last executing test programs:

11m13.005257117s ago: executing program 0 (id=655):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socketcall$auto_SYS_SOCKETPAIR(0x8, &(0x7f0000000040)=0x21)
r1 = syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NLBL_CIPSOV4_C_LISTALL(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="00002cbd2504000000080001000000000008000600974f42744ab6590f10340100000008000900551a0000080006000900000008000a00010000000000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
mmap$auto(0x0, 0x4020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x140, 0x0)
r3 = open(0x0, 0x161342, 0x130)
r4 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r5 = socket(0x10, 0x2, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
read$auto(r5, 0x0, 0x8)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYRESHEX=r2, @ANYRESOCT=r4, @ANYBLOB="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"], 0x1ac}, 0x1, 0x0, 0x0, 0x4010}, 0x40811)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x3}, 0x3, 0x0)
recvmmsg$auto(r5, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
r6 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r6, &(0x7f0000000140)={{0x0, 0xd473, &(0x7f0000000280)={0x0, 0xc4}, 0x6, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r4, 0xffffffffffdffe00, 0x0)
fchmod$auto(r3, 0xa)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x7)

11m11.977010307s ago: executing program 0 (id=660):
r0 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r0, 0x29, 0x5, 0x0, 0x568) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/auth.unix.gid/content\x00', 0x20000, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async)
mmap$auto(0x8, 0xe140, 0x3, 0xeb1, 0xfffffffffffffffa, 0xb) (async)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sysvipc/sem\x00', 0x60800, 0x0) (async)
r1 = socket(0xa, 0x80803, 0x6)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'vcan0\x00'})
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r2, &(0x7f0000000100)="c80d1b2338", 0xffffffffffffff3a) (async)
bind$auto(r1, 0x0, 0x1b) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_thermal(&(0x7f00000000c0), 0xffffffffffffffff) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/setgroups\x00', 0x28001, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
read$auto(r3, 0x0, 0x20) (async)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa) (async)
clone$auto(0x21, 0x80000007, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
sysfs$auto(0x2, 0x100000000000011, 0x0) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r5 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0)
fsopen$auto(0x0, 0x1)

11m11.45074104s ago: executing program 0 (id=661):
r0 = io_uring_setup$auto(0x9, &(0x7f0000000000)={0x3ff, 0x2, 0x1, 0x8c0, 0x1, 0x9, <r1=>0xffffffffffffffff, [0x9, 0xfffff801, 0x7f], {0x892, 0x0, 0x5, 0x800, 0xfffffffa, 0x0, 0x4, 0x9, 0x3}, {0x8, 0xfffffffa, 0x9, 0x6, 0x2, 0x80000000, 0x6, 0x4, 0x6}})
ioctl$auto_FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000080)="d574f37121c0aaf48efcbc3dbadf33a34bd9081e1c8900f34c54ec43e2e316f3ebd861c635524c523fc0a955a87c70bd79eac2e6674360864cef26f006dd875236d46dbb17e782d42b36f58f1356d7501bc9a4ec8774ca98b03fbaf6b19f4057e842bc940fd73d813f058a6c23ec5abc4fa236b42e5763f171757aba976dfbaf83652fc932c602fa600bb3b5ba76e249ca79920d7dbcead25b6ac1913461f6bd5e7e656ad557402675e93f3dc2deaefd5e538afa9cad35f31045c69bf5f67372")
r2 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000180), r1)
r3 = fcntl$getown(r1, 0x9)
sendmsg$auto_OVS_METER_CMD_SET(r1, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000380)={&(0x7f0000000200)={0x168, r2, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@OVS_METER_ATTR_BANDS={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0xa1, 0x0, 0x0, @fd}]}, @OVS_METER_ATTR_BANDS={0x11d, 0x4, 0x0, 0x1, [@nested={0x20, 0x4d, 0x0, 0x1, [@typed={0xc, 0x3f, 0x0, 0x0, @u64=0x7946045d}, @typed={0x8, 0x112, 0x0, 0x0, @pid=r3}, @nested={0x4, 0x124}, @nested={0x4, 0x138}]}, @generic="6dd85ce8bedb763e0201d6613427188fb1a56ed4b442ef50af12909b8a8f4ed1953cd2b1fe1dc4fb95d930ee737c4b329d2368d9934c3c84d87643dc4619be7bdaa76ec669ef1579968b1350a14d5f3fd9893e691190f1abcb72bbb06ca2b4ce91a0e5a55eed34c3b29c1784bdf94535adc00482f8105d0b674b96b351344790257af402a75ccd8fca510f81eed01470a830979844d4a46b117983c7f7d00545356119cea82d5548ede596a51daf164b25f2b76c858f0052d07e667d45438888a8134f858f4ae30367aabbb18d35cd66b7e1c37c2c14d3c4c6bd84d8300b2d4cd28100712f3fca0c50b3d2313d87616dc72980b97802ef00ba"]}, @OVS_METER_ATTR_MAX_METERS={0x8, 0x7, 0x2}, @OVS_METER_ATTR_USED={0xc, 0x5, 0x1ff}, @OVS_METER_ATTR_USED={0xc, 0x5, 0xfff}, @OVS_METER_ATTR_MAX_BANDS={0x8, 0x8, 0xffffffff}]}, 0x168}, 0x1, 0x0, 0x0, 0x8000}, 0x1)
syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000400), r1)
sendmmsg$auto(r1, &(0x7f0000000680)={{0x0, 0x1, &(0x7f0000000600)={&(0x7f0000000540), 0x9}, 0x4, &(0x7f0000000640), 0x9, 0x3c8}, 0x1000}, 0x0, 0x9)
sendmmsg$auto(r0, &(0x7f0000001780)={{&(0x7f00000006c0)="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", 0x0, &(0x7f0000001700)={&(0x7f00000016c0)="3fff70f12c732c61061a81ac712deaeeff189c25a11e2d15568a0fe05e676bd7effc07c1668120fd1a783ee7ce0148ade0dc6694ef", 0x8}, 0x4, &(0x7f0000001740)="990e4f2df88b9dbb4253b06a8b39331b009c5e", 0x1, 0x1}, 0x4}, 0x3, 0x17)
r4 = openat$auto_uprobe_profile_ops_trace_uprobe(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/tracing/uprobe_profile\x00', 0x20880, 0x0)
r5 = bpf$auto_BPF_BTF_LOAD(0x12, &(0x7f0000001800)=@raw_tracepoint={0x6, <r6=>r0, 0x0, 0x7}, 0x9)
prctl$auto_PR_SET_MM(0x23, 0x0, r6, 0x80000001, 0x4)
acct$auto(&(0x7f00000018c0)='/sys/kernel/debug/tracing/uprobe_profile\x00')
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000001a00)={&(0x7f0000001900)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000019c0)={&(0x7f0000001940)={0x50, 0x0, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_TSINFO_HWTSTAMP_PROVIDER={0x24, 0x7, 0x0, 0x1, [@ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x2}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x40}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0xa48}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_QUALIFIER={0x8, 0x2, 0x6}]}, @ETHTOOL_A_TSINFO_HEADER={0x4}, @ETHTOOL_A_TSINFO_HWTSTAMP_PROVIDER={0x14, 0x7, 0x0, 0x1, [@ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_TS_HWTSTAMP_PROVIDER_INDEX={0x8, 0x1, 0x10001}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4008010}, 0x80)
r7 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001a80), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r5, &(0x7f0000001b40)={&(0x7f0000001a40)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001b00)={&(0x7f0000001ac0)={0x1c, r7, 0x2, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4008080)
sendmsg$auto_NL802154_CMD_SET_ACKREQ_DEFAULT(0xffffffffffffffff, &(0x7f0000001cc0)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001c80)={&(0x7f0000001bc0)={0xac, r7, 0xb30, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0xfe}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, 0xfffffffffffffff8}, @NL802154_ATTR_PEER={0x7c, 0x28, 0x0, 0x1, [@nested={0x48, 0x22, 0x0, 0x1, [@generic="d6e13d3baa7e3cbc780cb88108a6f83bad7e19ddc17b05e33be9364fe439a25599a6e07824dda02d9e50833e062649db", @typed={0x14, 0x141, 0x0, 0x0, @ipv6=@mcast2}]}, @typed={0x8, 0xad, 0x0, 0x0, @ipv4=@broadcast}, @typed={0xc, 0x9f, 0x0, 0x0, @u64=0x4}, @typed={0x7, 0xf5, 0x0, 0x0, @str='@@\x00'}, @typed={0xc, 0x7d, 0x0, 0x0, @u64=0x5cf3}, @typed={0x8, 0x107, 0x0, 0x0, @fd=r0}]}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x8}]}, 0xac}, 0x1, 0x0, 0x0, 0x8000}, 0x40008000)
write$auto_fops_u32_(0xffffffffffffffff, &(0x7f0000001d00)="1cb95df454e19abc948536e9c6e907b05a270bc2ac1749c7fcf2f514e05c7577a6f351b3d084c0c73cf9eae1c089fed6c95ddf28b5c0865a36d1b83e1abca0df1261588f56534c5fc95f427c53eb4b3c62129cf4215ad39fb4a728730521da4cf845f1330d2917796e43", 0x6a)
shmctl$auto_IPC_RMID(0x0, 0x0, &(0x7f0000001ec0)={{0x9, <r8=>0xffffffffffffffff, 0xffffffffffffffff, 0x7ff, 0x100, 0x8, 0x95d}, 0x0, 0x0, 0x8, 0x8, @raw=0x8, @inferred=r3, 0x5, 0x0, &(0x7f0000001d80)="960b0a4b96b9c3ef45c01b229a4662b50e1884c65dafc04f8642ccfe7768ab2d9234b58f1b47e7b135f1353a278dab2f5a01d482b8bc5763a69af5b896ab9e06627219e396978632d043f7f6d9871e6b93da2d1d9f6f4b60fc", &(0x7f0000001e00)="59abc24623935ac697ef4e6a137cb25f14b28c017bc4c48fcea8fa70f1daa85c8d8120815a845d624775a25848b8680c4cfe643b697f3f554803905b531b45cc8e2f528174ad51bba48dca4ab6ed2865df3dad69961f799456836b18ed6b5c32bc246b24b30143916fbe987de0a7711024738e10b473e6b0b1794434ad8c027efb9b1e72a1b517aa676090a01e940f04f2588cc47d18f959dc5a399be059c5cc8fb3fd47"})
waitid$auto_P_PID(0x1, r3, &(0x7f0000001f40)={@siginfo_0_0={0x80000001, 0x8000, 0xa0a, @_sigchld={0x0, r8, 0xc33, 0xe, 0x2}}}, 0x10001, &(0x7f0000001fc0)={{0x9, 0x100000000}, {0x8, 0x4}, 0x0, 0x0, 0x0, 0x4e, 0x3, 0x6, 0xf, 0xfffffffffffffff7, 0x8000000000000000, 0x80000000000, 0x1, 0x9, 0x5, 0x2})
write$auto_nvmf_dev_fops_fabrics(r5, &(0x7f0000002080)="79481b62e628878670a61770f762e7ee89b903f8c775ac382de7073dde52339928954bd42e9949a7f415cf5dc62c0c5a5f882e0f65e2cc3ca70ef0ed94aaf96a7b502a7a107c33149aef292320c015de615496716369a53450bb863807c046", 0x5f)
mmap$auto(0x5, 0x3, 0x761d, 0x13, r4, 0x3)
setsockopt$auto_SO_PASSSEC(r1, 0x5, 0x22, &(0x7f0000002100)='\x00', 0x8d)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000002140)='/sys/bus/usb-serial/drivers/upd78f0730/new_id\x00', 0x0, 0x0)
gettid()
r9 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000021c0), r1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000002200)={'veth1_to_bridge\x00'})
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_CFG(r0, &(0x7f0000002340)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000002300)={&(0x7f0000002240)={0x7c, r9, 0x20, 0x70bd2a, 0x25dfdbfb, {}, [@ETHTOOL_A_PLCA_HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x101}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x48040}, 0x8050)
ioctl$auto_XFS_IOC_GETBMAPX(r0, 0xc0205838, &(0x7f0000002380)={0x43, 0x8, 0x0, 0x401, 0x8})
socketpair$auto(0xe, 0x0, 0x0, &(0x7f00000023c0)=0x3ff)

11m10.127320248s ago: executing program 0 (id=665):
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000)
sysfs$auto(0x2, 0x1f, 0x0)
r0 = socket(0x2, 0x801, 0x106)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$auto(r0, 0x11c, 0x2, 0x0, 0x0)
unshare$auto(0x8000000)
semget$auto(0x0, 0x2e4a, 0x8000)
semtimedop$auto(0x0, 0x0, 0x1f4, 0x0)

11m9.477620031s ago: executing program 0 (id=667):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r1 = openat$auto_fops_u32_(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/1/ethtool/ring/rx_max_pending\x00', 0x400, 0x0)
read$auto_fops_u32_(r1, 0x0, 0x0)
pwritev$auto(r0, &(0x7f0000000140)={0x0, 0x400000000001}, 0x5, 0x5, 0xd3b8)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/ram6/queue/max_hw_sectors_kb\x00', 0x80000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyu3\x00', 0x0, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TCFLSH2(r4, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(r3, 0x89f0, r3)
read$auto(r2, 0x0, 0x20)
ioctl$auto_SIOCGIFHWADDR2(0xffffffffffffffff, 0x8927, &(0x7f0000000380)="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")
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r5 = prctl$auto(0xbb, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x3, 0x20009, 0x4000000000df, 0x14, r5, 0x8000)
madvise$auto(0xfe7, 0x9, 0x3)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(r5, &(0x7f0000000340)={{&(0x7f0000000080), 0xffff, &(0x7f0000000200)={&(0x7f0000000140)="4e86ca325b00b93bbd8281e37986643cee1f8988610f877b5b2a07d0b2d18e60fc9fd0e68fadb3ebc2a10a65ebdb75894c430d4d5cbdb8fcd64ac0a8d7a9a4ff1165c506", 0x7}, 0x1, &(0x7f0000000240), 0x22a, 0x1}, 0x3}, 0x6, 0x4)
r6 = open(0x0, 0x595002, 0x408)
write$auto(r6, 0x0, 0xfffffdf1)
pwrite64$auto(r6, 0x0, 0x32e, 0x8)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66)
mprotect$auto(0x0, 0x8000000000000001, 0x8)
r7 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r7, &(0x7f0000000200)={0x0, 0x7}, 0x3)

11m6.223720297s ago: executing program 0 (id=676):
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x101440, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon33\x00', 0x204000, 0x0)
msgctl$auto_MSG_STAT(0xfb8, 0xb, &(0x7f0000000180)={{0x3, 0x0, 0xffffffffffffffff, 0x2, 0x2, 0x3, 0x400}, 0x0, 0x0, 0x0, 0x50, 0x9, 0x3, 0x40, 0x7fff, 0x10, 0x100, @raw=0xffffffff, @raw=0x4})
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0600", @ANYRES16=0x0, @ANYBLOB="010025bd"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='B'], 0x1ac}}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x4000, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x7, 0x4}, 0x9}, 0x7, 0x4008) (async)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x4000, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x7, 0x4}, 0x9}, 0x7, 0x4008)
syz_clone(0x5004000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r1, 0x4, 0x7ff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto(r2, 0x0, 0x1f40)
sendmsg$auto_NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x80010)
ptrace$auto_PTRACE_GETEVENTMSG(0x4201, r1, 0x10001, 0x5)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xc2801, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xc2801, 0x0)
mmap$auto(0x0, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x3d, 0x5)
fsopen$auto(0x0, 0x1) (async)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0xa, 0x0)
ioctl$auto_BLKPG(0xffffffffffffffff, 0x1269, 0x300) (async)
ioctl$auto_BLKPG(0xffffffffffffffff, 0x1269, 0x300)
openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40c0, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
unshare$auto(0x40000080)
r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r3, 0xc0109207, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r3, 0xc0109207, 0x0)

10m50.148215272s ago: executing program 32 (id=676):
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x101440, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon33\x00', 0x204000, 0x0)
msgctl$auto_MSG_STAT(0xfb8, 0xb, &(0x7f0000000180)={{0x3, 0x0, 0xffffffffffffffff, 0x2, 0x2, 0x3, 0x400}, 0x0, 0x0, 0x0, 0x50, 0x9, 0x3, 0x40, 0x7fff, 0x10, 0x100, @raw=0xffffffff, @raw=0x4})
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0600", @ANYRES16=0x0, @ANYBLOB="010025bd"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='B'], 0x1ac}}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x4000, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x7, 0x4}, 0x9}, 0x7, 0x4008) (async)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x4000, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x7, 0x4}, 0x9}, 0x7, 0x4008)
syz_clone(0x5004000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r1, 0x4, 0x7ff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto(r2, 0x0, 0x1f40)
sendmsg$auto_NL80211_CMD_SET_BEACON(0xffffffffffffffff, 0x0, 0x80010)
ptrace$auto_PTRACE_GETEVENTMSG(0x4201, r1, 0x10001, 0x5)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xc2801, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xc2801, 0x0)
mmap$auto(0x0, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0x400108, 0x3, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x3d, 0x5)
fsopen$auto(0x0, 0x1) (async)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0xa, 0x0)
ioctl$auto_BLKPG(0xffffffffffffffff, 0x1269, 0x300) (async)
ioctl$auto_BLKPG(0xffffffffffffffff, 0x1269, 0x300)
openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x40c0, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
unshare$auto(0x40000080)
r3 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r3, 0xc0109207, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r3, 0xc0109207, 0x0)

6m34.904481324s ago: executing program 4 (id=1628):
mmap$auto(0x0, 0x8004, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(r0, &(0x7f00000000c0)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f00000018c0)=@xdp={0x2c, 0x0, 0x0, 0x11}, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x21, 0x2, 0xa)
getsockopt$auto(r2, 0x110, 0xff, 0xffffffffffffffff, 0x0)
io_uring_setup$auto(0x82, 0x0)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xf9, 0xeb1, 0x401, 0x8000)
msync$auto(0x200000, 0x2000000005, 0x6)
r3 = getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0)
setsockopt$auto(r1, 0x1, 0x40, &(0x7f0000000200)='\x00\x89e\xad\x97\xc5E\xea=\x0f\xf4\xba4\x05>y/21\xfd\'\xc7\x1c\xaeV`\xc7^\x05\"H\xb8\x12\x99\x1fF\xdc\xc4\x02FV\x04D&9?\xa8d\xc97B\x9f)\xc6\xbb\x15_\xfd\xa5\xaf\xf8\xb8\x8a\x186\xa9\x0eY;\x9a\xe32T\xddn\xa6zK\xef\xf7\x04\x81\xb4\xb7;\x12\x1ch$\xbd\xd1x\x15\xa8\x9c\xba\x83\xa7\xbdwf8\xc03z|\xcd\xbc\xa1+8\xcet\x960\a\x80\x88!\x9e\x96\xcd\xb5dB\xc1L\xb2\xb1\xe6\xf9\x92\xd4\xcd\v0|G\xb7\xc3+\xb5\xa9\xb4E>ry\x8d(\xcb\xadaH<-h\xef8\x0678]`\x1f\xe5\\\x9c\xb4\xbd 6\x9fP\x16\xb5\xa1.;d\xf5F7TgT\x908=l\x89\x05\x03\xcb\x04\x9c\x0e\x04\xb5a\xe6\xa6\x13\xf8\xb2\xe1\xab\vI;\x10\xa7\xcc\x84\x1d\xff(\x1c\x99\x90M\xba\xfe\xaa\x8e\x83\x98\xbb8\xc3\x02\x8d(\xb0\x9c@n\xb7\xd3TF\xc7\x7f\x11\x9e\x00\x00\x00\x00\x00', 0x6)
mmap$auto(0xfffffffffffff1d5, 0x400008, 0x6, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
adjtimex$auto(&(0x7f0000000500)={0x3ffa34bb, 0x0, 0xfffffffffffffff8, 0xffffffffffffffff, 0x3, 0x9, 0x26ab, 0x0, 0x9, 0xa, 0x0, {0x9, 0x3}, 0x10, 0x5, 0xffffffffffffffff, 0x8, 0x0, 0x5, 0x200008, 0x8002, 0x51b, 0x3})
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/graphics/fbcon/rotate_all\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f0000000000)='3\xc7\xff\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xfc\xff', 0x9)
io_uring_register$auto(r3, 0x19, 0x0, 0x40001)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event2\x00', 0x8340, 0x0)
mmap$auto(0x0, 0x20009, 0x3, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0xf, 0x0)

6m34.299215993s ago: executing program 4 (id=1630):
ioctl$auto(0x4000000000000c8, 0x800454cf, 0xffffffffffffffff) (async, rerun: 32)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) (rerun: 32)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) (async)
r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
kcmp$auto(0x0, 0x0, 0xffffff1f, 0xffffffffffffffff, r1) (async, rerun: 64)
ioctl$auto_TCSBRKP2(r0, 0x5425, 0x0) (rerun: 64)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/mptcp/blackhole_timeout\x00', 0x1, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101802, 0x0) (rerun: 32)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000001ff, 0x9, 0xd3e, 0x20, 0x9687, 0x100000000000003, 0x3c2a19d5, 0x6, 0x3, 0x62, 0x8, 0x7, 0x6d3f, 0x6, 0xa, 0xfffffffffffffffe]}, 0x0) (async, rerun: 32)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x11, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x40000000000f, 0x1000, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x9, 0x7, 0x200000100103}) (async, rerun: 32)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd0\x00', 0x24000, 0x0)
ioctl$auto(r2, 0xab08, 0xffffffffffffffff)
r3 = socket(0x2b, 0x1, 0x1)
ioctl$auto(r3, 0x8982, 0x4) (async, rerun: 64)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_REQ_SET_REG(r4, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xd0, r5, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_WIPHY_NAME={0xa, 0x2, '^\\*](\x00'}, @NL80211_ATTR_MAC_HINT={0xad, 0xc8, "fc3ed0ece0e548e9435a3ca87880ab2dd712d6d9ff8b3f5837fecdd4585c4e6ab06d956ae1fd0ab42070b29db0f7fc7c1a0ac4720dea1ecd4df75c3e68d80a2a8b8c5366f8c6b40a2371d6445b7b8a395f25d2fe04b4ca2c485e0367b24eea488bfe58674279d1176486edc3702de54ab1e663696acfba6a6caef691d5224f4ffa6e6071bf4c4bb78b3cc1cfcf5d63fad8b53d4ed664cd0e1addfd5d5c6ffa7d541bd12c660b2383df"}]}, 0xd0}, 0x1, 0x0, 0x0, 0x40000010}, 0x4004040) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_DEL_PMK(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000427bd7000ffdbdf253d941f19e333e5426e6b14b48f5a011b27cfbc3f61c634fbf1b3dd68f5b5ffca4b220000"], 0x34}, 0x1, 0x0, 0x0, 0x24000800}, 0x40010) (async, rerun: 32)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/route\x00', 0x8a200, 0x0)
pread64$auto(r6, &(0x7f0000000540)='veth1\x00\xe0,\x17\xa0\xf7\x89Pl\x84K?\x01\x84\xa1i\xe00\x81p\xa0U \f\xdbP`:\xe2\'\xa7\xbf\xbd\x04\x18\xad\x90I^\x99M\xe0W\x14\x11\xf4\xeb\x90:\v\xc5\x13*\xfe\x90\xb1\xa9O\xa5\x05\xaa\x8fTi\xd6\x88Q\xda\xca', 0x200000000003, 0x8)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x7fffffff, 0x2, 0x8, 0xeb7, 0x7, 0x1) (async, rerun: 32)
r8 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0) (rerun: 32)
r9 = getpid()
sched_setscheduler$auto(r9, 0x1, &(0x7f00000019c0)={0x40}) (async)
ioctl$auto_BLKPG2(r8, 0x1269, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

6m33.711676967s ago: executing program 4 (id=1632):
mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, 0x0)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000001080)="7a47301037954c081c9a0bb04ef84993eab91abe1686f43e43d786e91365f04455bd620de9f3fb6d25e6c078c1a672c549dbc7876cb528ba081a81d884bfc00dd4eef57cedc0cc3756ff6a5b0aa8ba9511fe2b07c6e7f4732fe36ba259b12a0db9acf178c9182899f8360960a04ab85d23de405dad1c35058e30a98cc936ec82e442659cbfa3d11ff0a4e108dcfd7cec18e4f0c89ece6879d06808e003d602efa44c84360582e36aac42dab90d72")
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x24000050)
ioctl$auto(r0, 0xf6e, r2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x242e40, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS0\x00', 0x1, 0x0)
unshare$auto(0x40000080)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000001140)='/dev/sg0\x00', 0x1c403, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r4, &(0x7f0000000040)=""/4096, 0xfffffe82)
inotify_add_watch$auto(r3, &(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
read$auto(0x3, 0x0, 0x8080)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000001040)='/dev/ttyy5\x00', 0x400, 0x0)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r5 = getpid()
r6 = syz_open_procfs$namespace(r5, &(0x7f0000000080))
fchdir$auto(r6)
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, 0x0)

6m31.230772897s ago: executing program 4 (id=1636):
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x23, 0x0)
r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r0, 0x0, 0x4)
openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x2482, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match\x00', 0x20080, 0x0)
getsockopt$auto_SO_NETNS_COOKIE(0xffffffffffffffff, 0x7, 0x47, &(0x7f0000000080)='-\xc8\xa5\x83\x1c\xe0\x8a\xeb\xcc\xfb\xa8\xe3k\b/*\xa7dev/audio1\x00q>l.  <\xb0', &(0x7f00000001c0)=0x5)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
pwrite64$auto(0xc8, 0x0, 0x3, 0x3a)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
lstat$auto(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x101840, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000400)='/dev/fb0\x00', 0x1, 0x0)
ioctl$auto_FBIOGETCMAP(r3, 0x4604, &(0x7f0000000440))
bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f0000001040)=@batch={0xfffffffffffffffb, 0x5d, 0x6, 0x2, 0xa4, r1, 0xcb69, 0xa4}, 0x8)
syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r2)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, 0x0, 0x90)

6m29.333041164s ago: executing program 4 (id=1643):
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000)
mmap$auto(0x4, 0x8004, 0x4000000000df, 0x100040eb5, 0x401, 0x300000000000)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vivid.0/video4linux/video62/dev\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000001140)=""/4093, 0xffd)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x82202, 0x0)
r2 = io_uring_setup$auto(0x1, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0)
pread64$auto(r4, 0x0, 0x392, 0x8)
arch_prctl$auto_ARCH_MAP_VDSO_64(0x2003, 0x3)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000040), 0x200080, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x1400, 0x0, 0x80}, 0x20000084)
read$auto(0xffffffffffffffff, 0x0, 0x4)
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000140), r0)
sendmsg$auto_NL802154_CMD_TRIGGER_SCAN(r2, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x60, r5, 0x0, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x4}, @NL802154_ATTR_SEC_DEVKEY={0x39, 0x2f, 0x0, 0x1, [@generic="5fac4eee2b85b4d9e799e7f3ab7a668a00c47e71a0221fc807dd26f077a90c577da1b10ceb872b8247d340be9272f699ba5ea6e4c6"]}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x8000}]}, 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x4008000)
close_range$auto(0x2, 0x8, 0x0)
mremap$auto(0x9, 0x3ff, 0x5d, 0x80000000, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS2\x00', 0x101e81, 0x0)

6m27.239626033s ago: executing program 4 (id=1647):
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc)
r1 = ioctl$auto_NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
pread64$auto(r0, &(0x7f0000000100)='$(&]\x00', 0x7fffffff, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r2=>0x0})
bpf$auto_BPF_OBJ_PIN(0x6, &(0x7f0000000000)=@bpf_attr_3={0x493a, 0x5, 0x6, 0x9, 0x4, 0x7, 0x7fff, 0x2, 0x100, "d04a08f7f3a35aa153f1dc18f060d996", r2, 0x2, r1, 0x0, 0x3, 0x0, 0xc, 0x8000, 0x40, 0x9, @attach_prog_fd=r1, 0x8, 0x7fffffffffffffff, 0x0, 0x0, 0x8, r1, r1}, 0xb)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r3 = socket(0x2b, 0x1, 0x1)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x7, 0x0)
setsockopt$auto(r3, 0x0, 0x27, 0x0, 0xc)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket(0x2a, 0x2, 0x1)
connect$auto(r4, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x1, 0xfffffffe}, 0x55)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10002}, 0x1)
close_range$auto(0x2, 0xa, 0x0)
getpgid$auto(0x0)
getpid()
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
move_pages$auto(r5, 0x81, &(0x7f00000001c0)=&(0x7f0000000140)="31bae4a8a4f4ad611dcee9894335669fad876db7538d81402a2497b004c9f75fabcd8c452e9075b508fe03f53152acadb09ad2353debebfaeaacd0a23b1e6a8b01e3104de6ae4dac89a34735780aa0dcf5f1", &(0x7f0000000200)=0x4, &(0x7f0000000240)=0x1000, 0x101)

6m12.051653152s ago: executing program 33 (id=1647):
r0 = socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc)
r1 = ioctl$auto_NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
pread64$auto(r0, &(0x7f0000000100)='$(&]\x00', 0x7fffffff, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r2=>0x0})
bpf$auto_BPF_OBJ_PIN(0x6, &(0x7f0000000000)=@bpf_attr_3={0x493a, 0x5, 0x6, 0x9, 0x4, 0x7, 0x7fff, 0x2, 0x100, "d04a08f7f3a35aa153f1dc18f060d996", r2, 0x2, r1, 0x0, 0x3, 0x0, 0xc, 0x8000, 0x40, 0x9, @attach_prog_fd=r1, 0x8, 0x7fffffffffffffff, 0x0, 0x0, 0x8, r1, r1}, 0xb)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r3 = socket(0x2b, 0x1, 0x1)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x7, 0x0)
setsockopt$auto(r3, 0x0, 0x27, 0x0, 0xc)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = socket(0x2a, 0x2, 0x1)
connect$auto(r4, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x1, 0xfffffffe}, 0x55)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10002}, 0x1)
close_range$auto(0x2, 0xa, 0x0)
getpgid$auto(0x0)
getpid()
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
move_pages$auto(r5, 0x81, &(0x7f00000001c0)=&(0x7f0000000140)="31bae4a8a4f4ad611dcee9894335669fad876db7538d81402a2497b004c9f75fabcd8c452e9075b508fe03f53152acadb09ad2353debebfaeaacd0a23b1e6a8b01e3104de6ae4dac89a34735780aa0dcf5f1", &(0x7f0000000200)=0x4, &(0x7f0000000240)=0x1000, 0x101)

10.413299567s ago: executing program 3 (id=2788):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x8000400)
socket(0x2b, 0x1, 0x0)
r0 = socket(0x10, 0x2, 0xf)
bpf$auto(0x0, &(0x7f0000000680)=@bpf_attr_4={0x1e, r0, 0x24000000, <r1=>r0}, 0x210)
socket(0xa, 0x6, 0x40009)
io_uring_setup$auto(0x1, 0x0)
sendfile$auto(r1, 0x3, 0x0, 0x9)
close_range$auto(r1, r1, 0xfffffffc)
io_uring_setup$auto(0x6, 0x0)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x25e782, 0x0)
write$auto_sg_fops_sg(r2, &(0x7f0000000240)="4a0200000000040000000000000000000700924d1b3c5d2e00000000fdd2adc245a4fe3a61af156016d2e122228118b035ab6f7e46cbe922896e7e796fec3370fd6cf2d0", 0x44)
r3 = socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@nl=@proc={0x10, 0x0, 0x25dfdbfd, 0x1000000}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r4 = clone$auto(0x5, 0x40e, &(0x7f0000000000)=0xd, &(0x7f00000001c0)=0x1b56, 0x5)
rt_sigqueueinfo$auto(r4, 0x1, &(0x7f0000000200)={@_si_pad})
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x4, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x5, 0x7}, 0x8}, 0xffffffff, 0xb00)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
setresuid$auto(0xee01, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)
getpid()
setreuid$auto(0x0, 0x0)
r5 = waitid$auto(0x4, 0xffffffffffffffff, &(0x7f00000004c0)={@_si_pad}, 0x2, &(0x7f0000000540)={{0xb6, 0x3}, {0x8000000000000008, 0x8}, 0xd6, 0x4, 0x3, 0x8, 0x100000001, 0x2, 0xfffffffffffffffb, 0x4000000000000, 0x9, 0xffffffffffffffff, 0xfffffffffffffe01, 0x1001b5, 0x8, 0x6})
r6 = getpid()
ioctl$auto_BLKTRACESETUP(r3, 0xc0481273, &(0x7f00000000c0)={"71cd3b3e06b64a0380470d518d74c8428510b56d831b1394f3ec720f66085f6e", 0xfff9, 0x8, 0x401, 0x7, 0x5, <r7=>r5})
rt_tgsigqueueinfo$auto(r6, r5, 0x4, &(0x7f0000000140)={@siginfo_0_0={0x3, 0x92, 0x23c82843, @_timer={r7, 0x100, @sival_int, 0xff}}})
r8 = geteuid()
waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000600)={@siginfo_0_0={0x6, 0xfffffffc, 0x6, @_sigchld={r7, r8, 0x3, 0x1ff, 0xbb}}}, 0x9, &(0x7f0000000300)={{0xe30, 0xffffffff7fffffff}, {0x400000000000672, 0x300}, 0x69, 0x9, 0x7ca, 0x800000003, 0x281, 0xe2d, 0x0, 0x3, 0x7, 0x7, 0xffffffffffffffff, 0x1, 0x1f35, 0x5})
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x101202, 0x0)

9.065472237s ago: executing program 1 (id=2793):
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=@bpf_attr_7={@map_id=0x3ff, 0x2, 0x10000, <r0=>0xffffffffffffffff}, 0xac)
r1 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r1, 0x29, 0x37, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110)
setsockopt$auto(0x400000000000003, 0x29, 0x39, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
statmount$auto(&(0x7f0000000000)={0xfffffff9, @raw=0x7fffffff, 0xd, 0x7, 0xc}, &(0x7f0000000140)={0xfffff665, 0x0, 0x1, 0x7, 0x2, 0x1, 0xa, 0x6, 0xa9, 0x5, 0x3, 0xff, 0x9, 0x4e, 0x2, 0x5, 0xdf4e, 0x6, 0x6, 0x8000000000000001, 0x6, 0x7, 0x9, 0x5, 0x8, 0x9, 0x7, 0x7ff, 0x3, 0x2, 0x0, [0x8e, 0x6, 0x4, 0x5, 0x2, 0x0, 0x0, 0xfff, 0xffffffffffffff43, 0x6, 0x42d, 0xc813, 0x3, 0x8, 0xffffffff, 0x4f, 0x100000000, 0x5, 0x3, 0x200, 0xfff, 0x2, 0xaf, 0x1ff, 0x0, 0x9, 0x4, 0x7, 0x7, 0x9, 0x0, 0xf, 0xffffffffffffffff, 0x80000000, 0x7, 0x9, 0xffff, 0xfffffffffffffff9, 0x7, 0x7, 0xffffffffffffffff, 0x7d, 0x8000000000000000], "5ff53d84e3cb59b9000dbee1da3e1e5373e462f7fa0fb67b70505bfd05cb453185037ca541bbc95bc99b78be1232a4450b39a98c39e4117f267a6257ae9106337c8092f5a034af2963619d642c5cb3a08750e8bb87a32df2b4d9cd38119e72443c5d973a488441ad3bb2cd9d257aa035473a5c3af44e11e67f0bbc10fc6c6bf003fdd595076a98022a18"}, 0x783, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r2 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
fchdir$auto(r2)
read$auto_posix_clock_file_operations_posix_clock(r2, &(0x7f0000000400)=""/206, 0xce)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000540), r0)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa902, 0x0)
write$auto(r4, &(0x7f0000000400)='.G\x1f*@sy\b\x00\xe7\xc9 \x8f\x10!\x11\xd4\x9by\xa8\xb2\x89c\xf8\xc41\xd4\x0f\x82\x8d\xd2\x04\x0f\xf6\xa0\xf7,O\x1d\t8\xb9H\xd5\xc4\xbb\x8f\x13\x94%\xcc\x0e\x9eT\xc1}+\x02J\xb9\x80\xe7\xb3<\x9a\xf1B\x13\xb7P\x9b\xce~\xff&zQ\xa8\x97\n\xb2\xf7\x15Z\x05\x8c\xd4r\xca\x954\xdd3\xf9\xa3\x1e#,\xb7\xd2\xa6\x8d\x13\xd0\xf0\x14\x9a\xfa\xed\x9d\xa1\x98P.\'\xccA\x8b\xff\x82\xf8\xc3\xa9\xb6\xc3\x80E\xfc\xe3\xc6\x8d\xb8uh\x9f\xd1\xda?\xdc:\xbd\x15X%\x84\xd2yL\x05\xaeV$\xda\xcd\xa1}_\xe0\x9c\x87\xaa\xa1\x1f\x93(\x96}\"sU.2\x1e\xb8\x01U\x8f\x19A\x99\xcf\xd98\xaa\x8bqC\xbb\xa9\xe5\x7f]L\xca\xa2\x9b\x92ZYE\xd2\xe1<4\x9c\x85\x04\x86l2\x8e\xb2\x9e\b\x00\x00\x00\x00\x00\x00\x001\xb2\x1c\xac@\x16\xb3sn\xec\r\x11J*\xbb\xd6\xde\x86v\x83T\xb1\xae\x91{_\xd7JK\xda\x01i\xc9\xe89\x17\xaf\x03j5\r\xce\a\x1dl/\xc6!m\x9c\x05G<\xc4P\r\x00u\xe8\x9e-\xd1\x03}=h\x84\xd8\xf2\xad\xf5\xb5\xb0\xe9\xbe\xa3# \xc0\xf5\x13;\xc5\xf0\xeb\xe2\'\x9f`\x89\xa8,d\xa6\x1dq\x16X\xbc\x88\xc2\x9b\x00\x00\x00\x89S\xaa\n\xc3F\xd7\xf2u\xd1\x84\xcbb\xb4\xd6\xf4\x8d\xccY\xac\xe1\n\xd2\x90\f)0\x9d}s%\xbb0\xa2\x0f\xe9\xf0\xd2\xbd\xdf\x1b\x89b\xa2\xc1\xae\xfa\xe7\xc0r\xbb\xed\xb8\x80\x81&\xf2\x1e*>\xd3S\xeb\xfb,=\xa5\xd6\tc4\xa3\r-j\xfa\xb1\x86\xb67\x01c\xe8:\x82\xea1\xcf\xf4D\xe0\x05\a%8\xde\xfd{:\x1b39\xa2\x91\xb2\x9a.\x88\xd7\xa5Kn?Q\xdeJH6\xcd\x00\xe8R\x82\xe4\xa7\xed\x15\x8c.\x94\xd2\xd4\xa5\xb2\xb1\xd5\xa1r\x8f\xea\xc8+\x1b[\xaepv\x89D\xef\n)9nR\xc8\x82HyI\xe3IHo\x85}I\x8b\xa3\x8c\x1f\xcb\x8d\xa1Z\xf9\x0e\xbd\x91h\xbf|Ui(\x96\xc8\xf9\x9a\a8\x182\n#xQn\x96V $\x9f0+\xae\xf0k\x15\x18\'\xd0\xc9\x9cD:,\xa9\xc1\xf4\xce\xeekzSR\xa3\x94\xc79\xe7yf\'\x95\xb9\x02d\xbbX\x17\x9d\f\xcd(\x9a#U\x99\xa0n', 0x1)
sendmsg$auto_NL802154_CMD_SEND_BEACONS(r0, &(0x7f00000009c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000980)={&(0x7f0000000580)=ANY=[@ANYBLOB="ec030000", @ANYRES16=r3, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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"], 0x3ec}, 0x1, 0x0, 0x0, 0x4000}, 0x4000008)

7.985378187s ago: executing program 1 (id=2794):
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x100000000008000)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)={0x1c, r2, 0xb01, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000050}, 0x240088e4) (async)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)={0x1c, r2, 0xb01, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000050}, 0x240088e4)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/block/nbd4/queue/zone_write_granularity\x00', 0xa140, 0x0) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/block/nbd4/queue/zone_write_granularity\x00', 0xa140, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000140)=""/122, 0x7a)
r5 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r5, 0xffffffff5fdffe00, 0x0)

6.961001829s ago: executing program 1 (id=2797):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x4, 0xffffffffffffffff, 0x4, 0x2a)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x59d640, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r1, 0x7ffd)
mprotect$auto(0x1000, 0x401000, 0x4)
mmap$auto(0x0, 0x202100a, 0x5, 0xfffffffffffffffb, r0, 0x2)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0)
rt_sigsuspend$auto(0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x8000000000000001, 0x7, 0x4, 0x9b72, r1, 0xf38)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x80201, 0x0)
mmap$auto(0x0, 0x7, 0x3, 0xeb1, r0, 0x7ffd)
ioctl$auto_BLKALIGNOFF(r0, 0x127a, 0x0)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
unshare$auto(0x6)
clock_nanosleep$auto(0x2, 0x6, &(0x7f0000000840)={0x0, 0xc025}, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ovs_packet(0x0, 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0x400c800)
mmap$auto(0x8000, 0x5, 0xfffffffffffffe01, 0x8011, r0, 0x7ffd)

4.862754189s ago: executing program 3 (id=2801):
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x4, 0x8004)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000140)='-h\xd2i>\xcef1\xdeF\t\x85^!D\n\xf4~\xc8\xdc\xa5\x94\xc5K=\xaa!\xd9-evO+\xdd\xce!\x8cE\x04\t\xf8\x00\f\xe6\xba\n\xfe\xc5?\a\xa7\x1b\x0e\x13\xa8\xba\x10\xd9\x9b\f\xc9\xc8~\xfb\xd8\x92\x10\x8d\x93f\x836/\xee\xf5\x10\xf3rk\xc1^$\x91\x84\xe3\xa8{+ui\xa7O*\xdd=\xfdr\xb9\t\x005\x00\x00\xbf\x1feX*J\xeb\xf6\xc4\n\xce\xf0\xf4\xc4\xce\xc2=I\\8,\xf4\x9a\x17\xc3t;E\x146\xc3!\x9e\x05\x05\x84\x1f\xe4\x06', 0x80080005, 0x401)
sendmsg$auto_NETDEV_CMD_PAGE_POOL_GET(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYRESOCT, @ANYBLOB="4d481447c1abec4cf368cdb59b8fed629dc4df46978d8836368d9ff7e3158ae26a5770942736306a6beed1fdf8d97782e65249e14796c0c2f16027eed90a0aad47d7135cb9a38038e250a93a1d76f69821ae13deaebd3ca43d593769ea38d8538948474ed9c9736a50a98c38afc89bbc6cbd661a41c15a4bedc33c8b", @ANYRES8=0x0], 0x2c}, 0x1, 0x0, 0x0, 0x48000}, 0xd0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x48080)
r0 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/prev\x00', 0x101002, 0x0)
write$auto_proc_pid_attr_operations_base(r0, 0x0, 0x0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYRES32=r0, @ANYRES32], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

4.636971543s ago: executing program 3 (id=2802):
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
futex$auto(0x0, 0x204, 0x3, 0x0, 0x0, 0x7d)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(r0, 0xa, 0x0)
socket(0xa, 0x1, 0x84)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D1\x00', 0x90800, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setsockopt$auto_SO_RCVPRIORITY(r2, 0x0, 0x52, 0x0, 0x80000000)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000380), 0x20000, 0x0)
socket(0x28, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x800, 0x3, 0xff, 0x10001, 0x400000000003, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x80000000, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
write$auto(0x3, 0x0, 0x7fffffff)
ioctl$auto_NS_GET_NSTYPE(0xffffffffffffffff, 0xb703, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14)
socket$nl_generic(0x10, 0x3, 0x10)

4.373538231s ago: executing program 2 (id=2803):
timer_create$auto_CLOCK_TAI(0xb, 0x0, &(0x7f0000000fc0)=0xa)
mmap$auto(0x800003, 0x38, 0xdf, 0x2a0000000010, 0x401, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000340)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88d\x11\x00\x00\x00\x00\x00\x02\x83\x02\xba\xae\xb8-\x14\xe4\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\x00\x9f\x1e\xf6\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9\xc5\x93\x1dD\x811\xb9_\xdd*j\xfd\xeb\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;\x9e\x83\x120\x81\x11\x9a?g`sFh\x00\x00\xda,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xdex\xd8\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/228, 0xfdef, 0x2)
openat$auto_dfs_dom_ops_debugfs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async, rerun: 32)
unshare$auto(0x40000080) (async, rerun: 32)
write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x00\x01_\x9e\x99:R\xcc\x96\b\'\x02\xb0\x93l\xeb\x87\r\b\x87\x14\xf8e6\x9c%\xb6\x9a\\S\xa2(Q\xcc', 0x7f) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) (async)
r1 = socket(0x6, 0x2, 0x3a)
setsockopt$auto(r1, 0x29, 0x49, 0x0, 0x4) (async)
write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
ioctl$auto(0xffffffffffffffff, 0x5646, 0xffffffffffffffff) (async, rerun: 64)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async, rerun: 64)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
madvise$auto(0x0, 0xe, 0x7fff) (async, rerun: 64)
mmap$auto(0x91, 0x400007, 0xde1, 0x9b72, r1, 0x0) (rerun: 64)
madvise$auto(0x400000005, 0x10d3, 0x4) (async, rerun: 64)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async, rerun: 64)
r2 = socket(0x2c, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000280)={'dummy0\x00'}) (async)
bind$auto(r2, &(0x7f0000000140)=@rc={0x1f, @any, 0xd}, 0x6b)
setsockopt$auto(0x3, 0x10, 0xbe, 0x0, 0xf142)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000003f40)=""/156, 0x9c) (async)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2401, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0) (async)
write$auto(0xffffffffffffffff, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb\xe4\x0f\xfd\xd8\xbe\xbc\xcfQ\xfd\xb7\xeb\xb3\x99|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcdz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[O\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf\x00\x00\x00\x00\x00\x00', 0xb) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000080), r3) (rerun: 32)
sendmsg$auto_OVS_VPORT_CMD_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="f0b860af101e12e3cc1066d8bfe035de3c37f5263367d76c5338f49e8a33d6ba5070f6", @ANYRES16=r4, @ANYBLOB="000427bd7000fddbdf250300000008000800", @ANYRES32=0x0], 0x1c}, 0x1, 0x0, 0x0, 0x40081}, 0x40040) (async)
openat$auto_transaction_log_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transaction_log\x00', 0x782, 0x0)

4.199356601s ago: executing program 3 (id=2804):
unshare$auto(0x40000087)
unshare$auto(0x40000080)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0xa200, 0x0)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
socket(0x2, 0x3, 0x100)
madvise$auto(0x7, 0x6, 0x7)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x4048000)
r1 = socket(0x2, 0x1, 0x106)
sendmsg$auto_NL80211_CMD_GET_POWER_SAVE(r1, &(0x7f00000017c0)={0x0, 0x0, &(0x7f0000001780)={0x0}, 0x1, 0x0, 0x0, 0x40080}, 0x20000800)
setsockopt$auto(r1, 0x6, 0x2, &(0x7f0000000080)='\x00\x00C\x80\'\xf9\xc4\xf5W_\xa2\x00\x05\x00\x00\x00\f\x8a\x7f\xcf\x9d\xc4ZrAF\xc7\xeeV\xda\x8ex\x1d\xddzL\xba\xc11\xc6\x1c\xe2\xe9\xbb,\x80\xd3\xcc\xf8\xd5h\xf7S\x81r[\xc8\xf1w \x95V?K\xf2\xd0\x02A\xf020\xe1\xd5^\xa8\xa9\xa0\xd5\xfa\x17I\x17\xf5\xdc\xb8\x1bt\xfc\xd9Ei5l\xef\xfbs\x04\xa0\xd8\x94E\b~\xd9\xbb\xeb\xc7\xfe\xe7\xde)\xc4r\x89\x03\xe0;\xa7\x1d+\xd5\x94N\xf4>-\xe3\xd3\x8d\xc7\xa4*\x96\xf7', 0x9)
socket(0x10, 0x2, 0x4)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
mount$auto(0x0, &(0x7f00000001c0)='}[,&*}\x00', 0x0, 0x7fff, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0xa6)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r2, &(0x7f0000003900)='\t', 0x1)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
read$auto(r3, 0x0, 0x20)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb0, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x9, 0x2, 0x8000000000000000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
semtimedop$auto(0x8000000b, 0x0, 0x3, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptysd\x00', 0x20885, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyre\x00', 0x109000, 0x0)
select$auto(0x8, 0x0, 0x0, &(0x7f0000000200)={[0x8000000000c, 0xffffffffffffff4b, 0x2, 0x15, 0x7fffffffffffffff, 0x1, 0x9, 0x5, 0x8, 0x40000000000000, 0x3, 0x6, 0xfffffffffffffffa, 0xab, 0x2, 0x4]}, 0x0)

3.480013146s ago: executing program 5 (id=2807):
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/mnt\x00') (async)
write$auto(0xca, &(0x7f0000000140)='\x04\x0e\x06\xd5\x89|d\v\x00\x00@\x00\x81\x00\x00\x00\xf6\xf5\x00\xdf\xff\x00', 0x10)
mmap$auto(0x402, 0x5, 0x3, 0x80000000000ff, 0xffffffffffffffff, 0x7fff) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
sysfs$auto(0x0, 0x2003c, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/loop8/queue/scheduler\x00', 0x808040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001100)=""/4105, 0x1009)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x3, &(0x7f0000000000)='Q**\x00', &(0x7f0000000040), 0x0)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCR(0xffffffffffffffff, 0x0, 0x40) (async)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
madvise$auto(0x800000000004, 0x8000000000000001, 0xc180) (async)
unshare$auto(0x20000080)
syz_clone3(&(0x7f0000000300)={0x28020400, 0x0, 0x0, 0x0, {0x35}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x43102, 0x0) (async)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/security/tomoyo/query\x00', 0x42e01, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x2000c8c0) (async)
memfd_secret$auto(0x9) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
setrlimit$auto(0x9, 0x0) (async)
mremap$auto(0x110c231000, 0x4, 0x4, 0x7, 0x100000000) (async)
madvise$auto(0x110c230000, 0x1, 0x9) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000000000007ffe) (async)
io_setup$auto(0x7ffe, 0x0) (async)
unshare$auto(0x40000080) (async)
write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, &(0x7f0000000000), 0x0) (async)
close_range$auto(0xffffffffffffffff, r2, 0x2000)

3.235225815s ago: executing program 5 (id=2808):
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x161782, 0x0) (rerun: 64)
write$auto(r0, 0x0, 0x80000000)
getrlimit$auto(0x3, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0) (async, rerun: 32)
write$auto_dfs_global_fops_debug(0xffffffffffffffff, &(0x7f0000000d80)='0', 0x1) (rerun: 32)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000000)={{0x0, 0x2, 0x4, 0x1, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"}) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
waitid$auto_P_PID(0x1, 0x0, 0x0, 0x0, &(0x7f0000000240)={{0x2, 0x34}, {0x9c, 0x3}, 0x779c, 0x3ff, 0x2, 0x0, 0x8, 0x8a, 0x3, 0x1, 0x100, 0x6, 0x5, 0x47, 0x80000000, 0x40000}) (rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x4402, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000540)=ANY=[@ANYBLOB="20340200", @ANYRES16=0x0, @ANYBLOB="010028bd7000fbdbdf25690000000a004e014039979607aa0000"], 0x20}, 0x1, 0x0, 0x0, 0x24004001}, 0x20040004) (async, rerun: 64)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x1e, 0x4, 0x0) (async)
r3 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0) (async)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14) (async)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
recvmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc2}, 0x1, 0x0, 0x0, 0xc}, 0x7}, 0x3, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (rerun: 64)

2.365981306s ago: executing program 1 (id=2809):
socket(0x2, 0x5, 0x0) (async)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) (async)
sched_setscheduler$auto(0x0, 0x5, &(0x7f0000000040)={0x2})
mmap$auto(0x914, 0x20009, 0x8004000000000df, 0x15, 0xffffffffffffffff, 0x8000) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
io_uring_setup$auto(0x5b, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/sit0/statistics/tx_compressed\x00', 0x80000, 0x0) (async)
ustat$auto(0x801, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x40008000) (async)
r2 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0x4038ae7a, r1) (async)
bpf$auto(0x0, &(0x7f0000000280)=@task_fd_query={0x2, 0x4, 0x3, 0x2001, 0x400, 0xc, r0, 0x400000000e, 0x3}, 0x6f4) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0x11, 0xffffffffffffffff, 0x8003)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x2, 0x2, 0x16, 0x602, 0x8) (async)
madvise$auto(0x0, 0x20499d, 0x9) (async)
syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) (async)
read$auto_ptdump_curknl_fops_(r4, &(0x7f0000000180)=""/55, 0x37) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000500)='/dev/bus/usb/014/001\x00', 0x201, 0x0)
ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r5, 0x8108551b, 0x0) (async)
ioctl$auto_USBDEVFS_IOCTL32(r5, 0xc00c5512, 0x0)

2.074148401s ago: executing program 5 (id=2810):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0xa, 0x801, 0x84)
r1 = getsockopt$auto(r0, 0x84, 0x82, 0x0, &(0x7f0000000300)=0x1000c)
r2 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0xde, 0xeb1, 0x405, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x34000}, 0x7, 0x0, 0x2, 0xa}, 0xfff}, 0x5, 0x311)
r3 = socket(0x1e, 0x4, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000db, 0x40eb1, 0x401, 0x300000000000)
ioctl$auto(r3, 0x2, 0x4)
fcntl$auto(r1, 0xf, 0x0)
r4 = socket(0x848000000015, 0x2, 0x10)
syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000180), r4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
socket(0xa, 0x801, 0x84) (async)
getsockopt$auto(r0, 0x84, 0x82, 0x0, &(0x7f0000000300)=0x1000c) (async)
socket(0x2, 0x5, 0x0) (async)
mmap$auto(0x0, 0x20009, 0xde, 0xeb1, 0x405, 0x8000) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x34000}, 0x7, 0x0, 0x2, 0xa}, 0xfff}, 0x5, 0x311) (async)
socket(0x1e, 0x4, 0x0) (async)
mmap$auto(0x0, 0x4, 0x4000000000db, 0x40eb1, 0x401, 0x300000000000) (async)
ioctl$auto(r3, 0x2, 0x4) (async)
fcntl$auto(r1, 0xf, 0x0) (async)
socket(0x848000000015, 0x2, 0x10) (async)
syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000180), r4) (async)

1.969405893s ago: executing program 2 (id=2811):
io_uring_setup$auto(0x6, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@qipcrtr={0x2a, 0x3, 0x2}, 0x52)
r0 = socket(0x2, 0x802, 0x1)
setsockopt$auto_SO_WIFI_STATUS(r0, 0x0, 0x29, &(0x7f0000000080)='\xef', 0x8000)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x0)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x1f40)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/block/nbd1/sched/write2_next_rq\x00', 0x210880, 0x0)
prctl$auto(0x7f, 0x1, 0x4, 0x6, 0x20000000003)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)
writev$auto(r2, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000880)='/dev/input/event0\x00', 0x40100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/nbd3\x00', 0x0, 0x0)
socket(0xa, 0x801, 0x84)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace\x00', 0x2, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0)
r4 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000001240), 0x40, 0x0)
ioctl$auto(r4, 0x3b8e, r3)
close_range$auto(0x2, 0x8, 0x0)

1.792395242s ago: executing program 3 (id=2812):
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x8300000000000)
r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/pcmC1D1p\x00', 0x40, 0x0)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR64(r0, 0xc0884123, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0)
sendfile$auto(r2, r2, 0x0, 0x10000800000003)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), 0xffffffffffffffff)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/vrf/strict_mode\x00', 0x80202, 0x0)
sendfile$auto(0xffffffffffffffff, r3, 0x0, 0x86)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r4 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x9, 0x402, 0x101}, 0x6, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
timer_settime$auto(0x1, 0xfffffff1, &(0x7f0000000040)={{0x4, 0x76e6}, {0x0, 0x4}}, &(0x7f0000000080)={{0x1, 0x16}, {0x4, 0xc}})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), r4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x4000000008000)
sendmsg$auto_IOAM6_CMD_ADD_SCHEMA(r1, &(0x7f00000009c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000980)={&(0x7f0000001080)={0xa2c, 0x0, 0x200, 0x70bd27, 0x2, {}, [@IOAM6_ATTR_SC_DATA={0x3bf, 0x5, "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"}, @IOAM6_ATTR_SC_DATA={0x25, 0x5, "58fe042fe54c0f3b654c2a5ba94bfba3eda71cb4338edd6a29d0f810b491343421"}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x401}, @IOAM6_ATTR_SC_DATA={0x2cf, 0x5, "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"}, @IOAM6_ATTR_SC_ID={0x8, 0x4, 0x7fffffff}, @IOAM6_ATTR_SC_DATA={0x34e, 0x5, "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"}]}, 0xa2c}, 0x1, 0x0, 0x0, 0x65d5bd876ee13f5d}, 0x4010)
r9 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r9, 0x0, 0x20)
r10 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r10, &(0x7f0000000200)={0x0, 0x7}, 0x400000003)
r11 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r11, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
sendmsg$auto_CTRL_CMD_GETPOLICY(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="01032cb57000fbdbdf250a00000006000100170000008583cbfdf94a7cefa4b7359033301e5121379fbc21b1f2f1923bc109c6622127b7654d713d64501cb2341dfa953622df3114"], 0x1c}, 0x1, 0x0, 0x0, 0x400c01d}, 0x0)
r12 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), r7)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000280)={'veth0\x00', <r13=>0x0})
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r6, &(0x7f0000004100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000101f093173064a37a48cabeebcce76b8668e0902c7a862ec8789ed665b88b430566022f4368298138892208f601633afa53a34f72f9d36c3cc4a7adb9d6e0ce3bb0bb9819095aa3019bcf98e5f51d6aa1a51b34d43af82efd72b5249c554a65ef6b7580861c6ec09f73be257dcd3fb530c080e8c0d8009924e758f8eec25526c45559d", @ANYRES16=r12, @ANYBLOB="010026bd7000fcdbdf650100000008000100", @ANYRES32=r13, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x20040801}, 0x4000000)
ioctl$auto_TIOCSTI2(r5, 0x5412, &(0x7f0000000000))

1.737438273s ago: executing program 1 (id=2813):
io_uring_setup$auto(0x386, &(0x7f0000000000)={0x5, 0x1, 0x4c, 0x0, 0x1, 0x8, <r0=>0xffffffffffffffff, [0x10001, 0x8, 0xa], {0x8, 0x8, 0x3fc000, 0x4, 0xffffff7a, 0x3, 0x9, 0xec5, 0xffff}, {0xd5, 0x80000000, 0x1bee, 0x5d, 0x400, 0x9, 0x7, 0x8000, 0x7f}})
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x1, 0x100)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x2c, r3, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000000)
statx$auto(r0, &(0x7f00000000c0)='./file0\x00', 0x9, 0xb, &(0x7f00000001c0)={0x1000, 0x800, 0x4, 0x4, 0x0, 0xee01, 0x1, 0x65f3, 0x4, 0x81a, 0x378f, 0x3, {0xffffffffffffffff, 0x3}, {0x6}, {0x71cd437c, 0x400}, {0x5, 0x5}, 0x3, 0x5e42a645, 0x89a, 0x1, 0x1, 0x2, 0xff, 0x3, 0x4ba, 0x6, 0x101, 0x2, [0x15d18000000000, 0x4, 0x2, 0x7ff, 0x3, 0x2, 0x8, 0x4, 0x8]})
shmctl$auto_SHM_INFO(0x6429, 0xe, &(0x7f00000004c0)={{0x7, 0xee00, 0xffffffffffffffff, 0x7, 0xc2e, 0x8, 0x4}, 0x7ff, 0x6, 0x1, 0x5, @inferred=0xffffffffffffffff, @raw=0x4, 0x5, 0x0, &(0x7f0000000400)="e6d0b1ddadd29c7caf1f90de3a0a26bbd052caa87b4e10bcbd5c2390ac69947a787f4783deca9147067479d0b6e45f41ba630425cacc05fd5b63311086792532e5a618276c30cad8d3eecd172a2c257eb1309286101920032d7f089fe5b0766fb4464e51aa30c287e63a7197885950aeabbd6e", &(0x7f0000000480)="1d043f545467213da566e8da27664f8de6607d984e13bdd10c1c57aeb6fc5fa884a0dbb370472d56c46204e1ca0620885ecb48c4d8053558"})
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r0, &(0x7f00000024c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000002480)={&(0x7f0000000840)={0x19c, r3, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_STATS_GROUPS={0x14d, 0x3, 0x0, 0x1, [@generic="17c2890abd876c96cb0a307e178316ac50460b8d155eacb97e16ad7df64ae1dfa5f4ba00a72730d06e6b0db0d68b813abe840666468b37b13490e18d6f064d2b200539e02060b2dae245eb1e2acfdfffbb5283cd4216022021ce51fa4ebcfbe113d6c7dfca7d08c7ba69143c90e8822ed352ae03b61681fb54995c7113515ed983cf462e20d2762f8b238442ed2275c6d5bb5000a8b372dff150b8f93fe265eeb7cae423bb26abaf8b77ca49f0ce77a2594a6804c8c88e611263278e75cdd03dfbd3770895b3c157bd8af3d050afd16d13", @generic="811873f998c4537c639916067eb7232eab339706a5a8e35ac98a304ea1abc358878920fae90a9fa8243e68774cc570d200c4defdf40aac425f6399ea754fbc7970cf2b88e9b4ee304417ac775a6e7ab9837f9a16229f36bd79e1eec50a9dd0a784e45c565d517c3f", @typed={0x7, 0xe0, 0x0, 0x0, @str=',#\x00'}, @generic, @nested={0x4, 0x143}, @nested={0x4, 0xe2}]}, @ETHTOOL_A_STATS_HEADER={0x38, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x19c}}, 0x10)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0xa, 0x300)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/memory.force_empty\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f0000000000)='3\xc7\xff\xff\xff\xdd\x00\b(Ks\x0f\x87|P\x11\xd1li0\x89\x85\x90QM\xd6wfF\xf1x\xb3;c\tP\x03\x84\x97\x99\x83\x97\x81:\xf3\xa3o5\xc5\x86\xed\xa4\x18]\xa3\xc9\x0f\xff\xdak\xb0m\xe1U\xb3\xa2\xee\xdcTJQO\x98\xc8w\x8c\xe7\x00\x00\x00\x1dj\x1e\xebQT\xdd\x9b\x00'/101, 0x9)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/thread-self/net/stat/rt_cache\x00', 0x0, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r5, &(0x7f00000002c0)=""/266, 0x10a)
mmap$auto(0x5, 0x2020009, 0xb, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setregid$auto(0x0, 0xffffffffffffffff)

1.629888079s ago: executing program 2 (id=2814):
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x841, 0x0) (async)
socket(0xa, 0x1, 0x100) (async)
socket(0x29, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_create1$auto(0x8000000000000000) (async)
epoll_wait$auto(0x5, 0x0, 0x2, 0x100000000) (async)
mmap$auto(0xb, 0x2020009, 0x7, 0x1c, r0, 0x8000) (async)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x800000001, 0x0, 0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/input/event1\x00', 0x379402, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x1, 0x84)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vbi28\x00', 0x0, 0x0) (async)
r2 = open(&(0x7f0000000100)='.\x00', 0x212240, 0x400)
openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/clear_refs\x00', 0xc000, 0x0) (async)
getdents$auto(r2, 0x0, 0x400018)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
modify_ldt$auto(0x1, 0x0, 0x10)
modify_ldt$auto(0xfffffffe, 0x0, 0xfffffffffffffffd)
ioctl$auto(0x3, 0x4020565a, 0x38) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
ioctl$auto(0x3, 0x4020565b, 0x38) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)

1.567285852s ago: executing program 5 (id=2815):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x200, 0x1)
fanotify_init$auto(0x9f, 0x8)
fanotify_mark$auto(0x0, 0x11, 0x8003, 0xffffffffffffffff, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x6, 0x21, 0x0, 0x20)

1.350344269s ago: executing program 2 (id=2816):
r0 = socket(0xa, 0x801, 0x106)
getsockopt$auto(r0, 0x6, 0x19, 0x0, &(0x7f0000000040)=0x1)
r1 = getpgrp(0x0)
r2 = prctl$auto(0x43, 0x17, r1, 0x0, 0x0)
gettid()
setrlimit$auto(0x2, &(0x7f0000000080)={0x3, 0x20000000000006})
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000080), r2)

1.06567047s ago: executing program 2 (id=2817):
socket(0x10, 0x2, 0x7)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/014/001\x00', 0xc0402, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/lru_gen/min_ttl_ms\x00', 0x2ab42, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000280)={0x6, 0x3, 0x6, 0x9649, &(0x7f0000000500)="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", 0x3, 0xff, 0x8001, @stream_id=0x5, 0x40, 0x71f, &(0x7f00000001c0)="1c51b05b85f192013c2f4e22e169c21fdcefdd15640878d5109afe418141a7ce", [{0x80, 0x7e32, 0x1000}, {0x3, 0x4, 0x80}, {0x0, 0x7fff}, {0xb, 0x9, 0xffff}]})
pwritev$auto(r1, &(0x7f0000000180)={&(0x7f0000000100), 0x1}, 0x2, 0xa, 0x7fff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/011/001\x00', 0x101202, 0x0)
r2 = prctl$auto_PR_SET_MM_ARG_END(0x8, 0x9, 0x0, 0x0, 0x4)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
rt_sigtimedwait$auto(&(0x7f0000000040)={0xfffffffffffffbff}, 0x0, 0x0, 0x8)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000300), 0xffffffffffffffff)
socket(0x2, 0x3, 0x1)
r4 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000440)={'bridge_slave_0\x00', <r5=>0x0})
bpf$auto(0x4, &(0x7f00000006c0)=@token_create={0x4, r0}, 0x4a)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask\x00', 0x2, 0x0)
write$auto(r6, &(0x7f0000000180)='1\x00\\\xa0\x04|\x9d$\xdcM)\xb9\xdd\xd6', 0x5)
r7 = getpgid(0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r8)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400020a", @ANYRES16=r9, @ANYBLOB="010329ad7000fbdbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
read$auto(r8, &(0x7f0000000080)='\x00', 0xff09)
process_vm_writev$auto(r7, 0x0, 0x200000000017, 0x0, 0x7, 0x0)
r10 = getpgid(0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="020028bd7000fedbdf2501000000080007000100000008000900", @ANYRES32=r5, @ANYBLOB="08000200", @ANYRES32=r7, @ANYBLOB="0800050005000000080005000f00000008000200", @ANYRES32=r10, @ANYBLOB="08000200", @ANYRES32, @ANYBLOB="ede040a99130d06f415a3eb1597b"], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
ioctl$auto_USBDEVFS_DISCARDURB(r0, 0x550b, 0x0)
openat$auto_tracing_saved_cmdlines_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/saved_cmdlines_size\x00', 0x20000, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
io_submit$auto(0x8, 0x7f, &(0x7f0000000040)=&(0x7f00000000c0)={0x6fffffffffffff, 0xb, 0x81, 0x3, 0x2, 0x3b, 0xfffffffffffffc00, 0x2, 0xfff, 0x0, 0x4})

957.477332ms ago: executing program 5 (id=2818):
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x123040, 0x0)
ioctl$auto(r0, 0x80004532, r0)
r1 = socket(0x10, 0x2, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0)
read$auto(r2, &(0x7f00000000c0)='/sys/devices/~latform/vhci_hc$.7/usb23/23-0:1.0/~\xda=\x8eep_81/inver', 0x6864a34)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="000229bd70001cdddf250200020008000308"], 0x24}, 0x1, 0x0, 0x0, 0x20000810}, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="72010000", @ANYRESOCT], 0x1ac}, 0x1, 0x0, 0x0, 0x40040c4}, 0x200480d5)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000000), r1)

133.242841ms ago: executing program 5 (id=2819):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
fcntl$getown(0xffffffffffffffff, 0x9)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101802, 0x0) (async)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async, rerun: 32)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x4200a2, 0x0) (rerun: 32)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, &(0x7f0000000080)={0xa3})
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa9c3, 0x0) (async)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/nfs4.nametoid/content\x00', 0x2000, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000100)=""/135, 0x87) (async, rerun: 64)
ioctl$auto_USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000300)={0x2, 0x0, 0x8000004, 0x81, &(0x7f0000000040)="a006ec070e13d2", 0x100400, 0x2d, 0x9, @number_of_packets=0xfffffff7, 0x456, 0x0, 0x0}) (rerun: 64)

83.2782ms ago: executing program 1 (id=2820):
r0 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TRIP(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000001}, 0x1, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="98000000", @ANYRES16=r0, @ANYBLOB="9f235c3b50100031bd7000fedbdf250200000008001600010000001700148015a2444af8847f262e9ccae0a6217925c2bf9f00590018800600db0040000000f743c7fb8e9f310461f88ac55fd8b06f5e0387edbe779ac4219327d6a40500000000000000c039fdbe3959b61ce12a04a0f06f07c11ceaccabbcd54f17ed727743ed2400050108"], 0x98}, 0x1, 0x0, 0x0, 0x800}, 0x4000) (async)
socket(0x18, 0x3, 0x2) (async)
bind$auto(0x3, &(0x7f0000000180)=@l2={0x1f, 0xe, @none, 0x7fff, 0x2}, 0x6a) (async)
connect$auto(0x3, &(0x7f00000000c0)=@hci={0x1f, 0x2}, 0x55)
process_vm_writev$auto(0x1, &(0x7f0000002980)={0x0, 0x4}, 0x3, &(0x7f0000002a40)={0x0, 0x7}, 0x4, 0x0)

37.590661ms ago: executing program 3 (id=2821):
madvise$auto(0x0, 0x7ffefffffffbffff, 0xa) (async)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) (async)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, 0x0, 0x2) (async)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty48\x00', 0x40000, 0x0) (async)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/net/kcm\x00', 0x80, 0x0)
pread64$auto(r2, 0x0, 0x201, 0xc000)
sendmsg$auto_NLBL_CALIPSO_C_LISTALL(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="240075c81000", @ANYRES8=r1, @ANYBLOB="080029bd7000fedbdf2591f7000008000100660000000800010002000000"], 0x24}, 0x1, 0x0, 0x0, 0x81}, 0x4000814)
unshare$auto(0x40000080) (async)
write$auto(0xffffffffffffffff, &(0x7f0000001680)='\v\x90\xd1\xda\xbc>1\x8ag\x14\x18\xbe\xdc\x00', 0x1) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
socket(0xa, 0x80803, 0x6) (async)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a0001"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x440c0) (async)
close_range$auto(0x2, 0xffffffffffffffff, 0x0) (async)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x6) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x21}, 0x1, 0x0, 0x0, 0x4008810}, 0x8040) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1d"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x804)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x89}, 0x7}, 0x3, 0x0)

0s ago: executing program 2 (id=2822):
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)

kernel console output (not intermixed with test programs):

07f7c922e8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  684.535739][T15810] RAX: ffffffffffffffda RBX: 00007f7c91615fa0 RCX: 00007f7c9139cdd9
[  684.535751][T15810] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  684.535762][T15810] RBP: 00007f7c91432d69 R08: 0000000000000000 R09: 0000000000000000
[  684.535773][T15810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  684.535783][T15810] R13: 00007f7c91616038 R14: 00007f7c91615fa0 R15: 00007ffde52beae8
[  684.535807][T15810]  </TASK>
[  685.383959][T15810] Mem-Info:
[  685.403698][T15810] active_anon:36877 inactive_anon:132 isolated_anon:0
[  685.403698][T15810]  active_file:7498 inactive_file:53338 isolated_file:0
[  685.403698][T15810]  unevictable:768 dirty:978 writeback:0
[  685.403698][T15810]  slab_reclaimable:11589 slab_unreclaimable:94124
[  685.403698][T15810]  mapped:31562 shmem:26943 pagetables:1560
[  685.403698][T15810]  sec_pagetables:0 bounce:0
[  685.403698][T15810]  kernel_misc_reclaimable:0
[  685.403698][T15810]  free:1268182 free_pcp:25832 free_cma:0
[  685.800524][T15810] Node 0 active_anon:137316kB inactive_anon:528kB active_file:29992kB inactive_file:213136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:119524kB dirty:3908kB writeback:0kB shmem:104884kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12384kB pagetables:5684kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  686.022296][T15810] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:216kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  686.076745][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  686.084534][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  686.179014][T15810] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  686.303430][T15810] lowmem_reserve[]: 0 2477 2478 2478 2478
[  686.324895][T15810] Node 0 DMA32 free:1170728kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:118180kB inactive_anon:528kB active_file:29992kB inactive_file:213116kB unevictable:1536kB writepending:3908kB zspages:760kB present:3129332kB managed:2537332kB mlocked:0kB bounce:0kB free_pcp:90048kB local_pcp:90048kB free_cma:0kB
[  686.480109][T15810] lowmem_reserve[]: 0 0 1 1 1
[  686.499216][T15810] Node 0 Normal free:12kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1100kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB
[  686.594142][T15810] lowmem_reserve[]: 0 0 0 0 0
[  686.613383][T15810] Node 1 Normal free:3902956kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:216kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:29644kB local_pcp:29644kB free_cma:0kB
[  686.723551][T15810] lowmem_reserve[]: 0 0 0 0 0
[  686.739067][T15810] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  686.781371][T15810] Node 0 DMA32: 8625*4kB (UME) 3708*8kB (UME) 1897*16kB (UME) 1603*32kB (UME) 1296*64kB (UME) 769*128kB (UME) 481*256kB (UM) 257*512kB (UME) 171*1024kB (UM) 22*2048kB (UM) 92*4096kB (UM) = 1178900kB
[  686.855867][T15810] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  686.892971][T15810] Node 1 Normal: 0*4kB 1*8kB (M) 3*16kB (UM) 1*32kB (U) 1*64kB (M) 3*128kB (UM) 2*256kB (U) 3*512kB (UM) 3*1024kB (U) 3*2048kB (UM) 950*4096kB (M) = 3903000kB
[  686.946162][T15810] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  686.977050][T15810] Node 0 hugepages_total=8 hugepages_free=6 hugepages_surp=0 hugepages_size=2048kB
[  687.009106][T15810] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  687.042057][T15810] Node 1 hugepages_total=7 hugepages_free=7 hugepages_surp=0 hugepages_size=2048kB
[  687.082174][T15810] 78263 total pagecache pages
[  687.098375][T15810] 82 pages in swap cache
[  687.116233][T15810] Free swap  = 119640kB
[  687.133215][T15810] Total swap = 124996kB
[  687.157938][T15810] 2097051 pages RAM
[  687.178035][T15810] 0 pages HighMem/MovableOnly
[  687.200682][T15810] 430828 pages reserved
[  687.221789][T15810] 0 pages cma reserved
[  687.250057][T15810] pty pty83: ldisc open failed (-12), clearing slot 83
[  688.239779][T15863] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1994'.
[  690.667993][T15901] random: crng reseeded on system resumption
[  691.874184][T15929] FAULT_INJECTION: forcing a failure.
[  691.874184][T15929] name failslab, interval 1, probability 0, space 0, times 0
[  691.954903][T15929] CPU: 0 UID: 0 PID: 15929 Comm: syz.5.2006 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  691.954937][T15929] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  691.954945][T15929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  691.954956][T15929] Call Trace:
[  691.954963][T15929]  <TASK>
[  691.954970][T15929]  dump_stack_lvl+0x100/0x190
[  691.954996][T15929]  should_fail_ex.cold+0x5/0xa
[  691.955019][T15929]  should_failslab+0xc2/0x120
[  691.955042][T15929]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  691.955070][T15929]  ? __proc_create+0x2cb/0x8c0
[  691.955098][T15929]  __proc_create+0x2cb/0x8c0
[  691.955122][T15929]  ? __pfx___proc_create+0x10/0x10
[  691.955154][T15929]  proc_create_reg+0x75/0x170
[  691.955181][T15929]  proc_create_net_data+0x8e/0x1c0
[  691.955206][T15929]  ? __pfx_proc_create_net_data+0x10/0x10
[  691.955238][T15929]  ip6mr_net_init+0x2a4/0x4d0
[  691.955258][T15929]  ? __pfx_ip6mr_net_init+0x10/0x10
[  691.955276][T15929]  ops_init+0x1e2/0x5f0
[  691.955300][T15929]  setup_net+0x118/0x3a0
[  691.955322][T15929]  ? __pfx_setup_net+0x10/0x10
[  691.955344][T15929]  ? mutex_init_lockdep+0xf1/0x120
[  691.955367][T15929]  copy_net_ns+0x46f/0x7c0
[  691.955393][T15929]  create_new_namespaces+0x3ea/0xac0
[  691.955422][T15929]  unshare_nsproxy_namespaces+0xf2/0x220
[  691.955449][T15929]  ksys_unshare+0x438/0xab0
[  691.955478][T15929]  ? __pfx_ksys_unshare+0x10/0x10
[  691.955505][T15929]  ? xfd_validate_state+0x129/0x190
[  691.955532][T15929]  __x64_sys_unshare+0x31/0x40
[  691.955559][T15929]  do_syscall_64+0x10b/0xf80
[  691.955590][T15929]  ? clear_bhb_loop+0x40/0x90
[  691.955612][T15929]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  691.955631][T15929] RIP: 0033:0x7f7c9139cdd9
[  691.955647][T15929] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  691.955666][T15929] RSP: 002b:00007f7c922e8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  691.955686][T15929] RAX: ffffffffffffffda RBX: 00007f7c91615fa0 RCX: 00007f7c9139cdd9
[  691.955698][T15929] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  691.955709][T15929] RBP: 00007f7c91432d69 R08: 0000000000000000 R09: 0000000000000000
[  691.955720][T15929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  691.955732][T15929] R13: 00007f7c91616038 R14: 00007f7c91615fa0 R15: 00007ffde52beae8
[  691.955756][T15929]  </TASK>
[  699.668229][T16107] FAULT_INJECTION: forcing a failure.
[  699.668229][T16107] name failslab, interval 1, probability 0, space 0, times 0
[  699.755627][T16107] CPU: 0 UID: 0 PID: 16107 Comm: syz.5.2033 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  699.755662][T16107] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  699.755670][T16107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  699.755682][T16107] Call Trace:
[  699.755689][T16107]  <TASK>
[  699.755696][T16107]  dump_stack_lvl+0x100/0x190
[  699.755723][T16107]  should_fail_ex.cold+0x5/0xa
[  699.755748][T16107]  should_failslab+0xc2/0x120
[  699.755771][T16107]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  699.755801][T16107]  ? __pmd_alloc+0xbf/0x950
[  699.755829][T16107]  __pmd_alloc+0xbf/0x950
[  699.755855][T16107]  __handle_mm_fault+0xa9c/0x2a00
[  699.755886][T16107]  ? mt_find+0x45e/0x8e0
[  699.755915][T16107]  ? __pfx___handle_mm_fault+0x10/0x10
[  699.755942][T16107]  ? __pfx_mt_find+0x10/0x10
[  699.755988][T16107]  handle_mm_fault+0x36d/0xa20
[  699.756020][T16107]  __get_user_pages+0x1178/0x32a0
[  699.756058][T16107]  ? __pfx___get_user_pages+0x10/0x10
[  699.756089][T16107]  populate_vma_page_range+0x267/0x3f0
[  699.756116][T16107]  ? __pfx_populate_vma_page_range+0x10/0x10
[  699.756140][T16107]  ? __pfx_find_vma_intersection+0x10/0x10
[  699.756164][T16107]  ? do_mmap+0x93f/0x12f0
[  699.756189][T16107]  __mm_populate+0x107/0x3a0
[  699.756214][T16107]  ? __pfx___mm_populate+0x10/0x10
[  699.756240][T16107]  ? up_write+0x28c/0x4f0
[  699.756264][T16107]  vm_mmap_pgoff+0x37f/0x470
[  699.756290][T16107]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  699.756315][T16107]  ? do_futex+0x192/0x350
[  699.756335][T16107]  ? __pfx_do_futex+0x10/0x10
[  699.756354][T16107]  ? __pfx_do_sys_openat2+0x10/0x10
[  699.756385][T16107]  ksys_mmap_pgoff+0xe4/0x610
[  699.756408][T16107]  ? __x64_sys_futex+0x358/0x4d0
[  699.756428][T16107]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  699.756450][T16107]  ? xfd_validate_state+0x129/0x190
[  699.756468][T16107]  ? ksys_write+0x1ac/0x250
[  699.756493][T16107]  __x64_sys_mmap+0x125/0x190
[  699.756516][T16107]  do_syscall_64+0x10b/0xf80
[  699.756542][T16107]  ? clear_bhb_loop+0x40/0x90
[  699.756564][T16107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  699.756583][T16107] RIP: 0033:0x7f7c9139cdd9
[  699.756600][T16107] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  699.756618][T16107] RSP: 002b:00007f7c922c7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  699.756636][T16107] RAX: ffffffffffffffda RBX: 00007f7c91616090 RCX: 00007f7c9139cdd9
[  699.756648][T16107] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  699.756659][T16107] RBP: 00007f7c91432d69 R08: 0000000000000007 R09: 0000000800008000
[  699.756670][T16107] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  699.756682][T16107] R13: 00007f7c91616128 R14: 00007f7c91616090 R15: 00007ffde52beae8
[  699.756705][T16107]  </TASK>
[  702.839329][T15217] Bluetooth: hci3: unexpected subevent 0x03 length: 253 > 9
[  703.236853][T16149] futex_wake_op: syz.1.2042 tries to shift op by -2048; fix this program
[  703.279034][T16149] futex_wake_op: syz.1.2042 tries to shift op by -2048; fix this program
[  704.044567][T16158] netlink: 504 bytes leftover after parsing attributes in process `syz.1.2045'.
[  708.271420][T16234] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2055'.
[  709.434421][T16253] NFSD: Failed to start, no listeners configured.
[  709.921207][T16250] zswap: compressor  not available
[  710.779274][T16276] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2065'.
[  712.577526][T16301] Process accounting resumed
[  713.129488][T16248] Process accounting paused
[  715.099831][T16338] netlink: 'syz.5.2072': attribute type 11 has an invalid length.
[  717.192443][T15217] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  717.250846][T16365] FAULT_INJECTION: forcing a failure.
[  717.250846][T16365] name failslab, interval 1, probability 0, space 0, times 0
[  717.350512][T16365] CPU: 0 UID: 0 PID: 16365 Comm: syz.3.2080 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  717.350546][T16365] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  717.350555][T16365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  717.350566][T16365] Call Trace:
[  717.350573][T16365]  <TASK>
[  717.350581][T16365]  dump_stack_lvl+0x100/0x190
[  717.350608][T16365]  should_fail_ex.cold+0x5/0xa
[  717.350631][T16365]  should_failslab+0xc2/0x120
[  717.350655][T16365]  __kmalloc_cache_noprof+0x7a/0x6f0
[  717.350682][T16365]  ? kobject_uevent_env+0x263/0x18b0
[  717.350702][T16365]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  717.350736][T16365]  kobject_uevent_env+0x263/0x18b0
[  717.350762][T16365]  ? bus_to_subsys+0x114/0x150
[  717.350793][T16365]  device_add+0x116e/0x1950
[  717.350820][T16365]  ? __pfx_device_add+0x10/0x10
[  717.350844][T16365]  ? lockdep_init_map_type+0x5c/0x250
[  717.350865][T16365]  ? __init_waitqueue_head+0xca/0x150
[  717.350892][T16365]  rfkill_register+0x1ad/0xb30
[  717.350919][T16365]  nfc_register_device+0x11f/0x3e0
[  717.350956][T16365]  nci_register_device+0x7f1/0xb80
[  717.350979][T16365]  ? __pfx_nci_register_device+0x10/0x10
[  717.351004][T16365]  ? lockdep_init_map_type+0x5c/0x250
[  717.351026][T16365]  virtual_ncidev_open+0x141/0x220
[  717.351056][T16365]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  717.351085][T16365]  misc_open+0x26d/0x450
[  717.351108][T16365]  ? __pfx_misc_open+0x10/0x10
[  717.351130][T16365]  chrdev_open+0x234/0x6a0
[  717.351154][T16365]  ? __pfx_apparmor_file_open+0x10/0x10
[  717.351184][T16365]  ? __pfx_chrdev_open+0x10/0x10
[  717.351208][T16365]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  717.351238][T16365]  do_dentry_open+0x6d8/0x1660
[  717.351259][T16365]  ? __pfx_chrdev_open+0x10/0x10
[  717.351288][T16365]  vfs_open+0x82/0x3f0
[  717.351318][T16365]  path_openat+0x208c/0x31a0
[  717.351355][T16365]  ? __pfx_path_openat+0x10/0x10
[  717.351387][T16365]  do_file_open+0x20e/0x430
[  717.351413][T16365]  ? __pfx_do_file_open+0x10/0x10
[  717.351453][T16365]  ? alloc_fd+0x476/0x790
[  717.351478][T16365]  ? do_getname+0x191/0x390
[  717.351507][T16365]  do_sys_openat2+0x10d/0x1e0
[  717.351558][T16365]  ? __pfx_do_sys_openat2+0x10/0x10
[  717.351588][T16365]  ? __fget_files+0x21f/0x3d0
[  717.351614][T16365]  __x64_sys_openat+0x12d/0x210
[  717.351643][T16365]  ? __pfx___x64_sys_openat+0x10/0x10
[  717.351677][T16365]  ? rcu_is_watching+0x12/0xc0
[  717.351702][T16365]  do_syscall_64+0x10b/0xf80
[  717.351728][T16365]  ? clear_bhb_loop+0x40/0x90
[  717.351751][T16365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.351770][T16365] RIP: 0033:0x7fbbb159cdd9
[  717.351787][T16365] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  717.351805][T16365] RSP: 002b:00007fbbb23d1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  717.351823][T16365] RAX: ffffffffffffffda RBX: 00007fbbb1815fa0 RCX: 00007fbbb159cdd9
[  717.351835][T16365] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  717.351846][T16365] RBP: 00007fbbb1632d69 R08: 0000000000000000 R09: 0000000000000000
[  717.351857][T16365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  717.351868][T16365] R13: 00007fbbb1816038 R14: 00007fbbb1815fa0 R15: 00007ffe4947c098
[  717.351892][T16365]  </TASK>
[  717.997219][T16377] futex_wake_op: syz.3.2080 tries to shift op by -2048; fix this program
[  718.005906][T16377] futex_wake_op: syz.3.2080 tries to shift op by -2048; fix this program
[  722.863305][T16466] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2101'.
[  724.018894][T16482] NFSD: Failed to start, no listeners configured.
[  724.894092][T16458] Process accounting resumed
[  724.963731][T16501] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2109'.
[  727.433561][T16514] futex_wake_op: syz.3.2111 tries to shift op by -2048; fix this program
[  728.238869][T16553] NFSD: Failed to start, no listeners configured.
[  731.523277][T16607] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2128'.
[  731.715369][T16613] NFSD: Failed to start, no listeners configured.
[  732.808461][T16632] rnbd_client L202: map_device: Unknown parameter or missing value '0�="�/�'
[  736.473531][T16686] random: crng reseeded on system resumption
[  738.389192][T16699] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  738.440212][T16699] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  738.486092][T16699] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  738.589752][T16699] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  739.325125][T16715] NFSD: Failed to start, no listeners configured.
[  740.424874][T15217] Bluetooth: hci2: command 0x2016 tx timeout
[  740.505262][T15217] Bluetooth: hci3: command 0x0c1a tx timeout
[  740.666143][T15217] Bluetooth: hci0: command 0x0c1a tx timeout
[  741.027342][T16739] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  742.585284][T15217] Bluetooth: hci3: command 0x0c1a tx timeout
[  743.353518][T16760] NFSD: Failed to start, no listeners configured.
[  744.328266][T16772] NFSD: Failed to start, no listeners configured.
[  746.015706][T16793] FAULT_INJECTION: forcing a failure.
[  746.015706][T16793] name failslab, interval 1, probability 0, space 0, times 0
[  746.183153][T16793] CPU: 0 UID: 0 PID: 16793 Comm: syz.2.2165 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  746.183188][T16793] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  746.183195][T16793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  746.183206][T16793] Call Trace:
[  746.183213][T16793]  <TASK>
[  746.183220][T16793]  dump_stack_lvl+0x100/0x190
[  746.183246][T16793]  should_fail_ex.cold+0x5/0xa
[  746.183270][T16793]  should_failslab+0xc2/0x120
[  746.183291][T16793]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  746.183321][T16793]  ? alloc_empty_file+0x5b/0x1c0
[  746.183349][T16793]  ? __pfx_stack_trace_save+0x10/0x10
[  746.183378][T16793]  alloc_empty_file+0x5b/0x1c0
[  746.183406][T16793]  path_openat+0xe8/0x31a0
[  746.183427][T16793]  ? kasan_save_stack+0x3f/0x50
[  746.183460][T16793]  ? kasan_save_stack+0x30/0x50
[  746.183477][T16793]  ? kasan_save_track+0x14/0x30
[  746.183494][T16793]  ? __kasan_slab_alloc+0x89/0x90
[  746.183520][T16793]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  746.183549][T16793]  ? do_getname+0x35/0x390
[  746.183575][T16793]  ? do_sys_openat2+0xc5/0x1e0
[  746.183602][T16793]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  746.183625][T16793]  ? __pfx_path_openat+0x10/0x10
[  746.183657][T16793]  do_file_open+0x20e/0x430
[  746.183684][T16793]  ? __pfx_do_file_open+0x10/0x10
[  746.183723][T16793]  ? alloc_fd+0x476/0x790
[  746.183748][T16793]  ? do_getname+0x191/0x390
[  746.183777][T16793]  do_sys_openat2+0x10d/0x1e0
[  746.183805][T16793]  ? __pfx_do_sys_openat2+0x10/0x10
[  746.183842][T16793]  __x64_sys_openat+0x12d/0x210
[  746.183871][T16793]  ? __pfx___x64_sys_openat+0x10/0x10
[  746.183898][T16793]  ? exit_to_user_mode_loop+0xe2/0x4f0
[  746.183920][T16793]  ? rcu_is_watching+0x12/0xc0
[  746.183946][T16793]  do_syscall_64+0x10b/0xf80
[  746.183972][T16793]  ? clear_bhb_loop+0x40/0x90
[  746.183994][T16793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  746.184013][T16793] RIP: 0033:0x7f7daad9cdd9
[  746.184029][T16793] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  746.184048][T16793] RSP: 002b:00007f7dabcc2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  746.184067][T16793] RAX: ffffffffffffffda RBX: 00007f7dab016180 RCX: 00007f7daad9cdd9
[  746.184079][T16793] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  746.184091][T16793] RBP: 00007f7daae32d69 R08: 0000000000000000 R09: 0000000000000000
[  746.184102][T16793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  746.184113][T16793] R13: 00007f7dab016218 R14: 00007f7dab016180 R15: 00007fff68a2b568
[  746.184138][T16793]  </TASK>
[  747.468140][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  747.474574][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  748.865647][T16812] NFSD: Failed to start, no listeners configured.
[  750.103569][T16841] zswap: compressor Z�u��~���^��8��a��cu0���|��,a����Rr�qP������'��)��ޱ`�*�]���T]�X��؃(ۂ�TN�>�_��r$�������z��&�[+x[DPx�e?��m��3Q�z not available
[  750.589059][T16851] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  750.589059][T16851] The task syz.1.2174 (16851) triggered the difference, watch for misbehavior.
[  750.766171][T16858] FAULT_INJECTION: forcing a failure.
[  750.766171][T16858] name failslab, interval 1, probability 0, space 0, times 0
[  750.899810][T16858] CPU: 0 UID: 0 PID: 16858 Comm: syz.3.2176 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  750.899846][T16858] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  750.899853][T16858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  750.899864][T16858] Call Trace:
[  750.899871][T16858]  <TASK>
[  750.899879][T16858]  dump_stack_lvl+0x100/0x190
[  750.899903][T16858]  should_fail_ex.cold+0x5/0xa
[  750.899927][T16858]  should_failslab+0xc2/0x120
[  750.899949][T16858]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  750.899979][T16858]  ? anon_vma_clone+0x2ba/0xcd0
[  750.900008][T16858]  anon_vma_clone+0x2ba/0xcd0
[  750.900039][T16858]  __split_vma+0x51f/0xd90
[  750.900069][T16858]  ? __pfx___split_vma+0x10/0x10
[  750.900109][T16858]  vma_modify+0x12ad/0x25c0
[  750.900143][T16858]  ? finish_task_switch.isra.0+0x261/0x1010
[  750.900181][T16858]  ? __pfx_vma_modify+0x10/0x10
[  750.900209][T16858]  ? rcu_is_watching+0x12/0xc0
[  750.900231][T16858]  ? trace_sched_exit_tp+0x11c/0x160
[  750.900269][T16858]  vma_modify_flags+0x257/0x3d0
[  750.900299][T16858]  ? __pfx_vma_modify_flags+0x10/0x10
[  750.900346][T16858]  mlock_fixup+0x46e/0xb10
[  750.900377][T16858]  ? __pfx_mlock_fixup+0x10/0x10
[  750.900417][T16858]  apply_vma_lock_flags+0x256/0x370
[  750.900450][T16858]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  750.900479][T16858]  ? __pfx___might_resched+0x10/0x10
[  750.900512][T16858]  ? __pfx_down_write_killable+0x10/0x10
[  750.900533][T16858]  ? do_futex+0x192/0x350
[  750.900556][T16858]  do_mlock+0x261/0x7f0
[  750.900587][T16858]  ? __pfx_do_mlock+0x10/0x10
[  750.900614][T16858]  ? __x64_sys_futex+0x34f/0x4d0
[  750.900633][T16858]  ? __x64_sys_futex+0x358/0x4d0
[  750.900655][T16858]  ? xfd_validate_state+0x129/0x190
[  750.900683][T16858]  __x64_sys_mlock+0x59/0x80
[  750.900701][T16858]  do_syscall_64+0x10b/0xf80
[  750.900727][T16858]  ? clear_bhb_loop+0x40/0x90
[  750.900753][T16858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.900776][T16858] RIP: 0033:0x7fbbb159cdd9
[  750.900793][T16858] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  750.900811][T16858] RSP: 002b:00007fbbb23b0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  750.900830][T16858] RAX: ffffffffffffffda RBX: 00007fbbb1816090 RCX: 00007fbbb159cdd9
[  750.900842][T16858] RDX: 0000000000000000 RSI: 0000000000000480 RDI: 0000000000000002
[  750.900853][T16858] RBP: 00007fbbb1632d69 R08: 0000000000000000 R09: 0000000000000000
[  750.900864][T16858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  750.900875][T16858] R13: 00007fbbb1816128 R14: 00007fbbb1816090 R15: 00007ffe4947c098
[  750.900898][T16858]  </TASK>
[  751.844319][T15217] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5
[  751.976649][T15217] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5
[  754.837517][T16937] FAULT_INJECTION: forcing a failure.
[  754.837517][T16937] name failslab, interval 1, probability 0, space 0, times 0
[  755.194852][T16937] CPU: 0 UID: 0 PID: 16937 Comm: syz.2.2187 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  755.194888][T16937] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  755.194895][T16937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  755.194906][T16937] Call Trace:
[  755.194913][T16937]  <TASK>
[  755.194921][T16937]  dump_stack_lvl+0x100/0x190
[  755.194946][T16937]  should_fail_ex.cold+0x5/0xa
[  755.194970][T16937]  should_failslab+0xc2/0x120
[  755.194992][T16937]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  755.195022][T16937]  ? security_inode_alloc+0x3b/0x2c0
[  755.195040][T16937]  ? lockdep_init_map_type+0x5c/0x250
[  755.195063][T16937]  security_inode_alloc+0x3b/0x2c0
[  755.195081][T16937]  inode_init_always_gfp+0xcc0/0x1000
[  755.195108][T16937]  alloc_inode+0x8e/0x250
[  755.195137][T16937]  sock_alloc+0x44/0x280
[  755.195158][T16937]  ? security_socket_create+0x7f/0x250
[  755.195187][T16937]  __sock_create+0xc2/0x860
[  755.195217][T16937]  __sys_socket+0x14d/0x260
[  755.195244][T16937]  ? __pfx___sys_socket+0x10/0x10
[  755.195277][T16937]  __x64_sys_socket+0x72/0xb0
[  755.195304][T16937]  ? lockdep_hardirqs_on+0x78/0x100
[  755.195331][T16937]  do_syscall_64+0x10b/0xf80
[  755.195356][T16937]  ? clear_bhb_loop+0x40/0x90
[  755.195378][T16937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  755.195397][T16937] RIP: 0033:0x7f7daad9cdd9
[  755.195414][T16937] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  755.195431][T16937] RSP: 002b:00007f7dabce3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  755.195450][T16937] RAX: ffffffffffffffda RBX: 00007f7dab016090 RCX: 00007f7daad9cdd9
[  755.195462][T16937] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  755.195473][T16937] RBP: 00007f7daae32d69 R08: 0000000000000000 R09: 0000000000000000
[  755.195485][T16937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  755.195497][T16937] R13: 00007f7dab016128 R14: 00007f7dab016090 R15: 00007fff68a2b568
[  755.195520][T16937]  </TASK>
[  755.195545][T16937] socket: no more sockets
[  756.324962][T16959] program syz.3.2189 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  756.495614][T16959] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  756.642448][T16963] can: request_module (can-proto-0) failed.
[  756.829988][ T9064] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  756.830018][ T9064] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  756.849026][ T9064] Bluetooth: hci3: Dropping invalid advertising data
[  756.856191][ T9064] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  762.489337][T17061] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  763.760111][T17092] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2220'.
[  763.820405][T17061] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  764.150466][T17092] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  764.196972][T17092] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  764.219135][T17092] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  764.252350][T17061] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  764.456072][T17061] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  764.722812][T17061] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  766.115329][ T9064] Bluetooth: hci2: command 0x2016 tx timeout
[  766.264778][T15217] Bluetooth: hci3: command 0x0c1a tx timeout
[  766.270877][ T9064] Bluetooth: hci0: command 0x0c1a tx timeout
[  767.754964][T17158] sctp: [Deprecated]: syz.3.2230 (pid 17158) Use of struct sctp_assoc_value in delayed_ack socket option.
[  767.754964][T17158] Use struct sctp_sack_info instead
[  768.036943][T17170] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2236'.
[  770.017112][T17176] random: crng reseeded on system resumption
[  770.371269][T17216] vhci_hcd: not connected 4
[  770.392301][T15217] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  770.408386][T15217] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  770.422112][T15217] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  770.435215][T15217] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  770.443277][T15217] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  772.061315][ T9469] bridge0: port 3(netdevsim3) entered disabled state
[  772.239233][ T9469] netdevsim netdevsim1 netdevsim3 (unregistering): left allmulticast mode
[  772.272130][ T9469] netdevsim netdevsim1 netdevsim3 (unregistering): left promiscuous mode
[  772.304836][ T9469] bridge0: port 3(netdevsim3) entered disabled state
[  772.445347][ T9469] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  772.468212][T17241] openvswitch: netlink: IP tunnel dst address not specified
[  772.505031][T15217] Bluetooth: hci4: command tx timeout
[  772.847929][ T9469] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  772.920572][T17246] random: crng reseeded on system resumption
[  773.123562][ T9469] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.467421][ T9469] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  774.535502][T17214] bridge0: port 1(bridge_slave_0) entered blocking state
[  774.584782][T15217] Bluetooth: hci4: command tx timeout
[  774.592156][T17214] bridge0: port 1(bridge_slave_0) entered disabled state
[  774.641959][T17214] bridge_slave_0: entered allmulticast mode
[  774.674787][T17214] bridge_slave_0: entered promiscuous mode
[  774.749624][ T9469] bridge_slave_1: left allmulticast mode
[  774.774221][ T9469] bridge_slave_1: left promiscuous mode
[  774.799465][ T9469] bridge0: port 2(bridge_slave_1) entered disabled state
[  774.897797][ T9469] bridge_slave_0: left allmulticast mode
[  774.949721][ T9469] bridge_slave_0: left promiscuous mode
[  774.973147][ T9469] bridge0: port 1(bridge_slave_0) entered disabled state
[  775.200694][T17289] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2255'.
[  775.423495][T17290] random: crng reseeded on system resumption
[  775.810498][ T9469] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  775.855863][ T9469] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  775.895740][ T9469] bond0 (unregistering): Released all slaves
[  775.949990][T17214] bridge0: port 2(bridge_slave_1) entered blocking state
[  776.007270][T17214] bridge0: port 2(bridge_slave_1) entered disabled state
[  776.051740][T17214] bridge_slave_1: entered allmulticast mode
[  776.091236][T17214] bridge_slave_1: entered promiscuous mode
[  776.229843][T17289] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  776.348062][T17289] batman_adv: batadv0: Removing interface: batadv_slave_1
[  776.564198][T17214] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  776.613984][ T5288] 8021q: adding VLAN 0 to HW filter on device eth8
[  776.665331][T15217] Bluetooth: hci4: command tx timeout
[  776.719695][T17214] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  776.963891][T17214] team0: Port device team_slave_0 added
[  776.989774][T17214] team0: Port device team_slave_1 added
[  777.261445][T17214] batman_adv: batadv0: Adding interface: batadv_slave_0
[  777.305084][T17214] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  777.387950][T17214] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  777.426088][T17214] batman_adv: batadv0: Adding interface: batadv_slave_1
[  777.453625][T17214] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  777.537627][T17214] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  777.981753][T17214] hsr_slave_0: entered promiscuous mode
[  778.021441][T17214] hsr_slave_1: entered promiscuous mode
[  778.054523][T17214] debugfs: 'hsr0' already exists in 'hsr'
[  778.089543][T17214] Cannot create hsr debugfs directory
[  778.745537][T15217] Bluetooth: hci4: command tx timeout
[  778.864140][ T5288] 8021q: adding VLAN 0 to HW filter on device eth9
[  779.051318][ T9469] hsr_slave_0: left promiscuous mode
[  779.072055][ T9469] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  779.106977][ T9469] batman_adv: batadv0: Removing interface: batadv_slave_0
[  779.191759][ T9469] veth1_macvtap: left promiscuous mode
[  779.217772][ T9469] veth0_macvtap: left promiscuous mode
[  779.246858][ T9469] veth1_vlan: left allmulticast mode
[  779.266934][ T9469] veth1_vlan: left promiscuous mode
[  779.284835][ T9469] veth0_vlan: left promiscuous mode
[  780.108034][ T9469] team0 (unregistering): Port device team_slave_0 removed
[  781.171885][T17370] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[14058] was attempted by "Ek@�:_`&p���c���E�����|�s�cP�p�������``T���#G��i��Q�)�1�S4���
�H�
�EJ�f}��!\x0cu͋9��v�M��p�����Za�XIRj\x0ahn�}��(��aX�ے>��,��4���B��F�$!�t@ɼHކ\x1b�s6R��T�Y�H\x09��S6���F����]���\x2246����y˺�����%i՞za\x07ܠ\x0b^H)Ni�܂\x09�W�<�Iפ���8��ET��<U�
�y.~\x07_��AQ��\x07i{��w���\x09���~w��e_Q�A��\x1b����8r��H\x0a��F�s�m��s/
��,m�,�w�K#�;�dr6�Q�R6���#)I��=�\x0d��Ĵ �v��)f�F>��6<�Ո����G�~F���ύFմ�;8tj�7P�\x5cԏ��#Y��H)�yf��ހ<�;C��
���2��u�-]z���c��qó�\x0aL��f�u�bx���\x22I�I�/�0�g�[oGC�e��Ϡ�T`���š�RQ�����'��d?����x'���E��+�ߗ������V_�p4��*8~cT�v�G����Z�D�[H@@h~\x0c��{S�SP�|��d�c\x0d�\x0aԫ�.&-�<�QѨ���\x22���qM%�!�م��Ͼ7��[�|�s�N��}W�C\x5c�s� �J�%YD�\x5cV\x0d� �*��ŗ޸�0\x0a\x0a�\x0cÆ�*�=\x1b�9\x0d�L�Y/�+�I���Z�KQ�\x22X�7��
1��.&+�?�!r�R��g�[X\x0b�U�r�9<��3j����J=6W��Pk��]g�e�+S��P;�_|A9\x22�3�S�t\x09���w\x0c�һȒ7���b�jE�
[  782.956102][T17390] FAULT_INJECTION: forcing a failure.
[  782.956102][T17390] name failslab, interval 1, probability 0, space 0, times 0
[  783.190683][T17401] FAULT_INJECTION: forcing a failure.
[  783.190683][T17401] name failslab, interval 1, probability 0, space 0, times 0
[  783.204425][T17401] CPU: 0 UID: 0 PID: 17401 Comm: syz.2.2270 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  783.204459][T17401] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  783.204466][T17401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  783.204479][T17401] Call Trace:
[  783.204485][T17401]  <TASK>
[  783.204493][T17401]  dump_stack_lvl+0x100/0x190
[  783.204519][T17401]  should_fail_ex.cold+0x5/0xa
[  783.204542][T17401]  should_failslab+0xc2/0x120
[  783.204564][T17401]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  783.204598][T17401]  ? security_inode_alloc+0x3b/0x2c0
[  783.204617][T17401]  ? lockdep_init_map_type+0x5c/0x250
[  783.204640][T17401]  security_inode_alloc+0x3b/0x2c0
[  783.204659][T17401]  inode_init_always_gfp+0xcc0/0x1000
[  783.204686][T17401]  alloc_inode+0x8e/0x250
[  783.204715][T17401]  path_from_stashed+0x25b/0x750
[  783.204740][T17401]  ? do_raw_spin_unlock+0x145/0x1e0
[  783.204765][T17401]  ns_get_path+0x60/0x80
[  783.204789][T17401]  proc_ns_get_link+0x121/0x230
[  783.204809][T17401]  ? __pfx_proc_ns_get_link+0x10/0x10
[  783.204832][T17401]  ? atime_needs_update+0x8b/0x6b0
[  783.204851][T17401]  pick_link+0xd17/0x13c0
[  783.204870][T17401]  ? __pfx_proc_ns_get_link+0x10/0x10
[  783.204893][T17401]  step_into_slowpath+0x9ba/0xf90
[  783.204917][T17401]  ? __pfx_step_into_slowpath+0x10/0x10
[  783.204936][T17401]  ? find_held_lock+0x2b/0x80
[  783.204967][T17401]  path_openat+0xf95/0x31a0
[  783.204997][T17401]  ? __pfx_path_openat+0x10/0x10
[  783.205028][T17401]  do_file_open+0x20e/0x430
[  783.205053][T17401]  ? __pfx_do_file_open+0x10/0x10
[  783.205092][T17401]  ? alloc_fd+0x476/0x790
[  783.205116][T17401]  ? do_getname+0x191/0x390
[  783.205145][T17401]  do_sys_openat2+0x10d/0x1e0
[  783.205173][T17401]  ? __pfx_do_sys_openat2+0x10/0x10
[  783.205203][T17401]  ? __fget_files+0x21f/0x3d0
[  783.205228][T17401]  __x64_sys_openat+0x12d/0x210
[  783.205257][T17401]  ? __pfx___x64_sys_openat+0x10/0x10
[  783.205290][T17401]  ? rcu_is_watching+0x12/0xc0
[  783.205315][T17401]  do_syscall_64+0x10b/0xf80
[  783.205341][T17401]  ? clear_bhb_loop+0x40/0x90
[  783.205363][T17401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  783.205382][T17401] RIP: 0033:0x7f7daad5d60e
[  783.205398][T17401] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  783.205422][T17401] RSP: 002b:00007f7dabd03ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  783.205441][T17401] RAX: ffffffffffffffda RBX: 00007f7dabd046c0 RCX: 00007f7daad5d60e
[  783.205453][T17401] RDX: 0000000000000002 RSI: 00007f7dabd03f90 RDI: ffffffffffffff9c
[  783.205464][T17401] RBP: 00007f7daae32d69 R08: 0000000000000000 R09: 0000000000000000
[  783.205476][T17401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  783.205487][T17401] R13: 00007f7dab016038 R14: 00007f7dab015fa0 R15: 00007fff68a2b568
[  783.205510][T17401]  </TASK>
[  784.478082][T17390] CPU: 0 UID: 0 PID: 17390 Comm: syz.5.2266 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  784.478118][T17390] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  784.478125][T17390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  784.478145][T17390] Call Trace:
[  784.478152][T17390]  <TASK>
[  784.478159][T17390]  dump_stack_lvl+0x100/0x190
[  784.478186][T17390]  should_fail_ex.cold+0x5/0xa
[  784.478211][T17390]  should_failslab+0xc2/0x120
[  784.478234][T17390]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  784.478264][T17390]  ? proc_alloc_inode+0x25/0x200
[  784.478288][T17390]  ? __pfx_proc_alloc_inode+0x10/0x10
[  784.478311][T17390]  proc_alloc_inode+0x25/0x200
[  784.478331][T17390]  alloc_inode+0x68/0x250
[  784.478366][T17390]  new_inode+0x22/0x1c0
[  784.478396][T17390]  proc_pid_make_inode+0x22/0x160
[  784.478419][T17390]  proc_pident_instantiate+0x85/0x310
[  784.478442][T17390]  proc_pident_lookup+0x1e3/0x270
[  784.478469][T17390]  __lookup_slow+0x251/0x460
[  784.478498][T17390]  ? __pfx___lookup_slow+0x10/0x10
[  784.478545][T17390]  lookup_slow+0x50/0x70
[  784.478574][T17390]  path_lookupat+0x5e8/0xc40
[  784.478598][T17390]  path_openat+0x1b08/0x31a0
[  784.478620][T17390]  ? kasan_save_stack+0x3f/0x50
[  784.478637][T17390]  ? kasan_save_stack+0x30/0x50
[  784.478654][T17390]  ? kasan_save_track+0x14/0x30
[  784.478671][T17390]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  784.478700][T17390]  ? do_getname+0x35/0x390
[  784.478725][T17390]  ? do_sys_openat2+0xc5/0x1e0
[  784.478756][T17390]  ? __pfx_path_openat+0x10/0x10
[  784.478788][T17390]  do_file_open+0x20e/0x430
[  784.478813][T17390]  ? __pfx_do_file_open+0x10/0x10
[  784.478843][T17390]  ? __pfx_kfree_link+0x10/0x10
[  784.478868][T17390]  ? alloc_fd+0x476/0x790
[  784.478892][T17390]  ? do_getname+0x191/0x390
[  784.478921][T17390]  do_sys_openat2+0x10d/0x1e0
[  784.478949][T17390]  ? __pfx_do_sys_openat2+0x10/0x10
[  784.478978][T17390]  ? do_raw_spin_lock+0x128/0x260
[  784.479005][T17390]  __x64_sys_openat+0x12d/0x210
[  784.479034][T17390]  ? __pfx___x64_sys_openat+0x10/0x10
[  784.479067][T17390]  ? rcu_is_watching+0x12/0xc0
[  784.479092][T17390]  do_syscall_64+0x10b/0xf80
[  784.479123][T17390]  ? clear_bhb_loop+0x40/0x90
[  784.479145][T17390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  784.479164][T17390] RIP: 0033:0x7f7c9139cdd9
[  784.479181][T17390] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  784.479199][T17390] RSP: 002b:00007f7c92264028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  784.479218][T17390] RAX: ffffffffffffffda RBX: 00007f7c91616360 RCX: 00007f7c9139cdd9
[  784.479230][T17390] RDX: 0000000000200000 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  784.479242][T17390] RBP: 00007f7c91432d69 R08: 0000000000000000 R09: 0000000000000000
[  784.479253][T17390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  784.479264][T17390] R13: 00007f7c916163f8 R14: 00007f7c91616360 R15: 00007ffde52beae8
[  784.479288][T17390]  </TASK>
[  785.109814][T17214] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  785.266951][T17214] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  785.295642][T17214] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  785.397754][T17214] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  785.671670][T17214] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  785.717467][T17422] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2272'.
[  785.730374][T17214] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  785.748249][T17214] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  785.795076][T17214] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  786.526291][T17437] Invalid ELF header magic: != ELF
[  786.559700][T17214] 8021q: adding VLAN 0 to HW filter on device bond0
[  786.660092][T17214] 8021q: adding VLAN 0 to HW filter on device team0
[  786.724001][ T9466] bridge0: port 1(bridge_slave_0) entered blocking state
[  786.731291][ T9466] bridge0: port 1(bridge_slave_0) entered forwarding state
[  786.814356][ T9469] bridge0: port 2(bridge_slave_1) entered blocking state
[  786.821561][ T9469] bridge0: port 2(bridge_slave_1) entered forwarding state
[  789.254970][T17214] 8021q: adding VLAN 0 to HW filter on device batadv0
[  789.852039][T17214] veth0_vlan: entered promiscuous mode
[  789.959997][T17214] veth1_vlan: entered promiscuous mode
[  789.994063][T17530] ACPI: Can not change Invalid GPE/Fixed Event status
[  790.054305][T17533] FAULT_INJECTION: forcing a failure.
[  790.054305][T17533] name failslab, interval 1, probability 0, space 0, times 0
[  790.143487][T17533] CPU: 0 UID: 0 PID: 17533 Comm: syz.2.2283 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  790.143522][T17533] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  790.143530][T17533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  790.143542][T17533] Call Trace:
[  790.143555][T17533]  <TASK>
[  790.143565][T17533]  dump_stack_lvl+0x100/0x190
[  790.143592][T17533]  should_fail_ex.cold+0x5/0xa
[  790.143615][T17533]  ? sk_prot_alloc+0x10b/0x2a0
[  790.143639][T17533]  should_failslab+0xc2/0x120
[  790.143661][T17533]  __kmalloc_noprof+0xe0/0x850
[  790.143683][T17533]  sk_prot_alloc+0x10b/0x2a0
[  790.143709][T17533]  sk_alloc+0x36/0xe80
[  790.143734][T17533]  __netlink_create+0x5e/0x2c0
[  790.143755][T17533]  ? __wake_up+0x3f/0x60
[  790.143782][T17533]  netlink_create+0x29b/0x610
[  790.143805][T17533]  ? __pfx_genl_bind+0x10/0x10
[  790.143830][T17533]  ? __pfx_genl_unbind+0x10/0x10
[  790.143856][T17533]  ? __pfx_genl_release+0x10/0x10
[  790.143885][T17533]  __sock_create+0x339/0x860
[  790.143915][T17533]  __sys_socket+0x14d/0x260
[  790.143943][T17533]  ? __pfx___sys_socket+0x10/0x10
[  790.143977][T17533]  __x64_sys_socket+0x72/0xb0
[  790.144004][T17533]  ? lockdep_hardirqs_on+0x78/0x100
[  790.144030][T17533]  do_syscall_64+0x10b/0xf80
[  790.144055][T17533]  ? clear_bhb_loop+0x40/0x90
[  790.144077][T17533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  790.144096][T17533] RIP: 0033:0x7f7daad9cdd9
[  790.144113][T17533] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  790.144131][T17533] RSP: 002b:00007f7dabd04028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  790.144150][T17533] RAX: ffffffffffffffda RBX: 00007f7dab015fa0 RCX: 00007f7daad9cdd9
[  790.144163][T17533] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  790.144175][T17533] RBP: 00007f7daae32d69 R08: 0000000000000000 R09: 0000000000000000
[  790.144186][T17533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  790.144198][T17533] R13: 00007f7dab016038 R14: 00007f7dab015fa0 R15: 00007fff68a2b568
[  790.144222][T17533]  </TASK>
[  790.915623][T17214] veth0_macvtap: entered promiscuous mode
[  790.941060][T17530] FAULT_INJECTION: forcing a failure.
[  790.941060][T17530] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  791.017279][T17530] CPU: 0 UID: 0 PID: 17530 Comm: syz.3.2282 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  791.017313][T17530] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  791.017329][T17530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  791.017341][T17530] Call Trace:
[  791.017347][T17530]  <TASK>
[  791.017355][T17530]  dump_stack_lvl+0x100/0x190
[  791.017381][T17530]  should_fail_ex.cold+0x5/0xa
[  791.017401][T17530]  ? prepare_alloc_pages+0x16d/0x5f0
[  791.017427][T17530]  should_fail_alloc_page+0xeb/0x140
[  791.017453][T17530]  prepare_alloc_pages+0x1f0/0x5f0
[  791.017480][T17530]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  791.017513][T17530]  ? _raw_spin_unlock_irqrestore+0x31/0x80
[  791.017541][T17530]  ? __pfx___schedule+0x10/0x10
[  791.017564][T17530]  ? try_to_wake_up+0x15f/0x1900
[  791.017592][T17530]  ? preempt_schedule_thunk+0x16/0x30
[  791.017622][T17530]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  791.017657][T17530]  ? __lock_acquire+0x4a5/0x2630
[  791.017674][T17530]  ? __mutex_unlock_slowpath+0x624/0x8a0
[  791.017707][T17530]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  791.017739][T17530]  ? do_raw_spin_lock+0x128/0x260
[  791.017760][T17530]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  791.017789][T17530]  ? policy_nodemask+0xed/0x4f0
[  791.017813][T17530]  alloc_pages_mpol+0x1fb/0x540
[  791.017836][T17530]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  791.017857][T17530]  ? __mutex_unlock_slowpath+0x15d/0x8a0
[  791.017889][T17530]  ? __seq_open_private+0x22/0xd0
[  791.017907][T17530]  ___kmalloc_large_node+0xe5/0x120
[  791.017930][T17530]  ? __pfx_rcu_gp_is_expedited+0x10/0x10
[  791.017955][T17530]  __kmalloc_large_node_noprof+0x1c/0x70
[  791.017981][T17530]  __kmalloc_noprof+0x5be/0x850
[  791.018002][T17530]  __seq_open_private+0x22/0xd0
[  791.018022][T17530]  __tracing_open+0x99/0xa80
[  791.018046][T17530]  tracing_open+0x26b/0x4d0
[  791.018068][T17530]  do_dentry_open+0x6d8/0x1660
[  791.018089][T17530]  ? __pfx_tracing_open+0x10/0x10
[  791.018114][T17530]  vfs_open+0x82/0x3f0
[  791.018149][T17530]  path_openat+0x208c/0x31a0
[  791.018180][T17530]  ? __pfx_path_openat+0x10/0x10
[  791.018212][T17530]  do_file_open+0x20e/0x430
[  791.018237][T17530]  ? __pfx_do_file_open+0x10/0x10
[  791.018277][T17530]  ? alloc_fd+0x476/0x790
[  791.018301][T17530]  ? do_getname+0x191/0x390
[  791.018335][T17530]  do_sys_openat2+0x10d/0x1e0
[  791.018364][T17530]  ? __pfx_do_sys_openat2+0x10/0x10
[  791.018401][T17530]  __x64_sys_openat+0x12d/0x210
[  791.018431][T17530]  ? __pfx___x64_sys_openat+0x10/0x10
[  791.018465][T17530]  ? rcu_is_watching+0x12/0xc0
[  791.018491][T17530]  do_syscall_64+0x10b/0xf80
[  791.018518][T17530]  ? clear_bhb_loop+0x40/0x90
[  791.018541][T17530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  791.018560][T17530] RIP: 0033:0x7fbbb159cdd9
[  791.018575][T17530] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  791.018594][T17530] RSP: 002b:00007fbbb23b0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  791.018612][T17530] RAX: ffffffffffffffda RBX: 00007fbbb1816090 RCX: 00007fbbb159cdd9
[  791.018624][T17530] RDX: 1a6b75d638828712 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  791.018636][T17530] RBP: 00007fbbb1632d69 R08: 0000000000000000 R09: 0000000000000000
[  791.018647][T17530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  791.018658][T17530] R13: 00007fbbb1816128 R14: 00007fbbb1816090 R15: 00007ffe4947c098
[  791.018681][T17530]  </TASK>
[  792.240749][T17550] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  792.455722][T17546] ovs_: entered promiscuous mode
[  792.492584][T17214] veth1_macvtap: entered promiscuous mode
[  792.970225][T17214] batman_adv: batadv0: Interface activated: batadv_slave_0
[  793.032329][T17214] batman_adv: batadv0: Interface activated: batadv_slave_1
[  793.093891][ T9458] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  793.159778][ T9458] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  793.207700][ T9458] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  793.255639][T17566] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2287'.
[  793.266273][ T9458] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  793.721425][ T9469] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  793.792608][ T9469] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  793.986562][ T9475] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  794.052457][ T9475] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  794.068782][T17571] binder: 17570:17571 unknown command 6713442
[  794.123154][T17571] binder: 17570:17571 ioctl c0306201 0 returned -22
[  794.225234][T17591] FAULT_INJECTION: forcing a failure.
[  794.225234][T17591] name failslab, interval 1, probability 0, space 0, times 0
[  794.269279][T17591] CPU: 0 UID: 0 PID: 17591 Comm: syz.5.2291 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  794.269314][T17591] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  794.269321][T17591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  794.269332][T17591] Call Trace:
[  794.269340][T17591]  <TASK>
[  794.269356][T17591]  dump_stack_lvl+0x100/0x190
[  794.269383][T17591]  should_fail_ex.cold+0x5/0xa
[  794.269408][T17591]  ? tomoyo_encode2+0xfb/0x3c0
[  794.269430][T17591]  should_failslab+0xc2/0x120
[  794.269454][T17591]  __kmalloc_noprof+0xe0/0x850
[  794.269471][T17591]  ? d_absolute_path+0x136/0x1b0
[  794.269494][T17591]  tomoyo_encode2+0xfb/0x3c0
[  794.269521][T17591]  tomoyo_encode+0x29/0x50
[  794.269543][T17591]  tomoyo_realpath_from_path+0x18c/0x690
[  794.269572][T17591]  tomoyo_path_number_perm+0x23c/0x580
[  794.269592][T17591]  ? tomoyo_path_number_perm+0x22e/0x580
[  794.269614][T17591]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  794.269642][T17591]  ? do_raw_spin_lock+0x128/0x260
[  794.269675][T17591]  ? find_held_lock+0x2b/0x80
[  794.269698][T17591]  ? current_check_access_path+0x269/0x430
[  794.269724][T17591]  ? __pfx_current_check_access_path+0x10/0x10
[  794.269746][T17591]  ? do_raw_spin_unlock+0x145/0x1e0
[  794.269771][T17591]  ? simple_lookup+0x105/0x1d0
[  794.269796][T17591]  tomoyo_path_mknod+0x164/0x190
[  794.269823][T17591]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  794.269851][T17591]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  794.269882][T17591]  security_path_mknod+0x161/0x300
[  794.269908][T17591]  filename_mknodat+0x241/0x7f0
[  794.269936][T17591]  ? __pfx_filename_mknodat+0x10/0x10
[  794.269960][T17591]  ? strncpy_from_user+0x19d/0x2d0
[  794.269981][T17591]  ? do_getname+0x191/0x390
[  794.270010][T17591]  __x64_sys_mknod+0x8f/0xc0
[  794.270035][T17591]  do_syscall_64+0x10b/0xf80
[  794.270062][T17591]  ? clear_bhb_loop+0x40/0x90
[  794.270084][T17591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  794.270103][T17591] RIP: 0033:0x7f7c9139cdd9
[  794.270119][T17591] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  794.270144][T17591] RSP: 002b:00007f7c922e8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  794.270164][T17591] RAX: ffffffffffffffda RBX: 00007f7c91615fa0 RCX: 00007f7c9139cdd9
[  794.270176][T17591] RDX: 0000000000000044 RSI: 0000000000001001 RDI: 0000200000000040
[  794.270187][T17591] RBP: 00007f7c91432d69 R08: 0000000000000000 R09: 0000000000000000
[  794.270198][T17591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  794.270209][T17591] R13: 00007f7c91616038 R14: 00007f7c91615fa0 R15: 00007ffde52beae8
[  794.270232][T17591]  </TASK>
[  794.270254][T17591] ERROR: Out of memory at tomoyo_realpath_from_path.
[  794.548708][T17587] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  794.576394][T17587] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  794.588634][T17587] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  794.601955][T17587] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  794.614832][T17587] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  794.665381][T17587] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  794.824523][T17596] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2292'.
[  794.941511][T17596] veth0_macvtap: left promiscuous mode
[  795.006900][T17596] macvtap0: entered promiscuous mode
[  795.027766][T17596] macvtap0: entered allmulticast mode
[  795.432268][T17616] netlink: 'syz.3.2295': attribute type 2 has an invalid length.
[  796.025534][ T9064] Bluetooth: hci2: command 0x2016 tx timeout
[  796.076996][T17619] zswap: compressor � not available
[  796.155649][T17627] block2mtd: illegal erase size
[  796.246116][   T30] audit: type=1806 audit(1843254574.989:56): xattr="." res=0
[  796.362163][ T9064] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  796.531971][T17639] FAULT_INJECTION: forcing a failure.
[  796.531971][T17639] name failslab, interval 1, probability 0, space 0, times 0
[  796.722661][T17639] CPU: 0 UID: 0 PID: 17639 Comm: syz.3.2300 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  796.722697][T17639] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  796.722705][T17639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  796.722717][T17639] Call Trace:
[  796.722724][T17639]  <TASK>
[  796.722732][T17639]  dump_stack_lvl+0x100/0x190
[  796.722757][T17639]  should_fail_ex.cold+0x5/0xa
[  796.722780][T17639]  should_failslab+0xc2/0x120
[  796.722803][T17639]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  796.722833][T17639]  ? __kernfs_new_node+0xd2/0x9f0
[  796.722858][T17639]  __kernfs_new_node+0xd2/0x9f0
[  796.722895][T17639]  ? __pfx___kernfs_new_node+0x10/0x10
[  796.722923][T17639]  ? find_held_lock+0x2b/0x80
[  796.722948][T17639]  ? kernfs_root+0xee/0x2a0
[  796.722967][T17639]  ? kernfs_root+0xee/0x2a0
[  796.722993][T17639]  kernfs_new_node+0x11b/0x1a0
[  796.723022][T17639]  __kernfs_create_file+0x53/0x350
[  796.723054][T17639]  sysfs_add_file_mode_ns+0x207/0x3c0
[  796.723079][T17639]  sysfs_merge_group+0x194/0x340
[  796.723102][T17639]  ? __pfx_sysfs_merge_group+0x10/0x10
[  796.723124][T17639]  ? bus_add_device+0x368/0x6b0
[  796.723143][T17639]  ? __pfx_bus_add_device+0x10/0x10
[  796.723159][T17639]  ? __pfx_dev_add_physical_location+0x10/0x10
[  796.723189][T17639]  dpm_sysfs_add+0x237/0x280
[  796.723215][T17639]  device_add+0x9ef/0x1950
[  796.723241][T17639]  ? __pfx_device_add+0x10/0x10
[  796.723264][T17639]  ? lockdep_init_map_type+0x5c/0x250
[  796.723283][T17639]  ? __init_waitqueue_head+0xca/0x150
[  796.723318][T17639]  rfkill_register+0x1ad/0xb30
[  796.723344][T17639]  nfc_register_device+0x11f/0x3e0
[  796.723372][T17639]  nci_register_device+0x7f1/0xb80
[  796.723395][T17639]  ? __pfx_nci_register_device+0x10/0x10
[  796.723420][T17639]  ? lockdep_init_map_type+0x5c/0x250
[  796.723444][T17639]  virtual_ncidev_open+0x141/0x220
[  796.723473][T17639]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  796.723501][T17639]  misc_open+0x26d/0x450
[  796.723524][T17639]  ? __pfx_misc_open+0x10/0x10
[  796.723547][T17639]  chrdev_open+0x234/0x6a0
[  796.723569][T17639]  ? __pfx_apparmor_file_open+0x10/0x10
[  796.723599][T17639]  ? __pfx_chrdev_open+0x10/0x10
[  796.723624][T17639]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  796.723653][T17639]  do_dentry_open+0x6d8/0x1660
[  796.723675][T17639]  ? __pfx_chrdev_open+0x10/0x10
[  796.723704][T17639]  vfs_open+0x82/0x3f0
[  796.723735][T17639]  path_openat+0x208c/0x31a0
[  796.723766][T17639]  ? __pfx_path_openat+0x10/0x10
[  796.723799][T17639]  do_file_open+0x20e/0x430
[  796.723825][T17639]  ? __pfx_do_file_open+0x10/0x10
[  796.723869][T17639]  ? alloc_fd+0x476/0x790
[  796.723894][T17639]  ? do_getname+0x191/0x390
[  796.723923][T17639]  do_sys_openat2+0x10d/0x1e0
[  796.723951][T17639]  ? __pfx_do_sys_openat2+0x10/0x10
[  796.723981][T17639]  ? __fget_files+0x21f/0x3d0
[  796.724007][T17639]  __x64_sys_openat+0x12d/0x210
[  796.724036][T17639]  ? __pfx___x64_sys_openat+0x10/0x10
[  796.724069][T17639]  ? rcu_is_watching+0x12/0xc0
[  796.724094][T17639]  do_syscall_64+0x10b/0xf80
[  796.724120][T17639]  ? clear_bhb_loop+0x40/0x90
[  796.724143][T17639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  796.724162][T17639] RIP: 0033:0x7fbbb159cdd9
[  796.724178][T17639] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  796.724196][T17639] RSP: 002b:00007fbbb238f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  796.724215][T17639] RAX: ffffffffffffffda RBX: 00007fbbb1816180 RCX: 00007fbbb159cdd9
[  796.724227][T17639] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  796.724239][T17639] RBP: 00007fbbb1632d69 R08: 0000000000000000 R09: 0000000000000000
[  796.724250][T17639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  796.724261][T17639] R13: 00007fbbb1816218 R14: 00007fbbb1816180 R15: 00007ffe4947c098
[  796.724285][T17639]  </TASK>
[  797.131343][T17652] futex_wake_op: syz.3.2300 tries to shift op by -2048; fix this program
[  797.140093][T17652] futex_wake_op: syz.3.2300 tries to shift op by -2048; fix this program
[  797.509398][ T9064] Bluetooth: hci4: command 0x0c1a tx timeout
[  797.517109][ T9064] Bluetooth: hci0: command 0x0c1a tx timeout
[  797.523699][ T9064] Bluetooth: hci3: command 0x0c1a tx timeout
[  797.548286][T17643] random: crng reseeded on system resumption
[  799.546527][T15217] Bluetooth: hci4: command 0x0c1a tx timeout
[  799.564162][T17678] bridge0: port 3(gretap0) entered blocking state
[  799.642105][T17678] bridge0: port 3(gretap0) entered disabled state
[  799.693459][T17678] gretap0: entered allmulticast mode
[  799.724405][T17678] FAULT_INJECTION: forcing a failure.
[  799.724405][T17678] name failslab, interval 1, probability 0, space 0, times 0
[  799.781400][T17678] CPU: 0 UID: 0 PID: 17678 Comm: syz.2.2308 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  799.781434][T17678] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  799.781441][T17678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  799.781452][T17678] Call Trace:
[  799.781459][T17678]  <TASK>
[  799.781467][T17678]  dump_stack_lvl+0x100/0x190
[  799.781492][T17678]  should_fail_ex.cold+0x5/0xa
[  799.781517][T17678]  should_failslab+0xc2/0x120
[  799.781539][T17678]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  799.781568][T17678]  ? __kernfs_new_node+0xd2/0x9f0
[  799.781594][T17678]  __kernfs_new_node+0xd2/0x9f0
[  799.781618][T17678]  ? __pfx___kernfs_new_node+0x10/0x10
[  799.781643][T17678]  ? find_held_lock+0x2b/0x80
[  799.781667][T17678]  ? kernfs_root+0xee/0x2a0
[  799.781685][T17678]  ? kernfs_root+0xee/0x2a0
[  799.781710][T17678]  kernfs_new_node+0x11b/0x1a0
[  799.781737][T17678]  kernfs_create_link+0xcc/0x240
[  799.781768][T17678]  sysfs_do_create_link_sd+0x90/0x140
[  799.781790][T17678]  sysfs_create_link+0x61/0xc0
[  799.781810][T17678]  __netdev_adjacent_dev_insert+0x43e/0xbf0
[  799.781833][T17678]  ? __pfx___netdev_adjacent_dev_insert+0x10/0x10
[  799.781861][T17678]  __netdev_upper_dev_link+0x3d8/0x7e0
[  799.781891][T17678]  ? __pfx___netdev_upper_dev_link+0x10/0x10
[  799.781916][T17678]  ? kernfs_root+0xf8/0x2a0
[  799.781938][T17678]  ? kernfs_add_one+0x214/0x850
[  799.781967][T17678]  netdev_master_upper_dev_link+0x9f/0xd0
[  799.781994][T17678]  ? __pfx_netdev_master_upper_dev_link+0x10/0x10
[  799.782023][T17678]  ? lockdep_rtnl_is_held+0x26/0x40
[  799.782050][T17678]  ? netdev_is_rx_handler_busy+0x83/0x140
[  799.782076][T17678]  br_add_if+0x9fd/0x1b40
[  799.782098][T17678]  ? security_capable+0x80/0x260
[  799.782128][T17678]  add_del_if+0x114/0x160
[  799.782150][T17678]  br_dev_siocdevprivate+0x8ac/0x1650
[  799.782173][T17678]  ? __pfx_br_dev_siocdevprivate+0x10/0x10
[  799.782193][T17678]  ? __lock_acquire+0x4a5/0x2630
[  799.782227][T17678]  ? lock_acquire+0x1b1/0x370
[  799.782251][T17678]  ? netdev_name_node_lookup+0x107/0x150
[  799.782284][T17678]  dev_ifsioc+0xc2f/0x1f10
[  799.782307][T17678]  ? __pfx_dev_ifsioc+0x10/0x10
[  799.782324][T17678]  ? __pfx___mutex_lock+0x10/0x10
[  799.782360][T17678]  ? dev_load+0x8e/0x240
[  799.782378][T17678]  ? dev_load+0x8e/0x240
[  799.782405][T17678]  dev_ioctl+0x70e/0x1070
[  799.782426][T17678]  sock_ioctl+0x494/0x6b0
[  799.782454][T17678]  ? __pfx_sock_ioctl+0x10/0x10
[  799.782480][T17678]  ? hook_file_ioctl_common+0x149/0x410
[  799.782506][T17678]  ? xfd_validate_state+0x129/0x190
[  799.782527][T17678]  ? __pfx_sock_ioctl+0x10/0x10
[  799.782555][T17678]  __x64_sys_ioctl+0x18e/0x210
[  799.782576][T17678]  do_syscall_64+0x10b/0xf80
[  799.782602][T17678]  ? clear_bhb_loop+0x40/0x90
[  799.782625][T17678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  799.782644][T17678] RIP: 0033:0x7f7daad9cdd9
[  799.782660][T17678] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  799.782679][T17678] RSP: 002b:00007f7dabd04028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  799.782697][T17678] RAX: ffffffffffffffda RBX: 00007f7dab015fa0 RCX: 00007f7daad9cdd9
[  799.782709][T17678] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000005
[  799.782720][T17678] RBP: 00007f7daae32d69 R08: 0000000000000000 R09: 0000000000000000
[  799.782731][T17678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  799.782742][T17678] R13: 00007f7dab016038 R14: 00007f7dab015fa0 R15: 00007fff68a2b568
[  799.782766][T17678]  </TASK>
[  800.165475][T17678] gretap0: left allmulticast mode
[  800.894497][T17697] busy
[  801.625207][T15217] Bluetooth: hci4: command 0x0c1a tx timeout
[  803.382890][T17734] random: crng reseeded on system resumption
[  804.091131][   T30] audit: type=1800 audit(1843254582.839:57): pid=17743 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2320" name="file0" dev="tmpfs" ino=3154 res=0 errno=0
[  804.683904][T17753] netlink: 'syz.3.2325': attribute type 5 has an invalid length.
[  804.729758][T17753] netlink: 'syz.3.2325': attribute type 1 has an invalid length.
[  804.782731][T17753] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2325'.
[  805.140444][T17762] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2327'.
[  806.054762][T15217] Bluetooth: hci4: unexpected event 0x10 length: 124 > 1
[  806.057173][ T9064] Bluetooth: hci4: hardware error 0x00
[  806.176229][T15217] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[  806.841631][T17803] sd 0:0:1:0: PR command failed: 1026
[  806.855926][T17783] random: crng reseeded on system resumption
[  806.875388][T17803] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  806.923058][T17803] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  807.111318][T17812] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  807.154321][T17812] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  807.163834][T17812] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  807.172469][T17812] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  807.183060][T17812] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  807.900665][   T30] audit: type=1800 audit(1843254586.639:58): pid=17816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2339" name="file0" dev="tmpfs" ino=800 res=0 errno=0
[  808.105109][ T9064] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  808.143386][ T9475] bridge_slave_1: left allmulticast mode
[  808.174206][ T9475] bridge_slave_1: left promiscuous mode
[  808.217088][ T9475] bridge0: port 2(bridge_slave_1) entered disabled state
[  808.294047][ T9475] bridge_slave_0: left allmulticast mode
[  808.325225][ T9475] bridge_slave_0: left promiscuous mode
[  808.346800][ T9475] bridge0: port 1(bridge_slave_0) entered disabled state
[  808.740600][ T9475] bond0 (unregistering): Released all slaves
[  808.906578][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  808.912955][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  808.921386][ T9475] HSR: left promiscuous mode
[  809.307517][T15217] Bluetooth: hci1: command tx timeout
[  810.061650][ T9475] hsr_slave_0: left promiscuous mode
[  810.081395][ T9475] hsr_slave_1: left promiscuous mode
[  810.096446][ T9475] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  810.124328][ T9475] batman_adv: batadv0: Removing interface: batadv_slave_0
[  810.141737][ T9475] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  810.160916][T17854] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2346'.
[  810.170792][ T9475] batman_adv: batadv0: Removing interface: batadv_slave_1
[  810.206949][ T9475] veth1_macvtap: left promiscuous mode
[  810.220720][ T9475] veth0_macvtap: left promiscuous mode
[  810.251747][ T9475] veth1_vlan: left promiscuous mode
[  810.273180][ T9475] veth0_vlan: left promiscuous mode
[  810.793343][ T9475] team0 (unregistering): Port device team_slave_1 removed
[  811.385758][T15217] Bluetooth: hci1: command tx timeout
[  811.820689][T17876] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  811.864932][T17876] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  811.925252][T17876] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  811.949943][T17876] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  811.966250][T17883] vmstat_refresh: nr_hugetlb -2048
[  811.988476][T17876] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  812.005646][T17883] MTRR 2 not used
[  812.020066][T17876] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  812.158469][T17806] bridge0: port 1(bridge_slave_0) entered blocking state
[  812.192800][T17806] bridge0: port 1(bridge_slave_0) entered disabled state
[  812.226237][T17806] bridge_slave_0: entered allmulticast mode
[  812.251851][T17806] bridge_slave_0: entered promiscuous mode
[  812.291913][T17806] bridge0: port 2(bridge_slave_1) entered blocking state
[  812.324217][T17806] bridge0: port 2(bridge_slave_1) entered disabled state
[  812.355308][T17806] bridge_slave_1: entered allmulticast mode
[  812.387703][T17806] bridge_slave_1: entered promiscuous mode
[  812.518323][T17806] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  812.571956][T17806] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  812.705295][T17806] team0: Port device team_slave_0 added
[  812.767215][T17806] team0: Port device team_slave_1 added
[  812.929991][T17806] batman_adv: batadv0: Adding interface: batadv_slave_0
[  812.981690][T17806] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  813.153240][T17806] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  813.302089][T17806] batman_adv: batadv0: Adding interface: batadv_slave_1
[  813.333483][T17806] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  813.446368][T17806] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  813.671760][T17806] hsr_slave_0: entered promiscuous mode
[  813.696582][T17806] hsr_slave_1: entered promiscuous mode
[  813.864878][T15217] Bluetooth: hci3: command 0x0c1a tx timeout
[  813.945291][T15217] Bluetooth: hci0: command 0x0c1a tx timeout
[  814.026535][T15217] Bluetooth: hci1: command 0x0419 tx timeout
[  814.881691][T17806] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  814.920554][T17806] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  814.954318][T17806] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  814.993181][T17806] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  815.027193][T17806] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  815.093462][T17806] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  815.127151][T17806] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  815.184288][T17806] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  815.705065][T17806] 8021q: adding VLAN 0 to HW filter on device bond0
[  815.946270][T15217] Bluetooth: hci3: command 0x0c1a tx timeout
[  816.030360][T17806] 8021q: adding VLAN 0 to HW filter on device team0
[  816.090922][ T9469] bridge0: port 1(bridge_slave_0) entered blocking state
[  816.098105][ T9469] bridge0: port 1(bridge_slave_0) entered forwarding state
[  816.107921][T15217] Bluetooth: hci1: command 0x0419 tx timeout
[  816.186380][ T9469] bridge0: port 2(bridge_slave_1) entered blocking state
[  816.193562][ T9469] bridge0: port 2(bridge_slave_1) entered forwarding state
[  818.184988][T15217] Bluetooth: hci1: command 0x0419 tx timeout
[  818.620371][T17806] 8021q: adding VLAN 0 to HW filter on device batadv0
[  818.857443][T17806] veth0_vlan: entered promiscuous mode
[  818.919018][T17806] veth1_vlan: entered promiscuous mode
[  819.057338][T17969] random: crng reseeded on system resumption
[  819.177278][T17806] veth0_macvtap: entered promiscuous mode
[  819.268487][T17806] veth1_macvtap: entered promiscuous mode
[  819.486108][T17806] batman_adv: batadv0: Interface activated: batadv_slave_0
[  819.570625][T17806] batman_adv: batadv0: Interface activated: batadv_slave_1
[  819.622978][ T9475] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  819.668250][ T9475] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  819.712090][ T9475] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  819.952984][ T9475] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  820.266806][T15217] Bluetooth: hci1: command 0x0419 tx timeout
[  820.331345][ T9055] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  820.376789][ T9055] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  820.431542][T17987] FAULT_INJECTION: forcing a failure.
[  820.431542][T17987] name failslab, interval 1, probability 0, space 0, times 0
[  820.497936][ T9055] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  820.522685][ T9055] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  820.637593][T17987] CPU: 0 UID: 0 PID: 17987 Comm: syz.5.2369 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  820.637628][T17987] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  820.637636][T17987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  820.637647][T17987] Call Trace:
[  820.637654][T17987]  <TASK>
[  820.637662][T17987]  dump_stack_lvl+0x100/0x190
[  820.637687][T17987]  should_fail_ex.cold+0x5/0xa
[  820.637710][T17987]  ? lsm_blob_alloc+0x68/0x90
[  820.637735][T17987]  should_failslab+0xc2/0x120
[  820.637756][T17987]  __kmalloc_noprof+0xe0/0x850
[  820.637773][T17987]  ? trace_kmalloc+0xe3/0x110
[  820.637797][T17987]  lsm_blob_alloc+0x68/0x90
[  820.637822][T17987]  security_sk_alloc+0x2d/0x290
[  820.637853][T17987]  sk_prot_alloc+0x12a/0x2a0
[  820.637879][T17987]  sk_alloc+0x36/0xe80
[  820.637899][T17987]  __netlink_create+0x5e/0x2c0
[  820.637920][T17987]  ? __wake_up+0x3f/0x60
[  820.637948][T17987]  netlink_create+0x29b/0x610
[  820.637971][T17987]  ? __pfx_genl_bind+0x10/0x10
[  820.637996][T17987]  ? __pfx_genl_unbind+0x10/0x10
[  820.638021][T17987]  ? __pfx_genl_release+0x10/0x10
[  820.638050][T17987]  __sock_create+0x339/0x860
[  820.638081][T17987]  __sys_socket+0x14d/0x260
[  820.638108][T17987]  ? __pfx___sys_socket+0x10/0x10
[  820.638141][T17987]  __x64_sys_socket+0x72/0xb0
[  820.638175][T17987]  ? lockdep_hardirqs_on+0x78/0x100
[  820.638201][T17987]  do_syscall_64+0x10b/0xf80
[  820.638227][T17987]  ? clear_bhb_loop+0x40/0x90
[  820.638250][T17987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  820.638269][T17987] RIP: 0033:0x7f7c9139cdd9
[  820.638285][T17987] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  820.638304][T17987] RSP: 002b:00007f7c92264028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  820.638323][T17987] RAX: ffffffffffffffda RBX: 00007f7c91616360 RCX: 00007f7c9139cdd9
[  820.638336][T17987] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  820.638347][T17987] RBP: 00007f7c91432d69 R08: 0000000000000000 R09: 0000000000000000
[  820.638358][T17987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  820.638369][T17987] R13: 00007f7c916163f8 R14: 00007f7c91616360 R15: 00007ffde52beae8
[  820.638391][T17987]  </TASK>
[  821.181296][T17994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  821.238902][   T30] audit: type=1800 audit(1843254599.969:59): pid=17992 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2335" name="dbroot" dev="configfs" ino=70927 res=0 errno=0
[  821.271920][T17994] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  821.315252][T17997] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input11
[  821.497923][   T30] audit: type=1800 audit(1843254600.249:60): pid=18000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2371" name="sr0" dev="devtmpfs" ino=2925 res=0 errno=0
[  821.813597][T18009] FAULT_INJECTION: forcing a failure.
[  821.813597][T18009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  821.890065][T18009] CPU: 0 UID: 0 PID: 18009 Comm: syz.2.2373 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  821.890099][T18009] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  821.890106][T18009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  821.890117][T18009] Call Trace:
[  821.890124][T18009]  <TASK>
[  821.890140][T18009]  dump_stack_lvl+0x100/0x190
[  821.890167][T18009]  should_fail_ex.cold+0x5/0xa
[  821.890191][T18009]  _copy_to_user+0x32/0xd0
[  821.890212][T18009]  simple_read_from_buffer+0xcb/0x170
[  821.890237][T18009]  proc_fail_nth_read+0x1af/0x230
[  821.890268][T18009]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  821.890300][T18009]  ? rw_verify_area+0xce/0x6d0
[  821.890319][T18009]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  821.890349][T18009]  vfs_read+0x1e4/0xb30
[  821.890373][T18009]  ? __pfx_vfs_read+0x10/0x10
[  821.890394][T18009]  ? __fget_files+0x215/0x3d0
[  821.890421][T18009]  ? __fget_files+0x21f/0x3d0
[  821.890449][T18009]  ksys_read+0x12a/0x250
[  821.890471][T18009]  ? __pfx_ksys_read+0x10/0x10
[  821.890494][T18009]  ? rcu_is_watching+0x12/0xc0
[  821.890520][T18009]  do_syscall_64+0x10b/0xf80
[  821.890547][T18009]  ? clear_bhb_loop+0x40/0x90
[  821.890570][T18009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.890590][T18009] RIP: 0033:0x7faac0f5d60e
[  821.890605][T18009] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  821.890624][T18009] RSP: 002b:00007faac1dbefe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  821.890643][T18009] RAX: ffffffffffffffda RBX: 00007faac1dbf6c0 RCX: 00007faac0f5d60e
[  821.890655][T18009] RDX: 000000000000000f RSI: 00007faac1dbf0a0 RDI: 0000000000000003
[  821.890667][T18009] RBP: 00007faac1dbf090 R08: 0000000000000000 R09: 0000000000000000
[  821.890678][T18009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  821.890689][T18009] R13: 00007faac1216038 R14: 00007faac1215fa0 R15: 00007ffe5ec06278
[  821.890712][T18009]  </TASK>
[  822.696199][T18020] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2378'.
[  822.807424][T18011] futex_wake_op: syz.1.2376 tries to shift op by -2048; fix this program
[  822.839172][T18011] futex_wake_op: syz.1.2376 tries to shift op by -2048; fix this program
[  822.890334][T18014] 0x000000000001-0x000000020000 : ""
[  823.010630][T18014] ftl_cs: FTL header corrupt!
[  823.731565][ T9064] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  823.763055][ T9064] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  823.777756][ T9064] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  823.797197][ T9064] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  823.806305][ T9064] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  824.420533][T18048] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  824.575641][ T9064] Bluetooth: hci0: unexpected event 0x3e length: 358 > 260
[  824.575672][ T9064] Bluetooth: hci0: unexpected subevent 0x1b length: 357 > 260
[  825.864900][ T9064] Bluetooth: hci2: command tx timeout
[  826.499496][T18026] bridge0: port 1(bridge_slave_0) entered blocking state
[  826.543652][T18026] bridge0: port 1(bridge_slave_0) entered disabled state
[  826.576194][T18026] bridge_slave_0: entered allmulticast mode
[  826.618007][T18026] bridge_slave_0: entered promiscuous mode
[  826.676015][T18026] bridge0: port 2(bridge_slave_1) entered blocking state
[  826.715045][T18026] bridge0: port 2(bridge_slave_1) entered disabled state
[  826.758488][T18026] bridge_slave_1: entered allmulticast mode
[  826.776117][T18107] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2394'.
[  826.790562][T18026] bridge_slave_1: entered promiscuous mode
[  826.920140][T18026] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  826.996257][T18026] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  827.146910][T18026] team0: Port device team_slave_0 added
[  827.179992][T18026] team0: Port device team_slave_1 added
[  827.273415][T18026] batman_adv: batadv0: Adding interface: batadv_slave_0
[  827.304042][T18026] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  827.393494][T18026] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  827.487544][T18026] batman_adv: batadv0: Adding interface: batadv_slave_1
[  827.511147][T18026] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  827.610020][T18026] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  827.772334][T18026] hsr_slave_0: entered promiscuous mode
[  827.803571][T18026] hsr_slave_1: entered promiscuous mode
[  827.825347][T18026] debugfs: 'hsr0' already exists in 'hsr'
[  827.845770][T18135] kvm: kvm [18134]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0xfffffffffffffeb4
[  827.859199][T18026] Cannot create hsr debugfs directory
[  827.949109][ T9064] Bluetooth: hci2: command tx timeout
[  829.348148][T18026] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  829.894044][T18026] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  830.028866][ T9064] Bluetooth: hci2: command tx timeout
[  830.275887][T18026] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  830.574288][T18026] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  830.899230][T18155] Process accounting resumed
[  831.218868][T18175] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2410'.
[  831.252973][T18175] nbd: must specify at least one socket
[  831.274534][T18176] tipc: Started in network mode
[  831.293765][T18176] tipc: Node identity ee00, cluster identity 4711
[  831.309498][T18176] tipc: Node number set to 60928
[  831.337638][T18026] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  831.391666][T18026] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  831.435373][T18026] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  831.502500][T18026] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  831.529345][T18026] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  831.561011][T18026] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  831.589506][T18026] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  831.622260][T18026] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  832.112569][ T9064] Bluetooth: hci2: command tx timeout
[  832.777119][T18026] 8021q: adding VLAN 0 to HW filter on device bond0
[  832.867981][T18026] 8021q: adding VLAN 0 to HW filter on device team0
[  832.929170][ T9475] bridge0: port 1(bridge_slave_0) entered blocking state
[  832.936377][ T9475] bridge0: port 1(bridge_slave_0) entered forwarding state
[  833.023773][ T9475] bridge0: port 2(bridge_slave_1) entered blocking state
[  833.030989][ T9475] bridge0: port 2(bridge_slave_1) entered forwarding state
[  834.149453][T18212] random: crng reseeded on system resumption
[  834.903270][T18259] FAULT_INJECTION: forcing a failure.
[  834.903270][T18259] name fail_futex, interval 1, probability 0, space 0, times 0
[  834.973641][T18026] 8021q: adding VLAN 0 to HW filter on device batadv0
[  835.014158][T18259] CPU: 0 UID: 0 PID: 18259 Comm: syz.1.2425 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  835.014194][T18259] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  835.014202][T18259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  835.014213][T18259] Call Trace:
[  835.014221][T18259]  <TASK>
[  835.014229][T18259]  dump_stack_lvl+0x100/0x190
[  835.014256][T18259]  should_fail_ex.cold+0x5/0xa
[  835.014280][T18259]  get_futex_key+0x1d2/0x1510
[  835.014302][T18259]  ? __pfx_get_futex_key+0x10/0x10
[  835.014328][T18259]  futex_wait_setup+0x83/0x510
[  835.014359][T18259]  __futex_wait+0x19f/0x300
[  835.014386][T18259]  ? __pfx___futex_wait+0x10/0x10
[  835.014410][T18259]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  835.014442][T18259]  ? __pfx_futex_wake_mark+0x10/0x10
[  835.014470][T18259]  ? futex_hash+0x2ad/0x370
[  835.014489][T18259]  ? futex_hash+0x141/0x370
[  835.014509][T18259]  futex_wait+0xe6/0x370
[  835.014535][T18259]  ? __pfx_futex_wait+0x10/0x10
[  835.014569][T18259]  ? ksys_write+0x190/0x250
[  835.014590][T18259]  ? ksys_write+0x190/0x250
[  835.014616][T18259]  do_futex+0x1ef/0x350
[  835.014638][T18259]  ? __pfx_do_futex+0x10/0x10
[  835.014664][T18259]  __x64_sys_futex+0x34f/0x4d0
[  835.014688][T18259]  ? __pfx___x64_sys_futex+0x10/0x10
[  835.014713][T18259]  ? rcu_is_watching+0x12/0xc0
[  835.014739][T18259]  do_syscall_64+0x10b/0xf80
[  835.014765][T18259]  ? clear_bhb_loop+0x40/0x90
[  835.014786][T18259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  835.014805][T18259] RIP: 0033:0x7fe2bc19cdd9
[  835.014821][T18259] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  835.014840][T18259] RSP: 002b:00007fe2ba3f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  835.014859][T18259] RAX: ffffffffffffffda RBX: 00007fe2bc416098 RCX: 00007fe2bc19cdd9
[  835.014871][T18259] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe2bc416098
[  835.014882][T18259] RBP: 00007fe2bc416090 R08: 0000000000000000 R09: 0000000000000000
[  835.014893][T18259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  835.014904][T18259] R13: 00007fe2bc416128 R14: 00007ffc04acf9b0 R15: 00007ffc04acfa98
[  835.014927][T18259]  </TASK>
[  835.266232][T18026] veth0_vlan: entered promiscuous mode
[  835.277292][T18026] veth1_vlan: entered promiscuous mode
[  835.297987][T18026] veth0_macvtap: entered promiscuous mode
[  835.306777][T18026] veth1_macvtap: entered promiscuous mode
[  835.321704][T18026] batman_adv: batadv0: Interface activated: batadv_slave_0
[  835.332094][T18026] batman_adv: batadv0: Interface activated: batadv_slave_1
[  835.462615][ T9470] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  835.480139][ T9469] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  835.526492][ T9469] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  835.538367][ T9469] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  835.988273][ T9475] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  836.022950][ T9475] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  836.162427][ T9055] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  836.196196][ T9055] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  837.133361][T18275] random: crng reseeded on system resumption
[  838.796019][T18326] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  839.335389][T18302] random: crng reseeded on system resumption
[  839.570229][T18330] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  841.589753][T18348] smc: net device dummy0 applied user defined pnetid DUMMY0
[  841.703093][T18364] __vm_enough_memory: pid: 18364, comm: syz.2.2443, bytes: 4398046457856 not enough memory for the allocation
[  841.796268][T18364] __vm_enough_memory: pid: 18364, comm: syz.2.2443, bytes: 4398046457856 not enough memory for the allocation
[  841.869172][T18364] __vm_enough_memory: pid: 18364, comm: syz.2.2443, bytes: 4398046457856 not enough memory for the allocation
[  841.930019][T18364] __vm_enough_memory: pid: 18364, comm: syz.2.2443, bytes: 4398046457856 not enough memory for the allocation
[  841.973531][T18364] __vm_enough_memory: pid: 18364, comm: syz.2.2443, bytes: 4398046457856 not enough memory for the allocation
[  842.028860][T18364] __vm_enough_memory: pid: 18364, comm: syz.2.2443, bytes: 4398046457856 not enough memory for the allocation
[  843.653209][T18392] random: crng reseeded on system resumption
[  844.052191][T18417] zswap: compressor  not available
[  846.048272][T18450] random: crng reseeded on system resumption
[  846.128610][T18453] netlink: 'syz.5.2460': attribute type 12 has an invalid length.
[  846.911443][T18461] random: crng reseeded on system resumption
[  847.844135][T18460] netlink: 342 bytes leftover after parsing attributes in process `syz.3.2461'.
[  848.331761][T18477] FAULT_INJECTION: forcing a failure.
[  848.331761][T18477] name failslab, interval 1, probability 0, space 0, times 0
[  848.403417][T18477] CPU: 0 UID: 0 PID: 18477 Comm: syz.1.2465 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  848.403452][T18477] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  848.403459][T18477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  848.403470][T18477] Call Trace:
[  848.403477][T18477]  <TASK>
[  848.403485][T18477]  dump_stack_lvl+0x100/0x190
[  848.403511][T18477]  should_fail_ex.cold+0x5/0xa
[  848.403535][T18477]  should_failslab+0xc2/0x120
[  848.403558][T18477]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  848.403588][T18477]  ? alloc_empty_file+0x5b/0x1c0
[  848.403617][T18477]  ? __pfx_stack_trace_save+0x10/0x10
[  848.403646][T18477]  alloc_empty_file+0x5b/0x1c0
[  848.403674][T18477]  path_openat+0xe8/0x31a0
[  848.403697][T18477]  ? kasan_save_stack+0x3f/0x50
[  848.403714][T18477]  ? kasan_save_stack+0x30/0x50
[  848.403731][T18477]  ? kasan_save_track+0x14/0x30
[  848.403747][T18477]  ? __kasan_slab_alloc+0x89/0x90
[  848.403766][T18477]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  848.403794][T18477]  ? do_getname+0x35/0x390
[  848.403819][T18477]  ? do_sys_openat2+0xc5/0x1e0
[  848.403846][T18477]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  848.403868][T18477]  ? __pfx_path_openat+0x10/0x10
[  848.403899][T18477]  do_file_open+0x20e/0x430
[  848.403929][T18477]  ? __pfx_do_file_open+0x10/0x10
[  848.403968][T18477]  ? alloc_fd+0x476/0x790
[  848.403992][T18477]  ? do_getname+0x191/0x390
[  848.404021][T18477]  do_sys_openat2+0x10d/0x1e0
[  848.404050][T18477]  ? __pfx_do_sys_openat2+0x10/0x10
[  848.404086][T18477]  __x64_sys_openat+0x12d/0x210
[  848.404115][T18477]  ? __pfx___x64_sys_openat+0x10/0x10
[  848.404148][T18477]  ? rcu_is_watching+0x12/0xc0
[  848.404173][T18477]  do_syscall_64+0x10b/0xf80
[  848.404200][T18477]  ? clear_bhb_loop+0x40/0x90
[  848.404222][T18477]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  848.404241][T18477] RIP: 0033:0x7fe2bc19cdd9
[  848.404258][T18477] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  848.404277][T18477] RSP: 002b:00007fe2bcf84028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  848.404304][T18477] RAX: ffffffffffffffda RBX: 00007fe2bc415fa0 RCX: 00007fe2bc19cdd9
[  848.404316][T18477] RDX: 0000000000020a03 RSI: 0000200000003fc0 RDI: ffffffffffffff9c
[  848.404328][T18477] RBP: 00007fe2bc232d69 R08: 0000000000000000 R09: 0000000000000000
[  848.404339][T18477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  848.404350][T18477] R13: 00007fe2bc416038 R14: 00007fe2bc415fa0 R15: 00007ffc04acfa98
[  848.404374][T18477]  </TASK>
[  849.302032][T18481] netlink: 330 bytes leftover after parsing attributes in process `syz.2.2467'.
[  850.079231][T18491] bond0: Unable to set down delay as MII monitoring is disabled
[  850.579847][T18502] random: crng reseeded on system resumption
[  851.248154][T18525] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2473'.
[  851.260021][T18486] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  851.762445][T18517] Process accounting resumed
[  855.211297][T18580] random: crng reseeded on system resumption
[  859.174232][T18636] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2496'.
[  859.469358][T18636] i: entered promiscuous mode
[  859.532817][T18638] HfR: entered promiscuous mode
[  860.053281][T18648] futex_wake_op: syz.5.2499 tries to shift op by -2048; fix this program
[  860.088260][T18648] futex_wake_op: syz.5.2499 tries to shift op by -2048; fix this program
[  860.272389][T18646] 0x000000000001-0x000000020000 : ""
[  860.320924][T18646] ftl_cs: FTL header corrupt!
[  860.344392][T18650] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2500'.
[  861.061896][T18643] Process accounting paused
[  861.253035][T18668] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2504'.
[  863.692002][T18705] random: crng reseeded on system resumption
[  868.090594][T18776] netlink: 'syz.5.2525': attribute type 11 has an invalid length.
[  869.921831][T18783] random: crng reseeded on system resumption
[  870.346462][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  870.352894][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  871.214372][T18824] loop6: detected capacity change from 0 to 8
[  872.182079][T18837] random: crng reseeded on system resumption
[  872.295335][T18839] netlink: 146 bytes leftover after parsing attributes in process `syz.1.2537'.
[  873.496908][T18852] random: crng reseeded on system resumption
[  876.395202][T18909] FAULT_INJECTION: forcing a failure.
[  876.395202][T18909] name failslab, interval 1, probability 0, space 0, times 0
[  876.471425][T18909] CPU: 0 UID: 0 PID: 18909 Comm: syz.3.2552 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  876.471461][T18909] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  876.471468][T18909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  876.471480][T18909] Call Trace:
[  876.471487][T18909]  <TASK>
[  876.471495][T18909]  dump_stack_lvl+0x100/0x190
[  876.471522][T18909]  should_fail_ex.cold+0x5/0xa
[  876.471545][T18909]  should_failslab+0xc2/0x120
[  876.471568][T18909]  __kmalloc_cache_noprof+0x7a/0x6f0
[  876.471596][T18909]  ? snd_timer_instance_new+0x47/0x350
[  876.471628][T18909]  snd_timer_instance_new+0x47/0x350
[  876.471656][T18909]  snd_seq_timer_open+0x1d4/0x5d0
[  876.471679][T18909]  ? __pfx_snd_seq_timer_open+0x10/0x10
[  876.471707][T18909]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  876.471734][T18909]  ? lockdep_hardirqs_on+0x78/0x100
[  876.471760][T18909]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  876.471788][T18909]  queue_use+0xdc/0x1f0
[  876.471816][T18909]  snd_seq_queue_alloc+0x2e5/0x540
[  876.471849][T18909]  snd_seq_ioctl_create_queue+0xa9/0x370
[  876.471874][T18909]  call_seq_client_ctl+0xa3/0x130
[  876.471900][T18909]  snd_seq_kernel_client_ctl+0x77/0xd0
[  876.471926][T18909]  alloc_seq_queue+0xdb/0x180
[  876.471952][T18909]  ? __pfx_alloc_seq_queue+0x10/0x10
[  876.471990][T18909]  ? mark_held_locks+0x40/0x70
[  876.472011][T18909]  snd_seq_oss_open+0x2b2/0xa10
[  876.472041][T18909]  odev_open+0x6f/0x90
[  876.472063][T18909]  ? __pfx_odev_open+0x10/0x10
[  876.472086][T18909]  soundcore_open+0x2e3/0x5a0
[  876.472114][T18909]  ? __pfx_soundcore_open+0x10/0x10
[  876.472147][T18909]  chrdev_open+0x234/0x6a0
[  876.472171][T18909]  ? __pfx_apparmor_file_open+0x10/0x10
[  876.472202][T18909]  ? __pfx_chrdev_open+0x10/0x10
[  876.472227][T18909]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  876.472257][T18909]  do_dentry_open+0x6d8/0x1660
[  876.472279][T18909]  ? __pfx_chrdev_open+0x10/0x10
[  876.472307][T18909]  vfs_open+0x82/0x3f0
[  876.472337][T18909]  path_openat+0x208c/0x31a0
[  876.472370][T18909]  ? __pfx_path_openat+0x10/0x10
[  876.472401][T18909]  do_file_open+0x20e/0x430
[  876.472426][T18909]  ? __pfx_do_file_open+0x10/0x10
[  876.472465][T18909]  ? alloc_fd+0x476/0x790
[  876.472489][T18909]  ? do_getname+0x191/0x390
[  876.472523][T18909]  do_sys_openat2+0x10d/0x1e0
[  876.472551][T18909]  ? __pfx_do_sys_openat2+0x10/0x10
[  876.472581][T18909]  ? __fget_files+0x21f/0x3d0
[  876.472607][T18909]  __x64_sys_openat+0x12d/0x210
[  876.472636][T18909]  ? __pfx___x64_sys_openat+0x10/0x10
[  876.472669][T18909]  ? rcu_is_watching+0x12/0xc0
[  876.472694][T18909]  do_syscall_64+0x10b/0xf80
[  876.472720][T18909]  ? clear_bhb_loop+0x40/0x90
[  876.472743][T18909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  876.472762][T18909] RIP: 0033:0x7f27d9d9cdd9
[  876.472778][T18909] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  876.472797][T18909] RSP: 002b:00007f27dad03028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  876.472815][T18909] RAX: ffffffffffffffda RBX: 00007f27da015fa0 RCX: 00007f27d9d9cdd9
[  876.472828][T18909] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  876.472839][T18909] RBP: 00007f27d9e32d69 R08: 0000000000000000 R09: 0000000000000000
[  876.472850][T18909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  876.472861][T18909] R13: 00007f27da016038 R14: 00007f27da015fa0 R15: 00007ffe9ae8dc08
[  876.472885][T18909]  </TASK>
[  877.333780][T18905] random: crng reseeded on system resumption
[  877.771953][ T9064] Bluetooth: hci0: Malformed Event: 0x02
[  877.847050][T18931] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2556'.
[  877.872538][T18928] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2557'.
[  877.907789][T18931] vlan1: entered allmulticast mode
[  877.922590][T18931] veth0_vlan: entered allmulticast mode
[  879.565677][T18973] FAULT_INJECTION: forcing a failure.
[  879.565677][T18973] name failslab, interval 1, probability 0, space 0, times 0
[  879.708588][T18973] CPU: 0 UID: 0 PID: 18973 Comm: syz.2.2564 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  879.708624][T18973] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  879.708632][T18973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  879.708644][T18973] Call Trace:
[  879.708651][T18973]  <TASK>
[  879.708659][T18973]  dump_stack_lvl+0x100/0x190
[  879.708685][T18973]  should_fail_ex.cold+0x5/0xa
[  879.708708][T18973]  should_failslab+0xc2/0x120
[  879.708730][T18973]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  879.708759][T18973]  ? security_inode_alloc+0x3b/0x2c0
[  879.708777][T18973]  ? lockdep_init_map_type+0x5c/0x250
[  879.708799][T18973]  security_inode_alloc+0x3b/0x2c0
[  879.708825][T18973]  inode_init_always_gfp+0xcc0/0x1000
[  879.708854][T18973]  alloc_inode+0x8e/0x250
[  879.708883][T18973]  sock_alloc+0x44/0x280
[  879.708904][T18973]  ? security_socket_create+0x7f/0x250
[  879.708933][T18973]  __sock_create+0xc2/0x860
[  879.708963][T18973]  udp_sock_create4+0xa6/0x450
[  879.708989][T18973]  ? __pfx_udp_sock_create4+0x10/0x10
[  879.709016][T18973]  ? lockdep_hardirqs_on+0x78/0x100
[  879.709043][T18973]  ? crng_make_state+0x2b0/0x6c0
[  879.709066][T18973]  rxrpc_open_socket+0x4ef/0x6b0
[  879.709089][T18973]  ? __pfx_rxrpc_open_socket+0x10/0x10
[  879.709122][T18973]  ? rcu_is_watching+0x12/0xc0
[  879.709144][T18973]  ? trace_rxrpc_local+0x80/0x250
[  879.709168][T18973]  rxrpc_lookup_local+0xac7/0x1220
[  879.709195][T18973]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[  879.709220][T18973]  ? __local_bh_enable_ip+0x9e/0x120
[  879.709248][T18973]  rxrpc_sendmsg+0x34a/0x680
[  879.709276][T18973]  sock_write_iter+0x524/0x5a0
[  879.709302][T18973]  ? __pfx_rxrpc_sendmsg+0x10/0x10
[  879.709326][T18973]  ? __pfx_sock_write_iter+0x10/0x10
[  879.709351][T18973]  ? futex_hash+0x141/0x370
[  879.709375][T18973]  ? bpf_lsm_file_permission+0x9/0x10
[  879.709394][T18973]  ? security_file_permission+0x76/0x210
[  879.709416][T18973]  ? rw_verify_area+0xce/0x6d0
[  879.709437][T18973]  vfs_write+0x6ac/0x1070
[  879.709462][T18973]  ? __pfx_sock_write_iter+0x10/0x10
[  879.709490][T18973]  ? __pfx_vfs_write+0x10/0x10
[  879.709510][T18973]  ? find_held_lock+0x2b/0x80
[  879.709549][T18973]  ksys_write+0x1f8/0x250
[  879.709570][T18973]  ? __pfx_ksys_write+0x10/0x10
[  879.709593][T18973]  ? rcu_is_watching+0x12/0xc0
[  879.709617][T18973]  do_syscall_64+0x10b/0xf80
[  879.709643][T18973]  ? clear_bhb_loop+0x40/0x90
[  879.709665][T18973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  879.709684][T18973] RIP: 0033:0x7faac0f9cdd9
[  879.709701][T18973] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  879.709719][T18973] RSP: 002b:00007faac1dbf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  879.709738][T18973] RAX: ffffffffffffffda RBX: 00007faac1215fa0 RCX: 00007faac0f9cdd9
[  879.709750][T18973] RDX: 0000000000100085 RSI: 0000000000000000 RDI: 0000000000000003
[  879.709761][T18973] RBP: 00007faac1032d69 R08: 0000000000000000 R09: 0000000000000000
[  879.709772][T18973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  879.709783][T18973] R13: 00007faac1216038 R14: 00007faac1215fa0 R15: 00007ffe5ec06278
[  879.709807][T18973]  </TASK>
[  880.370284][T18973] socket: no more sockets
[  880.720384][   T30] audit: type=1800 audit(1843254659.389:61): pid=18984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2567" name="lu_gp_id" dev="configfs" ino=77228 res=0 errno=0
[  881.681464][T18990] random: crng reseeded on system resumption
[  882.673209][T18980] Process accounting paused
[  882.889160][T19027] .^: entered promiscuous mode
[  883.635300][T19045] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2580'.
[  884.091150][T19051] netlink: 342 bytes leftover after parsing attributes in process `syz.2.2576'.
[  884.091175][T19051] IPv6: NLM_F_CREATE should be specified when creating new route
[  884.092961][T19051] IPv6: Can't replace route, no match found
[  889.320105][T19131] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2600'.
[  890.200446][T19146] random: crng reseeded on system resumption
[  891.210927][T19160] Process accounting resumed
[  893.939037][T19199] random: crng reseeded on system resumption
[  894.390980][T19224] FAULT_INJECTION: forcing a failure.
[  894.390980][T19224] name failslab, interval 1, probability 0, space 0, times 0
[  894.434345][T19224] CPU: 0 UID: 0 PID: 19224 Comm: syz.3.2621 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  894.434379][T19224] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  894.434387][T19224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  894.434398][T19224] Call Trace:
[  894.434405][T19224]  <TASK>
[  894.434413][T19224]  dump_stack_lvl+0x100/0x190
[  894.434449][T19224]  should_fail_ex.cold+0x5/0xa
[  894.434479][T19224]  ? tomoyo_encode2+0xfb/0x3c0
[  894.434502][T19224]  should_failslab+0xc2/0x120
[  894.434530][T19224]  __kmalloc_noprof+0xe0/0x850
[  894.434547][T19224]  ? d_absolute_path+0x136/0x1b0
[  894.434570][T19224]  tomoyo_encode2+0xfb/0x3c0
[  894.434599][T19224]  tomoyo_encode+0x29/0x50
[  894.434621][T19224]  tomoyo_realpath_from_path+0x18c/0x690
[  894.434651][T19224]  tomoyo_path_number_perm+0x23c/0x580
[  894.434670][T19224]  ? tomoyo_path_number_perm+0x22e/0x580
[  894.434692][T19224]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  894.434726][T19224]  ? do_raw_spin_lock+0x128/0x260
[  894.434759][T19224]  ? find_held_lock+0x2b/0x80
[  894.434783][T19224]  ? current_check_access_path+0x269/0x430
[  894.434807][T19224]  ? __pfx_current_check_access_path+0x10/0x10
[  894.434829][T19224]  ? do_raw_spin_unlock+0x145/0x1e0
[  894.434853][T19224]  ? simple_lookup+0x105/0x1d0
[  894.434878][T19224]  tomoyo_path_mknod+0x164/0x190
[  894.434907][T19224]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[  894.434937][T19224]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  894.434968][T19224]  security_path_mknod+0x161/0x300
[  894.434994][T19224]  filename_mknodat+0x241/0x7f0
[  894.435022][T19224]  ? __pfx_filename_mknodat+0x10/0x10
[  894.435046][T19224]  ? strncpy_from_user+0x19d/0x2d0
[  894.435068][T19224]  ? do_getname+0x191/0x390
[  894.435098][T19224]  __x64_sys_mknod+0x8f/0xc0
[  894.435122][T19224]  do_syscall_64+0x10b/0xf80
[  894.435148][T19224]  ? clear_bhb_loop+0x40/0x90
[  894.435171][T19224]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  894.435190][T19224] RIP: 0033:0x7f27d9d9cdd9
[  894.435207][T19224] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  894.435225][T19224] RSP: 002b:00007f27dad03028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  894.435244][T19224] RAX: ffffffffffffffda RBX: 00007f27da015fa0 RCX: 00007f27d9d9cdd9
[  894.435256][T19224] RDX: 0000000000000044 RSI: 0000000000001001 RDI: 0000200000000040
[  894.435267][T19224] RBP: 00007f27d9e32d69 R08: 0000000000000000 R09: 0000000000000000
[  894.435279][T19224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  894.435289][T19224] R13: 00007f27da016038 R14: 00007f27da015fa0 R15: 00007ffe9ae8dc08
[  894.435314][T19224]  </TASK>
[  895.899104][T19224] ERROR: Out of memory at tomoyo_realpath_from_path.
[  896.449663][  T123] usb usb40-port5: attempt power cycle
[  896.870883][T19258] netlink: 350 bytes leftover after parsing attributes in process `syz.5.2630'.
[  897.106902][  T123] usb usb40-port5: unable to enumerate USB device
[  897.422859][T19260] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2629'.
[  898.363128][T19273] FAULT_INJECTION: forcing a failure.
[  898.363128][T19273] name failslab, interval 1, probability 0, space 0, times 0
[  898.624266][T19273] CPU: 0 UID: 0 PID: 19273 Comm: syz.5.2633 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  898.624300][T19273] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  898.624308][T19273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  898.624319][T19273] Call Trace:
[  898.624326][T19273]  <TASK>
[  898.624334][T19273]  dump_stack_lvl+0x100/0x190
[  898.624360][T19273]  should_fail_ex.cold+0x5/0xa
[  898.624383][T19273]  should_failslab+0xc2/0x120
[  898.624406][T19273]  __kmalloc_cache_noprof+0x7a/0x6f0
[  898.624433][T19273]  ? usbdev_open+0x9d/0x870
[  898.624462][T19273]  usbdev_open+0x9d/0x870
[  898.624486][T19273]  ? kobject_get_unless_zero+0x156/0x200
[  898.624506][T19273]  ? __pfx_usbdev_open+0x10/0x10
[  898.624531][T19273]  ? chrdev_open+0x10b/0x6a0
[  898.624554][T19273]  ? chrdev_open+0x10b/0x6a0
[  898.624580][T19273]  ? __pfx_usbdev_open+0x10/0x10
[  898.624602][T19273]  chrdev_open+0x234/0x6a0
[  898.624624][T19273]  ? __pfx_apparmor_file_open+0x10/0x10
[  898.624655][T19273]  ? __pfx_chrdev_open+0x10/0x10
[  898.624679][T19273]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  898.624707][T19273]  do_dentry_open+0x6d8/0x1660
[  898.624730][T19273]  ? __pfx_chrdev_open+0x10/0x10
[  898.624758][T19273]  vfs_open+0x82/0x3f0
[  898.624788][T19273]  path_openat+0x208c/0x31a0
[  898.624819][T19273]  ? __pfx_path_openat+0x10/0x10
[  898.624851][T19273]  do_file_open+0x20e/0x430
[  898.624876][T19273]  ? __pfx_do_file_open+0x10/0x10
[  898.624914][T19273]  ? alloc_fd+0x476/0x790
[  898.624939][T19273]  ? do_getname+0x191/0x390
[  898.624968][T19273]  do_sys_openat2+0x10d/0x1e0
[  898.625004][T19273]  ? __pfx_do_sys_openat2+0x10/0x10
[  898.625033][T19273]  ? do_raw_spin_lock+0x128/0x260
[  898.625060][T19273]  __x64_sys_openat+0x12d/0x210
[  898.625089][T19273]  ? __pfx___x64_sys_openat+0x10/0x10
[  898.625123][T19273]  ? rcu_is_watching+0x12/0xc0
[  898.625148][T19273]  do_syscall_64+0x10b/0xf80
[  898.625175][T19273]  ? clear_bhb_loop+0x40/0x90
[  898.625197][T19273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  898.625216][T19273] RIP: 0033:0x7f7c9139cdd9
[  898.625232][T19273] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  898.625251][T19273] RSP: 002b:00007f7c922c7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  898.625269][T19273] RAX: ffffffffffffffda RBX: 00007f7c91616090 RCX: 00007f7c9139cdd9
[  898.625281][T19273] RDX: 0000000000080802 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  898.625293][T19273] RBP: 00007f7c91432d69 R08: 0000000000000000 R09: 0000000000000000
[  898.625304][T19273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  898.625315][T19273] R13: 00007f7c91616128 R14: 00007f7c91616090 R15: 00007ffde52beae8
[  898.625338][T19273]  </TASK>
[  899.624861][   T30] audit: type=1800 audit(1843320208.354:62): pid=19301 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2639" name="file0" dev="tmpfs" ino=272 res=0 errno=0
[  900.526632][T19310] random: crng reseeded on system resumption
[  904.164676][T19349] vivid-007: =================  START STATUS  =================
[  904.210801][T19349] vivid-007: Generate PTS: true
[  904.248308][T19349] vivid-007: Generate SCR: true
[  904.288199][T19349] tpg source WxH: 320x240 (Y'CbCr)
[  904.324910][T19349] tpg field: 1
[  904.390568][T19349] tpg crop: (0,0)/320x240
[  904.437524][T19349] tpg compose: (0,0)/320x240
[  904.485417][T19349] tpg colorspace: 8
[  904.502053][T19349] tpg transfer function: 0/0
[  904.530623][T19349] tpg Y'CbCr encoding: 0/0
[  904.564014][T19349] tpg quantization: 0/0
[  904.588902][T19349] tpg RGB range: 0/2
[  904.633793][T19349] vivid-007: ==================  END STATUS  ==================
[  906.078550][T19353] random: crng reseeded on system resumption
[  906.928095][T19393] ima: policy update failed
[  906.998714][   T30] audit: type=1802 audit(1843320215.744:63): pid=19393 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.2655" res=0 errno=0
[  907.543853][T19394] random: crng reseeded on system resumption
[  908.537738][T19408] random: crng reseeded on system resumption
[  909.116944][T19412] FAULT_INJECTION: forcing a failure.
[  909.116944][T19412] name failslab, interval 1, probability 0, space 0, times 0
[  909.208076][T19412] CPU: 0 UID: 0 PID: 19412 Comm: syz.1.2660 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  909.208111][T19412] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  909.208118][T19412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  909.208130][T19412] Call Trace:
[  909.208136][T19412]  <TASK>
[  909.208144][T19412]  dump_stack_lvl+0x100/0x190
[  909.208170][T19412]  should_fail_ex.cold+0x5/0xa
[  909.208195][T19412]  should_failslab+0xc2/0x120
[  909.208217][T19412]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  909.208247][T19412]  ? jbd2__journal_start+0x194/0x6a0
[  909.208278][T19412]  jbd2__journal_start+0x194/0x6a0
[  909.208307][T19412]  __ext4_journal_start_sb+0x36d/0x670
[  909.208326][T19412]  ? ext4_do_writepages+0xc21/0x3f20
[  909.208349][T19412]  ext4_do_writepages+0xc21/0x3f20
[  909.208369][T19412]  ? do_raw_spin_lock+0x128/0x260
[  909.208393][T19412]  ? find_held_lock+0x2b/0x80
[  909.208423][T19412]  ? hrtimer_start_range_ns+0x860/0x1a50
[  909.208451][T19412]  ? __pfx_ext4_do_writepages+0x10/0x10
[  909.208482][T19412]  ? ext4_writepages+0x347/0x790
[  909.208500][T19412]  ext4_writepages+0x347/0x790
[  909.208521][T19412]  ? __pfx_ext4_writepages+0x10/0x10
[  909.208552][T19412]  ? __pfx_ext4_writepages+0x10/0x10
[  909.208573][T19412]  do_writepages+0x278/0x600
[  909.208599][T19412]  ? __pfx_do_writepages+0x10/0x10
[  909.208621][T19412]  ? do_raw_spin_unlock+0x145/0x1e0
[  909.208650][T19412]  ? _raw_spin_unlock+0x28/0x50
[  909.208677][T19412]  filemap_writeback+0x22d/0x2e0
[  909.208702][T19412]  ? __pfx_filemap_writeback+0x10/0x10
[  909.208750][T19412]  ? mt_find+0x45e/0x8e0
[  909.208784][T19412]  ? __pfx_mt_find+0x10/0x10
[  909.208814][T19412]  file_write_and_wait_range+0xcd/0x140
[  909.208844][T19412]  ext4_sync_file+0x358/0xb90
[  909.208865][T19412]  ? __pfx_ext4_sync_file+0x10/0x10
[  909.208882][T19412]  ? __up_read+0x210/0x6e0
[  909.208903][T19412]  ? __pfx___up_read+0x10/0x10
[  909.208922][T19412]  ? __do_sys_msync+0x39b/0x590
[  909.208941][T19412]  ? __pfx_ext4_sync_file+0x10/0x10
[  909.208958][T19412]  vfs_fsync_range+0x9b/0x190
[  909.208985][T19412]  __do_sys_msync+0x3ca/0x590
[  909.209008][T19412]  do_syscall_64+0x10b/0xf80
[  909.209034][T19412]  ? clear_bhb_loop+0x40/0x90
[  909.209056][T19412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  909.209075][T19412] RIP: 0033:0x7fe2bc19cdd9
[  909.209091][T19412] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  909.209109][T19412] RSP: 002b:00007fe2bcf84028 EFLAGS: 00000246 ORIG_RAX: 000000000000001a
[  909.209128][T19412] RAX: ffffffffffffffda RBX: 00007fe2bc415fa0 RCX: 00007fe2bc19cdd9
[  909.209140][T19412] RDX: 0000000400000004 RSI: 01800000000000fe RDI: 000000001ffff000
[  909.209152][T19412] RBP: 00007fe2bc232d69 R08: 0000000000000000 R09: 0000000000000000
[  909.209163][T19412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  909.209174][T19412] R13: 00007fe2bc416038 R14: 00007fe2bc415fa0 R15: 00007ffc04acfa98
[  909.209197][T19412]  </TASK>
[  909.209218][T19412] EXT4-fs (sda1): ext4_do_writepages: jbd2_start: 9223372036854775806 pages, ino 2022; err -12
[  911.991282][T19433] random: crng reseeded on system resumption
[  912.788709][   T30] audit: type=1800 audit(1843320221.534:64): pid=19447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2665" name="file0" dev="tmpfs" ino=1353 res=0 errno=0
[  912.990789][T19436] Process accounting resumed
[  913.263479][T19441] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  915.116770][T19476] nvme_fabrics: missing parameter 'transport=%s'
[  915.192886][T19476] nvme_fabrics: missing parameter 'nqn=%s'
[  919.216641][T19536] futex_wake_op: syz.3.2683 tries to shift op by -2048; fix this program
[  919.286731][T19548] 0x000000000001-0x000000020000 : ""
[  919.394285][T19548] ftl_cs: FTL header corrupt!
[  921.391908][T19561] random: crng reseeded on system resumption
[  921.638484][T19575] Process accounting paused
[  921.941117][ T9064] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  921.993504][T19590] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input12
[  923.199917][T19592] random: crng reseeded on system resumption
[  923.999469][T19612] binder: 19610:19612 ioctl c0306201 0 returned -14
[  924.027061][T15217] Bluetooth: hci0: command 0x0c1a tx timeout
[  926.110944][ T9064] Bluetooth: hci0: command 0x0c1a tx timeout
[  927.047619][T19684] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2714'.
[  927.133283][T19685] FAULT_INJECTION: forcing a failure.
[  927.133283][T19685] name fail_futex, interval 1, probability 0, space 0, times 0
[  927.336424][T19685] CPU: 0 UID: 0 PID: 19685 Comm: syz.2.2706 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  927.336460][T19685] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  927.336468][T19685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  927.336479][T19685] Call Trace:
[  927.336486][T19685]  <TASK>
[  927.336494][T19685]  dump_stack_lvl+0x100/0x190
[  927.336520][T19685]  should_fail_ex.cold+0x5/0xa
[  927.336543][T19685]  get_futex_key+0x1d2/0x1510
[  927.336565][T19685]  ? __pfx_get_futex_key+0x10/0x10
[  927.336592][T19685]  futex_wait_setup+0x83/0x510
[  927.336622][T19685]  __futex_wait+0x19f/0x300
[  927.336649][T19685]  ? __pfx___futex_wait+0x10/0x10
[  927.336673][T19685]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  927.336702][T19685]  ? __pfx_futex_wake_mark+0x10/0x10
[  927.336730][T19685]  ? futex_hash+0x2ad/0x370
[  927.336749][T19685]  ? futex_hash+0x141/0x370
[  927.336769][T19685]  futex_wait+0xe6/0x370
[  927.336793][T19685]  ? __pfx_futex_wait+0x10/0x10
[  927.336821][T19685]  ? ksys_write+0x190/0x250
[  927.336848][T19685]  ? ksys_write+0x190/0x250
[  927.336873][T19685]  do_futex+0x1ef/0x350
[  927.336893][T19685]  ? __pfx_do_futex+0x10/0x10
[  927.336913][T19685]  ? do_set_mempolicy+0x217/0x3d0
[  927.336934][T19685]  ? __pfx_do_set_mempolicy+0x10/0x10
[  927.336958][T19685]  __x64_sys_futex+0x34f/0x4d0
[  927.336981][T19685]  ? __pfx___x64_sys_futex+0x10/0x10
[  927.337002][T19685]  ? __pfx_kernel_set_mempolicy+0x10/0x10
[  927.337025][T19685]  ? rcu_is_watching+0x12/0xc0
[  927.337051][T19685]  do_syscall_64+0x10b/0xf80
[  927.337077][T19685]  ? clear_bhb_loop+0x40/0x90
[  927.337099][T19685]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  927.337118][T19685] RIP: 0033:0x7faac0f9cdd9
[  927.337134][T19685] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  927.337152][T19685] RSP: 002b:00007faac1d7d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  927.337171][T19685] RAX: ffffffffffffffda RBX: 00007faac1216188 RCX: 00007faac0f9cdd9
[  927.337183][T19685] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007faac1216188
[  927.337194][T19685] RBP: 00007faac1216180 R08: 0000000000000000 R09: 0000000000000000
[  927.337205][T19685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  927.337215][T19685] R13: 00007faac1216218 R14: 00007ffe5ec06190 R15: 00007ffe5ec06278
[  927.337237][T19685]  </TASK>
[  928.820192][   T30] audit: type=1800 audit(2147483654.520:65): pid=19717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2721" name="file0" dev="tmpfs" ino=467 res=0 errno=0
[  929.194745][T19722] kafs: addr_prefs: Invalid Command
[  929.506384][T19726] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  929.825575][T19725] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2724'.
[  930.146349][T19706] random: crng reseeded on system resumption
[  930.168816][T19735] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2726'.
[  931.792074][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  931.800109][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  933.210269][T19782] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2734'.
[  936.260903][T19822] FAULT_INJECTION: forcing a failure.
[  936.260903][T19822] name failslab, interval 1, probability 0, space 0, times 0
[  936.403061][T19822] CPU: 0 UID: 0 PID: 19822 Comm: syz.5.2739 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  936.403095][T19822] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  936.403103][T19822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  936.403113][T19822] Call Trace:
[  936.403120][T19822]  <TASK>
[  936.403128][T19822]  dump_stack_lvl+0x100/0x190
[  936.403154][T19822]  should_fail_ex.cold+0x5/0xa
[  936.403177][T19822]  ? tomoyo_realpath_from_path+0xb6/0x690
[  936.403203][T19822]  should_failslab+0xc2/0x120
[  936.403225][T19822]  __kmalloc_noprof+0xe0/0x850
[  936.403241][T19822]  ? kfree+0x1dd/0x6c0
[  936.403271][T19822]  tomoyo_realpath_from_path+0xb6/0x690
[  936.403301][T19822]  tomoyo_path_number_perm+0x23c/0x580
[  936.403320][T19822]  ? tomoyo_path_number_perm+0x22e/0x580
[  936.403341][T19822]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  936.403383][T19822]  ? find_held_lock+0x2b/0x80
[  936.403408][T19822]  ? __fget_files+0x215/0x3d0
[  936.403428][T19822]  ? hook_file_ioctl_common+0x149/0x410
[  936.403448][T19822]  ? __fget_files+0x215/0x3d0
[  936.403474][T19822]  ? __fget_files+0x21f/0x3d0
[  936.403506][T19822]  security_file_ioctl+0xd3/0x230
[  936.403528][T19822]  __x64_sys_ioctl+0xb7/0x210
[  936.403549][T19822]  do_syscall_64+0x10b/0xf80
[  936.403575][T19822]  ? clear_bhb_loop+0x40/0x90
[  936.403598][T19822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  936.403617][T19822] RIP: 0033:0x7f7c9139cdd9
[  936.403633][T19822] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  936.403651][T19822] RSP: 002b:00007f7c922e8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  936.403670][T19822] RAX: ffffffffffffffda RBX: 00007f7c91615fa0 RCX: 00007f7c9139cdd9
[  936.403682][T19822] RDX: 0000000000000000 RSI: 0000000000004c06 RDI: 0000000000000003
[  936.403693][T19822] RBP: 00007f7c922e8090 R08: 0000000000000000 R09: 0000000000000000
[  936.403704][T19822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  936.403715][T19822] R13: 00007f7c91616038 R14: 00007f7c91615fa0 R15: 00007ffde52beae8
[  936.403738][T19822]  </TASK>
[  936.403748][T19822] ERROR: Out of memory at tomoyo_realpath_from_path.
[  936.928087][T19828] binder: 19814:19828 ioctl c00c620f 200000000080 returned -22
[  938.853215][ T9051] [drm:drm_crtc_add_crc_entry] *ERROR* Overflow of CRC buffer, userspace reads too slow.
[  939.374764][T19848] FAULT_INJECTION: forcing a failure.
[  939.374764][T19848] name failslab, interval 1, probability 0, space 0, times 0
[  939.391839][T15217] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  939.493846][T19848] CPU: 0 UID: 0 PID: 19848 Comm: syz.1.2745 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  939.493881][T19848] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  939.493888][T19848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  939.493899][T19848] Call Trace:
[  939.493906][T19848]  <TASK>
[  939.493914][T19848]  dump_stack_lvl+0x100/0x190
[  939.493940][T19848]  should_fail_ex.cold+0x5/0xa
[  939.493964][T19848]  should_failslab+0xc2/0x120
[  939.493986][T19848]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  939.494017][T19848]  ? __proc_create+0x2cb/0x8c0
[  939.494046][T19848]  __proc_create+0x2cb/0x8c0
[  939.494070][T19848]  ? __pfx___proc_create+0x10/0x10
[  939.494093][T19848]  ? __lock_acquire+0x4a5/0x2630
[  939.494113][T19848]  ? _raw_write_unlock+0x28/0x50
[  939.494138][T19848]  ? proc_register+0x559/0x8a0
[  939.494165][T19848]  proc_create_reg+0x75/0x170
[  939.494191][T19848]  proc_create_data+0x86/0x110
[  939.494216][T19848]  ? __pfx_proc_create_data+0x10/0x10
[  939.494240][T19848]  ? net_generic+0xea/0x2a0
[  939.494270][T19848]  gss_svc_init_net+0x2e7/0x640
[  939.494296][T19848]  ? __pfx_canbcm_pernet_init+0x10/0x10
[  939.494327][T19848]  ? __pfx_rpcsec_gss_init_net+0x10/0x10
[  939.494354][T19848]  ops_init+0x1e2/0x5f0
[  939.494378][T19848]  setup_net+0x118/0x3a0
[  939.494400][T19848]  ? __pfx_setup_net+0x10/0x10
[  939.494421][T19848]  ? mutex_init_lockdep+0xf1/0x120
[  939.494445][T19848]  copy_net_ns+0x46f/0x7c0
[  939.494470][T19848]  create_new_namespaces+0x3ea/0xac0
[  939.494513][T19848]  unshare_nsproxy_namespaces+0xf2/0x220
[  939.494541][T19848]  ksys_unshare+0x438/0xab0
[  939.494571][T19848]  ? __pfx_ksys_unshare+0x10/0x10
[  939.494597][T19848]  ? xfd_validate_state+0x129/0x190
[  939.494624][T19848]  __x64_sys_unshare+0x31/0x40
[  939.494652][T19848]  do_syscall_64+0x10b/0xf80
[  939.494678][T19848]  ? clear_bhb_loop+0x40/0x90
[  939.494701][T19848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  939.494719][T19848] RIP: 0033:0x7fe2bc19cdd9
[  939.494735][T19848] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  939.494753][T19848] RSP: 002b:00007fe2bcf84028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  939.494772][T19848] RAX: ffffffffffffffda RBX: 00007fe2bc415fa0 RCX: 00007fe2bc19cdd9
[  939.494784][T19848] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  939.494795][T19848] RBP: 00007fe2bc232d69 R08: 0000000000000000 R09: 0000000000000000
[  939.494806][T19848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  939.494817][T19848] R13: 00007fe2bc416038 R14: 00007fe2bc415fa0 R15: 00007ffc04acfa98
[  939.494840][T19848]  </TASK>
[  940.159864][T19862] random: crng reseeded on system resumption
[  943.062351][T19915] nfs: Unknown parameter 'nl802154'
[  943.656686][T19882] Process accounting paused
[  943.920488][T19908] smc: net device dummy0 applied user defined pnetid DUMMY0
[  944.350158][T19937] netlink: zone id is out of range
[  944.392336][T19937] netlink: zone id is out of range
[  944.463777][T19937] netlink: zone id is out of range
[  944.566161][T19937] netlink: zone id is out of range
[  944.650786][T19937] netlink: zone id is out of range
[  944.740114][T19937] netlink: zone id is out of range
[  944.812910][T19937] netlink: zone id is out of range
[  944.879400][T19937] netlink: zone id is out of range
[  944.959674][T19937] netlink: zone id is out of range
[  945.036910][T19937] netlink: zone id is out of range
[  945.379436][T19928] random: crng reseeded on system resumption
[  947.944151][T20006] netlink: 326 bytes leftover after parsing attributes in process `syz.5.2773'.
[  948.069092][T20006] bridge0: port 3(batadv0) entered disabled state
[  948.077383][T20006] bridge0: port 2(bridge_slave_1) entered disabled state
[  948.084752][T20006] bridge0: port 1(bridge_slave_0) entered disabled state
[  948.977878][T20021] usb usb37: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  949.048406][T20021] vhci_hcd vhci_hcd.2: invalid port number 0
[  949.233834][ T9064] Bluetooth: hci2: command 0x0406 tx timeout
[  950.558715][T17984] usb usb40-port5: attempt power cycle
[  950.694721][ T9468] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  951.157158][T17984] usb usb40-port5: unable to enumerate USB device
[  951.174365][T20061] random: crng reseeded on system resumption
[  951.192365][T20044] vhci_hcd vhci_hcd.3: invalid port number 10
[  951.214616][T20044] vhci_hcd vhci_hcd.3: default hub control req: 0800 v0001 i000a l0
[  951.937498][T20070] random: crng reseeded on system resumption
[  953.501414][T20082] Process accounting resumed
[  953.895837][T20120] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  956.906101][T15217] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  958.841954][T20157] random: crng reseeded on system resumption
[  959.707658][T20181] zswap: compressor  not available
[  959.871202][T15217] Bluetooth: hci0: unexpected event for opcode 0x7c89
[  962.426212][T20227] FAULT_INJECTION: forcing a failure.
[  962.426212][T20227] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  962.426251][T20227] CPU: 0 UID: 0 PID: 20227 Comm: syz.3.2812 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  962.426280][T20227] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  962.426288][T20227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  962.426298][T20227] Call Trace:
[  962.426305][T20227]  <TASK>
[  962.426313][T20227]  dump_stack_lvl+0x100/0x190
[  962.426338][T20227]  should_fail_ex.cold+0x5/0xa
[  962.426361][T20227]  _copy_from_user+0x2e/0xd0
[  962.426381][T20227]  snd_rawmidi_kernel_write1+0x390/0x7c0
[  962.426420][T20227]  snd_rawmidi_write+0x2dc/0xc60
[  962.426444][T20227]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  962.426464][T20227]  ? __pfx_default_wake_function+0x10/0x10
[  962.426492][T20227]  ? bpf_lsm_file_permission+0x9/0x10
[  962.426512][T20227]  ? security_file_permission+0x76/0x210
[  962.426534][T20227]  ? rw_verify_area+0xce/0x6d0
[  962.426555][T20227]  vfs_write+0x2aa/0x1070
[  962.426576][T20227]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  962.426596][T20227]  ? __pfx_vfs_write+0x10/0x10
[  962.426616][T20227]  ? find_held_lock+0x2b/0x80
[  962.426648][T20227]  ? __fget_files+0x215/0x3d0
[  962.426669][T20227]  ? __fget_files+0x215/0x3d0
[  962.426693][T20227]  ? __fget_files+0x21f/0x3d0
[  962.426720][T20227]  ksys_write+0x1f8/0x250
[  962.426741][T20227]  ? __pfx_ksys_write+0x10/0x10
[  962.426764][T20227]  ? rcu_is_watching+0x12/0xc0
[  962.426789][T20227]  do_syscall_64+0x10b/0xf80
[  962.426816][T20227]  ? clear_bhb_loop+0x40/0x90
[  962.426838][T20227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  962.426856][T20227] RIP: 0033:0x7f27d9d9cdd9
[  962.426873][T20227] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  962.426890][T20227] RSP: 002b:00007f27dace2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  962.426908][T20227] RAX: ffffffffffffffda RBX: 00007f27da016090 RCX: 00007f27d9d9cdd9
[  962.426921][T20227] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 000000000000000c
[  962.426932][T20227] RBP: 00007f27d9e32d69 R08: 0000000000000000 R09: 0000000000000000
[  962.426943][T20227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  962.426954][T20227] R13: 00007f27da016128 R14: 00007f27da016090 R15: 00007ffe9ae8dc08
[  962.426977][T20227]  </TASK>
[  963.307301][T20255] ptrace attach of "ci-qemu-gce-upstream-auto/syz-executor exec"[17214] was attempted by "ci-qemu-gce-upstream-auto/syz-executor exec"[20255]
[  963.403200][T20266] ==================================================================
[  963.411303][T20266] BUG: KASAN: slab-out-of-bounds in cache_seq_start_rcu+0x3fe/0x420
[  963.419291][T20266] Read of size 8 at addr ffff8880296ba800 by task syz.5.2819/20266
[  963.427175][T20266] 
[  963.429503][T20266] CPU: 0 UID: 0 PID: 20266 Comm: syz.5.2819 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  963.429531][T20266] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  963.429539][T20266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  963.429551][T20266] Call Trace:
[  963.429559][T20266]  <TASK>
[  963.429567][T20266]  dump_stack_lvl+0x100/0x190
[  963.429589][T20266]  print_report+0x13d/0x4b0
[  963.429616][T20266]  ? __virt_addr_valid+0x239/0x430
[  963.429648][T20266]  ? cache_seq_start_rcu+0x3fe/0x420
[  963.429664][T20266]  kasan_report+0xdf/0x1d0
[  963.429686][T20266]  ? cache_seq_start_rcu+0x3fe/0x420
[  963.429705][T20266]  cache_seq_start_rcu+0x3fe/0x420
[  963.429725][T20266]  seq_read_iter+0x2c1/0x1270
[  963.429749][T20266]  seq_read+0x33b/0x4c0
[  963.429768][T20266]  ? __pfx_seq_read+0x10/0x10
[  963.429790][T20266]  ? lock_acquire+0x1b1/0x370
[  963.429810][T20266]  ? __pfx_seq_read+0x10/0x10
[  963.429829][T20266]  proc_reg_read+0x240/0x330
[  963.429851][T20266]  ? __pfx_proc_reg_read+0x10/0x10
[  963.429873][T20266]  vfs_read+0x1e4/0xb30
[  963.429894][T20266]  ? __pfx_vfs_read+0x10/0x10
[  963.429914][T20266]  ? __fget_files+0x215/0x3d0
[  963.429937][T20266]  ? __fget_files+0x21f/0x3d0
[  963.429960][T20266]  ksys_read+0x12a/0x250
[  963.429981][T20266]  ? __pfx_ksys_read+0x10/0x10
[  963.430002][T20266]  ? rcu_is_watching+0x12/0xc0
[  963.430026][T20266]  do_syscall_64+0x10b/0xf80
[  963.430053][T20266]  ? clear_bhb_loop+0x40/0x90
[  963.430074][T20266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  963.430093][T20266] RIP: 0033:0x7f7c9139cdd9
[  963.430109][T20266] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  963.430127][T20266] RSP: 002b:00007f7c922a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  963.430147][T20266] RAX: ffffffffffffffda RBX: 00007f7c91616180 RCX: 00007f7c9139cdd9
[  963.430159][T20266] RDX: 0000000000000087 RSI: 0000200000000100 RDI: 000000000000001b
[  963.430171][T20266] RBP: 00007f7c91432d69 R08: 0000000000000000 R09: 0000000000000000
[  963.430182][T20266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  963.430194][T20266] R13: 00007f7c91616218 R14: 00007f7c91616180 R15: 00007ffde52beae8
[  963.430221][T20266]  </TASK>
[  963.430228][T20266] 
[  963.654069][T20266] Allocated by task 14058:
[  963.658487][T20266]  kasan_save_stack+0x30/0x50
[  963.663196][T20266]  kasan_save_track+0x14/0x30
[  963.667869][T20266]  __kasan_kmalloc+0xaa/0xb0
[  963.672453][T20266]  __kmalloc_noprof+0x301/0x850
[  963.677297][T20266]  cache_create_net+0xa2/0x1f0
[  963.682066][T20266]  nfsd_idmap_init+0x11f/0x250
[  963.686828][T20266]  nfsd_net_init+0x85/0x3e0
[  963.691342][T20266]  ops_init+0x1e2/0x5f0
[  963.695502][T20266]  setup_net+0x118/0x3a0
[  963.699834][T20266]  copy_net_ns+0x46f/0x7c0
[  963.704260][T20266]  create_new_namespaces+0x3ea/0xac0
[  963.709558][T20266]  unshare_nsproxy_namespaces+0xf2/0x220
[  963.715196][T20266]  ksys_unshare+0x438/0xab0
[  963.719731][T20266]  __x64_sys_unshare+0x31/0x40
[  963.724503][T20266]  do_syscall_64+0x10b/0xf80
[  963.729108][T20266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  963.735000][T20266] 
[  963.737404][T20266] The buggy address belongs to the object at ffff8880296ba000
[  963.737404][T20266]  which belongs to the cache kmalloc-2k of size 2048
[  963.751548][T20266] The buggy address is located 0 bytes to the right of
[  963.751548][T20266]  allocated 2048-byte region [ffff8880296ba000, ffff8880296ba800)
[  963.766213][T20266] 
[  963.768541][T20266] The buggy address belongs to the physical page:
[  963.774961][T20266] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x296b8
[  963.783717][T20266] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  963.792218][T20266] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  963.799757][T20266] page_type: f5(slab)
[  963.803747][T20266] raw: 00fff00000000040 ffff88813fe2f000 dead000000000100 dead000000000122
[  963.812413][T20266] raw: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000
[  963.820999][T20266] head: 00fff00000000040 ffff88813fe2f000 dead000000000100 dead000000000122
[  963.829664][T20266] head: 0000000000000000 0000000800080008 00000000f5000000 0000000000000000
[  963.838338][T20266] head: 00fff00000000003 fffffffffffffe01 00000000ffffffff 00000000ffffffff
[  963.847007][T20266] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  963.855668][T20266] page dumped because: kasan: bad access detected
[  963.862072][T20266] page_owner tracks the page as allocated
[  963.867791][T20266] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 29, tgid 29 (kworker/1:1), ts 96294234759, free_ts 96265886095
[  963.888740][T20266]  post_alloc_hook+0x153/0x170
[  963.893544][T20266]  get_page_from_freelist+0x11a6/0x33b0
[  963.899101][T20266]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  963.905005][T20266]  new_slab+0xa6/0x6c0
[  963.909080][T20266]  refill_objects+0x277/0x420
[  963.913779][T20266]  __pcs_replace_empty_main+0x375/0x650
[  963.919351][T20266]  __kmalloc_cache_noprof+0x493/0x6f0
[  963.924738][T20266]  wg_noise_handshake_begin_session+0xe5/0xe40
[  963.930900][T20266]  wg_packet_send_handshake_response+0x219/0x310
[  963.937251][T20266]  wg_receive_handshake_packet+0x7dd/0xc20
[  963.943072][T20266]  wg_packet_handshake_receive_worker+0x15e/0x370
[  963.949583][T20266]  process_one_work+0xa0e/0x1980
[  963.954520][T20266]  worker_thread+0x5ef/0xe50
[  963.959197][T20266]  kthread+0x370/0x450
[  963.963263][T20266]  ret_from_fork+0x72b/0xd50
[  963.967851][T20266]  ret_from_fork_asm+0x1a/0x30
[  963.972625][T20266] page last free pid 4993 tgid 4993 stack trace:
[  963.979044][T20266]  __free_frozen_pages+0x747/0x1040
[  963.984266][T20266]  qlist_free_all+0x47/0xf0
[  963.988798][T20266]  kasan_quarantine_reduce+0x1a0/0x1f0
[  963.994277][T20266]  __kasan_slab_alloc+0x69/0x90
[  963.999133][T20266]  kmem_cache_alloc_noprof+0x241/0x6e0
[  964.004623][T20266]  do_getname+0x35/0x390
[  964.008886][T20266]  do_sys_openat2+0xc5/0x1e0
[  964.013486][T20266]  __x64_sys_openat+0x12d/0x210
[  964.018435][T20266]  do_syscall_64+0x10b/0xf80
[  964.023039][T20266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  964.029369][T20266] 
[  964.031705][T20266] Memory state around the buggy address:
[  964.037444][T20266]  ffff8880296ba700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  964.045591][T20266]  ffff8880296ba780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  964.053661][T20266] >ffff8880296ba800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  964.061729][T20266]                    ^
[  964.065802][T20266]  ffff8880296ba880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  964.073871][T20266]  ffff8880296ba900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  964.081924][T20266] ==================================================================
SYZFAIL: failed to send rpc
fd=3 want=56 sent=0 n=-1 (errno 32: Broken pipe)
[  964.841627][T20266] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  964.848879][T20266] CPU: 0 UID: 0 PID: 20266 Comm: syz.5.2819 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  964.859829][T20266] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  964.865036][T20266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  964.875107][T20266] Call Trace:
[  964.878595][T20266]  <TASK>
[  964.881558][T20266]  dump_stack_lvl+0x100/0x190
[  964.886313][T20266]  vpanic+0x552/0x970
[  964.890322][T20266]  ? __pfx_vpanic+0x10/0x10
[  964.894856][T20266]  ? mark_held_locks+0x40/0x70
[  964.899637][T20266]  ? cache_seq_start_rcu+0x3fe/0x420
[  964.904926][T20266]  panic+0xd1/0xe0
[  964.908737][T20266]  ? __pfx_panic+0x10/0x10
[  964.913153][T20266]  ? cache_seq_start_rcu+0x3fe/0x420
[  964.918440][T20266]  ? preempt_schedule_common+0x42/0xc0
[  964.923908][T20266]  ? check_panic_on_warn+0x1f/0x90
[  964.929020][T20266]  check_panic_on_warn.cold+0x19/0x34
[  964.934411][T20266]  end_report.part.0+0x3a/0x90
[  964.939213][T20266]  kasan_report.cold+0xe/0x18
[  964.943904][T20266]  ? cache_seq_start_rcu+0x3fe/0x420
[  964.949205][T20266]  cache_seq_start_rcu+0x3fe/0x420
[  964.954317][T20266]  seq_read_iter+0x2c1/0x1270
[  964.958998][T20266]  seq_read+0x33b/0x4c0
[  964.963153][T20266]  ? __pfx_seq_read+0x10/0x10
[  964.967837][T20266]  ? lock_acquire+0x1b1/0x370
[  964.972517][T20266]  ? __pfx_seq_read+0x10/0x10
[  964.977202][T20266]  proc_reg_read+0x240/0x330
[  964.981878][T20266]  ? __pfx_proc_reg_read+0x10/0x10
[  964.986989][T20266]  vfs_read+0x1e4/0xb30
[  964.991163][T20266]  ? __pfx_vfs_read+0x10/0x10
[  964.995930][T20266]  ? __fget_files+0x215/0x3d0
[  965.000613][T20266]  ? __fget_files+0x21f/0x3d0
[  965.005294][T20266]  ksys_read+0x12a/0x250
[  965.009539][T20266]  ? __pfx_ksys_read+0x10/0x10
[  965.014309][T20266]  ? rcu_is_watching+0x12/0xc0
[  965.019077][T20266]  do_syscall_64+0x10b/0xf80
[  965.023678][T20266]  ? clear_bhb_loop+0x40/0x90
[  965.028357][T20266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  965.034258][T20266] RIP: 0033:0x7f7c9139cdd9
[  965.038686][T20266] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  965.058415][T20266] RSP: 002b:00007f7c922a6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  965.066839][T20266] RAX: ffffffffffffffda RBX: 00007f7c91616180 RCX: 00007f7c9139cdd9
[  965.074822][T20266] RDX: 0000000000000087 RSI: 0000200000000100 RDI: 000000000000001b
[  965.082810][T20266] RBP: 00007f7c91432d69 R08: 0000000000000000 R09: 0000000000000000
[  965.090818][T20266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  965.098805][T20266] R13: 00007f7c91616218 R14: 00007f7c91616180 R15: 00007ffde52beae8
[  965.106787][T20266]  </TASK>
[  965.109863][T20266] Kernel Offset: disabled
[  965.114196][T20266] Rebooting in 86400 seconds..