last executing test programs:

3m34.404264239s ago: executing program 2 (id=496):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
sysfs$auto(0x2, 0x0, 0x0)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0)
fsmount$auto(0x4, 0x0, 0x200003)
sysfs$auto(0x2, 0x100000000000030, 0x0)
fsopen$auto(0x0, 0x1)
r2 = socket(0x10, 0x3, 0x6)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
read$auto(0x3, 0x0, 0x80)
ioctl$auto(r3, 0x401070cd, 0x5)
syz_genetlink_get_family_id$auto_ovs_flow(0x0, r2)
setfsuid$auto(0xee00)
r4 = setfsuid$auto(0xee00)
setreuid$auto(r4, 0x0)
r5 = syz_clone(0x80000000, 0x0, 0x1, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r5, 0x2, 0x107)
bpf$auto(0x6, &(0x7f0000000000)=@test={0x12, 0x1, 0x3, 0x10000a, 0x1, 0x3, 0x3da1, 0x0, 0xb4, 0x5, 0x140000000000, 0xdc, 0x7fffffff, 0xd76, 0x1}, 0x171)
r6 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r7 = socket(0xa, 0x1, 0x0)
setsockopt$auto(r7, 0x0, 0x32, 0x0, 0x2)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="1b0026bd7000fddbdf25030000000400081008000380898771f1c19f17be4e1061790485908286dd0000040002805e482df822aa6d2ab4945538190d4ddabe1cbf6f14cc8a87c8c177e7d2648391431564b9cf495b29fdc9192a3a3534139f82d9c6590429d4b944a226863a77e604587da8818c0904ac86ec1c8f0064ee581b31eed61e1a1d97ac961f601fae33bcee"], 0x38}, 0x1, 0x0, 0x0, 0x50}, 0x400c880)

3m33.156982392s ago: executing program 2 (id=500):
r0 = openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/buffer_size_kb\x00', 0x90000, 0x0)
mmap$auto(0x1, 0x20000005, 0x2, 0x214, r0, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
setxattrat$auto(0xffffffffffffffff, 0x0, 0x1000, 0x0, 0x0, 0xa7)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/cpuidle/current_driver\x00', 0x8100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000500)=""/193, 0xc1)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa0, 0x1, 0x9}, 0x9, 0x0)
landlock_restrict_self$auto(r2, 0x2)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x201, 0x0)

3m33.040256609s ago: executing program 2 (id=501):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
close_range$auto(0x0, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYRESDEC=r0, @ANYRES64=r0, @ANYRESHEX=r0, @ANYBLOB="d5e130a8fd13a1af640dfe0c9c959a3c3f8fd684494b90e4f2376b49b234d8095540517f5d0316efed17f3af21cc671e6b072ac0b94869293c44d4b64a744756878aef77a84537c36ba91979df5c1ca16e006d643f509c4242c7898580bdcb700f4c7c13a7ab840cd59a0f3fbacbba11f997c76f0ea5f01ddd33dab20f", @ANYRES64=r0, @ANYBLOB="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", @ANYRES32=r0], 0x28}}, 0x200480d4)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x43, 0x0)
fsopen$auto(0x0, 0x1)
r2 = socket(0x27, 0xa, 0xffffffff)
setsockopt$auto(r2, 0x65, 0x8, 0x0, 0x5)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x103, 0x0)
socket(0xa, 0x2, 0x0)
setns(0xffffffffffffffff, 0x2000000)
ioctl$auto_VHOST_SET_VRING_CALL2(0xffffffffffffffff, 0x4008af21, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0)
pread64$auto(r3, 0x0, 0x3, 0x40)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)

3m32.051570919s ago: executing program 2 (id=504):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r0 = timerfd_create$auto(0x9, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'netdevsim0\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), r3)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x34, r4, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x2400004c)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd4\x00', 0x4500, 0x0)
r6 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000080)='/proc/softirqs\x00', 0x682, 0x0)
preadv$auto(r6, &(0x7f0000009180)={&(0x7f0000008180), 0x7}, 0x26, 0x80, 0x5)
ioctl$auto_BLKSECDISCARD(r5, 0x127d, 0x0)
write$auto(r0, &(0x7f0000000280)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k>\x85\x8b\x84\xae\xcf\xa9\xbb\x85\xad\x9c\xbf\xef\x92)J\xf6V\xaf\x7f\x9cD\x1f2\x99\xc4M\x9d\xef\x89m}EH|\xa0\x86^\xf5T\x8d\xd8\xf0\x7f\xdf\f\x19\x04\xac\xc5\xff}\xc9\xef<\xedq\xfdh\xe5;\xb7\x88\xe8\x02\xe9\'\xd4\xd9\xe9\xa7D\xdc\xca\xed\x9e\xe7\xbf\x9d\xc3\xcd\t\x9c\xfb\xa2\xaau\xcc+\xe1\xe0\x93\x87\xaf\x9a\v\x02\x13a\xc3Qc\x9f+\x96_M\x04s\x05\xb5\xd9j\x9fKo\x85\xe0\xeb\xf9\x00\x00\xa8\xdf\xdc\xd84\xe5\"\x02\xbf\xd1D\aC*b\x01/,\xc7\xed(\x012\x1c@\xf6\xdf\xb2\xb1\xff\x83\x0fY\x1d\xc0M\x0e\xb8\xccCBN\xb2O_\xc7-\xc6\xaf\x13\x8f\x02}\xa0\xf6\xe4\x98\xd11\x15\xf47\x9fI7\x00\x99e\x80\x97\v\x01\xce:7\xac\x11\xf5\x89\x8d\xae\xfcv\x85\xab$\xcd\xcd\x96\x1b\xa4$\x8c\x89\xf1\xa8>j\x12;K\r\xff\x97\xbd)\xf8\xa9<n\xb7\xd2\v\x13\xa0zn\xa4L{QI2Q\x9dl\x03W\xa8z\x1c\xfd\x00\x00\x00\x00\x00', 0x8003)

3m31.813514804s ago: executing program 2 (id=507):
r0 = socket(0x10, 0x2, 0x0)
r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x147)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(r1, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0x4}, 0x1000000000028, 0x0, 0xc4, 0x7f}, 0x800}, 0x4, 0x4008)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
execve$auto(&(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000600)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\\\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\x00\x00/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a(\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8L\x84j\x8c\xec\xdf\x1a\xbd\xc5\x94\xb9\xb7\xd5\xa4\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12\x16\xb8*\xa9\xc9\xe81\x9d\x06\xbbC\x17\xbb\xe6|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x874\xab?\xc8\x82\xe5\x8f\xb7\x91\xc2\xbe\xb2\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5')
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
mmap$auto(0x0, 0x8, 0x1000000004, 0x209b72, 0x2, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x8a001, 0x0)
r2 = epoll_create$auto(0x3e)
epoll_ctl$auto(r2, 0x1, 0x8000000000000000, 0x0)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
r4 = ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x6a)
ioctl$auto_FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000080))
openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cpu/1/msr\x00', 0x400f82, 0x0)
openat$auto_ht40allow_map_ops_debugfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/ieee80211/phy14/ht40allow_map\x00', 0x200200, 0x0)
writev$auto(r4, &(0x7f0000000100)={0x0, 0x3}, 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
shutdown$auto(0x200000003, 0x400002)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000023c0)='/proc/self/net/tls_stat\x00', 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000040)={&(0x7f0000000000), 0x36a}, 0x6)
fsconfig$auto_HIDEPID_NO_ACCESS(r3, 0x8, &(0x7f0000000180)='/dev/fb0\x00', &(0x7f00000001c0)="120839842c2c39e3f0bbd84309cd4ea08c0becaae0b06272101ad75f93e378a5f2da97f0956fda6eab918f5fd4a3e88e0e88f5abd3a6839c56733f0e979025a3f470291fa83f4d024ba5fb31cb32f423bdaca35b3db96591524b4c235ab880e3a3f02a5b534b350cb79801e2d53d9cf625ee3244e1557f49033c5d5b7af3ed161e8bf3226017c97ce6b869eb", 0x1)
openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000ac0), 0x2, 0x0)
io_uring_register$auto_IORING_REGISTER_CLONE_BUFFERS(r4, 0x1e, &(0x7f00000000c0)="0abf90841168d54acf80bf8c846dec16d5fd87937cd60e028c1000e370c29a0debb8f2c9aa512c", 0xb7)
shmat$auto(0x0, &(0x7f0000000000)='(\x00', 0xfffffffb)
mprotect$auto(0x200000000000, 0x5, 0x4)
ioctl$auto_SNAPSHOT_SET_SWAP_AREA(r4, 0x400c330d, &(0x7f0000000140)={0x3, 0x7fff})

3m30.861811734s ago: executing program 2 (id=511):
mmap$auto(0x1, 0x20009, 0x4000000000df, 0xeb5, 0x401, 0x8000008000)
r0 = socket(0x2, 0x2, 0x0)
r1 = getsockopt$auto(r0, 0x0, 0x17, 0xfffffffffffffffc, 0x0)
r2 = timerfd_create$auto(0x0, 0x0)
timerfd_gettime$auto(r2, &(0x7f0000000040)={{0x2, 0xd21}, {0x29e2, 0x3ff}})
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
setregid$auto(0xee01, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x8203, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
prlimit64$auto(0x0, 0x7, 0x0, 0x0)
close_range$auto(0x2, r3, 0x0)
sendmmsg$auto(r3, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x2, 0x0, 0x400}, 0x4}, 0xfff, 0xb07e)
mmap$auto(0x0, 0x2020007, 0x4, 0x18, 0xfffffffffffffffa, 0xff)
move_pages$auto(0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x1fb)
r4 = socket(0x1d, 0x2, 0x7)
getsockopt$auto(r4, 0x6b, 0xdc5a, 0xfffffffffffffffe, 0x0)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv6/neigh/veth1/unres_qlen\x00', 0x382, 0x0)
socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc)
sendfile$auto(r5, r5, 0x0, 0x200002)

3m15.101576924s ago: executing program 32 (id=511):
mmap$auto(0x1, 0x20009, 0x4000000000df, 0xeb5, 0x401, 0x8000008000)
r0 = socket(0x2, 0x2, 0x0)
r1 = getsockopt$auto(r0, 0x0, 0x17, 0xfffffffffffffffc, 0x0)
r2 = timerfd_create$auto(0x0, 0x0)
timerfd_gettime$auto(r2, &(0x7f0000000040)={{0x2, 0xd21}, {0x29e2, 0x3ff}})
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000040), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
setregid$auto(0xee01, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x8203, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
prlimit64$auto(0x0, 0x7, 0x0, 0x0)
close_range$auto(0x2, r3, 0x0)
sendmmsg$auto(r3, &(0x7f0000000100)={{0x0, 0x4, 0x0, 0x2, 0x0, 0x400}, 0x4}, 0xfff, 0xb07e)
mmap$auto(0x0, 0x2020007, 0x4, 0x18, 0xfffffffffffffffa, 0xff)
move_pages$auto(0xffffffffffffffff, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x1fb)
r4 = socket(0x1d, 0x2, 0x7)
getsockopt$auto(r4, 0x6b, 0xdc5a, 0xfffffffffffffffe, 0x0)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv6/neigh/veth1/unres_qlen\x00', 0x382, 0x0)
socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc)
sendfile$auto(r5, r5, 0x0, 0x200002)

10.010413067s ago: executing program 4 (id=1376):
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
write$auto(r0, &(0x7f0000000200)='\xfdde\xef\xe7audio1\x00', 0xa3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000000000)={@raw, "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"})
mremap$auto(0x0, 0xffffffffffffffff, 0x3fda, 0x3, 0x7fffffffb000)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000001380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xfc\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r&\xec\xb8\xb1Z\\\xc9L\xb2\t\xddbH|\xffGP\x97)\xb9:nqn\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc$\xa0\xa5\xce\xca\xe1P\xf7\xe5_\xca\xd5\xd8\xa4g_\xb1\x88\x8cAJS\x11\x8b\xd1%a\xe5DPk\x8c\xf9\xfb\xe0+\xdb\x12\x10.F\x00\xc37\xc7\xbf\x80\xbeu\xe1V\xb2\xc5\xc9\x1a\xc7\xdc}!\x10\xb1\",1%\x0e\xeb\x15\x15me\xe1a\x03\x18{\xb03+\x93*vB\xc6\xf1\xc6\xff\xbbt\x04!\xb6\v\xde2\xc9\x89#\xbaR\xee\x13jF%\xf2\x15\x9a\x82&\x89o\xa9\xd9\xbfFY\x90\x8c\xa0\xe4\x9d\xa2\xcd\x9a\xb5TC\xc4\x9d\x9ePb]\xaa\xc7f\x06N\xc5\xfa{\x02Y\xae\xf4(\xaa\x06);{?\x1e\fu\x19b\xdf$,\x01\"\x94\x00\x00\x00\x00\x003\xcfZ\xaf~<\xba\xb7\xa03\x8c\n*krS\x19Q#\x8f\xfbW\xad\xe0\xb3o\xcb\xf7\xda\x87C\x99\x1a\xa8\xc1\xe3\xc6%\xac\x01@*\xa0\xc4\xedn-lT\xe6*?\'\x9dW=\xa7\x03\x06\x83 IT\xa3\x7ff\xb6\x95\xe5\xd2\n\xaf\x87`\xce%\xf6 &\xa7M5I\x9c\x17h\x8c\xa4\x98\x16\xe0\xd9?Y\x7f\xf6\x85_{\xfd9p$B9_\xd8\xf4\x0e\xd0\xfa\xe7\xb0\xb8\xa0\xd7\a\xff.\"\x81\b\xb0\xb4\x84\xac\xad\x1b\x93~_\xea\xfe7\x03\"\xd9\x1d.\xe5{bHX\x14\xa1\bO\x03[^\x85jP\x89\t\x06GI\xb7\x99\xb2zZf\xc8\xd4\x8d\x1c\x1e\x03\xb9\xa7Nt\xae\xfff\xf9\tx\xae\xa8\x05\xb14\xc6\x9b\x1f\xd3\x01#\xc6\nb\xd4\xb4\xc8?\xa7\xe2R\xc1\xcf\xd2\xbc\xae\xd1\xc2\x88\"\xf3\xf0\xc0uQy\xec\xfab\xd6\xcd\x16)\x19*E\vm\x8d\x1bG:\x80\'pJ', 0x4100000a3d7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xe2, 0x16, 0x2, 0x0)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
pread64$auto(0xffffffffffffffff, 0x0, 0x100000002, 0x100000001)
io_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r2)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)={0x18, r3, 0x301, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
io_uring_setup$auto(0x6, 0x0)
r4 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cpu/0/msr\x00', 0xf82, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0xcf37, &(0x7f00000002c0)={0x0, 0x6a}, 0x4, 0x0, 0x5, 0x7}, 0x8}, 0x8, 0x4b)
ioctl$auto_XFS_IOC_COMMIT_RANGE(0xffffffffffffffff, 0x40585883, 0x0)
r5 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f00000010c0), r4)
sendmsg$auto_KSMBD_EVENT_SPNEGO_AUTHEN_REQUEST(0xffffffffffffffff, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001140)={&(0x7f0000001100)={0x14, r5, 0x400, 0x70bd25, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x24044810}, 0xc0)

8.390011683s ago: executing program 4 (id=1380):
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/v4l-touch5\x00', 0x0, 0x0)
read$auto_v4l2_fops_v4l2_dev(r1, &(0x7f00000010c0)=""/22, 0x16)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, r2)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffff6, 0x8000)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x8)
open(&(0x7f0000000000)='./file0\x00', 0x121342, 0x0)
readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x1}, 0x6)
write$auto(0x3, 0x0, 0xfffffdef)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(0xffffffffffffffff, 0x40045010, &(0x7f0000000080))
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x8001, 0x0)
shmctl$auto_IPC_SET(0x401, 0x1, &(0x7f00000012c0)={{0x10000, <r3=>0x0, 0xee01, 0x1, 0x2, 0x2, 0xfff2}, 0xb2, 0xa0, 0x91, 0x100, @inferred=0xffffffffffffffff, @inferred, 0x80, 0x0, &(0x7f00000001c0)="2fd3f7daa2b34311c9f0226fb5d8317cf69e1c2f1b768b4aab44516c0e7d5628e7057e4c7a040f40dd6b142229b8d4cf833425d5fb10a96ca2b0fd61416d416d3ee465898e4bb812225964746265489832e9ac2b68c08ae072201a3783fecf2b18a4b9c15867f5ac0e206c97597e93976b506ad9161726c24e3ed42ed208ef273414ae12c7b774ef507544c2e2a9f1588302e88526717a6f9c0e1b3b66e8c712dbe09db93dde109f5603b6e802763d789723aabcac350f0a8f8baab5ff5378a14b555cc4bfd1e15b768cb1dc7e8a98caaabd29982576526e08", &(0x7f00000002c0)="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"})
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
keyctl$auto(0x1f, 0x1, r3, 0x0, 0x402)
mlockall$auto(0x800000000000005)
msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004)
r4 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0)
read$auto_proc_pid_smaps_operations_internal(r4, &(0x7f00000002c0)=""/190, 0xfffffe39)

6.877503832s ago: executing program 4 (id=1388):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x0)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x0, 0x5, 0x8)
mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x403, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x7ffe)
socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000040)=ANY=[@ANYRES16, @ANYBLOB="010027bd7000ffdbdf25100000000c0001800800", @ANYRES32], 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x0)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8], 0x1ac}}, 0x20008041)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0xd}, 0x2}, 0x3, 0x0)
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x21a300, 0x0)
write$auto_tomoyo_operations_securityfs_if(r0, &(0x7f0000000140)="fb493a243344eec2e00f19365812ef7f76126f5b081e707fcee5d6d545cb2572b2b06ef7a9678f39a01b0faa564e1a6a18d604a06aa93928ae211698d1b9fb9779e6859f6224a4cf385a0fce3176ec98046d3fb185784c972c48dece8a98a007f584ef74", 0x64)
open(&(0x7f0000000800)='./file0\x00', 0x76340, 0x154)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x81, 0x4000000000df, 0xeb1, 0x401, 0x8000)
stat$auto(&(0x7f0000000040)='./file0\x00', 0x0)
r1 = pidfd_open$auto(0x0, 0x0)
setns(r1, 0x60020000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x38001, 0x0)
umount2$auto(&(0x7f0000000080)='.\x00\x17\xe7\xcbK\x17\xa2\xa0\x9a\xf6\x81\xee\xbfB\x9d\x8cL\xc9 \f\xd5\x1f\xf5\xd0\xe2\xfb\x1bG[\x0e\v\xbcq\xa1(Gz\xd7\x02Viw@\x8c9 \xee\x8a\x04\xe7\xd6\xc5\xc6_\xb2\ndUsI\xd8o\x00\x00\x00\xff\xe4\xed^0\xed\xc5\tg\x91\x87\xb5\xa9\xcd\xde\xf2L\x10VL$\xb3\xd4\x89\x01Y@%v\xa2\a\x98G\xf1\x0eMg\xe1p5u\xb3E\xfc\x1c\xd2-\xe4\\;nQJ', 0x8)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000280)='/dev/usbmon24\x00', 0x280881, 0x0)

6.44135128s ago: executing program 0 (id=1389):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x3, 0xa)
setsockopt$auto(r0, 0x0, 0x20, 0x0, 0x9)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8)
keyctl$auto(0x1d, 0xffffffffffffffff, 0x8, 0x5, 0x8)

6.369614105s ago: executing program 0 (id=1391):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x41, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000040)={"b218cb1c5221ca4e323fe6d9342bfbfb6b58baf0d8883f55df04e26d13e68241", 0x2, 0x5, 0xf7, 0x3, 0x5, <r1=>0xffffffffffffffff})
ioctl$auto_BLKTRACESETUP2(r0, 0xc0481273, &(0x7f00000000c0)={"76ef37f8fa022e6384a4a49710d19ee0ae46a32ec358e63cee502368646b3598", 0x4, 0x10, 0x6, 0x2afb, 0x5a, r1})
r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy5/netdev:wlan0/stations/08:02:11:00:00:01/agg_status\x00', 0x780, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r2, &(0x7f00000001c0)=""/212, 0xd4)
bind$auto(r2, &(0x7f00000002c0)=@qipcrtr={0x2a, 0x4, 0x5fff}, 0x3)
ioctl$auto_SG_GET_TIMEOUT2(r0, 0x2202, &(0x7f0000000300)="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")
r3 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/virtual/bluetooth/hci1/rfkill6\x00', 0x600c0, 0x0)
ioctl$auto_XFS_IOC_FREESP64(r3, 0x40305825, &(0x7f0000000440)={0x7, 0x1, 0x9, 0x8, 0x2, r1})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000480), r4)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/kernel/debug/tracing/free_buffer\x00', 0x0, 0x0)
r5 = ioctl$auto_TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000500)=0x7ff)
ioctl$auto_SNDCTL_DSP_GETOPTR(r5, 0x800c5012, &(0x7f0000000540)="d0e7864f1442a8535567467e73")
bpf$auto_BPF_LINK_UPDATE(0x1d, &(0x7f0000000580)=@batch={0x9, 0x19d, 0x7, 0x8000000000000000, 0xe, <r6=>r4, 0x940, 0x2}, 0x0)
read$auto_proc_page_owner_threshold_(r5, &(0x7f0000000640)=""/88, 0x58)
r7 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000700), r5)
sendmsg$auto_OVS_FLOW_CMD_GET(r5, &(0x7f00000019c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001980)={&(0x7f0000000740)={0xa04, r7, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x8}, @OVS_FLOW_ATTR_KEY={0x98a, 0x1, 0x0, 0x1, [@generic="11ad235c53acb9891e7e263e3fc0d9af0b8247b1beed3934a99fc275d16286a16b04d46538c422ebdc223fac52f2f113a4f84dde01dafce8547689486543727a0e35f117a8af4a55743532fd989ccab6b88c815599fb3be18b8a811a61f4ca9722547cd02892990bb5cfd0467885409564554cd21ea4654cc40731995f0bd92ec046e8d275f7ff65ea304089ee7584f9003630ada2737408e891", @generic="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", @generic="959a4e3d28fd0fa7a8281c83cb0ee79b7f5cb05b2c42bbd9cced1928139b1e4fc73023b3799ed7f8fc85411022036033467260d3b8c15e6775a942772f8456da7c75e347ae20c9f3a33dbe4a3bf617756b030b60b4b125249e79ddf194ab163436cdf88baef9fb3545bd1e29189f30492766175135bcf6a5dc684860f4e3732481d4d0b9bad628ceeecb93a1deaf1cfc1310dbeb78273a3bbfce96e9ba90a46b42b7725ff6a21c53ce8fd98aedeafee64cee60bc908cd1b1428929339197e5bc6b388530bb049d0914fa685d4e098684ac22ced98bf87271eaf7adb951b2aa426f5d98d2c07dcd7e8e892597"]}, @OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_ACTIONS={0x48, 0x2, 0x0, 0x1, [@typed={0x8, 0x52, 0x0, 0x0, @fd=r2}, @nested={0x3a, 0xdc, 0x0, 0x1, [@nested={0x4, 0xf1}, @nested={0x4, 0xbf}, @generic="610f191a561a75fbd0a52690bcb1878b0434146675194323fbaec3b4e489f16987d51fe19004c0bcfa6408dfcc98"]}]}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x4}, @OVS_FLOW_ATTR_CLEAR={0x4}]}, 0xa04}, 0x1, 0x0, 0x0, 0x20044041}, 0x44000)
fallocate$auto(r6, 0x4e, 0xb, 0x7)
close_range$auto(r2, r3, 0x101)
shmctl$auto_SHM_UNLOCK(0x80000001, 0xc, &(0x7f0000001c00)={{0x2, <r8=>0xee00, 0x0, 0xa66, 0xffffffff, 0x5, 0x8a0}, 0x6, 0x7, 0x1, 0x3, @raw=0x7, @raw, 0x77, 0x0, &(0x7f0000001a00)="37ade8d87d2f17c667187f3808b9f930e6c345e0b0027a520ddff445ed4242927bd6ee018aafb8c2ccbe3b35ef8a5c06a9e0f8e60cd5dc32bb05421b8494547e27da4b54a617417b33096bcc8d57e0a7e4265404a9d2770552d0d45fc0bf428b32669ac8012dcfa0d2ba22970756a31df51fdb8ea16293bf189a283a113265552251956d6adaf1543e951721c8fc71154f4c9df15799b9a3519c461db2a9798089b554668121bc477f163b224f58c171646946393d29cb660907e91f32e7fc7dbecce7e57bf3cf5fa0fa7101fb7cc2c53ee28d3c36ff67bf58d84778612db9ddfd9686b45a2f8786464d90784357b2d0", &(0x7f0000001b00)="ed41a8a89fac6f7c27515b70c0348f24444881aaea96d2fb160fead9bbb32260938dc94ff24a76a97e94aafcdec83a9ebaebf4b14ee2ac3c41045f08985d0877a794271a6b6a4a58c26f495500764acddba6a9c1ba6623248c183a6525593fe3d4b05d85e3da9ebab6f9830263d7feabae43e3dc8f90c9730b9d037c421df5f2df277d63c64768a7d6f433af980e6c9ab481e77d431c8c50d70e6fc7669c64b8ad71b7cf988fbc00c2ba4f49bbfaf07604dbbd46b753abb8d1566642a69a5d348d6996f1aa4f0200cc"})
ioctl$auto_XFS_IOC_SWAPEXT(r5, 0xc0c0586d, &(0x7f0000001c80)={0x2, @raw=0xfffffffffffffff8, @raw, 0x295f5db5, 0x1, '\x00', {0x3, 0x4, 0x6c, r8, 0xee00, 0x2, 0x0, 0x6, {0x4, 0x9}, {0xd042, 0x6}, {0x7, 0xd8}, 0x6, 0x1, 0xbd, 0x10000, 0x80000001, 0x138, 0x688f, 0xe8, 0x6, 0x3fc6, '\x00', 0xfffffffd, 0x5, 0x0, 0x6}})
r9 = openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f0000001d40)='/sys/kernel/debug/netdevsim/netdevsim1/ports/2/udp_ports_table0\x00', 0x111000, 0x0)
getsockopt$auto_SO_MAX_PACING_RATE(r9, 0x1, 0x2f, &(0x7f0000001d80)='/dev/sg1\x00', &(0x7f0000001dc0)=0x9)
msgget$auto(0x8, 0x2)
fcntl$auto_F_GETOWN_EX(r2, 0x10, 0x3)
syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001e00), r5)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001e40)='/proc/thread-self/fail-nth\x00', 0x200100, 0x0)
openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000001e80)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x150000, 0x0)
msync$auto(0x66, 0x768c, 0x80000000)

6.36541789s ago: executing program 4 (id=1392):
r0 = socket(0x10, 0x2, 0x0)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f00000020c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01f7ffffffffffffff250a00"], 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x40)
r2 = socket(0x10, 0x2, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$auto_net_dm(&(0x7f00000000c0), r0)
sendmsg$auto_NET_DM_CMD_START(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="200027bd7000fedbdf250300000008000b00041ee9c1a2e9abcc260facafeec7000000080009e5fe07000008000b00c80000"], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000)
semget$auto(0x0, 0x13c, 0x1ff)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0)
r7 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0)
sendfile$auto(r7, r6, 0x0, 0x1fff5)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/bluetooth/hci1/power\x00', 0x90000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x7, 0x0, 0x187c00, 0x19, r5, 0x8)
socket(0x2c, 0x4, 0x4)
sendmsg$auto_NL802154_CMD_NEW_INTERFACE(r2, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000133f91a01dbdf2507000000250002002f70726f632f7379732f6b65726e656c2f7761746368666f675f74687265736800000000"], 0x3c}, 0x1, 0x0, 0x0, 0xc810}, 0x40)
sendfile$auto(0x1, 0x3, 0x0, 0xfff)

6.233100191s ago: executing program 0 (id=1393):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r0, 0x560a, r0)

5.887325507s ago: executing program 4 (id=1395):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
msgctl$auto_MSG_STAT(0x2, 0xb, &(0x7f00000002c0)={{0x4, <r1=>0x0, 0x0, 0x9, 0x5, 0xffffff68, 0x4}, &(0x7f00000001c0)=0x9, &(0x7f0000000200)=0x8, 0x10, 0x7, 0x3, 0x46, 0x7, 0x6, 0x9f5, 0x22f3, @raw=0xffff7fff, @raw=0x64})
setresuid$auto(0x0, 0x0, r1)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/mtd/mtd0/bitflip_threshold\x00', 0x2062, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000002680), 0xffffffffffffffff)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/platform/vhci_hcd.7/usb24/24-0:1.0/usb24-port8/quirks\x00', 0x601, 0x0)
write$auto(r6, &(0x7f0000000240)=',-\t', 0x2000008008)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES16=r5, @ANYBLOB], 0x18}, 0x1, 0x0, 0x0, 0x40014}, 0x0)
getpgid$auto(0x0)
r7 = socket(0x2, 0x801, 0x106)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r8, 0x0, 0x10001)
r9 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r9, &(0x7f0000000240)={0x0, 0x7}, 0x2)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0xa}, 0x0, 0xf4240, 0x1)
setsockopt$auto(r7, 0x6, 0x12, 0x0, 0xa1)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r3, &(0x7f0000000ac0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x28014044}, 0x0)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x8203, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, &(0x7f0000000100), 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)

5.88556393s ago: executing program 0 (id=1403):
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram12\x00', 0x2c65c0, 0x0)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
semctl$auto(0x7, 0x2, 0x13, 0x1)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/neigh/team0/retrans_time_ms\x00', 0x200400, 0x0)
memfd_create$auto(&(0x7f0000000100)='nfsd\x00', 0x2)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/pcmC0D0p\x00', 0x2800, 0x0)
ioctl$auto(r1, 0x560a, r1)

3.411309226s ago: executing program 0 (id=1401):
socket(0x15, 0x5, 0x0)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff)
socket(0xa, 0x3, 0x5) (async)
r0 = socket(0xa, 0x3, 0x5)
close_range$auto(0x2, 0x8, 0x0)
open_tree_attr$auto(0xffffffffffffff9c, 0x0, 0x1, &(0x7f00000000c0)={0xe4, 0x37b60000, 0x8, @raw=0x34}, 0x800)
r1 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a)
sendmmsg$auto(r0, 0x0, 0x3b8b, 0xa) (async)
sendmmsg$auto(r0, 0x0, 0x3b8b, 0xa)
setsockopt$auto(0x3, 0x10000000084, 0x14, 0x0, 0x8) (async)
setsockopt$auto(0x3, 0x10000000084, 0x14, 0x0, 0x8)
socket(0x1d, 0x2, 0x7)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x88000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_TCFLSH2(r3, 0x80045438, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x801ffde, 0x1, 0x2000000000000006, 0x3, 0x8, 0x5, 0x6, 0x7, 0x1, 0x7fff, 0x2, 0x3, 0x5, 0xffffffffffffffea, 0x0, 0x3, 0x0, 0x0, 0x3bc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0xffffffff00000000, 0x0, 0x200, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x2000000000000002, 0x0, 0x5, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffc]}, 0x5, 0x2) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xe, 0x940, 0x801ffde, 0x1, 0x2000000000000006, 0x3, 0x8, 0x5, 0x6, 0x7, 0x1, 0x7fff, 0x2, 0x3, 0x5, 0xffffffffffffffea, 0x0, 0x3, 0x0, 0x0, 0x3bc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0xffffffff00000000, 0x0, 0x200, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x2000000000000002, 0x0, 0x5, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffc]}, 0x5, 0x2)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0xffffff9e}, 0x40000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0)
write$auto(r5, &(0x7f0000000040)=',,\x00', 0x2) (async)
write$auto(r5, &(0x7f0000000040)=',,\x00', 0x2)

3.026816043s ago: executing program 0 (id=1407):
mmap$auto(0x9, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000fff, 0x8000000008011, 0x3, 0x8000)
getdents$auto(0xffffffffffffffff, 0x0, 0x400018)
sendfile$auto(0x3, r0, 0x0, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendfile$auto(0x2, 0x3, 0x0, 0xc3e0)
settimeofday$auto(0x0, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socket(0x28, 0x5, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00000000000000000000000000000000000000000000000000cadb00", 0x3ff, 0x408, 0xf, 0x400001, 0x200000000040000d})
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
write$auto_tty_fops_tty_io(r3, &(0x7f00000009c0)="8939cc4d36227fdb35e4a7779345a4d999cb1552f41b34b4003355454e96e6647b34e58345a013e46d9380cd77dcd9b5804ab378df5b19fd93b23d547b6a39e0563f1da27d880a0c7a41ada96f5899128a2f138a38855f3a0e5090cfcb022a807fd8d8410e21962aea3354ff7d28917ad17443189afcba863b21eedff9ef8944e15848033f30ec1ce206287db0755992c3d95fa6c7a2ecb44696ce661038bdc304c775605215501e237d8713947274ff5249f4fefe090d0581a07ac675fdc5da272124ae5975977941ead35326b8dd9ef2562c730a1df3116a5e25f19463fb391d3ba275758c4dd50d5bb8ecd6b3b07ebadfc8c978bb7e15a95c5bd06356d6d9d9e89db59312c4f8452f55ba7013b2691ca80c7db06df2026b190ae22bd233128b0459f8e22f77579ee7f7c6054e4eb33480be2d6e034dd96379f65937a7edf67a2d6b9fc5bb4253bb95d4bedd94da5d5cd944ccfa98c65c25dc3ab8fda6e68d77806b21e624aae3a6435c313b15894332942eb58e2bc6a0582aceaeb594578a2908b49a6f2ce66aac2e2ee4cadfc452cb953a51449039dbb5c7e84405d9cb335afbed3384ffc695b954cc51531bb083df05e2af461c2a7a0a697d0d59c565f5cfd3b354f051d5637fd1f72aeb79be3567215c648ae85541c9f3c4856229247b1225d327ed57fa7981424b39ebbb77a0f6ca5778ed0c9713d68aedd19627de8edf485f9155261ede5c803da5ce248f4c93a1b9925ee07d3f42c8f999252655c582ff47da1e6d010449345c4f3a43336547112ef4e8e0bd0829027b6dcb8fb127171eeb7a38470592c8422bc5c9bb784c281d20847eb79fef43fd38aa88f1a8639728267aef7a74fc40cc54cefea2807f598cd25f3c1bd8ab17fc88aac82179057717177355a1103433d8f7468a8f49d7d5dd8093f6882a791ce983aa4e03bf1a91e938b8da4f9cb41d6371579d9feb55636d8626b9e339d5e54a2397537e9b2f5bb846f1d0dd4614ad5f68fa35ea3f366a12eb4d51aad810856db0f11974bda08daf259c9477053847f17074fbbcbce75472cb9acada0b400f4fa85b71a97e7c686b2ba98e3d2bbb905d9e82430a2730d8d3465d9b632ba07fd746b2a394feb76db7501208f559be2a151c205103c4481cae7352f7117e6c626f25f0b3367d50a1ea87a38136b6ca64e1ef51207c0d6c06dfe86336b65caeee24138f1ca0955135c5d2b49743b0e51f98b7a8bd3a5ac50ca3a5d6e8e17cdf154bae7fa031b40b83b285b58eb47277920fc28ef916d5ae8536458577a37b73ae29312fee7885c405417d454e38dbe50ef1a8603e28611bf4d6b63251a1abc190581c6efe832d62d6ce8f6c4a64c7e018427b5fadddc1cec3896ed51c977d9e3f7c0d1e8f8d75693e1ead5a7a3714843fb3517bd0ddc68936c801692cce52ba003036764dc7f016e342a54f99916fc595dba1fc76222c5e814a1b71c6b9b735240e6bf747a900f6048b2836af70c6aa717701312c61c965d8ca1bdafb5d3623b2ee9b7e4a767ed76defd661a9f18bffaeada811ac2ad6731bf96274b019498c5552b38678ff0aedb465713d895595b92e2bc9e1b3acec28f3ee5831951582f2ad1831ddce1300dcc4547ec444eae5c614719be9c3d397fc1db1a76d954cbc9b7a0d7c8d1eab3eeccd70b17dcd7c3543b6d9effbea67c4ade126c6fbfdee281fe3479c3052e68cf8441a50a6adc59dec8de4261a117e0286eea92ecc88230fdfdca1ed438026e238e6dbfdc4772dccb17737c398add9644b47bfb1a3e3a4b1316ec25ea07f90f858736e80dbb9c882701e7188d315391c538469695f33d266550fb873f47a12518717c83bec4e0cce65958d08a0e287df6a08efd979e087814b1822681ba6ea015714fd66af5100967e152262973b065ed349398aa13bb4329b4f56081aba2ba73ede47a2f1b2dbd5daeaf4d4f790a030e3c1fac30da1b5f6149074de6d76b1635adf44016027efd4ac08c93983e0935c1c8b38a675d5c356483539624e1f402439e6a55529a44c17207d6a5f9d0a2b1745ccb5d4e7332a2b2467c9690c9b7fb9fa73b4da5d3eadd347b89bf05a6aacac989ce9f1398729a4b3383c64c64cc68a8638735ebd80fb9ba2ee9e30e65a56d5676f2b607567f2a07adba966b210339d6a8cc404ffdcbf8ac02216239cc9e0abec2e2aa1d27d658913c83ae08657439bf32213d6b3c3fbb37f978a1820d23be11511869e5884ccab0de2a2ac982d58f01e88b54a54b0f50cc0ff699e39f86d74371f1667927ea4ba96af4c98b05e2b1d4115ef892332ab7ac777f1537f3ce78a2889fab969aa6a11f9e855ec1ba09096346fe930737e6760688c91a60bce3f173c24fa1efcbe5d12869ba34883f95e6bc90c61994f6761c305f5de4a0f79f6b3403249190542edd86d7231f0d89d1519ccab3ef35e3dc9e35a5031ab1cb888a8ace8cbe67073c19f8060ea78bf6d6a8970ed1aae35246df0b825d325279ae4c2a838e0e1f40a3c9615b06b2c4e929942a2d820a82ef19d355754caa45119d5e07f9052bf02ed05de6e07bf46758255d8ef077fd04e971b5117f8ef54f20559c98a9c51df5ed7d2db8f2085ce9947b474c7f00f4a1585507e2344a53a597292a338dd39592df962267a835d091dc9f1c5e7a6a0f1215a0015d9083720aee97b7fa1aa7f4fbcf698018980ebe5cd928e6ea1f1c4e6087678cfa687f1f6cea280fb9f24496211fb00b3788bf4ac4cf5d0972c398baa70fc54dc28a9fd3b838a5732b5039602d5049afc135cfef8053a20359287d53bcce117c7c36147288178cef8dac66f4b941333dd74cf2e9e22ce1be287f1ea2c0d5f476ea74a996d5952c98714a9939084f87bb525f287214567bf1da94d8d098640215d14800f09367aaade0f57ad08dc581dc19d21bdd640d1d3cf54336bb0feafc14d9709f719b1212eee75d9f8b958783cce8a535cb6a1b890e002fefa0e60597275ca2d516b28ef1d1ce3f25184b20726cb59ccab574b8d0ffd30fce23936ec84224991a6f9d2fd74def41248726f86e413dd13e9be77f1856fa1b5803312b8a9179914980bb70873a380278f1c6ad42186b14933892427939f83556e9d130607c1b3e1292da5ba6908b642a11d2814b7ea8b7442ae9aaea89948a58cba34807e617404af7e34ecc449be8c403ee536f311af194d63c9120e0268c3f7e2cafc739b6a0575396d61e55707820fe6eb6a71ce094b931d67b8be93937542e3f7e5bb80ab033d979b3c1bff4ff367934c73198fd04571e7a74b9376894d4b0c45a53b7711cecdd98fc87980b82019db23bf4f41ad8182b6861cab9fdb8f882eddc568f5f35e798350857b3818e2e0ef189cf08825355a9ffec231c0f5039b80764f3c7d1f2371fc71216e8f8d83bce4273bcbf22908d81b7c28d664e574e396098ad8fb0bcd68dbc3d1bb0f0bf295df0ae59339381ee231536c7d3b949072a5a2ba5245cb57848dfbb7cbcb7cbdae9b96752c824410eb46f6978051ae5734c278292a90f3c395f098162d4a43c7f449b1cd8208e15fe97c11c25b663a837348b45e059998a10f1c05490dae27b12508decaafec265eb2c22f3df91291922c80e33f479a77078717a7beea74972a7817e791e2cedcaafb43d1bb71ae86242f3375633bdcf0176ef26075446d3cf999df207983af46406defa8aaab0071a24c273a6b2ef78c47efdc0950a3bf486e1f0c26587b8de77a7fbfeb10a22485a6ec662f3afa0508343f9019a8a04118a30c78d89311da9fddfab1cd44f0c2c2f934ba94e88862fb2121893dab164b3edd2d3b0f4658624f6883099353b1bd0e0601f5397c5a5d6689890b207189602ee61524acc886ab1276aecf1a0bb4fbc85ff7e4881a977513ea0abd446b757464f6caa3485c3d08a4dc810ce21d85cfffc4fa07015ae41b1c7a6ba1858566db8ecaa0dd1cd6e5b7e3cc2a344399e89103954e380ee58b62cd508c587c9946b05433af55959a2ad30fb9b521c64f57321a23e4ac9866f356d28b29302f9604303bc66215696874eaf63e7a37056f78ac3034dc63db9315edb5bc7ada518e02b28281893792ac39374220645694c8e437358b5117f1e2d8269125111afc070ff118ec3a38d949c9ca4a7a1ce6dcac1e2a8e63af511d140b23a86cb78a7a47c4a9e2dcd4587ae32a36e47ed7a7a6e84bf1dbc60b0b00773b4bc0c9ebd38f0e8ccaa0eef5199229057f93c12988cd52317e64c9668b74e946a5cf837320f0889a427f84431f20540dc17eeb0587e51bd05ae9478dd42d215849d50cb745dd9d2d90c294a404ec95941d39ffacbe0e02c0fb6b017042986f1bb00e675a26eb0e65654eb130e5ad3b67cf73b89783effdebf50788f5287ebf2b1d96a4a94e37f39a9bfa0e6c95791a6fd5b5bc083af38afd3fb3ae0f17736f020d8b055a8081121d9f5d563cba2d8b803c4c687ea9184aa09445af016c77d946b03fca370c157f3c7b61ada339a9d3b1b5d18d68e3d66db596164720b09b1426bae1b96c7c5c201a5b232742cfcba1c45164165b5f342548354c2e040fc3a9dbb77dd35ae1f84aa89360fbd232637c0522c64088d7e4313311708c5525538c2e0db4d25143306e93492170413f1f85c3e582ca354164e14b5d3bb33fd808a8b608e29f744333fc670f3816829c1a8583a7b158154a988f5b3b97c38add8146f2faa7c30acc309763eee280251c0a1e1b2d26bd377531a00a2dc54696b90045b17bba7e76dcef64714fecd12c3e84bcc7cffa17b18c6bbcc39960f4156ef05e368c4f205e8dc05a668b09548c2ced5927e6dab63a9e196aa42034ac8f4b9fb9ee4d8cd9c0fb435efaf5c7f4059607a2ac5669f5ebfd5c6db2579e465a3ca09c2a8441fabd977ada9ef15d795c891810ff1cf95bf071ecd4cd4b8fff8a1e63e08e790edef1aced37d8cab6d66696bbfce01ed7e22aefa9dc81de1fb212c4153ca29647d85b84def3234bfeaac52f6e1d567987d0b92ef04f9822acd1c25f532ba96c513954af88288b2d3a100bb9bc33df9b86ba471b2c7eed43d64422831455d144709d2ca4582559fb2a8cdc1c0686c686bbd04bd81f6116c7b8480c990651c4eab199dd27fecce28ab10965b60d0d062f66c0055cf7c0bf5b9779a65960dc059cdbb15c8f2a984d852e05f90203847b6f8bfbdf6d908055d28c7a96249b0909354d", 0xe68)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_BLKSSZGET(r2, 0x1268, 0x0)
sendmsg$auto_GTP_CMD_ECHOREQ(r4, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000040)={0x24, 0x0, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@GTPA_PEER_ADDRESS={0x8, 0x4, @local}, @GTPA_LINK={0x8, 0x1, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x4091}, 0x80)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x7ff, 0x3, 0xff, 0x10001, 0x400000000003, 0x3, 0x8001, 0xfffffffffffffffe, 0x80000000, 0x335b0eef, 0xffffdfffffffff81, 0x4]}, 0x0)

2.828065222s ago: executing program 1 (id=1408):
recvmmsg$auto(0xffffffffffffffff, 0x0, 0xffffffff, 0xffffffff, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x2401, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x22, 0x5, 0x6)
socket(0x2, 0x1, 0x0)
socketpair$auto(0x1e, 0x3, 0xffffff00, 0x0)
setsockopt$auto(0x3, 0x6, 0x5, 0x0, 0x8)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000)
socket(0x10, 0x2, 0x0)
statmount$auto(0x0, 0x0, 0x202, 0x2000000)
mmap$auto(0x0, 0x4020009, 0xdc, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0x8000000000000001, 0x15)
r0 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/mountinfo\x00', 0x20200, 0x0)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
read$auto_proc_mountinfo_operations_mnt_namespace(r0, &(0x7f0000000040)=""/4080, 0x1036)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
copy_file_range$auto(r2, &(0x7f0000000040)=0xd52, r2, 0x0, 0xb1, 0x0)
ioctl$auto_UI_DEV_CREATE(0xffffffffffffffff, 0x5501, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/fail-nth\x00', 0x0, 0x0)
msync$auto(0x1ffff000, 0x1800000000000ff, 0x3)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/unprivileged_bpf_disabled\x00', 0x121a01, 0x0)
write$auto(r4, &(0x7f0000000180)='erspan0\x00', 0x2)

2.793988881s ago: executing program 4 (id=1409):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x2008, 0x0)
mmap$auto(0x0, 0x4000002, 0xfffffff7fffffe01, 0x8051, 0x3, 0x0)
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE2(r0, 0x2272, &(0x7f00000001c0)="fe530a59fbae9604f9035c73eb3ba04d29fbda45a7eaa756f07b29caa80ed94839be7dd990b4df9907bc743dec72ae97a7324f29d864682ef38cd63394628e1c5ad57995a54c828bde7f5604f5ea93da13dcd69794f8582b46a18eccc880f2e0400036486a6b67baa0f58ae8cde3ffdfc8ccc80b8baf70001f48cf64a73a26fd3d2d4834048ce53d31c571ae1a6ebee37d")
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x40045010, &(0x7f0000000040))
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0xffffe, 0x7fffffffefff, 0xfffffffffffffffe, 0x100001, 0x7, 0x3, 0x2b, 0x200000000002c, 0x8000000000000000, 0x1732})
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x40045010, &(0x7f0000000080))
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x8001, 0x0)
write$auto(r4, &(0x7f0000000100)='d>*\xd2x\xc7\xbf\xff\x9a\xc01(\x00iM\x9c\bAa\x9e\xe98\xee\x15\xd3\xc5v\x99\f|\xe3\xbf\xd9\xf4C\x14A\xe6k\x105\xee\xc5\xaa$\x16\t?g\xb8b\x12\v*\xf9@B\xd0\xd2\x99{\x8b^\xff@\x83\x02Tvt\xc1_\x98\x9f\x16\xd5Is', 0x100000a3da)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004)
openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)

1.549569636s ago: executing program 3 (id=1412):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x41, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000040)={"b218cb1c5221ca4e323fe6d9342bfbfb6b58baf0d8883f55df04e26d13e68241", 0x2, 0x5, 0xf7, 0x3, 0x5, <r1=>0xffffffffffffffff})
ioctl$auto_BLKTRACESETUP2(r0, 0xc0481273, &(0x7f00000000c0)={"76ef37f8fa022e6384a4a49710d19ee0ae46a32ec358e63cee502368646b3598", 0x4, 0x10, 0x6, 0x2afb, 0x5a, r1})
r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy5/netdev:wlan0/stations/08:02:11:00:00:01/agg_status\x00', 0x780, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r2, &(0x7f00000001c0)=""/212, 0xd4)
bind$auto(r2, &(0x7f00000002c0)=@qipcrtr={0x2a, 0x4, 0x5fff}, 0x3)
ioctl$auto_SG_GET_TIMEOUT2(r0, 0x2202, &(0x7f0000000300)="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")
r3 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/virtual/bluetooth/hci1/rfkill6\x00', 0x600c0, 0x0)
ioctl$auto_XFS_IOC_FREESP64(r3, 0x40305825, &(0x7f0000000440)={0x7, 0x1, 0x9, 0x8, 0x2, r1})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000480), r4)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/kernel/debug/tracing/free_buffer\x00', 0x0, 0x0)
r5 = ioctl$auto_TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000500)=0x7ff)
ioctl$auto_SNDCTL_DSP_GETOPTR(r5, 0x800c5012, &(0x7f0000000540)="d0e7864f1442a8535567467e73")
bpf$auto_BPF_LINK_UPDATE(0x1d, &(0x7f0000000580)=@batch={0x9, 0x19d, 0x7, 0x8000000000000000, 0xe, <r6=>r4, 0x940, 0x2}, 0x0)
read$auto_proc_page_owner_threshold_(r5, &(0x7f0000000640)=""/88, 0x58)
r7 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000700), r5)
sendmsg$auto_OVS_FLOW_CMD_GET(r5, &(0x7f00000019c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001980)={&(0x7f0000000740)={0xa04, r7, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x8}, @OVS_FLOW_ATTR_KEY={0x98a, 0x1, 0x0, 0x1, [@generic="11ad235c53acb9891e7e263e3fc0d9af0b8247b1beed3934a99fc275d16286a16b04d46538c422ebdc223fac52f2f113a4f84dde01dafce8547689486543727a0e35f117a8af4a55743532fd989ccab6b88c815599fb3be18b8a811a61f4ca9722547cd02892990bb5cfd0467885409564554cd21ea4654cc40731995f0bd92ec046e8d275f7ff65ea304089ee7584f9003630ada2737408e891", @generic="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", @generic="959a4e3d28fd0fa7a8281c83cb0ee79b7f5cb05b2c42bbd9cced1928139b1e4fc73023b3799ed7f8fc85411022036033467260d3b8c15e6775a942772f8456da7c75e347ae20c9f3a33dbe4a3bf617756b030b60b4b125249e79ddf194ab163436cdf88baef9fb3545bd1e29189f30492766175135bcf6a5dc684860f4e3732481d4d0b9bad628ceeecb93a1deaf1cfc1310dbeb78273a3bbfce96e9ba90a46b42b7725ff6a21c53ce8fd98aedeafee64cee60bc908cd1b1428929339197e5bc6b388530bb049d0914fa685d4e098684ac22ced98bf87271eaf7adb951b2aa426f5d98d2c07dcd7e8e892597"]}, @OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_ACTIONS={0x48, 0x2, 0x0, 0x1, [@typed={0x8, 0x52, 0x0, 0x0, @fd=r2}, @nested={0x3a, 0xdc, 0x0, 0x1, [@nested={0x4, 0xf1}, @nested={0x4, 0xbf}, @generic="610f191a561a75fbd0a52690bcb1878b0434146675194323fbaec3b4e489f16987d51fe19004c0bcfa6408dfcc98"]}]}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x4}, @OVS_FLOW_ATTR_CLEAR={0x4}]}, 0xa04}, 0x1, 0x0, 0x0, 0x20044041}, 0x44000)
fallocate$auto(r6, 0x4e, 0xb, 0x7)
close_range$auto(r2, r3, 0x101)
shmctl$auto_SHM_UNLOCK(0x80000001, 0xc, &(0x7f0000001c00)={{0x2, <r8=>0xee00, 0x0, 0xa66, 0xffffffff, 0x5, 0x8a0}, 0x6, 0x7, 0x1, 0x3, @raw=0x7, @raw, 0x77, 0x0, &(0x7f0000001a00)="37ade8d87d2f17c667187f3808b9f930e6c345e0b0027a520ddff445ed4242927bd6ee018aafb8c2ccbe3b35ef8a5c06a9e0f8e60cd5dc32bb05421b8494547e27da4b54a617417b33096bcc8d57e0a7e4265404a9d2770552d0d45fc0bf428b32669ac8012dcfa0d2ba22970756a31df51fdb8ea16293bf189a283a113265552251956d6adaf1543e951721c8fc71154f4c9df15799b9a3519c461db2a9798089b554668121bc477f163b224f58c171646946393d29cb660907e91f32e7fc7dbecce7e57bf3cf5fa0fa7101fb7cc2c53ee28d3c36ff67bf58d84778612db9ddfd9686b45a2f8786464d90784357b2d0", &(0x7f0000001b00)="ed41a8a89fac6f7c27515b70c0348f24444881aaea96d2fb160fead9bbb32260938dc94ff24a76a97e94aafcdec83a9ebaebf4b14ee2ac3c41045f08985d0877a794271a6b6a4a58c26f495500764acddba6a9c1ba6623248c183a6525593fe3d4b05d85e3da9ebab6f9830263d7feabae43e3dc8f90c9730b9d037c421df5f2df277d63c64768a7d6f433af980e6c9ab481e77d431c8c50d70e6fc7669c64b8ad71b7cf988fbc00c2ba4f49bbfaf07604dbbd46b753abb8d1566642a69a5d348d6996f1aa4f0200cc"})
ioctl$auto_XFS_IOC_SWAPEXT(r5, 0xc0c0586d, &(0x7f0000001c80)={0x2, @raw=0xfffffffffffffff8, @raw, 0x295f5db5, 0x1, '\x00', {0x3, 0x4, 0x6c, r8, 0xee00, 0x2, 0x0, 0x6, {0x4, 0x9}, {0xd042, 0x6}, {0x7, 0xd8}, 0x6, 0x1, 0xbd, 0x10000, 0x80000001, 0x138, 0x688f, 0xe8, 0x6, 0x3fc6, '\x00', 0xfffffffd, 0x5, 0x0, 0x6}})
r9 = openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f0000001d40)='/sys/kernel/debug/netdevsim/netdevsim1/ports/2/udp_ports_table0\x00', 0x111000, 0x0)
getsockopt$auto_SO_MAX_PACING_RATE(r9, 0x1, 0x2f, &(0x7f0000001d80)='/dev/sg1\x00', &(0x7f0000001dc0)=0x9)
msgget$auto(0x8, 0x2)
fcntl$auto_F_GETOWN_EX(r2, 0x10, 0x3)
syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001e00), r5)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001e40)='/proc/thread-self/fail-nth\x00', 0x200100, 0x0)
openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000001e80)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x150000, 0x0)
msync$auto(0x66, 0x768c, 0x80000000)

1.44238012s ago: executing program 3 (id=1413):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = wait4$auto(0x0, &(0x7f0000000040)=0x4, 0x5, &(0x7f0000000080)={{0x5, 0x7}, {0x3, 0x2}, 0x0, 0x5d, 0x2, 0xfffffffffffffff9, 0x7fffffff, 0x9, 0x952d, 0x401, 0x0, 0xffffffffffff4148, 0x9, 0x9, 0x0, 0x1})
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x4, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_PID={0x8, 0x1c, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r2 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000240), r0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_GOV(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x40, r2, 0x10, 0x70bd29, 0x25dfdbfe, {}, [@THERMAL_GENL_ATTR_TZ_TRIP_TYPE={0x8, 0x6, 0x1}, @THERMAL_GENL_ATTR_TZ_MODE={0x8, 0x9, 0x7}, @THERMAL_GENL_ATTR_CDEV_NAME={0x14, 0x12, 'ip6_vti0\x00'}, @THERMAL_GENL_ATTR_TZ_GOV_NAME={0x8, 0xd, '!\n-\''}]}, 0x40}, 0x1, 0x0, 0x0, 0x40000}, 0x24000000)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000380), r0)
sendmsg$auto_NL80211_CMD_GET_SCAN(r0, &(0x7f0000000480)={&(0x7f0000000340), 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x70, r3, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0x69}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x3}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x4a, 0xac, "28c88045a9571bafb8cc429a33486fa8139764d3042575f30f4269b06cd8a50ac9fb1786cf7e67876127b3a5d0fd1ac3e57efbd433f87ff3c627ba3725e5704be3d7d788278a"}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x44)
r4 = prctl$auto_PR_SCHED_CORE_CREATE(0x2, 0x1, 0xffffffffffffffff, 0x3, 0xffffffffffffffff)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/self/oom_score_adj\x00', 0x4000, 0x0)
clone$auto(0x2, 0xc37e, &(0x7f0000000500)=0xfffffff8, &(0x7f0000000540)=0x9, 0x1)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000005c0), r0)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000a00)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000600)={0x3c0, r5, 0x13, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_OURS={0x31a, 0x3, 0x0, 0x1, [@nested={0x157, 0xc9, 0x0, 0x1, [@generic="3d032605c3e8374e2448539a0fd581a4202fec9eff62f0ab9e8dea92053832d77c1cdb8316d19db09a4866f81e238e650f101cf5e57e7e9bcdaf96f25445aaf80581ab726a711b5b50505724506425ff0d9fbda8c267b15c4274b952a287411be146f358cddf2d33f3c125b4525f2e6361531822616513a64da630d324af916545d2fe606b096ec808e69285fca8ceb07c67701e9e33e5de3c4d8768f1023252a5e02f9b5c6927e7934aaf93adb12d049b79aa538e34897ccc9754cf83f52634bd4cb07964eeae7822d3e046d198069a2666e2c0", @generic="f3a06f8f224d0801b0494facf6869fe46671bf81f67935e94535c9a85d3f8251cf27a5d0c868cba7522a55f363102ba7fba3413b819893ff2e03b6eb23a551736537136b9750ea87a273fa2dd3875248a6866b3026a22c8306d5cffdc826f0", @nested={0x4, 0x5d}, @nested={0x4, 0x33}, @typed={0xc, 0x14a, 0x0, 0x0, @u64=0xd000000000000000}, @typed={0xc, 0x12b, 0x0, 0x0, @u64=0x7fff}]}, @generic="02048f64be37d36e2a4f30a930e37b2daecde379f4acab282a50f9359f02eebccf0d4dbc218d3e", @nested={0x12c, 0x11e, 0x0, 0x1, [@generic="0a3f7d329263cc6342dcd9681bb07f64c7cfb73bc0489a67fa29394aab2807ff4e71529d7675c76bcc771f63aa6e0ae1f8991fde85c9c0c154ea01cdbca6424b8caae0605135564f3509ac1a87e62fb595637c8d701abad93da206e0a204f90e0fcc44b84c65b9a39212e230c03a63361843327a0adf4da0165adc9d6c35a3766d2a83947d6c35075d095ce6af59340fe1b7c844ac25b89ba2f77222ac19f86f1557c8aab23b2377", @generic="5f78ca7ee7231dbac66ff6d543f6a3bd8c2544d452bcf18e6632d368a1de175d5af58d46351fad4bcd9e79f329c9829eeb8efb22b2f22347e48a2035af27ccb12bc4a1222923edb22dd49dbb6b50fb523e13f35db1e2219adeb80801af582100b456878461ea2521c425ea30ab9076d09b8ed003de922b300b53e2aa007ba177"]}, @typed={0x14, 0xa4, 0x0, 0x0, @ipv6=@remote}, @typed={0x8, 0x112, 0x0, 0x0, @str='!\n-\''}, @generic="542498457dde4fc190ed91bf771d9df7ca1b94e0e29afff537c3a8ee63b96f9d357288ee34438a9069c5caa8520a35b510060bfb3db369985dcbf0690009fb4b2c8f83ac771d73d24074f3d4ebc47b"]}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0xe}, @ETHTOOL_A_LINKMODES_OURS={0x88, 0x3, 0x0, 0x1, [@typed={0x21, 0xcd, 0x0, 0x0, @binary="9e164b4e1f4eefc19afa6311e7512070b1939c26b75cdad0f7bd95bfd9"}, @nested={0x57, 0x68, 0x0, 0x1, [@nested={0x4, 0x17}, @nested={0x4, 0xd0}, @generic="8864e64d46f06ba6e536a33e2e5c100494cdfc04902eaa1f1966cf47f7f66d6d262dfaf5537459319be916a17e1603af349ed29f1d35c21666995a5b848bdbe3f7cf26ad5ff841643cdce2"]}, @typed={0x5, 0x4, 0x0, 0x0, @str='\x00'}]}]}, 0x3c0}, 0x1, 0x0, 0x0, 0x2400c8c4}, 0x8000)
r6 = ioctl$auto_TUNSETOFFLOAD2(r4, 0x400454d0, &(0x7f0000000a40)=0xfffffff9)
sendmsg$auto_NL80211_CMD_START_P2P_DEVICE(r6, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x24, r3, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_VIF_RADIO_MASK={0x8, 0x14d, 0x400}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0xc040)
close_range$auto(r6, r4, 0x5)
r7 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000bc0), r6)
sendmsg$auto_NCSI_CMD_CLEAR_INTERFACE(r6, &(0x7f0000000dc0)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000d80)={&(0x7f0000000c00)={0x148, r7, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x100}, @NCSI_ATTR_CHANNEL_MASK={0x8}, @NCSI_ATTR_DATA={0x118, 0x5, "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"}, @NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x3}]}, 0x148}, 0x1, 0x0, 0x0, 0x50}, 0x4000)
r8 = openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, &(0x7f0000000e00)='/sys/kernel/debug/tracing/README\x00', 0x1, 0x0)
recvfrom$auto(r8, &(0x7f0000000e40)="e266d6d47ced8ba4fd1d0c87511fa976dff6c4", 0x9, 0x4, &(0x7f0000000e80)=@hci={0x1f, 0x4, 0x4}, &(0x7f0000000ec0)=0x5)
r9 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000f00)='/dev/audio1\x00', 0x60240, 0x0)
ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r9, 0xc0045009, &(0x7f0000000f40)="9f029e2137cb1b127c905b42646c4e5ef99bed73bdfd1e479ae208bdb21bb03735e10102cc7e177c1850533a897f098f332f30d5215c6de8bbbdaad698b4e3d881183ce32cdcabb62dc7c66eb6ca6bc9d9c324b9d7b6ef73572f384b7bea9aaacd5f8bc0c8f90d35774c23ea2d3c09cbc48fae0a54bc522ff6c8113b64e4d85bb7c267ae4dc4ec4ab87e4b9f35cd01eb163dbb394cf75cc2")
r10 = ioctl$auto_TUNGETVNETLE2(r6, 0x800454dd, &(0x7f0000001000)=0xcdd)
r11 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001080), r0)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(r10, &(0x7f0000001200)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000011c0)={&(0x7f00000010c0)={0xec, r11, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@HWSIM_ATTR_NO_VIF={0x4}, @HWSIM_ATTR_ADDR_TRANSMITTER={0xc2, 0x2, "f5b8866b7738b936aea241de58b8fd3987bf0f5b4c0885451cadd4d0215658f81f0460fbe48d61c707d993119265a3e77390f157f5670c4fcd8b96197e2364af07e3f1917777bff2e259cc62c6a1a5379bd1ad21fc8df8de486f3a167ba4336c299a62abf59102f0d67af37d73de2852c46779218f208b00a8b01d66b05c0b00daa5c241191f306d600b448af77cdf845b29ec3a7c94a4b7f97a4d4c2d6ea5da1256dfed7d43a5a0d5ee287c710ebd715d3f423e6835ebcd125322657162"}, @HWSIM_ATTR_SIGNAL={0x8, 0x6, 0xe}, @HWSIM_ATTR_RADIO_ID={0x8, 0xa, 0x3}]}, 0xec}, 0x1, 0x0, 0x0, 0x10}, 0x4000800)
r12 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000001280), r4)
sendmsg$auto_SMC_NETLINK_GET_FBACK_STATS(r10, &(0x7f0000001400)={&(0x7f0000001240)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000013c0)={&(0x7f00000012c0)={0xe8, r12, 0x400, 0x70bd27, 0x25dfdbfb, {}, "1dd442110919b988865c83ce5a19d83e14e2242c57f7feef0d663a55b197e0093f49034ecb5596d32fa6c36abe465cfd9ea1b925e38d929d044280a0f7a050e883d7386b6c685eba9b9096ff7f3b5528f8348faf8d07b109ee2def63937812c40dc0311076832959c5028d02752f34e3c9ad5f3a6425ccd14c4f60438268b173b2398a5bf3ded013feade09a2557f9035b356c49c8204bb75607c95aada417efc83df5bcd929dde93594768eda4c2f9be8ae4265f56e8b00f8255ff27e0e48848ae3416785cdaefacf6e1b90df2eee5e5eee9a61"}, 0xe8}, 0x1, 0x0, 0x0, 0x2081}, 0x40045)
ioctl$auto_BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000001440)="556b16b8f5c8d5a61a948cadcc41021a7e666fb722ee8ebdf7735a04eb3a13ae6917e63c854527d5457ca9e34f360f3ed88190f65c95042d0c5d9771ac4e04ca573bf022e2d5f909e5bd5ff87bc7b4")
r13 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000001500), r4)
sendmsg$auto_BATADV_CMD_TP_METER_CANCEL(r6, &(0x7f0000001600)={&(0x7f00000014c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000015c0)={&(0x7f0000001540)={0x60, r13, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_DAT_CACHE_HWADDRESS={0xa, 0x24, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2b}}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x7}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x7}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xe}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x3}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8}, @BATADV_ATTR_LAST_SEEN_MSECS={0x8, 0x17, 0x9}, @BATADV_ATTR_MCAST_FLAGS={0x8, 0x26, 0x1e21}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x6}]}, 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x4001)
semctl$auto(0x8, 0x4, 0x6, 0x5)

1.310811618s ago: executing program 1 (id=1414):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0\x00'})
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_MULTICAST_TO_UNICAST(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="410025bd7000fcdbdf257f00000008000300", @ANYRES32=r3], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/modalias\x00', 0x80000, 0x0)
read$auto(r4, 0x0, 0x24)
sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(r0, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000040)={0x274, r1, 0x400, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x4}, @NL80211_ATTR_P2P_OPPPS={0x5, 0xa3, 0x6}, @NL80211_ATTR_CQM={0x24e, 0x5e, 0x0, 0x1, [@generic="035eab87106363e7718af3b187490b6bee0afbcb7f1e3f838a264c19dc1c2d56e531cd06ac0a76f5b7888eb0d5b3be970585de073d4bf005fb9f49280ca37d8fc1ccdeb2fe6d3ba1e12bf9c384aecfc6732a7c026a83c76465798645b22799a8d6c754c3760d650875a58f63142c9b079d6ab45449eee2b49e9ca5dc46fa19ef3c2ccffc80d33bcc43439255804737339897", @nested={0xc, 0xee, 0x0, 0x1, [@typed={0x8, 0xd8, 0x0, 0x0, @fd=r4}]}, @nested={0x1a9, 0x10f, 0x0, 0x1, [@generic="53fa26b671250b356d504f5806e1fe6b1c10c845bc824aeb318770c2f803f96270a968031bba3b666c77552cef35904641e83a327c9eab27c6f3028fe95015a3a2092970d7b2965c81521eaeb9efa803c7757396810dd04b4b16c56b54d4e44c956eb7d521877a7274427dd00a8c993b7cc45f5f5a881618a7f2edd08a4672c4ec2e99f8428f58574576ca7af96037c5460f0e01b733f76aa225b70aee73dc56ce38983aac6890ac3ec4b5d4c795e8ecce5e8ae6e815f8d748703584033ecd1f5d4b9ad0ce88692b18660ad993d79738695daf565cb0b9eb6c6f9ee2", @generic="fa2d40352703c1041b2eb36ebf05f87a250816620774e78fa277f2e633e92eeeae2765926c5ed522235396bc59a60ca34b7d046a95366eb2d16bf200b1c50ec4d855cdc22a53c54bde39a7ce523cd3cc5e886efcf79386e501da5131ca316e025ba550582c0b7d01843a761e9ad72c612f74298fb058335b49628ecf903df74d78265ccc4504fcd05d3d001894c07ad58dec2a64aeb978841e78645fd85a4e80470f4252511f60e43fd65562c5a549bebaefc79526cbedada4044e138dfa8d97f2", @nested={0x4, 0x47}, @typed={0x4, 0xdd}]}]}]}, 0x274}, 0x1, 0x0, 0x0, 0x4c011}, 0x30000004)
r5 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000380), r0)
sendmsg$auto_IEEE802154_LLSEC_DEL_DEVKEY(r2, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x8c, r5, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_NAME={0x14, 0x1, 'macvlan1\x00'}, @IEEE802154_ATTR_LLSEC_KEY_USAGE_COMMANDS={0x24, 0x32, "0b451517767ed23393a5a292c53dab7c802a70b8a6ce936d1c68dbd0f2e2beef"}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0x7}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, 0x5}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, 0xd4}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LBT_ENABLED={0x5, 0x22, 0x1}, @IEEE802154_ATTR_LBT_ENABLED={0x5, 0x22, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x5}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4054}, 0x4000000)
r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000500)='/proc/sys/fs/xfs/stats_clear\x00', 0x1, 0x0)
prctl$auto_PR_TASK_PERF_EVENTS_DISABLE(0x1f, 0x5, 0x7fff, 0x7, 0x800)
write$auto(r6, 0x0, 0x3)

1.185728873s ago: executing program 1 (id=1415):
r0 = openat$auto_debug_help_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/system/memory/memory11/phys_device\x00', 0x42000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000002c0)=""/41, 0x29)
readv$auto(r1, &(0x7f0000000200)={&(0x7f0000000180)="d451a0c094c440c8dbe9a94bce9f139102e59a88e4cc5aa8d2f6470095d8d8da308a2d3d3c78bd601ab96a848677fcfd6d8112964c18a44349fdc3599e0f7062d9ac", 0x4}, 0x2e3)
read$auto_debug_help_fops_orangefs_debugfs(r0, &(0x7f0000000340)=""/231, 0xe7)
pread64$auto(r1, &(0x7f0000000080)='&\x00', 0x1, 0xfffffffffffffff8)
r2 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r3 = signalfd$auto(r0, 0x0, 0x9)
mmap$auto(0xffffffffffffffff, 0x400008, 0xdf, 0x9b72, 0x2, 0x517)
io_uring_setup$auto(0x1, 0x0)
socket(0xa, 0x801, 0x106)
setsockopt$auto(r3, 0x6, 0xff76, 0x0, 0x5)
write$auto(0x3, 0x0, 0xfffffdef)
shutdown$auto(0x200000003, 0x2)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bpf$auto(0x24, 0x0, 0x8)
r4 = socket(0x2, 0x1, 0x106)
bind$auto(r4, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000280)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x14}, 0x3}, 0x54)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, 0x0, 0x22641, 0x0)
writev$auto(0x3, 0x0, 0x8)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/028/001\x00', 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/scsi\x00', 0x40d81, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r6=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd700004dbdf250f00000005002e004000000008000300", @ANYRES32=r6, @ANYBLOB="05003800000000000500330009000000140007006e65747063693000000000000000000005002f0000000000"], 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)

1.129028964s ago: executing program 3 (id=1416):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x23, 0x2, 0x0)
io_uring_setup$auto(0xa, 0x0)
open(0x0, 0xa240, 0x15e)
open(0x0, 0x161342, 0x100)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
mprotect$auto(0x200000000000, 0x806121, 0x8)
mprotect$auto(0x1ffffffff000, 0x100004, 0x6)
socket(0x2, 0x1, 0x106)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mprotect$auto(0x8, 0x1, 0x100000000)
r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(0x0, r2)
sendmsg$auto_NL80211_CMD_NOTIFY_RADAR(r3, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4004000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="59030000", @ANYRES16=r4, @ANYBLOB], 0x140}, 0x1, 0x0, 0x0, 0x1}, 0x20000001)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
read$auto(0x3, 0x0, 0x7fffffff)
close_range$auto(0x2, 0x8, 0x0)

854.788566ms ago: executing program 1 (id=1417):
memfd_secret$auto(0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
ftruncate$auto(0x3, 0x700)
statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0xa, 0xa)
setsockopt$auto(0x3, 0x1, 0x2b, 0x0, 0x28)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x1, 0x0)
memfd_secret$auto(0x0) (async)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) (async)
ftruncate$auto(0x3, 0x700) (async)
statx$auto(0x2, 0x0, 0x1000, 0x8, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socket(0x2, 0xa, 0xa) (async)
setsockopt$auto(0x3, 0x1, 0x2b, 0x0, 0x28) (async)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/enable\x00', 0x1, 0x0) (async)

806.734103ms ago: executing program 3 (id=1418):
mprotect$auto(0x0, 0x806123, 0x10004)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="04000000", @ANYRES16=0x0, @ANYBLOB="00032cbd7000fedbdf250200000000003500060000000800130001000100"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4008800)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB='J\x00\x00\x00', @ANYRES16, @ANYBLOB="010025bd7000fcdbdf25020000002c00018028003c8008001b"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x44)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x14)
socket(0x11, 0x80003, 0x300)
socket(0x2, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2a, 0x2, 0x0)
socket(0xa, 0x1, 0x0)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sda\x00', 0x48001, 0x0)
socket(0x10, 0x2, 0x0)
socket(0xa, 0x2, 0x73)
socket(0x1, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x500, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
r0 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c804}, 0x51)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

649.150696ms ago: executing program 1 (id=1419):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/nfs/parameters/callback_tcpport\x00', 0x183042, 0x0) (async)
mmap$auto(0x0, 0xe97f, 0xdf, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x10, 0xa, 0x0) (async)
r1 = socket(0x2, 0x3, 0xa) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0xc, @empty}, 0x54) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
ioctl$auto(0x3, 0x541b, 0x7f)
sendto$auto(r1, &(0x7f00000000c0)="3f2e278385dbccd3c0d44d67865f817ccbc5e0de8f294ac83ac82573d82fd63cf4c17088d5430ec3ba20675ace77265794b3faee3c98937f70eadb7a4623f3a69070e4a5613bdd2fdc6ee1beed84fb4faaaaa0d8b121d589a3f60a296d37bc4af1d2b536653c477f992b7728609b02e93830b5d87243803b79eb39c39a2b0de68352552271ae486372c0dcef9a97b1d9508ada71165d885b62062e6ba52fd2b4bd9379326ddedf91148d7a3f12f3a1023f4b377aef4de5636e459fedcdc637041faac24b532ecb8059c30745de188c59204f9e4ba73cfba6a80db99650ddf0068eed0380d65d47edad42a42c60f6b8e63fb6e10512e3dab8f5", 0x8000000000000001, 0x2, &(0x7f00000001c0)=@can, 0x4) (async)
sendfile$auto(r0, r0, 0x0, 0x3)

551.129193ms ago: executing program 1 (id=1420):
mmap$auto(0x0, 0x4020007, 0xdf, 0xebf, 0xffffffffffffffff, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x9000, 0x8002, 0x2)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mmap$auto(0x5, 0x1bbf, 0x202, 0x19, r0, 0x8020000007ffd)
close_range$auto(0x2, r0, 0x0)
r1 = socket(0x2b, 0x4, 0x10000033)
capset$auto(0x0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_freeze_timeout\x00', 0x8242, 0x0)
write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x9d$\xdcM)\xb9\xdd\xd6\x05a|\xee\xf9\xcb\x80\xf2\x9eH\xa7\xc6\xad\xc6\xbed\xa6\xe1\xaa<\x9f\xfb(k\x9b\xa9u\x85\xea\xd6\xd1\xf5\xb0\xd1\xb9\xb0\vN\xd6\xbaj\xb1\xc1\xd0\x8c\xfa\x10w\xa9^\xd5X7\x052\xe1\x1bN\xd2\n\xb6\x9d/\xba\xa8\x01\x83B\xa0Y|\xa1\x11\x98\xae\x97\xb4ij_\x8e\xf6y?\x10\xbcU\xdf\xd5\'\xc32\xa3\xa9t\xe2\xe9\x0f\xee3\xb7\xad}\xa1 _\x1f\xa6\xb9q\xab\xd9H\x9f\x04 \xf7\x10(\xc2Y\xf1\xeeg', 0x5)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x55ff, 0x0)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0xa0681, 0x0)
r4 = openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000080), 0x2c4281, 0x0)
writev$auto(r4, &(0x7f0000001c80)={0x0, 0x101}, 0x6)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/fail-nth\x00', 0x1c9c82, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x1bf8c0, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
writev$auto(r5, &(0x7f0000000100)={0x0, 0x9}, 0x2)
mmap$auto(0x0, 0x400008, 0x8000000000000df, 0x9b72, r3, 0x6)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
ioctl$auto_SNDCTL_SYNTH_MEMAVL(0xffffffffffffffff, 0xc004510e, 0x0)
connect$auto(r1, 0x0, 0x51)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x88c2, 0x0)
write$auto(r5, &(0x7f00000000c0)='7\x00\\\x1c\xe7k\x00\x00\x00\x00\x00\x00\x00\x00', 0x8083a)

344.957439ms ago: executing program 3 (id=1421):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x41, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000040)={"b218cb1c5221ca4e323fe6d9342bfbfb6b58baf0d8883f55df04e26d13e68241", 0x2, 0x5, 0xf7, 0x3, 0x5, <r1=>0xffffffffffffffff})
ioctl$auto_BLKTRACESETUP2(r0, 0xc0481273, &(0x7f00000000c0)={"76ef37f8fa022e6384a4a49710d19ee0ae46a32ec358e63cee502368646b3598", 0x4, 0x10, 0x6, 0x2afb, 0x5a, r1})
r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/ieee80211/phy5/netdev:wlan0/stations/08:02:11:00:00:01/agg_status\x00', 0x780, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r2, &(0x7f00000001c0)=""/212, 0xd4)
bind$auto(r2, &(0x7f00000002c0)=@qipcrtr={0x2a, 0x4, 0x5fff}, 0x3)
ioctl$auto_SG_GET_TIMEOUT2(r0, 0x2202, &(0x7f0000000300)="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")
r3 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000400)='/sys/devices/virtual/bluetooth/hci1/rfkill6\x00', 0x600c0, 0x0)
ioctl$auto_XFS_IOC_FREESP64(r3, 0x40305825, &(0x7f0000000440)={0x7, 0x1, 0x9, 0x8, 0x2, r1})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000480), r4)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/kernel/debug/tracing/free_buffer\x00', 0x0, 0x0)
r5 = ioctl$auto_TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f0000000500)=0x7ff)
ioctl$auto_SNDCTL_DSP_GETOPTR(r5, 0x800c5012, &(0x7f0000000540)="d0e7864f1442a8535567467e73")
bpf$auto_BPF_LINK_UPDATE(0x1d, &(0x7f0000000580)=@batch={0x9, 0x19d, 0x7, 0x8000000000000000, 0xe, <r6=>r4, 0x940, 0x2}, 0x0)
read$auto_proc_page_owner_threshold_(r5, &(0x7f0000000640)=""/88, 0x58)
r7 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000700), r5)
sendmsg$auto_OVS_FLOW_CMD_GET(r5, &(0x7f00000019c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001980)={&(0x7f0000000740)={0xe04, r7, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x8}, @OVS_FLOW_ATTR_KEY={0xd8a, 0x1, 0x0, 0x1, [@generic="11ad235c53acb9891e7e263e3fc0d9af0b8247b1beed3934a99fc275d16286a16b04d46538c422ebdc223fac52f2f113a4f84dde01dafce8547689486543727a0e35f117a8af4a55743532fd989ccab6b88c815599fb3be18b8a811a61f4ca9722547cd02892990bb5cfd0467885409564554cd21ea4654cc40731995f0bd92ec046e8d275f7ff65ea304089ee7584f9003630ada2737408e891", @generic="339dde6784a5751ce6aba28c072a8f934234f997fe9b3fcd9cfbce6358f6e45c00ea8d510d5cc53bd299e3b25473843f1cc6744952d282b95109b4df55b170399bae224c030447aaa3b4f008b7734fcf619fa18547836a4660d166f114ca7011dc616b5da3c481bf9a57a564bfe36b4c3637260b5cfa1681e1017e89088d7de5dc8a2d3759e0f2507e98daa35bc34c98fd1295c97ef79a9ba3bf7b102d201f416ac47c9ef68576dc94fec29fd558578f84c10256a6dad3655d7ccbb8613ef63b967d3e3580af965aab91fcddc92b6a8975941ed674d154b94b99dd69a68952d442bc61ce10920324fa97bea19e5b5007645fb2dec07872a058f7225b9ef8dda1c649dac79a3b8f520e3a402b8b6fbab64229728ba3578fc60ff452e122b1949755b43f69a5cf83c51db13d76b7ae5d2ada74b0338c7e5f878ff6b3548b9db29d280125c800fe61115f6b719fd06fb70fc13b0da5edbcfabb53a8a23ac3b321ad9eafa87396f0a229d8de410b2a324d7252298ec3a8340ce50304e3c960b62cdcd55d6c27e3eb1b2e3a0835255ee8ec522a2c6b4ddbf95e683d708262ed4112d1b8941a5ee068729f26eebfb7a192058117fa0a4f3a4aaa7b0aedfe1a4a9d7e07781fd3b079032d801ee79a49dfa07db7154688c17c316e8493df3a9b9f3efdcd0f170023abda0a18dc367600a953dc45c656605a1cee94dd21e3ec342be7c19479df6ee8d0d82122eaad6b578e9c907a6b7d026649efd58a8ef0c5caaca6d1af80d94cc708747f215f1baa21b2682a1ad8eb1995b578ee272b6a7544a8500d69040934f61b5ef45687f5e0e395148b272221015bf9ada1d586685303f9b5d1eaaca0a3924b62d9e066f535a964524664e19747a70ed6bd3e24a64299010e8f4e5ddf7a9c206d70de7fe7b7383ce5f548a34aa6befa65a46c38efe78ad6ce2288014d796e5123a4021d2e793ad53d117371591962e24aafd3708de0d38112a4e1e38258ae14bc0a45d3af52bdfeb6eab43e9e2a2fab90850f819d71a3d75c865a41437de2a16f82ec1c6d83955eebd7fadfa5e07e1a4675add75747a420c894460942f557df92cb28dbe382c18d837646557c3515c2a43d7e9eb666cd9684d827f7aab28216df49801c8acd8ff6172f47439fb0c1985c2dcabb3d8550aa053d6dd63aba2927b99de8bfe90b13a0f85872c8b7e7f56e8efe4c4ea9517fdb73b55271fde99b9788ffaf0fc693df72b46b14141f2b46e9da28e8d4b9d7575af9ea9c182100ec77929cdaef621df9485f396ac20d13061b7ff5ffd4323b42d5ef831d4ac812a7bd5b7604d7aa8fb7fa8edde3c40ff3662b4bdef7aabf683cedf6eab02319ccb053847388b1b1980a06cf85f60b714600e220a10d4ab779b3742a92c011abc50d1ac6bebf17b7c2cf8cc4aeb186ac9059db00d8c05c9fcf70d771bd8f8ffa03c0e78de59c9c970fe836254aac4014922fa28a0ed516d9fecc5f0b8aee66282caf18f0245c663800456d133bee6d806c2fb48463dc5f56266dcdf3e43f5e44c25c9ba3740901313d2ea3864a03c33794d618bc96beccab1e37fa628cd151369fb8ce8fb0e9faba00df1c6ced21cf7363328b6c138e9fd5913f854463ecee60e733ba68fc88047fda89bf8513c28731b7b66566bac74564a7c54a55c83e73f7032e650fd57cf5b516d0576117a63f4b230b545e31fc6c2bad886ccb798a8367a13ec8042c45ede069cd8f345acc486ac1db8610c2982ef34b9919951ee2d6850e666e52fe20f501efb5986973350ab86abf73bf32f6afff42999dae4cb0feff1ae27c7f02f6efd6d9a4aee9e42ee8a95ce50b976055297c6b91fbdb072d2e98c2a7ebaccfe1856897fd8249bfc98d9057d83f9d00a6fad7dcd7a1f46e7c31eb620e9f3771804ae3ec8558a5eec4e43fc2dda211504c6148d55df738cd5446b88e7468e3e572a14e6dabba71a8e24e874b625c0b0e4e9f60889764f493e4cc82f67a12d4ec2f186d648756b48ca68c9f228090e833b8c589cf858ffdf2eafd415ade6f024f79b1517848bea2c891f55bec72bc645c24264634f1430db388a328e7bb94540e41c3ff0a1f3cd8e08daaafad8b19f1ed01fec537c4c679d073ee4957396d22ebb2fb4ced94f952ffe0f0e98c29e56352d3533044c5a41c87bdfd1d5f271be9c40aa03eb63c287b9110bff265462e5b77adb65712c79b99990748b559af6a7e1f1207c187716081d1129f7599a4c78dba1999fe1b0c281409d174529e729efe5d175dbda6689b50a5f429c2443e0e78f7ce201954c3f615357ebee700aa6b88adede470310c8341e40d68d8e730fe77b9fc4ca01accb744600e0a7a376352806874879fa5f6aa9fe3016538b1abff76b14c863fda327b3bf4eaeb4ffcbd2305f135ea03b7730cd900b5219117739b06c01b25d08872aa4b7319c89513ba026d4d56df2725515d312e82fc075b7327a7e2ae16543f8f649fc5ceee91e368f41579f180d94ff749da3c58a4a5ffbc9f27ea3017a21137eac19173d8f318f138bbe0478969019b27bbc2c7092128b4864de631354dc62308a106157860302e4a5aa1658d1f25a1fbf665e1720a90e0c02c174e06535ba1077f63a798addb07f6c6adaf1a89b4b4769b4a148ade121232d0f50c17a0574416e801a3f444a4c0bd116ee6a4fabe02adda441e271bcd0b41cbddd76a4f012de88a6e13a62a7fd3ddcd593e64e49d9d15770ded9f625277015226624c637747ea181c15ecc74651e270f6fb2f72c433d86affd82aae2c9ece7452537dc061afabd92d466eb006805681786169927c42e4522dc1a113f770c610bbedb767be8946f116fb05f3816d4714d6fb1b7bdc9544f046516e1111735027cd3f7a4f5fdef43bc53999ff846fbfeea19c818feacfd9b25387cec466d55595e0068dbe5a45a8db4465eff1dcbd09948ea930406d03fce92fb1c525ec4920375ba02ac5e4ec1acc69542aca43fd03acdf129af3e755f4075f539124d6c16b489901e05f4f59d0fd594831e9062efbf6db964acddc7fc0a8f9c0965a8ad21b35bf253eb6c1599b46e28cd381cb378960dee599f2c062aeb99d0e883fce476097e7f23d80f0c5b21f4882403ed5f1755e6a8420f3cc13988f0d45d7300655c9d93f16158336bb490de8bec02a5897267c6136c4afcde4f190e7951f56e005f7107dc501845e33864461383cd87749f02f85438d5c5d692929f27b33b69e80e3f9615c3af6ae58d138db31a06ace3478425cb84232c26bb7f4f1e6cbb17220767f0ac66c0902941a4dcc1b1ce27f6842a3ebbf2db30fb876d75e416c4a640464ec43a5fe70cfd2a3c1b81e42a88ee05f9928db797abc2dc757240dfa2a87e325eeddf7b4ab2bd216857a3747a9160f7c4b8f236ae1fa761592c463695a9e8d7be22711e410f1e521c6be7121c689d42dbc9a4d456458bd4f0127559663628c64a1aee438f593c7e1126136bb6446c50d0e47027cf2356661fc33d261525007c26b6a81247737e2fc9933028a7cf0c46738c0e311d385e3968d2b10d98d359a630453cc85c6dcb56f5fa48dc09e29bed3514ee1a99f2174aa9431009a8f4f799c1791d1a705a44881463ede437a0880f1daf590cfff2986c2d01005e0cd099da9ca96da78a3e16e45e53a5f96d232c9a1efe17359e84ce7e7480f6d2f14524679fe91a227ec3d55a98cd26334eeb8ac183be75e21da0613c2e913262f541cdf082dd8a32bd858b0698c90be0c7e9a46d2c68a5f879f7b04846a0c49fcae7e6ca45d521de1c526a3515af8b4544617a7220a8c58515214edce507883970d10a90c895cc51229507289b855521fda61653844b348d8204a87ce4166f35a9225b10da70f2761cb4b0564ba4465bc68814cfe9d02b44f01f6f88bf55ac95c144f0cf9265dff9ad22d2129781afe92a4c5bffa42eaedbe46298b6f0c6d2ccd8fe68a55ba438c629a64d393f317713e6f80c5d7069cb1c473183dd78f8c150e49cfd25a30f10b1405ba7394ab8ed0303865301a0a005a894588d3ff2c7b5ab577d72ad91eb4e2f7b81cd32b48804c46a65e4375ff411eff8455677e9c070619d36f9ba579982255d032d74b9e1bb490fe89942164e51bd5ee4410a45a725c707e9e10c5dc8df669893496525085292c7c17c010901c80d0f07d9d7baf9b65ffb84a7c9365b08ac82124b7af866fbb2c25ed6f423564d63fce5617caaec64f7da6bd8653163b68f403f2610c4979ae9c71a2a2fd9dca7a085b416198291daebf5af5fd2e25afe6c540e718bf49677b90e5e97cc99374a263f28f7d2251cdb062f4302a60a92723e2510d0b9ed14229", @generic="959a4e3d28fd0fa7a8281c83cb0ee79b7f5cb05b2c42bbd9cced1928139b1e4fc73023b3799ed7f8fc85411022036033467260d3b8c15e6775a942772f8456da7c75e347ae20c9f3a33dbe4a3bf617756b030b60b4b125249e79ddf194ab163436cdf88baef9fb3545bd1e29189f30492766175135bcf6a5dc684860f4e3732481d4d0b9bad628ceeecb93a1deaf1cfc1310dbeb78273a3bbfce96e9ba90a46b42b7725ff6a21c53ce8fd98aedeafee64cee60bc908cd1b1428929339197e5bc6b388530bb049d0914fa685d4e098684ac22ced98bf87271eaf7adb951b2aa426f5d98d2c07dcd7e8e892597"]}, @OVS_FLOW_ATTR_CLEAR={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_ACTIONS={0x48, 0x2, 0x0, 0x1, [@typed={0x8, 0x52, 0x0, 0x0, @fd=r2}, @nested={0x3a, 0xdc, 0x0, 0x1, [@nested={0x4, 0xf1}, @nested={0x4, 0xbf}, @generic="610f191a561a75fbd0a52690bcb1878b0434146675194323fbaec3b4e489f16987d51fe19004c0bcfa6408dfcc98"]}]}, @OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_KEY={0x4}, @OVS_FLOW_ATTR_CLEAR={0x4}]}, 0xe04}, 0x1, 0x0, 0x0, 0x20044041}, 0x44000)
fallocate$auto(r6, 0x4e, 0xb, 0x7)
close_range$auto(r2, r3, 0x101)
shmctl$auto_SHM_UNLOCK(0x80000001, 0xc, &(0x7f0000001c00)={{0x2, <r8=>0xee00, 0x0, 0xa66, 0xffffffff, 0x5, 0x8a0}, 0x6, 0x7, 0x1, 0x3, @raw=0x7, @raw, 0x77, 0x0, &(0x7f0000001a00)="37ade8d87d2f17c667187f3808b9f930e6c345e0b0027a520ddff445ed4242927bd6ee018aafb8c2ccbe3b35ef8a5c06a9e0f8e60cd5dc32bb05421b8494547e27da4b54a617417b33096bcc8d57e0a7e4265404a9d2770552d0d45fc0bf428b32669ac8012dcfa0d2ba22970756a31df51fdb8ea16293bf189a283a113265552251956d6adaf1543e951721c8fc71154f4c9df15799b9a3519c461db2a9798089b554668121bc477f163b224f58c171646946393d29cb660907e91f32e7fc7dbecce7e57bf3cf5fa0fa7101fb7cc2c53ee28d3c36ff67bf58d84778612db9ddfd9686b45a2f8786464d90784357b2d0", &(0x7f0000001b00)="ed41a8a89fac6f7c27515b70c0348f24444881aaea96d2fb160fead9bbb32260938dc94ff24a76a97e94aafcdec83a9ebaebf4b14ee2ac3c41045f08985d0877a794271a6b6a4a58c26f495500764acddba6a9c1ba6623248c183a6525593fe3d4b05d85e3da9ebab6f9830263d7feabae43e3dc8f90c9730b9d037c421df5f2df277d63c64768a7d6f433af980e6c9ab481e77d431c8c50d70e6fc7669c64b8ad71b7cf988fbc00c2ba4f49bbfaf07604dbbd46b753abb8d1566642a69a5d348d6996f1aa4f0200cc"})
ioctl$auto_XFS_IOC_SWAPEXT(r5, 0xc0c0586d, &(0x7f0000001c80)={0x2, @raw=0xfffffffffffffff8, @raw, 0x295f5db5, 0x1, '\x00', {0x3, 0x4, 0x6c, r8, 0xee00, 0x2, 0x0, 0x6, {0x4, 0x9}, {0xd042, 0x6}, {0x7, 0xd8}, 0x6, 0x1, 0xbd, 0x10000, 0x80000001, 0x138, 0x688f, 0xe8, 0x6, 0x3fc6, '\x00', 0xfffffffd, 0x5, 0x0, 0x6}})
r9 = openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f0000001d40)='/sys/kernel/debug/netdevsim/netdevsim1/ports/2/udp_ports_table0\x00', 0x111000, 0x0)
getsockopt$auto_SO_MAX_PACING_RATE(r9, 0x1, 0x2f, &(0x7f0000001d80)='/dev/sg1\x00', &(0x7f0000001dc0)=0x9)
msgget$auto(0x8, 0x2)
fcntl$auto_F_GETOWN_EX(r2, 0x10, 0x3)
syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000001e00), r5)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001e40)='/proc/thread-self/fail-nth\x00', 0x200100, 0x0)
openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000001e80)='/sys/devices/virtual/bluetooth/hci7/hci7:201\x00', 0x150000, 0x0)
msync$auto(0x66, 0x768c, 0x80000000)

0s ago: executing program 3 (id=1422):
ioctl$auto_BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) (async)
mmap$auto(0x0, 0x1, 0x0, 0xeb1, 0x401, 0x8000)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x154) (async)
r1 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_ACTIVATE_TARGET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, r1, 0x40d, 0x70bd2c, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_NAME={0x7, 0x2, '-]/'}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
sendmsg$auto_NFC_CMD_DEV_DOWN(r0, 0x0, 0x4040040) (async)
fcntl$auto(r0, 0x400, 0x1)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) (async)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0) (async)
execve$auto(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) (async)
r3 = socket(0xa, 0x802, 0x3a)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCR(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, "ede41b087481e75e592316ed5089f6f63b404f907f6cb57712b8d5003ecf9cbb50"}, 0x38}, 0x1, 0x0, 0x0, 0x12}, 0x2000c006)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0xa0203, 0x0) (async)
ioctl$auto_FIONREAD(0xffffffffffffffff, 0x541b, 0x7fffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/mm/transparent_hugepage/khugepaged/alloc_sleep_millisecs\x00', 0x20681, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r4, 0x0, 0x0) (async)
read$auto_proc_iter_file_ops_compat_inode(r2, &(0x7f0000000280)=""/250, 0xfa)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/button/parameters/lid_init_state\x00', 0x169882, 0x0) (async)
socket(0x1f, 0x800, 0x0) (async)
r5 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r5, &(0x7f0000000000)="632d1bfe595046ab5c40bd7563307acb6d16baef6176e669a216aae183cccafdd80500ffffffff0600"/56, 0x38)
socket$nl_generic(0x10, 0x3, 0x10)

kernel console output (not intermixed with test programs):

: 002b:00007fb412481028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  243.113745][ T8540] RAX: ffffffffffffffda RBX: 00007fb411816270 RCX: 00007fb41159cdd9
[  243.113755][ T8540] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  243.113763][ T8540] RBP: 00007fb411632d69 R08: 0000000000000000 R09: 0000000000000000
[  243.113772][ T8540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  243.113781][ T8540] R13: 00007fb411816308 R14: 00007fb411816270 R15: 00007ffcef625df8
[  243.113801][ T8540]  </TASK>
[  243.908008][ T8553] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  243.933727][ T8553] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  243.964273][ T8553] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  243.986780][ T8553] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  244.673449][ T8356] 8021q: adding VLAN 0 to HW filter on device bond0
[  244.803847][ T8356] 8021q: adding VLAN 0 to HW filter on device team0
[  244.863339][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.870524][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  244.957492][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.964702][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  245.037288][ T8579] netlink: 'syz.1.620': attribute type 1 has an invalid length.
[  245.180535][ T8570] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  245.188195][ T8570] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  245.281669][ T5290] 8021q: adding VLAN 0 to HW filter on device eth4
[  245.949048][ T5631] Bluetooth: hci1: command 0x0c1a tx timeout
[  246.029911][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  246.035973][ T4945] Bluetooth: hci3: command 0x0c1a tx timeout
[  246.042333][ T5631] Bluetooth: hci4: command 0x040f tx timeout
[  246.208265][ T8593] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  246.344879][ T8593] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  246.535706][ T8593] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  246.699740][ T8593] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  246.735228][ T8598] Process accounting resumed
[  246.937905][   T30] audit: type=1800 audit(5333753094.629:33): pid=8631 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.627" name="features" dev="configfs" ino=26326 res=0 errno=0
[  247.091785][ T8356] 8021q: adding VLAN 0 to HW filter on device batadv0
[  247.261903][ T8629] netlink: 28 bytes leftover after parsing attributes in process `syz.0.626'.
[  247.998038][ T8356] veth0_vlan: entered promiscuous mode
[  248.055110][ T8356] veth1_vlan: entered promiscuous mode
[  248.207323][ T8356] veth0_macvtap: entered promiscuous mode
[  248.247035][ T8646] FAULT_INJECTION: forcing a failure.
[  248.247035][ T8646] name failslab, interval 1, probability 0, space 0, times 0
[  248.265094][ T8356] veth1_macvtap: entered promiscuous mode
[  248.273195][ T5631] Bluetooth: hci1: command 0x0c1a tx timeout
[  248.351368][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  248.372132][ T8356] batman_adv: batadv0: Interface activated: batadv_slave_0
[  248.412995][ T8646] CPU: 0 UID: 0 PID: 8646 Comm: syz.3.628 Not tainted syzkaller #0 PREEMPT(full) 
[  248.413016][ T8646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  248.413025][ T8646] Call Trace:
[  248.413031][ T8646]  <TASK>
[  248.413037][ T8646]  dump_stack_lvl+0x100/0x190
[  248.413060][ T8646]  should_fail_ex.cold+0x5/0xa
[  248.413080][ T8646]  should_failslab+0xc2/0x120
[  248.413097][ T8646]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  248.413119][ T8646]  ? __proc_create+0x2cb/0x8c0
[  248.413142][ T8646]  __proc_create+0x2cb/0x8c0
[  248.413161][ T8646]  ? __pfx___proc_create+0x10/0x10
[  248.413182][ T8646]  ? __pfx___netlink_kernel_create+0x10/0x10
[  248.413205][ T8646]  proc_create_reg+0x75/0x170
[  248.413226][ T8646]  proc_create_seq_private+0x8e/0x180
[  248.413246][ T8646]  ? __pfx_proc_create_seq_private+0x10/0x10
[  248.413266][ T8646]  ? timer_init_key+0x155/0x330
[  248.413288][ T8646]  ? __pfx_nl_fib_input+0x10/0x10
[  248.413309][ T8646]  ? __pfx_ip_rt_do_proc_init+0x10/0x10
[  248.413329][ T8646]  ip_rt_do_proc_init+0x5d/0x1d0
[  248.413350][ T8646]  ? __pfx_ip_rt_do_proc_init+0x10/0x10
[  248.413368][ T8646]  ops_init+0x1e2/0x5f0
[  248.413387][ T8646]  setup_net+0x118/0x3a0
[  248.413403][ T8646]  ? __pfx_setup_net+0x10/0x10
[  248.413419][ T8646]  ? mutex_init_lockdep+0xf1/0x120
[  248.413438][ T8646]  copy_net_ns+0x46f/0x7c0
[  248.413457][ T8646]  create_new_namespaces+0x3ea/0xac0
[  248.413481][ T8646]  unshare_nsproxy_namespaces+0xf2/0x220
[  248.413502][ T8646]  ksys_unshare+0x438/0xab0
[  248.413524][ T8646]  ? __pfx_ksys_unshare+0x10/0x10
[  248.413544][ T8646]  ? xfd_validate_state+0x129/0x190
[  248.413566][ T8646]  __x64_sys_unshare+0x31/0x40
[  248.413587][ T8646]  do_syscall_64+0x10b/0xf80
[  248.413605][ T8646]  ? clear_bhb_loop+0x40/0x90
[  248.413623][ T8646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.413638][ T8646] RIP: 0033:0x7f1acff9cdd9
[  248.413651][ T8646] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  248.413666][ T8646] RSP: 002b:00007f1ad0eb0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  248.413681][ T8646] RAX: ffffffffffffffda RBX: 00007f1ad0216090 RCX: 00007f1acff9cdd9
[  248.413690][ T8646] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  248.413699][ T8646] RBP: 00007f1ad0032d69 R08: 0000000000000000 R09: 0000000000000000
[  248.413708][ T8646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  248.413717][ T8646] R13: 00007f1ad0216128 R14: 00007f1ad0216090 R15: 00007fffb5a1c1c8
[  248.413745][ T8646]  </TASK>
[  249.010623][ T5631] Bluetooth: hci2: command 0x0c1a tx timeout
[  249.016785][ T5631] Bluetooth: hci4: command 0x040f tx timeout
[  249.037836][ T8356] batman_adv: batadv0: Interface activated: batadv_slave_1
[  249.186378][ T7832] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  249.198268][ T7832] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  249.255808][ T7832] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  249.276588][ T7832] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  249.474700][ T6699] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.517019][ T6699] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.710430][ T1114] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.742963][ T1114] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  250.473959][   T30] audit: type=1400 audit(5333753098.157:34): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=8703 comm="syz.0.639"
[  250.507865][ T8704] usb usb4: usbfs: process 8704 (syz.0.639) did not claim interface 0 before use
[  250.840967][ T8699] netlink: 28 bytes leftover after parsing attributes in process `syz.4.584'.
[  250.917630][ T8699] veth1_macvtap: left promiscuous mode
[  251.130113][   T30] audit: type=1800 audit(5333753098.817:35): pid=8726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.645" name="features" dev="configfs" ino=27078 res=0 errno=0
[  251.884510][ T8755] netlink: 4 bytes leftover after parsing attributes in process `syz.1.649'.
[  251.941450][ T8726] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  251.999115][ T8726] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  251.999257][ T8726] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  251.999387][ T8726] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  253.436986][ T8804] random: crng reseeded on system resumption
[  253.553152][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  253.814090][   T30] audit: type=1800 audit(5333753101.506:36): pid=8807 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.661" name="features" dev="configfs" ino=27479 res=0 errno=0
[  254.033104][ T5631] Bluetooth: hci4: command 0x040f tx timeout
[  254.039156][ T5641] Bluetooth: hci2: command 0x0c1a tx timeout
[  254.045474][ T5629] Bluetooth: hci3: command 0x0c1a tx timeout
[  254.642372][ T8808] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  254.684536][ T8808] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  254.730797][ T8808] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  254.777046][ T8808] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  255.131110][ T8825] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  255.335590][ T8823] netlink: 28 bytes leftover after parsing attributes in process `syz.3.666'.
[  256.166683][   T30] audit: type=1800 audit(5333753103.865:37): pid=8854 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.675" name="features" dev="configfs" ino=27667 res=0 errno=0
[  256.354300][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  256.740423][ T8861] netlink: 484 bytes leftover after parsing attributes in process `syz.1.678'.
[  256.754440][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  256.760481][ T5641] Bluetooth: hci3: command 0x0c1a tx timeout
[  256.834592][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  256.983833][ T8855] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  257.015437][ T8855] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  257.047344][ T8855] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  257.079162][ T8855] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  257.693328][ T8875] netlink: 28 bytes leftover after parsing attributes in process `syz.3.682'.
[  258.123281][ T8892] block2mtd: error: cannot open device çinX‘©¼Ëò¨±ÂÚjFBçB>U»;߸³Ilk¬
[  258.494219][ T8914] syz.0.689(8914): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  258.518687][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  258.544246][   T30] audit: type=1800 audit(5333753106.203:38): pid=8917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.690" name="features" dev="configfs" ino=27889 res=0 errno=0
[  259.075748][ T5641] Bluetooth: hci3: command 0x0c1a tx timeout
[  259.081897][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  259.157123][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  259.313654][ T8924] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  259.333950][ T8924] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  259.374267][ T8924] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  259.411939][ T8924] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  260.916633][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  261.397243][ T5641] Bluetooth: hci3: command 0x0c1a tx timeout
[  261.403332][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  261.477282][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  261.483728][ T8999] netlink: 28 bytes leftover after parsing attributes in process `syz.1.706'.
[  261.934591][ T9003] netlink: 'syz.4.707': attribute type 1 has an invalid length.
[  261.981033][ T9003] netlink: 'syz.4.707': attribute type 1 has an invalid length.
[  263.781174][ T9066] FAULT_INJECTION: forcing a failure.
[  263.781174][ T9066] name failslab, interval 1, probability 0, space 0, times 0
[  264.024118][ T9066] CPU: 0 UID: 0 PID: 9066 Comm: syz.4.715 Not tainted syzkaller #0 PREEMPT(full) 
[  264.024141][ T9066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  264.024151][ T9066] Call Trace:
[  264.024156][ T9066]  <TASK>
[  264.024162][ T9066]  dump_stack_lvl+0x100/0x190
[  264.024185][ T9066]  should_fail_ex.cold+0x5/0xa
[  264.024205][ T9066]  ? memcg_list_lru_alloc+0x4ec/0x740
[  264.024219][ T9066]  should_failslab+0xc2/0x120
[  264.024243][ T9066]  __kmalloc_noprof+0xe0/0x850
[  264.024267][ T9066]  ? __lock_acquire+0x4a5/0x2630
[  264.024284][ T9066]  memcg_list_lru_alloc+0x4ec/0x740
[  264.024303][ T9066]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[  264.024327][ T9066]  __memcg_slab_post_alloc_hook+0x27e/0xff0
[  264.024352][ T9066]  ? kasan_save_track+0x14/0x30
[  264.024370][ T9066]  kmem_cache_alloc_lru_noprof+0x592/0x6e0
[  264.024393][ T9066]  ? hugetlbfs_alloc_inode+0x8c/0x1d0
[  264.024417][ T9066]  hugetlbfs_alloc_inode+0x8c/0x1d0
[  264.024436][ T9066]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  264.024456][ T9066]  alloc_inode+0x68/0x250
[  264.024480][ T9066]  new_inode+0x22/0x1c0
[  264.024503][ T9066]  hugetlbfs_get_inode+0x39a/0x700
[  264.024522][ T9066]  ? security_capable+0x80/0x260
[  264.024545][ T9066]  hugetlb_file_setup+0x3cc/0x5b0
[  264.024568][ T9066]  newseg+0xaf0/0xed0
[  264.024588][ T9066]  ? __pfx_newseg+0x10/0x10
[  264.024603][ T9066]  ? down_write+0x146/0x1f0
[  264.024629][ T9066]  ipcget+0xee/0xf50
[  264.024645][ T9066]  ? do_futex+0x192/0x350
[  264.024662][ T9066]  ? __pfx_do_futex+0x10/0x10
[  264.024682][ T9066]  ? __pfx_ipcget+0x10/0x10
[  264.024699][ T9066]  ? __x64_sys_futex+0x34f/0x4d0
[  264.024713][ T9066]  ? __x64_sys_futex+0x358/0x4d0
[  264.024731][ T9066]  __x64_sys_shmget+0x13b/0x1b0
[  264.024749][ T9066]  ? __pfx___x64_sys_shmget+0x10/0x10
[  264.024768][ T9066]  ? rcu_is_watching+0x12/0xc0
[  264.024787][ T9066]  do_syscall_64+0x10b/0xf80
[  264.024805][ T9066]  ? clear_bhb_loop+0x40/0x90
[  264.024823][ T9066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.024839][ T9066] RIP: 0033:0x7fa6b9f9cdd9
[  264.024852][ T9066] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  264.024867][ T9066] RSP: 002b:00007fa6b81ac028 EFLAGS: 00000246 ORIG_RAX: 000000000000001d
[  264.024883][ T9066] RAX: ffffffffffffffda RBX: 00007fa6ba216180 RCX: 00007fa6b9f9cdd9
[  264.024898][ T9066] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000
[  264.024907][ T9066] RBP: 00007fa6ba032d69 R08: 0000000000000000 R09: 0000000000000000
[  264.024916][ T9066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  264.024925][ T9066] R13: 00007fa6ba216218 R14: 00007fa6ba216180 R15: 00007ffe3a3dd0d8
[  264.024945][ T9066]  </TASK>
[  264.911249][   T30] audit: type=1800 audit(5333753112.550:39): pid=9079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.719" name="features" dev="configfs" ino=28626 res=0 errno=0
[  265.592637][ T9132] vivid-008: =================  START STATUS  =================
[  265.690164][ T9079] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  265.700579][ T9132] vivid-008: ==================  END STATUS  ==================
[  265.714267][ T9079] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  265.742213][ T9079] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  265.754605][ T9079] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  267.138428][ T9174] ubi9: attaching mtd0
[  267.163084][ T9174] ubi9 error: ubi_attach_mtd_dev: bad VID header (32768) or data offsets (32832)
[  267.217798][ T9179] netlink: 'syz.4.734': attribute type 9 has an invalid length.
[  267.242700][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  267.747822][   T30] audit: type=1800 audit(5333753115.429:40): pid=9188 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.736" name="features" dev="configfs" ino=29002 res=0 errno=0
[  267.801343][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  267.807552][ T5641] Bluetooth: hci2: command 0x0c1a tx timeout
[  267.815375][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  268.577050][ T9188] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  268.608173][ T9188] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  268.636156][ T9188] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  268.665355][ T9188] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  270.123220][ T5641] Bluetooth: hci1: command 0x0c1a tx timeout
[  270.681962][ T5631] Bluetooth: hci4: command 0x040f tx timeout
[  270.688135][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  270.694402][ T5629] Bluetooth: hci3: command 0x0c1a tx timeout
[  270.833761][ T9253] vivid-008: =================  START STATUS  =================
[  270.862441][ T9253] vivid-008: ==================  END STATUS  ==================
[  274.210983][ T9311] FAULT_INJECTION: forcing a failure.
[  274.210983][ T9311] name failslab, interval 1, probability 0, space 0, times 0
[  274.259446][ T9311] CPU: 0 UID: 0 PID: 9311 Comm: syz.0.770 Not tainted syzkaller #0 PREEMPT(full) 
[  274.259471][ T9311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  274.259481][ T9311] Call Trace:
[  274.259486][ T9311]  <TASK>
[  274.259493][ T9311]  dump_stack_lvl+0x100/0x190
[  274.259515][ T9311]  should_fail_ex.cold+0x5/0xa
[  274.259536][ T9311]  should_failslab+0xc2/0x120
[  274.259554][ T9311]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  274.259578][ T9311]  ? __d_alloc+0x34/0xa40
[  274.259596][ T9311]  ? ktime_get_coarse_real_ts64_mg+0x1e0/0x300
[  274.259616][ T9311]  __d_alloc+0x34/0xa40
[  274.259634][ T9311]  ? inode_set_ctime_current+0x283/0x870
[  274.259655][ T9311]  d_alloc_pseudo+0x1c/0xc0
[  274.259669][ T9311]  alloc_file_pseudo+0xcf/0x230
[  274.259693][ T9311]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  274.259719][ T9311]  ioctx_alloc+0x5d6/0x21a0
[  274.259746][ T9311]  ? find_held_lock+0x2b/0x80
[  274.259765][ T9311]  ? __pfx_ioctx_alloc+0x10/0x10
[  274.259790][ T9311]  __x64_sys_io_setup+0xc9/0x220
[  274.259812][ T9311]  do_syscall_64+0x10b/0xf80
[  274.259831][ T9311]  ? clear_bhb_loop+0x40/0x90
[  274.259849][ T9311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.259864][ T9311] RIP: 0033:0x7feb9b79cdd9
[  274.259878][ T9311] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  274.259893][ T9311] RSP: 002b:00007feb9c65a028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  274.259908][ T9311] RAX: ffffffffffffffda RBX: 00007feb9ba15fa0 RCX: 00007feb9b79cdd9
[  274.259918][ T9311] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000007ffe
[  274.259927][ T9311] RBP: 00007feb9b832d69 R08: 0000000000000000 R09: 0000000000000000
[  274.259935][ T9311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  274.259944][ T9311] R13: 00007feb9ba16038 R14: 00007feb9ba15fa0 R15: 00007ffed4570578
[  274.259964][ T9311]  </TASK>
[  274.682883][   T30] audit: type=1800 audit(5333753122.285:41): pid=9315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.771" name="features" dev="configfs" ino=29850 res=0 errno=0
[  275.436797][ T9317] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  275.449190][ T9317] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  275.480129][ T9317] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  275.508147][ T9317] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  276.089498][ T9344] netlink: 82 bytes leftover after parsing attributes in process `syz.3.781'.
[  276.275328][ T9360] netlink: 342 bytes leftover after parsing attributes in process `syz.4.786'.
[  276.588268][ T9388] netlink: 206 bytes leftover after parsing attributes in process `syz.0.791'.
[  276.736442][ T9398] futex_wake_op: syz.4.793 tries to shift op by -2048; fix this program
[  276.835768][ T9398] futex_wake_op: syz.4.793 tries to shift op by -2048; fix this program
[  277.005073][ T5641] Bluetooth: hci1: command 0x0c1a tx timeout
[  277.486332][ T5641] Bluetooth: hci2: command 0x0c1a tx timeout
[  277.493160][ T5641] Bluetooth: hci3: command 0x0c1a tx timeout
[  277.564791][ T5641] Bluetooth: hci4: command 0x040f tx timeout
[  277.963594][ T9440] blktrace: Concurrent blktraces are not allowed on sda1
[  278.941852][ T9391] Process accounting paused
[  278.952271][ T9454] netlink: 'syz.0.804': attribute type 11 has an invalid length.
[  279.002031][ T9454] netlink: 'syz.0.804': attribute type 11 has an invalid length.
[  279.099347][ T9454] netlink: 'syz.0.804': attribute type 11 has an invalid length.
[  279.551161][ T9469] FAULT_INJECTION: forcing a failure.
[  279.551161][ T9469] name failslab, interval 1, probability 0, space 0, times 0
[  279.587952][ T9469] CPU: 0 UID: 0 PID: 9469 Comm: syz.3.808 Not tainted syzkaller #0 PREEMPT(full) 
[  279.587976][ T9469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  279.587986][ T9469] Call Trace:
[  279.587993][ T9469]  <TASK>
[  279.587999][ T9469]  dump_stack_lvl+0x100/0x190
[  279.588022][ T9469]  should_fail_ex.cold+0x5/0xa
[  279.588042][ T9469]  should_failslab+0xc2/0x120
[  279.588060][ T9469]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  279.588083][ T9469]  ? security_inode_alloc+0x3b/0x2c0
[  279.588106][ T9469]  ? lockdep_init_map_type+0x5c/0x250
[  279.588124][ T9469]  security_inode_alloc+0x3b/0x2c0
[  279.588148][ T9469]  inode_init_always_gfp+0xcc0/0x1000
[  279.588170][ T9469]  alloc_inode+0x8e/0x250
[  279.588192][ T9469]  alloc_anon_inode+0x2a/0x3e0
[  279.588213][ T9469]  ioctx_alloc+0x4dc/0x21a0
[  279.588239][ T9469]  ? find_held_lock+0x2b/0x80
[  279.588258][ T9469]  ? __pfx_ioctx_alloc+0x10/0x10
[  279.588283][ T9469]  __x64_sys_io_setup+0xc9/0x220
[  279.588305][ T9469]  do_syscall_64+0x10b/0xf80
[  279.588327][ T9469]  ? clear_bhb_loop+0x40/0x90
[  279.588346][ T9469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.588362][ T9469] RIP: 0033:0x7f1acff9cdd9
[  279.588375][ T9469] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  279.588389][ T9469] RSP: 002b:00007f1ad0ed1028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  279.588404][ T9469] RAX: ffffffffffffffda RBX: 00007f1ad0215fa0 RCX: 00007f1acff9cdd9
[  279.588414][ T9469] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000007ffe
[  279.588423][ T9469] RBP: 00007f1ad0032d69 R08: 0000000000000000 R09: 0000000000000000
[  279.588432][ T9469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  279.588441][ T9469] R13: 00007f1ad0216038 R14: 00007f1ad0215fa0 R15: 00007fffb5a1c1c8
[  279.588460][ T9469]  </TASK>
[  280.121611][ T9477] netlink: 'syz.1.810': attribute type 1 has an invalid length.
[  280.163541][ T9477] netlink: 'syz.1.810': attribute type 6 has an invalid length.
[  280.263043][ T9477] netlink: 4 bytes leftover after parsing attributes in process `syz.1.810'.
[  280.980696][ T5641] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  281.818612][ T9509] random: crng reseeded on system resumption
[  281.873757][ T9526] netlink: 16 bytes leftover after parsing attributes in process `syz.4.820'.
[  283.008772][ T5641] Bluetooth: hci1: command 0x0c1a tx timeout
[  284.749566][ T9582] netlink: 20 bytes leftover after parsing attributes in process `syz.1.832'.
[  285.090909][ T5631] Bluetooth: hci1: command 0x0c1a tx timeout
[  285.297781][ T9594] blktrace: Concurrent blktraces are not allowed on sda1
[  285.670118][ T9596] FAULT_INJECTION: forcing a failure.
[  285.670118][ T9596] name failslab, interval 1, probability 0, space 0, times 0
[  285.745179][ T9596] CPU: 0 UID: 0 PID: 9596 Comm: syz.0.836 Not tainted syzkaller #0 PREEMPT(full) 
[  285.745201][ T9596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  285.745211][ T9596] Call Trace:
[  285.745220][ T9596]  <TASK>
[  285.745226][ T9596]  dump_stack_lvl+0x100/0x190
[  285.745249][ T9596]  should_fail_ex.cold+0x5/0xa
[  285.745267][ T9596]  ? kernfs_fop_write_iter+0x26a/0x5f0
[  285.745288][ T9596]  should_failslab+0xc2/0x120
[  285.745305][ T9596]  __kmalloc_noprof+0xe0/0x850
[  285.745332][ T9596]  kernfs_fop_write_iter+0x26a/0x5f0
[  285.745359][ T9596]  vfs_write+0x6ac/0x1070
[  285.745376][ T9596]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  285.745399][ T9596]  ? __pfx_vfs_write+0x10/0x10
[  285.745426][ T9596]  ksys_write+0x12a/0x250
[  285.745442][ T9596]  ? __pfx_ksys_write+0x10/0x10
[  285.745460][ T9596]  ? rcu_is_watching+0x12/0xc0
[  285.745480][ T9596]  do_syscall_64+0x10b/0xf80
[  285.745499][ T9596]  ? clear_bhb_loop+0x40/0x90
[  285.745516][ T9596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.745531][ T9596] RIP: 0033:0x7feb9b79cdd9
[  285.745544][ T9596] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  285.745558][ T9596] RSP: 002b:00007feb9c65a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  285.745573][ T9596] RAX: ffffffffffffffda RBX: 00007feb9ba15fa0 RCX: 00007feb9b79cdd9
[  285.745582][ T9596] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  285.745591][ T9596] RBP: 00007feb9c65a090 R08: 0000000000000000 R09: 0000000000000000
[  285.745599][ T9596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  285.745607][ T9596] R13: 00007feb9ba16038 R14: 00007feb9ba15fa0 R15: 00007ffed4570578
[  285.745626][ T9596]  </TASK>
[  286.621791][   T30] audit: type=1800 audit(5333753134.299:42): pid=9598 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.838" name="features" dev="configfs" ino=31388 res=0 errno=0
[  286.927012][ T9603] netlink: 'syz.3.846': attribute type 1 has an invalid length.
[  287.013675][ T9609] netlink: 28 bytes leftover after parsing attributes in process `syz.3.846'.
[  287.066742][ T9603] netlink: 322 bytes leftover after parsing attributes in process `syz.3.846'.
[  287.085057][ T9602] netlink: 82 bytes leftover after parsing attributes in process `syz.4.839'.
[  287.141661][ T9609] batadv0: entered promiscuous mode
[  287.205433][ T9609] batadv0: entered allmulticast mode
[  287.413319][ T9599] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  287.443601][ T9599] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  287.475387][ T9599] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  287.516647][ T9599] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  288.530328][ T9638] vhci_hcd vhci_hcd.2: invalid port number 135
[  288.598524][ T9638] vhci_hcd vhci_hcd.2: invalid port number 135
[  289.010525][ T5641] Bluetooth: hci1: command 0x0c1a tx timeout
[  289.126042][   T30] audit: type=1800 audit(5333753136.798:43): pid=9648 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.851" name="features" dev="configfs" ino=31605 res=0 errno=0
[  289.339623][ T9653] blktrace: Concurrent blktraces are not allowed on sda1
[  289.492680][ T5641] Bluetooth: hci2: command 0x0c1a tx timeout
[  289.498732][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  289.570898][ T5631] Bluetooth: hci4: command 0x040f tx timeout
[  289.948274][ T9654] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  289.975786][ T9654] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  290.011883][ T9654] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  290.048736][ T9654] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  290.555306][ T9681] vhci_hcd vhci_hcd.2: invalid port number 16
[  290.599128][ T9681] vhci_hcd vhci_hcd.2: invalid port number 16
[  291.651981][ T5631] Bluetooth: hci1: command 0x0c1a tx timeout
[  291.711210][ T9697] netlink: 'syz.1.864': attribute type 1 has an invalid length.
[  291.794810][ T9697] netlink: 322 bytes leftover after parsing attributes in process `syz.1.864'.
[  291.875557][ T9703] netlink: 28 bytes leftover after parsing attributes in process `syz.1.864'.
[  292.000769][ T9703] batadv0: entered promiscuous mode
[  292.053080][ T5641] Bluetooth: hci2: command 0x0c1a tx timeout
[  292.059159][ T4945] Bluetooth: hci3: command 0x0c1a tx timeout
[  292.065783][ T5631] Bluetooth: hci4: command 0x040f tx timeout
[  292.082888][ T9703] batadv0: entered allmulticast mode
[  292.993656][ T9720] netlink: 28 bytes leftover after parsing attributes in process `syz.0.870'.
[  293.103200][ T9724] random: crng reseeded on system resumption
[  293.960607][   T30] audit: type=1800 audit(5333753141.626:44): pid=9741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.876" name="features" dev="configfs" ino=32013 res=0 errno=0
[  294.221845][ T9748] FAULT_INJECTION: forcing a failure.
[  294.221845][ T9748] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  294.318096][ T5631] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  294.318120][ T5631] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  294.334305][ T5631] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  294.334363][ T5631] Bluetooth: hci1: Malformed LE Event: 0x0d
[  294.370053][ T9748] CPU: 0 UID: 0 PID: 9748 Comm: syz.0.876 Not tainted syzkaller #0 PREEMPT(full) 
[  294.370075][ T9748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  294.370083][ T9748] Call Trace:
[  294.370088][ T9748]  <TASK>
[  294.370094][ T9748]  dump_stack_lvl+0x100/0x190
[  294.370115][ T9748]  should_fail_ex.cold+0x5/0xa
[  294.370133][ T9748]  _copy_from_user+0x2e/0xd0
[  294.370158][ T9748]  do_handle_open+0x60e/0xce0
[  294.370188][ T9748]  ? __fget_files+0x21f/0x3d0
[  294.370208][ T9748]  ? __pfx_do_handle_open+0x10/0x10
[  294.370233][ T9748]  ? ksys_write+0x1ac/0x250
[  294.370254][ T9748]  ? do_syscall_64+0x10b/0xf80
[  294.370272][ T9748]  do_syscall_64+0x10b/0xf80
[  294.370289][ T9748]  ? clear_bhb_loop+0x40/0x90
[  294.370308][ T9748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.370322][ T9748] RIP: 0033:0x7feb9b79cdd9
[  294.370335][ T9748] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  294.370348][ T9748] RSP: 002b:00007feb9c618028 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[  294.370362][ T9748] RAX: ffffffffffffffda RBX: 00007feb9ba16180 RCX: 00007feb9b79cdd9
[  294.370372][ T9748] RDX: 0000000000000006 RSI: 0000200000001280 RDI: 000000000000000b
[  294.370380][ T9748] RBP: 00007feb9c618090 R08: 0000000000000000 R09: 0000000000000000
[  294.370389][ T9748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  294.370397][ T9748] R13: 00007feb9ba16218 R14: 00007feb9ba16180 R15: 00007ffed4570578
[  294.370415][ T9748]  </TASK>
[  294.791887][ T9744] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  294.799055][ T9744] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  294.817399][ T9744] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  294.839311][ T9744] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  295.410337][ T9766] futex_wake_op: syz.4.879 tries to shift op by -1; fix this program
[  295.486273][   T30] audit: type=1800 audit(5333753143.145:45): pid=9772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.881" name="features" dev="configfs" ino=32199 res=0 errno=0
[  295.859161][ T9773] i2c i2c-0: delete_device: Can't find device in list
[  296.275327][ T9776] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  296.312258][ T9776] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  296.333722][ T9776] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  296.360929][ T9776] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  296.535597][   T30] audit: type=1800 audit(5333753144.214:46): pid=9789 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.885" name="features" dev="configfs" ino=32397 res=0 errno=0
[  297.355457][ T9793] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  297.385854][ T9793] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  297.416293][ T9793] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  297.439035][ T9793] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  297.468275][ T9807] FAULT_INJECTION: forcing a failure.
[  297.468275][ T9807] name failslab, interval 1, probability 0, space 0, times 0
[  297.531748][ T9807] CPU: 0 UID: 0 PID: 9807 Comm: syz.3.889 Not tainted syzkaller #0 PREEMPT(full) 
[  297.531770][ T9807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  297.531779][ T9807] Call Trace:
[  297.531784][ T9807]  <TASK>
[  297.531790][ T9807]  dump_stack_lvl+0x100/0x190
[  297.531811][ T9807]  should_fail_ex.cold+0x5/0xa
[  297.531831][ T9807]  should_failslab+0xc2/0x120
[  297.531847][ T9807]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  297.531870][ T9807]  ? alloc_inode+0x183/0x250
[  297.531893][ T9807]  ? find_inode_fast+0x1fa/0x910
[  297.531918][ T9807]  alloc_inode+0x183/0x250
[  297.531944][ T9807]  iget_locked+0x1d9/0x6d0
[  297.531967][ T9807]  ? __pfx_iget_locked+0x10/0x10
[  297.531988][ T9807]  ? find_held_lock+0x2b/0x80
[  297.532009][ T9807]  ? kernfs_find_and_get_node_by_id+0x1be/0x3e0
[  297.532029][ T9807]  ? kernfs_find_and_get_node_by_id+0x1be/0x3e0
[  297.532051][ T9807]  kernfs_get_inode+0x46/0x470
[  297.532066][ T9807]  kernfs_fh_to_dentry+0xf3/0x250
[  297.532090][ T9807]  exportfs_decode_fh_raw+0x167/0x760
[  297.532105][ T9807]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[  297.532129][ T9807]  ? __pfx_kernfs_fh_to_dentry+0x10/0x10
[  297.532153][ T9807]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[  297.532189][ T9807]  do_handle_open+0x744/0xce0
[  297.532213][ T9807]  ? __pfx_do_handle_open+0x10/0x10
[  297.532236][ T9807]  ? ksys_write+0x1ac/0x250
[  297.532258][ T9807]  ? do_syscall_64+0x10b/0xf80
[  297.532276][ T9807]  do_syscall_64+0x10b/0xf80
[  297.532293][ T9807]  ? clear_bhb_loop+0x40/0x90
[  297.532311][ T9807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.532325][ T9807] RIP: 0033:0x7f1acff9cdd9
[  297.532338][ T9807] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  297.532352][ T9807] RSP: 002b:00007f1ad0eb0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[  297.532366][ T9807] RAX: ffffffffffffffda RBX: 00007f1ad0216090 RCX: 00007f1acff9cdd9
[  297.532375][ T9807] RDX: 0000000000000006 RSI: 0000200000001280 RDI: 000000000000000a
[  297.532384][ T9807] RBP: 00007f1ad0eb0090 R08: 0000000000000000 R09: 0000000000000000
[  297.532392][ T9807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.532401][ T9807] R13: 00007f1ad0216128 R14: 00007f1ad0216090 R15: 00007fffb5a1c1c8
[  297.532419][ T9807]  </TASK>
[  297.986073][ T9820] vivid-007: =================  START STATUS  =================
[  297.993873][ T9820] vivid-007: Generate PTS: true
[  297.998985][ T9820] vivid-007: Generate SCR: true
[  298.004081][ T9820] tpg source WxH: 320x240 (Y'CbCr)
[  298.009306][ T9820] tpg field: 1
[  298.012701][ T9820] tpg crop: (0,0)/320x240
[  298.017609][ T9820] tpg compose: (0,0)/320x240
[  298.022187][ T9820] tpg colorspace: 8
[  298.055720][ T9820] tpg transfer function: 0/0
[  298.071517][ T9820] tpg Y'CbCr encoding: 0/0
[  298.081146][ T9820] tpg quantization: 0/0
[  298.090944][ T9820] tpg RGB range: 0/2
[  298.098577][ T9820] vivid-007: ==================  END STATUS  ==================
[  298.676349][ T9815] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  298.692926][ T9815] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  298.753191][ T9815] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  298.791364][ T9815] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  299.019590][ T9834] capability: warning: `syz.0.895' uses deprecated v2 capabilities in a way that may be insecure
[  300.299102][ T5631] Bluetooth: hci1: command 0x0c1a tx timeout
[  300.330431][   T30] audit: type=1800 audit(5333753147.992:47): pid=9878 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.904" name="features" dev="configfs" ino=32928 res=0 errno=0
[  300.611225][ T9886] FAULT_INJECTION: forcing a failure.
[  300.611225][ T9886] name failslab, interval 1, probability 0, space 0, times 0
[  300.699541][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  300.718634][ T9886] CPU: 0 UID: 0 PID: 9886 Comm: syz.4.904 Not tainted syzkaller #0 PREEMPT(full) 
[  300.718656][ T9886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  300.718664][ T9886] Call Trace:
[  300.718670][ T9886]  <TASK>
[  300.718676][ T9886]  dump_stack_lvl+0x100/0x190
[  300.718696][ T9886]  should_fail_ex.cold+0x5/0xa
[  300.718716][ T9886]  should_failslab+0xc2/0x120
[  300.718733][ T9886]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  300.718756][ T9886]  ? security_inode_alloc+0x3b/0x2c0
[  300.718779][ T9886]  ? lockdep_init_map_type+0x5c/0x250
[  300.718796][ T9886]  security_inode_alloc+0x3b/0x2c0
[  300.718819][ T9886]  inode_init_always_gfp+0xcc0/0x1000
[  300.718840][ T9886]  alloc_inode+0x8e/0x250
[  300.718862][ T9886]  iget_locked+0x1d9/0x6d0
[  300.718884][ T9886]  ? __pfx_iget_locked+0x10/0x10
[  300.718906][ T9886]  ? find_held_lock+0x2b/0x80
[  300.718923][ T9886]  ? kernfs_find_and_get_node_by_id+0x1be/0x3e0
[  300.718942][ T9886]  ? kernfs_find_and_get_node_by_id+0x1be/0x3e0
[  300.718965][ T9886]  kernfs_get_inode+0x46/0x470
[  300.718980][ T9886]  kernfs_fh_to_dentry+0xf3/0x250
[  300.719004][ T9886]  exportfs_decode_fh_raw+0x167/0x760
[  300.719020][ T9886]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[  300.719044][ T9886]  ? __pfx_kernfs_fh_to_dentry+0x10/0x10
[  300.719073][ T9886]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[  300.719109][ T9886]  do_handle_open+0x744/0xce0
[  300.719132][ T9886]  ? __pfx_do_handle_open+0x10/0x10
[  300.719156][ T9886]  ? ksys_write+0x1ac/0x250
[  300.719178][ T9886]  ? do_syscall_64+0x10b/0xf80
[  300.719196][ T9886]  do_syscall_64+0x10b/0xf80
[  300.719213][ T9886]  ? clear_bhb_loop+0x40/0x90
[  300.719231][ T9886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.719245][ T9886] RIP: 0033:0x7fa6b9f9cdd9
[  300.719257][ T9886] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  300.719271][ T9886] RSP: 002b:00007fa6b81ac028 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[  300.719285][ T9886] RAX: ffffffffffffffda RBX: 00007fa6ba216180 RCX: 00007fa6b9f9cdd9
[  300.719294][ T9886] RDX: 0000000000000006 RSI: 0000200000001280 RDI: 000000000000000b
[  300.719303][ T9886] RBP: 00007fa6b81ac090 R08: 0000000000000000 R09: 0000000000000000
[  300.719312][ T9886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  300.719320][ T9886] R13: 00007fa6ba216218 R14: 00007fa6ba216180 R15: 00007ffe3a3dd0d8
[  300.719338][ T9886]  </TASK>
[  301.178694][ T9882] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  301.184777][ T9882] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  301.191477][ T9882] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  301.197537][ T9882] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  302.416737][ T9922] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[8356] was attempted by ""[9922]
[  302.617896][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  302.964673][   T30] audit: type=1800 audit(5333753150.631:48): pid=9948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.920" name="features" dev="configfs" ino=33226 res=0 errno=0
[  303.209139][ T9953] FAULT_INJECTION: forcing a failure.
[  303.209139][ T9953] name failslab, interval 1, probability 0, space 0, times 0
[  303.246520][ T9953] CPU: 0 UID: 0 PID: 9953 Comm: syz.1.920 Not tainted syzkaller #0 PREEMPT(full) 
[  303.246542][ T9953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  303.246550][ T9953] Call Trace:
[  303.246556][ T9953]  <TASK>
[  303.246562][ T9953]  dump_stack_lvl+0x100/0x190
[  303.246582][ T9953]  should_fail_ex.cold+0x5/0xa
[  303.246601][ T9953]  should_failslab+0xc2/0x120
[  303.246618][ T9953]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  303.246641][ T9953]  ? __d_alloc+0x34/0xa40
[  303.246659][ T9953]  ? do_raw_spin_lock+0x128/0x260
[  303.246679][ T9953]  __d_alloc+0x34/0xa40
[  303.246699][ T9953]  __d_obtain_alias+0x119/0x6d0
[  303.246722][ T9953]  ? _raw_spin_unlock+0x28/0x50
[  303.246740][ T9953]  kernfs_fh_to_dentry+0x106/0x250
[  303.246765][ T9953]  exportfs_decode_fh_raw+0x167/0x760
[  303.246780][ T9953]  ? __pfx_vfs_dentry_acceptable+0x10/0x10
[  303.246803][ T9953]  ? __pfx_kernfs_fh_to_dentry+0x10/0x10
[  303.246825][ T9953]  ? __pfx_exportfs_decode_fh_raw+0x10/0x10
[  303.246861][ T9953]  do_handle_open+0x744/0xce0
[  303.246884][ T9953]  ? __pfx_do_handle_open+0x10/0x10
[  303.246908][ T9953]  ? ksys_write+0x1ac/0x250
[  303.246930][ T9953]  ? do_syscall_64+0x10b/0xf80
[  303.246948][ T9953]  do_syscall_64+0x10b/0xf80
[  303.246964][ T9953]  ? clear_bhb_loop+0x40/0x90
[  303.246982][ T9953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.246997][ T9953] RIP: 0033:0x7fb41159cdd9
[  303.247010][ T9953] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  303.247023][ T9953] RSP: 002b:00007fb4124a2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[  303.247037][ T9953] RAX: ffffffffffffffda RBX: 00007fb411816180 RCX: 00007fb41159cdd9
[  303.247047][ T9953] RDX: 0000000000000006 RSI: 0000200000001280 RDI: 000000000000000b
[  303.247055][ T9953] RBP: 00007fb4124a2090 R08: 0000000000000000 R09: 0000000000000000
[  303.247064][ T9953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.247075][ T9953] R13: 00007fb411816218 R14: 00007fb411816180 R15: 00007ffcef625df8
[  303.247093][ T9953]  </TASK>
[  303.495487][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  303.502694][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  303.509351][ T4945] Bluetooth: hci3: command 0x0c1a tx timeout
[  303.791215][ T9949] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  303.811821][ T9949] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  303.859329][ T9949] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  303.905046][ T9949] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  304.336026][ T9968] netlink: 29 bytes leftover after parsing attributes in process `syz.4.925'.
[  304.536062][ T9981] futex_wake_op: syz.0.927 tries to shift op by -1; fix this program
[  304.843210][ T9988] FAULT_INJECTION: forcing a failure.
[  304.843210][ T9988] name failslab, interval 1, probability 0, space 0, times 0
[  304.903645][ T9988] CPU: 0 UID: 0 PID: 9988 Comm: syz.4.929 Not tainted syzkaller #0 PREEMPT(full) 
[  304.903668][ T9988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  304.903677][ T9988] Call Trace:
[  304.903683][ T9988]  <TASK>
[  304.903689][ T9988]  dump_stack_lvl+0x100/0x190
[  304.903710][ T9988]  should_fail_ex.cold+0x5/0xa
[  304.903730][ T9988]  should_failslab+0xc2/0x120
[  304.903749][ T9988]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  304.903772][ T9988]  ? do_getname+0x35/0x390
[  304.903797][ T9988]  do_getname+0x35/0x390
[  304.903819][ T9988]  do_sys_openat2+0xc5/0x1e0
[  304.903841][ T9988]  ? __pfx_do_sys_openat2+0x10/0x10
[  304.903870][ T9988]  __x64_sys_openat+0x12d/0x210
[  304.903892][ T9988]  ? __pfx___x64_sys_openat+0x10/0x10
[  304.903913][ T9988]  ? ksys_write+0x1ac/0x250
[  304.903932][ T9988]  ? rcu_is_watching+0x12/0xc0
[  304.903952][ T9988]  do_syscall_64+0x10b/0xf80
[  304.903970][ T9988]  ? clear_bhb_loop+0x40/0x90
[  304.903988][ T9988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.904003][ T9988] RIP: 0033:0x7fa6b9f9cdd9
[  304.904017][ T9988] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  304.904033][ T9988] RSP: 002b:00007fa6b81ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  304.904048][ T9988] RAX: ffffffffffffffda RBX: 00007fa6ba215fa0 RCX: 00007fa6b9f9cdd9
[  304.904058][ T9988] RDX: 00000000000c0481 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  304.904067][ T9988] RBP: 00007fa6ba032d69 R08: 0000000000000000 R09: 0000000000000000
[  304.904076][ T9988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  304.904084][ T9988] R13: 00007fa6ba216038 R14: 00007fa6ba215fa0 R15: 00007ffe3a3dd0d8
[  304.904103][ T9988]  </TASK>
[  305.174818][ T9979] i2c i2c-0: delete_device: Can't find device in list
[  305.282324][ T5631] Bluetooth: hci1: command 0x0c1a tx timeout
[  305.793823][T10001] zswap: compressor  not available
[  305.820163][ T4945] Bluetooth: hci3: command 0x0c1a tx timeout
[  305.901241][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  305.979447][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  306.528161][ T9999] kexec: Could not allocate control_code_buffer
[  307.075507][   T30] audit: type=1800 audit(5333753154.739:49): pid=10033 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.938" name="features" dev="configfs" ino=33539 res=0 errno=0
[  307.916916][T10046] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  307.943262][T10046] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  307.969250][T10046] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  307.994926][T10046] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  308.329888][   T30] audit: type=1800 audit(5333753155.988:50): pid=10060 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.944" name="features" dev="configfs" ino=33659 res=0 errno=0
[  308.779587][ T4945] Bluetooth: hci4: unexpected event 0x1c length: 725 > 5
[  309.145706][T10062] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  309.166955][   T30] audit: type=1800 audit(5333753156.828:51): pid=10073 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.946" name="features" dev="configfs" ino=33721 res=0 errno=0
[  309.215336][T10062] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  309.248256][T10062] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  309.276787][T10062] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  309.293832][T10059] Process accounting resumed
[  309.599202][ T4945] Bluetooth: hci3: unexpected event 0x03 length: 123 > 11
[  310.026205][T10086] &#$@\]\-: entered promiscuous mode
[  310.943987][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  311.198389][T10115] nfs: Bad value for 'source'
[  311.261680][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  311.267738][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  311.341885][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  311.856041][T10120] bonding: unable to delete non-existent )
[  312.242080][   T30] audit: type=1800 audit(5333753159.896:52): pid=10130 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.958" name="features" dev="configfs" ino=34070 res=0 errno=0
[  312.298203][T10127] futex_wake_op: syz.3.956 tries to shift op by -2048; fix this program
[  313.122261][T10136] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  313.169534][T10136] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  313.208893][T10136] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  313.244692][T10136] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  313.521622][   T30] audit: type=1800 audit(5333753161.176:53): pid=10153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.961" name="features" dev="configfs" ino=34171 res=0 errno=0
[  313.552263][T10142] netlink: 338 bytes leftover after parsing attributes in process `syz.1.959'.
[  313.692182][T10146] netlink: 338 bytes leftover after parsing attributes in process `syz.1.959'.
[  314.205658][T10164] bridge0: port 3(vlan1) entered blocking state
[  314.228575][T10164] bridge0: port 3(vlan1) entered disabled state
[  314.248433][T10164] vlan1: entered allmulticast mode
[  314.261906][T10164] veth0_vlan: entered allmulticast mode
[  314.278652][T10164] vlan1: entered promiscuous mode
[  314.305935][T10164] bridge0: port 3(vlan1) entered blocking state
[  314.312385][T10164] bridge0: port 3(vlan1) entered forwarding state
[  314.333471][T10153] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  314.344311][T10153] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  314.378140][T10153] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  314.398984][T10153] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  315.158069][T10177] FAULT_INJECTION: forcing a failure.
[  315.158069][T10177] name failslab, interval 1, probability 0, space 0, times 0
[  315.202904][T10180] FAULT_INJECTION: forcing a failure.
[  315.202904][T10180] name failslab, interval 1, probability 0, space 0, times 0
[  315.430157][T10180] CPU: 0 UID: 0 PID: 10180 Comm: syz.3.967 Not tainted syzkaller #0 PREEMPT(full) 
[  315.430188][T10180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  315.430198][T10180] Call Trace:
[  315.430203][T10180]  <TASK>
[  315.430209][T10180]  dump_stack_lvl+0x100/0x190
[  315.430232][T10180]  should_fail_ex.cold+0x5/0xa
[  315.430252][T10180]  should_failslab+0xc2/0x120
[  315.430275][T10180]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  315.430298][T10180]  ? do_getname+0x35/0x390
[  315.430324][T10180]  do_getname+0x35/0x390
[  315.430348][T10180]  do_sys_openat2+0xc5/0x1e0
[  315.430370][T10180]  ? __pfx_do_sys_openat2+0x10/0x10
[  315.430399][T10180]  __x64_sys_openat+0x12d/0x210
[  315.430421][T10180]  ? __pfx___x64_sys_openat+0x10/0x10
[  315.430442][T10180]  ? ksys_write+0x1ac/0x250
[  315.430460][T10180]  ? rcu_is_watching+0x12/0xc0
[  315.430480][T10180]  do_syscall_64+0x10b/0xf80
[  315.430499][T10180]  ? clear_bhb_loop+0x40/0x90
[  315.430522][T10180]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.430538][T10180] RIP: 0033:0x7f1acff9cdd9
[  315.430553][T10180] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  315.430567][T10180] RSP: 002b:00007f1ad0eb0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  315.430582][T10180] RAX: ffffffffffffffda RBX: 00007f1ad0216090 RCX: 00007f1acff9cdd9
[  315.430592][T10180] RDX: 00000000000c0481 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  315.430602][T10180] RBP: 00007f1ad0032d69 R08: 0000000000000000 R09: 0000000000000000
[  315.430611][T10180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  315.430620][T10180] R13: 00007f1ad0216128 R14: 00007f1ad0216090 R15: 00007fffb5a1c1c8
[  315.430639][T10180]  </TASK>
[  315.826546][T10177] CPU: 0 UID: 0 PID: 10177 Comm: syz.1.965 Not tainted syzkaller #0 PREEMPT(full) 
[  315.826571][T10177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  315.826581][T10177] Call Trace:
[  315.826589][T10177]  <TASK>
[  315.826597][T10177]  dump_stack_lvl+0x100/0x190
[  315.826620][T10177]  should_fail_ex.cold+0x5/0xa
[  315.826641][T10177]  ? ima_write_template_field_data+0x59/0x1d0
[  315.826660][T10177]  should_failslab+0xc2/0x120
[  315.826678][T10177]  __kmalloc_noprof+0xe0/0x850
[  315.826706][T10177]  ima_write_template_field_data+0x59/0x1d0
[  315.826727][T10177]  ima_eventname_init_common+0x1c6/0x2a0
[  315.826747][T10177]  ? __pfx_ima_eventname_init_common+0x10/0x10
[  315.826769][T10177]  ? __kmalloc_noprof+0x320/0x850
[  315.826794][T10177]  ima_alloc_init_template+0x399/0x6d0
[  315.826822][T10177]  ima_store_measurement+0x1e3/0x5b0
[  315.826847][T10177]  ? __pfx_ima_store_measurement+0x10/0x10
[  315.826878][T10177]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  315.826901][T10177]  process_measurement+0x19cc/0x2350
[  315.826929][T10177]  ? lapic_next_event+0x10/0x20
[  315.826945][T10177]  ? clockevents_program_event+0x1ef/0x820
[  315.826962][T10177]  ? __pfx_process_measurement+0x10/0x10
[  315.826989][T10177]  ? __hrtimer_rearm_deferred+0x24d/0x740
[  315.827011][T10177]  ? do_raw_spin_unlock+0x145/0x1e0
[  315.827051][T10177]  ? nonseekable_open+0xd/0x50
[  315.827069][T10177]  ? __sanitizer_cov_trace_pc+0x44/0x70
[  315.827093][T10177]  ? inode_to_bdi+0x9e/0x160
[  315.827113][T10177]  ima_file_check+0xcc/0x120
[  315.827135][T10177]  ? __pfx_ima_file_check+0x10/0x10
[  315.827161][T10177]  security_file_post_open+0xc4/0x210
[  315.827178][T10177]  path_openat+0x1418/0x31a0
[  315.827203][T10177]  ? __pfx_path_openat+0x10/0x10
[  315.827233][T10177]  do_file_open+0x20e/0x430
[  315.827253][T10177]  ? __pfx_do_file_open+0x10/0x10
[  315.827284][T10177]  ? alloc_fd+0x476/0x790
[  315.827304][T10177]  ? do_getname+0x191/0x390
[  315.827328][T10177]  do_sys_openat2+0x10d/0x1e0
[  315.827351][T10177]  ? __pfx_do_sys_openat2+0x10/0x10
[  315.827380][T10177]  __x64_sys_openat+0x12d/0x210
[  315.827403][T10177]  ? __pfx___x64_sys_openat+0x10/0x10
[  315.827428][T10177]  ? rcu_is_watching+0x12/0xc0
[  315.827448][T10177]  do_syscall_64+0x10b/0xf80
[  315.827467][T10177]  ? clear_bhb_loop+0x40/0x90
[  315.827485][T10177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.827502][T10177] RIP: 0033:0x7fb41159cdd9
[  315.827516][T10177] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  315.827530][T10177] RSP: 002b:00007fb4124e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  315.827545][T10177] RAX: ffffffffffffffda RBX: 00007fb411815fa0 RCX: 00007fb41159cdd9
[  315.827556][T10177] RDX: 0000000000001000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  315.827565][T10177] RBP: 00007fb411632d69 R08: 0000000000000000 R09: 0000000000000000
[  315.827575][T10177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  315.827584][T10177] R13: 00007fb411816038 R14: 00007fb411815fa0 R15: 00007ffcef625df8
[  315.827604][T10177]  </TASK>
[  316.299422][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  316.305596][   T30] audit: type=1804 audit(5333753163.485:54): pid=10177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.965" name="/newroot/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw" dev="tracefs" ino=3744 res=0 errno=0
[  316.482864][ T5631] Bluetooth: hci1: unexpected event 0x03 length: 123 > 11
[  316.482909][ T5631] Bluetooth: hci2: command 0x0c1a tx timeout
[  316.500262][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  316.508130][ T5631] Bluetooth: hci4: command 0x040f tx timeout
[  318.176470][T10237] loop6: detected capacity change from 0 to 8
[  318.282147][ T4945] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5
[  318.429556][T10241] netlink: 338 bytes leftover after parsing attributes in process `syz.4.982'.
[  318.498762][T10241] netlink: 338 bytes leftover after parsing attributes in process `syz.4.982'.
[  318.513668][T10216] kexec: Could not allocate control_code_buffer
[  318.847920][T10243] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  318.861132][T10243] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  318.895092][T10243] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  318.940261][T10243] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  319.497278][T10261] netlink: 16 bytes leftover after parsing attributes in process `syz.1.988'.
[  319.554524][T10261] binder: 10260:10261 ioctl c018620c 200000000300 returned -22
[  319.863475][T10272] FAULT_INJECTION: forcing a failure.
[  319.863475][T10272] name failslab, interval 1, probability 0, space 0, times 0
[  319.996929][T10272] CPU: 0 UID: 0 PID: 10272 Comm: syz.0.989 Not tainted syzkaller #0 PREEMPT(full) 
[  319.996951][T10272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  319.996960][T10272] Call Trace:
[  319.996965][T10272]  <TASK>
[  319.996970][T10272]  dump_stack_lvl+0x100/0x190
[  319.996992][T10272]  should_fail_ex.cold+0x5/0xa
[  319.997011][T10272]  ? tomoyo_encode2+0xfb/0x3c0
[  319.997028][T10272]  should_failslab+0xc2/0x120
[  319.997045][T10272]  __kmalloc_noprof+0xe0/0x850
[  319.997067][T10272]  ? d_absolute_path+0x136/0x1b0
[  319.997084][T10272]  tomoyo_encode2+0xfb/0x3c0
[  319.997103][T10272]  tomoyo_encode+0x29/0x50
[  319.997120][T10272]  tomoyo_realpath_from_path+0x18c/0x690
[  319.997141][T10272]  tomoyo_path_number_perm+0x23c/0x580
[  319.997155][T10272]  ? tomoyo_path_number_perm+0x22e/0x580
[  319.997170][T10272]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  319.997203][T10272]  ? find_held_lock+0x2b/0x80
[  319.997222][T10272]  ? __fget_files+0x215/0x3d0
[  319.997237][T10272]  ? hook_file_ioctl_common+0x149/0x410
[  319.997251][T10272]  ? __fget_files+0x215/0x3d0
[  319.997270][T10272]  ? __fget_files+0x21f/0x3d0
[  319.997289][T10272]  security_file_ioctl+0xd3/0x230
[  319.997305][T10272]  __x64_sys_ioctl+0xb7/0x210
[  319.997320][T10272]  do_syscall_64+0x10b/0xf80
[  319.997338][T10272]  ? clear_bhb_loop+0x40/0x90
[  319.997357][T10272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.997371][T10272] RIP: 0033:0x7feb9b79cdd9
[  319.997383][T10272] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  319.997397][T10272] RSP: 002b:00007feb9c618028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  319.997411][T10272] RAX: ffffffffffffffda RBX: 00007feb9ba16180 RCX: 00007feb9b79cdd9
[  319.997421][T10272] RDX: 0000200000000080 RSI: 0000000040107447 RDI: 0000000000000003
[  319.997429][T10272] RBP: 00007feb9c618090 R08: 0000000000000000 R09: 0000000000000000
[  319.997438][T10272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.997446][T10272] R13: 00007feb9ba16218 R14: 00007feb9ba16180 R15: 00007ffed4570578
[  319.997464][T10272]  </TASK>
[  319.997477][T10272] ERROR: Out of memory at tomoyo_realpath_from_path.
[  320.274351][   T30] audit: type=1800 audit(5333753167.922:55): pid=10278 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.992" name="features" dev="configfs" ino=34850 res=0 errno=0
[  320.342784][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  320.501354][   T30] audit: type=1800 audit(5333753168.162:56): pid=10284 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.994" name="discovery_nqn" dev="configfs" ino=34897 res=0 errno=0
[  320.596058][ T4945] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  320.783194][T10291] netlink: 29 bytes leftover after parsing attributes in process `syz.0.996'.
[  320.810970][T10280] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  320.818627][T10280] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  320.846235][T10280] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  320.868920][T10280] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  321.187181][T10297] netlink: 28 bytes leftover after parsing attributes in process `syz.1.998'.
[  321.225648][T10297] netlink: 330 bytes leftover after parsing attributes in process `syz.1.998'.
[  321.285747][T10299] netlink: 28 bytes leftover after parsing attributes in process `syz.1.998'.
[  321.353654][T10303] netlink: 330 bytes leftover after parsing attributes in process `syz.1.998'.
[  321.519874][T10309] vivid-008: =================  START STATUS  =================
[  321.599980][T10309] vivid-008: ==================  END STATUS  ==================
[  321.700368][T10310] vivid-008: =================  START STATUS  =================
[  321.723497][ T4945] Bluetooth: hci4: ACL packet too small
[  321.778996][T10310] vivid-008: ==================  END STATUS  ==================
[  322.340213][T10337] syz.0.1005 (10337) used obsolete PPPIOCDETACH ioctl
[  322.467474][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  322.868002][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  322.874197][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  322.947592][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  323.344599][T10372] FAULT_INJECTION: forcing a failure.
[  323.344599][T10372] name fail_futex, interval 1, probability 0, space 0, times 0
[  323.375726][T10372] CPU: 0 UID: 0 PID: 10372 Comm: syz.4.1013 Not tainted syzkaller #0 PREEMPT(full) 
[  323.375749][T10372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  323.375759][T10372] Call Trace:
[  323.375764][T10372]  <TASK>
[  323.375770][T10372]  dump_stack_lvl+0x100/0x190
[  323.375791][T10372]  should_fail_ex.cold+0x5/0xa
[  323.375812][T10372]  get_futex_key+0x1d2/0x1510
[  323.375829][T10372]  ? __pfx_get_futex_key+0x10/0x10
[  323.375851][T10372]  futex_wake+0xea/0x530
[  323.375872][T10372]  ? __pfx_futex_wake+0x10/0x10
[  323.375894][T10372]  ? errseq_sample+0x51/0x70
[  323.375917][T10372]  ? file_init_path+0x48e/0x670
[  323.375941][T10372]  do_futex+0x32b/0x350
[  323.375958][T10372]  ? __pfx_do_futex+0x10/0x10
[  323.375974][T10372]  ? fd_install+0x223/0x580
[  323.375994][T10372]  __x64_sys_futex+0x34f/0x4d0
[  323.376012][T10372]  ? __pfx___x64_sys_futex+0x10/0x10
[  323.376032][T10372]  ? rcu_is_watching+0x12/0xc0
[  323.376052][T10372]  do_syscall_64+0x10b/0xf80
[  323.376070][T10372]  ? clear_bhb_loop+0x40/0x90
[  323.376088][T10372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.376103][T10372] RIP: 0033:0x7fa6b9f9cdd9
[  323.376117][T10372] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  323.376131][T10372] RSP: 002b:00007fa6b81cd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  323.376145][T10372] RAX: ffffffffffffffda RBX: 00007fa6ba216098 RCX: 00007fa6b9f9cdd9
[  323.376155][T10372] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa6ba21609c
[  323.376164][T10372] RBP: 00007fa6ba216090 R08: 0000000000000001 R09: 0000000000000000
[  323.376173][T10372] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  323.376182][T10372] R13: 00007fa6ba216128 R14: 00007ffe3a3dcff0 R15: 00007ffe3a3dd0d8
[  323.376200][T10372]  </TASK>
[  323.722585][T10375] lo: entered allmulticast mode
[  323.727643][T10375] lo: left allmulticast mode
[  324.936660][T10407] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1020'.
[  326.493793][T10445] i2c i2c-0: new_device: Can't parse I2C address
[  327.208575][   T30] audit: type=1800 audit(5333753174.859:57): pid=10459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1032" name="features" dev="configfs" ino=35958 res=0 errno=0
[  328.268461][T10462] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  328.333274][T10462] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  328.418129][T10462] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  328.497569][T10462] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  329.041737][T10485] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1039'.
[  329.214495][T10489] futex_wake_op: syz.3.1040 tries to shift op by -2048; fix this program
[  329.251342][T10493] input input10: cannot allocate more than FF_MAX_EFFECTS effects
[  329.300822][T10496] 0x000000000001-0x000000020000 : ""
[  329.703263][ T4945] Bluetooth: hci1: ACL packet too small
[  329.748321][T10496] ftl_cs: FTL header corrupt!
[  329.831544][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  330.391551][ T4945] Bluetooth: hci3: command 0x0c1a tx timeout
[  330.471651][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  330.551351][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  332.631023][T10556] wlan1: mtu less than device minimum
[  333.473760][T10575] i2c i2c-0: new_device: Can't parse I2C address
[  335.453596][T10595] FAULT_INJECTION: forcing a failure.
[  335.453596][T10595] name fail_futex, interval 1, probability 0, space 0, times 0
[  335.581914][T10595] CPU: 0 UID: 0 PID: 10595 Comm: syz.0.1061 Not tainted syzkaller #0 PREEMPT(full) 
[  335.581937][T10595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  335.581947][T10595] Call Trace:
[  335.581953][T10595]  <TASK>
[  335.581959][T10595]  dump_stack_lvl+0x100/0x190
[  335.581981][T10595]  should_fail_ex.cold+0x5/0xa
[  335.582001][T10595]  get_futex_key+0x1d2/0x1510
[  335.582020][T10595]  ? __pfx_get_futex_key+0x10/0x10
[  335.582035][T10595]  ? vfs_readv+0x3c5/0x8d0
[  335.582049][T10595]  ? kfree+0x1dd/0x6c0
[  335.582069][T10595]  ? rw_verify_area+0xce/0x6d0
[  335.582087][T10595]  futex_wake+0xea/0x530
[  335.582107][T10595]  ? __pfx_futex_wake+0x10/0x10
[  335.582125][T10595]  ? find_held_lock+0x2b/0x80
[  335.582145][T10595]  ? do_readv+0x214/0x340
[  335.582164][T10595]  do_futex+0x32b/0x350
[  335.582180][T10595]  ? __pfx_do_futex+0x10/0x10
[  335.582197][T10595]  ? __fget_files+0x21f/0x3d0
[  335.582216][T10595]  __x64_sys_futex+0x34f/0x4d0
[  335.582235][T10595]  ? __pfx___x64_sys_futex+0x10/0x10
[  335.582254][T10595]  ? rcu_is_watching+0x12/0xc0
[  335.582273][T10595]  do_syscall_64+0x10b/0xf80
[  335.582292][T10595]  ? clear_bhb_loop+0x40/0x90
[  335.582310][T10595]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.582325][T10595] RIP: 0033:0x7feb9b79cdd9
[  335.582339][T10595] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  335.582354][T10595] RSP: 002b:00007feb9c65a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  335.582369][T10595] RAX: ffffffffffffffda RBX: 00007feb9ba15fa8 RCX: 00007feb9b79cdd9
[  335.582378][T10595] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007feb9ba15fac
[  335.582387][T10595] RBP: 00007feb9ba15fa0 R08: 0000000000000001 R09: 0000000000000000
[  335.582397][T10595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  335.582406][T10595] R13: 00007feb9ba16038 R14: 00007ffed4570490 R15: 00007ffed4570578
[  335.582426][T10595]  </TASK>
[  338.109658][T10597] kexec: Could not allocate control_code_buffer
[  340.440812][T10669] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0
[  340.855033][T10662] Process accounting paused
[  343.530093][T10674] kexec: Could not allocate control_code_buffer
[  344.259803][T10710] HfR: entered promiscuous mode
[  344.300236][T10710] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1088'.
[  344.342513][T10710] HfR: left promiscuous mode
[  344.456940][   T30] audit: type=1800 audit(5333753192.100:58): pid=10715 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1097" name="features" dev="configfs" ino=37659 res=0 errno=0
[  345.356851][T10723] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  345.387663][T10723] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  345.423230][T10723] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  345.469683][T10723] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  345.725056][   T30] audit: type=1800 audit(5333753193.370:59): pid=10738 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1092" name="features" dev="configfs" ino=37812 res=0 errno=0
[  346.880571][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  347.409978][T10772] ovs_: entered promiscuous mode
[  347.441084][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  347.448814][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  347.503792][T10774] netlink: 'syz.4.1098': attribute type 7 has an invalid length.
[  347.521868][ T5631] Bluetooth: hci4: command 0x040f tx timeout
[  348.779403][T10786] FAULT_INJECTION: forcing a failure.
[  348.779403][T10786] name failslab, interval 1, probability 0, space 0, times 0
[  348.838214][T10786] CPU: 0 UID: 0 PID: 10786 Comm: syz.4.1101 Not tainted syzkaller #0 PREEMPT(full) 
[  348.838238][T10786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  348.838249][T10786] Call Trace:
[  348.838254][T10786]  <TASK>
[  348.838260][T10786]  dump_stack_lvl+0x100/0x190
[  348.838285][T10786]  should_fail_ex.cold+0x5/0xa
[  348.838305][T10786]  should_failslab+0xc2/0x120
[  348.838324][T10786]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  348.838347][T10786]  ? anon_vma_clone+0x2ba/0xcd0
[  348.838370][T10786]  anon_vma_clone+0x2ba/0xcd0
[  348.838395][T10786]  __split_vma+0x51f/0xd90
[  348.838418][T10786]  ? __pfx___split_vma+0x10/0x10
[  348.838438][T10786]  ? is_bpf_text_address+0x8a/0x1a0
[  348.838463][T10786]  ? kernel_text_address+0x8d/0x100
[  348.838478][T10786]  ? __kernel_text_address+0xd/0x30
[  348.838493][T10786]  ? unwind_get_return_address+0x59/0xa0
[  348.838515][T10786]  vms_gather_munmap_vmas+0x1d2/0x1720
[  348.838539][T10786]  ? mtree_range_walk+0x72b/0xb70
[  348.838556][T10786]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  348.838585][T10786]  ? mas_walk+0x6ef/0x9b0
[  348.838608][T10786]  __mmap_region+0x4aa/0x2da0
[  348.838633][T10786]  ? __pfx___mmap_region+0x10/0x10
[  348.838656][T10786]  ? __lock_acquire+0x4a5/0x2630
[  348.838685][T10786]  ? find_held_lock+0x2b/0x80
[  348.838703][T10786]  ? ima_match_policy+0x8c4/0x2350
[  348.838718][T10786]  ? ima_match_policy+0x8c4/0x2350
[  348.838748][T10786]  ? __pfx___might_resched+0x10/0x10
[  348.838764][T10786]  ? finish_task_switch.isra.0+0x2c6/0x1010
[  348.838783][T10786]  ? find_held_lock+0x2b/0x80
[  348.838809][T10786]  ? process_measurement+0x4c8/0x2350
[  348.838831][T10786]  ? process_measurement+0x4c8/0x2350
[  348.838884][T10786]  mmap_region+0x527/0x620
[  348.838901][T10786]  ? __pfx_mmap_region+0x10/0x10
[  348.838915][T10786]  ? mm_get_unmapped_area_vmflags+0xd7/0x130
[  348.838934][T10786]  ? cap_mmap_addr+0x4b/0x120
[  348.838954][T10786]  ? bpf_lsm_mmap_addr+0x9/0x30
[  348.838968][T10786]  ? security_mmap_addr+0x71/0x1e0
[  348.838984][T10786]  ? __get_unmapped_area+0x255/0x3e0
[  348.839004][T10786]  do_mmap+0xc63/0x12f0
[  348.839025][T10786]  ? __pfx_do_mmap+0x10/0x10
[  348.839042][T10786]  ? __pfx_down_write_killable+0x10/0x10
[  348.839068][T10786]  vm_mmap_pgoff+0x29e/0x470
[  348.839090][T10786]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  348.839106][T10786]  ? __fget_files+0x215/0x3d0
[  348.839130][T10786]  ? __fget_files+0x21f/0x3d0
[  348.839149][T10786]  ksys_mmap_pgoff+0x3cb/0x610
[  348.839167][T10786]  ? __x64_sys_futex+0x358/0x4d0
[  348.839185][T10786]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  348.839202][T10786]  ? xfd_validate_state+0x129/0x190
[  348.839222][T10786]  __x64_sys_mmap+0x125/0x190
[  348.839240][T10786]  do_syscall_64+0x10b/0xf80
[  348.839258][T10786]  ? clear_bhb_loop+0x40/0x90
[  348.839276][T10786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.839292][T10786] RIP: 0033:0x7fa6b9f9cdd9
[  348.839305][T10786] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  348.839320][T10786] RSP: 002b:00007fa6b81cd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  348.839336][T10786] RAX: ffffffffffffffda RBX: 00007fa6ba216090 RCX: 00007fa6b9f9cdd9
[  348.839346][T10786] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000009000
[  348.839355][T10786] RBP: 00007fa6ba032d69 R08: 00000000000000dd R09: 0000000000000000
[  348.839365][T10786] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  348.839374][T10786] R13: 00007fa6ba216128 R14: 00007fa6ba216090 R15: 00007ffe3a3dd0d8
[  348.839394][T10786]  </TASK>
[  348.839776][T10761] kexec: Could not allocate control_code_buffer
[  349.740627][   T30] audit: type=1800 audit(5333753197.328:60): pid=10797 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1112" name="features" dev="configfs" ino=38095 res=0 errno=0
[  350.516153][T10797] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  350.530291][T10797] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  350.573202][T10797] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  350.603347][T10797] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  352.054396][   T30] audit: type=1800 audit(5333753199.697:61): pid=10849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1114" name="features" dev="configfs" ino=38306 res=0 errno=0
[  352.083039][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  352.276629][   T30] audit: type=1804 audit(5333753199.916:62): pid=10839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1113" name="/newroot/295/file0" dev="tmpfs" ino=1571 res=1 errno=0
[  352.445482][   T30] audit: type=1804 audit(5333753199.946:63): pid=10845 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1113" name="/newroot/295/file0" dev="tmpfs" ino=1571 res=1 errno=0
[  352.562454][ T4945] Bluetooth: hci3: command 0x0c1a tx timeout
[  352.644171][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  352.650219][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  353.153651][T10852] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  353.205259][T10852] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  353.242056][T10852] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  353.279495][T10852] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  354.723770][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  355.172638][T10922] FAULT_INJECTION: forcing a failure.
[  355.172638][T10922] name fail_futex, interval 1, probability 0, space 0, times 0
[  355.247443][T10922] CPU: 0 UID: 0 PID: 10922 Comm: syz.3.1124 Not tainted syzkaller #0 PREEMPT(full) 
[  355.247471][T10922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  355.247481][T10922] Call Trace:
[  355.247486][T10922]  <TASK>
[  355.247493][T10922]  dump_stack_lvl+0x100/0x190
[  355.247516][T10922]  should_fail_ex.cold+0x5/0xa
[  355.247538][T10922]  get_futex_key+0x1d2/0x1510
[  355.247556][T10922]  ? __pfx_get_futex_key+0x10/0x10
[  355.247577][T10922]  futex_wake+0xea/0x530
[  355.247597][T10922]  ? rcu_is_watching+0x12/0xc0
[  355.247615][T10922]  ? __pfx_futex_wake+0x10/0x10
[  355.247635][T10922]  ? putname+0xb1/0x110
[  355.247653][T10922]  ? kmem_cache_free+0x127/0x6c0
[  355.247678][T10922]  do_futex+0x32b/0x350
[  355.247698][T10922]  ? __pfx_do_futex+0x10/0x10
[  355.247713][T10922]  ? __pfx_do_sys_openat2+0x10/0x10
[  355.247736][T10922]  ? __fget_files+0x21f/0x3d0
[  355.247755][T10922]  __x64_sys_futex+0x34f/0x4d0
[  355.247773][T10922]  ? __x64_sys_openat+0x12d/0x210
[  355.247797][T10922]  ? __pfx___x64_sys_futex+0x10/0x10
[  355.247817][T10922]  ? rcu_is_watching+0x12/0xc0
[  355.247837][T10922]  do_syscall_64+0x10b/0xf80
[  355.247856][T10922]  ? clear_bhb_loop+0x40/0x90
[  355.247875][T10922]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.247891][T10922] RIP: 0033:0x7f1acff9cdd9
[  355.247905][T10922] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  355.247919][T10922] RSP: 002b:00007f1ad0ed10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  355.247935][T10922] RAX: ffffffffffffffda RBX: 00007f1ad0215fa8 RCX: 00007f1acff9cdd9
[  355.247945][T10922] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1ad0215fac
[  355.247954][T10922] RBP: 00007f1ad0215fa0 R08: 0000000000000001 R09: 0000000000000000
[  355.247962][T10922] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  355.247971][T10922] R13: 00007f1ad0216038 R14: 00007fffb5a1c0e0 R15: 00007fffb5a1c1c8
[  355.247990][T10922]  </TASK>
[  355.283867][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  355.283909][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  355.283929][ T4945] Bluetooth: hci3: command 0x0c1a tx timeout
[  356.072415][   T30] audit: type=1800 audit(5333753203.715:64): pid=10948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1130" name="features" dev="configfs" ino=38783 res=0 errno=0
[  356.270818][   T30] audit: type=1800 audit(5333753203.914:65): pid=10941 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1129" name="#628" dev="tmpfs" ino=628 res=0 errno=0
[  356.895281][T10952] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  356.941555][T10952] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  356.981558][T10952] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  357.011187][T10952] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  357.350478][T10975] futex_wake_op: syz.0.1135 tries to shift op by -2048; fix this program
[  358.565351][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  358.965815][ T4945] Bluetooth: hci3: command 0x0c1a tx timeout
[  359.045702][ T5641] Bluetooth: hci2: command 0x0c1a tx timeout
[  359.051893][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  359.130503][ T5631] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  360.005001][   T30] audit: type=1800 audit(5333753207.643:66): pid=11016 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1143" name=04 dev="tmpfs" ino=1625 res=0 errno=0
[  360.218746][   T30] audit: type=1800 audit(5333753207.862:67): pid=11026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1145" name="features" dev="configfs" ino=39258 res=0 errno=0
[  360.381370][T11033] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1146'.
[  360.437090][T11033] nbd: must specify at least one socket
[  361.031334][T11034] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  361.066790][T11034] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  361.118966][T11034] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  361.165482][T11034] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  362.049171][ T5290] 8021q: adding VLAN 0 to HW filter on device eth5
[  362.567370][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  362.609775][T11084] crash hp: kexec_trylock() failed, kdump image may be inaccurate
[  362.660628][T11068] can0: slcan on ptm0.
[  362.899587][T11062] can0 (unregistered): slcan off ptm0.
[  363.127667][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  363.133966][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  363.207713][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  363.911785][T11083] kexec: Could not allocate control_code_buffer
[  365.506822][T11136] phram: parameter too long
[  365.973164][T11138] FAULT_INJECTION: forcing a failure.
[  365.973164][T11138] name failslab, interval 1, probability 0, space 0, times 0
[  366.041273][T11138] CPU: 0 UID: 0 PID: 11138 Comm: syz.0.1165 Not tainted syzkaller #0 PREEMPT(full) 
[  366.041298][T11138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  366.041307][T11138] Call Trace:
[  366.041313][T11138]  <TASK>
[  366.041320][T11138]  dump_stack_lvl+0x100/0x190
[  366.041342][T11138]  should_fail_ex.cold+0x5/0xa
[  366.041362][T11138]  ? tomoyo_realpath_from_path+0xb6/0x690
[  366.041382][T11138]  should_failslab+0xc2/0x120
[  366.041400][T11138]  __kmalloc_noprof+0xe0/0x850
[  366.041422][T11138]  ? kfree+0x1dd/0x6c0
[  366.041444][T11138]  tomoyo_realpath_from_path+0xb6/0x690
[  366.041467][T11138]  tomoyo_check_open_permission+0x2af/0x3c0
[  366.041483][T11138]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  366.041505][T11138]  ? hook_file_open+0x24e/0x7a0
[  366.041537][T11138]  ? path_get+0x61/0x80
[  366.041559][T11138]  tomoyo_file_open+0x6b/0x90
[  366.041580][T11138]  security_file_open+0xb5/0x1e0
[  366.041597][T11138]  do_dentry_open+0x5aa/0x1660
[  366.041616][T11138]  ? security_inode_permission+0xbf/0x250
[  366.041635][T11138]  vfs_open+0x82/0x3f0
[  366.041659][T11138]  path_openat+0x208c/0x31a0
[  366.041684][T11138]  ? __pfx_path_openat+0x10/0x10
[  366.041712][T11138]  do_file_open+0x20e/0x430
[  366.041731][T11138]  ? __pfx_do_file_open+0x10/0x10
[  366.041762][T11138]  ? alloc_fd+0x476/0x790
[  366.041782][T11138]  ? do_getname+0x191/0x390
[  366.041807][T11138]  do_sys_openat2+0x10d/0x1e0
[  366.041829][T11138]  ? __pfx_do_sys_openat2+0x10/0x10
[  366.041857][T11138]  ? __fget_files+0x21f/0x3d0
[  366.041885][T11138]  __x64_sys_openat+0x12d/0x210
[  366.041909][T11138]  ? __pfx___x64_sys_openat+0x10/0x10
[  366.041935][T11138]  ? rcu_is_watching+0x12/0xc0
[  366.041955][T11138]  do_syscall_64+0x10b/0xf80
[  366.041973][T11138]  ? clear_bhb_loop+0x40/0x90
[  366.041992][T11138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.042007][T11138] RIP: 0033:0x7feb9b79cdd9
[  366.042021][T11138] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  366.042036][T11138] RSP: 002b:00007feb9c65a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  366.042051][T11138] RAX: ffffffffffffffda RBX: 00007feb9ba15fa0 RCX: 00007feb9b79cdd9
[  366.042061][T11138] RDX: 00000000000c2000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  366.042071][T11138] RBP: 00007feb9b832d69 R08: 0000000000000000 R09: 0000000000000000
[  366.042081][T11138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  366.042090][T11138] R13: 00007feb9ba16038 R14: 00007feb9ba15fa0 R15: 00007ffed4570578
[  366.042110][T11138]  </TASK>
[  366.042128][T11138] ERROR: Out of memory at tomoyo_realpath_from_path.
[  366.607889][T11152] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1168'.
[  367.625771][T11180] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  368.992798][T11219] can0: slcan on pty238.
[  369.161889][T11215] can0 (unregistered): slcan off pty238.
[  369.758697][T11245] sd 0:0:1:0: PR command failed: 1026
[  369.829584][T11245] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  369.959132][T11245] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  370.154813][T11161] kexec: Could not allocate control_code_buffer
[  370.244956][T11243] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 3697530745 out of range (51000000..2150000000)
[  372.003600][T11261] Process accounting resumed
[  373.210059][T11310] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8)
[  373.245486][   T30] audit: type=1800 audit(5333753220.876:68): pid=11312 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1198" name="features" dev="configfs" ino=40469 res=0 errno=0
[  374.181602][T11312] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  374.216795][T11312] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  374.241640][T11312] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  374.273451][T11312] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  376.063793][T11354] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  376.100020][T11354] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  376.119386][T11369] kernel profiling enabled (shift: 0)
[  376.144436][T11354] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  376.169195][T11354] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  377.375025][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  378.175271][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  378.181666][ T5631] Bluetooth: hci2: command 0x0c1a tx timeout
[  378.188029][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  380.538126][T11435] vhci_hcd: not connected 4
[  380.575617][T11435] vhci_hcd: not connected 4
[  384.689052][T11508] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1237'.
[  385.255730][T11520] openvswitch: netlink: IP tunnel dst address not specified
[  388.594001][T11568] FAULT_INJECTION: forcing a failure.
[  388.594001][T11568] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  388.680499][T11568] CPU: 0 UID: 0 PID: 11568 Comm: syz.0.1248 Not tainted syzkaller #0 PREEMPT(full) 
[  388.680525][T11568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  388.680534][T11568] Call Trace:
[  388.680541][T11568]  <TASK>
[  388.680547][T11568]  dump_stack_lvl+0x100/0x190
[  388.680571][T11568]  should_fail_ex.cold+0x5/0xa
[  388.680588][T11568]  ? prepare_alloc_pages+0x16d/0x5f0
[  388.680609][T11568]  should_fail_alloc_page+0xeb/0x140
[  388.680628][T11568]  prepare_alloc_pages+0x1f0/0x5f0
[  388.680650][T11568]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  388.680678][T11568]  ? rcu_is_watching+0x12/0xc0
[  388.680696][T11568]  ? trace_mm_page_alloc+0x163/0x1d0
[  388.680715][T11568]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  388.680739][T11568]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  388.680769][T11568]  ? __pfx_stack_trace_save+0x10/0x10
[  388.680789][T11568]  ? stack_depot_save_flags+0x27/0x9d0
[  388.680807][T11568]  ? is_bpf_text_address+0x8a/0x1a0
[  388.680829][T11568]  ? is_bpf_text_address+0x8a/0x1a0
[  388.680851][T11568]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  388.680875][T11568]  ? kasan_save_stack+0x3f/0x50
[  388.680888][T11568]  ? kasan_save_stack+0x30/0x50
[  388.680901][T11568]  ? kasan_save_track+0x14/0x30
[  388.680915][T11568]  ? kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  388.680947][T11568]  ? __get_vm_area_node+0x1ca/0x330
[  388.680965][T11568]  ? __vmalloc_node_range_noprof+0x228/0x1630
[  388.680985][T11568]  ? __kvmalloc_node_noprof+0x3de/0xa00
[  388.680999][T11568]  ? __do_sys_listmount+0x289/0xee0
[  388.681014][T11568]  ? do_syscall_64+0x10b/0xf80
[  388.681032][T11568]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.681053][T11568]  alloc_pages_bulk_noprof+0x657/0x1390
[  388.681081][T11568]  ? policy_nodemask+0xed/0x4f0
[  388.681099][T11568]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  388.681133][T11568]  __kasan_populate_vmalloc+0xf0/0x210
[  388.681163][T11568]  alloc_vmap_area+0x95d/0x2b70
[  388.681189][T11568]  ? __pfx_alloc_vmap_area+0x10/0x10
[  388.681210][T11568]  __get_vm_area_node+0x1ca/0x330
[  388.681232][T11568]  __vmalloc_node_range_noprof+0x228/0x1630
[  388.681252][T11568]  ? __do_sys_listmount+0x289/0xee0
[  388.681267][T11568]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  388.681289][T11568]  ? __do_sys_listmount+0x289/0xee0
[  388.681307][T11568]  ? alloc_pages_mpol+0x25a/0x540
[  388.681325][T11568]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  388.681351][T11568]  ? rcu_is_watching+0x12/0xc0
[  388.681372][T11568]  __kvmalloc_node_noprof+0x3de/0xa00
[  388.681387][T11568]  ? __do_sys_listmount+0x289/0xee0
[  388.681402][T11568]  ? __do_sys_listmount+0x289/0xee0
[  388.681416][T11568]  ? _copy_from_user+0x59/0xd0
[  388.681439][T11568]  ? copy_mnt_id_req+0x1b1/0x350
[  388.681462][T11568]  __do_sys_listmount+0x289/0xee0
[  388.681478][T11568]  ? __pfx_do_futex+0x10/0x10
[  388.681495][T11568]  ? __fget_files+0x21f/0x3d0
[  388.681513][T11568]  ? __pfx___do_sys_listmount+0x10/0x10
[  388.681536][T11568]  ? rcu_is_watching+0x12/0xc0
[  388.681556][T11568]  do_syscall_64+0x10b/0xf80
[  388.681574][T11568]  ? clear_bhb_loop+0x40/0x90
[  388.681592][T11568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.681613][T11568] RIP: 0033:0x7feb9b79cdd9
[  388.681629][T11568] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  388.681644][T11568] RSP: 002b:00007feb9c639028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  388.681660][T11568] RAX: ffffffffffffffda RBX: 00007feb9ba16090 RCX: 00007feb9b79cdd9
[  388.681669][T11568] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  388.681679][T11568] RBP: 00007feb9b832d69 R08: 0000000000000000 R09: 0000000000000000
[  388.681688][T11568] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  388.681697][T11568] R13: 00007feb9ba16128 R14: 00007feb9ba16090 R15: 00007ffed4570578
[  388.681717][T11568]  </TASK>
[  389.123436][T11568] syz.0.1248: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  389.138833][T11568] CPU: 0 UID: 0 PID: 11568 Comm: syz.0.1248 Not tainted syzkaller #0 PREEMPT(full) 
[  389.138887][T11568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  389.138897][T11568] Call Trace:
[  389.138905][T11568]  <TASK>
[  389.138912][T11568]  dump_stack_lvl+0x100/0x190
[  389.138935][T11568]  warn_alloc.cold+0x95/0x1c1
[  389.138953][T11568]  ? __pfx_warn_alloc+0x10/0x10
[  389.138975][T11568]  ? lockdep_hardirqs_on+0x78/0x100
[  389.138996][T11568]  ? __get_vm_area_node+0x2c5/0x330
[  389.139018][T11568]  ? __get_vm_area_node+0x208/0x330
[  389.139039][T11568]  __vmalloc_node_range_noprof+0xccd/0x1630
[  389.139063][T11568]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  389.139086][T11568]  ? __do_sys_listmount+0x289/0xee0
[  389.139105][T11568]  ? alloc_pages_mpol+0x25a/0x540
[  389.139123][T11568]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  389.139147][T11568]  ? rcu_is_watching+0x12/0xc0
[  389.139169][T11568]  __kvmalloc_node_noprof+0x3de/0xa00
[  389.139184][T11568]  ? __do_sys_listmount+0x289/0xee0
[  389.139203][T11568]  ? __do_sys_listmount+0x289/0xee0
[  389.139217][T11568]  ? _copy_from_user+0x59/0xd0
[  389.139241][T11568]  ? copy_mnt_id_req+0x1b1/0x350
[  389.139266][T11568]  __do_sys_listmount+0x289/0xee0
[  389.139282][T11568]  ? __pfx_do_futex+0x10/0x10
[  389.139299][T11568]  ? __fget_files+0x21f/0x3d0
[  389.139317][T11568]  ? __pfx___do_sys_listmount+0x10/0x10
[  389.139341][T11568]  ? rcu_is_watching+0x12/0xc0
[  389.139361][T11568]  do_syscall_64+0x10b/0xf80
[  389.139379][T11568]  ? clear_bhb_loop+0x40/0x90
[  389.139397][T11568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.139412][T11568] RIP: 0033:0x7feb9b79cdd9
[  389.139426][T11568] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  389.139441][T11568] RSP: 002b:00007feb9c639028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  389.139457][T11568] RAX: ffffffffffffffda RBX: 00007feb9ba16090 RCX: 00007feb9b79cdd9
[  389.139467][T11568] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  389.139476][T11568] RBP: 00007feb9b832d69 R08: 0000000000000000 R09: 0000000000000000
[  389.139485][T11568] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  389.139493][T11568] R13: 00007feb9ba16128 R14: 00007feb9ba16090 R15: 00007ffed4570578
[  389.139512][T11568]  </TASK>
[  389.139929][T11568] Mem-Info:
[  389.487248][T11568] active_anon:14534 inactive_anon:0 isolated_anon:1
[  389.487248][T11568]  active_file:20382 inactive_file:42443 isolated_file:0
[  389.487248][T11568]  unevictable:768 dirty:820 writeback:8
[  389.487248][T11568]  slab_reclaimable:11183 slab_unreclaimable:92957
[  389.487248][T11568]  mapped:26988 shmem:2723 pagetables:1791
[  389.487248][T11568]  sec_pagetables:0 bounce:0
[  389.487248][T11568]  kernel_misc_reclaimable:0
[  389.487248][T11568]  free:1107223 free_pcp:18548 free_cma:0
[  389.579307][T11568] Node 0 active_anon:52548kB inactive_anon:0kB active_file:81528kB inactive_file:169560kB unevictable:1536kB isolated(anon):4kB isolated(file):0kB mapped:107952kB dirty:3280kB writeback:32kB shmem:3664kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13664kB pagetables:7048kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  389.739024][T11568] Node 1 active_anon:5692kB inactive_anon:0kB active_file:0kB inactive_file:212kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:7228kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:116kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  389.852571][T11568] Node 0 DMA free:11264kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  389.915884][T11568] lowmem_reserve[]: 0 2477 2478 2478 2478
[  389.929353][T11568] Node 0 DMA32 free:576380kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:50468kB inactive_anon:0kB active_file:81528kB inactive_file:165468kB unevictable:1536kB writepending:3312kB zspages:0kB present:3129332kB managed:2537392kB mlocked:0kB bounce:0kB free_pcp:48416kB local_pcp:48416kB free_cma:0kB
[  389.978555][T11568] lowmem_reserve[]: 0 0 1 1 1
[  389.992051][T11568] Node 0 Normal free:12kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1100kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  390.040612][T11568] lowmem_reserve[]: 0 0 0 0 0
[  390.045577][T11568] Node 1 Normal free:3852156kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:5692kB inactive_anon:0kB active_file:0kB inactive_file:212kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:21272kB local_pcp:21272kB free_cma:0kB
[  390.086352][T11568] lowmem_reserve[]: 0 0 0 0 0
[  390.091342][T11568] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 2*4096kB (M) = 11264kB
[  390.104250][T11568] Node 0 DMA32: 5070*4kB (UM) 356*8kB (UME) 718*16kB (UME) 748*32kB (UME) 418*64kB (UME) 597*128kB (UME) 405*256kB (UME) 193*512kB (UM) 116*1024kB (UM) 36*2048kB (UM) 5*4096kB (M) = 577208kB
[  390.126309][T11568] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  390.139129][T11568] Node 1 Normal: 1*4kB (M) 1*8kB (M) 1*16kB (M) 1*32kB (M) 1*64kB (U) 0*128kB 1*256kB (M) 1*512kB (U) 1*1024kB (U) 2*2048kB (UM) 939*4096kB (M) = 3852156kB
[  390.155621][T11568] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  390.166231][T11568] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  390.178409][T11568] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  390.260824][T11568] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  390.304363][T11568] 64517 total pagecache pages
[  390.322692][T11568] 0 pages in swap cache
[  390.343188][T11568] Free swap  = 124996kB
[  390.363231][T11568] Total swap = 124996kB
[  390.381504][T11568] 2097051 pages RAM
[  390.398163][T11568] 0 pages HighMem/MovableOnly
[  390.422737][T11568] 430813 pages reserved
[  390.446846][T11568] 0 pages cma reserved
[  390.519650][T11603] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  390.633122][T11605] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1255'.
[  390.769178][T11605] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  390.866152][T11605] batman_adv: batadv0: Removing interface: batadv_slave_1
[  391.237569][T11625] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1260'.
[  391.275657][T11613] FAULT_INJECTION: forcing a failure.
[  391.275657][T11613] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  391.310956][T11613] CPU: 0 UID: 0 PID: 11613 Comm: syz.0.1257 Not tainted syzkaller #0 PREEMPT(full) 
[  391.310981][T11613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  391.310990][T11613] Call Trace:
[  391.310996][T11613]  <TASK>
[  391.311001][T11613]  dump_stack_lvl+0x100/0x190
[  391.311023][T11613]  should_fail_ex.cold+0x5/0xa
[  391.311039][T11613]  ? prepare_alloc_pages+0x16d/0x5f0
[  391.311059][T11613]  should_fail_alloc_page+0xeb/0x140
[  391.311078][T11613]  prepare_alloc_pages+0x1f0/0x5f0
[  391.311099][T11613]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  391.311122][T11613]  ? stack_trace_save+0x8e/0xc0
[  391.311143][T11613]  ? __pfx_stack_trace_save+0x10/0x10
[  391.311164][T11613]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  391.311188][T11613]  ? stack_depot_save_flags+0x27/0x9d0
[  391.311204][T11613]  ? find_held_lock+0x2b/0x80
[  391.311223][T11613]  ? is_bpf_text_address+0x8a/0x1a0
[  391.311245][T11613]  ? kasan_save_stack+0x3f/0x50
[  391.311257][T11613]  ? kasan_save_stack+0x30/0x50
[  391.311270][T11613]  ? kasan_save_track+0x14/0x30
[  391.311282][T11613]  ? __kasan_slab_alloc+0x89/0x90
[  391.311296][T11613]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  391.311318][T11613]  ? __pmd_alloc+0xbf/0x950
[  391.311335][T11613]  ? walk_to_pmd+0x3a3/0x4c0
[  391.311353][T11613]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  391.311376][T11613]  ? kcov_mmap+0xca/0x130
[  391.311393][T11613]  ? __mmap_region+0x13e1/0x2da0
[  391.311414][T11613]  ? mmap_region+0x527/0x620
[  391.311426][T11613]  ? vm_mmap_pgoff+0x29e/0x470
[  391.311442][T11613]  ? __x64_sys_mmap+0x125/0x190
[  391.311458][T11613]  ? do_syscall_64+0x10b/0xf80
[  391.311475][T11613]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.311500][T11613]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  391.311522][T11613]  ? policy_nodemask+0xed/0x4f0
[  391.311539][T11613]  alloc_pages_mpol+0x1fb/0x540
[  391.311557][T11613]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  391.311574][T11613]  ? do_raw_spin_lock+0x128/0x260
[  391.311590][T11613]  ? find_held_lock+0x2b/0x80
[  391.311611][T11613]  alloc_pages_noprof+0x1a/0x160
[  391.311630][T11613]  pte_alloc_one+0x1c/0x3d0
[  391.311650][T11613]  __pte_alloc+0x6d/0x3e0
[  391.311666][T11613]  ? __pfx___pte_alloc+0x10/0x10
[  391.311682][T11613]  ? walk_to_pmd+0x302/0x4c0
[  391.311702][T11613]  get_locked_pte+0xa1/0xc0
[  391.311721][T11613]  insert_page+0xcc/0x220
[  391.311740][T11613]  ? __pfx_insert_page+0x10/0x10
[  391.311757][T11613]  ? __pfx_down_read_trylock+0x10/0x10
[  391.311778][T11613]  vm_insert_page+0x2c0/0x400
[  391.311798][T11613]  kcov_mmap+0xca/0x130
[  391.311819][T11613]  __mmap_region+0x13e1/0x2da0
[  391.311849][T11613]  ? __pfx___mmap_region+0x10/0x10
[  391.311876][T11613]  ? trace_pelt_se_tp+0x13b/0x190
[  391.311894][T11613]  ? do_raw_spin_lock+0x128/0x260
[  391.311910][T11613]  ? find_held_lock+0x2b/0x80
[  391.311928][T11613]  ? debug_object_activate+0x331/0x490
[  391.311950][T11613]  ? debug_object_activate+0x331/0x490
[  391.311973][T11613]  ? do_raw_spin_unlock+0x145/0x1e0
[  391.311998][T11613]  ? find_held_lock+0x2b/0x80
[  391.312026][T11613]  ? mark_held_locks+0x40/0x70
[  391.312039][T11613]  ? finish_task_switch.isra.0+0x2cb/0x1010
[  391.312091][T11613]  mmap_region+0x527/0x620
[  391.312106][T11613]  ? __pfx_mmap_region+0x10/0x10
[  391.312121][T11613]  ? cap_mmap_addr+0x4b/0x120
[  391.312144][T11613]  ? bpf_lsm_mmap_addr+0x9/0x30
[  391.312158][T11613]  ? security_mmap_addr+0x71/0x1e0
[  391.312174][T11613]  ? __get_unmapped_area+0x255/0x3e0
[  391.312194][T11613]  do_mmap+0xc63/0x12f0
[  391.312214][T11613]  ? __pfx_do_mmap+0x10/0x10
[  391.312232][T11613]  ? __pfx_down_write_killable+0x10/0x10
[  391.312257][T11613]  vm_mmap_pgoff+0x29e/0x470
[  391.312278][T11613]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  391.312295][T11613]  ? __fget_files+0x215/0x3d0
[  391.312315][T11613]  ? __fget_files+0x21f/0x3d0
[  391.312335][T11613]  ksys_mmap_pgoff+0x3cb/0x610
[  391.312352][T11613]  ? __x64_sys_futex+0x358/0x4d0
[  391.312368][T11613]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  391.312385][T11613]  ? xfd_validate_state+0x129/0x190
[  391.312399][T11613]  ? ksys_write+0x1ac/0x250
[  391.312418][T11613]  __x64_sys_mmap+0x125/0x190
[  391.312436][T11613]  do_syscall_64+0x10b/0xf80
[  391.312454][T11613]  ? clear_bhb_loop+0x40/0x90
[  391.312471][T11613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.312486][T11613] RIP: 0033:0x7feb9b79cdd9
[  391.312499][T11613] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  391.312513][T11613] RSP: 002b:00007feb9c639028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  391.312527][T11613] RAX: ffffffffffffffda RBX: 00007feb9ba16090 RCX: 00007feb9b79cdd9
[  391.312537][T11613] RDX: 0000000000000007 RSI: 00000000003fffff RDI: 0000000000000000
[  391.312545][T11613] RBP: 00007feb9b832d69 R08: 00000000000000dd R09: 0000000000000000
[  391.312553][T11613] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  391.312562][T11613] R13: 00007feb9ba16128 R14: 00007feb9ba16090 R15: 00007ffed4570578
[  391.312580][T11613]  </TASK>
[  392.381746][T11613] kcov: kcov: vm_insert_page() failed
[  393.115968][   T30] audit: type=1326 audit(1843104524.017:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11651 comm="syz.3.1265" exe="/root/ci-qemu-gce-upstream-auto/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1acff9cdd9 code=0x0
[  396.127167][ T5631] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  396.139757][T11709] vivid-008: =================  START STATUS  =================
[  396.205060][T11709] vivid-008: ==================  END STATUS  ==================
[  396.217950][T11711] aoe: could not set interface list: too many interfaces
[  396.569806][T11715] futex_wake_op: syz.1.1277 tries to shift op by -2048; fix this program
[  396.618979][T11715] futex_wake_op: syz.1.1277 tries to shift op by -2048; fix this program
[  396.663499][T11715] 0x000000000001-0x000000020000 : ""
[  396.766815][T11715] ftl_cs: FTL header corrupt!
[  397.139950][T11716] random: crng reseeded on system resumption
[  397.872843][T11739] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1282'.
[  398.185349][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  398.251321][T11745] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1284'.
[  398.752012][T11758] FAULT_INJECTION: forcing a failure.
[  398.752012][T11758] name fail_futex, interval 1, probability 0, space 0, times 0
[  398.808182][T11758] CPU: 0 UID: 0 PID: 11758 Comm: syz.1.1287 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  398.808208][T11758] Tainted: [L]=SOFTLOCKUP
[  398.808213][T11758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  398.808222][T11758] Call Trace:
[  398.808228][T11758]  <TASK>
[  398.808234][T11758]  dump_stack_lvl+0x100/0x190
[  398.808256][T11758]  should_fail_ex.cold+0x5/0xa
[  398.808274][T11758]  get_futex_key+0x1d2/0x1510
[  398.808291][T11758]  ? __pfx_get_futex_key+0x10/0x10
[  398.808305][T11758]  ? lock_acquire+0x1b1/0x370
[  398.808327][T11758]  futex_wake+0xea/0x530
[  398.808348][T11758]  ? __pfx_futex_wake+0x10/0x10
[  398.808366][T11758]  ? exit_mm_release+0x19/0x30
[  398.808392][T11758]  do_futex+0x32b/0x350
[  398.808408][T11758]  ? __pfx_do_futex+0x10/0x10
[  398.808422][T11758]  ? __might_fault+0xc5/0x140
[  398.808450][T11758]  mm_release+0x24a/0x2f0
[  398.808468][T11758]  do_exit+0x707/0x2a60
[  398.808493][T11758]  ? __pfx_do_exit+0x10/0x10
[  398.808515][T11758]  ? do_raw_spin_lock+0x128/0x260
[  398.808531][T11758]  ? find_held_lock+0x2b/0x80
[  398.808549][T11758]  ? get_signal+0x7e0/0x21e0
[  398.808569][T11758]  do_group_exit+0xd5/0x2a0
[  398.808592][T11758]  get_signal+0x1ec7/0x21e0
[  398.808614][T11758]  ? do_readv+0x214/0x340
[  398.808630][T11758]  ? __pfx_get_signal+0x10/0x10
[  398.808649][T11758]  ? do_futex+0x192/0x350
[  398.808666][T11758]  arch_do_signal_or_restart+0x91/0x770
[  398.808689][T11758]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  398.808716][T11758]  ? __pfx___x64_sys_futex+0x10/0x10
[  398.808732][T11758]  ? rcu_is_watching+0x12/0xc0
[  398.808751][T11758]  exit_to_user_mode_loop+0x86/0x4a0
[  398.808765][T11758]  ? do_syscall_64+0x519/0xf80
[  398.808785][T11758]  do_syscall_64+0x6f2/0xf80
[  398.808803][T11758]  ? clear_bhb_loop+0x40/0x90
[  398.808820][T11758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.808835][T11758] RIP: 0033:0x7fb41159cdd9
[  398.808848][T11758] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  398.808862][T11758] RSP: 002b:00007fb4124e40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  398.808876][T11758] RAX: fffffffffffffe00 RBX: 00007fb411815fa8 RCX: 00007fb41159cdd9
[  398.808886][T11758] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb411815fa8
[  398.808894][T11758] RBP: 00007fb411815fa0 R08: 0000000000000000 R09: 0000000000000000
[  398.808903][T11758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  398.808961][T11758] R13: 00007fb411816038 R14: 00007ffcef625d10 R15: 00007ffcef625df8
[  398.808979][T11758]  </TASK>
[  400.265517][ T4945] Bluetooth: hci4: command 0x040f tx timeout
[  400.881444][T11805] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1295'.
[  401.189714][T11810] FAULT_INJECTION: forcing a failure.
[  401.189714][T11810] name fail_futex, interval 1, probability 0, space 0, times 0
[  401.261099][T11810] CPU: 0 UID: 0 PID: 11810 Comm: syz.0.1298 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  401.261124][T11810] Tainted: [L]=SOFTLOCKUP
[  401.261130][T11810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  401.261138][T11810] Call Trace:
[  401.261143][T11810]  <TASK>
[  401.261149][T11810]  dump_stack_lvl+0x100/0x190
[  401.261170][T11810]  should_fail_ex.cold+0x5/0xa
[  401.261189][T11810]  get_futex_key+0x295/0x1510
[  401.261206][T11810]  ? __pfx_get_futex_key+0x10/0x10
[  401.261219][T11810]  ? lock_acquire+0x1b1/0x370
[  401.261238][T11810]  futex_wake+0xea/0x530
[  401.261263][T11810]  ? __pfx_futex_wake+0x10/0x10
[  401.261281][T11810]  ? exit_mm_release+0x19/0x30
[  401.261307][T11810]  do_futex+0x32b/0x350
[  401.261322][T11810]  ? __pfx_do_futex+0x10/0x10
[  401.261336][T11810]  ? __might_fault+0xc5/0x140
[  401.261363][T11810]  mm_release+0x24a/0x2f0
[  401.261381][T11810]  do_exit+0x707/0x2a60
[  401.261406][T11810]  ? __pfx_do_exit+0x10/0x10
[  401.261428][T11810]  ? do_raw_spin_lock+0x128/0x260
[  401.261443][T11810]  ? find_held_lock+0x2b/0x80
[  401.261461][T11810]  ? get_signal+0x7e0/0x21e0
[  401.261481][T11810]  do_group_exit+0xd5/0x2a0
[  401.261508][T11810]  get_signal+0x1ec7/0x21e0
[  401.261529][T11810]  ? do_readv+0x214/0x340
[  401.261546][T11810]  ? __pfx_get_signal+0x10/0x10
[  401.261564][T11810]  ? do_futex+0x192/0x350
[  401.261581][T11810]  arch_do_signal_or_restart+0x91/0x770
[  401.261605][T11810]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  401.261631][T11810]  ? __pfx___x64_sys_futex+0x10/0x10
[  401.261647][T11810]  ? rcu_is_watching+0x12/0xc0
[  401.261666][T11810]  exit_to_user_mode_loop+0x86/0x4a0
[  401.261680][T11810]  ? do_syscall_64+0x519/0xf80
[  401.261706][T11810]  do_syscall_64+0x6f2/0xf80
[  401.261724][T11810]  ? clear_bhb_loop+0x40/0x90
[  401.261741][T11810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.261756][T11810] RIP: 0033:0x7feb9b79cdd9
[  401.261768][T11810] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  401.261782][T11810] RSP: 002b:00007feb9c65a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  401.261796][T11810] RAX: fffffffffffffe00 RBX: 00007feb9ba15fa8 RCX: 00007feb9b79cdd9
[  401.261805][T11810] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007feb9ba15fa8
[  401.261814][T11810] RBP: 00007feb9ba15fa0 R08: 0000000000000000 R09: 0000000000000000
[  401.261822][T11810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  401.261830][T11810] R13: 00007feb9ba16038 R14: 00007ffed4570490 R15: 00007ffed4570578
[  401.261848][T11810]  </TASK>
[  401.908786][T11807] futex_wake_op: syz.3.1297 tries to shift op by -2048; fix this program
[  401.958645][T11831] futex_wake_op: syz.3.1297 tries to shift op by -2048; fix this program
[  402.182835][T11827] Process accounting paused
[  402.713911][ T5631] Bluetooth: hci1: ACL packet too small
[  402.740475][ T5631] Bluetooth: hci1: ACL packet too small
[  403.092411][T11851] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1307'.
[  403.195013][T11862] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1310'.
[  404.173522][T11887] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  404.297863][T11892] snd_virmidi snd_virmidi.0: control 61678:131081:3:yªƒ>oÆ[k<÷:1 is already present
[  404.343260][T11881] FAULT_INJECTION: forcing a failure.
[  404.343260][T11881] name failslab, interval 1, probability 0, space 0, times 0
[  404.474511][T11881] CPU: 0 UID: 0 PID: 11881 Comm: syz.4.1314 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  404.474539][T11881] Tainted: [L]=SOFTLOCKUP
[  404.474544][T11881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  404.474554][T11881] Call Trace:
[  404.474559][T11881]  <TASK>
[  404.474565][T11881]  dump_stack_lvl+0x100/0x190
[  404.474588][T11881]  should_fail_ex.cold+0x5/0xa
[  404.474609][T11881]  should_failslab+0xc2/0x120
[  404.474627][T11881]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  404.474650][T11881]  ? locks_get_lock_context+0x94/0x620
[  404.474671][T11881]  locks_get_lock_context+0x94/0x620
[  404.474691][T11881]  generic_setlease+0x2f5/0x12f0
[  404.474713][T11881]  ? find_held_lock+0x2b/0x80
[  404.474732][T11881]  ? srcu_notifier_call_chain+0xad/0xe0
[  404.474756][T11881]  ? __pfx_generic_setlease+0x10/0x10
[  404.474778][T11881]  ? __pfx_generic_setlease+0x10/0x10
[  404.474798][T11881]  vfs_setlease+0x283/0x370
[  404.474818][T11881]  do_fcntl_add_lease+0x3c4/0x550
[  404.474837][T11881]  ? __pfx_do_fcntl_add_lease+0x10/0x10
[  404.474856][T11881]  ? __pfx_futex_wake+0x10/0x10
[  404.474879][T11881]  fcntl_setlease+0xfc/0x180
[  404.474899][T11881]  ? __pfx_fcntl_setlease+0x10/0x10
[  404.474923][T11881]  do_fcntl+0x1149/0x1670
[  404.474945][T11881]  ? __pfx_do_fcntl+0x10/0x10
[  404.474965][T11881]  ? __fget_files+0x215/0x3d0
[  404.474988][T11881]  ? tomoyo_file_fcntl+0x6c/0xc0
[  404.475012][T11881]  __x64_sys_fcntl+0x163/0x200
[  404.475036][T11881]  do_syscall_64+0x10b/0xf80
[  404.475055][T11881]  ? clear_bhb_loop+0x40/0x90
[  404.475073][T11881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  404.475088][T11881] RIP: 0033:0x7fa6b9f9cdd9
[  404.475102][T11881] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  404.475116][T11881] RSP: 002b:00007fa6b81ee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  404.475131][T11881] RAX: ffffffffffffffda RBX: 00007fa6ba215fa0 RCX: 00007fa6b9f9cdd9
[  404.475141][T11881] RDX: 0000000000000001 RSI: 0000000000000400 RDI: 0000000000000008
[  404.475150][T11881] RBP: 00007fa6ba032d69 R08: 0000000000000000 R09: 0000000000000000
[  404.475159][T11881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  404.475167][T11881] R13: 00007fa6ba216038 R14: 00007fa6ba215fa0 R15: 00007ffe3a3dd0d8
[  404.475187][T11881]  </TASK>
[  405.352493][T11907] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1319'.
[  407.467389][T11966] nfs: Unknown parameter '£m?¥ŒÁLH>®ï½¢^Ñe„°àko}*	 »'
[  409.463778][T12001] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1337'.
[  409.505323][T12002] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1338'.
[  410.735167][T12042] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1347'.
[  411.963641][ T5631] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  413.532531][T12106] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1360'.
[  414.025852][ T4945] Bluetooth: hci3: command 0x0c1a tx timeout
[  415.207431][T12150] ima: policy update failed
[  415.227272][   T30] audit: type=1802 audit(1843104546.134:70): pid=12150 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1371" res=0 errno=0
[  415.314833][T12152] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1370'.
[  416.105834][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  419.451931][T12242] block nbd2: not configured, cannot reconfigure
[  419.834340][T12256] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[5628] was attempted by ""[12256]
[  420.133672][T12263] FAULT_INJECTION: forcing a failure.
[  420.133672][T12263] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  420.238037][T12263] CPU: 0 UID: 0 PID: 12263 Comm: syz.4.1395 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  420.238064][T12263] Tainted: [L]=SOFTLOCKUP
[  420.238070][T12263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  420.238079][T12263] Call Trace:
[  420.238085][T12263]  <TASK>
[  420.238091][T12263]  dump_stack_lvl+0x100/0x190
[  420.238112][T12263]  should_fail_ex.cold+0x5/0xa
[  420.238130][T12263]  ? prepare_alloc_pages+0x16d/0x5f0
[  420.238151][T12263]  should_fail_alloc_page+0xeb/0x140
[  420.238169][T12263]  prepare_alloc_pages+0x1f0/0x5f0
[  420.238190][T12263]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  420.238218][T12263]  ? rcu_is_watching+0x12/0xc0
[  420.238235][T12263]  ? trace_mm_page_alloc+0x163/0x1d0
[  420.238254][T12263]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  420.238279][T12263]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  420.238307][T12263]  ? lock_acquire+0x1b1/0x370
[  420.238322][T12263]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  420.238344][T12263]  ? clockevents_program_event+0x23e/0x820
[  420.238365][T12263]  ? ktime_get+0x9f/0x320
[  420.238385][T12263]  ? ktime_get+0x1a4/0x320
[  420.238410][T12263]  alloc_pages_bulk_noprof+0x657/0x1390
[  420.238438][T12263]  ? policy_nodemask+0xed/0x4f0
[  420.238456][T12263]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  420.238483][T12263]  ? irqentry_exit+0x246/0x790
[  420.238510][T12263]  __kasan_populate_vmalloc+0xf0/0x210
[  420.238538][T12263]  alloc_vmap_area+0x95d/0x2b70
[  420.238563][T12263]  ? __pfx_alloc_vmap_area+0x10/0x10
[  420.238585][T12263]  __get_vm_area_node+0x1ca/0x330
[  420.238606][T12263]  __vmalloc_node_range_noprof+0x228/0x1630
[  420.238626][T12263]  ? __do_sys_listmount+0x289/0xee0
[  420.238641][T12263]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  420.238664][T12263]  ? __do_sys_listmount+0x289/0xee0
[  420.238681][T12263]  ? alloc_pages_mpol+0x25a/0x540
[  420.238713][T12263]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  420.238743][T12263]  ? rcu_is_watching+0x12/0xc0
[  420.238766][T12263]  __kvmalloc_node_noprof+0x3de/0xa00
[  420.238781][T12263]  ? __do_sys_listmount+0x289/0xee0
[  420.238797][T12263]  ? __do_sys_listmount+0x289/0xee0
[  420.238811][T12263]  ? _copy_from_user+0x59/0xd0
[  420.238835][T12263]  ? copy_mnt_id_req+0x1b1/0x350
[  420.238858][T12263]  __do_sys_listmount+0x289/0xee0
[  420.238873][T12263]  ? __pfx_do_futex+0x10/0x10
[  420.238892][T12263]  ? __fget_files+0x21f/0x3d0
[  420.238909][T12263]  ? __pfx___do_sys_listmount+0x10/0x10
[  420.238933][T12263]  ? rcu_is_watching+0x12/0xc0
[  420.238952][T12263]  do_syscall_64+0x10b/0xf80
[  420.238970][T12263]  ? clear_bhb_loop+0x40/0x90
[  420.238992][T12263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.239007][T12263] RIP: 0033:0x7fa6b9f9cdd9
[  420.239022][T12263] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  420.239036][T12263] RSP: 002b:00007fa6b81cd028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  420.239051][T12263] RAX: ffffffffffffffda RBX: 00007fa6ba216090 RCX: 00007fa6b9f9cdd9
[  420.239062][T12263] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  420.239072][T12263] RBP: 00007fa6ba032d69 R08: 0000000000000000 R09: 0000000000000000
[  420.239081][T12263] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  420.239090][T12263] R13: 00007fa6ba216128 R14: 00007fa6ba216090 R15: 00007ffe3a3dd0d8
[  420.239110][T12263]  </TASK>
[  420.580627][T12263] syz.4.1395: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  420.596326][T12263] CPU: 0 UID: 0 PID: 12263 Comm: syz.4.1395 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  420.596352][T12263] Tainted: [L]=SOFTLOCKUP
[  420.596358][T12263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  420.596368][T12263] Call Trace:
[  420.596373][T12263]  <TASK>
[  420.596379][T12263]  dump_stack_lvl+0x100/0x190
[  420.596400][T12263]  warn_alloc.cold+0x95/0x1c1
[  420.596417][T12263]  ? __pfx_warn_alloc+0x10/0x10
[  420.596441][T12263]  ? lockdep_hardirqs_on+0x78/0x100
[  420.596461][T12263]  ? __get_vm_area_node+0x2c5/0x330
[  420.596483][T12263]  ? __get_vm_area_node+0x208/0x330
[  420.596504][T12263]  __vmalloc_node_range_noprof+0xccd/0x1630
[  420.596523][T12263]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  420.596546][T12263]  ? __do_sys_listmount+0x289/0xee0
[  420.596564][T12263]  ? alloc_pages_mpol+0x25a/0x540
[  420.596583][T12263]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  420.596607][T12263]  ? rcu_is_watching+0x12/0xc0
[  420.596628][T12263]  __kvmalloc_node_noprof+0x3de/0xa00
[  420.596643][T12263]  ? __do_sys_listmount+0x289/0xee0
[  420.596658][T12263]  ? __do_sys_listmount+0x289/0xee0
[  420.596672][T12263]  ? _copy_from_user+0x59/0xd0
[  420.596699][T12263]  ? copy_mnt_id_req+0x1b1/0x350
[  420.596722][T12263]  __do_sys_listmount+0x289/0xee0
[  420.596737][T12263]  ? __pfx_do_futex+0x10/0x10
[  420.596755][T12263]  ? __fget_files+0x21f/0x3d0
[  420.596778][T12263]  ? __pfx___do_sys_listmount+0x10/0x10
[  420.596810][T12263]  ? rcu_is_watching+0x12/0xc0
[  420.596830][T12263]  do_syscall_64+0x10b/0xf80
[  420.596849][T12263]  ? clear_bhb_loop+0x40/0x90
[  420.596869][T12263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.596884][T12263] RIP: 0033:0x7fa6b9f9cdd9
[  420.596899][T12263] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  420.596913][T12263] RSP: 002b:00007fa6b81cd028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  420.596928][T12263] RAX: ffffffffffffffda RBX: 00007fa6ba216090 RCX: 00007fa6b9f9cdd9
[  420.596938][T12263] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  420.596947][T12263] RBP: 00007fa6ba032d69 R08: 0000000000000000 R09: 0000000000000000
[  420.596956][T12263] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  420.596964][T12263] R13: 00007fa6ba216128 R14: 00007fa6ba216090 R15: 00007ffe3a3dd0d8
[  420.596983][T12263]  </TASK>
[  420.597295][T12263] Mem-Info:
[  420.965272][T12263] active_anon:11799 inactive_anon:1234 isolated_anon:0
[  420.965272][T12263]  active_file:36503 inactive_file:40334 isolated_file:0
[  420.965272][T12263]  unevictable:768 dirty:975 writeback:3
[  420.965272][T12263]  slab_reclaimable:11918 slab_unreclaimable:92036
[  420.965272][T12263]  mapped:27149 shmem:1297 pagetables:1870
[  420.965272][T12263]  sec_pagetables:0 bounce:0
[  420.965272][T12263]  kernel_misc_reclaimable:0
[  420.965272][T12263]  free:1098076 free_pcp:15175 free_cma:0
[  421.065369][T12263] Node 0 active_anon:47196kB inactive_anon:5040kB active_file:145800kB inactive_file:161336kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:108700kB dirty:3900kB writeback:12kB shmem:3756kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13344kB pagetables:7364kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  421.221347][T12263] Node 1 active_anon:0kB inactive_anon:0kB active_file:212kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:116kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  421.428078][T12263] Node 0 DMA free:11264kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  421.530272][T12263] lowmem_reserve[]: 0 2477 2478 2478 2478
[  421.550085][T12263] Node 0 DMA32 free:529784kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:47192kB inactive_anon:5364kB active_file:142148kB inactive_file:160900kB unevictable:1536kB writepending:4012kB zspages:108kB present:3129332kB managed:2537392kB mlocked:0kB bounce:0kB free_pcp:36288kB local_pcp:36288kB free_cma:0kB
[  421.684775][T12263] lowmem_reserve[]: 0 0 1 1 1
[  421.704323][T12263] Node 0 Normal free:12kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1100kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  421.844284][T12263] lowmem_reserve[]: 0 0 0 0 0
[  421.871143][T12263] Node 1 Normal free:3854424kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:212kB inactive_file:0kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:24696kB local_pcp:24696kB free_cma:0kB
[  422.055527][T12263] lowmem_reserve[]: 0 0 0 0 0
[  422.084496][T12263] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 2*4096kB (M) = 11264kB
[  422.139649][T12263] Node 0 DMA32: 2168*4kB (UM) 1249*8kB (UM) 799*16kB (UM) 433*32kB (M) 308*64kB (M) 513*128kB (UM) 409*256kB (UM) 127*512kB (UM) 130*1024kB (UME) 27*2048kB (ME) 10*4096kB (M) = 529784kB
[  422.224960][T12263] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  422.287682][T12263] Node 1 Normal: 2*4kB (UM) 2*8kB (UM) 2*16kB (UM) 1*32kB (M) 0*64kB 0*128kB 2*256kB (UM) 1*512kB (U) 1*1024kB (U) 1*2048kB (M) 940*4096kB (UM) = 3854424kB
[  422.367726][T12263] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  422.413975][T12263] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  422.456314][T12263] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  422.474400][T12290] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1401'.
[  422.499488][T12263] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  422.527127][T12287] block2mtd: Using custom MTD label '' for dev 
[  422.548750][T12263] 78689 total pagecache pages
[  422.556046][T12287] block2mtd: error: cannot open device 
[  422.569889][T12263] 39 pages in swap cache
[  422.580970][T12291] block2mtd: Using custom MTD label '' for dev 
[  422.592910][T12263] Free swap  = 124828kB
[  422.606404][T12263] Total swap = 124996kB
[  422.612387][T12291] block2mtd: error: cannot open device 
[  422.642961][T12263] 2097051 pages RAM
[  422.668061][T12263] 0 pages HighMem/MovableOnly
[  422.704120][T12263] 430813 pages reserved
[  422.736946][T12263] 0 pages cma reserved
[  422.815248][T12299] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1405'.
[  423.287707][T12308] FAULT_INJECTION: forcing a failure.
[  423.287707][T12308] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  423.392702][T12308] CPU: 0 UID: 0 PID: 12308 Comm: syz.1.1408 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  423.392732][T12308] Tainted: [L]=SOFTLOCKUP
[  423.392737][T12308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  423.392747][T12308] Call Trace:
[  423.392752][T12308]  <TASK>
[  423.392759][T12308]  dump_stack_lvl+0x100/0x190
[  423.392783][T12308]  should_fail_ex.cold+0x5/0xa
[  423.392804][T12308]  _copy_to_iter+0x1f3/0x1720
[  423.392831][T12308]  ? show_sb_opts+0xb4/0xf0
[  423.392848][T12308]  ? __pfx__copy_to_iter+0x10/0x10
[  423.392871][T12308]  ? __up_read+0x2c1/0x6e0
[  423.392890][T12308]  ? __pfx___up_read+0x10/0x10
[  423.392906][T12308]  ? seq_read_iter+0xd33/0x1270
[  423.392922][T12308]  ? seq_read_iter+0xd33/0x1270
[  423.392941][T12308]  seq_read_iter+0xdab/0x1270
[  423.392963][T12308]  ? __pfx_seq_read_iter+0x10/0x10
[  423.392979][T12308]  vfs_read+0x825/0xb30
[  423.392999][T12308]  ? __pfx_vfs_read+0x10/0x10
[  423.393027][T12308]  ksys_read+0x12a/0x250
[  423.393042][T12308]  ? __pfx_ksys_read+0x10/0x10
[  423.393060][T12308]  ? rcu_is_watching+0x12/0xc0
[  423.393080][T12308]  do_syscall_64+0x10b/0xf80
[  423.393099][T12308]  ? clear_bhb_loop+0x40/0x90
[  423.393117][T12308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.393133][T12308] RIP: 0033:0x7fb41159cdd9
[  423.393147][T12308] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  423.393161][T12308] RSP: 002b:00007fb4124e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  423.393177][T12308] RAX: ffffffffffffffda RBX: 00007fb411815fa0 RCX: 00007fb41159cdd9
[  423.393187][T12308] RDX: 0000000000001036 RSI: 0000200000000040 RDI: 0000000000000004
[  423.393197][T12308] RBP: 00007fb411632d69 R08: 0000000000000000 R09: 0000000000000000
[  423.393206][T12308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  423.393215][T12308] R13: 00007fb411816038 R14: 00007fb411815fa0 R15: 00007ffcef625df8
[  423.393236][T12308]  </TASK>
[  423.612286][T12308] FAULT_INJECTION: forcing a failure.
[  423.612286][T12308] name failslab, interval 1, probability 0, space 0, times 0
[  423.625371][T12308] CPU: 0 UID: 0 PID: 12308 Comm: syz.1.1408 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  423.625399][T12308] Tainted: [L]=SOFTLOCKUP
[  423.625409][T12308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  423.625423][T12308] Call Trace:
[  423.625435][T12308]  <TASK>
[  423.625442][T12308]  dump_stack_lvl+0x100/0x190
[  423.625472][T12308]  should_fail_ex.cold+0x5/0xa
[  423.625493][T12308]  should_failslab+0xc2/0x120
[  423.625512][T12308]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  423.625536][T12308]  ? proc_alloc_inode+0x25/0x200
[  423.625553][T12308]  ? find_held_lock+0x2b/0x80
[  423.625574][T12308]  ? __pfx_proc_alloc_inode+0x10/0x10
[  423.625591][T12308]  proc_alloc_inode+0x25/0x200
[  423.625607][T12308]  alloc_inode+0x68/0x250
[  423.625630][T12308]  new_inode+0x22/0x1c0
[  423.625650][T12308]  ? proc_sys_lookup+0x266/0x430
[  423.625669][T12308]  proc_sys_make_inode+0x47/0x5c0
[  423.625688][T12308]  proc_sys_lookup+0x307/0x430
[  423.625706][T12308]  ? __pfx_proc_sys_lookup+0x10/0x10
[  423.625726][T12308]  ? __d_lookup+0x266/0x4a0
[  423.625745][T12308]  lookup_open.isra.0+0x631/0x11b0
[  423.625765][T12308]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  423.625791][T12308]  ? mnt_get_write_access+0x1e9/0x2f0
[  423.625817][T12308]  path_openat+0xa98/0x31a0
[  423.625841][T12308]  ? __pfx_path_openat+0x10/0x10
[  423.625866][T12308]  do_file_open+0x20e/0x430
[  423.625886][T12308]  ? __pfx_do_file_open+0x10/0x10
[  423.625917][T12308]  ? alloc_fd+0x476/0x790
[  423.625936][T12308]  ? do_getname+0x191/0x390
[  423.625959][T12308]  do_sys_openat2+0x10d/0x1e0
[  423.625981][T12308]  ? __pfx_do_sys_openat2+0x10/0x10
[  423.626010][T12308]  __x64_sys_openat+0x12d/0x210
[  423.626032][T12308]  ? __pfx___x64_sys_openat+0x10/0x10
[  423.626053][T12308]  ? ksys_write+0x1ac/0x250
[  423.626073][T12308]  ? rcu_is_watching+0x12/0xc0
[  423.626092][T12308]  do_syscall_64+0x10b/0xf80
[  423.626111][T12308]  ? clear_bhb_loop+0x40/0x90
[  423.626136][T12308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.626153][T12308] RIP: 0033:0x7fb41159cdd9
[  423.626167][T12308] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  423.626182][T12308] RSP: 002b:00007fb4124e4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  423.626198][T12308] RAX: ffffffffffffffda RBX: 00007fb411815fa0 RCX: 00007fb41159cdd9
[  423.626209][T12308] RDX: 0000000000121a01 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  423.626220][T12308] RBP: 00007fb411632d69 R08: 0000000000000000 R09: 0000000000000000
[  423.626230][T12308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  423.626239][T12308] R13: 00007fb411816038 R14: 00007fb411815fa0 R15: 00007ffcef625df8
[  423.626259][T12308]  </TASK>
[  424.446977][T12328] netlink: 'syz.3.1413': attribute type 3 has an invalid length.
[  424.506944][T12328] netlink: 'syz.3.1413': attribute type 3 has an invalid length.
[  425.190336][T12345] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1418'.
[  426.018513][T12353] ==================================================================
[  426.018531][T12353] BUG: KASAN: slab-out-of-bounds in fbcon_prepare_logo+0x94e/0xc60
[  426.018555][T12353] Read of size 26 at addr ffff88802ba9acd4 by task syz.1.1420/12353
[  426.018568][T12353] 
[  426.018579][T12353] CPU: 0 UID: 0 PID: 12353 Comm: syz.1.1420 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  426.018600][T12353] Tainted: [L]=SOFTLOCKUP
[  426.018606][T12353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  426.018615][T12353] Call Trace:
[  426.018620][T12353]  <TASK>
[  426.018626][T12353]  dump_stack_lvl+0x100/0x190
[  426.018643][T12353]  print_report+0x13d/0x4b0
[  426.018665][T12353]  ? __virt_addr_valid+0x239/0x430
[  426.018690][T12353]  ? fbcon_prepare_logo+0x94e/0xc60
[  426.018705][T12353]  kasan_report+0xdf/0x1d0
[  426.018721][T12353]  ? fbcon_prepare_logo+0x94e/0xc60
[  426.018739][T12353]  kasan_check_range+0x10f/0x1e0
[  426.018759][T12353]  __asan_memcpy+0x23/0x60
[  426.018780][T12353]  fbcon_prepare_logo+0x94e/0xc60
[  426.018799][T12353]  fbcon_init+0x1065/0x1830
[  426.018816][T12353]  visual_init+0x320/0x620
[  426.018834][T12353]  do_bind_con_driver.isra.0+0x636/0x9c0
[  426.018855][T12353]  store_bind+0x609/0x730
[  426.018876][T12353]  ? __pfx_store_bind+0x10/0x10
[  426.018894][T12353]  dev_attr_store+0x58/0x80
[  426.018912][T12353]  ? __pfx_dev_attr_store+0x10/0x10
[  426.018928][T12353]  sysfs_kf_write+0xf2/0x150
[  426.018951][T12353]  kernfs_fop_write_iter+0x3e0/0x5f0
[  426.018970][T12353]  ? __pfx_sysfs_kf_write+0x10/0x10
[  426.018993][T12353]  vfs_write+0x6ac/0x1070
[  426.019009][T12353]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  426.019030][T12353]  ? __pfx_vfs_write+0x10/0x10
[  426.019050][T12353]  ksys_write+0x12a/0x250
[  426.019066][T12353]  ? __pfx_ksys_write+0x10/0x10
[  426.019082][T12353]  ? rcu_is_watching+0x12/0xc0
[  426.019100][T12353]  do_syscall_64+0x10b/0xf80
[  426.019118][T12353]  ? clear_bhb_loop+0x40/0x90
[  426.019135][T12353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.019156][T12353] RIP: 0033:0x7fb41159cdd9
[  426.019170][T12353] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  426.019186][T12353] RSP: 002b:00007fb4124c3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  426.019201][T12353] RAX: ffffffffffffffda RBX: 00007fb411816090 RCX: 00007fb41159cdd9
[  426.019212][T12353] RDX: 000000000008083a RSI: 00002000000000c0 RDI: 0000000000000002
[  426.019221][T12353] RBP: 00007fb411632d69 R08: 0000000000000000 R09: 0000000000000000
[  426.019231][T12353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  426.019240][T12353] R13: 00007fb411816128 R14: 00007fb411816090 R15: 00007ffcef625df8
[  426.019255][T12353]  </TASK>
[  426.019261][T12353] 
[  426.019265][T12353] Allocated by task 5627:
[  426.019273][T12353]  kasan_save_stack+0x30/0x50
[  426.019287][T12353]  kasan_save_track+0x14/0x30
[  426.019299][T12353]  __kasan_kmalloc+0xaa/0xb0
[  426.019311][T12353]  kset_create_and_add+0x4d/0x190
[  426.019332][T12353]  netdev_register_kobject+0x1ef/0x3d0
[  426.019353][T12353]  register_netdevice+0x151c/0x24b0
[  426.019369][T12353]  veth_newlink+0x316/0xa00
[  426.019383][T12353]  rtnl_newlink+0x1499/0x2380
[  426.019397][T12353]  rtnetlink_rcv_msg+0x95e/0xe90
[  426.019412][T12353]  netlink_rcv_skb+0x159/0x420
[  426.019430][T12353]  netlink_unicast+0x585/0x850
[  426.019447][T12353]  netlink_sendmsg+0x8b0/0xda0
[  426.019465][T12353]  __sys_sendto+0x468/0x4b0
[  426.019485][T12353]  __x64_sys_sendto+0xe0/0x1c0
[  426.019497][T12353]  do_syscall_64+0x10b/0xf80
[  426.019514][T12353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.019528][T12353] 
[  426.019531][T12353] The buggy address belongs to the object at ffff88802ba9ac00
[  426.019531][T12353]  which belongs to the cache kmalloc-192 of size 192
[  426.019543][T12353] The buggy address is located 60 bytes to the right of
[  426.019543][T12353]  allocated 152-byte region [ffff88802ba9ac00, ffff88802ba9ac98)
[  426.019558][T12353] 
[  426.019566][T12353] The buggy address belongs to the physical page:
[  426.019573][T12353] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2ba9a
[  426.019588][T12353] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  426.019603][T12353] page_type: f5(slab)
[  426.019616][T12353] raw: 00fff00000000000 ffff88813fe2e3c0 dead000000000100 dead000000000122
[  426.019633][T12353] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  426.019641][T12353] page dumped because: kasan: bad access detected
[  426.019654][T12353] page_owner tracks the page as allocated
[  426.019659][T12353] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 16335978550, free_ts 13906437796
[  426.019684][T12353]  post_alloc_hook+0x153/0x170
[  426.019704][T12353]  get_page_from_freelist+0x11a6/0x33b0
[  426.019726][T12353]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  426.019748][T12353]  new_slab+0xa6/0x6c0
[  426.019765][T12353]  refill_objects+0x277/0x420
[  426.019785][T12353]  __pcs_replace_empty_main+0x375/0x650
[  426.019805][T12353]  __kmalloc_cache_noprof+0x493/0x6f0
[  426.019825][T12353]  call_usermodehelper_setup+0xaf/0x360
[  426.019840][T12353]  kobject_uevent_env+0x17c1/0x18b0
[  426.019853][T12353]  driver_bound+0x13e/0x220
[  426.019866][T12353]  really_probe+0x3d4/0xa60
[  426.019878][T12353]  __driver_probe_device+0x22e/0x480
[  426.019892][T12353]  driver_probe_device+0x4c/0x1b0
[  426.019905][T12353]  __device_attach_driver+0x1df/0x340
[  426.019919][T12353]  bus_for_each_drv+0x159/0x1e0
[  426.019938][T12353]  __device_attach+0x1e4/0x4d0
[  426.019951][T12353] page last free pid 10 tgid 10 stack trace:
[  426.019959][T12353]  __free_frozen_pages+0x747/0x1040
[  426.019977][T12353]  vfree+0x15f/0x8d0
[  426.019992][T12353]  delayed_vfree_work+0x56/0x80
[  426.020015][T12353]  process_one_work+0xa0e/0x1980
[  426.020028][T12353]  worker_thread+0x5ef/0xe50
[  426.020041][T12353]  kthread+0x370/0x450
[  426.020053][T12353]  ret_from_fork+0x72b/0xd50
[  426.020068][T12353]  ret_from_fork_asm+0x1a/0x30
[  426.020087][T12353] 
[  426.020091][T12353] Memory state around the buggy address:
[  426.020098][T12353]  ffff88802ba9ab80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[  426.020108][T12353]  ffff88802ba9ac00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.020118][T12353] >ffff88802ba9ac80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[  426.020126][T12353]                                                  ^
[  426.020134][T12353]  ffff88802ba9ad00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  426.020144][T12353]  ffff88802ba9ad80: 00 00 00 04 fc fc fc fc fc fc fc fc fc fc fc fc
[  426.020160][T12353] ==================================================================
[  426.044014][T12353] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  426.044035][T12353] CPU: 0 UID: 0 PID: 12353 Comm: syz.1.1420 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  426.044059][T12353] Tainted: [L]=SOFTLOCKUP
[  426.044065][T12353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  426.044075][T12353] Call Trace:
[  426.044081][T12353]  <TASK>
[  426.044087][T12353]  dump_stack_lvl+0x100/0x190
[  426.044108][T12353]  vpanic+0x552/0x970
[  426.044123][T12353]  ? __pfx_vpanic+0x10/0x10
[  426.044139][T12353]  ? fbcon_prepare_logo+0x94e/0xc60
[  426.044161][T12353]  panic+0xd1/0xe0
[  426.044175][T12353]  ? __pfx_panic+0x10/0x10
[  426.044190][T12353]  ? fbcon_prepare_logo+0x94e/0xc60
[  426.044206][T12353]  ? preempt_schedule_common+0x42/0xc0
[  426.044226][T12353]  check_panic_on_warn.cold+0x19/0x34
[  426.044242][T12353]  end_report.part.0+0x3a/0x90
[  426.044263][T12353]  kasan_report.cold+0xe/0x18
[  426.044283][T12353]  ? fbcon_prepare_logo+0x94e/0xc60
[  426.044301][T12353]  kasan_check_range+0x10f/0x1e0
[  426.044321][T12353]  __asan_memcpy+0x23/0x60
[  426.044342][T12353]  fbcon_prepare_logo+0x94e/0xc60
[  426.044361][T12353]  fbcon_init+0x1065/0x1830
[  426.044379][T12353]  visual_init+0x320/0x620
[  426.044397][T12353]  do_bind_con_driver.isra.0+0x636/0x9c0
[  426.044419][T12353]  store_bind+0x609/0x730
[  426.044440][T12353]  ? __pfx_store_bind+0x10/0x10
[  426.044458][T12353]  dev_attr_store+0x58/0x80
[  426.044475][T12353]  ? __pfx_dev_attr_store+0x10/0x10
[  426.044492][T12353]  sysfs_kf_write+0xf2/0x150
[  426.044515][T12353]  kernfs_fop_write_iter+0x3e0/0x5f0
[  426.044535][T12353]  ? __pfx_sysfs_kf_write+0x10/0x10
[  426.044557][T12353]  vfs_write+0x6ac/0x1070
[  426.044573][T12353]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  426.044594][T12353]  ? __pfx_vfs_write+0x10/0x10
[  426.044615][T12353]  ksys_write+0x12a/0x250
[  426.044631][T12353]  ? __pfx_ksys_write+0x10/0x10
[  426.044647][T12353]  ? rcu_is_watching+0x12/0xc0
[  426.044666][T12353]  do_syscall_64+0x10b/0xf80
[  426.044685][T12353]  ? clear_bhb_loop+0x40/0x90
[  426.044701][T12353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.044716][T12353] RIP: 0033:0x7fb41159cdd9
[  426.044730][T12353] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  426.044745][T12353] RSP: 002b:00007fb4124c3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  426.044760][T12353] RAX: ffffffffffffffda RBX: 00007fb411816090 RCX: 00007fb41159cdd9
[  426.044770][T12353] RDX: 000000000008083a RSI: 00002000000000c0 RDI: 0000000000000002
[  426.044780][T12353] RBP: 00007fb411632d69 R08: 0000000000000000 R09: 0000000000000000
[  426.044790][T12353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  426.044799][T12353] R13: 00007fb411816128 R14: 00007fb411816090 R15: 00007ffcef625df8
[  426.044815][T12353]  </TASK>
[  426.044887][T12353] Kernel Offset: disabled