last executing test programs:

2m50.549038378s ago: executing program 0 (id=2906):
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x20401, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
futex$auto(0x0, 0x84, 0x2, 0x0, 0x0, 0x3)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
timer_create$auto(0x803, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x109100, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0)
memfd_secret$auto(0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x20100, 0x0)
preadv2$auto(r2, &(0x7f0000000200)={0x0, 0x80000000009}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz7\x00', 0x48f41, 0x0)
ioctl$auto(0x3, 0x402c542d, r3)
write$auto(0x3, 0x0, 0xfffffdef)
listmount$auto(&(0x7f0000000080)={0x1f, @raw=0x10, 0x80000026, 0xfffffffffffffff7, 0xa}, 0x0, 0xf4240, 0x1)

2m49.254463142s ago: executing program 0 (id=2911):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r0)
sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f0000000180)={0x0, 0x30000, &(0x7f0000000100)={&(0x7f00000001c0)={0x2c, r1, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@SMC_PNETID_NAME={0xb, 0x1, 'dummy0\x00'}, @SMC_PNETID_ETHNAME={0xb, 0x2, 'dummy0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x44c0) (fail_nth: 8)

2m48.538612319s ago: executing program 0 (id=2914):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20443, 0x0)
write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03", 0x71)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x400)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080))
ioctl$auto(0x3, 0x40044620, 0x38)

2m48.476442271s ago: executing program 0 (id=2915):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20443, 0x0)
write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03", 0x71)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x400)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080))
ioctl$auto(0x3, 0x40044620, 0x38)

2m48.237645523s ago: executing program 0 (id=2917):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/fib_triestat\x00', 0x8000, 0x0)
read$auto(r0, &(0x7f0000000000)='veth1\x00', 0x10)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
unshare$auto(0x40000080)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000800)='/dev/snd/pcmC1D1p\x00', 0x200, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_STATUS_EXT32(r2, 0xc06c4124, &(0x7f0000000840)={0x7, 0x8, 0x2, 0x1, 0x4, 0x3, 0x1, 0x10001, 0x5, 0xffff473f, 0x80000000, 0x4, 0xb, 0x854, 0x64, 0x3ff, 0x0, 0x8, "547d8f774e7ab98e3ccdbad1e13745f260aa6a6264428625532ee28234827d36031da9ab"})
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r1, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r3, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020)
read$auto(0xffffffffffffffff, 0x0, 0x7f)
mprotect$auto(0x8000, 0x8, 0x8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, 0x0)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002bbd7000fcdbdf2504"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
read$auto(r1, 0x0, 0x3)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

2m47.206847616s ago: executing program 0 (id=2921):
socket(0xa, 0x3, 0x3b)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x7fffffff, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
connect$auto(0x3, &(0x7f0000000000)=@phonet={0x23, 0x8c, 0x2, 0x3}, 0x58)
quotactl$auto(0x0, 0x0, 0x62a0, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
r0 = open(&(0x7f00000001c0)='./bus\x00', 0x48342, 0x1c0)
pwrite64$auto(r0, &(0x7f0000002300)='ethtgp\x96l\x00\x06\xbf\xedwZ\xa6\xb3\xadG\xe0a~\x85G\"\t\xb0\x02\xc9\x9f\xdd\xcf\x1e\xe7E\'J/~\xce\x9c\xd5G\xec\xe9 \xe6\n\xa0\b\x17\xf5\x1e\xfar5\x8d\x01;W\xa4\xedSh\xbf0\x8aU\x94,\xd6V\xf1\x8dS\xb3\x9b\x93\x96\xe1\xf3\xa7\x9cY5\xca,\x94\xf1\xb6\x9dA\x9a\x02\x04<Q\xfb_\xb7\x95(\n\x16T\xc5\xe9CCt\x1cL\xa5\xfe\xb5\xcc\xd8\x9f\x95\xdc\xaeaL\xefz\x80\x80M\x83\xd5\xcc', 0x80, 0x7fff)
socketpair$auto(0x2, 0x80, 0xfffffffc, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb4, 0xfffffffffffffffa, 0x8000)
ioctl$auto_SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20201, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80480, 0x0)
socket(0xa, 0x3, 0x3b)
recvmmsg$auto(0x3, 0x0, 0x3, 0x3, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(r1, 0x0, 0x1a7, 0x7010000)
r2 = epoll_create$auto(0x3ff)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x2003f0, 0x17)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000006a40), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_OFFLOAD(r3, &(0x7f00000071c0)={0x0, 0x0, &(0x7f0000007180)={&(0x7f0000003240)={0x14, r4, 0x1, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20004004}, 0x24000040)
ioctl$auto_BTRFS_IOC_QGROUP_LIMIT(r2, 0x8030942b, &(0x7f0000000040)={0x2, {0x20000000000008, 0x1415, 0x400, 0x2, 0x4}})

2m46.113326834s ago: executing program 1 (id=2926):
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='//\xf2\x00', 0x80000000)
write$auto(0xffffffffffffffff, 0x0, 0x2)
io_uring_setup$auto(0x10000, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mq_open$auto(0x0, 0x1, 0x7d, &(0x7f0000000040)={0xfffffffffffffffd, 0x6, 0xffffffffffffffc0, 0x800000000000006})
socket(0x2, 0x80805, 0x0)
r0 = eventfd$auto(0x9)
writev$auto(0x4, &(0x7f0000000080)={&(0x7f0000000040), 0x8}, 0x1)
read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000280)=""/27, 0xfe52)

2m45.883741896s ago: executing program 1 (id=2928):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x14, r1, 0x301, 0x70bd29, 0x25dfdc02}, 0x14}, 0x1, 0x0, 0x600, 0x20008810}, 0x880)

2m45.713139627s ago: executing program 1 (id=2929):
mmap$auto(0x8, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/stat/synproxy\x00', 0xc0a00, 0x0)
pread64$auto(r0, &(0x7f0000000040)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\x8d\xa8\xcfM9\\\xd6\xcfUq\x05#\xed\x1c\xd1G\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xbasG\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1', 0x3ff, 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop1\x00', 0x200, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2000000008000)
io_uring_setup$auto(0x20, 0x0)
r1 = socket(0xa, 0x2, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/netfs/cookies\x00', 0xd00, 0x0)
r2 = socketpair$auto(0x10000005, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x18, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0x4048aecb, 0x0)
mmap$auto_def_blk_fops_fs(&(0x7f0000fec000/0x14000)=nil, 0x14000, 0x2000000, 0x4010, r2, 0x8)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'ipvlan1\x00', <r5=>0x0})
sendmsg$auto_MACSEC_CMD_DEL_RXSA(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={0x24, r4, 0x501, 0x703d2b, 0x25dfdbff, {}, [@MACSEC_ATTR_SA_CONFIG={0x4}, @MACSEC_ATTR_IFINDEX={0xffffffffffffffab, 0x1, r5}, @MACSEC_ATTR_RXSC_CONFIG={0x4}]}, 0x24}}, 0x80)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r6 = clone$auto(0x6db, 0x10, 0x0, 0x0, 0x3)
migrate_pages$auto(r6, 0x4, 0x0, &(0x7f0000000180)=0x2)

2m45.532144875s ago: executing program 1 (id=2931):
io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000280), 0x1)
io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, 0x0, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x1e, 0x5, 0x0)
r3 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000001240), r1)
sendmsg$auto_NFC_CMD_DEP_LINK_UP(r2, &(0x7f00000013c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001380)={&(0x7f00000001c0)={0xe0, r3, 0x30a, 0x70bd2a, 0x25dfdbfc, {}, [@NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x2}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x8}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x7}, @NFC_ATTR_SE_APDU={0x8b, 0x19, "afcb57d28b49268c321eed46e2fd1414ea0e48a9669672ca5f81d2c290d5320ce8115b9b0bbfd8c0c91161d118d8050f99def632520698fec0803bb1d80c7e1230a6a84c26721d77d6e4c9031cd779e64e88eb161b8b8399cea84c28190305ce4d63b35588ae05c8b91b1e0cba3b58b20bcf7439df294736bb83bec317d3eb2eddd4bd2c7162a3"}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x2}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x10}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x5}, @NFC_ATTR_DEVICE_NAME={0x8, 0x2, ',^^:'}, @NFC_ATTR_LLC_PARAM_LTO={0x5, 0xf, 0x49}]}, 0xe0}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$auto_NFC_CMD_START_POLL(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0xc8, r3, 0x8, 0x70bd2b, 0x25dfdbfd, {}, [@NFC_ATTR_SE_APDU={0xb1, 0x19, "b5036d02f1e34f79bda9ba0cdf63006514c7e8ec39431a9676a9aa803833b1350335aed17ba7924cfd91d8cc010596b8366dd4713f3fedb0d0e1f94545e9d9c0c200e1d31db6b68dd3ca0c16d50630be98b5cfa312b40643370756b4e6622a19b18f89af7e5d37634057f43df778d2530f180c071fb38310c84018b2769c239ac9e00c34491d97cc66fe00fb1a3e45f410617414e37284e8eed6fef16f55240be42e9511a955a9b6ec0ec20bfc"}]}, 0xc8}}, 0x15)

2m45.412547194s ago: executing program 1 (id=2932):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x315, 0x1, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x7ff, 0x3, 0x2, 0x9, 0xfffffffe, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x1]}, 0x1fe, 0xd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x20, 0x0)

2m45.143308554s ago: executing program 1 (id=2933):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
r3 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, 0x0, 0x8006, 0x0)
write$auto_proc_uid_map_operations_base(r3, 0x0, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}, 0x1, 0x3000000}, 0x4000)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/free_buffer\x00', 0x24001, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x400000008000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x151)
r4 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r4, 0x107, 0xf, 0x0, 0x6)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8}, 0x80000000003)

2m41.970015008s ago: executing program 3 (id=2949):
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = open(0x0, 0x595082, 0x0)
write$auto(r0, 0x0, 0xfffffdf1)
fcntl$auto_F_ADD_SEALS(r0, 0x409, 0x9)
linkat$auto(r0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000)
mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x4d, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/snd_hda_intel/parameters/bdl_pos_adj\x00', 0x80102, 0x0)
sendfile$auto(r1, r1, 0x0, 0x3)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000062c0), r2)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f00000000c0)={0xfffffffffffffffd, 0x0, &(0x7f0000006340)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000008e7b9249b9f5e817ead4a49b1d1c3b10b4283df46a4ee52f1152fd0e36eb63cb4954da185f96ebd21aca781849670e391ae3f68572", @ANYRES16=r3, @ANYBLOB="8f0329bd7000fbdbdf2504000000"], 0x14}, 0x1, 0x0, 0x0, 0x4044040}, 0x4000)
r4 = openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
connect$auto(r4, &(0x7f0000000080)=@can, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r5, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x6)

2m41.578371558s ago: executing program 3 (id=2950):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000240)={0x44, r1, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_RADIO_NAME={0x2d, 0x11, '/P\x13jE\f\xf9r\xf5\xa3\xd2\x84y\xf9*\x9b\"\x1c\xa4l-\x19\xfd\xa4\xf4y\x02\xc2\x96\xfa\x84L\x12\xcd\x83\xf7\x12\xd3\xc4\x1e]'}]}, 0x44}, 0x1, 0x40000000, 0x0, 0x4008040}, 0x40800)

2m40.459701396s ago: executing program 3 (id=2952):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0xfffffffffffffffc, 0x2020009, 0x3, 0x7ffd, r0, 0x7)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x2a)
r1 = socket(0x2, 0x3, 0x2)
setsockopt$auto(r1, 0x0, 0xd1, 0xfffffffffffffffc, 0x3)
r2 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r3=>r2, 0xfff7, 0x9816}, 0x7f, 0x9)
ioctl$auto_VHOST_SET_OWNER(r3, 0xaf01, 0x0)
ioctl$auto(r3, 0xaf01, 0xe)
socket(0x2a, 0x2, 0x1)
ioctl$auto(0x3, 0x10, 0xfffffffffffff4e0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x140, 0x0)
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x161342, 0x130)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
fchmod$auto(r4, 0xa)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r5)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r5, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000001300)=ANY=[@ANYBLOB="1c001f00", @ANYRES16=r6, @ANYBLOB="05082dbd7000fbdbdf257e0000000800db00ab29dc931f0e02b7745be74fb8e8255f614f85f94bc5ef8facda4b1cb3e135ef23203752a9a06f5adc02fe", @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000)

2m40.004606553s ago: executing program 3 (id=2955):
write$auto(0xffffffffffffffff, 0x0, 0x80000000)
write$auto(0xffffffffffffffff, 0x0, 0x2)
io_uring_setup$auto(0x10000, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mq_open$auto(0x0, 0x1, 0x7d, 0x0)
socket(0x2, 0x80805, 0x0)
r0 = eventfd$auto(0x9)
writev$auto(0x4, &(0x7f0000000080)={&(0x7f0000000040), 0x8}, 0x1)
read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000280)=""/27, 0xfe52)

2m39.888902896s ago: executing program 3 (id=2956):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_notify$auto(r1, 0x0)
move_pages$auto(0x0, 0x5, &(0x7f0000000380)=&(0x7f0000000280), &(0x7f00000003c0)=0x1, 0x0, 0x2)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000240)="07b48de76d48453bc38b3abf8d35448b47adf018db84f813d757c48bba9a48b40ac04a79fc63248fbb955fbef918ba4722f2db7d2e2fe89dd7cc41422cca1de8d6060b593b381d5f65f3988cc09a34cad3a832da482db7dc2f61702bfec72cf750683b671beb02fdb14dac1c64e328b9bed1847cc9e4f2e2e2472c272363b074e4cb4578b6926ab63630d1b9d571d9582847461cc59ce46f23c070a71a3b0e0bd7d8", 0xa2)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PSE_GET(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x20, r2, 0x4, 0x70bd2b, 0x25dfdbfe, {}, [@ETHTOOL_A_PSE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x7}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8c}, 0x4008000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
mq_open$auto(&(0x7f0000000300)='-\x00', 0x3, 0x8, &(0x7f0000000340)={0x1, 0x4, 0x1000, 0x2})
ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000840)="12915fb9d5")
r4 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000080), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r4, 0x1, 0x70bd25, 0x25dfdc02, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x10, 0x0, 0x1, [@nested={0x4, 0x7}]}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
r6 = getpgid(0x0)
prctl$auto_PR_SCHED_CORE_CREATE(0x88000, 0x1, r6, 0x3, 0x51b5)
r7 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x30000, &(0x7f0000000100)={&(0x7f00000001c0)={0x2c, r7, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@SMC_PNETID_NAME={0xb, 0x1, 'dummy0\x00'}, @SMC_PNETID_ETHNAME={0xb, 0x2, 'dummy0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x44c0)

2m39.744097129s ago: executing program 3 (id=2957):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
r3 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, 0x0, 0x8006, 0x0)
write$auto_proc_uid_map_operations_base(r3, 0x0, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}, 0x3e}, 0x4000)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/free_buffer\x00', 0x24001, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x400000008000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x151)
r4 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r4, 0x107, 0xf, 0x0, 0x6)

2m33.35491504s ago: executing program 2 (id=2969):
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000)
write$auto(r0, 0x0, 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
open(0x0, 0x101100, 0xa6)
r1 = io_uring_setup$auto(0x10000, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mq_open$auto(0x0, 0x1, 0x7d, &(0x7f0000000040)={0xfffffffffffffffd, 0x6, 0xffffffffffffffc0, 0x800000000000006})
socket(0x2, 0x80805, 0x0)
r2 = eventfd$auto(0x9)
writev$auto(0x4, &(0x7f0000000080)={&(0x7f0000000040), 0x8}, 0x1)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)=""/14, 0xe)
read$auto_vhci_fops_hci_vhci(r2, &(0x7f0000000280)=""/27, 0xfe52)
getrlimit$auto(0x3, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
pidfd_open$auto(0x1, 0x0)
socket(0x2, 0x1, 0x0)
dup2$auto(0xffffffffffffffff, 0xffffffffffffffff)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)

2m32.580997729s ago: executing program 2 (id=2970):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
r2 = openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x181, 0x0)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$auto_FIFREEZE(r3, 0xc0045878, 0x200)
close_range$auto(0x2, 0x8, 0x0)
fchownat$auto(r1, &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xee00, 0x0, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000680)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82902, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x189401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = socketcall$auto(0xa, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0)
ioctl$auto(0x3, 0x7ff, 0x10000000000402)
sendmmsg$auto(r2, &(0x7f00000002c0)={{0x0, 0x9, &(0x7f0000000080)={&(0x7f0000000180)="cb7978ababe605edf078e6f2726ae03e663c080c0d6c169eec931ca2ea579299bf44495b1fe078f2e9c5586ae69caa8135493b25428718974aeec4d6da187534e9", 0x1}, 0xfffffffffffffff7, 0x0, 0x5, 0x24b}, 0x800}, 0x8, 0xff)
ioctl$auto(0x3, 0xae41, r5)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000300), 0x44000, 0x0)
ioctl$auto_KVM_GET_MSRS(r7, 0x4400ae8f, &(0x7f0000000240)={0xffff, 0x0, [{0x2, 0x5, 0x400}, {0x9, 0x9, 0x20000}, {0x7, 0x400, 0x5}, {0x9, 0x82c, 0x9}, {0x345a2879, 0x4, 0x883d}, {0x3ff, 0xffffffff, 0x9}]})
ioctl$auto_KVM_CREATE_VM(r4, 0xae80, 0x0)

2m31.8580797s ago: executing program 32 (id=2921):
socket(0xa, 0x3, 0x3b)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x7fffffff, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
connect$auto(0x3, &(0x7f0000000000)=@phonet={0x23, 0x8c, 0x2, 0x3}, 0x58)
quotactl$auto(0x0, 0x0, 0x62a0, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
r0 = open(&(0x7f00000001c0)='./bus\x00', 0x48342, 0x1c0)
pwrite64$auto(r0, &(0x7f0000002300)='ethtgp\x96l\x00\x06\xbf\xedwZ\xa6\xb3\xadG\xe0a~\x85G\"\t\xb0\x02\xc9\x9f\xdd\xcf\x1e\xe7E\'J/~\xce\x9c\xd5G\xec\xe9 \xe6\n\xa0\b\x17\xf5\x1e\xfar5\x8d\x01;W\xa4\xedSh\xbf0\x8aU\x94,\xd6V\xf1\x8dS\xb3\x9b\x93\x96\xe1\xf3\xa7\x9cY5\xca,\x94\xf1\xb6\x9dA\x9a\x02\x04<Q\xfb_\xb7\x95(\n\x16T\xc5\xe9CCt\x1cL\xa5\xfe\xb5\xcc\xd8\x9f\x95\xdc\xaeaL\xefz\x80\x80M\x83\xd5\xcc', 0x80, 0x7fff)
socketpair$auto(0x2, 0x80, 0xfffffffc, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb4, 0xfffffffffffffffa, 0x8000)
ioctl$auto_SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20201, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80480, 0x0)
socket(0xa, 0x3, 0x3b)
recvmmsg$auto(0x3, 0x0, 0x3, 0x3, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(r1, 0x0, 0x1a7, 0x7010000)
r2 = epoll_create$auto(0x3ff)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x2003f0, 0x17)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000006a40), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_OFFLOAD(r3, &(0x7f00000071c0)={0x0, 0x0, &(0x7f0000007180)={&(0x7f0000003240)={0x14, r4, 0x1, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20004004}, 0x24000040)
ioctl$auto_BTRFS_IOC_QGROUP_LIMIT(r2, 0x8030942b, &(0x7f0000000040)={0x2, {0x20000000000008, 0x1415, 0x400, 0x2, 0x4}})

2m31.385949007s ago: executing program 2 (id=2972):
mmap$auto(0x0, 0x9, 0xdf, 0xeb0, 0xffffffffffffffff, 0xa000) (async)
mmap$auto(0x0, 0x9, 0xdf, 0xeb0, 0xffffffffffffffff, 0xa000)
process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0) (async)
process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
fchdir$auto(r0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, r0, 0x8000)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/kcore\x00', 0x28000, 0x0) (async)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/kcore\x00', 0x28000, 0x0)
pread64$auto(r1, 0x0, 0x800003, 0x270)
mlockall$auto(0x7)
msgctl$auto_IPC_RMID(0x1, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x2, 0x1, 0x106)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) (async)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
sched_setaffinity$auto(0x0, 0xcf4d, &(0x7f00000000c0)=0xffffffffffffffff) (async)
sched_setaffinity$auto(0x0, 0xcf4d, &(0x7f00000000c0)=0xffffffffffffffff)
shmget$auto(0x100000000, 0x3, 0x79e56dc9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x7)
accept4$auto(r4, 0x0, 0x0, 0x3) (async)
accept4$auto(r4, 0x0, 0x0, 0x3)
epoll_create$auto(0x3e) (async)
r5 = epoll_create$auto(0x3e)
epoll_ctl$auto(r5, 0x1, r2, 0x0)
connect$auto(0x3, 0x0, 0x54)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/irq/6/smp_affinity\x00', 0xe282, 0x0)
write$auto(r6, &(0x7f0000000580)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) (async)
write$auto(r6, &(0x7f0000000580)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) (async)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r7, 0x0, 0x10001)

2m30.797230536s ago: executing program 2 (id=2973):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000980)={0x14, r1, 0x1, 0x70bd31, 0x25dfdbfd}, 0x14}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
getcpu$auto(0xfffffffffffffffc, 0xffffffffffffffff, 0xfffffffffffffffd)
fanotify_init$auto(0x65, 0x2)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x20000080)
syz_clone3(&(0x7f0000000380)={0x2c022000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
sendmsg$auto_NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f0000000480)={0x274, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_KEY_DATA={0x15, 0x7, "f6ff64389b62872b26f97bc80d052696ab"}, @NL80211_ATTR_MESH_ID={0x22, 0x18, "3eed9b1465d94ee937d70efbcdd93f95cb35b0d61936ae811703d63b6d71"}, @NL80211_ATTR_SAR_SPEC={0x210, 0x12c, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS={0x12c, 0x2, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x1}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xa}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x2}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x1}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x48}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x6}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xd}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x10}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x4}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x401}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x200}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x1000}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x8}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x6}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xfffffffd}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xffff1e6d}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x452}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7f}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x4}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x2}]}, {0x4}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xbb02}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xb19}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x20}]}]}, @NL80211_SAR_ATTR_SPECS={0xe0, 0x2, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x497819ce}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x100}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xc59b}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x18}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x4}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7ff}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xc6000000}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x9}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x4}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x20000}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7fff}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xd}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x5}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7fff}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x100}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x5}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xfff}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x6}]}]}]}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x3}, @NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x4}, @NL80211_ATTR_TDLS_EXTERNAL_SETUP={0x4}]}, 0x274}, 0x1, 0x0, 0x0, 0x24040081}, 0x40094)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r2, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00\x00', 0x100000002, 0x100000001)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101c82, 0x0)
r3 = prctl$auto(0x42, 0x0, 0x0, 0x1, 0x0)
ioctl$auto_BLKROSET(r3, 0x125d, 0x0)
mmap$auto(0xfffffffffffffffc, 0x40009, 0xdf, 0x9b72, r2, 0xfffffffffffffc01)
madvise$auto(0x6, 0x1, 0x7fffffff)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)

2m29.842952231s ago: executing program 33 (id=2933):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
r3 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, 0x0, 0x8006, 0x0)
write$auto_proc_uid_map_operations_base(r3, 0x0, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}, 0x1, 0x3000000}, 0x4000)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/free_buffer\x00', 0x24001, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x400000008000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x151)
r4 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r4, 0x107, 0xf, 0x0, 0x6)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8}, 0x80000000003)

2m29.765023367s ago: executing program 2 (id=2975):
setresuid$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x15, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
recvmmsg$auto(r0, 0x0, 0x400, 0x200, &(0x7f0000000380)={0x3, 0x3})
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$auto_BLKALIGNOFF(0xffffffffffffffff, 0x127a, 0x0)
r1 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mixer\x00', 0x2, 0x0)
mmap$auto(0xffffffff, 0x8000000400000000, 0x4000000000de, 0xeb1, 0x401, 0x40000008000)
ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r1, 0x80045104, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
syz_clone(0x80010000, &(0x7f00000008c0)="65b2b2b17639fd35b174c4bd101de0bde7ec8f938a472dc95cbd1742b6f9ac69fb811acd", 0x24, 0x0, &(0x7f00000002c0), &(0x7f0000000b00)="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")
brk$auto(0x0)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x8203, 0x0)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x3400000, 0x2, 0x0, 0x4, 0x100000000)
close_range$auto(0x0, 0x5, 0x0)

2m28.814577335s ago: executing program 2 (id=2976):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r0)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f00000050c0)={0x0, 0x0, &(0x7f0000005080)={&(0x7f0000002a80)={0x14, r1, 0x1, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008050)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r1, 0x1, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x3e, 0x0, 0xeda47ee5ad473e74}, 0x20000000)

2m24.466978034s ago: executing program 34 (id=2957):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
r3 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, 0x0, 0x8006, 0x0)
write$auto_proc_uid_map_operations_base(r3, 0x0, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}, 0x3e}, 0x4000)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/free_buffer\x00', 0x24001, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x400000008000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x151)
r4 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r4, 0x107, 0xf, 0x0, 0x6)

2m15.742407373s ago: executing program 6 (id=3002):
mknod$auto(0x0, 0x4007, 0xd)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$auto_SO_REUSEADDR(r0, 0x7, 0x2, &(0x7f0000000080)='&[{-!\x00', 0xd91)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r2, 0x0, 0x20)
writev$auto(r1, &(0x7f0000000200)={0x0, 0xb}, 0x200000003)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x80080, 0x0)

2m14.99105491s ago: executing program 6 (id=3004):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010b0bbd7000fcdbff7f05"], 0x14}, 0x1, 0x0, 0x0, 0x4008010}, 0x4040084)

2m14.859996928s ago: executing program 6 (id=3005):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC1\x00', 0x20480, 0x0)
poll$auto(&(0x7f0000000080)={r0, 0x0, 0x6}, 0x81, 0x7)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cpu.max\x00', 0x20b02, 0x0)
sendfile$auto(r1, r1, &(0x7f0000000000)=0x3, 0xad6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
setsockopt$auto(0x3, 0x1, 0x8, 0x0, 0x89)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r2)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="1ea23b18", @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000ff0000030004020000060007040080000300000000", @ANYRES32=0x0, @ANYRES16=r3], 0x68}, 0x1, 0x0, 0x0, 0x24040880}, 0x24004850)
socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/platform/dummy_hcd.4/usb5/5-0:1.0/usb5-port1/quirks\x00', 0xe0802, 0x0)
read$auto(r5, 0x0, 0xa56e)
ioctl$auto_IOCTL_VMCI_VERSION2(r4, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, 0x6)
ioctl$auto_IOCTL_VMCI_CTX_REMOVE_NOTIFICATION(r4, 0x7b0, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
write$auto(0x3, 0x0, 0xfdef)
shutdown$auto(0x200000003, 0x2)
write$auto(0x3, 0x0, 0xfdef)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), r6)
sendmsg$auto_NL80211_CMD_SET_MCAST_RATE(r7, &(0x7f0000000100)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000480)={0xbc, r8, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0xb}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_WIPHY_NAME={0x14, 0x2, 'SMC_GEN_NETLINK\x00'}, @NL80211_ATTR_SAE_PASSWORD={0x5f, 0x115, "23625b9870c2e95359804c0f89449b32e2908e0a4fbff00900000000000000c758635befae909acf9a772102427da7248d093fce5bf922ad016d8c6bcc20e1e1ea07b4adb6b3db54ad5f7f4af93772ad58b8d875d8eda4dd9a5896"}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x5}, @NL80211_ATTR_BSS_DUMP_INCLUDE_USE_DATA={0x4}, @NL80211_ATTR_BSS_BASIC_RATES={0x8, 0x24, "e76cc6bf"}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x401}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x8}]}, 0xbc}, 0x1, 0x0, 0x0, 0x4004008}, 0x4)

2m14.164545862s ago: executing program 6 (id=3008):
setresuid$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x15, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
recvmmsg$auto(r0, 0x0, 0x400, 0x200, &(0x7f0000000380)={0x3, 0x3})
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
ioctl$auto_BLKALIGNOFF(r1, 0x127a, 0x0)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mixer\x00', 0x2, 0x0)
mmap$auto(0xffffffff, 0x8000000400000000, 0x4000000000de, 0xeb1, 0x401, 0x40000008000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
syz_clone(0x80010000, &(0x7f00000008c0)="65b2b2b17639fd35b174c4bd101de0bde7ec8f938a472dc95cbd1742b6f9ac69fb811acd", 0x24, 0x0, &(0x7f00000002c0), &(0x7f0000000b00)="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")
brk$auto(0x0)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x3400000, 0x2, 0x0, 0x4, 0x100000000)
landlock_restrict_self$auto(0xffffffffffffffff, 0x3)
close_range$auto(0x0, 0x5, 0x0)

2m13.593894002s ago: executing program 35 (id=2976):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r0)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f00000050c0)={0x0, 0x0, &(0x7f0000005080)={&(0x7f0000002a80)={0x14, r1, 0x1, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008050)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r1, 0x1, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x3e, 0x0, 0xeda47ee5ad473e74}, 0x20000000)

2m13.158783947s ago: executing program 6 (id=3013):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x20040884)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
r0 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
recvmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x10000000, 0xc800009, 0x45bd, 0x9b7e, 0x2, 0x80000000803)

2m12.789459863s ago: executing program 6 (id=3016):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
r3 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, 0x0, 0x8006, 0x0)
write$auto_proc_uid_map_operations_base(r3, 0x0, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}, 0x1, 0x3e000000}, 0x4000)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/free_buffer\x00', 0x24001, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x400000008000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x151)
r4 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r4, 0x107, 0xf, 0x0, 0x6)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8}, 0x80000000003)

1m57.650825184s ago: executing program 36 (id=3016):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
r3 = openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, 0x0, 0x8006, 0x0)
write$auto_proc_uid_map_operations_base(r3, 0x0, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x1c}, 0x1, 0x3e000000}, 0x4000)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/free_buffer\x00', 0x24001, 0x0)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x400000008000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x151)
r4 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r4, 0x107, 0xf, 0x0, 0x6)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8}, 0x80000000003)

22.788427823s ago: executing program 7 (id=3487):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0xc}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x6}, @OVS_DP_ATTR_UPCALL_PID={0x8}, @OVS_DP_ATTR_NAME={0x7, 0x1, '.^\x00'}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8, 0x7, 0x4}]}, 0x3c}, 0x339, 0x0, 0x0, 0x10}, 0x2000000)

22.564075447s ago: executing program 7 (id=3489):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0xd, 0x0)
r0 = fsopen$auto(0x0, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0xffffffffffffffff, 0x80204518, 0xffffffffffffffff)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)

22.272288961s ago: executing program 7 (id=3492):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0x149182, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x34, r2, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x4}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x24000802)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/workqueue/parameters/default_affinity_scope\x00', 0x1b9242, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r4)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000240)={0x4c, r5, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_RADIO_NAME={0x2d, 0x11, '/P\x13jE\f\xf9r\xf5\xa3\xd2\x84y\xf9*\x9b\"\x1c\xa4l-\x19\xfd\xa4\xf4y\x02\xc2\x96\xfa\x84L\x12\xcd\x83\xf7\x12\xd3\xc4\x1e]'}, @HWSIM_ATTR_PMSR_SUPPORT={0x8, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_TYPE_CAPA={0x4}]}]}, 0x4c}, 0x1, 0x0, 0x3e7, 0x4008040}, 0x40800)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001f00), r6)
sendmsg$auto_NBD_CMD_STATUS(r6, &(0x7f00000023c0)={0x0, 0x0, &(0x7f0000002380)={&(0x7f0000002000)={0x1c, r7, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x8001}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40004}, 0x4008050)
sendfile$auto(r3, r3, 0x0, 0x5)

21.954356555s ago: executing program 7 (id=3494):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x315, 0x1, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x7ff, 0x3, 0x2, 0x9, 0xfffffffe, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x1]}, 0x1fe, 0xd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x700)

21.805795998s ago: executing program 7 (id=3496):
ioctl$auto(0x3, 0x541b, 0x74)

21.558313968s ago: executing program 7 (id=3497):
mmap$auto(0xfd, 0x40000000004, 0x4000000000df, 0x40ebf, 0xffffffffffffffff, 0x0)
socket(0xa, 0x3, 0x3b)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x1000000000000f55, 0x7, 0x4000000000de, 0x40ef9, r0, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
setsockopt$auto(0x3, 0x0, 0x41, 0x0, 0xf)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x5, 0x801, 0x0)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, 0x0, 0x9)
listen$auto(0x3, 0xffffff39)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x5, 0x5, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1c, &(0x7f0000000000), 0x1)
madvise$auto(0x0, 0x2003f2, 0x15)

6.311407811s ago: executing program 37 (id=3497):
mmap$auto(0xfd, 0x40000000004, 0x4000000000df, 0x40ebf, 0xffffffffffffffff, 0x0)
socket(0xa, 0x3, 0x3b)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x1000000000000f55, 0x7, 0x4000000000de, 0x40ef9, r0, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
setsockopt$auto(0x3, 0x0, 0x41, 0x0, 0xf)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x5, 0x801, 0x0)
unshare$auto(0x40000080)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, 0x0, 0x9)
listen$auto(0x3, 0xffffff39)
mmap$auto(0x0, 0x202000c, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x5, 0x5, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1c, &(0x7f0000000000), 0x1)
madvise$auto(0x0, 0x2003f2, 0x15)

3.671506321s ago: executing program 8 (id=3567):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
futex$auto(&(0x7f0000000600)=0x4, 0xb, 0x4, 0x0, &(0x7f0000000680)=0xfff, 0xffffffff)
open(&(0x7f0000000100)='./cgroup\x00', 0x42400, 0x482)
getdents$auto(0x0, 0x0, 0x18)
getdents64$auto(0x0, 0x0, 0x41)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/7/wakeup\x00', 0xa0440, 0x0)
read$auto(0x3, 0x0, 0x8)
r0 = socket(0xa, 0x2, 0x73)
getsockopt$auto_SO_TIMESTAMPNS_NEW(r0, 0x0, 0x40, 0x0, &(0x7f0000000240)=0x54)
socketcall$auto(0x7ff, &(0x7f0000000000)=0x3ff)

3.651957137s ago: executing program 4 (id=3568):
setresuid$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x15, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
recvmmsg$auto(r0, 0x0, 0x400, 0x200, &(0x7f0000000380)={0x3, 0x3})
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
ioctl$auto_BLKALIGNOFF(r1, 0x127a, 0x0)
r2 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap$auto(0xffffffff, 0x8000000400000000, 0x4000000000de, 0xeb1, 0x401, 0x40000008000)
ioctl$auto_SNDCTL_SEQ_GETOUTCOUNT(r2, 0x80045104, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)
syz_clone(0x80010000, &(0x7f00000008c0)="65b2b2b17639fd35b174c4bd101de0bde7ec8f938a472dc95cbd1742b6f9ac69fb811acd", 0x24, 0x0, &(0x7f00000002c0), &(0x7f0000000b00)="2918758169251555183442853a27ba37074b62633f338d1a7b74c6ff4c91676d9a5e0078ab1db0f30dc404f23fd5820a80ed88704e71ac2c5f3169cb36f22141f45b35a2e04fe71b8618ec46671bf5d28d8d26ce4970c811a8b669c7011c3e9ff8b2109640c07450f5b7b624fde03bb975adc229120a3b8750efcf8a4846f0a7ac6a36f60f348190044854f04b55f429540f9fc390d24df293299b9c4395aed65212fdd9a1597ffcfaf9b3008f77bcc5a393486eb62527560aa974af592514e14d7d34584ee8665cdecbd991fe575d59a4f9c6583a485022f9791b0532d16ecdffdabc91e082640c04c5382fe1aae6484683b91366aafa6e876fbbc7042060bfa86af873f56443d67db514c1cdb4d8b14f96b22dd4683ce4877dc06173474376e79a7b81c20901e86f322be0d272e66e16c14c948266dbaa0e9cba48631863c7aa8e8f797217b42a3d9c019f3a919db8f140bab26c00b5d05032aa38b396305fbfeaa1f6368e7d8c542f4f46ed117c5398e7d5c4b1ac78bfe39181ba7e8114cdf7d9fd3c2f253fa6fd7dc96061eb3d92b8d560c2f203f2e913ef3cdc817974d742e6f19b3f6e0af687d28d8c59c85d12ebe29ed46e1dcc8c02e9fa76d7ab2e9627412426522d9d8272a063ee286dfcb0cae11fca488b386c")
brk$auto(0x0)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x8203, 0x0)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x3400000, 0x2, 0x0, 0x4, 0x100000000)
close_range$auto(0x0, 0x5, 0x0)

3.097739348s ago: executing program 4 (id=3570):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/watchdog\x00', 0x2002, 0x0)
sendfile$auto(r0, r0, 0x0, 0x80000000003)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
io_uring_setup$auto(0x7, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
mmap$auto(0x4, 0x2, 0x80000000df, 0x14, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0)
capget$auto(0x0, 0xfffffffffffffffe)
r1 = epoll_create$auto(0x4)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video31\x00', 0x5aa0c1, 0x0)
epoll_ctl$auto(r1, 0x1, r2, 0x0)
r3 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0xe8)
ppoll$auto(&(0x7f0000000240)={0xffffffffffffffff, 0x3, 0x3}, 0x3, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(r3, &(0x7f0000000180)={{0x0, 0x40000000, &(0x7f0000000100)={0x0, 0x4}, 0x1000000000028, 0x0, 0x1, 0x3e0}, 0x800}, 0x4, 0x4008)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
fallocate$auto(0xffffffffffffffff, 0x40, 0x9, 0xffffffffffffffff)
socket(0xf, 0x5, 0x4)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, 0x0, 0x509a40, 0x0)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000600)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf5\x00/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a(\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8L\x84j\x8c\xec\xdf\x1a\xbd\xc5\x94\xb9\xb7\xd5\xa4\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12\x16\xb8*\xa9\xc9\xe81\x9d\x06\xbbC\x17\xbb\xe6|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x874\xab?\xc8\x82\xe5\x8f\xb7\x91\xc2\xbe\xb2\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5')

2.661934712s ago: executing program 8 (id=3572):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x15, 0x0)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
recvmmsg$auto(r0, 0x0, 0x400, 0x200, &(0x7f0000000380)={0x3, 0x3})
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
ioctl$auto_BLKALIGNOFF(r1, 0x127a, 0x0)
openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mixer\x00', 0x2, 0x0)
mmap$auto(0xffffffff, 0x8000000400000000, 0x4000000000de, 0xeb1, 0x401, 0x40000008000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
syz_clone(0x80010000, &(0x7f00000008c0)="65b2b2b17639fd35b174c4bd101de0bde7ec8f938a472dc95cbd1742b6f9ac69fb811acd", 0x24, 0x0, &(0x7f00000002c0), &(0x7f0000000b00)="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")
brk$auto(0x0)
prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x3400000, 0x2, 0x0, 0x4, 0x100000000)
landlock_restrict_self$auto(0xffffffffffffffff, 0x3)
close_range$auto(0x0, 0x5, 0x0)

2.395720712s ago: executing program 5 (id=3573):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x315, 0x1, 0x401bf, 0x7352, 0x3c, 0x65f, 0x1ffde, 0x7ff, 0x3, 0x2, 0x9, 0xfffffffe, 0x4000006, 0x4, 0xb6, 0x80000000009, 0x6, 0x10003, 0xb, 0x4, 0x0, 0x7, 0x2000, 0x203, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x1]}, 0x1fe, 0xd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xa00)

2.151424861s ago: executing program 5 (id=3574):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
ioctl$auto_EVIOCGKEYCODE(r0, 0x80084504, &(0x7f0000000240)=[0x7, 0xfffffffe])
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00', 0xc0a00, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000e80)=""/215, 0xd7)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x37, 0x1, 0x1, 0x948b, 0x6, 0x7ff, 0x5, 0x3, 0x6, 0x80000023, 0x2, 0x6d40, 0xc, 0x2, 0x6]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/net/dummy0/mtu\x00', 0x400240, 0x0)
select$auto(0x1, &(0x7f0000000040)={[0x2, 0x3ff, 0xa4, 0x639, 0x2, 0xf0, 0x97c1, 0x100, 0x8, 0xffff, 0x7fffffff, 0xfffffffffffffff1, 0x200, 0x7bbb31bb, 0x99, 0x40]}, &(0x7f00000000c0)={[0x2, 0x4, 0x3ae3, 0x5, 0x90, 0x0, 0xfffffffffffffffd, 0x7, 0x4, 0x8, 0x1, 0x7fff, 0x101, 0x3, 0x3ff, 0x3]}, &(0x7f0000000140)={[0x3, 0xc, 0x7, 0xca, 0xf6, 0x3, 0x9, 0x80000000, 0xd6ae, 0x1, 0x7, 0x95, 0x9, 0x0, 0x8, 0x4]}, &(0x7f00000001c0)={0x9, 0x3})

2.139739912s ago: executing program 4 (id=3575):
sysfs$auto(0x2, 0xd, 0x0)
r0 = fsopen$auto(0x0, 0x1)
ioctl$auto(0xffffffffffffffff, 0x80204518, 0xffffffffffffffff)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)

1.960337542s ago: executing program 4 (id=3576):
io_uring_setup$auto(0x10000, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mq_open$auto(0x0, 0x1, 0x7d, &(0x7f0000000040)={0xfffffffffffffffd, 0x6, 0xffffffffffffffc0, 0x800000000000006})
socket(0x2, 0x80805, 0x0)
r0 = eventfd$auto(0x9)
writev$auto(0x4, &(0x7f0000000080)={&(0x7f0000000040), 0x8}, 0x1)
r1 = openat$auto_objects_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x80802, 0x0)
fcntl$auto_F_SETOWN_EX(r1, 0xf, 0x8000000000000000)
read$auto_vhci_fops_hci_vhci(r0, &(0x7f0000000280)=""/27, 0xfe52)
r2 = socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000)
socket(0x28, 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = socket(0x2, 0x2, 0x1)
close_range$auto(r3, 0xffffffffffffffff, 0x2)
bpf$auto(0x0, &(0x7f0000000000)=@bpf_attr_4={0x1b, r3, 0x10000}, 0x10)
r4 = epoll_create$auto(0x3e)
epoll_ctl$auto(r4, 0x1, 0x8000000000000000, 0x0)
sendto$auto(r2, 0x0, 0x402, 0xacf8, &(0x7f0000000040)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
r5 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r5, 0x6, 0x4, &(0x7f0000000080)='*\x00', 0xe6)
pidfd_open$auto(0x1, 0x0)
socket(0x2, 0x1, 0x0)
r6 = openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/setgroups\x00', 0x4d0780, 0x0)
dup2$auto(r6, 0xffffffffffffffff)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)

1.735124239s ago: executing program 4 (id=3577):
mmap$auto(0x8, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/stat/synproxy\x00', 0xc0a00, 0x0)
pread64$auto(r0, &(0x7f0000000040)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\x8d\xa8\xcfM9\\\xd6\xcfUq\x05#\xed\x1c\xd1G\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xbasG\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1', 0x3ff, 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop1\x00', 0x200, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x2000000008000)
io_uring_setup$auto(0x20, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/netfs/cookies\x00', 0xd00, 0x0)
r1 = socketpair$auto(0x10000005, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x18, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$auto(0x3, 0xae41, 0xffffffffffffffff)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0x4048aecb, 0x0)
mmap$auto_def_blk_fops_fs(&(0x7f0000fec000/0x14000)=nil, 0x14000, 0x2000000, 0x4010, r1, 0x8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_macsec(&(0x7f00000001c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ipvlan1\x00'})
sendmsg$auto_MACSEC_CMD_DEL_RXSA(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x80)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r3 = clone$auto(0x6db, 0x10, 0x0, 0x0, 0x3)
migrate_pages$auto(r3, 0x4, 0x0, &(0x7f0000000180)=0x2)

1.709195409s ago: executing program 8 (id=3578):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x403, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0)
read$auto(r1, 0x0, 0x1ff)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x3}, 0x3)
open(&(0x7f0000000080)='.\x00', 0x518282, 0x78e22799f4a46e8e)
close_range$auto(0x2, 0x8, 0x8)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x6ab82, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000080), 0xc6842, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffffffffffffff)
r2 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_timedsend$auto(r2, 0x0, 0x40000000000001, 0x9, 0x0)
mmap$auto_fb_fops_fb_chrdev(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x8, 0x20010, r2, 0x3)
mremap$auto(0x0, 0x8000004001, 0x3fd8, 0x0, 0x740)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x4, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x85)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0x40a0ae49, 0x38)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)

1.182004607s ago: executing program 4 (id=3579):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r1 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000980)={0x14, r1, 0x1, 0x70bd31, 0x25dfdbfd}, 0x14}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
getcpu$auto(0xfffffffffffffffc, 0xffffffffffffffff, 0xfffffffffffffffd)
fanotify_init$auto(0x65, 0x2)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
unshare$auto(0x20000080)
syz_clone3(&(0x7f0000000380)={0x2c022000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
sendmsg$auto_NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f0000000480)={0x274, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_KEY_DATA={0x15, 0x7, "f6ff64389b62872b26f97bc80d052696ab"}, @NL80211_ATTR_MESH_ID={0x22, 0x18, "3eed9b1465d94ee937d70efbcdd93f95cb35b0d61936ae811703d63b6d71"}, @NL80211_ATTR_SAR_SPEC={0x210, 0x12c, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS={0x12c, 0x2, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x1}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xa}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x2}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x1}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x48}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x6}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xd}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x10}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x4}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x401}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x200}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x1000}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x8}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x6}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xfffffffd}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xffff1e6d}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x452}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7f}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x4}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x2}]}, {0x4}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xbb02}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xb19}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x20}]}]}, @NL80211_SAR_ATTR_SPECS={0xe0, 0x2, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x497819ce}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x9}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x100}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xc59b}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x18}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x4}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7ff}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xc6000000}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x9}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x4}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x20000}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7fff}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0xd}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x5}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x7}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x7fff}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x100}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x5}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0x8}, @NL80211_SAR_ATTR_SPECS_POWER={0x8, 0x1, 0xfff}, @NL80211_SAR_ATTR_SPECS_RANGE_INDEX={0x8, 0x2, 0x6}]}]}]}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x3}, @NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x4}, @NL80211_ATTR_TDLS_EXTERNAL_SETUP={0x4}]}, 0x274}, 0x1, 0x0, 0x0, 0x24040081}, 0x40094)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r2, &(0x7f0000000240)='\x03W\x96l\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf5', 0x100000002, 0x100000001)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101c82, 0x0)
r3 = prctl$auto(0x42, 0x0, 0x0, 0x1, 0x0)
ioctl$auto_BLKROSET(r3, 0x125d, 0x0)
mmap$auto(0xfffffffffffffffc, 0x40009, 0xdf, 0x9b72, r2, 0xfffffffffffffc01)
madvise$auto(0x6, 0x1, 0x7fffffff)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0)

1.127615592s ago: executing program 5 (id=3580):
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r0 = socket(0x18, 0x5, 0x1)
connect$auto(r0, &(0x7f0000000000)=@l2tp={0x2, 0x0, @private=0xa010102, 0x3}, 0x26)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/admmidi2\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = openat$auto_proc_environ_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/environ\x00', 0x2000, 0x0)
read$auto_proc_environ_operations_base(r3, &(0x7f0000000240)=""/80, 0x50)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
process_madvise$auto_MADV_SEQUENTIAL(r2, &(0x7f0000000040)={&(0x7f0000000480)="d4f6f4c9fc9b70ea00de06bb9f8e8cab28a06353178c74203ac5eea55b124c75619bea76b3d166c2ba8666c3a803f1ba572a22bca327fccdc64fab0794a0087873a161a1541256571b0cfc19c126729464c0e5ec31cd1bba16f649461728b47355a869ca967cd7997f09b661b822f1c8aa45d90966d9615b19f2949258df54b2f7d8688a7373b4354be4b183b3b9f31dfae70bdfcd8f1a5ba22dfe692193715a3067f88e8b5821d81e6242ebcde2be9c9222bc6731de505eb275ca26927283338acc7afe48326e1752d8da46d97fe4bb283fc49c7f3475be79347a96dde4e3cded9ddcaf1780a0c82ff9", 0x7}, 0x400, 0x2, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x3, 0x3, 0x14, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x6, 0xffffffff, 0xdc, r1, 0x28000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0x0, 0xffffffffffff0005, 0x1b)
madvise$auto(0x0, 0x2003f2, 0x15)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x3000c, 0x4000000000df, 0x4000eb1, 0x401, 0x10000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/tracing/saved_tgids\x00', 0x101002, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x201, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
open(&(0x7f0000001bc0)='./file0\x00', 0x4142, 0x1)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty57\x00', 0x40741, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
ioctl$auto(0x3, 0x541b, 0x74)

826.67845ms ago: executing program 8 (id=3581):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000940)={'batadv0\x00', <r3=>0x0})
sendmsg$auto_BATADV_CMD_TP_METER(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x30, r1, 0x77bed28568c43d3b, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_ORIG_ADDRESS={0xa}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xffffffff}]}, 0x30}}, 0x80)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto_SO_SNDTIMEO_NEW(r4, 0x1, 0x43, &(0x7f00000000c0)='gtp\x00', &(0x7f0000000180)=0x7)
mknod$auto(0x0, 0x4007, 0xd)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r6, 0x0, 0x20)
writev$auto(r5, &(0x7f0000000000)={0x0, 0xb}, 0x8)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x80080, 0x0)

421.907424ms ago: executing program 8 (id=3582):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x20443, 0x0)
write$auto_seq_oss_f_ops_seq_oss(0xffffffffffffffff, &(0x7f0000000040)="5f74ab2fc43781e047140a5cbc3ac5229b90633d9cddda9efb1f2c3d5d1e63f3fb5acf079b9336319d009cb514679a42eaca52b81c166d19625d173c26ece6542f2fb29712f4fb9072fc432b4cf3e6f5a7f3c9f91ee88ba5fa11d48fd3658e8f44f8423b4cd02bbec912ed34f9f4b19b03d4c62b24ede44c0c76c34edf7bde061903c2ee4c64110ac668239fa53ba42933ae74c3d173", 0x96)
r1 = ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000080))
ioctl$auto_TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000140)={0x7, &(0x7f0000000100)={0x7, 0x3, 0x3, @inferred=<r2=>r1}})
r3 = openat$auto_proc_timens_offsets_operations_base(0xffffffffffffff9c, &(0x7f0000000180), 0x24100, 0x0)
ioctl$auto(r3, 0x0, r2)

396.529507ms ago: executing program 5 (id=3583):
sysfs$auto(0x2, 0xd, 0x0)
r0 = fsopen$auto(0x0, 0x1)
ioctl$auto(0xffffffffffffffff, 0x80204518, 0xffffffffffffffff)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)

170.936805ms ago: executing program 5 (id=3584):
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0xfeffffffffff0f00)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)

154.876549ms ago: executing program 8 (id=3585):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/block/zram0/mm_stat\x00', 0x8900, 0x0)
mmap$auto(0x0, 0xa8, 0x7, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
unshare$auto(0x40000080)
io_uring_setup$auto(0x6, 0x0)
socket(0x2b, 0x4, 0x1)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r2)
sendmsg$auto_WG_CMD_SET_DEVICE(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x1c, r3, 0x1, 0x60bd29, 0x25dfdbfb, {}, [@WGDEVICE_A_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000811}, 0x810)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0)
open_tree$auto(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x8001)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
sendmsg$auto_NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, 0x0, 0x10)
openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
select$auto(0xa, 0x0, &(0x7f0000000100)={[0x9, 0x5, 0x5, 0xfffffffffffffff6, 0x7, 0xfffffffffffe0002, 0xdffffffffffffff8, 0x2, 0x0, 0x10000005e58296f, 0x800000000020, 0x5, 0x3, 0x200, 0x1, 0x7]}, 0x0, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa001, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x9}, 0x3)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/tasks\x00', 0x63102, 0x0)
sendfile$auto(r5, 0x3, 0x0, 0x100000000000009)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r6 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x88282, 0x0)
write$auto(r6, 0x0, 0xfdef)

0s ago: executing program 5 (id=3586):
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x80008000)
process_vm_readv$auto(0x0, 0x0, 0x0, 0x0, 0x6, 0x4000)
unshare$auto(0x40000080)
r0 = pidfd_open$auto(0x1, 0x0)
setns(r0, 0x60020000)
r1 = socket(0x29, 0x2, 0x0)
getsockopt$auto(r1, 0x119, 0x6, 0x0, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
pivot_root$auto(0x0, &(0x7f0000000340)='.\x00z\x86E\xb8\xf1\xcbx\xf6cu<\x0e\xd8\xa5\xcd~\xaf\x80\xd3\xf4\xe5\x02\xf9q p\xe2\x8b\xc0\xedf\xba\x16*\x8ar\xa0\'$A\xe5\xc5\x89\xcb\xd5\xac\x98,\xd4Pycv\xdd\xa1\x84\xfb\xe9\r\x82\x15P*IM\xf7.\xf3v\x85Q\xbc:\xef\xd5\x1a\x9e\xbck\x1d\x114^\x1b\x02\xa1\xb0(\xa2\xdb\xbc\x1a\t\x94\x14\xbb\xc8\xfa\x18I\xff\x7f\xab\xf0\x8f\xd3Gr\xfb5\xf1,\x11\x052u&\xde\x9aF\n\xf0\x06\xfc\x1b\x17\x82%\x14\xb3\x19\x13\f\xbe_\xfdi\x17\xfcv\x82*\xbf<\xfa5\xfd\x8b\x1d\x99\a`\xde\xf4\x8a,\tP) \xf4\xdc\r\x17x\xc6\x18Y\xeaaUY\xeb\xd2\x81\xbare\x00\x8e\xfdA\x93\xb9\xac\xf1\x0eq\x85\xd9\x90\x8a%K\x95\x8fm\v\x98y\x9bc-\xa7;\x117\x19)\x04\xb4\nJ\x0e\x1b\x97e\xee\xdb\xc3\xca\xfe\xa7y\x12\xff\xce')

kernel console output (not intermixed with test programs):

reated IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1037.148568][T10439] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1037.235080][T10439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1037.265043][T10439] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1037.529566][T19915] netlink: 28 bytes leftover after parsing attributes in process `syz.8.3080'.
[ 1037.538989][T19915] ipvlan0: entered promiscuous mode
[ 1037.552061][T19915] ipvlan0: entered allmulticast mode
[ 1037.593846][T19915] veth0_vlan: entered allmulticast mode
[ 1038.076488][T19932] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3116'.
[ 1038.077226][T19934] FAULT_INJECTION: forcing a failure.
[ 1038.077226][T19934] name failslab, interval 1, probability 0, space 0, times 0
[ 1038.077308][T19934] CPU: 1 UID: 0 PID: 19934 Comm: syz.8.3118 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1038.077351][T19934] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1038.077362][T19934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1038.077379][T19934] Call Trace:
[ 1038.077390][T19934]  <TASK>
[ 1038.077402][T19934]  dump_stack_lvl+0x100/0x190
[ 1038.077449][T19934]  should_fail_ex.cold+0x5/0xa
[ 1038.077485][T19934]  should_failslab+0xc2/0x120
[ 1038.077516][T19934]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 1038.077558][T19934]  ? shmem_alloc_inode+0x25/0x50
[ 1038.077595][T19934]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1038.077630][T19934]  shmem_alloc_inode+0x25/0x50
[ 1038.077660][T19934]  alloc_inode+0x68/0x250
[ 1038.077697][T19934]  new_inode+0x22/0x1c0
[ 1038.077737][T19934]  shmem_get_inode+0x212/0x1040
[ 1038.077788][T19934]  ? __pfx_shmem_get_inode+0x10/0x10
[ 1038.077825][T19934]  ? d_add+0x443/0x850
[ 1038.077864][T19934]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1038.077913][T19934]  shmem_mknod+0x20c/0x470
[ 1038.077952][T19934]  ? __pfx_shmem_mknod+0x10/0x10
[ 1038.077986][T19934]  ? bpf_lsm_inode_create+0x9/0x10
[ 1038.078032][T19934]  ? __pfx_shmem_create+0x10/0x10
[ 1038.078068][T19934]  lookup_open.isra.0+0xc47/0x11b0
[ 1038.078117][T19934]  ? __pfx_lookup_open.isra.0+0x10/0x10
[ 1038.078165][T19934]  ? __pfx___might_resched+0x10/0x10
[ 1038.078204][T19934]  ? mnt_get_write_access+0x52/0x2f0
[ 1038.078248][T19934]  ? __pfx_down_write+0x10/0x10
[ 1038.078290][T19934]  ? mnt_get_write_access+0x1e9/0x2f0
[ 1038.078336][T19934]  path_openat+0x2291/0x31a0
[ 1038.078379][T19934]  ? __pfx_path_openat+0x10/0x10
[ 1038.078423][T19934]  do_file_open+0x20e/0x430
[ 1038.078457][T19934]  ? __pfx_do_file_open+0x10/0x10
[ 1038.078514][T19934]  ? alloc_fd+0x476/0x790
[ 1038.078547][T19934]  ? do_getname+0x191/0x390
[ 1038.078584][T19934]  do_sys_openat2+0x10d/0x1e0
[ 1038.078621][T19934]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1038.078660][T19934]  ? __fget_files+0x21f/0x3d0
[ 1038.078696][T19934]  __x64_sys_openat+0x12d/0x210
[ 1038.078733][T19934]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1038.078794][T19934]  do_syscall_64+0x106/0xf80
[ 1038.078834][T19934]  ? clear_bhb_loop+0x40/0x90
[ 1038.078871][T19934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1038.078901][T19934] RIP: 0033:0x7f4d3079c799
[ 1038.078924][T19934] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1038.078951][T19934] RSP: 002b:00007f4d2e9f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1038.078980][T19934] RAX: ffffffffffffffda RBX: 00007f4d30a15fa0 RCX: 00007f4d3079c799
[ 1038.078999][T19934] RDX: 00000000000861c2 RSI: 0000000000000000 RDI: ffffffffffffff9c
[ 1038.079018][T19934] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1038.079036][T19934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1038.079053][T19934] R13: 00007f4d30a16038 R14: 00007f4d30a15fa0 R15: 00007fffbd97ee38
[ 1038.079093][T19934]  </TASK>
[ 1038.102015][T19934] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1039.564423][T19954] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1040.237281][T19968] kvm_intel: kvm [19965]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xfffffffffffffffe
[ 1040.750298][T19971] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3128'.
[ 1041.208377][T19980] kvm: vcpu 4: requested lapic timer restore with starting count register 0x390=4294967104 (137438947328 ns) > initial count (6624 ns). Using initial count to start timer.
[ 1045.130105][T20011] zswap: compressor  not available
[ 1046.311802][T20051] futex_wake_op: syz.5.3144 tries to shift op by -2048; fix this program
[ 1046.322905][T20051] futex_wake_op: syz.5.3144 tries to shift op by -2048; fix this program
[ 1046.358438][T20051] 0x000000000001-0x000000020000 : ""
[ 1046.411246][T20051] ftl_cs: FTL header corrupt!
[ 1047.409140][T20067] smc: net device dummy0 applied user defined pnetid DUMMY0
[ 1047.687347][T20076] futex_wake_op: syz.4.3150 tries to shift op by -2048; fix this program
[ 1047.719861][T20076] futex_wake_op: syz.4.3150 tries to shift op by -2048; fix this program
[ 1048.638891][T20088] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input60
[ 1049.866706][T20099] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input61
[ 1051.742647][T20109] debugfs: '!PjE�r��҄y�*�"�l-���y–��L̓���]' already exists in 'ieee80211'
[ 1053.062985][T20132] can: request_module (can-proto-4) failed.
[ 1053.429636][T20144] random: crng reseeded on system resumption
[ 1053.938862][T20155] vivid-007: =================  START STATUS  =================
[ 1053.976354][T20155] vivid-007: Generate PTS: true
[ 1053.981265][T20155] vivid-007: Generate SCR: true
[ 1054.063012][T20155] tpg source WxH: 320x240 (Y'CbCr)
[ 1054.108558][T20155] tpg field: 1
[ 1054.111935][T20155] tpg crop: (0,0)/320x240
[ 1054.133812][T20155] tpg compose: (0,0)/320x240
[ 1054.140758][T20155] tpg colorspace: 8
[ 1054.168891][T20155] tpg transfer function: 0/0
[ 1054.214037][T20155] tpg Y'CbCr encoding: 0/0
[ 1054.218513][T20155] tpg quantization: 0/0
[ 1054.222677][T20155] tpg RGB range: 0/2
[ 1054.296484][T20155] vivid-007: ==================  END STATUS  ==================
[ 1054.458683][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.465686][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.719208][T20174] netlink: 326 bytes leftover after parsing attributes in process `syz.8.3178'.
[ 1056.242748][T20185] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3181'.
[ 1056.303845][T20190] FAULT_INJECTION: forcing a failure.
[ 1056.303845][T20190] name failslab, interval 1, probability 0, space 0, times 0
[ 1056.361028][T20190] CPU: 0 UID: 0 PID: 20190 Comm: syz.5.3182 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1056.361083][T20190] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1056.361096][T20190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1056.361114][T20190] Call Trace:
[ 1056.361126][T20190]  <TASK>
[ 1056.361140][T20190]  dump_stack_lvl+0x100/0x190
[ 1056.361192][T20190]  should_fail_ex.cold+0x5/0xa
[ 1056.361229][T20190]  ? security_inode_init_security+0x113/0x370
[ 1056.361274][T20190]  should_failslab+0xc2/0x120
[ 1056.361309][T20190]  __kmalloc_noprof+0xe0/0x850
[ 1056.361363][T20190]  security_inode_init_security+0x113/0x370
[ 1056.361408][T20190]  ? __pfx_shmem_initxattrs+0x10/0x10
[ 1056.361446][T20190]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1056.361514][T20190]  shmem_tmpfile+0xfa/0x210
[ 1056.361552][T20190]  ? d_alloc+0x176/0x1e0
[ 1056.361587][T20190]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1056.361625][T20190]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1056.361672][T20190]  ? _raw_spin_unlock+0x28/0x50
[ 1056.361716][T20190]  vfs_tmpfile+0x2be/0x9a0
[ 1056.361758][T20190]  path_openat+0x164e/0x31a0
[ 1056.361789][T20190]  ? kasan_save_stack+0x3f/0x50
[ 1056.361835][T20190]  ? kasan_save_stack+0x30/0x50
[ 1056.361875][T20190]  ? __kasan_slab_alloc+0x89/0x90
[ 1056.361901][T20190]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1056.361947][T20190]  ? do_getname+0x35/0x390
[ 1056.361985][T20190]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1056.362022][T20190]  ? __pfx_path_openat+0x10/0x10
[ 1056.362071][T20190]  do_file_open+0x20e/0x430
[ 1056.362108][T20190]  ? __pfx_do_file_open+0x10/0x10
[ 1056.362169][T20190]  ? _raw_spin_unlock+0x28/0x50
[ 1056.362205][T20190]  ? alloc_fd+0x476/0x790
[ 1056.362248][T20190]  do_sys_openat2+0x10d/0x1e0
[ 1056.362289][T20190]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1056.362332][T20190]  ? __fget_files+0x21f/0x3d0
[ 1056.362371][T20190]  __x64_sys_open+0xfe/0x1d0
[ 1056.362411][T20190]  ? __pfx___x64_sys_open+0x10/0x10
[ 1056.362466][T20190]  do_syscall_64+0x106/0xf80
[ 1056.362523][T20190]  ? clear_bhb_loop+0x40/0x90
[ 1056.362561][T20190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1056.362595][T20190] RIP: 0033:0x7f0792b9c799
[ 1056.362622][T20190] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1056.362656][T20190] RSP: 002b:00007f0793af8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1056.362685][T20190] RAX: ffffffffffffffda RBX: 00007f0792e15fa0 RCX: 00007f0792b9c799
[ 1056.362708][T20190] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1056.362730][T20190] RBP: 00007f0792c32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1056.362749][T20190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1056.362769][T20190] R13: 00007f0792e16038 R14: 00007f0792e15fa0 R15: 00007fffec54eeb8
[ 1056.362813][T20190]  </TASK>
[ 1056.660596][T20190] FAULT_INJECTION: forcing a failure.
[ 1056.660596][T20190] name failslab, interval 1, probability 0, space 0, times 0
[ 1056.716790][T20190] CPU: 1 UID: 0 PID: 20190 Comm: syz.5.3182 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1056.716837][T20190] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1056.716848][T20190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1056.716864][T20190] Call Trace:
[ 1056.716874][T20190]  <TASK>
[ 1056.716885][T20190]  dump_stack_lvl+0x100/0x190
[ 1056.716930][T20190]  should_fail_ex.cold+0x5/0xa
[ 1056.716974][T20190]  should_failslab+0xc2/0x120
[ 1056.717003][T20190]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 1056.717040][T20190]  ? mqueue_alloc_inode+0x25/0x50
[ 1056.717062][T20190]  ? d_add+0x4f6/0x850
[ 1056.717081][T20190]  ? __pfx_mqueue_alloc_inode+0x10/0x10
[ 1056.717104][T20190]  mqueue_alloc_inode+0x25/0x50
[ 1056.717127][T20190]  alloc_inode+0x68/0x250
[ 1056.717146][T20190]  new_inode+0x22/0x1c0
[ 1056.717163][T20190]  ? do_raw_spin_lock+0x128/0x260
[ 1056.717187][T20190]  mqueue_get_inode+0x2e/0xe00
[ 1056.717211][T20190]  mqueue_create_attr+0x2b6/0x570
[ 1056.717235][T20190]  ? __pfx_mqueue_create_attr+0x10/0x10
[ 1056.717257][T20190]  vfs_mkobj+0xe0/0x2a0
[ 1056.717277][T20190]  do_mq_open+0x71a/0x9c0
[ 1056.717301][T20190]  ? __pfx_do_mq_open+0x10/0x10
[ 1056.717322][T20190]  ? __pfx_do_sendfile+0x10/0x10
[ 1056.717343][T20190]  ? __fget_files+0x21f/0x3d0
[ 1056.717360][T20190]  __x64_sys_mq_open+0x152/0x1e0
[ 1056.717382][T20190]  ? __pfx___x64_sys_mq_open+0x10/0x10
[ 1056.717414][T20190]  do_syscall_64+0x106/0xf80
[ 1056.717434][T20190]  ? clear_bhb_loop+0x40/0x90
[ 1056.717452][T20190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1056.717471][T20190] RIP: 0033:0x7f0792b9c799
[ 1056.717484][T20190] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1056.717499][T20190] RSP: 002b:00007f0793af8028 EFLAGS: 00000246 ORIG_RAX: 00000000000000f0
[ 1056.717514][T20190] RAX: ffffffffffffffda RBX: 00007f0792e15fa0 RCX: 00007f0792b9c799
[ 1056.717524][T20190] RDX: 0000000000000009 RSI: 000000000000007e RDI: 0000200000000280
[ 1056.717533][T20190] RBP: 00007f0792c32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1056.717543][T20190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1056.717552][T20190] R13: 00007f0792e16038 R14: 00007f0792e15fa0 R15: 00007fffec54eeb8
[ 1056.717572][T20190]  </TASK>
[ 1058.134340][T20221] .^: entered promiscuous mode
[ 1058.676226][T20231] random: crng reseeded on system resumption
[ 1058.918359][T20234] debugfs: '!PjE�r��҄y�*�"�l-���y–��L̓���]' already exists in 'ieee80211'
[ 1061.112345][T20279] FAULT_INJECTION: forcing a failure.
[ 1061.112345][T20279] name failslab, interval 1, probability 0, space 0, times 0
[ 1061.141697][T20279] CPU: 1 UID: 0 PID: 20279 Comm: syz.4.3204 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1061.141745][T20279] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1061.141757][T20279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1061.141775][T20279] Call Trace:
[ 1061.141785][T20279]  <TASK>
[ 1061.141797][T20279]  dump_stack_lvl+0x100/0x190
[ 1061.141844][T20279]  should_fail_ex.cold+0x5/0xa
[ 1061.141879][T20279]  should_failslab+0xc2/0x120
[ 1061.141910][T20279]  __kmalloc_cache_noprof+0x7a/0x6f0
[ 1061.141948][T20279]  ? mon_text_open+0x1d9/0x510
[ 1061.141977][T20279]  ? lockdep_init_map_type+0x5c/0x250
[ 1061.142020][T20279]  ? __pfx_mon_text_open+0x10/0x10
[ 1061.142046][T20279]  mon_text_open+0x1d9/0x510
[ 1061.142074][T20279]  ? __pfx_mon_text_open+0x10/0x10
[ 1061.142101][T20279]  ? __debugfs_file_get+0x1fc/0x860
[ 1061.142140][T20279]  ? __pfx___debugfs_file_get+0x10/0x10
[ 1061.142178][T20279]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1061.142220][T20279]  ? lockdown_is_locked_down+0x3d/0x140
[ 1061.142259][T20279]  ? bpf_lsm_locked_down+0x9/0x10
[ 1061.142294][T20279]  ? __pfx_mon_text_open+0x10/0x10
[ 1061.142319][T20279]  full_proxy_open_regular+0x1b6/0x370
[ 1061.142362][T20279]  do_dentry_open+0x6d8/0x1660
[ 1061.142389][T20279]  ? __pfx_full_proxy_open_regular+0x10/0x10
[ 1061.142440][T20279]  vfs_open+0x82/0x3f0
[ 1061.142479][T20279]  path_openat+0x208c/0x31a0
[ 1061.142521][T20279]  ? __pfx_path_openat+0x10/0x10
[ 1061.142564][T20279]  do_file_open+0x20e/0x430
[ 1061.142597][T20279]  ? __pfx_do_file_open+0x10/0x10
[ 1061.142665][T20279]  ? alloc_fd+0x476/0x790
[ 1061.142700][T20279]  ? do_getname+0x191/0x390
[ 1061.142736][T20279]  do_sys_openat2+0x10d/0x1e0
[ 1061.142772][T20279]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1061.142810][T20279]  ? __fget_files+0x21f/0x3d0
[ 1061.142846][T20279]  __x64_sys_openat+0x12d/0x210
[ 1061.142884][T20279]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1061.142936][T20279]  do_syscall_64+0x106/0xf80
[ 1061.142975][T20279]  ? clear_bhb_loop+0x40/0x90
[ 1061.143011][T20279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1061.143041][T20279] RIP: 0033:0x7ff41719c799
[ 1061.143065][T20279] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1061.143093][T20279] RSP: 002b:00007ff417fce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1061.143121][T20279] RAX: ffffffffffffffda RBX: 00007ff417415fa0 RCX: 00007ff41719c799
[ 1061.143140][T20279] RDX: 0000000000080080 RSI: 0000200000000280 RDI: ffffffffffffff9c
[ 1061.143158][T20279] RBP: 00007ff417232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1061.143176][T20279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1061.143194][T20279] R13: 00007ff417416038 R14: 00007ff417415fa0 R15: 00007ffe399b4328
[ 1061.143231][T20279]  </TASK>
[ 1061.584548][T20273] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3201'.
[ 1062.653389][T20308] usb usb36: usbfs: process 20308 (syz.5.3211) did not claim interface 0 before use
[ 1062.708767][T20308] FAULT_INJECTION: forcing a failure.
[ 1062.708767][T20308] name failslab, interval 1, probability 0, space 0, times 0
[ 1062.741685][T20308] CPU: 0 UID: 0 PID: 20308 Comm: syz.5.3211 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1062.741712][T20308] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1062.741718][T20308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1062.741728][T20308] Call Trace:
[ 1062.741733][T20308]  <TASK>
[ 1062.741740][T20308]  dump_stack_lvl+0x100/0x190
[ 1062.741767][T20308]  should_fail_ex.cold+0x5/0xa
[ 1062.741786][T20308]  ? trace_parser_get_init+0x30/0xc0
[ 1062.741802][T20308]  should_failslab+0xc2/0x120
[ 1062.741818][T20308]  __kmalloc_noprof+0xe0/0x850
[ 1062.741844][T20308]  trace_parser_get_init+0x30/0xc0
[ 1062.741858][T20308]  ? tracing_update_buffers+0xb1/0x120
[ 1062.741879][T20308]  ftrace_event_write+0x177/0x2c0
[ 1062.741898][T20308]  ? __pfx_ftrace_event_write+0x10/0x10
[ 1062.741924][T20308]  vfs_write+0x2aa/0x1070
[ 1062.741939][T20308]  ? __pfx_ftrace_event_write+0x10/0x10
[ 1062.741959][T20308]  ? __pfx_vfs_write+0x10/0x10
[ 1062.741981][T20308]  ? __fget_files+0x215/0x3d0
[ 1062.741999][T20308]  ? __fget_files+0x21f/0x3d0
[ 1062.742018][T20308]  ksys_write+0x12a/0x250
[ 1062.742032][T20308]  ? __pfx_ksys_write+0x10/0x10
[ 1062.742059][T20308]  do_syscall_64+0x106/0xf80
[ 1062.742080][T20308]  ? clear_bhb_loop+0x40/0x90
[ 1062.742098][T20308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1062.742113][T20308] RIP: 0033:0x7f0792b9c799
[ 1062.742127][T20308] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1062.742141][T20308] RSP: 002b:00007f0793af8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1062.742156][T20308] RAX: ffffffffffffffda RBX: 00007f0792e15fa0 RCX: 00007f0792b9c799
[ 1062.742166][T20308] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000006
[ 1062.742175][T20308] RBP: 00007f0792c32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1062.742184][T20308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1062.742192][T20308] R13: 00007f0792e16038 R14: 00007f0792e15fa0 R15: 00007fffec54eeb8
[ 1062.742212][T20308]  </TASK>
[ 1066.702985][T20373] FAULT_INJECTION: forcing a failure.
[ 1066.702985][T20373] name failslab, interval 1, probability 0, space 0, times 0
[ 1066.724258][T20373] CPU: 1 UID: 0 PID: 20373 Comm: syz.4.3226 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1066.724286][T20373] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1066.724293][T20373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1066.724302][T20373] Call Trace:
[ 1066.724307][T20373]  <TASK>
[ 1066.724314][T20373]  dump_stack_lvl+0x100/0x190
[ 1066.724341][T20373]  should_fail_ex.cold+0x5/0xa
[ 1066.724361][T20373]  should_failslab+0xc2/0x120
[ 1066.724376][T20373]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1066.724398][T20373]  ? __anon_vma_prepare+0xae/0x5e0
[ 1066.724422][T20373]  __anon_vma_prepare+0xae/0x5e0
[ 1066.724444][T20373]  __vmf_anon_prepare+0x11f/0x250
[ 1066.724463][T20373]  do_anonymous_page+0x552/0x1fb0
[ 1066.724484][T20373]  ? __handle_mm_fault+0x17a4/0x2b60
[ 1066.724507][T20373]  __handle_mm_fault+0x1d42/0x2b60
[ 1066.724532][T20373]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1066.724552][T20373]  ? pte_offset_map_lock+0x174/0x320
[ 1066.724568][T20373]  ? find_held_lock+0x2b/0x80
[ 1066.724589][T20373]  ? follow_page_pte+0x5b3/0x1400
[ 1066.724609][T20373]  handle_mm_fault+0x36d/0xa20
[ 1066.724632][T20373]  __get_user_pages+0xf9c/0x34d0
[ 1066.724656][T20373]  ? __pfx___get_user_pages+0x10/0x10
[ 1066.724678][T20373]  populate_vma_page_range+0x267/0x3f0
[ 1066.724698][T20373]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1066.724721][T20373]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1066.724750][T20373]  ? do_mmap+0x93f/0x12f0
[ 1066.724783][T20373]  __mm_populate+0x107/0x3a0
[ 1066.724826][T20373]  ? __pfx___mm_populate+0x10/0x10
[ 1066.724864][T20373]  ? up_write+0x290/0x4f0
[ 1066.724893][T20373]  vm_mmap_pgoff+0x37f/0x470
[ 1066.724912][T20373]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1066.724930][T20373]  ? do_futex+0x192/0x350
[ 1066.724950][T20373]  ? __pfx_do_futex+0x10/0x10
[ 1066.724972][T20373]  ksys_mmap_pgoff+0xe1/0x650
[ 1066.724988][T20373]  ? __x64_sys_futex+0x34f/0x4d0
[ 1066.725006][T20373]  ? __x64_sys_futex+0x358/0x4d0
[ 1066.725025][T20373]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 1066.725041][T20373]  ? xfd_validate_state+0x129/0x190
[ 1066.725066][T20373]  __x64_sys_mmap+0x125/0x190
[ 1066.725088][T20373]  do_syscall_64+0x106/0xf80
[ 1066.725109][T20373]  ? clear_bhb_loop+0x40/0x90
[ 1066.725128][T20373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1066.725144][T20373] RIP: 0033:0x7ff41719c799
[ 1066.725157][T20373] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1066.725172][T20373] RSP: 002b:00007ff417fce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1066.725187][T20373] RAX: ffffffffffffffda RBX: 00007ff417415fa0 RCX: 00007ff41719c799
[ 1066.725198][T20373] RDX: 0000001000000003 RSI: 0000000000000008 RDI: 000000000000f000
[ 1066.725208][T20373] RBP: 00007ff417232c99 R08: 0000000000000002 R09: 0000000000008000
[ 1066.725218][T20373] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1066.725227][T20373] R13: 00007ff417416038 R14: 00007ff417415fa0 R15: 00007ffe399b4328
[ 1066.725248][T20373]  </TASK>
[ 1067.032158][T20375] netlink: 330 bytes leftover after parsing attributes in process `syz.7.3227'.
[ 1067.343201][T20378] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3229'.
[ 1067.963419][   T30] audit: type=1326 audit(2147485042.431:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20401 comm="syz.4.3234" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff41719c799 code=0x0
[ 1068.042534][T20403] can: request_module (can-proto-4) failed.
[ 1068.507884][T20415] FAULT_INJECTION: forcing a failure.
[ 1068.507884][T20415] name failslab, interval 1, probability 0, space 0, times 0
[ 1068.523156][T20415] CPU: 1 UID: 0 PID: 20415 Comm: syz.8.3239 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1068.523204][T20415] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1068.523215][T20415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1068.523232][T20415] Call Trace:
[ 1068.523243][T20415]  <TASK>
[ 1068.523253][T20415]  dump_stack_lvl+0x100/0x190
[ 1068.523299][T20415]  should_fail_ex.cold+0x5/0xa
[ 1068.523332][T20415]  ? security_inode_init_security+0x113/0x370
[ 1068.523372][T20415]  should_failslab+0xc2/0x120
[ 1068.523401][T20415]  __kmalloc_noprof+0xe0/0x850
[ 1068.523433][T20415]  security_inode_init_security+0x113/0x370
[ 1068.523456][T20415]  ? __pfx_shmem_initxattrs+0x10/0x10
[ 1068.523474][T20415]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1068.523501][T20415]  shmem_tmpfile+0xfa/0x210
[ 1068.523518][T20415]  ? d_alloc+0x176/0x1e0
[ 1068.523535][T20415]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1068.523553][T20415]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1068.523574][T20415]  ? _raw_spin_unlock+0x28/0x50
[ 1068.523595][T20415]  vfs_tmpfile+0x2be/0x9a0
[ 1068.523630][T20415]  path_openat+0x164e/0x31a0
[ 1068.523658][T20415]  ? kasan_save_stack+0x3f/0x50
[ 1068.523696][T20415]  ? kasan_save_stack+0x30/0x50
[ 1068.523735][T20415]  ? __kasan_slab_alloc+0x89/0x90
[ 1068.523760][T20415]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1068.523799][T20415]  ? do_getname+0x35/0x390
[ 1068.523833][T20415]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1068.523867][T20415]  ? __pfx_path_openat+0x10/0x10
[ 1068.523911][T20415]  do_file_open+0x20e/0x430
[ 1068.523940][T20415]  ? __pfx_do_file_open+0x10/0x10
[ 1068.523993][T20415]  ? _raw_spin_unlock+0x28/0x50
[ 1068.524025][T20415]  ? alloc_fd+0x476/0x790
[ 1068.524066][T20415]  do_sys_openat2+0x10d/0x1e0
[ 1068.524108][T20415]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1068.524147][T20415]  ? __fget_files+0x21f/0x3d0
[ 1068.524182][T20415]  __x64_sys_open+0xfe/0x1d0
[ 1068.524214][T20415]  ? __pfx___x64_sys_open+0x10/0x10
[ 1068.524264][T20415]  do_syscall_64+0x106/0xf80
[ 1068.524295][T20415]  ? clear_bhb_loop+0x40/0x90
[ 1068.524326][T20415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1068.524355][T20415] RIP: 0033:0x7f4d3079c799
[ 1068.524378][T20415] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1068.524405][T20415] RSP: 002b:00007f4d2e9f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1068.524430][T20415] RAX: ffffffffffffffda RBX: 00007f4d30a15fa0 RCX: 00007f4d3079c799
[ 1068.524449][T20415] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1068.524468][T20415] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1068.524486][T20415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1068.524503][T20415] R13: 00007f4d30a16038 R14: 00007f4d30a15fa0 R15: 00007fffbd97ee38
[ 1068.524539][T20415]  </TASK>
[ 1068.525832][T20413] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1068.829252][T20413] block nbd2: shutting down sockets
[ 1068.999138][T20422] zswap: compressor  not available
[ 1069.068878][T20425] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE�r��҄y�*�"�l-���y–��L̓���]'
[ 1069.124630][T20425] CPU: 0 UID: 0 PID: 20425 Comm: syz.8.3240 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1069.124677][T20425] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1069.124688][T20425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1069.124705][T20425] Call Trace:
[ 1069.124715][T20425]  <TASK>
[ 1069.124726][T20425]  dump_stack_lvl+0x100/0x190
[ 1069.124774][T20425]  sysfs_warn_dup.cold+0x1c/0x28
[ 1069.124813][T20425]  sysfs_do_create_link_sd+0x113/0x140
[ 1069.124856][T20425]  sysfs_create_link+0x61/0xc0
[ 1069.124895][T20425]  device_add+0x675/0x1950
[ 1069.124934][T20425]  ? __pfx_device_add+0x10/0x10
[ 1069.124965][T20425]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1069.125014][T20425]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[ 1069.125062][T20425]  wiphy_register+0x1e5b/0x2d30
[ 1069.125115][T20425]  ? __rtnl_unlock+0xb9/0xf0
[ 1069.125160][T20425]  ? netdev_run_todo+0x7a0/0x12c0
[ 1069.125210][T20425]  ? __pfx_wiphy_register+0x10/0x10
[ 1069.125254][T20425]  ? __asan_memset+0x23/0x50
[ 1069.125292][T20425]  ? minstrel_ht_alloc+0x5e6/0x7f0
[ 1069.125348][T20425]  ieee80211_register_hw+0x2cfd/0x4140
[ 1069.125410][T20425]  ? __pfx_ieee80211_register_hw+0x10/0x10
[ 1069.125453][T20425]  ? __pfx___debug_object_init+0x10/0x10
[ 1069.125500][T20425]  ? find_held_lock+0x2b/0x80
[ 1069.125528][T20425]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1069.125575][T20425]  ? __hrtimer_setup+0x178/0x280
[ 1069.125615][T20425]  mac80211_hwsim_new_radio+0x2847/0x57d0
[ 1069.125684][T20425]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1069.125741][T20425]  hwsim_new_radio_nl+0xc1f/0x1340
[ 1069.125787][T20425]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1069.125844][T20425]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[ 1069.125877][T20425]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[ 1069.125915][T20425]  genl_family_rcv_msg_doit+0x214/0x300
[ 1069.125950][T20425]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1069.125981][T20425]  ? genl_get_cmd+0x3ef/0x720
[ 1069.126018][T20425]  ? bpf_lsm_capable+0x9/0x10
[ 1069.126047][T20425]  ? security_capable+0x80/0x260
[ 1069.126098][T20425]  ? ns_capable+0xd2/0xf0
[ 1069.126131][T20425]  genl_rcv_msg+0x560/0x800
[ 1069.126166][T20425]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1069.126196][T20425]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1069.126254][T20425]  netlink_rcv_skb+0x159/0x420
[ 1069.126296][T20425]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1069.126328][T20425]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1069.126386][T20425]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1069.126432][T20425]  genl_rcv+0x28/0x40
[ 1069.126456][T20425]  netlink_unicast+0x5aa/0x870
[ 1069.126504][T20425]  ? __pfx_netlink_unicast+0x10/0x10
[ 1069.126552][T20425]  ? __pfx___might_resched+0x10/0x10
[ 1069.126595][T20425]  ? __lock_acquire+0x4a5/0x2630
[ 1069.126642][T20425]  netlink_sendmsg+0x8b0/0xda0
[ 1069.126693][T20425]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1069.126734][T20425]  ? __import_iovec+0x1d2/0x640
[ 1069.126772][T20425]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1069.126823][T20425]  ____sys_sendmsg+0x9e1/0xb70
[ 1069.126851][T20425]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1069.126898][T20425]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1069.126936][T20425]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1069.126986][T20425]  ___sys_sendmsg+0x190/0x1e0
[ 1069.127021][T20425]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1069.127109][T20425]  __sys_sendmsg+0x170/0x220
[ 1069.127152][T20425]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1069.127192][T20425]  ? __x64_sys_futex+0x34f/0x4d0
[ 1069.127253][T20425]  do_syscall_64+0x106/0xf80
[ 1069.127292][T20425]  ? clear_bhb_loop+0x40/0x90
[ 1069.127328][T20425]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1069.127358][T20425] RIP: 0033:0x7f4d3079c799
[ 1069.127383][T20425] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1069.127413][T20425] RSP: 002b:00007f4d2e9d5028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1069.127441][T20425] RAX: ffffffffffffffda RBX: 00007f4d30a16090 RCX: 00007f4d3079c799
[ 1069.127461][T20425] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000005
[ 1069.127480][T20425] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1069.127498][T20425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1069.127515][T20425] R13: 00007f4d30a16128 R14: 00007f4d30a16090 R15: 00007fffbd97ee38
[ 1069.127557][T20425]  </TASK>
[ 1069.651156][T20429] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3241'.
[ 1070.204125][T20449] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1072.495074][T20497] Invalid ELF header magic: != ELF
[ 1074.923716][T20536] usb usb36: usbfs: process 20536 (syz.8.3266) did not claim interface 0 before use
[ 1077.953970][T20577] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26)
[ 1078.774587][T20576] ima: policy update failed
[ 1078.792585][   T30] audit: type=1802 audit(2147485053.261:38): pid=20576 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.3275" res=0 errno=0
[ 1079.178766][T20597] FAULT_INJECTION: forcing a failure.
[ 1079.178766][T20597] name failslab, interval 1, probability 0, space 0, times 0
[ 1079.263842][T20597] CPU: 0 UID: 0 PID: 20597 Comm: syz.7.3280 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1079.263870][T20597] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1079.263877][T20597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1079.263887][T20597] Call Trace:
[ 1079.263893][T20597]  <TASK>
[ 1079.263899][T20597]  dump_stack_lvl+0x100/0x190
[ 1079.263927][T20597]  should_fail_ex.cold+0x5/0xa
[ 1079.263946][T20597]  ? security_inode_init_security+0x113/0x370
[ 1079.263968][T20597]  should_failslab+0xc2/0x120
[ 1079.263984][T20597]  __kmalloc_noprof+0xe0/0x850
[ 1079.264010][T20597]  security_inode_init_security+0x113/0x370
[ 1079.264031][T20597]  ? __pfx_shmem_initxattrs+0x10/0x10
[ 1079.264049][T20597]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1079.264077][T20597]  shmem_tmpfile+0xfa/0x210
[ 1079.264094][T20597]  ? d_alloc+0x176/0x1e0
[ 1079.264110][T20597]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1079.264128][T20597]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1079.264150][T20597]  ? _raw_spin_unlock+0x28/0x50
[ 1079.264171][T20597]  vfs_tmpfile+0x2be/0x9a0
[ 1079.264191][T20597]  path_openat+0x164e/0x31a0
[ 1079.264206][T20597]  ? kasan_save_stack+0x3f/0x50
[ 1079.264226][T20597]  ? kasan_save_stack+0x30/0x50
[ 1079.264247][T20597]  ? __kasan_slab_alloc+0x89/0x90
[ 1079.264260][T20597]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1079.264280][T20597]  ? do_getname+0x35/0x390
[ 1079.264298][T20597]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1079.264316][T20597]  ? __pfx_path_openat+0x10/0x10
[ 1079.264338][T20597]  do_file_open+0x20e/0x430
[ 1079.264355][T20597]  ? __pfx_do_file_open+0x10/0x10
[ 1079.264393][T20597]  ? _raw_spin_unlock+0x28/0x50
[ 1079.264411][T20597]  ? alloc_fd+0x476/0x790
[ 1079.264433][T20597]  do_sys_openat2+0x10d/0x1e0
[ 1079.264454][T20597]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1079.264474][T20597]  ? __fget_files+0x21f/0x3d0
[ 1079.264493][T20597]  __x64_sys_open+0xfe/0x1d0
[ 1079.264511][T20597]  ? __pfx___x64_sys_open+0x10/0x10
[ 1079.264537][T20597]  do_syscall_64+0x106/0xf80
[ 1079.264557][T20597]  ? clear_bhb_loop+0x40/0x90
[ 1079.264575][T20597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1079.264590][T20597] RIP: 0033:0x7f4f2a39c799
[ 1079.264604][T20597] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1079.264619][T20597] RSP: 002b:00007f4f2b2c7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1079.264634][T20597] RAX: ffffffffffffffda RBX: 00007f4f2a615fa0 RCX: 00007f4f2a39c799
[ 1079.264645][T20597] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1079.264655][T20597] RBP: 00007f4f2a432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1079.264665][T20597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1079.264674][T20597] R13: 00007f4f2a616038 R14: 00007f4f2a615fa0 R15: 00007ffd4a0fb698
[ 1079.264695][T20597]  </TASK>
[ 1079.755741][T20606] netlink: 326 bytes leftover after parsing attributes in process `syz.8.3283'.
[ 1079.872471][T20611] FAULT_INJECTION: forcing a failure.
[ 1079.872471][T20611] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1079.886699][T20611] CPU: 1 UID: 0 PID: 20611 Comm: syz.8.3285 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1079.886726][T20611] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1079.886732][T20611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1079.886741][T20611] Call Trace:
[ 1079.886747][T20611]  <TASK>
[ 1079.886754][T20611]  dump_stack_lvl+0x100/0x190
[ 1079.886781][T20611]  should_fail_ex.cold+0x5/0xa
[ 1079.886799][T20611]  get_futex_key+0x1d2/0x1620
[ 1079.886820][T20611]  ? __pfx_get_futex_key+0x10/0x10
[ 1079.886853][T20611]  futex_wake+0xea/0x530
[ 1079.886877][T20611]  ? __pfx_futex_wake+0x10/0x10
[ 1079.886902][T20611]  ? errseq_sample+0x51/0x70
[ 1079.886919][T20611]  ? file_init_path+0x48e/0x670
[ 1079.886940][T20611]  do_futex+0x32b/0x350
[ 1079.886960][T20611]  ? __pfx_do_futex+0x10/0x10
[ 1079.886978][T20611]  ? fd_install+0x223/0x580
[ 1079.886995][T20611]  __x64_sys_futex+0x34f/0x4d0
[ 1079.887015][T20611]  ? __sys_socket+0xac/0x260
[ 1079.887032][T20611]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1079.887058][T20611]  do_syscall_64+0x106/0xf80
[ 1079.887078][T20611]  ? clear_bhb_loop+0x40/0x90
[ 1079.887096][T20611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1079.887112][T20611] RIP: 0033:0x7f4d3079c799
[ 1079.887126][T20611] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1079.887140][T20611] RSP: 002b:00007f4d2e9f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1079.887155][T20611] RAX: ffffffffffffffda RBX: 00007f4d30a15fa8 RCX: 00007f4d3079c799
[ 1079.887166][T20611] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4d30a15fac
[ 1079.887174][T20611] RBP: 00007f4d30a15fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1079.887183][T20611] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[ 1079.887192][T20611] R13: 00007f4d30a16038 R14: 00007fffbd97ed50 R15: 00007fffbd97ee38
[ 1079.887211][T20611]  </TASK>
[ 1081.111845][T20634] can: request_module (can-proto-4) failed.
[ 1081.791995][T20647] FAULT_INJECTION: forcing a failure.
[ 1081.791995][T20647] name failslab, interval 1, probability 0, space 0, times 0
[ 1081.814559][T20647] CPU: 1 UID: 0 PID: 20647 Comm: syz.7.3292 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1081.814609][T20647] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1081.814623][T20647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1081.814640][T20647] Call Trace:
[ 1081.814650][T20647]  <TASK>
[ 1081.814661][T20647]  dump_stack_lvl+0x100/0x190
[ 1081.814709][T20647]  should_fail_ex.cold+0x5/0xa
[ 1081.814743][T20647]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1081.814781][T20647]  should_failslab+0xc2/0x120
[ 1081.814812][T20647]  __kmalloc_noprof+0xe0/0x850
[ 1081.814862][T20647]  tomoyo_realpath_from_path+0xb6/0x690
[ 1081.814908][T20647]  tomoyo_check_open_permission+0x2af/0x3c0
[ 1081.814943][T20647]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1081.815012][T20647]  ? lock_acquire+0x1cf/0x380
[ 1081.815048][T20647]  ? find_held_lock+0x2b/0x80
[ 1081.815085][T20647]  tomoyo_file_open+0x6b/0x90
[ 1081.815128][T20647]  security_file_open+0xb5/0x1e0
[ 1081.815167][T20647]  do_dentry_open+0x5aa/0x1660
[ 1081.815209][T20647]  ? _raw_spin_unlock+0x28/0x50
[ 1081.815249][T20647]  shmem_tmpfile+0x1c9/0x210
[ 1081.815285][T20647]  ? d_alloc+0x176/0x1e0
[ 1081.815318][T20647]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1081.815354][T20647]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1081.815397][T20647]  ? _raw_spin_unlock+0x28/0x50
[ 1081.815436][T20647]  vfs_tmpfile+0x2be/0x9a0
[ 1081.815476][T20647]  path_openat+0x164e/0x31a0
[ 1081.815503][T20647]  ? kasan_save_stack+0x3f/0x50
[ 1081.815542][T20647]  ? kasan_save_stack+0x30/0x50
[ 1081.815582][T20647]  ? __kasan_slab_alloc+0x89/0x90
[ 1081.815608][T20647]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1081.815648][T20647]  ? do_getname+0x35/0x390
[ 1081.815684][T20647]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1081.815718][T20647]  ? __pfx_path_openat+0x10/0x10
[ 1081.815763][T20647]  do_file_open+0x20e/0x430
[ 1081.815797][T20647]  ? __pfx_do_file_open+0x10/0x10
[ 1081.815855][T20647]  ? _raw_spin_unlock+0x28/0x50
[ 1081.815889][T20647]  ? alloc_fd+0x476/0x790
[ 1081.815930][T20647]  do_sys_openat2+0x10d/0x1e0
[ 1081.815967][T20647]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1081.816006][T20647]  ? __fget_files+0x21f/0x3d0
[ 1081.816043][T20647]  __x64_sys_open+0xfe/0x1d0
[ 1081.816080][T20647]  ? __pfx___x64_sys_open+0x10/0x10
[ 1081.816132][T20647]  do_syscall_64+0x106/0xf80
[ 1081.816170][T20647]  ? clear_bhb_loop+0x40/0x90
[ 1081.816212][T20647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1081.816243][T20647] RIP: 0033:0x7f4f2a39c799
[ 1081.816268][T20647] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1081.816298][T20647] RSP: 002b:00007f4f2b2c7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1081.816327][T20647] RAX: ffffffffffffffda RBX: 00007f4f2a615fa0 RCX: 00007f4f2a39c799
[ 1081.816347][T20647] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1081.816367][T20647] RBP: 00007f4f2a432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1081.816386][T20647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1081.816404][T20647] R13: 00007f4f2a616038 R14: 00007f4f2a615fa0 R15: 00007ffd4a0fb698
[ 1081.816445][T20647]  </TASK>
[ 1081.816540][T20647] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1082.311678][T20647] FAULT_INJECTION: forcing a failure.
[ 1082.311678][T20647] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1082.326787][T20647] CPU: 1 UID: 0 PID: 20647 Comm: syz.7.3292 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1082.326836][T20647] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1082.326848][T20647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1082.326865][T20647] Call Trace:
[ 1082.326874][T20647]  <TASK>
[ 1082.326885][T20647]  dump_stack_lvl+0x100/0x190
[ 1082.326930][T20647]  should_fail_ex.cold+0x5/0xa
[ 1082.326964][T20647]  get_futex_key+0x1d2/0x1620
[ 1082.327002][T20647]  ? __pfx_get_futex_key+0x10/0x10
[ 1082.327035][T20647]  ? find_held_lock+0x2b/0x80
[ 1082.327062][T20647]  ? futex_wake+0x456/0x530
[ 1082.327110][T20647]  futex_wake+0xea/0x530
[ 1082.327150][T20647]  ? __pfx_futex_wait+0x10/0x10
[ 1082.327202][T20647]  ? __pfx_futex_wake+0x10/0x10
[ 1082.327248][T20647]  ? fput+0x79/0x100
[ 1082.327281][T20647]  ? do_mq_timedsend+0x799/0xc40
[ 1082.327329][T20647]  do_futex+0x32b/0x350
[ 1082.327365][T20647]  ? __pfx_do_futex+0x10/0x10
[ 1082.327410][T20647]  __x64_sys_futex+0x34f/0x4d0
[ 1082.327451][T20647]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1082.327501][T20647]  do_syscall_64+0x106/0xf80
[ 1082.327539][T20647]  ? clear_bhb_loop+0x40/0x90
[ 1082.327573][T20647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1082.327602][T20647] RIP: 0033:0x7f4f2a39c799
[ 1082.327625][T20647] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1082.327654][T20647] RSP: 002b:00007f4f2b2c70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1082.327680][T20647] RAX: ffffffffffffffda RBX: 00007f4f2a615fa8 RCX: 00007f4f2a39c799
[ 1082.327701][T20647] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4f2a615fac
[ 1082.327719][T20647] RBP: 00007f4f2a615fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1082.327737][T20647] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 1082.327755][T20647] R13: 00007f4f2a616038 R14: 00007ffd4a0fb5b0 R15: 00007ffd4a0fb698
[ 1082.327793][T20647]  </TASK>
[ 1084.654614][T20691] FAULT_INJECTION: forcing a failure.
[ 1084.654614][T20691] name failslab, interval 1, probability 0, space 0, times 0
[ 1084.667528][T20691] CPU: 1 UID: 0 PID: 20691 Comm: syz.7.3305 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1084.667576][T20691] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1084.667588][T20691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1084.667606][T20691] Call Trace:
[ 1084.667616][T20691]  <TASK>
[ 1084.667628][T20691]  dump_stack_lvl+0x100/0x190
[ 1084.667674][T20691]  should_fail_ex.cold+0x5/0xa
[ 1084.667707][T20691]  ? security_inode_init_security+0x113/0x370
[ 1084.667746][T20691]  should_failslab+0xc2/0x120
[ 1084.667777][T20691]  __kmalloc_noprof+0xe0/0x850
[ 1084.667827][T20691]  security_inode_init_security+0x113/0x370
[ 1084.667869][T20691]  ? __pfx_shmem_initxattrs+0x10/0x10
[ 1084.667902][T20691]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1084.667955][T20691]  shmem_tmpfile+0xfa/0x210
[ 1084.667989][T20691]  ? d_alloc+0x176/0x1e0
[ 1084.668029][T20691]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1084.668065][T20691]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1084.668107][T20691]  ? _raw_spin_unlock+0x28/0x50
[ 1084.668146][T20691]  vfs_tmpfile+0x2be/0x9a0
[ 1084.668185][T20691]  path_openat+0x164e/0x31a0
[ 1084.668213][T20691]  ? kasan_save_stack+0x3f/0x50
[ 1084.668253][T20691]  ? kasan_save_stack+0x30/0x50
[ 1084.668294][T20691]  ? __kasan_slab_alloc+0x89/0x90
[ 1084.668319][T20691]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1084.668357][T20691]  ? do_getname+0x35/0x390
[ 1084.668392][T20691]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1084.668426][T20691]  ? __pfx_path_openat+0x10/0x10
[ 1084.668470][T20691]  do_file_open+0x20e/0x430
[ 1084.668501][T20691]  ? __pfx_do_file_open+0x10/0x10
[ 1084.668559][T20691]  ? _raw_spin_unlock+0x28/0x50
[ 1084.668591][T20691]  ? alloc_fd+0x476/0x790
[ 1084.668630][T20691]  do_sys_openat2+0x10d/0x1e0
[ 1084.668667][T20691]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1084.668706][T20691]  ? __fget_files+0x21f/0x3d0
[ 1084.668742][T20691]  __x64_sys_open+0xfe/0x1d0
[ 1084.668778][T20691]  ? __pfx___x64_sys_open+0x10/0x10
[ 1084.668828][T20691]  do_syscall_64+0x106/0xf80
[ 1084.668865][T20691]  ? clear_bhb_loop+0x40/0x90
[ 1084.668899][T20691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1084.668929][T20691] RIP: 0033:0x7f4f2a39c799
[ 1084.668952][T20691] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1084.668980][T20691] RSP: 002b:00007f4f2b2c7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1084.669015][T20691] RAX: ffffffffffffffda RBX: 00007f4f2a615fa0 RCX: 00007f4f2a39c799
[ 1084.669035][T20691] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1084.669055][T20691] RBP: 00007f4f2a432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1084.669073][T20691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1084.669091][T20691] R13: 00007f4f2a616038 R14: 00007f4f2a615fa0 R15: 00007ffd4a0fb698
[ 1084.669132][T20691]  </TASK>
[ 1084.672260][T20691] FAULT_INJECTION: forcing a failure.
[ 1084.672260][T20691] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1084.993830][T20691] CPU: 1 UID: 0 PID: 20691 Comm: syz.7.3305 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1084.993877][T20691] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1084.993889][T20691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1084.993906][T20691] Call Trace:
[ 1084.993916][T20691]  <TASK>
[ 1084.993927][T20691]  dump_stack_lvl+0x100/0x190
[ 1084.993982][T20691]  should_fail_ex.cold+0x5/0xa
[ 1084.994017][T20691]  get_futex_key+0x1d2/0x1620
[ 1084.994056][T20691]  ? __pfx_get_futex_key+0x10/0x10
[ 1084.994089][T20691]  ? stack_trace_save+0x8e/0xc0
[ 1084.994115][T20691]  ? __pfx_stack_trace_save+0x10/0x10
[ 1084.994143][T20691]  ? stack_depot_save_flags+0x27/0x9d0
[ 1084.994186][T20691]  futex_wait_setup+0x83/0x510
[ 1084.994238][T20691]  __futex_wait+0x19f/0x300
[ 1084.994282][T20691]  ? __pfx___futex_wait+0x10/0x10
[ 1084.994328][T20691]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1084.994375][T20691]  ? futex_hash+0x2c5/0x380
[ 1084.994419][T20691]  futex_wait+0xed/0x380
[ 1084.994460][T20691]  ? __pfx_futex_wait+0x10/0x10
[ 1084.994520][T20691]  do_futex+0x1ef/0x350
[ 1084.994556][T20691]  ? __pfx_do_futex+0x10/0x10
[ 1084.994595][T20691]  ? __fget_files+0x21f/0x3d0
[ 1084.994627][T20691]  __x64_sys_futex+0x34f/0x4d0
[ 1084.994665][T20691]  ? __pfx___x64_sys_mq_open+0x10/0x10
[ 1084.994710][T20691]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1084.994760][T20691]  do_syscall_64+0x106/0xf80
[ 1084.994798][T20691]  ? clear_bhb_loop+0x40/0x90
[ 1084.994833][T20691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1084.994862][T20691] RIP: 0033:0x7f4f2a39c799
[ 1084.994886][T20691] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1084.994915][T20691] RSP: 002b:00007f4f2b2c70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1084.994943][T20691] RAX: ffffffffffffffda RBX: 00007f4f2a615fa8 RCX: 00007f4f2a39c799
[ 1084.994963][T20691] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4f2a615fa8
[ 1084.994990][T20691] RBP: 00007f4f2a615fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1084.995008][T20691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1084.995025][T20691] R13: 00007f4f2a616038 R14: 00007ffd4a0fb5b0 R15: 00007ffd4a0fb698
[ 1084.995065][T20691]  </TASK>
[ 1087.723883][T20748] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1087.910554][T20753] FAULT_INJECTION: forcing a failure.
[ 1087.910554][T20753] name failslab, interval 1, probability 0, space 0, times 0
[ 1087.931824][T20753] CPU: 0 UID: 0 PID: 20753 Comm: syz.8.3316 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1087.931874][T20753] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1087.931886][T20753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1087.931903][T20753] Call Trace:
[ 1087.931914][T20753]  <TASK>
[ 1087.931925][T20753]  dump_stack_lvl+0x100/0x190
[ 1087.931974][T20753]  should_fail_ex.cold+0x5/0xa
[ 1087.932008][T20753]  ? security_inode_init_security+0x113/0x370
[ 1087.932047][T20753]  should_failslab+0xc2/0x120
[ 1087.932078][T20753]  __kmalloc_noprof+0xe0/0x850
[ 1087.932129][T20753]  security_inode_init_security+0x113/0x370
[ 1087.932170][T20753]  ? __pfx_shmem_initxattrs+0x10/0x10
[ 1087.932204][T20753]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1087.932256][T20753]  shmem_tmpfile+0xfa/0x210
[ 1087.932289][T20753]  ? d_alloc+0x176/0x1e0
[ 1087.932321][T20753]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1087.932356][T20753]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1087.932400][T20753]  ? _raw_spin_unlock+0x28/0x50
[ 1087.932440][T20753]  vfs_tmpfile+0x2be/0x9a0
[ 1087.932479][T20753]  path_openat+0x164e/0x31a0
[ 1087.932509][T20753]  ? kasan_save_stack+0x3f/0x50
[ 1087.932550][T20753]  ? kasan_save_stack+0x30/0x50
[ 1087.932590][T20753]  ? __kasan_slab_alloc+0x89/0x90
[ 1087.932616][T20753]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1087.932656][T20753]  ? do_getname+0x35/0x390
[ 1087.932691][T20753]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.932725][T20753]  ? __pfx_path_openat+0x10/0x10
[ 1087.932778][T20753]  do_file_open+0x20e/0x430
[ 1087.932810][T20753]  ? __pfx_do_file_open+0x10/0x10
[ 1087.932867][T20753]  ? _raw_spin_unlock+0x28/0x50
[ 1087.932900][T20753]  ? alloc_fd+0x476/0x790
[ 1087.932939][T20753]  do_sys_openat2+0x10d/0x1e0
[ 1087.932975][T20753]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1087.933013][T20753]  ? __fget_files+0x21f/0x3d0
[ 1087.933049][T20753]  __x64_sys_open+0xfe/0x1d0
[ 1087.933084][T20753]  ? __pfx___x64_sys_open+0x10/0x10
[ 1087.933136][T20753]  do_syscall_64+0x106/0xf80
[ 1087.933172][T20753]  ? clear_bhb_loop+0x40/0x90
[ 1087.933207][T20753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.933236][T20753] RIP: 0033:0x7f4d3079c799
[ 1087.933260][T20753] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1087.933289][T20753] RSP: 002b:00007f4d2e9f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1087.933317][T20753] RAX: ffffffffffffffda RBX: 00007f4d30a15fa0 RCX: 00007f4d3079c799
[ 1087.933338][T20753] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1087.933357][T20753] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1087.933373][T20753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1087.933390][T20753] R13: 00007f4d30a16038 R14: 00007f4d30a15fa0 R15: 00007fffbd97ee38
[ 1087.933429][T20753]  </TASK>
[ 1088.282990][T20753] FAULT_INJECTION: forcing a failure.
[ 1088.282990][T20753] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1088.303757][T20753] CPU: 1 UID: 0 PID: 20753 Comm: syz.8.3316 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1088.303805][T20753] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1088.303817][T20753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1088.303835][T20753] Call Trace:
[ 1088.303845][T20753]  <TASK>
[ 1088.303856][T20753]  dump_stack_lvl+0x100/0x190
[ 1088.303904][T20753]  should_fail_ex.cold+0x5/0xa
[ 1088.303939][T20753]  get_futex_key+0x1d2/0x1620
[ 1088.303979][T20753]  ? __pfx_get_futex_key+0x10/0x10
[ 1088.304021][T20753]  ? find_held_lock+0x2b/0x80
[ 1088.304053][T20753]  futex_wake+0xea/0x530
[ 1088.304099][T20753]  ? __pfx_futex_wake+0x10/0x10
[ 1088.304145][T20753]  ? fput+0x79/0x100
[ 1088.304178][T20753]  ? do_mq_timedsend+0x799/0xc40
[ 1088.304234][T20753]  do_futex+0x32b/0x350
[ 1088.304273][T20753]  ? __pfx_do_futex+0x10/0x10
[ 1088.304321][T20753]  __x64_sys_futex+0x34f/0x4d0
[ 1088.304363][T20753]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1088.304400][T20753]  ? __pfx___x64_sys_mq_timedsend+0x10/0x10
[ 1088.304456][T20753]  do_syscall_64+0x106/0xf80
[ 1088.304495][T20753]  ? clear_bhb_loop+0x40/0x90
[ 1088.304530][T20753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1088.304560][T20753] RIP: 0033:0x7f4d3079c799
[ 1088.304584][T20753] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1088.304612][T20753] RSP: 002b:00007f4d2e9f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1088.304638][T20753] RAX: ffffffffffffffda RBX: 00007f4d30a15fa8 RCX: 00007f4d3079c799
[ 1088.304658][T20753] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4d30a15fac
[ 1088.304677][T20753] RBP: 00007f4d30a15fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1088.304694][T20753] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 1088.304712][T20753] R13: 00007f4d30a16038 R14: 00007fffbd97ed50 R15: 00007fffbd97ee38
[ 1088.304750][T20753]  </TASK>
[ 1090.632873][T20792] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3325'.
[ 1090.795653][T20795] FAULT_INJECTION: forcing a failure.
[ 1090.795653][T20795] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1090.849535][T20795] CPU: 1 UID: 0 PID: 20795 Comm: syz.7.3326 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1090.849576][T20795] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1090.849587][T20795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1090.849601][T20795] Call Trace:
[ 1090.849610][T20795]  <TASK>
[ 1090.849620][T20795]  dump_stack_lvl+0x100/0x190
[ 1090.849663][T20795]  should_fail_ex.cold+0x5/0xa
[ 1090.849694][T20795]  _copy_from_iter+0x1f4/0x1690
[ 1090.849733][T20795]  ? __pfx__copy_from_iter+0x10/0x10
[ 1090.849760][T20795]  ? rcu_is_watching+0x12/0xc0
[ 1090.849796][T20795]  ? trace_kmalloc+0x101/0x130
[ 1090.849821][T20795]  ? __kasan_kmalloc+0xaa/0xb0
[ 1090.849859][T20795]  ? __kmalloc_noprof+0x320/0x850
[ 1090.849902][T20795]  kernfs_fop_write_iter+0x186/0x5f0
[ 1090.849935][T20795]  vfs_write+0x6ac/0x1070
[ 1090.849960][T20795]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[ 1090.849991][T20795]  ? __pfx_vfs_write+0x10/0x10
[ 1090.850055][T20795]  ksys_write+0x12a/0x250
[ 1090.850095][T20795]  ? __pfx_ksys_write+0x10/0x10
[ 1090.850132][T20795]  do_syscall_64+0x106/0xf80
[ 1090.850165][T20795]  ? clear_bhb_loop+0x40/0x90
[ 1090.850198][T20795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1090.850224][T20795] RIP: 0033:0x7f4f2a39c799
[ 1090.850246][T20795] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1090.850271][T20795] RSP: 002b:00007f4f2b2c7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1090.850297][T20795] RAX: ffffffffffffffda RBX: 00007f4f2a615fa0 RCX: 00007f4f2a39c799
[ 1090.850315][T20795] RDX: 0000000000007fff RSI: 0000200000000400 RDI: 0000000000000003
[ 1090.850332][T20795] RBP: 00007f4f2b2c7090 R08: 0000000000000000 R09: 0000000000000000
[ 1090.850349][T20795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1090.850365][T20795] R13: 00007f4f2a616038 R14: 00007f4f2a615fa0 R15: 00007ffd4a0fb698
[ 1090.850404][T20795]  </TASK>
[ 1092.641364][T20840] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE�r��҄y�*�"�l-���y–��L̓���]'
[ 1092.653062][T20840] CPU: 1 UID: 0 PID: 20840 Comm: syz.7.3338 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1092.653108][T20840] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1092.653119][T20840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1092.653129][T20840] Call Trace:
[ 1092.653135][T20840]  <TASK>
[ 1092.653142][T20840]  dump_stack_lvl+0x100/0x190
[ 1092.653170][T20840]  sysfs_warn_dup.cold+0x1c/0x28
[ 1092.653191][T20840]  sysfs_do_create_link_sd+0x113/0x140
[ 1092.653214][T20840]  sysfs_create_link+0x61/0xc0
[ 1092.653234][T20840]  device_add+0x675/0x1950
[ 1092.653253][T20840]  ? __pfx_device_add+0x10/0x10
[ 1092.653270][T20840]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1092.653296][T20840]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[ 1092.653322][T20840]  wiphy_register+0x1e5b/0x2d30
[ 1092.653344][T20840]  ? __rtnl_unlock+0xb9/0xf0
[ 1092.653367][T20840]  ? netdev_run_todo+0x7a0/0x12c0
[ 1092.653392][T20840]  ? __pfx_wiphy_register+0x10/0x10
[ 1092.653415][T20840]  ? __asan_memset+0x23/0x50
[ 1092.653435][T20840]  ? minstrel_ht_alloc+0x5e6/0x7f0
[ 1092.653469][T20840]  ieee80211_register_hw+0x2cfd/0x4140
[ 1092.653501][T20840]  ? __pfx_ieee80211_register_hw+0x10/0x10
[ 1092.653523][T20840]  ? __pfx___debug_object_init+0x10/0x10
[ 1092.653550][T20840]  ? find_held_lock+0x2b/0x80
[ 1092.653566][T20840]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1092.653590][T20840]  ? __hrtimer_setup+0x178/0x280
[ 1092.653612][T20840]  mac80211_hwsim_new_radio+0x2847/0x57d0
[ 1092.653680][T20840]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1092.653730][T20840]  ? __asan_memcpy+0x3c/0x60
[ 1092.653772][T20840]  hwsim_new_radio_nl+0xc1f/0x1340
[ 1092.653820][T20840]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1092.653876][T20840]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[ 1092.653908][T20840]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[ 1092.653956][T20840]  genl_family_rcv_msg_doit+0x214/0x300
[ 1092.653992][T20840]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1092.654021][T20840]  ? genl_get_cmd+0x3ef/0x720
[ 1092.654059][T20840]  ? bpf_lsm_capable+0x9/0x10
[ 1092.654088][T20840]  ? security_capable+0x80/0x260
[ 1092.654132][T20840]  ? ns_capable+0xd2/0xf0
[ 1092.654163][T20840]  genl_rcv_msg+0x560/0x800
[ 1092.654198][T20840]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1092.654229][T20840]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1092.654287][T20840]  netlink_rcv_skb+0x159/0x420
[ 1092.654328][T20840]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1092.654359][T20840]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1092.654418][T20840]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1092.654464][T20840]  genl_rcv+0x28/0x40
[ 1092.654488][T20840]  netlink_unicast+0x5aa/0x870
[ 1092.654535][T20840]  ? __pfx_netlink_unicast+0x10/0x10
[ 1092.654575][T20840]  ? __pfx___might_resched+0x10/0x10
[ 1092.654615][T20840]  ? __lock_acquire+0x4a5/0x2630
[ 1092.654662][T20840]  netlink_sendmsg+0x8b0/0xda0
[ 1092.654709][T20840]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1092.654747][T20840]  ? __import_iovec+0x1d2/0x640
[ 1092.654782][T20840]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1092.654835][T20840]  ____sys_sendmsg+0x9e1/0xb70
[ 1092.654861][T20840]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1092.654905][T20840]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1092.654938][T20840]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1092.654989][T20840]  ___sys_sendmsg+0x190/0x1e0
[ 1092.655021][T20840]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1092.655090][T20840]  __sys_sendmsg+0x170/0x220
[ 1092.655124][T20840]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1092.655158][T20840]  ? __x64_sys_futex+0x34f/0x4d0
[ 1092.655208][T20840]  do_syscall_64+0x106/0xf80
[ 1092.655240][T20840]  ? clear_bhb_loop+0x40/0x90
[ 1092.655272][T20840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1092.655298][T20840] RIP: 0033:0x7f4f2a39c799
[ 1092.655320][T20840] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1092.655345][T20840] RSP: 002b:00007f4f2b2c7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1092.655369][T20840] RAX: ffffffffffffffda RBX: 00007f4f2a615fa0 RCX: 00007f4f2a39c799
[ 1092.655386][T20840] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1092.655403][T20840] RBP: 00007f4f2a432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1092.655419][T20840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1092.655434][T20840] R13: 00007f4f2a616038 R14: 00007f4f2a615fa0 R15: 00007ffd4a0fb698
[ 1092.655469][T20840]  </TASK>
[ 1093.154337][T20842] FAULT_INJECTION: forcing a failure.
[ 1093.154337][T20842] name failslab, interval 1, probability 0, space 0, times 0
[ 1093.228185][T20842] CPU: 0 UID: 0 PID: 20842 Comm: syz.8.3337 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1093.228235][T20842] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1093.228247][T20842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1093.228264][T20842] Call Trace:
[ 1093.228274][T20842]  <TASK>
[ 1093.228285][T20842]  dump_stack_lvl+0x100/0x190
[ 1093.228332][T20842]  should_fail_ex.cold+0x5/0xa
[ 1093.228364][T20842]  ? cache_create_net+0xa2/0x1f0
[ 1093.228521][T20842]  should_failslab+0xc2/0x120
[ 1093.228554][T20842]  __kmalloc_noprof+0xe0/0x850
[ 1093.228603][T20842]  cache_create_net+0xa2/0x1f0
[ 1093.228642][T20842]  nfsd_idmap_init+0x11f/0x250
[ 1093.228696][T20842]  ? __pfx_nfsd_net_init+0x10/0x10
[ 1093.228730][T20842]  nfsd_net_init+0x69/0x3d0
[ 1093.228760][T20842]  ? __pfx_nfsd_net_init+0x10/0x10
[ 1093.228788][T20842]  ops_init+0x1e2/0x5f0
[ 1093.228867][T20842]  setup_net+0x118/0x3a0
[ 1093.228906][T20842]  ? __pfx_setup_net+0x10/0x10
[ 1093.228941][T20842]  ? lockdep_init_map_type+0x5c/0x250
[ 1093.228973][T20842]  ? mutex_init_lockep+0x110/0x150
[ 1093.229021][T20842]  copy_net_ns+0x46f/0x7c0
[ 1093.229050][T20842]  create_new_namespaces+0x3ea/0xac0
[ 1093.229090][T20842]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1093.229124][T20842]  ksys_unshare+0x473/0xad0
[ 1093.229160][T20842]  ? __pfx_ksys_unshare+0x10/0x10
[ 1093.229208][T20842]  __x64_sys_unshare+0x31/0x40
[ 1093.229241][T20842]  do_syscall_64+0x106/0xf80
[ 1093.229277][T20842]  ? clear_bhb_loop+0x40/0x90
[ 1093.229311][T20842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1093.229342][T20842] RIP: 0033:0x7f4d3079c799
[ 1093.229366][T20842] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1093.229393][T20842] RSP: 002b:00007f4d2e9d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1093.229430][T20842] RAX: ffffffffffffffda RBX: 00007f4d30a16090 RCX: 00007f4d3079c799
[ 1093.229451][T20842] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1093.229468][T20842] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1093.229486][T20842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1093.229504][T20842] R13: 00007f4d30a16128 R14: 00007f4d30a16090 R15: 00007fffbd97ee38
[ 1093.229545][T20842]  </TASK>
[ 1094.298983][T20870] ima: policy update failed
[ 1094.343338][   T30] audit: type=1802 audit(2147485068.771:39): pid=20870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.3344" res=0 errno=0
[ 1096.209944][T20914] FAULT_INJECTION: forcing a failure.
[ 1096.209944][T20914] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1096.237311][T20914] CPU: 1 UID: 0 PID: 20914 Comm: syz.8.3351 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1096.237339][T20914] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1096.237346][T20914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1096.237356][T20914] Call Trace:
[ 1096.237361][T20914]  <TASK>
[ 1096.237368][T20914]  dump_stack_lvl+0x100/0x190
[ 1096.237396][T20914]  should_fail_ex.cold+0x5/0xa
[ 1096.237414][T20914]  get_futex_key+0x1d2/0x1620
[ 1096.237434][T20914]  ? __pfx_get_futex_key+0x10/0x10
[ 1096.237458][T20914]  futex_wake+0xea/0x530
[ 1096.237481][T20914]  ? __pfx_futex_wake+0x10/0x10
[ 1096.237504][T20914]  ? putname+0xb1/0x110
[ 1096.237519][T20914]  ? kmem_cache_free+0x124/0x6a0
[ 1096.237545][T20914]  do_futex+0x32b/0x350
[ 1096.237564][T20914]  ? __pfx_do_futex+0x10/0x10
[ 1096.237581][T20914]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1096.237601][T20914]  ? __fget_files+0x21f/0x3d0
[ 1096.237617][T20914]  __x64_sys_futex+0x34f/0x4d0
[ 1096.237637][T20914]  ? __x64_sys_openat+0x12d/0x210
[ 1096.237656][T20914]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1096.237689][T20914]  do_syscall_64+0x106/0xf80
[ 1096.237711][T20914]  ? clear_bhb_loop+0x40/0x90
[ 1096.237730][T20914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1096.237746][T20914] RIP: 0033:0x7f4d3079c799
[ 1096.237760][T20914] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1096.237775][T20914] RSP: 002b:00007f4d2e9f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1096.237790][T20914] RAX: ffffffffffffffda RBX: 00007f4d30a15fa8 RCX: 00007f4d3079c799
[ 1096.237801][T20914] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4d30a15fac
[ 1096.237811][T20914] RBP: 00007f4d30a15fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1096.237820][T20914] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[ 1096.237829][T20914] R13: 00007f4d30a16038 R14: 00007fffbd97ed50 R15: 00007fffbd97ee38
[ 1096.237850][T20914]  </TASK>
[ 1097.430471][T20934] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3353'.
[ 1097.595568][T20934] binder: 20919:20934 ioctl 40086602 e20 returned -22
[ 1100.912596][T20984] FAULT_INJECTION: forcing a failure.
[ 1100.912596][T20984] name failslab, interval 1, probability 0, space 0, times 0
[ 1101.016511][T20984] CPU: 0 UID: 0 PID: 20984 Comm: syz.4.3367 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1101.016560][T20984] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1101.016572][T20984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1101.016588][T20984] Call Trace:
[ 1101.016598][T20984]  <TASK>
[ 1101.016610][T20984]  dump_stack_lvl+0x100/0x190
[ 1101.016659][T20984]  should_fail_ex.cold+0x5/0xa
[ 1101.016692][T20984]  ? security_inode_init_security+0x113/0x370
[ 1101.016733][T20984]  should_failslab+0xc2/0x120
[ 1101.016764][T20984]  __kmalloc_noprof+0xe0/0x850
[ 1101.016812][T20984]  security_inode_init_security+0x113/0x370
[ 1101.016854][T20984]  ? __pfx_shmem_initxattrs+0x10/0x10
[ 1101.016888][T20984]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1101.016941][T20984]  shmem_tmpfile+0xfa/0x210
[ 1101.016975][T20984]  ? d_alloc+0x176/0x1e0
[ 1101.017007][T20984]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1101.017042][T20984]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1101.017084][T20984]  ? _raw_spin_unlock+0x28/0x50
[ 1101.017125][T20984]  vfs_tmpfile+0x2be/0x9a0
[ 1101.017165][T20984]  path_openat+0x164e/0x31a0
[ 1101.017193][T20984]  ? kasan_save_stack+0x3f/0x50
[ 1101.017233][T20984]  ? kasan_save_stack+0x30/0x50
[ 1101.017273][T20984]  ? __kasan_slab_alloc+0x89/0x90
[ 1101.017299][T20984]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1101.017337][T20984]  ? do_getname+0x35/0x390
[ 1101.017380][T20984]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1101.017414][T20984]  ? __pfx_path_openat+0x10/0x10
[ 1101.017458][T20984]  do_file_open+0x20e/0x430
[ 1101.017490][T20984]  ? __pfx_do_file_open+0x10/0x10
[ 1101.017547][T20984]  ? _raw_spin_unlock+0x28/0x50
[ 1101.017580][T20984]  ? alloc_fd+0x476/0x790
[ 1101.017619][T20984]  do_sys_openat2+0x10d/0x1e0
[ 1101.017655][T20984]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1101.017693][T20984]  ? __fget_files+0x21f/0x3d0
[ 1101.017729][T20984]  __x64_sys_open+0xfe/0x1d0
[ 1101.017765][T20984]  ? __pfx___x64_sys_open+0x10/0x10
[ 1101.017816][T20984]  do_syscall_64+0x106/0xf80
[ 1101.017852][T20984]  ? clear_bhb_loop+0x40/0x90
[ 1101.017886][T20984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1101.017916][T20984] RIP: 0033:0x7ff41719c799
[ 1101.017939][T20984] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1101.017968][T20984] RSP: 002b:00007ff417fce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1101.017994][T20984] RAX: ffffffffffffffda RBX: 00007ff417415fa0 RCX: 00007ff41719c799
[ 1101.018016][T20984] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1101.018036][T20984] RBP: 00007ff417232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1101.018053][T20984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1101.018070][T20984] R13: 00007ff417416038 R14: 00007ff417415fa0 R15: 00007ffe399b4328
[ 1101.018104][T20984]  </TASK>
[ 1101.646115][T20993] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input67
[ 1101.869198][T20995] can: request_module (can-proto-4) failed.
[ 1103.118229][T21027] netlink: zone id is out of range
[ 1103.123675][T21027] netlink: zone id is out of range
[ 1103.129392][T21027] netlink: zone id is out of range
[ 1103.140373][T21027] netlink: zone id is out of range
[ 1103.168290][T21027] netlink: zone id is out of range
[ 1103.209524][T21027] netlink: zone id is out of range
[ 1103.215000][T21027] netlink: zone id is out of range
[ 1103.222312][T21027] netlink: zone id is out of range
[ 1103.234793][T21027] netlink: zone id is out of range
[ 1103.555422][T21027] netlink: set zone limit has 8 unknown bytes
[ 1103.590938][T21038] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3378'.
[ 1104.167611][T21049] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE�r��҄y�*�"�l-���y–��L̓���]'
[ 1104.209732][T21049] CPU: 1 UID: 0 PID: 21049 Comm: syz.4.3382 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1104.209780][T21049] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1104.209792][T21049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1104.209810][T21049] Call Trace:
[ 1104.209820][T21049]  <TASK>
[ 1104.209832][T21049]  dump_stack_lvl+0x100/0x190
[ 1104.209894][T21049]  sysfs_warn_dup.cold+0x1c/0x28
[ 1104.209934][T21049]  sysfs_do_create_link_sd+0x113/0x140
[ 1104.209978][T21049]  sysfs_create_link+0x61/0xc0
[ 1104.210017][T21049]  device_add+0x675/0x1950
[ 1104.210054][T21049]  ? __pfx_device_add+0x10/0x10
[ 1104.210085][T21049]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1104.210141][T21049]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[ 1104.210189][T21049]  wiphy_register+0x1e5b/0x2d30
[ 1104.210232][T21049]  ? __rtnl_unlock+0xb9/0xf0
[ 1104.210275][T21049]  ? netdev_run_todo+0x7a0/0x12c0
[ 1104.210323][T21049]  ? __pfx_wiphy_register+0x10/0x10
[ 1104.210366][T21049]  ? __asan_memset+0x23/0x50
[ 1104.210405][T21049]  ? minstrel_ht_alloc+0x5e6/0x7f0
[ 1104.210461][T21049]  ieee80211_register_hw+0x2cfd/0x4140
[ 1104.210522][T21049]  ? __pfx_ieee80211_register_hw+0x10/0x10
[ 1104.210564][T21049]  ? __pfx___debug_object_init+0x10/0x10
[ 1104.210617][T21049]  ? find_held_lock+0x2b/0x80
[ 1104.210646][T21049]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1104.210693][T21049]  ? __hrtimer_setup+0x178/0x280
[ 1104.210745][T21049]  mac80211_hwsim_new_radio+0x2847/0x57d0
[ 1104.210820][T21049]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1104.210870][T21049]  ? __asan_memcpy+0x3c/0x60
[ 1104.210912][T21049]  hwsim_new_radio_nl+0xc1f/0x1340
[ 1104.210960][T21049]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1104.211016][T21049]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[ 1104.211048][T21049]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[ 1104.211087][T21049]  genl_family_rcv_msg_doit+0x214/0x300
[ 1104.211126][T21049]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1104.211156][T21049]  ? genl_get_cmd+0x3ef/0x720
[ 1104.211193][T21049]  ? bpf_lsm_capable+0x9/0x10
[ 1104.211223][T21049]  ? security_capable+0x80/0x260
[ 1104.211266][T21049]  ? ns_capable+0xd2/0xf0
[ 1104.211296][T21049]  genl_rcv_msg+0x560/0x800
[ 1104.211330][T21049]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1104.211360][T21049]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1104.211418][T21049]  netlink_rcv_skb+0x159/0x420
[ 1104.211459][T21049]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1104.211491][T21049]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1104.211548][T21049]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1104.211593][T21049]  genl_rcv+0x28/0x40
[ 1104.211618][T21049]  netlink_unicast+0x5aa/0x870
[ 1104.211665][T21049]  ? __pfx_netlink_unicast+0x10/0x10
[ 1104.211707][T21049]  ? __pfx___might_resched+0x10/0x10
[ 1104.211748][T21049]  ? __lock_acquire+0x4a5/0x2630
[ 1104.211796][T21049]  netlink_sendmsg+0x8b0/0xda0
[ 1104.211846][T21049]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1104.211888][T21049]  ? __import_iovec+0x1d2/0x640
[ 1104.211925][T21049]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1104.211975][T21049]  ____sys_sendmsg+0x9e1/0xb70
[ 1104.212003][T21049]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1104.212049][T21049]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1104.212089][T21049]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1104.212150][T21049]  ___sys_sendmsg+0x190/0x1e0
[ 1104.212183][T21049]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1104.212262][T21049]  __sys_sendmsg+0x170/0x220
[ 1104.212303][T21049]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1104.212342][T21049]  ? __x64_sys_futex+0x34f/0x4d0
[ 1104.212401][T21049]  do_syscall_64+0x106/0xf80
[ 1104.212440][T21049]  ? clear_bhb_loop+0x40/0x90
[ 1104.212475][T21049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1104.212506][T21049] RIP: 0033:0x7ff41719c799
[ 1104.212530][T21049] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1104.212559][T21049] RSP: 002b:00007ff417fce028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1104.212587][T21049] RAX: ffffffffffffffda RBX: 00007ff417415fa0 RCX: 00007ff41719c799
[ 1104.212607][T21049] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1104.212624][T21049] RBP: 00007ff417232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1104.212642][T21049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1104.212660][T21049] R13: 00007ff417416038 R14: 00007ff417415fa0 R15: 00007ffe399b4328
[ 1104.212701][T21049]  </TASK>
[ 1104.896446][T21056] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1104.912843][T21056] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1105.473256][T21056] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1105.497466][T21056] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1105.562371][T21056] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1105.576172][T21056] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1105.585428][T21056] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1105.599770][T21056] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1105.616663][T21056] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1105.629169][T21056] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1105.714651][T21056] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1105.794551][T21056] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1105.810265][T21056] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1105.854171][T21056] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1106.402714][T21082] can: request_module (can-proto-4) failed.
[ 1106.933377][T12415] Bluetooth: hci4: command 0x0406 tx timeout
[ 1107.492628][T12415] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1107.652991][ T5146] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1107.660413][T12415] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1107.812951][T12415] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1107.941816][T21125] FAULT_INJECTION: forcing a failure.
[ 1107.941816][T21125] name failslab, interval 1, probability 0, space 0, times 0
[ 1108.050415][T21125] CPU: 1 UID: 0 PID: 21125 Comm: syz.8.3405 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1108.050443][T21125] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1108.050449][T21125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1108.050459][T21125] Call Trace:
[ 1108.050464][T21125]  <TASK>
[ 1108.050471][T21125]  dump_stack_lvl+0x100/0x190
[ 1108.050498][T21125]  should_fail_ex.cold+0x5/0xa
[ 1108.050517][T21125]  should_failslab+0xc2/0x120
[ 1108.050533][T21125]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 1108.050556][T21125]  ? shmem_alloc_inode+0x25/0x50
[ 1108.050575][T21125]  ? __pfx_shmem_alloc_inode+0x10/0x10
[ 1108.050601][T21125]  shmem_alloc_inode+0x25/0x50
[ 1108.050617][T21125]  alloc_inode+0x68/0x250
[ 1108.050638][T21125]  new_inode+0x22/0x1c0
[ 1108.050659][T21125]  shmem_get_inode+0x212/0x1040
[ 1108.050681][T21125]  ? __pfx_shmem_get_inode+0x10/0x10
[ 1108.050699][T21125]  ? d_add+0x443/0x850
[ 1108.050718][T21125]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1108.050746][T21125]  shmem_mknod+0x20c/0x470
[ 1108.050767][T21125]  ? __pfx_shmem_mknod+0x10/0x10
[ 1108.050785][T21125]  ? bpf_lsm_inode_create+0x9/0x10
[ 1108.050810][T21125]  ? __pfx_shmem_create+0x10/0x10
[ 1108.050829][T21125]  lookup_open.isra.0+0xc47/0x11b0
[ 1108.050855][T21125]  ? __pfx_lookup_open.isra.0+0x10/0x10
[ 1108.050880][T21125]  ? __pfx___might_resched+0x10/0x10
[ 1108.050901][T21125]  ? mnt_get_write_access+0x52/0x2f0
[ 1108.050924][T21125]  ? __pfx_down_write+0x10/0x10
[ 1108.050946][T21125]  ? mnt_get_write_access+0x1e9/0x2f0
[ 1108.050968][T21125]  path_openat+0x2291/0x31a0
[ 1108.050990][T21125]  ? __pfx_path_openat+0x10/0x10
[ 1108.051012][T21125]  do_file_open+0x20e/0x430
[ 1108.051029][T21125]  ? __pfx_do_file_open+0x10/0x10
[ 1108.051058][T21125]  ? alloc_fd+0x476/0x790
[ 1108.051074][T21125]  ? do_getname+0x191/0x390
[ 1108.051097][T21125]  do_sys_openat2+0x10d/0x1e0
[ 1108.051116][T21125]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1108.051137][T21125]  ? __fget_files+0x21f/0x3d0
[ 1108.051155][T21125]  __x64_sys_openat+0x12d/0x210
[ 1108.051175][T21125]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1108.051201][T21125]  do_syscall_64+0x106/0xf80
[ 1108.051221][T21125]  ? clear_bhb_loop+0x40/0x90
[ 1108.051239][T21125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1108.051255][T21125] RIP: 0033:0x7f4d3079c799
[ 1108.051268][T21125] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1108.051283][T21125] RSP: 002b:00007f4d2e9f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1108.051298][T21125] RAX: ffffffffffffffda RBX: 00007f4d30a15fa0 RCX: 00007f4d3079c799
[ 1108.051309][T21125] RDX: 00000000000861c2 RSI: 0000000000000000 RDI: ffffffffffffff9c
[ 1108.051319][T21125] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1108.051329][T21125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1108.051338][T21125] R13: 00007f4d30a16038 R14: 00007f4d30a15fa0 R15: 00007fffbd97ee38
[ 1108.051359][T21125]  </TASK>
[ 1108.510035][T21125] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1108.534931][T21129] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE�r��҄y�*�"�l-���y–��L̓���]'
[ 1108.573638][T21129] CPU: 0 UID: 0 PID: 21129 Comm: syz.7.3406 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1108.573688][T21129] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1108.573700][T21129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1108.573719][T21129] Call Trace:
[ 1108.573729][T21129]  <TASK>
[ 1108.573740][T21129]  dump_stack_lvl+0x100/0x190
[ 1108.573789][T21129]  sysfs_warn_dup.cold+0x1c/0x28
[ 1108.573828][T21129]  sysfs_do_create_link_sd+0x113/0x140
[ 1108.573872][T21129]  sysfs_create_link+0x61/0xc0
[ 1108.573910][T21129]  device_add+0x675/0x1950
[ 1108.573947][T21129]  ? __pfx_device_add+0x10/0x10
[ 1108.573979][T21129]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1108.574027][T21129]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[ 1108.574075][T21129]  wiphy_register+0x1e5b/0x2d30
[ 1108.574116][T21129]  ? __rtnl_unlock+0xb9/0xf0
[ 1108.574158][T21129]  ? netdev_run_todo+0x7a0/0x12c0
[ 1108.574207][T21129]  ? __pfx_wiphy_register+0x10/0x10
[ 1108.574251][T21129]  ? __asan_memset+0x23/0x50
[ 1108.574289][T21129]  ? minstrel_ht_alloc+0x5e6/0x7f0
[ 1108.574347][T21129]  ieee80211_register_hw+0x2cfd/0x4140
[ 1108.574408][T21129]  ? __pfx_ieee80211_register_hw+0x10/0x10
[ 1108.574458][T21129]  ? __pfx___debug_object_init+0x10/0x10
[ 1108.574514][T21129]  ? find_held_lock+0x2b/0x80
[ 1108.574544][T21129]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1108.574593][T21129]  ? __hrtimer_setup+0x178/0x280
[ 1108.574634][T21129]  mac80211_hwsim_new_radio+0x2847/0x57d0
[ 1108.574706][T21129]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1108.574755][T21129]  ? __asan_memcpy+0x3c/0x60
[ 1108.574797][T21129]  hwsim_new_radio_nl+0xc1f/0x1340
[ 1108.574845][T21129]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1108.574900][T21129]  ? kasan_check_range+0xf6/0x1e0
[ 1108.574942][T21129]  genl_family_rcv_msg_doit+0x214/0x300
[ 1108.574973][T21129]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1108.575003][T21129]  ? genl_get_cmd+0x3ef/0x720
[ 1108.575040][T21129]  ? bpf_lsm_capable+0x9/0x10
[ 1108.575070][T21129]  ? security_capable+0x80/0x260
[ 1108.575113][T21129]  ? ns_capable+0xd2/0xf0
[ 1108.575144][T21129]  genl_rcv_msg+0x560/0x800
[ 1108.575178][T21129]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1108.575209][T21129]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1108.575268][T21129]  netlink_rcv_skb+0x159/0x420
[ 1108.575310][T21129]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1108.575342][T21129]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1108.575381][T21129]  ? rcu_is_watching+0x12/0xc0
[ 1108.575435][T21129]  ? __rcu_read_unlock+0x26a/0x5e0
[ 1108.575476][T21129]  ? rcu_is_watching+0x12/0xc0
[ 1108.575527][T21129]  genl_rcv+0x28/0x40
[ 1108.575551][T21129]  netlink_unicast+0x5aa/0x870
[ 1108.575599][T21129]  ? __pfx_netlink_unicast+0x10/0x10
[ 1108.575638][T21129]  ? __pfx___might_resched+0x10/0x10
[ 1108.575677][T21129]  ? __lock_acquire+0x4a5/0x2630
[ 1108.575724][T21129]  netlink_sendmsg+0x8b0/0xda0
[ 1108.575773][T21129]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1108.575812][T21129]  ? __import_iovec+0x1d2/0x640
[ 1108.575849][T21129]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1108.575897][T21129]  ____sys_sendmsg+0x9e1/0xb70
[ 1108.575924][T21129]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1108.575969][T21129]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1108.576008][T21129]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1108.576055][T21129]  ___sys_sendmsg+0x190/0x1e0
[ 1108.576089][T21129]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1108.576169][T21129]  __sys_sendmsg+0x170/0x220
[ 1108.576210][T21129]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1108.576248][T21129]  ? __x64_sys_futex+0x34f/0x4d0
[ 1108.576308][T21129]  do_syscall_64+0x106/0xf80
[ 1108.576347][T21129]  ? clear_bhb_loop+0x40/0x90
[ 1108.576383][T21129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1108.576412][T21129] RIP: 0033:0x7f4f2a39c799
[ 1108.576436][T21129] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1108.576478][T21129] RSP: 002b:00007f4f2b2c7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1108.576506][T21129] RAX: ffffffffffffffda RBX: 00007f4f2a615fa0 RCX: 00007f4f2a39c799
[ 1108.576526][T21129] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1108.576543][T21129] RBP: 00007f4f2a432c99 R08: 0000000000000000 R09: 0000000000000000
[ 1108.576561][T21129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1108.576579][T21129] R13: 00007f4f2a616038 R14: 00007f4f2a615fa0 R15: 00007ffd4a0fb698
[ 1108.576616][T21129]  </TASK>
[ 1109.024934][T12415] Bluetooth: hci4: command 0x0406 tx timeout
[ 1109.576975][ T5146] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1109.644430][T21141] bond0: invalid ARP target specified
[ 1109.723180][T21147] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3409'.
[ 1109.733128][ T5146] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1109.734552][T12415] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1109.763002][T21149] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3407'.
[ 1109.876070][T21147] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1109.892691][T12415] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1109.903114][T21147] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1109.961818][T21147] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1109.986474][T21147] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1111.401821][T21195] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3424'.
[ 1111.421513][T21195] netlink: 25 bytes leftover after parsing attributes in process `syz.5.3424'.
[ 1111.652682][T12415] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1111.812619][T12415] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1111.823215][T12415] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1111.972670][T12415] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1112.665935][T21225] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3430'.
[ 1114.028516][T21254] FAULT_INJECTION: forcing a failure.
[ 1114.028516][T21254] name failslab, interval 1, probability 0, space 0, times 0
[ 1114.042457][T21254] CPU: 1 UID: 0 PID: 21254 Comm: syz.5.3440 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1114.042504][T21254] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1114.042515][T21254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1114.042534][T21254] Call Trace:
[ 1114.042544][T21254]  <TASK>
[ 1114.042554][T21254]  dump_stack_lvl+0x100/0x190
[ 1114.042603][T21254]  should_fail_ex.cold+0x5/0xa
[ 1114.042637][T21254]  ? security_inode_init_security+0x113/0x370
[ 1114.042677][T21254]  should_failslab+0xc2/0x120
[ 1114.042707][T21254]  __kmalloc_noprof+0xe0/0x850
[ 1114.042757][T21254]  security_inode_init_security+0x113/0x370
[ 1114.042797][T21254]  ? __pfx_shmem_initxattrs+0x10/0x10
[ 1114.042832][T21254]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1114.042884][T21254]  shmem_tmpfile+0xfa/0x210
[ 1114.042916][T21254]  ? d_alloc+0x176/0x1e0
[ 1114.042947][T21254]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1114.042982][T21254]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1114.043023][T21254]  ? _raw_spin_unlock+0x28/0x50
[ 1114.043063][T21254]  vfs_tmpfile+0x2be/0x9a0
[ 1114.043102][T21254]  path_openat+0x164e/0x31a0
[ 1114.043130][T21254]  ? kasan_save_stack+0x3f/0x50
[ 1114.043170][T21254]  ? kasan_save_stack+0x30/0x50
[ 1114.043209][T21254]  ? __kasan_slab_alloc+0x89/0x90
[ 1114.043235][T21254]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1114.043274][T21254]  ? do_getname+0x35/0x390
[ 1114.043308][T21254]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1114.043342][T21254]  ? __pfx_path_openat+0x10/0x10
[ 1114.043386][T21254]  do_file_open+0x20e/0x430
[ 1114.043419][T21254]  ? __pfx_do_file_open+0x10/0x10
[ 1114.043483][T21254]  ? _raw_spin_unlock+0x28/0x50
[ 1114.043516][T21254]  ? alloc_fd+0x476/0x790
[ 1114.043556][T21254]  do_sys_openat2+0x10d/0x1e0
[ 1114.043592][T21254]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1114.043627][T21254]  ? __fget_files+0x21f/0x3d0
[ 1114.043663][T21254]  __x64_sys_open+0xfe/0x1d0
[ 1114.043698][T21254]  ? __pfx___x64_sys_open+0x10/0x10
[ 1114.043749][T21254]  do_syscall_64+0x106/0xf80
[ 1114.043786][T21254]  ? clear_bhb_loop+0x40/0x90
[ 1114.043820][T21254]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1114.043848][T21254] RIP: 0033:0x7f0792b9c799
[ 1114.043871][T21254] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1114.043899][T21254] RSP: 002b:00007f0793af8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1114.043924][T21254] RAX: ffffffffffffffda RBX: 00007f0792e15fa0 RCX: 00007f0792b9c799
[ 1114.043942][T21254] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1114.043962][T21254] RBP: 00007f0792c32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1114.043980][T21254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1114.043998][T21254] R13: 00007f0792e16038 R14: 00007f0792e15fa0 R15: 00007fffec54eeb8
[ 1114.044038][T21254]  </TASK>
[ 1114.943806][T21270] netlink: 354 bytes leftover after parsing attributes in process `syz.5.3444'.
[ 1115.333570][T21282] usb usb36: usbfs: process 21282 (syz.5.3447) did not claim interface 0 before use
[ 1115.901633][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.922813][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.483609][T21305] FAULT_INJECTION: forcing a failure.
[ 1116.483609][T21305] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.533340][T21305] CPU: 1 UID: 0 PID: 21305 Comm: syz.8.3452 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1116.533390][T21305] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1116.533401][T21305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1116.533420][T21305] Call Trace:
[ 1116.533430][T21305]  <TASK>
[ 1116.533442][T21305]  dump_stack_lvl+0x100/0x190
[ 1116.533489][T21305]  should_fail_ex.cold+0x5/0xa
[ 1116.533524][T21305]  should_failslab+0xc2/0x120
[ 1116.533555][T21305]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1116.533597][T21305]  ? security_file_alloc+0x34/0x2c0
[ 1116.533635][T21305]  ? trace_kmem_cache_alloc+0xf3/0x120
[ 1116.533673][T21305]  security_file_alloc+0x34/0x2c0
[ 1116.533709][T21305]  init_file+0x95/0x480
[ 1116.533743][T21305]  alloc_empty_file+0x73/0x1c0
[ 1116.533779][T21305]  path_openat+0xe8/0x31a0
[ 1116.533807][T21305]  ? kasan_save_stack+0x3f/0x50
[ 1116.533844][T21305]  ? kasan_save_stack+0x30/0x50
[ 1116.533882][T21305]  ? kasan_save_track+0x14/0x30
[ 1116.533920][T21305]  ? __kasan_slab_alloc+0x89/0x90
[ 1116.533945][T21305]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1116.533982][T21305]  ? do_getname+0x35/0x390
[ 1116.534014][T21305]  ? do_sys_openat2+0xc5/0x1e0
[ 1116.534048][T21305]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.534083][T21305]  ? __pfx_path_openat+0x10/0x10
[ 1116.534126][T21305]  do_file_open+0x20e/0x430
[ 1116.534157][T21305]  ? __pfx_do_file_open+0x10/0x10
[ 1116.534209][T21305]  ? alloc_fd+0x476/0x790
[ 1116.534247][T21305]  ? do_getname+0x191/0x390
[ 1116.534285][T21305]  do_sys_openat2+0x10d/0x1e0
[ 1116.534321][T21305]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1116.534354][T21305]  ? blkcg_maybe_throttle_current+0x5df/0xeb0
[ 1116.534471][T21305]  __x64_sys_openat+0x12d/0x210
[ 1116.534509][T21305]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1116.534560][T21305]  do_syscall_64+0x106/0xf80
[ 1116.534598][T21305]  ? clear_bhb_loop+0x40/0x90
[ 1116.534634][T21305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.534664][T21305] RIP: 0033:0x7f4d3079c799
[ 1116.534688][T21305] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1116.534716][T21305] RSP: 002b:00007f4d2e9f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1116.534744][T21305] RAX: ffffffffffffffda RBX: 00007f4d30a15fa0 RCX: 00007f4d3079c799
[ 1116.534764][T21305] RDX: 0000000000008242 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1116.534783][T21305] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1116.534801][T21305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1116.534818][T21305] R13: 00007f4d30a16038 R14: 00007f4d30a15fa0 R15: 00007fffbd97ee38
[ 1116.534858][T21305]  </TASK>
[ 1118.371503][T21340] zswap: compressor  not available
[ 1118.468547][T21333] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1118.477066][T21333] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1118.493199][T21333] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1118.506025][T21333] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1118.578718][T21333] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1119.044435][T21362] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input72
[ 1119.588072][T21374] can: request_module (can-proto-4) failed.
[ 1119.734279][T12415] Bluetooth: hci4: command 0x0406 tx timeout
[ 1120.444810][T21397] usb usb36: usbfs: process 21397 (syz.8.3474) did not claim interface 0 before use
[ 1120.500692][   T30] audit: type=1800 audit(4294967313.300:40): pid=21399 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=99962 res=0 errno=0
[ 1120.546077][T12415] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1120.552250][ T5146] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1120.552278][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1120.615225][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1122.990851][T21457] openvswitch: .^: Dropping previously announced user features
[ 1123.619358][T21474] zswap: compressor  not available
[ 1123.781070][T21482] netlink: 326 bytes leftover after parsing attributes in process `syz.7.3494'.
[ 1125.548838][T21521] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input74
[ 1126.006056][T21529] usb usb36: usbfs: process 21529 (syz.5.3506) did not claim interface 0 before use
[ 1126.376054][T21533] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE�r��҄y�*�"�l-���y–��L̓���]'
[ 1126.429144][T21533] CPU: 0 UID: 0 PID: 21533 Comm: syz.8.3508 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1126.429171][T21533] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1126.429178][T21533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1126.429187][T21533] Call Trace:
[ 1126.429194][T21533]  <TASK>
[ 1126.429201][T21533]  dump_stack_lvl+0x100/0x190
[ 1126.429230][T21533]  sysfs_warn_dup.cold+0x1c/0x28
[ 1126.429251][T21533]  sysfs_do_create_link_sd+0x113/0x140
[ 1126.429274][T21533]  sysfs_create_link+0x61/0xc0
[ 1126.429294][T21533]  device_add+0x675/0x1950
[ 1126.429315][T21533]  ? __pfx_device_add+0x10/0x10
[ 1126.429331][T21533]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1126.429357][T21533]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[ 1126.429381][T21533]  wiphy_register+0x1e5b/0x2d30
[ 1126.429403][T21533]  ? __rtnl_unlock+0xb9/0xf0
[ 1126.429425][T21533]  ? netdev_run_todo+0x7a0/0x12c0
[ 1126.429450][T21533]  ? __pfx_wiphy_register+0x10/0x10
[ 1126.429473][T21533]  ? __asan_memset+0x23/0x50
[ 1126.429494][T21533]  ? minstrel_ht_alloc+0x5e6/0x7f0
[ 1126.429524][T21533]  ieee80211_register_hw+0x2cfd/0x4140
[ 1126.429559][T21533]  ? __pfx_ieee80211_register_hw+0x10/0x10
[ 1126.429582][T21533]  ? __pfx___debug_object_init+0x10/0x10
[ 1126.429610][T21533]  ? find_held_lock+0x2b/0x80
[ 1126.429625][T21533]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1126.429650][T21533]  ? __hrtimer_setup+0x178/0x280
[ 1126.429672][T21533]  mac80211_hwsim_new_radio+0x2847/0x57d0
[ 1126.429709][T21533]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[ 1126.429734][T21533]  ? __asan_memcpy+0x3c/0x60
[ 1126.429756][T21533]  hwsim_new_radio_nl+0xc1f/0x1340
[ 1126.429781][T21533]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1126.429810][T21533]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[ 1126.429827][T21533]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[ 1126.429847][T21533]  genl_family_rcv_msg_doit+0x214/0x300
[ 1126.429865][T21533]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1126.429880][T21533]  ? genl_get_cmd+0x3ef/0x720
[ 1126.429899][T21533]  ? bpf_lsm_capable+0x9/0x10
[ 1126.429914][T21533]  ? security_capable+0x80/0x260
[ 1126.429937][T21533]  ? ns_capable+0xd2/0xf0
[ 1126.429953][T21533]  genl_rcv_msg+0x560/0x800
[ 1126.429971][T21533]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1126.429986][T21533]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[ 1126.430016][T21533]  netlink_rcv_skb+0x159/0x420
[ 1126.430038][T21533]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1126.430062][T21533]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1126.430094][T21533]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1126.430121][T21533]  genl_rcv+0x28/0x40
[ 1126.430144][T21533]  netlink_unicast+0x5aa/0x870
[ 1126.430192][T21533]  ? __pfx_netlink_unicast+0x10/0x10
[ 1126.430227][T21533]  ? __pfx___might_resched+0x10/0x10
[ 1126.430248][T21533]  ? __lock_acquire+0x4a5/0x2630
[ 1126.430272][T21533]  netlink_sendmsg+0x8b0/0xda0
[ 1126.430297][T21533]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1126.430318][T21533]  ? __import_iovec+0x1d2/0x640
[ 1126.430337][T21533]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1126.430363][T21533]  ____sys_sendmsg+0x9e1/0xb70
[ 1126.430378][T21533]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1126.430401][T21533]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1126.430421][T21533]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1126.430447][T21533]  ___sys_sendmsg+0x190/0x1e0
[ 1126.430464][T21533]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1126.430505][T21533]  __sys_sendmsg+0x170/0x220
[ 1126.430525][T21533]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1126.430545][T21533]  ? __x64_sys_futex+0x34f/0x4d0
[ 1126.430578][T21533]  do_syscall_64+0x106/0xf80
[ 1126.430599][T21533]  ? clear_bhb_loop+0x40/0x90
[ 1126.430617][T21533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1126.430634][T21533] RIP: 0033:0x7f4d3079c799
[ 1126.430647][T21533] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1126.430663][T21533] RSP: 002b:00007f4d2e9f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1126.430678][T21533] RAX: ffffffffffffffda RBX: 00007f4d30a15fa0 RCX: 00007f4d3079c799
[ 1126.430688][T21533] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1126.430698][T21533] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1126.430708][T21533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1126.430716][T21533] R13: 00007f4d30a16038 R14: 00007f4d30a15fa0 R15: 00007fffbd97ee38
[ 1126.430740][T21533]  </TASK>
[ 1128.507621][T21549] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3512'.
[ 1128.564498][T21551] binder: 21544:21551 ioctl 40086602 e20 returned -22
[ 1128.816689][T21565] FAULT_INJECTION: forcing a failure.
[ 1128.816689][T21565] name failslab, interval 1, probability 0, space 0, times 0
[ 1128.846793][T21565] CPU: 1 UID: 0 PID: 21565 Comm: syz.8.3517 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1128.846821][T21565] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1128.846827][T21565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1128.846836][T21565] Call Trace:
[ 1128.846842][T21565]  <TASK>
[ 1128.846848][T21565]  dump_stack_lvl+0x100/0x190
[ 1128.846876][T21565]  should_fail_ex.cold+0x5/0xa
[ 1128.846901][T21565]  ? security_inode_init_security+0x113/0x370
[ 1128.846924][T21565]  should_failslab+0xc2/0x120
[ 1128.846940][T21565]  __kmalloc_noprof+0xe0/0x850
[ 1128.846966][T21565]  security_inode_init_security+0x113/0x370
[ 1128.846987][T21565]  ? __pfx_shmem_initxattrs+0x10/0x10
[ 1128.847005][T21565]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1128.847032][T21565]  shmem_tmpfile+0xfa/0x210
[ 1128.847049][T21565]  ? d_alloc+0x176/0x1e0
[ 1128.847066][T21565]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1128.847085][T21565]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1128.847106][T21565]  ? _raw_spin_unlock+0x28/0x50
[ 1128.847128][T21565]  vfs_tmpfile+0x2be/0x9a0
[ 1128.847148][T21565]  path_openat+0x164e/0x31a0
[ 1128.847163][T21565]  ? kasan_save_stack+0x3f/0x50
[ 1128.847184][T21565]  ? kasan_save_stack+0x30/0x50
[ 1128.847206][T21565]  ? __kasan_slab_alloc+0x89/0x90
[ 1128.847219][T21565]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1128.847239][T21565]  ? do_getname+0x35/0x390
[ 1128.847256][T21565]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1128.847274][T21565]  ? __pfx_path_openat+0x10/0x10
[ 1128.847297][T21565]  do_file_open+0x20e/0x430
[ 1128.847313][T21565]  ? __pfx_do_file_open+0x10/0x10
[ 1128.847342][T21565]  ? _raw_spin_unlock+0x28/0x50
[ 1128.847359][T21565]  ? alloc_fd+0x476/0x790
[ 1128.847379][T21565]  do_sys_openat2+0x10d/0x1e0
[ 1128.847401][T21565]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1128.847421][T21565]  ? __fget_files+0x21f/0x3d0
[ 1128.847439][T21565]  __x64_sys_open+0xfe/0x1d0
[ 1128.847458][T21565]  ? __pfx___x64_sys_open+0x10/0x10
[ 1128.847484][T21565]  do_syscall_64+0x106/0xf80
[ 1128.847503][T21565]  ? clear_bhb_loop+0x40/0x90
[ 1128.847521][T21565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1128.847536][T21565] RIP: 0033:0x7f4d3079c799
[ 1128.847549][T21565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1128.847564][T21565] RSP: 002b:00007f4d2e9f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1128.847579][T21565] RAX: ffffffffffffffda RBX: 00007f4d30a15fa0 RCX: 00007f4d3079c799
[ 1128.847589][T21565] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1128.847598][T21565] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1128.847607][T21565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1128.847616][T21565] R13: 00007f4d30a16038 R14: 00007f4d30a15fa0 R15: 00007fffbd97ee38
[ 1128.847636][T21565]  </TASK>
[ 1129.166373][T21565] FAULT_INJECTION: forcing a failure.
[ 1129.166373][T21565] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1129.443031][T21565] CPU: 0 UID: 0 PID: 21565 Comm: syz.8.3517 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1129.443088][T21565] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1129.443099][T21565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1129.443114][T21565] Call Trace:
[ 1129.443123][T21565]  <TASK>
[ 1129.443135][T21565]  dump_stack_lvl+0x100/0x190
[ 1129.443179][T21565]  should_fail_ex.cold+0x5/0xa
[ 1129.443211][T21565]  get_futex_key+0x1d2/0x1620
[ 1129.443247][T21565]  ? __pfx_get_futex_key+0x10/0x10
[ 1129.443276][T21565]  ? stack_trace_save+0x8e/0xc0
[ 1129.443304][T21565]  ? __pfx_stack_trace_save+0x10/0x10
[ 1129.443332][T21565]  ? stack_depot_save_flags+0x27/0x9d0
[ 1129.443368][T21565]  futex_wait_setup+0x83/0x510
[ 1129.443421][T21565]  __futex_wait+0x19f/0x300
[ 1129.443459][T21565]  ? __pfx___futex_wait+0x10/0x10
[ 1129.443503][T21565]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1129.443547][T21565]  ? futex_hash+0x2c5/0x380
[ 1129.443591][T21565]  futex_wait+0xed/0x380
[ 1129.443628][T21565]  ? __pfx_futex_wait+0x10/0x10
[ 1129.443685][T21565]  do_futex+0x1ef/0x350
[ 1129.443719][T21565]  ? __pfx_do_futex+0x10/0x10
[ 1129.443757][T21565]  ? __fget_files+0x21f/0x3d0
[ 1129.443786][T21565]  __x64_sys_futex+0x34f/0x4d0
[ 1129.443824][T21565]  ? __pfx___x64_sys_mq_open+0x10/0x10
[ 1129.443869][T21565]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1129.443919][T21565]  do_syscall_64+0x106/0xf80
[ 1129.443958][T21565]  ? clear_bhb_loop+0x40/0x90
[ 1129.443993][T21565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1129.444020][T21565] RIP: 0033:0x7f4d3079c799
[ 1129.444053][T21565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1129.444083][T21565] RSP: 002b:00007f4d2e9f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1129.444109][T21565] RAX: ffffffffffffffda RBX: 00007f4d30a15fa8 RCX: 00007f4d3079c799
[ 1129.444128][T21565] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4d30a15fa8
[ 1129.444145][T21565] RBP: 00007f4d30a15fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1129.444163][T21565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1129.444180][T21565] R13: 00007f4d30a16038 R14: 00007fffbd97ed50 R15: 00007fffbd97ee38
[ 1129.444219][T21565]  </TASK>
[ 1130.544406][T21582] zswap: compressor  not available
[ 1130.705525][T21596] netlink: 326 bytes leftover after parsing attributes in process `syz.5.3524'.
[ 1131.530583][T21610] FAULT_INJECTION: forcing a failure.
[ 1131.530583][T21610] name failslab, interval 1, probability 0, space 0, times 0
[ 1131.574790][T21610] CPU: 1 UID: 0 PID: 21610 Comm: syz.4.3528 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1131.574837][T21610] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1131.574849][T21610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1131.574866][T21610] Call Trace:
[ 1131.574877][T21610]  <TASK>
[ 1131.574888][T21610]  dump_stack_lvl+0x100/0x190
[ 1131.574936][T21610]  should_fail_ex.cold+0x5/0xa
[ 1131.574968][T21610]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1131.575007][T21610]  should_failslab+0xc2/0x120
[ 1131.575037][T21610]  __kmalloc_noprof+0xe0/0x850
[ 1131.575084][T21610]  tomoyo_realpath_from_path+0xb6/0x690
[ 1131.575128][T21610]  tomoyo_check_open_permission+0x2af/0x3c0
[ 1131.575162][T21610]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1131.575242][T21610]  ? lock_acquire+0x1cf/0x380
[ 1131.575278][T21610]  ? find_held_lock+0x2b/0x80
[ 1131.575314][T21610]  tomoyo_file_open+0x6b/0x90
[ 1131.575358][T21610]  security_file_open+0xb5/0x1e0
[ 1131.575393][T21610]  do_dentry_open+0x5aa/0x1660
[ 1131.575425][T21610]  ? _raw_spin_unlock+0x28/0x50
[ 1131.575463][T21610]  shmem_tmpfile+0x1c9/0x210
[ 1131.575496][T21610]  ? d_alloc+0x176/0x1e0
[ 1131.575525][T21610]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1131.575554][T21610]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1131.575594][T21610]  ? _raw_spin_unlock+0x28/0x50
[ 1131.575632][T21610]  vfs_tmpfile+0x2be/0x9a0
[ 1131.575670][T21610]  path_openat+0x164e/0x31a0
[ 1131.575694][T21610]  ? kasan_save_stack+0x3f/0x50
[ 1131.575733][T21610]  ? kasan_save_stack+0x30/0x50
[ 1131.575772][T21610]  ? __kasan_slab_alloc+0x89/0x90
[ 1131.575796][T21610]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1131.575837][T21610]  ? do_getname+0x35/0x390
[ 1131.575871][T21610]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1131.575905][T21610]  ? __pfx_path_openat+0x10/0x10
[ 1131.575948][T21610]  do_file_open+0x20e/0x430
[ 1131.575981][T21610]  ? __pfx_do_file_open+0x10/0x10
[ 1131.576036][T21610]  ? _raw_spin_unlock+0x28/0x50
[ 1131.576067][T21610]  ? alloc_fd+0x476/0x790
[ 1131.576105][T21610]  do_sys_openat2+0x10d/0x1e0
[ 1131.576144][T21610]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1131.576180][T21610]  ? __fget_files+0x21f/0x3d0
[ 1131.576220][T21610]  __x64_sys_open+0xfe/0x1d0
[ 1131.576240][T21610]  ? __pfx___x64_sys_open+0x10/0x10
[ 1131.576268][T21610]  do_syscall_64+0x106/0xf80
[ 1131.576288][T21610]  ? clear_bhb_loop+0x40/0x90
[ 1131.576306][T21610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1131.576322][T21610] RIP: 0033:0x7ff41719c799
[ 1131.576335][T21610] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1131.576350][T21610] RSP: 002b:00007ff417fce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1131.576365][T21610] RAX: ffffffffffffffda RBX: 00007ff417415fa0 RCX: 00007ff41719c799
[ 1131.576376][T21610] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1131.576386][T21610] RBP: 00007ff417232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1131.576396][T21610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1131.576405][T21610] R13: 00007ff417416038 R14: 00007ff417415fa0 R15: 00007ffe399b4328
[ 1131.576425][T21610]  </TASK>
[ 1131.582648][T21610] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1132.074066][T21610] FAULT_INJECTION: forcing a failure.
[ 1132.074066][T21610] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1132.118971][T21610] CPU: 0 UID: 0 PID: 21610 Comm: syz.4.3528 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1132.118999][T21610] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1132.119005][T21610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1132.119015][T21610] Call Trace:
[ 1132.119021][T21610]  <TASK>
[ 1132.119028][T21610]  dump_stack_lvl+0x100/0x190
[ 1132.119054][T21610]  should_fail_ex.cold+0x5/0xa
[ 1132.119073][T21610]  get_futex_key+0x1d2/0x1620
[ 1132.119094][T21610]  ? __pfx_get_futex_key+0x10/0x10
[ 1132.119113][T21610]  ? __pfx_call_function_single_prep_ipi+0x10/0x10
[ 1132.119138][T21610]  futex_wait_setup+0x83/0x510
[ 1132.119168][T21610]  __futex_wait+0x19f/0x300
[ 1132.119191][T21610]  ? __pfx___futex_wait+0x10/0x10
[ 1132.119211][T21610]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1132.119230][T21610]  ? lockdep_hardirqs_on+0x78/0x100
[ 1132.119251][T21610]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1132.119276][T21610]  ? find_held_lock+0x2b/0x80
[ 1132.119290][T21610]  ? futex_wake+0x456/0x530
[ 1132.119316][T21610]  futex_wait+0xed/0x380
[ 1132.119337][T21610]  ? __pfx_futex_wait+0x10/0x10
[ 1132.119381][T21610]  ? fput+0x79/0x100
[ 1132.119408][T21610]  ? do_mq_timedsend+0x799/0xc40
[ 1132.119433][T21610]  do_futex+0x1ef/0x350
[ 1132.119452][T21610]  ? __pfx_do_futex+0x10/0x10
[ 1132.119476][T21610]  __x64_sys_futex+0x34f/0x4d0
[ 1132.119497][T21610]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1132.119517][T21610]  ? __pfx___x64_sys_mq_timedsend+0x10/0x10
[ 1132.119546][T21610]  do_syscall_64+0x106/0xf80
[ 1132.119566][T21610]  ? clear_bhb_loop+0x40/0x90
[ 1132.119584][T21610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1132.119599][T21610] RIP: 0033:0x7ff41719c799
[ 1132.119613][T21610] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1132.119627][T21610] RSP: 002b:00007ff417fce0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1132.119642][T21610] RAX: ffffffffffffffda RBX: 00007ff417415fa8 RCX: 00007ff41719c799
[ 1132.119660][T21610] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff417415fa8
[ 1132.119669][T21610] RBP: 00007ff417415fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1132.119679][T21610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1132.119688][T21610] R13: 00007ff417416038 R14: 00007ffe399b4240 R15: 00007ffe399b4328
[ 1132.119708][T21610]  </TASK>
[ 1132.631236][T21619] can: request_module (can-proto-4) failed.
[ 1134.047427][T21656] device-mapper: ioctl: device name cannot be "control", ".", or ".."
[ 1134.982384][T21665] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input75
[ 1135.332286][T21672] binder: 21659:21672 ioctl 40086602 e20 returned -22
[ 1135.915292][T21679] vivid-007: =================  START STATUS  =================
[ 1135.945085][T21679] vivid-007: Enable Output Cropping: true grabbed
[ 1135.962617][T21679] vivid-007: Enable Output Composing: true grabbed
[ 1135.987922][T21679] vivid-007: Enable Output Scaler: true grabbed
[ 1136.030597][T21679] vivid-007: Tx RGB Quantization Range: Automatic grabbed
[ 1136.058688][T21679] vivid-007: Transmit Mode: HDMI grabbed
[ 1136.189002][T21683] sd 0:0:1:0: PR command failed: 1026
[ 1136.214143][T21679] vivid-007: Hotplug Present: 0x00000000
[ 1136.219975][T21679] vivid-007: RxSense Present: 0x00000000
[ 1136.298351][T21683] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 1136.328329][T21679] vivid-007: EDID Present: 0x00000000
[ 1136.330618][T21683] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 1136.425183][T21679] vivid-007: ==================  END STATUS  ==================
[ 1136.682954][T21692] FAULT_INJECTION: forcing a failure.
[ 1136.682954][T21692] name failslab, interval 1, probability 0, space 0, times 0
[ 1136.717558][T21692] CPU: 0 UID: 0 PID: 21692 Comm: syz.4.3548 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1136.717603][T21692] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1136.717615][T21692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1136.717632][T21692] Call Trace:
[ 1136.717643][T21692]  <TASK>
[ 1136.717655][T21692]  dump_stack_lvl+0x100/0x190
[ 1136.717694][T21692]  should_fail_ex.cold+0x5/0xa
[ 1136.717714][T21692]  should_failslab+0xc2/0x120
[ 1136.717739][T21692]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 1136.717764][T21692]  ? kstrdup_const+0x63/0x80
[ 1136.717782][T21692]  kstrdup+0x51/0xe0
[ 1136.717806][T21692]  kstrdup_const+0x63/0x80
[ 1136.717819][T21692]  __kmem_cache_create_args+0x118/0x420
[ 1136.717842][T21692]  mon_text_open+0x333/0x510
[ 1136.717861][T21692]  ? __pfx_mon_text_open+0x10/0x10
[ 1136.717877][T21692]  ? __pfx_mon_text_ctor+0x10/0x10
[ 1136.717892][T21692]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1136.717917][T21692]  ? lockdown_is_locked_down+0x3d/0x140
[ 1136.717939][T21692]  ? bpf_lsm_locked_down+0x9/0x10
[ 1136.717958][T21692]  ? __pfx_mon_text_open+0x10/0x10
[ 1136.717971][T21692]  full_proxy_open_regular+0x1b6/0x370
[ 1136.718004][T21692]  do_dentry_open+0x6d8/0x1660
[ 1136.718020][T21692]  ? __pfx_full_proxy_open_regular+0x10/0x10
[ 1136.718047][T21692]  vfs_open+0x82/0x3f0
[ 1136.718068][T21692]  path_openat+0x208c/0x31a0
[ 1136.718090][T21692]  ? __pfx_path_openat+0x10/0x10
[ 1136.718112][T21692]  do_file_open+0x20e/0x430
[ 1136.718129][T21692]  ? __pfx_do_file_open+0x10/0x10
[ 1136.718158][T21692]  ? alloc_fd+0x476/0x790
[ 1136.718175][T21692]  ? do_getname+0x191/0x390
[ 1136.718195][T21692]  do_sys_openat2+0x10d/0x1e0
[ 1136.718214][T21692]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1136.718234][T21692]  ? __fget_files+0x21f/0x3d0
[ 1136.718253][T21692]  __x64_sys_openat+0x12d/0x210
[ 1136.718272][T21692]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1136.718299][T21692]  do_syscall_64+0x106/0xf80
[ 1136.718321][T21692]  ? clear_bhb_loop+0x40/0x90
[ 1136.718339][T21692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1136.718355][T21692] RIP: 0033:0x7ff41719c799
[ 1136.718368][T21692] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1136.718383][T21692] RSP: 002b:00007ff417fce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1136.718398][T21692] RAX: ffffffffffffffda RBX: 00007ff417415fa0 RCX: 00007ff41719c799
[ 1136.718409][T21692] RDX: 0000000000080080 RSI: 0000200000000280 RDI: ffffffffffffff9c
[ 1136.718421][T21692] RBP: 00007ff417232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1136.718431][T21692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1136.718440][T21692] R13: 00007ff417416038 R14: 00007ff417415fa0 R15: 00007ffe399b4328
[ 1136.718460][T21692]  </TASK>
[ 1136.720112][T21692] __kmem_cache_create_args(mon_text_ffff88807b3f9c00) failed with error -12
[ 1137.019658][T21692] CPU: 1 UID: 0 PID: 21692 Comm: syz.4.3548 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1137.019706][T21692] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1137.019718][T21692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1137.019735][T21692] Call Trace:
[ 1137.019745][T21692]  <TASK>
[ 1137.019755][T21692]  dump_stack_lvl+0x100/0x190
[ 1137.019801][T21692]  __kmem_cache_create_args.cold+0x33/0x6e
[ 1137.019844][T21692]  mon_text_open+0x333/0x510
[ 1137.019873][T21692]  ? __pfx_mon_text_open+0x10/0x10
[ 1137.019904][T21692]  ? __pfx_mon_text_ctor+0x10/0x10
[ 1137.019933][T21692]  ? __pfx_apparmor_file_open+0x10/0x10
[ 1137.019975][T21692]  ? lockdown_is_locked_down+0x3d/0x140
[ 1137.020016][T21692]  ? bpf_lsm_locked_down+0x9/0x10
[ 1137.020051][T21692]  ? __pfx_mon_text_open+0x10/0x10
[ 1137.020077][T21692]  full_proxy_open_regular+0x1b6/0x370
[ 1137.020124][T21692]  do_dentry_open+0x6d8/0x1660
[ 1137.020151][T21692]  ? __pfx_full_proxy_open_regular+0x10/0x10
[ 1137.020200][T21692]  vfs_open+0x82/0x3f0
[ 1137.020240][T21692]  path_openat+0x208c/0x31a0
[ 1137.020282][T21692]  ? __pfx_path_openat+0x10/0x10
[ 1137.020327][T21692]  do_file_open+0x20e/0x430
[ 1137.020359][T21692]  ? __pfx_do_file_open+0x10/0x10
[ 1137.020416][T21692]  ? alloc_fd+0x476/0x790
[ 1137.020449][T21692]  ? do_getname+0x191/0x390
[ 1137.020494][T21692]  do_sys_openat2+0x10d/0x1e0
[ 1137.020530][T21692]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1137.020569][T21692]  ? __fget_files+0x21f/0x3d0
[ 1137.020604][T21692]  __x64_sys_openat+0x12d/0x210
[ 1137.020642][T21692]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1137.020694][T21692]  do_syscall_64+0x106/0xf80
[ 1137.020731][T21692]  ? clear_bhb_loop+0x40/0x90
[ 1137.020766][T21692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1137.020795][T21692] RIP: 0033:0x7ff41719c799
[ 1137.020820][T21692] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1137.020849][T21692] RSP: 002b:00007ff417fce028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1137.020876][T21692] RAX: ffffffffffffffda RBX: 00007ff417415fa0 RCX: 00007ff41719c799
[ 1137.020896][T21692] RDX: 0000000000080080 RSI: 0000200000000280 RDI: ffffffffffffff9c
[ 1137.020915][T21692] RBP: 00007ff417232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1137.020934][T21692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1137.020951][T21692] R13: 00007ff417416038 R14: 00007ff417415fa0 R15: 00007ffe399b4328
[ 1137.020991][T21692]  </TASK>
[ 1137.597927][T21698] netlink: 326 bytes leftover after parsing attributes in process `syz.8.3550'.
[ 1137.762503][T21700] device-mapper: ioctl: device name cannot be "control", ".", or ".."
[ 1138.603961][T21716] binder: 21708:21716 ioctl 40086602 e20 returned -22
[ 1140.052068][T12415] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1140.065458][T12415] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1140.074676][T12415] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1140.082510][T12415] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1140.092132][T12415] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1140.516933][T21753] debugfs: '!PjE�r��҄y�*�"�l-���y–��L̓���]' already exists in 'ieee80211'
[ 1141.561421][T21747] chnl_net:caif_netlink_parms(): no params data found
[ 1141.751925][T21751] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1142.019297][T21747] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1142.074994][T21747] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1142.082260][T21747] bridge_slave_0: entered allmulticast mode
[ 1142.097244][T21781] zswap: compressor  not available
[ 1142.127905][T21747] bridge_slave_0: entered promiscuous mode
[ 1142.153881][T21747] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1142.161288][T21747] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1142.177362][T21747] bridge_slave_1: entered allmulticast mode
[ 1142.195479][T21747] bridge_slave_1: entered promiscuous mode
[ 1142.219501][   T51] Bluetooth: hci2: command tx timeout
[ 1142.390714][T21747] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1142.449542][T21747] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1142.648010][T21747] team0: Port device team_slave_0 added
[ 1142.667310][T21747] team0: Port device team_slave_1 added
[ 1142.715199][T21747] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1142.729813][T21747] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1142.762304][T21747] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1142.803738][T21747] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1142.933714][T21747] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1143.047149][T21747] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1143.290465][T21747] hsr_slave_0: entered promiscuous mode
[ 1143.325254][T21747] hsr_slave_1: entered promiscuous mode
[ 1143.378284][T21747] debugfs: 'hsr0' already exists in 'hsr'
[ 1143.378938][T21818] netlink: 326 bytes leftover after parsing attributes in process `syz.5.3573'.
[ 1143.411381][T21747] Cannot create hsr debugfs directory
[ 1144.058967][T21830] FAULT_INJECTION: forcing a failure.
[ 1144.058967][T21830] name failslab, interval 1, probability 0, space 0, times 0
[ 1144.097744][T21830] CPU: 1 UID: 0 PID: 21830 Comm: syz.8.3578 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1144.097790][T21830] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1144.097802][T21830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1144.097819][T21830] Call Trace:
[ 1144.097829][T21830]  <TASK>
[ 1144.097840][T21830]  dump_stack_lvl+0x100/0x190
[ 1144.097886][T21830]  should_fail_ex.cold+0x5/0xa
[ 1144.097918][T21830]  ? security_inode_init_security+0x113/0x370
[ 1144.097959][T21830]  should_failslab+0xc2/0x120
[ 1144.097990][T21830]  __kmalloc_noprof+0xe0/0x850
[ 1144.098037][T21830]  security_inode_init_security+0x113/0x370
[ 1144.098079][T21830]  ? __pfx_shmem_initxattrs+0x10/0x10
[ 1144.098113][T21830]  ? __pfx_security_inode_init_security+0x10/0x10
[ 1144.098164][T21830]  shmem_tmpfile+0xfa/0x210
[ 1144.098196][T21830]  ? d_alloc+0x176/0x1e0
[ 1144.098225][T21830]  ? __pfx_shmem_tmpfile+0x10/0x10
[ 1144.098261][T21830]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1144.098303][T21830]  ? _raw_spin_unlock+0x28/0x50
[ 1144.098352][T21830]  vfs_tmpfile+0x2be/0x9a0
[ 1144.098391][T21830]  path_openat+0x164e/0x31a0
[ 1144.098420][T21830]  ? kasan_save_stack+0x3f/0x50
[ 1144.098461][T21830]  ? kasan_save_stack+0x30/0x50
[ 1144.098500][T21830]  ? __kasan_slab_alloc+0x89/0x90
[ 1144.098526][T21830]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[ 1144.098564][T21830]  ? do_getname+0x35/0x390
[ 1144.098599][T21830]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1144.098634][T21830]  ? __pfx_path_openat+0x10/0x10
[ 1144.098677][T21830]  do_file_open+0x20e/0x430
[ 1144.098713][T21830]  ? __pfx_do_file_open+0x10/0x10
[ 1144.098769][T21830]  ? _raw_spin_unlock+0x28/0x50
[ 1144.098801][T21830]  ? alloc_fd+0x476/0x790
[ 1144.098839][T21830]  do_sys_openat2+0x10d/0x1e0
[ 1144.098875][T21830]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1144.098913][T21830]  ? __fget_files+0x21f/0x3d0
[ 1144.098948][T21830]  __x64_sys_open+0xfe/0x1d0
[ 1144.098984][T21830]  ? __pfx___x64_sys_open+0x10/0x10
[ 1144.099035][T21830]  do_syscall_64+0x106/0xf80
[ 1144.099071][T21830]  ? clear_bhb_loop+0x40/0x90
[ 1144.099105][T21830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1144.099134][T21830] RIP: 0033:0x7f4d3079c799
[ 1144.099157][T21830] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1144.099185][T21830] RSP: 002b:00007f4d2e9f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1144.099212][T21830] RAX: ffffffffffffffda RBX: 00007f4d30a15fa0 RCX: 00007f4d3079c799
[ 1144.099231][T21830] RDX: 78e22799f4a46e8e RSI: 0000000000518282 RDI: 0000200000000080
[ 1144.099250][T21830] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1144.099267][T21830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1144.099284][T21830] R13: 00007f4d30a16038 R14: 00007f4d30a15fa0 R15: 00007fffbd97ee38
[ 1144.099331][T21830]  </TASK>
[ 1144.382969][   T51] Bluetooth: hci2: command tx timeout
[ 1144.406278][T21830] FAULT_INJECTION: forcing a failure.
[ 1144.406278][T21830] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1144.498652][T21747] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1144.543698][T21830] CPU: 0 UID: 0 PID: 21830 Comm: syz.8.3578 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1144.543744][T21830] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1144.543755][T21830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1144.543772][T21830] Call Trace:
[ 1144.543790][T21830]  <TASK>
[ 1144.543801][T21830]  dump_stack_lvl+0x100/0x190
[ 1144.543847][T21830]  should_fail_ex.cold+0x5/0xa
[ 1144.543879][T21830]  get_futex_key+0x1d2/0x1620
[ 1144.543916][T21830]  ? __pfx_get_futex_key+0x10/0x10
[ 1144.543949][T21830]  ? trace_pid_list_is_set+0x11a/0x390
[ 1144.543985][T21830]  ? trace_pid_list_is_set+0x22c/0x390
[ 1144.544030][T21830]  futex_wait_setup+0x83/0x510
[ 1144.544078][T21830]  __futex_wait+0x19f/0x300
[ 1144.544121][T21830]  ? __pfx___futex_wait+0x10/0x10
[ 1144.544158][T21830]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1144.544193][T21830]  ? lockdep_hardirqs_on+0x78/0x100
[ 1144.544232][T21830]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1144.544278][T21830]  ? find_held_lock+0x2b/0x80
[ 1144.544302][T21830]  ? futex_wake+0x456/0x530
[ 1144.544348][T21830]  futex_wait+0xed/0x380
[ 1144.544388][T21830]  ? __pfx_futex_wait+0x10/0x10
[ 1144.544445][T21830]  do_futex+0x1ef/0x350
[ 1144.544481][T21830]  ? __pfx_do_futex+0x10/0x10
[ 1144.544518][T21830]  ? __fget_files+0x21f/0x3d0
[ 1144.544549][T21830]  __x64_sys_futex+0x34f/0x4d0
[ 1144.544586][T21830]  ? __pfx___x64_sys_mq_open+0x10/0x10
[ 1144.544632][T21830]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1144.544683][T21830]  do_syscall_64+0x106/0xf80
[ 1144.544720][T21830]  ? clear_bhb_loop+0x40/0x90
[ 1144.544756][T21830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1144.544792][T21830] RIP: 0033:0x7f4d3079c799
[ 1144.544817][T21830] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1144.544845][T21830] RSP: 002b:00007f4d2e9f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1144.544871][T21830] RAX: ffffffffffffffda RBX: 00007f4d30a15fa8 RCX: 00007f4d3079c799
[ 1144.544888][T21830] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4d30a15fa8
[ 1144.544903][T21830] RBP: 00007f4d30a15fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1144.544916][T21830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1144.544932][T21830] R13: 00007f4d30a16038 R14: 00007fffbd97ed50 R15: 00007fffbd97ee38
[ 1144.544970][T21830]  </TASK>
[ 1144.547218][T21747] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1144.928002][T21747] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1145.049150][T21747] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1145.697745][T21863] FAULT_INJECTION: forcing a failure.
[ 1145.697745][T21863] name failslab, interval 1, probability 0, space 0, times 0
[ 1145.710440][T21863] CPU: 0 UID: 0 PID: 21863 Comm: syz.8.3585 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1145.710466][T21863] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1145.710473][T21863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1145.710482][T21863] Call Trace:
[ 1145.710489][T21863]  <TASK>
[ 1145.710495][T21863]  dump_stack_lvl+0x100/0x190
[ 1145.710523][T21863]  should_fail_ex.cold+0x5/0xa
[ 1145.710541][T21863]  ? tomoyo_encode2+0xfb/0x3c0
[ 1145.710559][T21863]  should_failslab+0xc2/0x120
[ 1145.710576][T21863]  __kmalloc_noprof+0xe0/0x850
[ 1145.710602][T21863]  tomoyo_encode2+0xfb/0x3c0
[ 1145.710624][T21863]  tomoyo_encode+0x29/0x50
[ 1145.710642][T21863]  tomoyo_mount_acl+0x14c/0x8b0
[ 1145.710658][T21863]  ? is_bpf_text_address+0x8a/0x1a0
[ 1145.710681][T21863]  ? bpf_ksym_find+0x124/0x1c0
[ 1145.710705][T21863]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1145.710724][T21863]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[ 1145.710743][T21863]  ? kernel_text_address+0x8d/0x100
[ 1145.710767][T21863]  ? unwind_get_return_address+0x59/0xa0
[ 1145.710802][T21863]  ? tomoyo_domain+0xb2/0x150
[ 1145.710822][T21863]  ? tomoyo_profile+0x47/0x60
[ 1145.710844][T21863]  tomoyo_mount_permission+0x214/0x460
[ 1145.710861][T21863]  ? tomoyo_mount_permission+0x1f6/0x460
[ 1145.710880][T21863]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[ 1145.710908][T21863]  security_sb_mount+0xdd/0x270
[ 1145.710933][T21863]  path_mount+0x158/0x23d0
[ 1145.710954][T21863]  ? __pfx_path_mount+0x10/0x10
[ 1145.710969][T21863]  ? lockdep_hardirqs_on+0x78/0x100
[ 1145.710991][T21863]  ? putname+0xb1/0x110
[ 1145.711006][T21863]  ? kmem_cache_free+0x124/0x6a0
[ 1145.711031][T21863]  ? __x64_sys_mount+0x293/0x310
[ 1145.711047][T21863]  __x64_sys_mount+0x293/0x310
[ 1145.711065][T21863]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1145.711089][T21863]  do_syscall_64+0x106/0xf80
[ 1145.711108][T21863]  ? clear_bhb_loop+0x40/0x90
[ 1145.711126][T21863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1145.711141][T21863] RIP: 0033:0x7f4d3079c799
[ 1145.711155][T21863] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1145.711169][T21863] RSP: 002b:00007f4d2e9d5028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1145.711183][T21863] RAX: ffffffffffffffda RBX: 00007f4d30a16090 RCX: 00007f4d3079c799
[ 1145.711194][T21863] RDX: 00002000000001c0 RSI: 00002000000000c0 RDI: 0000000000000000
[ 1145.711203][T21863] RBP: 00007f4d30832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1145.711213][T21863] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[ 1145.711222][T21863] R13: 00007f4d30a16128 R14: 00007f4d30a16090 R15: 00007fffbd97ee38
[ 1145.711242][T21863]  </TASK>
[ 1146.008572][   T31] INFO: task syz.3.2957:19013 blocked for more than 143 seconds.
[ 1146.016467][   T31]       Tainted: G     U       L      syzkaller #0
[ 1146.023007][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1146.031947][   T31] task:syz.3.2957      state:D stack:25368 pid:19013 tgid:19010 ppid:16485  task_flags:0x400140 flags:0x00080002
[ 1146.043902][   T31] Call Trace:
[ 1146.047166][   T31]  <TASK>
[ 1146.050153][   T31]  __schedule+0xfee/0x6120
[ 1146.054719][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1146.059675][   T31]  ? __pfx___schedule+0x10/0x10
[ 1146.064554][   T31]  ? find_held_lock+0x2b/0x80
[ 1146.069237][   T31]  ? schedule+0x2bf/0x390
[ 1146.073583][   T31]  schedule+0xdd/0x390
[ 1146.077641][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1146.083251][   T31]  __mutex_lock+0xc9a/0x1b90
[ 1146.087847][   T31]  ? nfsd_nl_threads_set_doit+0x6c1/0xc00
[ 1146.093662][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1146.098729][   T31]  ? net_generic+0xea/0x2a0
[ 1146.103332][   T31]  ? net_generic+0xea/0x2a0
[ 1146.107863][   T31]  ? nfsd_nl_threads_set_doit+0x6c1/0xc00
[ 1146.113780][   T31]  nfsd_nl_threads_set_doit+0x6c1/0xc00
[ 1146.119362][   T31]  genl_family_rcv_msg_doit+0x214/0x300
[ 1146.125016][   T31]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1146.131663][   T31]  ? genl_get_cmd+0x3ef/0x720
[ 1146.136601][   T31]  ? bpf_lsm_capable+0x9/0x10
[ 1146.141265][   T31]  ? security_capable+0x80/0x260
[ 1146.146242][   T31]  genl_rcv_msg+0x560/0x800
[ 1146.150752][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1146.155859][   T31]  ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10
[ 1146.161924][   T31]  netlink_rcv_skb+0x159/0x420
[ 1146.166774][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1146.171830][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1146.177140][   T31]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1146.182420][   T31]  genl_rcv+0x28/0x40
[ 1146.186455][   T31]  netlink_unicast+0x5aa/0x870
[ 1146.191254][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[ 1146.196609][   T31]  netlink_sendmsg+0x8b0/0xda0
[ 1146.201384][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1146.206701][   T31]  ? __import_iovec+0x1d2/0x640
[ 1146.211557][   T31]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1146.217740][   T31]  ____sys_sendmsg+0x9e1/0xb70
[ 1146.222497][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1146.227853][   T31]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1146.233475][   T31]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1146.238775][   T31]  ___sys_sendmsg+0x190/0x1e0
[ 1146.246235][   T31]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1146.251509][   T31]  __sys_sendmsg+0x170/0x220
[ 1146.256197][   T31]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1146.261303][   T31]  ? __x64_sys_futex+0x34f/0x4d0
[ 1146.277239][   T31]  do_syscall_64+0x106/0xf80
[ 1146.281859][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1146.286801][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1146.305018][   T31] RIP: 0033:0x7fb39af9c799
[ 1146.318634][   T31] RSP: 002b:00007fb39be1f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1146.358628][   T31] RAX: ffffffffffffffda RBX: 00007fb39b216180 RCX: 00007fb39af9c799
[ 1146.382605][   T31] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000005
[ 1146.447236][   T31] RBP: 00007fb39b032c99 R08: 0000000000000000 R09: 0000000000000000
[ 1146.455356][   T51] Bluetooth: hci2: command tx timeout
[ 1146.507529][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1146.542571][   T31] R13: 00007fb39b216218 R14: 00007fb39b216180 R15: 00007ffc49d67e08
[ 1146.550596][   T31]  </TASK>
[ 1146.602653][   T31] INFO: task syz.2.2976:19109 blocked for more than 143 seconds.
[ 1146.610378][   T31]       Tainted: G     U       L      syzkaller #0
[ 1146.672574][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1146.681248][   T31] task:syz.2.2976      state:D stack:27464 pid:19109 tgid:19108 ppid:16259  task_flags:0x400140 flags:0x00080002
[ 1146.732687][   T31] Call Trace:
[ 1146.736010][   T31]  <TASK>
[ 1146.738946][   T31]  __schedule+0xfee/0x6120
[ 1146.752606][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1146.759984][   T31]  ? __pfx___schedule+0x10/0x10
[ 1146.774236][   T31]  ? find_held_lock+0x2b/0x80
[ 1146.778919][   T31]  ? schedule+0x2bf/0x390
[ 1146.794353][   T31]  schedule+0xdd/0x390
[ 1146.798426][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1146.815406][   T31]  __mutex_lock+0xc9a/0x1b90
[ 1146.820015][   T31]  ? kasan_save_track+0x14/0x30
[ 1146.842598][   T31]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[ 1146.854407][   T31]  ? nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1146.860218][   T31]  ? netlink_rcv_skb+0x159/0x420
[ 1146.882994][   T31]  ? genl_rcv+0x28/0x40
[ 1146.887170][   T31]  ? ____sys_sendmsg+0x9e1/0xb70
[ 1146.892097][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1146.912625][   T31]  ? __asan_memset+0x23/0x50
[ 1146.917216][   T31]  ? __nla_validate_parse+0x1e7/0x28b0
[ 1146.933435][   T31]  ? nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1146.939257][   T31]  nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1146.963893][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1146.968680][   T31]  ? trace_kmalloc+0x101/0x130
[ 1146.983359][   T31]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[ 1146.989528][   T31]  ? __nla_parse+0x40/0x60
[ 1147.002831][   T31]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[ 1147.009767][   T31]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[ 1147.039159][   T31]  genl_family_rcv_msg_doit+0x214/0x300
[ 1147.049957][   T31]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1147.062619][   T31]  ? genl_get_cmd+0x3ef/0x720
[ 1147.067295][   T31]  ? bpf_lsm_capable+0x9/0x10
[ 1147.071976][   T31]  ? security_capable+0x80/0x260
[ 1147.077609][   T31]  genl_rcv_msg+0x560/0x800
[ 1147.082748][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1147.087783][   T31]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[ 1147.094492][   T31]  netlink_rcv_skb+0x159/0x420
[ 1147.102797][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1147.107896][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1147.113513][   T31]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1147.118813][   T31]  genl_rcv+0x28/0x40
[ 1147.132831][   T31]  netlink_unicast+0x5aa/0x870
[ 1147.137621][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[ 1147.143630][   T31]  ? __pfx___might_resched+0x10/0x10
[ 1147.148950][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1147.155212][   T31]  netlink_sendmsg+0x8b0/0xda0
[ 1147.162814][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1147.168156][   T31]  ? __import_iovec+0x1d2/0x640
[ 1147.184187][   T31]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1147.189830][   T31]  ____sys_sendmsg+0x9e1/0xb70
[ 1147.202798][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1147.208090][   T31]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1147.232641][   T31]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1147.237946][   T31]  ___sys_sendmsg+0x190/0x1e0
[ 1147.262138][   T31]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1147.272660][   T31]  __sys_sendmsg+0x170/0x220
[ 1147.277253][   T31]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1147.282424][   T31]  ? __x64_sys_futex+0x34f/0x4d0
[ 1147.293159][   T31]  do_syscall_64+0x106/0xf80
[ 1147.297780][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1147.302460][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1147.308867][   T31] RIP: 0033:0x7f791679c799
[ 1147.322602][   T31] RSP: 002b:00007f7917602028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1147.331010][   T31] RAX: ffffffffffffffda RBX: 00007f7916a15fa0 RCX: 00007f791679c799
[ 1147.339407][   T31] RDX: 0000000020008050 RSI: 00002000000050c0 RDI: 0000000000000003
[ 1147.352767][   T31] RBP: 00007f7916832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1147.361276][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1147.369984][   T31] R13: 00007f7916a16038 R14: 00007f7916a15fa0 R15: 00007ffee15f8a08
[ 1147.382834][   T31]  </TASK>
[ 1147.392965][   T31] INFO: task syz.2.2976:19110 blocked for more than 144 seconds.
[ 1147.400688][   T31]       Tainted: G     U       L      syzkaller #0
[ 1147.416282][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1147.462630][   T31] task:syz.2.2976      state:D stack:28216 pid:19110 tgid:19108 ppid:16259  task_flags:0x400140 flags:0x00080002
[ 1147.482949][   T31] Call Trace:
[ 1147.486269][   T31]  <TASK>
[ 1147.489212][   T31]  __schedule+0xfee/0x6120
[ 1147.494213][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1147.499198][   T31]  ? __pfx___schedule+0x10/0x10
[ 1147.504525][   T31]  ? find_held_lock+0x2b/0x80
[ 1147.512778][   T31]  ? schedule+0x2bf/0x390
[ 1147.517112][   T31]  schedule+0xdd/0x390
[ 1147.521184][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1147.527262][   T31]  __mutex_lock+0xc9a/0x1b90
[ 1147.531903][   T31]  ? kasan_save_track+0x14/0x30
[ 1147.537202][   T31]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[ 1147.553557][   T31]  ? nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1147.559367][   T31]  ? netlink_rcv_skb+0x159/0x420
[ 1147.592595][   T31]  ? genl_rcv+0x28/0x40
[ 1147.596749][   T31]  ? ____sys_sendmsg+0x9e1/0xb70
[ 1147.601685][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1147.610918][   T31]  ? __asan_memset+0x23/0x50
[ 1147.632601][   T31]  ? __nla_validate_parse+0x1e7/0x28b0
[ 1147.638085][   T31]  ? nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1147.650858][   T31]  nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1147.664374][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1147.669231][   T31]  ? trace_kmalloc+0x101/0x130
[ 1147.682645][   T31]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[ 1147.688913][   T31]  ? __nla_parse+0x40/0x60
[ 1147.716039][   T31]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[ 1147.732703][   T31]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[ 1147.742811][   T31]  genl_family_rcv_msg_doit+0x214/0x300
[ 1147.748355][   T31]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1147.754866][   T31]  ? genl_get_cmd+0x3ef/0x720
[ 1147.762864][   T31]  ? bpf_lsm_capable+0x9/0x10
[ 1147.768689][   T31]  ? security_capable+0x80/0x260
[ 1147.774085][   T31]  genl_rcv_msg+0x560/0x800
[ 1147.782941][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1147.788025][   T31]  ? __pfx_nfsd_nl_listener_set_doit+0x10/0x10
[ 1147.803024][   T31]  netlink_rcv_skb+0x159/0x420
[ 1147.807799][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1147.813281][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1147.832611][   T31]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1147.837921][   T31]  genl_rcv+0x28/0x40
[ 1147.841904][   T31]  netlink_unicast+0x5aa/0x870
[ 1147.863092][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[ 1147.869009][   T31]  ? __pfx___might_resched+0x10/0x10
[ 1147.883059][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1147.888047][   T31]  netlink_sendmsg+0x8b0/0xda0
[ 1147.902752][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1147.908070][   T31]  ? __import_iovec+0x1d2/0x640
[ 1147.915731][   T31]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1147.922770][   T31]  ____sys_sendmsg+0x9e1/0xb70
[ 1147.934402][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1147.939723][   T31]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1147.962613][   T31]  ? kasan_quarantine_put+0x104/0x240
[ 1147.968002][   T31]  ? lockdep_hardirqs_on+0x78/0x100
[ 1147.983175][   T31]  ___sys_sendmsg+0x190/0x1e0
[ 1147.987868][   T31]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1148.003599][   T31]  ? tomoyo_path_number_perm+0x188/0x580
[ 1148.012788][   T31]  __sys_sendmsg+0x170/0x220
[ 1148.017397][   T31]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1148.022498][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1148.032629][   T31]  ? kcov_ioctl+0x16a/0x720
[ 1148.037147][   T31]  do_syscall_64+0x106/0xf80
[ 1148.041729][   T31]  ? clear_bhb_loop+0x40/0x90
[ 1148.046993][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1148.053671][   T31] RIP: 0033:0x7f791679c799
[ 1148.058107][   T31] RSP: 002b:00007f79175e1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1148.068264][   T31] RAX: ffffffffffffffda RBX: 00007f7916a16090 RCX: 00007f791679c799
[ 1148.082621][   T31] RDX: 0000000020000000 RSI: 0000200000000140 RDI: 0000000000000003
[ 1148.090636][   T31] RBP: 00007f7916832c99 R08: 0000000000000000 R09: 0000000000000000
[ 1148.122605][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1148.130570][   T31] R13: 00007f7916a16128 R14: 00007f7916a16090 R15: 00007ffee15f8a08
[ 1148.143351][   T31]  </TASK>
[ 1148.153273][   T31] 
[ 1148.153273][   T31] Showing all locks held in the system:
[ 1148.161068][   T31] 1 lock held by khungtaskd/31:
[ 1148.169659][   T31]  #0: ffffffff8e7e74e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[ 1148.192635][   T31] 3 locks held by kworker/u8:24/12774:
[ 1148.198094][   T31]  #0: ffff888033749948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0
[ 1148.209793][   T31]  #1: ffffc90003427d08 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0
[ 1148.222426][   T31]  #2: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_dad_work+0x11f/0x1360
[ 1148.242629][   T31] 4 locks held by kworker/u8:36/15967:
[ 1148.248078][   T31]  #0: ffff88801c6ae948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0
[ 1148.272942][   T31]  #1: ffffc9000548fd08 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0
[ 1148.298676][   T31]  #2: ffffffff905fb910 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xb8/0x920
[ 1148.312851][   T31]  #3: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: caif_exit_net+0x60/0x3a0
[ 1148.321895][   T31] 2 locks held by syz.1.2933/18938:
[ 1148.332989][   T31]  #0: ffffffff906c04d0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1148.341250][   T31]  #1: ffffffff8ec580e8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x6c1/0xc00
[ 1148.363032][   T31] 2 locks held by syz.3.2957/19013:
[ 1148.368246][   T31]  #0: ffffffff906c04d0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1148.381351][   T31]  #1: ffffffff8ec580e8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x6c1/0xc00
[ 1148.391951][   T31] 2 locks held by syz.2.2976/19109:
[ 1148.397328][   T31]  #0: ffffffff906c04d0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1148.412842][   T31]  #1: ffffffff8ec580e8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1148.433234][   T31] 2 locks held by syz.2.2976/19110:
[ 1148.438456][   T31]  #0: ffffffff906c04d0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1148.452975][   T31]  #1: ffffffff8ec580e8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1148.472796][   T31] 2 locks held by syz.6.3016/19409:
[ 1148.478011][   T31]  #0: ffffffff906c04d0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1148.491724][   T31]  #1: ffffffff8ec580e8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x6c1/0xc00
[ 1148.512632][   T31] 2 locks held by syz-executor/19760:
[ 1148.522757][   T31]  #0: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x220
[ 1148.531820][   T31]  #1: ffffffff8e7f30f8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[ 1148.544593][   T51] Bluetooth: hci2: command tx timeout
[ 1148.552644][   T31] 2 locks held by getty/20841:
[ 1148.557396][   T31]  #0: ffff8880343d10a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1148.573104][   T31]  #1: ffffc90006bab2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x1500
[ 1148.586077][   T31] 1 lock held by syz.7.3497/21491:
[ 1148.592847][   T31] 2 locks held by syz.4.3579/21834:
[ 1148.598054][   T31]  #0: ffffffff905fb910 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1148.612673][   T31]  #1: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: ip_tunnel_init_net+0x21e/0x780
[ 1148.632624][   T31] 2 locks held by syz.8.3585/21859:
[ 1148.637820][   T31]  #0: ffffffff905fb910 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1148.647270][   T31]  #1: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: ip_tunnel_init_net+0x21e/0x780
[ 1148.656919][   T31] 2 locks held by syz.5.3586/21862:
[ 1148.662623][   T31]  #0: ffffffff905fb910 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x451/0x7c0
[ 1148.682600][   T31]  #1: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: register_nexthop_notifier+0x1b/0x70
[ 1148.723345][   T31] 
[ 1148.725686][   T31] =============================================
[ 1148.725686][   T31] 
[ 1148.734480][   T31] NMI backtrace for cpu 0
[ 1148.734501][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1148.734538][   T31] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1148.734548][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1148.734563][   T31] Call Trace:
[ 1148.734573][   T31]  <TASK>
[ 1148.734584][   T31]  dump_stack_lvl+0x100/0x190
[ 1148.734625][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[ 1148.734662][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1148.734698][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[ 1148.734731][   T31]  sys_info+0x141/0x190
[ 1148.734767][   T31]  watchdog+0xd25/0x1050
[ 1148.734804][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1148.734829][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1148.734862][   T31]  ? kthread+0x13a/0x450
[ 1148.734892][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1148.734914][   T31]  kthread+0x370/0x450
[ 1148.734945][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.734980][   T31]  ret_from_fork+0x754/0xd80
[ 1148.735026][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1148.735066][   T31]  ? __switch_to+0x7b4/0x1120
[ 1148.735094][   T31]  ? __pfx_kthread+0x10/0x10
[ 1148.735130][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1148.735177][   T31]  </TASK>
[ 1148.735186][   T31] Sending NMI from CPU 0 to CPUs 1:
[ 1148.861946][    C1] NMI backtrace for cpu 1
[ 1148.861966][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1148.862001][    C1] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1148.862011][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1148.862026][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x20
[ 1148.862062][    C1] Code: 88 85 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 43 20 1e 00 fb f4 <e9> fc 35 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[ 1148.862086][    C1] RSP: 0018:ffffc90000197df0 EFLAGS: 00000246
[ 1148.862105][    C1] RAX: 000000000079a9b7 RBX: ffff88801e690000 RCX: ffffffff8b8d6c75
[ 1148.862121][    C1] RDX: 0000000000000000 RSI: ffffffff8de7f6dc RDI: ffffffff8c1b0620
[ 1148.862137][    C1] RBP: 0000000000000001 R08: 0000000000000001 R09: ffffed10170a6795
[ 1148.862152][    C1] R10: ffff8880b8533cab R11: 0000000000000000 R12: ffffed1003cd2000
[ 1148.862167][    C1] R13: 0000000000000001 R14: ffffffff90d9bd10 R15: 0000000000000000
[ 1148.862182][    C1] FS:  0000000000000000(0000) GS:ffff88812444a000(0000) knlGS:0000000000000000
[ 1148.862204][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1148.862220][    C1] CR2: 0000001b2d4daff8 CR3: 0000000092138000 CR4: 00000000003526f0
[ 1148.862235][    C1] Call Trace:
[ 1148.862243][    C1]  <TASK>
[ 1148.862251][    C1]  default_idle+0x9/0x10
[ 1148.862283][    C1]  default_idle_call+0x6c/0xb0
[ 1148.862303][    C1]  do_idle+0x43a/0x550
[ 1148.862327][    C1]  ? __pfx_do_idle+0x10/0x10
[ 1148.862352][    C1]  cpu_startup_entry+0x4f/0x60
[ 1148.862374][    C1]  start_secondary+0x21d/0x2d0
[ 1148.862403][    C1]  ? __pfx_start_secondary+0x10/0x10
[ 1148.862436][    C1]  common_startup_64+0x13e/0x148
[ 1148.862468][    C1]  </TASK>
[ 1149.033478][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1149.040336][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[ 1149.050995][   T31] Tainted: [U]=USER, [L]=SOFTLOCKUP
[ 1149.056165][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1149.066203][   T31] Call Trace:
[ 1149.069464][   T31]  <TASK>
[ 1149.072378][   T31]  dump_stack_lvl+0x100/0x190
[ 1149.077047][   T31]  vpanic+0x552/0x970
[ 1149.081011][   T31]  ? __pfx_vpanic+0x10/0x10
[ 1149.085498][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1149.090252][   T31]  panic+0xd1/0xe0
[ 1149.093962][   T31]  ? __pfx_panic+0x10/0x10
[ 1149.098375][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[ 1149.104538][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[ 1149.110673][   T31]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[ 1149.116809][   T31]  ? watchdog.cold+0x198/0x1ca
[ 1149.121559][   T31]  ? watchdog+0xd35/0x1050
[ 1149.125964][   T31]  watchdog.cold+0x1a9/0x1ca
[ 1149.130541][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1149.135202][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1149.140213][   T31]  ? kthread+0x13a/0x450
[ 1149.144439][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1149.149095][   T31]  kthread+0x370/0x450
[ 1149.153147][   T31]  ? __pfx_kthread+0x10/0x10
[ 1149.157722][   T31]  ret_from_fork+0x754/0xd80
[ 1149.162297][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1149.167395][   T31]  ? __switch_to+0x7b4/0x1120
[ 1149.172055][   T31]  ? __pfx_kthread+0x10/0x10
[ 1149.176633][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1149.181388][   T31]  </TASK>
[ 1149.184634][   T31] Kernel Offset: disabled
[ 1149.188955][   T31] Rebooting in 86400 seconds..