last executing test programs:

4m46.554467588s ago: executing program 3 (id=1652):
r0 = socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
timer_create$auto(0x0, 0x0, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, 0x0, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
io_uring_setup$auto(0x6, 0x0)
socket(0x2, 0x1, 0x0)
setsockopt$auto(r0, 0x0, 0x23, 0x0, 0x8)

4m45.126109844s ago: executing program 3 (id=1661):
r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
writev$auto(r0, &(0x7f0000000140)={&(0x7f0000002ac0), 0xe4}, 0x4)

4m44.909098229s ago: executing program 3 (id=1664):
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x250080, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, 0x0, 0x280440c1)
bpf$auto(0x7, 0x0, 0xfffffffe)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x10, 0x2, 0x4)
r1 = socket(0x1d, 0x2, 0x7)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(r1, &(0x7f0000000000)=@can={0x1d, <r4=>r3}, 0x6a)
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r4}, 0x18)
sendmmsg$auto(r0, 0x0, 0x9a6, 0x7fffffff)
write$auto(0x3, 0x0, 0xffd8)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r5, r5, 0x0, 0x3)
rt_sigsuspend$auto(0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x14)
open(&(0x7f00000002c0)='./file0\x00', 0x40a00, 0x1c7)
r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0xe6e43, 0x0)
r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0xd97f760c479e8c8e, 0x0)
pread64$auto(r7, 0x0, 0x3, 0x1000007ffe)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/block/nbd14/sched/write1_fifo_list\x00', 0x189e42, 0x0)
lseek$auto(0x3, 0x7ffffdffffffffff, 0x1)
ioctl$auto_HDIO_GETGEO(r6, 0x301, &(0x7f0000000540))

4m42.983930096s ago: executing program 3 (id=1670):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/radio18\x00', 0x8aa40, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000001a00), 0x88000, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x2000, 0x0)
socket(0x2, 0x3, 0x2)
setsockopt$auto(0x3, 0xa4ff, 0xc8, 0xfffffffffffffffc, 0x4)
pread64$auto(0xffffffffffffffff, 0x0, 0x6, 0x40008)
unshare$auto(0x40000080)
ioctl$auto(0xffffffffffffffff, 0x890b, 0x1)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = clone3$auto(0x0, 0x3ff)
prctl$auto(0x3e, 0x1, r0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)

4m42.532483655s ago: executing program 3 (id=1673):
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
r0 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r0, 0x0, 0x30, 0x0, 0x20000)

4m42.117327434s ago: executing program 3 (id=1674):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x101202, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r0 = socket(0x23, 0x2, 0x0)
mmap$auto(0x0, 0x4, 0x1ff, 0x40eb1, 0x401, 0x300000000001)
r1 = socket(0x2, 0x1, 0x106)
bind$auto(r1, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x3, 0x4001}, 0x4006b)
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto(0xa, 0x2, 0x13, 0xde)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x101e81, 0x0)
write$auto_tty_fops_tty_io(r2, &(0x7f0000000680)="1f9319c707498de36a6eedfcfaa139bb5f55cf18b4ee56510d38c0f1006a40000000000000", 0x25)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
ioctl$auto_I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f0000000080))
write$auto(0xffffffffffffffff, 0x0, 0x5)
bind$auto(0xffffffffffffffff, 0x0, 0x9)
sendmsg$auto_OVS_FLOW_CMD_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x90}, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
listen$auto(0x3, 0x81)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007)
sendto$auto(r0, 0x0, 0x8000000008000, 0x0, &(0x7f0000000100)=@in={0x23, 0x0, @local}, 0x80)
rseq$auto(0x0, 0x8002, 0x0, 0x8)
finit_module$auto(0xffffffffffffffff, &(0x7f00000001c0)='\x00', 0x4)

4m26.959367732s ago: executing program 32 (id=1674):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x101202, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
r0 = socket(0x23, 0x2, 0x0)
mmap$auto(0x0, 0x4, 0x1ff, 0x40eb1, 0x401, 0x300000000001)
r1 = socket(0x2, 0x1, 0x106)
bind$auto(r1, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x3, 0x4001}, 0x4006b)
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto(0xa, 0x2, 0x13, 0xde)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x101e81, 0x0)
write$auto_tty_fops_tty_io(r2, &(0x7f0000000680)="1f9319c707498de36a6eedfcfaa139bb5f55cf18b4ee56510d38c0f1006a40000000000000", 0x25)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
ioctl$auto_I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f0000000080))
write$auto(0xffffffffffffffff, 0x0, 0x5)
bind$auto(0xffffffffffffffff, 0x0, 0x9)
sendmsg$auto_OVS_FLOW_CMD_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x90}, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
listen$auto(0x3, 0x81)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007)
sendto$auto(r0, 0x0, 0x8000000008000, 0x0, &(0x7f0000000100)=@in={0x23, 0x0, @local}, 0x80)
rseq$auto(0x0, 0x8002, 0x0, 0x8)
finit_module$auto(0xffffffffffffffff, &(0x7f00000001c0)='\x00', 0x4)

2m35.958212354s ago: executing program 2 (id=2073):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto_SO_BUSY_POLL_BUDGET(r0, 0x1, 0x46, &(0x7f0000000480)='802.15.4 MAC\x00', 0x9)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
acct$auto(&(0x7f0000000140)='/dev/ptmx\x1f')
acct$auto(&(0x7f0000000000)='@!\x00')

2m35.737478769s ago: executing program 2 (id=2074):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x15, 0x5, 0x0)
get_robust_list$auto(0x1, 0x0, 0x0)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x8006, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSFLAGS(r1, 0x40047459, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82942, 0x0)
write$auto(0x3, 0x0, 0x100082)
openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, 0x0, 0x48a42, 0x0)
mmap$auto(0xffffffffffffffff, 0x90, 0x2b, 0x9b73, 0xffffffffffffffff, 0x6)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x400000008000)
r2 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x4e22, @remote}, 0x6c)
sendmmsg$auto(r2, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x9, 0xfffffffd}, 0x1}, 0x5, 0x20000000)
mmap$auto(0x0, 0x1, 0x3, 0x17, r0, 0x8000)
socket(0x1d, 0x2, 0x7)
socket(0xa, 0x2, 0x73)
socket(0x10, 0x2, 0x14)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
write$auto(0x3, 0x0, 0xfffffdef)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66)
read$auto(0x3, 0x0, 0x7ffffffff000)

2m35.169278249s ago: executing program 1 (id=2076):
mmap$auto(0x0, 0x20009, 0x4000000000e5, 0xeb1, 0x401, 0x8001)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20440, 0x0)
ioctl$auto(0x3, 0x40045436, 0x2)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8008000)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram8/queue/iostats\x00', 0xa001, 0x0)
write$auto(r2, &(0x7f0000000180)='7\x81=\"\xad\xff\x8d\xf9;\x18\xa4\xb0&L\xeb=j\a\xb3\"Yq\'R\"\n\x1d\xa1\xff\a\x17\x00'/42, 0x81)
socket(0x23, 0x80805, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x64842, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x40001, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(0x3, 0x80047437, 0x10000000000402)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x2c00, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x2000c800)
read$auto(0xffffffffffffffff, &(0x7f00000000c0)='/sys/devices/porm/vhci_hcd.7/uwb2\xb6\x9d23-0:1.0/ep\xdf\x001/interval\x00\x00\x00\x00\x00', 0x2)
sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x2)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid$auto_P_PGID(0x2, r4, 0x0, 0x7, 0x0)
r5 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r5, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000004)
ioctl$auto(0x3, 0x80000541b, 0x38)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)

2m35.011051871s ago: executing program 2 (id=2077):
mmap$auto(0x0, 0x20009, 0x4000000000e5, 0xeb1, 0x401, 0x8001)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20440, 0x0)
ioctl$auto(0x3, 0x40045436, 0x2)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8008000)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram8/queue/iostats\x00', 0xa001, 0x0)
write$auto(r2, &(0x7f0000000180)='7\x81=\"\xad\xff\x8d\xf9;\x18\xa4\xb0&L\xeb=j\a\xb3\"Yq\'R\"\n\x1d\xa1\xff\a\x17\x00'/42, 0x81)
socket(0x23, 0x80805, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x64842, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x40001, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto(0x3, 0x80047437, 0x10000000000402)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x2c00, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe) (fail_nth: 1)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x2000c800)
read$auto(0xffffffffffffffff, &(0x7f00000000c0)='/sys/devices/porm/vhci_hcd.7/uwb2\xb6\x9d23-0:1.0/ep\xdf\x001/interval\x00\x00\x00\x00\x00', 0x2)
sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x2)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid$auto_P_PGID(0x2, r4, 0x0, 0x7, 0x0)
r5 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r5, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000004)
ioctl$auto(0x3, 0x80000541b, 0x38)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)

2m33.467775644s ago: executing program 2 (id=2078):
mmap$auto(0x0, 0x20009, 0x4000000000e5, 0xeb1, 0x401, 0x8001)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/event1\x00', 0x34d802, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x20440, 0x0)
ioctl$auto(0x3, 0x40045436, 0x2)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000180), 0x109802, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8008000)
close_range$auto(r1, 0x8, 0x10001)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram8/queue/iostats\x00', 0xa001, 0x0)
write$auto(r2, &(0x7f0000000180)='7\x81=\"\xad\xff\x8d\xf9;\x18\xa4\xb0&L\xeb=j\a\xb3\"Yq\'R\"\n\x1d\xa1\xff\a\x17\x00'/42, 0x81)
socket(0x23, 0x80805, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = open(0x0, 0x64842, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/ptyq3\x00', 0x40001, 0x0)
ioctl$auto_TIOCSETD2(r4, 0x5423, 0x0)
ioctl$auto(0x3, 0x80047437, 0x10000000000402)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x2c00, 0x0)
madvise$auto(0x0, 0x2000040080000004, 0xe)
sendmsg$auto_NBD_CMD_DISCONNECT(r3, 0x0, 0x2000c000)
read$auto(0xffffffffffffffff, &(0x7f00000000c0)='/sys/devices/porm/vhci_hcd.7/uwb2\xb6\x9d23-0:1.0/ep\xdf\x001/interval\x00\x00\x00\x00\x00', 0x2)
sendfile$auto(r2, 0xffffffffffffffff, 0x0, 0x2)
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid$auto_P_PGID(0x2, r5, 0x0, 0x7, 0x0)
r6 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r6, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000004)
ioctl$auto(0x3, 0x80000541b, 0xffffffffffffffff)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)

2m31.822500253s ago: executing program 1 (id=2080):
socket(0x2a, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x38, 0x80000001, 0x4, 0x5, 0xd400)
mmap$auto(0x1000000000, 0x20009, 0x4000100000df, 0xeb1, 0x401, 0x5)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffffff, &(0x7f0000000000)="706f3a82d9e5cc7c2ceda8d50bfc94be9fe6c22ffaf8493a38", 0x19)
r0 = socket(0xa, 0x5, 0x84)
sendto$auto(r0, 0x0, 0x401, 0x101, &(0x7f0000000000)=@generic={0xa, "000000000000fe8000"}, 0x1f)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x7, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0xe8)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001240)='/proc/thread-self/fail-nth\x00', 0xa0302, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
r3 = getpid()
process_vm_readv$auto(r3, 0x0, 0x1, 0x0, 0x6, 0x0)
close_range$auto(0x2, r1, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
r4 = socket(0x1d, 0x3, 0x1)
setsockopt$auto(r4, 0x65, 0x1, 0x0, 0x800)
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, 0x0, 0xfd}, 0x6a)
truncate$auto(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x6)

2m31.79318038s ago: executing program 2 (id=2081):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
read$auto(r0, 0x0, 0x20)

2m31.039692952s ago: executing program 2 (id=2083):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/025/001\x00', 0x8901, 0x0)
ioctl$auto(r0, 0x5522, r0)
ioctl$auto(r0, 0x5521, 0xffffffffffffffff)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd0\x00', 0x24000, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20000004}, 0x4000884)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto_SO_REUSEPORT(r3, 0x1, 0xf, &(0x7f0000000780)='\x00', &(0x7f00000007c0)=0xd)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
ioctl$auto(r4, 0x5646, r4)
read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000280)=""/40, 0x28)
ioctl$auto(r4, 0x2400000, 0xffffffffffffffff)
futex$auto(0x0, 0x4f549, 0xc, 0x0, 0x0, 0x404)
unshare$auto(0x40000080)
prctl$auto(0x7, 0x1, 0x0, 0x5, 0x7)
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
kcmp$auto_KCMP_EPOLL_TFD(0x0, r5, 0x7, r1, 0x8)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fa02, 0x0)
socket(0x18, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r6 = open(&(0x7f0000000040)='./file0\x00', 0x2041, 0xfa)
write$auto(r6, 0x0, 0xfffffdf1)
linkat$auto(r6, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000)
fsetxattr$auto(r6, &(0x7f0000000180)=':\xbf+<\x8a}\x00\xeb\xfa\xe6\x8d\x02\\VD\x04\x00\x00\x00*\x80\xa4\xf4vql\xa9\x05o\xf7\x9e\xfd\xf7\x00\x00\x00\x00H_/Z>n\xf5F\xbf\xd3\xefi\x91\x88\x1daIu7\xef!\xd0\x04\xdes\xfe`\xf5e;4\xbek\xf9\xec%\xbc\xd4\xfc`\xb9\n\xb5\xa5V\x98\x14]\x8a\x03\xd9', 0x0, 0x7bd, 0x1)
mprotect$auto(0x0, 0x8000000000000001, 0x8)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
prctl$auto(0x4, 0x1, 0x0, 0x9, 0x0)

2m30.189471689s ago: executing program 1 (id=2085):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_register$auto_IORING_REGISTER_IOWQ_AFF(0xffffffffffffffff, 0x11, &(0x7f0000000000)="01a16a858dc6c2f1866346bca82d2d3fd9a0ff69b9d9269cc0864281d7897ede5e7370ec381fe10430dfef3584bedaafddaa005ac217fb16f16970e098c9ee8eca7ac6ebfca703c42e9f437cfd9f1423dff9d9552b7b6e111d329cb1ef7128f3d6706f9b56921c6566e1367b211cf1adc19e46efc08d6267028b1b9a1c31115d1e80d7f5fb1dae96182746c09784d7afbb200d1d503bd6389b64601c1b7aa0a102eb2e232ee98d7e6a4c2de43f2ad0c9da3967f1f4fff877436bb7c12424df87a723728b165ead1058df5c84f0cfd86129a81230", 0x2)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r0 = epoll_create$auto(0x3c)
r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/statm\x00', 0x80002, 0x0)
read$auto_proc_single_file_operations_base(r1, &(0x7f0000000040)=""/228, 0xe4)
epoll_ctl$auto(r0, 0x1, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x61af, 0x4000000000de, 0xeb1, 0x401, 0x8000)
bpf$auto(0x7, &(0x7f0000000100)=@task_fd_query={<r2=>0x2, <r3=>0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x7, 0x8001}, 0x101)
r4 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000200), r0)
r5 = openat$auto_ftrace_event_format_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/events/vmalloc/free_vmap_area_noflush/format\x00', 0x40, 0x0)
timer_create$auto_CLOCK_REALTIME(0x0, &(0x7f00000003c0)={@sival_int=0x5, @raw=0x5, 0x9, @_tid=r2}, &(0x7f0000000440)=0x9)
r6 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r7 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r7, 0xc004743e, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_SET(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000002580)={0x0}, 0x1, 0x0, 0x0, 0x4000800}, 0x20040004)
write$auto(r6, &(0x7f0000000200)='7\x00\\\xa0\x04|\x03\'g\t$K\xcb\x12\xfa\x00\x00\xcfk', 0xb7f)
close_range$auto(0x2, 0x8, 0x0)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000004c0), r3)
sendmsg$auto_NL80211_CMD_JOIN_OCB(r0, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYRES16=r7, @ANYRES16=r8, @ANYBLOB="00012bbd7000fcdbdf256c00000008001f0123000000"], 0x1c}, 0x1, 0x0, 0x0, 0x2000c004}, 0x24004095)
r9 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r9, &(0x7f0000000000)="c80d1b5d399b4a", 0xfdef)
mprotect$auto(0x200000000000, 0x806121, 0x4)
time$auto(&(0x7f0000000280)=0x4b)
pread64$auto(r5, 0x0, 0x3, 0xfdd)
sendmsg$auto_L2TP_CMD_SESSION_CREATE(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000840)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="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"], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000)
rt_sigprocmask$auto(0xb1, 0x0, 0x0, 0x7)

2m29.583121152s ago: executing program 1 (id=2087):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x3, 0x10000000084, 0x77, 0x0, 0xc)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000)
getrlimit$auto(0x3, 0x0)
fdatasync$auto(r0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
ioctl$auto_BLKZEROOUT(r1, 0x127f, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x1102, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r2, 0xffffffffffdffe00, 0x0)
pselect6$auto(0x9, &(0x7f0000000300)={[0x9, 0x4, 0x9, 0x6, 0x8001, 0x4000000000002bc8, 0xffd, 0x9, 0x3, 0xffffffff, 0x8000000000000001, 0x0, 0x2f, 0x2, 0x8, 0xfffffffffffffffe]}, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)

2m24.994960676s ago: executing program 1 (id=2103):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
mmap$auto(0xf0ffff, 0x2020009, 0x4007, 0xf8, 0xffffffffffffffff, 0x8000)

2m24.707533899s ago: executing program 1 (id=2105):
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000180), 0x123100, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000001200)='/dev/nbd0\x00', 0x2003, 0x0)
ioctl$auto_BLKREPORTZONE(r1, 0xc0101282, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_FILS_AAD(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001240)={0x12bc, r2, 0x200, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_CQM={0x1296, 0x5e, 0x0, 0x1, [@generic="2f5e92476ee7cadcaba96913a388c37a2005e211e82770e0de710f37ba6544389b769db17569806f12ae94cff801c38f4a9ff16e9f7d28a451f1456e578f1343747be5a11eef93f62831642c239fb934cec2d3ae92844843340d3d18dc7acd9507b9b64a23e710c65aaa263f7e363fecd8ed5494675aa864844e7ef6d6281355a1f5dd04126ba927fffa0c550b5ac098c246aaa94010ae020d5b0765ea8ba192684e4ad22ef7e3fde89338b5ad781ba30a16c5e2bd7f0f50c9078a6b31b1f742afc12f7f0c366e9c9afd213f8efb9221c48bbdfbcb7462349f12d8072066840732c462e12c148fff104f9b1180fcbb9e694803e463a8a6f7be2cd8e0dd3e0efb64d3b527425c6dd2e382cb02b4b8a42b1ebcdde4b0664680a73b38479e20d51b077d678cd4498467c1b8edc3d062181dbf1ba78f2822f42ead9cfaeefbe224a89413be0c7f739d7b9a0b6a3f88c00deec28ecb438f216c25aa086f194b758476ab1ff97b30d287df4e20ee9ce73d44dbc68df4fc9b08b7aeae43b143ec0609e2a6ebb95545c00de6556cd2a25ecdcf28b9afe6372d75406e550d1513eb9b96bb39d8c1a8797166ab55ab62de744c6284f77b35dca1c6378e4e276847d2cb37803fce9b1767a174b2ce8b1679beaa3407bcfe5892e6aee6c584f3aa97b4a756b1ffb6be93bd3193e9b12d03f5a7f438493c85e1487f07c685ceccd35bbceb82b92c755134e3f734b4a3721b400c31d5bd28be176bc960d4e308a0a18755819141b6be0011c4066b7574ec1249bb5266dabae592a78a428c76be50c920eacbd411f345806819350dbf459503bc6f75b77d6626752094b058fe16ddc8670f037c3d4d54d63a2a59fd18cf141b12a10ff0a47c8e31e2a3a0b266515e58a9012c76df52633e6a651c77c95d4212aa45b0955381985958d26d655fd79bda2931711044a49e510527c16b699fba3a38b3a5d0657d0d87532cc1b49bb893c33f5841e26a3dadc659c3b18c91387567e77d11b70f6e946203711006f8014c81eda2d1ffd6fd99026bfd8fd6e6c09148b6f1743f19f8a95fffa46b34a044b892ee804887a19886570f406305ae19078181d3d88f8dd0f2570eb3f247fdbb2ddd4df20474857e573e23a238fd6fe129e02f83e8a255cd73b9cb85273b0b874df433b04059989e1dc6bfbc19419cc65a624a1ca56a3e5af629e310c02ccbec1e75e1fa7d701c501b4eb87d01823b80e1df7d1fb32e9afa2a3986a071daa554075cb932772bf721e41b062b2808741e3f21290b1a4a35fafaf3678c5a4b256657310e8c69592a6640a4d9cc70e9ff6a42da63ea3f5fd2d26fe2e02793e716710fd385ae371c7c847789b726b4a102bca730ab7c9c1da8f832aa62617b603ad4eab854ed86f35efb27e9a8c47ff65b65d3efdfba71fab885e3d130e03efd2bf3d6a53451882f79f1ba51d8700a17894ba797073ae3cc7e1cce63f8d577f153d6814f534c0a58ce5b6b09beb028a41588d2a79bf7260c3084d6ea24d288fe82628cc094d7d999a20b8c0777fc1810ec388b429c27e88a961d7f6646c6829f10699ab51f359f5f96b3ab2a0cda4474cf3d075f8212cf3a98da6886181851e58adb216935feb1f5e558fa3bfd8d0ce74f926651170c9851e6ddb48ca548b89fc6c5e85f0bf4e02c3d7b7b620c9c9a1a90ba6a13a08344e6bf51db603889246e00dd33aae966667dad27a9a90d3a24abb62a8c2175949fdb990bb6592d58d91af260145031d7f27b700c369c0f7fd945bd7de794fd0483da74f65480bc1629decef740fd2150cab69e56d7e8f8f24ca79de62d0e58d922edad87790e7e9a24a6cf1d0fe6ef491c4e0a2ce32726aa610929c93d68cc64041ac662be6f7bceb720a6620ac0496df6fd09ca8642e7b3a86ebe13aa42b20816f3914b6b8babe330b955a4cb79c3e4af89231c758fa6a9cc30b818ea1c88f7c42c30890bbadeff224230fd1b5551868755b8f0188c295015c1c6b3bc51ec1da106c35912c5c124c8176e9c879901586631f003a37348bf8a55652027327cb15e1e8634a45f73cdc96606af2f4b0d1ef46037db9f93dd3a0c5fefe1bdb0ca9d950177d760304a7f15caffbe864654ecc096fd7d26bc8555604e3832823d5b4c2128766aff9e2969cafeab15aff620665dae40b59a2e4c2c00294910d2a3e761b09d880e39b80f8cd96219acb9b3bd8ff69f7224113134323c2762764dba638c66c5463cd64588a20a9cdd1482915653586315ed4b6633fbc513867951ea7aba67ae82ec9cb72226b1d46194b8df943b3890e54b9d44fbb6faba05fc3cd2b4a7b12ea6f1806d641e9b1f073a673e69934f92879c93ca6b06a437cb02a4b64c7893b7d98fda3c5eb14f972353745028c6b7431250608ac2da35b550f9df23c1eae3fc4f7069ea3aca5e9abe00d646671b10f5d1325fb139b84199a30e0eb25edd598d3a9f62b8ac2f1f963b104bf2af7b937a5a71135ebd5766645d66109e53ed3ea674b10acb043df4261321918d323b785fa3f2cd0c3bc3845bb816294f7a644d1dff1c15d3b8719b00077cbabc0a4ede5dc431b846f23438908da6ce2e485d6a8faa287d3e890e4d2f8777c67f915508d7d17dd8e6c462e7c81ac5a88095d92ecd5a6a6e087d5dd9930ac677733b457006055ad595a96fce4eba8fa310b9b729e5185e591cdf205ccad814e32b1bd1f6bb5b8918a717c627c5e944a234a36ead15f5450b0f9823274a9ad5c2ed2442759c8260d2c2f0071f0dabce9527593fb9498f7edb0c6df2938b5a1c73a20871740619c4ff109306fb17b3a91c5f3d2b47417fdded3db05bfa7197bf636039e533127e532b8b08c2f0e54af7623810508157d36d36d483866ed400e40011f6b91f2fa91725528a8e925a473a530d3e9159ff93485140d904298a0ae861376e6ec584f89fb0f30dc4d18ae2c42c85599f4f5535256202c508ff384f13ed231b08f3680dd0e40394e95d866109b522ccb37e7f41d01b01508e6093dec9bbc8e6f3876e82f498bb357d8622a3dc6a5ed4ece3f9143e12e42183d1e7fb734261a0af569b0a298f8e4f1b47bf4026ce46b882963df731cfa049226205d96bd6f988fbd1c30340ac3e0a5e36adc4ebc03da88cf1f8891e18f5e9a1db81a264ad2a6392cf9f942cc3d7c268ad988896ef274ab99f1bf79931642e2e2603511ae786f28dbecfdd13a759445493c5743b75b0d8cc9d0da259908a3c575a1439bf488afec89394a734f7f8aeb93bbfcedf08c2fcd9b56e9f1301601de929515a1e81bb294f872b31f3fa8af81b9ecd99199bc014c7fcff245a575d232c5b0d9b2db7db00ed19aac748831f592b6c5c9e5fb1401059ae681a179ce940891070a7f397e75d451321710fdd56c5d4e919a90719352d3410878b98c8502cd07d8d9f5e9874adb249a82bcd8505195a145f8dc9a28abe0b3f00c48768199d9c4acf3607a6609cc05967bad018930330eb7dca81eb6cd2b6c92b2d7249299be4f140743b5ffb831992f7525eb3c264b7f09611457567e18c77e7fdee49a2f81f3286ac6bc20bf84075faa50f40492a55f31047f44f8af4a0a3b314e822407c6c9f2d9b36299af34e691f6d741b81915c6505e2cee7a1c9b8112212824065eb424495db4182103370e0ce329f2495671900ddfa777dbee6709007081f31abe6f38d358cfd79d4a548da7a5350e6601f1412a604fd65c82c8244ed17fe1d07a5c8006d419f71a8fa2f89587f3f6a2778d3e358abfa01d679b744a76ac24fb75bee5ff3010b3e87a4f2b908273c8cd515fe5b6052cce3f213fd087fcd8dcf4a0d189263727aecbd92b2734dd1a98afc02fa22acd9eb2972141a3f9b38d6d2682163c3c946864ad25f5a254b20c62d7ea62207951cde9a33e76613a7366543d545369feb0a54a71516372781118d7c98be3fdf73ac7bb27a8d8f7d6d2c74b0896c8d5acd7b1eedd786c563a6f4c0262d9eb21963195c74d226e446f23e856904226dde076990f94a339957a64fd55a03cd99dacc2ccb68cdcad38cd768640352c48d1c51f8e1fd704ca5406d1aaf7875ff7ab9017102ad52a142557cd3e3da22b879284b654c886490c016eb220ef7cbc0e188ce4d49616d82af9e286c81a08810a2243e762db52a2601e2769a644d48d2fabcf80c9ccb534fa0f2dd637f99af01700bf78e0aa8e4df2da7d0c751ad29767a7530c224bbfd17411a8d646d92cb86136bca9f70d387b7273cb1aa152d973c0b7d6dd060bb770770e2b0e4e8175a4e24b0a6f4b55247e6310e3f75bb6a5d2f5a952db4acde65205638ec0979a61935090f157b52dc4e3be7f6383d4407b3ba570a254e678abf8d4ff191193de9c2118ff38d9f7857f7ebb9dc9951f147cdbc1303ef4ddef7dad6ab81559498785222001f8737eed6610e3fcd31e6a8ad2da8b89d6445476cf210ef5854563ceff5e29fa755379a9ca0a00a61c2f1ef646b7f1e7f0a1a4cee521da2e3296e6274e30d04766310d05a95de627ed0c7901707a2107f1eb6f4ec9c9bb708eb96cb0f333c5f2f48f68671709b291b452d49e0b9c3141610f5f4d2d466241abecee55852f276e8b6d034cdb52da0999acdcf940a9e6a6c16c4a0474d3efccea673facd89869bff7e780fe76069c07909ed70be2c58aa840273d7a76545efb0dccd45057875c1bd07a8a16a711893a309959476a91357b5e901a5c4f0697b832f0f0fac29177d2151ab983aea1ab29b125846bb90e41925106c3aac3f5eff6112fe95c78d045bfe0d43f4f40e11fe2d92e2113136920274cc02ea6964f08cacf9a5963119ba03851982331ef2b774964d157c698ea7fc02c1b1ab6cc285e7fd9f485af487d95d26e99a139622ec754832ffc965427ce8d0a22e799d24686a39e734cae3db95be617700b4643841db25229b0e410faef561a04ba3d812b2f0a6ee28076c9933ec607c5d7d5863947d103dcdc6b018347a4535ff32a14f65cbc9051c6d58a5acc2a9e2447aca6d4e2173680bc043a08342940c1b436237005b9ddc898620c09d64a2130c1bbc8793ecbf782d7a6e7bf2eaf2802c639f81b2322008772760fcbd7f22545ad52c7c17a62c2e453da7e93494ebf2b1670f415afc637ffb70a00ab594bf19c5be8292706d3ed6cd69f3f6e79988b3ba225a14644aea360c892a663fa217ef1ede38a44ce7c4ea3eac4aec71c529d3810df3ac42a906af8bff3e7b1d9a8aa23a08a3587c62804f919028b09adc4d74c892ed6dcd6dcadccb771c88429c70089105daab64359b208fe1f88b943323a7be6ca674279a2f7b5f8b0323ae554a983be744781d14b397de8d73ecb7b3f67ac84bd0760577a67e9f41a9be1daade550659c780b2e49b91953374fab52ce15fd730176524570c09331af47fffb28b8a928db4fd611ca1ca266940e3d4b4749707dfef22abaeab8e5d86cd61f2daa1c2b4f919cc224ccdedd80c32fe672995e6f4a1226a79e64ca02812c62d853413630199c87901d30650efb99df8b5399732f16d24c78221490b1bd2e168b8a5a13055249472a7085380cb82323ebdf48b1995e3cfa220cf16d4faead661699317d46cbbf80d5fddbc5ef54690239442aaf6dce6470157dd747fe5591e2c0c99ea9168bca0ff6cfa00adeefcaeae8ab76872f2fa69cb37112f40b7c1fbb38f194ca6dadd5f5ee9bde845f8c919ab1fb117fb44a8aaca5f1bb4fcf2d2144d49dd9c918e5f6ebceb4eaaa548058326a7ed4d0dcea47e2feaeccbd05b790f09b917a3e1133b6859404979a718", @generic="746153d62e6a9f67ee070ac9d2930273d03430d1156042849fbbeb78540e9f01dc3710a0f556497e97ec51e95b30b1dfc1100cd961be0e718bed4e58616bb2497019402ea763d1c8d59fb08fd70f7a3a5d574da44eadf4b7b3419a77868a4ed453ab25cd94f4a646a5c810cba72b7fefbde049e5eec160e6484dfd5b11a1d30bf55585c83c7cfd530ac25db7ce955145b7545c70b45e79b86f96b341e8d85006c695", @nested={0x1d9, 0x144, 0x0, 0x1, [@generic="ee50a2a787512b9fb5b2fcfb6eed01ad6d79b8edceb4cd8aa108ef6c734536443746a9535104e800262ce06a458c1a83af29975165237ccd3b29b62b761d648ec6c217f6de12a950e265850d5bb25405a43cdcbf624dbab08ff470c4d9331c98d8f8", @generic="be73e3bd7ba29ee956467fb927c7aff91de5d648fc453a8ab9fecdbcacba8c17fabcd6fb63337de71dcf2a670ba270e30a782433c898f6827256eab2fcfca4d2bc5b6132e4766ad7f917f34eefd1ee54833dcfa0655ed0f7fe53eb40aff46edac6adc0c99372b6e8d7da2ae61853c63d86112cd9cc95ed266ed8cf583f08b8866204f5ff2610124c716b8e067f4e87", @typed={0x18, 0x34, 0x0, 0x0, @binary="ca4108ab67c6a2c94836780d9dd7fd8f695820e2"}, @nested={0x4, 0xb6}, @typed={0xc8, 0x3f, 0x0, 0x0, @binary="4e62bad55ad97af1a030384cea5804a15f4f9eab4790481428ba21c47b393629631972cb12197d2b8ae9d97b7588f395c6c41cad0894bd89839940ac18994ddcb6bca24cc8b78a10ba3e37693e42d82f9e91bb6b93c997c3583d598ba2c197a6eb83903c2474aafac85bbb79ecc0e72e03d9602cd9e47eae83841e72d1647d42400ff79cf95f1350d3d33d5cc24f39ef403d6afb8bc4831fa304b4c6c26f5c50d724069d55c777c09563300f2c58b5e45b111889b9ebf7242d28fb9582b7c61bed4e9120"}]}, @nested={0xc, 0x12e, 0x0, 0x1, [@typed={0x8, 0x5e, 0x0, 0x0, @ipv4=@multicast1}]}, @nested={0x8, 0xdf, 0x0, 0x1, [@nested={0x4, 0xd0}]}]}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0x6}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x3}]}, 0x12bc}, 0x1, 0x0, 0x0, 0x20000801}, 0x44041)
ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5)
ioctl$auto_VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000100)={0x9})

2m15.587066993s ago: executing program 33 (id=2083):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/025/001\x00', 0x8901, 0x0)
ioctl$auto(r0, 0x5522, r0)
ioctl$auto(r0, 0x5521, 0xffffffffffffffff)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nbd0\x00', 0x24000, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20000004}, 0x4000884)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto_SO_REUSEPORT(r3, 0x1, 0xf, &(0x7f0000000780)='\x00', &(0x7f00000007c0)=0xd)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
ioctl$auto(r4, 0x5646, r4)
read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000280)=""/40, 0x28)
ioctl$auto(r4, 0x2400000, 0xffffffffffffffff)
futex$auto(0x0, 0x4f549, 0xc, 0x0, 0x0, 0x404)
unshare$auto(0x40000080)
prctl$auto(0x7, 0x1, 0x0, 0x5, 0x7)
r5 = getpid()
process_vm_readv$auto(r5, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
kcmp$auto_KCMP_EPOLL_TFD(0x0, r5, 0x7, r1, 0x8)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14fa02, 0x0)
socket(0x18, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r6 = open(&(0x7f0000000040)='./file0\x00', 0x2041, 0xfa)
write$auto(r6, 0x0, 0xfffffdf1)
linkat$auto(r6, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000)
fsetxattr$auto(r6, &(0x7f0000000180)=':\xbf+<\x8a}\x00\xeb\xfa\xe6\x8d\x02\\VD\x04\x00\x00\x00*\x80\xa4\xf4vql\xa9\x05o\xf7\x9e\xfd\xf7\x00\x00\x00\x00H_/Z>n\xf5F\xbf\xd3\xefi\x91\x88\x1daIu7\xef!\xd0\x04\xdes\xfe`\xf5e;4\xbek\xf9\xec%\xbc\xd4\xfc`\xb9\n\xb5\xa5V\x98\x14]\x8a\x03\xd9', 0x0, 0x7bd, 0x1)
mprotect$auto(0x0, 0x8000000000000001, 0x8)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
prctl$auto(0x4, 0x1, 0x0, 0x9, 0x0)

2m9.295330284s ago: executing program 34 (id=2105):
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000180), 0x123100, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000001200)='/dev/nbd0\x00', 0x2003, 0x0)
ioctl$auto_BLKREPORTZONE(r1, 0xc0101282, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_FILS_AAD(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001240)={0x12bc, r2, 0x200, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_CQM={0x1296, 0x5e, 0x0, 0x1, [@generic="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", @generic="746153d62e6a9f67ee070ac9d2930273d03430d1156042849fbbeb78540e9f01dc3710a0f556497e97ec51e95b30b1dfc1100cd961be0e718bed4e58616bb2497019402ea763d1c8d59fb08fd70f7a3a5d574da44eadf4b7b3419a77868a4ed453ab25cd94f4a646a5c810cba72b7fefbde049e5eec160e6484dfd5b11a1d30bf55585c83c7cfd530ac25db7ce955145b7545c70b45e79b86f96b341e8d85006c695", @nested={0x1d9, 0x144, 0x0, 0x1, [@generic="ee50a2a787512b9fb5b2fcfb6eed01ad6d79b8edceb4cd8aa108ef6c734536443746a9535104e800262ce06a458c1a83af29975165237ccd3b29b62b761d648ec6c217f6de12a950e265850d5bb25405a43cdcbf624dbab08ff470c4d9331c98d8f8", @generic="be73e3bd7ba29ee956467fb927c7aff91de5d648fc453a8ab9fecdbcacba8c17fabcd6fb63337de71dcf2a670ba270e30a782433c898f6827256eab2fcfca4d2bc5b6132e4766ad7f917f34eefd1ee54833dcfa0655ed0f7fe53eb40aff46edac6adc0c99372b6e8d7da2ae61853c63d86112cd9cc95ed266ed8cf583f08b8866204f5ff2610124c716b8e067f4e87", @typed={0x18, 0x34, 0x0, 0x0, @binary="ca4108ab67c6a2c94836780d9dd7fd8f695820e2"}, @nested={0x4, 0xb6}, @typed={0xc8, 0x3f, 0x0, 0x0, @binary="4e62bad55ad97af1a030384cea5804a15f4f9eab4790481428ba21c47b393629631972cb12197d2b8ae9d97b7588f395c6c41cad0894bd89839940ac18994ddcb6bca24cc8b78a10ba3e37693e42d82f9e91bb6b93c997c3583d598ba2c197a6eb83903c2474aafac85bbb79ecc0e72e03d9602cd9e47eae83841e72d1647d42400ff79cf95f1350d3d33d5cc24f39ef403d6afb8bc4831fa304b4c6c26f5c50d724069d55c777c09563300f2c58b5e45b111889b9ebf7242d28fb9582b7c61bed4e9120"}]}, @nested={0xc, 0x12e, 0x0, 0x1, [@typed={0x8, 0x5e, 0x0, 0x0, @ipv4=@multicast1}]}, @nested={0x8, 0xdf, 0x0, 0x1, [@nested={0x4, 0xd0}]}]}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0x6}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x3}]}, 0x12bc}, 0x1, 0x0, 0x0, 0x20000801}, 0x44041)
ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5)
ioctl$auto_VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000100)={0x9})

8.802709114s ago: executing program 4 (id=2505):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x42a81, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
io_uring_setup$auto(0x59, &(0x7f0000000640)={0x0, 0x1d, 0x3800, 0x2, 0x7, 0x400a, <r2=>0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7b, 0x0, 0x5, 0xfffffffffffffffd}, {0x100, 0x20001, 0x52, 0x85, 0x2, 0x0, 0x2072c2, 0xc, 0x100000000}})
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sda1\x00', 0x4040, 0x0)
shmat$auto(0x0, 0x0, 0xfffffffa)
r3 = socket(0xa, 0x1, 0x84)
connect$auto(0x3, 0x0, 0x54)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0xb5, 0xe983, 0xdf, 0xeb1, r3, 0x8000)
socket(0x2, 0x1, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @multicast2}, 0x5)
ioctl$auto(0x3, 0x894b, 0x38)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x80100, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x0)
read$auto(0x3, 0x0, 0x7fffffff)
r4 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0xc0402, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r4, 0xc4c03d09, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
write$auto(0x3, 0x0, 0xfdef)
socket(0x2, 0x80002, 0x73)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000000)="2728d5c0bb83eb7c30f091c4b6a5f8be258a03e20b61ff06e13aa9c0a4a060a071c221c36f105487aaa0a3be", 0x1, &(0x7f0000000040)={&(0x7f00000000c0)="e36c4b87488a42346bc5fbfa18f3cbaeafb9d909a8f45e23de87c65a5bf2b7777a14c772bcdb122eb227e2dfab29e980f188035eaac6e85440f47747cc2eb76b9d931faadf42adc88ce4d5386dfeb934be3b7ed35b89ecd2e6895693e8c05aa0ce71aa4152be1cd6a486ae72ffcc9fbbd059b81bb6735e16d5ab22a0", 0x8}, 0x1, 0xffffffffffffffff, 0x5, 0x3}, 0xaa05}, 0x0, 0x6)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000180), 0x20082, 0x0)

8.04982893s ago: executing program 4 (id=2506):
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
r0 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x22000, 0x0)
r1 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0p\x00', 0x143101, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO(r1, 0x80184132, &(0x7f0000000240)={0x9, 0x49f, 0x0, 0xf583})
mmap$auto(0x0, 0x400008, 0xde, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1ff, 0x20000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f00000002c0)={0x20080c880, &(0x7f0000000080), 0x0, &(0x7f0000000100)=<r2=>0x0, {0x2b}, &(0x7f0000000140)=""/6, 0x3, &(0x7f00000004c0)=""/155, &(0x7f0000000280)}, 0x6)
r3 = waitid$auto_P_ALL(0x0, 0x3, &(0x7f0000000340)={@_si_pad}, 0x9, &(0x7f00000003c0)={{0xb5, 0x40000}, {0x7fffffff}, 0x8, 0x200000007f, 0x1e4, 0x0, 0x6, 0xdbf, 0xf, 0x2, 0x5, 0xe2, 0x3, 0x5, 0xffffffff80000001, 0x1})
kcmp$auto(r2, r3, 0x0, r0, r0)
socket(0x10, 0x2, 0x0)
r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000480)='/dev/input/event0\x00', 0x1, 0x0)
ioctl$auto_EVIOCGKEYCODE(r4, 0x80084504, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, 0x0, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x7, 0x69f5, 0xfd, 0xfb1, 0xfffffffffffffffa, 0x1a3c)
madvise$auto(0x2, 0xffffffffffff0007, 0x17)
r5 = openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000003400), 0x582, 0x0)
read$auto_check_wx_fops_(r5, &(0x7f0000000000)=""/113, 0x71)
shmctl$auto_SHM_STAT(0x6, 0xd, 0x0)
fchown$auto(0xffffffffffffffff, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/dummy0/mtu\x00', 0xe3102, 0x0)
sendfile$auto(r6, r6, 0x0, 0x2)
fcntl$auto_F_SETPIPE_SZ(r6, 0x407, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x400053, 0x9)
madvise$auto(0x7fd, 0x6, 0xdb1)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)

6.115696362s ago: executing program 5 (id=2512):
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000012c0)='/dev/video37\x00', 0x10000, 0x0)
ioctl$auto(r0, 0x5646, r0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
write$auto(r1, &(0x7f0000000340)='%]{\fZ', 0xffffffff)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x2, 0x1, 0x84)
fsconfig$auto_FSCONFIG_CMD_CREATE_EXCL(r2, 0x8, &(0x7f0000001300)='/dev/cec23\x00', &(0x7f0000000100)="5aa057174e5fba67bb33c9be03b939b5e7711d3c2df55e3b1e30455b96462a945ca046ca850ff08d378e7763d28d229adef4", 0x9)
socket(0x2, 0x1, 0x104)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
r4 = openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/loginuid\x00', 0x8002, 0x0)
copy_file_range$auto(0xffffffffffffffff, 0x0, r4, &(0x7f00000000c0)=0x7ff, 0xb4, 0x1)
syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
r5 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r6 = open(0x0, 0x14c1c2, 0x106)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/block_size_bytes\x00', 0x101040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f00000010c0)=""/100, 0x64)
r8 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000780)='/proc/self/net/rpc/auth.rpcsec.init/channel\x00', 0x441, 0x0)
r9 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000001080)='/proc/stat\x00', 0x20200, 0x0)
read$auto_proc_mountinfo_operations_mnt_namespace(r9, &(0x7f0000000040)=""/4080, 0x1036)
write$auto(r8, &(0x7f0000000040)='\\@-,@n\xea\x9e\xa9\x1d\x1d\x8bK\xfb\xcf;\xd1\x97\xf3\\\x90\x8f5y\xa7\x02\x05T\x7f\xdb\xc2W_\x84|\xd8,\x8b,\xc7\xff\xcf)i\xce\xd1\xea\x84\xb0\x0en\x86B\xba\x15\xfe>S\x9ap\xd3K\xa1\xd2\xea\xf5J\xd6\x04\xf0bWaC\x9a\x0f', 0x295)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cec23\x00', 0x2100, 0x0)
renameat2$auto(r6, &(0x7f0000001040)='./file0\x00', r6, &(0x7f00000010c0)='./file0\x00', 0x20000000)
sendmmsg$auto(0x3, &(0x7f0000001240)={{0x0, 0x2, &(0x7f0000001140)={0x0, 0x7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
read$auto(r3, 0x0, 0x9)
sendmsg$auto_NL80211_CMD_GET_SURVEY(r5, &(0x7f0000001200)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000011c0)={&(0x7f0000001180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022bbd7000fedbdf25320000000600ab000008000008004200040000000800db00", @ANYRES32=r6, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x8081)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/misc\x00', 0x40f40, 0x0)

5.377868212s ago: executing program 4 (id=2516):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x34, 0x400000000065f, 0x1ffde, 0x40007, 0x7f, 0x20000005, 0x9, 0x3, 0x6, 0x400000004, 0xb4, 0x4, 0x6, 0x2, 0x4, 0xfff, 0xfffffff7, 0x7, 0x1fff, 0x203, 0x838b, 0x84, 0x2, 0x8, 0x5, 0x0, 0x0, [0x0, 0x0, 0x0, 0x40000000000, 0x1, 0xffffffffffffffff, 0x2, 0x1, 0x400, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10007, 0x0, 0x81, 0x9e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x251, 0x3, 0x0, 0x0, 0x8, 0x0, 0xfffffffffffff7cc, 0x0, 0x400000000000002, 0x1, 0x0, 0x1, 0x0, 0x9, 0x8, 0x2000]}, 0x1fe, 0x8)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x280, 0x0)
ioctl$auto_SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000100)="000004")
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
mmap$auto(0x0, 0x20009, 0x4000000002df, 0x15, r0, 0x8000)
clone$auto(0x23918fa0, 0x9ec7, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x3e478395)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)

5.2546132s ago: executing program 6 (id=2517):
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x200000008002)
madvise$auto(0x8, 0x7fff, 0x17)
unshare$auto(0x40000080)
mbind$auto(0x0, 0x7ff, 0x100000000, 0x0, 0x6, 0x2)
madvise$auto(0x0, 0x20499d, 0x9)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
socket(0x29, 0x2, 0x0)
openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, 0x0, 0x48080, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x60d02, 0x0)
write$auto(0x3, 0x0, 0xfdef)
mknod$auto(&(0x7f0000000900)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x4, 0x407)
madvise$auto(0xfff, 0x2, 0x8)
ioctl$auto(0x3, 0x5420, 0x38)
read$auto(r0, 0x0, 0x73)

5.128988323s ago: executing program 4 (id=2518):
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x250080, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, 0x0, 0x240448c4)
bpf$auto(0x7, 0x0, 0xfffffffe)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x4, 0xe985, 0xdb, 0xeb1, 0x401, 0x8000)
r0 = socket(0x3, 0x804, 0x8)
r1 = socket(0x1d, 0x2, 0x7)
r2 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r3=>0x0})
bind$auto(r1, &(0x7f0000000000)=@can={0x1d, r3}, 0x6a)
connect$auto(0x3, &(0x7f00000018c0)=@can={0x1d, r3}, 0xd1)
sendmmsg$auto(r0, 0x0, 0x9a6, 0x7fffffff)
write$auto(0x3, 0x0, 0xffd8)
close_range$auto(0x2, 0x8, 0x0)
mseal$auto(0x80000001, 0xcfb, 0x0)
io_uring_setup$auto(0x6, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r4, r4, 0x0, 0x3)
rt_sigsuspend$auto(0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
open$dir(&(0x7f00000001c0)='./file0\x00', 0x201, 0x14)
open(&(0x7f00000002c0)='./file0\x00', 0x40a00, 0x1c7)
r5 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x28ee43, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0xd97f760c479e8c8e, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/block/nbd3/rqos/wbt/id\x00', 0x88c42, 0x0)
lseek$auto(0x3, 0x7ffffdffffffffff, 0x1)
ioctl$auto_HDIO_GETGEO(r5, 0x301, &(0x7f0000000540))

5.020773634s ago: executing program 0 (id=2519):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r1 = io_uring_setup$auto(0x5b, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, <r2=>0xffffffffffffffff, [], {0xd74c, 0x10000, 0x1, 0x29f, 0x100, 0xfff, 0x101, 0x6, 0x2}, {0xfb, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x176c5, 0x400005, 0x100000005}})
io_uring_enter$auto(r1, 0x9, 0x820e, 0x6, 0x0, 0x18)
r3 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_posix_clock_file_operations_posix_clock(r3, 0x40043d14, 0x0)
keyctl$auto_KEY_REQKEY_DEFL_NO_CHANGE(0x5, 0xffffffffffffffff, 0x0, 0x0, 0x101)
ioctl$auto_EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x2, 0x5, 0x1, 0x2})
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0x2, 0x1, 0x5, 0x4, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x8, 0x1, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

4.588948096s ago: executing program 5 (id=2520):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyw6\x00', 0x80280, 0x0)
ioctl$auto_TIOCMGET2(r0, 0x5415, &(0x7f0000000040)="b4fa5e1e5e2b7a9702cc128c3b82cba28387144e1d5e99402b31ac1bd370511bee52d2c1c92c0cef1633b34514d42047f0a70974c530e6d21d4b24e0ee504b2b1ff84c17c7ee7d00"/85)

4.513687023s ago: executing program 6 (id=2521):
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x4001, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$auto_mISDN_fops_timerdev(r0, &(0x7f0000001a00)=""/4097, 0x1001)
r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0)
ioctl$auto_I2C_SLAVE(r1, 0x703, 0x0)
ioctl$auto_IMADDTIMER(r0, 0x80044940, 0x0)
socket(0x2, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x20000a, 0x4)
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
r2 = getpgrp(0x0)
ioprio_get$auto_IOPRIO_WHO_PGRP(0x2, r2)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0)
read$auto(r3, 0x0, 0x1ff)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa902, 0x0)
write$auto(r4, &(0x7f0000000240)='.G\x1f*@sy\b\x00\xe7\xc9 \x8f\x10!\x11\xd4\x9by\xa8\xb2\x89c\xf8\xc41\xd4\x0f\x82\x8d\xd2\x04\x0f\xf6\xa0\xf7,O\x1d\t8\xb9H\xd5\xc4\xbb\x8f\x13\x94%\xcc\x0e\x9eT\xc1}+\x02J\xb9\x80\xe7\xb3<\x9a\xf1B\x13\xb7P\x9b\xce~\xff&zQ\xa8\x97\n\xb2\xf7\x15Z\x05\x8cl\x04\xca\x954\xdd3\xf9\xa3\x1e#,\xb7\xd2\xa6\x8d\x13\xd0\xf0\x14\x9a\xfa\xed\x9d\xa1\x98P.\'\xccA\x8b\xff\x82\xf8\xc3\xa9\xb6\xc3\x80E\xfc\xe3\xc6\x8d\xb8uh\x9f\xd1!\xa3\xe0dR\xda?\xdc:\xbd\x15X%\x84\xd2yL\x05\xaeV$\xda\xcd\xa1}_\xe0\x9c\x87\xaa\xa1\x1f\x93(\x96}\"sU.2\x1e\xb8\x01U\x8f\xe5\x7f]L\xca\xa2\x9b\x92ZYE\xd2\xe1<4\x9c\x85\x04\x86l2\x8e\xb2\x9e\x11\x82s\xd7\xe3\xdd\xdb\x041\xb2\x1c\xac@\x16\xb3sn\xec\r\x11J*\xbb\xd6\xde\x86v\x83T\xb1\xae\x91{_\xd7JK\xda\x01i#\xe89\x17\xaf\x03j5\r\xce\a\x1dl/#\x96I<osc,P\r\x00u\xe8\x9e-\xd1\x03}=h\x84\xd8\xf2\xad\xf5\xb5\xb0\xe9', 0x8)

4.372286309s ago: executing program 5 (id=2522):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/snd_aloop.0/sound/card1/id\x00', 0x4aa22, 0x0)
mmap$auto(0x0, 0x2000f, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r0 = socket(0x1d, 0x2, 0x7)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
io_uring_setup$auto(0x59, 0x0)
socket(0xf, 0x3, 0x2)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
bpf$auto(0x0, &(0x7f0000000100)=@link_create={@prog_fd=0x1, @target_fd=0xa, 0x3, 0x8, @tracing={0x4, 0xffffffff}}, 0xfbf)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'vlan0\x00'})
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x20002, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r1, 0xc0045002, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)

4.07024734s ago: executing program 5 (id=2523):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r2, &(0x7f0000000000)="c80d1b2955", 0x5)
r3 = socket(0x22, 0x3, 0x0)
bind$auto(0x3, &(0x7f0000000080)=@isdn={0x22, 0x3d, 0x7, 0x64, 0x7}, 0x6b)
sendfile$auto(r0, r1, 0x0, 0x1000200)
r4 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r3)
sendmsg$auto_HWSIM_CMD_TX_INFO_FRAME(r3, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="00042cbd7000fbdbdf250300000008000c00040000000800e529878975688f980400080000000001000100010020000480100001800800060000000000040009000c000180050008001b000000080001000100008008000a000300000008001300070000000000000000"], 0x70}}, 0x20004014)
mmap$auto(0x0, 0x5, 0x4000, 0xeb1, r1, 0x8001)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r5, 0x4068aea3, &(0x7f0000000080)={0x8f})
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0)
ioctl$auto_BLKTRACESETUP32(0xffffffffffffffff, 0xc0401273, 0x0)
socket(0x2, 0x801, 0x106)
select$auto(0x5, 0x0, &(0x7f00000001c0)={[0x9, 0x8, 0x3, 0x5, 0x3, 0x9, 0x9, 0xff, 0x3, 0x2, 0x2, 0x7, 0x6, 0x8000000000000001, 0x2, 0x7]}, 0x0, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x84, 0x15, 0x0, 0x1)
write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000000)="c80d1b5d399b3f", 0x7)

4.030230881s ago: executing program 4 (id=2524):
landlock_restrict_self$auto(0xffffffffffffffff, 0x7)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x4802, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
mmap$auto(0x0, 0x2020009, 0xffff, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/kallsyms\x00', 0x20100, 0x0)
pread64$auto(r0, 0x0, 0x80000000008, 0x8003)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlockall$auto(0x800000000000005)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = setfsuid$auto(0x0)
statx$auto(0xffffffffffffffff, 0x0, 0x2, 0x8001, &(0x7f0000000300)={0x7, 0x1, 0xfffffffffffffff9, 0x7, r1, 0xffffffffffffffff, 0x6, 0x0, 0x80000401, 0x1, 0x5, 0x1fc, {0x80000001, 0xfb44}, {0x5, 0x28}, {0xffffffffffffffff, 0x1ff}, {0xffffffffffffff60, 0x9}, 0x2, 0x6, 0x80000000, 0x17e9, 0x709c, 0x101, 0x5, 0x4, 0x8, 0x5, 0xb6a, 0xdfc, [0xe32, 0x2, 0x10000080000001, 0x4, 0xffffffff, 0x1c9fb31b, 0xfffffffffffffffa, 0xe, 0x3]})
setpriority$auto(0x4, r1, 0x5)
mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000)
keyctl$auto(0x5, 0xfffffffd, 0x101, 0x1, 0x4000000000b8c)
request_key$auto(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)='keyring\x00', 0x0, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)

3.717926806s ago: executing program 0 (id=2525):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = setfsuid$auto(0xee01)
keyctl$auto(0x1f, 0x0, r2, 0x0, 0x4000000003ff)
sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000340)={0x1c2c, 0x0, 0x800, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_MLO_LINKS={0x1ba0, 0x138, 0x0, 0x1, [{0xd8, 0x0, 0x0, 0x1, [@NL80211_ATTR_STA_SUPPORTED_CHANNELS={0xd0, 0xbd, "cb384be6c7eeeff7423db785040a931dbb74e11c3f922122fa86a471a09b3b5995ed76641bf19461be80294ee6dd2026908843008633ba0624db3c452d91348b8fdd2b3b77c0e804f973d0f756ccddaedd95ebac7cf8cf9ea861839be28fb65683651654970cec20c0c98904b66ccaf78e57b049762bbcd711e9d28b92b3cf4073421dd9d0cdee4c55ea8eb9b23022a86e91d5bdf31adc8f47839eb46e9b4aac145135f8c4ebb379654229511e7d0587a421e8f907dec8343fb3e6e49a98dd8c82e6238facef64ec48b98e99"}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x53c8}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, "b8f7c06a20cae4f1d8147074"}]}, {0x2cc, 0x0, 0x0, 0x1, [@NL80211_ATTR_SUPPORT_MESH_AUTH={0x4}, @NL80211_ATTR_KEY={0x4}, @NL80211_ATTR_WIPHY_ANTENNA_TX={0x8, 0x69, 0x7}, @NL80211_ATTR_MBSSID_ELEMS={0x1b4, 0x133, 0x0, 0x1, [@nested={0x34, 0x11d, 0x0, 0x1, [@nested={0x4, 0xf6}, @generic="93c3ad2258bf7fb671aca3b887ba39143150e267eab5fbccab7f3a5e5810b581", @typed={0x8, 0xe1, 0x0, 0x0, @fd=r0}, @nested={0x4, 0x55}]}, @generic="cbc3541268f24e1fa7b5f96a454eebd8e7809cf2cd73f87982a3fd82d1b8140ed97091dbc85c9b274220474b9f5e39b6a131fe8fab0d45258784a932fe53aa2b2d298205201643f167621251d64fae3571f36a03f6b8ee50fc643fb859ddf332ffb34ce87f468d6f93d657f2072356d0900dd6a4190bbcc4edee534a3edc3513da70d1185e7d992ee4ee667f9102d6799e324134f302f93952297b9fb1513ddb79019a9c8c255f6e322c61c42989d46c4018821ba9e6db38240d6bf24952104908cbe81a0d282df79b9762e736be82890e4b0378b5c0df5e687bb20b1e8b41bd0be89f429644", @typed={0xc, 0x5e, 0x0, 0x0, @u64=0xffffffff80000000}, @generic="552f6efa", @typed={0x8, 0x87, 0x0, 0x0, @ipv4=@remote}, @typed={0x8, 0xaf, 0x0, 0x0, @uid=r2}, @generic="7eb2e974d1bd70105d3a4ba436030230fafa427d0c387f359c2004712d4073e1bcf0fd304dc3abf2a573e84857014aefef864a91b31b5ab27d87492c308f5a0b2407f02b4a49ea5500fcf1d1958ef60ee6478b6fed46365d90ebf4983b464acf14ed8f87dd5c5e1581fb3a3954f5cde51fc7b14f96b0"]}, @NL80211_ATTR_NAN_FUNC={0xf4, 0xf0, 0x0, 0x1, [@generic="67c877ba619539def79372f2bb8be8b56728d59bed1f208345551192639d06e26e7bbfa4fda9f1d3c9cf73d03fda2d4689e9db7dd3b75e970ff0632fd20c4c957bce350c5a72b93a4f010ca70476864b16505bd2f706d5131be6025e3dedaea2bfaeaf9a4140009936ac5e386d5444e6e4ff86c3bd43a3ee288fb6b25b46ed8cb689c0c2eda1dee4a29bb1de85d190fc7d810e1985e629509cee75b058e5cf65f7157d5d55d529a6ca1d5aa2b8dc7f0abd0fb5b4709340e7d8bce9785d22a1b6ab24a84c1da529e21bbed4c20d2b715623db530fa5319963adaa111285a9cf0c5d81c29a90d956a5e5cb27ccda78bc59"]}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_COLOR_CHANGE_ELEMS={0x4}, @NL80211_ATTR_REASON_CODE={0x6}]}, {0x16d4, 0x0, 0x0, 0x1, [@NL80211_ATTR_HE_6GHZ_CAPABILITY={0x85, 0x125, "79143687d5719d253a47e6b60f2566a07967ae0743a7efd11b51dbce16d9ae2a1bf3bfb25b127c6756084985ef3af8c4253f93b5271aa74c69e2a2085f146bcbd335dbf31a2c8a136bad012cd140fdd0916cb5bd04af3cd77fd9e052ec3ffa9c43d13be70e10d0e14f670d072651b89b58ef84f2a21fbe34896f4f93eed9c1f080"}, @NL80211_ATTR_STA_FLAGS2={0x1004, 0x43, "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"}, @NL80211_ATTR_FRAME_MATCH={0x9e, 0x5b, "2e2b481052b5fbb6733931bf6912a2ab038a125b1a2fd27a3b3fd9e28d47d35dd6c0e10a7266bc7f1cf66e63bcce0eaa1c9acf83896b82baffb2fcd4f459e3b14efc80f0d5b81cc517577ac934b531b5b60b5322ca620ad28fd60ccfc580ceaa74b96782d4c92aa0c515b1bd2e904d9b917f25178bb1098b3b066c219996faa29ca251453a61512b5efe68657d252bd40c52609ac55cad33956c"}, @NL80211_ATTR_AP_SETTINGS_FLAGS={0x8, 0x135, 0x3}, @NL80211_ATTR_WIPHY_COVERAGE_CLASS={0x5, 0x59, 0x1}, @NL80211_ATTR_FRAME={0x569, 0x33, "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"}, @NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_SSID={0x1c, 0x34, "e6449f2af7ea45b3affeb43945300a3ae0ec3a93f09477b8"}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x4}]}, {0x108, 0x0, 0x0, 0x1, [@NL80211_ATTR_VENDOR_DATA={0xfe, 0xc5, "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"}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}]}]}, @NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0x200}, @NL80211_ATTR_WIPHY_SELF_MANAGED_REG={0x4}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x3}, @NL80211_ATTR_HE_CAPABILITY={0x17, 0x10d, "55a534b75fd427e7641b6967c882096175c691"}, @NL80211_ATTR_PMKR0_NAME={0x44, 0x102, "301d39398327c61f9085cabe628b4eca862c85123ccd1ea4d6f20c97532f6596c91b37a2fb3f64fac14154100eb34c5a2bcd7130d57c9da47ecadc08e35aab43"}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x8}]}, 0x1c2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000010)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x38, r1, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_STATS_GROUPS={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @u32=0x3b4}]}, @ETHTOOL_A_STATS_HEADER={0x18, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000844}, 0x4)

3.502571375s ago: executing program 0 (id=2526):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0xa, 0x1, 0x84)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
setsockopt$auto(r0, 0x0, 0x60, 0x0, 0x6f7250c4)
mmap$auto(0x0, 0x9, 0x800000000df, 0x9b72, 0xea8a, 0x8000)
timer_create$auto(0x1, &(0x7f0000000100)={@sival_ptr=&(0x7f00000001c0)="768dd591913ee14cc666e09f7dda3a68643d4e9ef3ef83a795e96e3635d0bfabddd3bcebc350fabdb5b6bf4b138e0c712a0f05cbd0a12772dd13ef2cbb7bc33418d8dc7cc0d826338f022b5c92f74d223e4d17342eb13918e03978574c46f64952a815ac9d449214caf13e7b042dddade7e4bd652f6f3fa892a3f7cdeaea3b3079dda59f1907b15858b625a61c343f2c372f045914d865234d81dfc7e59e6b70b7961c012f69cc1274f3399a9d0dfdffbd2acd051382ba358ec5", @inferred, 0x1, @_tid=0xffffffffffffffff}, 0x0)
timer_gettime$auto(0x0, 0x0)
socket(0xa, 0x2, 0x73)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event0\x00', 0x2, 0x0)
ioctl$auto_EVIOCGMASK(r2, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0xf9ba})
ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, &(0x7f00000014c0)={0x3, 0x3000005, 0x1, 0xffffefff, 0x3})
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x81)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/mm/mempolicy/weighted_interleave/node1\x00', 0x1a1942, 0x0)
read$auto(0x3, 0x0, 0x20f34)
write$auto(0x3, 0x0, 0x3f00)

3.145893112s ago: executing program 6 (id=2527):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x34, 0x400000000065f, 0x1ffde, 0x40007, 0x7f, 0x20000005, 0x9, 0x3, 0x6, 0x400000004, 0xb4, 0x4, 0x6, 0x2, 0x4, 0xfff, 0xfffffff7, 0x7, 0x1fff, 0x203, 0x838b, 0x84, 0x2, 0x8, 0x5, 0x0, 0x0, [0x0, 0x0, 0x0, 0x40000000000, 0x1, 0xffffffffffffffff, 0x2, 0x1, 0x400, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10007, 0x0, 0x81, 0x9e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x251, 0x3, 0x0, 0x0, 0x8, 0x0, 0xfffffffffffff7cc, 0x0, 0x400000000000002, 0x1, 0x0, 0x1, 0x0, 0x9, 0x8, 0x2000]}, 0x1fe, 0x8)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x280, 0x0)
ioctl$auto_SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f0000000100)="000004")
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
mmap$auto(0x0, 0x20009, 0x4000000002df, 0x15, r0, 0x8000)
clone$auto(0x23918fa0, 0x9ec7, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x3e478395)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)

3.128652603s ago: executing program 5 (id=2528):
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socketcall$auto(0x2, 0x0)
setsockopt$auto_SO_ATTACH_REUSEPORT_CBPF(r0, 0x81, 0x33, &(0x7f0000000380)='-\'\x00', 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000002340), 0xffffffffffffffff)
sendmsg$auto_OVS_METER_CMD_SET(r1, &(0x7f0000002480)={0x0, 0x0, &(0x7f0000002440)={&(0x7f0000000400)={0x38, r2, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@OVS_METER_ATTR_KBPS={0x4}, @OVS_METER_ATTR_BANDS={0x18, 0x4, 0x0, 0x1, [@nested={0xe, 0x2a, 0x0, 0x1, [@nested={0x8, 0xcc, 0x0, 0x1, [@generic="85f65a9a"]}, @typed={0x8, 0x2, 0x0, 0x0, @uid}]}]}, @OVS_METER_ATTR_ID={0x8, 0x1, 0x5}]}, 0x38}, 0x1, 0x0, 0x0, 0x48000}, 0x4000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x5eba82, 0x0)
ioctl$auto_BLKALIGNOFF(r3, 0x127a, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x7, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x40000008000)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000003c0)={"0f388da2cf4d2948e1ca9862fdcbdb886c5819512b017c3770c8d167f5d2147b", 0x0, 0x0, 0xeefd, 0x1, 0x4})
sendmsg$auto_NL80211_CMD_GET_SURVEY(0xffffffffffffffff, 0x0, 0x4004)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x1a1842, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_psample(&(0x7f0000007a40), 0xffffffffffffffff)
sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r5, &(0x7f0000007b00)={0x0, 0x0, &(0x7f0000007ac0)={&(0x7f0000007a80)={0x14, r6, 0x311, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x800c000}, 0x4)
set_mempolicy$auto(0x2005, &(0x7f0000000080)=0x8087e, 0x4)
listmount$auto(&(0x7f0000000080)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x8}, 0x0, 0xf4240, 0x1)

2.910827602s ago: executing program 6 (id=2529):
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x9, 0x4000eb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
open(&(0x7f00000000c0)='./file1/file0\x00', 0x440000, 0x12)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000004d40), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_DEL_RXSC(r1, &(0x7f0000007500)={0x0, 0x0, &(0x7f00000074c0)={&(0x7f0000000040)={0x28, r2, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@MACSEC_ATTR_RXSC_CONFIG={0xc, 0x2, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @u32=0x4}]}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x80)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
sendmsg$auto_NL80211_CMD_DISCONNECT(r1, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000480)={0x1018, r3, 0x20, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_FILS_CACHE_ID={0x1004, 0xfd, "f84485229ee892d4d52db65fd9570c82316dd1854f546a0dcccf478ba331a893c1e69665a81c7f2db6b8e46abca7871b578bc9c465ccbe6dee851a4df879884df12a07834c08aafbea55a4e049e97f564eaf156f3104486f25f7f84457ca601fc3a3992caf4ea5b6a45b29c2060fd55e5822baa0ed85b1ffeb7a984d5823671cf0d66d5ef77f24be7ff38d5c306435ed63cc0f97b8b7718569d941d05c1bf4e4ffa44e247a368f61e8d4117fb6a130be6b382f8b4d9029fde92d586ce8b85ebefc0e8f36c68a8c565d92124e4500a71487a156c0bbdbc6c9607b2f290aecb30fa93d9e459820f3e7d67efce05ed27518c0370ca6afb91b09d481be23541df60a4ba4686ba4021855adb701f532c967c69b717598e2231a7f1f1b864dba6bc49325195f5b58b43a894320762e9543c6d5220edc16bef34759790252b286f2a4ffd500e99c0d26740d96e2c82e2762e6e884dfabfcd54c975fca6342d604786dde674201689650d9f80b7ae93774ffc426f91c903e21e5c39ce980398e35649e404f921255a736d4dadc8067d3ecad31c23e0c917cdb7b6016ded29faa4ea22b77092d23e8375a135cb638e9305ffabb1e67649fb9d983a3a9a57745ef63ccfc9d68988b53f485983a7183bd7cde51c16f4aab964bfd2e0359cf969f65148e93b618a50e01345b80988d18703fd1e626ba607751bcbb2bbf71f4dcf40b8d1dcfab950302abae703d2d0631f9e116cf09c98bfcd53a39c6e877c14f6887127bcecce6b484e80c5b4e298b2cf45e588eeb7284fa79f9a74912ddc866044d349baa2aae9da8f3efc807e0970c2849e3f801e6fae2a8029e0a8269d204a7b966bd54de2c09024ae568206d8d80c31b2e10fa9f4b39c750bc015ea5c753058d681d92850c8f81395aa1127a55ceeaf535bc80f5cc1857772265a4c25ff6cd5f4c75fa23ec468fde8586774b6b82b2e994cdf879271f9d55ec80c93953ae7c40fbc01a7fc201914f077e394704ce3a4bff392b54c0233879d8a58584b509d0159f466eb245b80a8eca21ec834c5cf2cfca497bf682273dc7b8a5e0ea72cee8cd5bc6cb255fae9ccbf34a8ca846065babacbedc3ae4c58f503bd76e265b5e9ee199758d06d71b329cc4c51c4609d39dae88b98f566d3d743fc3d325aea4ba55fe4a0c9d94b0224012199b31e85cc447631faab36b62bb4357ac0ad2db6256307c67d9034c8b624d4c05b65f3020d3f9da82ce84ef50a2a2e56dffe73f8913cd7d86f2a420b8aa942005f78ba1c63e819bd02ff3b594e9a6402ca2fa8c7ca78071e7dabc56f5b5b4649e96723aa52724f5c2335e7e039843652a1de541aeae59b66102ac60bb298734a5c678d4b33ce6f13fbfe6139b523fb234cb1b23c73e5d6faf9d797ae6d278e0afac7f61051cdcbdc3d108adbed735e5092b37ca55ec074071f5c18524a6107521cc0197225bff47c717e4328aff67754f96f431208bf5bf78a85b44d36f1883d5d412e0aa18db7d335be4d7b16e662fcac81fecdca839b23c1b70a8fb7b3ea89b446bb3c614fa27e571c6fd0c01dffb3dd90d25c550cfd480ee56496e6566f1c8ea38d80c5b37464b70a38e49619c8613ed2d2180895b0c55509a6aa4d48aaf40bc28736c7d72260b7264281a31a43c6a17d45308ca8bb5367b59a1523cdc950933839198a4f16469e9c0b6389eb7536f2100443f4de08bb316118a8805e228ce4a8a72c272c987c75ca1f89a837a4435036c4027b9c94e0ed244f2a31d8b9a53474570f1b233922c309345923d4a9a45536fde57d37b2832bef4f5f34eb5ba6b8076a34d08d59c0e6a6fe8a4c1fbfdf5ea0555469f9cfa08e196a6341c4e6ff489def9005ad7f5f8a3fc1b670ce9f1295a59c7e97a2e7bc3a20e2a8fbbfc3151b74b6b48ce7803fcb811f3d03943f74e7c2ede82afe156edb09626aba8cdd246ca81532b20fc7c925c293a0efdb5a2c937119337ab3dd1bcd8777aaa7bfd614c303336f51e37e3c5e5a608a819144d82666bcd2ec27cbc33a806144b5a44bdd79b0030184f2eab60eae6bc5d969489a0dc0fe5e7c921583e6c354c1986eabd09ce512018392762593706622c2aea5028b68a13858fef50796b7c5aa32fa47f3bc0a5327fa9559a7e0188d9db495db83c4ed3c21771231b6de98689fb47a2e931b88e14067cc93d5b903df78d37b4e0d751c22552a7bf369fbbca2b112cf5a1c36ebfb9912c90dcb9eef532f973ce833a0faca6375dca8793721de3eee0ec999da8bb5ee3c637f14ccc4fcd01c4a1065d8982a158500feaf8be3d369ae0ae64c45013513981f7a96dd2e32125131d1c693bfca2df21df7425eda1fdaa27818a77db17bbac1328712ca0b028e911abc82a6b1c0fde2ed173ff368ea284e7c1b091ee1932e128e9612dfaa612162b568297e5c1c581e824ae9ab6345521c4875c73d9b41c411e0f6cc9e1fb7eadb50cfeaa36f0d2a973457cb3f4a2aa36b6d92a0c5129f691f8b6fac2de94978b476b0e961014aefd0a5e8b16d8a3da16b8df67ebbfdf6c6708d58d042ea0bf27b39a120a31fcce61e7077c546d1bc5fc705f822a61c384981b2e869340b465ae8b702ba52fafe7735b7a9eaefee0984f840e22ca80809d586bf0f7b726b7af21387a32ed0d8713315fef6aaf41c2431bb77f0d87d42dcfa92dec1d5468a6e1f796dea44fcaa559f0d67cff8a0479173d748212a64834fcfcb616d8172209090a9318aae5d0a20136da8eec133aca40e4e642fc7f75d765de5732cd2b11295edbc7de102cbfcc9be1c37fd712c42052bbe4fe9c4c1938ede57d65b60bc3f04253d7665194856decc77ff0cb45405ca6faab17592ede6ce5f0e0570b6259fc4bc34b035c91771e57b80db5e9a3c9f3e0f2d00543aa96412dfe2bb6be76fd940071aa427f43fba5c735886113f93a7ab9451270a3e15c521507894961b45acf48f0e6c08838b5754914876ca8f2109a5794530bacec4a612e90c8f6f9a036d8bce2ad3c4a709d43970e7c865de03eb0b3f6c421abea7b218e8ffa9d4afbec38507ad097565e49f97f7668648bd91f93b80eed37a1120e83378580b236ed8037728b0cf7bd2152ee6c5ac63da94a3406f7e9f72db653a12e86c76eccdab86208cc0586eca08601162fb5ed412b8b6947c43f8a2ba3604010061dd86ceda9f6e64666d80167d748bb170fc5f28aa4acc19b6ad562de2cab4019fff0f01c6cf66845b7a57341c54aed4b14c1545642f0fc813285fb954aaaaaff80a26fe3e34adc090b48529c296c5bc31522d95075aa53b6c4f907b659f817e6e645f52af4f5b9276e52101ad9d12efb894d05fd55570506feca11cdd961ac0641ca822f8686a7269f0061a1bc00f95e39ee540dd14311ee75c115280a5009aaa0e4098b8b80fdd76690d62cdde74a83759677f1b816b235c0da52c2b822cd919ba5eef7cc8d8441447e18dcd0c2f5f692001e6034ce1887f7992fc13ea2ef47d84bbef4d002e4273063291ac3dab460e6b6d87c1b7aa6238384937374b3d1bf5ca20b9693324b3e5a1d2e7a6d059901dc99d7f7f2220d24bae8eba7af0c45b7ce259d09acadb6cb2f827f47aecfad76f48ddc045737364d2bfaa2f3b79cafcca2478f80676c4fd8481196275416468bc3ff7981a7049d97ed09e59fb6615941407bd8e51466eda68e2b4a9b3bc6e5de65d6113a6a519bb3d286ab3ef845b71fdce058675752a2c8510226a245f7b96514f6b426f979669af7a5440c38fd2df789efadca0a65448299b7415823af183f3201f803c5063942ead634b7892ffc510cbff72c4c885ea31c81628b772d6be119074de00767e519954f2a042732f185bf89f9bf970c8afa3534e4a05f8139fec45ea89e3280b5dbec520f1496e569435b8301d46954ca20f41adbf2bd6e324828c12de5b526ea592b91bf4189f13c1f818ecfc47729959931b1a60cf99e799f7e0bcfe83eb2a49fc25c38d3e8dd5674e5c16894675f033bd3189a28f5cdcc65b9e3721be9ae308e6274b4f668651c636430ec23778e4a0370ee71bde77179680733057c92d501577bf00a77477bdfe4ce56f37d31d396535946c87089e691cce031379b5853d3d44e4d97704deff7390783d99870d58372e349426d7894c0431a633f23745d1c097ca16d9a513b96fe84282cedf97e2da895faf10d89b72a859f12bc4d83518e5d6d2e4e3bed2334adac9b37d367af8e8419f6f1e70520902a741396ca02a9fbffbc4a5deff1682cdae2cde9341f30581b6cc37eecfce068dedad375baea1c8a8bfb46dd93148a00cded16b8fa723a682fd8446e90047fe8cf20a0ef049290b08c336073e4afe8e551ea3c009fea22dad403ec77fcae9c3e3c2bbe3d840f0d8387c0678c0fdcc68d2907c579064d35ed8aac91ef21fc0166f8fd3b27df4585b305eb5b9521ca2d28478ea53cb22a48a130d9fb38b846f5f2d472ab5a4ab56720c24efb397f0d39b2331370b19f07a72b1be5e474ec87937bba398105819d0d6d717bc8e9f8ced2d601bef24853896104aa34c63da860361afbd49663963e9531002f4039e95340d60766f87a139f251ae06093d19432a68848a460c1304dce4a85295d032ae533181a1a22dda130462c94b6fda3819f09a85fdcdad1af3a597342f2a07b071cf932759dd1ffc14249bfa60c5dd254c1806c19d53af7c0625753fd7e034995c2f505a7591a5f86111d8be5c01801d266e8e6a9b093db331fa0fdc72612010de117e09abf2d92a7d8da2e77a29b59497d0e0eb5ea35aa2f2c388e191b6cd378123921e887cc009f08da1fe4b791688fbf43cca7535d8d7a65cee8648d12ce21969c6ad895db3fc1aab8a3f4dae9242e4cd99e6c17868b9b4e37368e8f9adbdc52a4f7dfea26a47d10e710de60ed86d169483bdd34c46fdb298ab8809a3e3d8424401be952c8149469d4e98b47f7b1c3d0e40db7389e93d26672fa682df8041e8329e090cc7df93206d1402dcf6bca7cbfa676327e5a4551fe4c50a8352498f4bc35072d8708c8cb2d6802083de3ad04bf477ed188591f8213d1a62cd55b99bf78f62d18b50c0e5f70f0dc6cf470ea4eb6532079baf0e562300c1d47301d07f23b92c3c9779ac8fa6377bc698aa5fffded4af5ba6d35e77cc3636529be7f2f6ed47ddcfbcca32f1c699467665d8afcd7f8fb08428976d1932fb96752442a761777a595b7e353fc789d3fa3eb51040e7cbed4d99596d35f4fcf2d40635b67f800f5d902a531918cd8d03bc1e31f7fbbd7deb99df41b1205ea03c3edfc39f60e50fe9290c98371769a23cabb917cd3f7847a17158e94ac12c9fc8a9737868176bffc82182127ea3d9a79928ddf4da2e48cb2ffe41912d1ff96407343bcf6b964994e95a83525c7aeceb303f7846e72ccf82ad631dcc3ea9e06605f69314977cc0145964ee5c9026dbea82db207c0a6f0cb65013ed179773d5c2dba7606caf79ad081cf6e3a9c979115a95ca0d445d39ea6fbe3f29fa449490254d6b9ae0a05ad1bf61fbf928c6df62ac6830a728790d3f0ee4097b136c4639274bd92e669a620becdfda2625ce8fce2b1bb9e276a45fddc005e4e454bbe861c189b06cafe5211ef949e6f98c3287a3829fda5e2feb5b0760f048fecdadbc1b9115f55dd4ff3f8ce1000a124c11bb10dc522a7a48ea285cd94cb39e32610ecdb680b2f48a44af48e20e4efab69d36ebd829f7e7221abb0c3989aef2fa7b3858bd2b0201d7a287f3730a9dece40b64f0f7e5051a3aa7d8acde18973ddf995a2d7596c8391"}]}, 0x1018}, 0x1, 0x0, 0x0, 0x48000}, 0x4080)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')
setfsuid$auto(0x0)
unshare$auto(0x40000080)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f80, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
r7 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/fs/netfs/volumes\x00', 0x40080, 0x0)
pread64$auto(r7, 0x0, 0x8100000041, 0x413e)
clock_nanosleep$auto(0xfffffff2, 0x5, 0x0, 0x0)
mremap$auto(0x1ff000, 0x100005, 0x843, 0x3, 0x2)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
fsopen$auto(0x0, 0x1)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0xfffffffffffffffa, 0x9, 0x19)
waitid$auto_P_PIDFD(0x3, r5, &(0x7f0000000040)={@siginfo_0_0={0x2, 0x4, 0x0, @_rt={0xffffffffffffffff, 0x0, @sival_ptr=&(0x7f0000000280)="79ca6170c72c9b5affac767c0127e58e38f3f407303ed544651fc514ea2bf3a8d8ec1b5efc99d62cbb8043d4582607afd440f400a4fdcd74a0d6cc759ee437d05a5a149e70f79615cb36ed421aea340b2fe64c6f0439d9294cee642b94067691cdb8738f2363b14d75159d50f1d2041552ec66151a9f701e52dbbc1da461754f08314b0d6bbb04733b1e75896aa1d04e8e80eeef31efb7c1d6d29923d10bb06fc202e8c6970da24c428b428a45a8146761b0799727aa98dee9a474d1ec2011619ef92795e56f01adc6944105d7bf5c917ab81c899a21ee50a5ef56db545f7c67b8077183bc65"}}}, 0x20f5, &(0x7f0000000440)={{0x0, 0x80}, {0x8, 0x3}, 0xc2, 0xfffffffffffffff1, 0x80000001, 0x9, 0x1, 0xffffffffffffffff, 0x101, 0x101, 0xfff, 0x0, 0x3, 0x9, 0x8, 0xfffffffffffffffa})
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)

2.724651254s ago: executing program 0 (id=2530):
mmap$auto(0x0, 0x20008, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mq_timedsend$auto(r0, &(0x7f00000001c0)='ethtool\x00', 0x4, 0x9, &(0x7f0000000280)={0x7f, 0x1})
socket(0x10, 0x2, 0x4)
socket(0x10, 0x3, 0x6)
socket(0x25, 0x1, 0x3)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r1, @ANYBLOB="01002dbd7000fedbdf2505000000da02038008", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e", @ANYRES32, @ANYBLOB], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50)
io_uring_setup$auto(0x5d, &(0x7f00000004c0)={0x52, 0xd, 0x6, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x1, 0x6, 0x8c48, 0x29f, 0x100, 0x2, 0xb831, 0x5, 0x2}, {0x100, 0x20001, 0x52, 0x5, 0xfffffffe, 0x0, 0x76c5, 0x8, 0x100000000}})
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c001b"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x7}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2.182010163s ago: executing program 0 (id=2531):
mmap$auto(0x0, 0x7, 0x5, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
r0 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x460800, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_TREAD64(r0, 0x400454a4, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x20008, 0x4000000000df, 0x2000eb1, 0xffffffffffffffff, 0x3) (async, rerun: 32)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000) (async)
socket(0xb, 0xa, 0x4) (async)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000100)=@query={@target_ifindex, 0x2, 0xff, 0x9f9f, 0x5, @count=0x1, 0x0, 0x200, 0x7dc0, 0x8, 0x8}, 0xa3)
bpf$auto(0x1, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0x3, 0x0, 0x3}, 0x4) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
setsockopt$auto(0xffffffffffffffff, 0x10000000084, 0x4, 0x0, 0x4) (async)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r2, &(0x7f0000000080)={0x0, 0x1000}, 0x3)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
madvise$auto(0x0, 0xffffffffffff0005, 0x17) (async, rerun: 64)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
socket(0x11, 0x80003, 0x300)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x82002, 0x0) (rerun: 64)
write$auto_ocfs2_control_fops_stack_user(r3, &(0x7f0000003900)="fb", 0x1) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/module/i915/parameters/mitigations\x00', 0x88302, 0x0)
sendfile$auto(r4, r4, 0x0, 0x7ffff000) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)

1.903717201s ago: executing program 0 (id=2532):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x8f80, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000240)={0x40, r4, 0x1, 0x70bd2f, 0x25dfdbfd, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@nested={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0xb7, 0x0, 0x1, [@typed={0x8, 0x1, 0x0, 0x0, @pid}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}]}]}, 0x40}}, 0x48084)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/fs/netfs/volumes\x00', 0x40080, 0x0)
pread64$auto(r5, 0x0, 0x8100000041, 0x413e)
mmap$auto(0x0, 0x20009, 0xe, 0xeb1, 0x403, 0x8000)
setresuid$auto(0x0, 0x7, 0x8080)
capset$auto(0x0, 0x0)
capset$auto(0x0, 0x0)
clock_nanosleep$auto(0xfffffff2, 0x5, 0x0, 0x0)
mremap$auto(0x1ff000, 0x100005, 0x843, 0x3, 0x2)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
fsopen$auto(0x0, 0x1)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
waitid$auto_P_PIDFD(0x3, r1, &(0x7f0000000040)={@_si_pad}, 0x20f5, &(0x7f0000000440)={{0x0, 0x80}, {0x8, 0x3}, 0xc2, 0xfffffffffffffff1, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x101, 0x101, 0xfff, 0x3, 0x0, 0x7, 0xf0, 0xfffffffffffffffa})
madvise$auto(0x0, 0x2003f2, 0x15)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0x4, 0x300000000000)
socket(0x1d, 0x3, 0x1)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r6, r6, 0x0, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x3)

1.827448622s ago: executing program 4 (id=2533):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/platform/dummy_hcd.0/usb1/bcdDevice\x00', 0x40000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000940)=""/4096, 0x1000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi22\x00', 0xe0800, 0x0)
r1 = socket(0x15, 0x5, 0x0)
mmap$auto(0x9e, 0x400009, 0x2, 0x18, r1, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0)
unlinkat$auto(0xffffffffffffffff, 0x0, 0x200)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/028/001\x00', 0x400, 0x0)
read$auto_usbdev_file_operations_usb(r3, &(0x7f0000000180)=""/38, 0x26)
read$auto(0x3, 0x0, 0xfdef)
ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x100)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0xeb)
fallocate$auto(r4, 0x1, 0x820, 0x7fff)
ioctl$auto_TUNSETOFFLOAD2(r4, 0x400454d0, &(0x7f0000000040)=0x7)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000240)='/dev/tty50\x00', 0x1, 0x0)
ioctl$auto(r5, 0x540a, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r6 = openat$auto_ptdump_curusr_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x480, 0x0)
symlink$auto(&(0x7f0000000140)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000240)='./file0\x00')
chdir$auto(&(0x7f0000000040)='./file0/../file0\x00')
pread64$auto(r6, 0x0, 0xa, 0x10003)
ustat$auto(0x801, 0x0)
sendmsg$auto(r1, &(0x7f0000000180)={&(0x7f0000000440)="823e049639c5ea4db993ce493e9933a906c36b2e3f05a4114aaf3968ae1a6ac24bb207cab6da4627d5d99d2487256fb87aedd1007519e107dedec5cf0035ea47094be2d57b529e6915708b9f49f27c248ded3ec179a194122375db7c37ed79087e8c45e38656a9891271ad1bfc8ce62122a0dde3c1732b56af337bf83dfd7e71d5f631852521eb18dd1ab019c311b57b38a0b9dff54cbe1d68ea3223bab038905e91206452d95a8d13868c52cb351aefb74d520d8236cc6b982723cb692196e82a463b34ee0832336f43b26d6367f857073da232c7d16753e33c2687c91fcd00a4b4c27740eda5161a9dfad72289ef38a42db133946a275fb7275dba2645a9315ace1c4a7e", 0x7fe, 0x0, 0xffffffff, 0x0, 0x1, 0x4}, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)

795.191728ms ago: executing program 5 (id=2534):
mmap$auto(0x0, 0x420009, 0xfff, 0xeb1, 0x401, 0x7ffd)
r0 = bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={<r1=>0x19, 0x4, 0x4, 0x880b, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x6f4)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
socket(0xf, 0x3, 0x2)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x8000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video26\x00', 0x403ef3975da15aac, 0x0)
r3 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_SNDCTL_TMR_CONTINUE(r0, 0x5404, &(0x7f00000000c0)="873302e301e0b01ae9e5d8a7401b66e72e4857fababb0070dec76e27ea1c71b7f8b800abcfb9974f59c538ef")
mmap$auto(0xd5c9, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
mmap$auto(0x9f5, 0x1000000000000000, 0x3, 0x14, 0xfffffffffffffffa, 0x8000)
r5 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r5, 0x4, 0x7ff)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
wait4$auto(r5, 0x0, 0x80000001, 0x0)
pread64$auto(r3, 0x0, 0x2, 0x3)
prctl$auto(0x3e, 0x4a, r1, 0x6, 0x80000001)
write$auto(r2, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\x97U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
ioctl$auto_FICLONERANGE(r4, 0x4020940d, 0x1)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181500, 0x0)
fanotify_mark$auto(0xffffffffffffffff, 0x9, 0x1000000009, r0, 0x0)
open(0x0, 0x0, 0x408)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)

458.996069ms ago: executing program 6 (id=2535):
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0xa, 0x1, 0x84)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000080)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
setsockopt$auto(r0, 0x0, 0x60, 0x0, 0x6f7250c4)
mmap$auto(0x0, 0x9, 0x800000000df, 0x9b72, 0xea8a, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x81)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/mm/mempolicy/weighted_interleave/node1\x00', 0x1a1942, 0x0)
write$auto(0x3, 0x0, 0x3f00)

0s ago: executing program 6 (id=2536):
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x4001, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$auto_mISDN_fops_timerdev(r0, &(0x7f0000001a00)=""/4097, 0x1001)
r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0)
ioctl$auto_I2C_SLAVE(r1, 0x703, 0x0)
ioctl$auto_IMADDTIMER(r0, 0x80044940, 0x0)
socket(0x2, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x20000a, 0x4)
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
r2 = getpgrp(0x0)
ioprio_get$auto_IOPRIO_WHO_PGRP(0x2, r2)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x1010001, 0x100000003)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x40400, 0x0)
read$auto(r3, 0x0, 0x1ff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/sysname\x00', 0xaa902, 0x0)

kernel console output (not intermixed with test programs):

 bytes leftover after parsing attributes in process `syz.1.1867'.
[  699.401665][T14167] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[  701.776126][T14188] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1875'.
[  701.844072][T14188] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1875'.
[  703.753732][T14224] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1883'.
[  703.807234][T14224] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1883'.
[  704.099504][T14227] openvswitch: netlink: Key type 53 is out of range max 32
[  704.392882][T14231] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1885'.
[  705.755962][T14251] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1890'.
[  705.827226][T14253] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1890'.
[  706.231014][T14255] random: crng reseeded on system resumption
[  709.597473][T14298] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1904'.
[  709.659710][T14298] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1904'.
[  709.706300][T14304] futex_wake_op: syz.1.1907 tries to shift op by -1; fix this program
[  710.164688][T14313] FAULT_INJECTION: forcing a failure.
[  710.164688][T14313] name failslab, interval 1, probability 0, space 0, times 0
[  710.240820][T14313] CPU: 0 UID: 0 PID: 14313 Comm: syz.1.1911 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  710.240852][T14313] Tainted: [L]=SOFTLOCKUP
[  710.240859][T14313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  710.240869][T14313] Call Trace:
[  710.240876][T14313]  <TASK>
[  710.240883][T14313]  dump_stack_lvl+0x100/0x190
[  710.240916][T14313]  should_fail_ex.cold+0x5/0xa
[  710.240942][T14313]  ? nsim_dbg_netdev_ops_read+0x90/0x610
[  710.240968][T14313]  should_failslab+0xc2/0x120
[  710.240987][T14313]  __kmalloc_noprof+0xe0/0x850
[  710.241019][T14313]  nsim_dbg_netdev_ops_read+0x90/0x610
[  710.241050][T14313]  full_proxy_read+0x135/0x1a0
[  710.241076][T14313]  ? __pfx_full_proxy_read+0x10/0x10
[  710.241102][T14313]  vfs_read+0x1e4/0xb30
[  710.241133][T14313]  ? __pfx_vfs_read+0x10/0x10
[  710.241161][T14313]  ? __fget_files+0x215/0x3d0
[  710.241183][T14313]  ? __fget_files+0x21f/0x3d0
[  710.241206][T14313]  ksys_read+0x12a/0x250
[  710.241235][T14313]  ? __pfx_ksys_read+0x10/0x10
[  710.241270][T14313]  do_syscall_64+0x106/0xf80
[  710.241295][T14313]  ? clear_bhb_loop+0x40/0x90
[  710.241318][T14313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  710.241337][T14313] RIP: 0033:0x7f535539c799
[  710.241360][T14313] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  710.241378][T14313] RSP: 002b:00007f53562c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  710.241397][T14313] RAX: ffffffffffffffda RBX: 00007f5355615fa0 RCX: 00007f535539c799
[  710.241409][T14313] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  710.241419][T14313] RBP: 00007f53562c0090 R08: 0000000000000000 R09: 0000000000000000
[  710.241429][T14313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  710.241440][T14313] R13: 00007f5355616038 R14: 00007f5355615fa0 R15: 00007fff0192ac18
[  710.241463][T14313]  </TASK>
[  711.641794][T14321] FAULT_INJECTION: forcing a failure.
[  711.641794][T14321] name fail_futex, interval 1, probability 0, space 0, times 0
[  711.741747][T14321] CPU: 0 UID: 0 PID: 14321 Comm: syz.2.1914 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  711.741784][T14321] Tainted: [L]=SOFTLOCKUP
[  711.741791][T14321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  711.741807][T14321] Call Trace:
[  711.741815][T14321]  <TASK>
[  711.741822][T14321]  dump_stack_lvl+0x100/0x190
[  711.741855][T14321]  should_fail_ex.cold+0x5/0xa
[  711.741878][T14321]  get_futex_key+0x1d2/0x1620
[  711.741904][T14321]  ? __pfx_get_futex_key+0x10/0x10
[  711.741928][T14321]  ? update_se+0x94/0x760
[  711.741973][T14321]  futex_wait_setup+0x83/0x510
[  711.742008][T14321]  __futex_wait+0x19f/0x300
[  711.742041][T14321]  ? __pfx___futex_wait+0x10/0x10
[  711.742068][T14321]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  711.742093][T14321]  ? lockdep_hardirqs_on+0x78/0x100
[  711.742121][T14321]  ? __pfx_futex_wake_mark+0x10/0x10
[  711.742155][T14321]  ? find_held_lock+0x2b/0x80
[  711.742179][T14321]  ? futex_wake+0x456/0x530
[  711.742211][T14321]  futex_wait+0xed/0x380
[  711.742239][T14321]  ? __pfx_futex_wait+0x10/0x10
[  711.742279][T14321]  do_futex+0x1ef/0x350
[  711.742303][T14321]  ? __pfx_do_futex+0x10/0x10
[  711.742328][T14321]  ? __pfx___might_resched+0x10/0x10
[  711.742355][T14321]  ? blkcg_maybe_throttle_current+0x5df/0xeb0
[  711.742386][T14321]  __x64_sys_futex+0x34f/0x4d0
[  711.742413][T14321]  ? __pfx___x64_sys_futex+0x10/0x10
[  711.742447][T14321]  do_syscall_64+0x106/0xf80
[  711.742471][T14321]  ? clear_bhb_loop+0x40/0x90
[  711.742493][T14321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  711.742513][T14321] RIP: 0033:0x7fa8c539c799
[  711.742532][T14321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  711.742550][T14321] RSP: 002b:00007fa8c63030e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  711.742569][T14321] RAX: ffffffffffffffda RBX: 00007fa8c5615fa8 RCX: 00007fa8c539c799
[  711.742581][T14321] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa8c5615fa8
[  711.742592][T14321] RBP: 00007fa8c5615fa0 R08: 0000000000000000 R09: 0000000000000000
[  711.742604][T14321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  711.742615][T14321] R13: 00007fa8c5616038 R14: 00007ffc9476e4c0 R15: 00007ffc9476e5a8
[  711.742640][T14321]  </TASK>
[  712.355460][T14334] netlink: zone id is out of range
[  712.372413][T14334] netlink: zone id is out of range
[  712.377556][T14334] netlink: zone id is out of range
[  712.467635][T14334] netlink: zone id is out of range
[  712.510209][T14334] netlink: zone id is out of range
[  712.543638][T14339] FAULT_INJECTION: forcing a failure.
[  712.543638][T14339] name failslab, interval 1, probability 0, space 0, times 0
[  712.565434][T14334] netlink: zone id is out of range
[  712.570696][T14334] netlink: zone id is out of range
[  712.582306][T14334] netlink: zone id is out of range
[  712.587493][T14334] netlink: zone id is out of range
[  712.602286][T14334] netlink: zone id is out of range
[  712.615633][T14339] CPU: 0 UID: 0 PID: 14339 Comm: syz.2.1919 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  712.615672][T14339] Tainted: [L]=SOFTLOCKUP
[  712.615679][T14339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  712.615691][T14339] Call Trace:
[  712.615698][T14339]  <TASK>
[  712.615705][T14339]  dump_stack_lvl+0x100/0x190
[  712.615737][T14339]  should_fail_ex.cold+0x5/0xa
[  712.615759][T14339]  ? tomoyo_supervisor+0x65d/0x1340
[  712.615786][T14339]  should_failslab+0xc2/0x120
[  712.615806][T14339]  __kmalloc_noprof+0xe0/0x850
[  712.615838][T14339]  tomoyo_supervisor+0x65d/0x1340
[  712.615874][T14339]  ? __pfx_tomoyo_supervisor+0x10/0x10
[  712.615917][T14339]  ? tomoyo_check_path_acl+0x141/0x210
[  712.615937][T14339]  ? tomoyo_check_acl+0x1f7/0x410
[  712.615969][T14339]  tomoyo_path_permission+0x270/0x3b0
[  712.615992][T14339]  tomoyo_check_open_permission+0x34d/0x3c0
[  712.616014][T14339]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  712.616057][T14339]  ? do_raw_spin_lock+0x128/0x260
[  712.616086][T14339]  ? path_get+0x61/0x80
[  712.616109][T14339]  tomoyo_file_open+0x6b/0x90
[  712.616138][T14339]  security_file_open+0xb5/0x1e0
[  712.616162][T14339]  do_dentry_open+0x5aa/0x1660
[  712.616182][T14339]  ? security_inode_permission+0xbf/0x250
[  712.616206][T14339]  vfs_open+0x82/0x3f0
[  712.616232][T14339]  path_openat+0x208c/0x31a0
[  712.616259][T14339]  ? __pfx_path_openat+0x10/0x10
[  712.616287][T14339]  do_file_open+0x20e/0x430
[  712.616309][T14339]  ? __pfx_do_file_open+0x10/0x10
[  712.616344][T14339]  ? alloc_fd+0x476/0x790
[  712.616373][T14339]  ? do_getname+0x191/0x390
[  712.616398][T14339]  do_sys_openat2+0x10d/0x1e0
[  712.616422][T14339]  ? __pfx_do_sys_openat2+0x10/0x10
[  712.616448][T14339]  ? __fget_files+0x21f/0x3d0
[  712.616471][T14339]  __x64_sys_openat+0x12d/0x210
[  712.616496][T14339]  ? __pfx___x64_sys_openat+0x10/0x10
[  712.616530][T14339]  do_syscall_64+0x106/0xf80
[  712.616556][T14339]  ? clear_bhb_loop+0x40/0x90
[  712.616579][T14339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.616598][T14339] RIP: 0033:0x7fa8c539c799
[  712.616614][T14339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  712.616632][T14339] RSP: 002b:00007fa8c6303028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  712.616653][T14339] RAX: ffffffffffffffda RBX: 00007fa8c5615fa0 RCX: 00007fa8c539c799
[  712.616665][T14339] RDX: 0000000000000102 RSI: 0000200000000800 RDI: ffffffffffffff9c
[  712.616676][T14339] RBP: 00007fa8c5432c99 R08: 0000000000000000 R09: 0000000000000000
[  712.616688][T14339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  712.616699][T14339] R13: 00007fa8c5616038 R14: 00007fa8c5615fa0 R15: 00007ffc9476e5a8
[  712.616723][T14339]  </TASK>
[  712.640823][T14345] FAULT_INJECTION: forcing a failure.
[  712.640823][T14345] name failslab, interval 1, probability 0, space 0, times 0
[  712.640856][T14345] CPU: 0 UID: 0 PID: 14345 Comm: syz.0.1920 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  712.640882][T14345] Tainted: [L]=SOFTLOCKUP
[  712.640889][T14345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  712.640900][T14345] Call Trace:
[  712.640906][T14345]  <TASK>
[  712.640913][T14345]  dump_stack_lvl+0x100/0x190
[  712.640943][T14345]  should_fail_ex.cold+0x5/0xa
[  712.640965][T14345]  should_failslab+0xc2/0x120
[  712.640985][T14345]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  712.641012][T14345]  ? do_getname+0x35/0x390
[  712.641034][T14345]  ? find_held_lock+0x2b/0x80
[  712.641050][T14345]  ? ksys_write+0x190/0x250
[  712.641069][T14345]  do_getname+0x35/0x390
[  712.641094][T14345]  do_sys_openat2+0xc5/0x1e0
[  712.641118][T14345]  ? __pfx_do_sys_openat2+0x10/0x10
[  712.641144][T14345]  ? __fget_files+0x21f/0x3d0
[  712.641165][T14345]  __x64_sys_open+0xfe/0x1d0
[  712.641188][T14345]  ? __pfx___x64_sys_open+0x10/0x10
[  712.641211][T14345]  ? ksys_write+0x1ac/0x250
[  712.641234][T14345]  do_syscall_64+0x106/0xf80
[  712.641258][T14345]  ? clear_bhb_loop+0x40/0x90
[  712.641280][T14345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.641299][T14345] RIP: 0033:0x7f4766b9c799
[  712.641314][T14345] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  712.641332][T14345] RSP: 002b:00007f4767a27028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  712.641349][T14345] RAX: ffffffffffffffda RBX: 00007f4766e16090 RCX: 00007f4766b9c799
[  712.641369][T14345] RDX: 0000000000000158 RSI: 0000000000060280 RDI: 0000200000000100
[  712.641379][T14345] RBP: 00007f4767a27090 R08: 0000000000000000 R09: 0000000000000000
[  712.641390][T14345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  712.641401][T14345] R13: 00007f4766e16128 R14: 00007f4766e16090 R15: 00007ffd1a371dd8
[  712.641423][T14345]  </TASK>
[  712.983621][T14332] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1918'.
[  712.988375][T14332] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1918'.
[  713.943764][T14366] FAULT_INJECTION: forcing a failure.
[  713.943764][T14366] name failslab, interval 1, probability 0, space 0, times 0
[  713.943943][T14366] CPU: 0 UID: 0 PID: 14366 Comm: syz.0.1925 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  713.943972][T14366] Tainted: [L]=SOFTLOCKUP
[  713.943979][T14366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  713.943990][T14366] Call Trace:
[  713.943998][T14366]  <TASK>
[  713.944005][T14366]  dump_stack_lvl+0x100/0x190
[  713.944037][T14366]  should_fail_ex.cold+0x5/0xa
[  713.944069][T14366]  should_failslab+0xc2/0x120
[  713.944090][T14366]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  713.944118][T14366]  ? __mpol_dup+0x74/0x370
[  713.944143][T14366]  __mpol_dup+0x74/0x370
[  713.944165][T14366]  ? __pfx___mpol_dup+0x10/0x10
[  713.944186][T14366]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  713.944213][T14366]  ? sp_alloc+0x27/0x160
[  713.944239][T14366]  sp_alloc+0x4d/0x160
[  713.944262][T14366]  mpol_set_shared_policy+0xa5/0x8a0
[  713.944290][T14366]  ? __pfx_shmem_set_policy+0x10/0x10
[  713.944312][T14366]  mbind_range+0x339/0x550
[  713.944338][T14366]  do_mbind+0x7de/0xfd0
[  713.944366][T14366]  ? __might_fault+0xc5/0x140
[  713.944391][T14366]  ? __pfx_do_mbind+0x10/0x10
[  713.944419][T14366]  ? _copy_from_user+0x59/0xd0
[  713.944445][T14366]  ? __pfx_get_nodes+0x10/0x10
[  713.944479][T14366]  kernel_mbind+0x1b7/0x200
[  713.944503][T14366]  ? __pfx_kernel_mbind+0x10/0x10
[  713.944525][T14366]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  713.944550][T14366]  ? syscall_user_dispatch+0x76/0x130
[  713.944580][T14366]  do_syscall_64+0x106/0xf80
[  713.944605][T14366]  ? clear_bhb_loop+0x40/0x90
[  713.944627][T14366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  713.944647][T14366] RIP: 0033:0x7f4766b9c799
[  713.944663][T14366] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  713.944680][T14366] RSP: 002b:00007f4767a48028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  713.944699][T14366] RAX: ffffffffffffffda RBX: 00007f4766e15fa0 RCX: 00007f4766b9c799
[  713.944711][T14366] RDX: 0000000000008003 RSI: 0000000000800605 RDI: 0000000000000000
[  713.944722][T14366] RBP: 00007f4766c32c99 R08: 0000000000000003 R09: 0000000000000003
[  713.944734][T14366] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000
[  713.944745][T14366] R13: 00007f4766e16038 R14: 00007f4766e15fa0 R15: 00007ffd1a371dd8
[  713.944769][T14366]  </TASK>
[  714.012595][T14346] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  714.012809][T14346] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  714.013037][T14346] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  714.013228][T14346] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  714.893358][T10736] Bluetooth: hci2: command 0x0c1a tx timeout
[  716.015332][T10736] Bluetooth: hci0: command 0x0c1a tx timeout
[  716.096526][T10736] Bluetooth: hci4: command 0x0c1a tx timeout
[  716.096563][T10736] Bluetooth: hci3: command 0x0c1a tx timeout
[  717.069709][T14388] futex_wake_op: syz.4.1930 tries to shift op by -1; fix this program
[  718.498468][T10842] block nbd0: Possible stuck request ffff888027838000: control (read@0,4096B). Runtime 30 seconds
[  718.632817][T14426] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1948'.
[  718.704261][T14426] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1948'.
[  720.299073][T14433] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  720.337524][T14433] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  720.343897][T14433] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  720.381744][T14433] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  721.296614][T10736] Bluetooth: hci2: command 0x0c1a tx timeout
[  721.770401][T14478] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1953'.
[  721.859665][T14475] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1953'.
[  722.415029][T14494] random: crng reseeded on system resumption
[  722.422186][T10736] Bluetooth: hci4: command 0x0c1a tx timeout
[  722.428665][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout
[  722.435047][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout
[  723.740438][T14521] hub 1-0:1.0: USB hub found
[  723.782730][T14521] hub 1-0:1.0: 1 port detected
[  724.328836][T14527] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1967'.
[  724.381531][T14527] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1967'.
[  724.849053][T14532] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1969'.
[  724.894086][T14532] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1969'.
[  725.221362][T14539] netlink: 346 bytes leftover after parsing attributes in process `syz.4.1971'.
[  725.265576][T14540] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input111
[  725.623532][T14537] ima: policy update failed
[  725.650424][   T29] audit: type=1802 audit(1773479563.375:17): pid=14537 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1970" res=0 errno=0
[  727.561225][T14571] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1978'.
[  727.627541][T14571] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1978'.
[  728.456600][T14589] netlink: 334 bytes leftover after parsing attributes in process `syz.2.1983'.
[  728.494115][T14587] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1982'.
[  728.550584][T14587] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1982'.
[  729.880073][T14610] __nla_validate_parse: 2 callbacks suppressed
[  729.880091][T14610] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1990'.
[  729.939455][T14617] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1992'.
[  729.966464][T14615] netlink: 350 bytes leftover after parsing attributes in process `syz.1.1990'.
[  729.985544][T14617] netlink: 'syz.4.1992': attribute type 3 has an invalid length.
[  730.024319][T14617] netlink: 306 bytes leftover after parsing attributes in process `syz.4.1992'.
[  730.521791][T14627] syz.1.1994 (14627): attempted to duplicate a private mapping with mremap.  This is not supported.
[  730.671979][T14628] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1995'.
[  730.712015][T14628] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1995'.
[  732.160997][T14648] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2002'.
[  732.215142][T14649] netlink: 350 bytes leftover after parsing attributes in process `syz.2.2002'.
[  732.767697][T14659] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE�r��҄y�*�"�l-���y–��L̓���]'
[  732.833999][T14659] CPU: 0 UID: 0 PID: 14659 Comm: syz.2.2005 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  732.834031][T14659] Tainted: [L]=SOFTLOCKUP
[  732.834038][T14659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  732.834049][T14659] Call Trace:
[  732.834057][T14659]  <TASK>
[  732.834064][T14659]  dump_stack_lvl+0x100/0x190
[  732.834097][T14659]  sysfs_warn_dup.cold+0x1c/0x28
[  732.834124][T14659]  sysfs_do_create_link_sd+0x113/0x140
[  732.834152][T14659]  sysfs_create_link+0x61/0xc0
[  732.834178][T14659]  device_add+0x675/0x1950
[  732.834202][T14659]  ? __pfx_device_add+0x10/0x10
[  732.834224][T14659]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  732.834256][T14659]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[  732.834286][T14659]  wiphy_register+0x1e5b/0x2d30
[  732.834314][T14659]  ? __rtnl_unlock+0xb9/0xf0
[  732.834342][T14659]  ? netdev_run_todo+0x820/0x12c0
[  732.834375][T14659]  ? __pfx_wiphy_register+0x10/0x10
[  732.834405][T14659]  ? __asan_memset+0x23/0x50
[  732.834432][T14659]  ? minstrel_ht_alloc+0x5e6/0x7f0
[  732.834469][T14659]  ieee80211_register_hw+0x2cfd/0x4140
[  732.834510][T14659]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  732.834540][T14659]  ? __pfx___debug_object_init+0x10/0x10
[  732.834573][T14659]  ? find_held_lock+0x2b/0x80
[  732.834592][T14659]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  732.834623][T14659]  ? __hrtimer_setup+0x178/0x280
[  732.834650][T14659]  mac80211_hwsim_new_radio+0x2847/0x57d0
[  732.834694][T14659]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  732.834732][T14659]  hwsim_new_radio_nl+0xc1f/0x1340
[  732.834764][T14659]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  732.834801][T14659]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[  732.834822][T14659]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[  732.834847][T14659]  genl_family_rcv_msg_doit+0x214/0x300
[  732.834869][T14659]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  732.834890][T14659]  ? genl_get_cmd+0x3ef/0x720
[  732.834931][T14659]  ? bpf_lsm_capable+0x9/0x10
[  732.834963][T14659]  ? security_capable+0x80/0x260
[  732.834992][T14659]  ? ns_capable+0xd2/0xf0
[  732.835018][T14659]  genl_rcv_msg+0x560/0x800
[  732.835042][T14659]  ? __pfx_genl_rcv_msg+0x10/0x10
[  732.835063][T14659]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  732.835101][T14659]  netlink_rcv_skb+0x159/0x420
[  732.835130][T14659]  ? __pfx_genl_rcv_msg+0x10/0x10
[  732.835150][T14659]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  732.835189][T14659]  ? netlink_deliver_tap+0x1ae/0xcc0
[  732.835219][T14659]  genl_rcv+0x28/0x40
[  732.835236][T14659]  netlink_unicast+0x5aa/0x870
[  732.835268][T14659]  ? __pfx_netlink_unicast+0x10/0x10
[  732.835306][T14659]  netlink_sendmsg+0x8b0/0xda0
[  732.835338][T14659]  ? __pfx_netlink_sendmsg+0x10/0x10
[  732.835369][T14659]  ? __import_iovec+0x1d2/0x640
[  732.835393][T14659]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  732.835426][T14659]  ____sys_sendmsg+0x9e1/0xb70
[  732.835444][T14659]  ? __pfx_netlink_sendmsg+0x10/0x10
[  732.835474][T14659]  ? __pfx_____sys_sendmsg+0x10/0x10
[  732.835498][T14659]  ? __pfx_futex_wake_mark+0x10/0x10
[  732.835530][T14659]  ___sys_sendmsg+0x190/0x1e0
[  732.835553][T14659]  ? __pfx____sys_sendmsg+0x10/0x10
[  732.835604][T14659]  __sys_sendmsg+0x170/0x220
[  732.835631][T14659]  ? __pfx___sys_sendmsg+0x10/0x10
[  732.835657][T14659]  ? __x64_sys_futex+0x34f/0x4d0
[  732.835695][T14659]  do_syscall_64+0x106/0xf80
[  732.835721][T14659]  ? clear_bhb_loop+0x40/0x90
[  732.835743][T14659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  732.835763][T14659] RIP: 0033:0x7fa8c539c799
[  732.835780][T14659] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  732.835799][T14659] RSP: 002b:00007fa8c62e2028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  732.835818][T14659] RAX: ffffffffffffffda RBX: 00007fa8c5616090 RCX: 00007fa8c539c799
[  732.835830][T14659] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000008
[  732.835842][T14659] RBP: 00007fa8c5432c99 R08: 0000000000000000 R09: 0000000000000000
[  732.835852][T14659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  732.835863][T14659] R13: 00007fa8c5616128 R14: 00007fa8c5616090 R15: 00007ffc9476e5a8
[  732.835888][T14659]  </TASK>
[  734.021795][T14668] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE�r��҄y�*�"�l-���y–��L̓���]'
[  734.050329][T14668] CPU: 0 UID: 0 PID: 14668 Comm: syz.1.2007 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  734.050372][T14668] Tainted: [L]=SOFTLOCKUP
[  734.050379][T14668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  734.050390][T14668] Call Trace:
[  734.050398][T14668]  <TASK>
[  734.050407][T14668]  dump_stack_lvl+0x100/0x190
[  734.050440][T14668]  sysfs_warn_dup.cold+0x1c/0x28
[  734.050467][T14668]  sysfs_do_create_link_sd+0x113/0x140
[  734.050497][T14668]  sysfs_create_link+0x61/0xc0
[  734.050523][T14668]  device_add+0x675/0x1950
[  734.050548][T14668]  ? __pfx_device_add+0x10/0x10
[  734.050570][T14668]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  734.050602][T14668]  ? ieee80211_set_bitrate_flags+0x41b/0x6b0
[  734.050633][T14668]  wiphy_register+0x1e5b/0x2d30
[  734.050660][T14668]  ? __rtnl_unlock+0xb9/0xf0
[  734.050689][T14668]  ? netdev_run_todo+0x820/0x12c0
[  734.050725][T14668]  ? __pfx_wiphy_register+0x10/0x10
[  734.050755][T14668]  ? __asan_memset+0x23/0x50
[  734.050781][T14668]  ? minstrel_ht_alloc+0x5e6/0x7f0
[  734.050818][T14668]  ieee80211_register_hw+0x2cfd/0x4140
[  734.050858][T14668]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  734.050897][T14668]  ? __pfx___debug_object_init+0x10/0x10
[  734.050933][T14668]  ? find_held_lock+0x2b/0x80
[  734.050953][T14668]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  734.050986][T14668]  ? __hrtimer_setup+0x178/0x280
[  734.051013][T14668]  mac80211_hwsim_new_radio+0x2847/0x57d0
[  734.051059][T14668]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  734.051096][T14668]  hwsim_new_radio_nl+0xc1f/0x1340
[  734.051129][T14668]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  734.051166][T14668]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[  734.051187][T14668]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[  734.051212][T14668]  genl_family_rcv_msg_doit+0x214/0x300
[  734.051245][T14668]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  734.051264][T14668]  ? genl_get_cmd+0x3ef/0x720
[  734.051313][T14668]  ? bpf_lsm_capable+0x9/0x10
[  734.051333][T14668]  ? security_capable+0x80/0x260
[  734.051363][T14668]  ? ns_capable+0xd2/0xf0
[  734.051385][T14668]  genl_rcv_msg+0x560/0x800
[  734.051407][T14668]  ? __pfx_genl_rcv_msg+0x10/0x10
[  734.051428][T14668]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  734.051468][T14668]  netlink_rcv_skb+0x159/0x420
[  734.051497][T14668]  ? __pfx_genl_rcv_msg+0x10/0x10
[  734.051518][T14668]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  734.051557][T14668]  ? netlink_deliver_tap+0x1ae/0xcc0
[  734.051619][T14668]  genl_rcv+0x28/0x40
[  734.051637][T14668]  netlink_unicast+0x5aa/0x870
[  734.051669][T14668]  ? __pfx_netlink_unicast+0x10/0x10
[  734.051708][T14668]  netlink_sendmsg+0x8b0/0xda0
[  734.051742][T14668]  ? __pfx_netlink_sendmsg+0x10/0x10
[  734.051770][T14668]  ? __import_iovec+0x1d2/0x640
[  734.051795][T14668]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  734.051829][T14668]  ____sys_sendmsg+0x9e1/0xb70
[  734.051847][T14668]  ? __pfx_netlink_sendmsg+0x10/0x10
[  734.051888][T14668]  ? __pfx_____sys_sendmsg+0x10/0x10
[  734.051913][T14668]  ? __pfx_futex_wake_mark+0x10/0x10
[  734.051947][T14668]  ___sys_sendmsg+0x190/0x1e0
[  734.051971][T14668]  ? __pfx____sys_sendmsg+0x10/0x10
[  734.052022][T14668]  __sys_sendmsg+0x170/0x220
[  734.052049][T14668]  ? __pfx___sys_sendmsg+0x10/0x10
[  734.052075][T14668]  ? __x64_sys_futex+0x34f/0x4d0
[  734.052113][T14668]  do_syscall_64+0x106/0xf80
[  734.052139][T14668]  ? clear_bhb_loop+0x40/0x90
[  734.052162][T14668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.052182][T14668] RIP: 0033:0x7f535539c799
[  734.052199][T14668] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  734.052217][T14668] RSP: 002b:00007f53562c0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  734.052237][T14668] RAX: ffffffffffffffda RBX: 00007f5355615fa0 RCX: 00007f535539c799
[  734.052248][T14668] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003
[  734.052260][T14668] RBP: 00007f5355432c99 R08: 0000000000000000 R09: 0000000000000000
[  734.052271][T14668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  734.052282][T14668] R13: 00007f5355616038 R14: 00007f5355615fa0 R15: 00007fff0192ac18
[  734.052307][T14668]  </TASK>
[  735.162156][T14680] random: crng reseeded on system resumption
[  735.186890][T14680] hub 1-0:1.0: USB hub found
[  735.204993][T14680] hub 1-0:1.0: 1 port detected
[  736.126456][T14692] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2016'.
[  736.189281][T14692] netlink: 350 bytes leftover after parsing attributes in process `syz.2.2016'.
[  737.297898][T14707] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2019'.
[  737.372844][T14707] netlink: 350 bytes leftover after parsing attributes in process `syz.4.2019'.
[  737.457285][T14711] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2020'.
[  737.524552][T14711] netlink: 504 bytes leftover after parsing attributes in process `syz.2.2020'.
[  738.265108][T14724] FAULT_INJECTION: forcing a failure.
[  738.265108][T14724] name failslab, interval 1, probability 0, space 0, times 0
[  738.381822][T14724] CPU: 0 UID: 0 PID: 14724 Comm: syz.4.2022 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  738.381862][T14724] Tainted: [L]=SOFTLOCKUP
[  738.381869][T14724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  738.381880][T14724] Call Trace:
[  738.381887][T14724]  <TASK>
[  738.381895][T14724]  dump_stack_lvl+0x100/0x190
[  738.381927][T14724]  should_fail_ex.cold+0x5/0xa
[  738.381950][T14724]  should_failslab+0xc2/0x120
[  738.381970][T14724]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  738.382000][T14724]  ? can_rx_register+0x582/0x6f0
[  738.382029][T14724]  can_rx_register+0x582/0x6f0
[  738.382053][T14724]  ? __pfx_raw_rcv+0x10/0x10
[  738.382083][T14724]  ? __pfx_can_rx_register+0x10/0x10
[  738.382108][T14724]  ? do_raw_spin_lock+0x128/0x260
[  738.382137][T14724]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  738.382169][T14724]  raw_enable_filters+0xe0/0x210
[  738.382201][T14724]  raw_setsockopt+0xd40/0x1440
[  738.382227][T14724]  ? __pfx_aa_sk_perm+0x10/0x10
[  738.382250][T14724]  ? __pfx_raw_setsockopt+0x10/0x10
[  738.382279][T14724]  ? aa_sock_opt_perm+0xfe/0x1b0
[  738.382307][T14724]  ? __pfx_raw_setsockopt+0x10/0x10
[  738.382336][T14724]  do_sock_setsockopt+0xf3/0x1d0
[  738.382368][T14724]  __sys_setsockopt+0x119/0x190
[  738.382398][T14724]  __x64_sys_setsockopt+0xbd/0x160
[  738.382423][T14724]  ? do_syscall_64+0x95/0xf80
[  738.382448][T14724]  ? lockdep_hardirqs_on+0x78/0x100
[  738.382474][T14724]  do_syscall_64+0x106/0xf80
[  738.382500][T14724]  ? clear_bhb_loop+0x40/0x90
[  738.382523][T14724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  738.382543][T14724] RIP: 0033:0x7fbf7699c799
[  738.382559][T14724] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  738.382578][T14724] RSP: 002b:00007fbf778f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  738.382597][T14724] RAX: ffffffffffffffda RBX: 00007fbf76c16180 RCX: 00007fbf7699c799
[  738.382608][T14724] RDX: 0000000000000001 RSI: 0000000000000065 RDI: 0000000000000003
[  738.382619][T14724] RBP: 00007fbf76a32c99 R08: 0000000000000800 R09: 0000000000000000
[  738.382630][T14724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  738.382640][T14724] R13: 00007fbf76c16218 R14: 00007fbf76c16180 R15: 00007ffc02d52d18
[  738.382663][T14724]  </TASK>
[  738.722865][T14730] net_ratelimit: 45 callbacks suppressed
[  738.722893][T14730] openvswitch: netlink: Key type 261 is out of range max 32
[  740.770397][T14761] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2033'.
[  740.821296][T14761] netlink: 350 bytes leftover after parsing attributes in process `syz.4.2033'.
[  741.244434][T14769] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2035'.
[  741.295824][T14769] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2035'.
[  743.537182][T14803] random: crng reseeded on system resumption
[  743.603296][T14803] hub 1-0:1.0: USB hub found
[  743.629386][T14803] hub 1-0:1.0: 1 port detected
[  744.272209][T14812] netlink: 504 bytes leftover after parsing attributes in process `syz.1.2046'.
[  744.324007][T14812] netlink: 350 bytes leftover after parsing attributes in process `syz.1.2046'.
[  745.232411][T14841] FAULT_INJECTION: forcing a failure.
[  745.232411][T14841] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  745.298189][T14841] CPU: 0 UID: 0 PID: 14841 Comm: syz.4.2057 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  745.298220][T14841] Tainted: [L]=SOFTLOCKUP
[  745.298226][T14841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  745.298237][T14841] Call Trace:
[  745.298244][T14841]  <TASK>
[  745.298251][T14841]  dump_stack_lvl+0x100/0x190
[  745.298284][T14841]  should_fail_ex.cold+0x5/0xa
[  745.298306][T14841]  _copy_to_user+0x32/0xd0
[  745.298329][T14841]  simple_read_from_buffer+0xcb/0x170
[  745.298360][T14841]  proc_fail_nth_read+0x1af/0x230
[  745.298383][T14841]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  745.298406][T14841]  ? rw_verify_area+0xce/0x6d0
[  745.298432][T14841]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  745.298454][T14841]  vfs_read+0x1e4/0xb30
[  745.298485][T14841]  ? __pfx_vfs_read+0x10/0x10
[  745.298512][T14841]  ? __fget_files+0x215/0x3d0
[  745.298534][T14841]  ? __fget_files+0x21f/0x3d0
[  745.298556][T14841]  ksys_read+0x12a/0x250
[  745.298584][T14841]  ? __pfx_ksys_read+0x10/0x10
[  745.298619][T14841]  do_syscall_64+0x106/0xf80
[  745.298645][T14841]  ? clear_bhb_loop+0x40/0x90
[  745.298668][T14841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  745.298687][T14841] RIP: 0033:0x7fbf7695cfce
[  745.298702][T14841] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  745.298727][T14841] RSP: 002b:00007fbf77937fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  745.298746][T14841] RAX: ffffffffffffffda RBX: 00007fbf779386c0 RCX: 00007fbf7695cfce
[  745.298758][T14841] RDX: 000000000000000f RSI: 00007fbf779380a0 RDI: 0000000000000004
[  745.298769][T14841] RBP: 00007fbf77938090 R08: 0000000000000000 R09: 0000000000000000
[  745.298780][T14841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  745.298790][T14841] R13: 00007fbf76c16038 R14: 00007fbf76c15fa0 R15: 00007ffc02d52d18
[  745.298813][T14841]  </TASK>
[  745.675611][T14842] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input112
[  746.434043][T14850] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2059'.
[  746.467227][T14850] ipvlan0: entered promiscuous mode
[  746.488077][T14850] ipvlan0: entered allmulticast mode
[  746.509688][T14850] veth0_vlan: entered allmulticast mode
[  747.262860][T14858] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2060'.
[  747.341271][T14858] netlink: 350 bytes leftover after parsing attributes in process `syz.4.2060'.
[  747.964107][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  747.970494][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  748.581740][T10842] block nbd0: Possible stuck request ffff888027838000: control (read@0,4096B). Runtime 60 seconds
[  750.053271][T14903] netlink: 504 bytes leftover after parsing attributes in process `syz.1.2072'.
[  750.124043][T14903] netlink: 504 bytes leftover after parsing attributes in process `syz.1.2072'.
[  751.261931][T14924] FAULT_INJECTION: forcing a failure.
[  751.261931][T14924] name failslab, interval 1, probability 0, space 0, times 0
[  751.389146][T14924] CPU: 0 UID: 0 PID: 14924 Comm: syz.2.2077 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  751.389177][T14924] Tainted: [L]=SOFTLOCKUP
[  751.389183][T14924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  751.389194][T14924] Call Trace:
[  751.389201][T14924]  <TASK>
[  751.389209][T14924]  dump_stack_lvl+0x100/0x190
[  751.389240][T14924]  should_fail_ex.cold+0x5/0xa
[  751.389262][T14924]  should_failslab+0xc2/0x120
[  751.389281][T14924]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  751.389309][T14924]  ? __khugepaged_enter+0xc8/0x380
[  751.389335][T14924]  __khugepaged_enter+0xc8/0x380
[  751.389358][T14924]  khugepaged_enter_vma+0x137/0x2c0
[  751.389382][T14924]  hugepage_madvise+0xa8/0xd0
[  751.389403][T14924]  madvise_vma_behavior+0x17a1/0x3050
[  751.389426][T14924]  ? mt_find+0x687/0x8e0
[  751.389452][T14924]  ? mt_find+0x687/0x8e0
[  751.389478][T14924]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  751.389502][T14924]  ? mt_find+0x45e/0x8e0
[  751.389530][T14924]  ? __pfx_mt_find+0x10/0x10
[  751.389568][T14924]  ? find_vma+0xbf/0x140
[  751.389585][T14924]  ? __pfx_find_vma+0x10/0x10
[  751.389604][T14924]  ? __lock_acquire+0x4a5/0x2630
[  751.389629][T14924]  madvise_walk_vmas+0x2fe/0xa90
[  751.389654][T14924]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  751.389681][T14924]  madvise_do_behavior+0x1ea/0x510
[  751.389711][T14924]  ? __pfx_madvise_do_behavior+0x10/0x10
[  751.389740][T14924]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  751.389773][T14924]  do_madvise+0x195/0x240
[  751.389794][T14924]  ? __pfx_do_madvise+0x10/0x10
[  751.389814][T14924]  ? __mutex_unlock_slowpath+0x15c/0x790
[  751.389856][T14924]  ? ksys_write+0x1ac/0x250
[  751.389872][T14924]  ? __pfx_ksys_write+0x10/0x10
[  751.389892][T14924]  __x64_sys_madvise+0xa9/0x110
[  751.389913][T14924]  ? lockdep_hardirqs_on+0x78/0x100
[  751.389938][T14924]  do_syscall_64+0x106/0xf80
[  751.389963][T14924]  ? clear_bhb_loop+0x40/0x90
[  751.389985][T14924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  751.390009][T14924] RIP: 0033:0x7fa8c539c799
[  751.390025][T14924] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  751.390043][T14924] RSP: 002b:00007fa8c6303028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  751.390061][T14924] RAX: ffffffffffffffda RBX: 00007fa8c5615fa0 RCX: 00007fa8c539c799
[  751.390073][T14924] RDX: 000000000000000e RSI: 2000040080000004 RDI: 0000000000000000
[  751.390084][T14924] RBP: 00007fa8c6303090 R08: 0000000000000000 R09: 0000000000000000
[  751.390094][T14924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  751.390105][T14924] R13: 00007fa8c5616038 R14: 00007fa8c5615fa0 R15: 00007ffc9476e5a8
[  751.390128][T14924]  </TASK>
[  752.580648][T14932] mkiss: ax0: crc mode is auto.
[  754.323554][T14943] FAULT_INJECTION: forcing a failure.
[  754.323554][T14943] name failslab, interval 1, probability 0, space 0, times 0
[  754.421564][T14943] CPU: 0 UID: 0 PID: 14943 Comm: syz.4.2082 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  754.421595][T14943] Tainted: [L]=SOFTLOCKUP
[  754.421602][T14943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  754.421613][T14943] Call Trace:
[  754.421620][T14943]  <TASK>
[  754.421627][T14943]  dump_stack_lvl+0x100/0x190
[  754.421659][T14943]  should_fail_ex.cold+0x5/0xa
[  754.421681][T14943]  should_failslab+0xc2/0x120
[  754.421700][T14943]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  754.421730][T14943]  ? hwsim_new_radio_nl+0xad2/0x1340
[  754.421764][T14943]  kstrndup+0x64/0x120
[  754.421793][T14943]  hwsim_new_radio_nl+0xad2/0x1340
[  754.421825][T14943]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  754.421861][T14943]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[  754.421882][T14943]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[  754.421920][T14943]  genl_family_rcv_msg_doit+0x214/0x300
[  754.421941][T14943]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  754.421961][T14943]  ? genl_get_cmd+0x3ef/0x720
[  754.421995][T14943]  ? bpf_lsm_capable+0x9/0x10
[  754.422013][T14943]  ? security_capable+0x80/0x260
[  754.422042][T14943]  ? ns_capable+0xd2/0xf0
[  754.422061][T14943]  genl_rcv_msg+0x560/0x800
[  754.422083][T14943]  ? __pfx_genl_rcv_msg+0x10/0x10
[  754.422102][T14943]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  754.422139][T14943]  netlink_rcv_skb+0x159/0x420
[  754.422168][T14943]  ? __pfx_genl_rcv_msg+0x10/0x10
[  754.422188][T14943]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  754.422225][T14943]  ? netlink_deliver_tap+0x1ae/0xcc0
[  754.422255][T14943]  genl_rcv+0x28/0x40
[  754.422271][T14943]  netlink_unicast+0x5aa/0x870
[  754.422303][T14943]  ? __pfx_netlink_unicast+0x10/0x10
[  754.422340][T14943]  netlink_sendmsg+0x8b0/0xda0
[  754.422372][T14943]  ? __pfx_netlink_sendmsg+0x10/0x10
[  754.422399][T14943]  ? __import_iovec+0x1d2/0x640
[  754.422423][T14943]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  754.422455][T14943]  ____sys_sendmsg+0x9e1/0xb70
[  754.422474][T14943]  ? __pfx_netlink_sendmsg+0x10/0x10
[  754.422504][T14943]  ? __pfx_____sys_sendmsg+0x10/0x10
[  754.422533][T14943]  ___sys_sendmsg+0x190/0x1e0
[  754.422555][T14943]  ? __pfx____sys_sendmsg+0x10/0x10
[  754.422603][T14943]  __sys_sendmsg+0x170/0x220
[  754.422630][T14943]  ? __pfx___sys_sendmsg+0x10/0x10
[  754.422670][T14943]  do_syscall_64+0x106/0xf80
[  754.422694][T14943]  ? clear_bhb_loop+0x40/0x90
[  754.422717][T14943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  754.422736][T14943] RIP: 0033:0x7fbf7699c799
[  754.422751][T14943] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  754.422768][T14943] RSP: 002b:00007fbf77917028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  754.422787][T14943] RAX: ffffffffffffffda RBX: 00007fbf76c16090 RCX: 00007fbf7699c799
[  754.422799][T14943] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003
[  754.422810][T14943] RBP: 00007fbf77917090 R08: 0000000000000000 R09: 0000000000000000
[  754.422820][T14943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  754.422831][T14943] R13: 00007fbf76c16128 R14: 00007fbf76c16090 R15: 00007ffc02d52d18
[  754.422854][T14943]  </TASK>
[  755.017253][T14951] vivid-007: =================  START STATUS  =================
[  755.028262][T14951] vivid-007: Generate PTS: true
[  755.035228][T14951] vivid-007: Generate SCR: true
[  755.040410][T14951] tpg source WxH: 320x240 (Y'CbCr)
[  755.046080][T14951] tpg field: 1
[  755.049569][T14951] tpg crop: (0,0)/320x240
[  755.054078][T14951] tpg compose: (0,0)/320x240
[  755.058721][T14951] tpg colorspace: 8
[  755.062804][T14951] tpg transfer function: 0/0
[  755.067428][T14951] tpg Y'CbCr encoding: 0/0
[  755.072025][T14951] tpg quantization: 0/0
[  755.076223][T14951] tpg RGB range: 0/2
[  755.080204][T14951] vivid-007: ==================  END STATUS  ==================
[  756.768118][T10736] Bluetooth: hci0: unexpected event 0x32 length: 727 > 9
[  757.362862][T14982] Invalid ELF header magic: != ELF
[  759.202583][T14992] FAULT_INJECTION: forcing a failure.
[  759.202583][T14992] name failslab, interval 1, probability 0, space 0, times 0
[  759.253151][T14992] CPU: 0 UID: 0 PID: 14992 Comm: syz.0.2092 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  759.253182][T14992] Tainted: [L]=SOFTLOCKUP
[  759.253189][T14992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  759.253201][T14992] Call Trace:
[  759.253208][T14992]  <TASK>
[  759.253216][T14992]  dump_stack_lvl+0x100/0x190
[  759.253248][T14992]  should_fail_ex.cold+0x5/0xa
[  759.253271][T14992]  should_failslab+0xc2/0x120
[  759.253293][T14992]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  759.253321][T14992]  ? ep_ptable_queue_proc+0x5b/0x280
[  759.253355][T14992]  ep_ptable_queue_proc+0x5b/0x280
[  759.253385][T14992]  ? __pfx_ep_ptable_queue_proc+0x10/0x10
[  759.253414][T14992]  snd_seq_pool_poll_wait+0x5b/0x190
[  759.253438][T14992]  snd_seq_kernel_client_write_poll+0xa5/0x110
[  759.253471][T14992]  snd_seq_oss_poll+0x17d/0x1d0
[  759.253493][T14992]  ? __pfx_odev_poll+0x10/0x10
[  759.253510][T14992]  odev_poll+0x4a/0x90
[  759.253527][T14992]  ep_item_poll+0x141/0x1f0
[  759.253546][T14992]  do_epoll_ctl+0x1f33/0x36a0
[  759.253582][T14992]  ? __pfx_do_epoll_ctl+0x10/0x10
[  759.253600][T14992]  ? find_held_lock+0x2b/0x80
[  759.253618][T14992]  ? __might_fault+0xc5/0x140
[  759.253643][T14992]  ? __might_fault+0xc5/0x140
[  759.253667][T14992]  ? __pfx_ep_ptable_queue_proc+0x10/0x10
[  759.253704][T14992]  ? __x64_sys_epoll_ctl+0x15c/0x1e0
[  759.253722][T14992]  __x64_sys_epoll_ctl+0x15c/0x1e0
[  759.253743][T14992]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  759.253770][T14992]  do_syscall_64+0x106/0xf80
[  759.253796][T14992]  ? clear_bhb_loop+0x40/0x90
[  759.253819][T14992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  759.253838][T14992] RIP: 0033:0x7f4766b9c799
[  759.253854][T14992] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  759.253872][T14992] RSP: 002b:00007f4767a27028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  759.253889][T14992] RAX: ffffffffffffffda RBX: 00007f4766e16090 RCX: 00007f4766b9c799
[  759.253901][T14992] RDX: 0000000000000005 RSI: 0000000000000001 RDI: 0000000000000007
[  759.253911][T14992] RBP: 00007f4766c32c99 R08: 0000000000000000 R09: 0000000000000000
[  759.253922][T14992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  759.253933][T14992] R13: 00007f4766e16128 R14: 00007f4766e16090 R15: 00007ffd1a371dd8
[  759.253955][T14992]  </TASK>
[  760.042749][T15006] MTRR 1 not used
[  760.191290][T15009] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2098'.
[  760.440489][T15011] usb usb3: usbfs: process 15011 (syz.4.2100) did not claim interface 0 before use
[  761.720563][T15037] openvswitch: netlink: Key type 2054 is out of range max 32
[  761.967523][T15044] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(8.16.0), cmd(12)
[  762.642935][T15050] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2111'.
[  763.159657][T15060] netlink: 'syz.0.2114': attribute type 1 has an invalid length.
[  763.178165][T15060] netlink: 322 bytes leftover after parsing attributes in process `syz.0.2114'.
[  764.948237][T15098] vivid-007: =================  START STATUS  =================
[  764.971223][T15098] vivid-007: Generate PTS: true
[  764.980124][T15098] vivid-007: Generate SCR: true
[  764.985886][T15098] tpg source WxH: 320x240 (Y'CbCr)
[  764.991260][T15098] tpg field: 1
[  764.995174][T15098] tpg crop: (0,0)/320x240
[  764.999740][T15098] tpg compose: (0,0)/320x240
[  765.004838][T15098] tpg colorspace: 8
[  765.008740][T15098] tpg transfer function: 0/0
[  765.014219][T15098] tpg Y'CbCr encoding: 0/0
[  765.018830][T15098] tpg quantization: 0/0
[  765.026527][T15098] tpg RGB range: 0/2
[  765.030593][T15098] vivid-007: ==================  END STATUS  ==================
[  765.838025][T15114] random: crng reseeded on system resumption
[  766.424294][ T5836] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  766.436068][ T5836] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  766.444615][ T5836] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  766.458075][ T5836] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  766.465721][ T5836] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  767.119887][T10558] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  767.151025][T15122] chnl_net:caif_netlink_parms(): no params data found
[  767.222679][T10558] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  767.299462][T10558] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  767.399346][T10558] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  767.492060][T15122] bridge0: port 1(bridge_slave_0) entered blocking state
[  767.499431][T15122] bridge0: port 1(bridge_slave_0) entered disabled state
[  767.517909][T15122] bridge_slave_0: entered allmulticast mode
[  767.532647][T15122] bridge_slave_0: entered promiscuous mode
[  767.624828][T15122] bridge0: port 2(bridge_slave_1) entered blocking state
[  767.640769][T15122] bridge0: port 2(bridge_slave_1) entered disabled state
[  767.650762][T15122] bridge_slave_1: entered allmulticast mode
[  767.658743][T15122] bridge_slave_1: entered promiscuous mode
[  767.730126][T15144] FAULT_INJECTION: forcing a failure.
[  767.730126][T15144] name fail_futex, interval 1, probability 0, space 0, times 0
[  767.761967][T15144] CPU: 0 UID: 0 PID: 15144 Comm: syz.4.2135 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  767.761998][T15144] Tainted: [L]=SOFTLOCKUP
[  767.762005][T15144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  767.762016][T15144] Call Trace:
[  767.762023][T15144]  <TASK>
[  767.762030][T15144]  dump_stack_lvl+0x100/0x190
[  767.762061][T15144]  should_fail_ex.cold+0x5/0xa
[  767.762083][T15144]  get_futex_key+0x1d2/0x1620
[  767.762108][T15144]  ? __pfx_get_futex_key+0x10/0x10
[  767.762137][T15144]  futex_wake+0xea/0x530
[  767.762165][T15144]  ? __pfx_futex_wake+0x10/0x10
[  767.762195][T15144]  ? __get_user_nocheck_8+0x20/0x20
[  767.762218][T15144]  ? do_vfs_ioctl+0x226/0x13e0
[  767.762246][T15144]  do_futex+0x32b/0x350
[  767.762269][T15144]  ? __pfx_do_futex+0x10/0x10
[  767.762294][T15144]  ? find_held_lock+0x2b/0x80
[  767.762314][T15144]  __x64_sys_futex+0x34f/0x4d0
[  767.762341][T15144]  ? __pfx___x64_sys_futex+0x10/0x10
[  767.762373][T15144]  do_syscall_64+0x106/0xf80
[  767.762398][T15144]  ? clear_bhb_loop+0x40/0x90
[  767.762420][T15144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  767.762440][T15144] RIP: 0033:0x7fbf7699c799
[  767.762455][T15144] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  767.762473][T15144] RSP: 002b:00007fbf779170e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  767.762491][T15144] RAX: ffffffffffffffda RBX: 00007fbf76c16098 RCX: 00007fbf7699c799
[  767.762503][T15144] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbf76c1609c
[  767.762514][T15144] RBP: 00007fbf76c16090 R08: 0000000000000000 R09: 0000000000000000
[  767.762525][T15144] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  767.762535][T15144] R13: 00007fbf76c16128 R14: 00007ffc02d52c30 R15: 00007ffc02d52d18
[  767.762558][T15144]  </TASK>
[  767.768082][T15122] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  768.012572][T10558] bridge_slave_1: left allmulticast mode
[  768.018389][T10558] bridge_slave_1: left promiscuous mode
[  768.026940][T10558] bridge0: port 2(bridge_slave_1) entered disabled state
[  768.036864][T10558] bridge_slave_0: left allmulticast mode
[  768.043812][T10558] bridge_slave_0: left promiscuous mode
[  768.049894][T10558] bridge0: port 1(bridge_slave_0) entered disabled state
[  768.181254][T10558] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  768.197236][T10558] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  768.207838][T10558] bond0 (unregistering): Released all slaves
[  768.254459][T15122] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  768.299744][T10558] HSR: left promiscuous mode
[  768.501450][ T5836] Bluetooth: hci1: command tx timeout
[  768.511195][T15122] team0: Port device team_slave_0 added
[  768.543615][T15122] team0: Port device team_slave_1 added
[  768.680060][T15122] batman_adv: batadv0: Adding interface: batadv_slave_0
[  768.693051][T15152] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2136'.
[  768.705793][T15122] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  768.737738][T15152] netlink: 350 bytes leftover after parsing attributes in process `syz.4.2136'.
[  768.791674][T15122] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  768.917338][T15122] batman_adv: batadv0: Adding interface: batadv_slave_1
[  768.943574][T15122] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  768.972053][T15162] random: crng reseeded on system resumption
[  769.008500][T15162] hub 1-0:1.0: USB hub found
[  769.025101][T15162] hub 1-0:1.0: 1 port detected
[  769.049395][T15122] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  769.204849][T10558] hsr_slave_0: left promiscuous mode
[  769.222140][T10558] hsr_slave_1: left promiscuous mode
[  769.231007][T10558] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  769.251453][T10558] batman_adv: batadv0: Removing interface: batadv_slave_0
[  769.281256][T10558] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  769.291079][T10558] batman_adv: batadv0: Removing interface: batadv_slave_1
[  769.322596][T10558] veth1_macvtap: left promiscuous mode
[  769.336923][T10558] veth0_macvtap: left promiscuous mode
[  769.343235][T10558] veth1_vlan: left promiscuous mode
[  769.348805][T10558] veth0_vlan: left promiscuous mode
[  769.538944][T10558] team0 (unregistering): Port device team_slave_1 removed
[  769.557031][T10558] team0 (unregistering): Port device team_slave_0 removed
[  769.681139][T15122] hsr_slave_0: entered promiscuous mode
[  769.698152][T15122] hsr_slave_1: entered promiscuous mode
[  769.725800][T15122] debugfs: 'hsr0' already exists in 'hsr'
[  769.764033][T15122] Cannot create hsr debugfs directory
[  769.997218][T15171] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2138'.
[  770.054504][T15171] netlink: 350 bytes leftover after parsing attributes in process `syz.4.2138'.
[  770.581894][ T5836] Bluetooth: hci1: command tx timeout
[  770.802295][T10736] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  770.811943][T10736] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  770.820221][T10736] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  770.828406][T10736] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  770.840523][T10736] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  771.215828][T15122] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  771.259334][T15122] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  771.295181][T15122] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  771.347174][T15122] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  771.498894][T15189] chnl_net:caif_netlink_parms(): no params data found
[  771.575112][T15122] 8021q: adding VLAN 0 to HW filter on device bond0
[  771.639296][T15122] 8021q: adding VLAN 0 to HW filter on device team0
[  771.722321][T10551] bridge0: port 1(bridge_slave_0) entered blocking state
[  771.729577][T10551] bridge0: port 1(bridge_slave_0) entered forwarding state
[  771.759856][T15189] bridge0: port 1(bridge_slave_0) entered blocking state
[  771.768002][T15189] bridge0: port 1(bridge_slave_0) entered disabled state
[  771.792664][T15189] bridge_slave_0: entered allmulticast mode
[  771.810606][T15189] bridge_slave_0: entered promiscuous mode
[  771.835846][T10551] bridge0: port 2(bridge_slave_1) entered blocking state
[  771.843617][T10551] bridge0: port 2(bridge_slave_1) entered forwarding state
[  771.872503][T15189] bridge0: port 2(bridge_slave_1) entered blocking state
[  771.888597][T15189] bridge0: port 2(bridge_slave_1) entered disabled state
[  771.908513][T15189] bridge_slave_1: entered allmulticast mode
[  771.928624][T15189] bridge_slave_1: entered promiscuous mode
[  772.025141][T15189] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  772.056669][T15189] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  772.148883][T15189] team0: Port device team_slave_0 added
[  772.180321][T15189] team0: Port device team_slave_1 added
[  772.279128][T15189] batman_adv: batadv0: Adding interface: batadv_slave_0
[  772.299258][T15189] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  772.360060][T15189] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  772.404147][T15189] batman_adv: batadv0: Adding interface: batadv_slave_1
[  772.411215][T15189] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  772.471242][T15189] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  772.606465][T15189] hsr_slave_0: entered promiscuous mode
[  772.633640][T15189] hsr_slave_1: entered promiscuous mode
[  772.660378][T15189] debugfs: 'hsr0' already exists in 'hsr'
[  772.666826][T10736] Bluetooth: hci1: command tx timeout
[  772.681752][T15189] Cannot create hsr debugfs directory
[  772.754939][T15122] 8021q: adding VLAN 0 to HW filter on device batadv0
[  772.902053][T10736] Bluetooth: hci0: command tx timeout
[  772.987106][T15122] veth0_vlan: entered promiscuous mode
[  773.022176][T15122] veth1_vlan: entered promiscuous mode
[  773.103008][T15122] veth0_macvtap: entered promiscuous mode
[  773.148830][T15122] veth1_macvtap: entered promiscuous mode
[  773.217884][T15122] batman_adv: batadv0: Interface activated: batadv_slave_0
[  773.254393][T15122] batman_adv: batadv0: Interface activated: batadv_slave_1
[  773.302998][T10551] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  773.320368][T15189] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  773.335798][T10551] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  773.354374][T15189] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  773.379322][T10551] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  773.405344][T15189] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  773.427681][T10551] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  773.440142][T15189] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  773.488399][ T1115] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  773.509349][ T1115] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  773.569568][T10551] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  773.589859][T10551] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  773.696416][T15189] 8021q: adding VLAN 0 to HW filter on device bond0
[  773.757486][T15189] 8021q: adding VLAN 0 to HW filter on device team0
[  773.815917][ T1115] bridge0: port 1(bridge_slave_0) entered blocking state
[  773.823520][ T1115] bridge0: port 1(bridge_slave_0) entered forwarding state
[  773.887505][ T1115] bridge0: port 2(bridge_slave_1) entered blocking state
[  773.894727][ T1115] bridge0: port 2(bridge_slave_1) entered forwarding state
[  774.005263][T15189] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  774.454496][T15189] 8021q: adding VLAN 0 to HW filter on device batadv0
[  774.742712][T10736] Bluetooth: hci1: command tx timeout
[  774.985287][T10736] Bluetooth: hci0: command tx timeout
[  775.092887][T15189] veth0_vlan: entered promiscuous mode
[  775.132077][T15189] veth1_vlan: entered promiscuous mode
[  775.195916][T15265] Invalid ELF header magic: != ELF
[  775.210027][T15189] veth0_macvtap: entered promiscuous mode
[  775.254767][T15189] veth1_macvtap: entered promiscuous mode
[  775.318330][T15189] batman_adv: batadv0: Interface activated: batadv_slave_0
[  775.363358][T15189] batman_adv: batadv0: Interface activated: batadv_slave_1
[  775.416953][T10550] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  775.449027][T10550] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  775.479230][T10550] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  775.533581][T10550] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  775.669077][ T1115] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  775.714742][ T1115] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  775.779720][T10550] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  775.801522][T10550] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  776.179930][T15269] netlink: 218 bytes leftover after parsing attributes in process `syz.5.2139'.
[  776.359920][T15268] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2139'.
[  777.063334][T10736] Bluetooth: hci0: command tx timeout
[  777.087033][ T5836] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  777.097615][ T5836] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  777.106833][ T5836] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  777.115898][ T5836] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  777.123573][ T5836] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  778.028154][ T5836] Bluetooth: hci4: ACL packet for unknown connection handle 0
[  778.240596][T15281] chnl_net:caif_netlink_parms(): no params data found
[  778.646365][T15281] bridge0: port 1(bridge_slave_0) entered blocking state
[  778.665351][ T5163] block nbd0: Possible stuck request ffff888027838000: control (read@0,4096B). Runtime 90 seconds
[  778.689572][T15281] bridge0: port 1(bridge_slave_0) entered disabled state
[  778.721034][T15281] bridge_slave_0: entered allmulticast mode
[  778.752864][T15281] bridge_slave_0: entered promiscuous mode
[  778.770769][T15314] netlink: 350 bytes leftover after parsing attributes in process `syz.5.2151'.
[  778.896425][T15281] bridge0: port 2(bridge_slave_1) entered blocking state
[  778.931551][T15281] bridge0: port 2(bridge_slave_1) entered disabled state
[  778.965947][T15281] bridge_slave_1: entered allmulticast mode
[  778.989834][T15281] bridge_slave_1: entered promiscuous mode
[  779.109669][T15281] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  779.161507][ T5836] Bluetooth: hci5: command tx timeout
[  779.168769][T10736] Bluetooth: hci0: command tx timeout
[  779.187771][T15281] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  779.326475][T15281] team0: Port device team_slave_0 added
[  779.388208][T15281] team0: Port device team_slave_1 added
[  779.529297][T15281] batman_adv: batadv0: Adding interface: batadv_slave_0
[  779.571389][T15281] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  779.691444][T15281] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  779.737792][T15281] batman_adv: batadv0: Adding interface: batadv_slave_1
[  779.761414][T15281] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  779.799524][T15332] FAULT_INJECTION: forcing a failure.
[  779.799524][T15332] name failslab, interval 1, probability 0, space 0, times 0
[  779.881444][T15281] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  779.924035][T15332] CPU: 0 UID: 0 PID: 15332 Comm: syz.0.2158 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  779.924066][T15332] Tainted: [L]=SOFTLOCKUP
[  779.924072][T15332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  779.924083][T15332] Call Trace:
[  779.924089][T15332]  <TASK>
[  779.924097][T15332]  dump_stack_lvl+0x100/0x190
[  779.924129][T15332]  should_fail_ex.cold+0x5/0xa
[  779.924151][T15332]  should_failslab+0xc2/0x120
[  779.924170][T15332]  __kmalloc_cache_noprof+0x7a/0x6f0
[  779.924194][T15332]  ? vkms_plane_duplicate_state+0x87/0x130
[  779.924218][T15332]  vkms_plane_duplicate_state+0x87/0x130
[  779.924237][T15332]  drm_atomic_get_plane_state+0x279/0x760
[  779.924261][T15332]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  779.924288][T15332]  ? trace_contention_end+0x140/0x180
[  779.924316][T15332]  ? __mutex_lock+0x26a/0x1b90
[  779.924352][T15332]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  779.924379][T15332]  ? drm_master_internal_acquire+0x21/0x80
[  779.924430][T15332]  drm_client_modeset_commit_locked+0x14d/0x580
[  779.924460][T15332]  drm_client_modeset_commit+0x4f/0x80
[  779.924487][T15332]  __drm_fb_helper_restore_fbdev_mode_unlocked.part.0+0x137/0x160
[  779.924516][T15332]  drm_fb_helper_restore_fbdev_mode_unlocked+0x93/0xc0
[  779.924544][T15332]  drm_fbdev_client_restore+0x1b/0x30
[  779.924564][T15332]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  779.924584][T15332]  drm_client_dev_restore+0x205/0x2a0
[  779.924614][T15332]  drm_release+0x2c6/0x360
[  779.924637][T15332]  ? __pfx_drm_release+0x10/0x10
[  779.924662][T15332]  __fput+0x3ff/0xb40
[  779.924692][T15332]  task_work_run+0x150/0x240
[  779.924719][T15332]  ? __pfx_task_work_run+0x10/0x10
[  779.924752][T15332]  exit_to_user_mode_loop+0x100/0x4a0
[  779.924779][T15332]  do_syscall_64+0x668/0xf80
[  779.924804][T15332]  ? clear_bhb_loop+0x40/0x90
[  779.924826][T15332]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  779.924845][T15332] RIP: 0033:0x7f51b7f9c799
[  779.924861][T15332] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  779.924879][T15332] RSP: 002b:00007f51b61f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  779.924897][T15332] RAX: 0000000000000000 RBX: 00007f51b8215fa0 RCX: 00007f51b7f9c799
[  779.924909][T15332] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  779.924919][T15332] RBP: 00007f51b8032c99 R08: 0000000000000000 R09: 0000000000000000
[  779.924929][T15332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  779.924939][T15332] R13: 00007f51b8216038 R14: 00007f51b8215fa0 R15: 00007ffc0fa3f928
[  779.924963][T15332]  </TASK>
[  781.224543][ T5836] Bluetooth: hci5: command tx timeout
[  782.936575][T15281] hsr_slave_0: entered promiscuous mode
[  782.992408][T15281] hsr_slave_1: entered promiscuous mode
[  783.022590][T15281] debugfs: 'hsr0' already exists in 'hsr'
[  783.028462][T15281] Cannot create hsr debugfs directory
[  783.302941][ T5836] Bluetooth: hci5: command tx timeout
[  783.327670][   T29] audit: type=1326 audit(1773479621.042:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15355 comm="syz.5.2162" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efeb099c799 code=0x0
[  783.699007][T15359] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2163'.
[  783.975371][T15281] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  784.037228][T15281] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  784.084691][T15281] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  784.134636][T15281] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  784.291806][T15378] random: crng reseeded on system resumption
[  784.403348][T15281] 8021q: adding VLAN 0 to HW filter on device bond0
[  784.495732][T15281] 8021q: adding VLAN 0 to HW filter on device team0
[  784.555559][T10550] bridge0: port 1(bridge_slave_0) entered blocking state
[  784.562856][T10550] bridge0: port 1(bridge_slave_0) entered forwarding state
[  784.642414][T10550] bridge0: port 2(bridge_slave_1) entered blocking state
[  784.649754][T10550] bridge0: port 2(bridge_slave_1) entered forwarding state
[  784.863088][T15281] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  785.388034][ T5836] Bluetooth: hci5: command tx timeout
[  785.527182][T15281] 8021q: adding VLAN 0 to HW filter on device batadv0
[  786.448529][T15281] veth0_vlan: entered promiscuous mode
[  786.509766][T15281] veth1_vlan: entered promiscuous mode
[  786.619501][T15281] veth0_macvtap: entered promiscuous mode
[  786.678941][T15281] veth1_macvtap: entered promiscuous mode
[  786.752000][T15418] random: crng reseeded on system resumption
[  786.766130][T15281] batman_adv: batadv0: Interface activated: batadv_slave_0
[  786.825979][T15281] batman_adv: batadv0: Interface activated: batadv_slave_1
[  786.912547][ T1115] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  786.954861][ T1115] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  786.992561][T15421] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2173'.
[  787.011589][ T1115] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  787.030369][T15418] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  787.076550][ T1115] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  787.278429][ T1115] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  787.339933][ T1115] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  787.506082][ T1115] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  787.541117][ T1115] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  789.099695][T15466] FAULT_INJECTION: forcing a failure.
[  789.099695][T15466] name failslab, interval 1, probability 0, space 0, times 0
[  789.211532][T15466] CPU: 0 UID: 0 PID: 15466 Comm: syz.4.2180 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  789.211569][T15466] Tainted: [L]=SOFTLOCKUP
[  789.211576][T15466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  789.211587][T15466] Call Trace:
[  789.211595][T15466]  <TASK>
[  789.211603][T15466]  dump_stack_lvl+0x100/0x190
[  789.211637][T15466]  should_fail_ex.cold+0x5/0xa
[  789.211661][T15466]  should_failslab+0xc2/0x120
[  789.211681][T15466]  __kmalloc_cache_noprof+0x7a/0x6f0
[  789.211705][T15466]  ? tipc_sub_subscribe+0x15c/0x730
[  789.211730][T15466]  ? find_held_lock+0x2b/0x80
[  789.211752][T15466]  tipc_sub_subscribe+0x15c/0x730
[  789.211786][T15466]  tipc_conn_rcv_sub+0x21e/0x3d0
[  789.211814][T15466]  tipc_topsrv_kern_subscr+0x20b/0x3c0
[  789.211840][T15466]  ? __pfx_tipc_topsrv_kern_subscr+0x10/0x10
[  789.211868][T15466]  ? net_generic+0xea/0x2a0
[  789.211896][T15466]  tipc_group_create+0x4ab/0x660
[  789.211925][T15466]  tipc_setsockopt+0x611/0xe30
[  789.211957][T15466]  ? __pfx_tipc_setsockopt+0x10/0x10
[  789.211996][T15466]  ? __pfx_tipc_setsockopt+0x10/0x10
[  789.212027][T15466]  do_sock_setsockopt+0xf3/0x1d0
[  789.212068][T15466]  __sys_setsockopt+0x119/0x190
[  789.212101][T15466]  __x64_sys_setsockopt+0xbd/0x160
[  789.212126][T15466]  ? do_syscall_64+0x95/0xf80
[  789.212153][T15466]  ? lockdep_hardirqs_on+0x78/0x100
[  789.212179][T15466]  do_syscall_64+0x106/0xf80
[  789.212204][T15466]  ? clear_bhb_loop+0x40/0x90
[  789.212228][T15466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  789.212248][T15466] RIP: 0033:0x7fbf7699c799
[  789.212272][T15466] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  789.212290][T15466] RSP: 002b:00007fbf77938028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  789.212310][T15466] RAX: ffffffffffffffda RBX: 00007fbf76c15fa0 RCX: 00007fbf7699c799
[  789.212323][T15466] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000003
[  789.212334][T15466] RBP: 00007fbf76a32c99 R08: 0000000000000014 R09: 0000000000000000
[  789.212345][T15466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  789.212357][T15466] R13: 00007fbf76c16038 R14: 00007fbf76c15fa0 R15: 00007ffc02d52d18
[  789.212382][T15466]  </TASK>
[  789.212414][T15466] tipc: Subscription rejected, no memory
[  790.789152][   T29] audit: type=1326 audit(1773479628.502:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15474 comm="syz.4.2182" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbf7699c799 code=0x0
[  790.894206][T15488] 
[  790.986083][ T5836] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  791.163159][T15484] zswap: compressor  not available
[  791.216245][T15493] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[  791.456606][T15485] zswap: compressor  not available
[  791.468106][T15489] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead.
[  791.866918][T15507] FAULT_INJECTION: forcing a failure.
[  791.866918][T15507] name failslab, interval 1, probability 0, space 0, times 0
[  791.936564][T15507] CPU: 0 UID: 0 PID: 15507 Comm: syz.6.2190 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  791.936596][T15507] Tainted: [L]=SOFTLOCKUP
[  791.936604][T15507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  791.936615][T15507] Call Trace:
[  791.936622][T15507]  <TASK>
[  791.936630][T15507]  dump_stack_lvl+0x100/0x190
[  791.936662][T15507]  should_fail_ex.cold+0x5/0xa
[  791.936684][T15507]  should_failslab+0xc2/0x120
[  791.936705][T15507]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  791.936733][T15507]  ? __d_alloc+0x34/0xa80
[  791.936753][T15507]  ? lockdep_init_map_type+0x5c/0x250
[  791.936781][T15507]  __d_alloc+0x34/0xa80
[  791.936803][T15507]  d_alloc_pseudo+0x1c/0xc0
[  791.936830][T15507]  alloc_file_pseudo+0xcf/0x230
[  791.936855][T15507]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  791.936879][T15507]  ? alloc_fd+0x476/0x790
[  791.936901][T15507]  sock_alloc_file+0x50/0x210
[  791.936929][T15507]  __sys_socket+0x1c0/0x260
[  791.936950][T15507]  ? __pfx___sys_socket+0x10/0x10
[  791.936976][T15507]  __x64_sys_socket+0x72/0xb0
[  791.936996][T15507]  ? lockdep_hardirqs_on+0x78/0x100
[  791.937022][T15507]  do_syscall_64+0x106/0xf80
[  791.937047][T15507]  ? clear_bhb_loop+0x40/0x90
[  791.937069][T15507]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  791.937088][T15507] RIP: 0033:0x7f6354f9c799
[  791.937105][T15507] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  791.937123][T15507] RSP: 002b:00007f6355eb2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  791.937141][T15507] RAX: ffffffffffffffda RBX: 00007f6355215fa0 RCX: 00007f6354f9c799
[  791.937154][T15507] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  791.937165][T15507] RBP: 00007f6355032c99 R08: 0000000000000000 R09: 0000000000000000
[  791.937176][T15507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  791.937187][T15507] R13: 00007f6355216038 R14: 00007f6355215fa0 R15: 00007ffe458b5ce8
[  791.937210][T15507]  </TASK>
[  794.247368][T15533] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  794.398723][T15530] zswap: compressor � not available
[  797.170450][T15582] netlink: 'syz.5.2205': attribute type 4 has an invalid length.
[  797.269610][T15582] netlink: 'syz.5.2205': attribute type 1 has an invalid length.
[  798.243811][   T29] audit: type=1800 audit(1773479635.952:20): pid=15604 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2211" name="dbroot" dev="configfs" ino=65010 res=0 errno=0
[  800.011700][T15621] FAULT_INJECTION: forcing a failure.
[  800.011700][T15621] name fail_futex, interval 1, probability 0, space 0, times 0
[  800.078472][T15621] CPU: 0 UID: 0 PID: 15621 Comm: syz.6.2213 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  800.078503][T15621] Tainted: [L]=SOFTLOCKUP
[  800.078510][T15621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  800.078520][T15621] Call Trace:
[  800.078527][T15621]  <TASK>
[  800.078534][T15621]  dump_stack_lvl+0x100/0x190
[  800.078566][T15621]  should_fail_ex.cold+0x5/0xa
[  800.078588][T15621]  get_futex_key+0x295/0x1620
[  800.078613][T15621]  ? __pfx_get_futex_key+0x10/0x10
[  800.078633][T15621]  ? lock_acquire+0x1cf/0x380
[  800.078663][T15621]  futex_wake+0xea/0x530
[  800.078692][T15621]  ? __pfx_futex_wake+0x10/0x10
[  800.078719][T15621]  ? exit_mm_release+0x19/0x30
[  800.078747][T15621]  do_futex+0x32b/0x350
[  800.078771][T15621]  ? __pfx_do_futex+0x10/0x10
[  800.078792][T15621]  ? __might_fault+0xc5/0x140
[  800.078823][T15621]  mm_release+0x24a/0x2f0
[  800.078842][T15621]  do_exit+0x704/0x2b60
[  800.078869][T15621]  ? __pfx_do_exit+0x10/0x10
[  800.078892][T15621]  ? do_raw_spin_lock+0x128/0x260
[  800.078918][T15621]  ? find_held_lock+0x2b/0x80
[  800.078934][T15621]  ? get_signal+0x7e0/0x21e0
[  800.078955][T15621]  do_group_exit+0xd5/0x2a0
[  800.078981][T15621]  get_signal+0x1ec7/0x21e0
[  800.079004][T15621]  ? ksys_write+0x190/0x250
[  800.079022][T15621]  ? __pfx_get_signal+0x10/0x10
[  800.079042][T15621]  ? do_futex+0x192/0x350
[  800.079068][T15621]  arch_do_signal_or_restart+0x91/0x770
[  800.079102][T15621]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  800.079131][T15621]  ? __pfx___x64_sys_futex+0x10/0x10
[  800.079166][T15621]  exit_to_user_mode_loop+0x86/0x4a0
[  800.079194][T15621]  do_syscall_64+0x668/0xf80
[  800.079220][T15621]  ? clear_bhb_loop+0x40/0x90
[  800.079249][T15621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  800.079268][T15621] RIP: 0033:0x7f6354f9c799
[  800.079287][T15621] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  800.079304][T15621] RSP: 002b:00007f6355e700e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  800.079323][T15621] RAX: fffffffffffffe00 RBX: 00007f6355216188 RCX: 00007f6354f9c799
[  800.079334][T15621] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6355216188
[  800.079345][T15621] RBP: 00007f6355216180 R08: 0000000000000000 R09: 0000000000000000
[  800.079356][T15621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  800.079366][T15621] R13: 00007f6355216218 R14: 00007ffe458b5c00 R15: 00007ffe458b5ce8
[  800.079391][T15621]  </TASK>
[  801.471506][T15643] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input114
[  801.750929][T15649] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2221'.
[  801.783942][T15649] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2221'.
[  802.025686][T15660] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2223'.
[  802.192634][T15665] random: crng reseeded on system resumption
[  802.326894][T15667] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  802.440029][ T5836] Bluetooth: hci1: unexpected event 0x16 length: 440 > 6
[  803.487311][T15686] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[  808.741850][T15698] block nbd0: Possible stuck request ffff888027838000: control (read@0,4096B). Runtime 120 seconds
[  809.243028][T15750] FAULT_INJECTION: forcing a failure.
[  809.243028][T15750] name failslab, interval 1, probability 0, space 0, times 0
[  809.295723][T15750] CPU: 0 UID: 0 PID: 15750 Comm: syz.5.2241 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  809.295756][T15750] Tainted: [L]=SOFTLOCKUP
[  809.295762][T15750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  809.295773][T15750] Call Trace:
[  809.295779][T15750]  <TASK>
[  809.295787][T15750]  dump_stack_lvl+0x100/0x190
[  809.295819][T15750]  should_fail_ex.cold+0x5/0xa
[  809.295841][T15750]  should_failslab+0xc2/0x120
[  809.295860][T15750]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  809.295888][T15750]  ? __d_alloc+0x34/0xa80
[  809.295913][T15750]  __d_alloc+0x34/0xa80
[  809.295931][T15750]  ? __pfx_stack_trace_save+0x10/0x10
[  809.295952][T15750]  d_alloc_parallel+0x111/0x14e0
[  809.295981][T15750]  ? kasan_save_stack+0x3f/0x50
[  809.296007][T15750]  ? kasan_save_stack+0x30/0x50
[  809.296033][T15750]  ? kasan_save_track+0x14/0x30
[  809.296060][T15750]  ? __kasan_slab_free+0x5f/0x80
[  809.296076][T15750]  ? path_openat+0x1be/0x31a0
[  809.296096][T15750]  ? __pfx_d_alloc_parallel+0x10/0x10
[  809.296134][T15750]  ? lockdep_init_map_type+0x5c/0x250
[  809.296159][T15750]  ? lockdep_init_map_type+0x5c/0x250
[  809.296187][T15750]  __lookup_slow+0x193/0x460
[  809.296211][T15750]  ? __pfx___lookup_slow+0x10/0x10
[  809.296252][T15750]  lookup_slow+0x50/0x70
[  809.296275][T15750]  link_path_walk+0x1377/0x1cc0
[  809.296310][T15750]  path_openat+0x1be/0x31a0
[  809.296327][T15750]  ? kasan_save_stack+0x3f/0x50
[  809.296354][T15750]  ? kasan_save_stack+0x30/0x50
[  809.296380][T15750]  ? kasan_save_track+0x14/0x30
[  809.296407][T15750]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  809.296440][T15750]  ? __pfx_path_openat+0x10/0x10
[  809.296466][T15750]  do_file_open+0x20e/0x430
[  809.296486][T15750]  ? __pfx_do_file_open+0x10/0x10
[  809.296512][T15750]  ? __pfx_kfree_link+0x10/0x10
[  809.296543][T15750]  ? alloc_fd+0x476/0x790
[  809.296563][T15750]  ? do_getname+0x191/0x390
[  809.296587][T15750]  do_sys_openat2+0x10d/0x1e0
[  809.296611][T15750]  ? __pfx_do_sys_openat2+0x10/0x10
[  809.296643][T15750]  __x64_sys_openat+0x12d/0x210
[  809.296668][T15750]  ? __pfx___x64_sys_openat+0x10/0x10
[  809.296706][T15750]  do_syscall_64+0x106/0xf80
[  809.296731][T15750]  ? clear_bhb_loop+0x40/0x90
[  809.296753][T15750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  809.296772][T15750] RIP: 0033:0x7efeb095cfce
[  809.296788][T15750] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  809.296805][T15750] RSP: 002b:00007efeb17dfec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  809.296825][T15750] RAX: ffffffffffffffda RBX: 00007efeb17e06c0 RCX: 00007efeb095cfce
[  809.296837][T15750] RDX: 0000000000000002 RSI: 00007efeb17dff90 RDI: ffffffffffffff9c
[  809.296848][T15750] RBP: 00007efeb0a32c99 R08: 0000000000000000 R09: 0000000000000000
[  809.296859][T15750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  809.296869][T15750] R13: 00007efeb0c16038 R14: 00007efeb0c15fa0 R15: 00007ffc5e86d818
[  809.296892][T15750]  </TASK>
[  810.134485][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  810.142998][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  810.633089][T15750] FAULT_INJECTION: forcing a failure.
[  810.633089][T15750] name failslab, interval 1, probability 0, space 0, times 0
[  810.661710][ T5836] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  810.685598][T15750] CPU: 0 UID: 0 PID: 15750 Comm: syz.5.2241 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  810.685629][T15750] Tainted: [L]=SOFTLOCKUP
[  810.685635][T15750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  810.685646][T15750] Call Trace:
[  810.685653][T15750]  <TASK>
[  810.685662][T15750]  dump_stack_lvl+0x100/0x190
[  810.685694][T15750]  should_fail_ex.cold+0x5/0xa
[  810.685715][T15750]  should_failslab+0xc2/0x120
[  810.685735][T15750]  __kmalloc_cache_noprof+0x7a/0x6f0
[  810.685759][T15750]  ? proc_self_get_link+0x189/0x1f0
[  810.685789][T15750]  proc_self_get_link+0x189/0x1f0
[  810.685815][T15750]  pick_link+0xac2/0x13c0
[  810.685840][T15750]  ? __pfx_proc_self_get_link+0x10/0x10
[  810.685869][T15750]  step_into_slowpath+0x9ba/0xf90
[  810.685900][T15750]  ? __pfx_step_into_slowpath+0x10/0x10
[  810.685931][T15750]  ? lookup_fast+0x2da/0x600
[  810.685955][T15750]  ? inode_permission+0x374/0x620
[  810.685981][T15750]  link_path_walk+0xf28/0x1cc0
[  810.686024][T15750]  path_openat+0x1be/0x31a0
[  810.686044][T15750]  ? kasan_save_stack+0x3f/0x50
[  810.686070][T15750]  ? kasan_save_stack+0x30/0x50
[  810.686097][T15750]  ? kasan_save_track+0x14/0x30
[  810.686132][T15750]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  810.686164][T15750]  ? __pfx_path_openat+0x10/0x10
[  810.686191][T15750]  do_file_open+0x20e/0x430
[  810.686211][T15750]  ? __pfx_do_file_open+0x10/0x10
[  810.686245][T15750]  ? alloc_fd+0x476/0x790
[  810.686265][T15750]  ? do_getname+0x191/0x390
[  810.686290][T15750]  do_sys_openat2+0x10d/0x1e0
[  810.686313][T15750]  ? __pfx_do_sys_openat2+0x10/0x10
[  810.686345][T15750]  __x64_sys_openat+0x12d/0x210
[  810.686369][T15750]  ? __pfx___x64_sys_openat+0x10/0x10
[  810.686402][T15750]  do_syscall_64+0x106/0xf80
[  810.686427][T15750]  ? clear_bhb_loop+0x40/0x90
[  810.686450][T15750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  810.686469][T15750] RIP: 0033:0x7efeb095cfce
[  810.686485][T15750] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  810.686503][T15750] RSP: 002b:00007efeb17dfec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  810.686521][T15750] RAX: ffffffffffffffda RBX: 00007efeb17e06c0 RCX: 00007efeb095cfce
[  810.686533][T15750] RDX: 0000000000000002 RSI: 00007efeb17dff90 RDI: ffffffffffffff9c
[  810.686544][T15750] RBP: 00007efeb0a32c99 R08: 0000000000000000 R09: 0000000000000000
[  810.686554][T15750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  810.686565][T15750] R13: 00007efeb0c16038 R14: 00007efeb0c15fa0 R15: 00007ffc5e86d818
[  810.686588][T15750]  </TASK>
[  811.469501][T15760] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  811.911696][T15756] FAULT_INJECTION: forcing a failure.
[  811.911696][T15756] name fail_futex, interval 1, probability 0, space 0, times 0
[  812.002177][T15756] CPU: 0 UID: 0 PID: 15756 Comm: syz.0.2242 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  812.002209][T15756] Tainted: [L]=SOFTLOCKUP
[  812.002215][T15756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  812.002226][T15756] Call Trace:
[  812.002232][T15756]  <TASK>
[  812.002240][T15756]  dump_stack_lvl+0x100/0x190
[  812.002272][T15756]  should_fail_ex.cold+0x5/0xa
[  812.002289][T15756]  ? rcu_is_watching+0x12/0xc0
[  812.002319][T15756]  get_futex_key+0x107c/0x1620
[  812.002344][T15756]  ? __pfx_get_futex_key+0x10/0x10
[  812.002363][T15756]  ? lock_acquire+0x1cf/0x380
[  812.002393][T15756]  futex_wake+0xea/0x530
[  812.002422][T15756]  ? __pfx_futex_wake+0x10/0x10
[  812.002450][T15756]  ? exit_mm_release+0x19/0x30
[  812.002477][T15756]  do_futex+0x32b/0x350
[  812.002501][T15756]  ? __pfx_do_futex+0x10/0x10
[  812.002522][T15756]  ? __might_fault+0xc5/0x140
[  812.002554][T15756]  mm_release+0x24a/0x2f0
[  812.002573][T15756]  do_exit+0x704/0x2b60
[  812.002599][T15756]  ? __pfx_do_exit+0x10/0x10
[  812.002623][T15756]  ? do_raw_spin_lock+0x128/0x260
[  812.002649][T15756]  ? find_held_lock+0x2b/0x80
[  812.002665][T15756]  ? get_signal+0x7e0/0x21e0
[  812.002686][T15756]  do_group_exit+0xd5/0x2a0
[  812.002712][T15756]  get_signal+0x1ec7/0x21e0
[  812.002735][T15756]  ? ksys_write+0x190/0x250
[  812.002753][T15756]  ? __pfx_get_signal+0x10/0x10
[  812.002773][T15756]  ? do_futex+0x192/0x350
[  812.002799][T15756]  arch_do_signal_or_restart+0x91/0x770
[  812.002824][T15756]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  812.002853][T15756]  ? __pfx___x64_sys_futex+0x10/0x10
[  812.002881][T15756]  exit_to_user_mode_loop+0x86/0x4a0
[  812.002907][T15756]  do_syscall_64+0x668/0xf80
[  812.002932][T15756]  ? clear_bhb_loop+0x40/0x90
[  812.002955][T15756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  812.002973][T15756] RIP: 0033:0x7f51b7f9c799
[  812.002989][T15756] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  812.003020][T15756] RSP: 002b:00007f51b61f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  812.003038][T15756] RAX: fffffffffffffe00 RBX: 00007f51b8215fa8 RCX: 00007f51b7f9c799
[  812.003050][T15756] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f51b8215fa8
[  812.003061][T15756] RBP: 00007f51b8215fa0 R08: 0000000000000000 R09: 0000000000000000
[  812.003071][T15756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  812.003081][T15756] R13: 00007f51b8216038 R14: 00007ffc0fa3f840 R15: 00007ffc0fa3f928
[  812.003103][T15756]  </TASK>
[  812.626208][T15776] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2249'.
[  815.008686][T15804] netlink: 504 bytes leftover after parsing attributes in process `syz.6.2257'.
[  815.091239][T15808] netlink: 350 bytes leftover after parsing attributes in process `syz.6.2257'.
[  815.914499][ T5836] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  817.604650][T15825] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2261'.
[  817.941774][T10736] Bluetooth: hci1: command 0x2016 tx timeout
[  819.398293][T15850] usb usb3: usbfs: process 15850 (syz.0.2267) did not claim interface 0 before use
[  820.024577][ T5836] Bluetooth: hci1: command 0x2016 tx timeout
[  820.341013][T15864] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2270'.
[  820.402120][T15864] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2270'.
[  820.803130][T15871] netlink: 504 bytes leftover after parsing attributes in process `syz.5.2272'.
[  820.866353][T15874] netlink: 350 bytes leftover after parsing attributes in process `syz.5.2272'.
[  821.611518][T15885] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input116
[  822.368933][T15897] FAULT_INJECTION: forcing a failure.
[  822.368933][T15897] name failslab, interval 1, probability 0, space 0, times 0
[  822.411508][T15897] CPU: 0 UID: 0 PID: 15897 Comm: syz.6.2277 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  822.411542][T15897] Tainted: [L]=SOFTLOCKUP
[  822.411549][T15897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  822.411561][T15897] Call Trace:
[  822.411570][T15897]  <TASK>
[  822.411578][T15897]  dump_stack_lvl+0x100/0x190
[  822.411611][T15897]  should_fail_ex.cold+0x5/0xa
[  822.411634][T15897]  should_failslab+0xc2/0x120
[  822.411656][T15897]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  822.411685][T15897]  ? alloc_vmap_area+0x640/0x2bd0
[  822.411709][T15897]  alloc_vmap_area+0x640/0x2bd0
[  822.411738][T15897]  ? __pfx_alloc_vmap_area+0x10/0x10
[  822.411764][T15897]  __get_vm_area_node+0x1ca/0x330
[  822.411790][T15897]  __vmalloc_node_range_noprof+0x213/0x1530
[  822.411815][T15897]  ? dvb_dvr_open+0x442/0x720
[  822.411835][T15897]  ? rcu_is_watching+0x12/0xc0
[  822.411863][T15897]  ? trace_contention_end+0x140/0x180
[  822.411888][T15897]  ? dvb_dvr_open+0x442/0x720
[  822.411907][T15897]  ? dvb_dvr_open+0x9a/0x720
[  822.411933][T15897]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  822.411957][T15897]  ? __pfx___mutex_lock+0x10/0x10
[  822.411994][T15897]  ? dvb_dvr_open+0x442/0x720
[  822.412010][T15897]  __vmalloc_node_noprof+0xad/0xf0
[  822.412034][T15897]  ? dvb_dvr_open+0x442/0x720
[  822.412053][T15897]  dvb_dvr_open+0x442/0x720
[  822.412073][T15897]  ? __pfx_dvb_dvr_open+0x10/0x10
[  822.412092][T15897]  dvb_device_open+0x270/0x3b0
[  822.412121][T15897]  ? __pfx_dvb_device_open+0x10/0x10
[  822.412150][T15897]  chrdev_open+0x234/0x6a0
[  822.412179][T15897]  ? __pfx_apparmor_file_open+0x10/0x10
[  822.412211][T15897]  ? __pfx_chrdev_open+0x10/0x10
[  822.412231][T15897]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  822.412260][T15897]  do_dentry_open+0x6d8/0x1660
[  822.412279][T15897]  ? __pfx_chrdev_open+0x10/0x10
[  822.412304][T15897]  vfs_open+0x82/0x3f0
[  822.412330][T15897]  path_openat+0x208c/0x31a0
[  822.412358][T15897]  ? __pfx_path_openat+0x10/0x10
[  822.412385][T15897]  do_file_open+0x20e/0x430
[  822.412406][T15897]  ? __pfx_do_file_open+0x10/0x10
[  822.412441][T15897]  ? alloc_fd+0x476/0x790
[  822.412461][T15897]  ? do_getname+0x191/0x390
[  822.412486][T15897]  do_sys_openat2+0x10d/0x1e0
[  822.412510][T15897]  ? __pfx_do_sys_openat2+0x10/0x10
[  822.412535][T15897]  ? kfree+0x2ec/0x6b0
[  822.412557][T15897]  ? ipv6_setsockopt+0xcb/0x170
[  822.412591][T15897]  __x64_sys_openat+0x12d/0x210
[  822.412617][T15897]  ? __pfx___x64_sys_openat+0x10/0x10
[  822.412651][T15897]  do_syscall_64+0x106/0xf80
[  822.412675][T15897]  ? clear_bhb_loop+0x40/0x90
[  822.412698][T15897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  822.412718][T15897] RIP: 0033:0x7f6354f9c799
[  822.412735][T15897] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  822.412754][T15897] RSP: 002b:00007f6355eb2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  822.412772][T15897] RAX: ffffffffffffffda RBX: 00007f6355215fa0 RCX: 00007f6354f9c799
[  822.412785][T15897] RDX: 0000000000000e40 RSI: 0000200000001180 RDI: ffffffffffffff9c
[  822.412796][T15897] RBP: 00007f6355032c99 R08: 0000000000000000 R09: 0000000000000000
[  822.412807][T15897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  822.412819][T15897] R13: 00007f6355216038 R14: 00007f6355215fa0 R15: 00007ffe458b5ce8
[  822.412842][T15897]  </TASK>
[  822.413019][T15897] syz.6.2277: vmalloc error: size 1925120, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  823.131408][T15897] CPU: 0 UID: 0 PID: 15897 Comm: syz.6.2277 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  823.131439][T15897] Tainted: [L]=SOFTLOCKUP
[  823.131446][T15897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  823.131457][T15897] Call Trace:
[  823.131463][T15897]  <TASK>
[  823.131471][T15897]  dump_stack_lvl+0x100/0x190
[  823.131504][T15897]  warn_alloc.cold+0x95/0x1c1
[  823.131535][T15897]  ? __pfx_warn_alloc+0x10/0x10
[  823.131560][T15897]  ? lockdep_hardirqs_on+0x78/0x100
[  823.131588][T15897]  ? __get_vm_area_node+0x2c5/0x330
[  823.131614][T15897]  ? __get_vm_area_node+0x208/0x330
[  823.131639][T15897]  __vmalloc_node_range_noprof+0xbf4/0x1530
[  823.131664][T15897]  ? rcu_is_watching+0x12/0xc0
[  823.131692][T15897]  ? trace_contention_end+0x140/0x180
[  823.131718][T15897]  ? dvb_dvr_open+0x442/0x720
[  823.131737][T15897]  ? dvb_dvr_open+0x9a/0x720
[  823.131758][T15897]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  823.131781][T15897]  ? __pfx___mutex_lock+0x10/0x10
[  823.131816][T15897]  ? dvb_dvr_open+0x442/0x720
[  823.131833][T15897]  __vmalloc_node_noprof+0xad/0xf0
[  823.131856][T15897]  ? dvb_dvr_open+0x442/0x720
[  823.131875][T15897]  dvb_dvr_open+0x442/0x720
[  823.131894][T15897]  ? __pfx_dvb_dvr_open+0x10/0x10
[  823.131914][T15897]  dvb_device_open+0x270/0x3b0
[  823.131942][T15897]  ? __pfx_dvb_device_open+0x10/0x10
[  823.131971][T15897]  chrdev_open+0x234/0x6a0
[  823.131989][T15897]  ? __pfx_apparmor_file_open+0x10/0x10
[  823.132019][T15897]  ? __pfx_chrdev_open+0x10/0x10
[  823.132039][T15897]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  823.132064][T15897]  do_dentry_open+0x6d8/0x1660
[  823.132082][T15897]  ? __pfx_chrdev_open+0x10/0x10
[  823.132106][T15897]  vfs_open+0x82/0x3f0
[  823.132132][T15897]  path_openat+0x208c/0x31a0
[  823.132159][T15897]  ? __pfx_path_openat+0x10/0x10
[  823.132192][T15897]  do_file_open+0x20e/0x430
[  823.132212][T15897]  ? __pfx_do_file_open+0x10/0x10
[  823.132247][T15897]  ? alloc_fd+0x476/0x790
[  823.132267][T15897]  ? do_getname+0x191/0x390
[  823.132292][T15897]  do_sys_openat2+0x10d/0x1e0
[  823.132316][T15897]  ? __pfx_do_sys_openat2+0x10/0x10
[  823.132341][T15897]  ? kfree+0x2ec/0x6b0
[  823.132362][T15897]  ? ipv6_setsockopt+0xcb/0x170
[  823.132397][T15897]  __x64_sys_openat+0x12d/0x210
[  823.132421][T15897]  ? __pfx___x64_sys_openat+0x10/0x10
[  823.132460][T15897]  do_syscall_64+0x106/0xf80
[  823.132484][T15897]  ? clear_bhb_loop+0x40/0x90
[  823.132506][T15897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  823.132525][T15897] RIP: 0033:0x7f6354f9c799
[  823.132542][T15897] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  823.132560][T15897] RSP: 002b:00007f6355eb2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  823.132578][T15897] RAX: ffffffffffffffda RBX: 00007f6355215fa0 RCX: 00007f6354f9c799
[  823.132590][T15897] RDX: 0000000000000e40 RSI: 0000200000001180 RDI: ffffffffffffff9c
[  823.132602][T15897] RBP: 00007f6355032c99 R08: 0000000000000000 R09: 0000000000000000
[  823.132613][T15897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  823.132623][T15897] R13: 00007f6355216038 R14: 00007f6355215fa0 R15: 00007ffe458b5ce8
[  823.132647][T15897]  </TASK>
[  823.141083][T15897] Mem-Info:
[  824.450791][T15919] netlink: 504 bytes leftover after parsing attributes in process `syz.5.2282'.
[  824.511908][T15917] netlink: 350 bytes leftover after parsing attributes in process `syz.5.2282'.
[  824.906704][T15897] active_anon:17840 inactive_anon:47 isolated_anon:0
[  824.906704][T15897]  active_file:10631 inactive_file:43923 isolated_file:0
[  824.906704][T15897]  unevictable:768 dirty:749 writeback:0
[  824.906704][T15897]  slab_reclaimable:11875 slab_unreclaimable:101072
[  824.906704][T15897]  mapped:40534 shmem:3763 pagetables:1547
[  824.906704][T15897]  sec_pagetables:0 bounce:0
[  824.906704][T15897]  kernel_misc_reclaimable:0
[  824.906704][T15897]  free:1270882 free_pcp:18881 free_cma:0
[  824.906772][T15897] Node 0 active_anon:71360kB inactive_anon:188kB active_file:42524kB inactive_file:175520kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:162100kB dirty:2992kB writeback:0kB shmem:13516kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12384kB pagetables:6040kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  824.906817][T15897] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:172kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:36kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  824.906859][T15897] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  824.906912][T15897] lowmem_reserve[]: 0 2477 2478 2478 2478
[  824.906958][T15897] Node 0 DMA32 free:1153544kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB free_highatomic:0KB active_anon:71360kB inactive_anon:188kB active_file:42524kB inactive_file:175520kB unevictable:1536kB writepending:2992kB zspages:2720kB present:3129332kB managed:2537384kB mlocked:0kB bounce:0kB free_pcp:52640kB local_pcp:52640kB free_cma:0kB
[  824.907011][T15897] lowmem_reserve[]: 0 0 1 1 1
[  824.907047][T15897] Node 0 Normal free:4kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1060kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  824.908143][T15897] lowmem_reserve[]: 0 0 0 0 0
[  824.908184][T15897] Node 1 Normal free:3914620kB boost:0kB min:55580kB low:69472kB high:83364kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:172kB unevictable:1536kB writepending:4kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:22884kB local_pcp:22884kB free_cma:0kB
[  824.908237][T15897] lowmem_reserve[]: 0 0 0 0 0
[  824.908273][T15897] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  824.908390][T15897] Node 0 DMA32: 1828*4kB (UME) 2671*8kB (UE) 3096*16kB (UME) 1158*32kB (UME) 719*64kB (UME) 550*128kB (UME) 429*256kB (UME) 236*512kB (UM) 155*1024kB (UME) 38*2048kB (UME) 111*4096kB (UM) = 1153544kB
[  824.908553][T15897] Node 0 Normal: 1*4kB (U) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  824.908656][T15897] Node 1 Normal: 5*4kB (UM) 9*8kB (UM) 8*16kB (UM) 3*32kB (UM) 3*64kB (UM) 5*128kB (U) 3*256kB (UM) 2*512kB (U) 4*1024kB (UM) 2*2048kB (UM) 953*4096kB (UM) = 3914620kB
[  824.908815][T15897] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  824.908831][T15897] Node 0 hugepages_total=3 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  824.908845][T15897] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  824.908860][T15897] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  824.908874][T15897] 58360 total pagecache pages
[  824.908882][T15897] 44 pages in swap cache
[  824.908889][T15897] Free swap  = 122492kB
[  824.908897][T15897] Total swap = 124996kB
[  824.908905][T15897] 2097051 pages RAM
[  824.908912][T15897] 0 pages HighMem/MovableOnly
[  824.908919][T15897] 430825 pages reserved
[  824.908933][T15897] 0 pages cma reserved
[  825.722321][T15928] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(9)
[  826.317407][T15938] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2287'.
[  826.322817][T15938] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2287'.
[  826.560421][T15939] program syz.6.2285 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  829.060182][T15980] netlink: 'syz.4.2295': attribute type 5 has an invalid length.
[  829.098565][T15980] netlink: 'syz.4.2295': attribute type 1 has an invalid length.
[  829.144304][T15980] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2295'.
[  829.678092][T15990] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2297'.
[  829.922141][T15995] netlink: 25 bytes leftover after parsing attributes in process `syz.5.2299'.
[  830.891730][T10736] Bluetooth: hci1: Received unexpected HCI Event 0x00
[  831.316124][T15996] ksmbd: Unknown IPC event: 14, ignore.
[  833.022438][T16033] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2307'.
[  833.093606][T16033] netlink: 350 bytes leftover after parsing attributes in process `syz.4.2307'.
[  834.692568][T16051] ksmbd: Unknown IPC event: 14, ignore.
[  835.497127][T16066] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input118
[  835.563543][T16060] FAULT_INJECTION: forcing a failure.
[  835.563543][T16060] name failslab, interval 1, probability 0, space 0, times 0
[  835.694809][T16060] CPU: 0 UID: 0 PID: 16060 Comm: syz.5.2313 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  835.694842][T16060] Tainted: [L]=SOFTLOCKUP
[  835.694849][T16060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  835.694861][T16060] Call Trace:
[  835.694869][T16060]  <TASK>
[  835.694878][T16060]  dump_stack_lvl+0x100/0x190
[  835.694910][T16060]  should_fail_ex.cold+0x5/0xa
[  835.694933][T16060]  should_failslab+0xc2/0x120
[  835.694954][T16060]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  835.694982][T16060]  ? acpi_ut_create_control_state+0x6a/0x100
[  835.695013][T16060]  acpi_ut_create_control_state+0x6a/0x100
[  835.695035][T16060]  acpi_ds_exec_begin_control_op+0x21f/0x530
[  835.695063][T16060]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  835.695097][T16060]  acpi_ds_exec_begin_op+0x20a/0x9c0
[  835.695120][T16060]  acpi_ps_create_op+0x7bb/0xd10
[  835.695142][T16060]  ? __pfx_acpi_ps_create_op+0x10/0x10
[  835.695163][T16060]  ? __pfx_acpi_ut_trace_ptr+0x10/0x10
[  835.695186][T16060]  ? acpi_ut_value_exit+0x10d/0x190
[  835.695212][T16060]  acpi_ps_parse_loop+0xa65/0x24a0
[  835.695235][T16060]  ? __kmalloc_noprof+0x320/0x850
[  835.695265][T16060]  ? __pfx_acpi_ps_parse_loop+0x10/0x10
[  835.695285][T16060]  ? acpi_ut_status_exit+0x111/0x1c0
[  835.695308][T16060]  ? acpi_ds_call_control_method+0x435/0xab0
[  835.695341][T16060]  acpi_ps_parse_aml+0x81e/0x1120
[  835.695367][T16060]  acpi_ps_execute_method+0x5c4/0xe90
[  835.695395][T16060]  acpi_ns_evaluate+0x640/0x1670
[  835.695425][T16060]  acpi_evaluate_object+0x420/0xe00
[  835.695442][T16060]  ? kasan_save_stack+0x30/0x50
[  835.695469][T16060]  ? kasan_save_track+0x14/0x30
[  835.695514][T16060]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  835.695540][T16060]  acpi_evaluate_integer+0xdf/0x220
[  835.695568][T16060]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  835.695605][T16060]  ? __pfx_status_show+0x10/0x10
[  835.695623][T16060]  status_show+0xa0/0x120
[  835.695641][T16060]  ? __pfx_status_show+0x10/0x10
[  835.695665][T16060]  dev_attr_show+0x52/0xa0
[  835.695687][T16060]  ? __pfx_dev_attr_show+0x10/0x10
[  835.695708][T16060]  sysfs_kf_seq_show+0x217/0x3a0
[  835.695737][T16060]  seq_read_iter+0x32f/0x1270
[  835.695781][T16060]  kernfs_fop_read_iter+0x46c/0x610
[  835.695803][T16060]  ? rw_verify_area+0xce/0x6d0
[  835.695829][T16060]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  835.695852][T16060]  vfs_read+0x825/0xb30
[  835.695885][T16060]  ? __pfx_vfs_read+0x10/0x10
[  835.695927][T16060]  ksys_read+0x12a/0x250
[  835.695956][T16060]  ? __pfx_ksys_read+0x10/0x10
[  835.695992][T16060]  do_syscall_64+0x106/0xf80
[  835.696020][T16060]  ? clear_bhb_loop+0x40/0x90
[  835.696044][T16060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  835.696064][T16060] RIP: 0033:0x7efeb099c799
[  835.696081][T16060] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  835.696099][T16060] RSP: 002b:00007efeb17bf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  835.696118][T16060] RAX: ffffffffffffffda RBX: 00007efeb0c16090 RCX: 00007efeb099c799
[  835.696130][T16060] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000009
[  835.696141][T16060] RBP: 00007efeb0a32c99 R08: 0000000000000000 R09: 0000000000000000
[  835.696152][T16060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  835.696163][T16060] R13: 00007efeb0c16128 R14: 00007efeb0c16090 R15: 00007ffc5e86d818
[  835.696188][T16060]  </TASK>
[  835.696228][T16060] ACPI Error: 
[  836.326031][T16073] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2317'.
[  837.875122][T16060] Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529)
[  837.918820][T16060] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529)
[  838.425924][T16087] nfs4: Unknown parameter ''
[  838.690797][T16113] random: crng reseeded on system resumption
[  838.763665][T16113] hub 1-0:1.0: USB hub found
[  838.790818][T16113] hub 1-0:1.0: 1 port detected
[  838.823906][T15698] block nbd0: Possible stuck request ffff888027838000: control (read@0,4096B). Runtime 150 seconds
[  840.181392][T10736] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  841.030528][T16125] ksmbd: Unknown IPC event: 14, ignore.
[  841.521240][T16140] netlink: 504 bytes leftover after parsing attributes in process `syz.5.2331'.
[  841.575510][T16141] netlink: 350 bytes leftover after parsing attributes in process `syz.5.2331'.
[  845.581038][T16184] random: crng reseeded on system resumption
[  846.274288][T16191] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2346'.
[  846.363164][T16199] hub 1-0:1.0: USB hub found
[  846.411760][T16199] hub 1-0:1.0: 1 port detected
[  847.759153][T16220] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2353'.
[  847.818166][T16223] futex_wake_op: syz.6.2354 tries to shift op by -2048; fix this program
[  847.832245][T16220] ipvlan0: entered promiscuous mode
[  847.837817][T16220] ipvlan0: entered allmulticast mode
[  847.860014][T16222] futex_wake_op: syz.6.2354 tries to shift op by -2048; fix this program
[  847.951395][T16220] veth0_vlan: entered allmulticast mode
[  848.560284][T16239] FAULT_INJECTION: forcing a failure.
[  848.560284][T16239] name failslab, interval 1, probability 0, space 0, times 0
[  848.758366][T16239] CPU: 0 UID: 0 PID: 16239 Comm: syz.0.2357 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  848.758405][T16239] Tainted: [L]=SOFTLOCKUP
[  848.758415][T16239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  848.758430][T16239] Call Trace:
[  848.758437][T16239]  <TASK>
[  848.758445][T16239]  dump_stack_lvl+0x100/0x190
[  848.758478][T16239]  should_fail_ex.cold+0x5/0xa
[  848.758506][T16239]  should_failslab+0xc2/0x120
[  848.758528][T16239]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  848.758556][T16239]  ? __d_alloc+0x34/0xa80
[  848.758577][T16239]  ? lockdep_init_map_type+0x5c/0x250
[  848.758606][T16239]  __d_alloc+0x34/0xa80
[  848.758637][T16239]  d_alloc_pseudo+0x1c/0xc0
[  848.758664][T16239]  alloc_file_pseudo+0xcf/0x230
[  848.758696][T16239]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  848.758720][T16239]  ? alloc_fd+0x476/0x790
[  848.758742][T16239]  sock_alloc_file+0x50/0x210
[  848.758772][T16239]  __sys_socket+0x1c0/0x260
[  848.758791][T16239]  ? exc_page_fault+0x6f/0xd0
[  848.758816][T16239]  ? __pfx___sys_socket+0x10/0x10
[  848.758839][T16239]  ? do_user_addr_fault+0x8d6/0x12f0
[  848.758871][T16239]  __x64_sys_socket+0x72/0xb0
[  848.758892][T16239]  ? lockdep_hardirqs_on+0x78/0x100
[  848.758920][T16239]  do_syscall_64+0x106/0xf80
[  848.758946][T16239]  ? clear_bhb_loop+0x40/0x90
[  848.758969][T16239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  848.758989][T16239] RIP: 0033:0x7f51b7f9e007
[  848.759004][T16239] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  848.759021][T16239] RSP: 002b:00007f51b61f4f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  848.759040][T16239] RAX: ffffffffffffffda RBX: 00007f51b8215fa0 RCX: 00007f51b7f9e007
[  848.759051][T16239] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  848.759062][T16239] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  848.759073][T16239] R10: 0000200000000180 R11: 0000000000000286 R12: 0000000000000000
[  848.759084][T16239] R13: 00007f51b8216038 R14: 00007f51b8215fa0 R15: 00007ffc0fa3f928
[  848.759108][T16239]  </TASK>
[  848.984480][T16244] random: crng reseeded on system resumption
[  849.247331][T16230] FAULT_INJECTION: forcing a failure.
[  849.247331][T16230] name failslab, interval 1, probability 0, space 0, times 0
[  849.283081][T16230] CPU: 0 UID: 0 PID: 16230 Comm: syz.6.2355 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  849.283114][T16230] Tainted: [L]=SOFTLOCKUP
[  849.283121][T16230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  849.283133][T16230] Call Trace:
[  849.283140][T16230]  <TASK>
[  849.283148][T16230]  dump_stack_lvl+0x100/0x190
[  849.283179][T16230]  should_fail_ex.cold+0x5/0xa
[  849.283202][T16230]  should_failslab+0xc2/0x120
[  849.283223][T16230]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  849.283251][T16230]  ? acpi_ut_create_control_state+0x6a/0x100
[  849.283279][T16230]  acpi_ut_create_control_state+0x6a/0x100
[  849.283301][T16230]  acpi_ds_exec_begin_control_op+0x21f/0x530
[  849.283329][T16230]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  849.283364][T16230]  acpi_ds_exec_begin_op+0x20a/0x9c0
[  849.283386][T16230]  acpi_ps_create_op+0x7bb/0xd10
[  849.283409][T16230]  ? __pfx_acpi_ps_create_op+0x10/0x10
[  849.283430][T16230]  ? __pfx_acpi_ut_trace_ptr+0x10/0x10
[  849.283452][T16230]  ? acpi_ut_value_exit+0x10d/0x190
[  849.283478][T16230]  acpi_ps_parse_loop+0xa65/0x24a0
[  849.283501][T16230]  ? __kmalloc_noprof+0x320/0x850
[  849.283531][T16230]  ? __pfx_acpi_ps_parse_loop+0x10/0x10
[  849.283551][T16230]  ? acpi_ut_status_exit+0x111/0x1c0
[  849.283574][T16230]  ? acpi_ds_call_control_method+0x435/0xab0
[  849.283606][T16230]  acpi_ps_parse_aml+0x81e/0x1120
[  849.283642][T16230]  acpi_ps_execute_method+0x5c4/0xe90
[  849.283671][T16230]  acpi_ns_evaluate+0x640/0x1670
[  849.283701][T16230]  acpi_evaluate_object+0x420/0xe00
[  849.283718][T16230]  ? kasan_save_stack+0x30/0x50
[  849.283745][T16230]  ? kasan_save_track+0x14/0x30
[  849.283777][T16230]  ? __pfx_acpi_evaluate_object+0x10/0x10
[  849.283804][T16230]  acpi_evaluate_integer+0xdf/0x220
[  849.283832][T16230]  ? __pfx_acpi_evaluate_integer+0x10/0x10
[  849.283868][T16230]  ? __pfx_status_show+0x10/0x10
[  849.283885][T16230]  status_show+0xa0/0x120
[  849.283903][T16230]  ? __pfx_status_show+0x10/0x10
[  849.283926][T16230]  dev_attr_show+0x52/0xa0
[  849.283948][T16230]  ? __pfx_dev_attr_show+0x10/0x10
[  849.283969][T16230]  sysfs_kf_seq_show+0x217/0x3a0
[  849.283997][T16230]  seq_read_iter+0x32f/0x1270
[  849.284035][T16230]  kernfs_fop_read_iter+0x46c/0x610
[  849.284056][T16230]  ? rw_verify_area+0xce/0x6d0
[  849.284085][T16230]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  849.284107][T16230]  vfs_read+0x825/0xb30
[  849.284139][T16230]  ? __pfx_vfs_read+0x10/0x10
[  849.284182][T16230]  ksys_read+0x12a/0x250
[  849.284210][T16230]  ? __pfx_ksys_read+0x10/0x10
[  849.284245][T16230]  do_syscall_64+0x106/0xf80
[  849.284271][T16230]  ? clear_bhb_loop+0x40/0x90
[  849.284294][T16230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  849.284313][T16230] RIP: 0033:0x7f6354f9c799
[  849.284330][T16230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  849.284348][T16230] RSP: 002b:00007f6355eb2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  849.284367][T16230] RAX: ffffffffffffffda RBX: 00007f6355215fa0 RCX: 00007f6354f9c799
[  849.284380][T16230] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000009
[  849.284392][T16230] RBP: 00007f6355032c99 R08: 0000000000000000 R09: 0000000000000000
[  849.284402][T16230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  849.284412][T16230] R13: 00007f6355216038 R14: 00007f6355215fa0 R15: 00007ffe458b5ce8
[  849.284436][T16230]  </TASK>
[  849.284469][T16230] ACPI Error: 
[  849.653858][T16244] hub 1-0:1.0: USB hub found
[  849.783404][T16244] hub 1-0:1.0: 1 port detected
[  850.559595][T16230] Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529)
[  850.612648][T16230] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529)

getty: ttyS0: read error: Resource temporarily unavailable
[  854.169944][T16300] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2381'.
[  854.307643][T16300] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2381'.
[  855.270646][T16313] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[  858.148833][T16350] netlink: 504 bytes leftover after parsing attributes in process `syz.5.2384'.
[  858.209343][T16350] netlink: 350 bytes leftover after parsing attributes in process `syz.5.2384'.
[  858.886086][T16366] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2388'.
[  860.087142][T16384] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2392'.
[  860.153274][T16391] netlink: 350 bytes leftover after parsing attributes in process `syz.4.2392'.
[  860.925336][T16409] program syz.6.2397 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  862.610440][T16438] FAULT_INJECTION: forcing a failure.
[  862.610440][T16438] name failslab, interval 1, probability 0, space 0, times 0
[  862.686150][T16438] CPU: 0 UID: 0 PID: 16438 Comm: syz.4.2404 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  862.686183][T16438] Tainted: [L]=SOFTLOCKUP
[  862.686190][T16438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  862.686202][T16438] Call Trace:
[  862.686209][T16438]  <TASK>
[  862.686217][T16438]  dump_stack_lvl+0x100/0x190
[  862.686250][T16438]  should_fail_ex.cold+0x5/0xa
[  862.686271][T16438]  should_failslab+0xc2/0x120
[  862.686292][T16438]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  862.686320][T16438]  ? security_file_alloc+0x34/0x2c0
[  862.686342][T16438]  ? trace_kmem_cache_alloc+0xf3/0x120
[  862.686365][T16438]  security_file_alloc+0x34/0x2c0
[  862.686388][T16438]  init_file+0x95/0x480
[  862.686409][T16438]  alloc_empty_file+0x73/0x1c0
[  862.686433][T16438]  alloc_file_pseudo+0x13a/0x230
[  862.686457][T16438]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  862.686483][T16438]  ? _raw_spin_unlock+0x28/0x50
[  862.686506][T16438]  ? alloc_fd+0x476/0x790
[  862.686525][T16438]  __anon_inode_getfile+0xe8/0x280
[  862.686549][T16438]  __anon_inode_getfd+0x5c/0xe0
[  862.686573][T16438]  do_inotify_init+0x483/0x5e0
[  862.686599][T16438]  __x64_sys_inotify_init1+0x30/0x40
[  862.686625][T16438]  do_syscall_64+0x106/0xf80
[  862.686649][T16438]  ? clear_bhb_loop+0x40/0x90
[  862.686672][T16438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  862.686691][T16438] RIP: 0033:0x7fbf7699c799
[  862.686707][T16438] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  862.686725][T16438] RSP: 002b:00007fbf77917028 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  862.686744][T16438] RAX: ffffffffffffffda RBX: 00007fbf76c16090 RCX: 00007fbf7699c799
[  862.686756][T16438] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0003000000000000
[  862.686767][T16438] RBP: 00007fbf76a32c99 R08: 0000000000000000 R09: 0000000000000000
[  862.686778][T16438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  862.686789][T16438] R13: 00007fbf76c16128 R14: 00007fbf76c16090 R15: 00007ffc02d52d18
[  862.686811][T16438]  </TASK>
[  863.269747][T16446] netlink: 504 bytes leftover after parsing attributes in process `syz.6.2406'.
[  863.292602][T16445] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2407'.
[  863.344579][T16443] netlink: 350 bytes leftover after parsing attributes in process `syz.6.2406'.
[  864.559794][T16464] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2410'.
[  865.641774][T16482] sctp: [Deprecated]: syz.4.2414 (pid 16482) Use of struct sctp_assoc_value in delayed_ack socket option.
[  865.641774][T16482] Use struct sctp_sack_info instead
[  866.874938][T16505] FAULT_INJECTION: forcing a failure.
[  866.874938][T16505] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  866.964926][T16505] CPU: 0 UID: 0 PID: 16505 Comm: syz.5.2419 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  866.964959][T16505] Tainted: [L]=SOFTLOCKUP
[  866.964966][T16505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  866.964977][T16505] Call Trace:
[  866.964984][T16505]  <TASK>
[  866.964992][T16505]  dump_stack_lvl+0x100/0x190
[  866.965024][T16505]  should_fail_ex.cold+0x5/0xa
[  866.965047][T16505]  _copy_from_user+0x2e/0xd0
[  866.965069][T16505]  copy_mnt_id_req+0x108/0x350
[  866.965096][T16505]  __do_sys_listmount+0x184/0xee0
[  866.965124][T16505]  ? __pfx_do_futex+0x10/0x10
[  866.965149][T16505]  ? do_set_mempolicy+0x20a/0x3e0
[  866.965168][T16505]  ? __pfx_do_set_mempolicy+0x10/0x10
[  866.965188][T16505]  ? __pfx___do_sys_listmount+0x10/0x10
[  866.965233][T16505]  do_syscall_64+0x106/0xf80
[  866.965258][T16505]  ? clear_bhb_loop+0x40/0x90
[  866.965280][T16505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  866.965299][T16505] RIP: 0033:0x7efeb099c799
[  866.965315][T16505] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  866.965333][T16505] RSP: 002b:00007efeb17e0028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  866.965352][T16505] RAX: ffffffffffffffda RBX: 00007efeb0c15fa0 RCX: 00007efeb099c799
[  866.965364][T16505] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  866.965376][T16505] RBP: 00007efeb0a32c99 R08: 0000000000000000 R09: 0000000000000000
[  866.965387][T16505] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  866.965398][T16505] R13: 00007efeb0c16038 R14: 00007efeb0c15fa0 R15: 00007ffc5e86d818
[  866.965425][T16505]  </TASK>
[  867.466567][T16514] FAULT_INJECTION: forcing a failure.
[  867.466567][T16514] name failslab, interval 1, probability 0, space 0, times 0
[  867.492758][T16518] FAULT_INJECTION: forcing a failure.
[  867.492758][T16518] name failslab, interval 1, probability 0, space 0, times 0
[  867.546390][T16514] CPU: 0 UID: 0 PID: 16514 Comm: syz.5.2421 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  867.546423][T16514] Tainted: [L]=SOFTLOCKUP
[  867.546430][T16514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  867.546441][T16514] Call Trace:
[  867.546447][T16514]  <TASK>
[  867.546454][T16514]  dump_stack_lvl+0x100/0x190
[  867.546486][T16514]  should_fail_ex.cold+0x5/0xa
[  867.546507][T16514]  ? tomoyo_realpath_from_path+0xb6/0x690
[  867.546531][T16514]  should_failslab+0xc2/0x120
[  867.546551][T16514]  __kmalloc_noprof+0xe0/0x850
[  867.546582][T16514]  tomoyo_realpath_from_path+0xb6/0x690
[  867.546612][T16514]  tomoyo_check_open_permission+0x2af/0x3c0
[  867.546634][T16514]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  867.546674][T16514]  ? do_raw_spin_lock+0x128/0x260
[  867.546703][T16514]  ? path_get+0x61/0x80
[  867.546726][T16514]  tomoyo_file_open+0x6b/0x90
[  867.546763][T16514]  security_file_open+0xb5/0x1e0
[  867.546786][T16514]  do_dentry_open+0x5aa/0x1660
[  867.546806][T16514]  ? security_inode_permission+0xbf/0x250
[  867.546829][T16514]  vfs_open+0x82/0x3f0
[  867.546858][T16514]  path_openat+0x208c/0x31a0
[  867.546884][T16514]  ? __pfx_path_openat+0x10/0x10
[  867.546911][T16514]  do_file_open+0x20e/0x430
[  867.546931][T16514]  ? __pfx_do_file_open+0x10/0x10
[  867.546965][T16514]  ? alloc_fd+0x476/0x790
[  867.546985][T16514]  ? do_getname+0x191/0x390
[  867.547010][T16514]  do_sys_openat2+0x10d/0x1e0
[  867.547033][T16514]  ? __pfx_do_sys_openat2+0x10/0x10
[  867.547065][T16514]  __x64_sys_openat+0x12d/0x210
[  867.547090][T16514]  ? __pfx___x64_sys_openat+0x10/0x10
[  867.547122][T16514]  do_syscall_64+0x106/0xf80
[  867.547147][T16514]  ? clear_bhb_loop+0x40/0x90
[  867.547169][T16514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  867.547188][T16514] RIP: 0033:0x7efeb099c799
[  867.547204][T16514] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  867.547221][T16514] RSP: 002b:00007efeb179e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  867.547239][T16514] RAX: ffffffffffffffda RBX: 00007efeb0c16180 RCX: 00007efeb099c799
[  867.547251][T16514] RDX: 0000000000000100 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  867.547262][T16514] RBP: 00007efeb0a32c99 R08: 0000000000000000 R09: 0000000000000000
[  867.547273][T16514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  867.547284][T16514] R13: 00007efeb0c16218 R14: 00007efeb0c16180 R15: 00007ffc5e86d818
[  867.547306][T16514]  </TASK>
[  867.547314][T16514] ERROR: Out of memory at tomoyo_realpath_from_path.
[  867.905764][T16518] CPU: 0 UID: 0 PID: 16518 Comm: syz.0.2420 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  867.905796][T16518] Tainted: [L]=SOFTLOCKUP
[  867.905803][T16518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  867.905815][T16518] Call Trace:
[  867.905821][T16518]  <TASK>
[  867.905829][T16518]  dump_stack_lvl+0x100/0x190
[  867.905862][T16518]  should_fail_ex.cold+0x5/0xa
[  867.905885][T16518]  should_failslab+0xc2/0x120
[  867.905905][T16518]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  867.905934][T16518]  ? __d_alloc+0x34/0xa80
[  867.905954][T16518]  ? lockdep_init_map_type+0x5c/0x250
[  867.905982][T16518]  __d_alloc+0x34/0xa80
[  867.906004][T16518]  d_alloc_pseudo+0x1c/0xc0
[  867.906031][T16518]  alloc_file_pseudo+0xcf/0x230
[  867.906056][T16518]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  867.906080][T16518]  ? alloc_fd+0x476/0x790
[  867.906101][T16518]  sock_alloc_file+0x50/0x210
[  867.906130][T16518]  __sys_socket+0x1c0/0x260
[  867.906149][T16518]  ? exc_page_fault+0x6f/0xd0
[  867.906173][T16518]  ? __pfx___sys_socket+0x10/0x10
[  867.906196][T16518]  ? do_user_addr_fault+0x8d6/0x12f0
[  867.906228][T16518]  __x64_sys_socket+0x72/0xb0
[  867.906249][T16518]  ? lockdep_hardirqs_on+0x78/0x100
[  867.906276][T16518]  do_syscall_64+0x106/0xf80
[  867.906301][T16518]  ? clear_bhb_loop+0x40/0x90
[  867.906324][T16518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  867.906343][T16518] RIP: 0033:0x7f51b7f9e007
[  867.906359][T16518] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  867.906377][T16518] RSP: 002b:00007f51b61d3f98 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  867.906396][T16518] RAX: ffffffffffffffda RBX: 00007f51b8216090 RCX: 00007f51b7f9e007
[  867.906408][T16518] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  867.906419][T16518] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  867.906430][T16518] R10: 0000200000000140 R11: 0000000000000286 R12: 0000000000000000
[  867.906441][T16518] R13: 00007f51b8216128 R14: 00007f51b8216090 R15: 00007ffc0fa3f928
[  867.906471][T16518]  </TASK>
[  868.786604][T16531] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2424'.
[  868.915828][T15698] block nbd0: Possible stuck request ffff888027838000: control (read@0,4096B). Runtime 180 seconds
[  870.833721][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  870.840814][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  875.037857][T16601] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2441'.
[  882.296551][T16657] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2452'.
[  884.343421][T16685] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input120
[  885.055332][T16697] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2467'.
[  885.378488][T16701] netlink: 'syz.5.2468': attribute type 1 has an invalid length.
[  888.806708][T16743] zram: Added device: zram1
[  890.115586][T16760] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input121
[  890.952665][T16768] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2481'.
[  892.946456][T16809] random: crng reseeded on system resumption
[  893.400054][   T52] Bluetooth: hci1: command 0x2016 tx timeout
[  893.409676][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  894.268685][T16831] random: crng reseeded on system resumption
[  894.442928][T16837] hub 1-0:1.0: USB hub found
[  894.576324][T16837] hub 1-0:1.0: 1 port detected
[  899.000679][T15698] block nbd0: Possible stuck request ffff888027838000: control (read@0,4096B). Runtime 210 seconds
[  900.427116][T16874] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  903.157209][T16961] netlink: 'syz.6.2529': attribute type 1 has an invalid length.
[  903.253468][T16958] netlink: 2 bytes leftover after parsing attributes in process `syz.5.2528'.
[  903.493538][T16963] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2530'.
[  903.539964][T16963] netlink: 350 bytes leftover after parsing attributes in process `syz.0.2530'.
[  903.644406][T16812] Bluetooth: hci5: command 0x0406 tx timeout
[  906.690314][   T30] INFO: task syz.2.2083:14948 blocked for more than 143 seconds.
[  906.704221][   T30]       Tainted: G             L      syzkaller #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  906.739149][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  906.804461][   T30] task:syz.2.2083      state:D stack:26904 pid:14948 tgid:14947 ppid:5827   task_flags:0x400040 flags:0x00080002
[  906.884237][   T30] Call Trace:
[  906.923936][   T30]  <TASK>
[  906.936692][   T30]  __schedule+0xfee/0x6120
[  906.995212][   T30]  ? __lock_acquire+0x4a5/0x2630
[  907.000513][   T30]  ? __pfx___schedule+0x10/0x10
[  907.042692][   T30]  ? find_held_lock+0x2b/0x80
[  907.074588][   T30]  ? schedule+0x2bf/0x390
[  907.108316][   T30]  schedule+0xdd/0x390
[  907.112439][   T30]  schedule_preempt_disabled+0x13/0x30
[  907.166523][   T30]  __mutex_lock+0xc9a/0x1b90
[  907.171195][   T30]  ? bdev_open+0x41a/0xe40
[  907.236957][   T30]  ? find_held_lock+0x2b/0x80
[  907.241879][   T30]  ? find_inode_fast+0x5e3/0x910
[  907.295252][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  907.331996][   T30]  ? find_inode_fast+0x1fa/0x910
[  907.428724][   T30]  ? bdev_open+0x41a/0xe40
[  907.467160][   T30]  bdev_open+0x41a/0xe40
[  907.471638][   T30]  ? iput+0x3a/0x40
[  907.524476][   T30]  blkdev_open+0x34e/0x4f0
[  907.574828][   T30]  do_dentry_open+0x6d8/0x1660
[  907.579687][   T30]  ? __pfx_blkdev_open+0x10/0x10
[  907.606018][   T30]  vfs_open+0x82/0x3f0
[  907.610386][   T30]  path_openat+0x208c/0x31a0
[  907.635054][   T30]  ? __pfx_path_openat+0x10/0x10
[  907.640094][   T30]  do_file_open+0x20e/0x430
[  907.644724][   T30]  ? __pfx_do_file_open+0x10/0x10
[  907.674959][   T30]  ? alloc_fd+0x476/0x790
[  907.679524][   T30]  ? do_getname+0x191/0x390
[  907.684464][   T30]  do_sys_openat2+0x10d/0x1e0
[  907.704948][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  907.710306][   T30]  ? find_held_lock+0x2b/0x80
[  907.722592][   T30]  __x64_sys_openat+0x12d/0x210
[  907.739045][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  907.744632][   T30]  do_syscall_64+0x106/0xf80
[  907.767537][   T30]  ? clear_bhb_loop+0x40/0x90
[  907.772614][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  907.795016][   T30] RIP: 0033:0x7fa8c539c799
[  907.799501][   T30] RSP: 002b:00007fa8c6303028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  907.815012][   T30] RAX: ffffffffffffffda RBX: 00007fa8c5615fa0 RCX: 00007fa8c539c799
[  907.837037][   T30] RDX: 0000000000024000 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  907.855438][   T30] RBP: 00007fa8c5432c99 R08: 0000000000000000 R09: 0000000000000000
[  907.863620][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  907.895272][   T30] R13: 00007fa8c5616038 R14: 00007fa8c5615fa0 R15: 00007ffc9476e5a8
[  907.903669][   T30]  </TASK>
[  907.959593][   T30] INFO: task syz.1.2105:15030 blocked for more than 144 seconds.
[  907.995080][   T30]       Tainted: G             L      syzkaller #0
[  908.002000][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  908.052254][   T30] task:syz.1.2105      state:D stack:28136 pid:15030 tgid:15029 ppid:5826   task_flags:0x400040 flags:0x00080002
[  908.083865][   T30] Call Trace:
[  908.087700][   T30]  <TASK>
[  908.090742][   T30]  __schedule+0xfee/0x6120
[  908.105348][   T30]  ? __lock_acquire+0x4a5/0x2630
[  908.110335][   T30]  ? __pfx___schedule+0x10/0x10
[  908.131979][   T30]  ? find_held_lock+0x2b/0x80
[  908.154909][   T30]  ? schedule+0x2bf/0x390
[  908.165143][   T30]  schedule+0xdd/0x390
[  908.169566][   T30]  schedule_preempt_disabled+0x13/0x30
[  908.187423][   T30]  __mutex_lock+0xc9a/0x1b90
[  908.192368][   T30]  ? bdev_open+0x41a/0xe40
[  908.215186][   T30]  ? find_held_lock+0x2b/0x80
[  908.220227][   T30]  ? find_inode_fast+0x5e3/0x910
[  908.234511][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  908.255263][   T30]  ? find_inode_fast+0x1fa/0x910
[  908.260463][   T30]  ? bdev_open+0x41a/0xe40
[  908.264910][   T30]  bdev_open+0x41a/0xe40
[  908.285198][   T30]  ? iput+0x3a/0x40
[  908.289051][   T30]  blkdev_open+0x34e/0x4f0
[  908.293572][   T30]  do_dentry_open+0x6d8/0x1660
[  908.302406][   T30]  ? __pfx_blkdev_open+0x10/0x10
[  908.307899][   T30]  vfs_open+0x82/0x3f0
[  908.312074][   T30]  path_openat+0x208c/0x31a0
[  908.319811][   T30]  ? __pfx_path_openat+0x10/0x10
[  908.325068][   T30]  do_file_open+0x20e/0x430
[  908.330439][   T30]  ? __pfx_do_file_open+0x10/0x10
[  908.336991][   T30]  ? alloc_fd+0x476/0x790
[  908.341772][   T30]  ? do_getname+0x191/0x390
[  908.348898][   T30]  do_sys_openat2+0x10d/0x1e0
[  908.354016][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  908.359980][   T30]  ? do_raw_spin_lock+0x128/0x260
[  908.365114][   T30]  __x64_sys_openat+0x12d/0x210
[  908.370447][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  908.376118][   T30]  do_syscall_64+0x106/0xf80
[  908.380729][   T30]  ? clear_bhb_loop+0x40/0x90
[  908.385958][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  908.392208][   T30] RIP: 0033:0x7f535539c799
[  908.396905][   T30] RSP: 002b:00007f53562c0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  908.408006][   T30] RAX: ffffffffffffffda RBX: 00007f5355615fa0 RCX: 00007f535539c799
[  908.416973][   T30] RDX: 0000000000002003 RSI: 0000200000001200 RDI: ffffffffffffff9c
[  908.428454][   T30] RBP: 00007f5355432c99 R08: 0000000000000000 R09: 0000000000000000
[  908.436833][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  908.449184][   T30] R13: 00007f5355616038 R14: 00007f5355615fa0 R15: 00007fff0192ac18
[  908.459631][   T30]  </TASK>
[  908.527163][   T30] 
[  908.527163][   T30] Showing all locks held in the system:
[  908.535121][   T30] 1 lock held by khungtaskd/30:
[  908.625464][   T30]  #0: ffffffff8e7e7420 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[  908.665456][   T30] 1 lock held by udevd/7109:
[  908.670396][   T30]  #0: ffff8880273af358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0x41a/0xe40
[  908.725480][   T30] 5 locks held by kworker/u8:42/10554:
[  908.731187][   T30]  #0: ffff88801c6ae948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0
[  908.775426][   T30]  #1: ffffc90004977d08 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0
[  908.813829][   T30]  #2: ffffffff905fb9d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xb8/0x920
[  908.845691][   T30]  #3: ffffffff90614228 (rtnl_mutex){+.+.}-{4:4}, at: ops_undo_list+0x7ec/0xab0
[  908.885532][   T30]  #4: ffffffff8e7f3038 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[  908.915507][   T30] 1 lock held by syz.2.2083/14948:
[  908.920698][   T30]  #0: ffff8880273af358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0x41a/0xe40
[  908.970006][   T30] 1 lock held by syz.1.2105/15030:
[  908.975251][   T30]  #0: ffff8880273af358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0x41a/0xe40
[  908.992848][   T30] 3 locks held by kworker/0:3/15238:
[  908.998572][   T30]  #0: ffff88813fe63148 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0
[  909.013067][   T30]  #1: ffffc9000467fd08 (free_ipc_work){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0
[  909.023456][   T30]  #2: ffffffff8e7f3038 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[  909.033782][   T30] 1 lock held by syz-executor/15281:
[  909.039506][   T30]  #0: ffffffff90614228 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x220
[  909.048905][   T30] 1 lock held by syz.4.2533/16980:
[  909.055174][   T30]  #0: ffffffff90614228 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x220
[  909.066822][   T30] 4 locks held by syz.5.2534/16986:
[  909.072298][   T30]  #0: ffff888041d08ec0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0xb0
[  909.084440][   T30]  #1: ffff888041d080c0 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x35c/0x1240
[  909.098984][   T30]  #2: ffffffff908ac5c8 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xbb/0x280
[  909.109896][   T30]  #3: ffff8880588712f8 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x80/0x770
[  909.180088][   T30] 
[  909.182545][   T30] =============================================
[  909.182545][   T30] 
[  909.235806][   T30] NMI backtrace for cpu 0
[  909.235830][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  909.235855][   T30] Tainted: [L]=SOFTLOCKUP
[  909.235862][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  909.235872][   T30] Call Trace:
[  909.235879][   T30]  <TASK>
[  909.235887][   T30]  dump_stack_lvl+0x100/0x190
[  909.235917][   T30]  nmi_cpu_backtrace.cold+0x12d/0x151
[  909.235947][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  909.235973][   T30]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[  909.235997][   T30]  sys_info+0x141/0x190
[  909.236032][   T30]  watchdog+0xd25/0x1050
[  909.236056][   T30]  ? __pfx_watchdog+0x10/0x10
[  909.236074][   T30]  ? __kthread_parkme+0x18c/0x230
[  909.236096][   T30]  ? kthread+0x13a/0x450
[  909.236118][   T30]  ? __pfx_watchdog+0x10/0x10
[  909.236134][   T30]  kthread+0x370/0x450
[  909.236156][   T30]  ? __pfx_kthread+0x10/0x10
[  909.236181][   T30]  ret_from_fork+0x754/0xd80
[  909.236209][   T30]  ? __pfx_ret_from_fork+0x10/0x10
[  909.236237][   T30]  ? __switch_to+0x7b4/0x1120
[  909.236256][   T30]  ? __pfx_kthread+0x10/0x10
[  909.236281][   T30]  ret_from_fork_asm+0x1a/0x30
[  909.236309][   T30]  </TASK>
[  909.627536][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  909.634521][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  909.645397][   T30] Tainted: [L]=SOFTLOCKUP
[  909.649825][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  909.660141][   T30] Call Trace:
[  909.663438][   T30]  <TASK>
[  909.666456][   T30]  dump_stack_lvl+0x100/0x190
[  909.671236][   T30]  vpanic+0x552/0x970
[  909.675220][   T30]  ? __pfx_vpanic+0x10/0x10
[  909.679724][   T30]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[  909.686162][   T30]  panic+0xd1/0xe0
[  909.690007][   T30]  ? __pfx_panic+0x10/0x10
[  909.694544][   T30]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[  909.701082][   T30]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[  909.707866][   T30]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[  909.714315][   T30]  ? watchdog.cold+0x198/0x1ca
[  909.719097][   T30]  ? watchdog+0xd35/0x1050
[  909.723694][   T30]  watchdog.cold+0x1a9/0x1ca
[  909.728553][   T30]  ? __pfx_watchdog+0x10/0x10
[  909.733232][   T30]  ? __kthread_parkme+0x18c/0x230
[  909.738350][   T30]  ? kthread+0x13a/0x450
[  909.742698][   T30]  ? __pfx_watchdog+0x10/0x10
[  909.747483][   T30]  kthread+0x370/0x450
[  909.751578][   T30]  ? __pfx_kthread+0x10/0x10
[  909.756286][   T30]  ret_from_fork+0x754/0xd80
[  909.760920][   T30]  ? __pfx_ret_from_fork+0x10/0x10
[  909.766148][   T30]  ? __switch_to+0x7b4/0x1120
[  909.771044][   T30]  ? __pfx_kthread+0x10/0x10
[  909.775715][   T30]  ret_from_fork_asm+0x1a/0x30
[  909.780602][   T30]  </TASK>
[  909.783698][   T30] Kernel Offset: disabled
[  909.788205][   T30] Rebooting in 86400 seconds..