last executing test programs:

5m30.934991681s ago: executing program 32 (id=1243):
mmap$auto(0x0, 0x2000a, 0x4000000000df, 0x11, 0x405, 0x4)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001240)='/dev/sequencer2\x00', 0x1100, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mbind$auto(0x0, 0xfa9c, 0x8001, &(0x7f0000000100)=0x80000000, 0x400, 0x1)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/radio2\x00', 0x0, 0x0)
read$auto_v4l2_fops_v4l2_dev(r1, &(0x7f0000000100)=""/4096, 0x1000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
kexec_load$auto(0x0, 0x1, 0x0, 0x1000000000004)
ioctl$auto_SNDCTL_MIDI_PRETIME(r0, 0xc0046d00, 0x0)
mprotect$auto(0x3, 0x4, 0x81)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x0, 0x0)
unshare$auto(0x40000080)
unshare$auto(0xd1)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/008/001\x00', 0x402, 0x0)
mmap$auto(0xfffffffffffffffb, 0x2, 0x5, 0xffffffe, 0xffffffffffffffff, 0x1007ffd)
move_pages$auto(0x0, 0x100000001001, 0x0, &(0x7f0000001280)=0x1, 0x0, 0x2)
mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x13, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fda, 0x3, 0x7fffffffb000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000001380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xfc\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r&\xec\xb8\xb1Z\\\xc9L\xb2\t\xddbH|\xffGP\x97)\xb9:nqn\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc$\xa0\xa5\xce\xca\xe1P\xf7\xe5_\xca\xd5\xd8\xa4g_\xb1\x88\x8cAJS\x11\x8b\xd1%a\xe5DPk\x8c\xf9\xfb\xe0+\xdb\x12\x10.F\x00\xc37\xc7\xbf\x80\xbeu\xe1V\xb2\xc5\xc9\x1a\xc7\xdc}!\x10\xb1\",1%\x0e\xeb\x15\x15me\xe1a\x03\x18{\xb03+\x93*vB\xc6\xf1\xc6\xff\xbbt\x04!\xb6\v\xde2\xc9\x89#\xbaR\xee\x13jF%\xf2\x15\x9a\x82&\x89o\xa9\xd9\xbfFY\x90\x8c\xa0\xe4\x9d\xa2\xcd\x9a\xb5TC\xc4\x9d\x9ePb]\xaa\xc7f\x06N\xc5\xfa{\x02Y\xae\xf4(\xaa\x06);{?\x1e\fu\x19b\xdf$,\x01\"\x94\x00\x00\x00\x00\x003\xcfZ\xaf~<\xba\xb7\xa03\x8c\n*krS\x19Q#\x8f\xfbW\xad\xe0\xb3o\xcb\xf7\xda\x87C\x99\x1a\xa8\xc1\xe3\xc6%\xac\x01@*\xa0\xc4\xedn-lT\xe6*?\'\x9dW=\xa7\x03\x06\x83 IT\xa3\x7ff\xb6\x95\xe5\xd2\n\xaf\x87`\xce%\xf6 &\xa7M5I\x9c\x17h\x8c\xa4\x98\x16\xe0\xd9?Y\x7f\xf6\x85_{\xfd9p$B9_\xd8\xf4\x0e\xd0\xfa\xe7\xb0\xb8\xa0\xd7\a\xff.\"\x81\b\xb0\xb4\x84\xac\xad\x1b\x93~_\xea\xfe7\x03\"\xd9\x1d.\xe5{bHX\x14\xa1\bO\x03[^\x85jP\x89\t\x06GI\xb7\x99\xb2zZf\xc8\xd4\x8d\x1c\x1e\x03\xb9\xa7Nt\xae\xfff\xf9\tx\xae\xa8\x05\xb14\xc6\x9b\x1f\xd3\x01#\xc6\nb\xd4\xb4\xc8?\xa7\xe2R\xc1\xcf\xd2\xbc\xae\xd1\xc2\x88\"\xf3\xf0\xc0uQy\xec\xfab\xd6\xcd\x16)\x19*E\vm\x8d\x1bG:\x80\'pJ', 0x4100000a3d7)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0p/sub7/info\x00', 0x8040, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000100)=""/184, 0xb8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

2m29.125595609s ago: executing program 4 (id=1783):
mmap$auto(0x3ff, 0x3, 0x3, 0x18, 0xffffffffffffffff, 0x800000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xfffffffffffefffd, 0x15)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0)
mmap$auto(0x0, 0x28009, 0x4000000000df, 0xeb2, r0, 0x8000)
io_uring_setup$auto(0x8001, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xa)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto(0xa, 0x2, 0x13, 0xde)
r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
sendmsg$auto_OVS_FLOW_CMD_SET(r1, 0x0, 0x10)
prctl$auto(0x3e, 0x64b4, 0x0, 0x1, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x800000000000003)
rseq$auto(0x0, 0x584, 0x1, 0x2)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000040), 0x10000, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000001140), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'veth1_to_team\x00'})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[], 0x24}, 0x1, 0x1400, 0x0, 0x80}, 0x20000084)
r3 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000100)={0x2, 0x0, 0x8000004, 0x81, &(0x7f0000000040)="a006", 0x100400, 0x2d, 0x6, @number_of_packets=0xfffffff3, 0x45a, 0x0, 0x0})
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x2041, 0xfa)
write$auto(r4, 0x0, 0xfffffdf1)
linkat$auto(r4, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000)
fsetxattr$auto(r4, &(0x7f0000000180)=':\xbf+<\x8a}\x00\xeb\xfa\xe6\x8d\x02\\VD\x04\x00\x00\x00*\x80\xa4\xf4vql\xa9\x05o\xf7\x9e\xfd\xf7\x00\x00\x00\x00H_/Z>n\xf5F\xbf\xd3\xefi\x91\x88\x1daIu7\xef!\xd0\x04\xdes\xfe`\xf5e;4\xbek\xf9\xec%\xbc\xd4\xfc`\xb9\n\xb5\xa5V\x98\x14]\x8a\x03\xd9', 0x0, 0x7bd, 0x1)
mprotect$auto(0x0, 0x8000000000000001, 0x8)

2m28.013175202s ago: executing program 4 (id=1787):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x4611, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_fd=r0, <r2=>r1, 0x4, 0xf, 0xffffffffffffffff, @relative_fd, 0xe600}, 0xf)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x4)
io_uring_setup$auto(0x6, 0x0)
fstatfs$auto(0xffffffffffffffff, &(0x7f0000000140)={0x8001, 0x100000000000, 0x1, 0x9, 0x5d, 0x2, 0x75, {[0x80000000]}, 0x0, 0x7ff, 0x68a6, [0x5, 0x8, 0x5, 0x4]})
r3 = socket(0x2, 0x1, 0x106)
r4 = ioctl$auto_UDMABUF_CREATE(r2, 0x40187542, &(0x7f0000000280)={r3, 0xcd0a, 0xae84, 0x8})
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000000), r4)
bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x5}, 0xe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x4611, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_fd=r0, r1, 0x4, 0xf, 0xffffffffffffffff, @relative_fd, 0xe600}, 0xf) (async)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffffffffffffffff, 0x0, 0x3}, 0x4) (async)
io_uring_setup$auto(0x6, 0x0) (async)
fstatfs$auto(0xffffffffffffffff, &(0x7f0000000140)={0x8001, 0x100000000000, 0x1, 0x9, 0x5d, 0x2, 0x75, {[0x80000000]}, 0x0, 0x7ff, 0x68a6, [0x5, 0x8, 0x5, 0x4]}) (async)
socket(0x2, 0x1, 0x106) (async)
ioctl$auto_UDMABUF_CREATE(r2, 0x40187542, &(0x7f0000000280)={r3, 0xcd0a, 0xae84, 0x8}) (async)
syz_genetlink_get_family_id$auto_ovs_meter(&(0x7f0000000000), r4) (async)
bind$auto(r3, &(0x7f0000000040)=@in={0x2, 0x3, @broadcast}, 0x6a) (async)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x5}, 0xe) (async)

2m27.273548908s ago: executing program 4 (id=1789):
r0 = socket(0x10, 0x2, 0x0)
r1 = socket(0x1d, 0x3, 0x1)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f00000003c0)={&(0x7f0000000280)={0x1d, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001356405ba76e29018e3cdf88221f275d4a7faa320f18727b03b1cb790a183a4c758a494abae9f94598d777239f1376670eb6f8911ad0e66400"/76, @ANYRES16=0x0, @ANYBLOB="20002bbd70000300000005000000"], 0x14}, 0x1, 0x0, 0x0, 0x8801}, 0x4000)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) (async)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r2, 0x4090ae82, 0x0)
read$auto(r0, &(0x7f0000000080)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52\x8a', 0x1260)

2m26.953734631s ago: executing program 4 (id=1790):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x2000, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_SET_CQM(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="60120000", @ANYRES16=r1, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="080081000700000000112a00058008002600", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r3], 0x1260}, 0x1, 0x0, 0x0, 0x1}, 0x8000000) (async)
sendmsg$auto_NL80211_CMD_SET_CQM(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="60120000", @ANYRES16=r1, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="080081000700000000112a00058008002600", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r3], 0x1260}, 0x1, 0x0, 0x0, 0x1}, 0x8000000)

2m26.329611899s ago: executing program 4 (id=1794):
mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
mremap$auto(0x0, 0x3, 0x3fda, 0x6, 0x7fffffffb000)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000001380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xfc\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r&\xec\xb8\xb1Z\\\xc9L\xb2\t\xddbH|\xffGP\x97)\xb9:nqn\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc$\xa0\xa5\xce\xca\xe1P\xf7\xe5_\xca\xd5\xd8\xa4g_\xb1\x88\x8cAJS\x11\x8b\xd1%a\xe5DPk\x8c\xf9\xfb\xe0+\xdb\x12\x10.F\x00\xc37\xc7\xbf\x80\xbeu\xe1V\xb2\xc5\xc9\x1a\xc7\xdc}!\x10\xb1\",1%\x0e\xeb\x15\x15me\xe1a\x03\x18{\xb03+\x93*vB\xc6\xf1\xc6\xff\xbbt\x04!\xb6\v\xde2\xc9\x89#\xbaR\xee\x13jF%\xf2\x15\x9a\x82&\x89o\xa9\xd9\xbfFY\x90\x8c\xa0\xe4\x9d\xa2\xcd\x9a\xb5TC\xc4\x9d\x9ePb]\xaa\xc7f\x06N\xc5\xfa{\x02Y\xae\xf4(\xaa\x06);{?\x1e\fu\x19b\xdf$,\x01\"\x94\x00\x00\x00\x00\x003\xcfZ\xaf~<\xba\xb7\xa03\x8c\n*krS\x19Q#\x8f\xfbW\xad\xe0\xb3o\xcb\xf7\xda\x87C\x99\x1a\xa8\xc1\xe3\xc6%\xac\x01@*\xa0\xc4\xedn-lT\xe6*?\'\x9dW=\xa7\x03\x06\x83 IT\xa3\x7ff\xb6\x95\xe5\xd2\n\xaf\x87`\xce%\xf6 &\xa7M5I\x9c\x17h\x8c\xa4\x98\x16\xe0\xd9?Y\x7f\xf6\x85_{\xfd9p$B9_\xd8\xf4\x0e\xd0\xfa\xe7\xb0\xb8\xa0\xd7\a\xff.\"\x81\b\xb0\xb4\x84\xac\xad\x1b\x93~_\xea\xfe7\x03\"\xd9\x1d.\xe5{bHX\x14\xa1\bO\x03[^\x85jP\x89\t\x06GI\xb7\x99\xb2zZf\xc8\xd4\x8d\x1c\x1e\x03\xb9\xa7Nt\xae\xfff\xf9\tx\xae\xa8\x05\xb14\xc6\x9b\x1f\xd3\x01#\xc6\nb\xd4\xb4\xc8?\xa7\xe2R\xc1\xcf\xd2\xbc\xae\xd1\xc2\x88\"\xf3\xf0\xc0uQy\xec\xfab\xd6\xcd\x16)\x19*E\vm\x8d\x1bG:\x80\'pJ', 0x4100000a3d7)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0p/sub7/info\x00', 0x8040, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000100)=""/184, 0xb8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000001500), 0xffffffffffffffff)
sendmsg$auto_KSMBD_EVENT_STARTING_UP(r3, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={&(0x7f0000001540)={0x14, r4, 0x1, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x10)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x3, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
io_uring_setup$auto(0x5d, 0x0)
socket(0xa, 0x1, 0x84)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
bpf$auto(0x0, &(0x7f00000001c0)=@info={r0, 0xee, 0x8a07}, 0x10)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
listen$auto(0x3, 0x83)
close_range$auto(0x2, 0x8, 0x0)
socket(0xf, 0x3, 0x2)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2000, 0x0)

2m25.557935326s ago: executing program 4 (id=1796):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408)
socket(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r1, 0x0, 0x40)
syz_genetlink_get_family_id$auto_ethtool(0x0, r1)
ioperm$auto(0x7, 0x6, 0x80)
syz_clone3(0x0, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4b62, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tipcv2(0x0, r2)
sendmsg$auto_TIPC_NL_NET_SET(r2, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000040)={0x20, r3, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @uid=0xee00}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2)
msgctl$auto(0x9, 0xffff8a28, &(0x7f0000000240)={{0x80000001, 0xee01, 0x0, 0x4, 0x84, 0x7, 0x7}, 0x0, &(0x7f0000000200), 0x8, 0x8, 0x7, 0x236, 0xed, 0xe, 0x1ff, 0x40, @inferred, @raw=0x3})
sendmsg$auto_TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f00000019c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10800004}, 0xc, &(0x7f0000001980)={&(0x7f00000002c0)={0x118, r3, 0x400, 0x70bd2c, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x8, 0x2, 0x0, 0x1, [@typed={0x4, 0x12f, 0x0, 0x0, @binary}]}, @TIPC_NLA_NET={0xf7, 0x7, 0x0, 0x1, [@nested={0x1c, 0x1b, 0x0, 0x1, [@typed={0x8, 0xb1, 0x0, 0x0, @fd}, @generic, @nested={0x4, 0xff}, @typed={0x8, 0x6f, 0x0, 0x0, @ipv4=@remote}, @nested={0x4, 0x56}]}, @generic="c5f24d98bbc24f27a0a02273a64b72db659efb34d57f57ea9002425d857923b6b2e05edb39b10c1741f7dc920774282bbca0d2d76cfe34d14d7baf9c3b507bea52769b5a1af9d6c9c582b8154d5495c0813198529e7c8900806b58de2e5240a2f2296d8f10750c70c20cdddec9269c22f984f4baabf5b0f13e719bb6424cfebe2e090c09b7b46e4528f5e8450c975f1711444796225c1f652b3e726b972a5b297ea40ff14b91163cc4772a03167f6c4889397e6f1dbabad8c4c3d05adfea59ad39fc82e1409e193f15ed6f37da0da1c6a4af393fd3709b", @generic]}, @TIPC_NLA_NET={0x4}]}, 0x118}}, 0x800)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
write$auto(r0, 0x0, 0xfffffdf1)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x169000, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mprotect$auto(0x0, 0x8000000000000001, 0x8)

2m18.719211153s ago: executing program 33 (id=1771):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x2, 0x801, 0x6)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRESOCT=r0, @ANYBLOB="000425bd7004fedbdfbb4faebe77"], 0x14}, 0x1, 0x0, 0x0, 0x4040004}, 0x4000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
r1 = prctl$auto_PR_SET_MM_START_STACK(0x9, 0x5, 0x0, 0xd, 0x8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002cbd7000fbdbdf250200000008000100070000000800030085000000ee1a3c6264d3db7cf6795158a1ac8560a66f31bdb824887895f5d4fb7d2423782b4e3284b1adc162dc733caebb1be8543b4d54cc4457a6fa7d4c700d37bbb60508007cb42be7d52cc4d7c75d3f0fe46ca9fc01"], 0x24}, 0x1, 0x0, 0x0, 0x20008000}, 0xc840)
sendmsg$auto_NFSD_CMD_LISTENER_GET(r2, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x14, r4, 0x1, 0x70bd2c, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}}, 0x20010090)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f0000000780)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200004}, 0xc, &(0x7f0000000740)={&(0x7f0000000180)={0x5b0, r4, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x9c, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x4d, 0x1, "fc15acd5b771c79fd2dc24b9d144105fd8f3e20dcb22de4c4853856eb9668c8aa532417747ccac3df1a5f1e896ac9cc0f973cad1119d4a9a7fe8ee5fa3e8fdf13a531925e6a2fe04e5"}, @NFSD_A_SOCK_TRANSPORT_NAME={0x6, 0x2, '/\x00'}, @NFSD_A_SOCK_TRANSPORT_NAME={0x12, 0x2, '/dev/pts/ptmx\x00'}, @NFSD_A_SOCK_TRANSPORT_NAME={0x12, 0x2, '/dev/pts/ptmx\x00'}, @NFSD_A_SOCK_TRANSPORT_NAME={0x5, 0x2, '\x00'}, @NFSD_A_SOCK_TRANSPORT_NAME={0x10, 0x2, '{).\\[+}.^%#\x00'}]}, @NFSD_A_SERVER_SOCK_ADDR={0x2ec, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x9a, 0x1, "c7ec2daa063026cd8b252681c161f79f91de0c16e7f4066726e2374b52943a027c3a1867bfb8d94af9df2f3cfc158f558e9c8291795004628f9bedd861a793c874b98d92af22a60137f2d87e6be5a473390405fda8ad10bb054012a623d334f53c40b6042a0a86013f1b853e7b8251ef9e8ea4d7aa820cc9ebabacba3797a4d0dcdc2fa9974f6a32fa54e8c8f1b9c06fbe54341af1d4"}, @NFSD_A_SOCK_ADDR={0x73, 0x1, "022b63a0beaef5e711a69f58da0b0ba16c2cdec2901fa0903e81f727c9234bd005d315fa14814294ff4d42899b5470d94a068f00937c9ac5642a3d135c35a121265009375db3ee3f8992cc3d0e22471b9afc3ba6d9312afadb59a9d5b2f9b6e361cfc8cb7be89af5a981f8bc3e3fd3"}, @NFSD_A_SOCK_ADDR={0xc9, 0x1, "f1f3573092dd1ae7c30486a21bd1e05dee12228a1fb21172271ca3185b80145b2a03c93387732f5b0a0ba83e30bd9e9152b92d5f29c9deb5e9678fdae648a67b7885162119f151fc40583ae5f654acfafee902e46e63d3f4f66fa2ad398d7f05c12302adefe750872c5781ebac68177231cffad9e697dcd71a472ff82fb9eb5f198ac6703ebaa6d35ffedfe2c9a4834faf2c26b6e359430c81c92a44fcd24d89656e54dac31a26aa34625daa406419729d34465d887d0dd49edabd98a4a5f11ecd5387a55f"}, @NFSD_A_SOCK_TRANSPORT_NAME={0x12, 0x2, '/dev/pts/ptmx\x00'}, @NFSD_A_SOCK_ADDR={0x6, 0x1, "3501"}, @NFSD_A_SOCK_ADDR={0xd8, 0x1, "7d6dce6342ae29454a9adb498b4007e034e466357b249439d512f7cd94fcefd8df59e266b5991c6cdf6dfa95c7475653fbfc652100e413759a20b6d8eb7bb15c7a579969ca8ef2b9383b1fac751baf1e55134c4072a31d69ef8861eea0e2da4137d451d55e89ba10ced204e786ad7ed6b713c06a7d1092a9238b4647e77c7623c1199bdd95e68b0615d0f6ead589b52b41c136e73b0aba1d28e3bb8739e030b66954977b01f6b4f5c2494bdd492778c5f3a9d78bf72da4edab39e8163ff198abde69c4863ddd8854add4d4c69f5e831f28ecfd78"}, @NFSD_A_SOCK_TRANSPORT_NAME={0x9, 0x2, '-/@+\x00'}, @NFSD_A_SOCK_TRANSPORT_NAME={0xa, 0x2, '#:u-*\x00'}]}, @NFSD_A_SERVER_SOCK_ADDR={0xc, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_TRANSPORT_NAME={0x7, 0x2, '!(\x00'}]}, @NFSD_A_SERVER_SOCK_ADDR={0x1e0, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x60, 0x1, "407ba2664b1381a01044f70c4435c91393eff55d1f3ba9e42df760c91b5f01dfbb3c1f629cc72d4603f4219461ae3aff4bf4ec48b1537ea0a7a3a12842e0f8c1cdebe9843ef63aef1088e74cd54763cbe10ac453db902599a41aa1d9"}, @NFSD_A_SOCK_TRANSPORT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @NFSD_A_SOCK_ADDR={0xf6, 0x1, "045cce43018600541d2362cf3f7aaa64356dbef2d59e299ff0a9fb47b0d1cf591db6fc9734bde65c6b2fb695eb3b5fa884551992496e23227214bcfe11df54cd8f203172a62903cd53d9673c31f0e6c460193337dc71579142379a9355f3c1d5258bf8f7d0b242168745b14b8699b25d894814a33478124dc66146288300b151410e27d59b5814e72891b6657f883453dbf1fc55bd63dfd30a2fcb13ddce7d897b6c7f8d65cb72071f5ba14d9aae712ce1755e6aa9797c279b11fcc9fbfaf84189d3e97f976ee6a63ee0718b0bbc5ae6dc52d7a69697af8cee1b64411d2ec04c04ea51cb6e8d7bd30b582bf16572dba0248b"}, @NFSD_A_SOCK_ADDR={0x5f, 0x1, "987507b32cbaea08ff59b3be4651c2000c1b44fa18e84eab130441e2b89ca7b62c099f142cbad243ce00fcb0ac0dd9484c66c4ab6605e51b9a8f5a19002346484a0c1190d6230fb17de3dfd3a217402709f8c13bd5c9f215380c30"}, @NFSD_A_SOCK_TRANSPORT_NAME={0x13, 0x2, '!-$%)\x18.:/[}\\-\x8b\x00'}]}, @NFSD_A_SERVER_SOCK_ADDR={0x28, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_TRANSPORT_NAME={0x12, 0x2, '/dev?pts/p\xca:\x1b9'}, @NFSD_A_SOCK_TRANSPORT_NAME={0xe, 0x2, '[.)(}.-/}\x00'}]}]}, 0x5b0}}, 0x24004045)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlock$auto(0x1004, 0x6)
mlockall$auto(0x800000000000005)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004c18}, 0x48880)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r5)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r7=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="2f21462f20dd7fbf77c25d00000008000300", @ANYRES32=r7], 0x1c}}, 0x4000000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)

2m10.583264562s ago: executing program 34 (id=1796):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408)
socket(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r1, 0x0, 0x40)
syz_genetlink_get_family_id$auto_ethtool(0x0, r1)
ioperm$auto(0x7, 0x6, 0x80)
syz_clone3(0x0, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4b62, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tipcv2(0x0, r2)
sendmsg$auto_TIPC_NL_NET_SET(r2, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000040)={0x20, r3, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @uid=0xee00}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2)
msgctl$auto(0x9, 0xffff8a28, &(0x7f0000000240)={{0x80000001, 0xee01, 0x0, 0x4, 0x84, 0x7, 0x7}, 0x0, &(0x7f0000000200), 0x8, 0x8, 0x7, 0x236, 0xed, 0xe, 0x1ff, 0x40, @inferred, @raw=0x3})
sendmsg$auto_TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f00000019c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10800004}, 0xc, &(0x7f0000001980)={&(0x7f00000002c0)={0x118, r3, 0x400, 0x70bd2c, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x8, 0x2, 0x0, 0x1, [@typed={0x4, 0x12f, 0x0, 0x0, @binary}]}, @TIPC_NLA_NET={0xf7, 0x7, 0x0, 0x1, [@nested={0x1c, 0x1b, 0x0, 0x1, [@typed={0x8, 0xb1, 0x0, 0x0, @fd}, @generic, @nested={0x4, 0xff}, @typed={0x8, 0x6f, 0x0, 0x0, @ipv4=@remote}, @nested={0x4, 0x56}]}, @generic="c5f24d98bbc24f27a0a02273a64b72db659efb34d57f57ea9002425d857923b6b2e05edb39b10c1741f7dc920774282bbca0d2d76cfe34d14d7baf9c3b507bea52769b5a1af9d6c9c582b8154d5495c0813198529e7c8900806b58de2e5240a2f2296d8f10750c70c20cdddec9269c22f984f4baabf5b0f13e719bb6424cfebe2e090c09b7b46e4528f5e8450c975f1711444796225c1f652b3e726b972a5b297ea40ff14b91163cc4772a03167f6c4889397e6f1dbabad8c4c3d05adfea59ad39fc82e1409e193f15ed6f37da0da1c6a4af393fd3709b", @generic]}, @TIPC_NLA_NET={0x4}]}, 0x118}}, 0x800)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
write$auto(r0, 0x0, 0xfffffdf1)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x169000, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mprotect$auto(0x0, 0x8000000000000001, 0x8)

2m1.163914387s ago: executing program 3 (id=1843):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
read$auto(0xffffffffffffffff, 0x0, 0x4)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
unshare$auto(0x20000080)
syz_clone(0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
setuid$auto(0xe)
bpf$auto(0x5, 0x0, 0x6)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x6, 0x0)
mmap$auto(0x0, 0x100000001, 0xdd, 0x20eb1, 0x40000000000a5, 0x8000)
r0 = open(0x0, 0x84180, 0x180)
ioctl$auto_SG_SET_COMMAND_Q(r0, 0x2271, 0x0)
sendfile$auto(0xffffffffffffffff, r0, 0x0, 0x2)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x50080, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, r0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/geneve1/ignore_routes_with_linkdown\x00', 0x202, 0x0)
read$auto(0x3, 0x0, 0x80)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x40100, 0x0)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001140)='/dev/psaux\x00', 0x42000, 0x0)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x149202, 0x0)
ioctl$auto_XFS_IOC_FREESP(0xffffffffffffffff, 0x4030580b, 0x0)

1m59.15564864s ago: executing program 3 (id=1847):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
socket(0x28, 0x801, 0x0)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc40, 0x0)
mmap$auto(0x0, 0x20009, 0x2000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0xa, 0x80803, 0x6)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x940b, 0x8000001, 0x400, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
r1 = epoll_create$auto(0x8800001)
epoll_ctl$auto(r1, 0x1, r0, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000026d00)='/dev/dri/card0\x00', 0x2000, 0x0)
syz_genetlink_get_family_id$auto_ovs_meter(0x0, 0xffffffffffffffff)
socket(0x2b, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)

1m58.488164894s ago: executing program 3 (id=1850):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r0)
getegid()
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001a80)={'wg2\x00'})
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x400c000)
mmap$auto(0x0, 0x2020009, 0x3, 0x96, 0xfffffffffffffffa, 0x8000)
pidfd_open$auto(0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
prctl$auto(0x3e, 0x2, 0x0, 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff)
openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
socket(0x2, 0x801, 0x100)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r0) (async)
getegid() (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001a80)={'wg2\x00'}) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x400c000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0x96, 0xfffffffffffffffa, 0x8000) (async)
pidfd_open$auto(0x1, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000) (async)
prctl$auto(0x3e, 0x2, 0x0, 0x1, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0) (async)
writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3) (async)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff) (async)
openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) (async)
socket(0x2, 0x801, 0x100) (async)

1m57.445769615s ago: executing program 3 (id=1855):
mmap$auto(0x0, 0xfffffffffffffff8, 0x4000000000df, 0xeb1, 0x401, 0x8003)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r1, 0xc0481273, &(0x7f00000000c0)={"ef65ce6c00cf81000000ffffffffffffff291d000000000700000000000300", 0x3ff, 0x408, 0xfff, 0x400004, 0x200000000040000d})
ioctl$auto_BLKTRACETEARDOWN(r1, 0x1276, 0x0)
r2 = openat$auto_transaction_log_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transaction_log\x00', 0x782, 0x0)
read$auto_transaction_log_fops_(r2, &(0x7f0000000100)=""/3, 0x3)
r3 = socket(0x2, 0x1, 0x106)
setfsuid$auto(0xee00)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/usb/drivers/usbip-host/rebind\x00', 0x121681, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'virt_wifi0\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r4, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000200)={0x28, r5, 0x1, 0x74bd2e, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @ETHTOOL_A_COALESCE_TX_AGGR_MAX_BYTES={0x8, 0x1a, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x48c1}, 0x20000000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'sit0\x00', <r7=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r7, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r7, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r8 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r8, &(0x7f0000000000)="c80d1b5d399b3b", 0xfdef)
io_uring_register$auto_IORING_REGISTER_EVENTFD_ASYNC(r3, 0x7, &(0x7f0000000300)="10c89b2981206b3bf9f3533688b35173dfe92a8da7f698388434e3e551db3dbd927aee7fc520a8c3917d42845ab3c22f3327c9f354e8145907c1f73dbab9b36bb1be8ebff326ecba1801a4b48c5500cf9c11874fe6dbbe64cc29be45422899da8a875c8d4bfe19005ef15c306c80f11d7225d18de138", 0x100)

1m56.664398999s ago: executing program 3 (id=1858):
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000002080)='/dev/ptyd8\x00', 0x480, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0)
ioctl$auto(0x3, 0x40045431, r0)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/trace_options\x00', 0x80442, 0x0)
preadv$auto(r2, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x3, 0x7ffffffd, 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
fstat$auto(0x2, 0x0)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
open_by_handle_at$auto(0xffffffffffffffff, 0x0, 0x200002)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/dummy_hcd.2/usb3/authorized\x00', 0x81, 0x0)
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
writev$auto(0x3, &(0x7f0000000200)={0x0, 0x8}, 0x6)
close_range$auto(0x2, 0x8, 0x0)
pipe$auto(0x0)
write$auto(0x3, 0x0, 0x200ffd8)
r3 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto_l2cap_debugfs_fops_(r3, &(0x7f0000000240)=""/177, 0xb1)
r4 = openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_BINDER_CTL_ADD(r4, 0xc1086201, &(0x7f0000000300)={"0745f98d42f864fff260be540a375421c60eb176cd3f7d43af7e78d0855d983ab07a97e0e436491d8f40a082f30575992705f32813c392d9d912db4a508f634e979aebf1b39599d7645746ea47bb234fcadfc586c8b421d2cda16b9c221e3629403216172fb402dd68e3bcf1de36422f9757ae6147ac041a911a4c9248db3a71e37ae34f79b9ed265f6cdd64cfdf7e8f78e07f27f52441e7131587fbae9e98a52d4e535f446676b62c07ce77a365f95fc78ffd1c69179d4bf3a10d463bd3cedbd26b3b1344d8d531bbc88c3cfc788f2632d6d49e98a3b996f0f5128672331d57d70831e547b0154add9ba2aa270311aa86fb4b1b7c16195d95e9821e82bb6775", 0xe0f1, 0x10001})
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
madvise$auto(0x0, 0x400053, 0x9)
bpf$auto_BPF_PROG_LOAD(0x5, &(0x7f00000000c0)=@bpf_attr_7={@map_id=0x6, 0x400, 0x600000, r3}, 0x81)
listmount$auto(&(0x7f00000001c0)={0x21, @inferred=r1, 0x80000002, 0xfffffffffffffff7, 0xc}, 0x0, 0xf4241, 0x1)

1m55.659648661s ago: executing program 3 (id=1862):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2, 0xe2, 0xeb1, 0x405, 0xfffffffffffffff9)
r1 = socket(0xa, 0x5, 0x0)
setsockopt$auto(r1, 0x10000000084, 0x79, 0x0, 0xd)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r0)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f00000050c0)={0x0, 0x5c1e, &(0x7f0000005080)={&(0x7f0000002a80)={0x14, r2, 0x1, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008050)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x14, r2, 0x1, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0xeda47ee5ad433e65}, 0x20000000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000180), r3)
mmap$auto(0x4626, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
pread64$auto(0xffffffffffffffff, 0x0, 0x3ef, 0x9)
fsconfig$auto(r0, 0xc, &(0x7f00000002c0)='&-\x00', &(0x7f0000000300)="2df1b163de18e73a73597f135f7380843a2fcbe245a5b803a4f3c05fe95b435ef2675d2228f1500e5374f89a2a3badacc583c3f89e24cde0195c57b3dbe621ad1ad85bbed85b7ca18cefc7786a2515d389d4b4501e71fd232b74d37763e6720113bf6aefcd8682c8372a02c5b656532afa7ed9816f9516ed1d3099ab81d9a9c7bc70bfd9656c7ef3d2cb9bb5793a0f77e4ec7d8299bb9e8b3e34e2c4937cea44a5197b4382d374f6418f8c912b9b23ae014daeb06f2677e2695760b724dcef240355b44c3598fab6853176e0840d5bddd72dbf37cad28d227249b47473f1061314a462a8a777a892133af672d05135f813f7", 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mremap$auto(0x4000, 0x8000b8, 0x13fd4, 0x3, 0xfffff000)
sendmsg$auto_HSR_C_GET_NODE_LIST(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x14, r4, 0x1, 0x70bda6, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000080}, 0x20000800)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/kcore\x00', 0x28000, 0x0)
pread64$auto(r5, 0x0, 0x8, 0x7b7ddd26)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/036/001\x00', 0x802, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_NEW(r6, &(0x7f0000001280)={0x0, 0x57, &(0x7f0000001240)={&(0x7f0000000140)={0x1c, r7, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000)
mmap$auto(0x4, 0x8004, 0x4000000000df, 0x100040eb5, 0x401, 0x300000000000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001140)=""/4093, 0xffd)

1m42.565546862s ago: executing program 1 (id=1901):
mmap$auto(0x0, 0x2000a, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
eventfd$auto(0x4)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x83001, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x29, 0x5, 0x0)
socket(0x2, 0x1, 0x6)
r1 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
open_by_handle_at$auto(r1, &(0x7f0000001280)={0x8, 0x2, "0200000000000000"}, 0x6)
sendfile$auto(r0, r0, 0x0, 0x2)
mkdir$auto(&(0x7f0000000040)='./cgroup/../file0\x00', 0x1)
rmdir$auto(&(0x7f0000000000)='./cgroup/../file0\x00')
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x5, 0x400a)
process_vm_writev$auto(0x0, &(0x7f00000011c0)={&(0x7f00000001c0)="42777dd1330b458d0b5c44ca32e94fc00cfbce962ee7d8f31c0f90c327830f55adfdceafcc0f7b5a21ea23bdf5344d47d49d60218e57bb33118d04fdd37f5fd17f96", 0x8}, 0x7, 0x0, 0x7, 0xb5)
sendmsg$auto_TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000000200)=ANY=[@ANYBLOB="180000", @ANYRES16=0x0, @ANYBLOB="01000200000000006bbc9d65365cbf8013"], 0x18}, 0x1, 0x0, 0x0, 0x4000094}, 0x8080)
socket(0x11, 0x3, 0xb)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sg0\x00', 0x8001, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, 0x0, 0x100000a3d9)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r2)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/swradio12\x00', 0x0, 0x0)
poll$auto(&(0x7f0000000140)={r4, 0xffff, 0x29}, 0x3, 0xa)
get_mempolicy$auto(0x0, 0x0, 0x3, 0x1ff, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x1, 0x0, 0x80000000)

1m41.68165282s ago: executing program 1 (id=1906):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000040)={0xcc, 0x0, [{0x6, 0x1, 0x5}]})
r3 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000001a00), 0x801, 0x0)
write$auto_nvmf_dev_fops_fabrics(r3, &(0x7f0000001a40)="fb40e8", 0x3)
r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r0)
sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x30, r4, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@SMC_PNETID_NAME={0xb, 0x1, 'dummy0\x00'}, @SMC_PNETID_ETHNAME={0x10, 0x2, 'du3>\x1a\x00\f\x00\xff\xfd\x00\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x20041040}, 0x44c0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/trace_pipe\x00', 0x8a402, 0x0)
readv$auto(0x3, &(0x7f0000000280)={0x0, 0xf7}, 0x87)
socket(0xa, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x7)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r6)
ioctl$auto_KVM_GET_MSRS(r5, 0x9000aea4, &(0x7f00000000c0)={0xdd})
mmap$auto(0x0, 0x3, 0xfff, 0x9b72, 0xffffffffffffffff, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)

1m40.672808213s ago: executing program 1 (id=1908):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408)
socket(0x10, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PLCA_GET_STATUS(r1, 0x0, 0x40)
syz_genetlink_get_family_id$auto_ethtool(0x0, r1)
ioperm$auto(0x7, 0x6, 0x80)
syz_clone3(0x0, 0x0)
ioctl$auto(0xffffffffffffffff, 0x4b62, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_tipcv2(0x0, r2)
sendmsg$auto_TIPC_NL_NET_SET(r2, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000040)={0x20, r3, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@typed={0x8, 0x2, 0x0, 0x0, @uid=0xee00}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x2)
msgctl$auto(0x9, 0xffff8a28, &(0x7f0000000240)={{0x80000001, 0xee01, 0x0, 0x4, 0x84, 0x7, 0x7}, 0x0, &(0x7f0000000200), 0x8, 0x8, 0x7, 0x236, 0xed, 0xe, 0x1ff, 0x40, @inferred, @raw=0x3})
sendmsg$auto_TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f00000019c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10800004}, 0xc, &(0x7f0000001980)={&(0x7f00000002c0)={0x13c, r3, 0x400, 0x70bd2c, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x8, 0x2, 0x0, 0x1, [@typed={0x4, 0x12f, 0x0, 0x0, @binary}]}, @TIPC_NLA_NET={0x119, 0x7, 0x0, 0x1, [@nested={0x1c, 0x1b, 0x0, 0x1, [@typed={0x8, 0xb1, 0x0, 0x0, @fd}, @generic, @nested={0x4, 0xff}, @typed={0x8, 0x6f, 0x0, 0x0, @ipv4=@remote}, @nested={0x4, 0x56}]}, @typed={0x8, 0xe1, 0x0, 0x0, @uid}, @generic="c5f24d98bbc24f27a0a02273a64b72db659efb34d57f57ea9002425d857923b6b2e05edb39b10c1741f7dc920774282bbca0d2d76cfe34d14d7baf9c3b507bea52769b5a1af9d6c9c582b8154d5495c0813198529e7c8900806b58de2e5240a2f2296d8f10750c70c20cdddec9269c22f984f4baabf5b0f13e719bb6424cfebe2e090c09b7b46e4528f5e8450c975f1711444796225c1f652b3e726b972a5b297ea40ff14b91163cc4772a03167f6c4889397e6f1dbabad8c4c3d05adfea59ad39fc82e1409e193f15ed6f37da0da1c6a4af393fd3709bcee3ca168e2b2b9bb83774bd21d4cedd8297429fbb7fadc8d7ff", @generic]}, @TIPC_NLA_NET={0x4}]}, 0x13c}}, 0x800)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
write$auto(r0, 0x0, 0xfffffdf1)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x169000, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mprotect$auto(0x0, 0x8000000000000001, 0x8)

1m40.608173132s ago: executing program 35 (id=1862):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2, 0xe2, 0xeb1, 0x405, 0xfffffffffffffff9)
r1 = socket(0xa, 0x5, 0x0)
setsockopt$auto(r1, 0x10000000084, 0x79, 0x0, 0xd)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002a40), r0)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f00000050c0)={0x0, 0x5c1e, &(0x7f0000005080)={&(0x7f0000002a80)={0x14, r2, 0x1, 0x70bd25, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008050)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x14, r2, 0x1, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0xeda47ee5ad433e65}, 0x20000000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_hsr(&(0x7f0000000180), r3)
mmap$auto(0x4626, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
pread64$auto(0xffffffffffffffff, 0x0, 0x3ef, 0x9)
fsconfig$auto(r0, 0xc, &(0x7f00000002c0)='&-\x00', &(0x7f0000000300)="2df1b163de18e73a73597f135f7380843a2fcbe245a5b803a4f3c05fe95b435ef2675d2228f1500e5374f89a2a3badacc583c3f89e24cde0195c57b3dbe621ad1ad85bbed85b7ca18cefc7786a2515d389d4b4501e71fd232b74d37763e6720113bf6aefcd8682c8372a02c5b656532afa7ed9816f9516ed1d3099ab81d9a9c7bc70bfd9656c7ef3d2cb9bb5793a0f77e4ec7d8299bb9e8b3e34e2c4937cea44a5197b4382d374f6418f8c912b9b23ae014daeb06f2677e2695760b724dcef240355b44c3598fab6853176e0840d5bddd72dbf37cad28d227249b47473f1061314a462a8a777a892133af672d05135f813f7", 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
mremap$auto(0x4000, 0x8000b8, 0x13fd4, 0x3, 0xfffff000)
sendmsg$auto_HSR_C_GET_NODE_LIST(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x14, r4, 0x1, 0x70bda6, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000080}, 0x20000800)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/kcore\x00', 0x28000, 0x0)
pread64$auto(r5, 0x0, 0x8, 0x7b7ddd26)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/036/001\x00', 0x802, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_NEW(r6, &(0x7f0000001280)={0x0, 0x57, &(0x7f0000001240)={&(0x7f0000000140)={0x1c, r7, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@OVS_FLOW_ATTR_PROBE={0x4}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0xffffffffffffffff, 0x8000)
mmap$auto(0x4, 0x8004, 0x4000000000df, 0x100040eb5, 0x401, 0x300000000000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000001140)=""/4093, 0xffd)

1m39.326706882s ago: executing program 1 (id=1911):
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x3e, 0xa, 0x0)
io_uring_setup$auto(0x1, 0x0)
poll$auto(&(0x7f0000000040)={<r1=>r0, 0x7, 0x8}, 0x80, 0x400400)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001a80)={'wg2\x00'})
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, 0x0, 0x400c000)
mmap$auto(0x0, 0x2020009, 0x3, 0x96, 0xfffffffffffffffa, 0x8000)
r3 = fcntl$getown(r1, 0x9)
pidfd_open$auto(r3, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
prctl$auto(0x3e, 0x2, 0x0, 0x1, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
writev$auto(r4, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
socket(0x2, 0x801, 0x100)
setsockopt$auto(r1, 0x113, 0x1, 0x0, 0x81)
recvmmsg$auto(0x3, 0x0, 0x6, 0x7bd6, 0x0)

1m38.180777881s ago: executing program 1 (id=1913):
r0 = pidfd_open$auto(0x1, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup.cpu/hugetlb.1GB.failcnt\x00', 0x14bb00, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x74c)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xf6\x04W\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xed\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\x9bg\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)
setns(r0, 0x60020000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0)
ioctl$auto(r1, 0x540a, 0x0)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone3(&(0x7f0000000280)={0x153326100, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/scsi/drivers/st/version\x00', 0x8240, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000040)=""/125, 0x7d)
io_uring_register$auto_IORING_REGISTER_EVENTFD_ASYNC(0xffffffffffffffff, 0x7, &(0x7f0000000000)="fc0bf5b2da3e65c36af3bc2a", 0x419)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(0x3, 0x5521, 0x1)
clone3$auto(0x0, 0x1)
mmap$auto(0x0, 0x81, 0x5, 0xebf, 0xfffffffffffffffa, 0x3)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
madvise$auto(0xfffffffffffffffe, 0x240007, 0x17)
ioctl$auto_SNDCTL_DSP_PROFILE(0xffffffffffffffff, 0x40045017, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101900, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
shutdown$auto(r1, 0x4)
madvise$auto(0x0, 0x2003f2, 0x15)
fchown$auto(0xffffffffffffffff, 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/fs/9p/caches\x00', 0x103280, 0x0)

1m35.406865641s ago: executing program 1 (id=1918):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000040)={0xcc, 0x0, [{0x6, 0x1, 0x5}]})
r3 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000001a00), 0x801, 0x0)
write$auto_nvmf_dev_fops_fabrics(r3, &(0x7f0000001a40)="fb40e8", 0x3)
r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r0)
sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x30, r4, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@SMC_PNETID_NAME={0xb, 0x1, 'dummy0\x00'}, @SMC_PNETID_ETHNAME={0x10, 0x2, 'du3>\x1a\x00\f\x00\xff\xfd\x00\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x20041040}, 0x44c0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/trace_pipe\x00', 0x8a402, 0x0)
readv$auto(0x3, &(0x7f0000000280)={0x0, 0xf7}, 0x87)
socket(0xa, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x7)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r6)
ioctl$auto_KVM_GET_MSRS(r5, 0x9000aea4, &(0x7f00000000c0)={0xdd})
mmap$auto(0x0, 0x3, 0xfff, 0x9b72, 0xffffffffffffffff, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)

1m25.087589283s ago: executing program 7 (id=1943):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-0/xps_cpus\x00', 0x10b062, 0x0)
clock_settime$auto(0x10, &(0x7f0000002d80)={0x9, 0x2})
socket(0x11, 0x800, 0x0)
write$auto(r0, &(0x7f0000000400)=',\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x9b\xcf\x1a@4\x1d>\x9b\xb8\xe7\t\x88\xe0\x85\xee\x1a\a-T\xf8\xcfHx|j\xa0\n\xc7q\x93\x8e\bOp\xd8\x05\x94\xb77\x8d.\xb3t\xbd\x15\xfdR\xfd3\xa0\xe4\xecz8\x1a\xa1V8\xa4\xe3O\xc8w|\xd4\x7f\xea\xa2X\x86\xa0\xec\xd7\x91\xb1B\xcdd9\x1a[\x96\xf7=\x9aU\xeb\r\xb5\x8e\x8b\xaeq\xa12\xc9\\\xb2\xd5\xfd\xf5\xfb\x88R\xa7\xb5\xfd\xe3\xf9\x10\xf2f\xe7\t}\xe61\xcb\x14\x88\xa2\x0f\xfa\xb5T%\xc6 \\\xa3\xa1\x10@y\xbd\x16\xe1\xdfh\xee\xde\xaa\xa2U\xd7\xf4\xa8\xd6\xc1\xe0X\x8f{m\'(\xfb\xab\x8bXW\x9a>Hg\\\xcb\xa3T\x9a%\x1e\x92|a\x9f\xbc\xe4\xd0\xa7\xeb\xb1\xe6\x8e\xae\x02\x964q#u\x8c\x19\x17\xeb\xfc\x16\xab\xb7\b_\xdfh\r\f\xa8/N\xc6\f\xef\xda\xaay\xf8fm\f\xabH\x9f\f\xd1\xc2fZ8\xcd\xb61\xcd\xd8\xcc|p:7\x15\xb2\xcb\xf5\x13\xcc\xb6\x97\x18=[\x8a\x92<k9[\x1e\xf3\x9e$u\x00cWg\f\xe2\xfah\x9d \xaf\x9d\xb5\r6\x98\xae\x87\fx\x83N\'\xd8\xa3\xd9\xd4MC\xcc\x93%\xc1\xa1c\x94\xafd~\xbcn', 0x7fff)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/dev_mcast\x00', 0x40280, 0x0)
ioperm$auto(0x7, 0x6, 0x10)
r2 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000240)='/dev/snd/pcmC1D1c\x00', 0x480381, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_PREPARE2(r2, 0x4140, 0x0)
ioperm$auto(0x94, 0xc81, 0x5)
pread64$auto(r1, &(0x7f00000000c0)='veth1\xe7#\x16T+\xee\x03\xc4\x1c\a\xdfa\x8b[,>\xa9\xd2\xef\xb0\xfb{b^\xef\x93\x97\x06H\xcb\xe7g\xea\x9dE\xc0\xdc\x1e\x02`\x00Z\x9d|\x8f\x92\xe09\xe1hBJL\x1e\"F\xc4\xd0z\xac5+I\xfbb\x9d\x97.]\x95H\f&_\x8d1\x83\x90,\x01\x8ab\xe6P\xb8J\xc4\xc3&\xe3\x05\x7fl\x18\xf40\x18x\x88\x86\xe6{\xdb\x1c\xfef\xf1x\xc9vKq\xd4/N&\x1f\xae\xa8\x9b\xb2\xdbZ\xed\x16a}\xa9gj\xc2mt\x87&\xf7Z\xf1u\xf0\x14\x00\x00\x00\x00\x00\x00\x00i\xb9\xc8\xc6V5]\x06/\xb1`\xd9X\xe5\xfc$\a\xf3S\xbb\xe99\xf1PZ\x81\x8f\xfc\xa4w\\\x84B\x03+\xa2\xe1\xb4\x9dv\xe1\xd7\b9\xc3.\x96I\x98\x00\x00\x00\x00\x00', 0x200000000004, 0xfc)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa142, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x82802, 0x0)
r3 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cec10\x00', 0x101901, 0x0)
epoll_pwait2$auto(0xffffffffffffffff, 0x0, 0x7, 0x0, &(0x7f0000000080)={0x400}, 0x1)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r3, 0xc05c6104, &(0x7f0000000100)={'\x00', 0x0, 0x6, 0x2, 0x6, 0x8, "b87d000002000000997e8b3f222ce1", '\x00', "0001410c", "00000180", ["f58c46658f15a89b9c0060c1", "70d9a9a3af9f39c700000001", "ef5ac4897ad89c5c00", "020400000000000000001100"]})
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
shmget$auto(0x0, 0x2, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/kernel_max\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x20)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r3, 0xc05c6104, &(0x7f0000000480)={"801cc4c5", 0x8, 0x8, 0x0, 0x5d, 0x1, "9c73930014ae6d1c64f0c9cfc40a01", "354d40de", "91391d0a", "0bea5a5a", ["8844f3d239ba5a2b00d1d4f1", "39fb065454a4b28879acd24c", "42565eb931f9cfbfabac8990", "19c57f7fee8d089a10cdd8c3"]})
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x6, 0x4)
r5 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config/nvmet/discovery_nqn\x00', 0x100, 0x0)
read$auto_configfs_file_operations_configfs_internal(r5, &(0x7f0000000080)=""/231, 0xe7)
r6 = fspick$auto(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x1)
ioctl$auto_SNDRV_TIMER_IOCTL_GPARAMS(r6, 0x40485404, &(0x7f00000001c0)={{0x0, 0x8, 0x2, 0x40, 0x9}, 0x6, 0xffffffffffffffff, "97f2b240c35e54c52b36bb9993c88f42d8d7c1ecd5cb553e35fe04d8004fdbd1"})

1m23.234526508s ago: executing program 7 (id=1948):
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
close_range$auto(0x0, 0x5, 0x0)
rename$auto(&(0x7f0000000180)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', &(0x7f0000000300)='v#\xd5\xaf>=\x14\xe6%\xf7\x8a\x8d\x9a\xae\x1a\xd6\xa8\xb8\x1d\xf5(\xb0\x1f\xbd\xcbV\n\"\xe3V\xfeP\xceN\xb2\xc32\xaf\xcc\x80\xfa\xf0\xd4\xd9|\xfe\x03y\xd16\x17\x99R\xca\xe5\xf4\xb4T\xfcv\xfc\xe6\x9cv\a\x00\xc2a\x16\xd1\x8a\x80\x90\x87\xa5s\x10\xed\x93\xd4\x15=\xc0\x1f\x0e\xb0\x18v}\x03!\xf0I\xe3}\x90\x9b\x92[\xfe2<7\xd3\x81\x9a~\xcd\r\x19\x9e\x10(5\xfd\x8b\x82\xd4\xc85\xc3\x93t\t\xd0\x9d\xca^n\xf3\xcb>\x1bO\xcej\xe0\xef\xf2\xd7\xc2}\x18\xd9`AO\x95<\x9aH\vu\xae\xd4\xea\x12\xb8\xd1\n\x01\x83r\x85\xbf*\x18\xa7 S:R\x14\x89Z3\x94\x8bP)')
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x9, 0x2, 0xffffffffffffffff, 0x5b, 0x3)
read$auto_vmwgfx_driver_fops_vmwgfx_drv(r0, &(0x7f0000000280)=""/57, 0x39)
ioctl$auto_USB_RAW_IOCTL_EP0_READ(r0, 0xc0085504, &(0x7f0000000000)={0x1, 0x2, 0x0, "545ac517394d52d7ebadd088cef9cc19ba13eac59a78b1729d085a5a04ca64fd39a6578522b50973a95a"})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x848000000015, 0x805, 0x0)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x6b)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @loopback}, 0x55)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/seccomp/actions_logged\x00', 0x8202, 0x0)
sendfile$auto(r2, r2, 0x0, 0x1048)
sendmsg$auto_OVS_DP_CMD_GET(r1, 0x0, 0x0)

1m23.052397479s ago: executing program 7 (id=1949):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000040)={0xcc, 0x0, [{0x6, 0x1, 0x5}]})
r3 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000001a00), 0x801, 0x0)
write$auto_nvmf_dev_fops_fabrics(r3, &(0x7f0000001a40)="fb40e8", 0x3)
r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r0)
sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x30, r4, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@SMC_PNETID_NAME={0xb, 0x1, 'dummy0\x00'}, @SMC_PNETID_ETHNAME={0x10, 0x2, 'du3>\x1a\x00\f\x00\xff\xfd\x00\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x20041040}, 0x44c0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff7fff, 0x17)
close_range$auto(0x2, 0xa, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/trace_pipe\x00', 0x8a402, 0x0)
readv$auto(0x3, &(0x7f0000000280)={0x0, 0xf7}, 0x87)
socket(0xa, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x7)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
mmap$auto(0x0, 0x3, 0xfff, 0x9b72, 0xffffffffffffffff, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)

1m21.646497004s ago: executing program 7 (id=1952):
socket(0x27, 0x80802, 0x0)
r0 = mq_open$auto(&(0x7f0000000380)='\x1cm\xeb\x9e\xbc\f\x0e\xed\xe5-\xbf\xb7\xdd\xf7#\xe3\xed\xcf8bJ\xc6\xaa2\x80w\xae\xef\xb5\x8aSU\\f\xed\x06J4\xe0\xb9Ig\xb9\x8b\x17\x01\x91\x82\x85\xeb\r\x87N\xf9q\xf97\xd6z\"\x1fog\xe2O\xb7\xdd\xa0L\xed\xe7\xfc\xe8F\xb7W\xf9\x83\xbf\x00\xdb\xf9\xc2\xec\v\xdd\xb8\xbf\xe8\xf8u\xa5-\x14l\x8e},r| \x00\xcc\xcev)\xc0\xdd\xd8\x04\xcd\xf5\x16\xcb/\x1d\xad\x8e\xcdR%', 0x4, 0x0, 0x0)
mq_notify$auto(r0, &(0x7f0000000180)={@sival_ptr=0x0, @inferred=r0, 0x0, @_sigev_thread={0x0, 0x0}})
poll$auto(&(0x7f00000001c0)={r0, 0xfff7, 0x9819}, 0x9, 0x9)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
mmap$auto(0x0, 0x400008, 0xa, 0x9b72, 0xc, 0x800008000)
writev$auto(0x4, 0x0, 0x1)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r1 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x460342, 0x100)
copy_file_range$auto(r2, &(0x7f0000000040)=0xfffffffffffffff9, r2, 0x0, 0x8000000000000002, 0x0)
ioctl$auto_BLKPG2(r1, 0x1269, 0x0)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x0, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
pread64$auto(0xffffffffffffffff, 0x0, 0x8100000041, 0x413e)
fsopen$auto(0x0, 0x1)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0xfffffffffffffffa, 0x9, 0x19)
waitid$auto_P_PIDFD(0x3, r4, &(0x7f0000000040)={@siginfo_0_0={0x2, 0x8, 0xf8, @_rt={0xffffffffffffffff, 0x0, @sival_int=0x9}}}, 0xb3b, &(0x7f0000000440)={{0x0, 0x82}, {0x8, 0x2}, 0xc2, 0xfffffffffffffff1, 0x80000001, 0x9, 0x1, 0x3, 0x3, 0x501, 0xfff, 0x0, 0x3, 0x9, 0xc, 0xfffffffffffffffa})
madvise$auto(0x0, 0x2003f2, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0xffffffffffff0005, 0x3)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/net/bond0/napi_defer_hard_irqs\x00', 0xc2481, 0x0)
write$auto(r5, &(0x7f0000000200)='7\x00\\\xa0\x042\a\xc3\xd0\x11\x03\aKk+\xf4\xcd\x12\xa6\x85\xd6Y\xe6\xc3I)\xaa\x8f\xa5\xc3\x94\xaf\x18\xf9]\xdd\xc3\x91m\xc9{;\b\x04\x94\xf18', 0x7)
recvmsg$auto(r5, 0x0, 0xc4ae9ced)

1m20.218322806s ago: executing program 36 (id=1918):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000040)={0xcc, 0x0, [{0x6, 0x1, 0x5}]})
r3 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000001a00), 0x801, 0x0)
write$auto_nvmf_dev_fops_fabrics(r3, &(0x7f0000001a40)="fb40e8", 0x3)
r4 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r0)
sendmsg$auto_SMC_PNETID_ADD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x30, r4, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@SMC_PNETID_NAME={0xb, 0x1, 'dummy0\x00'}, @SMC_PNETID_ETHNAME={0x10, 0x2, 'du3>\x1a\x00\f\x00\xff\xfd\x00\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x20041040}, 0x44c0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x1, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/trace_pipe\x00', 0x8a402, 0x0)
readv$auto(0x3, &(0x7f0000000280)={0x0, 0xf7}, 0x87)
socket(0xa, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x7)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r6)
ioctl$auto_KVM_GET_MSRS(r5, 0x9000aea4, &(0x7f00000000c0)={0xdd})
mmap$auto(0x0, 0x3, 0xfff, 0x9b72, 0xffffffffffffffff, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
syz_genetlink_get_family_id$auto_ipvs(0x0, 0xffffffffffffffff)

1m20.178393602s ago: executing program 7 (id=1956):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop13\x00', 0x14f402, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x1d, 0xfffffffffffffffa, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/net/bond0/bonding/updelay\x00', 0x80200, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8800, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptywf\x00', 0x0, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x5, 0x2}, 0x10001}, 0x5, 0x20000000)
mmap$auto(0x0, 0x4020009, 0x7fffffff, 0xeb1, r0, 0x8000)
ioctl$auto_UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f00000001c0)={{0x4, 0x2cd0, 0x6, 0xd2}, "3fddb0040879dd4a0400a87e6d8d751f823b0fa5ae41d23d00154fc20394f2e1bc33967a34092f60f89c52fcfb1895b9dd9731c00b66eb3e0957f8082af55ebab311238a1c9ab5710c3a2049f24ffcac", 0x18})
r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0)
ioctl$auto_UBI_IOCATT(r1, 0x40186f40, 0x0)
ioctl$auto_UBI_IOCDET(r1, 0x40046f41, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto(r2, 0x40045431, 0xffffffffffffffff)
ioctl$auto_UBI_IOCDET(r1, 0x40046f41, 0x0)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
mincore$auto(0x1000, 0x4000000, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x67e)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
unshare$auto(0x40000080)
ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000280)=0x5)
unshare$auto(0x40000080)
socket(0x18, 0x800, 0x2)

1m17.99072154s ago: executing program 7 (id=1962):
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
unshare$auto(0xa89)
r0 = prctl$auto(0x139, 0x1, 0x4, 0x2, 0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000), 0x80b02, 0x0)
write$auto_vhci_fops_hci_vhci(r2, &(0x7f0000000100)="02a6c1dc", 0x4)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000000200)={0x1c, r3, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x4}, @NFSD_A_SERVER_SOCK_ADDR={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x48080)
mount$auto(&(0x7f0000000000)='macvlan1\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='#/\r&]\xc1-.![!\x00', 0x10001, &(0x7f00000000c0)="df7b25c3ec20fde275fbd68ea2b7e8f1aa741a9f6eb456f0f35314a4c4b88e31ed53dfc5cfdde3be256fe0926ac4b1f84d4b01ce6ee5b22acb90d67e1dd00cb371851ea5ff06e07cf3e9afb99452fe05ff3f69b034e5b9d401b64c8bd881b3972cfd36561636c39e87150ff63fa795e7f5ab9f315865c0cf035e96159592fc6c1b41f4d09d9a35924179b72752814d6e3c2490361187c09d7d7a794897a4089e68f0368c4a1a2f6b38bf6a0c03684c7e741f0753b1c8fa4abca1be935d695fe2")
mmap$auto(0x0, 0x20009, 0x4000000000e2, 0xeb1, r0, 0x9000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
socket(0x2, 0x1, 0x106)
socketpair$auto(0x1a, 0x1, 0x8000000000000000, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0)
ppoll$auto(0x0, 0x69, 0x0, 0x0, 0x8)
setregid$auto(0x0, 0x0)

1m2.517270488s ago: executing program 37 (id=1962):
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
unshare$auto(0xa89)
r0 = prctl$auto(0x139, 0x1, 0x4, 0x2, 0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000), 0x80b02, 0x0)
write$auto_vhci_fops_hci_vhci(r2, &(0x7f0000000100)="02a6c1dc", 0x4)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f0000000200)={0x1c, r3, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x4}, @NFSD_A_SERVER_SOCK_ADDR={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x48080)
mount$auto(&(0x7f0000000000)='macvlan1\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='#/\r&]\xc1-.![!\x00', 0x10001, &(0x7f00000000c0)="df7b25c3ec20fde275fbd68ea2b7e8f1aa741a9f6eb456f0f35314a4c4b88e31ed53dfc5cfdde3be256fe0926ac4b1f84d4b01ce6ee5b22acb90d67e1dd00cb371851ea5ff06e07cf3e9afb99452fe05ff3f69b034e5b9d401b64c8bd881b3972cfd36561636c39e87150ff63fa795e7f5ab9f315865c0cf035e96159592fc6c1b41f4d09d9a35924179b72752814d6e3c2490361187c09d7d7a794897a4089e68f0368c4a1a2f6b38bf6a0c03684c7e741f0753b1c8fa4abca1be935d695fe2")
mmap$auto(0x0, 0x20009, 0x4000000000e2, 0xeb1, r0, 0x9000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0xc0400, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
socket(0x2, 0x1, 0x106)
socketpair$auto(0x1a, 0x1, 0x8000000000000000, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0)
ppoll$auto(0x0, 0x69, 0x0, 0x0, 0x8)
setregid$auto(0x0, 0x0)

1m1.162724704s ago: executing program 8 (id=2006):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x40000, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0xa0582, 0x0)
write$auto(r0, &(0x7f0000000080)='/d\xd2@\x00\x00\x00\x00\x00\x00\x00\t', 0x9)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async, rerun: 32)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x72f622, 0x0)
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) (async)
madvise$auto(0x2000, 0x20499d, 0x9)
write$auto_tracing_iter_fops_trace(r1, &(0x7f00000000c0)="c495d70ea5678fb8703cc6ec7efbcb6b67f9e104dc96f15f181da10081894b86d4bf0024aee94087deb6e571c75c9cf18df5cbcdcadcb62603053d3916215140a08a17ad63f2abbbab611af86050f1a386f04704b3b6d94d8439fb25d4da6da9e88e2225d71b2c057c3b582e945bf0d6d852a14c983941ba4f10fc908197cc5b076c5c1affcf0c91abf72d773f8df6c42df777028d79ee20ae90b66fcb7dde484f738ff998e572b55129d6c79b2a7eb254", 0xb1)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0xa20c4c541a604576, 0x0) (async)
openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
ioctl$auto_EVIOCGRAB(r2, 0x40044590, &(0x7f0000000000)=0x2)
openat$auto_binder_ctl_fops_binderfs(0xffffffffffffff9c, &(0x7f00000000c0), 0xd85ac1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x2000, 0x0) (async)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x6a) (async)
bpf$auto_BPF_MAP_GET_NEXT_ID(0xc, 0x0, 0xea) (async)
mmap$auto(0x0, 0x7, 0xdf, 0x13, 0x401, 0x8000) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r3) (async)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), 0xffffffffffffffff) (async)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_SET(r3, 0x0, 0x880) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async, rerun: 32)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x8100000)

1m0.025537586s ago: executing program 8 (id=2009):
mmap$auto(0x0, 0xfffffffffffffff8, 0x4000000000df, 0xeb1, 0x401, 0x8003)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={"ef65ce6c00cf81000000ffffffffffffff291d000000000700000000000300", 0x3ff, 0x408, 0xfff, 0x400004, 0x200000000040000d})
ioctl$auto_BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0)
r1 = openat$auto_transaction_log_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transaction_log\x00', 0x782, 0x0)
read$auto_transaction_log_fops_(r1, &(0x7f0000000100)=""/3, 0x3)
r2 = socket(0x2, 0x1, 0x106)
setfsuid$auto(0xee00)
mmap$auto(0xfff, 0x5, 0xffffffffffffffc0, 0x100000000000017, 0x7, 0x28000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/usb/drivers/usbip-host/rebind\x00', 0x121681, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'virt_wifi0\x00', <r5=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000200)={0x28, r4, 0x1, 0x74bd2e, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @ETHTOOL_A_COALESCE_TX_AGGR_MAX_BYTES={0x8, 0x1a, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x48c1}, 0x20000000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'sit0\x00', <r6=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r6, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100000000000000000008000200", @ANYRES32=r6, @ANYBLOB="060006ff05000000080003009b"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r7 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r7, &(0x7f0000000000)="c80d1b5d399b3b", 0xfdef)
io_uring_register$auto_IORING_REGISTER_EVENTFD_ASYNC(r2, 0x7, &(0x7f0000000300)="10c89b2981206b3bf9f3533688b35173dfe92a8da7f698388434e3e551db3dbd927aee7fc520a8c3917d42845ab3c22f3327c9f354e8145907c1f73dbab9b36bb1be8ebff326ecba1801a4b48c5500cf9c11874fe6dbbe64cc29be45422899da8a875c8d4bfe19005ef15c306c80f11d7225d18de138", 0x100)

59.656213153s ago: executing program 8 (id=2011):
timer_create$auto(0x3, 0x0, 0x0)

59.542213235s ago: executing program 8 (id=2012):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x3)
socket(0xa, 0x2, 0x3a)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/oom_adj\x00', 0x200000, 0x0)
bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000040)=@token_create={0xd1b, <r1=>r0}, 0x8001)
r2 = open_tree_attr$auto(r1, &(0x7f0000000100)='./file0\x00', 0xfffffffa, &(0x7f0000000140)={0x4, 0xa, 0x4, @inferred=r1}, 0xfff)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r3 = socket(0x11, 0x2, 0x9)
ioctl$auto(r3, 0x8910, 0x24)
r4 = socket(0x29, 0x2, 0x0)
ioctl$auto(r4, 0x89a1, 0x24)
unshare$auto(0x20000080)
syz_clone(0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid$auto_P_PGID(0x2, 0x0, 0x0, 0x6, 0x0)
setsockopt$auto(r2, 0x29, 0x44, 0x0, 0x200568)
socket(0x2, 0x1, 0x106)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/ip_tables_names\x00', 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r5, &(0x7f0000000100)=""/60, 0x3c)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000200)={{@raw=0x7, 0x2, 0xffffffff, 0x480008, "3112d58500a8b47148e22af9ffb683dbede3d0bf828bbf100000e5e2f96ee50484b0755015e48d00", @raw=0xfffffffe}, 0x5c8a, 0x10000005, 0x4, @raw=0x2, @integer={0x5, 0x800, 0x5}, "7a9fc199a16a2311eacf2fc7ae1dc378dc3e8090d70925450ece0bb32777702b07550d000000000000000000ebff0000000000000059a200"})
rt_sigqueueinfo$auto(0x0, 0x4, &(0x7f0000000000)={@siginfo_0_0={0x200, 0x5, 0x5, @_sigsys={0x0, 0x9, 0x2}}})
r6 = socket(0x11, 0x3, 0x9)
sendmmsg$auto(r6, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5ac, &(0x7f0000000100)={&(0x7f0000000200), 0xf}, 0x7, 0x0, 0x7, 0xe}, 0x5}, 0x1, 0x101)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
write$auto(0x3, 0x0, 0xfffffdef)
close_range$auto(0x2, 0xa, 0x0)

58.946497554s ago: executing program 8 (id=2013):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x0)
prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400000000009, 0x3fffffffff)
openat$auto_tracing_saved_tgids_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/saved_tgids\x00', 0x0, 0x0)
close_range$auto(0x0, 0x5, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x2c, 0x940, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0x5, 0x2, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400]}, 0x1fe, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
r1 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto(r1, 0x0, 0x80000000006)
signalfd$auto(r1, 0x0, 0x8)
r2 = socket(0x2c, 0x3, 0x0)
socket(0x2c, 0x3, 0x0)
socket(0x10, 0x2, 0x4)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f00000000c0), r1)
r4 = setfsuid$auto(0xee00)
r5 = setfsuid$auto(0xee01)
setresuid$auto(r4, r5, r4)
sendmsg$auto_TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000380)={0x370, r3, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_NAME_TABLE={0x107, 0x8, 0x0, 0x1, [@generic="888f2d9c09eb7aa4bbf18fdb6b7c2c69491fbdab56fad955ad852e05161dc0b87c5e59951306d0051df9f9b2787189c43ad19b9ac894c8b5f976f90ae9a21b6be7ae96428029a20b017f0c48f3e2", @nested={0x24, 0x90, 0x0, 0x1, [@typed={0x8, 0xa3, 0x0, 0x0, @fd=r2}, @nested={0x4, 0x107}, @typed={0x8, 0x44, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0x8, 0xcd, 0x0, 0x0, @u32=0x61aa612}, @nested={0x4, 0x64}]}, @typed={0x8, 0x13c, 0x0, 0x0, @ipv4=@loopback}, @generic="4c5553821262bf67d297794e12d9f75b3f6c6d0aa7205212ae", @generic, @typed={0x4, 0x162}, @nested={0x57, 0xed, 0x0, 0x1, [@nested={0x4, 0xc5}, @generic="72368e9962cb00f7f472f2761d0f379c63b712a581c6e5e61853258e235da3685d7448123a8a9b54f7f491a1d03b790c7df5f930ee2bea7f92095d3b7e2891969a2b62d09cfcad0398f82a", @nested={0x4, 0x143}]}, @nested={0xc, 0xa3, 0x0, 0x1, [@typed={0x8, 0x8d, 0x0, 0x0, @uid=r4}]}, @typed={0x8, 0x105, 0x0, 0x0, @u32=0xd}]}, @TIPC_NLA_NAME_TABLE={0xa9, 0x8, 0x0, 0x1, [@generic="46217ea5f3498f05ef7f095d9e4943ce2a5012a941f5047a5cbaef56b568b81e824a792228b761b372d0d784ef44dd3055aca97db42c45f1c98e2db536e43d551c0fc227d5860c39e4cbe45323a939a4f8d293830d3408ef102e55d0b26b31ec8952fa8491d1e35da09a15ac1e08815e12497a567a4b8dc9ae5e26a8ed451d94058511fe02c1874fa4c196555e8670b70a22ccc5fde6da581486789b45dbb95f84ae6666e4"]}, @TIPC_NLA_NAME_TABLE={0x196, 0x8, 0x0, 0x1, [@generic="7ab3131557ca596d2d2ba1c5fe1eef98e10cee6122fb43cd5f2c9873427922ba213959bc11ec248876fc8422321c6dbda9648bed50d0a4301c43b051a4116365925a06314fc144a6018e3a9ef9f4a7bead9cc8c4ec83919c53c8b7bd83", @generic="a2c1a3624ee39c94a98e7608e11efcd9117eb96a0784619021f7a50e9540633bc5397ffbfb7539b186b840ac8cae212838afd314d32bcd1623fe7120f1776930ff4ee85a88a46672703c385a7cf8168922a26fc3183d7aaae60ae2b2bf51efba73feb708f6d32b551caa6d1aab1192f412354b957e4f5e4c0c665a7f4e660dad75865a1530ce6b83a0d89083c236aba90d4cf57447cb3224182dbdd57e80a1dbeea78060b10575752a1893ef9ec205167e52a5f5add02a25cf71e7d87edf7d9a213687", @generic="5c9e1f793d831621033ae9bf2b7e642461bac578fde701bc5792bb0ce80e0556ac4277a00d73b526046daab976df3e73446e2b957e8573248252b3125de683554a896d895c9dc36c5d00b95ddfa3f36d9dba1774ddb5aa9aae02996a777bdc8a4c7f02c3d8ac2aaa0c7ab389f73c4d28141e"]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@typed={0xb, 0x7a, 0x0, 0x0, @str=']%:&^}\x00'}]}]}, 0x370}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

57.936005284s ago: executing program 8 (id=2016):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x31, 0x8000, 0x9, 0x1, 0x2, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x9, 0xb, 0x80010002, 0x80, 0xd8f9, 0x0, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x2]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
unshare$auto(0x40000080)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)={0x1c, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x200}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0xc840)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r2 = socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r2, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r3 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0xfc, &(0x7f0000000100)={0x0, 0xfc6}, 0x2, 0x0, 0x7, 0x3}, 0x800}, 0x7, 0x4008)

51.875508172s ago: executing program 5 (id=2037):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setrlimit$auto(0xb, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x38, 0x0, 0xc1b, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x7a5}, [@GTPA_VERSION={0x8, 0x2, 0x4}, @GTPA_FLOW={0x6, 0x6, 0x7}, @GTPA_LINK={0x8, 0x1, 0x1}, @GTPA_TID={0xc, 0x3, 0x8000000000000000}]}, 0x38}, 0x1, 0x0, 0x0, 0x4080}, 0x800)
syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/uts\x00')
timer_create$auto(0x3, 0x0, 0x0)

51.010995037s ago: executing program 5 (id=2038):
mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
rseq$auto(0x0, 0x20, 0x0, 0x8000006)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0xfffffffffffffffe, 0x4005, 0x0, 0x16, 0x401, 0x300000000000)
socket(0x10, 0x2, 0x4)
socket(0x10, 0x2, 0x10000)
socket(0x1d, 0x2, 0x7)
socket(0x2, 0x1, 0x0)
open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xa6)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card0\x00', 0x129800, 0x0)
ioctl$auto(r0, 0x92106405, r0)
close_range$auto(0x2, 0xa, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
fanotify_init$auto(0x5, 0x0)
creat$auto(0x0, 0x3ff)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x20202, 0x0)
r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi7\x00', 0x0, 0x0)
ioctl$auto(r1, 0xc0285628, r1)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000840)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100253d7000fddbdf250100000008000780040001800c0003ffffffffffa5a499a719adb1eb8b10113405d868d775288ef834bd2e64442bad333afe21101bafc2baf2aa72823e7df244edc90ffe4caf7b98f78902e6e6a51d927a939e0efce8998f55dc0aed15a1c8138f4aad8b3429d2e4ee2651d9c2e4a4c48a7b37b77f73140545227865b0f8220540eacbfd00ee0cb3a122f656aa5efd45f1610fcb2e489d99ee68b03db6770acc8e0062027bf263234db29540c7e86dc59067c371452541e8294fa9b4e8ee98108d"], 0x28}, 0x1, 0x0, 0x0, 0x20004051}, 0x8880)
semctl$auto(0x3, 0x17c, 0x0, 0x8000000000000)
r2 = socketpair$auto(0xb, 0x101, 0x5, &(0x7f0000000140)=0x7fff)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000007c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14040000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="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", @ANYRES32=0xee01, @ANYBLOB="ed00a08018653d1227b96563889752ea78196078858bafbbfbae487730602f51f67bc85ff038fd5d11a32c1719d396f55074a72c3ea886b0e9afbea5762d6e5c25756428319c39a94c6e9a7c184f0492c2faad6f5380bb68298fbaab604cc51cd97a2dcd6519d60e630482a38fb62407c9d0e1f4c5a57af38320ff9538ab4222d8495a87015389fb3d46155f8552b079f99207684339f57da8a321cbb4bc3dc49685921b3f08637fe43f277e02e685dbb6e4542a8e76c50bb59d214e572f5bb79f1d61a63b3347b43f03f473354e755120a5f52e1332fc1982dcfb55dcc2c61fd40c0021006261746164763000000000100089800400c98004007a80040051805c001800fa2631889298ee4577bf6914162658f7b8285b5d80138038bf5d11f92bfe413dda5d2770172923b3485c71367aa2175d13ddbb2b7f47a027253cd01463eb8ea807a724311330d4ccf666e7190a0722e44d7a255e4e13c56c080054007f00000168003b8004004880e4e960c6175057b620c03803b3809f42e77082d9746ee69d7f4e60cb2ef445b162ea59fec8f2b4a5670b601727b90f95fe77f341e8163827df5a5ff9ea089a94ac560f503bcb7de8d7231be932b001a06a6adf0b8c0c8cf104008f8004006680"], 0x414}, 0x1, 0x0, 0x0, 0x80d0}, 0x24000080)
mmap$auto(0x0, 0x2009, 0xfffffffffffffff9, 0x8000200008011, 0xffffffffffffffff, 0x8000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000180), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r6=>0x0})
sendmsg$auto_BATADV_CMD_TP_METER(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="3b3d2ab57000fedbdf2502020000080003cfbd", @ANYRES32=r6, @ANYBLOB="0a00ffffc90689128524984c8efd23490000000000000000e9ff0a08ffffffff"], 0x30}, 0x1, 0x3f000000}, 0xc000)
bpf$auto(0x0, 0x0, 0xd)

50.872626216s ago: executing program 5 (id=2039):
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0xffff}, 0x1, 0x0, 0x0, 0x9}, 0x100007}, 0x3, 0x0)
r2 = socket(0x29, 0x2, 0x0)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000}, 0x40000)
recvmmsg$auto(r3, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r2, 0x8b0c, 0x24)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={0x138, r0, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@OVS_FLOW_ATTR_KEY={0x124, 0x1, 0x0, 0x1, [@nested={0x103, 0x7f, 0x0, 0x1, [@generic="223227e597468c94ee5492016251feb3602e58c34f5b91c607fad0518e83bf6beb8b51e1568d8cfd6f137280a348f6335c5e36ad54e635fe4e22039d8554e04cee7a60604e36b45a9c792f9a9f443b9a19ec4b1f8edb27f5b76a6698e1110232d07933c20a36e92bf6c54cbedf8d4f168e51e3e7e4ea42543f2c7e2e9877db40b12c68080f2996c3a07e85e22211bc88d79cf589b4838865051ac25fbddcba65b435f059f9560673a2a9494f825d7529465aebb9ad72678058713696ef29ca251a6ce66cbb299e1c8ee3ab8b67834dd8ddc821", @nested={0x4, 0xbe}, @typed={0xc, 0xec, 0x0, 0x0, @u64=0xf5}, @nested={0x4, 0xbb}, @typed={0x8, 0x114, 0x0, 0x0, @ipv4=@rand_addr=0x64010100}, @typed={0xd, 0x1a, 0x0, 0x0, @str='ovs_flow\x00'}]}, @typed={0x19, 0xb6, 0x0, 0x0, @binary="754559b4da7b0acb4dfcf22cd079b1fba233b1ecaa"}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x24040071}, 0x800)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000740)={0x1c, r5, 0xb01, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_COLOR_CHANGE_ELEMS={0x8, 0x131, 0x0, 0x1, [@NL80211_ATTR_BEACON_HEAD={0x4}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000050}, 0x240088e4)
sendmsg$auto_NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x1c, r5, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x40004)
socket(0x10, 0x80002, 0x0)
r6 = epoll_create$auto(0x7)
r7 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='*\x00%i'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x44)
sendmmsg$auto(r7, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000400), 0x200800, 0x0)
sendmmsg$auto(r6, &(0x7f0000000280)={{&(0x7f0000000100)="dd8079ab7627205ff394e59c7fefcab5cf3ba7695fec992a584e5160b05595acf738b79dac6bee974d91827a399354a15ccf888c30e21565472ca6f7891b7e365ac189ef", 0x1, &(0x7f0000000200)={&(0x7f00000001c0), 0x36}, 0x8000, &(0x7f0000000240), 0x4, 0x8a}, 0x4}, 0x3, 0x5)
r8 = epoll_create$auto(0x3e)
epoll_ctl$auto(r8, 0x1, r6, 0x0)
read$auto(0x3, 0x0, 0x8080)
epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0)

49.936560618s ago: executing program 5 (id=2044):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ram5\x00', 0xa0380, 0x0)
fadvise64$auto(r0, 0x7a, 0x6, 0x918)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r3, 0x84, 0x1a, 0x0, 0x0)
setsockopt$auto_SO_ZEROCOPY(r3, 0x0, 0x3c, &(0x7f00000002c0)='ovs_flow\x00', 0x1)
sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001740)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="01002cbd7000fbdbdf2503000000040001800c000180080003800400c080"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
timer_settime$auto(0x2, 0x0, &(0x7f0000000000)={{0xd4c4, 0x4003b53}, {0xff, 0x3}}, &(0x7f00000000c0)={{0x7fff, 0x3}, {0x100000000, 0x3}})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', <r6=>0x0})
sendmsg$auto_NET_SHAPER_CMD_GROUP(r4, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000280)={0x38, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x3}]}, @NET_SHAPER_A_LEAVES={0x10, 0xa, 0x0, 0x1, [@NET_SHAPER_A_HANDLE={0xc, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x3}]}]}, @NET_SHAPER_A_IFINDEX={0x8, 0x8, r6}]}, 0x38}, 0x1, 0x0, 0x0, 0xc810}, 0x20048014)
r7 = syz_genetlink_get_family_id$auto_batadv(&(0x7f00000001c0), r2)
sendmsg$auto_BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x30, r7, 0x10, 0x70bd25, 0x25dfdbff, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8}, @BATADV_ATTR_BLA_BACKBONE={0xa, 0x21, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @BATADV_ATTR_TPMETER_COOKIE={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x40400c1}, 0x40000)

49.711769945s ago: executing program 5 (id=2045):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
openat$auto_proc_loginuid_operations_base(0xffffffffffffff9c, 0x0, 0x309c02, 0x0)
bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={<r0=>0x2, <r1=>0x2, 0x4, 0x0, 0x85, 0x7, 0x9, 0x32, 0x8001}, 0x101) (async)
syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) (async)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
write$auto(r2, 0x0, 0x80000000)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000b8008001c"], 0x4c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x100500c0}, 0x40000)
r3 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0xfffffffe, &(0x7f0000000100)={&(0x7f0000000080), 0xfbe}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
msgctl$auto_MSG_STAT(0xfb8, 0xb, &(0x7f0000000180)={{0x3, 0x0, 0xee01, 0x2, 0x2, 0x3, 0x400}, 0x0, 0x0, 0x800, 0x50, 0x9, 0x4003, 0x40, 0x7fff, 0x10, 0x100, @inferred=r0, @raw=0x4})
r4 = socket(0x10, 0x2, 0x0) (async)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0600", @ANYRES16=0x0, @ANYBLOB="010025bd"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='B'], 0x1ac}}, 0x40000) (async)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x4003, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x407, 0x4}, 0x9}, 0x7, 0x4008) (async)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) (async)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x0, 0x0) (async)
lseek$auto(0x3, 0x0, 0x1) (async)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r5 = socket(0x1e, 0x2, 0x0)
getsockopt$auto(r5, 0x10f, 0x87, 0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_NL80211_CMD_SET_HW_TIMESTAMP(0xffffffffffffffff, 0x0, 0x20000000) (async)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
mmap$auto(0x7fff, 0x8, 0x80000001, 0x80000011, r4, 0xead) (async)
clone3$auto(0x0, 0x200000403) (async)
fsconfig$auto(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)

49.329697434s ago: executing program 5 (id=2046):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setrlimit$auto(0xb, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x38, 0x0, 0xc1b, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x7a5}, [@GTPA_VERSION={0x8, 0x2, 0x4}, @GTPA_FLOW={0x6, 0x6, 0x7}, @GTPA_LINK={0x8, 0x1, 0x1}, @GTPA_TID={0xc, 0x3, 0x8000000000000000}]}, 0x38}, 0x1, 0x0, 0x0, 0x4080}, 0x800)
timer_create$auto(0x3, 0x0, 0x0)

42.713278759s ago: executing program 38 (id=2016):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x401bf, 0x7352, 0x31, 0x8000, 0x9, 0x1, 0x2, 0x1, 0x9, 0x3, 0x5, 0x8, 0x3002, 0x9, 0xb, 0x80010002, 0x80, 0xd8f9, 0x0, 0x7, 0x2, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x2]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x24008000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
unshare$auto(0x40000080)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)={0x1c, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x200}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0xc840)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
r2 = socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
recvmmsg$auto(r2, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r3 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0xfc, &(0x7f0000000100)={0x0, 0xfc6}, 0x2, 0x0, 0x7, 0x3}, 0x800}, 0x7, 0x4008)

34.039435269s ago: executing program 39 (id=2046):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
setrlimit$auto(0xb, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x38, 0x0, 0xc1b, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x7a5}, [@GTPA_VERSION={0x8, 0x2, 0x4}, @GTPA_FLOW={0x6, 0x6, 0x7}, @GTPA_LINK={0x8, 0x1, 0x1}, @GTPA_TID={0xc, 0x3, 0x8000000000000000}]}, 0x38}, 0x1, 0x0, 0x0, 0x4080}, 0x800)
timer_create$auto(0x3, 0x0, 0x0)

31.404154746s ago: executing program 6 (id=2084):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567)
unshare$auto(0x40000080)
futex$auto(&(0x7f0000000080)=0x2948, 0x9, 0x2948, 0x0, 0x0, 0x5)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x1000)
futex$auto(&(0x7f0000000080)=0x89, 0x5, 0x9, 0x0, &(0x7f0000000000)=0x4, 0x1bc)
mmap$auto(0x0, 0x20009, 0x4000000001df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
socket(0x2, 0x1, 0x106)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
socket(0x28, 0x5, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r2)
sendmsg$auto_NL802154_CMD_SET_WPAN_PHY_NETNS(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x24, r3, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000c00}, 0x4000000)
sendmsg$auto_NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000226bd7000fcdbdf251800000008000b0009000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x20044835)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x3, 0x1, 0x948b, 0x9, 0xf, 0x6, 0x2, 0x64, 0x80000001, 0x1000, 0xa, 0x9, 0x2, 0xd8]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x800, 0x3, 0xff, 0x10001, 0x400000000003, 0x3, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x80000000, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="72010000", @ANYRESHEX], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\xfc\x00/\x00\x06\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\xff\x01\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea!,[\x91\x8e\x1b\x95\xafQ?CL\"\x01\x0e#\xae\xa9|8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0\x12\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12mwU&[\xde?\x9a$\xb2\xd5\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00', 0xfdee, 0x1)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/veth1_macvtap/mc_forwarding\x00', 0x28640, 0x0)

30.314665053s ago: executing program 6 (id=2085):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/027/001\x00', 0x4a901, 0x0)
connect$auto(0xffffffffffffffff, 0x0, 0x1e)
r0 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0)
unshare$auto(0x8)
ioctl$auto_posix_clock_file_operations_posix_clock(r0, 0x40103d0b, 0x0)

28.62248434s ago: executing program 6 (id=2087):
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/shm\x00', 0x40000, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r0)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x1c, r1, 0x805, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_4ADDR={0x5, 0x53, 0x10}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4044044}, 0x8000) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (rerun: 64)

28.409766588s ago: executing program 6 (id=2088):
r0 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0xb, 0x40000d, 0x10400, 0x6, 0x3d6, 0xa, 0xffffffffffffffff, [0x6], {0x7, 0x80000001, 0x7, 0x7, 0x100, 0x800003, 0x40100104, 0x6}, {0xf8, 0x4, 0x9, 0x1, 0x3, 0x40, 0xcc, 0x8, 0x100000003}})
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
landlock_add_rule$auto(r1, 0x2, &(0x7f0000000000)="97abd97fcbba", 0xd)
mmap$auto(0x0, 0x2000a, 0x4000000000df, 0xeb1, r0, 0x200000008000)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/sequencer2\x00', 0x8081, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/radio2\x00', 0x0, 0x0)
read$auto_v4l2_fops_v4l2_dev(r3, &(0x7f0000000100)=""/4096, 0x1000)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="0600", @ANYRES16=0x0, @ANYBLOB="010025bd"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='B'], 0x1ac}}, 0x40000)
sendmmsg$auto(r4, &(0x7f0000000200)={{0x0, 0x4000, &(0x7f0000000100)={&(0x7f0000000080), 0x96bc}, 0x2, &(0x7f0000000380), 0x7, 0x4}, 0x9}, 0x7, 0x4008)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
kexec_load$auto(0xd, 0xd, 0x0, 0x1000000002009)
ioctl$auto_SNDCTL_MIDI_PRETIME(r2, 0xc0046d00, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram12/queue/io_poll_delay\x00', 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/008/001\x00', 0x402, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xf8, 0xfffffffffffffffa, 0x8000)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
r5 = epoll_create$auto(0x1)
capset$auto(0x0, 0x0)
epoll_ctl$auto(r5, 0x1, 0x8000000000000000, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count\x00', 0xc0082, 0x0)
read$auto(r6, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4044001)

26.244752726s ago: executing program 6 (id=2094):
mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
mremap$auto(0x5, 0x3, 0x3fda, 0x8, 0x7fffffffb000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/pci0000:00/0000:00:03.0/subsystem_vendor\x00', 0x28200, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/clockevents/broadcast/current_device\x00', 0x181400, 0x0)
pread64$auto(r2, 0x0, 0x7, 0xd3f3)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000001c0)=""/234, 0xea)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000001380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xfc\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r&\xec\xb8\xb1Z\\\xc9L\xb2\t\xddbH|\xffGP\x97)\xb9:nqn\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc$\xa0\xa5\xce\xca\xe1P\xf7\xe5_\xca\xd5\xd8\xa4g_\xb1\x88\x8cAJS\x11\x8b\xd1%a\xe5DPk\x8c\xf9\xfb\xe0+\xdb\x12\x10.F\x00\xc37\xc7\xbf\x80\xbeu\xe1V\xb2\xc5\xc9\x1a\xc7\xdc}!\x10\xb1\",1%\x0e\xeb\x15\x15me\xe1a\x03\x18{\xb03+\x93*vB\xc6\xf1\xc6\xff\xbbt\x04!\xb6\v\xde2\xc9\x89#\xbaR\xee\x13jF%\xf2\x15\x9a\x82&\x89o\xa9\xd9\xbfFY\x90\x8c\xa0\xe4\x9d\xa2\xcd\x9a\xb5TC\xc4\x9d\x9ePb]\xaa\xc7f\x06N\xc5\xfa{\x02Y\xae\xf4(\xaa\x06);{?\x1e\fu\x19b\xdf$,\x01\"\x94\x00\x00\x00\x00\x003\xcfZ\xaf~<\xba\xb7\xa03\x8c\n*krS\x19Q#\x8f\xfbW\xad\xe0\xb3o\xcb\xf7\xda\x87C\x99\x1a\xa8\xc1\xe3\xc6%\xac\x01@*\xa0\xc4\xedn-lT\xe6*?\'\x9dW=\xa7\x03\x06\x83 IT\xa3\x7ff\xb6\x95\xe5\xd2\n\xaf\x87`\xce%\xf6 &\xa7M5I\x9c\x17h\x8c\xa4\x98\x16\xe0\xd9?Y\x7f\xf6\x85_{\xfd9p$B9_\xd8\xf4\x0e\xd0\xfa\xe7\xb0\xb8\xa0\xd7\a\xff.\"\x81\b\xb0\xb4\x84\xac\xad\x1b\x93~_\xea\xfe7\x03\"\xd9\x1d.\xe5{bHX\x14\xa1\bO\x03[^\x85jP\x89\t\x06GI\xb7\x99\xb2zZf\xc8\xd4\x8d\x1c\x1e\x03\xb9\xa7Nt\xae\xfff\xf9\tx\xae\xa8\x05\xb14\xc6\x9b\x1f\xd3\x01#\xc6\nb\xd4\xb4\xc8?\xa7\xe2R\xc1\xcf\xd2\xbc\xae\xd1\xc2\x88\"\xf3\xf0\xc0uQy\xec\xfab\xd6\xcd\x16)\x19*E\vm\x8d\x1bG:\x80\'pJ', 0x4100000a3d7)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0p/sub7/info\x00', 0x8040, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000100)=""/184, 0xb8)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x5d, 0x0)
r4 = socket(0xa, 0x1, 0x84)
close_range$auto(r4, 0xfffffffffffff000, 0xfff)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x1, 0xb9, 0xf, 0x7, 0x400004, 0xffffffffffffffff, 0xe7b, "00000000000000e3ffffffffffffff00", <r5=>0x0, 0xffffffffffffffff, 0x5, 0x7, 0xe5, 0x3}, 0x10)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r5, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x66)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x2000, 0x0)

25.071008481s ago: executing program 6 (id=2097):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = fsopen$auto(0x0, 0x1)
fsconfig$auto_SHMEM_HUGE_NEVER(r0, 0x5, &(0x7f0000000180)='+\x00_\xe8\xdb\xff\x0f\\X\xc9#\xa0\xdc\x04\x0f\x99v\xbc\xc3\xf2\x03\xe2T\b\x9c\xe7J\xcd\x00\x00\x00\x00\x00\x00\x00\x00c\x00\x00\x00\x00\x00\x00\x00', 0x0, 0x0)
write$auto_event_inject_fops_trace(r0, &(0x7f0000000080)="3ffea06d91f7c92712a9529fbfedb007530ad20a7d3dd7afe0f76dfc6405c8735b5613e2de3b360b80398a6bacf96b3b40cd0049eca66dbe79e692b15a997e15c999e168a548d19da2bd0ee514f2106c2846ed0920028c8858c632874b2894a502f9c6d459c5d5554865ee47e8ccc98fe38e5da7ccc7cbb8892f4abcb5fed95778a5785de55643dbf3c93b662d74507c0e8769a242b378764bcb0b6e2129e267e4edfc399b9a85", 0xa7) (async)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(r0, &(0x7f0000000040)=@qipcrtr={0x2a, 0x0, 0x7fff}, 0x6a) (async)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x1) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
setsockopt$auto(0x3, 0x1, 0x32, 0x0, 0x7) (async)
openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) (async)
read$auto(0x3, 0x0, 0x0) (async)
shutdown$auto(0x200000003, 0x2) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x9, 0x0)

15.285642326s ago: executing program 0 (id=2115):
read$auto_ptdump_fops_(0xffffffffffffffff, 0x0, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/fs/netfs/requests\x00', 0x40080, 0x0)
pread64$auto(r2, 0x0, 0x8100000041, 0x413e)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/netdevsim/netdevsim7/ports/2/udp_ports_table0\x00', 0x224000, 0x0)
waitid$auto_P_PIDFD(0x3, r1, &(0x7f0000000040)={@siginfo_0_0={0x2, 0x8, 0xf8, @_rt={0xffffffffffffffff, 0x0, @sival_ptr=&(0x7f0000000280)="79ca6170c72c9b5affac767c0127e58e38f3f407303ed544651fc514ea2bf3a8d8ec1b5efc99d62cbb8043d4582607afd440f400a4fdcd74a0d6cc759ee437d05a5a149e70f79615cb36ed421aea340b2fe6"}}}, 0x20f5, &(0x7f0000000440)={{0x0, 0x82}, {0x8, 0x2}, 0xc2, 0xfffffffffffffff1, 0x80000001, 0x9, 0x1, 0x3, 0x3, 0x501, 0xfff, 0x0, 0x3, 0x9, 0xc, 0xfffffffffffffffa})
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
keyctl$auto(0x4, 0xfffffffffffffffc, 0x0, 0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0xae41, 0x38)
socket(0xa, 0x2, 0x3a)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000001700), r4)
sendmsg$auto_NETDEV_CMD_DEV_GET(r4, &(0x7f0000001840)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x14, r5, 0x301, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0xf0ffff, 0x0, 0x4005}, 0x28044004)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
pipe2$auto(0x0, 0x0)
ioctl$auto(0x3, 0x4020aea5, 0x38)

13.68239664s ago: executing program 0 (id=2119):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x5)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x73f, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x4, 0xfffff000)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x4, 0xc983, 0x4000000000df, 0xeb1, r0, 0x8000)
ioctl$auto_RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = memfd_create$auto(0x0, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r1, 0xfffffffffffffbff, &(0x7f0000000240)="17a1031f4e8584fa63a0d62c2a850c4c21375f1a898a8a0e127bf2f76c3d37f382915118ed1db5b9c3183eeace8b8ec05e1b749f68c331640c78290cc98b2039bbe920a332ddcf827d2014dafacdbadfb96c79ef0f007f1cf98d3416d7dc3bc84a69b24b4c270142368e18f14e06103e29a74fcc4d2e643a16f451a3289bdbd1a2e62cabb775435e3534944dd1034e70ad961f158fcbaf9779fa6358d225205e38c80182756c36a6a2b2cae4fbc4a9837d2383b4ef7302")
r3 = openat$auto_ctl_device_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
fgetxattr$auto(r3, &(0x7f0000000040)='/dev/dlm-control\x00', &(0x7f0000000100)="bd2b73c97b440e314217f1b02c0bc86900bdf83323bb56373a6f44c0b01106e377304c3305ba4c604f9c2ba20c16f0d23cb2146329a45436ea6aa6bfeebf3e7e400d9a2f5f1d9d3faf49d87cc4b015a1e7b80ba8bb5950ffd77090e7047a468ffb1d2967ebb177069e06d17ea81b081c0222992e8a5b74a170bc2da9ff88a533d950b580bd29c30b216ebd7821c7a540e1ec0dcc4d7416b50fdbe47b42ae8a2d0847f57634496497fa092089556e293ef0fd6fe1ae15635e", 0x8)
r4 = socket(0xa, 0x2, 0x3a)
statx$auto(r2, 0x0, 0x1000, 0xbdfc, 0x0)
setsockopt$auto(r4, 0x29, 0x14, 0x0, 0x56b)

11.499992662s ago: executing program 0 (id=2120):
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x106)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/if_inet6\x00', 0x181800, 0x0)
pread64$auto(r0, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x4000003f1, 0x9)
mmap$auto(0x72, 0x6, 0x3, 0x16, 0xfffffffffffffffa, 0x7ffc)
mmap$auto(0x7, 0x1, 0x17ffffffe, 0xeba, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, 0xffffffffffffffff)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
socket(0x8, 0x1, 0x106)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40342, 0x22)
fcntl$auto(0x3, 0x4, 0xa553)
sendfile$auto(0x6, 0x3, 0x0, 0xfffffdef)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc8}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00)
socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x11}}, 0x6a)
sendto$auto(0x3, 0x0, 0x7, 0x101, 0x0, 0x6)
syz_genetlink_get_family_id$auto_l2tp(0x0, 0xffffffffffffffff)
bpf$auto(0x8, &(0x7f0000000100)=@bpf_attr_4={0x2, r0, 0x9, r0}, 0x1)
socket(0xb, 0x801, 0x8000006)

9.928605891s ago: executing program 40 (id=2097):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = fsopen$auto(0x0, 0x1)
fsconfig$auto_SHMEM_HUGE_NEVER(r0, 0x5, &(0x7f0000000180)='+\x00_\xe8\xdb\xff\x0f\\X\xc9#\xa0\xdc\x04\x0f\x99v\xbc\xc3\xf2\x03\xe2T\b\x9c\xe7J\xcd\x00\x00\x00\x00\x00\x00\x00\x00c\x00\x00\x00\x00\x00\x00\x00', 0x0, 0x0)
write$auto_event_inject_fops_trace(r0, &(0x7f0000000080)="3ffea06d91f7c92712a9529fbfedb007530ad20a7d3dd7afe0f76dfc6405c8735b5613e2de3b360b80398a6bacf96b3b40cd0049eca66dbe79e692b15a997e15c999e168a548d19da2bd0ee514f2106c2846ed0920028c8858c632874b2894a502f9c6d459c5d5554865ee47e8ccc98fe38e5da7ccc7cbb8892f4abcb5fed95778a5785de55643dbf3c93b662d74507c0e8769a242b378764bcb0b6e2129e267e4edfc399b9a85", 0xa7) (async)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(r0, &(0x7f0000000040)=@qipcrtr={0x2a, 0x0, 0x7fff}, 0x6a) (async)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x1) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
setsockopt$auto(0x3, 0x1, 0x32, 0x0, 0x7) (async)
openat$auto_tomoyo_self_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) (async)
read$auto(0x3, 0x0, 0x0) (async)
shutdown$auto(0x200000003, 0x2) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x9, 0x0)

9.819278203s ago: executing program 0 (id=2123):
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
r0 = bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=@bpf_attr_7={@map_id=0x3ff, 0x2, 0x10000}, 0xac)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r1, 0x29, 0x1b, &(0x7f0000000040)='!\x00', 0x1ff)
fsconfig$auto_FSCONFIG_CMD_CREATE(r1, 0x6, &(0x7f0000000000)='\x00', &(0x7f0000000100)="f1a66ce61b92d9ae6c4a5d05924b2ce107f3a7ebb89a47dd5b1a6edd3071a8afc84dfa06ac08c59ee039abf583ebc6eec8d084b2d7d15586ce068d6362a0474dcb7ef3343f603b5a5bd4f6619fade3008d1d7be595dcb114bbe97ab6e0c8bbaee2d511c106b14fad8447f01cee70019f2f8973d172277c3c97b3aa110337", 0x6)
mq_notify$auto(r1, &(0x7f0000000280)={@sival_ptr=&(0x7f0000000180)="1a5aa745dfca850ed659877f34742df9be5313c784ce752656edac278c7f7bcefc1054c3070bdfe2c54c89f332b475790d5eb18a45629b4edc18386f07bf187fa17604b2a239b4fe9ec330b792a18a9359be5477e88a3827b06304c0300715d525d3872097428040da0e28c8474e9de48f3cfb2ce14bbd1b34cad7f8c5f4bb49e61ac518f2885a450a785582fdd92875ee496244bbc82cc20f7f1db7aec43780a36dc5d411787972a521fb241d5dcaa3ceb23fc4c5b8757626f3356531a3e52f5b7a5241c29ef6696d8c0187060d8395265c066bb2bed2be30484aef", @inferred=r0, 0x7fd})
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)

8.840099021s ago: executing program 0 (id=2125):
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x820181, 0x0)
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x886)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
lseek$auto(0x3, 0xfffffffffffffffc, 0x1)

8.291937775s ago: executing program 0 (id=2127):
timer_create$auto_CLOCK_TAI(0xb, 0x0, &(0x7f0000000fc0)=0xa)
mmap$auto(0x0, 0x4020005, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
write$auto(0xca, &(0x7f0000000000)='\x04>\x01\x01\x00\x00\x00\x00\x01_\x9e\x99:R\xcc\x96\b\'\x02\xb0\x93l\xeb\x87\r\b\x87\x14\xf8e6\x9c%\xb6\x9a\\S\xa2(Q\xcc', 0x7f)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x2, 0x1, 0x106)
socket(0x1e, 0x1, 0x0)
setsockopt$auto(0x3, 0x10f, 0x8a, 0x0, 0x14)
rmdir$auto(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00')
r1 = io_uring_setup$auto(0x6, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x3, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0)
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_getsetattr$auto(0x3, &(0x7f00000000c0)={0x0, 0xe, 0x5, 0xce}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
listen$auto(r1, 0x8)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x3, 0x1, 0x9488, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
r3 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r3, 0x107, 0x13, 0x0, 0x4)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r0)
sendmsg$auto_NL80211_CMD_FRAME(r3, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000500)={0xec, r4, 0x8, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0x80e}, @NL80211_ATTR_S1G_CAPABILITY_MASK={0x4a, 0x129, "7804b04509fee87673bc8a72298147948a8774f1910785bd49ca7ee54392fb8629f982700ab01b804fab93e0e88f969bf5c5fb818e66c1a321134babe757b64575cf80cff892"}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x401}, @NL80211_ATTR_QOS_MAP={0x7a, 0xc7, "22377cc047abaa9a9a05e7b555a8ae32b653228358655eac43411419517d1f044d751c84f432ee4071b6ad4e1e5d345265b7ad6784074ef881936bb9183bbf5222a5ce872815f0f7b15637ce44a147f901026c2ab8fc6ee74af4ffbfe9f8a71f5d24f88b393ea1b0062a7a357ea3af6ed3ab9cdd8e87"}]}, 0xec}, 0x1, 0x0, 0x0, 0x20000000}, 0x880)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x5, 0x3, 0xff, 0x10001, 0x400000000003, 0x2, 0x8001, 0xfffffffffffffffe, 0x80000000, 0x335b0eef, 0xffffdfffffffff81, 0x200000004]}, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback=0xac14140a}, 0x55)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptye9\x00', 0x1, 0x0)

5.161990503s ago: executing program 9 (id=2137):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x0)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
io_uring_setup$auto(0x4bf15e08, &(0x7f0000000000)={0x401, 0x8, 0xfe, 0x6fb3, 0x8a, 0x9, 0xffffffffffffffff, [0x100, 0x9, 0x7f], {0x2, 0x7, 0x3032, 0xe, 0xf, 0x5, 0x5, 0xfffffff9, 0xf08a2b3}, {0x0, 0xfc, 0x6, 0x0, 0x0, 0xf89, 0x9, 0x837, 0x8}})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[], 0x1ac}}, 0x40000)
r0 = socket(0x11, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000080), 0x49}, 0x5, &(0x7f00000003c0), 0x5, 0x1000}, 0x5}, 0x2, 0x100)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
io_uring_setup$auto(0x5b, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x10000, 0x1, 0x29f, 0x100, 0xfff, 0x101, 0x6, 0x2}, {0xfb, 0x1001, 0x10001, 0x7, 0x1, 0x40, 0x176c5, 0x400005, 0x100000005}})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80802, 0x0)
r1 = socket(0x2, 0x1, 0x106)
bind$auto(r1, 0x0, 0x6a)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
setsockopt$auto(0x3, 0x1, 0x21, 0x0, 0x9)
getcwd$auto(0x0, 0x80)
r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0xe8, 0x9, 0xffffffffffffffff, 0x1, 0x5, 0x4, 0x15f4da0e, 0xffffffff, 0x9, 0x100000000000000c, 0x8, 0xfffffffffffffffe, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8000, 0x0)

4.523928116s ago: executing program 9 (id=2139):
r0 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
sendmmsg$auto(r0, 0x0, 0x3, 0x20000000)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, 0x0, 0x100000a3d9)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, 0x0, 0x20a00, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r3 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0)
ioctl$auto_UBI_IOCATT(r3, 0x40186f40, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
mmap$auto(0xfffe, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
statmount$auto(0x0, 0x0, 0x800, 0x0)
madvise$auto(0x0, 0x2003f2, 0x15)
ioctl$auto_UBI_IOCDET(r3, 0x40046f41, 0x0)
r4 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000080), r2)
sendmsg$auto_L2TP_CMD_NOOP(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x66871c73e4a73b9}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, r4, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@L2TP_ATTR_DEBUG={0x8, 0x11, 0xfffffff9}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x8001}]}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x840)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
clone$auto(0x100000008, 0xffffffffffffff81, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006)
clone$auto(0x1, 0x1, 0x0, 0x0, 0x80000000001)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003180), r5)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r5, &(0x7f0000003400)={0x0, 0x0, &(0x7f00000033c0)={&(0x7f0000000000)={0x14, r6, 0x301, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
read$auto(r5, &(0x7f0000000080)='\x00', 0xff09)
sendmsg$auto_NFC_CMD_ACTIVATE_TARGET(0xffffffffffffffff, 0x0, 0x20000000)

3.324907125s ago: executing program 9 (id=2140):
madvise$auto(0x110c230000, 0x8031ca, 0x9) (async)
madvise$auto(0x110d230000, 0x1, 0x3) (async)
read$auto_ptdump_fops_(0xffffffffffffffff, 0x0, 0x0) (async)
unshare$auto(0x40000080) (async)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000280)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x94\x82 )\xca\x99h\xcf\xfdK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95j8\x83\xcf\xc5D\xcc\xa1\x00Vr\xc8j\xdd\xed@\xd1\x06}\xfc\xf3\x19yjG\x90#vZ$\xa7\xad_A\xdfi\xceU\xeak\x0e\xa4\x059\x1f\xe6\xe7\xc9;\xeb\xf4&Q\xbc\x06\xf1E\xf9{\x89f&\xd9\xcf\xa3\xde*\x7f\x9c\xa61R\x04\x14\xd5\xd60KD\x1b\xe9\xad}\x13\xe6UN\xf4\x86O\x8bq\x10\v\xe6\xdd\xdc1M\xbc\xf7{#\xfc\x9b\xb6\x96%Q^\x98\xbd\xa6.\xc99m\x12\x17\xf2\x1b*\x18\xb0>\xd2', 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
pread64$auto(0xffffffffffffffff, 0x0, 0x8100000041, 0x413e) (async)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
syz_clone3(&(0x7f0000000100)={0x2108000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r1, 0x400, 0x1) (async, rerun: 32)
execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) (rerun: 32)
openat$auto_u32_array_fops_file(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/netdevsim/netdevsim4/ports/2/udp_ports_table0\x00', 0x40201, 0x0) (async)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002740), r1)
mmap$auto(0x0, 0x202000b, 0x1, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 32)
mmap$auto(0x7, 0x2020009, 0x7, 0xeb1, r0, 0x7ffc) (rerun: 32)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 64)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (rerun: 64)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080) (async, rerun: 32)
setitimer$auto(0x2, 0x0, 0x0) (rerun: 32)
io_uring_setup$auto(0x7, 0x0)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000001b40)='/dev/cuse\x00', 0x8640, 0x0) (async, rerun: 32)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) (rerun: 32)
preadv$auto(0x3, 0x0, 0x3, 0x2, 0x13) (async)
close_range$auto(0x2, 0x8, 0x0)

3.237728979s ago: executing program 2 (id=2141):
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR642(0xffffffffffffffff, 0xc0884123, &(0x7f0000000240)={0x1ff, 0x0, @status={0x4, 0x0, {}, 0x5, {}, {0x4, 0xb}, 0x5, 0x0, {0xc745, 0xfffffffffffffff6}}, @control={{}, 0x7fffffffffffffff, {}, {}, 0x3}})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r2=>0x0})
r3 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r3, 0x8, 0x0, 0x0, 0x0)
process_madvise$auto_MADV_PAGEOUT(r3, &(0x7f0000000180)={&(0x7f00000000c0)="6bc435df379d38af2070e83ab820b0b15150be99d3063202de267667bb5fa15ce74ac0fb440ea2015d190f8ebd6e6427cb9a59d3cad3d2819c4e21caabd133d6cccdbae60f4ae89d62159cdb0cd02b6c24f2f4b16912ffec395de0e2a131d6047ed554bff8eed5782198b7615f59bd171d433765771e3ebe9ba010b66a31cb92dc09aab37592b5f66bbc92184733254768720007c7d6097032cea9fe5d18b38b4598956717fe92912375382c9e061b42", 0x3}, 0x1, 0x15, 0x5)
ioctl$auto_TUNSETCARRIER(r3, 0x400454e2, 0x0)
write$auto_vhost_vsock_fops_vsock(r3, &(0x7f0000000000)="539576803d41c1821b19454d1dc88989b436c2f61f318d02b6f50917b001f909649d063356e7f113f3888024f13de80aeafbe40ded3327bccd470df6b8af4f47155b865dbff477d5a6151bb3047e4f68aa86a68697ff4aea197549296219a319550a7a5ab331985b2b994c62db366fd52eba5568086bba12bc0fd186eb07303a3b0b0bd6f33e4b5d3e6242288f5232df2cdc75b3a6ba25714ce42c4c59997799fa0011cfe6c61f614edc056668a4d19c0f22dfdbe4247205d6", 0xb9)
sendmsg$auto_NL80211_CMD_SET_WOWLAN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fedbdf257a00000008000300", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x2400c815}, 0x804)

3.080766537s ago: executing program 2 (id=2142):
openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim1/psample/enable\x00', 0x169a02, 0x0)
r0 = socket(0xa, 0x801, 0x106) (async)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
arch_prctl$auto(0x1021, 0x3)
setsockopt$auto(0x3, 0x6, 0x9, 0x0, 0xfb3) (async)
sendmsg$auto_NL802154_CMD_ASSOCIATE(r0, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0b00d8b927a51fed5218e583bdbdfe005c8dac73cf4f181b9c826a2328033054", @ANYRES16=0x0, @ANYRES8], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x20000840) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
socket(0x10, 0x2, 0x1) (async)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x20201, 0x0) (async)
getpid() (async)
unshare$auto(0x40000080) (async)
r2 = prctl$auto(0x42, 0x1, 0x0, 0x443, 0x0)
listen$auto(0x3, 0x81) (async)
mmap$auto(0x0, 0xc, 0x3, 0xeb1, r1, 0x8000) (async)
r3 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
mmap$auto(0x0, 0x400, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
r4 = open(&(0x7f0000000080)='./file0\x00', 0x261c2, 0x84)
fcntl$auto_F_GET_RW_HINT(r4, 0x40b, 0x7) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x7ff, 0x15) (async)
syz_genetlink_get_family_id$auto_ethtool(0x0, r3) (async)
r5 = socket(0x10, 0x2, 0xc) (async)
r6 = syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), r2)
sendmsg$auto_NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={&(0x7f0000000000), 0xc, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="24010000", @ANYRES16=r6, @ANYBLOB="00032abd7000fbdbdf25020000000c0002002d000000000000000c00080003000000000000000c00030008000000000000000c000300ffffffff000000000c0006000600000000000000c0000980080037000600000009b226d526ec948b6213bea367d9297e99f0dd96b2574ae16e6832e7271c8ca416de19d28d06fffc5fc068f0cdedc7782f36998804774db20e57392e6fb2fb875f4649f07ba4a1bd0347aeb4667305afa476bd4f0e03168093aa4c94ba228cd628a17e857c111e1c39d0f020173378ae841c58e81aa78ab8fddcac1e32e5c6477ff12b8c20d3caba30db181394f3c19cab7dcb4cec12793194cdb970056a83af722cf458344a18988e0b0d7f0fea7381191c2b8d06000a00232600000c000780080007007f000001"], 0x124}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040084)
io_uring_setup$auto(0xa, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'veth1_macvtap\x00'}) (async)
sendmsg$auto_CTRL_CMD_GETPOLICY(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x2000000) (async)
ioctl$auto_TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000000300)={0x0, &(0x7f0000000100)={0xd4, 0xdb, 0x0, @inferred=<r7=>0xffffffffffffffff}})
write$auto_mtd_fops_mtdchar(r7, &(0x7f0000000380)="ac288a026ca1052c0130f37643593b6f6be1bb7393100b6b8ee178b61b99ff82b196cdcf842be1562ae914e4aecce77e32b98a5b055c007cc4ec24efd4b699b6e9a2a04e6aa016a2beacdaaf43903977e2459033cf", 0x55)
madvise$auto(0x0, 0x200007, 0x19)

2.685519505s ago: executing program 9 (id=2143):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x770, 0xfffffffe, 0x8, 0x4, 0x4005, 0x0, 0x5, 0x9, 0x3, 0x9, 0x6, 0x6, 0x4, 0x11ffffffffffb, 0xb2, 0x2, 0x6, 0x10, 0x80, 0x7ff, 0x8000, 0x1, 0x1, 0x202, 0xd, 0xbca7, 0xfffffffffffffff6, 0x0, 0x0, 0x0, 0x6b4, [0x2, 0x5, 0x0, 0x5, 0x0, 0x0, 0x20000000000, 0x0, 0x4, 0x2, 0x3169b201, 0x0, 0x4, 0xfffffffffffffc01, 0x5, 0xfffffbfffffffffb, 0x0, 0x9, 0x2000000, 0x2, 0x0, 0x8, 0x0, 0x200000000000000, 0x0, 0x8000000000000000, 0x0, 0xffff, 0x0, 0x7fffffff, 0x101, 0xd1a, 0x20000000000000, 0x40000000000000, 0x1000000000000200, 0x0, 0x400, 0x93, 0x3, 0x8004, 0xe17, 0x0, 0x6]}, 0x1fe, 0x1)
socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xebe, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20040801}, 0x24004000)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x84)
keyctl$auto(0x6, 0xfffffbfffffffffe, 0x0, 0x32, 0xfff)
mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0xb)
rename$auto(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='./file0/file0\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70)
mkdir$auto(&(0x7f0000000000)='./file1\x00', 0x4)
renameat2$auto(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000140)='./file0\x00', 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socket(0x10, 0x2, 0xf)
r2 = bpf$auto(0x0, &(0x7f0000000080)=@iter_create={r1, 0x52da}, 0xc)
bpf$auto(0x2, &(0x7f0000000080)=@iter_create={r2, 0x2}, 0x5)
r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffffffffffd03, &(0x7f00000001c0))
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/workqueue/nvmet-wq/affinity_scope\x00', 0x562, 0x0)
write$auto(r4, &(0x7f00000005c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xe1\x903\x9e\xca\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81\xe4\xab\xc5\x8da\vr\xb91\xfe\x9a\xf0\x0f\x03\x12m/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\xf4\r\x19$\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbbc\xb9\xd0\x1f\xd9\x8e`\xba\xd0\xa4\xf5\x00\x00\x00\x00\x00\x00\x00\x00', 0x98c7)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x18, 0x2, 0x0)
set_mempolicy$auto(0x3, &(0x7f0000000040)=0x7, 0x3)
mbind$auto(0x2000, 0x800000100000004, 0x100000000, 0x0, 0x1003, 0x2)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)

2.533449655s ago: executing program 2 (id=2144):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zram0\x00', 0x78d703, 0x0)
mmap$auto(0x6d, 0x4008, 0x2, 0x10, 0x401, 0x300000000000) (async)
write$auto(r1, 0x0, 0xfffffdef)
read$auto(0x3, 0x0, 0x8080) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80100, 0x0) (async)
mmap$auto(0x0, 0x4020009, 0x3, 0x20000000eb1, 0x401, 0x8000)
connect$auto(0xffffffffffffffff, 0x0, 0x3a) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r2 = socketcall$auto(0xffe, 0x0) (async)
truncate$auto(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x6) (async)
r3 = ioctl$auto_TUNSETVNETHDRSZ2(r0, 0x400454d8, &(0x7f0000000040)=0x6)
read$auto_configfs_file_operations_configfs_internal(r3, &(0x7f0000000080)=""/47, 0x2f) (async)
close_range$auto(0x2, 0xa, 0x0) (async)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1643, 0x0)
r5 = ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x109500, 0x0)
pread64$auto(r6, 0x0, 0x8, 0xffff) (async)
ioctl$auto(0x3, 0xae60, 0x10000000000402) (async)
ioctl$auto(0x3, 0xc008ae67, r2)
r7 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r8 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000240), r5)
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r7, &(0x7f0000004100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010026bd7000f8dbdf25010000000400028008000100", @ANYRES32=0x0, @ANYBLOB="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"], 0x20}, 0x1, 0x0, 0x0, 0x20040801}, 0x4000040) (async)
io_uring_setup$auto(0x6, 0x0) (async)
bpf$auto(0x0, &(0x7f0000000280)=@bpf_attr_4={0x1e, 0x4, 0x1, 0x8}, 0x6f4)
r9 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000100)='/dev/usbmon8\x00', 0x0, 0x0)
read$auto_mon_fops_binary_mon_bin(r9, 0x0, 0x30) (async)
ioctl$auto_MON_IOCG_STATS(r9, 0x80089203, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)

1.640777178s ago: executing program 2 (id=2145):
prctl$auto(0x21, 0x1, 0x2, 0x0, 0x0)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
ioctl$auto(r0, 0xc, 0xffffffffffffffff)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/adsp1\x00', 0x105000, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000021c0), 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={0x2c, r4, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x6, 0xa, ')%'}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x400000000000004}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
ioctl$auto(0x4000000000000c8, 0x800454cf, 0x3)
r5 = socket(0x11, 0x80003, 0x0)
setsockopt$auto(r5, 0x107, 0x12, 0x0, 0x4)
pidfd_send_signal$auto_PIDFD_SIGNAL_PROCESS_GROUP(r2, 0x9, &(0x7f0000000340)={@_si_pad}, 0x4)
openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
modify_ldt$auto(0xff, &(0x7f0000000440)="a8c70cd39307749362189864ebcc38990b0bf482e552680fa8015765833cb9f006bb0d1b12766abf48fc0e060c19e714d6d1d623307a84f709ce3b99f85d76f21b452872588cab2ec6af5c453f7e90b499c394", 0x4)
prctl$auto_PR_SET_MDWE(0x41, 0x6, 0x4, 0x154c, 0x7)
r6 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/default/disable_ipv6\x00', 0x202, 0x0)
arch_prctl$auto_ARCH_SHSTK_ENABLE(0x5001, 0x3)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
setitimer$auto_ITIMER_REAL(0x0, &(0x7f00000001c0)={{0x1, 0x10001}, {0x7fffffffffffffff, 0x7}}, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x0, 0x0)
sendfile$auto(r6, r6, 0x0, 0x200)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000240)=ANY=[], 0x68}, 0x1, 0x0, 0x0, 0x4c893}, 0x40000)
write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000040)="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", 0x2f8)
ioctl$auto_SNDCTL_SEQ_SYNC(r1, 0x5101, 0x0)
ioctl$auto_SNDCTL_SEQ_PANIC(r1, 0x5111, 0x0)

1.442140986s ago: executing program 9 (id=2146):
r0 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000002140), 0x20000, 0x0)
r1 = socket(0x2, 0x2, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram2/partscan\x00', 0x80200, 0x0)
io_uring_register$auto_IORING_UNREGISTER_FILES(r2, 0x3, &(0x7f0000000040)="afcf6358ca06b4a6302bf821fed4d3fcf2be5393c6b88b54075f8735fd0ee17b903a302863fed367590b9acb87", 0x4)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, 0x0, 0x2a801, 0x0)
mmap$auto(0xfffffffffffffffd, 0x402000b, 0xdf, 0xeb1, r0, 0x8000)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/sctp/assocs\x00', 0x101080, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x8000003, 0x0, 0x7, 0x0, 0x7, 0x201d55}, 0x2}, 0x800, 0x80000000)
r4 = socket(0xa, 0x5, 0x84)
sendto$auto(r4, 0x0, 0x401, 0x6358c0, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
r5 = socket(0x2, 0x3, 0xa)
connect$auto(r5, &(0x7f0000000080)=@in={0x2, 0x0, @empty}, 0x54)
mmap$auto(0x0, 0x4994, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0xffa6}, 0x1, 0x0, 0x0, 0x20040000}, 0x880)
pread64$auto(r3, 0x0, 0x7, 0xffff)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000d80), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PLCA_SET_CFG(r7, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000001040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002cbd7000fddbdf2528000000180001801400020064756d6d794f00"/38], 0x2c}, 0x1, 0x6000, 0x0, 0x1}, 0x20008800)
r8 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(r7, &(0x7f00000002c0)={&(0x7f0000000200), 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x2000c810}, 0x10)
r9 = accept4$auto(r8, &(0x7f0000000040)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, &(0x7f0000000180)=0x80000000, 0x1b)
ioctl$auto_SNDRV_CTL_IOCTL_POWER_STATE(r9, 0x800455d1, &(0x7f00000001c0)=0xfffffffb)
write$auto_console_fops_tty_io(r8, &(0x7f0000000000)="c80d1b5d399b39", 0xfdef)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0xe, 0x2, 0xeb1, r1, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc)
mmap$auto(0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/net/rose8/statistics/rx_frame_errors\x00', 0x0, 0x0)
ioctl$auto_I2C_RETRIES(r0, 0x701, &(0x7f0000002180))

1.256572553s ago: executing program 2 (id=2147):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000080), r0)
sendmsg$auto_KSMBD_EVENT_STARTING_UP(r1, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={&(0x7f00000000c0)={0x14, r2, 0x400, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x10)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder1\x00', 0x189160, 0x0)
mmap$auto(0x3, 0x9, 0xffb, 0x19, 0x3, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/ipv6_route\x00', 0x80000, 0x0)
pread64$auto(r3, 0x0, 0x6000000000, 0x100000004)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = open(0x0, 0x161342, 0x100)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
fallocate$auto(r6, 0x0, 0x7, 0x4cbd5d)
r7 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80040, 0x40, 0xe}, 0x18)
fremovexattr$auto(r7, &(0x7f0000000000)='system.posix_acl_access\x00')
mmap$auto(0x0, 0x810004, 0xd, 0x10, r5, 0x8000)
unshare$auto(0x40000080)
r8 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ram15\x00', 0x2c0000, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x15, r8, 0x8000)
keyctl$auto_KEYCTL_INSTANTIATE_IOV(0x14, 0x80, 0x1, 0x31, 0x0)
sendmmsg$auto(r4, &(0x7f0000000400)={{&(0x7f00000001c0)="125d19b13f71a0efb02ca09635e9ad1d1111d0517c1def35a4b1cf359f87a8df2245abcc4893d83117b07dff9824c21f746f591f34137324b5904058ef78bcc9ceb236b12dac7901a924bf099479507b13580af934270caf6b9a1adae95a6dcaff81caa988948385a8753c167994ce855daeb4a57fbc8a181fdacda9f0496c873e628c08b1d65b6433557ecdc36c2a75816cd1f5df4d5baafd2e16c50ff69befe43d0d85dce14acce4d5b29285b694d24343b04977b3a9b8ef096fe2893ca3088a06c93812616808d6232843e60986e2d455a99ad59ee424e56a83c4222572f944c15da1ef7adf", 0xe27, &(0x7f0000000340)={&(0x7f00000002c0)="00bcfca5e282805f6c2472eaa845e425e6003dc61dfb1d8f7c64900da707cccffdcd0382628907726dc07c9c54b245551f5cca2efb25d6c0d6e12075815984e5ec45971e7b1a353449815cdc860dd01725ca9d8e66dc8ce9467a26a4119dfd", 0x300000000}, 0x8, 0x0, 0x4, 0x9}, 0x7}, 0x200, 0x3)
r9 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8f3b7a51b80ebc01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r9, &(0x7f0000000140)="5a854caf7917", 0x6)
connect$auto(r9, &(0x7f0000000140)=@l2={0x1f, 0x7, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x180, 0x2}, 0x4)
r10 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto(r10, 0x125f, 0xffffffffffffffff)

346.7901ms ago: executing program 2 (id=2148):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x29, 0x2, 0x0)
io_uring_setup$auto(0x999, 0x0) (async)
ustat$auto(0x801, 0x0)
socket(0xa, 0x3, 0x3b) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
socket(0x1d, 0x2, 0x7)
r1 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
open(0x0, 0x22240, 0x1a2) (async)
socket(0x2, 0x1, 0x106) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0)
ioctl$auto_KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000200)={0x8, 0xffffffffffffffff, 0x2, 0x81}) (async)
acct$auto(&(0x7f00000000c0)='/dev/nbd0\x00') (async, rerun: 32)
listen$auto(0x3, 0x81) (async, rerun: 32)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) (async)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff) (async)
shmget$auto(0x8, 0x10565, 0x7ff) (async, rerun: 64)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa) (rerun: 64)
syz_clone3(&(0x7f0000000400)={0x100200, 0x0, 0x0, 0x0, {0x38}, 0x0, 0x0, 0x0, 0x0}, 0x58) (async)
r3 = accept$auto(r0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
socket(0x10, 0x3, 0x6) (async)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x20000004}, 0x10)

0s ago: executing program 9 (id=2149):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.2/usb3/authorized\x00', 0x601, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
socket(0x2, 0x1, 0x106)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
prctl$auto(0x6, 0x200000000001, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000380), 0x20000, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video3\x00', 0x2aa01, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xf, 0x3, 0x1, 0x948b, 0x9, 0x15f4da07, 0x6, 0x2, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0xd8]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8020000000001fd, 0x20000000007, 0x4, 0x1000000000000bc3, 0x800, 0x3, 0xff, 0xffffffffffffffff, 0x400000000003, 0x1, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x7ffffffc, 0x9, 0xffffdfffffffff81, 0x4]}, 0x0)
statx$auto(0xffffffffffffffff, 0x0, 0x6d7, 0x80000008, 0x0)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f00000044c0)='/proc/thread-self/oom_score_adj\x00', 0x240000, 0x0)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000008c80)='/proc/thread-self/oom_score_adj\x00', 0x8c0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mlock$auto(0x112, 0x80006)
mlockall$auto(0x800000000000005)
madvise$auto(0x0, 0x200007, 0x19)
mmap$auto(0x0, 0x84dd, 0xdf, 0xeb1, 0x401, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r2)
getsockopt$auto_SO_DOMAIN(r0, 0x1ff, 0x27, 0x0, &(0x7f0000000040)=0x4)

kernel console output (not intermixed with test programs):

: Interface deactivated: batadv_slave_0
[  467.514956][T11604] batman_adv: batadv0: Removing interface: batadv_slave_0
[  467.548775][T11604] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  467.575551][T11604] batman_adv: batadv0: Removing interface: batadv_slave_1
[  467.658423][T12859] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  467.678670][T11604] veth1_macvtap: left promiscuous mode
[  467.695744][T11604] veth0_macvtap: left promiscuous mode
[  467.713612][T11604] veth1_vlan: left promiscuous mode
[  467.733550][T11604] veth0_vlan: left promiscuous mode
[  468.447057][T11604] team0 (unregistering): Port device team_slave_1 removed
[  468.501979][T11604] team0 (unregistering): Port device team_slave_0 removed
[  468.830669][ T5290] 8021q: adding VLAN 0 to HW filter on device eth2
[  469.082609][T12891] ecryptfs_miscdev_write: Invalid packet size [0]
[  469.295085][T12893] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1449'.
[  469.914323][ T5633] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5
[  469.982256][T12910] sd 0:0:1:0: device reset
[  471.116867][ T5290] 8021q: adding VLAN 0 to HW filter on device eth3
[  472.118621][T12960] futex_wake_op: syz.0.1460 tries to shift op by -2048; fix this program
[  472.295676][T12964] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  472.409250][T12957] 0x000000000001-0x000000020000 : ""
[  472.554800][T12957] ftl_cs: FTL header corrupt!
[  473.541048][ T5290] 8021q: adding VLAN 0 to HW filter on device eth4
[  473.935443][T12993] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1464'.
[  474.832571][T13014] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1469'.
[  474.971877][T11591] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.160600][T13014] veth0_macvtap: left promiscuous mode
[  475.185826][T13014] macvtap0: entered promiscuous mode
[  475.204512][T13014] macvtap0: entered allmulticast mode
[  475.473484][T11591] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.681114][ T4945] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  475.696697][ T4945] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  475.708992][ T4945] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  475.717562][ T4945] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  475.727749][ T4945] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  476.170182][T11591] netdevsim netdevsim1 netdevsim1 (unregistering): left allmulticast mode
[  476.212650][T11591] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.651492][T11591] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.749814][ T4945] Bluetooth: hci2: command tx timeout
[  478.158489][T11591] bridge_slave_1: left allmulticast mode
[  478.182763][T11591] bridge_slave_1: left promiscuous mode
[  478.212303][T11591] bridge0: port 2(bridge_slave_1) entered disabled state
[  478.265030][T11591] bridge_slave_0: left allmulticast mode
[  478.293071][T11591] bridge_slave_0: left promiscuous mode
[  478.315417][T11591] bridge0: port 1(bridge_slave_0) entered disabled state
[  478.458435][T13076] sg_write: data in/out 262108/258 bytes for SCSI command 0x61-- guessing data in;
[  478.458435][T13076]    program syz.0.1477 not setting count and/or reply_len properly
[  479.158610][T11591] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  479.217887][T11591] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  479.255661][T11591] bond0 (unregistering): Released all slaves
[  479.383208][T11591] tipc: Left network mode
[  479.692014][ T5290] 8021q: adding VLAN 0 to HW filter on device eth5
[  479.818023][ T4945] Bluetooth: hci2: command tx timeout
[  480.918401][T11591] hsr_slave_0: left promiscuous mode
[  480.965957][T11591] hsr_slave_1: left promiscuous mode
[  481.026191][T11591] veth1_macvtap: left promiscuous mode
[  481.057009][T11591] veth0_macvtap: left promiscuous mode
[  481.084651][T11591] veth1_vlan: left promiscuous mode
[  481.108399][T11591] veth0_vlan: left promiscuous mode
[  481.886262][ T4945] Bluetooth: hci2: command tx timeout
[  481.954768][T13148] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  482.235029][T11591] team0 (unregistering): Port device team_slave_1 removed
[  482.289495][T11591] team0 (unregistering): Port device team_slave_0 removed
[  482.677167][ T5290] 8021q: adding VLAN 0 to HW filter on device eth6
[  483.005552][T13035] bridge0: port 1(bridge_slave_0) entered blocking state
[  483.041661][T13035] bridge0: port 1(bridge_slave_0) entered disabled state
[  483.066981][T13035] bridge_slave_0: entered allmulticast mode
[  483.097092][T13035] bridge_slave_0: entered promiscuous mode
[  483.133661][T13035] bridge0: port 2(bridge_slave_1) entered blocking state
[  483.182761][T13035] bridge0: port 2(bridge_slave_1) entered disabled state
[  483.214974][T13035] bridge_slave_1: entered allmulticast mode
[  483.258841][T13035] bridge_slave_1: entered promiscuous mode
[  483.513496][T13035] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  483.585053][T13035] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  483.808174][T13035] team0: Port device team_slave_0 added
[  483.870242][T13035] team0: Port device team_slave_1 added
[  483.954517][ T4945] Bluetooth: hci2: command tx timeout
[  484.044602][T13035] batman_adv: batadv0: Adding interface: batadv_slave_0
[  484.080770][T13035] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  484.236634][T13035] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  484.303453][T13035] batman_adv: batadv0: Adding interface: batadv_slave_1
[  484.353698][T13035] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  484.495188][T13035] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  484.590025][T13182] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1485'.
[  484.801931][T13197] openvswitch: netlink: Message has 736 unknown bytes.
[  484.812610][T13035] hsr_slave_0: entered promiscuous mode
[  484.822877][T13035] hsr_slave_1: entered promiscuous mode
[  484.869907][ T5290] 8021q: adding VLAN 0 to HW filter on device eth7
[  485.174025][   T30] audit: type=1800 audit(1779729759.348:11): pid=13195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1486" name="discovery_nqn" dev="configfs" ino=42799 res=0 errno=0
[  485.262941][T13202] random: crng reseeded on system resumption
[  485.509758][T13204] hub 1-0:1.0: USB hub found
[  485.569624][T13204] hub 1-0:1.0: 1 port detected
[  486.571030][ T5290] 8021q: adding VLAN 0 to HW filter on device eth8
[  486.672338][T13222] FAULT_INJECTION: forcing a failure.
[  486.672338][T13222] name fail_futex, interval 1, probability 0, space 0, times 0
[  486.726677][T13222] CPU: 0 UID: 0 PID: 13222 Comm: syz.4.1490 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  486.726708][T13222] Tainted: [L]=SOFTLOCKUP
[  486.726714][T13222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  486.726726][T13222] Call Trace:
[  486.726732][T13222]  <TASK>
[  486.726738][T13222]  dump_stack_lvl+0x100/0x190
[  486.726764][T13222]  should_fail_ex.cold+0x5/0xa
[  486.726788][T13222]  get_futex_key+0x1d2/0x1510
[  486.726807][T13222]  ? __pfx_get_futex_key+0x10/0x10
[  486.726822][T13222]  ? find_held_lock+0x2b/0x80
[  486.726843][T13222]  ? futex_wake+0x456/0x530
[  486.726871][T13222]  futex_wake+0xea/0x530
[  486.726898][T13222]  ? __pfx_futex_wait+0x10/0x10
[  486.726918][T13222]  ? __pfx_futex_wake+0x10/0x10
[  486.726945][T13222]  do_futex+0x32b/0x350
[  486.726962][T13222]  ? __pfx_do_futex+0x10/0x10
[  486.726980][T13222]  ? __fget_files+0x21f/0x3d0
[  486.727001][T13222]  __x64_sys_futex+0x34f/0x4d0
[  486.727018][T13222]  ? __x64_sys_close_range+0x30f/0x5d0
[  486.727038][T13222]  ? __pfx___x64_sys_futex+0x10/0x10
[  486.727055][T13222]  ? __pfx___x64_sys_close_range+0x10/0x10
[  486.727076][T13222]  ? rcu_is_watching+0x12/0xc0
[  486.727097][T13222]  do_syscall_64+0x10b/0x830
[  486.727112][T13222]  ? clear_bhb_loop+0x40/0x90
[  486.727130][T13222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  486.727145][T13222] RIP: 0033:0x7f016039ce59
[  486.727160][T13222] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  486.727175][T13222] RSP: 002b:00007f016125e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  486.727191][T13222] RAX: ffffffffffffffda RBX: 00007f0160615fa8 RCX: 00007f016039ce59
[  486.727201][T13222] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0160615fac
[  486.727210][T13222] RBP: 00007f0160615fa0 R08: 0000000000000001 R09: 0000000000000000
[  486.727219][T13222] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  486.727228][T13222] R13: 00007f0160616038 R14: 00007ffeff3cab70 R15: 00007ffeff3cac58
[  486.727253][T13222]  </TASK>
[  487.589077][ T4945] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5
[  487.680297][T13231] FAULT_INJECTION: forcing a failure.
[  487.680297][T13231] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  487.785112][T13231] CPU: 0 UID: 0 PID: 13231 Comm: syz.0.1492 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  487.785142][T13231] Tainted: [L]=SOFTLOCKUP
[  487.785148][T13231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  487.785158][T13231] Call Trace:
[  487.785165][T13231]  <TASK>
[  487.785171][T13231]  dump_stack_lvl+0x100/0x190
[  487.785197][T13231]  should_fail_ex.cold+0x5/0xa
[  487.785217][T13231]  ? prepare_alloc_pages+0x16d/0x5f0
[  487.785241][T13231]  should_fail_alloc_page+0xeb/0x140
[  487.785265][T13231]  prepare_alloc_pages+0x1f0/0x5f0
[  487.785287][T13231]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  487.785307][T13231]  ? __lock_acquire+0x4a5/0x2630
[  487.785329][T13231]  ? __css_rstat_updated+0x1ce/0x5a0
[  487.785355][T13231]  ? __pfx___css_rstat_updated+0x10/0x10
[  487.785382][T13231]  ? xas_create+0x1f4/0x14e0
[  487.785397][T13231]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  487.785415][T13231]  ? rcu_is_watching+0x12/0xc0
[  487.785433][T13231]  ? __mod_memcg_lruvec_state+0x18c/0x5b0
[  487.785449][T13231]  ? find_held_lock+0x2b/0x80
[  487.785475][T13231]  ? __lock_acquire+0x4a5/0x2630
[  487.785491][T13231]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  487.785514][T13231]  ? policy_nodemask+0xed/0x4f0
[  487.785534][T13231]  alloc_pages_mpol+0x1fb/0x540
[  487.785553][T13231]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  487.785571][T13231]  ? filemap_get_entry+0x22d/0x450
[  487.785586][T13231]  ? filemap_get_entry+0x22d/0x450
[  487.785603][T13231]  folio_alloc_noprof+0x22/0x250
[  487.785625][T13231]  filemap_alloc_folio_noprof.part.0+0x377/0x450
[  487.785649][T13231]  ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[  487.785672][T13231]  ? rcu_is_watching+0x12/0xc0
[  487.785691][T13231]  __filemap_get_folio_mpol+0x6a4/0xe70
[  487.785713][T13231]  ioctx_alloc+0x7e1/0x21a0
[  487.785742][T13231]  ? __pfx_ioctx_alloc+0x10/0x10
[  487.785769][T13231]  __x64_sys_io_setup+0xc9/0x220
[  487.785792][T13231]  do_syscall_64+0x10b/0x830
[  487.785805][T13231]  ? clear_bhb_loop+0x40/0x90
[  487.785824][T13231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  487.785840][T13231] RIP: 0033:0x7fc317b9ce59
[  487.785855][T13231] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  487.785870][T13231] RSP: 002b:00007fc318a53028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  487.785887][T13231] RAX: ffffffffffffffda RBX: 00007fc317e16090 RCX: 00007fc317b9ce59
[  487.785897][T13231] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff
[  487.785906][T13231] RBP: 00007fc317c32d6f R08: 0000000000000000 R09: 0000000000000000
[  487.785916][T13231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  487.785925][T13231] R13: 00007fc317e16128 R14: 00007fc317e16090 R15: 00007fff19aaa848
[  487.785947][T13231]  </TASK>
[  490.277869][T13035] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  490.350120][T13035] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  490.395089][T13035] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  490.419336][T13270] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1496'.
[  490.473659][T13035] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  490.539352][T13035] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  490.625357][T13035] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  490.680001][T13035] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  490.739815][T13035] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  490.844011][T13278] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  491.075843][T13292] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1500'.
[  491.144652][T13035] 8021q: adding VLAN 0 to HW filter on device bond0
[  491.234883][T13035] 8021q: adding VLAN 0 to HW filter on device team0
[  491.334970][T11604] bridge0: port 1(bridge_slave_0) entered blocking state
[  491.342154][T11604] bridge0: port 1(bridge_slave_0) entered forwarding state
[  491.445490][T11607] bridge0: port 2(bridge_slave_1) entered blocking state
[  491.452718][T11607] bridge0: port 2(bridge_slave_1) entered forwarding state
[  492.202572][T13035] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  492.935840][T13322] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  493.263853][T13328] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  494.518790][T13035] 8021q: adding VLAN 0 to HW filter on device batadv0
[  494.851130][T13367] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1507'.
[  494.867608][T13035] veth0_vlan: entered promiscuous mode
[  494.949987][T13035] veth1_vlan: entered promiscuous mode
[  495.082901][T13035] veth0_macvtap: entered promiscuous mode
[  495.112565][T13035] veth1_macvtap: entered promiscuous mode
[  495.246269][T13035] batman_adv: batadv0: Interface activated: batadv_slave_0
[  495.346260][T13035] batman_adv: batadv0: Interface activated: batadv_slave_1
[  495.372968][T11607] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  495.373007][T11607] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  495.373032][T11607] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  495.373056][T11607] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  495.510761][T13384] netlink: 'syz.4.1509': attribute type 4 has an invalid length.
[  495.510784][T13384] netlink: 314 bytes leftover after parsing attributes in process `syz.4.1509'.
[  495.734120][T11591] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.734140][T11591] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.857439][T11591] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.857461][T11591] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  496.830620][   T30] audit: type=1800 audit(1779729771.075:12): pid=13415 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1513" name="dbroot" dev="configfs" ino=44292 res=0 errno=0
[  496.933643][T13415] mtrr: base(0x1000000) is not aligned on a size(0x0000) boundary
[  497.684308][T13434] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  501.087074][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  501.094920][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  502.845313][T13522] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1527'.
[  503.143832][T13522] syz_tun: refused to change device tx_queue_len
[  504.221911][T13551] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  504.442009][T13560] input: jJǸ-���9�1aܥdם�Q�	J�z�n�:������hǙn�?aԙ/rk
[  504.442009][T13560] l6���x�A�b6�Yh$X�.=��_ as /devices/virtual/input/input16
[  504.721250][ T4945] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  506.611460][T13603] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1537'.
[  507.886532][T13607] FAULT_INJECTION: forcing a failure.
[  507.886532][T13607] name failslab, interval 1, probability 0, space 0, times 0
[  508.204858][T13628] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1540'.
[  508.215666][T13607] CPU: 0 UID: 0 PID: 13607 Comm: syz.0.1536 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  508.215694][T13607] Tainted: [L]=SOFTLOCKUP
[  508.215700][T13607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  508.215712][T13607] Call Trace:
[  508.215718][T13607]  <TASK>
[  508.215724][T13607]  dump_stack_lvl+0x100/0x190
[  508.215749][T13607]  should_fail_ex.cold+0x5/0xa
[  508.215772][T13607]  ? ops_init+0x77/0x5f0
[  508.215793][T13607]  should_failslab+0xc2/0x120
[  508.215814][T13607]  __kmalloc_noprof+0xe0/0x850
[  508.215833][T13607]  ops_init+0x77/0x5f0
[  508.215854][T13607]  setup_net+0x118/0x3a0
[  508.215875][T13607]  ? __pfx_setup_net+0x10/0x10
[  508.215897][T13607]  ? mutex_init_lockdep+0xf1/0x120
[  508.215918][T13607]  copy_net_ns+0x46f/0x7c0
[  508.215940][T13607]  create_new_namespaces+0x3ea/0xac0
[  508.215965][T13607]  unshare_nsproxy_namespaces+0xf2/0x220
[  508.215986][T13607]  ksys_unshare+0x438/0xab0
[  508.216010][T13607]  ? __pfx_ksys_unshare+0x10/0x10
[  508.216030][T13607]  ? xfd_validate_state+0x129/0x190
[  508.216053][T13607]  __x64_sys_unshare+0x31/0x40
[  508.216075][T13607]  do_syscall_64+0x10b/0x830
[  508.216089][T13607]  ? clear_bhb_loop+0x40/0x90
[  508.216107][T13607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  508.216123][T13607] RIP: 0033:0x7fc317b9ce59
[  508.216137][T13607] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  508.216153][T13607] RSP: 002b:00007fc318a53028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  508.216169][T13607] RAX: ffffffffffffffda RBX: 00007fc317e16090 RCX: 00007fc317b9ce59
[  508.216179][T13607] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  508.216188][T13607] RBP: 00007fc317c32d6f R08: 0000000000000000 R09: 0000000000000000
[  508.216199][T13607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  508.216209][T13607] R13: 00007fc317e16128 R14: 00007fc317e16090 R15: 00007fff19aaa848
[  508.216229][T13607]  </TASK>
[  509.115179][T13628] bond0: (slave bond_slave_0): Releasing backup interface
[  511.658069][T13675] nbd: must specify at least one socket
[  512.316302][T13648] kexec: Could not allocate control_code_buffer
[  513.408664][T13678] y9��vF��0�ك7`�yD�Å���M��R��=>~)��e\���q�s�0��#J�a'M�.V7���|p�tj�m���쭉I)St��
[  517.698766][T13700] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  519.836447][ T4945] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  523.242091][T13771] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  523.318202][T13771] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  523.396971][T13771] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  523.429632][T13771] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  523.454421][T13771] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  523.499053][T13771] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  523.540922][T13771] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  523.568156][T13771] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  523.625564][T13771] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  523.978022][ T4945] Bluetooth: hci0: command 0x2016 tx timeout
[  525.409260][ T4945] Bluetooth: hci1: command 0x0c1a tx timeout
[  525.492742][ T4945] Bluetooth: hci4: command 0x0c1a tx timeout
[  525.568325][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  526.049288][ T4945] Bluetooth: hci0: command 0x2016 tx timeout
[  526.899566][T13855] FAULT_INJECTION: forcing a failure.
[  526.899566][T13855] name failslab, interval 1, probability 0, space 0, times 0
[  526.993368][T13855] CPU: 0 UID: 0 PID: 13855 Comm: syz.4.1578 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  526.993398][T13855] Tainted: [L]=SOFTLOCKUP
[  526.993405][T13855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  526.993416][T13855] Call Trace:
[  526.993422][T13855]  <TASK>
[  526.993429][T13855]  dump_stack_lvl+0x100/0x190
[  526.993455][T13855]  should_fail_ex.cold+0x5/0xa
[  526.993477][T13855]  ? snd_pcm_plugin_build+0x434/0x650
[  526.993495][T13855]  should_failslab+0xc2/0x120
[  526.993515][T13855]  __kmalloc_noprof+0xe0/0x850
[  526.993535][T13855]  snd_pcm_plugin_build+0x434/0x650
[  526.993554][T13855]  snd_pcm_plugin_build_linear+0x254/0x850
[  526.993576][T13855]  ? __pfx_snd_pcm_plugin_build_linear+0x10/0x10
[  526.993596][T13855]  ? snd_pcm_hw_params+0x241/0x1bf0
[  526.993617][T13855]  snd_pcm_plug_format_plugins+0x536/0x1430
[  526.993636][T13855]  ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10
[  526.993656][T13855]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  526.993686][T13855]  snd_pcm_oss_change_params_locked+0x2e3c/0x39f0
[  526.993720][T13855]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  526.993754][T13855]  ? __pfx___mutex_lock+0x10/0x10
[  526.993784][T13855]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  526.993812][T13855]  snd_pcm_oss_sync+0x265/0x840
[  526.993830][T13855]  snd_pcm_oss_release+0x238/0x300
[  526.993845][T13855]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  526.993862][T13855]  __fput+0x3ff/0xb50
[  526.993889][T13855]  task_work_run+0x150/0x240
[  526.993906][T13855]  ? __pfx_task_work_run+0x10/0x10
[  526.993923][T13855]  ? rcu_is_watching+0x12/0xc0
[  526.993944][T13855]  exit_to_user_mode_loop+0x107/0x4f0
[  526.993960][T13855]  ? rcu_is_watching+0x12/0xc0
[  526.993982][T13855]  do_syscall_64+0x6f2/0x830
[  526.993997][T13855]  ? clear_bhb_loop+0x40/0x90
[  526.994015][T13855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.994031][T13855] RIP: 0033:0x7f016039ce59
[  526.994045][T13855] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  526.994059][T13855] RSP: 002b:00007f016125e028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  526.994075][T13855] RAX: 0000000000000000 RBX: 00007f0160615fa0 RCX: 00007f016039ce59
[  526.994085][T13855] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  526.994094][T13855] RBP: 00007f0160432d6f R08: 0000000000000000 R09: 0000000000000000
[  526.994104][T13855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  526.994113][T13855] R13: 00007f0160616038 R14: 00007f0160615fa0 R15: 00007ffeff3cac58
[  526.994135][T13855]  </TASK>
[  527.638021][ T4945] Bluetooth: hci4: command 0x0c1a tx timeout
[  527.644322][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  527.818782][T13877] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1582'.
[  529.348446][T13907] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1586'.
[  529.504153][T13910] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  529.676638][T13907] macvlan0: entered promiscuous mode
[  529.690043][T13907] macvlan0: entered allmulticast mode
[  529.709300][ T5633] Bluetooth: hci2: command 0x0c1a tx timeout
[  529.715378][ T4945] Bluetooth: hci4: command 0x0c1a tx timeout
[  529.755512][T13907] veth1_vlan: entered allmulticast mode
[  530.151540][T13920] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  531.516885][T13949] deleting an unspecified loop device is not supported.
[  533.730203][T13999] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1599'.
[  533.817893][T14000] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1599'.
[  534.509271][T14009] sysfs_service_op_store: Client not running :-5:
[  534.562437][ T5633] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  536.738631][T14066] futex_wake_op: syz.4.1612 tries to shift op by -2048; fix this program
[  537.157892][T14079] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1617'.
[  537.960053][ T5633] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  538.243470][T14115] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1623'.
[  538.499709][T14127] random: crng reseeded on system resumption
[  540.207869][T14138] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1629'.
[  540.313481][T14138] �: renamed from sit0 (while UP)
[  543.460054][T14208] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1641'.
[  544.538036][T14236] netlink: 318 bytes leftover after parsing attributes in process `syz.1.1648'.
[  545.118913][T14231] Process accounting resumed
[  546.125326][T14280] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  546.170864][T14280] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  548.227784][T14319] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1665'.
[  548.998204][T14332] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  549.569987][T14339] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1667'.
[  549.660347][T14339] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  549.718821][T14339] batman_adv: batadv0: Removing interface: batadv_slave_0
[  549.793373][T14339] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  549.854404][T14339] batman_adv: batadv0: Removing interface: batadv_slave_1
[  550.691665][T14348] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1670'.
[  551.191889][ T5741] Process accounting resumed
[  551.209279][T14357] openvswitch: netlink: Key type 68 is out of range max 32
[  551.276504][ T1224] Process accounting resumed
[  551.318912][ T1224] Process accounting resumed
[  551.355794][ T1224] Process accounting resumed
[  551.383260][ T1224] Process accounting resumed
[  551.408054][ T1224] Process accounting resumed
[  551.435707][ T1224] Process accounting resumed
[  551.468627][ T1224] Process accounting resumed
[  551.500186][ T5739] Process accounting resumed
[  551.516718][ T5739] Process accounting resumed
[  551.624865][T14353] Process accounting resumed
[  551.819707][T14372] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1674'.
[  551.940316][T14372] �: renamed from sit0 (while UP)
[  552.177406][ T4945] Bluetooth: hci0: Malformed Event: 0x2f
[  552.393220][T14386] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  552.609070][T14376] bridge0: port 3(veth1) entered blocking state
[  552.642545][T14376] bridge0: port 3(veth1) entered disabled state
[  552.676843][T14376] veth1: entered allmulticast mode
[  552.721862][T14376] veth1: entered promiscuous mode
[  552.768423][T14376] bridge0: port 3(veth1) entered blocking state
[  552.775890][T14376] bridge0: port 3(veth1) entered forwarding state
[  552.805083][ T4945] Bluetooth: hci2: unexpected subevent 0x03 length: 253 > 9
[  553.425617][T14408] MTRR 1 not used
[  554.501114][T14423] FAULT_INJECTION: forcing a failure.
[  554.501114][T14423] name failslab, interval 1, probability 0, space 0, times 0
[  554.562822][T14423] CPU: 0 UID: 0 PID: 14423 Comm: syz.3.1684 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  554.562853][T14423] Tainted: [L]=SOFTLOCKUP
[  554.562859][T14423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  554.562871][T14423] Call Trace:
[  554.562877][T14423]  <TASK>
[  554.562884][T14423]  dump_stack_lvl+0x100/0x190
[  554.562911][T14423]  should_fail_ex.cold+0x5/0xa
[  554.562933][T14423]  should_failslab+0xc2/0x120
[  554.562955][T14423]  __kmalloc_cache_noprof+0x7a/0x6f0
[  554.563006][T14423]  ? fqdir_init+0x4f/0x1f0
[  554.563035][T14423]  fqdir_init+0x4f/0x1f0
[  554.563059][T14423]  ipv6_frags_init_net+0x2b/0x350
[  554.563084][T14423]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[  554.563104][T14423]  ops_init+0x1e2/0x5f0
[  554.563126][T14423]  setup_net+0x118/0x3a0
[  554.563146][T14423]  ? __pfx_setup_net+0x10/0x10
[  554.563165][T14423]  ? mutex_init_lockdep+0xf1/0x120
[  554.563185][T14423]  copy_net_ns+0x46f/0x7c0
[  554.563208][T14423]  create_new_namespaces+0x3ea/0xac0
[  554.563232][T14423]  unshare_nsproxy_namespaces+0xf2/0x220
[  554.563254][T14423]  ksys_unshare+0x438/0xab0
[  554.563278][T14423]  ? __pfx_ksys_unshare+0x10/0x10
[  554.563298][T14423]  ? xfd_validate_state+0x129/0x190
[  554.563315][T14423]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  554.563338][T14423]  ? syscall_user_dispatch+0x76/0x130
[  554.563357][T14423]  __x64_sys_unshare+0x31/0x40
[  554.563378][T14423]  do_syscall_64+0x10b/0x830
[  554.563393][T14423]  ? clear_bhb_loop+0x40/0x90
[  554.563411][T14423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.563427][T14423] RIP: 0033:0x7f592259ce59
[  554.563442][T14423] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  554.563457][T14423] RSP: 002b:00007f5923469028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  554.563473][T14423] RAX: ffffffffffffffda RBX: 00007f5922815fa0 RCX: 00007f592259ce59
[  554.563484][T14423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  554.563494][T14423] RBP: 00007f5922632d6f R08: 0000000000000000 R09: 0000000000000000
[  554.563505][T14423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  554.563514][T14423] R13: 00007f5922816038 R14: 00007f5922815fa0 R15: 00007fff38d2e678
[  554.563536][T14423]  </TASK>
[  555.060633][T14436] netlink: 330 bytes leftover after parsing attributes in process `syz.4.1686'.
[  555.733767][ T4945] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  555.953461][T14448] FAULT_INJECTION: forcing a failure.
[  555.953461][T14448] name failslab, interval 1, probability 0, space 0, times 0
[  556.010661][T14448] CPU: 0 UID: 0 PID: 14448 Comm: syz.1.1689 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  556.010689][T14448] Tainted: [L]=SOFTLOCKUP
[  556.010694][T14448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  556.010705][T14448] Call Trace:
[  556.010710][T14448]  <TASK>
[  556.010716][T14448]  dump_stack_lvl+0x100/0x190
[  556.010741][T14448]  should_fail_ex.cold+0x5/0xa
[  556.010762][T14448]  should_failslab+0xc2/0x120
[  556.010781][T14448]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  556.010797][T14448]  ? __d_alloc+0x34/0xa40
[  556.010816][T14448]  ? raw_hash_sk+0x29f/0x5d0
[  556.010833][T14448]  ? raw_hash_sk+0x29f/0x5d0
[  556.010852][T14448]  __d_alloc+0x34/0xa40
[  556.010874][T14448]  d_alloc_pseudo+0x1c/0xc0
[  556.010890][T14448]  alloc_file_pseudo+0xcf/0x230
[  556.010914][T14448]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  556.010936][T14448]  ? alloc_fd+0x476/0x790
[  556.010958][T14448]  sock_alloc_file+0x50/0x210
[  556.010980][T14448]  __sys_socket+0x1c0/0x260
[  556.010995][T14448]  ? __pfx___sys_socket+0x10/0x10
[  556.011008][T14448]  ? ksys_write+0x1ac/0x250
[  556.011029][T14448]  __x64_sys_socket+0x72/0xb0
[  556.011043][T14448]  ? lockdep_hardirqs_on+0x78/0x100
[  556.011058][T14448]  do_syscall_64+0x10b/0x830
[  556.011072][T14448]  ? clear_bhb_loop+0x40/0x90
[  556.011090][T14448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.011105][T14448] RIP: 0033:0x7f82f4b9ce59
[  556.011119][T14448] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  556.011134][T14448] RSP: 002b:00007f82f59f9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  556.011150][T14448] RAX: ffffffffffffffda RBX: 00007f82f4e15fa0 RCX: 00007f82f4b9ce59
[  556.011160][T14448] RDX: 000000000000000a RSI: 0000000000000003 RDI: 0000000000000002
[  556.011168][T14448] RBP: 00007f82f4c32d6f R08: 0000000000000000 R09: 0000000000000000
[  556.011177][T14448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  556.011186][T14448] R13: 00007f82f4e16038 R14: 00007f82f4e15fa0 R15: 00007fff23b1b1c8
[  556.011205][T14448]  </TASK>
[  557.804242][T14477] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1696'.
[  558.007585][T14488] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1698'.
[  558.319840][T14496] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  558.429587][T14499] ima: policy update failed
[  558.461302][   T30] audit: type=1802 audit(1779729833.028:13): pid=14499 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.1701" res=0 errno=0
[  559.058062][T14525] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1704'.
[  560.044315][T14544] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1709'.
[  560.581554][T14559] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1711'.
[  561.221134][T14574] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1713'.
[  561.615131][T14578] FAULT_INJECTION: forcing a failure.
[  561.615131][T14578] name failslab, interval 1, probability 0, space 0, times 0
[  561.694368][T14578] CPU: 0 UID: 0 PID: 14578 Comm: syz.1.1715 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  561.694399][T14578] Tainted: [L]=SOFTLOCKUP
[  561.694405][T14578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  561.694416][T14578] Call Trace:
[  561.694423][T14578]  <TASK>
[  561.694430][T14578]  dump_stack_lvl+0x100/0x190
[  561.694456][T14578]  should_fail_ex.cold+0x5/0xa
[  561.694478][T14578]  ? ops_init+0x77/0x5f0
[  561.694498][T14578]  should_failslab+0xc2/0x120
[  561.694519][T14578]  __kmalloc_noprof+0xe0/0x850
[  561.694540][T14578]  ops_init+0x77/0x5f0
[  561.694561][T14578]  setup_net+0x118/0x3a0
[  561.694580][T14578]  ? __pfx_setup_net+0x10/0x10
[  561.694599][T14578]  ? mutex_init_lockdep+0xf1/0x120
[  561.694619][T14578]  copy_net_ns+0x46f/0x7c0
[  561.694642][T14578]  create_new_namespaces+0x3ea/0xac0
[  561.694666][T14578]  unshare_nsproxy_namespaces+0xf2/0x220
[  561.694687][T14578]  ksys_unshare+0x438/0xab0
[  561.694710][T14578]  ? __pfx_ksys_unshare+0x10/0x10
[  561.694731][T14578]  ? xfd_validate_state+0x129/0x190
[  561.694746][T14578]  ? ksys_write+0x1ac/0x250
[  561.694770][T14578]  __x64_sys_unshare+0x31/0x40
[  561.694791][T14578]  do_syscall_64+0x10b/0x830
[  561.694806][T14578]  ? clear_bhb_loop+0x40/0x90
[  561.694824][T14578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.694840][T14578] RIP: 0033:0x7f82f4b9ce59
[  561.694854][T14578] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  561.694871][T14578] RSP: 002b:00007f82f59f9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  561.694886][T14578] RAX: ffffffffffffffda RBX: 00007f82f4e15fa0 RCX: 00007f82f4b9ce59
[  561.694896][T14578] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  561.694905][T14578] RBP: 00007f82f4c32d6f R08: 0000000000000000 R09: 0000000000000000
[  561.694914][T14578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  561.694923][T14578] R13: 00007f82f4e16038 R14: 00007f82f4e15fa0 R15: 00007fff23b1b1c8
[  561.694950][T14578]  </TASK>
[  562.207432][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  562.215363][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  562.428356][T14589] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  563.467511][T14617] phram: parameter too long
[  563.991861][T14628] netlink: 'syz.1.1724': attribute type 1 has an invalid length.
[  564.552280][T14648] netlink: 'syz.4.1729': attribute type 11 has an invalid length.
[  565.019271][T14656] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1731'.
[  565.241276][T14675] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  566.526964][T14694] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  567.049007][ T4945] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  567.057079][ T4945] Bluetooth: hci1: Invalid handle: 0x3a4a > 0x0eff
[  567.662603][T11591] netdevsim netdevsim1335 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  568.694678][T14744] netlink: 146 bytes leftover after parsing attributes in process `syz.0.1745'.
[  569.146527][T14759] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  570.896120][T14720] Process accounting resumed
[  571.013182][ T4945] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  571.810841][T14795] snd_virmidi snd_virmidi.0: control 53842:9:2:y�:0 is already present
[  573.482607][T14787] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  573.488752][ T4945] Bluetooth: hci0: command 0x2016 tx timeout
[  574.337287][T14787] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  574.366285][T14787] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  574.397315][T14787] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  574.420851][T14787] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  574.997593][T14847] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  575.548524][ T4945] Bluetooth: hci0: command 0x2016 tx timeout
[  576.424086][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  576.430257][ T5633] Bluetooth: hci4: command 0x0c1a tx timeout
[  576.436988][ T5633] Bluetooth: hci1: command 0x0c1a tx timeout
[  576.446101][T14882] snd_virmidi snd_virmidi.0: control 53842:9:2:y�:0 is already present
[  579.753095][T14924] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  581.929832][T14949] snd_virmidi snd_virmidi.0: control 53842:9:2:y�:0 is already present
[  584.877993][T14994] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  585.037784][T14997] random: crng reseeded on system resumption
[  585.092684][T14997] Restarting kernel threads ...
[  585.122450][T14997] Done restarting kernel threads.
[  586.131164][T15010] netlink: 'syz.4.1790': attribute type 5 has an invalid length.
[  586.179909][T15010] netlink: 4158 bytes leftover after parsing attributes in process `syz.4.1790'.
[  586.216544][T15012] netlink: 'syz.4.1790': attribute type 5 has an invalid length.
[  586.264840][T15012] netlink: 4158 bytes leftover after parsing attributes in process `syz.4.1790'.
[  586.425230][T15019] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1793'.
[  586.705948][T15025] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  587.266489][T15014] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1792'.
[  594.315150][ T5639] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  594.327420][ T5639] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  594.338722][ T5639] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  594.347943][ T5639] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  594.359337][ T5639] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  595.323098][T15042] bridge0: port 1(bridge_slave_0) entered blocking state
[  595.347100][T15042] bridge0: port 1(bridge_slave_0) entered disabled state
[  595.364729][T15042] bridge_slave_0: entered allmulticast mode
[  595.373416][T15042] bridge_slave_0: entered promiscuous mode
[  595.383952][T15042] bridge0: port 2(bridge_slave_1) entered blocking state
[  595.391409][T15042] bridge0: port 2(bridge_slave_1) entered disabled state
[  595.399803][T15042] bridge_slave_1: entered allmulticast mode
[  595.407048][T15042] bridge_slave_1: entered promiscuous mode
[  595.435235][T15042] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  595.449451][T15042] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  595.476813][T15042] team0: Port device team_slave_0 added
[  595.485759][T15042] team0: Port device team_slave_1 added
[  595.509016][T15042] batman_adv: batadv0: Adding interface: batadv_slave_0
[  595.516079][T15042] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  595.542483][T15042] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  595.555726][T15042] batman_adv: batadv0: Adding interface: batadv_slave_1
[  595.562765][T15042] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  595.590142][T15042] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  595.633055][T15042] hsr_slave_0: entered promiscuous mode
[  595.639487][T15042] hsr_slave_1: entered promiscuous mode
[  595.646039][T15042] debugfs: 'hsr0' already exists in 'hsr'
[  595.651816][T15042] Cannot create hsr debugfs directory
[  595.807885][T15042] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  595.818187][T15042] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  595.826906][T15042] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  595.837228][T15042] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  595.845328][T15042] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  595.856299][T15042] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  595.864827][T15042] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  595.877110][T15042] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  595.904940][T15042] bridge0: port 2(bridge_slave_1) entered blocking state
[  595.912074][T15042] bridge0: port 2(bridge_slave_1) entered forwarding state
[  595.919522][T15042] bridge0: port 1(bridge_slave_0) entered blocking state
[  595.926625][T15042] bridge0: port 1(bridge_slave_0) entered forwarding state
[  595.983114][T15042] 8021q: adding VLAN 0 to HW filter on device bond0
[  595.999489][T11594] bridge0: port 1(bridge_slave_0) entered disabled state
[  596.007876][T11594] bridge0: port 2(bridge_slave_1) entered disabled state
[  596.024391][T15042] 8021q: adding VLAN 0 to HW filter on device team0
[  596.036359][ T8512] bridge0: port 1(bridge_slave_0) entered blocking state
[  596.043623][ T8512] bridge0: port 1(bridge_slave_0) entered forwarding state
[  596.070874][ T8512] bridge0: port 2(bridge_slave_1) entered blocking state
[  596.078038][ T8512] bridge0: port 2(bridge_slave_1) entered forwarding state
[  596.112768][T15042] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  596.124792][T15042] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  596.401894][T14881] Bluetooth: hci3: command tx timeout
[  596.432897][T15042] 8021q: adding VLAN 0 to HW filter on device batadv0
[  596.622626][T15042] veth0_vlan: entered promiscuous mode
[  596.635029][T15042] veth1_vlan: entered promiscuous mode
[  596.664028][T15042] veth0_macvtap: entered promiscuous mode
[  596.673581][T15042] veth1_macvtap: entered promiscuous mode
[  596.691838][T15042] batman_adv: batadv0: Interface activated: batadv_slave_0
[  596.705430][T15042] batman_adv: batadv0: Interface activated: batadv_slave_1
[  596.724533][ T8512] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  596.734947][ T8512] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  596.775607][ T8512] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  596.808093][ T8512] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  596.870724][T11594] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  596.890207][T11594] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  596.919642][ T8512] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  596.932219][ T8512] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  598.469472][T14881] Bluetooth: hci3: command tx timeout
[  598.754541][T15104] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  599.928308][T15130] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1804'.
[  599.964704][T15130] �: renamed from sit0 (while UP)
[  600.448016][T15139] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1810'.
[  600.538461][T14881] Bluetooth: hci3: command tx timeout
[  600.605007][T14881] Bluetooth: hci2: unexpected event for opcode 0x7c89
[  601.350250][T15145] netlink: 146 bytes leftover after parsing attributes in process `syz.5.1806'.
[  601.576560][T15147] Process accounting paused
[  602.206953][T15180] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  602.237272][   T30] audit: type=1326 audit(1779731925.032:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15170 comm="syz.3.1814" exe="/root/ci-qemu-gce-upstream-auto/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f592259ce59 code=0x0
[  602.558901][ T5639] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  602.572758][ T5639] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  602.582871][ T5639] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  602.590796][ T5639] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  602.603812][ T5639] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  602.610966][ T4945] Bluetooth: hci3: command tx timeout
[  604.677192][ T5639] Bluetooth: hci5: command tx timeout
[  605.347027][T15186] bridge0: port 1(bridge_slave_0) entered blocking state
[  605.390321][T15186] bridge0: port 1(bridge_slave_0) entered disabled state
[  605.436726][T15186] bridge_slave_0: entered allmulticast mode
[  605.477819][T15186] bridge_slave_0: entered promiscuous mode
[  605.806809][T15186] bridge0: port 2(bridge_slave_1) entered blocking state
[  605.864460][T15186] bridge0: port 2(bridge_slave_1) entered disabled state
[  605.898588][T15186] bridge_slave_1: entered allmulticast mode
[  605.932513][T15186] bridge_slave_1: entered promiscuous mode
[  606.122933][T15186] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  606.201732][T15186] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  606.260413][T15265] FAULT_INJECTION: forcing a failure.
[  606.260413][T15265] name failslab, interval 1, probability 0, space 0, times 0
[  606.305656][T15265] CPU: 0 UID: 0 PID: 15265 Comm: syz.3.1828 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  606.305691][T15265] Tainted: [L]=SOFTLOCKUP
[  606.305697][T15265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  606.305707][T15265] Call Trace:
[  606.305713][T15265]  <TASK>
[  606.305719][T15265]  dump_stack_lvl+0x100/0x190
[  606.305745][T15265]  should_fail_ex.cold+0x5/0xa
[  606.305766][T15265]  ? security_inode_init_security+0x113/0x370
[  606.305872][T15265]  should_failslab+0xc2/0x120
[  606.305892][T15265]  __kmalloc_noprof+0xe0/0x850
[  606.305912][T15265]  security_inode_init_security+0x113/0x370
[  606.305935][T15265]  ? __pfx_shmem_initxattrs+0x10/0x10
[  606.305955][T15265]  ? __pfx_security_inode_init_security+0x10/0x10
[  606.305979][T15265]  ? make_vfsgid+0xf1/0x140
[  606.305998][T15265]  shmem_mknod+0x2ce/0x480
[  606.306029][T15265]  ? __pfx_shmem_mknod+0x10/0x10
[  606.306054][T15265]  vfs_create+0x301/0x6c0
[  606.306072][T15265]  filename_mknodat+0x2de/0x7f0
[  606.306094][T15265]  ? __pfx_filename_mknodat+0x10/0x10
[  606.306113][T15265]  ? strncpy_from_user+0x19d/0x2d0
[  606.306175][T15265]  ? do_getname+0x191/0x390
[  606.306203][T15265]  __x64_sys_mknod+0x8f/0xc0
[  606.306226][T15265]  do_syscall_64+0x10b/0x830
[  606.306242][T15265]  ? clear_bhb_loop+0x40/0x90
[  606.306263][T15265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  606.306278][T15265] RIP: 0033:0x7f592259ce59
[  606.306293][T15265] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  606.306307][T15265] RSP: 002b:00007f5923448028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  606.306323][T15265] RAX: ffffffffffffffda RBX: 00007f5922816090 RCX: 00007f592259ce59
[  606.306333][T15265] RDX: 0000000000000009 RSI: 0000000000000002 RDI: 0000000000000000
[  606.306342][T15265] RBP: 00007f5922632d6f R08: 0000000000000000 R09: 0000000000000000
[  606.306351][T15265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  606.306360][T15265] R13: 00007f5922816128 R14: 00007f5922816090 R15: 00007fff38d2e678
[  606.306381][T15265]  </TASK>
[  606.813052][ T5639] Bluetooth: hci5: command tx timeout
[  607.187433][T15186] team0: Port device team_slave_0 added
[  607.216667][T15186] team0: Port device team_slave_1 added
[  607.391986][T15186] batman_adv: batadv0: Adding interface: batadv_slave_0
[  607.426477][T15186] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  607.569951][T15268] random: crng reseeded on system resumption
[  607.586651][T15186] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  607.633029][T15270] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  607.644462][T15186] batman_adv: batadv0: Adding interface: batadv_slave_1
[  607.660307][T15268] hub 1-0:1.0: USB hub found
[  607.672666][T15186] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  607.710101][T15268] hub 1-0:1.0: 1 port detected
[  607.786975][T15186] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  608.008815][T15186] hsr_slave_0: entered promiscuous mode
[  608.045785][T15186] hsr_slave_1: entered promiscuous mode
[  608.084606][T15186] debugfs: 'hsr0' already exists in 'hsr'
[  608.112388][T15186] Cannot create hsr debugfs directory
[  608.815675][ T5639] Bluetooth: hci5: command tx timeout
[  609.789340][T15186] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  609.864170][T15186] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  609.905301][T15186] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  609.973293][T15186] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  610.023632][T15186] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  610.077762][T15186] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  610.116863][T15186] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  610.199066][T15186] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  610.500830][T15327] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1839'.
[  610.546024][T15186] 8021q: adding VLAN 0 to HW filter on device bond0
[  610.729614][T15186] 8021q: adding VLAN 0 to HW filter on device team0
[  610.834539][T11594] bridge0: port 1(bridge_slave_0) entered blocking state
[  610.841697][T11594] bridge0: port 1(bridge_slave_0) entered forwarding state
[  610.884843][ T5639] Bluetooth: hci5: command tx timeout
[  610.976528][T11606] bridge0: port 2(bridge_slave_1) entered blocking state
[  610.983745][T11606] bridge0: port 2(bridge_slave_1) entered forwarding state
[  611.148925][T15335] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  612.553261][T15186] 8021q: adding VLAN 0 to HW filter on device batadv0
[  613.406917][T15186] veth0_vlan: entered promiscuous mode
[  613.459521][T15186] veth1_vlan: entered promiscuous mode
[  613.817247][T15186] veth0_macvtap: entered promiscuous mode
[  613.912847][T15186] veth1_macvtap: entered promiscuous mode
[  614.017370][T15186] batman_adv: batadv0: Interface activated: batadv_slave_0
[  614.111493][T15186] batman_adv: batadv0: Interface activated: batadv_slave_1
[  614.176831][T11594] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  614.211533][T11594] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  614.283006][T11594] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  614.328920][T11594] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  614.573699][T11611] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  614.622031][T11611] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  614.752497][T11591] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  614.797221][T15422] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  614.817239][T11591] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  615.360790][T15428] netlink: 330 bytes leftover after parsing attributes in process `syz.6.1817'.
[  615.420800][T15428] �: renamed from sit0 (while UP)
[  615.616307][T15437] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1855'.
[  617.628692][T15478] FAULT_INJECTION: forcing a failure.
[  617.628692][T15478] name failslab, interval 1, probability 0, space 0, times 0
[  617.657303][T15478] CPU: 0 UID: 0 PID: 15478 Comm: syz.6.1863 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  617.657331][T15478] Tainted: [L]=SOFTLOCKUP
[  617.657336][T15478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  617.657346][T15478] Call Trace:
[  617.657351][T15478]  <TASK>
[  617.657358][T15478]  dump_stack_lvl+0x100/0x190
[  617.657388][T15478]  should_fail_ex.cold+0x5/0xa
[  617.657408][T15478]  ? __register_sysctl_table+0xbe4/0x1650
[  617.657428][T15478]  should_failslab+0xc2/0x120
[  617.657446][T15478]  __kmalloc_noprof+0xe0/0x850
[  617.657465][T15478]  __register_sysctl_table+0xbe4/0x1650
[  617.657489][T15478]  ? __pfx___register_sysctl_table+0x10/0x10
[  617.657508][T15478]  ? is_module_address+0x69/0xf0
[  617.657523][T15478]  ? register_net_sysctl_sz+0x222/0x430
[  617.657544][T15478]  __addrconf_sysctl_register+0x1a2/0x360
[  617.657576][T15478]  ? __pfx___addrconf_sysctl_register+0x10/0x10
[  617.657603][T15478]  ? __asan_memcpy+0x3c/0x60
[  617.657628][T15478]  addrconf_init_net+0x4fb/0x8e0
[  617.657651][T15478]  ? __pfx_addrconf_init_net+0x10/0x10
[  617.657672][T15478]  ops_init+0x1e2/0x5f0
[  617.657694][T15478]  setup_net+0x118/0x3a0
[  617.657714][T15478]  ? __pfx_setup_net+0x10/0x10
[  617.657733][T15478]  ? mutex_init_lockdep+0xf1/0x120
[  617.657754][T15478]  copy_net_ns+0x46f/0x7c0
[  617.657776][T15478]  create_new_namespaces+0x3ea/0xac0
[  617.657801][T15478]  unshare_nsproxy_namespaces+0xf2/0x220
[  617.657823][T15478]  ksys_unshare+0x438/0xab0
[  617.657846][T15478]  ? __pfx_ksys_unshare+0x10/0x10
[  617.657866][T15478]  ? xfd_validate_state+0x129/0x190
[  617.657883][T15478]  ? arch_syscall_is_vdso_sigreturn+0xb6/0x200
[  617.657906][T15478]  ? syscall_user_dispatch+0x76/0x130
[  617.657924][T15478]  __x64_sys_unshare+0x31/0x40
[  617.657945][T15478]  do_syscall_64+0x10b/0x830
[  617.657959][T15478]  ? clear_bhb_loop+0x40/0x90
[  617.657977][T15478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  617.657992][T15478] RIP: 0033:0x7fac19b9ce59
[  617.658006][T15478] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  617.658021][T15478] RSP: 002b:00007fac1a9d1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  617.658036][T15478] RAX: ffffffffffffffda RBX: 00007fac19e15fa0 RCX: 00007fac19b9ce59
[  617.658046][T15478] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  617.658055][T15478] RBP: 00007fac19c32d6f R08: 0000000000000000 R09: 0000000000000000
[  617.658065][T15478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  617.658073][T15478] R13: 00007fac19e16038 R14: 00007fac19e15fa0 R15: 00007fff1567a1f8
[  617.658094][T15478]  </TASK>
[  617.658101][T15478] sysctl could not get directory: /net/ipv6/conf/all -12
[  618.233092][T15481] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1865'.
[  618.510942][T15491] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  619.133890][T15501] MTRR 1 not used
[  620.314280][T15518] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  621.175495][T15525] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1872'.
[  621.584780][T15533] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  621.907185][T15539] netlink: 330 bytes leftover after parsing attributes in process `syz.6.1875'.
[  622.280985][T15546] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  623.306841][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  623.314971][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  623.652316][T15566] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1881'.
[  623.685815][T15566] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  623.709342][T15566] batman_adv: batadv0: Removing interface: batadv_slave_0
[  623.747865][T15566] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  623.765688][T15566] batman_adv: batadv0: Removing interface: batadv_slave_1
[  625.278926][T15586] netlink: 330 bytes leftover after parsing attributes in process `syz.6.1885'.
[  625.702511][   T30] audit: type=1800 audit(1779736044.625:15): pid=15592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1886" name="lu_gp_id" dev="configfs" ino=58615 res=0 errno=0
[  625.907474][T15592] ALUA lu_gp_id: 393216 exceeds maximum: 0x0000ffff
[  625.928270][T15596] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1887'.
[  626.278706][T15605] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  628.223520][T15635] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  629.938124][T15658] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1899'.
[  630.447194][T15670] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1902'.
[  630.505761][T15670] macvlan0: entered promiscuous mode
[  630.534602][T15670] macvlan0: entered allmulticast mode
[  630.555685][T15670] veth1_vlan: entered allmulticast mode
[  631.119836][T15681] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  632.129783][ T5629] Process accounting resumed
[  632.631105][ T5639] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  632.658654][ T5639] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  632.673343][ T5639] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  632.684892][ T5639] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  632.697309][ T5639] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  632.707713][ T5639] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  634.463741][T15730] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1912'.
[  634.760919][T14881] Bluetooth: hci6: command tx timeout
[  634.855273][T15741] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  636.103380][T15709] bridge0: port 1(bridge_slave_0) entered blocking state
[  636.132657][T15709] bridge0: port 1(bridge_slave_0) entered disabled state
[  636.170659][T15709] bridge_slave_0: entered allmulticast mode
[  636.207366][T15709] bridge_slave_0: entered promiscuous mode
[  636.247185][T15709] bridge0: port 2(bridge_slave_1) entered blocking state
[  636.293210][T15709] bridge0: port 2(bridge_slave_1) entered disabled state
[  636.320906][T15709] bridge_slave_1: entered allmulticast mode
[  636.353046][T15709] bridge_slave_1: entered promiscuous mode
[  636.573348][T15709] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  636.626276][T15709] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  636.829890][ T5639] Bluetooth: hci6: command tx timeout
[  636.976957][T15709] team0: Port device team_slave_0 added
[  637.021540][T15709] team0: Port device team_slave_1 added
[  637.332554][T15709] batman_adv: batadv0: Adding interface: batadv_slave_0
[  637.354440][T15709] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  637.447140][T15709] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  637.490285][T15709] batman_adv: batadv0: Adding interface: batadv_slave_1
[  637.514811][T15709] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  637.606431][T15709] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  638.097142][T15709] hsr_slave_0: entered promiscuous mode
[  638.118204][T15709] hsr_slave_1: entered promiscuous mode
[  638.140307][T15709] debugfs: 'hsr0' already exists in 'hsr'
[  638.159991][T15709] Cannot create hsr debugfs directory
[  638.899209][ T5639] Bluetooth: hci6: command tx timeout
[  639.003620][T15773] can: request_module (can-proto-0) failed.
[  639.164999][T15709] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  639.209238][T15709] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  639.238088][T15709] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  639.282240][T15709] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  639.325535][T15709] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  639.335786][T15709] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  639.360256][T15709] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  639.371970][T15709] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  639.607300][T15779] FAULT_INJECTION: forcing a failure.
[  639.607300][T15779] name failslab, interval 1, probability 0, space 0, times 0
[  639.702011][T15779] CPU: 0 UID: 0 PID: 15779 Comm: syz.5.1920 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  639.702039][T15779] Tainted: [L]=SOFTLOCKUP
[  639.702045][T15779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  639.702054][T15779] Call Trace:
[  639.702060][T15779]  <TASK>
[  639.702066][T15779]  dump_stack_lvl+0x100/0x190
[  639.702089][T15779]  should_fail_ex.cold+0x5/0xa
[  639.702109][T15779]  should_failslab+0xc2/0x120
[  639.702129][T15779]  __kmalloc_cache_noprof+0x7a/0x6f0
[  639.702151][T15779]  ? kobject_uevent_env+0x263/0x18b0
[  639.702169][T15779]  ? kobject_init_and_add+0x129/0x180
[  639.702191][T15779]  kobject_uevent_env+0x263/0x18b0
[  639.702217][T15779]  nfs_netns_sysfs_setup+0x173/0x200
[  639.702236][T15779]  nfs_net_init+0x10a/0x340
[  639.702254][T15779]  ? __pfx_nfs_net_init+0x10/0x10
[  639.702270][T15779]  ops_init+0x1e2/0x5f0
[  639.702292][T15779]  setup_net+0x118/0x3a0
[  639.702311][T15779]  ? __pfx_setup_net+0x10/0x10
[  639.702330][T15779]  ? mutex_init_lockdep+0xf1/0x120
[  639.702355][T15779]  copy_net_ns+0x46f/0x7c0
[  639.702378][T15779]  create_new_namespaces+0x3ea/0xac0
[  639.702403][T15779]  unshare_nsproxy_namespaces+0xf2/0x220
[  639.702425][T15779]  ksys_unshare+0x438/0xab0
[  639.702449][T15779]  ? __pfx_ksys_unshare+0x10/0x10
[  639.702469][T15779]  ? xfd_validate_state+0x129/0x190
[  639.702491][T15779]  __x64_sys_unshare+0x31/0x40
[  639.702512][T15779]  do_syscall_64+0x10b/0x830
[  639.702526][T15779]  ? clear_bhb_loop+0x40/0x90
[  639.702543][T15779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.702558][T15779] RIP: 0033:0x7fdc0399ce59
[  639.702571][T15779] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  639.702586][T15779] RSP: 002b:00007fdc04912028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  639.702601][T15779] RAX: ffffffffffffffda RBX: 00007fdc03c16090 RCX: 00007fdc0399ce59
[  639.702611][T15779] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  639.702619][T15779] RBP: 00007fdc03a32d6f R08: 0000000000000000 R09: 0000000000000000
[  639.702629][T15779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  639.702638][T15779] R13: 00007fdc03c16128 R14: 00007fdc03c16090 R15: 00007ffc68b76c48
[  639.702658][T15779]  </TASK>
[  640.036924][T15792] netlink: 326 bytes leftover after parsing attributes in process `syz.6.1921'.
[  640.586900][T15796] netlink: 330 bytes leftover after parsing attributes in process `syz.6.1922'.
[  640.668428][T15709] 8021q: adding VLAN 0 to HW filter on device bond0
[  640.767547][T15709] 8021q: adding VLAN 0 to HW filter on device team0
[  640.832581][T11606] bridge0: port 1(bridge_slave_0) entered blocking state
[  640.839776][T11606] bridge0: port 1(bridge_slave_0) entered forwarding state
[  640.938869][T11606] bridge0: port 2(bridge_slave_1) entered blocking state
[  640.946017][T11606] bridge0: port 2(bridge_slave_1) entered forwarding state
[  640.971560][ T5639] Bluetooth: hci6: command tx timeout
[  641.126585][T15804] input: jJǸ-���9�1aܥdם�Q�	J�z�n�:������hǙn�?aԙ/rk
[  641.126585][T15804] l6���x�A�b6�Yh$X�.=��_ as /devices/virtual/input/input17
[  641.808260][T15824] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1927'.
[  642.022405][T15709] 8021q: adding VLAN 0 to HW filter on device batadv0
[  642.037509][ T5639] Bluetooth: hci5: unexpected event 0x1c length: 725 > 5
[  642.137632][T15833] FAULT_INJECTION: forcing a failure.
[  642.137632][T15833] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  642.137685][T15833] CPU: 0 UID: 0 PID: 15833 Comm: syz.6.1928 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  642.137709][T15833] Tainted: [L]=SOFTLOCKUP
[  642.137714][T15833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  642.137724][T15833] Call Trace:
[  642.137729][T15833]  <TASK>
[  642.137735][T15833]  dump_stack_lvl+0x100/0x190
[  642.137756][T15833]  should_fail_ex.cold+0x5/0xa
[  642.137773][T15833]  ? prepare_alloc_pages+0x16d/0x5f0
[  642.137796][T15833]  should_fail_alloc_page+0xeb/0x140
[  642.137816][T15833]  prepare_alloc_pages+0x1f0/0x5f0
[  642.137839][T15833]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[  642.137855][T15833]  ? kasan_save_track+0x14/0x30
[  642.137870][T15833]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  642.137884][T15833]  ? security_file_alloc+0x34/0x2c0
[  642.137901][T15833]  ? init_file+0x95/0x480
[  642.137921][T15833]  ? alloc_empty_file+0x79/0x1c0
[  642.137940][T15833]  ? alloc_file_pseudo+0x13a/0x230
[  642.137960][T15833]  ? ioctx_alloc+0x5d6/0x21a0
[  642.137980][T15833]  ? __x64_sys_io_setup+0xc9/0x220
[  642.138000][T15833]  ? do_syscall_64+0x10b/0x830
[  642.138013][T15833]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  642.138035][T15833]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  642.138064][T15833]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  642.138087][T15833]  ? policy_nodemask+0xed/0x4f0
[  642.138114][T15833]  alloc_pages_mpol+0x1fb/0x540
[  642.138133][T15833]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  642.138152][T15833]  ? percpu_counter_add_batch+0xb9/0x230
[  642.138171][T15833]  ? errseq_sample+0x51/0x70
[  642.138251][T15833]  ? ioctx_alloc+0x6a5/0x21a0
[  642.138271][T15833]  ___kmalloc_large_node+0xe5/0x120
[  642.138293][T15833]  __kmalloc_large_node_noprof+0x1c/0x70
[  642.138314][T15833]  __kmalloc_noprof+0x5be/0x850
[  642.138332][T15833]  ioctx_alloc+0x6a5/0x21a0
[  642.138359][T15833]  ? find_held_lock+0x2b/0x80
[  642.138378][T15833]  ? __pfx_ioctx_alloc+0x10/0x10
[  642.138404][T15833]  __x64_sys_io_setup+0xc9/0x220
[  642.138426][T15833]  do_syscall_64+0x10b/0x830
[  642.138440][T15833]  ? clear_bhb_loop+0x40/0x90
[  642.138457][T15833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  642.138473][T15833] RIP: 0033:0x7fac19b9ce59
[  642.138486][T15833] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  642.138500][T15833] RSP: 002b:00007fac1a9b0028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  642.138515][T15833] RAX: ffffffffffffffda RBX: 00007fac19e16090 RCX: 00007fac19b9ce59
[  642.138525][T15833] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 000000000000ffff
[  642.138535][T15833] RBP: 00007fac19c32d6f R08: 0000000000000000 R09: 0000000000000000
[  642.138544][T15833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  642.138559][T15833] R13: 00007fac19e16128 R14: 00007fac19e16090 R15: 00007fff1567a1f8
[  642.138579][T15833]  </TASK>
[  642.668729][T15845] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  642.754732][T15709] veth0_vlan: entered promiscuous mode
[  642.765703][T15709] veth1_vlan: entered promiscuous mode
[  642.818115][T15709] veth0_macvtap: entered promiscuous mode
[  642.826659][T15709] veth1_macvtap: entered promiscuous mode
[  642.863132][T15709] batman_adv: batadv0: Interface activated: batadv_slave_0
[  642.881201][T15709] batman_adv: batadv0: Interface activated: batadv_slave_1
[  642.894829][T11593] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  642.894879][T11593] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  642.894907][T11593] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  642.894932][T11593] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  643.104976][T11593] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  643.105000][T11593] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  643.262042][T11593] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  643.262065][T11593] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  643.549438][T15849] FAULT_INJECTION: forcing a failure.
[  643.549438][T15849] name fail_futex, interval 1, probability 0, space 0, times 0
[  643.549475][T15849] CPU: 0 UID: 0 PID: 15849 Comm: syz.6.1931 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  643.549498][T15849] Tainted: [L]=SOFTLOCKUP
[  643.549504][T15849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  643.549513][T15849] Call Trace:
[  643.549519][T15849]  <TASK>
[  643.549525][T15849]  dump_stack_lvl+0x100/0x190
[  643.549549][T15849]  should_fail_ex.cold+0x5/0xa
[  643.549571][T15849]  get_futex_key+0x1d2/0x1510
[  643.549590][T15849]  ? __pfx_get_futex_key+0x10/0x10
[  643.549604][T15849]  ? futex_hash+0x2ad/0x370
[  643.549619][T15849]  ? futex_hash+0x141/0x370
[  643.549636][T15849]  futex_wake+0xea/0x530
[  643.549657][T15849]  ? __lock_acquire+0x4a5/0x2630
[  643.549673][T15849]  ? __pfx_futex_wake+0x10/0x10
[  643.549700][T15849]  do_futex+0x32b/0x350
[  643.549717][T15849]  ? __pfx_do_futex+0x10/0x10
[  643.549735][T15849]  ? __fget_files+0x21f/0x3d0
[  643.549755][T15849]  __x64_sys_futex+0x34f/0x4d0
[  643.549774][T15849]  ? __pfx___x64_sys_futex+0x10/0x10
[  643.549790][T15849]  ? ksys_write+0x1ac/0x250
[  643.549810][T15849]  ? rcu_is_watching+0x12/0xc0
[  643.549830][T15849]  do_syscall_64+0x10b/0x830
[  643.549845][T15849]  ? clear_bhb_loop+0x40/0x90
[  643.549863][T15849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  643.549890][T15849] RIP: 0033:0x7fac19b9ce59
[  643.549904][T15849] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  643.549920][T15849] RSP: 002b:00007fac1a9d10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  643.549936][T15849] RAX: ffffffffffffffda RBX: 00007fac19e15fa8 RCX: 00007fac19b9ce59
[  643.549947][T15849] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fac19e15fac
[  643.549956][T15849] RBP: 00007fac19e15fa0 R08: 0000000000000001 R09: 0000000000000000
[  643.549965][T15849] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  643.549974][T15849] R13: 00007fac19e16038 R14: 00007fff1567a110 R15: 00007fff1567a1f8
[  643.549993][T15849]  </TASK>
[  644.561041][T15860] netlink: 330 bytes leftover after parsing attributes in process `syz.6.1932'.
[  644.797388][T15866] random: crng reseeded on system resumption
[  644.876109][T15866] hub 1-0:1.0: USB hub found
[  644.876782][T15866] hub 1-0:1.0: 1 port detected
[  645.741964][T15877] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  645.977760][T15879] netlink: 330 bytes leftover after parsing attributes in process `syz.7.1937'.
[  646.211037][T15890] sg_write: data in/out 262108/258 bytes for SCSI command 0x61-- guessing data in;
[  646.211037][T15890]    program syz.7.1939 not setting count and/or reply_len properly
[  646.996204][T15899] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  648.299907][T15921] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1944'.
[  648.692771][T15925] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1945'.
[  648.722878][T15925] ipvlan1: entered promiscuous mode
[  648.736012][   T30] audit: type=1800 audit(1779736067.775:16): pid=15915 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1943" name="discovery_nqn" dev="configfs" ino=61572 res=0 errno=0
[  648.761288][T15925] ipvlan1: entered allmulticast mode
[  648.791139][T15925] veth0_vlan: entered allmulticast mode
[  648.995448][T15929] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  649.767050][T15940] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  650.370124][T15946] nvme_fabrics: unknown parameter or missing value '�@�' in ctrl creation request
[  651.305726][T15959] futex_wake_op: syz.7.1952 tries to shift op by -2048; fix this program
[  651.331683][T15959] 0x000000000001-0x000000020000 : ""
[  651.353774][T15959] ftl_cs: FTL header corrupt!
[  652.253196][T15969] blktrace: Concurrent blktraces are not allowed on loop2
[  652.368764][T15971] netlink: 330 bytes leftover after parsing attributes in process `syz.6.1954'.
[  652.832572][T14881] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  652.849556][T14881] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  652.859434][T14881] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  652.870241][T14881] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  652.886906][T14881] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  653.033622][T15976] ubi0: attaching mtd0
[  653.056515][T15976] ubi0: scanning is finished
[  653.079666][T15976] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  653.242658][T15976] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  653.706185][T15998] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1959'.
[  653.895655][T15998] veth0_macvtap: left promiscuous mode
[  653.918715][T15998] macvtap0: entered promiscuous mode
[  653.939940][T15998] macvtap0: entered allmulticast mode
[  654.976021][T14881] Bluetooth: hci7: command tx timeout
[  655.446799][T15978] bridge0: port 1(bridge_slave_0) entered blocking state
[  655.479926][T15978] bridge0: port 1(bridge_slave_0) entered disabled state
[  655.514547][T15978] bridge_slave_0: entered allmulticast mode
[  655.553385][T15978] bridge_slave_0: entered promiscuous mode
[  655.615423][T15978] bridge0: port 2(bridge_slave_1) entered blocking state
[  655.643263][T16032] futex_wake_op: syz.6.1963 tries to shift op by -2048; fix this program
[  655.657033][T15978] bridge0: port 2(bridge_slave_1) entered disabled state
[  655.675734][T15978] bridge_slave_1: entered allmulticast mode
[  655.704500][T15978] bridge_slave_1: entered promiscuous mode
[  655.782389][T16030] 0x000000000001-0x000000020000 : ""
[  655.827655][T16030] ftl_cs: FTL header corrupt!
[  655.864704][T15978] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  655.945678][T15978] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  656.195548][T15978] team0: Port device team_slave_0 added
[  656.234368][T15978] team0: Port device team_slave_1 added
[  656.334156][T15978] batman_adv: batadv0: Adding interface: batadv_slave_0
[  656.362836][T15978] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  656.467030][T15978] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  656.505800][T15978] batman_adv: batadv0: Adding interface: batadv_slave_1
[  656.531451][T15978] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  656.614920][T15978] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  656.750567][T15978] hsr_slave_0: entered promiscuous mode
[  656.760369][T16041] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  656.776994][T15978] hsr_slave_1: entered promiscuous mode
[  656.792481][T15978] debugfs: 'hsr0' already exists in 'hsr'
[  656.812409][T15978] Cannot create hsr debugfs directory
[  657.044219][T14881] Bluetooth: hci7: command tx timeout
[  658.094994][T15978] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  658.130341][T15978] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  658.157578][T15978] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  658.185246][T15978] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  658.212036][T15978] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  658.256032][T15978] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  658.283689][T15978] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  658.317253][T15978] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  658.546152][T16036] kexec: Could not allocate control_code_buffer
[  658.580997][T15978] 8021q: adding VLAN 0 to HW filter on device bond0
[  658.688352][T15978] 8021q: adding VLAN 0 to HW filter on device team0
[  658.813466][T11606] bridge0: port 1(bridge_slave_0) entered blocking state
[  658.820621][T11606] bridge0: port 1(bridge_slave_0) entered forwarding state
[  658.902674][T11606] bridge0: port 2(bridge_slave_1) entered blocking state
[  658.909857][T11606] bridge0: port 2(bridge_slave_1) entered forwarding state
[  659.111565][T14881] Bluetooth: hci7: command tx timeout
[  660.230129][T15978] 8021q: adding VLAN 0 to HW filter on device batadv0
[  660.646804][T16070] y9��vF��0�ك7`�yD�Å���M��R��=>~)��e\���q�s�0��#J�a'M�.V7���|p�tj�m���쭉I)St��
[  660.784802][T15978] veth0_vlan: entered promiscuous mode
[  660.872537][T15978] veth1_vlan: entered promiscuous mode
[  660.969530][T15978] veth0_macvtap: entered promiscuous mode
[  661.127916][T15978] veth1_macvtap: entered promiscuous mode
[  661.179640][T14881] Bluetooth: hci7: command tx timeout
[  661.207677][T15978] batman_adv: batadv0: Interface activated: batadv_slave_0
[  661.280186][T15978] batman_adv: batadv0: Interface activated: batadv_slave_1
[  661.334606][T11591] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  661.367705][T11591] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  661.410715][T11591] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  661.450812][T11591] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  661.652262][T11591] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  661.700999][T11591] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  661.791056][T11604] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  661.823144][T11604] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  662.775909][T16108] FAULT_INJECTION: forcing a failure.
[  662.775909][T16108] name failslab, interval 1, probability 0, space 0, times 0
[  662.870793][T16108] CPU: 0 UID: 0 PID: 16108 Comm: syz.8.1970 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  662.870821][T16108] Tainted: [L]=SOFTLOCKUP
[  662.870827][T16108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  662.870836][T16108] Call Trace:
[  662.870843][T16108]  <TASK>
[  662.870849][T16108]  dump_stack_lvl+0x100/0x190
[  662.870877][T16108]  should_fail_ex.cold+0x5/0xa
[  662.870899][T16108]  ? snd_pcm_plugin_build+0x64/0x650
[  662.870917][T16108]  should_failslab+0xc2/0x120
[  662.870936][T16108]  __kmalloc_noprof+0xe0/0x850
[  662.870952][T16108]  ? snd_pcm_hw_params+0x241/0x1bf0
[  662.870975][T16108]  snd_pcm_plugin_build+0x64/0x650
[  662.870997][T16108]  snd_pcm_plugin_build_io+0x207/0x5f0
[  662.871015][T16108]  ? __pfx_snd_pcm_plugin_build_io+0x10/0x10
[  662.871033][T16108]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  662.871063][T16108]  snd_pcm_oss_change_params_locked+0x2eb3/0x39f0
[  662.871105][T16108]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  662.871133][T16108]  ? __pfx___mutex_lock+0x10/0x10
[  662.871161][T16108]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  662.871186][T16108]  snd_pcm_oss_sync+0x265/0x840
[  662.871204][T16108]  snd_pcm_oss_release+0x238/0x300
[  662.871219][T16108]  ? __pfx_snd_pcm_oss_release+0x10/0x10
[  662.871235][T16108]  __fput+0x3ff/0xb50
[  662.871261][T16108]  task_work_run+0x150/0x240
[  662.871278][T16108]  ? __pfx_task_work_run+0x10/0x10
[  662.871295][T16108]  ? rcu_is_watching+0x12/0xc0
[  662.871316][T16108]  exit_to_user_mode_loop+0x107/0x4f0
[  662.871334][T16108]  ? rcu_is_watching+0x12/0xc0
[  662.871354][T16108]  do_syscall_64+0x6f2/0x830
[  662.871367][T16108]  ? clear_bhb_loop+0x40/0x90
[  662.871385][T16108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  662.871401][T16108] RIP: 0033:0x7f5426b9ce59
[  662.871415][T16108] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  662.871429][T16108] RSP: 002b:00007f5427ad3028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  662.871444][T16108] RAX: 0000000000000000 RBX: 00007f5426e15fa0 RCX: 00007f5426b9ce59
[  662.871454][T16108] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  662.871462][T16108] RBP: 00007f5426c32d6f R08: 0000000000000000 R09: 0000000000000000
[  662.871471][T16108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  662.871479][T16108] R13: 00007f5426e16038 R14: 00007f5426e15fa0 R15: 00007fffaed14408
[  662.871499][T16108]  </TASK>
[  664.883955][T16123] blktrace: Concurrent blktraces are not allowed on loop2
[  665.174077][T16131] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1973'.
[  666.378265][T16152] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  666.405151][T16156] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1980'.
[  666.985222][T16181] netlink: 338 bytes leftover after parsing attributes in process `syz.5.1986'.
[  667.257597][T16185] mtrr: base(0x1000000) is not aligned on a size(0x0000) boundary
[  667.718597][T16203] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[  668.314840][T16221] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1995'.
[  668.695373][T16233] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1997'.
[  668.992421][T16238] zswap: compressor 000 not available
[  670.594187][ T5639] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  670.611625][ T5639] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  670.620181][ T5639] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  670.629404][ T5639] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  670.639018][ T5639] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  672.145359][T16306] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2007'.
[  672.469753][T16296] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  672.480397][T16296] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  672.488947][T16296] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  672.497610][T16296] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  672.503897][T16296] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  672.510813][T16296] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  672.520198][T16296] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  672.528295][T16296] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  672.538494][T16296] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  672.544972][T16296] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  672.552922][T16296] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  672.563034][T16296] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  672.572506][T16296] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  672.583494][T16296] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  672.592001][T16296] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  672.599214][T16296] Bluetooth: hci7: Opcode 0x0406 failed: -4
[  672.609065][T16296] Bluetooth: hci7: Opcode 0x0406 failed: -4
[  672.619068][T16296] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[  672.626678][T16296] Bluetooth: hci8: Opcode 0x0406 failed: -4
[  672.636284][T16296] Bluetooth: hci8: Opcode 0x0406 failed: -4
[  672.779080][T16317] netlink: 330 bytes leftover after parsing attributes in process `syz.8.2009'.
[  672.827413][T16317] �: renamed from sit0 (while UP)
[  673.207534][T16271] bridge0: port 1(bridge_slave_0) entered blocking state
[  673.239566][T16271] bridge0: port 1(bridge_slave_0) entered disabled state
[  673.264371][T16271] bridge_slave_0: entered allmulticast mode
[  673.290461][T16271] bridge_slave_0: entered promiscuous mode
[  673.315055][T16271] bridge0: port 2(bridge_slave_1) entered blocking state
[  673.336294][T16271] bridge0: port 2(bridge_slave_1) entered disabled state
[  673.355907][T16271] bridge_slave_1: entered allmulticast mode
[  673.373050][T16271] bridge_slave_1: entered promiscuous mode
[  673.442609][T16271] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  673.471412][T16271] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  673.541362][T16271] team0: Port device team_slave_0 added
[  673.560240][T16271] team0: Port device team_slave_1 added
[  673.603024][T16271] batman_adv: batadv0: Adding interface: batadv_slave_0
[  673.611597][T16271] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  673.642267][T16271] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  673.654812][T16271] batman_adv: batadv0: Adding interface: batadv_slave_1
[  673.662581][T16271] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  673.697508][T16271] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  673.827938][ T5639] Bluetooth: hci0: command 0x2016 tx timeout
[  673.858206][T16271] hsr_slave_0: entered promiscuous mode
[  673.880312][T16271] hsr_slave_1: entered promiscuous mode
[  673.915771][T16271] debugfs: 'hsr0' already exists in 'hsr'
[  673.943102][T16271] Cannot create hsr debugfs directory
[  674.543657][T14881] Bluetooth: hci3: command 0x0c1a tx timeout
[  674.552741][ T4945] Bluetooth: hci2: command 0x0c1a tx timeout
[  674.559169][ T4945] Bluetooth: hci4: command 0x0c1a tx timeout
[  674.566969][ T5639] Bluetooth: hci5: command 0x0c1a tx timeout
[  674.573129][T14881] Bluetooth: hci1: command 0x0c1a tx timeout
[  674.597596][T16271] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  674.625517][T16349] Bluetooth: hci8: command 0x041b tx timeout
[  674.632785][ T5633] Bluetooth: hci7: command 0x0c1a tx timeout
[  674.638916][T14881] Bluetooth: hci6: command 0x0c1a tx timeout
[  674.661105][T16271] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  674.686444][T16271] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  674.736441][T16271] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  674.759066][T16271] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  674.838464][T16271] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  674.886310][T16271] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  674.929522][T16271] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  675.282956][T16271] 8021q: adding VLAN 0 to HW filter on device bond0
[  675.328164][T16271] 8021q: adding VLAN 0 to HW filter on device team0
[  675.364616][ T8512] bridge0: port 1(bridge_slave_0) entered blocking state
[  675.371812][ T8512] bridge0: port 1(bridge_slave_0) entered forwarding state
[  675.423710][ T8512] bridge0: port 2(bridge_slave_1) entered blocking state
[  675.430936][ T8512] bridge0: port 2(bridge_slave_1) entered forwarding state
[  676.612037][T14881] Bluetooth: hci5: command 0x0c1a tx timeout
[  676.618069][ T5633] Bluetooth: hci3: command 0x0c1a tx timeout
[  676.684310][T16271] 8021q: adding VLAN 0 to HW filter on device batadv0
[  676.691661][ T5633] Bluetooth: hci6: command 0x0c1a tx timeout
[  676.697733][T14881] Bluetooth: hci7: command 0x0c1a tx timeout
[  676.704618][T14881] Bluetooth: hci8: command 0x041b tx timeout
[  676.993849][T16395] 
[  677.021948][T16392] nvme_fabrics: missing parameter 'transport=%s'
[  677.021964][T16392] nvme_fabrics: missing parameter 'nqn=%s'
[  677.502084][T16271] veth0_vlan: entered promiscuous mode
[  677.535372][T16271] veth1_vlan: entered promiscuous mode
[  677.600052][T16271] veth0_macvtap: entered promiscuous mode
[  677.624777][T16271] veth1_macvtap: entered promiscuous mode
[  677.652751][T16271] batman_adv: batadv0: Interface activated: batadv_slave_0
[  677.674516][T16271] batman_adv: batadv0: Interface activated: batadv_slave_1
[  677.689731][T11591] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  677.709168][T11591] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  677.735940][T11591] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  677.780594][T11591] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  677.946595][T11604] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  677.994554][T11604] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  678.055872][T11612] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  678.082417][T11612] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  678.680534][T14881] Bluetooth: hci3: command 0x0c1a tx timeout
[  678.686657][ T5633] Bluetooth: hci5: command 0x0c1a tx timeout
[  678.759674][T14881] Bluetooth: hci8: command 0x041b tx timeout
[  678.766100][ T5633] Bluetooth: hci6: command 0x0c1a tx timeout
[  678.772639][T16349] Bluetooth: hci7: command 0x0c1a tx timeout
[  680.397411][T16467] netlink: 330 bytes leftover after parsing attributes in process `syz.5.2034'.
[  680.716975][T16471] FAULT_INJECTION: forcing a failure.
[  680.716975][T16471] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  680.756236][T14881] Bluetooth: hci3: command 0x0c1a tx timeout
[  680.828133][T14881] Bluetooth: hci8: command 0x041b tx timeout
[  680.920558][T16471] CPU: 0 UID: 0 PID: 16471 Comm: syz.9.2035 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  680.920585][T16471] Tainted: [L]=SOFTLOCKUP
[  680.920591][T16471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  680.920601][T16471] Call Trace:
[  680.920607][T16471]  <TASK>
[  680.920617][T16471]  dump_stack_lvl+0x100/0x190
[  680.920640][T16471]  should_fail_ex.cold+0x5/0xa
[  680.920660][T16471]  _copy_from_iter+0x43a/0x1690
[  680.920754][T16471]  ? __pfx__copy_from_iter+0x10/0x10
[  680.920771][T16471]  ? sctp_addto_chunk+0xfa/0x2a0
[  680.920789][T16471]  ? __asan_memcpy+0x3c/0x60
[  680.920812][T16471]  ? sctp_make_datafrag_empty+0x1a4/0x230
[  680.920831][T16471]  ? __pfx_sctp_make_datafrag_empty+0x10/0x10
[  680.920852][T16471]  sctp_user_addto_chunk+0x84/0x240
[  680.920872][T16471]  sctp_datamsg_from_user+0x60b/0x1360
[  680.920897][T16471]  sctp_sendmsg_to_asoc+0xb1c/0x1c50
[  680.920916][T16471]  ? __pfx___asan_memcpy+0x10/0x10
[  680.920939][T16471]  ? sctp_assoc_set_primary+0x276/0x310
[  680.920960][T16471]  ? sctp_assoc_add_peer+0x252/0x14f0
[  680.920984][T16471]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[  680.921008][T16471]  ? sctp_connect_new_asoc+0x41e/0x770
[  680.921034][T16471]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  680.921060][T16471]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  680.921085][T16471]  sctp_sendmsg+0x1144/0x22e0
[  680.921111][T16471]  ? __pfx_sctp_sendmsg+0x10/0x10
[  680.921131][T16471]  ? __lock_acquire+0x4a5/0x2630
[  680.921154][T16471]  ? aa_sk_perm+0x309/0xaa0
[  680.921228][T16471]  ? __pfx_aa_sk_perm+0x10/0x10
[  680.921250][T16471]  ? __pfx_sctp_sendmsg+0x10/0x10
[  680.921274][T16471]  inet_sendmsg+0x11c/0x140
[  680.921415][T16471]  ____sys_sendmsg+0x98d/0xb70
[  680.921439][T16471]  ? __pfx_inet_sendmsg+0x10/0x10
[  680.921471][T16471]  ? __pfx_____sys_sendmsg+0x10/0x10
[  680.921497][T16471]  ? futex_unqueue+0x133/0x2c0
[  680.921522][T16471]  ___sys_sendmsg+0x190/0x1e0
[  680.921540][T16471]  ? __pfx____sys_sendmsg+0x10/0x10
[  680.921555][T16471]  ? __pfx___futex_wait+0x10/0x10
[  680.921576][T16471]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  680.921607][T16471]  ? find_held_lock+0x2b/0x80
[  680.921643][T16471]  __sys_sendmmsg+0x205/0x430
[  680.921665][T16471]  ? __pfx___sys_sendmmsg+0x10/0x10
[  680.921688][T16471]  ? __pfx_do_futex+0x10/0x10
[  680.921713][T16471]  ? xfd_validate_state+0x129/0x190
[  680.921734][T16471]  __x64_sys_sendmmsg+0x9c/0x100
[  680.921752][T16471]  ? lockdep_hardirqs_on+0x78/0x100
[  680.921767][T16471]  do_syscall_64+0x10b/0x830
[  680.921781][T16471]  ? clear_bhb_loop+0x40/0x90
[  680.921799][T16471]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  680.921814][T16471] RIP: 0033:0x7fababb9ce59
[  680.921829][T16471] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  680.921844][T16471] RSP: 002b:00007fabacb15028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  680.921860][T16471] RAX: ffffffffffffffda RBX: 00007fababe15fa0 RCX: 00007fababb9ce59
[  680.921871][T16471] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000007
[  680.921881][T16471] RBP: 00007fababc32d6f R08: 0000000000000000 R09: 0000000000000000
[  680.921890][T16471] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000
[  680.921899][T16471] R13: 00007fababe16038 R14: 00007fababe15fa0 R15: 00007ffc1f616338
[  680.921920][T16471]  </TASK>
[  681.779571][T16487] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2038'.
[  682.057368][T16493] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  682.087817][T16482] sd 0:0:1:0: PR command failed: 1026
[  682.148755][T16482] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  682.183875][T16482] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  682.896451][T14881] Bluetooth: hci8: command 0x041b tx timeout
[  684.272476][T16538] netlink: 86 bytes leftover after parsing attributes in process `syz.6.2048'.
[  684.416978][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  684.437842][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  684.964049][T14881] Bluetooth: hci8: command 0x041b tx timeout
[  685.902541][T16538] program syz.6.2048 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  686.502081][T16538] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  687.148619][T16569] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  687.300612][T16567] 
[  687.522116][T16573] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2055'.
[  690.439071][ T5633] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  690.450980][ T5633] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  690.461534][ T5633] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  690.474377][ T5633] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  690.490943][ T5633] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  691.343443][T16635] netlink: 330 bytes leftover after parsing attributes in process `syz.9.2066'.
[  691.615132][T16613] bridge0: port 1(bridge_slave_0) entered blocking state
[  691.630906][T16613] bridge0: port 1(bridge_slave_0) entered disabled state
[  691.653225][T16613] bridge_slave_0: entered allmulticast mode
[  691.663424][T16646] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2067'.
[  691.682373][T16613] bridge_slave_0: entered promiscuous mode
[  691.722479][T16613] bridge0: port 2(bridge_slave_1) entered blocking state
[  691.752081][T16613] bridge0: port 2(bridge_slave_1) entered disabled state
[  691.782322][T16613] bridge_slave_1: entered allmulticast mode
[  691.808349][T16613] bridge_slave_1: entered promiscuous mode
[  691.956611][T16613] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  692.057058][T16613] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  692.221617][T16613] team0: Port device team_slave_0 added
[  692.264796][T16613] team0: Port device team_slave_1 added
[  692.360322][T16613] batman_adv: batadv0: Adding interface: batadv_slave_0
[  692.385481][T16613] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  692.497453][T16613] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  692.521013][ T5633] Bluetooth: hci9: command tx timeout
[  692.907763][T16613] batman_adv: batadv0: Adding interface: batadv_slave_1
[  692.932819][T16613] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  693.022307][T16613] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  693.311655][T16613] hsr_slave_0: entered promiscuous mode
[  693.332667][T16613] hsr_slave_1: entered promiscuous mode
[  693.351169][T16613] debugfs: 'hsr0' already exists in 'hsr'
[  693.365221][T16613] Cannot create hsr debugfs directory
[  694.594136][ T5633] Bluetooth: hci9: command tx timeout
[  695.224157][T16692] FAULT_INJECTION: forcing a failure.
[  695.224157][T16692] name failslab, interval 1, probability 0, space 0, times 0
[  695.388445][T16692] CPU: 0 UID: 0 PID: 16692 Comm: syz.6.2073 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  695.388471][T16692] Tainted: [L]=SOFTLOCKUP
[  695.388477][T16692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  695.388487][T16692] Call Trace:
[  695.388493][T16692]  <TASK>
[  695.388499][T16692]  dump_stack_lvl+0x100/0x190
[  695.388522][T16692]  should_fail_ex.cold+0x5/0xa
[  695.388542][T16692]  should_failslab+0xc2/0x120
[  695.388561][T16692]  __kmalloc_cache_noprof+0x7a/0x6f0
[  695.388583][T16692]  ? pkcs7_note_signed_info+0x2d2/0x5c0
[  695.388701][T16692]  ? asymmetric_key_generate_id+0x145/0x180
[  695.388749][T16692]  pkcs7_note_signed_info+0x2d2/0x5c0
[  695.388770][T16692]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  695.388795][T16692]  asn1_ber_decoder+0x14cf/0x2170
[  695.388825][T16692]  ? __pfx_asn1_ber_decoder+0x10/0x10
[  695.388858][T16692]  pkcs7_parse_message+0x289/0x870
[  695.388880][T16692]  verify_pkcs7_signature+0x30/0xa0
[  695.388899][T16692]  valid_regdb+0x211/0x590
[  695.388922][T16692]  ? __pfx_valid_regdb+0x10/0x10
[  695.388945][T16692]  reg_reload_regdb+0x11a/0x460
[  695.388967][T16692]  ? __pfx_reg_reload_regdb+0x10/0x10
[  695.388989][T16692]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  695.389005][T16692]  ? nl80211_pre_doit+0x19a/0xae0
[  695.389022][T16692]  genl_family_rcv_msg_doit+0x214/0x300
[  695.389043][T16692]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  695.389058][T16692]  ? genl_get_cmd+0x3e7/0x760
[  695.389077][T16692]  ? bpf_lsm_capable+0x9/0x10
[  695.389094][T16692]  ? security_capable+0x80/0x260
[  695.389128][T16692]  genl_rcv_msg+0x560/0x800
[  695.389146][T16692]  ? __pfx_genl_rcv_msg+0x10/0x10
[  695.389163][T16692]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  695.389179][T16692]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[  695.389200][T16692]  ? __pfx_nl80211_post_doit+0x10/0x10
[  695.389223][T16692]  netlink_rcv_skb+0x159/0x420
[  695.389246][T16692]  ? __pfx_genl_rcv_msg+0x10/0x10
[  695.389263][T16692]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  695.389292][T16692]  ? netlink_deliver_tap+0x1ae/0xcc0
[  695.389317][T16692]  genl_rcv+0x28/0x40
[  695.389330][T16692]  netlink_unicast+0x585/0x850
[  695.389355][T16692]  ? __pfx_netlink_unicast+0x10/0x10
[  695.389382][T16692]  netlink_sendmsg+0x8b0/0xda0
[  695.389407][T16692]  ? __pfx_netlink_sendmsg+0x10/0x10
[  695.389428][T16692]  ? __import_iovec+0x1d2/0x640
[  695.389447][T16692]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  695.389502][T16692]  ____sys_sendmsg+0x9e1/0xb70
[  695.389524][T16692]  ? __pfx_netlink_sendmsg+0x10/0x10
[  695.389548][T16692]  ? __pfx_____sys_sendmsg+0x10/0x10
[  695.389569][T16692]  ? preempt_schedule_thunk+0x16/0x30
[  695.389595][T16692]  ? try_to_wake_up+0x5f6/0x1900
[  695.389618][T16692]  ___sys_sendmsg+0x190/0x1e0
[  695.389634][T16692]  ? __pfx____sys_sendmsg+0x10/0x10
[  695.389648][T16692]  ? futex_private_hash_put+0x107/0x1c0
[  695.389684][T16692]  __sys_sendmsg+0x170/0x220
[  695.389703][T16692]  ? __pfx___sys_sendmsg+0x10/0x10
[  695.389721][T16692]  ? __x64_sys_futex+0x34f/0x4d0
[  695.389744][T16692]  ? rcu_is_watching+0x12/0xc0
[  695.389765][T16692]  do_syscall_64+0x10b/0x830
[  695.389779][T16692]  ? clear_bhb_loop+0x40/0x90
[  695.389797][T16692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  695.389812][T16692] RIP: 0033:0x7fac19b9ce59
[  695.389827][T16692] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  695.389842][T16692] RSP: 002b:00007fac1a9b0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  695.389858][T16692] RAX: ffffffffffffffda RBX: 00007fac19e16090 RCX: 00007fac19b9ce59
[  695.389868][T16692] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007
[  695.389878][T16692] RBP: 00007fac19c32d6f R08: 0000000000000000 R09: 0000000000000000
[  695.389887][T16692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  695.389896][T16692] R13: 00007fac19e16128 R14: 00007fac19e16090 R15: 00007fff1567a1f8
[  695.389916][T16692]  </TASK>
[  696.480660][T16613] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  696.591770][T16700] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2074'.
[  696.609473][T16613] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  696.627384][T16613] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  696.707633][T16613] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  696.720525][ T5633] Bluetooth: hci9: command tx timeout
[  696.880874][T16613] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  696.938845][T16613] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  696.967259][T16613] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  697.021452][T16613] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  697.281839][T16613] 8021q: adding VLAN 0 to HW filter on device bond0
[  697.365914][T16613] 8021q: adding VLAN 0 to HW filter on device team0
[  697.405530][T11611] bridge0: port 1(bridge_slave_0) entered blocking state
[  697.412655][T11611] bridge0: port 1(bridge_slave_0) entered forwarding state
[  697.480642][T16720] netlink: 342 bytes leftover after parsing attributes in process `syz.9.2077'.
[  697.494063][T11611] bridge0: port 2(bridge_slave_1) entered blocking state
[  697.501224][T11611] bridge0: port 2(bridge_slave_1) entered forwarding state
[  698.725534][ T5633] Bluetooth: hci9: command tx timeout
[  698.861086][T16745] futex_wake_op: syz.9.2080 tries to shift op by -2048; fix this program
[  698.982098][T16613] 8021q: adding VLAN 0 to HW filter on device batadv0
[  699.245965][T16613] veth0_vlan: entered promiscuous mode
[  699.334194][T16613] veth1_vlan: entered promiscuous mode
[  699.360103][T14881] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  699.374587][T14881] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  699.384242][T14881] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  699.398653][T14881] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  699.409193][T14881] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  699.592364][T16613] veth0_macvtap: entered promiscuous mode
[  699.675856][T16613] veth1_macvtap: entered promiscuous mode
[  699.764954][T16613] batman_adv: batadv0: Interface activated: batadv_slave_0
[  699.855944][T16613] batman_adv: batadv0: Interface activated: batadv_slave_1
[  699.957855][T11611] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  700.003193][T11611] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  700.053130][T11611] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  700.116656][T11611] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  700.456737][T11591] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  700.521844][T11591] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  700.668115][T11591] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  700.719194][T11591] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  700.897119][T16790] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2083'.
[  701.509818][T14881] Bluetooth: hci10: command tx timeout
[  702.348931][T16767] bridge0: port 1(bridge_slave_0) entered blocking state
[  702.402539][T16767] bridge0: port 1(bridge_slave_0) entered disabled state
[  702.452788][T16767] bridge_slave_0: entered allmulticast mode
[  702.508168][T16767] bridge_slave_0: entered promiscuous mode
[  702.761616][T16767] bridge0: port 2(bridge_slave_1) entered blocking state
[  702.820845][T16767] bridge0: port 2(bridge_slave_1) entered disabled state
[  702.866826][T16767] bridge_slave_1: entered allmulticast mode
[  702.914941][T16767] bridge_slave_1: entered promiscuous mode
[  703.170394][T16767] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  703.372097][T16767] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  703.578311][T14881] Bluetooth: hci10: command tx timeout
[  703.893527][T16767] team0: Port device team_slave_0 added
[  703.957745][T16767] team0: Port device team_slave_1 added
[  704.097215][T16767] batman_adv: batadv0: Adding interface: batadv_slave_0
[  704.145464][T16767] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  704.291062][T16767] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  704.368077][T16767] batman_adv: batadv0: Adding interface: batadv_slave_1
[  704.402590][T16767] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  704.535084][T16767] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  704.717797][T16860] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2088'.
[  704.819927][T16767] hsr_slave_0: entered promiscuous mode
[  704.848626][T16767] hsr_slave_1: entered promiscuous mode
[  704.896872][T16767] debugfs: 'hsr0' already exists in 'hsr'
[  704.935932][T16767] Cannot create hsr debugfs directory
[  705.647994][T14881] Bluetooth: hci10: command tx timeout
[  705.828682][T16890] netlink: zone id is out of range
[  705.948930][T16890] netlink: zone id is out of range
[  706.052385][T16890] netlink: zone id is out of range
[  706.151552][T16890] netlink: zone id is out of range
[  706.189703][T16890] netlink: zone id is out of range
[  706.217374][T16767] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  706.239241][T16890] netlink: zone id is out of range
[  706.267208][T16890] netlink: zone id is out of range
[  706.320597][T16890] netlink: zone id is out of range
[  706.383454][T16890] netlink: zone id is out of range
[  706.455655][T16890] netlink: zone id is out of range
[  706.758544][T16767] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  707.116065][T14881] Bluetooth: hci8: unexpected subevent 0x01 length: 123 > 18
[  707.125466][T14881] Bluetooth: hci8: Invalid handle: 0x3a4a > 0x0eff
[  707.190913][T16767] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  707.714601][T14881] Bluetooth: hci10: command tx timeout
[  708.453224][T16767] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  708.485972][T16767] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  708.519152][T16767] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  708.563521][T16767] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  708.606266][T16767] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  708.662099][T16767] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  708.700898][T16767] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  708.761697][T16767] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  709.090260][T16767] 8021q: adding VLAN 0 to HW filter on device bond0
[  709.171758][T16767] 8021q: adding VLAN 0 to HW filter on device team0
[  709.218305][T11612] bridge0: port 1(bridge_slave_0) entered blocking state
[  709.225484][T11612] bridge0: port 1(bridge_slave_0) entered forwarding state
[  709.307125][T11612] bridge0: port 2(bridge_slave_1) entered blocking state
[  709.314252][T11612] bridge0: port 2(bridge_slave_1) entered forwarding state
[  711.058960][T16767] 8021q: adding VLAN 0 to HW filter on device batadv0
[  712.225784][T17027] FAULT_INJECTION: forcing a failure.
[  712.225784][T17027] name failslab, interval 1, probability 0, space 0, times 0
[  712.326887][T17027] CPU: 0 UID: 0 PID: 17027 Comm: syz.9.2105 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  712.326915][T17027] Tainted: [L]=SOFTLOCKUP
[  712.326921][T17027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  712.326931][T17027] Call Trace:
[  712.326936][T17027]  <TASK>
[  712.326942][T17027]  dump_stack_lvl+0x100/0x190
[  712.326968][T17027]  should_fail_ex.cold+0x5/0xa
[  712.326988][T17027]  should_failslab+0xc2/0x120
[  712.327007][T17027]  __kmalloc_cache_noprof+0x7a/0x6f0
[  712.327028][T17027]  ? tomoyo_open_control+0x43d/0xa20
[  712.327138][T17027]  tomoyo_open_control+0x43d/0xa20
[  712.327163][T17027]  do_dentry_open+0x6d8/0x1660
[  712.327191][T17027]  ? __pfx_tomoyo_open+0x10/0x10
[  712.327237][T17027]  vfs_open+0x82/0x3f0
[  712.327263][T17027]  path_openat+0x208c/0x31a0
[  712.327288][T17027]  ? __pfx_path_openat+0x10/0x10
[  712.327313][T17027]  do_file_open+0x20e/0x430
[  712.327333][T17027]  ? __pfx_do_file_open+0x10/0x10
[  712.327364][T17027]  ? alloc_fd+0x476/0x790
[  712.327384][T17027]  ? do_getname+0x191/0x390
[  712.327408][T17027]  do_sys_openat2+0x10d/0x1e0
[  712.327430][T17027]  ? __pfx_do_sys_openat2+0x10/0x10
[  712.327454][T17027]  ? __fget_files+0x21f/0x3d0
[  712.327475][T17027]  __x64_sys_openat+0x12d/0x210
[  712.327489][T17027]  ? __pfx___x64_sys_openat+0x10/0x10
[  712.327515][T17027]  ? rcu_is_watching+0x12/0xc0
[  712.327536][T17027]  do_syscall_64+0x10b/0x830
[  712.327549][T17027]  ? clear_bhb_loop+0x40/0x90
[  712.327568][T17027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.327584][T17027] RIP: 0033:0x7fababb9ce59
[  712.327598][T17027] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  712.327612][T17027] RSP: 002b:00007fabacb15028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  712.327628][T17027] RAX: ffffffffffffffda RBX: 00007fababe15fa0 RCX: 00007fababb9ce59
[  712.327638][T17027] RDX: 0000000000040802 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  712.327647][T17027] RBP: 00007fababc32d6f R08: 0000000000000000 R09: 0000000000000000
[  712.327656][T17027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  712.327665][T17027] R13: 00007fababe16038 R14: 00007fababe15fa0 R15: 00007ffc1f616338
[  712.327687][T17027]  </TASK>
[  713.022297][T16767] veth0_vlan: entered promiscuous mode
[  713.077120][T16767] veth1_vlan: entered promiscuous mode
[  713.186376][T16767] veth0_macvtap: entered promiscuous mode
[  713.223462][T16767] veth1_macvtap: entered promiscuous mode
[  713.276880][T16767] batman_adv: batadv0: Interface activated: batadv_slave_0
[  713.333136][T16767] batman_adv: batadv0: Interface activated: batadv_slave_1
[  713.390513][T11593] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  713.402339][T11593] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  713.448204][T11593] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  713.486304][T11593] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  713.792836][T11591] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  713.838204][T11591] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  713.951776][T11593] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  713.975970][T11593] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  714.232029][T17040] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2106'.
[  714.321480][T17045] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  715.775058][   T30] audit: type=1800 audit(1779736135.195:17): pid=17086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.2112" name="dbroot" dev="configfs" ino=69318 res=0 errno=0
[  715.855161][T17081] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2110'.
[  715.901521][T17081] �: renamed from sit0 (while UP)
[  716.232250][T17093] db_root: cannot open: /sy]
[  717.281771][T17109] FAULT_INJECTION: forcing a failure.
[  717.281771][T17109] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  717.444797][T17109] CPU: 0 UID: 0 PID: 17109 Comm: syz.9.2114 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  717.444825][T17109] Tainted: [L]=SOFTLOCKUP
[  717.444830][T17109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  717.444840][T17109] Call Trace:
[  717.444845][T17109]  <TASK>
[  717.444852][T17109]  dump_stack_lvl+0x100/0x190
[  717.444874][T17109]  should_fail_ex.cold+0x5/0xa
[  717.444894][T17109]  _copy_to_user+0x32/0xd0
[  717.444913][T17109]  copy_siginfo_to_user+0x27/0xc0
[  717.444935][T17109]  x64_setup_rt_frame+0xa03/0xce0
[  717.444963][T17109]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  717.444983][T17109]  ? vfs_cmd_create+0x1aa/0x2a0
[  717.444998][T17109]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  717.445018][T17109]  arch_do_signal_or_restart+0x6b6/0x7a0
[  717.445041][T17109]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  717.445067][T17109]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  717.445083][T17109]  ? rcu_is_watching+0x12/0xc0
[  717.445103][T17109]  exit_to_user_mode_loop+0x8b/0x4f0
[  717.445118][T17109]  ? rcu_is_watching+0x12/0xc0
[  717.445137][T17109]  do_syscall_64+0x6f2/0x830
[  717.445151][T17109]  ? clear_bhb_loop+0x40/0x90
[  717.445169][T17109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  717.445184][T17109] RIP: 0033:0x7fababb9ce59
[  717.445198][T17109] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  717.445213][T17109] RSP: 002b:00007fabacb15028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  717.445228][T17109] RAX: 0000000000000000 RBX: 00007fababe15fa0 RCX: 00007fababb9ce59
[  717.445238][T17109] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000006
[  717.445246][T17109] RBP: 00007fababc32d6f R08: 0000000000000000 R09: 0000000000000000
[  717.445255][T17109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  717.445264][T17109] R13: 00007fababe16038 R14: 00007fababe15fa0 R15: 00007ffc1f616338
[  717.445283][T17109]  </TASK>
[  722.075794][T17187] FAULT_INJECTION: forcing a failure.
[  722.075794][T17187] name failslab, interval 1, probability 0, space 0, times 0
[  722.264816][T17187] CPU: 0 UID: 0 PID: 17187 Comm: syz.2.2121 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  722.264844][T17187] Tainted: [L]=SOFTLOCKUP
[  722.264850][T17187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  722.264860][T17187] Call Trace:
[  722.264865][T17187]  <TASK>
[  722.264871][T17187]  dump_stack_lvl+0x100/0x190
[  722.264893][T17187]  should_fail_ex.cold+0x5/0xa
[  722.264914][T17187]  ? tracepoint_add_func+0x3a8/0x1150
[  722.264936][T17187]  should_failslab+0xc2/0x120
[  722.264954][T17187]  __kmalloc_noprof+0xe0/0x850
[  722.264976][T17187]  ? __pfx_trace_event_raw_event_nfsd_cb_setup_err+0x10/0x10
[  722.264997][T17187]  tracepoint_add_func+0x3a8/0x1150
[  722.265018][T17187]  ? __pfx_trace_event_raw_event_nfsd_cb_setup_err+0x10/0x10
[  722.265044][T17187]  ? __pfx_trace_event_raw_event_nfsd_cb_setup_err+0x10/0x10
[  722.265065][T17187]  tracepoint_probe_register+0xc4/0x110
[  722.265088][T17187]  ? __pfx_tracepoint_probe_register+0x10/0x10
[  722.265110][T17187]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  722.265126][T17187]  ? __pfx_trace_event_raw_event_nfsd_cb_setup_err+0x10/0x10
[  722.265146][T17187]  ? __pfx_probe_sched_switch+0x10/0x10
[  722.265173][T17187]  trace_event_reg+0x209/0x350
[  722.265198][T17187]  __ftrace_event_enable_disable+0x211/0x6f0
[  722.265227][T17187]  __ftrace_set_clr_event_nolock+0x390/0xc30
[  722.265250][T17187]  ftrace_set_clr_event+0x1b7/0x3f0
[  722.265269][T17187]  ? __pfx_ftrace_set_clr_event+0x10/0x10
[  722.265286][T17187]  ? trace_get_user+0x3ae/0xa70
[  722.265313][T17187]  ftrace_event_write+0x259/0x2c0
[  722.265331][T17187]  ? __pfx_ftrace_event_write+0x10/0x10
[  722.265356][T17187]  vfs_write+0x2aa/0x1070
[  722.265375][T17187]  ? __pfx_ftrace_event_write+0x10/0x10
[  722.265398][T17187]  ? __pfx_vfs_write+0x10/0x10
[  722.265415][T17187]  ? __fget_files+0x215/0x3d0
[  722.265459][T17187]  ? __fget_files+0x21f/0x3d0
[  722.265483][T17187]  ksys_write+0x12a/0x250
[  722.265501][T17187]  ? __pfx_ksys_write+0x10/0x10
[  722.265520][T17187]  ? rcu_is_watching+0x12/0xc0
[  722.265541][T17187]  do_syscall_64+0x10b/0x830
[  722.265555][T17187]  ? clear_bhb_loop+0x40/0x90
[  722.265574][T17187]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.265589][T17187] RIP: 0033:0x7f5b72d9ce59
[  722.265603][T17187] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  722.265617][T17187] RSP: 002b:00007f5b73c80028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  722.265632][T17187] RAX: ffffffffffffffda RBX: 00007f5b73015fa0 RCX: 00007f5b72d9ce59
[  722.265642][T17187] RDX: 0000000000000af0 RSI: 0000000000000000 RDI: 0000000000000008
[  722.265652][T17187] RBP: 00007f5b72e32d6f R08: 0000000000000000 R09: 0000000000000000
[  722.265661][T17187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  722.265670][T17187] R13: 00007f5b73016038 R14: 00007f5b73015fa0 R15: 00007ffd9992d178
[  722.265691][T17187]  </TASK>
[  722.265702][T17187] event trace: Could not enable event nfsd_cb_setup_err
[  723.255958][ T5633] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  723.282271][ T5633] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  723.318074][ T5633] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  723.367047][ T5633] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  723.390357][ T5633] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  725.456109][ T5633] Bluetooth: hci11: command tx timeout
[  725.530672][   T30] audit: type=1800 audit(1779736145.000:18): pid=17257 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2129" name="dbroot" dev="configfs" ino=69812 res=0 errno=0
[  726.314496][T17202] bridge0: port 1(bridge_slave_0) entered blocking state
[  726.322878][T17202] bridge0: port 1(bridge_slave_0) entered disabled state
[  726.334954][T17202] bridge_slave_0: entered allmulticast mode
[  726.347102][T17202] bridge_slave_0: entered promiscuous mode
[  726.356737][T17202] bridge0: port 2(bridge_slave_1) entered blocking state
[  726.404620][T17262] Process accounting resumed
[  726.413193][T17202] bridge0: port 2(bridge_slave_1) entered disabled state
[  726.443090][T17202] bridge_slave_1: entered allmulticast mode
[  726.476512][T17202] bridge_slave_1: entered promiscuous mode
[  726.605455][T17202] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  726.660950][T17202] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  726.678989][T17281] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  726.829777][T17202] team0: Port device team_slave_0 added
[  726.864483][T17202] team0: Port device team_slave_1 added
[  726.988611][T17202] batman_adv: batadv0: Adding interface: batadv_slave_0
[  727.006584][T17202] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  727.079089][T17202] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  727.114052][T17202] batman_adv: batadv0: Adding interface: batadv_slave_1
[  727.140059][T17202] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  727.246355][T17202] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  727.407357][T17202] hsr_slave_0: entered promiscuous mode
[  727.423373][ T5633] Bluetooth: hci8: ISO packet for unknown connection handle 0
[  727.426253][T17202] hsr_slave_1: entered promiscuous mode
[  727.460283][T17202] debugfs: 'hsr0' already exists in 'hsr'
[  727.474004][T17202] Cannot create hsr debugfs directory
[  727.521813][ T5633] Bluetooth: hci11: command tx timeout
[  728.157441][T17202] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  728.246200][T17306] ubi0: attaching mtd0
[  728.255482][T17306] ubi0: scanning is finished
[  728.275969][T17306] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  728.306387][T17308] device-mapper: ioctl: name not supplied when creating device
[  728.418071][T17306] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  728.501567][T17202] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  728.693980][T17202] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  729.084339][T17202] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  729.590863][ T5633] Bluetooth: hci11: command tx timeout
[  729.775334][T17202] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  729.817729][T17202] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  729.846240][T17202] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  729.867008][T17202] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  729.917790][T17202] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  729.937192][T17202] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  729.977664][T17202] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  730.010314][T17202] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  730.433579][T17202] 8021q: adding VLAN 0 to HW filter on device bond0
[  730.479855][T17202] 8021q: adding VLAN 0 to HW filter on device team0
[  730.509308][T11611] bridge0: port 1(bridge_slave_0) entered blocking state
[  730.516499][T11611] bridge0: port 1(bridge_slave_0) entered forwarding state
[  730.556981][T11611] bridge0: port 2(bridge_slave_1) entered blocking state
[  730.565582][T11611] bridge0: port 2(bridge_slave_1) entered forwarding state
[  731.412963][T17202] 8021q: adding VLAN 0 to HW filter on device batadv0
[  731.657985][ T5633] Bluetooth: hci11: command tx timeout
[  732.128389][T17202] veth0_vlan: entered promiscuous mode
[  732.157198][T17202] veth1_vlan: entered promiscuous mode
[  732.273507][T17202] veth0_macvtap: entered promiscuous mode
[  732.500182][T17202] veth1_macvtap: entered promiscuous mode
[  732.621045][T17202] batman_adv: batadv0: Interface activated: batadv_slave_0
[  732.740902][T17202] batman_adv: batadv0: Interface activated: batadv_slave_1
[  732.772068][   T31] INFO: task syz-executor:11938 blocked for more than 143 seconds.
[  732.780030][   T31]       Tainted: G             L      syzkaller #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  732.810609][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  732.857113][   T30] audit: type=1800 audit(1779736152.342:19): pid=17381 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2148" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  732.901047][   T31] task:syz-executor    state:D stack:23848 pid:11938 tgid:11938 ppid:1      task_flags:0x400140 flags:0x00080002
[  732.926244][T11604] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  732.995705][T11604] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  733.024583][   T31] Call Trace:
[  733.051611][   T31]  <TASK>
[  733.069853][   T31]  __schedule+0x1295/0x67a0
[  733.087890][T11604] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  733.113452][   T31]  ? __pfx___schedule+0x10/0x10
[  733.146584][   T31]  ? find_held_lock+0x2b/0x80
[  733.163952][T11604] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  733.200364][   T31]  ? schedule+0x2bf/0x390
[  733.219309][   T31]  schedule+0xdd/0x390
[  733.235052][   T31]  schedule_preempt_disabled+0x13/0x30
[  733.266603][   T31]  __mutex_lock+0xced/0x1b10
[  733.287247][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[  733.310348][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  733.335474][   T31]  ? net_generic+0xea/0x2a0
[  733.364461][   T31]  ? net_generic+0xea/0x2a0
[  733.393537][   T31]  ? nfsd_shutdown_threads+0x5b/0xf0
[  733.422645][   T31]  nfsd_shutdown_threads+0x5b/0xf0
[  733.444788][   T31]  nfsd_umount+0x3b/0x60
[  733.466037][   T31]  deactivate_locked_super+0xc1/0x1b0
[  733.494375][   T31]  deactivate_super+0xe7/0x110
[  733.510859][   T31]  cleanup_mnt+0x21f/0x450
[  733.529933][   T31]  task_work_run+0x150/0x240
[  733.541729][   T31]  ? __pfx_task_work_run+0x10/0x10
[  733.562308][   T31]  ? rcu_is_watching+0x12/0xc0
[  733.579190][   T31]  exit_to_user_mode_loop+0x107/0x4f0
[  733.598259][   T31]  ? rcu_is_watching+0x12/0xc0
[  733.611599][   T31]  do_syscall_64+0x6f2/0x830
[  733.629821][   T31]  ? clear_bhb_loop+0x40/0x90
[  733.644219][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  733.665971][   T31] RIP: 0033:0x7f016039e097
[  733.678895][   T31] RSP: 002b:00007ffeff3c9ec8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  733.710456][   T31] RAX: 0000000000000000 RBX: 00007f01604321ca RCX: 00007f016039e097
[  733.739735][   T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeff3c9f80
[  733.767743][   T31] RBP: 00007ffeff3c9f80 R08: 00007ffeff3caf80 R09: 00000000ffffffff
[  733.793342][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffeff3cb010
[  733.832126][   T31] R13: 00007f01604321ca R14: 000000000008f99b R15: 00007ffeff3cb050
[  733.856241][   T31]  </TASK>
[  733.871060][   T31] INFO: task syz.0.1771:14914 blocked for more than 144 seconds.
[  733.947862][   T31]       Tainted: G             L      syzkaller #0
[  733.974759][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  734.002887][   T31] task:syz.0.1771      state:D stack:28136 pid:14914 tgid:14909 ppid:5627   task_flags:0x400140 flags:0x00080002
[  734.102167][   T31] Call Trace:
[  734.117553][   T31]  <TASK>
[  734.130788][   T31]  __schedule+0x1295/0x67a0
[  734.151915][   T31]  ? __pfx___schedule+0x10/0x10
[  734.175946][   T31]  ? find_held_lock+0x2b/0x80
[  734.191607][   T31]  ? schedule+0x2bf/0x390
[  734.206894][   T31]  schedule+0xdd/0x390
[  734.225073][   T31]  schedule_preempt_disabled+0x13/0x30
[  734.245309][   T31]  __mutex_lock+0xced/0x1b10
[  734.265706][   T31]  ? nfsd_nl_listener_get_doit+0x13e/0x7b0
[  734.289427][   T31]  ? __kmalloc_node_track_caller_noprof+0x321/0x850
[  734.309245][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  734.325874][   T31]  ? kmalloc_reserve+0xf9/0x350
[  734.341187][   T31]  ? skb_put+0x138/0x180
[  734.354466][   T31]  ? __nlmsg_put+0x152/0x1c0
[  734.375276][   T31]  ? nfsd_nl_listener_get_doit+0x13e/0x7b0
[  734.397295][   T31]  nfsd_nl_listener_get_doit+0x13e/0x7b0
[  734.415460][   T31]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1e5/0x2f0
[  734.437268][   T31]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1ef/0x2f0
[  734.457603][   T31]  genl_family_rcv_msg_doit+0x214/0x300
[  734.482079][   T31]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  734.497499][   T31]  ? genl_get_cmd+0x3e7/0x760
[  734.511430][   T31]  ? __dev_queue_xmit+0xa10/0x4950
[  734.519586][   T31]  ? __radix_tree_lookup+0x217/0x2b0
[  734.531168][   T31]  genl_rcv_msg+0x560/0x800
[  734.540861][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  734.550668][   T31]  ? __pfx_nfsd_nl_listener_get_doit+0x10/0x10
[  734.564423][   T31]  netlink_rcv_skb+0x159/0x420
[  734.573835][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[  734.590462][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  734.605729][   T31]  ? netlink_deliver_tap+0x1ae/0xcc0
[  734.622721][   T31]  genl_rcv+0x28/0x40
[  734.626768][   T31]  netlink_unicast+0x585/0x850
[  734.636661][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[  734.648157][   T31]  netlink_sendmsg+0x8b0/0xda0
[  734.657586][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  734.669005][   T31]  ? __import_iovec+0x1d2/0x640
[  734.684847][   T31]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  734.701087][   T31]  ____sys_sendmsg+0x9e1/0xb70
[  734.708920][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[  734.723016][   T31]  ? __pfx_____sys_sendmsg+0x10/0x10
[  734.734897][   T31]  ? kasan_quarantine_put+0x104/0x240
[  734.746529][   T31]  ? lockdep_hardirqs_on+0x78/0x100
[  734.757835][   T31]  ___sys_sendmsg+0x190/0x1e0
[  734.767406][   T31]  ? __pfx____sys_sendmsg+0x10/0x10
[  734.781149][   T31]  ? tomoyo_path_number_perm+0x188/0x580
[  734.793567][   T31]  __sys_sendmsg+0x170/0x220
[  734.804390][   T31]  ? __pfx___sys_sendmsg+0x10/0x10
[  734.821665][   T31]  ? kcov_ioctl+0x16a/0x720
[  734.827737][   T31]  ? rcu_is_watching+0x12/0xc0
[  734.837308][   T31]  ? kcov_ioctl+0x16a/0x720
[  734.848740][   T31]  ? rcu_is_watching+0x12/0xc0
[  734.859333][   T31]  do_syscall_64+0x10b/0x830
[  734.869959][   T31]  ? clear_bhb_loop+0x40/0x90
[  734.879061][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.895302][   T31] RIP: 0033:0x7fc317b9ce59
[  734.904439][   T31] RSP: 002b:00007fc318a53028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  734.924947][   T31] RAX: ffffffffffffffda RBX: 00007fc317e16090 RCX: 00007fc317b9ce59
[  734.943086][   T31] RDX: 0000000020010090 RSI: 0000200000000380 RDI: 0000000000000003
[  734.960630][   T31] RBP: 00007fc317c32d6f R08: 0000000000000000 R09: 0000000000000000
[  734.977656][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  735.004155][   T31] R13: 00007fc317e16128 R14: 00007fc317e16090 R15: 00007fff19aaa848
[  735.021203][   T31]  </TASK>
[  735.073245][   T31] 
[  735.073245][   T31] Showing all locks held in the system:
[  735.137595][   T31] 3 locks held by kworker/0:0/9:
[  735.155604][   T31]  #0: ffff88813fe5b140 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[  735.200798][   T31]  #1: ffffc900000e7d08 ((work_completion)(&data->fib_event_work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[  735.226301][   T31]  #2: ffff88807bce1250 (&data->fib_lock){+.+.}-{4:4}, at: nsim_fib_event_work+0x1b8/0x63b0
[  735.253945][   T31] 1 lock held by khungtaskd/31:
[  735.263707][   T31]  #0: ffffffff8e7e5420 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[  735.291779][   T31] 2 locks held by getty/9056:
[  735.301833][   T31]  #0: ffff888037d680a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  735.336703][   T31]  #1: ffffc90005a362e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x14f0
[  735.360538][   T31] 4 locks held by kworker/u8:44/11612:
[  735.371688][   T31]  #0: ffff88801c6ae140 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[  735.406862][   T31]  #1: ffffc90003a4fd08 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[  735.426667][   T31]  #2: ffffffff905f8c08 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xb8/0x920
[  735.442303][   T31]  #3: ffffffff8e7f0f68 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[  735.467627][   T31] 2 locks held by syz-executor/11938:
[  735.476640][   T31]  #0: ffff88802b4a40d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[  735.499572][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[  735.510744][   T31] 2 locks held by syz-executor/13035:
[  735.517057][   T31]  #0: ffff88807be720d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[  735.527575][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[  735.537350][   T31] 2 locks held by syz.0.1771/14911:
[  735.542551][   T31]  #0: ffffffff906bff08 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  735.551049][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x8ec/0x12b0
[  735.562682][   T31] 2 locks held by syz.0.1771/14914:
[  735.568164][   T31]  #0: ffffffff906bff08 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  735.578385][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_get_doit+0x13e/0x7b0
[  735.588757][   T31] 2 locks held by syz-executor/15042:
[  735.597410][   T31]  #0: ffff88804203e0d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[  735.610502][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[  735.621365][   T31] 2 locks held by syz-executor/15186:
[  735.627604][   T31]  #0: ffff888081d1a0d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[  735.639779][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[  735.649965][   T31] 2 locks held by syz.3.1862/15468:
[  735.655399][   T31]  #0: ffffffff906bff08 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  735.663598][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1a80
[  735.674022][   T31] 2 locks held by syz.3.1862/15471:
[  735.679391][   T31]  #0: ffffffff906bff08 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  735.690204][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1a80
[  735.703301][   T31] 2 locks held by syz.7.1962/16017:
[  735.708730][   T31]  #0: ffffffff906bff08 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  735.720768][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1a80
[  735.731952][   T31] 2 locks held by syz.8.2016/16353:
[  735.737924][   T31]  #0: ffffffff906bff08 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  735.746338][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x8ec/0x12b0
[  735.756664][   T31] 4 locks held by syz-executor/16613:
[  735.762055][   T31]  #0: ffff888080488ea0 (&hdev->req_lock){+.+.}-{4:4}, at: hci_dev_do_close+0x26/0xb0
[  735.772031][   T31]  #1: ffff8880804880b8 (&hdev->lock){+.+.}-{4:4}, at: hci_dev_close_sync+0x35c/0x1240
[  735.781886][   T31]  #2: ffffffff908987c0 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_hash_flush+0xbb/0x280
[  735.792194][   T31]  #3: ffff888032881af8 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x95/0x710
[  735.807287][   T31] 2 locks held by syz-executor/16767:
[  735.812697][   T31]  #0: ffff8880676580d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[  735.823637][   T31]  #1: ffffffff8ec62400 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[  735.839374][   T31] 1 lock held by syz.9.2149/17389:
[  735.845487][   T31]  #0: ffffffff8e7f0f68 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0
[  735.895908][   T31] 
[  735.910924][   T31] =============================================
[  735.910924][   T31] 
[  735.981471][   T31] NMI backtrace for cpu 0
[  735.981491][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  735.981511][   T31] Tainted: [L]=SOFTLOCKUP
[  735.981517][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  735.981526][   T31] Call Trace:
[  735.981531][   T31]  <TASK>
[  735.981538][   T31]  dump_stack_lvl+0x100/0x190
[  735.981559][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[  735.981577][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  735.981595][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[  735.981617][   T31]  sys_info+0x141/0x190
[  735.981633][   T31]  watchdog+0xcb1/0x1030
[  735.981657][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  735.981681][   T31]  ? __pfx_watchdog+0x10/0x10
[  735.981701][   T31]  ? __kthread_parkme+0x18c/0x230
[  735.981724][   T31]  ? kthread+0x13a/0x450
[  735.981735][   T31]  ? __pfx_watchdog+0x10/0x10
[  735.981755][   T31]  kthread+0x370/0x450
[  735.981767][   T31]  ? __pfx_kthread+0x10/0x10
[  735.981781][   T31]  ret_from_fork+0x72b/0xd50
[  735.981804][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  735.981821][   T31]  ? __switch_to+0x800/0x1100
[  735.981841][   T31]  ? __switch_to_asm+0x39/0x70
[  735.981861][   T31]  ? __pfx_kthread+0x10/0x10
[  735.981875][   T31]  ret_from_fork_asm+0x1a/0x30
[  735.981902][   T31]  </TASK>
[  736.646480][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  736.653459][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  736.664139][   T31] Tainted: [L]=SOFTLOCKUP
[  736.668447][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  736.678485][   T31] Call Trace:
[  736.681752][   T31]  <TASK>
[  736.684670][   T31]  dump_stack_lvl+0x100/0x190
[  736.689340][   T31]  vpanic+0x552/0x970
[  736.693319][   T31]  ? __pfx_vpanic+0x10/0x10
[  736.697890][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[  736.704123][   T31]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[  736.710268][   T31]  panic+0xd1/0xe0
[  736.714002][   T31]  ? __pfx_panic+0x10/0x10
[  736.718417][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[  736.724595][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[  736.730796][   T31]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[  736.736947][   T31]  ? watchdog.cold+0x1ec/0x234
[  736.741714][   T31]  ? watchdog+0xcc1/0x1030
[  736.746126][   T31]  watchdog.cold+0x1fd/0x234
[  736.750716][   T31]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  736.756520][   T31]  ? __pfx_watchdog+0x10/0x10
[  736.761189][   T31]  ? __kthread_parkme+0x18c/0x230
[  736.766209][   T31]  ? kthread+0x13a/0x450
[  736.770440][   T31]  ? __pfx_watchdog+0x10/0x10
[  736.775112][   T31]  kthread+0x370/0x450
[  736.779202][   T31]  ? __pfx_kthread+0x10/0x10
[  736.783780][   T31]  ret_from_fork+0x72b/0xd50
[  736.788361][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  736.793458][   T31]  ? __switch_to+0x800/0x1100
[  736.798241][   T31]  ? __switch_to_asm+0x39/0x70
[  736.802999][   T31]  ? __pfx_kthread+0x10/0x10
[  736.807577][   T31]  ret_from_fork_asm+0x1a/0x30
[  736.812342][   T31]  </TASK>
[  736.815417][   T31] Kernel Offset: disabled
[  736.819752][   T31] Rebooting in 86400 seconds..