0x4, 0x0, 0x4)
sendmsg$auto_NFC_CMD_GET_SE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x44110}, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xb, 0x0)
mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x7ffc)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

6.024470374s ago: executing program 5 (id=2633):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0xfffffffffffffffc)
r0 = openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, 0x0, 0x8802, 0x0)
write$auto(r0, 0x0, 0x80000000)
socketpair$auto(0x7, 0xffff44b6, 0x7, 0x0)
unshare$auto(0x427d4d91)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
setrlimit$auto(0xb, 0x0)
r1 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/numa_maps\x00', 0x22000, 0x0)
read$auto_proc_sessionid_operations_base(r1, &(0x7f00000000c0)=""/4096, 0x1000)
r2 = socket(0xa, 0x80000, 0x3)
sendto$auto(r2, 0x0, 0x402, 0xfffffffe, &(0x7f0000000000)=@generic={0x28, "e2c483400200ff803636166b00"}, 0x6a99)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0xffff, 0x4000000000df, 0xeb1, 0x4, 0x8000)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0)
write$auto(r3, 0x0, 0x101)
ioctl$auto_SG_GET_NUM_WAITING(r3, 0x227d, 0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop6\x00', 0x40203, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r4, 0x4c05, 0xfffffffffffffffd)
setsockopt$auto(0x3, 0x10000000084, 0xd, 0x0, 0x8)
syz_genetlink_get_family_id$auto_l2tp(0x0, r2)
mbind$auto(0x0, 0x4, 0x100000000, 0x0, 0x6, 0x2)
r5 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x20100, 0x0)
ioctl$auto_LOOP_CTL_REMOVE(r5, 0x4c81, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video48\x00', 0x1ba8c1, 0x0)

5.558977864s ago: executing program 0 (id=2634):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
sysfs$auto(0x2, 0x100000000000036, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
r0 = socket(0x29, 0x2, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bdi/250:0/read_ahead_kb\x00', 0x5e30523b26a2a748, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty19\x00', 0x800, 0x0)
ioctl$auto(r2, 0x4b62, r1)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xc00caee0, r1)
ioctl$auto(r0, 0x8970, 0x24)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000000), 0x8202, 0x0)
waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x4, &(0x7f0000000140)={{0x5, 0x6}, {0x0, 0xa}, 0x7607, 0x2, 0x0, 0x6, 0x3, 0x9, 0x3ff, 0x401, 0x24f0, 0x4, 0x6, 0x5, 0x4, 0x1ff})
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8)
r4 = socket(0x11, 0x3, 0x9)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x15, 0x8}, 0x7)
sendmmsg$auto(r4, &(0x7f0000000100)={{&(0x7f0000000180)="c47f4f8cf2c25e05bde7ffb23974865187fe1280d9f50a638565fcb741bc0beec45774657a1912c77c71719121e371c7220a000000e998fc95740308cdd6b8a830dad44fac7dd448575bd073f5a8fa9107414bb41e9fb398eb252a6f102791fcd901e15e08d955bfae8efed7c85f7410ca64a9f272c52d7b163c3001e76a68dd6e1ab69b90daf700cfae44ee6f84281d5418deb8a2d1ed6dbd249545c7fec959491e953d83d761c7c7f6ee2027981a3df6d803a1b2b0fd25f725c40a0dfa0ed34857b9eb48153802f9f3b7ae6e76529f851005e06e123f7b49845359c58effe0ba47bae94bd7b6b70afb28b630fe5a", 0x5aa, &(0x7f00000000c0)={&(0x7f0000000040)='f', 0x49}, 0x1, &(0x7f0000000200), 0x5, 0x3}, 0x3}, 0x2, 0x100)
madvise$auto(0x6944, 0x1000, 0x3b4084f2)

4.980343231s ago: executing program 3 (id=2635):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0x400000000e31, 0xffffffffffffffff, 0x0)
r1 = io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto_IORING_REGISTER_PBUF_STATUS(r1, 0x1a, 0x0, 0x6)
ioctl$auto(r0, 0x4b45, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r3, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x80)

4.648689487s ago: executing program 0 (id=2636):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vidtv.0/i2c-0/0-0068/name\x00', 0x90340, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0xa)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/loginuid\x00', 0xa8602, 0x0)
exit$auto(0x7)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv6/fib_multipath_hash_fields\x00', 0x202, 0x0)
mmap$auto(0x0, 0x20009, 0xb17a, 0xeb1, 0x3fd, 0x8000)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
setgroups$auto(0xe32, 0x0)
write$auto(0x3, 0x0, 0xffd8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_open_procfs$namespace(0x0, &(0x7f0000000080))
ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x6)
ioctl$auto_IOCTL_VMCI_CTX_GET_CPT_STATE(0xffffffffffffffff, 0x7b1, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x40000002, 0x400, 0xfff}]})
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

4.194749297s ago: executing program 3 (id=2637):
mmap$auto(0x0, 0x2020009, 0x4, 0x10, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x2, 0x2020009, 0x8, 0x19, 0xffffffffffffffff, 0x7ffe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/fs/ext4/sda1/last_trim_minblks\x00', 0x2400, 0x0)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000012440)='/dev/loop4\x00', 0x2, 0x0)
r1 = epoll_create$auto(0x1053)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r0, 0x92106405, r1)
fcntl$auto_F_RDLCK(r2, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmmsg$auto(r0, &(0x7f0000000000)={{0x0, 0x2508, &(0x7f00000002c0)={0x0, 0xb}, 0x5, 0x0, 0x8, 0x3a321a2}, 0x4}, 0xc29f, 0x9)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ram5\x00', 0x2040, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
write$auto(r3, 0x0, 0x4000000000000000)
r4 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(0xffffffffffffffff, 0x560a, r4)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000240)="e769ffff91a9bccbf2a814c2b1c2da6a4642e71e42496c6bac2cd2cc3aa9633c36df13128be76976577ef8b494eb27dd7c5c300903663e1e87c15519219ff691bef8e8162e8a841e0b720b9cc432a0b5e1e6ce3fba9b6c4462c74f701a8daaf2a07cdcee8ef120a79f8ecfef3532373fcfc0602284e9ecfab10a02", 0x7b)
socket(0xa, 0x801, 0x84)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace\x00', 0x105000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x40000, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0)
close_range$auto(0x2, 0x8000, 0x0)

3.824718197s ago: executing program 4 (id=2638):
pipe$auto(0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xcfk', 0x81)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0xe, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x10d0c0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/kexec_crash_loaded\x00', 0x100, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe\x00', 0x3, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000240)=""/140, 0x8c)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000300)='/dev/adsp1\x00', 0x2, 0x0)
r1 = prctl$auto(0x23, 0x9, 0x2008, 0x0, 0x0)
ioctl$auto_OSS_ALSAEMULVER2(r1, 0x80044df9, &(0x7f0000000380)="9d1762cbb7829f8d3fb18591b084d80d92343101f817b4a6e9a9877102c77979621afb68e30cd1a743be112689b11bd27219201d82d566ff59d1b9f5e0eb4dc8e2f56ac8a0bc5866")
landlock_restrict_self$auto(r0, 0xfffffffe)
mmap$auto(0xc8, 0xe2, 0x0, 0xeb1, r0, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x82002, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48010}, 0x20004800)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
syz_clone(0x20a08200, 0x0, 0x0, 0x0, 0x0, 0x0)
gettid()
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x119280, 0x0)
getpid()
ioctl$auto_MON_IOCG_STATS(0xffffffffffffffff, 0x80089203, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/vxlan/parameters/udp_port\x00', 0x2400, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop6\x00', 0x101202, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r2, 0x4c01, 0x0)

3.493059427s ago: executing program 3 (id=2639):
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
io_uring_setup$auto(0xf0, &(0x7f0000000180)={0x6, 0x18, 0xd64, 0xc852, 0x6, 0x7, r0, [0x1, 0x401, 0x1000], {0x7, 0x5, 0x1, 0x4, 0x95, 0xf4c, 0x7fff, 0xfffffffb, 0x65f29f6d}, {0x3, 0xadc, 0x10000, 0x0, 0x5, 0xffffffff, 0x1000, 0x54f, 0x5}})
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0xa, 0x0)
socket(0xa, 0x2, 0x0)
r1 = socket(0xa, 0x3, 0xff)
connect$auto(r1, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
write$auto_proc_mem_operations_base(0xffffffffffffffff, 0x0, 0x0)
syz_clone3(0x0, 0x0)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
mmap$auto(0x0, 0x400008, 0xb, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
futex_wake$auto(0x0, 0x5, 0x4, 0xa)
futex_wake$auto(&(0x7f0000000000)="facff2b53ab3522cb329b5a87bdbc091f5a6ad597f2789e870d64db4cf6503135f5a750abc973b65703b664991ab45d13445d9c4df1d25210345f44468854c9689b943d1c65073bf11fd0c98fb48f9f4d67c0908e747", 0xfffffffffffffff8, 0xfff, 0x7f)
shmget$auto(0x8, 0x10563, 0x568d1af2)
mmap$auto(0x0, 0x2000a, 0x10000000000e1, 0xeb2, 0x401, 0x8000)

3.26740148s ago: executing program 5 (id=2640):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x2d, 0x2, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd8/queue/iosched/fifo_batch\x00', 0x20681, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)='-7', 0x2)
r2 = accept$auto(0x3, 0x0, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x7e, 0x0)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
read$auto(r3, &(0x7f0000000080)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00\x00\x00\x00\x007\xc9\xa6\x8a', 0x1060)
r4 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r4, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r4, 0x5501, 0x0)
writev$auto(r4, &(0x7f0000000340)={0x0, 0x18}, 0x8)
r5 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000140), r0)
sendmsg$auto_NBD_CMD_STATUS(r2, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x50, r5, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x843c}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x4}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x4}, @NBD_ATTR_BACKEND_IDENTIFIER={0xb, 0xa, '&*)#\xcb+-'}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000800}, 0x2000c040)

3.175166794s ago: executing program 0 (id=2641):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop11\x00', 0x20240, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r0, 0x8000)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x2, 0x0) (async)
socket(0xa, 0x2, 0x0)
socket(0xa, 0x3, 0x3) (async)
r1 = socket(0xa, 0x3, 0x3)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x1, 0x6)
socket(0x11, 0x80003, 0x300) (async)
socket(0x11, 0x80003, 0x300)
socket(0x10, 0x2, 0x0)
socket(0x2, 0x3, 0x2) (async)
socket(0x2, 0x3, 0x2)
socket(0x2, 0x3, 0x104)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, 0x0, 0x40, 0x0)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb) (async)
setsockopt$auto(0x3, 0x0, 0xf, 0x0, 0xb)
bind$auto(r1, 0x0, 0x6f)
connect$auto(0x3, 0x0, 0x55)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x4)
bpf$auto(0x0, 0x0, 0x1)

2.576308806s ago: executing program 3 (id=2642):
socket(0x2, 0x3, 0x3b)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000400)="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")
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x1)
mmap$auto(0xfffffffffffffffd, 0x4, 0x80000000000000df, 0x9b71, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000200), r1)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x131240, 0x0)
writev$auto(r2, &(0x7f00000001c0)={&(0x7f0000001980), 0x7fff}, 0x8000000000000003)
ioctl$auto_PAGEMAP_SCAN(r4, 0xc0606610, &(0x7f0000000240)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
r5 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$auto_UDMABUF_CREATE(r5, 0x40187542, &(0x7f00000000c0)={0xffffffffffffffff, 0x8, 0x2000000, 0x8000})
ioctl$auto_USB_RAW_IOCTL_CONFIGURE(0xffffffffffffffff, 0x5509, 0x0)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(0xffffffffffffffff, 0x40045010, &(0x7f0000000380)="7f4f7c30c70b785e197eae207300013b506405000000006309d0c1819700"/42)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x8001, 0x0)
write$auto(r6, &(0x7f0000000100)='d>*\xd2x\xc7\xbf\xff\x9a\xc01(\x00iM\x9c\bAa\x9e\xe98\xee\x15\xd3\xc5v\x99\f|\xe3\xbf\xd9\xf4C\x14A\xe6k\x105\xee\xc5\xaa$\x16\t?g\xb8b\x12\v*\xf9@B\xd0\xd2\x99{\x8b^\xff@\x83\x02Tvt\xc1_\x98\x9f\x16\xd5Is', 0x100000a3da)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
mlockall$auto(0x800000000000005)
msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004)
r7 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0)
read$auto_proc_pid_smaps_operations_internal(r7, &(0x7f00000002c0)=""/190, 0xfffffe39)

2.285374151s ago: executing program 0 (id=2643):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0) (async, rerun: 32)
bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000280)=@query={@target_fd=<r1=>r0, 0x3, 0x10, 0x5, 0x8, @count=0x3, 0x0, 0x5, 0x80000001, 0x8, 0x8}, 0xfffff12b) (async, rerun: 32)
read$auto(r0, &(0x7f0000000000)='\x00', 0x7d9c65cf) (async, rerun: 32)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb8, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6, 0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0xf) (async, rerun: 32)
bpf$auto(0x1a, 0x0, 0x96) (async, rerun: 32)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bluetooth/hci2/power/autosuspend_delay_ms\x00', 0x80002, 0x0) (rerun: 32)
write$auto_ocfs2_control_fops_stack_user(r3, &(0x7f0000000140)='\t', 0x1) (async, rerun: 64)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/tty/ptye7/power/autosuspend_delay_ms\x00', 0xa2942, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
sysfs$auto(0x2, 0x11, 0x0) (rerun: 32)
mmap$auto(0x0, 0x202000c, 0x7, 0xeb1, r1, 0x7ffe) (async, rerun: 32)
close_range$auto(0x2, 0x8, 0x0) (rerun: 32)
r4 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) (async, rerun: 32)
sendmmsg$auto(r4, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffffffd}, 0xffff}, 0x5, 0x20000043) (rerun: 32)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram5/queue/discard_granularity\x00', 0x0, 0x0) (async)
select$auto(0x4, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x2000008, 0x2, 0x1, 0x9489, 0x1000000000000003, 0x15f4da06, 0x39, 0x3, 0xd6b4, 0x80000006, 0x7a142c64, 0x6d3c, 0x8, 0x80, 0xfb]}, 0x0) (async)
fdatasync$auto(0xffffffffffffffff)
r5 = syz_clone(0x0, 0x0, 0x47, 0x0, 0x0, 0x0)
io_uring_setup$auto(0xb, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
syslog$auto_SYSLOG_ACTION_READ(0x2, &(0x7f0000000280)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00', 0x3) (async)
ptrace$auto_PTRACE_GETREGS(0xc, r5, 0x80000000, 0x1) (async)
ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, &(0x7f0000000000)={0x8, 0x8000, 0x6, 0x7, 0x5, 0xffffffffffffffff}) (async, rerun: 64)
r6 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) (rerun: 64)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000080), r2) (async)
connect$auto(r6, 0x0, 0xd) (async)
pread64$auto(r6, 0x0, 0x101, 0x103)

1.953739107s ago: executing program 5 (id=2644):
madvise$auto(0x5, 0x0, 0x9)
lsetxattr$auto(0x0, &(0x7f0000005500)='[!*)\x00', &(0x7f0000005540), 0xd843, 0x0)
capget$auto(0x0, 0x0)

1.575763492s ago: executing program 5 (id=2645):
setresuid$auto(0x8, 0x8, 0x0)
r0 = setfsuid$auto(0xee00)
setreuid$auto(r0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), r1)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r3=>0x0})
sendmsg$auto_NET_SHAPER_CMD_DELETE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB='e<', @ANYRES32=r3, @ANYBLOB="04000180"], 0x20}, 0x1, 0x0, 0x0, 0x44000}, 0xc050)
msgsnd$auto(0x2, &(0x7f0000000300)={0x4, 0x9}, 0x65, 0xfffffffd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0x2, 0x1, 0x106)
bind$auto(r4, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0x3, 0x0, 0xfffffdef)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r5 = socket(0x10, 0x2, 0x4)
bpf$auto(0x6, &(0x7f00000001c0)=@test={r5, 0x10004, 0x0, 0x3e, 0x106, 0x0, 0x0, 0xfff, 0x800, 0x9, 0x0, 0x4, 0x7, 0x2, 0xfffeffff}, 0x1)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000016c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="d4000000", @ANYRES16=0x0, @ANYBLOB="100027bd7000fbdbdf2518000000200001800247eea41fac000014000200766574683100000000000000000000000800070063fbffff0500060001000000840002803d00488013b37090badc49d6dc93876646d25a4d297d01cd3b7da38d12889cc50d505f353dc42d0a3c0a14c7b46428910708003600", @ANYRES32=0x0, @ANYBLOB="0400b3800000003d003b800400a4800c009a00008000000000000004008680c16ab1b1b39dcaa14b6af7dcc011b43cf706e562811c62b28a702b72e0a87126700294f2350000000c000180080003"], 0xd4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008000)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0xa6)
fsconfig$auto(r1, 0x2, &(0x7f0000000180)='\x00', &(0x7f0000000580)="10ab6b39a25e5d9c4947936e05c1ebf9895356b0a5fc915241b26bebe1bf3648ecb6260c4d40bcaaf9620450e0f236d9cf2e9bfa15663032904f14a0bfebeb6f41d8f77bd0bca982dfe6b49e308e606721133b53711ed21bb9e1e32f4be7a7c60b1e11a84523b8f0f030b169292f0b65a26107a850d0b970a474f1e71b47e5ca3b8343ea7d7b90f3557fd5f312dc8058", 0x0)
r6 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r6, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f000000c180), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r1)
sendmsg$auto_TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4)
mmap$auto(0xc, 0x20009, 0x5, 0x14, 0xffffffffffffffff, 0x0)

1.095306302s ago: executing program 3 (id=2646):
select$auto(0x4, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x7, 0x2, 0x1, 0x948b, 0x1000000000000004, 0x15f4da0a, 0x39, 0x3, 0x2fffffffffffffe, 0x80000002, 0x7a142c64, 0x6d3c, 0x5, 0x80, 0xfb]}, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x2480, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/fs/ocfs2/loaded_cluster_plugins\x00', 0x800, 0x0)
syz_clone(0x4000, &(0x7f00000002c0)="f03f0b0be4f2597d8b11ed14dfa636bad65cae9c0d21", 0x16, 0x0, 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/i8042/serio1/rate\x00', 0x2, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/lapb5/broadcast\x00', 0x800, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x400981, 0x0)
sendfile$auto(r1, r1, &(0x7f0000000000)=0x3, 0xad6)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)
ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0)
ioctl$auto_BLKFLSBUF(r3, 0x1261, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x20800, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
r5 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x3, 0x3}, 0x1a, 0x0)
bpf$auto_BPF_OBJ_PIN(0x6, &(0x7f0000000300)=@bpf_attr_4={0x6, r4, 0x10000, r0}, 0x9)
bpf$auto(0x0, &(0x7f00000003c0)=@task_fd_query={0x5, 0x21ea, 0x7ff, 0x3, 0x0, 0x80000001, r5}, 0x6f4)
read$auto(r4, 0x0, 0x20)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x841, 0x0)
sethostname$auto(0x0, 0x1)
mmap$auto(0x0, 0x400000, 0x7, 0x19b72, 0x5, 0x9000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000)
write$auto(r6, 0x0, 0x6)
unshare$auto(0x40000080)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000000)="b2", 0x1)
r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
sendfile$auto(r2, r7, 0x0, 0x1)

458.677733ms ago: executing program 4 (id=2647):
rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0x4, 0x2, @_timer={0x0, 0x8deb, @sival_ptr=&(0x7f0000000440)}}})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x1, 0x84)
connect$auto(0x3, &(0x7f0000000000)=@nfc={0x27, 0x0, 0x1, 0x5}, 0x51)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x2000040080000004, 0xe)
unshare$auto(0x4000007e)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/asound/card2/midi2\x00', 0x102002, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000e80)=""/206, 0xce)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x90006441, 0xc35)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, 0x0)
write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x01\x00\xb6', 0x7f)
syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000000540), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'})
select$auto(0x9, &(0x7f0000000340)={[0x8, 0x5, 0xffff, 0x9, 0x4, 0x4, 0x8, 0x1, 0x9, 0xfffffffffffffffd, 0xfffffffffffffff8, 0x2, 0x6, 0x89, 0x3, 0x5]}, &(0x7f00000003c0)={[0x101, 0x9a, 0xe, 0x4, 0x3, 0x1000000000009, 0x5, 0x223d, 0x10000, 0x3, 0x1000, 0x6, 0x4, 0x10000, 0x6, 0x10]}, &(0x7f0000000440)={[0xfffffffffffffff3, 0x8b0, 0x743b, 0x0, 0x10, 0x8, 0xffffffffffffffff, 0x6, 0x5f, 0x9, 0x6, 0x0, 0x100401, 0x1, 0x9, 0x3]}, &(0x7f00000004c0)={0x7fff, 0x3})
pwrite64$auto(0xc8, &(0x7f00000001c0)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99?\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xad\x83\x13\x82\xdfT\x916;CL\"\x81\x88\v\xae\xa9i8W\xe5\x00!\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xb2SZ\xf6\x8d\xdb\xcb\r\xcaN_\xa6h\xe2\xf9*w_\x84\xb8\x1aY>%:\xad9\xb8\x87\xfc\x85\x90\xfaB\xb6\xe3I\x18$\x1f\xc1YG\x94\xec\x82\xb7b[8n(\xd1Y\a\x04w\xd53\xce\xee\xdbw\xb0\xd4\xae\x0f\xce\x8e+\xaa\xcf\x86\xcd@~\xe0', 0xfded, 0x3)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r3)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40210}, 0xc, &(0x7f00000000c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB='\f\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="02002abd7000fddbdf251a000000"], 0x14}, 0x1, 0x0, 0x0, 0x40004}, 0x20000080)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
listen$auto(0x3, 0x83)
accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd)
pread64$auto(r0, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x8)
r5 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$auto_percpu_stats_fops_(r5, &(0x7f0000000040)=""/202, 0xca)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x82043, 0x0)

0s ago: executing program 5 (id=2648):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0xffffffffffffffff, 0x28000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
write$auto(0x3, 0x0, 0xfdef)
write$auto(0x3, 0x0, 0xffd8)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec7\x00', 0x80001, 0x0)
r1 = socket(0x29, 0x1, 0x84)
getsockopt$auto(r1, 0x84, 0xe, 0x0, &(0x7f0000000040)=0xb0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x8, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mtdblock0\x00', 0x741af749fda47028, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2000000008000)
socket(0xa, 0x2, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/netfs/cookies\x00', 0xd00, 0x0)
socketpair$auto(0x10000005, 0x2, 0x8000000000000000, 0x0)
socket(0x18, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/net/ip_mr_cache\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000140)=""/41, 0x29)

kernel console output (not intermixed with test programs):

 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  596.277673][T15271] RSP: 002b:00007f0f7eef4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  596.277705][T15271] RAX: ffffffffffffffda RBX: 00007f0f7e215fa0 RCX: 00007f0f7df9c799
[  596.277727][T15271] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  596.277747][T15271] RBP: 00007f0f7e032c99 R08: 0000000000000000 R09: 0000000000000000
[  596.277767][T15271] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  596.277787][T15271] R13: 00007f0f7e216038 R14: 00007f0f7e215fa0 R15: 00007ffcf97f8488
[  596.277827][T15271]  </TASK>
[  596.700501][T15271] syz.4.2060: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  596.722567][T15271] CPU: 0 UID: 0 PID: 15271 Comm: syz.4.2060 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  596.722620][T15271] Tainted: [L]=SOFTLOCKUP
[  596.722632][T15271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  596.722653][T15271] Call Trace:
[  596.722665][T15271]  <TASK>
[  596.722678][T15271]  dump_stack_lvl+0x100/0x190
[  596.722737][T15271]  warn_alloc.cold+0x95/0x1c1
[  596.722797][T15271]  ? __pfx_warn_alloc+0x10/0x10
[  596.722846][T15271]  ? lockdep_hardirqs_on+0x78/0x100
[  596.722894][T15271]  ? __get_vm_area_node+0x2c5/0x330
[  596.722945][T15271]  ? __get_vm_area_node+0x208/0x330
[  596.722995][T15271]  __vmalloc_node_range_noprof+0xbf4/0x1530
[  596.723045][T15271]  ? try_to_wake_up+0x644/0x1a80
[  596.723085][T15271]  ? __do_sys_listmount+0x289/0xee0
[  596.723154][T15271]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  596.723209][T15271]  ? rcu_is_watching+0x12/0xc0
[  596.723273][T15271]  __kvmalloc_node_noprof+0x3de/0xa00
[  596.723331][T15271]  ? __do_sys_listmount+0x289/0xee0
[  596.723384][T15271]  ? __do_sys_listmount+0x289/0xee0
[  596.723437][T15271]  ? _copy_from_user+0x59/0xd0
[  596.723481][T15271]  ? copy_mnt_id_req+0x1b1/0x350
[  596.723533][T15271]  __do_sys_listmount+0x289/0xee0
[  596.723588][T15271]  ? __pfx_do_futex+0x10/0x10
[  596.723651][T15271]  ? __fget_files+0x21f/0x3d0
[  596.723684][T15271]  ? __pfx___do_sys_listmount+0x10/0x10
[  596.723765][T15271]  do_syscall_64+0x106/0xf80
[  596.723804][T15271]  ? clear_bhb_loop+0x40/0x90
[  596.723847][T15271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.723882][T15271] RIP: 0033:0x7f0f7df9c799
[  596.723910][T15271] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  596.723944][T15271] RSP: 002b:00007f0f7eef4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  596.723977][T15271] RAX: ffffffffffffffda RBX: 00007f0f7e215fa0 RCX: 00007f0f7df9c799
[  596.724000][T15271] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  596.724021][T15271] RBP: 00007f0f7e032c99 R08: 0000000000000000 R09: 0000000000000000
[  596.724042][T15271] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  596.724062][T15271] R13: 00007f0f7e216038 R14: 00007f0f7e215fa0 R15: 00007ffcf97f8488
[  596.724105][T15271]  </TASK>
[  596.724118][T15271] Mem-Info:
[  597.008711][T15271] active_anon:11735 inactive_anon:28130 isolated_anon:0
[  597.008711][T15271]  active_file:20689 inactive_file:5000 isolated_file:0
[  597.008711][T15271]  unevictable:768 dirty:704 writeback:0
[  597.008711][T15271]  slab_reclaimable:9038 slab_unreclaimable:94602
[  597.008711][T15271]  mapped:24539 shmem:16613 pagetables:1629
[  597.008711][T15271]  sec_pagetables:0 bounce:0
[  597.008711][T15271]  kernel_misc_reclaimable:0
[  597.008711][T15271]  free:1310289 free_pcp:16589 free_cma:0
[  597.065505][T15271] Node 0 active_anon:46936kB inactive_anon:112496kB active_file:81652kB inactive_file:19868kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:77676kB dirty:2808kB writeback:0kB shmem:64912kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:69632kB kernel_stack:12428kB pagetables:6380kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  597.121612][T15274] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2061'.
[  597.156724][T15271] Node 1 active_anon:4kB inactive_anon:24kB active_file:1104kB inactive_file:132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:20480kB dirty:8kB writeback:0kB shmem:1540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  597.226208][T15274] hsr_slave_0 (unregistering): left promiscuous mode
[  597.238905][T15271] Node 0 DMA free:15148kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:212kB local_pcp:96kB free_cma:0kB
[  597.299771][T15271] lowmem_reserve[]: 0 2477 2478 2478 2478
[  597.311939][T15271] Node 0 DMA32 free:1361968kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:46936kB inactive_anon:118632kB active_file:81652kB inactive_file:19868kB unevictable:1536kB writepending:2812kB zspages:4kB present:3129332kB managed:2537428kB mlocked:0kB bounce:0kB free_pcp:38412kB local_pcp:22540kB free_cma:0kB
[  597.347870][T15282] FAULT_INJECTION: forcing a failure.
[  597.347870][T15282] name failslab, interval 1, probability 0, space 0, times 0
[  597.367020][T15271] lowmem_reserve[]: 0 0 1 1 1
[  597.372585][T15271] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:0kB free_cma:0kB
[  597.403256][T15282] CPU: 1 UID: 0 PID: 15282 Comm: syz.3.2063 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  597.403307][T15282] Tainted: [L]=SOFTLOCKUP
[  597.403318][T15282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  597.403337][T15282] Call Trace:
[  597.403348][T15282]  <TASK>
[  597.403361][T15282]  dump_stack_lvl+0x100/0x190
[  597.403417][T15282]  should_fail_ex.cold+0x5/0xa
[  597.403455][T15282]  ? tomoyo_encode2+0xfb/0x3c0
[  597.403503][T15282]  should_failslab+0xc2/0x120
[  597.403537][T15282]  __kmalloc_noprof+0xe0/0x850
[  597.403585][T15282]  ? rcu_is_watching+0x12/0xc0
[  597.403639][T15282]  tomoyo_encode2+0xfb/0x3c0
[  597.403681][T15282]  tomoyo_encode+0x29/0x50
[  597.403716][T15282]  tomoyo_realpath_from_path+0x18c/0x690
[  597.403773][T15282]  tomoyo_path_number_perm+0x23c/0x580
[  597.403825][T15282]  ? tomoyo_path_number_perm+0x22e/0x580
[  597.403879][T15282]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  597.403971][T15282]  ? find_held_lock+0x2b/0x80
[  597.404000][T15282]  ? __fget_files+0x215/0x3d0
[  597.404027][T15282]  ? hook_file_ioctl_common+0x146/0x410
[  597.404086][T15282]  ? __fget_files+0x21f/0x3d0
[  597.404122][T15282]  security_file_ioctl+0xd3/0x230
[  597.404177][T15282]  __x64_sys_ioctl+0xb7/0x210
[  597.404226][T15282]  do_syscall_64+0x106/0xf80
[  597.404270][T15282]  ? clear_bhb_loop+0x40/0x90
[  597.404312][T15282]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.404345][T15282] RIP: 0033:0x7f935699c799
[  597.404371][T15282] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  597.404403][T15282] RSP: 002b:00007f93578a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  597.404433][T15282] RAX: ffffffffffffffda RBX: 00007f9356c16090 RCX: 00007f935699c799
[  597.404453][T15282] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000004
[  597.404473][T15282] RBP: 00007f93578a8090 R08: 0000000000000000 R09: 0000000000000000
[  597.404492][T15282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  597.404511][T15282] R13: 00007f9356c16128 R14: 00007f9356c16090 R15: 00007fff3eb35348
[  597.404553][T15282]  </TASK>
[  597.405139][T15282] ERROR: Out of memory at tomoyo_realpath_from_path.
[  597.645866][T15285] FAULT_INJECTION: forcing a failure.
[  597.645866][T15285] name failslab, interval 1, probability 0, space 0, times 0
[  597.659526][T15285] CPU: 1 UID: 0 PID: 15285 Comm: syz.1.2062 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  597.659579][T15285] Tainted: [L]=SOFTLOCKUP
[  597.659590][T15285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  597.659610][T15285] Call Trace:
[  597.659621][T15285]  <TASK>
[  597.659633][T15285]  dump_stack_lvl+0x100/0x190
[  597.659690][T15285]  should_fail_ex.cold+0x5/0xa
[  597.659730][T15285]  should_failslab+0xc2/0x120
[  597.659766][T15285]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  597.659816][T15285]  ? security_file_alloc+0x34/0x2c0
[  597.659852][T15285]  ? trace_kmem_cache_alloc+0xf3/0x120
[  597.659897][T15285]  security_file_alloc+0x34/0x2c0
[  597.659932][T15285]  init_file+0x95/0x480
[  597.659972][T15285]  alloc_empty_file+0x73/0x1c0
[  597.660015][T15285]  alloc_file_pseudo+0x13a/0x230
[  597.660059][T15285]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  597.660104][T15285]  ? alloc_fd+0x476/0x790
[  597.660142][T15285]  sock_alloc_file+0x50/0x210
[  597.660198][T15285]  __sys_socket+0x1c0/0x260
[  597.660230][T15285]  ? __pfx___sys_socket+0x10/0x10
[  597.660275][T15285]  __x64_sys_socket+0x72/0xb0
[  597.660306][T15285]  ? lockdep_hardirqs_on+0x78/0x100
[  597.660346][T15285]  do_syscall_64+0x106/0xf80
[  597.660386][T15285]  ? clear_bhb_loop+0x40/0x90
[  597.660427][T15285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.660462][T15285] RIP: 0033:0x7f690859c799
[  597.660489][T15285] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  597.660522][T15285] RSP: 002b:00007f6909403028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  597.660552][T15285] RAX: ffffffffffffffda RBX: 00007f6908816180 RCX: 00007f690859c799
[  597.660575][T15285] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  597.660594][T15285] RBP: 00007f6908632c99 R08: 0000000000000000 R09: 0000000000000000
[  597.660615][T15285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  597.660634][T15285] R13: 00007f6908816218 R14: 00007f6908816180 R15: 00007fff2a5aeb08
[  597.660679][T15285]  </TASK>
[  597.665054][T15271] lowmem_reserve[]: 0 0 0 0 0
[  597.926836][T15271] Node 1 Normal free:3868504kB boost:0kB min:55580kB low:69472kB high:83364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:24kB active_file:1104kB inactive_file:132kB unevictable:1536kB writepending:8kB zspages:156kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:29576kB local_pcp:11744kB free_cma:0kB
[  597.983011][T15288] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  598.009012][T15271] lowmem_reserve[]: 0 0 0 0 0
[  598.013948][T15271] Node 0 DMA: 7*4kB (M) 2*8kB (M) 6*16kB (M) 3*32kB (M) 5*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (UM) 0*2048kB 2*4096kB (UM) = 15148kB
[  598.039245][T15271] Node 0 DMA32: 6968*4kB (UME) 5842*8kB (UME) 3450*16kB (UME) 1851*32kB (UME) 1391*64kB (UME) 1082*128kB (UME) 734*256kB (UME) 486*512kB (UME) 244*1024kB (UME) 31*2048kB (UME) 49*4096kB (UM) = 1367344kB
[  598.060164][T15271] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  598.072723][T15271] Node 1 Normal: 190*4kB (UME) 158*8kB (UME) 135*16kB (UME) 136*32kB (UME) 74*64kB (UME) 59*128kB (UME) 46*256kB (UME) 38*512kB (UME) 37*1024kB (UME) 51*2048kB (UME) 897*4096kB (M) = 3868504kB
[  598.112343][T15271] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  598.134474][T15271] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  598.159623][T15271] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  598.215105][T15271] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  598.249220][T15271] 42409 total pagecache pages
[  598.254144][T15271] 105 pages in swap cache
[  598.258507][T15271] Free swap  = 118200kB
[  598.295427][T15271] Total swap = 124996kB
[  598.305554][T15271] 2097051 pages RAM
[  598.339241][T15271] 0 pages HighMem/MovableOnly
[  598.344010][T15271] 430814 pages reserved
[  598.363788][T15271] 0 pages cma reserved
[  598.956168][T15304] Invalid ELF header magic: != ELF
[  599.319952][T15311] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input73
[  599.782479][T15336] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  599.922667][T15322] cgroup: fork rejected by pids controller in /syz3
[  600.005036][T15349] FAULT_INJECTION: forcing a failure.
[  600.005036][T15349] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  600.027230][T15347] netlink: 62 bytes leftover after parsing attributes in process `syz.1.2074'.
[  600.037809][T15347] netlink: 62 bytes leftover after parsing attributes in process `syz.1.2074'.
[  600.047461][T15347] netlink: 62 bytes leftover after parsing attributes in process `syz.1.2074'.
[  600.057010][T15347] netlink: 62 bytes leftover after parsing attributes in process `syz.1.2074'.
[  600.071727][T15349] CPU: 1 UID: 0 PID: 15349 Comm: syz.4.2075 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  600.071779][T15349] Tainted: [L]=SOFTLOCKUP
[  600.071791][T15349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  600.071811][T15349] Call Trace:
[  600.071822][T15349]  <TASK>
[  600.071835][T15349]  dump_stack_lvl+0x100/0x190
[  600.071891][T15349]  should_fail_ex.cold+0x5/0xa
[  600.071933][T15349]  _copy_from_user+0x2e/0xd0
[  600.071969][T15349]  msr_io+0x93/0x480
[  600.072002][T15349]  ? __pfx_do_get_msr+0x10/0x10
[  600.072048][T15349]  ? __pfx_msr_io+0x10/0x10
[  600.072085][T15349]  ? __kernel_text_address+0xd/0x30
[  600.072143][T15349]  kvm_arch_vcpu_ioctl+0x1968/0x5740
[  600.072182][T15349]  ? kvm_arch_vcpu_ioctl+0x1940/0x5740
[  600.072233][T15349]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  600.072270][T15349]  ? __pfx_stack_trace_save+0x10/0x10
[  600.072306][T15349]  ? stack_depot_save_flags+0x27/0x9d0
[  600.072344][T15349]  ? __lock_acquire+0x4a5/0x2630
[  600.072388][T15349]  ? tomoyo_path_number_perm+0x46d/0x580
[  600.072449][T15349]  ? __lock_acquire+0x4a5/0x2630
[  600.072490][T15349]  ? do_syscall_64+0x106/0xf80
[  600.072527][T15349]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.072585][T15349]  ? lock_acquire+0x1cf/0x380
[  600.072636][T15349]  ? rcu_is_watching+0x12/0xc0
[  600.072686][T15349]  ? trace_contention_end+0x140/0x180
[  600.072739][T15349]  ? __mutex_lock+0x26a/0x1b90
[  600.072786][T15349]  ? kvm_vcpu_ioctl+0x322/0x1730
[  600.072839][T15349]  ? __pfx___mutex_lock+0x10/0x10
[  600.072879][T15349]  ? kasan_quarantine_put+0x104/0x240
[  600.072930][T15349]  ? lockdep_hardirqs_on+0x78/0x100
[  600.072975][T15349]  ? tomoyo_path_number_perm+0x28f/0x580
[  600.073040][T15349]  ? tomoyo_path_number_perm+0x188/0x580
[  600.073100][T15349]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  600.073143][T15349]  kvm_vcpu_ioctl+0x8a0/0x1730
[  600.073192][T15349]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  600.073239][T15349]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  600.073297][T15349]  ? do_vfs_ioctl+0x226/0x13e0
[  600.073343][T15349]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  600.073402][T15349]  ? find_held_lock+0x2b/0x80
[  600.073433][T15349]  ? __fget_files+0x215/0x3d0
[  600.073463][T15349]  ? hook_file_ioctl_common+0x146/0x410
[  600.073529][T15349]  ? __fget_files+0x21f/0x3d0
[  600.073573][T15349]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  600.073620][T15349]  __x64_sys_ioctl+0x18e/0x210
[  600.073673][T15349]  do_syscall_64+0x106/0xf80
[  600.073712][T15349]  ? clear_bhb_loop+0x40/0x90
[  600.073754][T15349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.073790][T15349] RIP: 0033:0x7f0f7df9c799
[  600.073817][T15349] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  600.073850][T15349] RSP: 002b:00007f0f7eef4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  600.073883][T15349] RAX: ffffffffffffffda RBX: 00007f0f7e215fa0 RCX: 00007f0f7df9c799
[  600.073904][T15349] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000004
[  600.073925][T15349] RBP: 00007f0f7eef4090 R08: 0000000000000000 R09: 0000000000000000
[  600.073945][T15349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  600.073965][T15349] R13: 00007f0f7e216038 R14: 00007f0f7e215fa0 R15: 00007ffcf97f8488
[  600.074012][T15349]  </TASK>
[  600.074468][T15347] netlink: 62 bytes leftover after parsing attributes in process `syz.1.2074'.
[  600.886330][ T5143] Bluetooth: hci4: unexpected subevent 0x03 length: 253 > 9
[  603.641366][T15398] [U] ^\
[  604.134038][T15435] __nla_validate_parse: 13 callbacks suppressed
[  604.134061][T15435] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2091'.
[  605.013230][T15454] FAULT_INJECTION: forcing a failure.
[  605.013230][T15454] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  605.069057][T15454] CPU: 1 UID: 0 PID: 15454 Comm: syz.1.2097 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  605.069115][T15454] Tainted: [L]=SOFTLOCKUP
[  605.069128][T15454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  605.069149][T15454] Call Trace:
[  605.069161][T15454]  <TASK>
[  605.069175][T15454]  dump_stack_lvl+0x100/0x190
[  605.069235][T15454]  should_fail_ex.cold+0x5/0xa
[  605.069281][T15454]  _copy_from_user+0x2e/0xd0
[  605.069319][T15454]  memdup_user+0x6b/0xe0
[  605.069356][T15454]  msr_io+0xea/0x480
[  605.069392][T15454]  ? __pfx_do_get_msr+0x10/0x10
[  605.069443][T15454]  ? __pfx_msr_io+0x10/0x10
[  605.069484][T15454]  ? __kernel_text_address+0xd/0x30
[  605.069557][T15454]  kvm_arch_vcpu_ioctl+0x1968/0x5740
[  605.069599][T15454]  ? kvm_arch_vcpu_ioctl+0x1940/0x5740
[  605.069652][T15454]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  605.069692][T15454]  ? __pfx_stack_trace_save+0x10/0x10
[  605.069729][T15454]  ? stack_depot_save_flags+0x27/0x9d0
[  605.069770][T15454]  ? __lock_acquire+0x4a5/0x2630
[  605.069819][T15454]  ? tomoyo_path_number_perm+0x46d/0x580
[  605.069884][T15454]  ? __lock_acquire+0x4a5/0x2630
[  605.069929][T15454]  ? do_syscall_64+0x106/0xf80
[  605.069972][T15454]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.070028][T15454]  ? lock_acquire+0x1cf/0x380
[  605.070084][T15454]  ? rcu_is_watching+0x12/0xc0
[  605.070139][T15454]  ? trace_contention_end+0x140/0x180
[  605.070191][T15454]  ? __mutex_lock+0x26a/0x1b90
[  605.070240][T15454]  ? kvm_vcpu_ioctl+0x322/0x1730
[  605.070297][T15454]  ? __pfx___mutex_lock+0x10/0x10
[  605.070343][T15454]  ? kasan_quarantine_put+0x104/0x240
[  605.070397][T15454]  ? lockdep_hardirqs_on+0x78/0x100
[  605.070447][T15454]  ? tomoyo_path_number_perm+0x28f/0x580
[  605.070527][T15454]  ? tomoyo_path_number_perm+0x188/0x580
[  605.070593][T15454]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  605.070640][T15454]  kvm_vcpu_ioctl+0x8a0/0x1730
[  605.070695][T15454]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  605.070746][T15454]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  605.070811][T15454]  ? do_vfs_ioctl+0x226/0x13e0
[  605.070864][T15454]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  605.070930][T15454]  ? find_held_lock+0x2b/0x80
[  605.070963][T15454]  ? __fget_files+0x215/0x3d0
[  605.070995][T15454]  ? hook_file_ioctl_common+0x146/0x410
[  605.071066][T15454]  ? __fget_files+0x21f/0x3d0
[  605.071108][T15454]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  605.071161][T15454]  __x64_sys_ioctl+0x18e/0x210
[  605.071218][T15454]  do_syscall_64+0x106/0xf80
[  605.071261][T15454]  ? clear_bhb_loop+0x40/0x90
[  605.071306][T15454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  605.071344][T15454] RIP: 0033:0x7f690859c799
[  605.071374][T15454] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  605.071410][T15454] RSP: 002b:00007f6909445028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  605.071445][T15454] RAX: ffffffffffffffda RBX: 00007f6908815fa0 RCX: 00007f690859c799
[  605.071468][T15454] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000004
[  605.071498][T15454] RBP: 00007f6909445090 R08: 0000000000000000 R09: 0000000000000000
[  605.071521][T15454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  605.071542][T15454] R13: 00007f6908816038 R14: 00007f6908815fa0 R15: 00007fff2a5aeb08
[  605.071591][T15454]  </TASK>
[  607.470854][T15461] Setting dangerous option i915.mitigations - tainting kernel
[  609.253186][T15491] FAULT_INJECTION: forcing a failure.
[  609.253186][T15491] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  609.305118][T15491] CPU: 0 UID: 0 PID: 15491 Comm: syz.0.2107 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  609.305171][T15491] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  609.305183][T15491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  609.305201][T15491] Call Trace:
[  609.305212][T15491]  <TASK>
[  609.305223][T15491]  dump_stack_lvl+0x100/0x190
[  609.305276][T15491]  should_fail_ex.cold+0x5/0xa
[  609.305315][T15491]  _copy_to_user+0x32/0xd0
[  609.305348][T15491]  msr_io+0x3c4/0x480
[  609.305380][T15491]  ? __pfx_do_get_msr+0x10/0x10
[  609.305424][T15491]  ? __pfx_msr_io+0x10/0x10
[  609.305458][T15491]  ? __kernel_text_address+0xd/0x30
[  609.305515][T15491]  kvm_arch_vcpu_ioctl+0x1968/0x5740
[  609.305551][T15491]  ? kvm_arch_vcpu_ioctl+0x1940/0x5740
[  609.305599][T15491]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[  609.305634][T15491]  ? __pfx_stack_trace_save+0x10/0x10
[  609.305666][T15491]  ? stack_depot_save_flags+0x27/0x9d0
[  609.305703][T15491]  ? __lock_acquire+0x4a5/0x2630
[  609.305745][T15491]  ? tomoyo_path_number_perm+0x46d/0x580
[  609.305803][T15491]  ? __lock_acquire+0x4a5/0x2630
[  609.305842][T15491]  ? do_syscall_64+0x106/0xf80
[  609.305880][T15491]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  609.305928][T15491]  ? lock_acquire+0x1cf/0x380
[  609.305975][T15491]  ? rcu_is_watching+0x12/0xc0
[  609.306024][T15491]  ? trace_contention_end+0x140/0x180
[  609.306070][T15491]  ? __mutex_lock+0x26a/0x1b90
[  609.306126][T15491]  ? kvm_vcpu_ioctl+0x322/0x1730
[  609.306176][T15491]  ? __pfx___mutex_lock+0x10/0x10
[  609.306216][T15491]  ? kasan_quarantine_put+0x104/0x240
[  609.306264][T15491]  ? lockdep_hardirqs_on+0x78/0x100
[  609.306308][T15491]  ? tomoyo_path_number_perm+0x28f/0x580
[  609.306369][T15491]  ? tomoyo_path_number_perm+0x188/0x580
[  609.306428][T15491]  ? kvm_vcpu_ioctl+0x8a0/0x1730
[  609.306469][T15491]  kvm_vcpu_ioctl+0x8a0/0x1730
[  609.306518][T15491]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  609.306563][T15491]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  609.306621][T15491]  ? do_vfs_ioctl+0x226/0x13e0
[  609.306668][T15491]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  609.306728][T15491]  ? find_held_lock+0x2b/0x80
[  609.306757][T15491]  ? __fget_files+0x215/0x3d0
[  609.306784][T15491]  ? hook_file_ioctl_common+0x146/0x410
[  609.306846][T15491]  ? __fget_files+0x21f/0x3d0
[  609.306882][T15491]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  609.306927][T15491]  __x64_sys_ioctl+0x18e/0x210
[  609.306975][T15491]  do_syscall_64+0x106/0xf80
[  609.307010][T15491]  ? clear_bhb_loop+0x40/0x90
[  609.307049][T15491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  609.307089][T15491] RIP: 0033:0x7f24a399c799
[  609.307115][T15491] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  609.307146][T15491] RSP: 002b:00007f24a483c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  609.307176][T15491] RAX: ffffffffffffffda RBX: 00007f24a3c15fa0 RCX: 00007f24a399c799
[  609.307197][T15491] RDX: 0000200000000040 RSI: 00000000c008ae88 RDI: 0000000000000004
[  609.307217][T15491] RBP: 00007f24a483c090 R08: 0000000000000000 R09: 0000000000000000
[  609.307235][T15491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  609.307253][T15491] R13: 00007f24a3c16038 R14: 00007f24a3c15fa0 R15: 00007ffc38463f28
[  609.307295][T15491]  </TASK>
[  612.728064][T15532] device-mapper: ioctl: Invalid ioctl structure: uuid �, name , dev 400000000
[  612.749815][T15532] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[  612.766702][T15532] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  612.775343][T15532] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  612.785300][T15532] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  612.798910][T15532] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  612.808327][T15532] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  612.850925][T15532] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  612.896009][T15532] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  613.023278][T15532] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  613.058271][T15532] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  613.095269][T15532] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  616.143734][T15570] FAULT_INJECTION: forcing a failure.
[  616.143734][T15570] name fail_futex, interval 1, probability 0, space 0, times 0
[  616.178148][T15570] CPU: 0 UID: 8 PID: 15570 Comm: syz.4.2128 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  616.178206][T15570] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  616.178220][T15570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  616.178242][T15570] Call Trace:
[  616.178253][T15570]  <TASK>
[  616.178267][T15570]  dump_stack_lvl+0x100/0x190
[  616.178338][T15570]  should_fail_ex.cold+0x5/0xa
[  616.178381][T15570]  get_futex_key+0x1d2/0x1620
[  616.178433][T15570]  ? __pfx_get_futex_key+0x10/0x10
[  616.178476][T15570]  ? rcu_is_watching+0x12/0xc0
[  616.178544][T15570]  futex_wait_setup+0x83/0x510
[  616.178611][T15570]  __futex_wait+0x19f/0x300
[  616.178672][T15570]  ? __pfx___futex_wait+0x10/0x10
[  616.178729][T15570]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  616.178771][T15570]  ? lockdep_hardirqs_on+0x78/0x100
[  616.178821][T15570]  ? __pfx_futex_wake_mark+0x10/0x10
[  616.178885][T15570]  ? find_held_lock+0x2b/0x80
[  616.178917][T15570]  ? futex_wake+0x456/0x530
[  616.178982][T15570]  futex_wait+0xed/0x380
[  616.179038][T15570]  ? __pfx_futex_wait+0x10/0x10
[  616.179119][T15570]  do_futex+0x1ef/0x350
[  616.179167][T15570]  ? __pfx_do_futex+0x10/0x10
[  616.179213][T15570]  ? do_raw_spin_lock+0x128/0x260
[  616.179266][T15570]  ? find_held_lock+0x2b/0x80
[  616.179299][T15570]  ? __x64_sys_close_range+0x2d9/0x5d0
[  616.179355][T15570]  __x64_sys_futex+0x34f/0x4d0
[  616.179407][T15570]  ? __x64_sys_close_range+0x30f/0x5d0
[  616.179446][T15570]  ? __pfx___x64_sys_futex+0x10/0x10
[  616.179498][T15570]  ? __pfx___x64_sys_close_range+0x10/0x10
[  616.179551][T15570]  do_syscall_64+0x106/0xf80
[  616.179595][T15570]  ? clear_bhb_loop+0x40/0x90
[  616.179641][T15570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  616.179679][T15570] RIP: 0033:0x7f0f7df9c799
[  616.179708][T15570] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  616.179745][T15570] RSP: 002b:00007f0f7eef40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  616.179781][T15570] RAX: ffffffffffffffda RBX: 00007f0f7e215fa8 RCX: 00007f0f7df9c799
[  616.179806][T15570] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0f7e215fa8
[  616.179829][T15570] RBP: 00007f0f7e215fa0 R08: 0000000000000000 R09: 0000000000000000
[  616.179851][T15570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  616.179873][T15570] R13: 00007f0f7e216038 R14: 00007ffcf97f83a0 R15: 00007ffcf97f8488
[  616.179918][T15570]  </TASK>
[  619.645897][T15610] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  619.672426][T15610] FAULT_INJECTION: forcing a failure.
[  619.672426][T15610] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  619.697731][T15610] CPU: 0 UID: 0 PID: 15610 Comm: syz.4.2136 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  619.697794][T15610] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  619.697806][T15610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  619.697824][T15610] Call Trace:
[  619.697834][T15610]  <TASK>
[  619.697846][T15610]  dump_stack_lvl+0x100/0x190
[  619.697899][T15610]  should_fail_ex.cold+0x5/0xa
[  619.697938][T15610]  _copy_to_user+0x32/0xd0
[  619.697989][T15610]  simple_read_from_buffer+0xcb/0x170
[  619.698044][T15610]  proc_fail_nth_read+0x1af/0x230
[  619.698085][T15610]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  619.698127][T15610]  ? rw_verify_area+0xce/0x6d0
[  619.698174][T15610]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  619.698212][T15610]  vfs_read+0x1e4/0xb30
[  619.698268][T15610]  ? __pfx_vfs_read+0x10/0x10
[  619.698317][T15610]  ? __fget_files+0x215/0x3d0
[  619.698356][T15610]  ? __fget_files+0x21f/0x3d0
[  619.698398][T15610]  ksys_read+0x12a/0x250
[  619.698450][T15610]  ? __pfx_ksys_read+0x10/0x10
[  619.698513][T15610]  do_syscall_64+0x106/0xf80
[  619.698551][T15610]  ? clear_bhb_loop+0x40/0x90
[  619.698591][T15610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.698624][T15610] RIP: 0033:0x7f0f7df5cfce
[  619.698656][T15610] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  619.698687][T15610] RSP: 002b:00007f0f7eef3fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  619.698718][T15610] RAX: ffffffffffffffda RBX: 00007f0f7eef46c0 RCX: 00007f0f7df5cfce
[  619.698740][T15610] RDX: 000000000000000f RSI: 00007f0f7eef40a0 RDI: 0000000000000004
[  619.698759][T15610] RBP: 00007f0f7eef4090 R08: 0000000000000000 R09: 0000000000000000
[  619.698779][T15610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  619.698798][T15610] R13: 00007f0f7e216038 R14: 00007f0f7e215fa0 R15: 00007ffcf97f8488
[  619.698842][T15610]  </TASK>
[  620.428454][   T29] audit: type=1804 audit(2147502025.352:21): pid=15614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2137" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  621.389507][T15341] syz.3.2072 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  621.660563][T15341] CPU: 1 UID: 0 PID: 15341 Comm: syz.3.2072 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  621.660618][T15341] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  621.660629][T15341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  621.660648][T15341] Call Trace:
[  621.660659][T15341]  <TASK>
[  621.660671][T15341]  dump_stack_lvl+0x100/0x190
[  621.660729][T15341]  dump_header+0xfb/0x606
[  621.660771][T15341]  oom_kill_process.cold+0xd/0x330
[  621.660809][T15341]  out_of_memory+0x340/0x14f0
[  621.660867][T15341]  ? __pfx_out_of_memory+0x10/0x10
[  621.660928][T15341]  mem_cgroup_out_of_memory+0xc6/0x130
[  621.660972][T15341]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  621.661015][T15341]  ? find_held_lock+0x2b/0x80
[  621.661055][T15341]  ? do_raw_spin_unlock+0x145/0x1e0
[  621.661104][T15341]  ? _raw_spin_unlock+0x28/0x50
[  621.661144][T15341]  try_charge_memcg+0x652/0xc90
[  621.661187][T15341]  ? __pfx_try_charge_memcg+0x10/0x10
[  621.661222][T15341]  ? find_held_lock+0x2b/0x80
[  621.661251][T15341]  ? rcu_read_unlock+0x17/0x60
[  621.661285][T15341]  ? rcu_read_unlock+0x17/0x60
[  621.661335][T15341]  charge_memcg+0xa6/0x280
[  621.661369][T15341]  __mem_cgroup_charge+0x2b/0x1e0
[  621.661411][T15341]  shmem_alloc_and_add_folio+0x451/0xd40
[  621.661471][T15341]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  621.661525][T15341]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  621.661586][T15341]  shmem_get_folio_gfp+0x6ab/0x1900
[  621.661646][T15341]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  621.661709][T15341]  shmem_write_begin+0x1a4/0x420
[  621.661771][T15341]  ? __pfx_shmem_write_begin+0x10/0x10
[  621.661824][T15341]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  621.661861][T15341]  ? lockdep_hardirqs_on+0x78/0x100
[  621.661906][T15341]  generic_perform_write+0x292/0xa40
[  621.661966][T15341]  ? __pfx_generic_perform_write+0x10/0x10
[  621.662021][T15341]  ? file_update_time_flags+0x373/0x500
[  621.662067][T15341]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  621.662101][T15341]  shmem_file_write_iter+0x10e/0x140
[  621.662139][T15341]  __kernel_write_iter+0x2ac/0x920
[  621.662195][T15341]  ? __pfx___kernel_write_iter+0x10/0x10
[  621.662249][T15341]  ? __up_read+0x2c5/0x700
[  621.662300][T15341]  ? dump_user_range+0x73b/0xb50
[  621.662346][T15341]  dump_user_range+0x3f9/0xb50
[  621.662391][T15341]  ? __pfx_dump_user_range+0x10/0x10
[  621.662442][T15341]  ? __pfx_writenote+0x10/0x10
[  621.662492][T15341]  elf_core_dump+0x2d5f/0x3d10
[  621.662558][T15341]  ? __pfx_elf_core_dump+0x10/0x10
[  621.662604][T15341]  ? tracing_record_taskinfo_sched_switch+0xac/0x560
[  621.662645][T15341]  ? find_held_lock+0x2b/0x80
[  621.662677][T15341]  ? 0xffffffffff600000
[  621.662706][T15341]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  621.662742][T15341]  ? lockdep_hardirqs_on+0x78/0x100
[  621.662849][T15341]  ? vfs_coredump+0x27bc/0x5570
[  621.662883][T15341]  vfs_coredump+0x27bc/0x5570
[  621.662936][T15341]  ? __pfx_vfs_coredump+0x10/0x10
[  621.662975][T15341]  ? __lock_acquire+0x4a5/0x2630
[  621.663033][T15341]  ? lock_acquire+0x1cf/0x380
[  621.663093][T15341]  ? is_bpf_text_address+0x8a/0x1a0
[  621.663144][T15341]  ? bpf_ksym_find+0x124/0x1c0
[  621.663192][T15341]  ? __kernel_text_address+0xd/0x30
[  621.663240][T15341]  ? unwind_get_return_address+0x59/0xa0
[  621.663277][T15341]  ? arch_stack_walk+0xa6/0xf0
[  621.663322][T15341]  ? __sigqueue_free+0xbe/0x2a0
[  621.663365][T15341]  ? stack_trace_save+0x8e/0xc0
[  621.663397][T15341]  ? __pfx_stack_trace_save+0x10/0x10
[  621.663431][T15341]  ? stack_depot_save_flags+0x27/0x9d0
[  621.663469][T15341]  ? __lock_acquire+0x4a5/0x2630
[  621.663580][T15341]  ? proc_coredump_connector+0x2d3/0x4f0
[  621.663620][T15341]  ? __pfx_proc_coredump_connector+0x10/0x10
[  621.663671][T15341]  ? rcu_is_watching+0x12/0xc0
[  621.663727][T15341]  get_signal+0x1f2a/0x21e0
[  621.663783][T15341]  ? __pfx_get_signal+0x10/0x10
[  621.663828][T15341]  arch_do_signal_or_restart+0x91/0x770
[  621.663871][T15341]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  621.663924][T15341]  ? exc_general_protection+0x12e/0x250
[  621.663970][T15341]  ? ret_from_fork+0x4b8/0xd80
[  621.664029][T15341]  irqentry_exit+0x1f8/0x670
[  621.664073][T15341]  asm_exc_general_protection+0x26/0x30
[  621.664106][T15341] RIP: 0033:0x7f935699c7a1
[  621.664132][T15341] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  621.664164][T15341] RSP: 002b:0000000000000002 EFLAGS: 00010217
[  621.664189][T15341] RAX: 0000000000000000 RBX: 00007f9356c16450 RCX: 00007f935699c799
[  621.664210][T15341] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  621.664228][T15341] RBP: 00007f9356a32c99 R08: 0000000000000002 R09: 0000000000000000
[  621.664247][T15341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  621.664267][T15341] R13: 00007f9356c164e8 R14: 00007f9356c16450 R15: 00007fff3eb35348
[  621.664312][T15341]  </TASK>
[  622.201358][T15341] memory: usage 307200kB, limit 307200kB, failcnt 27777
[  622.208419][T15341] memory+swap: usage 425412kB, limit 9007199254740988kB, failcnt 0
[  622.224174][T15341] kmem: usage 5132kB, limit 9007199254740988kB, failcnt 0
[  622.255230][T15341] Memory cgroup stats for /syz3:
[  622.255707][T15341] cache 306913280
[  622.266159][T15341] rss 2359296
[  622.269509][T15341] rss_huge 2097152
[  622.292061][T15341] shmem 306892800
[  622.295906][T15341] mapped_file 135168
[  622.312272][T15341] dirty 0
[  622.315300][T15341] writeback 0
[  622.318641][T15341] workingset_refault_anon 5243
[  622.336460][T15341] workingset_refault_file 5893
[  622.366172][T15630] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  622.374993][T15341] swap 121049088
[  622.390598][T15341] swapcached 153808896
[  622.431302][T15341] pgpgin 655746
[  622.434848][T15341] pgpgout 597653
[  622.438419][T15341] pgfault 423176
[  622.479463][T15341] pgmajfault 3350
[  622.483872][T15341] inactive_anon 308699136
[  622.489238][T15341] active_anon 589824
[  622.511424][T15341] inactive_file 16384
[  622.515506][T15341] active_file 4096
[  622.519261][T15341] unevictable 0
[  622.546224][T15341] hierarchical_memory_limit 314572800
[  622.565721][T15341] hierarchical_memsw_limit 9223372036854771712
[  622.599811][T15341] total_cache 306913280
[  622.612256][T15341] total_rss 2359296
[  622.616159][T15341] total_rss_huge 2097152
[  622.620580][T15341] total_shmem 306892800
[  622.626846][T15341] total_mapped_file 135168
[  622.631499][T15341] total_dirty 0
[  622.635007][T15341] total_writeback 0
[  622.638884][T15341] total_workingset_refault_anon 5243
[  622.661924][T15341] total_workingset_refault_file 5893
[  622.667339][T15341] total_swap 121049088
[  622.681912][T15341] total_swapcached 153808896
[  622.687094][T15341] total_pgpgin 655746
[  622.691121][T15341] total_pgpgout 597653
[  622.731729][T15341] total_pgfault 423176
[  622.735893][T15341] total_pgmajfault 3350
[  622.740119][T15341] total_inactive_anon 308699136
[  622.758100][T15341] total_active_anon 589824
[  622.801523][T15341] total_inactive_file 16384
[  622.806132][T15341] total_active_file 4096
[  622.810419][T15341] total_unevictable 0
[  622.815349][T15341] anon_cost 92
[  622.821591][T15341] file_cost 17768
[  622.825304][T15341] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.2072,pid=15344,uid=0
[  622.903519][T15341] Memory cgroup out of memory: Killed process 15344 (syz.3.2072) total-vm:172976kB, anon-rss:3348kB, file-rss:34296kB, shmem-rss:3072kB, UID:0 pgtables:216kB oom_score_adj:1000
[  623.914605][T15656] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  624.652566][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  624.659177][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  626.044312][T15343] syz.3.2072 (15343) used greatest stack depth: 18488 bytes left
[  626.137240][T15687] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2160'.
[  626.153524][T15687] netlink: 25 bytes leftover after parsing attributes in process `syz.4.2160'.
[  626.260977][T15685] zswap: compressor  not available
[  626.370207][T15693] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2161'.
[  626.505796][T15698] vivid-007: =================  START STATUS  =================
[  626.524046][T15698] vivid-007: Enable Output Cropping: true grabbed
[  626.531843][T15698] vivid-007: Enable Output Composing: true grabbed
[  626.553347][T15698] vivid-007: Enable Output Scaler: true grabbed
[  626.559757][T15698] vivid-007: Tx RGB Quantization Range: Automatic grabbed
[  626.590750][T15698] vivid-007: Transmit Mode: HDMI grabbed
[  626.604116][T15701] sd 0:0:1:0: PR command failed: 1026
[  626.612678][T15698] vivid-007: Hotplug Present: 0x00000000
[  626.626810][T15701] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  626.641008][T15698] vivid-007: RxSense Present: 0x00000000
[  626.737799][T15701] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  626.763417][T15698] vivid-007: EDID Present: 0x00000000
[  626.769008][T15698] vivid-007: ==================  END STATUS  ==================
[  628.068732][T15730] smpboot: CPU 1 is now offline
[  628.926246][T15725] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  628.956265][T15725] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  628.965601][T15725] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  628.995141][T15725] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  629.481143][T15750] zswap: compressor  not available
[  630.028524][T15769] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input75
[  630.965973][T13248] Bluetooth: hci1: command 0x0c1a tx timeout
[  630.972258][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout
[  631.047477][ T5143] Bluetooth: hci4: command 0x0406 tx timeout
[  631.054327][T13248] Bluetooth: hci0: command 0x0c1a tx timeout
[  631.425836][T15790] can: request_module (can-proto-0) failed.
[  631.453216][T15795] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  634.335202][T15822] zswap: compressor  not available
[  634.742740][T15835] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub
[  636.028133][T15860] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2192'.
[  636.837014][T15867] zswap: compressor  not available
[  637.258267][T15883] FAULT_INJECTION: forcing a failure.
[  637.258267][T15883] name failslab, interval 1, probability 0, space 0, times 0
[  637.346661][T15883] CPU: 0 UID: 0 PID: 15883 Comm: syz.4.2198 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  637.346707][T15883] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  637.346716][T15883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  637.346731][T15883] Call Trace:
[  637.346739][T15883]  <TASK>
[  637.346747][T15883]  dump_stack_lvl+0x100/0x190
[  637.346790][T15883]  should_fail_ex.cold+0x5/0xa
[  637.346819][T15883]  should_failslab+0xc2/0x120
[  637.346844][T15883]  __kmalloc_cache_noprof+0x7a/0x6f0
[  637.346875][T15883]  ? refill_pi_state_cache+0x91/0x260
[  637.346917][T15883]  refill_pi_state_cache+0x91/0x260
[  637.346954][T15883]  futex_lock_pi+0x177/0x7b0
[  637.346993][T15883]  ? __pfx_futex_lock_pi+0x10/0x10
[  637.347032][T15883]  ? __pfx___futex_wait+0x10/0x10
[  637.347093][T15883]  ? __pfx_futex_wake_mark+0x10/0x10
[  637.347137][T15883]  ? __might_fault+0x111/0x140
[  637.347172][T15883]  ? do_vfs_ioctl+0x226/0x13e0
[  637.347210][T15883]  do_futex+0x18a/0x350
[  637.347241][T15883]  ? __pfx_do_futex+0x10/0x10
[  637.347275][T15883]  ? __pfx_sched_core_share_pid+0x10/0x10
[  637.347305][T15883]  __x64_sys_futex+0x34f/0x4d0
[  637.347340][T15883]  ? __pfx___x64_sys_futex+0x10/0x10
[  637.347383][T15883]  do_syscall_64+0x106/0xf80
[  637.347411][T15883]  ? clear_bhb_loop+0x40/0x90
[  637.347441][T15883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  637.347466][T15883] RIP: 0033:0x7f0f7df9c799
[  637.347486][T15883] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  637.347509][T15883] RSP: 002b:00007f0f7eed3028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  637.347537][T15883] RAX: ffffffffffffffda RBX: 00007f0f7e216090 RCX: 00007f0f7df9c799
[  637.347554][T15883] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000
[  637.347568][T15883] RBP: 00007f0f7e032c99 R08: 0000000000000000 R09: 000000008000fff5
[  637.347583][T15883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  637.347597][T15883] R13: 00007f0f7e216128 R14: 00007f0f7e216090 R15: 00007ffcf97f8488
[  637.347628][T15883]  </TASK>
[  637.779884][T15888] snd_virmidi snd_virmidi.0: control 61678:131081:3:y��>o�[k<�:1 is already present
[  640.507795][T15948] ubi0: attaching mtd0
[  640.614271][T15948] ubi0: scanning is finished
[  640.618964][T15948] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  641.413098][T15948] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  641.685312][T15974] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  642.400482][T15989] Console: switching to colour VGA+ 80x25
[  642.457686][T15991] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2221'.
[  643.908522][T16005] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2225'.
[  644.057844][T16010] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  645.178933][T16038] FAULT_INJECTION: forcing a failure.
[  645.178933][T16038] name failslab, interval 1, probability 0, space 0, times 0
[  645.241690][T16038] CPU: 0 UID: 0 PID: 16038 Comm: syz.0.2235 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  645.241731][T16038] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  645.241740][T16038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  645.241754][T16038] Call Trace:
[  645.241762][T16038]  <TASK>
[  645.241771][T16038]  dump_stack_lvl+0x100/0x190
[  645.241811][T16038]  should_fail_ex.cold+0x5/0xa
[  645.241838][T16038]  should_failslab+0xc2/0x120
[  645.241863][T16038]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  645.241899][T16038]  ? __d_alloc+0x34/0xa80
[  645.241931][T16038]  __d_alloc+0x34/0xa80
[  645.241960][T16038]  d_alloc_pseudo+0x1c/0xc0
[  645.241992][T16038]  alloc_file_pseudo+0xcf/0x230
[  645.242023][T16038]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  645.242060][T16038]  __shmem_file_setup+0x221/0x490
[  645.242093][T16038]  ? __pfx___shmem_file_setup+0x10/0x10
[  645.242129][T16038]  ? vm_area_alloc+0x1f/0x160
[  645.242163][T16038]  shmem_zero_setup+0x96/0x1b0
[  645.242201][T16038]  __mmap_region+0x2198/0x29e0
[  645.242240][T16038]  ? __pfx___mmap_region+0x10/0x10
[  645.242275][T16038]  ? __lock_acquire+0x4a5/0x2630
[  645.242305][T16038]  ? __pfx_css_rstat_updated+0x10/0x10
[  645.242331][T16038]  ? kvm_sched_clock_read+0x11/0x20
[  645.242368][T16038]  ? __lock_acquire+0x4a5/0x2630
[  645.242397][T16038]  ? find_held_lock+0x2b/0x80
[  645.242429][T16038]  ? find_held_lock+0x2b/0x80
[  645.242461][T16038]  ? finish_task_switch.isra.0+0x200/0xb80
[  645.242487][T16038]  ? finish_task_switch.isra.0+0x200/0xb80
[  645.242525][T16038]  ? trace_sched_exit_tp+0x13a/0x180
[  645.242552][T16038]  ? __schedule+0x1000/0x6120
[  645.242613][T16038]  ? rcu_is_watching+0x12/0xc0
[  645.242647][T16038]  ? cap_capable+0x107/0x460
[  645.242684][T16038]  mmap_region+0x180/0x3e0
[  645.242724][T16038]  do_mmap+0xc63/0x12f0
[  645.242755][T16038]  ? __pfx_do_mmap+0x10/0x10
[  645.242779][T16038]  ? __pfx_down_write_killable+0x10/0x10
[  645.242818][T16038]  vm_mmap_pgoff+0x29e/0x470
[  645.242849][T16038]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  645.242877][T16038]  ? do_futex+0x192/0x350
[  645.242907][T16038]  ? __pfx_do_futex+0x10/0x10
[  645.242942][T16038]  ksys_mmap_pgoff+0xe1/0x650
[  645.242966][T16038]  ? __x64_sys_futex+0x34f/0x4d0
[  645.242994][T16038]  ? __x64_sys_futex+0x358/0x4d0
[  645.243025][T16038]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  645.243049][T16038]  ? xfd_validate_state+0x129/0x190
[  645.243087][T16038]  __x64_sys_mmap+0x125/0x190
[  645.243124][T16038]  do_syscall_64+0x106/0xf80
[  645.243152][T16038]  ? clear_bhb_loop+0x40/0x90
[  645.243181][T16038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  645.243204][T16038] RIP: 0033:0x7f24a399c799
[  645.243224][T16038] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  645.243246][T16038] RSP: 002b:00007f24a483c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  645.243268][T16038] RAX: ffffffffffffffda RBX: 00007f24a3c15fa0 RCX: 00007f24a399c799
[  645.243284][T16038] RDX: 0000000000000007 RSI: 0000000002020009 RDI: 0000000000000000
[  645.243298][T16038] RBP: 00007f24a3a32c99 R08: fffffffffffffffa R09: 0000000000008000
[  645.243313][T16038] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  645.243327][T16038] R13: 00007f24a3c16038 R14: 00007f24a3c15fa0 R15: 00007ffc38463f28
[  645.243357][T16038]  </TASK>
[  646.916514][T16057] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  648.421999][T16090] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2248'.
[  648.449386][T16100] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  648.744251][   T29] audit: type=1800 audit(2147502053.658:22): pid=16105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2253" name="features" dev="configfs" ino=80543 res=0 errno=0
[  649.595671][T16113] zswap: compressor  not available
[  649.940102][T16128] random: crng reseeded on system resumption
[  651.237539][T16147] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  651.277743][T16149] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2264'.
[  651.533173][T16149] bridge0: port 3(team0) entered disabled state
[  651.647838][T16140] futex_wake_op: syz.3.2262 tries to shift op by -2048; fix this program
[  651.697524][T16149] team0 (unregistering): left allmulticast mode
[  651.757677][T16149] team_slave_1: left allmulticast mode
[  651.782603][T16149] team0 (unregistering): left promiscuous mode
[  651.821440][T16149] team_slave_1: left promiscuous mode
[  651.856559][T16149] bridge0: port 3(team0) entered disabled state
[  652.094091][T16149] team0 (unregistering): Port device team_slave_1 removed
[  652.717974][T16158] workqueue: Failed to create a rescuer kthread for wq "nfc17_nci_cmd_wq": -EINTR
[  652.828330][T16210] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2267'.
[  656.718591][T16238] phram: parameter too long
[  656.980916][T16244] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2276'.
[  658.815716][T16268] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2282'.
[  658.858486][T16263] futex_wake_op: syz.4.2280 tries to shift op by -2048; fix this program
[  661.042734][T16304] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  661.402454][T16309] FAULT_INJECTION: forcing a failure.
[  661.402454][T16309] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  661.511143][T16309] CPU: 0 UID: 0 PID: 16309 Comm: syz.4.2292 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  661.511182][T16309] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  661.511191][T16309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  661.511204][T16309] Call Trace:
[  661.511211][T16309]  <TASK>
[  661.511220][T16309]  dump_stack_lvl+0x100/0x190
[  661.511260][T16309]  should_fail_ex.cold+0x5/0xa
[  661.511287][T16309]  _copy_from_iter+0x1f4/0x1690
[  661.511317][T16309]  ? __pfx__copy_from_iter+0x10/0x10
[  661.511339][T16309]  ? rcu_is_watching+0x12/0xc0
[  661.511374][T16309]  ? trace_kmalloc+0x101/0x130
[  661.511398][T16309]  ? __kasan_kmalloc+0xaa/0xb0
[  661.511434][T16309]  ? __kmalloc_noprof+0x320/0x850
[  661.511474][T16309]  kernfs_fop_write_iter+0x186/0x5f0
[  661.511503][T16309]  vfs_write+0x6ac/0x1070
[  661.511541][T16309]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  661.511569][T16309]  ? __pfx_vfs_write+0x10/0x10
[  661.511623][T16309]  ksys_write+0x12a/0x250
[  661.511643][T16309]  ? __pfx_ksys_write+0x10/0x10
[  661.511673][T16309]  do_syscall_64+0x106/0xf80
[  661.511700][T16309]  ? clear_bhb_loop+0x40/0x90
[  661.511729][T16309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.511752][T16309] RIP: 0033:0x7f0f7df9c799
[  661.511771][T16309] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  661.511801][T16309] RSP: 002b:00007f0f7eef4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  661.511823][T16309] RAX: ffffffffffffffda RBX: 00007f0f7e215fa0 RCX: 00007f0f7df9c799
[  661.511838][T16309] RDX: 00000008000002b3 RSI: 0000000000000000 RDI: 0000000000000004
[  661.511853][T16309] RBP: 00007f0f7eef4090 R08: 0000000000000000 R09: 0000000000000000
[  661.511866][T16309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  661.511880][T16309] R13: 00007f0f7e216038 R14: 00007f0f7e215fa0 R15: 00007ffcf97f8488
[  661.511910][T16309]  </TASK>
[  662.858920][T16319] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2294'.
[  664.808200][ T5879] Process accounting resumed
[  665.057898][T16352] FAULT_INJECTION: forcing a failure.
[  665.057898][T16352] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  665.229227][T16352] CPU: 0 UID: 0 PID: 16352 Comm: syz.0.2303 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  665.229267][T16352] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  665.229276][T16352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  665.229295][T16352] Call Trace:
[  665.229303][T16352]  <TASK>
[  665.229313][T16352]  dump_stack_lvl+0x100/0x190
[  665.229351][T16352]  should_fail_ex.cold+0x5/0xa
[  665.229378][T16352]  _copy_to_user+0x32/0xd0
[  665.229405][T16352]  simple_read_from_buffer+0xcb/0x170
[  665.229443][T16352]  proc_fail_nth_read+0x1af/0x230
[  665.229472][T16352]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  665.229502][T16352]  ? rw_verify_area+0xce/0x6d0
[  665.229535][T16352]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  665.229562][T16352]  vfs_read+0x1e4/0xb30
[  665.229601][T16352]  ? __pfx_vfs_read+0x10/0x10
[  665.229636][T16352]  ? __fget_files+0x215/0x3d0
[  665.229662][T16352]  ? __fget_files+0x21f/0x3d0
[  665.229691][T16352]  ksys_read+0x12a/0x250
[  665.229726][T16352]  ? __pfx_ksys_read+0x10/0x10
[  665.229770][T16352]  do_syscall_64+0x106/0xf80
[  665.229798][T16352]  ? clear_bhb_loop+0x40/0x90
[  665.229826][T16352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  665.229850][T16352] RIP: 0033:0x7f24a395cfce
[  665.229868][T16352] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  665.229890][T16352] RSP: 002b:00007f24a483bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  665.229910][T16352] RAX: ffffffffffffffda RBX: 00007f24a483c6c0 RCX: 00007f24a395cfce
[  665.229925][T16352] RDX: 000000000000000f RSI: 00007f24a483c0a0 RDI: 0000000000000005
[  665.229940][T16352] RBP: 00007f24a483c090 R08: 0000000000000000 R09: 0000000000000000
[  665.229953][T16352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  665.229967][T16352] R13: 00007f24a3c16038 R14: 00007f24a3c15fa0 R15: 00007ffc38463f28
[  665.229996][T16352]  </TASK>
[  665.768009][T16356] FAULT_INJECTION: forcing a failure.
[  665.768009][T16356] name failslab, interval 1, probability 0, space 0, times 0
[  665.829728][T16356] CPU: 0 UID: 0 PID: 16356 Comm: syz.0.2305 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  665.829771][T16356] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  665.829780][T16356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  665.829794][T16356] Call Trace:
[  665.829802][T16356]  <TASK>
[  665.829811][T16356]  dump_stack_lvl+0x100/0x190
[  665.829860][T16356]  should_fail_ex.cold+0x5/0xa
[  665.829889][T16356]  should_failslab+0xc2/0x120
[  665.829915][T16356]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  665.829951][T16356]  ? ptlock_alloc+0x1f/0x70
[  665.829989][T16356]  ptlock_alloc+0x1f/0x70
[  665.830020][T16356]  pte_alloc_one+0x84/0x3e0
[  665.830048][T16356]  __pte_alloc+0x6d/0x3f0
[  665.830071][T16356]  ? __pfx___pte_alloc+0x10/0x10
[  665.830094][T16356]  ? find_held_lock+0x2b/0x80
[  665.830115][T16356]  ? find_held_lock+0x2b/0x80
[  665.830135][T16356]  ? walk_to_pmd+0x302/0x4c0
[  665.830165][T16356]  get_locked_pte+0xa1/0xc0
[  665.830195][T16356]  insert_page+0xcc/0x220
[  665.830223][T16356]  ? __pfx_insert_page+0x10/0x10
[  665.830249][T16356]  ? __pfx_down_read_trylock+0x10/0x10
[  665.830293][T16356]  vm_insert_page+0x2c0/0x400
[  665.830324][T16356]  kcov_mmap+0xca/0x130
[  665.830364][T16356]  __mmap_region+0x1443/0x29e0
[  665.830404][T16356]  ? __pfx___mmap_region+0x10/0x10
[  665.830444][T16356]  ? ima_match_policy+0x8c4/0x2350
[  665.830493][T16356]  ? find_held_lock+0x2b/0x80
[  665.830513][T16356]  ? process_measurement+0x4c8/0x2350
[  665.830545][T16356]  ? process_measurement+0x4c8/0x2350
[  665.830589][T16356]  ? process_measurement+0x1f4/0x2350
[  665.830670][T16356]  mmap_region+0x30a/0x3e0
[  665.830711][T16356]  do_mmap+0xc63/0x12f0
[  665.830743][T16356]  ? __pfx_do_mmap+0x10/0x10
[  665.830770][T16356]  ? __pfx_down_write_killable+0x10/0x10
[  665.830810][T16356]  vm_mmap_pgoff+0x29e/0x470
[  665.830849][T16356]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  665.830874][T16356]  ? __fget_files+0x215/0x3d0
[  665.830902][T16356]  ? __fget_files+0x21f/0x3d0
[  665.830929][T16356]  ksys_mmap_pgoff+0x3c8/0x650
[  665.830955][T16356]  ? __x64_sys_futex+0x34f/0x4d0
[  665.830985][T16356]  ? __x64_sys_futex+0x358/0x4d0
[  665.831018][T16356]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  665.831043][T16356]  ? xfd_validate_state+0x129/0x190
[  665.831083][T16356]  __x64_sys_mmap+0x125/0x190
[  665.831122][T16356]  do_syscall_64+0x106/0xf80
[  665.831150][T16356]  ? clear_bhb_loop+0x40/0x90
[  665.831180][T16356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  665.831205][T16356] RIP: 0033:0x7f24a399c799
[  665.831225][T16356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  665.831249][T16356] RSP: 002b:00007f24a483c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  665.831289][T16356] RAX: ffffffffffffffda RBX: 00007f24a3c15fa0 RCX: 00007f24a399c799
[  665.831305][T16356] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000012000
[  665.831319][T16356] RBP: 00007f24a3a32c99 R08: 00000000000000dd R09: 0000000000000000
[  665.831334][T16356] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  665.831348][T16356] R13: 00007f24a3c16038 R14: 00007f24a3c15fa0 R15: 00007ffc38463f28
[  665.831379][T16356]  </TASK>
[  665.831445][T16356] kcov: kcov: vm_insert_page() failed
[  666.756708][ T5143] Bluetooth: hci2: unexpected event 0x20 length: 123 > 7
[  667.156613][T16356] FAULT_INJECTION: forcing a failure.
[  667.156613][T16356] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  667.301489][T16356] CPU: 0 UID: 0 PID: 16356 Comm: syz.0.2305 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  667.301531][T16356] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  667.301541][T16356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  667.301554][T16356] Call Trace:
[  667.301562][T16356]  <TASK>
[  667.301571][T16356]  dump_stack_lvl+0x100/0x190
[  667.301611][T16356]  should_fail_ex.cold+0x5/0xa
[  667.301635][T16356]  ? prepare_alloc_pages+0x16d/0x5f0
[  667.301665][T16356]  should_fail_alloc_page+0xeb/0x140
[  667.301692][T16356]  prepare_alloc_pages+0x1f0/0x5f0
[  667.301724][T16356]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  667.301766][T16356]  ? rcu_is_watching+0x12/0xc0
[  667.301804][T16356]  ? trace_mm_page_alloc+0x17a/0x1d0
[  667.301832][T16356]  ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0
[  667.301873][T16356]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  667.301911][T16356]  ? stack_trace_save+0x8e/0xc0
[  667.301937][T16356]  ? stack_depot_save_flags+0x27/0x9d0
[  667.301962][T16356]  ? is_bpf_text_address+0x8a/0x1a0
[  667.301999][T16356]  ? is_bpf_text_address+0x8a/0x1a0
[  667.302039][T16356]  ? kasan_save_stack+0x3f/0x50
[  667.302076][T16356]  ? kasan_save_track+0x14/0x30
[  667.302113][T16356]  ? kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  667.302159][T16356]  ? alloc_vmap_area+0x640/0x2bd0
[  667.302182][T16356]  ? __get_vm_area_node+0x1ca/0x330
[  667.302207][T16356]  ? __vmalloc_node_range_noprof+0x213/0x1530
[  667.302236][T16356]  ? __kvmalloc_node_noprof+0x3de/0xa00
[  667.302273][T16356]  ? __do_sys_listmount+0x289/0xee0
[  667.302309][T16356]  ? do_syscall_64+0x106/0xf80
[  667.302338][T16356]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.302372][T16356]  alloc_pages_bulk_noprof+0x782/0x1490
[  667.302420][T16356]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  667.302469][T16356]  ? alloc_pages_noprof+0x233/0x390
[  667.302497][T16356]  __kasan_populate_vmalloc+0xf0/0x210
[  667.302540][T16356]  alloc_vmap_area+0x95d/0x2bd0
[  667.302577][T16356]  ? __pfx_alloc_vmap_area+0x10/0x10
[  667.302609][T16356]  __get_vm_area_node+0x1ca/0x330
[  667.302642][T16356]  __vmalloc_node_range_noprof+0x213/0x1530
[  667.302674][T16356]  ? __do_sys_listmount+0x289/0xee0
[  667.302718][T16356]  ? __do_sys_listmount+0x289/0xee0
[  667.302763][T16356]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  667.302799][T16356]  ? rcu_is_watching+0x12/0xc0
[  667.302842][T16356]  __kvmalloc_node_noprof+0x3de/0xa00
[  667.302881][T16356]  ? __do_sys_listmount+0x289/0xee0
[  667.302917][T16356]  ? __do_sys_listmount+0x289/0xee0
[  667.302953][T16356]  ? _copy_from_user+0x59/0xd0
[  667.302975][T16356]  ? copy_mnt_id_req+0x1b1/0x350
[  667.303010][T16356]  __do_sys_listmount+0x289/0xee0
[  667.303047][T16356]  ? __pfx_do_futex+0x10/0x10
[  667.303080][T16356]  ? __fget_files+0x21f/0x3d0
[  667.303103][T16356]  ? __pfx___do_sys_listmount+0x10/0x10
[  667.303165][T16356]  do_syscall_64+0x106/0xf80
[  667.303193][T16356]  ? clear_bhb_loop+0x40/0x90
[  667.303223][T16356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.303248][T16356] RIP: 0033:0x7f24a399c799
[  667.303268][T16356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  667.303291][T16356] RSP: 002b:00007f24a483c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  667.303314][T16356] RAX: ffffffffffffffda RBX: 00007f24a3c15fa0 RCX: 00007f24a399c799
[  667.303330][T16356] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  667.303345][T16356] RBP: 00007f24a3a32c99 R08: 0000000000000000 R09: 0000000000000000
[  667.303359][T16356] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  667.303374][T16356] R13: 00007f24a3c16038 R14: 00007f24a3c15fa0 R15: 00007ffc38463f28
[  667.303404][T16356]  </TASK>
[  667.697657][T16368] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2309'.
[  668.968558][T16356] syz.0.2305: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  669.190818][T16356] CPU: 0 UID: 0 PID: 16356 Comm: syz.0.2305 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  669.190870][T16356] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  669.190880][T16356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  669.190894][T16356] Call Trace:
[  669.190902][T16356]  <TASK>
[  669.190911][T16356]  dump_stack_lvl+0x100/0x190
[  669.190951][T16356]  warn_alloc.cold+0x95/0x1c1
[  669.190993][T16356]  ? __pfx_warn_alloc+0x10/0x10
[  669.191027][T16356]  ? lockdep_hardirqs_on+0x78/0x100
[  669.191061][T16356]  ? __get_vm_area_node+0x2c5/0x330
[  669.191094][T16356]  ? __get_vm_area_node+0x208/0x330
[  669.191126][T16356]  __vmalloc_node_range_noprof+0xbf4/0x1530
[  669.191165][T16356]  ? __do_sys_listmount+0x289/0xee0
[  669.191212][T16356]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  669.191247][T16356]  ? rcu_is_watching+0x12/0xc0
[  669.191291][T16356]  __kvmalloc_node_noprof+0x3de/0xa00
[  669.191330][T16356]  ? __do_sys_listmount+0x289/0xee0
[  669.191366][T16356]  ? __do_sys_listmount+0x289/0xee0
[  669.191401][T16356]  ? _copy_from_user+0x59/0xd0
[  669.191424][T16356]  ? copy_mnt_id_req+0x1b1/0x350
[  669.191459][T16356]  __do_sys_listmount+0x289/0xee0
[  669.191495][T16356]  ? __pfx_do_futex+0x10/0x10
[  669.191529][T16356]  ? __fget_files+0x21f/0x3d0
[  669.191552][T16356]  ? __pfx___do_sys_listmount+0x10/0x10
[  669.191608][T16356]  do_syscall_64+0x106/0xf80
[  669.191636][T16356]  ? clear_bhb_loop+0x40/0x90
[  669.191666][T16356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  669.191691][T16356] RIP: 0033:0x7f24a399c799
[  669.191711][T16356] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  669.191734][T16356] RSP: 002b:00007f24a483c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  669.191757][T16356] RAX: ffffffffffffffda RBX: 00007f24a3c15fa0 RCX: 00007f24a399c799
[  669.191772][T16356] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  669.191787][T16356] RBP: 00007f24a3a32c99 R08: 0000000000000000 R09: 0000000000000000
[  669.191802][T16356] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  669.191816][T16356] R13: 00007f24a3c16038 R14: 00007f24a3c15fa0 R15: 00007ffc38463f28
[  669.191850][T16356]  </TASK>
[  669.191933][T16356] Mem-Info:
[  670.678883][T16414] netlink: 'syz.4.2315': attribute type 23 has an invalid length.
[  670.786395][T16414] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  670.899203][T16356] active_anon:11730 inactive_anon:29265 isolated_anon:0
[  670.899203][T16356]  active_file:20798 inactive_file:2788 isolated_file:0
[  670.899203][T16356]  unevictable:768 dirty:848 writeback:0
[  670.899203][T16356]  slab_reclaimable:11275 slab_unreclaimable:95641
[  670.899203][T16356]  mapped:26216 shmem:18378 pagetables:1642
[  670.899203][T16356]  sec_pagetables:0 bounce:0
[  670.899203][T16356]  kernel_misc_reclaimable:0
[  670.899203][T16356]  free:1316223 free_pcp:9355 free_cma:0
[  671.242224][T16356] Node 0 active_anon:46932kB inactive_anon:117092kB active_file:82080kB inactive_file:11028kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:86424kB dirty:3400kB writeback:0kB shmem:74136kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:65536kB kernel_stack:12352kB pagetables:6536kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  671.487102][T16356] Node 1 active_anon:0kB inactive_anon:28kB active_file:1112kB inactive_file:124kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:20480kB dirty:0kB writeback:0kB shmem:1540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  671.713442][T16356] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  671.947036][T16356] lowmem_reserve[]: 0 2477 2478 2478 2478
[  672.007587][T16356] Node 0 DMA32 free:1349324kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:46932kB inactive_anon:130608kB active_file:82080kB inactive_file:11028kB unevictable:1536kB writepending:3400kB zspages:860kB present:3129332kB managed:2537428kB mlocked:0kB bounce:0kB free_pcp:28104kB local_pcp:28104kB free_cma:0kB
[  672.338406][T16356] lowmem_reserve[]: 0 0 1 1 1
[  672.391018][T16356] Node 0 Normal free:12kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[  672.697517][T16356] lowmem_reserve[]: 0 0 0 0 0
[  672.730175][T16356] Node 1 Normal free:3896056kB boost:0kB min:55580kB low:69472kB high:83364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:28kB active_file:1112kB inactive_file:124kB unevictable:1536kB writepending:0kB zspages:156kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:2048kB local_pcp:2048kB free_cma:0kB
[  672.994416][T16356] lowmem_reserve[]: 0 0 0 0 0
[  673.037012][T16356] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (UM) = 15360kB
[  673.150892][T16356] Node 0 DMA32: 3851*4kB (UME) 3692*8kB (UME) 3190*16kB (UME) 2271*32kB (UM) 1458*64kB (UME) 1143*128kB (UM) 782*256kB (UME) 511*512kB (UM) 256*1024kB (UME) 26*2048kB (UM) 40*4096kB (M) = 1349324kB
[  673.299268][T16356] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  673.416945][T16356] Node 1 Normal: 140*4kB (UME) 99*8kB (UME) 91*16kB (UME) 92*32kB (UME) 52*64kB (UME) 35*128kB (UME) 24*256kB (UME) 11*512kB (UME) 10*1024kB (UME) 17*2048kB (UME) 934*4096kB (M) = 3896056kB
[  673.586820][T16356] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  673.647409][T16356] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  673.720548][T16356] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  673.765757][T16417] [U] 
[  673.796995][T16356] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  673.869996][T16356] 47726 total pagecache pages
[  673.892194][T16356] 112 pages in swap cache
[  673.944950][T16356] Free swap  = 117460kB
[  674.012671][T16356] Total swap = 124996kB
[  674.036258][T16356] 2097051 pages RAM
[  674.097362][T16356] 0 pages HighMem/MovableOnly
[  674.137071][T16356] 430814 pages reserved
[  674.148127][T16356] 0 pages cma reserved
[  674.844907][T16466] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  675.851136][T16484] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2329'.
[  675.861323][ T5143] Bluetooth: hci2: unexpected subevent 0x05 length: 123 > 12
[  677.382130][T16510] random: crng reseeded on system resumption
[  677.951190][ T5143] Bluetooth: hci2: command 0x0c1a tx timeout
[  678.974105][T16536] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  682.452461][T16571] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2345'.
[  685.900263][T16627] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2357'.
[  686.119422][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  686.136314][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  687.305049][T16648] rtc_cmos 00:00: Alarms can be up to one day in the future
[  687.576879][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  687.646834][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  687.717180][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  687.791251][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  687.850754][T16165] rtc rtc0: __rtc_set_alarm: err=-22
[  688.160998][T16656] netlink: 206 bytes leftover after parsing attributes in process `syz.1.2362'.
[  688.996430][T16668] openvswitch: netlink: IPv6 tunnel dst address is zero
[  689.206579][T16670] zswap: compressor  not available
[  694.229645][T16720] can: request_module (can-proto-4) failed.
[  695.419926][T16729] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2376'.
[  700.674566][T16763] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2384'.
[  701.036523][T13248] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  701.057372][T13248] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  701.077504][T13248] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  701.087746][T13248] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  701.096572][T13248] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  703.162716][T13248] Bluetooth: hci3: command tx timeout
[  704.268788][T16787] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2387'.
[  704.710835][T16768] chnl_net:caif_netlink_parms(): no params data found
[  705.244891][T13248] Bluetooth: hci3: command tx timeout
[  705.909885][T16807] rtc_cmos 00:00: Alarms can be up to one day in the future
[  706.000664][T16768] bridge0: port 1(bridge_slave_0) entered blocking state
[  706.079976][T16768] bridge0: port 1(bridge_slave_0) entered disabled state
[  706.174431][T16768] bridge_slave_0: entered allmulticast mode
[  706.241078][T16768] bridge_slave_0: entered promiscuous mode
[  706.352269][T16768] bridge0: port 2(bridge_slave_1) entered blocking state
[  706.436316][T16768] bridge0: port 2(bridge_slave_1) entered disabled state
[  706.508457][T16768] bridge_slave_1: entered allmulticast mode
[  706.574972][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  706.584391][T16768] bridge_slave_1: entered promiscuous mode
[  706.657105][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  706.724466][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  706.804192][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  706.858813][T16165] rtc rtc0: __rtc_set_alarm: err=-22
[  707.323933][T13248] Bluetooth: hci3: command tx timeout
[  707.406670][T16768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  707.421907][T16819] netlink: 326 bytes leftover after parsing attributes in process `syz.4.2392'.
[  707.489121][T16768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  707.499243][T16819] IPv6: NLM_F_CREATE should be specified when creating new route
[  707.559616][T16819] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  707.566980][T16819] IPv6: NLM_F_CREATE should be set when creating new route
[  707.574241][T16819] IPv6: NLM_F_CREATE should be set when creating new route
[  707.805773][T16768] team0: Port device team_slave_0 added
[  707.813728][T16768] team0: Port device team_slave_1 added
[  708.275678][T16768] batman_adv: batadv0: Adding interface: batadv_slave_0
[  708.282708][T16768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  708.345946][   T29] audit: type=1800 audit(2147502113.209:23): pid=16830 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2395" name="features" dev="configfs" ino=114234 res=0 errno=0
[  708.554552][T16768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  708.681662][T16768] batman_adv: batadv0: Adding interface: batadv_slave_1
[  708.733011][T16768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  708.931821][T16768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  709.203614][   T49] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  709.406523][T13248] Bluetooth: hci3: command tx timeout
[  709.691965][   T49] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  710.189737][   T49] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  710.373897][T16768] hsr_slave_0: entered promiscuous mode
[  710.422764][T16768] hsr_slave_1: entered promiscuous mode
[  710.469968][T16768] debugfs: 'hsr0' already exists in 'hsr'
[  710.510980][T16768] Cannot create hsr debugfs directory
[  711.484736][T16849] queue_state_write: operation too long
[  711.526889][T16844] rtc_cmos 00:00: Alarms can be up to one day in the future
[  711.541707][T16849] queue_state_write: use 'run', 'start' or 'kick'
[  711.646446][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  711.696405][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  711.704114][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  711.774802][   T49] team0: left allmulticast mode
[  711.836295][   T49] team_slave_0: left allmulticast mode
[  711.885009][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  711.903854][   T49] team_slave_1: left allmulticast mode
[  711.941828][T16165] rtc rtc0: __rtc_set_alarm: err=-22
[  711.947991][   T49] team0: left promiscuous mode
[  712.015610][   T49] team_slave_0: left promiscuous mode
[  712.068579][   T49] team_slave_1: left promiscuous mode
[  712.075952][   T49] bridge0: port 3(team0) entered disabled state
[  712.758709][   T49] bridge_slave_0: left allmulticast mode
[  712.796451][   T49] bridge_slave_0: left promiscuous mode
[  712.856868][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  713.198983][   T29] audit: type=1800 audit(2147502118.086:24): pid=16872 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2402" name="discovery_nqn" dev="configfs" ino=118112 res=0 errno=0
[  713.975765][T16878] FAULT_INJECTION: forcing a failure.
[  713.975765][T16878] name failslab, interval 1, probability 0, space 0, times 0
[  714.038605][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  714.087932][T16878] CPU: 0 UID: 0 PID: 16878 Comm: syz.3.2403 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  714.087972][T16878] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  714.087981][T16878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  714.087996][T16878] Call Trace:
[  714.088013][T16878]  <TASK>
[  714.088023][T16878]  dump_stack_lvl+0x100/0x190
[  714.088064][T16878]  should_fail_ex.cold+0x5/0xa
[  714.088093][T16878]  ? acpi_ns_get_normalized_pathname+0x95/0x250
[  714.088124][T16878]  should_failslab+0xc2/0x120
[  714.088149][T16878]  __kmalloc_noprof+0xe0/0x850
[  714.088192][T16878]  acpi_ns_get_normalized_pathname+0x95/0x250
[  714.088226][T16878]  acpi_ds_call_control_method+0x5d4/0xab0
[  714.088266][T16878]  acpi_ps_parse_aml+0xacd/0x1120
[  714.088295][T16878]  acpi_ps_execute_method+0x5c4/0xe90
[  714.088327][T16878]  acpi_ns_evaluate+0x640/0x1670
[  714.088362][T16878]  acpi_evaluate_object+0x420/0xe00
[  714.088397][T16878]  ? kasan_save_stack+0x30/0x50
[  714.088433][T16878]  ? kasan_save_track+0x14/0x30
[  714.088476][T16878]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  714.088522][T16878]  acpi_evaluate_integer+0xdf/0x220
[  714.088553][T16878]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  714.088597][T16878]  ? __pfx_status_show+0x10/0x10
[  714.088632][T16878]  status_show+0xa0/0x120
[  714.088668][T16878]  ? __pfx_status_show+0x10/0x10
[  714.088711][T16878]  dev_attr_show+0x52/0xa0
[  714.088736][T16878]  ? __pfx_dev_attr_show+0x10/0x10
[  714.088759][T16878]  sysfs_kf_seq_show+0x217/0x3a0
[  714.088795][T16878]  seq_read_iter+0x32f/0x1270
[  714.088846][T16878]  kernfs_fop_read_iter+0x46c/0x610
[  714.088873][T16878]  ? rw_verify_area+0xce/0x6d0
[  714.088908][T16878]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  714.088940][T16878]  vfs_read+0x825/0xb30
[  714.088983][T16878]  ? __pfx_vfs_read+0x10/0x10
[  714.089046][T16878]  ksys_read+0x12a/0x250
[  714.089084][T16878]  ? __pfx_ksys_read+0x10/0x10
[  714.089132][T16878]  do_syscall_64+0x106/0xf80
[  714.089161][T16878]  ? clear_bhb_loop+0x40/0x90
[  714.089192][T16878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  714.089218][T16878] RIP: 0033:0x7f935699c799
[  714.089238][T16878] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  714.089262][T16878] RSP: 002b:00007f93578c9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  714.089285][T16878] RAX: ffffffffffffffda RBX: 00007f9356c15fa0 RCX: 00007f935699c799
[  714.089301][T16878] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000009
[  714.089316][T16878] RBP: 00007f9356a32c99 R08: 0000000000000000 R09: 0000000000000000
[  714.089331][T16878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  714.089345][T16878] R13: 00007f9356c16038 R14: 00007f9356c15fa0 R15: 00007fff3eb35348
[  714.089377][T16878]  </TASK>
[  714.374793][T16878] ACPI Error: Could not allocate 10 bytes (20251212/nsnames-308)
[  715.634233][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  715.813753][   T49] bond0 (unregistering): Released all slaves
[  716.065315][   T49] HfR: left promiscuous mode
[  719.652865][   T49] hsr_slave_1: left promiscuous mode
[  719.707566][   T49] veth1_macvtap: left promiscuous mode
[  719.791412][   T49] veth0_macvtap: left promiscuous mode
[  719.797018][   T49] veth1_vlan: left promiscuous mode
[  719.850605][T16912] zswap: compressor  not available
[  719.863011][   T49] veth0_vlan: left promiscuous mode
[  721.119971][   T49] team0 (unregistering): Port device team_slave_1 removed
[  721.225634][   T49] team0 (unregistering): Port device team_slave_0 removed
[  721.797486][T16925] zswap: compressor  not available
[  722.304966][T16768] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  722.466248][T16768] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  722.573017][T16768] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  722.905679][T16768] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  724.160645][T16768] 8021q: adding VLAN 0 to HW filter on device bond0
[  724.315515][T16768] 8021q: adding VLAN 0 to HW filter on device team0
[  724.372836][T16953] FAULT_INJECTION: forcing a failure.
[  724.372836][T16953] name failslab, interval 1, probability 0, space 0, times 0
[  724.423417][ T8671] bridge0: port 1(bridge_slave_0) entered blocking state
[  724.430628][ T8671] bridge0: port 1(bridge_slave_0) entered forwarding state
[  724.513873][T16953] CPU: 0 UID: 0 PID: 16953 Comm: syz.4.2410 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  724.513915][T16953] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  724.513925][T16953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  724.513941][T16953] Call Trace:
[  724.513949][T16953]  <TASK>
[  724.513959][T16953]  dump_stack_lvl+0x100/0x190
[  724.514002][T16953]  should_fail_ex.cold+0x5/0xa
[  724.514032][T16953]  should_failslab+0xc2/0x120
[  724.514058][T16953]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  724.514097][T16953]  ? prepare_creds+0x2c/0x950
[  724.514134][T16953]  ? __x64_sys_futex+0x34f/0x4d0
[  724.514166][T16953]  ? __x64_sys_futex+0x358/0x4d0
[  724.514203][T16953]  prepare_creds+0x2c/0x950
[  724.514243][T16953]  __sys_setreuid+0x109/0xb00
[  724.514272][T16953]  do_syscall_64+0x106/0xf80
[  724.514302][T16953]  ? clear_bhb_loop+0x40/0x90
[  724.514332][T16953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.514358][T16953] RIP: 0033:0x7f0f7df9c799
[  724.514378][T16953] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  724.514404][T16953] RSP: 002b:00007f0f7eef4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000071
[  724.514427][T16953] RAX: ffffffffffffffda RBX: 00007f0f7e215fa0 RCX: 00007f0f7df9c799
[  724.514444][T16953] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  724.514459][T16953] RBP: 00007f0f7e032c99 R08: 0000000000000000 R09: 0000000000000000
[  724.514474][T16953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  724.514489][T16953] R13: 00007f0f7e216038 R14: 00007f0f7e215fa0 R15: 00007ffcf97f8488
[  724.514520][T16953]  </TASK>
[  724.717849][T16955] rtc_cmos 00:00: Alarms can be up to one day in the future
[  724.965583][ T5879] rtc_cmos 00:00: Alarms can be up to one day in the future
[  725.023421][ T5879] rtc_cmos 00:00: Alarms can be up to one day in the future
[  725.031031][ T5879] rtc_cmos 00:00: Alarms can be up to one day in the future
[  725.123074][ T5879] rtc_cmos 00:00: Alarms can be up to one day in the future
[  725.163861][ T5879] rtc rtc0: __rtc_set_alarm: err=-22
[  725.395051][ T9180] bridge0: port 2(bridge_slave_1) entered blocking state
[  725.402236][ T9180] bridge0: port 2(bridge_slave_1) entered forwarding state
[  728.112843][T16768] 8021q: adding VLAN 0 to HW filter on device batadv0
[  730.047455][T16768] veth0_vlan: entered promiscuous mode
[  730.272610][T16768] veth1_vlan: entered promiscuous mode
[  730.531419][T16768] veth0_macvtap: entered promiscuous mode
[  730.734835][T16768] veth1_macvtap: entered promiscuous mode
[  730.931514][T16768] batman_adv: batadv0: Interface activated: batadv_slave_0
[  731.053622][T16768] batman_adv: batadv0: Interface activated: batadv_slave_1
[  731.213842][ T8671] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  731.311189][ T8671] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  731.747522][ T8671] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  731.820514][ T8671] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  732.079252][T16980] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  732.469600][ T8673] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  732.548252][ T8673] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  732.913945][ T8673] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  732.988840][ T8673] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  737.407028][ T5143] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  737.429235][ T5143] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  737.445943][ T5143] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  737.457123][ T5143] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  737.465156][ T5143] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  739.049249][T17085] can: request_module (can-proto-4) failed.
[  739.580632][ T5143] Bluetooth: hci1: command tx timeout
[  740.969187][  T486] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  741.533539][T17103] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  741.660901][ T5143] Bluetooth: hci1: command tx timeout
[  741.689052][  T486] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  742.287004][  T486] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  742.806358][  T486] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  743.762280][ T5143] Bluetooth: hci1: command tx timeout
[  744.504475][T17079] chnl_net:caif_netlink_parms(): no params data found
[  744.868470][  T486] netdevsim netdevsim1335 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  745.064800][T17134] netlink: 330 bytes leftover after parsing attributes in process `syz.1.2436'.
[  745.313417][T17138] FAULT_INJECTION: forcing a failure.
[  745.313417][T17138] name fail_futex, interval 1, probability 0, space 0, times 0
[  745.494203][T17134] mac80211_hwsim hwsim59 �\n": renamed from wlan0
[  745.720192][T17138] CPU: 0 UID: 0 PID: 17138 Comm: syz.4.2435 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  745.720233][T17138] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  745.720241][T17138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  745.720255][T17138] Call Trace:
[  745.720262][T17138]  <TASK>
[  745.720270][T17138]  dump_stack_lvl+0x100/0x190
[  745.720310][T17138]  should_fail_ex.cold+0x5/0xa
[  745.720333][T17138]  ? rcu_is_watching+0x12/0xc0
[  745.720372][T17138]  get_futex_key+0x295/0x1620
[  745.720403][T17138]  ? __pfx_get_futex_key+0x10/0x10
[  745.720427][T17138]  ? lock_acquire+0x1cf/0x380
[  745.720465][T17138]  futex_wake+0xea/0x530
[  745.720517][T17138]  ? __pfx_futex_wake+0x10/0x10
[  745.720553][T17138]  ? exit_mm_release+0x19/0x30
[  745.720589][T17138]  do_futex+0x32b/0x350
[  745.720620][T17138]  ? __pfx_do_futex+0x10/0x10
[  745.720651][T17138]  ? __might_fault+0xc5/0x140
[  745.720692][T17138]  mm_release+0x24a/0x2f0
[  745.720716][T17138]  do_exit+0x704/0x2b60
[  745.720752][T17138]  ? __pfx_do_exit+0x10/0x10
[  745.720783][T17138]  ? do_raw_spin_lock+0x128/0x260
[  745.720818][T17138]  ? find_held_lock+0x2b/0x80
[  745.720839][T17138]  ? get_signal+0x7e0/0x21e0
[  745.720867][T17138]  do_group_exit+0xd5/0x2a0
[  745.720901][T17138]  get_signal+0x1ec7/0x21e0
[  745.720938][T17138]  ? __pfx_get_signal+0x10/0x10
[  745.720964][T17138]  ? do_futex+0x192/0x350
[  745.720997][T17138]  arch_do_signal_or_restart+0x91/0x770
[  745.721033][T17138]  ? blkcg_maybe_throttle_current+0x5df/0xeb0
[  745.721066][T17138]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  745.721103][T17138]  ? __pfx___x64_sys_futex+0x10/0x10
[  745.721141][T17138]  exit_to_user_mode_loop+0x86/0x4a0
[  745.721176][T17138]  do_syscall_64+0x668/0xf80
[  745.721206][T17138]  ? clear_bhb_loop+0x40/0x90
[  745.721236][T17138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  745.721260][T17138] RIP: 0033:0x7f0f7df9c799
[  745.721280][T17138] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  745.721304][T17138] RSP: 002b:00007f0f7ee4f0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  745.721327][T17138] RAX: fffffffffffffe00 RBX: 00007f0f7e216458 RCX: 00007f0f7df9c799
[  745.721343][T17138] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0f7e216458
[  745.721358][T17138] RBP: 00007f0f7e216450 R08: 0000000000000000 R09: 0000000000000000
[  745.721372][T17138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  745.721386][T17138] R13: 00007f0f7e2164e8 R14: 00007ffcf97f83a0 R15: 00007ffcf97f8488
[  745.721417][T17138]  </TASK>
[  746.484569][ T5143] Bluetooth: hci1: command tx timeout
[  747.063586][T17079] bridge0: port 1(bridge_slave_0) entered blocking state
[  747.105155][T17079] bridge0: port 1(bridge_slave_0) entered disabled state
[  747.112890][T17079] bridge_slave_0: entered allmulticast mode
[  747.196711][T17079] bridge_slave_0: entered promiscuous mode
[  747.258017][T17079] bridge0: port 2(bridge_slave_1) entered blocking state
[  747.323951][T17079] bridge0: port 2(bridge_slave_1) entered disabled state
[  747.331198][T17079] bridge_slave_1: entered allmulticast mode
[  747.420159][T17079] bridge_slave_1: entered promiscuous mode
[  747.603576][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  747.614695][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  747.684413][T17079] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  747.785843][T17079] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  748.523058][T17079] team0: Port device team_slave_0 added
[  748.622733][T17079] team0: Port device team_slave_1 added
[  748.685397][  T486] team0: left allmulticast mode
[  748.708829][T17171] vivid-007: =================  START STATUS  =================
[  748.727930][  T486] team_slave_0: left allmulticast mode
[  748.787893][  T486] team_slave_1: left allmulticast mode
[  748.820547][T17171] vivid-007: Generate PTS: true
[  748.832838][  T486] team0: left promiscuous mode
[  748.863729][T17171] vivid-007: Generate SCR: true
[  748.883893][  T486] team_slave_0: left promiscuous mode
[  748.933458][T17171] tpg source WxH: 320x240 (Y'CbCr)
[  748.944682][  T486] team_slave_1: left promiscuous mode
[  748.990916][  T486] bridge0: port 3(team0) entered disabled state
[  749.049659][T17171] tpg field: 1
[  749.070442][T17171] tpg crop: (0,0)/320x240
[  749.087593][  T486] bridge_slave_1: left allmulticast mode
[  749.147762][  T486] bridge_slave_1: left promiscuous mode
[  749.163611][T17171] tpg compose: (0,0)/320x240
[  749.215079][  T486] bridge0: port 2(bridge_slave_1) entered disabled state
[  749.257313][T17171] tpg colorspace: 8
[  749.341577][  T486] bridge_slave_0: left allmulticast mode
[  749.348440][T17171] tpg transfer function: 0/0
[  749.353059][T17171] tpg Y'CbCr encoding: 0/0
[  749.385341][  T486] bridge_slave_0: left promiscuous mode
[  749.435097][  T486] bridge0: port 1(bridge_slave_0) entered disabled state
[  749.587817][T17171] tpg quantization: 0/0
[  749.663665][T17171] tpg RGB range: 0/2
[  749.741019][T17171] vivid-007: ==================  END STATUS  ==================
[  750.379689][  T486] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  750.484874][  T486] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  750.603085][  T486] bond0 (unregistering): Released all slaves
[  750.921280][  T486] i: left promiscuous mode
[  751.321820][  T486] tipc: Left network mode
[  751.389092][T17079] batman_adv: batadv0: Adding interface: batadv_slave_0
[  751.469204][T17079] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  751.743611][T17079] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  751.854126][T17079] batman_adv: batadv0: Adding interface: batadv_slave_1
[  751.903336][T17079] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  752.092019][T17079] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  753.424968][T17079] hsr_slave_0: entered promiscuous mode
[  753.509328][T17079] hsr_slave_1: entered promiscuous mode
[  756.567218][  T486] hsr_slave_0: left promiscuous mode
[  756.689180][  T486] hsr_slave_1: left promiscuous mode
[  756.737983][  T486] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  756.832295][  T486] batman_adv: batadv0: Removing interface: batadv_slave_0
[  756.976999][  T486] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  757.053715][  T486] batman_adv: batadv0: Removing interface: batadv_slave_1
[  757.223784][  T486] veth1_macvtap: left promiscuous mode
[  757.281165][  T486] veth0_macvtap: left promiscuous mode
[  757.286928][  T486] veth1_vlan: left promiscuous mode
[  757.370066][  T486] veth0_vlan: left promiscuous mode
[  759.177130][  T486] team0 (unregistering): Port device team_slave_1 removed
[  759.341637][  T486] team0 (unregistering): Port device team_slave_0 removed
[  763.842259][T17079] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  763.985110][T17079] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  764.143964][T17079] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  764.258878][T17079] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  765.318239][T17079] 8021q: adding VLAN 0 to HW filter on device bond0
[  765.573705][T17079] 8021q: adding VLAN 0 to HW filter on device team0
[  765.997417][ T9180] bridge0: port 1(bridge_slave_0) entered blocking state
[  766.004652][ T9180] bridge0: port 1(bridge_slave_0) entered forwarding state
[  766.165951][ T9180] bridge0: port 2(bridge_slave_1) entered blocking state
[  766.173196][ T9180] bridge0: port 2(bridge_slave_1) entered forwarding state
[  766.522422][T17079] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  766.663582][T17079] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  768.833578][T17079] 8021q: adding VLAN 0 to HW filter on device batadv0
[  769.874839][T17079] veth0_vlan: entered promiscuous mode
[  770.416548][T17079] veth1_vlan: entered promiscuous mode
[  770.541926][  T796] usb usb40-port2: attempt power cycle
[  771.925998][  T796] usb usb40-port2: unable to enumerate USB device
[  773.092812][T17079] veth0_macvtap: entered promiscuous mode
[  773.323842][T17079] veth1_macvtap: entered promiscuous mode
[  773.665214][T17079] batman_adv: batadv0: Interface activated: batadv_slave_0
[  774.263968][T17079] batman_adv: batadv0: Interface activated: batadv_slave_1
[  774.638976][ T8673] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  774.869298][T17122] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  775.007912][T17122] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  775.256016][T17122] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  776.182674][T17401] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  776.276552][T17401] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  776.650598][T17427] netlink: 206 bytes leftover after parsing attributes in process `syz.0.2467'.
[  776.985032][T17375] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  777.075876][T17375] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  777.360320][   T29] audit: type=1800 audit(2147502182.214:25): pid=17436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2468" name="lu_gp_id" dev="configfs" ino=164806 res=0 errno=0
[  777.913420][T17442] netlink: 206 bytes leftover after parsing attributes in process `syz.0.2469'.
[  781.284818][T17484] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  781.686636][T17490] kstrtoul() returned -22 for lu_gp_id
[  781.694694][   T29] audit: type=1800 audit(2147502186.522:26): pid=17490 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2476" name="lu_gp_id" dev="configfs" ino=167708 res=0 errno=0
[  781.860893][T17490] futex_wake_op: syz.0.2476 tries to shift op by -1; fix this program
[  782.140018][T17484] zswap: compressor  not available
[  782.909854][T17504] netlink: 206 bytes leftover after parsing attributes in process `syz.0.2479'.
[  783.400206][T17513] netlink: 50 bytes leftover after parsing attributes in process `syz.3.2482'.
[  783.775077][T17513] misc userio: No port type given on /dev/userio
[  784.503133][T17530] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2486'.
[  787.846336][ T5143] Bluetooth: hci1: unexpected event 0x32 length: 727 > 9
[  792.043965][T17616] netlink: 206 bytes leftover after parsing attributes in process `syz.4.2503'.
[  793.531178][T17631] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2504'.
[  799.030081][T17695] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2513'.
[  799.107221][T17693] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  799.860642][T17695] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  800.301186][T17695] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  800.541695][T17695] bond0 (unregistering): Released all slaves
[  801.936589][T17712] Invalid ELF header magic: != ELF
[  803.772528][T17722] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  803.842290][T17722] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  803.848409][T17722] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  803.953642][T17722] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  804.069722][T17722] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  804.229349][T17722] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  804.307055][T17722] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  804.438713][T17722] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  805.372816][T13248] Bluetooth: hci0: command 0x0c1a tx timeout
[  805.953558][T13248] Bluetooth: hci3: command 0x0c1a tx timeout
[  805.959655][T13248] Bluetooth: hci4: command 0x0406 tx timeout
[  806.263048][T13248] Bluetooth: hci1: command 0x0c1a tx timeout
[  807.854086][T17745] vivid-007: =================  START STATUS  =================
[  807.861805][T17745] vivid-007: Generate PTS: true
[  807.970101][T17745] vivid-007: Generate SCR: true
[  808.014623][T13248] Bluetooth: hci3: command 0x0c1a tx timeout
[  808.046579][T17745] tpg source WxH: 320x240 (Y'CbCr)
[  808.051765][T17745] tpg field: 1
[  808.276931][T17745] tpg crop: (0,0)/320x240
[  808.281325][T17745] tpg compose: (0,0)/320x240
[  808.344226][T13248] Bluetooth: hci1: command 0x0c1a tx timeout
[  808.424565][T17745] tpg colorspace: 8
[  808.428448][T17745] tpg transfer function: 0/0
[  808.433070][T17745] tpg Y'CbCr encoding: 0/0
[  808.675378][T17745] tpg quantization: 0/0
[  808.679625][T17745] tpg RGB range: 0/2
[  808.683535][T17745] vivid-007: ==================  END STATUS  ==================
[  809.057568][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  809.063962][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  810.097925][T13248] Bluetooth: hci3: command 0x0c1a tx timeout
[  810.429586][T13248] Bluetooth: hci1: command 0x0c1a tx timeout
[  816.175588][ T5143] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  816.197312][ T5143] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  816.221946][ T5143] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  816.235688][ T5143] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  816.243869][ T5143] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  817.806157][T17799] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2532'.
[  818.339412][ T5143] Bluetooth: hci2: command tx timeout
[  818.542343][T17805] rtc_cmos 00:00: Alarms can be up to one day in the future
[  818.709738][ T5879] rtc_cmos 00:00: Alarms can be up to one day in the future
[  818.717438][ T5879] rtc_cmos 00:00: Alarms can be up to one day in the future
[  818.830402][ T5879] rtc_cmos 00:00: Alarms can be up to one day in the future
[  818.838046][ T5879] rtc_cmos 00:00: Alarms can be up to one day in the future
[  819.003063][ T5879] rtc rtc0: __rtc_set_alarm: err=-22
[  819.223637][T17795] chnl_net:caif_netlink_parms(): no params data found
[  820.420438][ T5143] Bluetooth: hci2: command tx timeout
[  821.265173][T17795] bridge0: port 1(bridge_slave_0) entered blocking state
[  821.325258][T17795] bridge0: port 1(bridge_slave_0) entered disabled state
[  821.413658][T17795] bridge_slave_0: entered allmulticast mode
[  821.492689][T17795] bridge_slave_0: entered promiscuous mode
[  821.581245][T17795] bridge0: port 2(bridge_slave_1) entered blocking state
[  821.650835][T17795] bridge0: port 2(bridge_slave_1) entered disabled state
[  821.741076][T17795] bridge_slave_1: entered allmulticast mode
[  821.748517][T17795] bridge_slave_1: entered promiscuous mode
[  822.386169][T17795] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  822.504394][ T5143] Bluetooth: hci2: command tx timeout
[  822.538290][T17795] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  822.947801][T17795] team0: Port device team_slave_0 added
[  823.065551][T17795] team0: Port device team_slave_1 added
[  823.481481][T17851] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2542'.
[  824.283304][T17795] batman_adv: batadv0: Adding interface: batadv_slave_0
[  824.290349][T17795] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  824.587941][ T5143] Bluetooth: hci2: command tx timeout
[  824.618241][T17795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  825.800667][T17795] batman_adv: batadv0: Adding interface: batadv_slave_1
[  825.843159][T17795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  826.064842][T17795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  826.219787][T17862] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  827.236040][T17407] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  827.599854][T17795] hsr_slave_0: entered promiscuous mode
[  827.654946][T17795] hsr_slave_1: entered promiscuous mode
[  827.734441][T17795] debugfs: 'hsr0' already exists in 'hsr'
[  827.740222][T17795] Cannot create hsr debugfs directory
[  827.854706][T17866] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input85
[  828.741238][T17407] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  829.080505][T17870] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2546'.
[  829.871056][T17407] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  830.723756][T17407] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  831.928539][T17882] vhci_hcd vhci_hcd.2: SetHubDepth req not supported for USB 2.0 roothub
[  832.518996][T17407] bridge_slave_1: left allmulticast mode
[  832.524797][T17407] bridge_slave_1: left promiscuous mode
[  832.640900][T17407] bridge0: port 2(bridge_slave_1) entered disabled state
[  832.959528][T17407] bridge_slave_0: left allmulticast mode
[  832.965237][T17407] bridge_slave_0: left promiscuous mode
[  833.109948][T17407] bridge0: port 1(bridge_slave_0) entered disabled state
[  833.374478][T17907] FAULT_INJECTION: forcing a failure.
[  833.374478][T17907] name failslab, interval 1, probability 0, space 0, times 0
[  834.203629][T17907] CPU: 0 UID: 0 PID: 17907 Comm: syz.4.2549 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  834.203671][T17907] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  834.203680][T17907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  834.203708][T17907] Call Trace:
[  834.203716][T17907]  <TASK>
[  834.203726][T17907]  dump_stack_lvl+0x100/0x190
[  834.203768][T17907]  should_fail_ex.cold+0x5/0xa
[  834.203797][T17907]  should_failslab+0xc2/0x120
[  834.203821][T17907]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  834.203859][T17907]  ? shmem_alloc_inode+0x25/0x50
[  834.203889][T17907]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  834.203917][T17907]  shmem_alloc_inode+0x25/0x50
[  834.203943][T17907]  alloc_inode+0x68/0x250
[  834.203975][T17907]  new_inode+0x22/0x1c0
[  834.204009][T17907]  shmem_get_inode+0x212/0x1040
[  834.204044][T17907]  ? __pfx_shmem_get_inode+0x10/0x10
[  834.204075][T17907]  ? map_id_range_up+0x2ce/0x3b0
[  834.204097][T17907]  ? make_vfsuid+0xec/0x140
[  834.204129][T17907]  ? __pfx_make_vfsuid+0x10/0x10
[  834.204161][T17907]  ? current_check_access_path+0x281/0x460
[  834.204191][T17907]  shmem_mknod+0x20c/0x470
[  834.204226][T17907]  ? __pfx_shmem_mknod+0x10/0x10
[  834.204260][T17907]  ? security_inode_permission+0xbf/0x250
[  834.204301][T17907]  ? inode_permission+0x374/0x620
[  834.204337][T17907]  shmem_mkdir+0x31/0x80
[  834.204368][T17907]  vfs_mkdir+0x361/0x850
[  834.204405][T17907]  filename_mkdirat+0x48b/0x5e0
[  834.204435][T17907]  ? __pfx_filename_mkdirat+0x10/0x10
[  834.204461][T17907]  ? strncpy_from_user+0x19d/0x2d0
[  834.204503][T17907]  ? do_getname+0x191/0x390
[  834.204535][T17907]  __x64_sys_mkdir+0x6b/0x90
[  834.204562][T17907]  do_syscall_64+0x106/0xf80
[  834.204591][T17907]  ? clear_bhb_loop+0x40/0x90
[  834.204621][T17907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.204646][T17907] RIP: 0033:0x7f0f7df9c799
[  834.204666][T17907] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  834.204690][T17907] RSP: 002b:00007f0f7eeb2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  834.204719][T17907] RAX: ffffffffffffffda RBX: 00007f0f7e216180 RCX: 00007f0f7df9c799
[  834.204734][T17907] RDX: 0000000000000000 RSI: 0000000000008001 RDI: 0000200000000100
[  834.204749][T17907] RBP: 00007f0f7e032c99 R08: 0000000000000000 R09: 0000000000000000
[  834.204764][T17907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  834.204778][T17907] R13: 00007f0f7e216218 R14: 00007f0f7e216180 R15: 00007ffcf97f8488
[  834.204810][T17907]  </TASK>
[  835.468449][T17921] Format for deleting device is "id" (uint).
[  836.400568][ T5143] Bluetooth: hci1: unexpected event 0x32 length: 727 > 9
[  838.134486][T17407] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  838.318530][T17955] vhci_hcd vhci_hcd.2: invalid port number 0
[  838.460673][T17956] misc userio: Invalid payload size
[  838.537700][T17407] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  838.755609][T17407] bond0 (unregistering): Released all slaves
[  839.040572][T17407] tipc: Left network mode
[  839.231960][T17795] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  839.383683][T17795] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  839.556413][T17795] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  839.825234][T17795] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  841.068075][T17986] futex_wake_op: syz.3.2561 tries to shift op by -2048; fix this program
[  841.265309][T17986] futex_wake_op: syz.3.2561 tries to shift op by -2048; fix this program
[  841.607168][T17991] can: request_module (can-proto-5) failed.
[  841.919291][T17795] 8021q: adding VLAN 0 to HW filter on device bond0
[  842.263333][T18009] FAULT_INJECTION: forcing a failure.
[  842.263333][T18009] name failslab, interval 1, probability 0, space 0, times 0
[  842.316265][T17795] 8021q: adding VLAN 0 to HW filter on device team0
[  842.422520][T18009] CPU: 0 UID: 0 PID: 18009 Comm: syz.3.2564 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  842.422561][T18009] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  842.422571][T18009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  842.422586][T18009] Call Trace:
[  842.422593][T18009]  <TASK>
[  842.422602][T18009]  dump_stack_lvl+0x100/0x190
[  842.422646][T18009]  should_fail_ex.cold+0x5/0xa
[  842.422675][T18009]  ? drm_atomic_state_init+0x190/0x490
[  842.422701][T18009]  should_failslab+0xc2/0x120
[  842.422727][T18009]  __kmalloc_noprof+0xe0/0x850
[  842.422772][T18009]  drm_atomic_state_init+0x190/0x490
[  842.422798][T18009]  ? kasan_save_track+0x14/0x30
[  842.422852][T18009]  drm_atomic_state_alloc+0xd3/0x120
[  842.422879][T18009]  drm_client_modeset_commit_atomic+0xcc/0x7e0
[  842.422913][T18009]  ? trace_contention_end+0x140/0x180
[  842.422950][T18009]  ? __mutex_lock+0x26a/0x1b90
[  842.422983][T18009]  ? __mutex_lock+0x26a/0x1b90
[  842.423014][T18009]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  842.423047][T18009]  ? drm_master_internal_acquire+0x21/0x80
[  842.423104][T18009]  drm_client_modeset_commit_locked+0x14d/0x580
[  842.423141][T18009]  drm_client_modeset_commit+0x4f/0x80
[  842.423173][T18009]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  842.423209][T18009]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  842.423244][T18009]  drm_fbdev_client_restore+0x1b/0x30
[  842.423285][T18009]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  842.423326][T18009]  drm_client_dev_restore+0x205/0x2a0
[  842.423362][T18009]  drm_release+0x2c6/0x360
[  842.423390][T18009]  ? __pfx_drm_release+0x10/0x10
[  842.423417][T18009]  __fput+0x3ff/0xb40
[  842.423453][T18009]  task_work_run+0x150/0x240
[  842.423491][T18009]  ? __pfx_task_work_run+0x10/0x10
[  842.423537][T18009]  exit_to_user_mode_loop+0x100/0x4a0
[  842.423574][T18009]  do_syscall_64+0x668/0xf80
[  842.423603][T18009]  ? clear_bhb_loop+0x40/0x90
[  842.423634][T18009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  842.423660][T18009] RIP: 0033:0x7f3178d9c799
[  842.423680][T18009] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  842.423705][T18009] RSP: 002b:00007f3179d22028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  842.423728][T18009] RAX: 0000000000000000 RBX: 00007f3179015fa0 RCX: 00007f3178d9c799
[  842.423744][T18009] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  842.423759][T18009] RBP: 00007f3178e32c99 R08: 0000000000000000 R09: 0000000000000000
[  842.423774][T18009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  842.423788][T18009] R13: 00007f3179016038 R14: 00007f3179015fa0 R15: 00007ffe02d9c4f8
[  842.423827][T18009]  </TASK>
[  843.362914][T17384] bridge0: port 1(bridge_slave_0) entered blocking state
[  843.370179][T17384] bridge0: port 1(bridge_slave_0) entered forwarding state
[  843.463360][T17384] bridge0: port 2(bridge_slave_1) entered blocking state
[  843.470615][T17384] bridge0: port 2(bridge_slave_1) entered forwarding state
[  843.699668][T17795] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  845.972059][T17795] 8021q: adding VLAN 0 to HW filter on device batadv0
[  846.957992][T17407] hsr_slave_0: left promiscuous mode
[  847.042640][T17407] hsr_slave_1: left promiscuous mode
[  847.480765][T17407] veth1_macvtap: left promiscuous mode
[  847.540207][T17407] veth0_macvtap: left promiscuous mode
[  853.857141][T17795] veth0_vlan: entered promiscuous mode
[  854.067087][T17795] veth1_vlan: entered promiscuous mode
[  854.292476][T17795] veth0_macvtap: entered promiscuous mode
[  854.429712][T17795] veth1_macvtap: entered promiscuous mode
[  854.984880][T18090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2573'.
[  855.180575][T18096] netlink: 'syz.4.2573': attribute type 1 has an invalid length.
[  855.188450][T18096] netlink: 51505 bytes leftover after parsing attributes in process `syz.4.2573'.
[  855.642519][T17795] batman_adv: batadv0: Interface activated: batadv_slave_0
[  855.845703][T17795] batman_adv: batadv0: Interface activated: batadv_slave_1
[  856.017223][T17384] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  856.161783][T17384] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  856.350319][T17384] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  856.570949][T17384] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  857.516926][T17400] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  857.594907][T17400] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  859.650731][  T486] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  859.711483][  T486] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  861.330728][T18132] rtc_cmos 00:00: Alarms can be up to one day in the future
[  861.557746][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  861.606890][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  861.684062][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  861.772088][T16165] rtc_cmos 00:00: Alarms can be up to one day in the future
[  861.851533][T16165] rtc rtc0: __rtc_set_alarm: err=-22
[  867.388290][T18185] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2591'.
[  867.774942][T18193] rtc_cmos 00:00: Alarms can be up to one day in the future
[  867.863585][T18185] can: request_module (can-proto-4) failed.
[  868.260670][    T9] rtc_cmos 00:00: Alarms can be up to one day in the future
[  868.330419][    T9] rtc_cmos 00:00: Alarms can be up to one day in the future
[  868.389409][    T9] rtc_cmos 00:00: Alarms can be up to one day in the future
[  868.480584][    T9] rtc_cmos 00:00: Alarms can be up to one day in the future
[  868.551056][    T9] rtc rtc0: __rtc_set_alarm: err=-22
[  868.975120][T18203] FAULT_INJECTION: forcing a failure.
[  868.975120][T18203] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  869.302193][T18206] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2593'.
[  869.510260][T18203] CPU: 0 UID: 0 PID: 18203 Comm: syz.4.2593 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  869.510302][T18203] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  869.510312][T18203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  869.510327][T18203] Call Trace:
[  869.510335][T18203]  <TASK>
[  869.510345][T18203]  dump_stack_lvl+0x100/0x190
[  869.510394][T18203]  should_fail_ex.cold+0x5/0xa
[  869.510423][T18203]  core_sys_select+0x5d1/0xbb0
[  869.510469][T18203]  ? __pfx_core_sys_select+0x10/0x10
[  869.510538][T18203]  ? ktime_get_ts64+0x2d2/0x3f0
[  869.510565][T18203]  ? read_tsc+0x9/0x20
[  869.510590][T18203]  ? ktime_get_ts64+0x256/0x3f0
[  869.510619][T18203]  kern_select+0x20c/0x270
[  869.510821][T18203]  ? __pfx_kern_select+0x10/0x10
[  869.510872][T18203]  __x64_sys_select+0xbd/0x160
[  869.510911][T18203]  ? do_syscall_64+0x95/0xf80
[  869.510941][T18203]  ? lockdep_hardirqs_on+0x78/0x100
[  869.510970][T18203]  do_syscall_64+0x106/0xf80
[  869.511011][T18203]  ? clear_bhb_loop+0x40/0x90
[  869.511041][T18203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  869.511068][T18203] RIP: 0033:0x7f0f7df9c799
[  869.511089][T18203] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  869.511122][T18203] RSP: 002b:00007f0f7eef4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  869.511145][T18203] RAX: ffffffffffffffda RBX: 00007f0f7e215fa0 RCX: 00007f0f7df9c799
[  869.511162][T18203] RDX: 0000200000000180 RSI: 0000000000000000 RDI: 0000000000000003
[  869.511177][T18203] RBP: 00007f0f7e032c99 R08: 00002000000000c0 R09: 0000000000000000
[  869.511192][T18203] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000000
[  869.511207][T18203] R13: 00007f0f7e216038 R14: 00007f0f7e215fa0 R15: 00007ffcf97f8488
[  869.511237][T18203]  </TASK>
[  870.170439][T18215] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  870.540564][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  870.547065][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  873.573964][T18246] FAULT_INJECTION: forcing a failure.
[  873.573964][T18246] name failslab, interval 1, probability 0, space 0, times 0
[  873.734367][T18246] CPU: 0 UID: 0 PID: 18246 Comm: syz.5.2599 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  873.734409][T18246] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  873.734418][T18246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  873.734433][T18246] Call Trace:
[  873.734440][T18246]  <TASK>
[  873.734449][T18246]  dump_stack_lvl+0x100/0x190
[  873.734490][T18246]  should_fail_ex.cold+0x5/0xa
[  873.734518][T18246]  should_failslab+0xc2/0x120
[  873.734543][T18246]  __kmalloc_cache_noprof+0x7a/0x6f0
[  873.734582][T18246]  ? proc_self_get_link+0x189/0x1f0
[  873.734623][T18246]  proc_self_get_link+0x189/0x1f0
[  873.734658][T18246]  pick_link+0xac2/0x13c0
[  873.734693][T18246]  ? __pfx_proc_self_get_link+0x10/0x10
[  873.734731][T18246]  step_into_slowpath+0x9ba/0xf90
[  873.734773][T18246]  ? __pfx_step_into_slowpath+0x10/0x10
[  873.734814][T18246]  ? lookup_fast+0x2da/0x600
[  873.734846][T18246]  ? inode_permission+0x374/0x620
[  873.734880][T18246]  link_path_walk+0xf28/0x1cc0
[  873.734926][T18246]  path_openat+0x1be/0x31a0
[  873.734949][T18246]  ? kasan_save_stack+0x3f/0x50
[  873.734984][T18246]  ? kasan_save_stack+0x30/0x50
[  873.735020][T18246]  ? kasan_save_track+0x14/0x30
[  873.735056][T18246]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  873.735100][T18246]  ? __pfx_path_openat+0x10/0x10
[  873.735134][T18246]  do_file_open+0x20e/0x430
[  873.735161][T18246]  ? __pfx_do_file_open+0x10/0x10
[  873.735206][T18246]  ? alloc_fd+0x476/0x790
[  873.735231][T18246]  ? do_getname+0x191/0x390
[  873.735263][T18246]  do_sys_openat2+0x10d/0x1e0
[  873.735295][T18246]  ? __pfx_do_sys_openat2+0x10/0x10
[  873.735337][T18246]  __x64_sys_openat+0x12d/0x210
[  873.735370][T18246]  ? __pfx___x64_sys_openat+0x10/0x10
[  873.735413][T18246]  do_syscall_64+0x106/0xf80
[  873.735461][T18246]  ? clear_bhb_loop+0x40/0x90
[  873.735491][T18246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  873.735516][T18246] RIP: 0033:0x7f191115cfce
[  873.735536][T18246] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  873.735565][T18246] RSP: 002b:00007f1912049ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  873.735589][T18246] RAX: ffffffffffffffda RBX: 00007f191204a6c0 RCX: 00007f191115cfce
[  873.735605][T18246] RDX: 0000000000000002 RSI: 00007f1912049f90 RDI: ffffffffffffff9c
[  873.735621][T18246] RBP: 00007f1911232c99 R08: 0000000000000000 R09: 0000000000000000
[  873.735635][T18246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  873.735650][T18246] R13: 00007f1911416128 R14: 00007f1911416090 R15: 00007ffd07555858
[  873.735681][T18246]  </TASK>
[  875.888965][T18262] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2600'.
[  876.030793][T18265] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2600'.
[  878.200346][T18286] cougar: G6 mapped to space
[  882.083159][ T5143] Bluetooth: hci1: ACL packet for unknown connection handle 0
[  884.386488][T18365] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2612'.
[  885.786600][T18394] netlink: 206 bytes leftover after parsing attributes in process `syz.3.2616'.
[  887.076271][T18405] FAULT_INJECTION: forcing a failure.
[  887.076271][T18405] name failslab, interval 1, probability 0, space 0, times 0
[  887.222075][T18405] CPU: 0 UID: 0 PID: 18405 Comm: syz.3.2619 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  887.222116][T18405] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  887.222126][T18405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  887.222141][T18405] Call Trace:
[  887.222149][T18405]  <TASK>
[  887.222158][T18405]  dump_stack_lvl+0x100/0x190
[  887.222199][T18405]  should_fail_ex.cold+0x5/0xa
[  887.222227][T18405]  should_failslab+0xc2/0x120
[  887.222252][T18405]  __kmalloc_cache_noprof+0x7a/0x6f0
[  887.222284][T18405]  ? p9_client_create+0xaf/0xd40
[  887.222322][T18405]  p9_client_create+0xaf/0xd40
[  887.222356][T18405]  ? __pfx_p9_client_create+0x10/0x10
[  887.222395][T18405]  ? lockdep_init_map_type+0x5c/0x250
[  887.222429][T18405]  ? __raw_spin_lock_init+0x3a/0x110
[  887.222468][T18405]  v9fs_session_init+0x40/0xce0
[  887.222498][T18405]  ? kasan_save_track+0x14/0x30
[  887.222539][T18405]  v9fs_get_tree+0xb8/0xb50
[  887.222571][T18405]  ? rcu_is_watching+0x12/0xc0
[  887.222609][T18405]  ? __pfx_v9fs_get_tree+0x10/0x10
[  887.222645][T18405]  ? bpf_lsm_capable+0x9/0x10
[  887.222670][T18405]  ? security_capable+0x80/0x260
[  887.222705][T18405]  vfs_get_tree+0x92/0x320
[  887.222739][T18405]  vfs_cmd_create+0xd7/0x2a0
[  887.222771][T18405]  __do_sys_fsconfig+0x55a/0xcb0
[  887.222804][T18405]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  887.222850][T18405]  do_syscall_64+0x106/0xf80
[  887.222878][T18405]  ? clear_bhb_loop+0x40/0x90
[  887.222907][T18405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  887.222933][T18405] RIP: 0033:0x7f3178d9c799
[  887.222952][T18405] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  887.222975][T18405] RSP: 002b:00007f3179d22028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  887.223005][T18405] RAX: ffffffffffffffda RBX: 00007f3179015fa0 RCX: 00007f3178d9c799
[  887.223022][T18405] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000007
[  887.223036][T18405] RBP: 00007f3178e32c99 R08: 0000000000000000 R09: 0000000000000000
[  887.223050][T18405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  887.223065][T18405] R13: 00007f3179016038 R14: 00007f3179015fa0 R15: 00007ffe02d9c4f8
[  887.223096][T18405]  </TASK>
[  890.459343][T18429] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2623'.
[  892.280282][T18434] FAULT_INJECTION: forcing a failure.
[  892.280282][T18434] name failslab, interval 1, probability 0, space 0, times 0
[  892.666985][T18434] CPU: 0 UID: 0 PID: 18434 Comm: syz.4.2624 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  892.667025][T18434] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  892.667034][T18434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  892.667048][T18434] Call Trace:
[  892.667055][T18434]  <TASK>
[  892.667063][T18434]  dump_stack_lvl+0x100/0x190
[  892.667103][T18434]  should_fail_ex.cold+0x5/0xa
[  892.667130][T18434]  should_failslab+0xc2/0x120
[  892.667154][T18434]  __kmalloc_cache_noprof+0x7a/0x6f0
[  892.667185][T18434]  ? proc_thread_self_get_link+0x1a6/0x210
[  892.667225][T18434]  proc_thread_self_get_link+0x1a6/0x210
[  892.667262][T18434]  pick_link+0xac2/0x13c0
[  892.667294][T18434]  ? __pfx_proc_thread_self_get_link+0x10/0x10
[  892.667339][T18434]  step_into_slowpath+0x9ba/0xf90
[  892.667379][T18434]  ? __pfx_step_into_slowpath+0x10/0x10
[  892.667419][T18434]  ? lookup_fast+0x2da/0x600
[  892.667449][T18434]  ? inode_permission+0x374/0x620
[  892.667482][T18434]  link_path_walk+0xf28/0x1cc0
[  892.667526][T18434]  path_openat+0x1be/0x31a0
[  892.667548][T18434]  ? kasan_save_stack+0x3f/0x50
[  892.667583][T18434]  ? kasan_save_stack+0x30/0x50
[  892.667616][T18434]  ? kasan_save_track+0x14/0x30
[  892.667651][T18434]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  892.667692][T18434]  ? __pfx_path_openat+0x10/0x10
[  892.667727][T18434]  do_file_open+0x20e/0x430
[  892.667752][T18434]  ? __pfx_do_file_open+0x10/0x10
[  892.667796][T18434]  ? alloc_fd+0x476/0x790
[  892.667825][T18434]  ? do_getname+0x191/0x390
[  892.667856][T18434]  do_sys_openat2+0x10d/0x1e0
[  892.667887][T18434]  ? __pfx_do_sys_openat2+0x10/0x10
[  892.667928][T18434]  __x64_sys_openat+0x12d/0x210
[  892.667959][T18434]  ? __pfx___x64_sys_openat+0x10/0x10
[  892.668001][T18434]  do_syscall_64+0x106/0xf80
[  892.668029][T18434]  ? clear_bhb_loop+0x40/0x90
[  892.668057][T18434]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  892.668081][T18434] RIP: 0033:0x7f0f7df9c799
[  892.668100][T18434] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  892.668122][T18434] RSP: 002b:00007f0f7eef4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  892.668144][T18434] RAX: ffffffffffffffda RBX: 00007f0f7e215fa0 RCX: 00007f0f7df9c799
[  892.668159][T18434] RDX: 8f3b7a51b80ebd01 RSI: 00002000000003c0 RDI: ffffffffffffff9c
[  892.668174][T18434] RBP: 00007f0f7e032c99 R08: 0000000000000000 R09: 0000000000000000
[  892.668187][T18434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  892.668201][T18434] R13: 00007f0f7e216038 R14: 00007f0f7e215fa0 R15: 00007ffcf97f8488
[  892.668230][T18434]  </TASK>
[  894.937727][T18460] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2631'.
[  896.628042][T18482] HfR: entered promiscuous mode
[  897.360815][T18488] block2mtd: illegal erase size
[  898.324619][T18502] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input89
[  901.517813][ T5143] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  901.998469][T18532] ==================================================================
[  901.998496][T18532] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0x94e/0xc60
[  901.998544][T18532] Read of size 26 at addr ffff88802c6535cc by task syz.3.2646/18532
[  901.998566][T18532] 
[  901.998581][T18532] CPU: 0 UID: 0 PID: 18532 Comm: syz.3.2646 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  901.998618][T18532] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  901.998628][T18532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  901.998643][T18532] Call Trace:
[  901.998650][T18532]  <TASK>
[  901.998659][T18532]  dump_stack_lvl+0x100/0x190
[  901.998695][T18532]  print_report+0x156/0x4c9
[  901.998731][T18532]  ? __virt_addr_valid+0x81/0x620
[  901.998761][T18532]  ? __phys_addr+0xe8/0x180
[  901.998792][T18532]  ? fbcon_prepare_logo+0x94e/0xc60
[  901.998829][T18532]  kasan_report+0xdf/0x1e0
[  901.998854][T18532]  ? fbcon_prepare_logo+0x94e/0xc60
[  901.998896][T18532]  kasan_check_range+0x10f/0x1e0
[  901.998926][T18532]  __asan_memcpy+0x23/0x60
[  901.998959][T18532]  fbcon_prepare_logo+0x94e/0xc60
[  901.999004][T18532]  fbcon_init+0x10a0/0x1820
[  901.999046][T18532]  visual_init+0x320/0x620
[  901.999069][T18532]  do_bind_con_driver.isra.0+0x636/0x9c0
[  901.999103][T18532]  store_bind+0x609/0x730
[  901.999133][T18532]  ? __pfx_store_bind+0x10/0x10
[  901.999160][T18532]  dev_attr_store+0x58/0x80
[  901.999199][T18532]  ? __pfx_dev_attr_store+0x10/0x10
[  901.999240][T18532]  sysfs_kf_write+0xf2/0x150
[  901.999270][T18532]  kernfs_fop_write_iter+0x3e0/0x5f0
[  901.999303][T18532]  ? __pfx_sysfs_kf_write+0x10/0x10
[  901.999334][T18532]  iter_file_splice_write+0x830/0x10a0
[  901.999366][T18532]  ? __pfx_iter_file_splice_write+0x10/0x10
[  901.999393][T18532]  ? __pfx_copy_splice_read+0x10/0x10
[  901.999441][T18532]  ? __pfx_iter_file_splice_write+0x10/0x10
[  901.999466][T18532]  direct_splice_actor+0x192/0x6c0
[  901.999508][T18532]  splice_direct_to_actor+0x345/0xa30
[  901.999532][T18532]  ? __pfx_direct_splice_actor+0x10/0x10
[  901.999575][T18532]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  901.999604][T18532]  do_splice_direct+0x174/0x240
[  901.999627][T18532]  ? __pfx_do_splice_direct+0x10/0x10
[  901.999651][T18532]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  901.999693][T18532]  ? rw_verify_area+0xce/0x6d0
[  901.999729][T18532]  do_sendfile+0xadc/0xe20
[  901.999768][T18532]  ? __pfx_do_sendfile+0x10/0x10
[  901.999807][T18532]  ? __x64_sys_futex+0x34f/0x4d0
[  901.999838][T18532]  ? __x64_sys_futex+0x358/0x4d0
[  901.999871][T18532]  __x64_sys_sendfile64+0x1d8/0x220
[  901.999899][T18532]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  901.999932][T18532]  do_syscall_64+0x106/0xf80
[  901.999961][T18532]  ? clear_bhb_loop+0x40/0x90
[  901.999993][T18532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  902.000018][T18532] RIP: 0033:0x7f3178d9c799
[  902.000037][T18532] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  902.000077][T18532] RSP: 002b:00007f3179ce0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  902.000102][T18532] RAX: ffffffffffffffda RBX: 00007f3179016180 RCX: 00007f3178d9c799
[  902.000120][T18532] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000006
[  902.000136][T18532] RBP: 00007f3178e32c99 R08: 0000000000000000 R09: 0000000000000000
[  902.000151][T18532] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  902.000167][T18532] R13: 00007f3179016218 R14: 00007f3179016180 R15: 00007ffe02d9c4f8
[  902.000192][T18532]  </TASK>
[  902.000201][T18532] 
[  902.000207][T18532] Allocated by task 18532:
[  902.000219][T18532]  kasan_save_stack+0x30/0x50
[  902.000258][T18532]  kasan_save_track+0x14/0x30
[  902.000300][T18532]  __kasan_kmalloc+0xaa/0xb0
[  902.000337][T18532]  __kmalloc_noprof+0x301/0x850
[  902.000373][T18532]  vc_do_resize+0x1da/0x10f0
[  902.000398][T18532]  fbcon_init+0x10ba/0x1820
[  902.000434][T18532]  visual_init+0x320/0x620
[  902.000454][T18532]  do_bind_con_driver.isra.0+0x636/0x9c0
[  902.000482][T18532]  store_bind+0x609/0x730
[  902.000507][T18532]  dev_attr_store+0x58/0x80
[  902.000544][T18532]  sysfs_kf_write+0xf2/0x150
[  902.000572][T18532]  kernfs_fop_write_iter+0x3e0/0x5f0
[  902.000596][T18532]  iter_file_splice_write+0x830/0x10a0
[  902.000618][T18532]  direct_splice_actor+0x192/0x6c0
[  902.000657][T18532]  splice_direct_to_actor+0x345/0xa30
[  902.000679][T18532]  do_splice_direct+0x174/0x240
[  902.000700][T18532]  do_sendfile+0xadc/0xe20
[  902.000735][T18532]  __x64_sys_sendfile64+0x1d8/0x220
[  902.000761][T18532]  do_syscall_64+0x106/0xf80
[  902.000788][T18532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  902.000813][T18532] 
[  902.000819][T18532] The buggy address belongs to the object at ffff88802c653500
[  902.000819][T18532]  which belongs to the cache kmalloc-192 of size 192
[  902.000839][T18532] The buggy address is located 48 bytes to the right of
[  902.000839][T18532]  allocated 156-byte region [ffff88802c653500, ffff88802c65359c)
[  902.000864][T18532] 
[  902.000870][T18532] The buggy address belongs to the physical page:
[  902.000882][T18532] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2c653
[  902.000905][T18532] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  902.000935][T18532] page_type: f5(slab)
[  902.000957][T18532] raw: 00fff00000000000 ffff88813fe3c3c0 dead000000000100 dead000000000122
[  902.000981][T18532] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  902.000996][T18532] page dumped because: kasan: bad access detected
[  902.001009][T18532] page_owner tracks the page as allocated
[  902.001017][T18532] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2c00(GFP_NOIO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 796, tgid 796 (kworker/0:2), ts 17004341976, free_ts 16809073575
[  902.001065][T18532]  post_alloc_hook+0x153/0x170
[  902.001096][T18532]  get_page_from_freelist+0x111d/0x3140
[  902.001132][T18532]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  902.001169][T18532]  new_slab+0xa6/0x6c0
[  902.001196][T18532]  refill_objects+0x26b/0x400
[  902.001228][T18532]  __pcs_replace_empty_main+0x1ab/0x600
[  902.001265][T18532]  __kmalloc_noprof+0x688/0x850
[  902.001305][T18532]  usb_alloc_urb+0x66/0xa0
[  902.001342][T18532]  usb_control_msg+0x1d3/0x4a0
[  902.001365][T18532]  hub_ext_port_status+0x152/0x600
[  902.001403][T18532]  hub_activate+0x6d8/0x1d50
[  902.001426][T18532]  process_one_work+0x9d7/0x1920
[  902.001460][T18532]  worker_thread+0x5da/0xe40
[  902.001493][T18532]  kthread+0x370/0x450
[  902.001523][T18532]  ret_from_fork+0x754/0xd80
[  902.001558][T18532]  ret_from_fork_asm+0x1a/0x30
[  902.001583][T18532] page last free pid 796 tgid 796 stack trace:
[  902.001596][T18532]  __free_frozen_pages+0x7e1/0x10d0
[  902.001626][T18532]  vfree.part.0+0x12b/0x9d0
[  902.001651][T18532]  delayed_vfree_work+0x8e/0xd0
[  902.001678][T18532]  process_one_work+0x9d7/0x1920
[  902.001711][T18532]  worker_thread+0x5da/0xe40
[  902.001743][T18532]  kthread+0x370/0x450
[  902.001772][T18532]  ret_from_fork+0x754/0xd80
[  902.001806][T18532]  ret_from_fork_asm+0x1a/0x30
[  902.001831][T18532] 
[  902.001836][T18532] Memory state around the buggy address:
[  902.001848][T18532]  ffff88802c653480: 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc
[  902.001867][T18532]  ffff88802c653500: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  902.001885][T18532] >ffff88802c653580: 00 00 00 04 fc fc fc fc fc fc fc fc fc fc fc fc
[  902.001899][T18532]                                               ^
[  902.001913][T18532]  ffff88802c653600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  902.001931][T18532]  ffff88802c653680: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc
[  902.001945][T18532] ==================================================================
[  902.110601][T18532] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  902.110628][T18532] CPU: 0 UID: 0 PID: 18532 Comm: syz.3.2646 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  902.110668][T18532] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  902.110678][T18532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  902.110693][T18532] Call Trace:
[  902.110701][T18532]  <TASK>
[  902.110711][T18532]  dump_stack_lvl+0x100/0x190
[  902.110752][T18532]  vpanic+0x552/0x970
[  902.110776][T18532]  ? __pfx_vpanic+0x10/0x10
[  902.110803][T18532]  ? fbcon_prepare_logo+0x94e/0xc60
[  902.110843][T18532]  panic+0xd1/0xe0
[  902.110865][T18532]  ? __pfx_panic+0x10/0x10
[  902.110890][T18532]  ? fbcon_prepare_logo+0x94e/0xc60
[  902.110928][T18532]  ? preempt_schedule_common+0x42/0xc0
[  902.110963][T18532]  check_panic_on_warn.cold+0x19/0x34
[  902.110990][T18532]  end_report.part.0+0x3a/0x90
[  902.111026][T18532]  kasan_report.cold+0xe/0x18
[  902.111062][T18532]  ? fbcon_prepare_logo+0x94e/0xc60
[  902.111105][T18532]  kasan_check_range+0x10f/0x1e0
[  902.111137][T18532]  __asan_memcpy+0x23/0x60
[  902.111171][T18532]  fbcon_prepare_logo+0x94e/0xc60
[  902.111217][T18532]  fbcon_init+0x10a0/0x1820
[  902.111260][T18532]  visual_init+0x320/0x620
[  902.111294][T18532]  do_bind_con_driver.isra.0+0x636/0x9c0
[  902.111328][T18532]  store_bind+0x609/0x730
[  902.111361][T18532]  ? __pfx_store_bind+0x10/0x10
[  902.111388][T18532]  dev_attr_store+0x58/0x80
[  902.111429][T18532]  ? __pfx_dev_attr_store+0x10/0x10
[  902.111470][T18532]  sysfs_kf_write+0xf2/0x150
[  902.111502][T18532]  kernfs_fop_write_iter+0x3e0/0x5f0
[  902.111527][T18532]  ? __pfx_sysfs_kf_write+0x10/0x10
[  902.111559][T18532]  iter_file_splice_write+0x830/0x10a0
[  902.111592][T18532]  ? __pfx_iter_file_splice_write+0x10/0x10
[  902.111621][T18532]  ? __pfx_copy_splice_read+0x10/0x10
[  902.111670][T18532]  ? __pfx_iter_file_splice_write+0x10/0x10
[  902.111696][T18532]  direct_splice_actor+0x192/0x6c0
[  902.111739][T18532]  splice_direct_to_actor+0x345/0xa30
[  902.111765][T18532]  ? __pfx_direct_splice_actor+0x10/0x10
[  902.111809][T18532]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  902.111838][T18532]  do_splice_direct+0x174/0x240
[  902.111862][T18532]  ? __pfx_do_splice_direct+0x10/0x10
[  902.111887][T18532]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  902.111929][T18532]  ? rw_verify_area+0xce/0x6d0
[  902.111966][T18532]  do_sendfile+0xadc/0xe20
[  902.112006][T18532]  ? __pfx_do_sendfile+0x10/0x10
[  902.112046][T18532]  ? __x64_sys_futex+0x34f/0x4d0
[  902.112079][T18532]  ? __x64_sys_futex+0x358/0x4d0
[  902.112112][T18532]  __x64_sys_sendfile64+0x1d8/0x220
[  902.112141][T18532]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  902.112174][T18532]  do_syscall_64+0x106/0xf80
[  902.112203][T18532]  ? clear_bhb_loop+0x40/0x90
[  902.112232][T18532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  902.112259][T18532] RIP: 0033:0x7f3178d9c799
[  902.112286][T18532] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  902.112311][T18532] RSP: 002b:00007f3179ce0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  902.112336][T18532] RAX: ffffffffffffffda RBX: 00007f3179016180 RCX: 00007f3178d9c799
[  902.112353][T18532] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000006
[  902.112369][T18532] RBP: 00007f3178e32c99 R08: 0000000000000000 R09: 0000000000000000
[  902.112385][T18532] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  902.112400][T18532] R13: 00007f3179016218 R14: 00007f3179016180 R15: 00007ffe02d9c4f8
[  902.112426][T18532]  </TASK>
[  902.112509][T18532] Kernel Offset: disabled