last executing test programs:

12m24.284501406s ago: executing program 1 (id=547):
mmap$auto(0x0, 0x400006, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
socket(0x2b, 0x1, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/tracing/trace_clock\x00', 0x22282, 0x0)
writev$auto(r0, &(0x7f0000000280)={0x0, 0xc848}, 0x4)
io_uring_setup$auto(0x40000002c55, 0x0)
openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0xc0a82, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007)
r1 = socket(0x11, 0x80003, 0x300)
socket(0x2c, 0x80003, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x2404c800)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x78, 0xffffffffffffffff, 0x300000000000)
r2 = socketcall$auto(0xffe, 0x0)
close_range$auto(r1, 0xa, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0xe0300, 0x0)
ioctl$auto_BTRFS_IOC_SNAP_CREATE_V2(r2, 0x50009417, &(0x7f0000000100)={@inferred, 0x0, 0x0, @unused, @subvolid=0x6000})
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto(0x3, 0x4008ae61, r2)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x800c000, 0x4800c000, 0x80000000}, 0x4)
sysfs$auto(0x2, 0x23, 0x0)
r4 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0)
write$auto(r4, &(0x7f0000008d40)='(\x1d}-)#@\x00', 0x1)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r5 = clone$auto(0xc9, 0x8, 0x0, 0x0, 0x4)
setpriority$auto_PRIO_PGRP(0x1, r5, 0x1)

12m22.319603902s ago: executing program 1 (id=552):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="000306b87000fedbdf250300000004000800040003800c0016"], 0x28}}, 0x4c810)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0d566b3dd008e4edd96502"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000c4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' '], 0x1ac}}, 0x40000)
socket(0x10, 0x2, 0x0)
io_uring_setup$auto(0x5d, &(0x7f0000000080)={0x7fffffff, 0xd, 0x2000, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x2}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x0, 0x76c5, 0x8, 0x100000000}})
socket(0x1, 0x803, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x2)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
connect$auto(0x5, 0x0, 0x9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
prctl$auto_PR_GET_UNALIGN(0x5, 0x29, 0x8000, 0x3, 0x7fff)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
fallocate$auto(r2, 0x0, 0x7, 0x4cbd5d)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
lseek$auto(0x3, 0x2, 0x4)
mmap$auto(0x0, 0x20009, 0xfff, 0xeb1, 0x401, 0x8000)
mmap$auto(0x4, 0x2020009, 0x3, 0x15, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0xc)
openat$auto_force_wakeup_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/bluetooth/hci4/force_wakeup\x00', 0x97253d5c24a95d78, 0x0)
r3 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0)
clone$auto(0x20003b11, 0x8, 0x0, 0x0, 0x7)
r4 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0)
pread64$auto(r4, &(0x7f00000001c0)='\x00', 0xca31, 0x4)
write$auto(r3, 0x0, 0xe)

12m21.179347174s ago: executing program 1 (id=557):
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x5)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x480, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000580)={{@raw=0x7fffffff, 0xf0ee, 0x20009, 0x3, "790eaa00ffff8eac2cdafc1f64010043eeb0b053030001ffff000e000000000100", @raw=0x3}, 0x4, 0x966, 0x3, @raw=0x404, @enumerated={0x8, 0x80000000, "033beddd1805dc0a0f9236c0095295603854aabf973f037f0896b19cbe04c0aa95c57dc0788556977828784abe1a8f695f19b28fd798a2fb818b216638fd3266", 0x48, 0x3}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"})
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)
read$auto(0xffffffffffffffff, 0x0, 0x7f)
mprotect$auto(0x8000, 0x8, 0x8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCR(0xffffffffffffffff, 0x0, 0x40)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x43102, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x2000c840)
madvise$auto(0x110c230000, 0x1, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000000000008000)

12m17.207451172s ago: executing program 1 (id=567):
socket(0x2, 0xa, 0x0)
r0 = socket(0xa25568bba8a81b74, 0x1, 0x203)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000164c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_SCAN(r1, &(0x7f00000165c0)={0x0, 0x0, &(0x7f0000016580)={&(0x7f0000001200)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x2404c000}, 0x8000)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, 0x0, 0x4000)
bind$auto(r0, &(0x7f0000001040)=@sco, 0x5)
connect$auto(0x3, &(0x7f00000000c0)=@hci={0x1f, 0x2}, 0xffff0cd0)
socket(0x2a, 0x1, 0x0)
close_range$auto(0x0, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x8b6, 0xdf, 0xebd, 0xffffffffffffffff, 0x8000)
r2 = mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00\x00', 0x62, 0xfffc, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x1)
mmap$auto(0x0, 0x2000f, 0xe1, 0x20eb1, 0x40000000000a5, 0x8000)
io_setup$auto(0x2, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyxf\x00', 0x20002, 0x0)
write$auto_tty_fops_tty_io(r3, 0x0, 0x0)
mlockall$auto(0x7)
mbind$auto(0xf000, 0x8000000000000001, 0x100000000, 0x0, 0x6, 0x2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000002100), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_DISCONNECT(r4, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)={&(0x7f00000010c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="55003cee6b1e0a50bbca0003000000000000000faa496cce9f11dfe61326536d"], 0x1c}, 0x1, 0x0, 0x0, 0x20044800}, 0x4000)
r6 = pipe$auto(0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000040)=""/4096, 0x1000)
epoll_create$auto(0x1)
epoll_ctl$auto(0xffffffffffffffff, 0xa8c, r2, 0x0)
write$auto(0x1, 0x0, 0x80000000)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff)
mmap$auto(0xffffffffffffffff, 0x4020009, 0xdf, 0xeb1, 0x401, 0x1)

12m15.333716801s ago: executing program 1 (id=570):
utime$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x1d5, 0x5})
symlink$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
getpid()
select$auto(0x5, &(0x7f0000000100)={[0x7, 0x1, 0x0, 0x9, 0x8001, 0x6, 0x8, 0x9, 0x4, 0x4, 0x19dd0d6, 0x387, 0x0, 0x7, 0x3, 0x3]}, &(0x7f0000000180)={[0x5, 0x7, 0x9, 0x8, 0x598, 0x8001, 0x6, 0x8, 0x9, 0x6, 0x1, 0x100, 0x12000000000000, 0x33ef800000000, 0x0, 0x1]}, &(0x7f0000000200)={[0x1, 0x7, 0x508, 0x1ff, 0xffffffff7fffffff, 0xff, 0x8, 0x4, 0x1, 0x38d, 0x5, 0xa, 0x1594cdf3, 0x3, 0x6, 0x600000000]}, &(0x7f0000000280)={0x6, 0x6})
r0 = socket(0x21, 0x80805, 0x3)
sendmsg$auto_NL80211_CMD_DEL_KEY(r0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x64, 0x0, 0x4, 0x70bd29, 0x25dfdbfc, {}, [@NL80211_ATTR_COLOR_CHANGE_COLOR={0x5, 0x130, 0x1}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x1b, 0x13, "e949125b372af28b793b1923b8f1f93a9c47f047cc6e36"}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x2}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'lo\x00'}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x5}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x80}]}, 0x64}, 0x1, 0x0, 0x0, 0x1}, 0x10)
r1 = socket(0x1, 0x2, 0x3)
r2 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/self/ns/cgroup\x00', 0x10001, 0x0)
openat$auto_severities_coverage_fops_severity(0xffffffffffffff9c, &(0x7f0000000440), 0x40, 0x0)
r3 = bpf$auto(0xf, &(0x7f0000000480)=@link_update={<r4=>r0, @new_map_fd=<r5=>r1, 0x247, @old_map_fd=r0}, 0x800)
r6 = open_tree$auto(r3, &(0x7f0000000540)='./file0\x00', 0x400)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000580)={'gre0\x00'})
futimesat$auto(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)={0x7, 0x7})
r7 = syz_genetlink_get_family_id$auto_thermal(&(0x7f0000000680), r0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(r5, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x24, r7, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@THERMAL_GENL_ATTR_CDEV_MAX_STATE={0x8, 0x11, 0x4}, @THERMAL_GENL_ATTR_CPU_CAPABILITY_ID={0x8, 0x15, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x40c0}, 0x4004000)
set_mempolicy$auto(0x3, &(0x7f0000000780)=0x6, 0x9)
syz_clone(0x8000000, &(0x7f00000007c0)="a6d9af34b74b22cce5b6297146600b68379cd6094769661e51bc879cf9f5cb166111c3e75b9e769af46d441462634c1039efcc6a750e2b2aae0bc5e7e7938822b90d7279eeb4bb0ee4576764f8409aa5661f5fbe4dde9beeb41b48d1060444df1b425431133350e4099d5dbaa308f0189a02a29ae0dfae4f6874c4bd36bdbeb74678873fdd50fb1e932e7e8d3f356afb35cffdc796aa6216947c5052c78e3196357bfe193ed17929c0ab1e2c661e98111c63327ce2ee", 0xb6, &(0x7f0000000880), &(0x7f00000008c0), &(0x7f0000000900)="55a74f73d13a9727898266e93779ad83779f317f8dbd06d313046f3531e24daa8cbfe2fa6bb87455fe2cd5757bf3ed938150c229c524f30df86fa113fd86ddc8f7817849f2e146c9f1498e29cfab917cc91b7bf22654bde2188f78f529b86c133c2e7ba74e7b20e6e9657f93")
r8 = waitid$auto_P_ALL(0x0, 0x8000, &(0x7f0000000980)={@_si_pad}, 0x7, &(0x7f0000000a00)={{0x7, 0x5}, {0xfffffffffffffffc, 0x5}, 0x3, 0xe3, 0x8000, 0x8000, 0x6, 0xfffffffffffff801, 0xfc96, 0xdf, 0x1, 0x5, 0x9, 0x5, 0x101, 0x5})
ptrace$auto(0x9, r8, 0x2, 0xa)
ioctl$auto_BTRFS_IOC_START_SYNC(r6, 0x80089418, &(0x7f0000000ac0))
r9 = ioctl$auto_TUNSETTXFILTER(r5, 0x400454d1, &(0x7f0000000b00)=0x8)
r10 = bpf$auto(0x6, &(0x7f0000000b40)=@iter_create={<r11=>r9, 0x6}, 0x2)
renameat$auto(r6, &(0x7f0000000c00)='./file0\x00', r4, &(0x7f0000000c40)='./file0\x00')
r12 = ioctl$auto_TUNGETIFF2(r10, 0x800454d2, &(0x7f0000000c80)=0x2eb)
mmap$auto(0x1000, 0x81, 0xd623, 0x631, r12, 0x100)
r13 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000d00), r11)
sendmsg$auto_TIPC_NL_ADDR_LEGACY_GET(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001240)={&(0x7f0000000d40)={0x4f0, r13, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_NAME_TABLE={0xf9, 0x8, 0x0, 0x1, [@nested={0xbb, 0x146, 0x0, 0x1, [@generic="cdd3ee6d46a76d8ecf45fb58fd24552456d198b57615591d688487907134040d7f8885a9e4c5ce7d171a38f994aec5179f661991ffbb351bf1c87a0a721147a0ab5e49d141c782cdfc23898944ba9f41dd5f8fd70013773a5c8fa49a1979d8d42b67d30bbfb78ffc84e57fdd2f3b6ed11e3b899079380c5c5e07601a4740e81219072e292206ba240497ff64029e74151e00e130607409633e3871dd32364188416a0ae5c4b8570004aa759a086e63838af8f6", @nested={0x4, 0x9b}]}, @generic="536ecc58d90e353975a5241f6331eceacf23b47ef6339bc572fa1aa91c94d990a78db60e58917918c4d293d11850a2fd070d44dd263770b8b9"]}, @TIPC_NLA_BEARER={0x3c, 0x1, 0x0, 0x1, [@nested={0x35, 0x1a, 0x0, 0x1, [@generic="ffa9781ed0472174d0793b8d481aa67bc2ae775e934600493c677bfb44a7e42b41eff4b5cb63ac7567", @typed={0x8, 0x153, 0x0, 0x0, @ipv4=@remote}]}]}, @TIPC_NLA_BEARER={0xbb, 0x1, 0x0, 0x1, [@nested={0x4, 0xf0}, @typed={0x8, 0x70, 0x0, 0x0, @u32=0x4}, @nested={0x8, 0x132, 0x0, 0x1, [@nested={0x4, 0x105}]}, @nested={0x80, 0x6e, 0x0, 0x1, [@nested={0x4, 0x128}, @generic="a01ed411312116fa53633aa2536515c8ec8130931395b4f848ab62e3c4eae324c51eaa51624c72d37091693d1daa98651b2838f931d1e665873d5c0d2a1e43d6e52e45209eaf458bb68288a11d46c307834a0614efd4c38ddae22a8d6757c9caa775bd7f26ea60ac1cc10c8301242bf9dd3e07643c403118"]}, @generic="c2e8a9458f1ed9", @typed={0x13, 0x8, 0x0, 0x0, @str='[(:.,,]#&)#^#\x0e\x00'}, @typed={0x8, 0x79, 0x0, 0x0, @fd=r2}]}, @TIPC_NLA_MON={0x2d4, 0x9, 0x0, 0x1, [@nested={0xc3, 0xcb, 0x0, 0x1, [@nested={0x4, 0x61}, @generic="30d20cb66ef4fed7df1510aae327c3d4d5e5e17cb21d142ce8352b1a7da444b78a636858a9fb6e1bf79aba65d19a95409a312a66283f27dec038aeaf2ed11dd6c9b6d0a99bb3c1a28fd1407bad4242afa5c6ae24d072", @nested={0x4, 0xb}, @typed={0x7, 0x4, 0x0, 0x0, @str='lo\x00'}, @generic="e6883f85cd07f9ce632395974c1b8221a8", @typed={0x4, 0x139, 0x0, 0x0, @binary}, @typed={0x44, 0x60, 0x0, 0x0, @binary="1656769e682d0eec792412a3a11944faffec76743703a820ab9792dc1a91608e99d1449842f8f263b0d018a81ed257974a063f06fcb5ef9c76186f19b11e9ded"}]}, @nested={0x209, 0x11, 0x0, 0x1, [@generic="225961710f853380b7b59cca7d2c81e28db716e59eb768fea10bfc36b92cd6a8214012960e497930a70634e274f59f1718ea7e020374465ec20c47f809b1a5ceca2b03e73781d1d2810806614c597b8cdd07da2ab84e04796a399b5ff52a5b789fbaa507a228e3b00eff21be961d0b9233a7e9c5a9bc3479b4ee7a1ecce167651b64fe37fc0646", @generic="ee981794ba417a9cd439c64fa43146e87f7b70e0a0cbfadcb4679463607add69ae126b5f34f8ecd8b5b8ac6e2aff81799dd3be26459c973c18729aa3fcacb4c1e7dd4c7d4af28a640bc635fa8ec12043715b2a350e8fc3be2c589f8072dd9baa42fe5075890ea3433ce708b5c4808315b8e186970e62196aecf3c4f4ab572dddc58d7ba56e4e562fb49a0e87b8317c3eb28e0e0ab56b49060202e4248d6e8056a53f2fb556ab26a125d0a471fe5fb3f5a1950a714ddd26c2fb7d1d9e81ddea2ecd4c36179871e721940d5709c027da0585e8a6c66a365e1cc06651c7fb5aaa3d4552cee9293357b5ca4febc9ebb885f4e19d70b3", @generic="68d204424e01eb031757d3c8c74f835cb61f6308979c87d4a01e54c156bb9902b34a8467976d7bfbfcb8281724a2435bcc1c3015d6a50f1fa418d3e2ddd7bb384624cde0fa098163becdde1c4f307978b83ecb569a709d3538108f155d64d2310f3112c0045db156b88f8cdd4bde88f7b97e1f26af20bee115af", @typed={0x4, 0xce}, @typed={0x8, 0x8f, 0x0, 0x0, @ipv4=@local}, @nested={0x4, 0x64}]}]}, @TIPC_NLA_NET={0x14, 0x7, 0x0, 0x1, [@nested={0x10, 0x100, 0x0, 0x1, [@generic, @typed={0x8, 0xb8, 0x0, 0x0, @fd=r12}, @nested={0x4, 0x167}]}]}]}, 0x4f0}, 0x1, 0x0, 0x0, 0x4840}, 0x80)
sendmsg$auto_TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000001400)={&(0x7f00000012c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000013c0)={&(0x7f0000001300)={0xa0, 0x0, 0x100, 0x70bd2d, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x8c, 0x6, 0x0, 0x1, [@generic="6d9619ae5f9d56e4d9691d8fda016bae3ce399a0dcdd03d26c10d8b4975cae53729c41fd00d3bf58f987b40f4062aef0ee700a62220bcd891574bd70dedd99bf84b44bde76ef3bd29dd4de9123d02723cf9fde6e0649f7626536a399d534006d7d17d864ab2113838729fe2890271be73d085408a82e3792fdaaab8c9ce6bc1f3e79a5e8", @typed={0x4, 0x156}]}]}, 0xa0}}, 0x4000800)
write$auto_console_fops_tty_io(r10, &(0x7f0000001440)="989fe5c399770c3e652ec9b419256c3e86480409ccf6518f12e457d55d563492f5eb7fe3a12a4bbc06b68f05dd0dc992f1feef77e683ab2846f20be6a3b4d550b8ec993b", 0x44)
socket$nl_generic(0x10, 0x3, 0x10)

12m14.278320082s ago: executing program 1 (id=573):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0)
mmap$auto(0x0, 0x400000000000005, 0xffffffffffffffff, 0x40eb2, r0, 0x300000000000) (async)
mmap$auto(0x0, 0x400000000000005, 0xffffffffffffffff, 0x40eb2, r0, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x21, 0x2, 0x2)
fcntl$auto(0x3, 0x4, 0xa553)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) (async)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r1, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r2, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020) (async)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r1, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r2, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020)
r3 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) (async)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3f, 0x1, 0x0, 0x1, 0x0) (async)
prctl$auto(0x3f, 0x1, 0x0, 0x1, 0x0)
r4 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0)
write$auto_console_fops_tty_io(r4, &(0x7f0000001240), 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
pwrite64$auto(r3, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) (async)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0)
sendmsg$auto_IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010028bd7000fedbdf250c0000001d000280d2f7abf5204c1c01107d33d6d37bc50e476301cfa9375e0781"], 0x34}, 0x1, 0x0, 0x0, 0x20004014}, 0x4014)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x80}, 0x40000)
pwrite64$auto(0xc8, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a) (async)
pwrite64$auto(0xc8, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
pwritev2$auto(r5, &(0x7f0000000180)={&(0x7f0000000140)="000d7fc249aa0ec38c9a6f0be872cac913c1b3aa34ebeaa543222163f3d5272e257e7322ab8444fb236b2771f84812c234a93ccd457d0557ed91a8", 0x5}, 0x6, 0x800, 0x702, 0x8)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)

11m58.23921685s ago: executing program 32 (id=573):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xffffffffffffff14, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x200440c0)
mmap$auto(0x0, 0x400000000000005, 0xffffffffffffffff, 0x40eb2, r0, 0x300000000000) (async)
mmap$auto(0x0, 0x400000000000005, 0xffffffffffffffff, 0x40eb2, r0, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x21, 0x2, 0x2)
fcntl$auto(0x3, 0x4, 0xa553)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9) (async)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x9)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r1, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r2, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020) (async)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r1, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)={0x14, r2, 0xf3e97f51700e57cf, 0x70bd28, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x884}, 0x8020)
r3 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) (async)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3f, 0x1, 0x0, 0x1, 0x0) (async)
prctl$auto(0x3f, 0x1, 0x0, 0x1, 0x0)
r4 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x582, 0x0)
write$auto_console_fops_tty_io(r4, &(0x7f0000001240), 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
pwrite64$auto(r3, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) (async)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0)
sendmsg$auto_IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010028bd7000fedbdf250c0000001d000280d2f7abf5204c1c01107d33d6d37bc50e476301cfa9375e0781"], 0x34}, 0x1, 0x0, 0x0, 0x20004014}, 0x4014)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x80}, 0x40000)
pwrite64$auto(0xc8, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a) (async)
pwrite64$auto(0xc8, &(0x7f0000000040)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\x00\x00\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/231, 0xfdf2, 0x3a)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
pwritev2$auto(r5, &(0x7f0000000180)={&(0x7f0000000140)="000d7fc249aa0ec38c9a6f0be872cac913c1b3aa34ebeaa543222163f3d5272e257e7322ab8444fb236b2771f84812c234a93ccd457d0557ed91a8", 0x5}, 0x6, 0x800, 0x702, 0x8)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)

2m49.65162898s ago: executing program 0 (id=2065):
r0 = socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
prctl$auto(0x1000000003b, 0x7, 0x0, 0x5, 0x7)
getcwd$auto(0x0, 0xffffffffffffffff)
renameat$auto(0x6, 0x0, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b76, 0x2, 0x1)
r1 = pipe2$auto(0x0, 0x80)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x8)
listen$auto(0x3, 0x83)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), r1)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_nodes_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000140), 0xa0100, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC1\x00', 0x42000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
socket(0x2, 0x3, 0x100)
socket(0x29, 0x3, 0x5)
close_range$auto(0x2, r0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/controlC0\x00', 0x880, 0x0)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/pci0000:00/0000:00:03.0/virtio0/device\x00', 0x800, 0x0)
pread64$auto(r2, 0x0, 0x100000000b, 0x1)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
socket(0xa, 0x2, 0x3a)
socket(0x23, 0x80805, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r3)

2m49.099329118s ago: executing program 0 (id=2066):
close_range$auto(0x0, 0xfffffffffffff000, 0x1000)
fanotify_init$auto(0x6a1, 0x2000000000002)
socket(0x26, 0x80805, 0x0)
socket(0x28, 0x1, 0x0)
socket(0xa, 0x7275e7e9e897337d, 0x10000)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x22042, 0x45)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_psample(&(0x7f0000000180), 0xffffffffffffffff)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x14be02, 0x0)
socket(0x11, 0x80003, 0x300)
bpf$auto_BPF_MAP_FREEZE(0x16, &(0x7f0000000080)=@prog_bind_map={r1, r0, 0x9}, 0x1)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x1cb603, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/set_event\x00', 0x48c83, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
unshare$auto(0x40000080)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r5 = socket(0xa, 0x801, 0x84)
fcntl$auto_F_GETFD(r5, 0x1, 0xffffffff)
io_uring_setup$auto(0x4, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS1\x00', 0x101e81, 0x0)

2m47.45534677s ago: executing program 2 (id=2069):
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000)
mmap$auto(0x0, 0x202000d, 0x6, 0x16, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x430740, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b73, r1, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = socketpair$auto(0x1, 0x1, 0xfffffffd, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x16e)
getsockname$auto(0xffffffffffffffff, 0x0, &(0x7f0000000080)=0x8)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
r3 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/devices\x00', 0x0, 0x0)
preadv$auto(r3, &(0x7f0000009180)={0x0, 0x7}, 0x26, 0x800000000080, 0x5)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4e23, @loopback}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
fcntl$auto(r2, 0x80000001, 0xa553)
quotactl_fd$auto(r0, 0x200, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0xfffffffffffffffb, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0xfffffffffffffffd, 0x2000b, 0xa169, 0x16, r2, 0x3)
mq_open$auto(&(0x7f00000001c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00'/133, 0x62, 0x7, 0x0)
close_range$auto(0x2, 0x8, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7)

2m46.752758732s ago: executing program 0 (id=2072):
write$auto(0xffffffffffffffff, &(0x7f0000000280)='/sys/kernel/config/target/dbroot\x005\x8d\xb6\x16b\x1f\x04\xeb\xe3\x9a_\xb4\xa5[\x95\x91\xc1\x01\"\x1d\x8b\xfd\n\xe7?\x83&\xa3\xae\t\x00\x00\x00\xa8yC|\x81+Uv\xaf\x0f\x02\xbc]p\xae!\b\xe7OBb\xd7m#\x16\xb4\xbc-\a\xf6\'\x13\xdf\xda\x97\xbaE\x03\x00\x00\x00\xd1Y$\xe0j\xa8\xcd\x9a\x85P1\xab\xfd\f\xb3q\xe6\xfb&[r\x9b\xcd\xe1R\xe6\xf4\x0fA\xe9\x04\xdd\xf1|\xa3\xa9\xc3\xdc\\f\xed\x91\xfej7\xf2Y\xbd\xb1x\xd4\"\xfc\xafI\x9e}dH\xa4#1\xad\xa3r\xcbo\xaa\t\xd4.H\x9b\xfd&\xed*\xc8kXl\xf1/z\xb8)\x1d)\b\x1f\xd5Q\xf3\xf8\x17cg\x90\xea1\x03H\xc6%\xfa', 0x3) (async)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x0) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
write$auto(r0, 0x0, 0x10007c) (async)
timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6)
timer_settime$auto(0x0, 0x801, &(0x7f0000000000)={{0xa6, 0x7}, {0x0, 0x3}}, 0x0) (async)
mmap$auto(0x0, 0x202000b, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mseal$auto(0x0, 0x7dda, 0x0)
madvise$auto(0x0, 0x2003ec, 0x14) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mbind$auto(0x0, 0x800605, 0x8003, &(0x7f0000000100)=0xfffe, 0x3, 0x3)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
r2 = socket(0xa, 0x801, 0x106)
recvmmsg$auto(r2, 0x0, 0x70000000, 0x9, &(0x7f0000000400)={0x6, 0xbd64})

2m43.742305667s ago: executing program 2 (id=2077):
unshare$auto(0x40000080)
write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, &(0x7f0000000000), 0x0)
mlock$auto(0xfbea, 0x7fffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r0 = landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa0, 0x1, 0x9}, 0x9, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x2000000006, 0x2)
r2 = socket(0x8, 0x4, 0x383)
getsockopt$auto_SO_PASSCRED(r2, 0x8, 0x10, &(0x7f0000000180)='\x00', &(0x7f00000001c0)=0xbf29)
landlock_restrict_self$auto(r0, 0xb)

2m42.088136484s ago: executing program 2 (id=2079):
open(&(0x7f0000000000)='./file0\x00', 0x161302, 0x130) (async)
unlink$auto(&(0x7f0000000380)='./file0\x00')

2m41.744803334s ago: executing program 2 (id=2081):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340), 0xfc2}, 0xffffffffffffffff, &(0x7f0000000440), 0x7, 0xa505}, 0x860}, 0x7, 0x4008)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x1, 0x0)
writev$auto(r1, &(0x7f0000000100)={0x0, 0x407114}, 0x8)
r2 = socket(0xa, 0x801, 0x84)
connect$auto(r2, &(0x7f0000000080)=@generic={0xa, "509235679a5532c63bacddae0710"}, 0x54)
mmap$auto(0x0, 0x20005, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd11/queue/iostats_passthrough\x00', 0x2a001, 0x0)
write$auto(r3, &(0x7f0000000180)='#\x00T\x8e\xf2\xd3U\x1c\vAZ\x84\xd8\x1ds{\xeaS3{\bC1\xff\xb8mw{\x00\x8d\xa2\x04R\xa47\x00\xaa\xe98\x92E&\x93\xe0%\xd4Xx\x10\xc6S<\xc7\xce\xbc8X\xebm\x15\x95I\xf1C\xc6\xf8\xb9\xc7_\x80\xbe', 0x81)
capget$auto(0x0, 0xfffffffffffffffe)
setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x8)
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x20000008000)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/system/cpu/vulnerabilities/spec_rstack_overflow\x00', 0x40, 0x0)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/fail-nth\x00', 0x2a02, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x2, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/rpc/auth.rpcsec.context/channel\x00', 0x101002, 0x0)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/scsi/device_info\x00', 0x40100, 0x0)
pread64$auto(r5, 0x0, 0x10001, 0x830)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7e}, 0x40000000000009)
setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0xe175)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setreuid$auto(0x9, 0x1)
syz_genetlink_get_family_id$auto_ovs_vport(0x0, 0xffffffffffffffff)

2m40.421983548s ago: executing program 2 (id=2083):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x8000000000000000, 0xdb, 0x100eb4, 0xffffffffffffffff, 0x4)
r1 = socketpair$auto(0x1, 0x5, 0x8, 0x0)
mmap$auto(0xfffffffffffffffe, 0x2020009, 0x3, 0x800000000000eb1, r1, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80003, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000)
timer_create$auto(0x2, 0x0, 0x0)
socket(0x29, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x2, 0x80802, 0x0)
r4 = socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r2, 0x8000)
bind$auto(0x3, 0x0, 0x6a)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0)
sendfile$auto(r5, r5, 0x0, 0x2)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
setsockopt$auto(r3, 0x9, 0x2f, 0x0, 0x4)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfffffdef)
acct$auto(&(0x7f0000000140)='/dev/ptmx\x00')
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
sendmsg$auto_NBD_CMD_CONNECT(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYRESOCT, @ANYRES16=r0, @ANYBLOB="040028bd7000fbdbdf25010000000c00020001000000000000000c00080006000000000000000c0007800800368004008d800c00080001010000000000000800010008000000"], 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x800)
timer_settime$auto(0x0, 0x3, &(0x7f00000000c0)={{0x26b, 0x4}, {0x0, 0x83}}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0x5)
r6 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r6, &(0x7f0000000040)='//\xf2\x00', 0x80000000)
mmap$auto(0x6, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x4000000000000)
landlock_restrict_self$auto(r6, 0x1)

2m39.659034173s ago: executing program 0 (id=2084):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2a)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r1, 0x8000)
mprotect$auto(0x1000, 0x401000, 0x4)
mmap$auto(0xfffffffffffffff7, 0x0, 0x5, 0x10, r1, 0x2)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000)
ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x22, 0x800, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/bond0/bonding/slaves\x00', 0x80002, 0x0)
write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, &(0x7f0000000100)="2d6f000000000000000000000000009e0800000000000000a134ecfa4b9f9eff4a7235541cf24ff75b0100400691e018325ca080e1a94adec177fc0f36508a5174a3f0daecf82d4aa129bcecd3415a089c326dd7dd090413b015ee8dc321b67305945ce6e0c61b4479b226d9f4961739e08ab9412703a2087e3234f4a3c5e49025ec1c856dd5b14635e13471964af872ca7bf664dbc8b2652e8ea3bf2c811c4c5d1dd514a187444f62314d944bcdd2361c38fde5190195f3ffd9777d5bc8b4dae2cf296a8e928fbfef54ca6141ece8b9205c1ff050", 0xd5)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x29, 0x2, 0xfffffdb2)
socket(0xa, 0x801, 0x84)
prctl$auto(0x23, 0x4, 0x2008, 0x0, 0x0)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000040), r2)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
setsockopt$auto(r0, 0x3, 0x1000, 0x0, 0x1)
mremap$auto(0x1ff000, 0xff, 0x843, 0x3, 0xfffff000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x26, 0x80805, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x20, 0x0)

2m38.652023452s ago: executing program 0 (id=2085):
unshare$auto(0x40000080)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/dev_mcast\x00', 0x40280, 0x0)
pread64$auto(r0, &(0x7f00000000c0)='veth1\xe7#\x16T+\xee\x03\xc4\x1c\a\xdfa\x8b[,>\xa9\xd2\xef\xb0\xfb{b^\xef\x93\x97\x06H\xcb\xe7g\xea\x9dE\xc0\xdc\x1e\x02`\x00Z\x9d|\x8f\x92\xe09\xe1hBJL\x1e\"F\xc4\xd0z\xac5+I\xfbb\x9d\x97.]\x95H\f&_\x8d1\x83\x90,\x01\x8ab\xe6P\xb8J\xc4\xc3&\xe3\x05\x7fl\x18\xf40\x18x\x88\x86\xe6{\xdb\x1c\xfef\xf1x\xc9vKq\xd4/N&\x1f\xae\xa8\x9b\xb2\xdbZ\xed\x16a}\xa9gj\xc2mt\x87&\xf7Z\xf1u\xf0\x14\x00\x00\x00\x00\x00\x00\x00i\xb9\xc8\xc6V5]\x06/\xb1`\xd9X\xe5\xfc$\a\xf3S\xbb\xe99\xf1PZ\x81\x8f\xfc\xa4w\\\x84B\x03+\xa2\xe1\xb4\x9dv\xe1\xd7\b9\xc3.\x96I\x98\x00\x00\x00\x00\x00', 0x200000000004, 0xfc)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
r1 = socket(0x29, 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x1, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r1, 0x8970, 0x24)
write$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000100)={'\x00', 0x0, 0x6, 0x2, 0x10009b3, 0x9, "0200000002000000997e763f222ce1", '\x00', '\x00', '\x00', ["f5404de9641f000000006041", "70d9a96021a70000800100", "0d00a9827abd9c5c00001600"]})
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x5, 0x3)
r3 = fsopen$auto(0x0, 0x1)
r4 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000200), 0x232141, 0x0)
read$auto(r4, &(0x7f0000000280)='/dev/iommu\x00', 0x9)
fsconfig$auto(r3, 0x6, 0x0, 0x0, 0x0)
r5 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x8a603, 0x0)
ioctl$auto_FS_IOC_SETFLAGS2(r3, 0x40086602, &(0x7f0000000040)=0x100)
sendmmsg$auto(r2, &(0x7f00000014c0)={{&(0x7f0000000380)="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", 0x6, &(0x7f0000001400)={&(0x7f0000001380)="5206ff596526ab6dc1847987d83de9877472d5a46cd3af133ccff887cc820a92c1f98f80679f7d7fa6e8f9b35694fc65617a874426809e1ff0bb08d234c1c1f17ccd7d2de481905679a96fafe440d2b09cec3087dd27d36307cdcf742c492afa788ffa88a3180a8f1064f480dea89036df994262541df6c0b2", 0xbf}, 0x8, &(0x7f0000001440)="abdf1a9ccb0747642009a2104a87537a207ca0ef0c61d128b345f9d6d36ab3a79b5c1fe9bcdb3dcb49fc5f985f031df9df7b0a4600e77c749e03bc19ee2b5e61b83bdab05c17b5df57e09e524c0a92cd6588addc09c48410adfd56933d1dfc7bc0d546458b1e50097fcaa389b7f0cd4f6ec9d9cbb30f989ff79a", 0x0, 0xe}, 0x8001}, 0x0, 0xfffffff9)
r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000)
r7 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000001580), 0x100, 0x0)
ioctl$auto_VFIO_IOMMU_MAP_DMA(r7, 0x3b71, 0x0)
write$auto(r6, &(0x7f0000000340)='%]{\fZ', 0xffffffff)
ioctl$auto(r5, 0x5646, r5)
close_range$auto(0x2, 0x8, 0x0)

2m38.544422747s ago: executing program 2 (id=2087):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/active_links\x00', 0x82, 0x0)
write$auto_debugfs_full_proxy_file_operations_internal(r0, 0x0, 0x20)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/veth0_to_bridge/base_reachable_time\x00', 0x202, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x42001, 0x0)
mmap$auto(0x0, 0x8, 0x62a6, 0x9b72, 0x2, 0x8000)
r2 = socket(0xa, 0x2, 0x73)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r5)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r5, &(0x7f00000050c0)={0x0, 0x5c1e, &(0x7f0000005080)={&(0x7f0000002a80)=ANY=[@ANYBLOB="140062ba", @ANYRES16=r6, @ANYBLOB="010025bd7000fbdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008050)
r7 = getpid()
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000380)={"f2c95643bdbc95a7acd7e1bf0c10177d0de872fa70c8a7b69b88ee50baddec22", 0x4, 0x8, 0x4, 0x101, 0x6, r7})
sendmsg$auto_NFSD_CMD_LISTENER_SET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="010027bd7000fbdbdf2506000000d4e55d54736d092ba5ef397dbe1c913cce5d9a9ad6b7c4f1cd0b"], 0x14}, 0x1, 0x0, 0x0, 0xeda47ee5ad433e65}, 0x20000000)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r8=>0x0})
sendmsg$auto_WG_CMD_SET_DEVICE(r2, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="02002cbd7000fedbdf250100000008000100", @ANYRES32=r8, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB="fbb98ae9372354d44110"], 0x24}, 0x1, 0x0, 0x0, 0x84}, 0x8085)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/net/dummy0/dev_id\x00', 0x208a01, 0x0)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r3, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x80000)
r9 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000600)='/proc/sys/net/ipv4/vs/est_cpulist\x00', 0x2, 0x0)
write$auto(r9, 0x0, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="000827bd7000fddbdf250100000008000200", @ANYRES32=0x0, @ANYBLOB='\b\x00\a\x00\b\x00\x00\x00\b', @ANYBLOB="410001002f70726f632f7379732f6e65742f697076362f6e656967682f76657468305d746f5f6272696467652f626173655f726561636861626c655f74696d650000000008000700080000000800070002000000"], 0x80}, 0x1, 0x0, 0x0, 0x20000000}, 0x400c004)
mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
mmap$auto(0x8, 0x2020009, 0xf5, 0xeb1, r1, 0x7fff)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0x400053, 0x9)

2m36.657069057s ago: executing program 0 (id=2089):
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory3/valid_zones\x00', 0x40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000340)=""/156, 0x9c)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/swradio11\x00', 0x800000, 0x0)
r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(r2, 0x0, 0x400018)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x12000000000c004)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x443001f86cb35905, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, r1, 0x8000)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
io_uring_setup$auto(0x401, 0x0)
r3 = bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f0000000080)=@enable_stats={0x7}, 0x6)
mlockall$auto(0x7)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0)
ioctl$auto_UI_DEV_CREATE(r3, 0x5501, 0x0)
ioctl$auto_KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, 0x0)
r5 = socket(0x1d, 0x3, 0x1)
r6 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r7=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r7}, 0x6a)
sendmsg$auto_NFC_CMD_FW_DOWNLOAD(r5, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={0x0, 0x288}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
mmap$auto(0x0, 0x7, 0xdf, 0x19, 0x401, 0xa)

2m29.738873257s ago: executing program 4 (id=2097):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x1d, 0x1, 0x7)
getpeername$auto(0x3, 0x0, 0x0)
unshare$auto(0x40000080)
ioctl$auto_RNDADDENTROPY2(0xffffffffffffffff, 0x40085203, &(0x7f0000000440)=[0xfff, 0xedc0])
sendmmsg$auto(r0, 0x0, 0x13, 0x7000002)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/security/tomoyo/audit\x00', 0x43f6fd038d2fa33d, 0x0)
pread64$auto(r1, 0x0, 0xe5e, 0x1ffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80040, 0x4c, 0x5}, 0x18)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2b, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xebd, 0xfffffffffffffffa, 0x8000)
mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x1000000000000, 0x3, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x40004)
io_uring_setup$auto(0x6, 0x0)
r2 = socket(0x10, 0x2, 0xf)
bpf$auto(0x0, &(0x7f0000000680)=@bpf_attr_4={0x1e, r2, 0x24000000, r2}, 0x210)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto(r3, 0x5381, 0xffffffffffffffff)
syz_clone3(0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/card2/id\x00', 0x200, 0x0)

2m27.015462937s ago: executing program 4 (id=2100):
mmap$auto(0x1, 0xf7, 0xdf, 0x40eb1, 0xffffffffffffffff, 0x0)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x189002, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0)
mmap$auto(0x10001, 0xe983, 0xdf, 0xebb, r0, 0x100000000007ffd)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x101040, 0x0)
read$auto_rng_chrdev_ops_core(r1, &(0x7f0000000040)=""/4096, 0xfffffe82)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20004020009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/hid_steam/parameters/lizard_mode\x00', 0xc0481, 0x0)
r3 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x42001, 0x0)
ioctl$auto(r3, 0x80045300, 0x38)
r4 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000b40), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SETHMAC(r2, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000340)=ANY=[@ANYRES32=r2, @ANYRESOCT=0x0, @ANYBLOB="1ed7504904c59df2465e774c34316d44c46efb883c56ebae51f17617795dd841eeee37d8e053918c3dbe3dc4d6dfc55c502308a45b3c6519bdc52004664c5f302c98357c767a0fbe347f09be4a8901c38ef8af5c11c4f1820462b55875bb9d07a0f046fa40c75c303aa085ab0c27a783f6d916f65376dbc9af089d128b1f81d7c76ee462c360c48cca18be507730b43ee6f79dbd7b73a22bbce5460128f1832f08e7141e3604adb59a73c02a7951bb", @ANYRES64=r4, @ANYRESOCT=r2, @ANYRES64=r4], 0x2c}, 0x1, 0x0, 0x0, 0x44}, 0x84)
sendmsg$auto_SEG6_CMD_DUMPHMAC(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4048010}, 0x4008004)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r6 = getpid()
process_vm_readv$auto(r6, 0x0, 0x1, &(0x7f0000000040)={&(0x7f0000000080), 0xffffffff}, 0x4, 0x0)
process_vm_readv$auto(r6, 0x0, 0x8001, 0x0, 0x7ff, 0x9)
prctl$auto(0xc1, 0x1, r6, 0x8, 0x7)
openat$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(0xffffffffffffff9c, &(0x7f0000003400)='/sys/kernel/debug/netdevsim/netdevsim2/ports/2/udp_ports_reset\x00', 0x80000, 0x0)
write$auto(r3, &(0x7f00000032c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\a\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\x01\x04\x00\x00\x00\x00\x00\x00u\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\x00)\xbbF\x82\r\xcd\x15\x95p\x8e\xb6\xb1#\x9c_O\f\xee8S3\xff\xfb}\t\x0e\x87\xef\xfd\x17\xc4\x01\n\x19\f4\x98\xc5o\xe3\x8c{\x9b\xec\xa8\xe2\x1b\xc3>\xc9t+#\xdb\vZ\x7fvl\xc9\xe9,\xe0\x92\x9b\xba\x9d\x8f\x97\xb2Y\x17\\8\xc5}M\xc2:.L\xbe\x8bo\xee5D\xd0\xb6}\x9bH/\x92\xed\xa5\xeec\x18\x03\xd8\xe2`\xc3wK\x12\xaeV\x00\x00\x00\x00\x00\x00\x00', 0x8100000a3d6)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001080), r5)
sendmsg$auto_NL80211_CMD_TDLS_MGMT(r2, &(0x7f0000003280)={&(0x7f0000003440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000003240)={&(0x7f0000001040)=ANY=[], 0x2180}, 0x1, 0x0, 0x0, 0x24000005}, 0x4)

2m25.213757521s ago: executing program 4 (id=2103):
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8a401, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x90}, 0x20000081)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x4)
socket(0x10, 0x3, 0x6)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x400007ff, 0x7, 0x863, 0x0, 0x0, 0x0, 0x49, 0x200, 0x0, 0x40000407, 0x2, 0xfffffffffffffffe, 0x2, 0x19, 0x20000000011, 0x72a})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCR(0xffffffffffffffff, 0x0, 0x40)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x43102, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x2000c840)
madvise$auto(0x110c230000, 0x1, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000000000008000)
io_setup$auto(0x7ffe, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)
unshare$auto(0x40000080)
unshare$auto(0x9)
writev$auto(0x3, 0x0, 0x8)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000)
sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)

2m23.121973198s ago: executing program 33 (id=2087):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/netdev:wlan0/active_links\x00', 0x82, 0x0)
write$auto_debugfs_full_proxy_file_operations_internal(r0, 0x0, 0x20)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/veth0_to_bridge/base_reachable_time\x00', 0x202, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0x42001, 0x0)
mmap$auto(0x0, 0x8, 0x62a6, 0x9b72, 0x2, 0x8000)
r2 = socket(0xa, 0x2, 0x73)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(0x0, r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r5)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r5, &(0x7f00000050c0)={0x0, 0x5c1e, &(0x7f0000005080)={&(0x7f0000002a80)=ANY=[@ANYBLOB="140062ba", @ANYRES16=r6, @ANYBLOB="010025bd7000fbdbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008050)
r7 = getpid()
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000380)={"f2c95643bdbc95a7acd7e1bf0c10177d0de872fa70c8a7b69b88ee50baddec22", 0x4, 0x8, 0x4, 0x101, 0x6, r7})
sendmsg$auto_NFSD_CMD_LISTENER_SET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="010027bd7000fbdbdf2506000000d4e55d54736d092ba5ef397dbe1c913cce5d9a9ad6b7c4f1cd0b"], 0x14}, 0x1, 0x0, 0x0, 0xeda47ee5ad433e65}, 0x20000000)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r8=>0x0})
sendmsg$auto_WG_CMD_SET_DEVICE(r2, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="02002cbd7000fedbdf250100000008000100", @ANYRES32=r8, @ANYBLOB="08000100", @ANYRES32=r8, @ANYBLOB="fbb98ae9372354d44110"], 0x24}, 0x1, 0x0, 0x0, 0x84}, 0x8085)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/net/dummy0/dev_id\x00', 0x208a01, 0x0)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r3, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x80000)
r9 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000600)='/proc/sys/net/ipv4/vs/est_cpulist\x00', 0x2, 0x0)
write$auto(r9, 0x0, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="80000000", @ANYRES16=0x0, @ANYBLOB="000827bd7000fddbdf250100000008000200", @ANYRES32=0x0, @ANYBLOB='\b\x00\a\x00\b\x00\x00\x00\b', @ANYBLOB="410001002f70726f632f7379732f6e65742f697076362f6e656967682f76657468305d746f5f6272696467652f626173655f726561636861626c655f74696d650000000008000700080000000800070002000000"], 0x80}, 0x1, 0x0, 0x0, 0x20000000}, 0x400c004)
mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
mmap$auto(0x8, 0x2020009, 0xf5, 0xeb1, r1, 0x7fff)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise$auto(0x0, 0x400053, 0x9)

2m21.39574204s ago: executing program 34 (id=2089):
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory3/valid_zones\x00', 0x40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000340)=""/156, 0x9c)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/swradio11\x00', 0x800000, 0x0)
r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(r2, 0x0, 0x400018)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x12000000000c004)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x443001f86cb35905, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
set_mempolicy$auto(0x3, &(0x7f0000000000)=0x7, 0x9)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, r1, 0x8000)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
io_uring_setup$auto(0x401, 0x0)
r3 = bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f0000000080)=@enable_stats={0x7}, 0x6)
mlockall$auto(0x7)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0)
ioctl$auto_UI_DEV_CREATE(r3, 0x5501, 0x0)
ioctl$auto_KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, 0x0)
r5 = socket(0x1d, 0x3, 0x1)
r6 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r7=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r7}, 0x6a)
sendmsg$auto_NFC_CMD_FW_DOWNLOAD(r5, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={0x0, 0x288}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
mmap$auto(0x0, 0x7, 0xdf, 0x19, 0x401, 0xa)

2m20.708529604s ago: executing program 4 (id=2108):
socket(0x2, 0x5, 0x0)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x7, @remote}, 0xe482)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0)
ioctl$auto_USB_RAW_IOCTL_EVENT_FETCH(r0, 0x80085502, &(0x7f0000000240)=ANY=[@ANYBLOB="e7fdff8d44916c5dbbdd2310000056b103cfe0ed7b3b700442fbf598d28ed0553238b0023f51cd8a9d2df44ce666337d2e04000000000000b7a00ad9bc0046b3eb2f939f3d84dca30cd7b0b6b3ab0bff9bc793b415ef83f68700823d2d2e51b8e19744697dd98dff315a6a6b7794818c02ddb41abb348a4843fc4bccd111ac90afceb162fdee00c84be8872b0ff3f965180d736e81c95f7ea41ebf601f191cf3196494dba303676b4a98a0e446c89b2a566c72ec4b92681653ea44f41e8b7d67e949bff83502a37ade8248d052da08d44ee317c1f3a2ef0b1dfca63a5600561f251f1e06a6e136719549"])
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = pidfd_open$auto(0x1, 0x0)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x14000, 0x0)
lseek$auto(0x3, 0x2, 0x4)
mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
write$auto(r1, &(0x7f0000000100)='/dev/raw-gadget\x00', 0xa)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
dup2$auto(r2, r2)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000140)=""/190, 0xbe)
madvise$auto(0x2, 0x7fffffffffffffff, 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80302, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socketpair$auto(0x2, 0x7, 0x2, &(0x7f0000000200)=0xcd51)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iostats\x00', 0x80302, 0x0)
sendfile$auto(r3, r3, 0x0, 0x2)
faccessat2$auto(0x1, &(0x7f0000000040)='\x00', 0x4, 0x1200)
arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x3)

2m18.090464555s ago: executing program 4 (id=2110):
mmap$auto(0x0, 0x4020005, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioprio_set$auto(0x3, 0xee01, 0x8)
r0 = openat$auto_tracing_saved_cmdlines_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/saved_cmdlines\x00', 0x143382, 0x0)
read$auto(0x3, 0x0, 0x7fffffff)
shmctl$auto_SHM_INFO(0x0, 0xe, &(0x7f0000001240)={{0xfff, 0xffffffffffffffff, 0xee01, 0xc6, 0xa, 0x7, 0x7}, 0x5, 0xad61, 0x219c, 0x2, @raw=0x4, @raw=0x5, 0x644, 0x0, &(0x7f00000001c0)="93dd9832761d7efb958d40cf71852aa9f850dd4ee013533facda51cc23668897ca66e0805fc9b3a5e003a943b3347c31cca6b8dc0899b486c12b21f4d978784a212e7910651b5825bc765b9fae99f38b96c0dbc29a24845941", &(0x7f0000000240)="bc9ed678fe332e6255d647957efcd3c0b44853ceb7bc9404e742ff5e87c3b42e7604d2f8f211e798a125d93cfa6698cf27b2db6c29a9e2f3cdb99cf0844a36ed5d61ce5f5c3d4971f227467a02bcfe293f25571ab2a3296a4056be7f9d5451a5a4bcf40fd73193e90131d0330418851b3017b06c4bb830d67a06d6742913d067ec674ef3a55250c761efaf6ed07f8a464bef37d811cbce0b039c39123067318203cdb91bd2aed9c279f936e583101a95955ca917a048cd4d614267f8aa7540ff26e803b2d04b34677566bd7f3a7f814eb3a4ed44876ea25bb1c0f0a82444160d283ec4edb54a5cfd19b108ddc9502d60cea1640ec1ee4dd1e47481450017c3b8c200a891becaaa0d52c319507daf37fb15193662de346a0511ee1eed907ec21cc424bd6050dbc7b77ef049622bf15afe8126cda7edf9d3ed5b4080dd9227e5ce929ab2b6b4f181e307e4df11edd685fd9c252163b497ca2f96417329488d0f6ddb5c4d212affdccd192619384175d1c7b694abc131212c076f0f3bcee97efd4e12b39968214628dda981fd781027f88c85dbff27b4232001a2bd7b8845a88ddc5714baacdab639e1650414ed5485f68edc95f10f2b8165435e16306977da49f5335b9194422ee578bd6a5e3b42a366682f3f3993ee5bf336385f5f55679c4652c2aace2b679a8fff7e00bb06d3d9872e756fdbfcf380c361da71dc122657caa6f5932abda29e86804801f37cdb8e57922a482a528a0ea8f8ed651759fc5701031f7ba1ce2c4414ea64daa1c4cd932705d0f9a0ef2cf694a4c018a5d02356124fd8fa9f18c91b73e3537799a6990982857d2b8e3d4d74cc447e2c6839536b2c419b729d2096e3f91f06ded6f2261c4ec4b52e2b04ddbf03c30f1885a1fbf5a348cb898d9dd319bace2c494b3634814e2401ee20c3110439f597457182c2471555ee543b5b65fe951229e8377d4544d2cd01af2e6c5004217a382484b141a52a9a4bd1a5c840bf6a66752e493582fdf67a0de4c8dc4d7304607f94df884e120b52cf7d33dee53f235425e8cd30d4f2e39142f983dff735a6939bb712eb6e045b8afc2f8baeaacc433c5a11575f2241ed5f029eabcb056fece7c3b0fa9df21c8d7e7a2efbfb9dbf761e5eabe451d87ea6b4a80cc0293dcfa0c6ab5583c609e4a14f4494e6563989f4ae56c8f56e2050b7e1f13c08600617ed5758d4bc99bd5dc2458625bd4c08f7821f08987ce6e98a66425bd1d57c5401e80a0d24cb6771e83812e8738f7be0a57682b4597ab09256f4256f99317a97a707160eac26de5e1a50e0bfb3a4d4b493e841da77575f584744b17a0fb8eff32f2d2b549c12800b54b1ad294fd1586b2cd13aa1525cc627136ce12ff792d7ea6dc6d976b1fd32b37f4c082da74ce9227650aee17c0cefaf469f912ecfa5e8020541c512a17013d961ce3ba6fca55e9631170b98b0a4677164933720ed3eb72f1010a1528a7acf3a6b3720bb9333edf9ebe8aa5121eb3d415984bcbdb4c1e95791f5af7dbe004cee1fd0685f773828c3cdce1ec6665c569f901217bf2090d9d6fceace2032db1cc6ebf6ac751bfaaaff8d9736594b51982714efec8db177485bb1f070841ff1783eeb8e86bdfd9f02c069eb4de5afe899fb99ee090b8962bb717449369a5a2a9d07a5a6cc1f0eb1fb960a8a5a8da852c0e8e19fcd0b4df1f24881d7666d42b0aaca8489df24182f4ed3ec4f340a2a8f389c591867dc5454ae186ff0e15326f357bbcb5c376bbd9466f0a43bf323c2e731b401a34df74d6a5ded5b6be8f353fecf36c59c8de5692b0ae697186aae491eb557ab2fd0ead468f662b7ab502f1d61e50c9bffde08c5b57f76997685d09cbffccc31e64404846f8161fe4c673e31a93a4f4cab5439f193a7297ae61b974beed43ed1b11361e2572f5e69606ad5d952ca5bfb1b0e464ace3ba61a3845e07792fd5db44bf94b20e7001aec755ae653e944b4b4926a1b88ad1508d1cf4f1b6971caf7e59f36927e26ddd1602f97a36876f17d9ce8339df2df9b456523a0ff90c94beebe879709286fb7128461e32f49410f1daa2626f3c99afae9cba0dffee9299a3431c7e4b1f994834fbbf65d58d5920121d56b01da6ccf35548ef1a43bced686aeb0f0cbd09d372c0df7ba4a9f4aa0464b05e263019c211ef1d59c465f4ab356177b76179d9d581e3914c36d07c0c92a0a09595820bc2dd42234f24ca28ce388f9797d2fd69b9c9fec3d73ed36cdcf737b183913eb506d92f7b1ac2ee44b205981efddd923ded996ad6a40f8bd075fc7360d0c570f0740ed607575f81a7940c32fee323bfb8501fd4bb6bb8bd05a47cd6995d4078c7f0ee0ec0396c77cd2902a9d3871501fdc7204a6fe804d0e1cb55fe9c84dfeadcaa6eaaaa07ff6feffbe16818fb4a8532eccb6982f3443d3dbac8f36e46bfcb204d36f45aababa2e80e169240d97b4d76a11f6abda3b25fff0626885c2b784e151fb55ed3b09dc0c416f8d9a10de778a3d2741aa9ec58bfe656cde2c547d10da8298ce36985248f2f20b8827ebd3eeb0f28e6a9fc83c0a8810f57ddba05b9b2fccec2c0a8948cd9897f96684227035ad746a45431316467395e49f5355b0e8ec6a028d44283196af1efe84751f65316056ae5bed639aa081e31b571e1d7dc3424ee9c02dc6d4ee41dbbdb77365def72b78fda3a50cc5a5167c5f4d5f2fcd3b01b1047896c23b8b28905713fe4fdad88bfc016fdf386bd5f8260ce077498cab41b3849b7e8c191898fdf0f4309adbafe104fa05530a0a54d050c919119c9efbf2216972d0d07514bb65d80a4382deb71c9905ee5cba04a00e17c5961eb678b23d84801ac77a2a578e70ba594d25f94a03082ecdb61dd3ac448332ec2a83447c696ad86ca6cd3ec51bc7b15a9cb3eb86384a3aab52987b8192340228334d11c7b74bed783640a73bf4b2aa2aafa2850c95c4503ce801e6a1a32a981b3bf0234ba17da9bfd434b752144a1c924f4420818524970f85ff72d1e150644a8a578266cd82749f318aa9f9eb353a32d295341a619b6d23d4f033dbaf0b06c7c0ccbefeb3594c20d897596831f90558c6dc5ea3d79d51f1b609af7259f703d22c3863c629f98ef8218c664f21197f8ed05522b08a1b493206bf84d61ff8c427023df1eab722f25b7ac90325cd1114f90844d89a80f41fb4288c5c456e0232429f18896b372b7af1f1f28181739f4262ce8f06978faf89261848c7387344d0a3219b23a714aaf2d86d3513d1ab0299b47cde2b98aa3520719cdb1011a0c757e83f08b09e8b0bba7f550c53aa02739d2636ca02e931c94198527165a62b561a30ec6627665e901a3d78f1ddf3e212b7322c1967ae88c9bf535d9ac0b5b7802848e7cc54fb041ef2cea8d74764c3ecd98b365d4533595bed14686d95320ae0b316d22d3064e74ec877ac1dbecc72a9718aea31026c721e9e9033eeddccfe159959ad77c54b0ed92b9619e7a05e90577b79f29269c41cd8557c5cbb2ce8333c709eab4e1865ff73db76f9daadc6b2ddaf388ce0341d63b5c59767406e19a22c5e7328d67fd94c846cb576641884d5c515309279f11567389a5a2a5cc879a78080baab5b3a484b144b08b2326160356338013efd4a05ab0faf46e37889e422751cab501bd91dba13a8f14111efcb7779d29b6a1dbfcd3890f916395aad62c1c70abcddae7d3f6eb1e309137cc8f417e5b06755e6b12b6f8d5ed05a4b9d217615fee1b57195d118613665209c5fdb7d69dac5fcd3538d453ec944662359d999c6150cd94824fd7e46d323550fa889e4b40a62b8583ac629378bb07892bf61f60bc5ad7b0e7ca4e91cdd73c5eb40f1161aa8e99dcdf94b6fa6e8b1958bb882aff5a205d175f836479178860705b4181d6d6e4334e0687a016c96b0672db65cd2b9a470044bdfe876b0d69d2ec0a99f13a7852450877956779d7522bf26d6717bd9984168f53f1b0ef630bbe690acea92270e510fce0cc463944651c737088159fa8a3b3e30e801279d6a2a0fe79d57f5366f24ef28b55911d9c8d07d9e575ecda9bb72b3f488f7f8b382eb09bbdb2001042ad84ce3460ceff7d8fb52dab53b39e789d202798dc5d56166cb066e1c492410c97bc0e0093f0739d2d24131ad00a3d45119cdac72df99ffbd1f50bacd5b4d36ed4bd7dc3156c7c0df2695bbb6d3e0ffe5f7c9e0be9956437503a15685a173ad3df2c6e2bc056da8703b0d85a1f8723f628fb5f2c9fd6a61749089ddf07c6e8880d86316a8529235a6e0f39c37bef8d0834171644550c8c9e342ce25f9290644448fa106b7520615400a8c0c8da7b5ad00329c16d2882fa2348e09608467c9f7538bd3d2b95cf463738c761379df2603c5ba9f27340b383f0a402c74fdbb5e0832171b734d4bb7ed35d16b7d013f8454aa97fa6f0101de7e8e3e3595222c24e3da4eeca509f02f930eac48d13582a082bed534872b91203b008a2db33bea9f72e8c8d04d7e39d585a74a438f523ebe41bb199699fec353af2a14e430fc2479756fbb378d79aa6f9315f779fe1c8f2257f3caf9541ba008aac9f2a25eb0cdb991673ade7a0c2d26b514cf4f3f77fcb6728ff2635cb4d567a30e91d76d601e614c045e63097f0e3b34a6dbb4e2b7894283945a20881427996558fbf09c261c7303333c99ac2a6f8753795cd58d86ef34cbf1bf9d1eaaa16ee48805f5ccfea4c15d969e009562422e1854c91ac2e2335c6bfd2400cc0900ed6ce97a922b2b964d9547f99b08a23577ceef726de3d1d07503783762fa5bc4fb8d8b6392141d15e70978fa1f74c6789f53a04e640c069e06bd2443432cc017e7604ef53cf4bbc8a9afd3cda4414c8e25678dc7c2363494e52aad27f8b84fa6d73fb0b631e1e747752e65ab424cf3109c1b80a7b33b8fcace35e823afbf84715ef17e1eb3541f1e944d303fad40610b98e0a61bcd5899e9b5436469b36b40e28f8c801a3d6c889c0c7fed50d36d9bbb0e3a7650c2856d04f2b266d20bd5e8180ef953f795813d05c030ce6c3652dedbe8788beeb6a770061c58fbfc1d584581b3fc571bb25b2ffa9d72bdb8a25a23184ade1f968a96c570e324ed4c90c992cca4a2a9dda70b3e51bcdd43613ba91f9b35934ddd17caea2467d0d7b85ee0586aff5b11bd97670cd814b9921a3e1a4c62d93c97177020bbd2c2e73b1511f1fdf61bd3e2aaaee973cf965948f815fd88b47b5aedc508b6d4e2cb6f6972f5d84c84cd30a7ba3cbff2929d1741c99b450306930c111b3432216b9b1fc5601a444ed18e2b5ab53dd568b3ada883d4c8b8b0b4046c9dc6f0e8d7bfa0522365c6d9d18147986bd4ce0942395b9e0b34b732a4156736d7c4aa90ab47ddc89984e9d230ef6a384e5b80bfaae77a626e9e5f848058ac24f1ccf5b111605cb4fac8c052f2e786b16b2e4c677529988393d97629866b36c7cca65a2a57e56c2d65211456308bbc5870f704ebb426bde88350550fd8ce004a7d5dbf5e9481d4503764e94fd1b9018e8f3e793de65e289a0c7164894fe0be78b8e74b1e5741a306793038e9bbbb4762418ce46ec47d2f58853caa73332b0e6f9dfd6c911dcf3b937e48c51efe762165d47ff1344d21781368047a980ec453bda2159d0e906895154fa4c3f709ff931e70a32f51470875141ae4d5e0bdee252f7abfc143746e70d2ecc70089d097145361dabbacb1816f7320c7a61268f7e9d45f2d0b029d276308c603ec06d87b5418ed08a591d720754373dcd0dde2cd0aebe001960f89781c62861d5ee4f6de"})
r1 = setfsuid$auto(0xee00)
shmctl$auto_IPC_RMID(0x6, 0x0, &(0x7f0000002900)={{0x3, r1, 0xee00, 0x9, 0x1f, 0x6, 0x1}, 0x8000004, 0x4, 0x7, 0x2, @raw=0xfffffff8, @raw=0x5, 0x80, 0x0, 0x0, &(0x7f0000002800)="98184e760a0f452eb11ea06b99ff21207e3b8c3b220044babfe4265728b83289334ad0fe741aa5ca55a08562caac2a4250362d60e4fa7c638f6df5ce567f74be13b83c270559872f67c6a2b22bf7734c63c04d9ee81bc615e00b15ccc53a5b6ed9157d27379564431ff2b3f0b4fda06486a9c5a82249d257871870a1070a15c7beaadf0dc4213674015e96a424cd97bb46607a111c53e42e0b"})
r2 = getegid()
fsconfig$auto(0xffffffffffffffff, 0x3, 0x0, 0x0, r2)
fsconfig$auto(r0, 0x0, &(0x7f0000000000)='$\x00', &(0x7f0000000040)="453601c81a5d86c9c91e827a6fb95101dc6059ba2ec2de36a543845e992084932a86f9c3dffd483bc3c484b8b33764378c615594115dbb7a4778c5c3644a2432e81e7760e6a5971c88be47472e3076ec197af1808d7a62ccaedf376e5d5e2cadc24a389bae057d43a3cc192ff58c15d7ec8477613101184f85207563cea8cb062f5475a4173077067e89c54a2c752033f340d6aee3785c5326ca4bf8134f941457265f8296bb0b0407727efc76d440d6059e093dbfe73a405cddab9da9d497b94898531392be35fcb23a71321bcef8f0d5aa4dff8cfe4de9709183b54f78", r2)

2m17.289349455s ago: executing program 4 (id=2112):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
ppoll$auto(0x0, 0x3, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NETDEV_CMD_DEV_GET(r0, 0x0, 0x28044004)
getsockopt$auto_SO_RXQ_OVFL(r0, 0x8, 0x28, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x300c00, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
socket(0xf, 0x3, 0x2)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
umount2$auto(&(0x7f0000000000)='.\x00', 0x4)
umount2$auto(&(0x7f0000000040)='.\x00', 0x0)
r2 = fcntl$auto_F_GETOWN(r1, 0x9, 0x0)
tkill$auto(r2, 0x0)
ioctl$auto_TIOCGDEV2(r1, 0x80045432, &(0x7f0000000040)=0xddc)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x11, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r3 = prctl$auto(0x4, 0xfffffffffffffffb, 0x0, 0x1, 0x1ffffffffffd)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r3, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x4a7)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)

2m2.668475786s ago: executing program 5 (id=2125):
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
ioctl$auto_BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f0000000140)={@raw, 0x2, 0x0, 0x929, 0xe5c1, 0x7cd, "abfd2e69df26f540a1d748ceff20c3ed69a359d46ed201e13aea69af"})
pwrite64$auto(0xc8, 0x0, 0xfdef, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/pci0000:00/0000:00:03.0/resource1\x00', 0x0, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
openat$auto_dmaengine_summary_fops_(0xffffffffffffff9c, 0x0, 0x422000, 0x0)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/013/001\x00', 0xa901, 0x0)
kexec_load$auto(0x8134a6c, 0x1, 0x0, 0xff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x7ffffffe)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
sysfs$auto(0x2, 0xe, 0x0)
sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(0xffffffffffffffff, 0x0, 0x20000004)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$auto(r0, 0x40f, 0x4)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x1040146f2c, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r2 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x3, &(0x7f0000000000)='Q**\x00', &(0x7f0000000040), 0x0)
ioctl$auto_BCH_IOCTL_DEV_USAGE_V2(r2, 0xc020bc12, &(0x7f00000001c0)={0x4, 0x7, 0x67, 0xf3, '\x00', 0x0, 0x101, [{0x8, 0x4, 0x6}, {0x3, 0x97d3, 0x8}, {0x0, 0x4, 0x7fffffffffffffff}, {0x9b8, 0x4, 0x1}, {0x5, 0xffffffffffffff00}, {0x3, 0x4, 0x7}, {0x1, 0x7, 0xda}, {0xd9c, 0x5, 0x2}]})

2m2.206128732s ago: executing program 35 (id=2112):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
ppoll$auto(0x0, 0x3, 0x0, 0x0, 0x8)
mmap$auto(0x0, 0x7, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NETDEV_CMD_DEV_GET(r0, 0x0, 0x28044004)
getsockopt$auto_SO_RXQ_OVFL(r0, 0x8, 0x28, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x300c00, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
socket(0xf, 0x3, 0x2)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
umount2$auto(&(0x7f0000000000)='.\x00', 0x4)
umount2$auto(&(0x7f0000000040)='.\x00', 0x0)
r2 = fcntl$auto_F_GETOWN(r1, 0x9, 0x0)
tkill$auto(r2, 0x0)
ioctl$auto_TIOCGDEV2(r1, 0x80045432, &(0x7f0000000040)=0xddc)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x11, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r3 = prctl$auto(0x4, 0xfffffffffffffffb, 0x0, 0x1, 0x1ffffffffffd)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, r3, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x4a7)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)

2m1.402164226s ago: executing program 5 (id=2127):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth1_to_batadv\x00'})
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
getsockopt$auto(0x4, 0x6, 0x1b, 0xfffffffffffffffc, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x123040, 0x1d4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
close$auto(0xffffffffffffffff)
io_uring_register$auto(0xffffffffffffffff, 0x8, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x2)
syz_clone(0x80000980, 0x0, 0x0, 0x0, 0x0, 0x0)
io_submit$auto(0x7, 0x7, &(0x7f0000000040)=&(0x7f0000000000)={0x7, 0x839a, 0x0, 0x2, 0xe7, 0xffffffffffffffff, 0x0, 0x3, 0x5})
bpf$auto(0x0, &(0x7f0000000000)=@raw_tracepoint={0x1a, 0xffffffffffffffff, 0x0, 0x4}, 0x7f)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(0x0, 0x0, 0x408)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xf7ffffffffffffff, 0x4, 0x2b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tcp_metrics(0x0, r1)
sendmsg$auto_TCP_METRICS_CMD_DEL(r1, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000180)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB], 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x40)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb1\x00', 0x4000, 0x0)
bpf$auto(0xfffffffd, 0x0, 0x6f4)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x10000ffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lsm_get_self_attr$auto(0x68, 0x0, &(0x7f0000002440)=0x8, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)

1m56.268394839s ago: executing program 5 (id=2135):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
write$auto(r0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1ff)
read$auto(0x3, 0x0, 0x7fffffff)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_BLKALIGNOFF(0xffffffffffffffff, 0x127a, 0x0)
write$auto(0x1, 0x0, 0x80000000)
symlink$auto(0x0, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dri/card1\x00', 0x129e01, 0x0)
ioctl$auto(r1, 0x9210640c, 0xffffffffffffffff)
r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, 0x0, 0xc2000, 0x0)
ioctl$auto_FBIOGET_VSCREENINFO(r2, 0x4600, 0x0)
r3 = socket(0x15, 0x5, 0x0)
bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0)
mknod$auto(0x0, 0xc9, 0xfffffffa)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
write$auto(0x3, 0x0, 0x100082)

1m52.739822561s ago: executing program 5 (id=2140):
r0 = openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media7\x00', 0x40, 0x0)
ioctl$auto_media_devnode_fops_mc_devnode(r0, 0x80047c05, 0x0)
bpf$auto(0x0, 0x0, 0x6f4)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
socket(0xa, 0x1, 0x100)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0xa01, 0x0)
process_mrelease$auto(0xffffffffffffffff, 0xa)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xd4, 0x7, 0xfffffffffffffffb, 0x1, 0x0, 0x3, 0x81, 0x3, 0xffffffffffffffff, 0x3, 0x8000000000400000, 0x3, 0x406d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0)
mmap$auto(0x0, 0x7ffe, 0xe3, 0xeb1, 0x401, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x3000100, 0x0, 0x1, 0x0, 0x10000000000000}, 0x895}, 0x3, 0x0)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000180)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/006/001\x00', 0x100, 0x0)
getsockopt$auto_SO_NETNS_COOKIE(r2, 0x80, 0x47, &(0x7f0000000100)='%\xb6\\:(-\x00', &(0x7f0000000140)=0x7)
sysfs$auto(0x2, 0x1d, 0x0)
inotify_init1$auto(0x5)
bpf$auto(0x5, &(0x7f0000000000)=@iter_create={0x15, 0x8}, 0x7)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r3, 0x1, 0x7ff)
ptrace$auto(0x40000000c, r1, 0x9, 0xfffffffffffff6de)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto_TIOCSTI2(r4, 0x5412, &(0x7f0000000040)="158f4a2b")
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/block/ram15/queue/discard_max_hw_bytes\x00', 0x80000, 0x0)
read$auto(r5, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)

1m50.848444784s ago: executing program 5 (id=2142):
clock_nanosleep$auto(0x6, 0x0, 0x0, 0xffffffffffffffff)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2a)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r2, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="6ccd90f1", @ANYRES16=r3, @ANYBLOB="010028bd7000ffdbdf250c0000000800050000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040804)
sendmsg$auto_IPVS_CMD_DEL_DAEMON(r1, &(0x7f00000013c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4005001}, 0x24040804)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r4, 0x8000)
mprotect$auto(0x1000, 0x401000, 0x4)
mmap$auto(0x0, 0x202000a, 0x5, 0xfffffffffffffffb, 0xfffffffffffffffa, 0x2)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000)
ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0)
rt_sigsuspend$auto(0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
mremap$auto(0x1ff000, 0xff, 0x843, 0x3, 0xfffff000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x200, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/loginuid\x00', 0x309c02, 0x0)
bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, 0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x101)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x5, 0x0)

1m45.404139062s ago: executing program 5 (id=2149):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000540)='/proc/sys/kernel/kexec_load_limit_panic\x00', 0x40141, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r2, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000200)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYRES16=r1], 0x30}, 0x1, 0x0, 0x0, 0x804}, 0x8880)
r4 = open(&(0x7f00000002c0)='./file0\x00', 0x622040, 0x60)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x2, 0x1)
move_pages$auto(0x0, 0x20008, 0x0, 0x0, 0x0, 0x911)
socket(0x2b, 0x4, 0x8001)
setsockopt$auto(r4, 0x10000000084, 0x0, 0x0, 0x10)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x440, 0x0)
r5 = openat$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim5/ports/0/udp_ports_reset\x00', 0x210282, 0x0)
mmap$auto(0xffffffffffffffff, 0x22, 0x3, 0xfffffffffffffff9, r5, 0xf)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/workqueue/nvmet-wq/affinity_strict\x00', 0x20461, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000000)='-7', 0xfffffc49)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
ioctl$auto(r7, 0x4b2f, r2)
mmap$auto(0x0, 0x20002020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x5)
unshare$auto(0x20000)
ioctl$auto_USB_RAW_IOCTL_VBUS_DRAW(0xffffffffffffffff, 0x4004550a, 0x0)
r8 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/swradio13\x00', 0x8a2c0, 0x0)
prctl$auto_PR_GET_AUXV(0x41555856, 0x5400000000000000, 0xf, 0x0, 0x5)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f00000001c0)=""/213, 0xd5)
ioctl$auto(r8, 0x5646, r8)
socket(0xa, 0x3, 0x3a)
r9 = pidfd_open$auto(0x1, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xf6\x04W\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xed\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\x9bg\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)
setns(r9, 0x60020000)

1m29.890359276s ago: executing program 36 (id=2149):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000540)='/proc/sys/kernel/kexec_load_limit_panic\x00', 0x40141, 0x0)
write$auto_proc_sys_file_operations_proc_sysctl(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r2, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000200)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYRES16=r1], 0x30}, 0x1, 0x0, 0x0, 0x804}, 0x8880)
r4 = open(&(0x7f00000002c0)='./file0\x00', 0x622040, 0x60)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x2, 0x1)
move_pages$auto(0x0, 0x20008, 0x0, 0x0, 0x0, 0x911)
socket(0x2b, 0x4, 0x8001)
setsockopt$auto(r4, 0x10000000084, 0x0, 0x0, 0x10)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/neigh/vlan1/base_reachable_time\x00', 0x440, 0x0)
r5 = openat$auto_nsim_udp_tunnels_info_reset_fops_udp_tunnels(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/netdevsim/netdevsim5/ports/0/udp_ports_reset\x00', 0x210282, 0x0)
mmap$auto(0xffffffffffffffff, 0x22, 0x3, 0xfffffffffffffff9, r5, 0xf)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/workqueue/nvmet-wq/affinity_strict\x00', 0x20461, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000000)='-7', 0xfffffc49)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
ioctl$auto(r7, 0x4b2f, r2)
mmap$auto(0x0, 0x20002020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x5)
unshare$auto(0x20000)
ioctl$auto_USB_RAW_IOCTL_VBUS_DRAW(0xffffffffffffffff, 0x4004550a, 0x0)
r8 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/swradio13\x00', 0x8a2c0, 0x0)
prctl$auto_PR_GET_AUXV(0x41555856, 0x5400000000000000, 0xf, 0x0, 0x5)
read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, &(0x7f00000001c0)=""/213, 0xd5)
ioctl$auto(r8, 0x5646, r8)
socket(0xa, 0x3, 0x3a)
r9 = pidfd_open$auto(0x1, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xf6\x04W\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xed\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\x9bg\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)
setns(r9, 0x60020000)

30.059491924s ago: executing program 3 (id=2261):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0xa, 0x2, 0x3a)
io_uring_setup$auto(0x52, 0x0)
r1 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000040), r0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/loop5/queue/discard_max_bytes\x00', 0x2, 0x0)
sendfile$auto(r2, r3, 0x0, 0x3)
sendmsg$auto_SMC_PNETID_FLUSH(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9c000000", @ANYRES16=r1, @ANYBLOB="020027bd7000fedbdf2504000000170001002f70726f632f73656c662f706167656d61700000170003002f70726f632f73656c662f706167656d61700000170002002f70726f632f73656c6d2f706167656d61700000170003002f70726f632f73656c662f706167656d615400001700030070068676180cf02c6c662f706167656d61701b00050004000c000000050004000400000046df99b1a809055f2135af39276c59c1d8a27b000f1117eb2434fac060a4f3e1dadf7bdef01b4e15424660d6dc4f0e139db778007f007ffd500253c3a1042baea07101799b10367f1a8289783f80ea3c7f0d9ea29a057f117c4c82e077a97c231b6c549203f24dd933de1f"], 0x9c}, 0x1, 0x0, 0x0, 0x48004}, 0x80)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffff}, 0x1, 0x0, 0x0, 0x29}, 0x20100007}, 0x3, 0x80)
madvise$auto(0x0, 0xffffffffffff0005, 0xa)
mbind$auto(0x2000, 0x100000008, 0x2100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0x10, 0x2, 0x15)
r5 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_CTRL_CMD_GETFAMILY(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="f5ff12ff", @ANYRES16=r5, @ANYBLOB="01002dbd7000ffdbdf2503000000"], 0x14}}, 0x8080)
r6 = syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0xa, 0x800, 0x73)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vidtv.0/i2c-0/0-0068/name\x00', 0x18b080, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000001180)=""/187, 0xbb)
socket$nl_generic(0x10, 0x3, 0x10)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\x84q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa24X@\xadD\xf8\x9d\xf3 \xd2]\xc4\x13G\x1d\x04!\xc1\xeb.e$\xfb\xa3KU\xcf\xc1\x7fFD\x99\xf5v\v\x9dS\xc11P\xa3\xe9\xb0SqL\x85\xea\xb2\x9cY\x83.I\xca\x92\x1c\xc4\x13CV=\x92\x17c\x87iOt\x14On\x15=\v\xf0 \xc5\x8b~\xd6\xd4\xc7\xa3a\x1c\x06\x17\xb3\x88\x8c\xf1L\xba\x89a\xfd\xa5\xc6\x7fU\x00\xe5\x9b', 0x5)
close_range$auto(0x2, 0x8, 0x0)
migrate_pages$auto(r6, 0xa, 0x0, &(0x7f0000000140)=0x100000002)
read$auto(0x3, 0x0, 0x80)
r8 = setfsgid$auto(0x0)
setresgid$auto(r8, r8, r8)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000280), 0xffffffffffffffff)
syslog$auto(0xff, &(0x7f0000000200)='TIPCv2\x00', 0x80000000)
sendmsg$auto_TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000002c00)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000002bc0)={&(0x7f0000001900)=ANY=[], 0x12ac}, 0x1, 0x0, 0x0, 0x8005}, 0x4000)

28.364920984s ago: executing program 3 (id=2266):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2a)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008012, r1, 0x8000)
mprotect$auto(0x1000, 0x401000, 0x4)
mmap$auto(0x0, 0x202000a, 0x5, 0xfffffffffffffffb, 0xfffffffffffffffa, 0x2)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000)
ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
sendmsg$auto_NFSD_CMD_VERSION_SET(0xffffffffffffffff, 0x0, 0x844)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x2, 0x3, 0x6)
r3 = socket(0x2, 0x1, 0x0)
bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x4e24, @remote}, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800008}, 0x5, 0x20000000)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
sendfile$auto(0x3, r4, 0x0, 0x400000000006)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
recvmmsg$auto(r2, 0x0, 0x1, 0x8, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000100), r3)
sendmsg$auto_NFSD_CMD_RPC_STATUS_GET(r5, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8005041}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r6, 0x1, 0x70bd2c, 0x25dfdbff, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4010850}, 0x20004054)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffd, 0x2020009, 0x1, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x2)
socket(0xa, 0x801, 0x84)

22.28928834s ago: executing program 3 (id=2281):
r0 = socket(0x10, 0x2, 0x9)
setsockopt$auto(r0, 0x104000000000010e, 0x1, 0x0, 0x16)

21.370615535s ago: executing program 3 (id=2283):
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x7, @remote}, 0xe482)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x123000, 0x0)
ioctl$auto_USB_RAW_IOCTL_EVENT_FETCH(r0, 0x80085502, &(0x7f0000000240)=ANY=[@ANYBLOB="e7fdff8d44916c5dbbdd2310000056b103cfe0ed7b3b700442fbf598d28ed0553238b0023f51cd8a9d2df44ce666337d2e04000000000000b7a00ad9bc0046b3eb2f939f3d84dca30cd7b0b6b3ab0bff9bc793b415ef83f68700823d2d2e51b8e19744697dd98dff315a6a6b7794818c02ddb41abb348a4843fc4bccd111ac90afceb162fdee00c84be8872b0ff3f965180d736e81c95f7ea41ebf601f191cf3196494dba303676b4a98a0e446c89b2a566c72ec4b92681653ea44f41e8b7d67e949bff83502a37ade8248d052da08d44ee317c1f3a2ef0b1dfca63a"])
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = pidfd_open$auto(0x1, 0x0)
openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x14000, 0x0)
lseek$auto(0x3, 0x2, 0x4)
mmap$auto(0x0, 0x2, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
write$auto(r1, &(0x7f0000000100)='/dev/raw-gadget\x00', 0xa)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
dup2$auto(r2, r2)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000140)=""/190, 0xbe)
madvise$auto(0x2, 0x7fffffffffffffff, 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80302, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socketpair$auto(0x2, 0x7, 0x2, &(0x7f0000000200)=0xcd51)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd3/queue/iostats\x00', 0x80302, 0x0)
sendfile$auto(r3, r3, 0x0, 0x2)
faccessat2$auto(0x1, &(0x7f0000000040)='\x00', 0x4, 0x1200)
arch_prctl$auto_ARCH_MAP_VDSO_32(0x2002, 0x3)

19.462136673s ago: executing program 6 (id=2287):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYRESHEX=r0], 0x1ac}}, 0x40000)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/time\x00')
recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xffffbff9, 0x10, 0x0)
mmap$auto(0x0, 0x400005, 0xe2, 0x9b72, 0x2, 0x8000)
r2 = io_uring_setup$auto(0x999, 0x0)
mmap$auto(0x4, 0x400008, 0xa, 0x9b72, 0xffffffffffffffff, 0x0)
ustat$auto(0x801, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
r3 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x1a3)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
accept$auto(r2, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000540)='/dev/tty45\x00', 0x201, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:09/sun\x00', 0xa0200, 0x0)
pread64$auto(r5, 0x0, 0x6, 0x40008)
write$auto_tty_fops_tty_io(r4, &(0x7f0000000580)="7fd0a917413f68eb6b28d5eea7d1553f6595c094f1f855eb8d8776e6bd8f81c440da3fe3433f8243402fc2752caac5da7a03bbb5adf685740635a6bc231c6cf093b7cf0e4dd07f10b2dc12791aa3ebded3cfe2e4befc0e02d2e064b1db3adc8b2ec1c0378efff268086d6cb998b8dedfb7f20d06b7b091e974de1c1a4ce3d378d91b7639d914ba86b1f18337bb06e3619af99e68dfac380ab153fc75a2159d8efbbf7436752c964490346cf1558249979fc61ee71509560d14bdd0922e50904f3a4b2ae1bfc4f6bb9e08f16afd6baa53cf87077be5bcca2829dd4133da071a6fd072ed5568670a5d171e3deee5576bf571a016c162ca369182f202dbe49839df8d4c438dacdd6cdd67c21e2ed9be20baeff5e5019313d5e6e5a0e93eab61be5dec2c7e144cf9d73fd945c25ff11d5d5aa26bf8ab2e06098b8aeb05c1f29c1a30d268d82768b3350c3efcdac39334de0f6406a1aed635e0c55412ff73b0222d67be6bdd185478d502b492c41696ce6f88609795409aa0841dbc7cb222f0cb239b19d9499fdc45988f0290af0666c37b93f047d45b17cbe7c9332c63ad46c6aa871e4b351efa4fbfb88cfa0281f465d1a970939c2d6c45c50ade06f0bb98ed66623b887de325c0f42ab530b649ea29757af9464c18dea186a0bbc62ce209a3be8e86e8f710323cb899d806caf575cb73a419c0804afd4c8a329a2afaebb87291e9fdfd2ca0edebfc4fb7b1e281fa3e6ac387aebfc92107f4251aa8c96a4c6d7599933c2c489a7696e8e42d88b572fa46bead2c96f619030ab70026f14f91bbf0a4c1b3ed74c564d6ae3eefeef94d37e19701513ff7713a52ebfd8f251dc303455de00d1ee3ed3e204bed2901a644056193fc7e00ce10aa6463892a7881a51893af629f7bd8801ce4c44c7ff2decdb6a69d9ed48ff79661ba9ec4a84dd222d3b40e4abf56222b97db9aa646a67e5031a57d570030f41b09529298f1acddbcd1f0ff6a30cb2a2d5eaecd774bbf897477cc1e55488f3493b6aa6908d24b032cbda24f956f7f262d992838923efde7e8ed0558872451d7bd6a4769ecd47c6d0a125a6e638df6f67793901a67071c506d010930b01ce541aa43f9110d874311d18a8ea50fb1907e8d17c3932e0c12c7d6f7c145209ab81105649fc0c5266063bd8c6a16319a82ff5d236122d53e15d6a7fcb16245d7754f3ffbf659a141cbd29286176fe445deebd5dd18baae1bbdfedbe4bd3453c50fb2f6c22505ecd768ad0703624ebf7b924dc7e8e93ea94c8a6a9f0372351b5a4aaadf89a86faf5241e47be7e6790676fbf8abcc6ef89b9f6ce10600e21815ec6d2c580b5c30ada6b956a07d9964e93419856df00b06245d0743ac2b595097007165cbb17c6a492a6eb0559712e5f89ee86b7a2c46acf9b8d8b2c7a85092966aca97f114635c64f6eb44ad927423a3bc434b267c23d364ee5671d3dcbcca02ffbb633b3c9e6f2058c3b43dd46344b92e000a029e6daf42c4d12e3a470487eb5cca6e2014b87e5a5aee1c6b9485472d18aaea4ebefe77c6901cd52e303083d6b2e47f4be756fb4dd02acd4938e6ae5f7178623b3b4bad0a83c2c511fd4a9e1da40efff3ca03326278860a6c507e50717f0ea9288daa0a33748cdaa74ec20f7b5671ab50d2a0ea649b9c1b258fa833e808ce0f0fb537e75e9e4c8e1b5c7fe8ca456e6c32fdb86b88c0bc30e44c5ec22634cf5b6b78574a5aae4cfd5b011095e2ea022a2fd15495319ddfad5b3fdabcf012d8f182af76c9ea3b083b66fb34b0ba87957fcd34cb0a55478bfb857bb79b52ec8cf52fcdaf09a20b743b765310cb24d4b05e55790ebbc410cc1342c3dc27facd2ae8c2ea0916bbe0e1372c09f2b98d486294c1ad0776828ec7feebdd969af66b82f708494c4abd5841d70a71ed0c6c7eef68559527ea4c43fe26e8889f9410cda85b13dc02bd03692198ce526997cb45b322a6354d58344e94944f9fa25950ae239c17b75d313f75405c012d959eeb2991130ec84e703193d749671264f3aafd55cfcfb2f5762979724318d6f1ed0b5e570d0b050ed9282a71de1533cb642ea831444a4bb7668745bf9814a180b18835e7c61d907e4321c25b5400be50d0117537ca13190ffde1bb077eb0cd74f6163abcb87a2b1e261b2c2084224d743b27b67f404b3b2d66a9c12892fb6894cd87c018e4018cfe5cb05b6114b90fb7faff3e591e4f60803318cc54783f9c1473276b33f59a3e545340299036ce3eefeb5775b4ddc00759012e5a408ea73b702c05c102740c6ba5b140a89cef6a7e9591c9afca16e478698cd9a3b4d103a553a194cc30e498b14c2315c61e5e6c329722c5cb50b6c114e4901c067ccfdb54268eb51b1d43b0cf36b78c2e91abf18675c3b69614e0d10c3f15014d69067a97953ba58e7da1b625ae43465346bb7cff85515f83c1934956b2195cebef82db5fd2e9083da8240e4d7d1ade0d4f2be992f2f23197df1054c89bb1b7ad9c03a3c3cecb278221889cb30374987dd72d0d58015dfee54acb6db2127dc467ba3ce0a2353e809622b23d03a6b52666f10cde5a2abb02571b845d58d6590afc59bd16caa59ae4026888efa3f6b1d0f879afb71a580486005db5a411073f8f4964f73103efa972ecf481118b12ae48ba55c50a5fd7c31991b73242bb7448bcb4e412427a4ab9657a0e1f8ff3332e9da5b6f695dfcc4e6fbeb5f2cea1c70703f7fe4b685feb246b27601163c98a661ee30467ac71ee1df93812258dfd19f30fcd059c1cde93e142a6fe6976f9f78b580073528e1a2ca6084eea907db9e3b1ac68eb150ee596519613a667c897afe767f17f3f227db922972bd9bfdc6b7ebd8f1e6a51587e31dd1bc3abeed8a338cc458ff7031507b678c97d51f03b92292ded0ac1f004fe460cbc56f355d17c8b", 0x817)
openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, 0x0, 0x40, 0x0)

17.635148059s ago: executing program 6 (id=2289):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/system/machinecheck/machinecheck0/cmci_disabled\x00', 0x2062, 0x0)
write$auto(r0, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
sysfs$auto(0x2, 0x12, 0x0)
r1 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r1, 0x8, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x15ce, &(0x7f0000000000)={0x3, 0x0, 0xf, 0x2, 0x6, 0x8, r1, [0x7fffffff, 0x4, 0x2], {0x1, 0x4, 0x0, 0x5, 0xfc55, 0x1, 0x80000000, 0x2, 0x9}, {0x400007, 0x2713, 0x8602, 0x7, 0xfffffffd, 0x234, 0x7, 0x200}})

17.5520187s ago: executing program 3 (id=2291):
connect$auto(0x3, 0x0, 0x50)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
landlock_create_ruleset$auto(0x0, 0x9, 0x0)
socket(0x2, 0x5, 0x0)
mmap$auto(0x5, 0x7b, 0xdf, 0xeb1, 0x401, 0x8002)
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000080)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
r2 = open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
getdents64$auto(r2, 0x0, 0x400)
ioctl$auto(r1, 0x2284, r0)
r3 = landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa0, 0x1, 0x9}, 0x9, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x2000000006, 0x2)
r5 = socket(0x8, 0x4, 0x383)
getsockopt$auto_SO_PASSCRED(r5, 0x8, 0x10, 0x0, 0x0)
landlock_restrict_self$auto(r3, 0xb)

17.17211928s ago: executing program 6 (id=2292):
mmap$auto(0x0, 0x8, 0x1000e2, 0xeb1, 0x405, 0x100008000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x20082, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
prctl$auto(0x3e, 0x0, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sg1\x00', 0x24202, 0x0)
msync$auto(0x110c230000, 0xc4, 0x8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.11/usb32/32-0:1.0/usb32-port2/state\x00', 0x543000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x5, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = socket(0x1f, 0x802, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r1 = clone$auto(0x21, 0x80000007, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
wait4$auto(r1, 0x0, 0x80000000, &(0x7f0000000140)={{0x10000, 0x100080}, {0x1, 0x9}, 0x8000000000000000, 0x2, 0x9, 0x10, 0x2, 0x1, 0x5, 0x6, 0x3, 0x800000000000008, 0x7, 0x7, 0x6, 0xb4b9})
sendmsg$auto(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SEG6_CMD_SETHMAC(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1400ea34236660489315c20000107fc64e7e7eb7c3f984773635cde642b4018136ec168c483987ebcbe19cd23b21cc57ac95250ad812cd84667195c67136deae8a5137d90e5228c827cf66dfb72d0fc532c5488f", @ANYRES16=r3, @ANYBLOB="010025bd7000fcdbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x80040}, 0x10004000)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_GET_SURVEY(r5, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000240)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="010f2dbd7000fddbdf253200d215dd0fefe7c6a052c3c00ee951cf8be3a52b032791f9599c44b0c65cd290413c15ac82787568f9dba87242018427ff8ed57f1faa187954d1053d5532dbdf78"], 0x14}, 0x1, 0x0, 0x0, 0x24008004}, 0x20048840)
prctl$auto(0x1000000003b, 0x1, r1, 0x6, 0x7fb)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
getcpu$auto(&(0x7f0000000000)=0x8, &(0x7f0000000040)=0x7, &(0x7f0000000080)={[0x9a, 0x7ff, 0x0, 0x5, 0x1, 0xbf0, 0x0, 0x74d, 0x40, 0x8, 0x80000dc6, 0x0, 0x3, 0x67, 0x5, 0x10]})
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

15.761100346s ago: executing program 3 (id=2294):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
setresuid$auto(0x0, 0x8, 0x8000)
r0 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r0, 0x29, 0x4b, &(0x7f0000000180)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5', 0x10000110)
madvise$auto(0x0, 0x7fffffffffffffff, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x43102, 0x0)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x24, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}, @NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x80)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000240), r5)
sendmsg$auto_CTRL_CMD_GETFAMILY(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="a9062abd7000fedbdf2503000000060002005c00000053af5c0101b8740325821d55e812bc04a32938715c3a1ef07d6f900ce646afd5b4b337b88b09cd8c71e1fcaab3f16e537bd4e93f4c89680bef7561335cc22a38a7d438f073691d2dd1e509015a9e9e5b94e71ebd6fa0eb7ea2e1ab207825c1a9c0d1cf1014ef5b193cd9210641c92b2876547dc1e93cd69ed36a555884ad44def84f157324664f342bbbc1858e5ea808833e9bd38ca0f7587fb121590d2871c440119ebbd5671d7c2a29965563740e3ab2305e3b562e4d621d568595e422243a4d013edeb3812e2bf03a9623ffb24440cc1f52cced3d1e"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x880)
sendmsg$auto_NBD_CMD_CONNECT(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRESDEC=r3, @ANYBLOB="01a0"], 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x4011)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

14.507118779s ago: executing program 6 (id=2297):
mmap$auto(0x0, 0xf6, 0xdf, 0xeb1, 0x401, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x189002, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000001140)='/proc/self/net/bonding/bond0\x00', 0x41842, 0x0)
r0 = ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000002100), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_DISCONNECT(r1, &(0x7f0000002240)={0x0, 0x0, &(0x7f0000002200)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010028bd7000fcdbdf25022000000800011670840000"], 0x1c}, 0x1, 0x0, 0x0, 0x20044800}, 0x4000)
close_range$auto(0x2, 0x8, 0x0)
listxattrat$auto(0xffffffffffffffff, 0xfffffffffffffffc, 0x1000, 0x0, 0x3)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0)
acct$auto(0x0)
r3 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x101040, 0x0)
ioctl$auto_VHOST_SET_LOG_FD2(r0, 0x4004af07, &(0x7f0000001040)=<r4=>r1)
getsockopt$auto_SO_RCVPRIORITY(r4, 0xffff, 0x52, &(0x7f0000001080)='/dev/ppp\x00', &(0x7f00000010c0)=0xb)
read$auto_rng_chrdev_ops_core(r3, &(0x7f0000000040)=""/4096, 0xfffffe82)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x8442, 0x0)
ioctl$auto_PPPIOCSPASS(r5, 0x40107447, &(0x7f0000000080)={0x0, 0x0})

13.062807558s ago: executing program 6 (id=2301):
mmap$auto(0x0, 0x7, 0x8000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) (async)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00') (async)
r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) (async)
mremap$auto(0x5, 0x3, 0x3fda, 0x8, 0x7fffffffb000) (async)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x28200, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f00000001c0)=""/234, 0xea) (async)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x1000000000000) (async)
write$auto(r1, &(0x7f0000001380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xfc\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r&\xec\xb8\xb1Z\\\xc9L\xb2\t\xddbH|\xffGP\x97)\xb9:nqn\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc$\xa0\xa5\xce\xca\xe1P\xf7\xe5_\xca\xd5\xd8\xa4g_\xb1\x88\x8cAJS\x11\x8b\xd1%a\xe5DPk\x8c\xf9\xfb\xe0+\xdb\x12\x10.F\x00\xc37\xc7\xbf\x80\xbeu\xe1V\xb2\xc5\xc9\x1a\xc7\xdc}!\x10\xb1\",1%\x0e\xeb\x15\x15me\xe1a\x03\x18{\xb03+\x93*vB\xc6\xf1\xc6\xff\xbbt\x04!\xb6\v\xde2\xc9\x89#\xbaR\xee\x13jF%\xf2\x15\x9a\x82&\x89o\xa9\xd9\xbfFY\x90\x8c\xa0\xe4\x9d\xa2\xcd\x9a\xb5TC\xc4\x9d\x9ePb]\xaa\xc7f\x06N\xc5\xfa{\x02Y\xae\xf4(\xaa\x06);{?\x1e\fu\x19b\xdf$,\x01\"\x94\x00\x00\x00\x00\x003\xcfZ\xaf~<\xba\xb7\xa03\x8c\n*krS\x19Q#\x8f\xfbW\xad\xe0\xb3o\xcb\xf7\xda\x87C\x99\x1a\xa8\xc1\xe3\xc6%\xac\x01@*\xa0\xc4\xedn-lT\xe6*?\'\x9dW=\xa7\x03\x06\x83 IT\xa3\x7ff\xb6\x95\xe5\xd2\n\xaf\x87`\xce%\xf6 &\xa7M5I\x9c\x17h\x8c\xa4\x98\x16\xe0\xd9?Y\x7f\xf6\x85_{\xfd9p$B9_\xd8\xf4\x0e\xd0\xfa\xe7\xb0\xb8\xa0\xd7\a\xff.\"\x81\b\xb0\xb4\x84\xac\xad\x1b\x93~_\xea\xfe7\x03\"\xd9\x1d.\xe5{bHX\x14\xa1\bO\x03[^\x85jP\x89\t\x06GI\xb7\x99\xb2zZf\xc8\xd4\x8d\x1c\x1e\x03\xb9\xa7Nt\xae\xfff\xf9\tx\xae\xa8\x05\xb14\xc6\x9b\x1f\xd3\x01#\xc6\nb\xd4\xb4\xc8?\xa7\xe2R\xc1\xcf\xd2\xbc\xae\xd1\xc2\x88\"\xf3\xf0\xc0uQy\xec\xfab\xd6\xcd\x16)\x19*E\vm\x8d\x1bG:\x80\'pJ', 0x4100000a3d7) (async)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0p/sub7/info\x00', 0x8040, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r4, &(0x7f0000000100)=""/184, 0xb8) (async)
mmap$auto(0x0, 0x76, 0x5, 0x409b72, r3, 0x8000) (async)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r5 = io_uring_setup$auto(0x5d, 0x0) (async)
r6 = socket(0xa, 0x1, 0x84)
close_range$auto(r6, 0xfffffffffffff000, 0xfff) (async)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)
read$auto_tracing_saved_tgids_fops_trace(r5, &(0x7f00000002c0)=""/154, 0x9a)
bind$auto(r4, &(0x7f0000000040)=@ax25={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x7}, 0xc000) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0xffffffffffffffff, r0, 0xfffffff9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
remap_file_pages$auto(0x6a29, 0x0, 0x8, 0xb74, 0x66a)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x189880, 0x0)

12.767657012s ago: executing program 6 (id=2302):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4040}, 0xc, &(0x7f0000000740)={&(0x7f0000000ec0)=ANY=[@ANYBLOB="3c020000", @ANYRES16=0x0, @ANYBLOB="020028bd7000fbdbdf2502000000540001800800030004000000140002006261746164", @ANYBLOB="0800030001000000080003007245ffff08000300", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="2000018008000300040000001400020069705f7674693000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB, @ANYBLOB='\b\x00', @ANYBLOB="1400020076657468305f746f5f6261746164760008000300000200", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="54000180140002006772653000", @ANYBLOB, @ANYRES32, @ANYBLOB, @ANYRES32, @ANYRES32, @ANYBLOB], 0x23c}, 0x1, 0x0, 0x0, 0x4c011}, 0x90)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram1\x00', 0x6e642, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x2, 0x9, 0x81, 0xffffffffffffffff, 0x2, 0x8}, 0x100000cf)
r0 = socket(0x29, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="04001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="934dc52afb065c0e843f002787196164ee1014b16e42b9667e9770f273ce7b8049b498b2c1023b0ce959ecf78d0b65408b888ca58ceb0d3135edeb59f2529609e5e11de7d40dfb3cc13ef0f7754c5db1cb1116705b936b6a99128bd68b1ed3945940692b6fd75b9bf03ff61674ac05", @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r3 = epoll_create$auto(0x3e)
poll$auto(&(0x7f0000000040)={<r4=>r2, 0x1, 0xa}, 0x5, 0x108)
epoll_ctl$auto(r3, 0x1, r2, 0x0)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r0, 0x89f1, 0x24)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/md_mod/parameters/new_array\x00', 0xa001, 0x0)
write$auto(r6, &(0x7f0000000100)=' \v\xb0]E\x00', 0x6)
write$auto(r5, &(0x7f0000000000)='0\x81=\xa2\xad\xff\x8d\xf9\xac\xa6\xad\xfbi\xa3^}\x91\xa3}\x85\xfaP\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb\x05\x00\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0x7fff)
close_range$auto(r4, r4, 0x9)
r7 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)

6.88549257s ago: executing program 7 (id=2309):
mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x443d)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x15, 0x5, 0xfffffffe)
mmap$auto(0x0, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)
r1 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r1, 0x107, 0x12, 0x0, 0x4)
r2 = timerfd_create$auto(0x61e1, 0x2)
mmap$auto(0x111, 0x7, 0x0, 0x14, r2, 0x5)
pwrite64$auto(0xc8, 0x0, 0x4e, 0x3)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
ioctl$auto(0x3, 0x89e0, 0xfffffffffffff4e0)
r3 = getsockopt$auto(r0, 0x114, 0x271e, 0xfffffffffffffffc, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0xe, 0x10000eb1, 0x403, 0x8000)
getsockopt$auto(0xffffffffffffffff, 0x29, 0x38, 0x0, 0x0)
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(r3, &(0x7f0000000640)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000600)={&(0x7f00000000c0)=ANY=[], 0x14}}, 0x4000004)
mmap$auto(0x0, 0x3, 0x8000000000000001, 0x9b74, 0x2, 0x8000)
write$auto(0xffffffffffffffff, 0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x182b02, 0x0)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x43102, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x2000c840)

6.412390725s ago: executing program 8 (id=2310):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
getsockopt$auto(0x6, 0x1, 0xb, 0xfffffffffffffffc, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
socket(0x1f, 0x80000, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_register$auto_IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000000)="29a07545b67e92beca4f6d1c93ea362ac2d5d004d944f7f42a40259552882a4e2d046119b9661e0cf9f76e8d6fb5ffb53e6423a1cc17ba927ee1ff37f3d076a60ade253f0f40ac50463f0fdc6b9a393bd9de2d6ed9b9bc9213555945e8e7629d24bf8828e8305042d56a035996144de92f8a97fe25f2d18b9e8e5d1ae61c6942b065fde585f54fb1ae69f4064183612677364f484e93c9c9ddc68f704c430a40e95e1914997901ddf3ff89b9e524f0ab9b05b00d8c7537dd615e9c2e6aac839027012fe8dcab5f9d86fe9246bde804", 0x2)
pipe2$auto(0x0, 0x80)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_TIOCSTI2(0xffffffffffffffff, 0x5412, &(0x7f0000000840)="13")
ioctl$auto_TIOCSTI2(0xffffffffffffffff, 0x5412, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0xc8a9, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

4.919989949s ago: executing program 8 (id=2311):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0xf, 0x940, 0x1ffe0, 0xc980, 0x6, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x5, 0x5, 0x3, 0x5, 0x7, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x1fe, 0x81)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x734f, 0x33, 0x67f, 0xfffffff8, 0x7, 0x3, 0x20000002, 0xd, 0x3, 0x1, 0x2091, 0xb4, 0x9, 0x6, 0x6, 0x80, 0x4, 0x1cd7, 0x1000, 0x2000, 0x203, 0x8, 0x84, 0x0, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4]}, 0x1fe, 0xd)
io_uring_register$auto_IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, 0x0, 0x1)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
socket(0xa, 0x2, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x106)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f0000000280)=@bpf_attr_5={@target_fd=r1, r1, 0x4, 0xf, 0xffffffffffffffff, @relative_fd=r0, 0xe600}, 0xf)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x4)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
ioctl$auto(0x3, 0x40045532, 0x38)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

4.453056881s ago: executing program 8 (id=2312):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = epoll_create$auto(0x8800001)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_POOL_MODE_SET(r0, 0x0, 0x2044800)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x8001, 0x3ff57696, 0x9b72, 0x2, 0x8000000000008000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x5, 0x84)
semctl$auto(0x2, 0x5, 0x13, 0x9)
setsockopt$auto(0x3, 0x10000000084, 0xa, 0x0, 0x20)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40100, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sysfs$auto(0x2, 0x100000000000036, 0x0)
r1 = fsopen$auto(0x0, 0x1)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0)
epoll_create$auto(0x100008)
r2 = epoll_create$auto(0x3e)
epoll_ctl$auto(r2, 0x1, r1, 0x0)
r3 = socket(0xa, 0x5, 0x84)
setsockopt$auto(r3, 0x10000000084, 0x3, 0x0, 0x0)

4.186271674s ago: executing program 8 (id=2313):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000100)={0x0, 0x1d, 0x3000, 0x6, 0x7, 0x3, 0xffffffffffffffff, [0x3], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x4000006}, {0xe63c, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c2, 0x8000c, 0x300000000}})
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffbfffd}, 0xffff}, 0x4000, 0x20000043)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0xa, 0x2, 0xfffffffe)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x400, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xc, 0xffffffffffffffff, 0x6, 0x12, 0x80, 0x801, 0x8000, 0x4, 0x1, 0x800, 0xd, 0x8, 0xfffffffffffffff8, 0x0, 0x0, 0x0, 0x6b4, [0x2, 0x6, 0x0, 0xc, 0x0, 0x0, 0x20000000000, 0x3, 0x2000000000000004, 0xb, 0x3169b201, 0x0, 0x4000000000000003, 0xfffffffffffffc01, 0x5, 0xfffffbfffffffffb, 0x0, 0x7fffffff, 0x2000000, 0xfffffffffffffffe, 0x0, 0x8, 0xfffffffffffffffe, 0x1fffffffffffffd, 0x0, 0x8000000000000000, 0x0, 0x1, 0x0, 0x7fffffff, 0x101, 0x0, 0x20000000000000, 0x40000000000000, 0x1000000000000200, 0x0, 0x400, 0x96, 0x5, 0x4, 0xe17, 0xfffffffffffffffc, 0x40]}, 0x1fe, 0x1)
ioctl$auto_TUNSETVNETLE2(0xffffffffffffffff, 0x400454dc, &(0x7f0000000040)=0x81)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/mountinfo\x00', 0xe0000, 0x0)
syz_clone(0x80000000, &(0x7f0000000000)="085a1056b6aa2f10d8ddee0633aea682a5ff", 0x12, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0xffffffffffffffff, 0x104000000000010e, 0x1, 0x0, 0x16)

3.718365432s ago: executing program 7 (id=2314):
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/rpc/nfs4.idtoname/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
socket(0xa, 0x1, 0x84)
r1 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000440), 0x20100, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
socket(0x2c, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000380)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0x5457, 0x0)
ioctl$auto(r0, 0x921064a2, r0)
socket(0x10, 0x3, 0x6)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc2481, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = prctl$auto(0x1000000003b, 0x2, 0x4, 0x5, 0x100000001)
close_range$auto(r4, r4, 0x0)
r5 = openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/tracing/saved_tgids\x00', 0x2082, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyt7\x00', 0x4c0301, 0x0)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
open(&(0x7f0000001bc0)='./file0\x00', 0x4142, 0x1)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x13, 0x9, 0x1ffe0, 0xfffff75b, 0x6, 0x2, 0x9, 0x5, 0x2, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0xfffffffffffffffc]}, 0x1fe, 0x81)
sendmsg$auto_NL802154_CMD_STOP_BEACONS(r5, &(0x7f00000007c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f0000001200)=ANY=[@ANYRES32=r1, @ANYRES16=r3, @ANYBLOB="000900bd7000ffdbdf2527000000080016003701b2a18db93b84e697ab453003000000050008000500000006000a000008000061032880ac004780040064800800cc00d00afd79b81e53ab5ca325f0d0ab76018fd4ea431bcd52225063afcd0b3b6c585d5360a1dfb6cd4bd86b1f3c98b158ec1fd419663f889ef1230592f9fe68e0fe91916dfa0351486cdd96f8260434940d04abf633532697de4e3c26774c6f5c4eaeb85f9238de66ddb5c77adb0ced54920073319b3d4f007a606453464c495bea8b90137443", @ANYRESDEC=r3, @ANYBLOB="08004bb5aca3b00008000700", @ANYRESOCT, @ANYBLOB="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"], 0x398}}, 0x80c0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r6 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r6, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

3.207833443s ago: executing program 8 (id=2315):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2a)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x4, 0x4, 0x8000000008012, r1, 0x8000)
mprotect$auto(0x1000, 0x401000, 0x4)
mmap$auto(0x0, 0x202000a, 0x5, 0xfffffffffffffffb, 0xfffffffffffffffa, 0x2)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0)
rt_sigsuspend$auto(0x0, 0x8)
r2 = socket(0x1, 0x2, 0x3a)
setsockopt$auto(r2, 0x29, 0xb, 0x0, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nbd8\x00', 0x4041, 0x0)
fadvise64$auto_POSIX_FADV_SEQUENTIAL(r3, 0x64800000000, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x8000000000000001, 0x7, 0x4, 0x9b72, 0xffffffffffffffff, 0xf34)
socket(0x11, 0x2, 0x2)
mmap$auto(0xffffffffffff4b3a, 0x3, 0x0, 0x8000000008011, 0x3, 0xfffffffffffffffc)
mremap$auto(0x1ff000, 0xff, 0x843, 0x3, 0xfffff000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x0, 0x0)
mbind$auto(0x9, 0x6, 0x100000001, &(0x7f0000000080)=0xfffffffffffff882, 0x2, 0x6)

2.634824907s ago: executing program 7 (id=2316):
mmap$auto(0x805, 0x400006, 0x20000000000000df, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000100)={0x0, 0x82, 0x3000, 0x6, 0x9, 0x400a, 0xffffffffffffffff, [0x80000], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0xe63c, 0x1, 0x52, 0x5, 0x0, 0x1a7b870a, 0x76c2, 0x8000c, 0x100000000}})
r0 = socket(0x2b, 0x1, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x8}, 0x4000069)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffbfffd}, 0xffff}, 0x4000, 0x20000043) (async)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xfffbfffd}, 0xffff}, 0x4000, 0x20000043)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
mmap$auto(0x7fffffffffffffff, 0x2020008, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@llc={0x1a, 0x312, 0x5, 0x2, 0x3, 0x9}, 0x4) (async)
bind$auto(0x3, &(0x7f0000000100)=@llc={0x1a, 0x312, 0x5, 0x2, 0x3, 0x9}, 0x4)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2, 0x1, 0x106) (async)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xc) (async)
setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0xc)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) (async)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6})
acct$auto(&(0x7f0000000100)='./cgroup/cgroup.subtree_control\x00') (async)
acct$auto(&(0x7f0000000100)='./cgroup/cgroup.subtree_control\x00')
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ram8\x00', 0x16fa02, 0x0)
select$auto(0x4, 0x0, 0x0, &(0x7f0000000080)={[0x1ff, 0xd059, 0x3, 0x1, 0x7, 0x1000000000000004, 0x15f4da0a, 0x4000000400039, 0x3, 0x2bffffffffffffe, 0x80000002, 0x7a142c64, 0x6d3c, 0x5, 0x80, 0xfb]}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r2=>0x0})
sendmsg$auto_BATADV_CMD_GET_TRANSTABLE_LOCAL(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="050328bd7000fbdbdf250600000008000300", @ANYRES32=r2, @ANYBLOB="2dfe1cce13f97aab68b0027d530a17eef6d16efab8a80c1aef93cd7fed5b0f74ebeb8192c626604485e4ff8113ae84dbf82fb34d607c042d9b04e424d48fcdabd773a097a0d988e8d7800ec9605f6e41dfbd59442881d66ad81e54f9ffc6928c1896726133402de1435d697765e21a4e3cd9d7caa9ad13774f00723725ea86aed3b8033e897f9e7fd418c71e3f75a6348a2f5786143c2156c7cf2a3c23f442f2fa0ec52eb5a4bd1cb02152b506f679c414ad27b949d69275876d8ece8deb0e2444ce245bd54693"], 0x1c}, 0x1, 0x0, 0x0, 0x40008}, 0x40000)
shutdown$auto(0x200000003, 0x2) (async)
shutdown$auto(0x200000003, 0x2)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0)
pread64$auto(r3, 0x0, 0x40000000f42c, 0x80202) (async)
pread64$auto(r3, 0x0, 0x40000000f42c, 0x80202)

1.539470818s ago: executing program 7 (id=2317):
mmap$auto(0xffffffffffffffff, 0x37, 0xdd, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x80000, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x800, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001480)='/proc/sys/net/ipv6/conf/geneve0/disable_ipv6\x00', 0x40001, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000940)={&(0x7f0000000180)=ANY=[@ANYBLOB="640295004b6be606ffff8791106a5f88bf6bc28aa5af3be7277dcd14aa38a09e0ba9a2fa1cd925df124b72492686e22419acff850dd7a6f82cda4f80d63c0feaac5c9ec52d834b5daef81f", @ANYRES16=0x0, @ANYRESDEC, @ANYRES32, @ANYRESOCT], 0x264}}, 0x40040)
mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x0)
close_range$auto(0x2, 0x8, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1a, 0x0, 0x1)
io_uring_setup$auto(0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
io_uring_setup$auto(0x1, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ttyS2\x00', 0x101f81, 0x0)
ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000000)="b206b4dc238a6682330beb44e37a7b390ab21171387828ffdafceadd142063c8b76230a5f8b1662b085d86527b6cd897a35782260a7b5f1b80826555")
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
pread64$auto(r0, 0x0, 0x40000006, 0x3)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f00000004c0), 0x2202, 0x0)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)

1.077764327s ago: executing program 7 (id=2318):
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS2\x00', 0x101000, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f00000032c0)='/proc/kmsg\x00', 0x900, 0x0)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/loginuid\x00', 0x1a9602, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0xa, 0x3, 0x3b)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r0 = syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
getpriority$auto_PRIO_PGRP(0x1, r0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = open(&(0x7f0000000180)='./file0\x00', 0x440, 0x57e)
fcntl$auto_F_ADD_SEALS(r1, 0x410, 0x0)
utimes$auto(&(0x7f0000000000)='./file0\x00', 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto(0x3, 0x40a0ae49, 0xffffffffffffffff)

449.944176ms ago: executing program 8 (id=2319):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
poll$auto(&(0x7f0000000180)={<r2=>r1, 0xfff7, 0x9816}, 0x7f, 0xd)
ioctl$auto(r2, 0x4004af61, 0xe)
read$auto(r0, &(0x7f0000000000)=']-#:-.:\x00', 0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r1, r3, 0x2)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r4 = socket(0x29, 0x3, 0x6)
setsockopt$auto(r4, 0x65, 0x4, 0x0, 0x4)
r5 = socket(0x9, 0xa, 0xfffffffb)
socket(0x2a, 0x1, 0x0)
r6 = memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
setsockopt$auto_SO_REUSEADDR(r6, 0x8, 0x2, &(0x7f0000000100)='\x00', 0x727)
mmap$auto(0x400000000000, 0x100003, 0x4000008, 0x800000000c812, r6, 0x0)
ftruncate$auto(0x3, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x804}, 0x8880)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x5, 0x810004, 0x7, 0x800000000a011, r5, 0x8000)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyr1\x00', 0x80200, 0x0)
r7 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r8, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}, 0x1, 0x0, 0x0, 0x24040001}, 0x5c0d0)
madvise$auto(0x0, 0xff7fffffffff0001, 0x15)
close_range$auto(r7, 0x8, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000022fc0), r10)
sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_START(r10, &(0x7f0000023280)={0x0, 0x0, &(0x7f0000023240)={&(0x7f0000000100)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="01002dbd7000fddbdf256200000035000e001c11b753147d3f4bf365f6f66676508731aeed1d2c56c93b878f73058e2cf1085657d8cb00000001000000000000009c5e873d00"], 0x4c}, 0x1, 0x0, 0x0, 0x44}, 0x20000000)
ioctl$auto_VHOST_SET_FEATURES2(r2, 0x4008af00, &(0x7f0000000080)=0x3)

335.724909ms ago: executing program 37 (id=2294):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
unshare$auto(0x40000080)
setresuid$auto(0x0, 0x8, 0x8000)
r0 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r0, 0x29, 0x4b, &(0x7f0000000180)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5', 0x10000110)
madvise$auto(0x0, 0x7fffffffffffffff, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x43102, 0x0)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x24, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r3}, @NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x80)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000000240), r5)
sendmsg$auto_CTRL_CMD_GETFAMILY(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="a9062abd7000fedbdf2503000000060002005c00000053af5c0101b8740325821d55e812bc04a32938715c3a1ef07d6f900ce646afd5b4b337b88b09cd8c71e1fcaab3f16e537bd4e93f4c89680bef7561335cc22a38a7d438f073691d2dd1e509015a9e9e5b94e71ebd6fa0eb7ea2e1ab207825c1a9c0d1cf1014ef5b193cd9210641c92b2876547dc1e93cd69ed36a555884ad44def84f157324664f342bbbc1858e5ea808833e9bd38ca0f7587fb121590d2871c440119ebbd5671d7c2a29965563740e3ab2305e3b562e4d621d568595e422243a4d013edeb3812e2bf03a9623ffb24440cc1f52cced3d1e"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x880)
sendmsg$auto_NBD_CMD_CONNECT(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000", @ANYRESDEC=r3, @ANYBLOB="01a0"], 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x4011)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 7 (id=2321):
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)
vmsplice$auto(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)="65126811c51d6f3ec4950c2bd561def935c94e1f5996a5b755a05d93fd673b95b600c7120a5adf6a98138bc71e298e901c65cd649cd53414a3bb6bdad826688b0d44307aad4bb00001bd3552e8c09c9ff2ee0d96f69a7179eb50d6c3203a09c53776c04fe95e3c9785658178c8f25c3688a7afc47d9ec5f4d5ec7d2e25920f2c650180bf0be11d6d24ab0fe67f7359ee6cbc1653df40b845397f4f2acfeabab558f614a9b6fc10bd3aecd9b1bf075a35c5cbcbffaa9cf2db888e9f6099e8b4956a54bfe8", 0x7}, 0x1, 0xffffffff)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat2$auto(0xffffffffffffff9c, 0x0, 0x0, 0xf6)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x81, 0x8000000000001, 0xa}, 0xb, 0x0)
landlock_restrict_self$auto(r0, 0x8)
readv$auto(0x3, 0x0, 0x7)
socket(0x10, 0x2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/lapb5/broadcast\x00', 0x800, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) (async)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff) (async)
vmsplice$auto(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)="65126811c51d6f3ec4950c2bd561def935c94e1f5996a5b755a05d93fd673b95b600c7120a5adf6a98138bc71e298e901c65cd649cd53414a3bb6bdad826688b0d44307aad4bb00001bd3552e8c09c9ff2ee0d96f69a7179eb50d6c3203a09c53776c04fe95e3c9785658178c8f25c3688a7afc47d9ec5f4d5ec7d2e25920f2c650180bf0be11d6d24ab0fe67f7359ee6cbc1653df40b845397f4f2acfeabab558f614a9b6fc10bd3aecd9b1bf075a35c5cbcbffaa9cf2db888e9f6099e8b4956a54bfe8", 0x7}, 0x1, 0xffffffff) (async)
io_uring_setup$auto(0x6, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
io_uring_setup$auto(0x6, 0x0) (async)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
openat2$auto(0xffffffffffffff9c, 0x0, 0x0, 0xf6) (async)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x81, 0x8000000000001, 0xa}, 0xb, 0x0) (async)
landlock_restrict_self$auto(r0, 0x8) (async)
readv$auto(0x3, 0x0, 0x7) (async)
socket(0x10, 0x2, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/lapb5/broadcast\x00', 0x800, 0x0) (async)

kernel console output (not intermixed with test programs):

T13153]  do_syscall_64+0x115/0x840
[  608.414750][T13153]  ? clear_bhb_loop+0x40/0x90
[  608.414778][T13153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  608.414803][T13153] RIP: 0033:0x7fa3ccb9ce59
[  608.414830][T13153] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  608.414855][T13153] RSP: 002b:00007fa3cadcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  608.414878][T13153] RAX: ffffffffffffffda RBX: 00007fa3cce16090 RCX: 00007fa3ccb9ce59
[  608.414895][T13153] RDX: 0000000000200100 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  608.414910][T13153] RBP: 00007fa3ccc32d6f R08: 0000000000000000 R09: 0000000000000000
[  608.414925][T13153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  608.414939][T13153] R13: 00007fa3cce16128 R14: 00007fa3cce16090 R15: 00007ffecfd84bc8
[  608.414969][T13153]  </TASK>
[  609.260678][T13173] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1451'.
[  611.177093][   T29] audit: type=1800 audit(1780002446.207:10): pid=13201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1455" name="lu_gp_id" dev="configfs" ino=49022 res=0 errno=0
[  611.503353][T13201] netlink: 302 bytes leftover after parsing attributes in process `syz.2.1455'.
[  612.669525][T13226] binder: 13216:13226 ioctl c018620c 200000000040 returned -1
[  613.934668][T13244] FAULT_INJECTION: forcing a failure.
[  613.934668][T13244] name failslab, interval 1, probability 0, space 0, times 0
[  614.157318][T13244] CPU: 0 UID: 0 PID: 13244 Comm: syz.4.1464 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  614.157358][T13244] Tainted: [L]=SOFTLOCKUP
[  614.157367][T13244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  614.157381][T13244] Call Trace:
[  614.157392][T13244]  <TASK>
[  614.157401][T13244]  dump_stack_lvl+0x100/0x190
[  614.157456][T13244]  should_fail_ex.cold+0x5/0xa
[  614.157487][T13244]  ? ops_init+0x77/0x5f0
[  614.157514][T13244]  should_failslab+0xc2/0x120
[  614.157543][T13244]  __kmalloc_noprof+0xe0/0x850
[  614.157565][T13244]  ? __raw_spin_lock_init+0x3a/0x110
[  614.157601][T13244]  ops_init+0x77/0x5f0
[  614.157633][T13244]  setup_net+0x118/0x3a0
[  614.157660][T13244]  ? __pfx_setup_net+0x10/0x10
[  614.157690][T13244]  ? mutex_init_lockdep+0xf1/0x120
[  614.157719][T13244]  copy_net_ns+0x46f/0x7c0
[  614.157751][T13244]  create_new_namespaces+0x3ea/0xac0
[  614.157798][T13244]  unshare_nsproxy_namespaces+0xf2/0x220
[  614.157832][T13244]  ksys_unshare+0x438/0xab0
[  614.157881][T13244]  ? __pfx_ksys_unshare+0x10/0x10
[  614.157915][T13244]  ? xfd_validate_state+0x129/0x190
[  614.157938][T13244]  ? exit_to_user_mode_loop+0xf3/0x670
[  614.157987][T13244]  __x64_sys_unshare+0x31/0x40
[  614.158025][T13244]  do_syscall_64+0x115/0x840
[  614.158059][T13244]  ? clear_bhb_loop+0x40/0x90
[  614.158088][T13244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  614.158116][T13244] RIP: 0033:0x7ff88979ce59
[  614.158135][T13244] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  614.158159][T13244] RSP: 002b:00007ff88a706028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  614.158183][T13244] RAX: ffffffffffffffda RBX: 00007ff889a15fa0 RCX: 00007ff88979ce59
[  614.158199][T13244] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  614.158216][T13244] RBP: 00007ff889832d6f R08: 0000000000000000 R09: 0000000000000000
[  614.158231][T13244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  614.158245][T13244] R13: 00007ff889a16038 R14: 00007ff889a15fa0 R15: 00007fff99c2ef68
[  614.158275][T13244]  </TASK>
[  614.821673][T13254] sd 0:0:1:0: device reset
[  615.922935][T13245] Process accounting resumed
[  617.061984][T13292] Process accounting resumed
[  617.594968][T13299] futex_wake_op: syz.2.1473 tries to shift op by -2048; fix this program
[  617.718036][T13299] futex_wake_op: syz.2.1473 tries to shift op by -2048; fix this program
[  620.810047][ T6430] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 300 seconds
[  623.343592][T13385] netlink: 350 bytes leftover after parsing attributes in process `syz.2.1492'.
[  624.659401][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  624.672110][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  627.043507][ T8915] block nbd43: Receive control failed (result -32)
[  627.914003][T13444] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1503'.
[  628.810312][T13457] netlink: 'syz.2.1507': attribute type 2 has an invalid length.
[  629.235350][T13464] hub 1-0:1.0: USB hub found
[  629.301170][T13464] hub 1-0:1.0: 1 port detected
[  629.361970][T13467] FAULT_INJECTION: forcing a failure.
[  629.361970][T13467] name failslab, interval 1, probability 0, space 0, times 0
[  629.440356][T13467] CPU: 0 UID: 0 PID: 13467 Comm: syz.2.1509 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  629.440395][T13467] Tainted: [L]=SOFTLOCKUP
[  629.440407][T13467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  629.440422][T13467] Call Trace:
[  629.440430][T13467]  <TASK>
[  629.440439][T13467]  dump_stack_lvl+0x100/0x190
[  629.440486][T13467]  should_fail_ex.cold+0x5/0xa
[  629.440517][T13467]  should_failslab+0xc2/0x120
[  629.440547][T13467]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  629.440587][T13467]  ? vm_area_alloc+0x1f/0x160
[  629.440628][T13467]  vm_area_alloc+0x1f/0x160
[  629.440663][T13467]  __mmap_region+0x104d/0x2dd0
[  629.440707][T13467]  ? __pfx___mmap_region+0x10/0x10
[  629.440764][T13467]  ? ima_add_template_entry+0x54f/0x800
[  629.440812][T13467]  ? __pfx_ima_add_template_entry+0x10/0x10
[  629.440865][T13467]  ? process_measurement+0x109c/0x2350
[  629.440889][T13467]  ? process_measurement+0x109c/0x2350
[  629.440929][T13467]  ? process_measurement+0x10a9/0x2350
[  629.440953][T13467]  ? rcu_is_watching+0x12/0xc0
[  629.441025][T13467]  mmap_region+0x527/0x620
[  629.441051][T13467]  ? __pfx_mmap_region+0x10/0x10
[  629.441074][T13467]  ? shmem_get_unmapped_area+0x141/0x960
[  629.441112][T13467]  ? mtree_load+0x311/0xa90
[  629.441145][T13467]  ? cap_mmap_addr+0x4b/0x120
[  629.441175][T13467]  ? bpf_lsm_mmap_addr+0x9/0x30
[  629.441198][T13467]  ? security_mmap_addr+0x71/0x1e0
[  629.441231][T13467]  ? __get_unmapped_area+0x255/0x3e0
[  629.441266][T13467]  do_mmap+0xc63/0x12f0
[  629.441301][T13467]  ? __pfx_do_mmap+0x10/0x10
[  629.441332][T13467]  ? __pfx_down_write_killable+0x10/0x10
[  629.441377][T13467]  __do_sys_remap_file_pages+0x8d4/0xa10
[  629.441419][T13467]  ? __fget_files+0x21f/0x3d0
[  629.441449][T13467]  ? __pfx___do_sys_remap_file_pages+0x10/0x10
[  629.441481][T13467]  ? __x64_sys_futex+0x34f/0x4d0
[  629.441506][T13467]  ? __x64_sys_futex+0x358/0x4d0
[  629.441533][T13467]  ? xfd_validate_state+0x129/0x190
[  629.441563][T13467]  ? rcu_is_watching+0x12/0xc0
[  629.441594][T13467]  do_syscall_64+0x115/0x840
[  629.441627][T13467]  ? clear_bhb_loop+0x40/0x90
[  629.441657][T13467]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.441683][T13467] RIP: 0033:0x7fa3ccb9ce59
[  629.441702][T13467] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  629.441726][T13467] RSP: 002b:00007fa3cadcd028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8
[  629.441750][T13467] RAX: ffffffffffffffda RBX: 00007fa3cce16090 RCX: 00007fa3ccb9ce59
[  629.441765][T13467] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000000000006a27
[  629.441780][T13467] RBP: 00007fa3ccc32d6f R08: 0000000000000004 R09: 0000000000000000
[  629.441795][T13467] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  629.441809][T13467] R13: 00007fa3cce16128 R14: 00007fa3cce16090 R15: 00007ffecfd84bc8
[  629.441839][T13467]  </TASK>
[  629.759582][T13469] netlink: zone id is out of range
[  629.764923][T13469] netlink: zone id is out of range
[  629.770671][T13469] netlink: set zone limit has 8 unknown bytes
[  632.904789][T13500] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1513'.
[  634.068185][ T8915] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260
[  634.068219][ T8915] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260
[  634.083748][ T8915] Bluetooth: hci0: Dropping invalid advertising data
[  634.091205][ T8915] Bluetooth: hci0: unknown advertising packet type: 0xe9
[  634.091237][ T8915] Bluetooth: hci0: Dropping invalid advertising data
[  634.105792][ T8915] Bluetooth: hci0: Dropping invalid advertising data
[  634.114237][ T8915] Bluetooth: hci0: Malformed LE Event: 0x02
[  634.173850][T13513] FAULT_INJECTION: forcing a failure.
[  634.173850][T13513] name failslab, interval 1, probability 0, space 0, times 0
[  634.233340][T13513] CPU: 0 UID: 0 PID: 13513 Comm: syz.2.1519 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  634.233381][T13513] Tainted: [L]=SOFTLOCKUP
[  634.233389][T13513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  634.233404][T13513] Call Trace:
[  634.233413][T13513]  <TASK>
[  634.233422][T13513]  dump_stack_lvl+0x100/0x190
[  634.233469][T13513]  should_fail_ex.cold+0x5/0xa
[  634.233499][T13513]  should_failslab+0xc2/0x120
[  634.233529][T13513]  __kmalloc_cache_noprof+0x7a/0x6f0
[  634.233564][T13513]  ? init_srcu_struct_fields+0xa69/0xfa0
[  634.233604][T13513]  ? __kasan_kmalloc+0xaa/0xb0
[  634.233627][T13513]  ? lockdep_init_map_type+0x5c/0x250
[  634.233685][T13513]  init_srcu_struct_fields+0xa69/0xfa0
[  634.233729][T13513]  kvm_dev_ioctl+0x593/0x1a50
[  634.233769][T13513]  ? find_held_lock+0x2b/0x80
[  634.233799][T13513]  ? __fget_files+0x215/0x3d0
[  634.233826][T13513]  ? hook_file_ioctl_common+0x149/0x410
[  634.233859][T13513]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  634.233896][T13513]  ? __fget_files+0x21f/0x3d0
[  634.233931][T13513]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  634.233966][T13513]  __x64_sys_ioctl+0x18e/0x210
[  634.233992][T13513]  do_syscall_64+0x115/0x840
[  634.234026][T13513]  ? clear_bhb_loop+0x40/0x90
[  634.234056][T13513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  634.234081][T13513] RIP: 0033:0x7fa3ccb9ce59
[  634.234100][T13513] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  634.234124][T13513] RSP: 002b:00007fa3cadee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  634.234156][T13513] RAX: ffffffffffffffda RBX: 00007fa3cce15fa0 RCX: 00007fa3ccb9ce59
[  634.234172][T13513] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  634.234187][T13513] RBP: 00007fa3ccc32d6f R08: 0000000000000000 R09: 0000000000000000
[  634.234201][T13513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  634.234216][T13513] R13: 00007fa3cce16038 R14: 00007fa3cce15fa0 R15: 00007ffecfd84bc8
[  634.234246][T13513]  </TASK>
[  636.115253][ T8915] block nbd44: Receive control failed (result -32)
[  640.072585][ T8915] block nbd45: Receive control failed (result -32)
[  640.495093][ T8915] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  640.504051][ T8915] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff

syzkaller
syzkaller login: [  642.096135][T13621] Process accounting resumed
[  642.277425][ T8915] block nbd46: Receive control failed (result -32)
[  642.347281][T13648] random: crng reseeded on system resumption
[  642.708848][T13652] nbd: socks must be embedded in a SOCK_ITEM attr
[  642.963537][T13651] nbd: socks must be embedded in a SOCK_ITEM attr
[  644.836479][ T8915] block nbd47: Receive control failed (result -32)
[  647.019196][T13728] Process accounting paused
[  650.904098][ T6430] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 330 seconds
[  651.684295][T13868] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1575'.
[  652.476681][T13868] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  653.205583][T13868] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  653.264856][T13868] bond0 (unregistering): Released all slaves
[  653.510130][T13888] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1580'.
[  653.640367][T13888] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  653.731429][T13888] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  653.820304][T13888] bond0 (unregistering): Released all slaves
[  660.736545][ T8915] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260
[  660.736580][ T8915] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260
[  660.752548][ T8915] Bluetooth: hci1: Dropping invalid advertising data
[  660.760831][ T8915] Bluetooth: hci1: unknown advertising packet type: 0xe9
[  660.760865][ T8915] Bluetooth: hci1: Dropping invalid advertising data
[  660.775332][ T8915] Bluetooth: hci1: Malformed LE Event: 0x02
[  661.355232][ T8915] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  661.355268][ T8915] Bluetooth: hci0: unexpected subevent 0x0e length: 725 > 15
[  661.370432][ T8915] Bluetooth: hci0: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  664.689352][T14014] blktrace: Concurrent blktraces are not allowed on sda1
[  666.180472][T14029] kAFS: unparsable volume name
[  666.463753][T14040] openvswitch: netlink: Message has 4690 unknown bytes.
[  669.870252][T14095] bond0: option slaves: interface -Âô]àæ©=,Dçon?ïI|›a �CB does not exist!
[  671.366798][T14121] FAULT_INJECTION: forcing a failure.
[  671.366798][T14121] name failslab, interval 1, probability 0, space 0, times 0
[  671.450698][T14121] CPU: 0 UID: 0 PID: 14121 Comm: syz.4.1627 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  671.450738][T14121] Tainted: [L]=SOFTLOCKUP
[  671.450746][T14121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  671.450761][T14121] Call Trace:
[  671.450769][T14121]  <TASK>
[  671.450778][T14121]  dump_stack_lvl+0x100/0x190
[  671.450825][T14121]  should_fail_ex.cold+0x5/0xa
[  671.450856][T14121]  should_failslab+0xc2/0x120
[  671.450886][T14121]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  671.450926][T14121]  ? prepare_creds+0x2c/0x950
[  671.450956][T14121]  prepare_creds+0x2c/0x950
[  671.450983][T14121]  __do_sys_landlock_restrict_self+0x14c/0x9e0
[  671.451011][T14121]  ? rcu_is_watching+0x12/0xc0
[  671.451043][T14121]  do_syscall_64+0x115/0x840
[  671.451077][T14121]  ? clear_bhb_loop+0x40/0x90
[  671.451141][T14121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  671.451166][T14121] RIP: 0033:0x7ff88979ce59
[  671.451186][T14121] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  671.451210][T14121] RSP: 002b:00007ff88a6c4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  671.451233][T14121] RAX: ffffffffffffffda RBX: 00007ff889a16180 RCX: 00007ff88979ce59
[  671.451250][T14121] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000007
[  671.451264][T14121] RBP: 00007ff889832d6f R08: 0000000000000000 R09: 0000000000000000
[  671.451278][T14121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  671.451292][T14121] R13: 00007ff889a16218 R14: 00007ff889a16180 R15: 00007fff99c2ef68
[  671.451322][T14121]  </TASK>
[  672.632221][T14132] Process accounting paused
[  673.713005][T14158] usb usb39: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  674.111250][T14168] process 'syz.2.1641' launched './file0' with NULL argv: empty string added
[  675.734159][T14202] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  677.163499][T14214] Process accounting resumed
[  678.428383][T14268] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1664'.
[  678.496547][T14268] Zero length message leads to an empty skb
[  679.286672][T14271] zswap: compressor  not available
[  679.597304][T14292] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1668'.
[  679.752069][T14296] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1668'.
[  680.999895][ T6430] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 360 seconds
[  686.131269][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  686.143902][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  686.698976][T14404] [U] 0�="­/�
[  686.735038][T14404] [U] 
[  686.775045][T14404] [U] EÇeÅQ‰Í@’
[  686.818542][T14404] [U] 
[  690.532394][T14447] ubi0: attaching mtd0
[  690.562842][T14447] ubi0: scanning is finished
[  690.593586][T14447] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  691.039085][T14447] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  693.444642][T14491] FAULT_INJECTION: forcing a failure.
[  693.444642][T14491] name failslab, interval 1, probability 0, space 0, times 0
[  693.571287][T14491] CPU: 0 UID: 0 PID: 14491 Comm: syz.4.1705 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  693.571326][T14491] Tainted: [L]=SOFTLOCKUP
[  693.571334][T14491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  693.571349][T14491] Call Trace:
[  693.571357][T14491]  <TASK>
[  693.571366][T14491]  dump_stack_lvl+0x100/0x190
[  693.571414][T14491]  should_fail_ex.cold+0x5/0xa
[  693.571450][T14491]  should_failslab+0xc2/0x120
[  693.571481][T14491]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  693.571528][T14491]  ? security_inode_alloc+0x3b/0x2c0
[  693.571556][T14491]  ? lockdep_init_map_type+0x5c/0x250
[  693.571600][T14491]  security_inode_alloc+0x3b/0x2c0
[  693.571628][T14491]  inode_init_always_gfp+0xc77/0xfb0
[  693.571664][T14491]  alloc_inode+0x8e/0x250
[  693.571701][T14491]  new_inode+0x22/0x1c0
[  693.571741][T14491]  proc_get_inode+0x1d/0x780
[  693.571773][T14491]  proc_lookup_de+0x236/0x360
[  693.571809][T14491]  proc_lookup+0xcf/0x110
[  693.571841][T14491]  proc_root_lookup+0x3b/0x70
[  693.571873][T14491]  __lookup_slow+0x251/0x460
[  693.571912][T14491]  ? __pfx___lookup_slow+0x10/0x10
[  693.571977][T14491]  lookup_slow+0x50/0x70
[  693.572015][T14491]  path_lookupat+0x5e8/0xc40
[  693.572045][T14491]  path_openat+0x1b08/0x31a0
[  693.572075][T14491]  ? kasan_save_stack+0x3f/0x50
[  693.572098][T14491]  ? kasan_save_stack+0x30/0x50
[  693.572120][T14491]  ? kasan_save_track+0x14/0x30
[  693.572144][T14491]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  693.572183][T14491]  ? do_getname+0x35/0x390
[  693.572217][T14491]  ? do_sys_openat2+0xc5/0x1e0
[  693.572260][T14491]  ? __pfx_path_openat+0x10/0x10
[  693.572301][T14491]  do_file_open+0x20e/0x430
[  693.572335][T14491]  ? __pfx_do_file_open+0x10/0x10
[  693.572387][T14491]  ? alloc_fd+0x476/0x790
[  693.572419][T14491]  ? do_getname+0x191/0x390
[  693.572458][T14491]  do_sys_openat2+0x10d/0x1e0
[  693.572502][T14491]  ? __pfx_do_sys_openat2+0x10/0x10
[  693.572542][T14491]  ? do_raw_spin_lock+0x128/0x260
[  693.572576][T14491]  __x64_sys_openat+0x12d/0x210
[  693.572615][T14491]  ? __pfx___x64_sys_openat+0x10/0x10
[  693.572659][T14491]  ? rcu_is_watching+0x12/0xc0
[  693.572691][T14491]  do_syscall_64+0x115/0x840
[  693.572725][T14491]  ? clear_bhb_loop+0x40/0x90
[  693.572755][T14491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  693.572780][T14491] RIP: 0033:0x7ff88979ce59
[  693.572800][T14491] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  693.572823][T14491] RSP: 002b:00007ff88a6e5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  693.572858][T14491] RAX: ffffffffffffffda RBX: 00007ff889a16090 RCX: 00007ff88979ce59
[  693.572875][T14491] RDX: 000000000075b143 RSI: 0000200000000240 RDI: ffffffffffffff9c
[  693.572891][T14491] RBP: 00007ff889832d6f R08: 0000000000000000 R09: 0000000000000000
[  693.572905][T14491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  693.572920][T14491] R13: 00007ff889a16128 R14: 00007ff889a16090 R15: 00007fff99c2ef68
[  693.572951][T14491]  </TASK>
[  695.075028][T14513] FAULT_INJECTION: forcing a failure.
[  695.075028][T14513] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  695.138984][   T29] audit: type=1800 audit(1780003553.070:11): pid=14513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1709" name="lu_gp_id" dev="configfs" ino=55214 res=0 errno=0
[  695.185440][T14513] CPU: 0 UID: 0 PID: 14513 Comm: syz.4.1709 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  695.185480][T14513] Tainted: [L]=SOFTLOCKUP
[  695.185488][T14513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  695.185503][T14513] Call Trace:
[  695.185511][T14513]  <TASK>
[  695.185519][T14513]  dump_stack_lvl+0x100/0x190
[  695.185567][T14513]  should_fail_ex.cold+0x5/0xa
[  695.185593][T14513]  ? prepare_alloc_pages+0x16d/0x5f0
[  695.185627][T14513]  should_fail_alloc_page+0xeb/0x140
[  695.185658][T14513]  prepare_alloc_pages+0x1f0/0x5f0
[  695.185689][T14513]  ? arch_stack_walk+0xa6/0xf0
[  695.185723][T14513]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  695.185770][T14513]  ? stack_trace_save+0x8e/0xc0
[  695.185802][T14513]  ? __pfx_stack_trace_save+0x10/0x10
[  695.185836][T14513]  ? stack_depot_save_flags+0x27/0x9d0
[  695.185875][T14513]  ? is_bpf_text_address+0x8a/0x1a0
[  695.185908][T14513]  ? is_bpf_text_address+0x8a/0x1a0
[  695.185942][T14513]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  695.185987][T14513]  ? kasan_save_stack+0x3f/0x50
[  695.186010][T14513]  ? kasan_save_stack+0x30/0x50
[  695.186033][T14513]  ? kasan_save_track+0x14/0x30
[  695.186057][T14513]  ? kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  695.186098][T14513]  ? __get_vm_area_node+0x1ca/0x330
[  695.186127][T14513]  ? __vmalloc_node_range_noprof+0x228/0x1630
[  695.186168][T14513]  ? __kvmalloc_node_noprof+0x3de/0xa00
[  695.186192][T14513]  ? __do_sys_listmount+0x289/0xee0
[  695.186217][T14513]  ? do_syscall_64+0x115/0x840
[  695.186251][T14513]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.186289][T14513]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  695.186325][T14513]  ? policy_nodemask+0xed/0x4f0
[  695.186357][T14513]  alloc_pages_mpol+0x1fb/0x540
[  695.186388][T14513]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  695.186425][T14513]  alloc_pages_noprof+0x1a/0x160
[  695.186459][T14513]  get_free_pages_noprof+0x10/0xb0
[  695.186487][T14513]  __kasan_populate_vmalloc+0xa0/0x210
[  695.186533][T14513]  alloc_vmap_area+0x95d/0x2b70
[  695.186574][T14513]  ? __pfx_alloc_vmap_area+0x10/0x10
[  695.186609][T14513]  __get_vm_area_node+0x1ca/0x330
[  695.186646][T14513]  __vmalloc_node_range_noprof+0x228/0x1630
[  695.186681][T14513]  ? __do_sys_listmount+0x289/0xee0
[  695.186716][T14513]  ? __do_sys_listmount+0x289/0xee0
[  695.186746][T14513]  ? alloc_pages_mpol+0x25a/0x540
[  695.186777][T14513]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  695.186817][T14513]  ? rcu_is_watching+0x12/0xc0
[  695.186852][T14513]  __kvmalloc_node_noprof+0x3de/0xa00
[  695.186878][T14513]  ? __do_sys_listmount+0x289/0xee0
[  695.186903][T14513]  ? __do_sys_listmount+0x289/0xee0
[  695.186928][T14513]  ? _copy_from_user+0x59/0xd0
[  695.186962][T14513]  ? copy_mnt_id_req+0x1b1/0x350
[  695.187003][T14513]  __do_sys_listmount+0x289/0xee0
[  695.187029][T14513]  ? __pfx_do_futex+0x10/0x10
[  695.187058][T14513]  ? cap_task_prctl+0x104/0xa50
[  695.187086][T14513]  ? __pfx___do_sys_listmount+0x10/0x10
[  695.187126][T14513]  ? rcu_is_watching+0x12/0xc0
[  695.187164][T14513]  do_syscall_64+0x115/0x840
[  695.187197][T14513]  ? clear_bhb_loop+0x40/0x90
[  695.187226][T14513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.187251][T14513] RIP: 0033:0x7ff88979ce59
[  695.187272][T14513] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  695.187295][T14513] RSP: 002b:00007ff88a6e5028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  695.187319][T14513] RAX: ffffffffffffffda RBX: 00007ff889a16090 RCX: 00007ff88979ce59
[  695.187335][T14513] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  695.187350][T14513] RBP: 00007ff889832d6f R08: 0000000000000000 R09: 0000000000000000
[  695.187365][T14513] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  695.187380][T14513] R13: 00007ff889a16128 R14: 00007ff889a16090 R15: 00007fff99c2ef68
[  695.187410][T14513]  </TASK>
[  695.982101][T14513] syz.4.1709: vmalloc error: size 8000000, vm_struct allocation failed, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  696.033206][T14513] CPU: 0 UID: 0 PID: 14513 Comm: syz.4.1709 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  696.033252][T14513] Tainted: [L]=SOFTLOCKUP
[  696.033260][T14513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  696.033276][T14513] Call Trace:
[  696.033283][T14513]  <TASK>
[  696.033293][T14513]  dump_stack_lvl+0x100/0x190
[  696.033340][T14513]  warn_alloc.cold+0x95/0x1c1
[  696.033366][T14513]  ? __pfx_warn_alloc+0x10/0x10
[  696.033404][T14513]  ? lockdep_hardirqs_on+0x78/0x100
[  696.033442][T14513]  ? __get_vm_area_node+0x2cd/0x330
[  696.033478][T14513]  ? __get_vm_area_node+0x208/0x330
[  696.033515][T14513]  __vmalloc_node_range_noprof+0xccd/0x1630
[  696.033559][T14513]  ? __do_sys_listmount+0x289/0xee0
[  696.033589][T14513]  ? alloc_pages_mpol+0x25a/0x540
[  696.033621][T14513]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  696.033661][T14513]  ? rcu_is_watching+0x12/0xc0
[  696.033695][T14513]  __kvmalloc_node_noprof+0x3de/0xa00
[  696.033721][T14513]  ? __do_sys_listmount+0x289/0xee0
[  696.033747][T14513]  ? __do_sys_listmount+0x289/0xee0
[  696.033771][T14513]  ? _copy_from_user+0x59/0xd0
[  696.033805][T14513]  ? copy_mnt_id_req+0x1b1/0x350
[  696.033846][T14513]  __do_sys_listmount+0x289/0xee0
[  696.033872][T14513]  ? __pfx_do_futex+0x10/0x10
[  696.033898][T14513]  ? cap_task_prctl+0x104/0xa50
[  696.033926][T14513]  ? __pfx___do_sys_listmount+0x10/0x10
[  696.033965][T14513]  ? rcu_is_watching+0x12/0xc0
[  696.033998][T14513]  do_syscall_64+0x115/0x840
[  696.034032][T14513]  ? clear_bhb_loop+0x40/0x90
[  696.034061][T14513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  696.034086][T14513] RIP: 0033:0x7ff88979ce59
[  696.034106][T14513] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  696.034130][T14513] RSP: 002b:00007ff88a6e5028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  696.034153][T14513] RAX: ffffffffffffffda RBX: 00007ff889a16090 RCX: 00007ff88979ce59
[  696.034169][T14513] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080
[  696.034184][T14513] RBP: 00007ff889832d6f R08: 0000000000000000 R09: 0000000000000000
[  696.034198][T14513] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  696.034213][T14513] R13: 00007ff889a16128 R14: 00007ff889a16090 R15: 00007fff99c2ef68
[  696.034250][T14513]  </TASK>
[  696.034269][T14513] Mem-Info:
[  696.872293][T14513] active_anon:56170 inactive_anon:5 isolated_anon:0
[  696.872293][T14513]  active_file:12370 inactive_file:48078 isolated_file:0
[  696.872293][T14513]  unevictable:768 dirty:587 writeback:0
[  696.872293][T14513]  slab_reclaimable:12338 slab_unreclaimable:96749
[  696.872293][T14513]  mapped:61489 shmem:46588 pagetables:1613
[  696.872293][T14513]  sec_pagetables:0 bounce:0
[  696.872293][T14513]  kernel_misc_reclaimable:0
[  696.872293][T14513]  free:1247217 free_pcp:12042 free_cma:0
[  697.021093][T14513] Node 0 active_anon:226812kB inactive_anon:20kB active_file:49480kB inactive_file:192128kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:247776kB dirty:2344kB writeback:0kB shmem:186688kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13376kB pagetables:6464kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  697.135710][T14513] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:184kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:52kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  697.247568][T14513] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  697.420031][T14513] lowmem_reserve[]: 0 2478 2479 2479 2479
[  697.462118][T14513] Node 0 DMA32 free:1025120kB boost:0kB min:34060kB low:42572kB high:51084kB reserved_highatomic:0KB free_highatomic:0KB active_anon:236652kB inactive_anon:20kB active_file:49480kB inactive_file:192136kB unevictable:1536kB writepending:2320kB zspages:560kB present:3129332kB managed:2537540kB mlocked:0kB bounce:0kB free_pcp:39752kB local_pcp:39752kB free_cma:0kB
[  697.652932][T14513] lowmem_reserve[]: 0 0 1 1 1
[  697.695553][T14513] Node 0 Normal free:8kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1112kB mlocked:0kB bounce:0kB free_pcp:28kB local_pcp:28kB free_cma:0kB
[  697.871498][T14513] lowmem_reserve[]: 0 0 0 0 0
[  697.895153][T14513] Node 1 Normal free:3935540kB boost:0kB min:55824kB low:69780kB high:83736kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:184kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:10176kB local_pcp:10176kB free_cma:0kB
[  698.079642][T14513] lowmem_reserve[]: 0 0 0 0 0
[  698.105051][T14513] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  698.196671][T14513] Node 0 DMA32: 5371*4kB (U) 3567*8kB (UM) 2075*16kB (UME) 3*32kB (UE) 54*64kB (U) 367*128kB (UM) 294*256kB (UME) 86*512kB (UME) 18*1024kB (UM) 2*2048kB (ME) 182*4096kB (UM) = 1021044kB
[  698.323828][T14513] Node 0 Normal: 0*4kB 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  698.399629][T14513] Node 1 Normal: 13*4kB (U) 12*8kB (UM) 10*16kB (U) 6*32kB (U) 9*64kB (U) 6*128kB (U) 4*256kB (UM) 5*512kB (UM) 2*1024kB (U) 2*2048kB (U) 958*4096kB (UM) = 3935540kB
[  698.487731][T14513] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  698.530996][T14513] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  698.580935][T14513] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  698.641430][T14513] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  698.641460][T14513] 112363 total pagecache pages
[  698.641470][T14513] 35 pages in swap cache
[  698.641478][T14513] Free swap  = 124484kB
[  698.641487][T14513] Total swap = 124996kB
[  698.641497][T14513] 2097051 pages RAM
[  698.641506][T14513] 0 pages HighMem/MovableOnly
[  698.641514][T14513] 430773 pages reserved
[  698.641522][T14513] 0 pages cma reserved
[  701.526005][T14564] sd 0:0:1:0: PR command failed: 1026
[  701.573750][T14564] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  701.641804][T14564] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  701.998228][T14564] syz.4.1720 uses obsolete (PF_INET,SOCK_PACKET)
[  703.711284][T14558] Process accounting resumed
[  707.273939][T14616] Process accounting paused
[  708.546183][T14633] nbd: illegal input index 37139
[  711.093661][ T6430] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 390 seconds
[  712.011882][ T8915] Bluetooth: hci1: Unexpected cc 0x7c89 with no status
[  715.728959][T14702] ubi0: attaching mtd0
[  715.762445][T14702] ubi0: scanning is finished
[  715.794576][T14702] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  716.090484][T14702] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  717.423858][T14728] ubi0: attaching mtd0
[  717.453901][T14728] ubi0: scanning is finished
[  717.477497][T14728] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  717.765197][T14728] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  724.282949][T14816] openvswitch: netlink: Tunnel attr 242 out of range max 16
[  724.376689][T14823] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1772'.
[  724.784940][T14827] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1774'.
[  725.094453][T14832] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1774'.
[  729.088566][ T8915] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  729.088598][ T8915] Bluetooth: hci3: unexpected subevent 0x06 length: 725 > 10
[  730.868419][T14876] sctp: [Deprecated]: syz.0.1785 (pid 14876) Use of int in maxseg socket option.
[  730.868419][T14876] Use struct sctp_assoc_value instead
[  731.183504][ T8915] Bluetooth: hci3: command 0x0406 tx timeout
[  734.803138][T14902] FAULT_INJECTION: forcing a failure.
[  734.803138][T14902] name failslab, interval 1, probability 0, space 0, times 0
[  734.979592][T14902] CPU: 0 UID: 0 PID: 14902 Comm: syz.2.1792 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  734.979632][T14902] Tainted: [L]=SOFTLOCKUP
[  734.979640][T14902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  734.979655][T14902] Call Trace:
[  734.979662][T14902]  <TASK>
[  734.979671][T14902]  dump_stack_lvl+0x100/0x190
[  734.979718][T14902]  should_fail_ex.cold+0x5/0xa
[  734.979749][T14902]  should_failslab+0xc2/0x120
[  734.979784][T14902]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  734.979838][T14902]  ? __proc_create+0x2cb/0x8c0
[  734.979876][T14902]  __proc_create+0x2cb/0x8c0
[  734.979908][T14902]  ? __pfx___proc_create+0x10/0x10
[  734.979943][T14902]  ? _raw_write_unlock+0x28/0x50
[  734.979975][T14902]  ? proc_register+0x559/0x8a0
[  734.980010][T14902]  proc_create_reg+0x75/0x170
[  734.980044][T14902]  ? __pfx_can_stats_proc_show+0x10/0x10
[  734.980079][T14902]  proc_create_net_single+0x86/0x180
[  734.980113][T14902]  ? __pfx_proc_create_net_single+0x10/0x10
[  734.980149][T14902]  ? round_jiffies+0x10a/0x160
[  734.980190][T14902]  can_init_proc+0xac/0x4b0
[  734.980226][T14902]  can_pernet_init+0x1e4/0x370
[  734.980260][T14902]  ? __pfx_can_pernet_init+0x10/0x10
[  734.980291][T14902]  ops_init+0x1e2/0x5f0
[  734.980320][T14902]  setup_net+0x118/0x3a0
[  734.980347][T14902]  ? __pfx_setup_net+0x10/0x10
[  734.980374][T14902]  ? mutex_init_lockdep+0xf1/0x120
[  734.980403][T14902]  copy_net_ns+0x46f/0x7c0
[  734.980434][T14902]  create_new_namespaces+0x3ea/0xac0
[  734.980472][T14902]  unshare_nsproxy_namespaces+0xf2/0x220
[  734.980505][T14902]  ksys_unshare+0x438/0xab0
[  734.980542][T14902]  ? __pfx_ksys_unshare+0x10/0x10
[  734.980576][T14902]  ? xfd_validate_state+0x129/0x190
[  734.980609][T14902]  __x64_sys_unshare+0x31/0x40
[  734.980644][T14902]  do_syscall_64+0x115/0x840
[  734.980678][T14902]  ? clear_bhb_loop+0x40/0x90
[  734.980708][T14902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.980732][T14902] RIP: 0033:0x7fa3ccb9ce59
[  734.980752][T14902] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  734.980776][T14902] RSP: 002b:00007fa3cadee028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  734.980799][T14902] RAX: ffffffffffffffda RBX: 00007fa3cce15fa0 RCX: 00007fa3ccb9ce59
[  734.980821][T14902] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  734.980836][T14902] RBP: 00007fa3ccc32d6f R08: 0000000000000000 R09: 0000000000000000
[  734.980850][T14902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  734.980865][T14902] R13: 00007fa3cce16038 R14: 00007fa3cce15fa0 R15: 00007ffecfd84bc8
[  734.980896][T14902]  </TASK>
[  737.462628][T14916] Process accounting resumed
[  741.125866][T14965] bridge_slave_0: left allmulticast mode
[  741.196189][ T6430] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 420 seconds
[  741.263736][T14965] bridge_slave_0: left promiscuous mode
[  741.333113][T14965] bridge0: port 1(bridge_slave_0) entered disabled state
[  743.720848][T15017] __vm_enough_memory: pid: 15017, comm: syz.2.1811, bytes: 4398046457856 not enough memory for the allocation
[  744.977762][ T5758] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[  747.593948][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  747.603671][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  749.537703][ T8915] Bluetooth: hci5: unexpected event 0x3e length: 508 > 260
[  749.537740][ T8915] Bluetooth: hci5: unexpected subevent 0x02 length: 507 > 260
[  749.552789][ T8915] Bluetooth: hci5: Dropping invalid advertising data
[  749.559517][ T8915] Bluetooth: hci5: unknown advertising packet type: 0xe9
[  749.559555][ T8915] Bluetooth: hci5: Dropping invalid advertising data
[  749.573641][ T8915] Bluetooth: hci5: Dropping invalid advertising data
[  749.580404][ T8915] Bluetooth: hci5: Malformed LE Event: 0x02
[  751.213051][   T29] audit: type=1800 audit(1780003609.192:12): pid=15095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1824" name="file0" dev="tmpfs" ino=2103 res=0 errno=0
[  752.257334][T15111] __vm_enough_memory: pid: 15111, comm: syz.4.1829, bytes: 4398046457856 not enough memory for the allocation
[  756.342786][T15151] kAFS: unparsable volume name
[  758.352260][T15182] sctp: [Deprecated]: syz.3.1842 (pid 15182) Use of struct sctp_assoc_value in delayed_ack socket option.
[  758.352260][T15182] Use struct sctp_sack_info instead
[  761.583759][T15225] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1851'.
[  769.834210][T15329] FAULT_INJECTION: forcing a failure.
[  769.834210][T15329] name failslab, interval 1, probability 0, space 0, times 0
[  769.925357][T15329] CPU: 0 UID: 0 PID: 15329 Comm: syz.4.1868 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  769.925396][T15329] Tainted: [L]=SOFTLOCKUP
[  769.925405][T15329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  769.925420][T15329] Call Trace:
[  769.925427][T15329]  <TASK>
[  769.925436][T15329]  dump_stack_lvl+0x100/0x190
[  769.925483][T15329]  should_fail_ex.cold+0x5/0xa
[  769.925515][T15329]  should_failslab+0xc2/0x120
[  769.925545][T15329]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  769.925585][T15329]  ? ptlock_alloc+0x1f/0x70
[  769.925620][T15329]  ? do_raw_spin_lock+0x128/0x260
[  769.925652][T15329]  ptlock_alloc+0x1f/0x70
[  769.925687][T15329]  pte_alloc_one+0x82/0x3d0
[  769.925720][T15329]  do_fault+0x86c/0x1750
[  769.925751][T15329]  ? __pmd_alloc+0x3fb/0x950
[  769.925784][T15329]  __handle_mm_fault+0x187d/0x2a00
[  769.925826][T15329]  ? mt_find+0x45e/0x8e0
[  769.925864][T15329]  ? __pfx___handle_mm_fault+0x10/0x10
[  769.925899][T15329]  ? __pfx_mt_find+0x10/0x10
[  769.925951][T15329]  ? find_vma+0xbf/0x140
[  769.925976][T15329]  ? __pfx_find_vma+0x10/0x10
[  769.926013][T15329]  handle_mm_fault+0x37b/0xa30
[  769.926057][T15329]  do_user_addr_fault+0x74c/0x12f0
[  769.926089][T15329]  ? trace_page_fault_kernel+0x7a/0x200
[  769.926120][T15329]  exc_page_fault+0x6f/0xd0
[  769.926155][T15329]  asm_exc_page_fault+0x26/0x30
[  769.926179][T15329] RIP: 0010:rep_movs_alternative+0x30/0x90
[  769.926206][T15329] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 9d 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  769.926230][T15329] RSP: 0018:ffffc900054d7d90 EFLAGS: 00050216
[  769.926250][T15329] RAX: 0000000000000001 RBX: 0000000000000009 RCX: 0000000000000020
[  769.926265][T15329] RDX: 0000000000000001 RSI: 0000000000000009 RDI: ffffc900054d7e30
[  769.926280][T15329] RBP: 0000000000000020 R08: 0000000000000001 R09: fffff52000a9afc9
[  769.926295][T15329] R10: ffffc900054d7e4f R11: 0000000000000000 R12: 0000000000000000
[  769.926309][T15329] R13: ffffc900054d7e30 R14: ffffc900054d7e30 R15: dffffc0000000000
[  769.926339][T15329]  _copy_from_user+0x98/0xd0
[  769.926375][T15329]  do_fcntl+0xf0c/0x1670
[  769.926414][T15329]  ? __pfx_do_fcntl+0x10/0x10
[  769.926449][T15329]  ? __fget_files+0x215/0x3d0
[  769.926487][T15329]  ? tomoyo_file_fcntl+0x6c/0xc0
[  769.926515][T15329]  __x64_sys_fcntl+0x163/0x200
[  769.926564][T15329]  do_syscall_64+0x115/0x840
[  769.926597][T15329]  ? clear_bhb_loop+0x40/0x90
[  769.926627][T15329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  769.926652][T15329] RIP: 0033:0x7ff88979ce59
[  769.926672][T15329] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  769.926695][T15329] RSP: 002b:00007ff88a706028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  769.926716][T15329] RAX: ffffffffffffffda RBX: 00007ff889a15fa0 RCX: 00007ff88979ce59
[  769.926732][T15329] RDX: 0000000000000009 RSI: 0000000000000006 RDI: 0000000000000003
[  769.926746][T15329] RBP: 00007ff889832d6f R08: 0000000000000000 R09: 0000000000000000
[  769.926761][T15329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  769.926775][T15329] R13: 00007ff889a16038 R14: 00007ff889a15fa0 R15: 00007fff99c2ef68
[  769.926805][T15329]  </TASK>
[  770.772415][ T8915] Bluetooth: hci5: unexpected event 0x3e length: 508 > 260
[  770.772449][ T8915] Bluetooth: hci5: unexpected subevent 0x02 length: 507 > 260
[  770.787843][ T8915] Bluetooth: hci5: Dropping invalid advertising data
[  770.794730][ T8915] Bluetooth: hci5: unknown advertising packet type: 0xe9
[  770.794765][ T8915] Bluetooth: hci5: Dropping invalid advertising data
[  770.808833][ T8915] Bluetooth: hci5: Malformed LE Event: 0x02
[  771.285603][ T6430] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 450 seconds
[  771.312607][T15330] Process accounting paused
[  771.638291][T15339] dlm: non-version read from control device 2147479540
[  774.439659][T15377] random: crng reseeded on system resumption
[  775.423278][ T9005] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260
[  775.423313][ T9005] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260
[  775.440323][ T9005] Bluetooth: hci0: Dropping invalid advertising data
[  775.447202][ T9005] Bluetooth: hci0: unknown advertising packet type: 0xe9
[  775.447235][ T9005] Bluetooth: hci0: Dropping invalid advertising data
[  775.461095][ T9005] Bluetooth: hci0: Malformed LE Event: 0x02
[  776.355730][T15405] netlink: 346 bytes leftover after parsing attributes in process `syz.4.1883'.
[  776.403662][T15410] netlink: 346 bytes leftover after parsing attributes in process `syz.4.1883'.
[  778.765007][T15440] vmstat_refresh: nr_hugetlb -16896
[  779.075931][T15442] vmstat_refresh: nr_hugetlb -16896
[  783.188181][T15482] can: request_module (can-proto-0) failed.
[  787.526574][T15515] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  788.778021][T15526] ksmbd: Unknown IPC event: 14, ignore.
[  788.839823][ T9005] Bluetooth: hci0: Received unexpected HCI Event 0x00
[  790.366341][ T9005] block nbd48: Receive control failed (result -32)
[  790.944218][T15560] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1913'.
[  790.950681][T15560] netlink: 'syz.2.1913': attribute type 7 has an invalid length.
[  791.008006][ T9005] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  791.008049][ T9005] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  791.008074][ T9005] Bluetooth: hci3: Dropping invalid advertising data
[  791.008105][ T9005] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  791.008123][ T9005] Bluetooth: hci3: unknown advertising packet type: 0x20
[  791.008140][ T9005] Bluetooth: hci3: Dropping invalid advertising data
[  791.008155][ T9005] Bluetooth: hci3: unknown advertising packet type: 0x64
[  791.008176][ T9005] Bluetooth: hci3: Malformed LE Event: 0x02
[  793.195534][T15585] zswap: compressor  not available
[  793.220961][T15597] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  793.277503][T15600] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  795.969027][ T9005] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  797.746189][T15664] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  798.017053][T15538] Bluetooth: hci3: command 0x0406 tx timeout
[  798.120095][T15664] File: /dev/nullb0 PID: 15664 Comm: syz.4.1934
[  798.586279][T15684] mmap: syz.4.1934 (15684) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  799.634139][T15692] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1938'.
[  800.098291][ T9005] Bluetooth: hci3: command 0x0406 tx timeout
[  801.384850][ T6430] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 480 seconds
[  801.706021][T15538] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260
[  801.706056][T15538] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260
[  801.722162][T15538] Bluetooth: hci0: Dropping invalid advertising data
[  801.730776][T15538] Bluetooth: hci0: unknown advertising packet type: 0xe9
[  801.730810][T15538] Bluetooth: hci0: Dropping invalid advertising data
[  801.746381][T15538] Bluetooth: hci0: Dropping invalid advertising data
[  801.753263][T15538] Bluetooth: hci0: Malformed LE Event: 0x02
[  802.501678][T15716] Process accounting resumed
[  804.150617][T15538] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  804.601159][T15773] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1955'.
[  804.679844][T15774] FAULT_INJECTION: forcing a failure.
[  804.679844][T15774] name fail_futex, interval 1, probability 0, space 0, times 0
[  805.100333][T15774] CPU: 0 UID: 0 PID: 15774 Comm: syz.4.1953 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  805.100373][T15774] Tainted: [L]=SOFTLOCKUP
[  805.100381][T15774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  805.100396][T15774] Call Trace:
[  805.100404][T15774]  <TASK>
[  805.100413][T15774]  dump_stack_lvl+0x100/0x190
[  805.100460][T15774]  should_fail_ex.cold+0x5/0xa
[  805.100490][T15774]  get_futex_key+0x1d2/0x1510
[  805.100533][T15774]  ? __pfx_get_futex_key+0x10/0x10
[  805.100582][T15774]  ? pick_eevdf+0x4d3/0x860
[  805.100616][T15774]  ? update_se+0x94/0x770
[  805.100659][T15774]  futex_wait_setup+0x83/0x510
[  805.100697][T15774]  __futex_wait+0x19f/0x300
[  805.100731][T15774]  ? __pfx___futex_wait+0x10/0x10
[  805.100761][T15774]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  805.100799][T15774]  ? __pfx_futex_wake_mark+0x10/0x10
[  805.100834][T15774]  ? find_held_lock+0x2b/0x80
[  805.100864][T15774]  ? futex_wake+0x456/0x530
[  805.100900][T15774]  futex_wait+0xe6/0x370
[  805.100931][T15774]  ? __pfx_futex_wait+0x10/0x10
[  805.100977][T15774]  do_futex+0x1ef/0x350
[  805.101002][T15774]  ? __pfx_do_futex+0x10/0x10
[  805.101029][T15774]  ? __fget_files+0x21f/0x3d0
[  805.101061][T15774]  __x64_sys_futex+0x34f/0x4d0
[  805.101091][T15774]  ? __pfx___x64_sys_futex+0x10/0x10
[  805.101116][T15774]  ? ksys_write+0x1ac/0x250
[  805.101147][T15774]  ? rcu_is_watching+0x12/0xc0
[  805.101179][T15774]  do_syscall_64+0x115/0x840
[  805.101212][T15774]  ? clear_bhb_loop+0x40/0x90
[  805.101242][T15774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  805.101266][T15774] RIP: 0033:0x7ff88979ce59
[  805.101286][T15774] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  805.101310][T15774] RSP: 002b:00007ff88a6c40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  805.101334][T15774] RAX: ffffffffffffffda RBX: 00007ff889a16188 RCX: 00007ff88979ce59
[  805.101350][T15774] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff889a16188
[  805.101364][T15774] RBP: 00007ff889a16180 R08: 0000000000000000 R09: 0000000000000000
[  805.101379][T15774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  805.101393][T15774] R13: 00007ff889a16218 R14: 00007fff99c2ee80 R15: 00007fff99c2ef68
[  805.101423][T15774]  </TASK>
[  806.015877][T15782] nbd: illegal input index 37139
[  806.958025][   T29] audit: type=1800 audit(1780003664.914:13): pid=15792 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1959" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  808.454129][T15814] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1964'.
[  809.020877][T15538] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260
[  809.020912][T15538] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260
[  809.038474][T15538] Bluetooth: hci0: Dropping invalid advertising data
[  809.045580][T15538] Bluetooth: hci0: unknown advertising packet type: 0xe9
[  809.045611][T15538] Bluetooth: hci0: Dropping invalid advertising data
[  809.059938][T15538] Bluetooth: hci0: Dropping invalid advertising data
[  809.069112][T15538] Bluetooth: hci0: Malformed LE Event: 0x02
[  809.075775][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  809.084348][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  809.827697][T15836] netlink: zone id is out of range
[  809.865541][T15836] netlink: zone id is out of range
[  809.915886][T15836] netlink: zone id is out of range
[  810.011590][T15836] netlink: zone id is out of range
[  810.100565][T15836] netlink: zone id is out of range
[  810.117858][T15821] ubi0: attaching mtd0
[  810.140240][T15821] ubi0: scanning is finished
[  810.162052][T15821] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  810.179742][T15836] netlink: zone id is out of range
[  810.190387][T15823] kexec: Could not allocate control_code_buffer
[  810.233069][T15836] netlink: zone id is out of range
[  810.280643][T15836] netlink: zone id is out of range
[  810.341904][T15821] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  810.367034][T15836] netlink: zone id is out of range
[  810.428893][T15836] netlink: zone id is out of range
[  811.718857][T15538] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  813.787558][ T9005] Bluetooth: hci1: command 0x0406 tx timeout
[  815.865878][T15538] Bluetooth: hci1: command 0x0406 tx timeout
[  815.992863][T15916] Process accounting resumed
[  817.101521][T15949] sg_write: data in/out 262108/14 bytes for SCSI command 0x61-- guessing data in;
[  817.101521][T15949]    program syz.2.1991 not setting count and/or reply_len properly
[  818.137911][T15957] FAULT_INJECTION: forcing a failure.
[  818.137911][T15957] name failslab, interval 1, probability 0, space 0, times 0
[  818.242317][T15957] CPU: 0 UID: 0 PID: 15957 Comm: syz.2.1993 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  818.242357][T15957] Tainted: [L]=SOFTLOCKUP
[  818.242366][T15957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  818.242380][T15957] Call Trace:
[  818.242388][T15957]  <TASK>
[  818.242400][T15957]  dump_stack_lvl+0x100/0x190
[  818.242446][T15957]  should_fail_ex.cold+0x5/0xa
[  818.242478][T15957]  should_failslab+0xc2/0x120
[  818.242508][T15957]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  818.242549][T15957]  ? vm_area_dup+0x27/0x8e0
[  818.242589][T15957]  vm_area_dup+0x27/0x8e0
[  818.242627][T15957]  __split_vma+0x18c/0xda0
[  818.242665][T15957]  ? is_bpf_text_address+0x8a/0x1a0
[  818.242699][T15957]  ? __pfx___split_vma+0x10/0x10
[  818.242735][T15957]  ? bpf_ksym_find+0x124/0x1c0
[  818.242764][T15957]  ? kernel_text_address+0x8d/0x100
[  818.242789][T15957]  ? __kernel_text_address+0xd/0x30
[  818.242819][T15957]  vma_modify+0x12ad/0x25c0
[  818.242872][T15957]  ? __pfx_vma_modify+0x10/0x10
[  818.242914][T15957]  ? kasan_save_stack+0x30/0x50
[  818.242937][T15957]  ? kasan_save_track+0x14/0x30
[  818.242960][T15957]  ? __kasan_slab_alloc+0x89/0x90
[  818.242986][T15957]  ? __khugepaged_enter+0xc8/0x380
[  818.243036][T15957]  vma_modify_flags+0x257/0x3d0
[  818.243076][T15957]  ? __pfx_vma_modify_flags+0x10/0x10
[  818.243140][T15957]  madvise_update_vma+0x21c/0xce0
[  818.243175][T15957]  ? __pfx_madvise_update_vma+0x10/0x10
[  818.243207][T15957]  ? __khugepaged_enter+0x29e/0x380
[  818.243246][T15957]  ? __khugepaged_enter+0x2bc/0x380
[  818.243281][T15957]  ? khugepaged_enter_vma+0x8b/0x2c0
[  818.243319][T15957]  madvise_vma_behavior+0x2a3/0x2240
[  818.243356][T15957]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  818.243398][T15957]  ? find_vma_prev+0xd8/0x150
[  818.243426][T15957]  ? futex_unqueue+0x133/0x2c0
[  818.243449][T15957]  ? __pfx_find_vma_prev+0x10/0x10
[  818.243487][T15957]  ? __futex_wait+0x256/0x300
[  818.243523][T15957]  madvise_walk_vmas+0x2fe/0xa90
[  818.243561][T15957]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  818.243602][T15957]  madvise_do_behavior+0x1ea/0x510
[  818.243637][T15957]  ? __pfx_madvise_do_behavior+0x10/0x10
[  818.243681][T15957]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  818.243720][T15957]  do_madvise+0x195/0x240
[  818.243752][T15957]  ? __pfx_do_madvise+0x10/0x10
[  818.243784][T15957]  ? do_futex+0x192/0x350
[  818.243814][T15957]  ? __sys_sendmsg+0x18f/0x220
[  818.243864][T15957]  __x64_sys_madvise+0xa9/0x110
[  818.243897][T15957]  ? lockdep_hardirqs_on+0x78/0x100
[  818.243933][T15957]  do_syscall_64+0x115/0x840
[  818.244009][T15957]  ? clear_bhb_loop+0x40/0x90
[  818.244039][T15957]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  818.244064][T15957] RIP: 0033:0x7fa3ccb9ce59
[  818.244085][T15957] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  818.244109][T15957] RSP: 002b:00007fa3cadee028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  818.244132][T15957] RAX: ffffffffffffffda RBX: 00007fa3cce15fa0 RCX: 00007fa3ccb9ce59
[  818.244149][T15957] RDX: 000000000000000e RSI: 0000000000004081 RDI: 0000000000000000
[  818.244163][T15957] RBP: 00007fa3ccc32d6f R08: 0000000000000000 R09: 0000000000000000
[  818.244178][T15957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  818.244192][T15957] R13: 00007fa3cce16038 R14: 00007fa3cce15fa0 R15: 00007ffecfd84bc8
[  818.244222][T15957]  </TASK>
[  820.241838][T15970] vhci_hcd vhci_hcd.2: invalid port number 194
[  820.291516][T15970] vhci_hcd vhci_hcd.2: invalid port number 194
[  820.935388][   T29] audit: type=1804 audit(1780003678.877:14): pid=15974 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1996" name="/newroot/332/file0" dev="tmpfs" ino=1743 res=1 errno=0
[  821.131683][   T29] audit: type=1804 audit(1780003678.937:15): pid=15979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1996" name="/newroot/332/file0" dev="tmpfs" ino=1743 res=1 errno=0
[  822.153032][T15999] netlink: 326 bytes leftover after parsing attributes in process `syz.3.2002'.
[  822.200350][T16000] sysfs_service_op_store: Client not running :-5:
[  822.522337][T16005] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2003'.
[  822.578875][T16005] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2003'.
[  830.478115][T16115] KVM: debugfs: duplicate directory 16115-4
[  831.473704][T16073] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 510 seconds
[  831.563279][T16137] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2028'.
[  831.592112][ T9005] Bluetooth: hci5: unexpected event 0x30 length: 10 > 3
[  831.896907][T16137] bridge_slave_1: left allmulticast mode
[  831.980402][T16137] bridge_slave_1: left promiscuous mode
[  832.017394][T16137] bridge0: port 2(bridge_slave_1) entered disabled state
[  832.046199][T16137] bridge_slave_0: left allmulticast mode
[  832.068098][T16137] bridge_slave_0: left promiscuous mode
[  832.088132][T16137] bridge0: port 1(bridge_slave_0) entered disabled state
[  832.601385][T16157] FAULT_INJECTION: forcing a failure.
[  832.601385][T16157] name failslab, interval 1, probability 0, space 0, times 0
[  832.836912][T16157] CPU: 0 UID: 0 PID: 16157 Comm: syz.4.2032 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  832.836952][T16157] Tainted: [L]=SOFTLOCKUP
[  832.836960][T16157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  832.836976][T16157] Call Trace:
[  832.836983][T16157]  <TASK>
[  832.836992][T16157]  dump_stack_lvl+0x100/0x190
[  832.837040][T16157]  should_fail_ex.cold+0x5/0xa
[  832.837071][T16157]  should_failslab+0xc2/0x120
[  832.837104][T16157]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  832.837145][T16157]  ? prepare_creds+0x2c/0x950
[  832.837175][T16157]  prepare_creds+0x2c/0x950
[  832.837202][T16157]  __do_sys_landlock_restrict_self+0x14c/0x9e0
[  832.837231][T16157]  ? rcu_is_watching+0x12/0xc0
[  832.837264][T16157]  do_syscall_64+0x115/0x840
[  832.837305][T16157]  ? clear_bhb_loop+0x40/0x90
[  832.837335][T16157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  832.837360][T16157] RIP: 0033:0x7ff88979ce59
[  832.837379][T16157] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  832.837403][T16157] RSP: 002b:00007ff88a6c4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001be
[  832.837427][T16157] RAX: ffffffffffffffda RBX: 00007ff889a16180 RCX: 00007ff88979ce59
[  832.837443][T16157] RDX: 0000000000000000 RSI: 000000000000000b RDI: 0000000000000002
[  832.837457][T16157] RBP: 00007ff889832d6f R08: 0000000000000000 R09: 0000000000000000
[  832.837471][T16157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  832.837485][T16157] R13: 00007ff889a16218 R14: 00007ff889a16180 R15: 00007fff99c2ef68
[  832.837515][T16157]  </TASK>
[  833.638655][T16169] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input10
[  834.139869][T16169] sctp: [Deprecated]: syz.2.2035 (pid 16169) Use of int in maxseg socket option.
[  834.139869][T16169] Use struct sctp_assoc_value instead
[  835.868471][T16189] netlink: 'syz.0.2037': attribute type 1 has an invalid length.
[  837.574927][T16240] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2048'.
[  837.970440][T16240] Zero length message leads to an empty skb
[  838.001307][T16250] net_ratelimit: 47 callbacks suppressed
[  838.001326][T16250] netlink: Conntrack attr has 4 unknown bytes
[  841.732088][T16267] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  842.314129][T16304] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2061'.
[  843.785721][T16335] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2066'.
[  847.821226][T16392] tipc: Can't bind to reserved service type 63
[  849.892021][T16401] kexec: Could not allocate control_code_buffer
[  852.640944][   T29] audit: type=1800 audit(1780003710.571:16): pid=16436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2082" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  852.944667][T16435] hub 1-0:1.0: USB hub found
[  853.017707][T16435] hub 1-0:1.0: 1 port detected
[  861.570375][T16073] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 540 seconds
[  869.691685][T16551] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[  869.796435][T16551] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[  869.900612][T16551] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[  870.537440][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  870.545589][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  870.610289][T15538] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  870.629784][T15538] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  870.640852][T15538] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  870.652472][T15538] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  870.666097][T15538] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  872.246397][ T9005] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  872.262486][ T9005] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  872.282202][ T9005] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  872.292948][ T9005] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  872.302486][ T9005] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  872.699508][ T9005] Bluetooth: hci4: command tx timeout
[  874.376263][ T9005] Bluetooth: hci6: command tx timeout
[  874.708035][T16594] __vm_enough_memory: pid: 16594, comm: syz.3.2109, bytes: 4398046457856 not enough memory for the allocation
[  874.786285][ T9005] Bluetooth: hci4: command tx timeout
[  876.063748][T16555] bridge0: port 1(bridge_slave_0) entered blocking state
[  876.094161][T16555] bridge0: port 1(bridge_slave_0) entered disabled state
[  876.136311][T16555] bridge_slave_0: entered allmulticast mode
[  876.161788][T16555] bridge_slave_0: entered promiscuous mode
[  876.190178][T16555] bridge0: port 2(bridge_slave_1) entered blocking state
[  876.226662][T16555] bridge0: port 2(bridge_slave_1) entered disabled state
[  876.268465][T16555] bridge_slave_1: entered allmulticast mode
[  876.304911][T16555] bridge_slave_1: entered promiscuous mode
[  876.456267][ T9005] Bluetooth: hci6: command tx timeout
[  876.695075][T16555] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  876.812673][T16555] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  876.856599][ T9005] Bluetooth: hci4: command tx timeout
[  877.289983][T16555] team0: Port device team_slave_0 added
[  877.327535][T16555] team0: Port device team_slave_1 added
[  877.354894][T16569] bridge0: port 1(bridge_slave_0) entered blocking state
[  877.387304][T16569] bridge0: port 1(bridge_slave_0) entered disabled state
[  877.419567][T16569] bridge_slave_0: entered allmulticast mode
[  877.468558][T16569] bridge_slave_0: entered promiscuous mode
[  877.678819][T16569] bridge0: port 2(bridge_slave_1) entered blocking state
[  877.709222][T16569] bridge0: port 2(bridge_slave_1) entered disabled state
[  877.741775][T16569] bridge_slave_1: entered allmulticast mode
[  877.771083][T16569] bridge_slave_1: entered promiscuous mode
[  877.799614][T16555] batman_adv: batadv0: Adding interface: batadv_slave_0
[  877.823138][T16555] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  877.906960][T16555] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  878.143609][T16555] batman_adv: batadv0: Adding interface: batadv_slave_1
[  878.178994][T16555] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  878.279835][T16555] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  878.401434][T16569] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  878.537242][ T9005] Bluetooth: hci6: command tx timeout
[  878.551341][T16569] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  878.639839][T16555] hsr_slave_0: entered promiscuous mode
[  878.670343][T16555] hsr_slave_1: entered promiscuous mode
[  878.688578][T16555] debugfs: 'hsr0' already exists in 'hsr'
[  878.713964][T16555] Cannot create hsr debugfs directory
[  878.811918][ T9005] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  878.839453][T16569] team0: Port device team_slave_0 added
[  878.891117][T16569] team0: Port device team_slave_1 added
[  878.937621][ T9005] Bluetooth: hci4: command tx timeout
[  879.085565][T16569] batman_adv: batadv0: Adding interface: batadv_slave_0
[  879.110182][T16569] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  879.197345][T16569] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  879.278466][T16569] batman_adv: batadv0: Adding interface: batadv_slave_1
[  879.306155][T16569] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  879.393552][T16569] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  879.666114][T16569] hsr_slave_0: entered promiscuous mode
[  879.686875][T16569] hsr_slave_1: entered promiscuous mode
[  879.710669][T16569] debugfs: 'hsr0' already exists in 'hsr'
[  879.732195][T16569] Cannot create hsr debugfs directory
[  880.618519][ T9005] Bluetooth: hci6: command tx timeout
[  880.807728][T16555] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  880.858227][T15538] Bluetooth: hci1: command 0x0406 tx timeout
[  880.876739][T16555] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  880.902038][T16555] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  880.938032][T16555] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  880.968058][T16555] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  881.034540][T16555] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  881.324237][T16555] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  881.369155][T16555] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  881.790102][T16569] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  881.825444][T16569] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  881.852232][T16569] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  881.882400][T16569] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  881.925965][T16569] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  881.976723][T16569] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  882.018577][T16569] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  882.053704][T16569] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  882.123762][T16555] 8021q: adding VLAN 0 to HW filter on device bond0
[  882.218559][T16555] 8021q: adding VLAN 0 to HW filter on device team0
[  882.312562][ T9274] bridge0: port 1(bridge_slave_0) entered blocking state
[  882.319822][ T9274] bridge0: port 1(bridge_slave_0) entered forwarding state
[  882.415617][ T9274] bridge0: port 2(bridge_slave_1) entered blocking state
[  882.422924][ T9274] bridge0: port 2(bridge_slave_1) entered forwarding state
[  882.552389][ T9005] Bluetooth: hci1: unexpected subevent 0x03 length: 253 > 9
[  882.940132][ T9005] Bluetooth: hci1: command 0x0406 tx timeout
[  883.115025][T16569] 8021q: adding VLAN 0 to HW filter on device bond0
[  883.337588][T16569] 8021q: adding VLAN 0 to HW filter on device team0
[  883.396244][ T9274] bridge0: port 1(bridge_slave_0) entered blocking state
[  883.403729][ T9274] bridge0: port 1(bridge_slave_0) entered forwarding state
[  883.492966][ T9274] bridge0: port 2(bridge_slave_1) entered blocking state
[  883.500250][ T9274] bridge0: port 2(bridge_slave_1) entered forwarding state
[  883.647404][T16671] syz.3.2120 uses obsolete (PF_INET,SOCK_PACKET)
[  883.743495][T16671] process 'syz.3.2120' launched ':,' with NULL argv: empty string added
[  884.688079][T16555] 8021q: adding VLAN 0 to HW filter on device batadv0
[  885.634971][T16569] 8021q: adding VLAN 0 to HW filter on device batadv0
[  885.807116][T16555] veth0_vlan: entered promiscuous mode
[  885.856497][T16555] veth1_vlan: entered promiscuous mode
[  886.210204][T16555] veth0_macvtap: entered promiscuous mode
[  886.375757][T16555] veth1_macvtap: entered promiscuous mode
[  886.496497][T16555] batman_adv: batadv0: Interface activated: batadv_slave_0
[  886.581795][T16555] batman_adv: batadv0: Interface activated: batadv_slave_1
[  886.670682][ T9292] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  886.725037][ T9292] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  886.764433][ T9292] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  886.828444][ T9292] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  887.368688][T10793] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  887.391683][T16569] veth0_vlan: entered promiscuous mode
[  887.420452][T10793] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  887.503278][T16569] veth1_vlan: entered promiscuous mode
[  887.567331][ T9285] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  887.615215][ T9285] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  887.659529][T16569] veth0_macvtap: entered promiscuous mode
[  887.712839][T16569] veth1_macvtap: entered promiscuous mode
[  887.823865][T16569] batman_adv: batadv0: Interface activated: batadv_slave_0
[  887.888196][T16555] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  887.948853][T16569] batman_adv: batadv0: Interface activated: batadv_slave_1
[  888.050949][ T9285] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  888.099494][ T9285] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  888.175436][T16717] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  888.228425][ T9285] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  888.255935][ T9285] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  888.295597][T16717] CIFS mount error: No usable UNC path provided in device string!
[  888.295597][T16717] 
[  888.387033][T16717] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  888.850152][T16723] random: crng reseeded on system resumption
[  888.890903][T16723] FAULT_INJECTION: forcing a failure.
[  888.890903][T16723] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  888.959113][T16723] CPU: 0 UID: 0 PID: 16723 Comm: syz.5.2124 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  888.959153][T16723] Tainted: [L]=SOFTLOCKUP
[  888.959162][T16723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  888.959176][T16723] Call Trace:
[  888.959184][T16723]  <TASK>
[  888.959204][T16723]  dump_stack_lvl+0x100/0x190
[  888.959256][T16723]  should_fail_ex.cold+0x5/0xa
[  888.959282][T16723]  ? prepare_alloc_pages+0x16d/0x5f0
[  888.959316][T16723]  should_fail_alloc_page+0xeb/0x140
[  888.959349][T16723]  prepare_alloc_pages+0x1f0/0x5f0
[  888.959385][T16723]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  888.959438][T16723]  ? __alloc_frozen_pages_noprof+0x2b1/0x2bc0
[  888.959488][T16723]  ? stack_trace_save+0x8e/0xc0
[  888.959521][T16723]  ? __pfx_stack_trace_save+0x10/0x10
[  888.959551][T16723]  ? arch_stack_walk+0xa6/0xf0
[  888.959581][T16723]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  888.959624][T16723]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  888.959668][T16723]  ? kasan_save_stack+0x30/0x50
[  888.959691][T16723]  ? kasan_save_track+0x14/0x30
[  888.959714][T16723]  ? __kasan_kmalloc+0xaa/0xb0
[  888.959736][T16723]  ? memory_bm_create+0x14d/0xba0
[  888.959771][T16723]  ? do_syscall_64+0x115/0x840
[  888.959804][T16723]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  888.959832][T16723]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  888.959868][T16723]  ? policy_nodemask+0xed/0x4f0
[  888.959900][T16723]  alloc_pages_mpol+0x1fb/0x540
[  888.959931][T16723]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  888.959961][T16723]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  888.959995][T16723]  alloc_pages_noprof+0x1a/0x160
[  888.960028][T16723]  get_zeroed_page_noprof+0x18/0xb0
[  888.960059][T16723]  get_image_page+0x18/0x1a0
[  888.960088][T16723]  alloc_rtree_node+0x3c/0xb0
[  888.960118][T16723]  memory_bm_create+0x65e/0xba0
[  888.960161][T16723]  create_basic_memory_bitmaps+0x10b/0x350
[  888.960204][T16723]  snapshot_open+0x230/0x2a0
[  888.960239][T16723]  ? __pfx_snapshot_open+0x10/0x10
[  888.960275][T16723]  misc_open+0x26d/0x450
[  888.960301][T16723]  ? __pfx_misc_open+0x10/0x10
[  888.960325][T16723]  chrdev_open+0x234/0x6a0
[  888.960362][T16723]  ? __pfx_apparmor_file_open+0x10/0x10
[  888.960389][T16723]  ? __pfx_chrdev_open+0x10/0x10
[  888.960422][T16723]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  888.960462][T16723]  do_dentry_open+0x6ab/0x14d0
[  888.960491][T16723]  ? __pfx_chrdev_open+0x10/0x10
[  888.960529][T16723]  vfs_open+0x82/0x3f0
[  888.960568][T16723]  path_openat+0x208c/0x31a0
[  888.960609][T16723]  ? __pfx_path_openat+0x10/0x10
[  888.960651][T16723]  do_file_open+0x20e/0x430
[  888.960684][T16723]  ? __pfx_do_file_open+0x10/0x10
[  888.960736][T16723]  ? alloc_fd+0x476/0x790
[  888.960769][T16723]  ? do_getname+0x191/0x390
[  888.960808][T16723]  do_sys_openat2+0x10d/0x1e0
[  888.960846][T16723]  ? __pfx_do_sys_openat2+0x10/0x10
[  888.960887][T16723]  ? __fget_files+0x21f/0x3d0
[  888.960921][T16723]  __x64_sys_openat+0x12d/0x210
[  888.960960][T16723]  ? __pfx___x64_sys_openat+0x10/0x10
[  888.961004][T16723]  ? rcu_is_watching+0x12/0xc0
[  888.961035][T16723]  do_syscall_64+0x115/0x840
[  888.961069][T16723]  ? clear_bhb_loop+0x40/0x90
[  888.961099][T16723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  888.961124][T16723] RIP: 0033:0x7fe075b9ce59
[  888.961144][T16723] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  888.961174][T16723] RSP: 002b:00007fe076a5e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  888.961201][T16723] RAX: ffffffffffffffda RBX: 00007fe075e15fa0 RCX: 00007fe075b9ce59
[  888.961218][T16723] RDX: 0000000000008001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  888.961233][T16723] RBP: 00007fe075c32d6f R08: 0000000000000000 R09: 0000000000000000
[  888.961248][T16723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  888.961262][T16723] R13: 00007fe075e16038 R14: 00007fe075e15fa0 R15: 00007ffd261045b8
[  888.961293][T16723]  </TASK>
[  891.319890][ T9288] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  891.406054][ T9288] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  891.568947][ T9005] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  891.606933][ T9005] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  891.625156][ T9005] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  891.635981][ T9005] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  891.645009][ T9005] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  891.670375][T16073] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 570 seconds
[  891.727470][T10793] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  891.782189][T10793] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  892.315582][T16741] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  892.399357][T16751] netlink: 504 bytes leftover after parsing attributes in process `syz.6.2106'.
[  892.460358][T16746] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2128'.
[  892.553831][T16741] File: /dev/nullb0 PID: 16741 Comm: syz.5.2127
[  893.745154][ T9005] Bluetooth: hci7: command tx timeout
[  894.603137][T16773] mmap: syz.3.2132 (16773) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  895.826110][ T9005] Bluetooth: hci7: command tx timeout
[  896.023413][T16738] bridge0: port 1(bridge_slave_0) entered blocking state
[  896.054284][T16738] bridge0: port 1(bridge_slave_0) entered disabled state
[  896.102029][T16738] bridge_slave_0: entered allmulticast mode
[  896.157458][T16738] bridge_slave_0: entered promiscuous mode
[  896.257200][T16738] bridge0: port 2(bridge_slave_1) entered blocking state
[  896.297559][T16738] bridge0: port 2(bridge_slave_1) entered disabled state
[  896.331745][T16738] bridge_slave_1: entered allmulticast mode
[  896.366183][T16738] bridge_slave_1: entered promiscuous mode
[  896.723326][T16738] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  896.820468][T16738] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  897.224294][T16738] team0: Port device team_slave_0 added
[  897.283723][T16738] team0: Port device team_slave_1 added
[  897.458785][T16738] batman_adv: batadv0: Adding interface: batadv_slave_0
[  897.506859][T16738] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  897.712564][T16738] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  897.833604][T16738] batman_adv: batadv0: Adding interface: batadv_slave_1
[  897.888368][T16738] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  897.935693][ T9005] Bluetooth: hci7: command tx timeout
[  898.089430][T16738] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  898.549943][T16738] hsr_slave_0: entered promiscuous mode
[  898.584186][T16738] hsr_slave_1: entered promiscuous mode
[  898.619221][T16738] debugfs: 'hsr0' already exists in 'hsr'
[  898.656850][T16738] Cannot create hsr debugfs directory
[  899.989021][ T9005] Bluetooth: hci7: command tx timeout
[  901.405454][T16738] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  901.447473][T16738] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  901.485920][T16738] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  901.549489][T16738] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  901.584933][T16738] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  901.648404][T16738] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  901.693468][T16738] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  901.760891][T16738] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  902.367838][T16738] 8021q: adding VLAN 0 to HW filter on device bond0
[  902.514413][T16738] 8021q: adding VLAN 0 to HW filter on device team0
[  902.586620][ T9284] bridge0: port 1(bridge_slave_0) entered blocking state
[  902.593907][ T9284] bridge0: port 1(bridge_slave_0) entered forwarding state
[  902.696446][ T9284] bridge0: port 2(bridge_slave_1) entered blocking state
[  902.703678][ T9284] bridge0: port 2(bridge_slave_1) entered forwarding state
[  905.453217][T16738] 8021q: adding VLAN 0 to HW filter on device batadv0
[  906.042485][T16881] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2145'.
[  908.052026][T16872] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  908.076961][T16738] veth0_vlan: entered promiscuous mode
[  908.146975][T16738] veth1_vlan: entered promiscuous mode
[  908.608131][T16738] veth0_macvtap: entered promiscuous mode
[  908.691733][T16738] veth1_macvtap: entered promiscuous mode
[  908.981495][T16738] batman_adv: batadv0: Interface activated: batadv_slave_0
[  909.057512][T16738] batman_adv: batadv0: Interface activated: batadv_slave_1
[  909.145477][T10793] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  909.204522][T10793] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  909.262120][T10793] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  909.316572][T10793] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  910.003957][T10793] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  910.059992][T10793] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  910.395440][ T9284] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  910.443736][ T9284] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  911.589567][T16922] netlink: 504 bytes leftover after parsing attributes in process `syz.3.2152'.
[  911.683169][T16922] netlink: 350 bytes leftover after parsing attributes in process `syz.3.2152'.
[  912.166694][T16937] Format for unlinking a device is "netnsfd:ifidx" (int uint).
[  912.179468][T16937] Format for unlinking a device is "netnsfd:ifidx" (int uint).
[  914.491468][T15538] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  914.510978][T15538] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  914.522034][T15538] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  914.542089][T15538] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  914.555555][T15538] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  916.640126][T15538] Bluetooth: hci8: command tx timeout
[  917.080835][T16945] Process accounting resumed
[  918.717235][T15538] Bluetooth: hci8: command tx timeout
[  919.340139][T16947] bridge0: port 1(bridge_slave_0) entered blocking state
[  919.385194][T16947] bridge0: port 1(bridge_slave_0) entered disabled state
[  919.432521][T16947] bridge_slave_0: entered allmulticast mode
[  919.478699][T16947] bridge_slave_0: entered promiscuous mode
[  919.543153][T16947] bridge0: port 2(bridge_slave_1) entered blocking state
[  919.600139][T16947] bridge0: port 2(bridge_slave_1) entered disabled state
[  919.643670][T16947] bridge_slave_1: entered allmulticast mode
[  919.700368][T16947] bridge_slave_1: entered promiscuous mode
[  920.146891][T16947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  920.224362][T16947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  920.772026][T16947] team0: Port device team_slave_0 added
[  920.797542][T16947] team0: Port device team_slave_1 added
[  920.806341][T15538] Bluetooth: hci8: command tx timeout
[  921.196886][T16947] batman_adv: batadv0: Adding interface: batadv_slave_0
[  921.241992][T16947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  921.334129][T16947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  921.484319][T16947] batman_adv: batadv0: Adding interface: batadv_slave_1
[  921.508249][T16947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  921.600702][T16947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  921.668049][   T29] audit: type=1800 audit(1780003779.557:17): pid=17004 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2163" name="file0" dev="tmpfs" ino=84 res=0 errno=0
[  921.762367][T16073] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 600 seconds
[  921.866190][T16947] hsr_slave_0: entered promiscuous mode
[  921.898141][T16947] hsr_slave_1: entered promiscuous mode
[  921.931012][T16947] debugfs: 'hsr0' already exists in 'hsr'
[  921.956342][T16947] Cannot create hsr debugfs directory
[  922.275135][T17007] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  922.880000][T15538] Bluetooth: hci8: command tx timeout
[  923.548385][ T9005] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  923.566498][ T9005] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  923.582234][ T9005] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  923.603035][ T9005] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  923.615372][ T9005] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  923.807344][T16947] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  924.275029][T16947] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  924.603483][T16947] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  924.961978][T16947] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  925.693571][ T9005] Bluetooth: hci9: command tx timeout
[  926.723107][T16947] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  926.810268][T16947] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  926.855946][T16947] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  926.935089][T16947] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  926.993348][T16947] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  927.059460][T16947] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  927.116352][T16947] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  927.184730][T16947] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  927.668645][T17015] bridge0: port 1(bridge_slave_0) entered blocking state
[  927.704676][T17015] bridge0: port 1(bridge_slave_0) entered disabled state
[  927.745018][T17015] bridge_slave_0: entered allmulticast mode
[  927.761803][ T9005] Bluetooth: hci9: command tx timeout
[  927.782010][T17015] bridge_slave_0: entered promiscuous mode
[  927.816383][T17015] bridge0: port 2(bridge_slave_1) entered blocking state
[  927.857462][T17015] bridge0: port 2(bridge_slave_1) entered disabled state
[  927.891098][T17015] bridge_slave_1: entered allmulticast mode
[  927.935087][T17015] bridge_slave_1: entered promiscuous mode
[  928.165365][T17015] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  928.222248][T17015] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  928.357799][T17056] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2169'.
[  928.431411][T17015] team0: Port device team_slave_0 added
[  928.466776][T17015] team0: Port device team_slave_1 added
[  928.966059][T17015] batman_adv: batadv0: Adding interface: batadv_slave_0
[  929.001388][T17015] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  929.121422][T17015] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  929.309372][T17015] batman_adv: batadv0: Adding interface: batadv_slave_1
[  929.336253][T17015] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  929.429107][T17015] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  929.789340][T17015] hsr_slave_0: entered promiscuous mode
[  929.816682][T17015] hsr_slave_1: entered promiscuous mode
[  929.842667][ T9005] Bluetooth: hci9: command tx timeout
[  929.860040][T17015] debugfs: 'hsr0' already exists in 'hsr'
[  929.880537][T17015] Cannot create hsr debugfs directory
[  930.371197][T16947] 8021q: adding VLAN 0 to HW filter on device bond0
[  930.611656][T16947] 8021q: adding VLAN 0 to HW filter on device team0
[  930.679844][T10789] bridge0: port 1(bridge_slave_0) entered blocking state
[  930.687175][T10789] bridge0: port 1(bridge_slave_0) entered forwarding state
[  930.881066][T10789] bridge0: port 2(bridge_slave_1) entered blocking state
[  930.888413][T10789] bridge0: port 2(bridge_slave_1) entered forwarding state
[  931.579882][T17059] kexec: Could not allocate control_code_buffer
[  931.923768][ T9005] Bluetooth: hci9: command tx timeout
[  932.007117][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  932.017890][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  932.104258][T17015] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  932.149535][T17073] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2172'.
[  932.170497][T17015] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  932.272306][T17015] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  932.355856][T17015] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  932.411928][T17015] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  932.553800][T17015] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  932.621954][T17015] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  932.709440][T17015] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  933.297434][T17015] 8021q: adding VLAN 0 to HW filter on device bond0
[  933.439156][T17015] 8021q: adding VLAN 0 to HW filter on device team0
[  933.899198][ T9284] bridge0: port 1(bridge_slave_0) entered blocking state
[  933.906614][ T9284] bridge0: port 1(bridge_slave_0) entered forwarding state
[  934.127101][ T9172] bridge0: port 2(bridge_slave_1) entered blocking state
[  934.134407][ T9172] bridge0: port 2(bridge_slave_1) entered forwarding state
[  934.999079][T16947] 8021q: adding VLAN 0 to HW filter on device batadv0
[  935.419435][T16947] veth0_vlan: entered promiscuous mode
[  935.497549][T16947] veth1_vlan: entered promiscuous mode
[  935.673911][T16947] veth0_macvtap: entered promiscuous mode
[  935.746842][T16947] veth1_macvtap: entered promiscuous mode
[  935.873991][T16947] batman_adv: batadv0: Interface activated: batadv_slave_0
[  935.960008][T16947] batman_adv: batadv0: Interface activated: batadv_slave_1
[  936.065075][ T9285] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  936.119652][ T9285] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  936.198152][ T9285] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  936.252037][ T9285] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  936.895447][ T9274] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  936.962082][ T9274] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  937.455954][ T9292] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  937.537735][ T9292] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  937.990522][T17015] 8021q: adding VLAN 0 to HW filter on device batadv0
[  939.682704][T17015] veth0_vlan: entered promiscuous mode
[  939.708088][ T9005] Bluetooth: hci7: unexpected event 0x1d length: 6 > 5
[  939.777253][T17015] veth1_vlan: entered promiscuous mode
[  939.856610][T17140] capability: warning: `syz.6.2178' uses 32-bit capabilities (legacy support in use)
[  939.994180][T17015] veth0_macvtap: entered promiscuous mode
[  940.067331][T17015] veth1_macvtap: entered promiscuous mode
[  940.215944][T17015] batman_adv: batadv0: Interface activated: batadv_slave_0
[  940.311275][T17015] batman_adv: batadv0: Interface activated: batadv_slave_1
[  940.414878][ T9292] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  940.481280][ T9292] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  940.622112][ T9292] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  940.680141][ T9292] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  941.454178][   T29] audit: type=1800 audit(1780003799.337:18): pid=17156 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2181" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  941.655648][ T9284] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  941.726135][ T9284] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  942.293020][T17165] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2183'.
[  942.342820][ T9284] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  942.381339][ T9284] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  944.577292][T17194] QAT: Device 0 not found
[  944.639222][T17194] FAULT_INJECTION: forcing a failure.
[  944.639222][T17194] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  944.801142][T17194] CPU: 0 UID: 0 PID: 17194 Comm: syz.6.2185 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  944.801191][T17194] Tainted: [L]=SOFTLOCKUP
[  944.801199][T17194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  944.801215][T17194] Call Trace:
[  944.801222][T17194]  <TASK>
[  944.801231][T17194]  dump_stack_lvl+0x100/0x190
[  944.801280][T17194]  should_fail_ex.cold+0x5/0xa
[  944.801306][T17194]  ? prepare_alloc_pages+0x16d/0x5f0
[  944.801344][T17194]  should_fail_alloc_page+0xeb/0x140
[  944.801376][T17194]  prepare_alloc_pages+0x1f0/0x5f0
[  944.801412][T17194]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  944.801462][T17194]  ? mt_validate_nulls+0x1b3/0xa10
[  944.801506][T17194]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  944.801554][T17194]  ? mas_prev_node+0x1da/0xf00
[  944.801596][T17194]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  944.801633][T17194]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  944.801669][T17194]  ? policy_nodemask+0xed/0x4f0
[  944.801701][T17194]  alloc_pages_mpol+0x1fb/0x540
[  944.801731][T17194]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  944.801761][T17194]  ? __lock_acquire+0x4a5/0x2630
[  944.801805][T17194]  folio_alloc_mpol_noprof+0x36/0x260
[  944.801840][T17194]  alloc_migration_target_by_mpol+0x2c1/0x650
[  944.801879][T17194]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  944.801916][T17194]  ? __pfx___might_resched+0x10/0x10
[  944.801941][T17194]  ? is_bpf_text_address+0x8a/0x1a0
[  944.801974][T17194]  ? bpf_ksym_find+0x124/0x1c0
[  944.802001][T17194]  migrate_pages_batch+0x5dc/0x45c0
[  944.802038][T17194]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  944.802084][T17194]  ? __pfx_migrate_pages_batch+0x10/0x10
[  944.802120][T17194]  ? __pfx_stack_trace_save+0x10/0x10
[  944.802153][T17194]  ? stack_depot_save_flags+0x27/0x9d0
[  944.802205][T17194]  ? kasan_save_stack+0x3f/0x50
[  944.802228][T17194]  ? kasan_save_stack+0x30/0x50
[  944.802251][T17194]  ? kasan_save_track+0x14/0x30
[  944.802275][T17194]  ? __kasan_slab_alloc+0x89/0x90
[  944.802300][T17194]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  944.802340][T17194]  ? __mpol_dup+0x74/0x390
[  944.802371][T17194]  ? mbind_range+0x2ad/0x550
[  944.802407][T17194]  migrate_pages_sync+0x12c/0x880
[  944.802441][T17194]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  944.802485][T17194]  ? __pfx_migrate_pages_sync+0x10/0x10
[  944.802521][T17194]  ? __lock_acquire+0x4a5/0x2630
[  944.802567][T17194]  migrate_pages+0x1aa5/0x2880
[  944.802603][T17194]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  944.802647][T17194]  ? __pfx_migrate_pages+0x10/0x10
[  944.802684][T17194]  ? find_held_lock+0x2b/0x80
[  944.802715][T17194]  ? do_mbind+0x555/0xfd0
[  944.802753][T17194]  ? up_write+0x28c/0x4f0
[  944.802780][T17194]  do_mbind+0x5a4/0xfd0
[  944.802822][T17194]  ? __pfx_do_mbind+0x10/0x10
[  944.802857][T17194]  ? ksys_write+0x190/0x250
[  944.802897][T17194]  ? __pfx_get_nodes+0x10/0x10
[  944.802931][T17194]  kernel_mbind+0x1b7/0x200
[  944.802968][T17194]  ? __pfx_kernel_mbind+0x10/0x10
[  944.803005][T17194]  ? rcu_is_watching+0x12/0xc0
[  944.803037][T17194]  do_syscall_64+0x115/0x840
[  944.803071][T17194]  ? clear_bhb_loop+0x40/0x90
[  944.803100][T17194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  944.803125][T17194] RIP: 0033:0x7fbae6f9ce59
[  944.803147][T17194] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  944.803190][T17194] RSP: 002b:00007fbae7e23028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  944.803215][T17194] RAX: ffffffffffffffda RBX: 00007fbae7216180 RCX: 00007fbae6f9ce59
[  944.803231][T17194] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000
[  944.803246][T17194] RBP: 00007fbae7032d6f R08: 0000002000000006 R09: 0000000000000002
[  944.803261][T17194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  944.803275][T17194] R13: 00007fbae7216218 R14: 00007fbae7216180 R15: 00007ffe73ea8418
[  944.803305][T17194]  </TASK>
[  946.449660][T17206] FAULT_INJECTION: forcing a failure.
[  946.449660][T17206] name failslab, interval 1, probability 0, space 0, times 0
[  946.534863][T17206] CPU: 0 UID: 0 PID: 17206 Comm: syz.8.2188 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  946.534902][T17206] Tainted: [L]=SOFTLOCKUP
[  946.534911][T17206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  946.534926][T17206] Call Trace:
[  946.534933][T17206]  <TASK>
[  946.534943][T17206]  dump_stack_lvl+0x100/0x190
[  946.534989][T17206]  should_fail_ex.cold+0x5/0xa
[  946.535020][T17206]  should_failslab+0xc2/0x120
[  946.535050][T17206]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  946.535091][T17206]  ? alloc_inode+0x183/0x250
[  946.535141][T17206]  ? find_inode_fast+0x1fa/0x910
[  946.535185][T17206]  alloc_inode+0x183/0x250
[  946.535224][T17206]  iget_locked+0x1d9/0x6d0
[  946.535264][T17206]  ? __pfx_iget_locked+0x10/0x10
[  946.535302][T17206]  ? kernfs_root+0xee/0x2a0
[  946.535327][T17206]  ? kernfs_root+0xee/0x2a0
[  946.535359][T17206]  kernfs_get_inode+0x46/0x470
[  946.535386][T17206]  kernfs_iop_lookup+0x1a7/0x2d0
[  946.535418][T17206]  __lookup_slow+0x251/0x460
[  946.535458][T17206]  ? __pfx___lookup_slow+0x10/0x10
[  946.535511][T17206]  ? __d_lookup+0x266/0x4a0
[  946.535541][T17206]  lookup_slow+0x50/0x70
[  946.535584][T17206]  link_path_walk+0x1377/0x1cc0
[  946.535621][T17206]  path_openat+0x1be/0x31a0
[  946.535652][T17206]  ? kasan_save_stack+0x3f/0x50
[  946.535676][T17206]  ? kasan_save_stack+0x30/0x50
[  946.535698][T17206]  ? kasan_save_track+0x14/0x30
[  946.535722][T17206]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  946.535769][T17206]  ? __pfx_path_openat+0x10/0x10
[  946.535813][T17206]  do_file_open+0x20e/0x430
[  946.535846][T17206]  ? __pfx_do_file_open+0x10/0x10
[  946.535897][T17206]  ? alloc_fd+0x476/0x790
[  946.535930][T17206]  ? do_getname+0x191/0x390
[  946.535970][T17206]  do_sys_openat2+0x10d/0x1e0
[  946.536009][T17206]  ? __pfx_do_sys_openat2+0x10/0x10
[  946.536058][T17206]  __x64_sys_openat+0x12d/0x210
[  946.536098][T17206]  ? __pfx___x64_sys_openat+0x10/0x10
[  946.536144][T17206]  ? ksys_write+0x1ac/0x250
[  946.536176][T17206]  ? rcu_is_watching+0x12/0xc0
[  946.536209][T17206]  do_syscall_64+0x115/0x840
[  946.536243][T17206]  ? clear_bhb_loop+0x40/0x90
[  946.536273][T17206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  946.536298][T17206] RIP: 0033:0x7f182199ce59
[  946.536317][T17206] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  946.536341][T17206] RSP: 002b:00007f18228a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  946.536364][T17206] RAX: ffffffffffffffda RBX: 00007f1821c15fa0 RCX: 00007f182199ce59
[  946.536381][T17206] RDX: 0000000000169882 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  946.536396][T17206] RBP: 00007f1821a32d6f R08: 0000000000000000 R09: 0000000000000000
[  946.536411][T17206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  946.536425][T17206] R13: 00007f1821c16038 R14: 00007f1821c15fa0 R15: 00007ffdde0ca168
[  946.536455][T17206]  </TASK>
[  947.465504][T17196] Process accounting paused
[  951.855256][T16073] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 630 seconds
[  952.321480][T17253] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  953.648269][T17275] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2201'.
[  954.288161][T17273] HfR: entered promiscuous mode
[  954.307430][T17275] HfR: left promiscuous mode
[  954.908778][T17282] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  955.679385][T17289] FAULT_INJECTION: forcing a failure.
[  955.679385][T17289] name fail_futex, interval 1, probability 0, space 0, times 0
[  955.823767][T17289] CPU: 0 UID: 0 PID: 17289 Comm: syz.7.2204 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  955.823806][T17289] Tainted: [L]=SOFTLOCKUP
[  955.823814][T17289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  955.823829][T17289] Call Trace:
[  955.823836][T17289]  <TASK>
[  955.823845][T17289]  dump_stack_lvl+0x100/0x190
[  955.823892][T17289]  should_fail_ex.cold+0x5/0xa
[  955.823923][T17289]  get_futex_key+0x1d2/0x1510
[  955.823966][T17289]  ? __pfx_get_futex_key+0x10/0x10
[  955.824010][T17289]  ? __sys_bpf+0x173/0x4b90
[  955.824036][T17289]  futex_wake+0xea/0x530
[  955.824070][T17289]  ? __pfx___sys_bpf+0x10/0x10
[  955.824094][T17289]  ? __pfx_futex_wait+0x10/0x10
[  955.824124][T17289]  ? __pfx_futex_wake+0x10/0x10
[  955.824158][T17289]  ? putname+0xb1/0x110
[  955.824189][T17289]  ? kmem_cache_free+0x127/0x6c0
[  955.824233][T17289]  do_futex+0x32b/0x350
[  955.824258][T17289]  ? __pfx_do_futex+0x10/0x10
[  955.824291][T17289]  __x64_sys_futex+0x34f/0x4d0
[  955.824320][T17289]  ? __pfx___x64_sys_futex+0x10/0x10
[  955.824351][T17289]  ? rcu_is_watching+0x12/0xc0
[  955.824384][T17289]  do_syscall_64+0x115/0x840
[  955.824418][T17289]  ? clear_bhb_loop+0x40/0x90
[  955.824447][T17289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  955.824472][T17289] RIP: 0033:0x7f916fd9ce59
[  955.824492][T17289] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  955.824516][T17289] RSP: 002b:00007f9170cb30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  955.824539][T17289] RAX: ffffffffffffffda RBX: 00007f9170016098 RCX: 00007f916fd9ce59
[  955.824555][T17289] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f917001609c
[  955.824570][T17289] RBP: 00007f9170016090 R08: 0000000000000001 R09: 0000000000000000
[  955.824584][T17289] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  955.824599][T17289] R13: 00007f9170016128 R14: 00007ffeec58e7b0 R15: 00007ffeec58e898
[  955.824628][T17289]  </TASK>
[  956.291923][T17292] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  957.213530][T17288] netlink: 342 bytes leftover after parsing attributes in process `syz.7.2204'.
[  957.262740][T17306] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  957.308882][T17300] FAULT_INJECTION: forcing a failure.
[  957.308882][T17300] name failslab, interval 1, probability 0, space 0, times 0
[  957.415571][T17300] CPU: 0 UID: 0 PID: 17300 Comm: syz.3.2206 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  957.415609][T17300] Tainted: [L]=SOFTLOCKUP
[  957.415617][T17300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  957.415630][T17300] Call Trace:
[  957.415638][T17300]  <TASK>
[  957.415646][T17300]  dump_stack_lvl+0x100/0x190
[  957.415691][T17300]  should_fail_ex.cold+0x5/0xa
[  957.415720][T17300]  should_failslab+0xc2/0x120
[  957.415749][T17300]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  957.415787][T17300]  ? __break_lease+0x13c/0x19f0
[  957.415819][T17300]  ? ktime_get_coarse_real_ts64_mg+0x235/0x300
[  957.415848][T17300]  __break_lease+0x13c/0x19f0
[  957.415882][T17300]  ? current_time+0x29f/0x3b0
[  957.415916][T17300]  ? __pfx___break_lease+0x10/0x10
[  957.415954][T17300]  ? evm_inode_setattr+0x41/0x6d0
[  957.415977][T17300]  ? __pfx_make_vfsgid+0x10/0x10
[  957.416002][T17300]  ? vfs_utimes+0x438/0x880
[  957.416034][T17300]  ? vfs_utimes+0x438/0x880
[  957.416072][T17300]  ? up_write+0x28c/0x4f0
[  957.416099][T17300]  vfs_utimes+0x510/0x880
[  957.416136][T17300]  ? __pfx_vfs_utimes+0x10/0x10
[  957.416183][T17300]  ? do_getname+0x191/0x390
[  957.416220][T17300]  do_utimes_path+0x109/0x1b0
[  957.416255][T17300]  ? __pfx_do_utimes_path+0x10/0x10
[  957.416292][T17300]  ? kernel_write+0x603/0x6c0
[  957.416318][T17300]  ? __fget_files+0x215/0x3d0
[  957.416350][T17300]  do_utimes+0x34/0x100
[  957.416384][T17300]  do_futimesat+0x18b/0x200
[  957.416418][T17300]  ? __pfx_do_futimesat+0x10/0x10
[  957.416456][T17300]  ? ksys_write+0x1ac/0x250
[  957.416486][T17300]  ? rcu_is_watching+0x12/0xc0
[  957.416516][T17300]  do_syscall_64+0x115/0x840
[  957.416548][T17300]  ? clear_bhb_loop+0x40/0x90
[  957.416576][T17300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  957.416600][T17300] RIP: 0033:0x7ff3c899ce59
[  957.416618][T17300] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  957.416640][T17300] RSP: 002b:00007ff3c9794028 EFLAGS: 00000246 ORIG_RAX: 00000000000000eb
[  957.416662][T17300] RAX: ffffffffffffffda RBX: 00007ff3c8c15fa0 RCX: 00007ff3c899ce59
[  957.416678][T17300] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  957.416691][T17300] RBP: 00007ff3c9794090 R08: 0000000000000000 R09: 0000000000000000
[  957.416705][T17300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  957.416718][T17300] R13: 00007ff3c8c16038 R14: 00007ff3c8c15fa0 R15: 00007ffc13b5e848
[  957.416747][T17300]  </TASK>
[  957.975498][T17289] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  962.343744][T17377] usb usb21: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  962.627758][T17377] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  963.321841][T17358] random: crng reseeded on system resumption
[  963.955339][T17360] hub 1-0:1.0: USB hub found
[  964.067536][T17360] hub 1-0:1.0: 1 port detected
[  964.731589][T17408] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  967.517791][T17442] Console: switching to colour VGA+ 80x25
[  968.243020][T17449] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2230'.
[  972.574401][T17502] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  974.108118][T17512] netlink: 338 bytes leftover after parsing attributes in process `syz.7.2240'.
[  974.305753][T17513] netlink: 338 bytes leftover after parsing attributes in process `syz.7.2240'.
[  974.890909][T17513] netlink: 338 bytes leftover after parsing attributes in process `syz.7.2240'.
[  975.111993][T17513] netlink: 338 bytes leftover after parsing attributes in process `syz.7.2240'.
[  977.673311][T17552] ubi0: attaching mtd0
[  977.693427][T17566] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2251'.
[  977.785562][T17552] ubi0: scanning is finished
[  977.869932][T17552] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  978.279496][T17552] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  978.830765][T17576] Process accounting resumed
[  981.674521][T17619] usb usb16: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  981.871756][T17620] netlink: 206 bytes leftover after parsing attributes in process `syz.8.2258'.
[  981.952145][T16073] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 660 seconds
[  982.917392][T17640] netlink: 342 bytes leftover after parsing attributes in process `syz.7.2262'.
[  983.013684][T17643] futex_wake_op: syz.8.2263 tries to shift op by -2048; fix this program
[  983.622243][T17651] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  983.685235][T17650] FAULT_INJECTION: forcing a failure.
[  983.685235][T17650] name fail_futex, interval 1, probability 0, space 0, times 0
[  983.818639][T17650] CPU: 0 UID: 0 PID: 17650 Comm: syz.7.2264 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  983.818677][T17650] Tainted: [L]=SOFTLOCKUP
[  983.818685][T17650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  983.818699][T17650] Call Trace:
[  983.818707][T17650]  <TASK>
[  983.818716][T17650]  dump_stack_lvl+0x100/0x190
[  983.818761][T17650]  should_fail_ex.cold+0x5/0xa
[  983.818785][T17650]  ? lockdep_hardirqs_on+0x78/0x100
[  983.818822][T17650]  should_fail_futex+0x4c/0x60
[  983.818860][T17650]  __x64_sys_futex+0x1f0/0x4d0
[  983.818887][T17650]  ? __pfx___x64_sys_futex+0x10/0x10
[  983.818917][T17650]  ? rcu_is_watching+0x12/0xc0
[  983.818947][T17650]  do_syscall_64+0x115/0x840
[  983.818995][T17650]  ? clear_bhb_loop+0x40/0x90
[  983.819024][T17650]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  983.819048][T17650] RIP: 0033:0x7f916fd9ce59
[  983.819067][T17650] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  983.819090][T17650] RSP: 002b:00007ffeec58e9f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  983.819112][T17650] RAX: ffffffffffffffda RBX: 00000000000f01ef RCX: 00007f916fd9ce59
[  983.819127][T17650] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f917001609c
[  983.819141][T17650] RBP: 0000000000000032 R08: 0000000000000001 R09: 0000000000000000
[  983.819154][T17650] R10: 00007ffeec58eb00 R11: 0000000000000246 R12: 00007ffeec58eb20
[  983.819168][T17650] R13: 00007f917001609c R14: 00000000000f0221 R15: 00007ffeec58eb00
[  983.819197][T17650]  </TASK>
[  984.953714][ T9005] Bluetooth: hci6: unexpected subevent 0x01 length: 123 > 18
[  986.994222][ T9005] Bluetooth: hci6: command 0x2016 tx timeout
[  987.955878][T17675] netlink: 342 bytes leftover after parsing attributes in process `syz.7.2269'.
[  988.127763][T17690] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  989.078198][ T9005] Bluetooth: hci6: command 0x2016 tx timeout
[  990.520301][T17730] FAULT_INJECTION: forcing a failure.
[  990.520301][T17730] name fail_futex, interval 1, probability 0, space 0, times 0
[  990.611803][T17730] CPU: 0 UID: 0 PID: 17730 Comm: syz.6.2280 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  990.611845][T17730] Tainted: [L]=SOFTLOCKUP
[  990.611853][T17730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  990.611868][T17730] Call Trace:
[  990.611876][T17730]  <TASK>
[  990.611884][T17730]  dump_stack_lvl+0x100/0x190
[  990.611931][T17730]  should_fail_ex.cold+0x5/0xa
[  990.611962][T17730]  get_futex_key+0x1d2/0x1510
[  990.612005][T17730]  ? __pfx_get_futex_key+0x10/0x10
[  990.612053][T17730]  ? __destroy_inode+0x2cd/0x710
[  990.612089][T17730]  ? __pfx_sock_free_inode+0x10/0x10
[  990.612122][T17730]  ? destroy_inode+0x139/0x1c0
[  990.612162][T17730]  futex_wake+0xea/0x530
[  990.612194][T17730]  ? __pfx_futex_wake+0x10/0x10
[  990.612237][T17730]  do_futex+0x32b/0x350
[  990.612262][T17730]  ? __pfx_do_futex+0x10/0x10
[  990.612291][T17730]  ? iput+0x3a/0x40
[  990.612325][T17730]  ? __sock_release+0x184/0x260
[  990.612357][T17730]  __x64_sys_futex+0x34f/0x4d0
[  990.612384][T17730]  ? __sys_socket+0xac/0x260
[  990.612418][T17730]  ? __pfx___x64_sys_futex+0x10/0x10
[  990.612450][T17730]  ? rcu_is_watching+0x12/0xc0
[  990.612482][T17730]  do_syscall_64+0x115/0x840
[  990.612515][T17730]  ? clear_bhb_loop+0x40/0x90
[  990.612545][T17730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  990.612570][T17730] RIP: 0033:0x7fbae6f9ce59
[  990.612590][T17730] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  990.612614][T17730] RSP: 002b:00007fbae7e650e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  990.612636][T17730] RAX: ffffffffffffffda RBX: 00007fbae7215fa8 RCX: 00007fbae6f9ce59
[  990.612652][T17730] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbae7215fac
[  990.612667][T17730] RBP: 00007fbae7215fa0 R08: 0000000000000001 R09: 0000000000000000
[  990.612682][T17730] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  990.612696][T17730] R13: 00007fbae7216038 R14: 00007ffe73ea8330 R15: 00007ffe73ea8418
[  990.612726][T17730]  </TASK>
[  993.328934][T17754] FAULT_INJECTION: forcing a failure.
[  993.328934][T17754] name failslab, interval 1, probability 0, space 0, times 0
[  993.436432][T17754] CPU: 0 UID: 0 PID: 17754 Comm: syz.7.2285 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  993.436472][T17754] Tainted: [L]=SOFTLOCKUP
[  993.436481][T17754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  993.436495][T17754] Call Trace:
[  993.436503][T17754]  <TASK>
[  993.436511][T17754]  dump_stack_lvl+0x100/0x190
[  993.436558][T17754]  should_fail_ex.cold+0x5/0xa
[  993.436588][T17754]  ? lsm_blob_alloc+0x68/0x90
[  993.436629][T17754]  should_failslab+0xc2/0x120
[  993.436659][T17754]  __kmalloc_noprof+0xe0/0x850
[  993.436681][T17754]  ? trace_kmem_cache_alloc+0xd5/0x100
[  993.436716][T17754]  lsm_blob_alloc+0x68/0x90
[  993.436753][T17754]  security_prepare_creds+0x2d/0x290
[  993.436791][T17754]  prepare_creds+0x5d6/0x950
[  993.436819][T17754]  copy_creds+0xa7/0xa50
[  993.436847][T17754]  copy_process+0x1347/0x7ed0
[  993.436879][T17754]  ? __futex_wait+0x256/0x300
[  993.436913][T17754]  ? __pfx___futex_wait+0x10/0x10
[  993.436953][T17754]  ? __pfx_copy_process+0x10/0x10
[  993.436990][T17754]  ? futex_hash+0x141/0x370
[  993.437034][T17754]  kernel_clone+0x176/0x9e0
[  993.437074][T17754]  ? __pfx_futex_wait+0x10/0x10
[  993.437102][T17754]  ? kernel_wait4+0x1d6/0x280
[  993.437125][T17754]  ? __pfx_kernel_clone+0x10/0x10
[  993.437178][T17754]  __do_sys_clone+0xd9/0x120
[  993.437212][T17754]  ? __pfx___do_sys_clone+0x10/0x10
[  993.437263][T17754]  ? rcu_is_watching+0x12/0xc0
[  993.437294][T17754]  do_syscall_64+0x115/0x840
[  993.437328][T17754]  ? clear_bhb_loop+0x40/0x90
[  993.437358][T17754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  993.437383][T17754] RIP: 0033:0x7f916fd9ce59
[  993.437402][T17754] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  993.437426][T17754] RSP: 002b:00007f9170cb3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  993.437449][T17754] RAX: ffffffffffffffda RBX: 00007f9170016090 RCX: 00007f916fd9ce59
[  993.437465][T17754] RDX: 0000200000000380 RSI: fffffffffffffc4d RDI: 0000000000000002
[  993.437480][T17754] RBP: 00007f916fe32d6f R08: 0000000000000000 R09: 0000000000000000
[  993.437495][T17754] R10: 00002000000003c0 R11: 0000000000000246 R12: 0000000000000000
[  993.437510][T17754] R13: 00007f9170016128 R14: 00007f9170016090 R15: 00007ffeec58e898
[  993.437541][T17754]  </TASK>
[  993.992495][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  994.000500][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  995.023414][T17771] openvswitch: netlink: Key type 68 is out of range max 32
[  995.290940][T17778] sd 0:0:1:0: device reset
[  995.572811][T17782] FAULT_INJECTION: forcing a failure.
[  995.572811][T17782] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  995.688799][T17782] CPU: 0 UID: 0 PID: 17782 Comm: syz.3.2291 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  995.688838][T17782] Tainted: [L]=SOFTLOCKUP
[  995.688846][T17782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  995.688861][T17782] Call Trace:
[  995.688868][T17782]  <TASK>
[  995.688877][T17782]  dump_stack_lvl+0x100/0x190
[  995.688924][T17782]  should_fail_ex.cold+0x5/0xa
[  995.688956][T17782]  ? prepare_alloc_pages+0x16d/0x5f0
[  995.688990][T17782]  should_fail_alloc_page+0xeb/0x140
[  995.689021][T17782]  prepare_alloc_pages+0x1f0/0x5f0
[  995.689057][T17782]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  995.689111][T17782]  ? mt_validate_nulls+0x1b3/0xa10
[  995.689155][T17782]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  995.689202][T17782]  ? mas_prev_node+0x1da/0xf00
[  995.689249][T17782]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  995.689286][T17782]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  995.689322][T17782]  ? policy_nodemask+0xed/0x4f0
[  995.689353][T17782]  alloc_pages_mpol+0x1fb/0x540
[  995.689384][T17782]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  995.689413][T17782]  ? __lock_acquire+0x4a5/0x2630
[  995.689457][T17782]  folio_alloc_mpol_noprof+0x36/0x260
[  995.689493][T17782]  alloc_migration_target_by_mpol+0x2c1/0x650
[  995.689531][T17782]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  995.689568][T17782]  ? __pfx___might_resched+0x10/0x10
[  995.689592][T17782]  ? is_bpf_text_address+0x8a/0x1a0
[  995.689625][T17782]  ? bpf_ksym_find+0x124/0x1c0
[  995.689652][T17782]  migrate_pages_batch+0x5dc/0x45c0
[  995.689688][T17782]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  995.689734][T17782]  ? __pfx_migrate_pages_batch+0x10/0x10
[  995.689776][T17782]  ? __pfx_stack_trace_save+0x10/0x10
[  995.689809][T17782]  ? stack_depot_save_flags+0x27/0x9d0
[  995.689857][T17782]  ? kasan_save_stack+0x3f/0x50
[  995.689881][T17782]  ? kasan_save_stack+0x30/0x50
[  995.689903][T17782]  ? kasan_save_track+0x14/0x30
[  995.689926][T17782]  ? __kasan_slab_alloc+0x89/0x90
[  995.689951][T17782]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  995.689990][T17782]  ? __mpol_dup+0x74/0x390
[  995.690020][T17782]  ? mbind_range+0x2ad/0x550
[  995.690055][T17782]  migrate_pages_sync+0x12c/0x880
[  995.690089][T17782]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  995.690132][T17782]  ? __pfx_migrate_pages_sync+0x10/0x10
[  995.690168][T17782]  ? __lock_acquire+0x4a5/0x2630
[  995.690213][T17782]  migrate_pages+0x1aa5/0x2880
[  995.690249][T17782]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  995.690292][T17782]  ? __pfx_migrate_pages+0x10/0x10
[  995.690329][T17782]  ? find_held_lock+0x2b/0x80
[  995.690359][T17782]  ? do_mbind+0x555/0xfd0
[  995.690397][T17782]  ? up_write+0x28c/0x4f0
[  995.690423][T17782]  do_mbind+0x5a4/0xfd0
[  995.690465][T17782]  ? __pfx_do_mbind+0x10/0x10
[  995.690502][T17782]  ? clockevents_program_event+0x23e/0x820
[  995.690543][T17782]  ? __pfx_get_nodes+0x10/0x10
[  995.690575][T17782]  kernel_mbind+0x1b7/0x200
[  995.690611][T17782]  ? __pfx_kernel_mbind+0x10/0x10
[  995.690648][T17782]  ? rcu_is_watching+0x12/0xc0
[  995.690679][T17782]  do_syscall_64+0x115/0x840
[  995.690712][T17782]  ? clear_bhb_loop+0x40/0x90
[  995.690747][T17782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  995.690772][T17782] RIP: 0033:0x7ff3c899ce59
[  995.690793][T17782] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  995.690817][T17782] RSP: 002b:00007ff3c9773028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  995.690840][T17782] RAX: ffffffffffffffda RBX: 00007ff3c8c16090 RCX: 00007ff3c899ce59
[  995.690857][T17782] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000
[  995.690871][T17782] RBP: 00007ff3c8a32d6f R08: 0000002000000006 R09: 0000000000000002
[  995.690886][T17782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  995.690901][T17782] R13: 00007ff3c8c16128 R14: 00007ff3c8c16090 R15: 00007ffc13b5e848
[  995.690931][T17782]  </TASK>
[  996.388476][T17769] Process accounting resumed
[  996.633247][T17765] Bluetooth: hci4: command 0x0406 tx timeout
[  996.639394][T17765] Bluetooth: hci6: command 0x2016 tx timeout
[  998.368817][T17805] nbd: must specify an index to disconnect
[ 1000.191772][T17829] hub 1-0:1.0: USB hub found
[ 1000.216735][T17829] hub 1-0:1.0: 1 port detected
[ 1000.245005][T17829] FAULT_INJECTION: forcing a failure.
[ 1000.245005][T17829] name failslab, interval 1, probability 0, space 0, times 0
[ 1000.306594][T17829] CPU: 0 UID: 0 PID: 17829 Comm: syz.8.2303 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1000.306638][T17829] Tainted: [L]=SOFTLOCKUP
[ 1000.306647][T17829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1000.306664][T17829] Call Trace:
[ 1000.306671][T17829]  <TASK>
[ 1000.306680][T17829]  dump_stack_lvl+0x100/0x190
[ 1000.306725][T17829]  should_fail_ex.cold+0x5/0xa
[ 1000.306753][T17829]  ? hub_probe.cold+0x1101/0x2ed5
[ 1000.306780][T17829]  should_failslab+0xc2/0x120
[ 1000.306809][T17829]  __kmalloc_noprof+0xe0/0x850
[ 1000.306836][T17829]  hub_probe.cold+0x1101/0x2ed5
[ 1000.306871][T17829]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1000.306898][T17829]  ? __pfx_hub_probe+0x10/0x10
[ 1000.306924][T17829]  ? _raw_spin_lock_irqsave+0x52/0x60
[ 1000.306959][T17829]  ? mark_held_locks+0x40/0x70
[ 1000.306995][T17829]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1000.307029][T17829]  usb_probe_interface+0x303/0x8f0
[ 1000.307063][T17829]  ? __pfx_usb_probe_interface+0x10/0x10
[ 1000.307095][T17829]  really_probe+0x241/0xa60
[ 1000.307140][T17829]  __driver_probe_device+0x22e/0x480
[ 1000.307180][T17829]  driver_probe_device+0x4c/0x1b0
[ 1000.307227][T17829]  __device_attach_driver+0x1df/0x340
[ 1000.307266][T17829]  ? __pfx___device_attach_driver+0x10/0x10
[ 1000.307303][T17829]  bus_for_each_drv+0x159/0x1e0
[ 1000.307335][T17829]  ? __pfx_bus_for_each_drv+0x10/0x10
[ 1000.307367][T17829]  ? lockdep_hardirqs_on+0x78/0x100
[ 1000.307400][T17829]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1000.307433][T17829]  __device_attach+0x1e4/0x4d0
[ 1000.307470][T17829]  ? __pfx___device_attach+0x10/0x10
[ 1000.307509][T17829]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1000.307539][T17829]  device_initial_probe+0xaf/0xd0
[ 1000.307562][T17829]  bus_probe_device+0x64/0x160
[ 1000.307598][T17829]  device_add+0x1210/0x1950
[ 1000.307625][T17829]  ? __pfx_device_add+0x10/0x10
[ 1000.307651][T17829]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1000.307689][T17829]  usb_set_configuration+0xd97/0x1c60
[ 1000.307733][T17829]  bConfigurationValue_store+0x103/0x180
[ 1000.307762][T17829]  ? __pfx_bConfigurationValue_store+0x10/0x10
[ 1000.307791][T17829]  ? find_held_lock+0x2b/0x80
[ 1000.307819][T17829]  ? sysfs_file_kobj+0xe4/0x290
[ 1000.307856][T17829]  ? sysfs_file_kobj+0xe4/0x290
[ 1000.307901][T17829]  ? __pfx_bConfigurationValue_store+0x10/0x10
[ 1000.307929][T17829]  dev_attr_store+0x58/0x80
[ 1000.307953][T17829]  ? __pfx_dev_attr_store+0x10/0x10
[ 1000.307977][T17829]  sysfs_kf_write+0xf2/0x150
[ 1000.308017][T17829]  kernfs_fop_write_iter+0x3e0/0x5f0
[ 1000.308049][T17829]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1000.308090][T17829]  iter_file_splice_write+0x830/0x10a0
[ 1000.308135][T17829]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1000.308171][T17829]  ? __pfx_copy_splice_read+0x10/0x10
[ 1000.308220][T17829]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1000.308254][T17829]  direct_splice_actor+0x192/0x6c0
[ 1000.308286][T17829]  splice_direct_to_actor+0x345/0xa30
[ 1000.308319][T17829]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1000.308353][T17829]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1000.308392][T17829]  do_splice_direct+0x174/0x240
[ 1000.308422][T17829]  ? __pfx_do_splice_direct+0x10/0x10
[ 1000.308453][T17829]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1000.308486][T17829]  ? rw_verify_area+0xce/0x6d0
[ 1000.308512][T17829]  do_sendfile+0xadc/0xe20
[ 1000.308543][T17829]  ? __pfx_do_sendfile+0x10/0x10
[ 1000.308573][T17829]  ? __x64_sys_futex+0x34f/0x4d0
[ 1000.308596][T17829]  ? __x64_sys_futex+0x358/0x4d0
[ 1000.308623][T17829]  __x64_sys_sendfile64+0x1d8/0x220
[ 1000.308654][T17829]  ? ksys_read+0x1ac/0x250
[ 1000.308679][T17829]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1000.308714][T17829]  ? rcu_is_watching+0x12/0xc0
[ 1000.308744][T17829]  do_syscall_64+0x115/0x840
[ 1000.308776][T17829]  ? clear_bhb_loop+0x40/0x90
[ 1000.308804][T17829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1000.308827][T17829] RIP: 0033:0x7f182199ce59
[ 1000.308846][T17829] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1000.308868][T17829] RSP: 002b:00007f18228a8028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1000.308890][T17829] RAX: ffffffffffffffda RBX: 00007f1821c15fa0 RCX: 00007f182199ce59
[ 1000.308905][T17829] RDX: 0000000000000000 RSI: 000000000000000b RDI: 000000000000000b
[ 1000.308919][T17829] RBP: 00007f1821a32d6f R08: 0000000000000000 R09: 0000000000000000
[ 1000.308933][T17829] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 1000.308947][T17829] R13: 00007f1821c16038 R14: 00007f1821c15fa0 R15: 00007ffdde0ca168
[ 1000.308977][T17829]  </TASK>
[ 1002.380872][T17831] can: request_module (can-proto-0) failed.
[ 1002.403289][T17829] hub 1-0:1.0: config failed, out of memory (err -12)
[ 1004.336951][T17857] ubi0: attaching mtd0
[ 1004.442187][T17857] ubi0: scanning is finished
[ 1004.478270][T17857] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1004.847968][T17857] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1005.336707][T17868] netlink: zone id is out of range
[ 1005.362032][T17868] netlink: zone id is out of range
[ 1005.388337][T17868] netlink: zone id is out of range
[ 1005.423256][T17868] netlink: zone id is out of range
[ 1005.466648][T17868] netlink: zone id is out of range
[ 1005.504310][T17868] netlink: zone id is out of range
[ 1005.540039][T17868] netlink: zone id is out of range
[ 1005.563413][T17868] netlink: zone id is out of range
[ 1005.587589][T17868] netlink: zone id is out of range
[ 1005.617075][T17868] netlink: zone id is out of range
[ 1008.041472][T17890] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2311'.
[ 1008.087307][T17890] virt_wifi0: entered allmulticast mode
[ 1009.329926][T17900] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2314'.
[ 1009.432448][T17900] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1009.454792][T17900] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1009.543862][T17900] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1009.575100][T17900] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1010.233196][T10634] Process accounting resumed
[ 1011.040141][T17906] Process accounting resumed
[ 1012.117799][T16073] block nbd28: Possible stuck request ffff8880470e0000: control (read@0,4096B). Runtime 690 seconds
[ 1012.686637][   T30] INFO: task syz.0.2089:16470 blocked for more than 144 seconds.
[ 1012.694874][   T30]       Tainted: G             L      syzkaller #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1012.735976][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1012.811184][T17929] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2319'.
[ 1012.838912][   T30] task:syz.0.2089      state:D stack:27800 pid:16470 tgid:16469 ppid:5633   task_flags:0x400140 flags:0x00080002
[ 1012.922061][   T30] Call Trace:
[ 1012.947373][   T30]  <TASK>
[ 1012.976631][   T30]  __schedule+0x1295/0x67a0
[ 1013.041443][   T30]  ? __pfx___schedule+0x10/0x10
[ 1013.066238][T17929] ieee80211 phy44: Selected rate control algorithm 'minstrel_ht'
[ 1013.101298][   T30]  ? find_held_lock+0x2b/0x80
[ 1013.129878][   T30]  ? schedule+0x2bf/0x390
[ 1013.155131][   T30]  schedule+0xdd/0x390
[ 1013.186567][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1013.225232][   T30]  __mutex_lock+0xced/0x1b10
[ 1013.250438][   T30]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1013.280937][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1013.311863][   T30]  ? irqentry_exit+0x24d/0x970
[ 1013.355125][   T30]  ? net_generic+0xea/0x2a0
[ 1013.382939][   T30]  ? net_generic+0xea/0x2a0
[ 1013.407953][   T30]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1013.454835][   T30]  nfsd_shutdown_threads+0x5b/0xf0
[ 1013.479194][   T30]  nfsd_umount+0x3b/0x60
[ 1013.495884][   T30]  deactivate_locked_super+0xc1/0x1b0
[ 1013.558994][   T30]  deactivate_super+0xe7/0x110
[ 1013.611187][   T30]  cleanup_mnt+0x21f/0x450
[ 1013.663001][   T30]  task_work_run+0x150/0x240
[ 1013.706428][   T30]  ? __pfx_task_work_run+0x10/0x10
[ 1013.747154][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1013.776319][   T30]  exit_to_user_mode_loop+0x157/0x670
[ 1013.820321][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1013.836083][   T30]  do_syscall_64+0x652/0x840
[ 1013.857104][   T30]  ? clear_bhb_loop+0x40/0x90
[ 1013.876916][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1013.917628][   T30] RIP: 0033:0x7f376939ce59
[ 1013.943457][   T30] RSP: 002b:00007f376a2a9028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1014.002116][   T30] RAX: fffffffffffffffe RBX: 00007f3769615fa0 RCX: 00007f376939ce59
[ 1014.064109][   T30] RDX: 0000200000000140 RSI: 00002000000000c0 RDI: 0000000000000000
[ 1014.110112][   T30] RBP: 00007f3769432d6f R08: 0000000000000000 R09: 0000000000000000
[ 1014.155040][   T30] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000000
[ 1014.192379][   T30] R13: 00007f3769616038 R14: 00007f3769615fa0 R15: 00007ffe43f7f6c8
[ 1014.233332][   T30]  </TASK>
[ 1014.248402][   T30] 
[ 1014.248402][   T30] Showing all locks held in the system:
[ 1014.363842][T17936] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1014.380481][   T30] 1 lock held by khungtaskd/30:
[ 1014.397259][T17936] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1014.410794][   T30]  #0: ffffffff8e7e5420 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[ 1014.462767][   T30] 1 lock held by udevd/5649:
[ 1014.489021][   T30]  #0: ffff888047054350 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0x41a/0xe40
[ 1014.541498][   T30] 1 lock held by syz.1.573/8797:
[ 1014.567258][   T30] 1 lock held by syz.1.573/8798:
[ 1014.594360][   T30] 2 locks held by kworker/u10:12/9284:
[ 1014.626448][   T30]  #0: ffff88801efe6140 ((wq_completion)iou_exit){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[ 1014.692171][   T30]  #1: ffffc90003c1fd08 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[ 1014.745060][   T30] 2 locks held by getty/13639:
[ 1014.776773][   T30]  #0: ffff888037c9e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 1014.828075][   T30]  #1: ffffc900024b82e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x14f0
[ 1014.862702][   T30] 3 locks held by kworker/u11:0/15538:
[ 1014.886654][   T30]  #0: ffff888077c25940 ((wq_completion)hci7){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[ 1014.944700][   T30]  #1: ffffc9000328fd08 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[ 1014.999585][   T30]  #2: ffff88805a14cea0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x18a/0x470
[ 1015.058735][   T30] 2 locks held by syz.2.2087/16456:
[ 1015.078526][   T30]  #0: ffffffff906b3f48 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1015.118255][   T30]  #1: ffffffff8ec622a0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1a80
[ 1015.153400][   T30] 2 locks held by syz.0.2089/16470:
[ 1015.174858][   T30]  #0: ffff88802a4f80d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1015.207813][   T30]  #1: ffffffff8ec622a0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1015.244050][   T30] 2 locks held by syz.3.2104/16549:
[ 1015.288496][   T30]  #0: ffff88803731c0d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1015.324081][   T30]  #1: ffffffff8ec622a0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1015.356163][   T30] 2 locks held by syz-executor/16569:
[ 1015.379060][   T30]  #0: ffff888087c3c0d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1015.412447][   T30]  #1: ffffffff8ec622a0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1015.455703][   T30] 2 locks held by syz.4.2112/16613:
[ 1015.481892][   T30]  #0: ffff88807bfa60d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1015.523001][   T30]  #1: ffffffff8ec622a0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1015.556575][   T30] 2 locks held by syz.5.2149/16902:
[ 1015.565446][   T30]  #0: ffff88801c3360d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1015.605449][   T30]  #1: ffffffff8ec622a0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1015.640045][   T30] 2 locks held by syz-executor/16947:
[ 1015.656253][   T30]  #0: ffff888039fa20d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1015.698947][   T30]  #1: ffffffff8ec622a0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1015.732079][   T30] 1 lock held by syz.8.2313/17899:
[ 1015.748954][   T30]  #0: ffffffff8e6e73a8 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_chain_unregister+0x60/0xc0
[ 1015.777042][   T30] 5 locks held by syz.8.2319/17929:
[ 1015.787054][   T30]  #0: ffff88805bdc6400 (&sb->s_type->i_mutex_key#13){+.+.}-{4:4}, at: __sock_release+0x86/0x260
[ 1015.816127][   T30]  #1: ffffffff906b17e8 ((netlink_chain).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain+0x53/0xa0
[ 1015.839294][   T30]  #2: ffffffff90605a20 (rtnl_mutex){+.+.}-{4:4}, at: ieee80211_unregister_hw+0x4d/0x360
[ 1015.861233][   T30]  #3: ffff8880945c0780 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf0/0x6f0
[ 1015.884501][   T30]  #4: ffffffff8e7f0f68 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[ 1015.918772][   T30] 8 locks held by syz.7.2321/17936:
[ 1015.926548][   T30]  #0: ffffffff8f5456c0 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x450
[ 1015.948361][   T30]  #1: ffffffff8e6a1e00 (system_transition_mutex){+.+.}-{4:4}, at: lock_system_sleep+0x56/0x70
[ 1015.971743][   T30]  #2: ffffffff8e6e73a8 ((pm_chain_head).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain_robust+0xa8/0x160
[ 1016.006386][   T30]  #3: ffff888033438ea0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_suspend_dev+0x315/0x540
[ 1016.022418][   T30]  #4: ffff8880334380b8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x141/0xb20
[ 1016.050299][ T9005] Bluetooth: hci7: command 0x0406 tx timeout
[ 1016.065760][   T30]  #5: ffffffff9088c800 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x119/0x360
[ 1016.083426][   T30]  #6: ffff88807802a2f8 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x95/0x710
[ 1016.105767][   T30]  #7: ffffffff8e7f0f68 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x27f/0x3c0
[ 1016.132112][   T30] 1 lock held by syz-executor/17938:
[ 1016.145559][   T30]  #0: ffffffff8f5456c0 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x450
[ 1016.172870][   T30] 
[ 1016.268510][T17936] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1016.278315][   T30] =============================================
[ 1016.278315][   T30] 
[ 1016.303630][T17936] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1016.334786][   T30] NMI backtrace for cpu 0
[ 1016.334810][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1016.334842][   T30] Tainted: [L]=SOFTLOCKUP
[ 1016.334850][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1016.334864][   T30] Call Trace:
[ 1016.334875][   T30]  <TASK>
[ 1016.334885][   T30]  dump_stack_lvl+0x100/0x190
[ 1016.334930][   T30]  nmi_cpu_backtrace.cold+0x12d/0x151
[ 1016.334958][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1016.334983][   T30]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[ 1016.335012][   T30]  sys_info+0x141/0x190
[ 1016.335048][   T30]  watchdog+0xcb1/0x1030
[ 1016.335087][   T30]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1016.335118][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1016.335152][   T30]  ? __kthread_parkme+0x18c/0x230
[ 1016.335186][   T30]  ? kthread+0x13a/0x450
[ 1016.335220][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1016.335250][   T30]  kthread+0x370/0x450
[ 1016.335284][   T30]  ? __pfx_kthread+0x10/0x10
[ 1016.335321][   T30]  ret_from_fork+0x72b/0xd50
[ 1016.335346][   T30]  ? __pfx_ret_from_fork+0x10/0x10
[ 1016.335371][   T30]  ? __switch_to+0x800/0x1100
[ 1016.335402][   T30]  ? __switch_to_asm+0x39/0x70
[ 1016.335431][   T30]  ? __pfx_kthread+0x10/0x10
[ 1016.335467][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1016.335527][   T30]  </TASK>
[ 1016.517625][T15538] Bluetooth: hci0: command 0x0406 tx timeout
[ 1016.539882][T17936] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1016.550134][T17936] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1016.564245][T17936] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1016.577429][T17936] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1016.617209][T17936] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1016.623649][T17936] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 1016.657071][T17936] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1016.676267][T17936] Bluetooth: hci7: Opcode 0x0406 failed: -4
[ 1016.685390][T17936] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1016.711364][T17936] Bluetooth: hci8: Opcode 0x0406 failed: -4
[ 1016.722958][T17936] Bluetooth: hci8: Opcode 0x0406 failed: -4
[ 1016.814845][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[ 1016.821762][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1016.832543][   T30] Tainted: [L]=SOFTLOCKUP
[ 1016.836868][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1016.846938][   T30] Call Trace:
[ 1016.850233][   T30]  <TASK>
[ 1016.853171][   T30]  dump_stack_lvl+0x100/0x190
[ 1016.858143][   T30]  vpanic+0x552/0x970
[ 1016.862229][   T30]  ? __pfx_vpanic+0x10/0x10
[ 1016.866750][   T30]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[ 1016.873188][   T30]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[ 1016.879366][   T30]  panic+0xd1/0xe0
[ 1016.883113][   T30]  ? __pfx_panic+0x10/0x10
[ 1016.887571][   T30]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[ 1016.893922][   T30]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[ 1016.900129][   T30]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[ 1016.906323][   T30]  ? watchdog.cold+0x1ec/0x234
[ 1016.911124][   T30]  ? watchdog+0xcc1/0x1030
[ 1016.916010][   T30]  watchdog.cold+0x1fd/0x234
[ 1016.920631][   T30]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1016.926466][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1016.931193][   T30]  ? __kthread_parkme+0x18c/0x230
[ 1016.936335][   T30]  ? kthread+0x13a/0x450
[ 1016.940605][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1016.945301][   T30]  kthread+0x370/0x450
[ 1016.949571][   T30]  ? __pfx_kthread+0x10/0x10
[ 1016.954187][   T30]  ret_from_fork+0x72b/0xd50
[ 1016.958804][   T30]  ? __pfx_ret_from_fork+0x10/0x10
[ 1016.963959][   T30]  ? __switch_to+0x800/0x1100
[ 1016.968670][   T30]  ? __switch_to_asm+0x39/0x70
[ 1016.973482][   T30]  ? __pfx_kthread+0x10/0x10
[ 1016.978123][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1016.983028][   T30]  </TASK>
[ 1016.986306][   T30] Kernel Offset: disabled
[ 1016.990648][   T30] Rebooting in 86400 seconds..