last executing test programs:

9m2.10498313s ago: executing program 0 (id=2901):
socket(0x28, 0x1, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101040, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_AUTHENTICATE(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/ip_vs_conn\x00', 0xf00, 0x0)
write$auto(r0, 0x0, 0x98c7)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/net/eql/queues/tx-0/byte_queue_limits/stall_max\x00', 0x20800, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000ec0)=""/4080, 0xff0)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x8, 0x4000000000df, 0x44eb1, 0x6, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/sound/ctl-led/mic/card0/reset\x00', 0xa001, 0x0)
pread64$auto(r1, 0x0, 0x594c, 0x7)
fanotify_init$auto(0x5, 0x2000000000002)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio28\x00', 0x0, 0x0)
ioctl$auto(r3, 0xc02c5625, r3)

9m1.394885136s ago: executing program 0 (id=2902):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = pidfd_open$auto(0x1, 0x0)
setns(r0, 0x2000000)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/pagemap\x00', 0x20000, 0x0)
read$auto(r1, 0x0, 0x39b8)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x80000000000000a, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0x0)
r3 = socket(0x2, 0x1, 0x106)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dmmidi2\x00', 0x80102, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYRESHEX=r3], 0x14}, 0x1, 0x0, 0x0, 0x4060005}, 0x4000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x20940, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sg0\x00', 0x82001, 0x0)
write$auto(r4, &(0x7f0000000480)='/de\xf1\xcae\x1b?\xc7r\x10\xb6\xb2\xc6\xc4\x9f\xdaiZ\'\xe79J\xa1\x1aG\xeb\xba\xa8\x99\xd0\xa6\xfa\xfdZ0\xb3\xc8\xfa\xda\xcf\x97\xba\xd6\xdf(\v@\x02\x11X\x14\x84\xbf\xb1f\x17x\xeb\xb4\xd5\xd8k\x12\xf31\xe2\xd0Bf\xc1\"\xdfg\x8fe\xf2H\xfbR\xc6\xbdm5\x06\xb2\x94\xa6o\xe3\x1bBh\xd42\x92\x98\xfa\'\xf8\xd4:\xc9\x01\xd3\x06\xd6\xfe@\xe1l\xc8\"\x1d\xb0@\xd8x\xb8\x8d\xc6\x95\x06\xc4#\xd4\xe0\b\x89\x02\xf7@\xefr\xf2\x04\x00\x00\x00\xe9\xfbY\aT\x018\xa5\x1b@\xffF\x15\xd7\x9c\xe4\xec\xff\xfd\xb1\x9aol\xb8\xc4c\x9a2!\x9f+\xe6\xdcH\x8eU\xbd\x83\x9d\xb3^\xd2\xc4\x1d\xf6\xc2\b\xe8\x85\x97\xa1\xb8\xb6\x8c\xec\xe4Pj\xc6\x9f\xb4\x99\xb3\x94\xd7|\x18\xc9M8[\xf5\x1d3\x94.L\xc1\x80\x13\xce\x02RK\xdb\xd2\x00W\x93\x8b\x89rZ\xf8\x92\xb1\x17\x95Mc,y\x02\x8f\xc7E\x05\xf2\xc7Y', 0x80000000000002)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x8, 0x948b, 0x8, 0x15f4da0a, 0x1, 0x3, 0x300000000000000, 0x10001, 0x7, 0x0, 0x5, 0x2]}, 0x0)
sendmsg$auto_ETHTOOL_MSG_LINKINFO_GET(r2, &(0x7f00000005c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000580)={&(0x7f00000003c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="04002dbd7000fddbdf250200c74db7eb47d6a9d9b500", @ANYRES32=0x0, @ANYBLOB="1400020073697430000000000000000000000000080003000800000008000300ff01000008000100", @ANYRES32=0x0, @ANYBLOB="14000200766574683000"/20], 0x60}, 0x1, 0x0, 0x0, 0x90}, 0x40001)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x70a80, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x42dc0, 0x1a0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
shutdown$auto(0x200000003, 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b71, 0x2, 0x8000)

9m0.266870336s ago: executing program 0 (id=2909):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
io_uring_setup$auto(0x6, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
shmctl$auto_IPC_STAT(0x1, 0x2, &(0x7f0000000180)={{0x5, 0x0, 0xffffffffffffffff, 0x4, 0x8, 0x80, 0xb}, 0xa, 0x80000000, 0x4, 0x6, @inferred=0xffffffffffffffff, @raw, 0x8, 0x0, &(0x7f0000000040)="b057d39cbca4ac6619c8634604cc5e27a8ae7d637d90b4536e89eaa0efc1084c0ba836b58deade55915176862bbf475882b8ff1c76b4f1009348f6a3ece7aa2944a735f97142986aa4b7a5dd8b6b3146eb2fb37dc3f7a49ebc69c33f4d1ffde17193a514121a251a413a6878df020d7a8040107a9958dc49ab0c70c0eab550049393d2298d38b4c8582f3c7296ac9b1aa208fd684a1ffce1797824bacfd1c55e1588887c1d8bc3373fdf1f4cb41d7d17461441a529bdd22a73e9f42dbb6b7e7fe6c77a586634ad3aa5e93edc7a36d0f6aa2f1527aeb5906ff41b61246c80f6505729954679d1388620cfafbb32cf7998dda85a1503380b4214", &(0x7f0000000140)="d05acb81a38634dea141f57d642daeeaaa1b1cea5a1ef00bf4eafd69fef7cc096f992e85df6af889a88dee8359aa"})
getegid()
close_range$auto(0x2, 0x8, 0x0)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000007480)='/dev/cec12\x00', 0x400, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
setsockopt$auto(0xffffffffffffffff, 0x10000008, 0x8005, 0x0, 0x2)
setuid$auto(0xe)
get_robust_list$auto(0x1, 0xffffffffffffffff, 0x0)
unshare$auto(0x40000080)
socket(0xa, 0x2, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x2, 0x4020009, 0x3, 0xeb1, 0x401, 0x4000008000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x10, 0x2, 0xc)
socket(0x28, 0x1, 0x0)
fanotify_mark$auto(0x0, 0x1, 0x9, 0x4, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
mmap$auto(0x200000000000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0)

8m58.677666063s ago: executing program 0 (id=2915):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000140), 0x2202, 0x0)
write$auto_evm_xattr_ops_evm_secfs(r0, &(0x7f0000000200), 0x0)
modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10)

8m58.491469121s ago: executing program 0 (id=2916):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000b80), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x224, r1, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x20c, 0x1, 0x0, 0x1, [@nested={0x208, 0x133, 0x0, 0x1, [@nested={0x4, 0x3b}, @nested={0x4, 0xfd}, @nested={0x194, 0x82, 0x0, 0x1, [@typed={0xc, 0x12d, 0x0, 0x0, @u64=0xf8}, @typed={0x8, 0x25, 0x0, 0x0, @fd=r0}, @nested={0x77, 0xf4, 0x0, 0x1, [@generic="fbf0e8c38486b8deeeafa0fac2944370ec91bc46bd1876f1b212785836dbc8d0204fd67497d4fe94064281d78a2aed78360a24383e031cb893f422c33775fc5a7bacf8", @typed={0x4, 0x95}, @nested={0x4, 0x92}, @nested={0x4, 0x108}, @typed={0x8, 0x23, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0xb}}, @typed={0x11, 0xf2, 0x0, 0x0, @str='ovs_ct_limit\x00'}, @nested={0x4, 0xf1}, @typed={0x4, 0x4a}]}, @typed={0x8, 0x3c, 0x0, 0x0, @fd=r0}, @typed={0x14, 0x98, 0x0, 0x0, @ipv6=@remote}, @generic="937dacfd7116a8a2ea5bcbbfedae6f6ea905518f3ac09fff81d365e0e6f017e31b443d2c7c54e6e6a54d300df9d0700478fd84d86e192d2fd7ea772dab00e37e32655d761a43fd9a4a19c1f59047656da798a155eca66cf3440a46aacfa14e1244f73df95f3378a011205753050cb8795cec5940aed4a9ec4bf451fc326cb02268a2e5391449d6cef23600b990af035ed946a2dd802c502160ca97419bfef4c22ce9684e61329f09b57383a23efed775594a6d9288b7850bf0481706ce712b7409966e94d3af3bc40d78b221072d6e5f24e2b0c9d548ce8d5f1784173115f6f4fd4a37f171205f9a"]}, @typed={0x14, 0xf0, 0x0, 0x0, @ipv6=@mcast1}, @generic="6d3967bdd68a434fa4c072508154d9fba017fddd503e251664e76fc3dcf827b4e613e537b1d21fe527d31b4109ad065a7826a68f3dc672ac8440a117ae23ac7e16df3758be05a242040c9663f6bf3708840f9b4b"]}]}]}, 0x224}, 0x1, 0x0, 0x0, 0x20000000}, 0x200400d0)

8m57.938837367s ago: executing program 0 (id=2921):
fchown$auto(0xffffffffffffffff, 0xee01, 0x0)
mmap$auto(0x0, 0xa00006, 0x20000006, 0x800000040eb1, 0xffffffffffffffff, 0xf53)
mmap$auto(0xfffffffffffffffe, 0x40000000004, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x3ff, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
io_uring_register$auto(0x2, 0xf, 0x0, 0x20)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon8\x00', 0x0, 0x0)
timerfd_create$auto(0x0, 0x0)
socket(0x2, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/sys/vm/nr_overcommit_hugepages\x00', 0x80001, 0x0)
write$auto(0x3, 0x0, 0xfdef)
socket(0x25, 0x80001, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
eventfd$auto(0x6)
socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x73)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)

8m42.448556776s ago: executing program 32 (id=2921):
fchown$auto(0xffffffffffffffff, 0xee01, 0x0)
mmap$auto(0x0, 0xa00006, 0x20000006, 0x800000040eb1, 0xffffffffffffffff, 0xf53)
mmap$auto(0xfffffffffffffffe, 0x40000000004, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x3ff, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
io_uring_register$auto(0x2, 0xf, 0x0, 0x20)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon8\x00', 0x0, 0x0)
timerfd_create$auto(0x0, 0x0)
socket(0x2, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000a40)='/proc/sys/vm/nr_overcommit_hugepages\x00', 0x80001, 0x0)
write$auto(0x3, 0x0, 0xfdef)
socket(0x25, 0x80001, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
eventfd$auto(0x6)
socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x73)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)

2m24.579331041s ago: executing program 1 (id=4434):
sendmsg$auto_GTP_CMD_ECHOREQ(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01002abd7007fbdbdf25030000000800010001000000"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40000d4)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_DEL(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x14, 0x0, 0x1, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x4001090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8)

2m21.108818588s ago: executing program 1 (id=4449):
r0 = socket(0x2b, 0x1, 0x2)
ioctl$auto(r0, 0x8941, 0x4)
socket(0x2, 0x1, 0x0)
socket(0x2, 0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='\xfa\b\x1c\xf3\xc7\x7f\xc1Mfl\x03\xde\xd3\xcbJj\f\x1a\x88\xfe%\x98o\xa5=D0\xc7\x12\x01\x89\xeeC\xfa\x92tU\xb2\x92\xc4\x91\xd6\x8d*\xa9j\xb9Y\x1bU\x12\xa4\x1a:\x021\xc5v8\xbcnYu\x81\xca\x92\xba\x94\\%\x98i\xb3\xc5\xd8\xc42\x8bL\x83\xfc\xf5\xa7\xd1q\x01`\xf6\x8d\xb6\xa1\xc2\xf6\xc4\xa4\xe0\xce\x9f\x91*}\xae\xf0\xd6p\x19\xf8\xfew\\\x0e\xf9\v\xb9\xee\x95^\xb5\xde\xb3A\xc9\x80\t\x03\x91\\\xb1P\xa4\xc1\x0f\x80\xcd\xc0\f\xf3\xe8P\xe2\x03\xe0\x8d\x06\t\xca^\xd1N\xac\x83\x1b\xe1\x1a\xebw\xd02c\x9c\xc3\xfb\xb0\xaaS\x10\x0e\x87h\x1d0\xa1\xed%\xd0\xcarL\x1d\xb1D\xcb\xe3\x05\x89\xc2\x02\xcc{\x00*\xbedm\xd4\xeb`\x89\xb2\xc8\xa2\x00', 0x80000007)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x3c, r2, 0x1b, 0x70bd26, 0x25dfdbfb, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0x18, 0x0, 0x0, @fd}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f1779048590828847"}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)

2m20.01622557s ago: executing program 1 (id=4453):
socket(0xa, 0x1, 0x0)
mmap$auto(0x0, 0x9, 0x3ff57697, 0x9b72, 0x2, 0x8000000000008000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0)
write$auto(0x3, 0x0, 0x387)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x0, 0x33, 0x0, 0x4)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)

2m18.700623713s ago: executing program 1 (id=4458):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_hsr(&(0x7f00000011c0), 0xffffffffffffffff)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r0, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={0x0}, 0x1, 0x0, 0x0, 0x240008c5}, 0x48094)

2m16.417119067s ago: executing program 1 (id=4468):
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x2, 0x88)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x3ff, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, 0x0, 0x54)
r0 = socket(0x10, 0x8080b, 0x6)
open(&(0x7f0000000000)='./cgroup\x00', 0x68a041, 0x344)
fcntl$auto(0x3, 0x400, 0x9ec0000000000000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x8000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/audit\x00', 0x40, 0x0)
pread64$auto(r2, 0x0, 0x8, 0x42)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty56\x00', 0x519000, 0x0)
socket(0x2, 0x3, 0xa)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x0)
setsockopt$auto(r3, 0x1, 0x3e, 0x0, 0xc)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000)
connect$auto(0x3, &(0x7f00000000c0)=@tipc=@name={0x1e, 0x2, 0x3, {{0x1, 0x2}}}, 0x10000055)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
write$auto(0x3, 0x0, 0x800)
syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), r0)

2m10.732171603s ago: executing program 1 (id=4482):
mmap$auto(0x343, 0x403, 0x8, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r0, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
mmap$auto(0x3, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000200), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_SET(r1, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYBLOB="01002dbd7000ffdbdf2505000000"], 0x14}, 0x1, 0x0, 0x0, 0x44}, 0x80000)
wait4$auto(0x0, 0x0, 0x2, 0x0)
getuid()
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="84000000", @ANYRES16=r2, @ANYBLOB="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"], 0x84}, 0x1, 0x0, 0x0, 0x14}, 0x1)
readv$auto(0x3, 0x0, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
syz_genetlink_get_family_id$auto_seg6(0x0, r0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/block/nbd6/queue/zoned\x00', 0x6a980, 0x0)
read$auto(r3, 0x0, 0x6)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x6, 0x1, 0x0, 0x7fffffff, 0xfffffffffffffffe)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
acct$auto(0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x80000000, 0x7000004)
getpriority$auto(0x1, 0xee00)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, 0x0, 0x4)
socket(0x10, 0x2, 0x0)

1m55.224732735s ago: executing program 33 (id=4482):
mmap$auto(0x343, 0x403, 0x8, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r0, 0x6, 0xd, &(0x7f0000000280)='lp\x00h\x85M\xdf\xdc\x83\x8a\xa7\xe4]U(\x01\t=\x1e\x00\x00', 0x4)
mmap$auto(0x3, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000200), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_BEARER_SET(r1, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYBLOB="01002dbd7000ffdbdf2505000000"], 0x14}, 0x1, 0x0, 0x0, 0x44}, 0x80000)
wait4$auto(0x0, 0x0, 0x2, 0x0)
getuid()
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="84000000", @ANYRES16=r2, @ANYBLOB="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"], 0x84}, 0x1, 0x0, 0x0, 0x14}, 0x1)
readv$auto(0x3, 0x0, 0x1)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
syz_genetlink_get_family_id$auto_seg6(0x0, r0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/block/nbd6/queue/zoned\x00', 0x6a980, 0x0)
read$auto(r3, 0x0, 0x6)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$auto(0x6, 0x1, 0x0, 0x7fffffff, 0xfffffffffffffffe)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
acct$auto(0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x80000000, 0x7000004)
getpriority$auto(0x1, 0xee00)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000bc0), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, 0x0, 0x4)
socket(0x10, 0x2, 0x0)

7.263614912s ago: executing program 2 (id=4756):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = io_uring_setup$auto(0x3, 0x0)
close_range$auto(0x2, 0xa, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x4002015}, 0xc0)
mmap$auto(0x0, 0x9, 0xdf, 0x1000000eb1, 0x401, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x4000044}, 0x400c000)
getsockname$auto(0xffffffffffffffff, &(0x7f0000000000)=@tipc=@nameseq={0x1e, 0x1, 0x2, {0x1, 0x0, 0x2}}, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x1a9842, 0x2)
r2 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31)
sendfile$auto(r1, r2, 0x0, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
r4 = socket(0x10, 0x2, 0x9)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
read$auto(0x3, 0x0, 0x80)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x4, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x80c0}, 0x4000000)
setxattr$auto(0x0, &(0x7f00000000c0)='ip_vti0\x00', 0x0, 0x183, 0x2)
r5 = socket(0xa, 0x1, 0x84)
getsockopt$auto(r5, 0x84, 0x9, 0x0, &(0x7f0000000000)=0x9b)
r6 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0xe0400, 0x0)
r7 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0xa02, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r7, 0xc1105517, &(0x7f00000001c0)={{@inferred, 0x1, 0x6, 0x6, "a2b8e85fc56865ba529faa000000000000000000000018f4ffffdeffff0000000000c7692a240000008000"}, 0x6, 0x5, 0x7, @raw=0x1ff, @reserved="fb99d320be0de941ac3f58d7aae0c84cbe332d618e0342771e3ac6e9a9df07cf9b1c017c611ac455c01804d0d3c89bee7005c5affd5ab811fd53443e6cf63a902991b44e48364e8de3f344584996c31f9ae16c6c4f064c38f590125ed26400", "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f4ab606c276852295e00af49090000008034"})
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_REMOVE(r7, 0xc0405519, &(0x7f00000000c0)={@raw=0x81, 0x7, 0xd, 0xa4, "e3eabf11dc7386d4462bc6553245da56e4978e849db4a6e0aa4e000000000000000800", @raw=0xa2cfa1c})
getsockopt$auto_SO_ZEROCOPY(r6, 0x2, 0x3c, &(0x7f0000000080)='\xb9\x00', &(0x7f00000000c0)=0xb)
ioctl$auto_USB_RAW_IOCTL_EP_READ(r6, 0xc0085508, &(0x7f0000000040)={0x8, 0x1, 0x2})
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x101d0, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

6.788971689s ago: executing program 2 (id=4757):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
statmount$auto(0x0, &(0x7f0000000040)={0x1, 0x1000000, 0x36, 0x828, 0x9, 0x8000000000000000, 0x9f, 0x7, 0x9, 0x8, 0x2, 0x9, 0x3, 0x8, 0x0, 0x200000000000f, 0x100, 0x1, 0x10001, 0x2cf8}, 0xe3c, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='N\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYRES16=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000380), r0)
r2 = setfsuid$auto(0xee01)
keyctl$auto(0x7, r2, 0x0, 0x0, 0x5)
sendmsg$auto_NFC_CMD_LLC_GET_PARAMS(r0, &(0x7f0000000840)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000800)={&(0x7f00000003c0)={0x438, r1, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x8}, @NFC_ATTR_COMM_MODE={0x5, 0xa, 0x3}, @NFC_ATTR_RF_MODE={0x5, 0xb, 0x5}, @NFC_ATTR_LLC_SDP={0x35d, 0x13, 0x0, 0x1, [@nested={0x186, 0x3b, 0x0, 0x1, [@typed={0x8, 0xd7, 0x0, 0x0, @u32=0x174c}, @nested={0x4, 0xcd}, @nested={0x4, 0x11e}, @nested={0x4, 0xac}, @typed={0x8, 0xaf, 0x0, 0x0, @ipv4=@remote}, @generic="a80c1cd34c925aa30cba64a217d9b148680f7c8a65973b64b6cf1ba2946bb24e69785da0cfca8d1363ab1b85d97416627ea45ebe25422cdf2fee54ea41dc2087c90624660aa9155057b14db3740a84fde77ee1f374ba872afbacbd115fff99ee42e94fe432b49dbe56e807826741298837026123a17844d7a6db41438fa090c4152761a4775e727b560e4a72fb3b80056d4b446591798decb91e1c7a6f5663a5e3c34266fc8dadca9228e15389b3b0056f6c0b2cd1b9d7b37de23134d2", @typed={0x8, 0x54, 0x0, 0x0, @fd=r0}, @generic="33eec86d0c41045ecee9ad068956e2c942eec17f5f11d47e942847fcde8218ac00c7625d091919d71703c3f97a1e3600c7602ea4871f88613dfda848b1ed365874b8dbbd806acf0ab80942afb93f22c33b7c96c8d979ed0f9f4dba7e921781d2b7b7c2c84c3c9f145a8f1698069c766fcd657f624e1fb18569e6b96f71091f3c7004c4715fa26c7ff5a13ac217bfedd900725c3f80c41be539ce7c6639", @nested={0x4, 0x8b}]}, @typed={0x8, 0x24, 0x0, 0x0, @uid=r2}, @nested={0xe8, 0x5, 0x0, 0x1, [@nested={0x4, 0x2f}, @typed={0xdf, 0x11c, 0x0, 0x0, @binary="0a29def71b8b611506214edba4572633a06f1ea2067084e3ffdb18c4c21190b59af4b038d417035b7ac0c65da0ed6ca2a77ef15f9d81078251a232064de6916bce41e381c0e6968aa6ce5891ba6668d816a277fe36b00da607c3632ea958b0d9cc3bb8dee89c98b6167bf2fc0dad8d0449be346a0c9839d6b9832a5396a765428233e7a3e7cd9605fa2b8cf99c800215a1063ee8313052bed324600825983366aa5be226202e1a336ea042b444acc5028e5d8149fa9ea717ab2d8ad0f738cf7badcaee133ec372e1ab8a414b5976e42790b95aa0124055f8786a79"}]}, @generic="2d3993622ee2d11e29e5c324cb6eff", @generic="3b681d2d6fc7b7f1d0b0ffc9d835b9414e7a427178c013cc22a0c7c301b229b3964b2299f2c29333cf", @generic="5df5465ea58d7229c3ecd58a1e48fea6f5c97568d464a079327391e81e1322249284213c1fb084f7ddec27bb7351cfd8ec60e6ce45830d04b706c0adf5df2464b9df921972fc50872d1538c2aa827aa12c762b847edf82009e6900490022cbd6d8dea6499a3f9e4181d9b4f68e42f52fc71a90fbcf4215c83bc9e70c26148b7ff2468e4ef3fd04c6fde2a9e2007f06e507086269df8698b9edd065ec0b224a1db1c1c115f0bbc3a2d0"]}, @NFC_ATTR_RF_MODE={0x5, 0xb, 0x5}, @NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0x3b}, @NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x1}, @NFC_ATTR_VENDOR_DATA={0x50, 0x1f, "726e62d54012e6b3baf3e53a881fa7c97ede0fa068b1b94234fcfc058a31f7fab2e52f4418455de02e625128ef27640ce40a868fd898f80ce8664d43dd751d45fc80243262fdeb04bcc7d9f4"}, @NFC_ATTR_FIRMWARE_NAME={0x9, 0x14, '[}(*^'}, @NFC_ATTR_VENDOR_DATA={0x36, 0x1f, "ea8343a8df7136b048977e7baecf08eb48e44ba55bdf5c5ee6e1964f4307c04f16fd71d8694bf027c97745772ad9018d2fdf"}]}, 0x438}}, 0x20000000)
r3 = socket(0x10, 0x2, 0xc)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
ppoll$auto(&(0x7f0000000000)={r4, 0x8, 0x6}, 0x7, 0x0, 0x0, 0x8)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x84c, 0x0, 0x9, 0x0, 0x3, 0x10b}, 0x800009}, 0x1, 0x20000000)
socket(0xb, 0x1, 0x6)
r5 = socket(0x23, 0x2, 0x0)
ioctl$auto(0x8000000000000001, 0x89ef, 0x9)
sendmsg$auto_CTRL_CMD_GETPOLICY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000e3d2bfb10310aa6952b6d71e1dd2ceb6835fe9b894a20a4b8b9ac26b8f062d931c2e114ebffaa558c99247c5eb8c92eeb33d469ac7356db5d59b1f651bf8ea31fddcdf91d5d5fbd8fcd84e", @ANYRES16, @ANYBLOB="10002cbd7000fbdbdf250a00000a"], 0x14}}, 0x0)
pipe2$auto(&(0x7f0000000000)=r5, 0x2)

5.668257007s ago: executing program 3 (id=4761):
pipe$auto(0x0)
r0 = clone$auto(0x4, 0x80000001, 0x0, 0x0, 0xfff)
move_pages$auto(r0, 0xd0, 0x0, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/loop13/rqos/wbt/inflight\x00', 0x2040, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
r2 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
open_by_handle_at$auto(r2, 0x0, 0x2)
sendfile$auto(r1, r1, 0x0, 0x2)

5.524021646s ago: executing program 2 (id=4762):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptyp5\x00', 0x48140, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/irq/2/hwirq\x00', 0x103080, 0x0)
read$auto(0x3, 0x0, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/nbd0/queue/max_integrity_segments\x00', 0x303000, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b75, 0x7, 0x7)
socket(0xa, 0x80000, 0x1)
socket(0x1e, 0x1, 0x0)
socket(0x10, 0x2, 0xb)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = getsockopt$auto(0x3, 0x200000000001, 0x3, 0x0, 0x0)
getsockopt$auto_SO_RCVLOWAT(r2, 0x6, 0x12, &(0x7f0000000000)='/dev/ptyp5\x00', &(0x7f00000000c0)=0x8003)
r3 = getsockopt$auto(0x4, 0x6, 0x6, 0xfffffffffffffffc, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x806, 0x0)
read$auto_proc_single_file_operations_base(r3, &(0x7f0000000140)=""/144, 0x90)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/fs/o2cb/logmask/HB_BIO\x00', 0x102, 0x0)
sendfile$auto(r4, r4, 0x0, 0x7)
listen$auto(0x3, 0x84)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

4.698714158s ago: executing program 5 (id=4765):
r0 = socket(0x10, 0x2, 0x0)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r0)
sendmsg$auto_NL80211_CMD_DEL_STATION(r0, &(0x7f00000006c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000300)={0x14, r1, 0x10, 0x70bd2a, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x4004080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mq_open$auto(&(0x7f0000000700)='\a\\|\n\xea\x87d\xe1c\xa7~', 0x76d0, 0x101, 0x0)
statmount$auto(0x0, &(0x7f0000000040)={0x0, 0x0, 0x38, 0xffffff01, 0x9, 0x9, 0x80000001, 0x7, 0x8, 0x5, 0x5, 0x9, 0x2, 0x8, 0x5, 0xf, 0xffffffffffffffff, 0x9, 0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x800, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00{', @ANYRES16=0x0, @ANYBLOB="000326bd7000fedbdf250200000008002700"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

4.629494712s ago: executing program 3 (id=4766):
r0 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
ioctl$auto_VHOST_GET_VRING_BASE2(r0, 0xc008af12, &(0x7f0000000100)={0xff, 0x3})
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000229bd7000fbdbdf25022000a6"], 0x1c}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NBD_CMD_CONNECT(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001d80)=ANY=[], 0x1374}, 0x1, 0x0, 0x0, 0x200480d0}, 0x20040000)
r2 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
r3 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x80842, 0x91)
read$auto(r3, 0x0, 0x1)
write$auto_proc_clear_refs_operations_internal(r2, 0x0, 0xffffff4b)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="19"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r4 = socket(0x2, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'bond_slave_1\x00'})
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2a, 0x2, 0x0)
socket(0x11, 0x800000003, 0x0)
ioctl$auto(0x3, 0x800005411, 0x38)
r5 = openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/mac80211_hwsim/hwsim15\x00', 0x604142, 0x0)
r6 = prctl$auto_PR_SET_SECCOMP(0x16, 0x3c1e, 0x0, 0x800, 0x8)
ioctl$auto_XFS_IOC_START_COMMIT(r5, 0x80585882, &(0x7f0000000040)={r6, 0x0, 0x7, 0x7fffffffffffffff, 0x1, 0xdb, [0x6, 0xf9, 0x4, 0x8000, 0x6, 0x2]})

4.201278415s ago: executing program 5 (id=4768):
prctl$auto(0x1000000001c, 0x5, 0x100000000, 0x400, 0x3fffffffff)
setreuid$auto(0x0, 0x5)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)

3.821274067s ago: executing program 5 (id=4769):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x21, 0x2, 0x2)
setsockopt$auto(0x3, 0x1000000110, 0x2, 0x0, 0xdf)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/dev\x00', 0xc0c03, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r2, 0x0, 0x0)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f00000085c0)=""/89, 0x59)
read$auto(r1, 0x0, 0x1)
mmap$auto(0x9, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_tracing_thresh_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/tracing/tracing_thresh\x00', 0xc0000, 0x0)
preadv$auto(r2, 0x0, 0x9, 0x9, 0x14)
mmap$auto(0x0, 0x400005, 0x800000000000df, 0x9b72, 0x2, 0x8000)
madvise$auto(0x8000000000000001, 0xffffffffffff0000, 0x15)
add_key$auto(0x0, 0x0, 0x0, 0x1, 0x8010)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, 0x0, 0x40000)
msgget$auto(0xc, 0x77d9)
r3 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000140), 0x102, 0x0)
ioctl$auto_USB_RAW_IOCTL_INIT(r3, 0x41015500, &(0x7f0000000300)={"5adef7dee7f7018957844cff29ed32b5e06502a30816a7b0342aecf5f00ba22f9f22c23d86776e7d6063852dc51b297d7b2b2c3f6165dd465564daa9a2cca3b9b9c39d9bbb61b295c05500b6fe0b8472ba8186c035fd2688b67c36b68ceca32e2224537de625d65efabc41094dbaf17f9de8de04b004d05ab550d26bfed7346e", "6a1bad4244cddabc5ab8d84a2115e0e70d0facb940aa64b6d9eaff2ae6bd7c5dcfe4787051d626364b7ae8d7ba0abae4889b7d58e1d448845d4af2ae37e050ae399379b385e9baf152e042e71a82d23e1948a0361be893b768934ff405d41b80790ac47f793c6e9bf2a139c3504753c3fc1f121a0e28e4b321ca335318fe4dea", 0x2})
msgrcv$auto(0x0, 0x0, 0xff9, 0x0, 0xb1)
msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x1}, 0x8, 0x101)
socket(0x10, 0x2, 0xc)
r4 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/pcmC1D0p\x00', 0x5, 0x0)
writev$auto(r4, &(0x7f0000000540)={0x0, 0x9}, 0xff)
socket(0x2a, 0x3, 0x93f)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/route\x00', 0x0, 0x0)
timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6)
mmap$auto(0x0, 0x48, 0xdf, 0x9b72, r4, 0x20000000008000)
sendmsg$auto_NETDEV_CMD_DEV_GET(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0xc080)

3.382077329s ago: executing program 3 (id=4770):
mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_BULK32(r1, 0xc0105502, &(0x7f00000002c0)={0x6, 0x7fff, 0x4, 0x8000})
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f00000018c0)=@in={0x2, 0x300, @loopback}, 0x55)
ioctl$auto_MON_IOCX_GETX(0xffffffffffffffff, 0x4018920a, &(0x7f0000000080)={&(0x7f0000000000)={0x1, 0x4, 0x80, 0xb5, 0x6, 0x7, 0xb, 0x9, 0xffffffffffffffc3, 0x18, 0x81, 0x8, 0x1ff, @setup="0f4c7d42e5947a67", 0x8000, 0x100, 0x9, 0x6}, &(0x7f0000000040)="2d4092152205180fe69f2d3597e3d670424f3072b332f907ee05ceb3c30eb06f", 0x3})
msgctl$auto_IPC_SET(0x979, 0x1, &(0x7f0000000140)={{0x7ff, <r2=>0xffffffffffffffff, 0xee00, 0x100, 0x1, 0x200, 0x7}, &(0x7f00000000c0)=0x9, &(0x7f0000000100)=0x3, 0x1, 0x40, 0xd, 0x4, 0x5, 0x2, 0x4, 0x9, @inferred=0xffffffffffffffff})
fstat$auto(r0, &(0x7f00000001c0)={0x3, 0x3, 0x0, 0x8000, r2, 0xffffffffffffffff, 0x0, 0xa616, 0x5f65, 0x80, 0x5, 0x7, 0x2, 0x7fffffffffffffff, 0x0, 0x6, 0x1})

2.912069394s ago: executing program 5 (id=4772):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4810}, 0x8811)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
iopl$auto(0x2)
iopl$auto(0x1)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x1, 0x800000000df, 0x9b72, 0xffffffffffffffff, 0x8000)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x8002, 0x2)
prctl$auto_PR_SET_VMA(0x53564d41, 0x0, 0x0, 0x5, 0x0)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000001500)='/proc/kpagecgroup\x00', 0x101000, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0xf5}, 0x7)
read$auto_proc_reg_file_ops_compat_inode(r0, 0x0, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x0, 0x29, 0x0, 0x10001)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r1)
socket(0x2, 0x1, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
r3 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$auto_proc_page_owner_operations_page_owner(r3, &(0x7f0000002080)=""/4096, 0x1000)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_DRAIN(r2, 0x40045731, 0x0)

2.415308212s ago: executing program 4 (id=4774):
pipe$auto(0x0)
r0 = clone$auto(0x4, 0x80000001, 0x0, 0x0, 0xfff)
move_pages$auto(r0, 0xd0, 0x0, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/loop13/rqos/wbt/inflight\x00', 0x2040, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
r2 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
open_by_handle_at$auto(r2, 0x0, 0x2)
sendfile$auto(r1, r1, 0x0, 0x2)

1.903697169s ago: executing program 3 (id=4775):
r0 = socket(0x2, 0x5, 0x0) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async)
utimes$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x8, 0x2})
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0xffe0}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)

1.83267911s ago: executing program 4 (id=4776):
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x2, 0x3a)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000001c0)={0x30, r1, 0x1, 0x50bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic="ffffe000"]}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x200000000006}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x8880)
lsm_list_modules$auto(0x0, 0x0, 0x0)
io_uring_register$auto(0x2, 0xd, 0x0, 0x20)
io_uring_setup$auto(0x5, 0x0)
pwrite64$auto(0xc8, 0x0, 0xfdf2, 0x3a)
rseq$auto(0x0, 0x7f, 0x3f22, 0x2)
close_range$auto(0x2, 0x8, 0x0)
socket(0x26, 0x80805, 0x0)

1.695295821s ago: executing program 2 (id=4777):
r0 = socket(0x10, 0x2, 0x0)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r0)
sendmsg$auto_NL80211_CMD_DEL_STATION(r0, &(0x7f00000006c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000300)={0x14, r1, 0x10, 0x70bd2a, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x4004080)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mq_open$auto(&(0x7f0000000700)='\a\\|\n\xea\x87d\xe1c\xa7~', 0x76d0, 0x101, 0x0)
statmount$auto(0x0, &(0x7f0000000040)={0x0, 0x0, 0x38, 0xffffff01, 0x9, 0x9, 0x80000001, 0x7, 0x8, 0x5, 0x5, 0x9, 0x2, 0x8, 0x5, 0xf, 0xffffffffffffffff, 0x9, 0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, 0x800, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00{', @ANYBLOB="000326bd7000fedbdf2502000000080027000e"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

1.518633567s ago: executing program 4 (id=4778):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1ca6ffff", @ANYBLOB='^\x00', @ANYRES32, @ANYRES32, @ANYRES64, @ANYRES32], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)

1.467766758s ago: executing program 4 (id=4779):
arch_prctl$auto(0x5005, 0x200000000000006)
r0 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000017c0)='/sys/kernel/debug/lru_gen\x00', 0x1, 0x0)
writev$auto(r0, &(0x7f0000000100)={&(0x7f0000000000)='e', 0x407116}, 0x8)

1.335014462s ago: executing program 2 (id=4780):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioperm$auto(0x7, 0x6, 0x1)
openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/16s\x00', 0x40000, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x500, 0x0)
mmap$auto(0x0, 0xb, 0x72, 0x8b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto(0x6, 0x40000000029, 0x1e, 0xfffffffffffffffe, 0x0)
unshare$auto(0x40000080)
acct$auto(&(0x7f0000000080)='/proc/sys/kernel/sched_deadline\xdcBH\xc7H\xe2\x1d\b\x00ax_us\x00\xae\xb5\x86\xe9\xf6\xfe\x9b6\x91\x8f\x158\xe7qwI\t0\xc3\xd1\xcd\xf5\x04\xe0B\xe0U<\xb1\x1d\xda\xd2')
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/bond0/flags\x00', 0x111142, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
read$auto_tracing_pipe_fops_trace(0xffffffffffffffff, &(0x7f0000000100)=""/70, 0x46)
setresuid$auto(0x2, 0x7, 0x8080)
ioctl$auto(r1, 0x4b3a, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clocksource/clocksource0/current_clocksource\x00', 0x8502, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
write$auto(0xffffffffffffffff, 0x0, 0x0)
set_mempolicy$auto(0x4005, &(0x7f0000000000)=0x1, 0x4)
io_uring_register$auto(r0, 0x80, &(0x7f0000000240)="89cb92b4015e75fcfb76862efb1f38685d5d0906c31f6a23a61374f4071c09b4bfb0bee1c83bb920dc13b470b60b60d664b688eff561ae914e32da4779e0d6c6f1300e158bfcc179fa82dbdfdefebef014217443721b51426045f8405f25f581fdaa2bb52dc0ca73860d6393a74d1a0bb2ff3f6d6f404150f190b22c6000fffbfce06d7bcaf068af5bfba809446e81bd88de11eca4807a7689e9a9", 0x3)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffff7fffff0005, 0x8)

870.522522ms ago: executing program 5 (id=4781):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x8000003, 0x7)
fanotify_init$auto(0x4f1, 0x1)
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x80802, 0x0)
ioctl$auto(0xffffffffffffffff, 0x7, r0)
getxattr$auto(0x0, 0x0, 0x0, 0x4f)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x200, 0xfffffffffffffff8, 0x1004000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x20009, 0xf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x4)
memfd_secret$auto(0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x8, 0xfffffffffffffffa, 0x13, 0x3, 0x0)
r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6)
ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r1, 0x7cb, 0x0)
socket(0x10, 0x2, 0x0)
r2 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, 0x0, 0x18200, 0x0)
read$auto_proc_page_owner_operations_page_owner(r2, 0x0, 0x0)
openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, 0x0, 0x82180, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
pipe2$auto(0x0, 0x80)
fcntl$auto(0x0, 0x407, 0x100000)

832.092374ms ago: executing program 4 (id=4782):
mmap$auto(0x0, 0xfb1, 0xffffffff, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0xa, 0x2, 0x3a)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000001c0)={0x30, r1, 0x1, 0x50bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x200000000006}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x8880)
lsm_list_modules$auto(0x0, 0x0, 0x0)
io_uring_register$auto(0x2, 0xd, 0x0, 0x20)
r2 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon8\x00', 0x881, 0x0)
ioctl$auto_MON_IOCX_GETX(r2, 0x4018920a, &(0x7f00000000c0)={0x0, 0x0, 0x4})
io_uring_setup$auto(0x5, 0x0)
pwrite64$auto(0xc8, 0x0, 0xfdf2, 0x3a)
rseq$auto(0x0, 0x7f, 0x3f22, 0x2)
close_range$auto(0x2, 0x8, 0x0)
socket(0x26, 0x80805, 0x0)
shmctl$auto_SHM_UNLOCK(0x878, 0xc, &(0x7f0000000100)={{0x175, <r3=>0xee01, 0x0, 0x9, 0xfffffffc, 0x4, 0x8906}, 0x8000, 0x2, 0x5, 0x1, @inferred, @raw=0x81, 0x2, 0x0, &(0x7f0000000000)="4fb5f1df743a291955aff9e35451930f76c723080f7d77eccb242670c91c7b216bb595af1a49af6ca36b2ab3a9dad39f1dca4628168c9f8fbff11fcb97300df3de23b29d9518e17a21c09a95948d18e1ea5612ed6b8930f86196df1e5f741f3ede9bca26df54155acac71529239f58523b851cb3d02794c69d4566faf77da72de8aa3afe7088b57930af2b57cbe47653448f6c892ff12224916f632937f44521d2f7ff8aa41a370a81102624670217e985cff59a660dcb261daea2a0fe6a309893159829ec43ea0fb18686c5b669456feadfd4a6eb3a7ec8", &(0x7f0000000200)="8e854453936535ad24d233df8c5235d90f77dc7c96a5f94409ac6235e7d252efc617a681649149e2d768987d6ec86b62f42e22cca77c006d984fd8a91faaead9243e1e1d14efec031ae811dad2e70a4b7370907cdcde709c7dc3ee9055eede9c6c2f1eebff862148df1a00b612c77fdf951d100db131cd6de2468f6d5990155dd35912425dcb60a69802e8c18aedd229712855744c1a505161d7af1ef6a7ae1b997440a75cd939b6efaf9cdfda386577cf0536606d7736eb1a1953ad89e495e1e9e1d7e775c19d35fb1c22c4e92ecaf9d3622447777c97a1dfc2afdc1033132ca1ab7fe3848b70"})
setreuid$auto(r3, 0x0)

556.413507ms ago: executing program 3 (id=4783):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/lockd/parameters/nlm_grace_period\x00', 0x8001, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)

553.17694ms ago: executing program 5 (id=4784):
pipe$auto(0x0)
r0 = clone$auto(0x4, 0x80000001, 0x0, 0x0, 0xfff)
move_pages$auto(r0, 0xd0, 0x0, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/loop13/rqos/wbt/inflight\x00', 0x2040, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
socket(0x11, 0x80003, 0x300)
socket(0x29, 0x5, 0x0)
r2 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2)
open_by_handle_at$auto(r2, 0x0, 0x2)
sendfile$auto(r1, r1, 0x0, 0x2)

92.522926ms ago: executing program 3 (id=4785):
mmap$auto(0x2, 0x8, 0xe91, 0x800000019, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = open(0x0, 0x22240, 0x155)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
mq_notify$auto(r0, &(0x7f0000000040)={@sival_ptr=0x0, @inferred, 0x1, @_tid})
mmap$auto(0x0, 0x2020009, 0x81, 0xeb1, r1, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/mtd-0/min_bytes\x00', 0xc0002, 0x0)
read$auto(0x3, 0x0, 0x80)
write$auto(0x3, 0x0, 0xfdef)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, 0x0, 0x80)
sendmmsg$auto(r1, &(0x7f00000000c0)={{0x0, 0x2, 0x0, 0xa7, &(0x7f0000000140)="346afcc2ec1717dd5f9e30307c80920a3f58e736e759105f87a4225f71d0d03d00"/58, 0x8000, 0x8000}, 0xffffffff}, 0x7, 0x9)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, 0x0, 0xff, 0x0, 0x1, 0x3}, 0xed7138c}, 0xb, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
madvise$auto(0x0, 0x200007, 0x8)
r3 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
mmap$auto(0xd, 0x8a3a, 0x78e, 0xfffffffffffff373, r2, 0x8)
openat$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/dynamic_events\x00', 0x80202, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x2, 0x9, 0x3, 0xb, 0x5, 0x1ffde, 0x3, 0x6, 0x2, 0x9, 0x5, 0x3, 0x4, 0xb0, 0x7, 0x2, 0x3, 0x5, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcb2, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x8)
openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000001200)={0x6bc582, 0x81, 0x11}, 0x18)
acct$auto(&(0x7f0000000000)='/dev/ptyw5\x00')

2.237659ms ago: executing program 2 (id=4786):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000)
write$auto(0x800000000000c8, 0x0, 0x1a)
r0 = socket(0xa, 0x3, 0x3a)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3)
getsockopt$auto(r0, 0x29, 0x37, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x7fffffff)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
r1 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x2, 0x0)
read$auto(r1, 0x0, 0x39b8)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000000), 0xffffffffffffffff)
capset$auto(&(0x7f0000000100)={0x20080522}, 0x0)

0s ago: executing program 4 (id=4787):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bpq5/addr_assign_type\x00', 0x181100, 0x0)
r1 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace_options\x00', 0x4c2801, 0x0)
write$auto(r1, 0x0, 0x2) (async)
lsm_set_self_attr$auto(0x3, 0xfffffffffffffffc, 0x1f, 0x8000000000000000) (async)
syz_genetlink_get_family_id$auto_batadv(&(0x7f00000002c0), 0xffffffffffffffff) (async)
write$auto(r0, &(0x7f0000000900)='j\xa2\xb1\n\xb4\xd3\x00\x00\x00\x00\x8e\xc4\x97\x8a\x10\xd5<\xa7J\xb1\x00$\xd6\xfd\xca}\xa3\v\xfc7\x93S8\x02\x88pmh\x14\x86p\x04\\8\xe1|\xa8s\xa7\xdbLq\x0e\xdb\xa7\xb3\x94R\xb3D0\xf1Uf\a\x9f4\xb0\x957\xa6\xcd\xeb\x87^I\xf4\x0f\x18\x80h\xaau\x94\x1c\xd1\xb1c\xafZ\xb1\xf3\v\xd5\x1f\x14\x8c\x1bi\x90\xc8[\xecE\xfdwm\xb6\xf1Wj\xab\xfcIU\xce9\b\xcc\xfc&G*\xe5\x96\x91x\x93}$\x813*\xd4\x16\'w\xad<\xf6\xb1\xd2\xe5\xc3\x19\xfb\x15\xd5U\x80BL\xd8\x19\'\x19\b8\x96\xfb\x9f\xf9y\xf0:\xa18\xd8s\xf6~\x86\x84\xd6\xc1\xdaGo\xcc\xe1\xedq\x06\xb8\xb5\xaf4\xa3\xf5\xf0\xd1\xc13F\xfa.\xf0\"\x12\xe4\x1a\xed\xb7\xaeC\xceDwn\xc5C3v&%\xe0\xe7\xc6\x89\xbb\nH\x0fF\xdc\x03\xba\x18Y\x9d\x7f\xc8B\xfai\x8f]\xcf\x11F\xcb4\x90\x84\n\xea\xd0\x1d0\xb5\xcc\x1f\xf8\xf7\xbb\xf6\xb0\xc3D\xffb\xdchM\xeaq`\xc3\x9bfw\x9d|m0:\xd3\xb3$\xabJ\x84b\x1d\x12\xd0\xf7{\x19\x1cu\x94\x85\xd7\xf7\x88\x8a\xb1\x1c\xc3\x8d\x85.\xb3\xebE\xc2\xa5\r\xf7l\xdd~\xfe\a\xd5K\xb0\v}_\x92s\x9a\x06\x06\xa9I\x86\xc4\xdc\x83\x03\r\x93HXz4\xed\xa5\xd2f3E\xc6\xb7)\x1d\xb2^\x8a\x0e\x1bv\x10\xeffv\x95|\xfb+|\b\xf5\xf4\"t\xd5\xf3%\xb0\x12Y\xa4\xbf\xf8\xb8\xeaF\x91\x96\x9dO`\xf0Pv\xb9\xeb\xf7\xc6\xd7\n\x90B\xe9\f\x8c)\x83iYy\xf3\n\xd7\xbb\x19\xe9~\xbc\x8f\xf4\xda\xcc\xfe6nu\xb8\x82l\x1djc\xe9\xce\"\x1a\x19:G\xa3\xb5\xd34\xe3\xf9>\x91*\xb4\xd7M\xa7\xd3\x19\xed\xf3\xbb\xd8\xb6_\xdb\xec\xacM\xb1\xfc\xcd^\xd1\x18\xf6\t\x12\xdd\n\x16VT\xedT\xa2J\xa4\xe4{\x12\x8df\xed\xd9Q.\xd7\x03+?\r\x98J\x9a\x13\x17\x9c1\xe6\xf7\xaf\x99k&\x96w\xa5\x0e \x01\xe5\xeb\x92\xe2\xd5\xc0\x88D\x06tE\xeb~q>T\x0f\xfa\x1e\xea\xb9H\x1a\xf9VHW;D\xc0\x98\ncs\xbf\xe48*\x8b\ry\x9di\xb2=\xeaI\xd6\xec\xd9\xf6\x15\xf9\x02R\xd0\xaeb\xe0\xab\x01\xb6R\xbc\x88\x13r:\x9a\x99\xc0\x81\x01\xd7\xe2\xcd\xe5\x1f9+\xd2hOp\x95\xf0\x18x\xda{\xbe\x82\xa7\xc1\xbdZ\xc1\xa2o\xae\x13w\xd6\xe3\xfe\x91\x81\x9c\xbb\x9d\x9a\x10\xf9\xd7\xcc\'\xdc\xbf\x1b\xd0\x14F\x19\x86\x9b\xeb\xce\xba\xe4*\x8a\x11\x1b=\xa6\x89Y\x1b\xa2\xde\xac\x0e[N\xb4\xd7x!\x95\xbb%\xb3o\x00\xc3\x9f\xaa(\xac\xf7\xcc\xe6\xeb\x97\xab\xabz\xd5\xe8\x15:\xd8Ck\xed.\x81\xa0I:Vs0\xe6\xf5jE\xff\xd1\xd8\x1bHQXd-ifA\xdcO\xfb\xe4\xca\xcb\xc0\xd8~\xf1\xb2u\xb1B-\x90\xfe\xd5\xe7\x85\xea /\xa0\r|\x04\x8fG\x8e\x8e\x8d{\xbd\x9bb\x02\x96d\'\xc7\"_\b\xae\xef\xdb\xa8dqY\xaa\x13]H\xe0\xf9\x8a\xa2\xec\xb0eI\x9f\xc9\x8bhw\xcfTG\xdf\x19\x83\x04\xe7\xa4\xa21\xbd\"\x89\xb9\xc2\xe8\xad\x1aR-\x95\x10\xde(\x01\xbf\xe0\x04b\x84S\au\r\x1d\x8c\x19\x81\xb8\xf2\xcd\a\xe3-\xc6\x82O0\x14\v}^\x00\x00\xca\x1f\x83\x85z\x81\xd9\xa3\xbc\xac\x1e\xf4\xfb\xef9t\')\xe1Q\x03\x80\xcc\x13\xd5\x16\x03\xe7\xab\xf2a\x9a}4]\xbd\xb6\x98\x02\xa2\"$\xb9\x9cb\xfc<\x99\xd1S\x9e=\xd7w66\xf4\x86\v\x00`\x95\x1bT\x0f\"\xe9P\x85UR\xbc\xda\x1fH\x9c\x00\x00\x00\x00\x00\x00\x00\b-LW\xc4\x91\x17\xc5\x86,N6\x9e\xa6\xeb@VA\xf6\xd0\x14\xcc{:', 0x8) (async)
mmap$auto(0xfffffffffffffffc, 0x4020008, 0x240, 0xeb1, 0x401, 0x4d4) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x3a88) (async, rerun: 64)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) (async, rerun: 64)
memfd_create$auto(0x0, 0xb)
io_uring_setup$auto(0x6, 0x0)
socket(0xa, 0x801, 0x84) (async, rerun: 64)
getsockopt$auto(r1, 0x7ff, 0x40004, 0x0, 0x0) (async, rerun: 64)
setsockopt$auto(0x400000000000003, 0x29, 0x46, 0x0, 0x3) (async)
connect$auto(0x3, 0x0, 0x55) (async, rerun: 64)
r2 = pipe$auto(&(0x7f00000000c0)=r1) (rerun: 64)
sendmsg$auto_HANDSHAKE_CMD_ACCEPT(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={0x0, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x4) (async)
fcntl$getown(r2, 0x9) (async)
process_vm_readv$auto(0x0, &(0x7f0000000380)={&(0x7f0000000140)="03108b7780a1c8b786546381485cb3e63c94d0292cdd141d5b8df7d022067c2644b43f0cd45dd93b536b4c42d728c1a27c38f483811e543935f7e1e6cb98fede", 0x6e1c}, 0xb, &(0x7f0000000440)={&(0x7f0000000200)="84284183153f7008bc7fc016edf33ac86733fd9fba67df0cfe0d306c09000000fd6306db725195aa528f47d6a72ea3879400000000b95983611c822de8686eda214836bf020ab756185843229c95216bec7a0dd993245087a519e4b44e364c669ac0984f0b7ef9131a393a5c94043b23eeefe341880d52d4f806d6a5b2564722d9cb47d5a4512bdc173c929502f3da8ea0e840fe90356dce007fbce1fbff7be10088f9a4a8e200000000", 0x3}, 0x2, 0x3fffffffc) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x3, 0x52109cdd, 0x16, 0x403, 0x8000) (async)
r3 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r3, 0x84, 0x3, 0x0, 0x0) (async)
r4 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x2ca943, 0x0)
ioctl$auto_MON_IOCG_STATS(r4, 0x80089203, 0x0) (async)
r5 = socket(0x11, 0x6, 0x1)
sysfs$auto(0xfffffffe, 0x2, 0x0) (async)
setsockopt$auto(r5, 0x107, 0x8, 0x0, 0x6) (async)
read$auto(r0, 0x0, 0x2)

kernel console output (not intermixed with test programs):

���������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
����
�������	��	�
���	
	�	��	
����	�	��		����	�
�����	��	�����	��
��������	��	�	��
����
����
����
����	
�����		
����	
����
�����
����
����
����		
�����	
�����
����
�����
�����	
�����	
�����	
����
����
����
����
���	�	
�������������������������������������������������������������������
������
��������
�����	��	�
��������
��������
��������
����
����
�����	
�����
�����	
�����	
�����
�����	
����
�����
����
�����
�����	
����
����
���	�
�������������������������������������������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
�����
����
���	
	�	��	
����	�	��		����	�
�����	��	�����	��
��������	��	�	��
����
����
����
����	
�����		
����	
����
�����
����
�����
�����
�����
�����	
����
����	
����	
����	
�����	
�����	
����	
����	
�����	
�����			
����	

����		
�����		
����	
�����	
�����	
����			
�����			
�����
�����			
����		
����
�����
�����	
�����	
�����			
�����		
����
����
����
����
�����
�����	
����
����
����
���	�
�������������������������������������������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
����
���	
	�	��	
����	�	��		����	�
�����	��	�����	��
��������	��	�	��
����
����
����
����	
����	
����
�����
����
����		
����		
�����		
�����
�����
	
����	
�����	
����
�����
�����
�����	
����
�����
�����	
����
�����
�����
�����
�����	
�����	
����
�����	
����
����
���	�
�������������������������������������������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
����
���	�����	�	�	���
���	�����	�	�	���
���		���	��
���	��	�����		�
���	��	�����		�
���	�����	�	�	���
���	�����	�	�	���
���	
	�	��	
����	�	��		����	�
�����	��	�����	��
��������	��	�	��
����
����
����
����	
�����		
����	
����
�����
����
����
����
�����		
�����		
�����	
�����
�����	
	
�����	

�����	
����
�����
�����
�����	
�����		
�����	
�����	
�����	
�����	
�����	
����	
����	
�����	
�����
�����	
�����	
�����	
����	
����
����
���	�
�������������������������������������������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
����
���	�

�	
��				
���	�����	�	�	���
���	
	�	��	
����	�	��		����	�
�����	��	�����	��
��������	��	�	��
����
����
����
����	
����
����	
����	
�����	
�����	
�����	
����
�����	
�����
�����
�����	
����
�����
����
����
���	�
�������������������������������������������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
����
���	�����	�	�	���
���	�����	�	�	���
���	
	�	��	
����	�	��		����	�
�����	��	�����	��
��������	��	�	��
����
����
����
����	
�����		
����	
����
�����
����
����
����
�����		
�����		
�����	
�����
�����	
	
�����	

�����	
����
�����
�����
�����	
�����		
�����	
�����	
�����	
�����	
�����	
����	
����	
�����	
�����
�����	
�����	
�����	
����	
����
����
���	�
�������������������������������������������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
����
�����
��	��	�
���	
	�	��	
����	�	��		����	�
�����	��	�����	��
��������	��	�	��
����
����
����
����	
�����	
����	
����
����
�����
�����	
�����	
�����
�����
�����			
�����	
����
�����
�����	
����
����
����
�����
�����	
�����	
�����	
����
����
����
����
���	�	
�������������������������������������������������������������������
������
��������
�����	��	�
��������
��������
��������
����
����
�����
�����	
����
�����
�����	
����
�����
�����
�����
�����	
�����	
����
�����	
����
����
���	�
�������������������������������������������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
����
������	��		�	�	�	��
	�		�	��	��	��
������	��		�	�	�	��
	��				��	��	��
���	��	�����		�
���	�����	�	�	���
���	�����	�	�	���
���	��	�����		�
����	�������
���	���				
���	�����	�	�	���
�����	��
���		���	��
���	��	�����		�
���	�����	�	�	���
���	��	�����		�
���	�����	�	�	���
���		���	��
���	��	�����		�
���	�����	�	�	���
���	
	�	��	
����	�	��		����	�
�����	��	�����	��
��������	��	�	��
����
����
����
����	
����
�����
�����
�����		
�����
�����
�����	
����
�����
�����	
����
�����
�����	
����
����
���	�
�������������������������������������������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
����
���	�����	�	�	���
�����	��
���	�

�	
��				
��������	
���	��	�����		�
���	�����	�	�	���
�����	�	����	�	��
�����	������
���	�����	�	�	���
���	�����	�	�	���
���	
	�	��	
����	�	��		����	�
�����	��	�����	��
��������	��	�	��
����
����
����
����	
�����		
�����
����	
����
����
����	
�����	
�����	
�����	
�����
����		
�����		
����	
�����	
�����
�����
�����
�����
����	
�����	
����
����
���	�
�������������������������������������������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
����
����			��	�
����			��	�
�����	��
���	��	�����		�
���	�����	�	�	���
���	
	�	��	
����	�	��		����	�
�����	��	�����	��
��������	��	�	��
����
����
����
����	
����
����	
����	
�����	
�����	
�����	
����
�����	
�����
�����
�����	
����
�����
�����
����
����
���	�
�������������������������������������������������������������������
�������	�
��������
�����	��	�
��������
��������
��������
����
���	�������
��	��	�����		�
��	�����	�	�	���
�����	��		�	�	�	��
	�	���	����	�
��	�����	�	�	���
��	�����	�	�	���
����	�������
��	�����	�	�	���
��	��	�����		�
��	��	�����		�
��	�����	�	�	���
��	��	�����		�
��	�����	�	�	���
��	�����	�	�	���
��	��	�����		�
��	�����	�	�	���
���	�	�	��

����	��	�����	��
�������	��	�	��
���
���
���
���
���	
���
����
����
����	
���
����
����	
���
����
����	
����
����	
����
���
���
���	
����
����	
����
���	
����	
����	
���
����
����		
����
���
���		
���
����
����
����
���
���
����
����	
����	
����			
����		
���
����
����	
���
����
����	
����	
���
����
����
����
����
����
����
����	
����	
����		
����		
����	
����
����	
����
���
����
����
����
����
����
����
����	
����	
����	
����		
����	
����
����
���	
����	
����	
���	
����	
����
����
���		
���
��	�
������������������������������������������������������������������
�����
�������
����	��	�
�������
�������
�������
���
�����		��	�
�����		��	�
�����		��	�
������
���
���
���
���
��	�
��	�
��	�
��	�
��		�
���
���
��	�
���
���
��
�
��		�
��	�
��			�
��		�
��	�
��				�
��				�
���
���
���
���
��	�
��	�
��	�
��	�
��		�
��	�

�	
��				
���
���
��	�
���
���
��
�
��		�
��	�
��			�
��		�
��	�
���
��	�
��						
�������	���	���	��	��

��	
	�	��	
���	�	��		����	�
���	�	�	��

����	��	�����	��
�������	��	�	��
���
���
���
���	
����		
����	
���	
���
���	
����	
����	
����	
����
���		
����		
���	
����	
����
����
����
����
���	
����	
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
����	��	�����	��
�������	��	�	��
���
���
���
���
���	
���
����
����
����	
���
����
����	
���
����
����	
����
����	
����
���
���
���	
����
����	
����
���	
����	
����	
���		
����		
����	
����			
���		
����		
����		
���			
����			
���		
����		
����
����	
���
����
����	
����	
���
����
����
����
����
����
����
����	
����	
����		
����		
����	
����
����	
����
���
����
����
����
����
����
����
����	
����	
����	
����		
����	
����
����
���	
����	
����	
���	
����	
����
����
���		
���
��	�
������������������������������������������������������������������
�����
�������
����	��	�
�������
�������
�������
���
�����		��	�
�����		��	�
�����		��	�
������
���
���
���
���
��	�
��	�
��	�
��	�
��		�
���
���
��	�
���
���
��
�
��		�
��	�
��			�
��		�
��	�
��				�
��				�
���
���
���
���
��	�
��	�
��	�
��	�
��		�
���
���
��	�
���
���
��
�
��		�
��	�
��			�
��		�
��	�
���
��	�
��						
�������	���	���	��	��

��	�

�	
��				
���
���
���
���
���
���
���
���
���
�������	
���	�������
��	
	�	��	
���	�	��		����	�
����	��	�����	��
�������	��	�	��
���
���
���
���	
����	
���	
���
���	
���	
����	
����
����	
���	
���
����
����	
����	
���
����	
����
����	
����			
����	
���	
���	
���
����
����	
���
����	
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
��	
	�	��	
���	�	��		����	�
����	��	�����	��
�������	��	�	��
���
���
���
���	
����	
���	
���
����		
����	
���
����
����
����
����	
����	
����
���
���
���
���	
���	
����	
����	
����	
����
���		
����		
���	
����	
����
����
����
����
���	
����	
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
���	�������
���	�������
���	�������
���	�������
���	�������
���	�������
��			����
���	���	
��	��		��	�
��	��		��	�
��	��	�
��	��	�
��	��		��	�
��	��		��	�
��	��	�
��	��	�
����	�	���	�	�	���	
����	�	���	�	�	���	
���	���	
����	��
����	��
����	�	�
�������	��	���	���������	��	�	�	�����	��	���	��������
�����	�	��	�	�	��	
����	�	�
�������	��	���	���������	��	�	�	�����	��	���	��������
�����	�	��	�	�	��	
�����	�	�	�			������	�����
�����	�	�	�			������	�����
����	�
����	�
���	���	
���	��	����
������	
�����	�	�	�			������	�����
�����	�	�	�			������	�����
���	���	
�����	��	�
�����	��	�
�����	��		��	�
�����	��	�
�����	��	�
�����	��		��	�
������			��	�	��	
������			��	�	��	
������			���
��	�	�	���
��	�	�	���
�����	���
��	�	�	���
��	�	�	���
���	�����	��	�
��	�����	�	�	���
���	�����	��	�
��	��		��	�
��	��		��	�
��	��		��	�
��	��		��	�
��	
	�	��	
���	�	��		����	�
����	��	�����	��
�������	��	�	��
���
���
���
���	
����		
���	
���
����
���
���
����
����		
����
���
���	
����	
����	
����	
����
���		
����		
���	
����	
����
����
����
����
���	
����	
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
���	�����	��	�
��	
	�	��	
���	�	��		����	�
�������	�
����	��	�����	��
�������	��	�	��
���
���
���
���	
����		
����
���	
���
����		
����		
���
���
���	
���	
����	
����	
����		
���		
����		
����
����	
����	
����
����			
����		
���		
���
����
����	
����	
����			
����		
���
���
���
���
����
����	
���
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
�������	�
�������	�	�
�������	�	�
�������	�	�
�������	�	�
�������	�
�������	�
�������	�
�������	�
������			��	��
������			��	��
����	�
����	�
����	�
����	�
��������	��	��
���	�	�������	��	�
��������	��	��
���	�	�������	��	�
��������	��	��
���	�	�������	��	�
����	�	�
��������	��	��
���	�	�������	��	�
��������	��	��
���	�	�������	��	�
��������	��	��
���	�	�������	��	�
��������	��	��
���	�	�������	��	�
����	�	�
��	�	�	������	�����
��	�	�	������	�����
��	�	�	������	�����
��	�	�	������	�����
����	�	�	�	�
���	��	��	�
����	�	�	�	�
���	��	��	�
��	
	�	��	
���	�	��		����	�
����	��	�����	��
�������	��	�	��
���
���
���
���	
����	
���	
���
����		
����	
���
����
����
����
����	
����	
����
���
���
���
���	
���	
����	
����	
����	
����
���		
����		
���	
����	
����
����
����
����
���	
����	
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
��	�����	�	�	���
���			��	�
���	���
��	
	�	��	
���	�	��		����	�
����	��	�����	��
�������	��	�	��
���
���
���
���	
����		
����	
���	
���
����	
���	
����	
����	
����	
����
���		
����		
���	
����	
����
����	
����	
���	
����	
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
��	
	�	��	
���	�	��		����	�
��	�����	�	�	���
����	��	�����	��
�������	��	�	��
���
���
���
���	
���	
����	
����	
����		
����		
����
����
	
���		
���	
����		
����
����	
���	
����	
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
��	
	�	��	
���	�	��		����	�
��	
	�	��	
���	�	��		����	�
����	��	�����	��
�������	��	�	��
���
���
���
���	
����		
����	
���	
���
����	
���	
���	
���	
����	
����	
����	
����
���		
����		
���	
����	
����
����	
����	
���	
����	
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
����	��	�����	��
�������	��	�	��
���
���
���
���	
���	
����	
����
����	
����		
����		
����
����
	
���	
���	
����	
���
����
���
����
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
�����	��		�	�	�	��
	�	���	����	�
��	
	�	��	
���	�	��		����	�
����	��	�����	��
�������	��	�	��
���
���
���
���	
����		
����	
���	
���
����	
���	
���	
���	
����	
����	
����	
����
���		
����		
���	
����	
����
����
����
����
���	
����	
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
������	
��	
	�	��	
���	�	��		����	�
����	��	�����	��
�������	��	�	��
���
���
���
���	
����		
����	
���	
���
����
����
���	
���		
����		
����
����
����	
����
���
����
����	
���	
����
����	
����
����
����		
���
���		
����		
����
����
	
���	
����	
���
����
����
���
����
����
����	
����	
���
����
���
���
��	�
������������������������������������������������������������������
������	�
�������
����	��	�
�������
�������
�������
���
��	�����	�	�	���

syzkaller
syzkaller login: [ 1082.566264][T23887] Process accounting resumed
[ 1083.326085][T23932] FAULT_INJECTION: forcing a failure.
[ 1083.326085][T23932] name failslab, interval 1, probability 0, space 0, times 0
[ 1083.439798][T23932] CPU: 1 UID: 0 PID: 23932 Comm: syz.5.4611 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1083.439834][T23932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1083.439848][T23932] Call Trace:
[ 1083.439857][T23932]  <TASK>
[ 1083.439867][T23932]  dump_stack_lvl+0x16c/0x1f0
[ 1083.439904][T23932]  should_fail_ex+0x50a/0x650
[ 1083.439942][T23932]  ? fs_reclaim_acquire+0xae/0x150
[ 1083.439975][T23932]  ? process_preds+0x470/0x1c70
[ 1083.440002][T23932]  should_failslab+0xc2/0x120
[ 1083.440026][T23932]  __kmalloc_noprof+0xcb/0x510
[ 1083.440068][T23932]  process_preds+0x470/0x1c70
[ 1083.440111][T23932]  apply_subsystem_event_filter+0x43e/0x1410
[ 1083.440151][T23932]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[ 1083.440190][T23932]  ? __might_fault+0xe3/0x190
[ 1083.440216][T23932]  ? __might_fault+0xe3/0x190
[ 1083.440246][T23932]  ? _copy_from_user+0x59/0xd0
[ 1083.440277][T23932]  subsystem_filter_write+0x95/0x120
[ 1083.440310][T23932]  ? __pfx_subsystem_filter_write+0x10/0x10
[ 1083.440339][T23932]  vfs_write+0x24c/0x1150
[ 1083.440379][T23932]  ? __pfx_vfs_write+0x10/0x10
[ 1083.440408][T23932]  ? do_futex+0x123/0x350
[ 1083.440436][T23932]  ? __pfx_do_futex+0x10/0x10
[ 1083.440475][T23932]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1083.440501][T23932]  ? __x64_sys_futex+0x1ea/0x4c0
[ 1083.440535][T23932]  ksys_write+0x12b/0x250
[ 1083.440565][T23932]  ? __pfx_ksys_write+0x10/0x10
[ 1083.440607][T23932]  do_syscall_64+0xcd/0x250
[ 1083.440641][T23932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1083.440674][T23932] RIP: 0033:0x7fd804f8d169
[ 1083.440692][T23932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1083.440715][T23932] RSP: 002b:00007fd805eab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1083.440738][T23932] RAX: ffffffffffffffda RBX: 00007fd8051a5fa0 RCX: 00007fd804f8d169
[ 1083.440755][T23932] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000005
[ 1083.440769][T23932] RBP: 00007fd80500e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1083.440784][T23932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1083.440803][T23932] R13: 0000000000000000 R14: 00007fd8051a5fa0 R15: 00007ffcc3bc8b68
[ 1083.440836][T23932]  </TASK>
[ 1084.536000][T23943] page: refcount:6 mapcount:5 mapping:0000000000000000 index:0xffff888000000000 pfn:0x79808
[ 1084.609719][T23945] could not allocate digest TFM handle 
[ 1084.610992][T23943] flags: 0xfff18000000204(referenced|workingset|node=0|zone=1|lastcpupid=0x7ff)
[ 1084.663539][T23943] raw: 00fff18000000204 0000000000000000 dead000000000122 0000000000000000
[ 1084.777581][T23943] raw: ffff888000000000 0000000000000000 0000000600000004 0000000000000000
[ 1084.837269][T23943] page dumped because: unmovable page
[ 1084.867822][T23943] page_owner tracks the page as allocated
[ 1084.889262][T23943] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), pid 23296, tgid 23296 (syz-executor), ts 1035466818424, free_ts 1021791050607
[ 1084.969751][T23943]  post_alloc_hook+0x181/0x1b0
[ 1084.975525][T23943]  get_page_from_freelist+0xfce/0x2f80
[ 1085.069981][T23943]  __alloc_frozen_pages_noprof+0x221/0x2470
[ 1085.076543][T23943]  alloc_pages_mpol+0x1fc/0x540
[ 1085.129774][T23943]  alloc_pages_noprof+0x131/0x390
[ 1085.135871][T23943]  __vmalloc_node_range_noprof+0x721/0x1530
[ 1085.167969][T23943]  vmalloc_user_noprof+0x6b/0x90
[ 1085.185410][T23943]  kcov_ioctl+0x4c/0x730
[ 1085.205054][T23943]  __x64_sys_ioctl+0x190/0x200
[ 1085.210861][T23943]  do_syscall_64+0xcd/0x250
[ 1085.215855][T23943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1085.264581][T23943] page last free pid 52 tgid 52 stack trace:
[ 1085.279761][T23943]  free_frozen_pages+0x6db/0xfb0
[ 1085.285725][T23943]  free_pages_work+0x6a/0x470
[ 1085.319691][T23943]  process_one_work+0x9c5/0x1ba0
[ 1085.325176][T23943]  worker_thread+0x6c8/0xf00
[ 1085.366790][T23943]  kthread+0x3af/0x750
[ 1085.384304][T23943]  ret_from_fork+0x45/0x80
[ 1085.389222][T23943]  ret_from_fork_asm+0x1a/0x30
[ 1087.537233][T24007] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4625'.
[ 1087.721551][T24020] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4626'.
[ 1089.609686][   T29] audit: type=1326 audit(4295000457.953:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24066 comm="syz.2.4634" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe452b8d169 code=0x0
[ 1090.845380][T24084] FAULT_INJECTION: forcing a failure.
[ 1090.845380][T24084] name failslab, interval 1, probability 0, space 0, times 0
[ 1091.009475][T24084] CPU: 0 UID: 0 PID: 24084 Comm: syz.3.4636 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1091.009514][T24084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1091.009530][T24084] Call Trace:
[ 1091.009538][T24084]  <TASK>
[ 1091.009548][T24084]  dump_stack_lvl+0x16c/0x1f0
[ 1091.009588][T24084]  should_fail_ex+0x50a/0x650
[ 1091.009625][T24084]  ? fs_reclaim_acquire+0xae/0x150
[ 1091.009658][T24084]  should_failslab+0xc2/0x120
[ 1091.009682][T24084]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[ 1091.009716][T24084]  ? apply_subsystem_event_filter+0x3ec/0x1410
[ 1091.009753][T24084]  kstrdup+0x53/0x100
[ 1091.009782][T24084]  apply_subsystem_event_filter+0x3ec/0x1410
[ 1091.009819][T24084]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[ 1091.009846][T24084]  ? __might_fault+0xe3/0x190
[ 1091.009869][T24084]  ? __might_fault+0xe3/0x190
[ 1091.009896][T24084]  ? _copy_from_user+0x59/0xd0
[ 1091.009923][T24084]  subsystem_filter_write+0x95/0x120
[ 1091.009953][T24084]  ? __pfx_subsystem_filter_write+0x10/0x10
[ 1091.009979][T24084]  vfs_write+0x24c/0x1150
[ 1091.010012][T24084]  ? __pfx_vfs_write+0x10/0x10
[ 1091.010038][T24084]  ? do_futex+0x123/0x350
[ 1091.010063][T24084]  ? __pfx_do_futex+0x10/0x10
[ 1091.010096][T24084]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1091.010120][T24084]  ? __x64_sys_futex+0x1ea/0x4c0
[ 1091.010152][T24084]  ksys_write+0x12b/0x250
[ 1091.010180][T24084]  ? __pfx_ksys_write+0x10/0x10
[ 1091.010220][T24084]  do_syscall_64+0xcd/0x250
[ 1091.010250][T24084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1091.010289][T24084] RIP: 0033:0x7fd83758d169
[ 1091.010308][T24084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1091.010330][T24084] RSP: 002b:00007fd83833e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1091.010353][T24084] RAX: ffffffffffffffda RBX: 00007fd8377a5fa0 RCX: 00007fd83758d169
[ 1091.010370][T24084] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000005
[ 1091.010384][T24084] RBP: 00007fd83760e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1091.010397][T24084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1091.010409][T24084] R13: 0000000000000000 R14: 00007fd8377a5fa0 R15: 00007fff2cdf4f78
[ 1091.010440][T24084]  </TASK>
[ 1093.604046][T24122] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4644'.
[ 1097.096971][T24155] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4652'.
[ 1097.690216][T24155] FAULT_INJECTION: forcing a failure.
[ 1097.690216][T24155] name failslab, interval 1, probability 0, space 0, times 0
[ 1097.858339][T24155] CPU: 1 UID: 0 PID: 24155 Comm: syz.5.4652 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1097.858375][T24155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1097.858390][T24155] Call Trace:
[ 1097.858398][T24155]  <TASK>
[ 1097.858408][T24155]  dump_stack_lvl+0x16c/0x1f0
[ 1097.858445][T24155]  should_fail_ex+0x50a/0x650
[ 1097.858480][T24155]  ? fs_reclaim_acquire+0xae/0x150
[ 1097.858511][T24155]  ? alloc_mnt_ns+0xd2/0x520
[ 1097.858538][T24155]  should_failslab+0xc2/0x120
[ 1097.858560][T24155]  __kmalloc_cache_noprof+0x68/0x410
[ 1097.858599][T24155]  alloc_mnt_ns+0xd2/0x520
[ 1097.858629][T24155]  copy_mnt_ns+0x115/0xa70
[ 1097.858662][T24155]  ? trace_kmem_cache_alloc+0x2d/0xd0
[ 1097.858689][T24155]  ? kmem_cache_alloc_noprof+0x279/0x3d0
[ 1097.858723][T24155]  ? create_new_namespaces+0x30/0xad0
[ 1097.858763][T24155]  create_new_namespaces+0xd3/0xad0
[ 1097.858797][T24155]  ? bpf_lsm_capable+0x9/0x10
[ 1097.858820][T24155]  ? security_capable+0x7e/0x260
[ 1097.858848][T24155]  unshare_nsproxy_namespaces+0xc0/0x1f0
[ 1097.858886][T24155]  ksys_unshare+0x45d/0xa40
[ 1097.858911][T24155]  ? __pfx_ksys_unshare+0x10/0x10
[ 1097.858939][T24155]  ? xfd_validate_state+0x5d/0x180
[ 1097.858983][T24155]  __x64_sys_unshare+0x31/0x40
[ 1097.859008][T24155]  do_syscall_64+0xcd/0x250
[ 1097.859047][T24155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1097.859080][T24155] RIP: 0033:0x7fd804f8d169
[ 1097.859099][T24155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1097.859121][T24155] RSP: 002b:00007fd805eab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1097.859143][T24155] RAX: ffffffffffffffda RBX: 00007fd8051a5fa0 RCX: 00007fd804f8d169
[ 1097.859159][T24155] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000020000
[ 1097.859173][T24155] RBP: 00007fd80500e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1097.859188][T24155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1097.859203][T24155] R13: 0000000000000000 R14: 00007fd8051a5fa0 R15: 00007ffcc3bc8b68
[ 1097.859233][T24155]  </TASK>
[ 1099.110636][T24163] ptrace attach of "./syz-executor exec"[15260] was attempted by ""[24163]
[ 1102.188690][T24215] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4657'.
[ 1102.709851][T24215] mac80211_hwsim hwsim53 wlan1: entered promiscuous mode
[ 1104.969727][T24225] FAULT_INJECTION: forcing a failure.
[ 1104.969727][T24225] name failslab, interval 1, probability 0, space 0, times 0
[ 1105.149630][T24225] CPU: 1 UID: 0 PID: 24225 Comm: syz.3.4662 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1105.149664][T24225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1105.149678][T24225] Call Trace:
[ 1105.149686][T24225]  <TASK>
[ 1105.149696][T24225]  dump_stack_lvl+0x16c/0x1f0
[ 1105.149744][T24225]  should_fail_ex+0x50a/0x650
[ 1105.149780][T24225]  ? fs_reclaim_acquire+0xae/0x150
[ 1105.149814][T24225]  should_failslab+0xc2/0x120
[ 1105.149837][T24225]  kmem_cache_alloc_noprof+0x6e/0x3d0
[ 1105.149874][T24225]  ? vm_area_dup+0x53/0x2f0
[ 1105.149912][T24225]  vm_area_dup+0x53/0x2f0
[ 1105.149945][T24225]  __split_vma+0x181/0x1160
[ 1105.149984][T24225]  ? __pfx___split_vma+0x10/0x10
[ 1105.150035][T24225]  vms_gather_munmap_vmas+0x38b/0x1730
[ 1105.150087][T24225]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[ 1105.150129][T24225]  ? mas_walk+0x6a6/0x910
[ 1105.150171][T24225]  __mmap_region+0x328/0x2760
[ 1105.150199][T24225]  ? __pfx___mmap_region+0x10/0x10
[ 1105.150232][T24225]  ? hlock_class+0x4e/0x130
[ 1105.150256][T24225]  ? mark_lock+0xb5/0xc60
[ 1105.150290][T24225]  ? __pfx_mark_lock+0x10/0x10
[ 1105.150321][T24225]  ? __pfx___schedule+0x10/0x10
[ 1105.150349][T24225]  ? schedule+0x298/0x350
[ 1105.150418][T24225]  ? cap_capable+0xb3/0x250
[ 1105.150449][T24225]  mmap_region+0x1ab/0x3f0
[ 1105.150478][T24225]  do_mmap+0xd8d/0x11b0
[ 1105.150515][T24225]  ? __pfx_do_mmap+0x10/0x10
[ 1105.150546][T24225]  ? __pfx_down_write_killable+0x10/0x10
[ 1105.150587][T24225]  vm_mmap_pgoff+0x203/0x3a0
[ 1105.150626][T24225]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1105.150663][T24225]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1105.150689][T24225]  ? __x64_sys_futex+0x1ea/0x4c0
[ 1105.150722][T24225]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1105.150751][T24225]  ? rcu_is_watching+0x12/0xc0
[ 1105.150779][T24225]  __x64_sys_mmap+0x125/0x190
[ 1105.150814][T24225]  do_syscall_64+0xcd/0x250
[ 1105.150849][T24225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1105.150881][T24225] RIP: 0033:0x7fd83758d169
[ 1105.150908][T24225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1105.150931][T24225] RSP: 002b:00007fd83833e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1105.150955][T24225] RAX: ffffffffffffffda RBX: 00007fd8377a5fa0 RCX: 00007fd83758d169
[ 1105.150972][T24225] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000
[ 1105.150986][T24225] RBP: 00007fd83760e2a0 R08: 0000000000000401 R09: 0000000000008000
[ 1105.151001][T24225] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[ 1105.151015][T24225] R13: 0000000000000000 R14: 00007fd8377a5fa0 R15: 00007fff2cdf4f78
[ 1105.151048][T24225]  </TASK>
[ 1107.884649][T24242] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4668'.
[ 1107.980453][T24245] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4669'.
[ 1111.799075][ T5146] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1111.813240][ T5146] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1111.822412][ T5146] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1111.834529][ T5146] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1111.846415][ T5146] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1111.856151][ T5146] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1113.982648][T23306] Bluetooth: hci1: command tx timeout
[ 1114.180042][T24301] netlink: 44 bytes leftover after parsing attributes in process `syz.3.4684'.
[ 1114.447062][T24283] chnl_net:caif_netlink_parms(): no params data found
[ 1115.222921][T23849] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1116.057917][T23306] Bluetooth: hci1: command tx timeout
[ 1116.166372][T23849] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1117.152201][T23849] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1117.284283][T24283] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1117.333371][T24283] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1117.369943][T24283] bridge_slave_0: entered allmulticast mode
[ 1117.377584][T24283] bridge_slave_0: entered promiscuous mode
[ 1117.581388][T23849] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1117.670055][T24283] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1117.677868][T24283] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1117.716816][T24283] bridge_slave_1: entered allmulticast mode
[ 1117.735335][T24283] bridge_slave_1: entered promiscuous mode
[ 1117.910202][T24283] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1117.968845][T24283] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1118.126729][T23306] Bluetooth: hci1: command tx timeout
[ 1118.599259][T24283] team0: Port device team_slave_0 added
[ 1119.056038][T24283] team0: Port device team_slave_1 added
[ 1119.310525][T23849] gretap0: left allmulticast mode
[ 1119.316104][T23849] gretap0: left promiscuous mode
[ 1119.346510][T23849] bridge0: port 3(gretap0) entered disabled state
[ 1119.579034][T23849] bridge_slave_1: left allmulticast mode
[ 1119.585676][T23849] bridge_slave_1: left promiscuous mode
[ 1119.619910][T23849] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1119.751473][T24323] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(1)
[ 1119.800302][T23849] bridge_slave_0: left allmulticast mode
[ 1119.806534][T23849] bridge_slave_0: left promiscuous mode
[ 1119.823904][T23849] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1120.200377][T23306] Bluetooth: hci1: command tx timeout
[ 1123.830066][T23849] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1124.048475][T23849] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1124.134366][T23849] bond0 (unregistering): Released all slaves
[ 1124.375145][T24283] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1124.389668][T24283] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1124.480570][T24283] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1124.580515][T23849] HfR: left promiscuous mode
[ 1124.980123][T24283] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1124.987787][T24283] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1125.085825][T24283] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1126.261642][T24283] hsr_slave_0: entered promiscuous mode
[ 1126.268515][T24283] hsr_slave_1: entered promiscuous mode
[ 1126.295647][T24283] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1126.315434][T24283] Cannot create hsr debugfs directory
[ 1127.923581][T24400] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4705'.
[ 1129.644558][T23849] hsr_slave_0: left promiscuous mode
[ 1129.685130][T23849] hsr_slave_1: left promiscuous mode
[ 1129.702498][T23849] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1129.729781][T23849] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1129.791733][T23849] veth1_macvtap: left promiscuous mode
[ 1129.797821][T23849] veth0_macvtap: left promiscuous mode
[ 1130.702550][T23849] team0 (unregistering): Port device team_slave_0 removed
[ 1133.126693][T24283] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1133.147975][T24438] netlink: 'syz.5.4710': attribute type 1 has an invalid length.
[ 1133.200361][T24283] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1133.361424][T24449] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4712'.
[ 1133.392397][T24283] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1133.408274][T24283] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1133.975109][T24283] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1134.043534][T24283] 8021q: adding VLAN 0 to HW filter on device team0
[ 1134.095153][T24457] FAULT_INJECTION: forcing a failure.
[ 1134.095153][T24457] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1134.175146][T24283] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1134.207229][T24457] CPU: 0 UID: 0 PID: 24457 Comm: syz.4.4713 Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1134.207260][T24457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1134.207274][T24457] Call Trace:
[ 1134.207281][T24457]  <TASK>
[ 1134.207291][T24457]  dump_stack_lvl+0x16c/0x1f0
[ 1134.207330][T24457]  should_fail_ex+0x50a/0x650
[ 1134.207365][T24457]  ? __pfx___might_resched+0x10/0x10
[ 1134.207400][T24457]  should_fail_alloc_page+0xe7/0x130
[ 1134.207424][T24457]  prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1134.207457][T24457]  __alloc_frozen_pages_noprof+0x18e/0x2470
[ 1134.207495][T24457]  ? __pfx_mark_lock+0x10/0x10
[ 1134.207529][T24457]  ? hlock_class+0x4e/0x130
[ 1134.207550][T24457]  ? mark_lock+0xb5/0xc60
[ 1134.207579][T24457]  ? hlock_class+0x4e/0x130
[ 1134.207598][T24457]  ? mark_lock+0xb5/0xc60
[ 1134.207624][T24457]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1134.207660][T24457]  ? hlock_class+0x4e/0x130
[ 1134.207684][T24457]  ? mark_lock+0xb5/0xc60
[ 1134.207711][T24457]  ? __pfx_mark_lock+0x10/0x10
[ 1134.207740][T24457]  ? __pfx_mark_lock+0x10/0x10
[ 1134.207783][T24457]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1134.207821][T24457]  ? policy_nodemask+0xea/0x4e0
[ 1134.207869][T24457]  alloc_pages_mpol+0x1fc/0x540
[ 1134.207895][T24457]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1134.207919][T24457]  ? find_held_lock+0x2d/0x110
[ 1134.207951][T24457]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1134.207980][T24457]  shmem_alloc_folio+0x135/0x160
[ 1134.208017][T24457]  shmem_alloc_and_add_folio+0x48e/0xc10
[ 1134.208050][T24457]  ? shmem_huge_global_enabled+0x72/0x6b0
[ 1134.208075][T24457]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[ 1134.208105][T24457]  ? shmem_allowable_huge_orders+0xd0/0x410
[ 1134.208139][T24457]  shmem_get_folio_gfp+0x689/0x1530
[ 1134.208173][T24457]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[ 1134.208204][T24457]  ? filemap_map_pages+0xf92/0x16b0
[ 1134.208236][T24457]  shmem_fault+0x200/0xae0
[ 1134.208265][T24457]  ? __pfx_shmem_fault+0x10/0x10
[ 1134.208298][T24457]  ? do_pte_missing+0xde9/0x3e10
[ 1134.208330][T24457]  ? __pfx_lock_release+0x10/0x10
[ 1134.208367][T24457]  __do_fault+0x10a/0x490
[ 1134.208396][T24457]  do_pte_missing+0xecf/0x3e10
[ 1134.208440][T24457]  __handle_mm_fault+0x1166/0x2c60
[ 1134.208481][T24457]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1134.208513][T24457]  ? follow_page_pte+0x3ac/0x1490
[ 1134.208543][T24457]  ? __pfx_lock_release+0x10/0x10
[ 1134.208597][T24457]  handle_mm_fault+0x3fa/0xaa0
[ 1134.208636][T24457]  __get_user_pages+0x773/0x36f0
[ 1134.208675][T24457]  ? hlock_class+0x4e/0x130
[ 1134.208699][T24457]  ? __lock_acquire+0x15a9/0x3c40
[ 1134.208729][T24457]  ? __pfx___get_user_pages+0x10/0x10
[ 1134.208773][T24457]  __gup_longterm_locked+0x212/0x1870
[ 1134.208807][T24457]  ? __pfx___lock_acquire+0x10/0x10
[ 1134.208850][T24457]  ? __pfx___gup_longterm_locked+0x10/0x10
[ 1134.208886][T24457]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1134.208920][T24457]  ? rwsem_read_trylock+0x12d/0x250
[ 1134.208959][T24457]  ? __pfx_rwsem_read_trylock+0x10/0x10
[ 1134.208995][T24457]  ? process_vm_rw_core.constprop.0+0x3ff/0x9c0
[ 1134.209026][T24457]  pin_user_pages_remote+0xee/0x150
[ 1134.209061][T24457]  ? __pfx_pin_user_pages_remote+0x10/0x10
[ 1134.209092][T24457]  ? down_read+0xc9/0x330
[ 1134.209136][T24457]  process_vm_rw_core.constprop.0+0x42b/0x9c0
[ 1134.209175][T24457]  ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[ 1134.209227][T24457]  process_vm_rw+0x301/0x360
[ 1134.209253][T24457]  ? __pfx_process_vm_rw+0x10/0x10
[ 1134.209276][T24457]  ? __pfx_futex_wake+0x10/0x10
[ 1134.209343][T24457]  ? xfd_validate_state+0x5d/0x180
[ 1134.209376][T24457]  ? rcu_is_watching+0x12/0xc0
[ 1134.209404][T24457]  __x64_sys_process_vm_readv+0xe2/0x1c0
[ 1134.209430][T24457]  ? do_syscall_64+0x91/0x250
[ 1134.209459][T24457]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1134.209487][T24457]  do_syscall_64+0xcd/0x250
[ 1134.209519][T24457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1134.209551][T24457] RIP: 0033:0x7fc04678d169
[ 1134.209571][T24457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1134.209592][T24457] RSP: 002b:00007fc0476a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[ 1134.209614][T24457] RAX: ffffffffffffffda RBX: 00007fc0469a5fa0 RCX: 00007fc04678d169
[ 1134.209630][T24457] RDX: 0000000000000001 RSI: 0000400000000000 RDI: 00000000000005f7
[ 1134.209646][T24457] RBP: 00007fc04680e2a0 R08: 0000000000000006 R09: 0000000000000000
[ 1134.209661][T24457] R10: 0000400000000280 R11: 0000000000000246 R12: 0000000000000000
[ 1134.209676][T24457] R13: 0000000000000000 R14: 00007fc0469a5fa0 R15: 00007ffd0f0b7f18
[ 1134.209707][T24457]  </TASK>
[ 1134.223687][T24283] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1134.280070][T12038] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1134.280211][T12038] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1134.281614][T12038] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1134.281686][T12038] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1134.912676][T24283] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1135.012361][T24283] veth0_vlan: entered promiscuous mode
[ 1135.032374][T24283] veth1_vlan: entered promiscuous mode
[ 1135.104005][T24283] veth0_macvtap: entered promiscuous mode
[ 1135.119242][T24283] veth1_macvtap: entered promiscuous mode
[ 1135.167824][T24283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1135.167849][T24283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1135.167863][T24283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1135.167879][T24283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1135.167893][T24283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1135.167909][T24283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1135.167923][T24283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1135.167941][T24283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1135.168894][T24283] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1135.196389][T24283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1135.196413][T24283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1135.196427][T24283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1135.196445][T24283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1135.196458][T24283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1135.196475][T24283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1135.196490][T24283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1135.196507][T24283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1135.199267][T24283] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1135.223834][T24283] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1135.223896][T24283] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1135.223927][T24283] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1135.223959][T24283] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1136.112112][ T7123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1136.112137][ T7123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1136.268625][T22510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1136.268651][T22510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1136.717367][T24533] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4680'.
[ 1136.884379][T24531] netlink: 338 bytes leftover after parsing attributes in process `syz.4.4724'.
[ 1138.361177][T24571] netlink: 342 bytes leftover after parsing attributes in process `syz.3.4734'.
[ 1138.578559][T24576] device-mapper: ioctl: ioctl interface mismatch: kernel(4.49.0), user(0.0.0), cmd(5)
[ 1140.463479][T24608] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1140.536090][T24608] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1140.542770][T24608] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1140.548128][T24621] netlink: 342 bytes leftover after parsing attributes in process `syz.4.4745'.
[ 1140.644343][T24608] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1140.651058][T24608] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1140.814800][T24608] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1140.909812][T24608] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1140.994533][T24608] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1141.170105][T24608] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1141.877521][T23306] Bluetooth: hci0: command 0x0406 tx timeout
[ 1142.593301][T23306] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1142.673009][T23306] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1142.913011][T23306] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1142.978115][T24652] netlink: 342 bytes leftover after parsing attributes in process `syz.2.4755'.
[ 1143.373208][T24656] snd_aloop snd_aloop.0: control 1:6:6:���_�he�R��:0 is already present
[ 1143.952384][T23306] Bluetooth: hci0: command 0x0406 tx timeout
[ 1144.755724][T23306] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1144.992485][T23306] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1145.971398][T24690] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4765'.
[ 1146.830954][T23306] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1147.071097][T23306] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1147.685051][T24720] netlink: 342 bytes leftover after parsing attributes in process `syz.5.4772'.
[ 1150.089448][T24750] nbd2: detected capacity change from 0 to 68719476736
[ 1150.101548][T24169] block nbd2: Send control failed (result -22)
[ 1150.108355][T24169] block nbd2: Request send failed, requeueing
[ 1150.130020][T19865] block nbd2: Dead connection, failed to find a fallback
[ 1150.132237][T23306] block nbd2: Receive control failed (result -32)
[ 1150.137980][T19865] block nbd2: shutting down sockets
[ 1150.138001][T19865] blk_print_req_error: 24 callbacks suppressed
[ 1150.138013][T19865] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1150.169694][T19865] buffer_io_error: 23 callbacks suppressed
[ 1150.169709][T19865] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 1150.185195][T24169] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1150.195700][T24169] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 1150.205952][T24169] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1150.216225][T24169] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 1150.225177][T24169] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1150.235436][T24169] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 1150.244611][T24169] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1150.254887][T24169] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 1150.263787][T24169] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1150.274421][T24169] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 1150.283996][T24169] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1150.294301][T24169] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 1150.304359][T24169] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1150.314736][T24169] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 1150.323560][T24169] ldm_validate_partition_table(): Disk read failed.
[ 1150.353406][T24169] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1150.399105][T24169] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 1150.407791][T24169] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1150.476209][T24169] Buffer I/O error on dev nbd2, logical block 0, async page read
[ 1150.513288][T24169] Dev nbd2: unable to read RDB block 0
[ 1150.529383][T24169]  nbd2: unable to read partition table
[ 1150.570013][T24169] ldm_validate_partition_table(): Disk read failed.
[ 1150.601780][T24169] Dev nbd2: unable to read RDB block 0
[ 1150.608290][T24169]  nbd2: unable to read partition table
[ 1150.681150][T24169] 
[ 1150.683729][T24169] ======================================================
[ 1150.691432][T24169] WARNING: possible circular locking dependency detected
[ 1150.699131][T24169] 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0 Not tainted
[ 1150.706925][T24169] ------------------------------------------------------
[ 1150.714624][T24169] udevd/24169 is trying to acquire lock:
[ 1150.720792][T24169] ffff888025c0dc88 (&q->q_usage_counter(io)#51){++++}-{0:0}, at: __submit_bio+0x3d1/0x690
[ 1150.731697][T24169] 
[ 1150.731697][T24169] but task is already holding lock:
[ 1150.739772][T24169] ffff888023944e40 (mapping.invalidate_lock#2){++++}-{4:4}, at: page_cache_ra_unbounded+0x173/0x7d0
[ 1150.751630][T24169] 
[ 1150.751630][T24169] which lock already depends on the new lock.
[ 1150.751630][T24169] 
[ 1150.763056][T24169] 
[ 1150.763056][T24169] the existing dependency chain (in reverse order) is:
[ 1150.772951][T24169] 
[ 1150.772951][T24169] -> #6 (mapping.invalidate_lock#2){++++}-{4:4}:
[ 1150.782309][T24169]        down_read+0x9a/0x330
[ 1150.787453][T24169]        filemap_fault+0x2e7/0x2ca0
[ 1150.793166][T24169]        __do_fault+0x10a/0x490
[ 1150.798488][T24169]        do_pte_missing+0xecf/0x3e10
[ 1150.804293][T24169]        __handle_mm_fault+0x1166/0x2c60
[ 1150.810480][T24169]        handle_mm_fault+0x3fa/0xaa0
[ 1150.816286][T24169]        __get_user_pages+0x773/0x36f0
[ 1150.822282][T24169]        __gup_longterm_locked+0x212/0x1870
[ 1150.828757][T24169]        gup_fast_fallback+0x1802/0x2690
[ 1150.834944][T24169]        pin_user_pages_fast+0xa8/0x100
[ 1150.841041][T24169]        iov_iter_extract_pages+0x3a5/0x2010
[ 1150.847616][T24169]        bio_iov_iter_get_pages+0x37c/0x1100
[ 1150.854182][T24169]        blkdev_direct_IO+0x110e/0x1c40
[ 1150.860274][T24169]        blkdev_write_iter+0x6f9/0xdd0
[ 1150.866264][T24169]        vfs_write+0x5ae/0x1150
[ 1150.871588][T24169]        ksys_write+0x12b/0x250
[ 1150.876911][T24169]        do_syscall_64+0xcd/0x250
[ 1150.882428][T24169]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1150.889476][T24169] 
[ 1150.889476][T24169] -> #5 (&mm->mmap_lock){++++}-{4:4}:
[ 1150.897777][T24169]        __might_fault+0x11b/0x190
[ 1150.903387][T24169]        _copy_from_user+0x29/0xd0
[ 1150.908998][T24169]        csum_and_copy_from_iter_full+0x218/0x1e20
[ 1150.916148][T24169]        ip_generic_getfrag+0x175/0x260
[ 1150.922242][T24169]        raw6_getfrag+0x22d/0x2a0
[ 1150.927754][T24169]        __ip6_append_data.isra.0+0x3dca/0x4650
[ 1150.934605][T24169]        ip6_append_data+0x1e6/0x500
[ 1150.940409][T24169]        rawv6_sendmsg+0x15c9/0x4610
[ 1150.946211][T24169]        inet_sendmsg+0x119/0x140
[ 1150.951727][T24169]        ____sys_sendmsg+0x98c/0xc90
[ 1150.957526][T24169]        ___sys_sendmsg+0x135/0x1e0
[ 1150.963235][T24169]        __sys_sendmsg+0x16e/0x220
[ 1150.968851][T24169]        do_syscall_64+0xcd/0x250
[ 1150.974366][T24169]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1150.981412][T24169] 
[ 1150.981412][T24169] -> #4 (sk_lock-AF_INET6){+.+.}-{0:0}:
[ 1150.989906][T24169]        lock_sock_nested+0x3a/0xf0
[ 1150.995613][T24169]        inet_autobind+0x1a/0x1a0
[ 1151.001133][T24169]        inet_send_prepare+0x317/0x530
[ 1151.007139][T24169]        inet_sendmsg+0x43/0x140
[ 1151.012572][T24169]        sock_sendmsg+0x389/0x490
[ 1151.018086][T24169]        __sock_xmit+0x1e8/0x4f0
[ 1151.023516][T24169]        nbd_send_cmd+0x8ec/0x1c90
[ 1151.029124][T24169]        nbd_queue_rq+0x941/0x1220
[ 1151.034730][T24169]        blk_mq_dispatch_rq_list+0x443/0x1dc0
[ 1151.041388][T24169]        __blk_mq_sched_dispatch_requests+0xcdf/0x1620
[ 1151.048913][T24169]        blk_mq_sched_dispatch_requests+0xd8/0x1b0
[ 1151.056046][T24169]        blk_mq_run_hw_queue+0x239/0x670
[ 1151.062223][T24169]        blk_mq_flush_plug_list+0x673/0x1c60
[ 1151.068790][T24169]        __blk_flush_plug+0x2c5/0x4b0
[ 1151.074685][T24169]        __submit_bio+0x547/0x690
[ 1151.080193][T24169]        submit_bio_noacct_nocheck+0x698/0xd70
[ 1151.086945][T24169]        submit_bio_noacct+0x50d/0x1ec0
[ 1151.093030][T24169]        block_read_full_folio+0x812/0xa50
[ 1151.099423][T24169]        filemap_read_folio+0xc6/0x2a0
[ 1151.105412][T24169]        do_read_cache_folio+0x263/0x5c0
[ 1151.111594][T24169]        read_part_sector+0xd4/0x310
[ 1151.117397][T24169]        adfspart_check_ICS+0x94/0x940
[ 1151.123393][T24169]        bdev_disk_changed+0x71f/0x1520
[ 1151.129483][T24169]        blkdev_get_whole+0x187/0x290
[ 1151.135375][T24169]        bdev_open+0x2c7/0xe20
[ 1151.140611][T24169]        blkdev_open+0x27b/0x3f0
[ 1151.146035][T24169]        do_dentry_open+0x735/0x1c40
[ 1151.151838][T24169]        vfs_open+0x82/0x3f0
[ 1151.156869][T24169]        path_openat+0x1e88/0x2d80
[ 1151.162480][T24169]        do_filp_open+0x20c/0x470
[ 1151.167996][T24169]        do_sys_openat2+0x17a/0x1e0
[ 1151.173697][T24169]        __x64_sys_openat+0x175/0x210
[ 1151.179592][T24169]        do_syscall_64+0xcd/0x250
[ 1151.185105][T24169]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.192148][T24169] 
[ 1151.192148][T24169] -> #3 (&nsock->tx_lock){+.+.}-{4:4}:
[ 1151.200550][T24169]        __mutex_lock+0x19b/0xb10
[ 1151.206066][T24169]        nbd_queue_rq+0x424/0x1220
[ 1151.211675][T24169]        blk_mq_dispatch_rq_list+0x443/0x1dc0
[ 1151.218334][T24169]        __blk_mq_sched_dispatch_requests+0xcdf/0x1620
[ 1151.225863][T24169]        blk_mq_sched_dispatch_requests+0xd8/0x1b0
[ 1151.233003][T24169]        blk_mq_run_hw_queue+0x239/0x670
[ 1151.239194][T24169]        blk_mq_flush_plug_list+0x673/0x1c60
[ 1151.245756][T24169]        __blk_flush_plug+0x2c5/0x4b0
[ 1151.251649][T24169]        __submit_bio+0x547/0x690
[ 1151.257158][T24169]        submit_bio_noacct_nocheck+0x698/0xd70
[ 1151.263920][T24169]        submit_bio_noacct+0x50d/0x1ec0
[ 1151.270018][T24169]        block_read_full_folio+0x812/0xa50
[ 1151.276410][T24169]        filemap_read_folio+0xc6/0x2a0
[ 1151.282408][T24169]        do_read_cache_folio+0x263/0x5c0
[ 1151.288596][T24169]        read_part_sector+0xd4/0x310
[ 1151.294407][T24169]        adfspart_check_ICS+0x94/0x940
[ 1151.300408][T24169]        bdev_disk_changed+0x71f/0x1520
[ 1151.306502][T24169]        blkdev_get_whole+0x187/0x290
[ 1151.312396][T24169]        bdev_open+0x2c7/0xe20
[ 1151.317625][T24169]        blkdev_open+0x27b/0x3f0
[ 1151.323046][T24169]        do_dentry_open+0x735/0x1c40
[ 1151.328850][T24169]        vfs_open+0x82/0x3f0
[ 1151.333884][T24169]        path_openat+0x1e88/0x2d80
[ 1151.339497][T24169]        do_filp_open+0x20c/0x470
[ 1151.345013][T24169]        do_sys_openat2+0x17a/0x1e0
[ 1151.350719][T24169]        __x64_sys_openat+0x175/0x210
[ 1151.356618][T24169]        do_syscall_64+0xcd/0x250
[ 1151.362141][T24169]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.369193][T24169] 
[ 1151.369193][T24169] -> #2 (&cmd->lock){+.+.}-{4:4}:
[ 1151.377115][T24169]        __mutex_lock+0x19b/0xb10
[ 1151.382638][T24169]        nbd_queue_rq+0xbe/0x1220
[ 1151.388151][T24169]        blk_mq_dispatch_rq_list+0x443/0x1dc0
[ 1151.394812][T24169]        __blk_mq_sched_dispatch_requests+0xcdf/0x1620
[ 1151.402338][T24169]        blk_mq_sched_dispatch_requests+0xd8/0x1b0
[ 1151.409475][T24169]        blk_mq_run_hw_queue+0x239/0x670
[ 1151.415654][T24169]        blk_mq_flush_plug_list+0x673/0x1c60
[ 1151.422219][T24169]        __blk_flush_plug+0x2c5/0x4b0
[ 1151.428114][T24169]        __submit_bio+0x547/0x690
[ 1151.433629][T24169]        submit_bio_noacct_nocheck+0x698/0xd70
[ 1151.440383][T24169]        submit_bio_noacct+0x50d/0x1ec0
[ 1151.446471][T24169]        block_read_full_folio+0x812/0xa50
[ 1151.452849][T24169]        filemap_read_folio+0xc6/0x2a0
[ 1151.458839][T24169]        do_read_cache_folio+0x263/0x5c0
[ 1151.465024][T24169]        read_part_sector+0xd4/0x310
[ 1151.470829][T24169]        adfspart_check_ICS+0x94/0x940
[ 1151.476824][T24169]        bdev_disk_changed+0x71f/0x1520
[ 1151.482914][T24169]        blkdev_get_whole+0x187/0x290
[ 1151.488806][T24169]        bdev_open+0x2c7/0xe20
[ 1151.494028][T24169]        blkdev_open+0x27b/0x3f0
[ 1151.499443][T24169]        do_dentry_open+0x735/0x1c40
[ 1151.505248][T24169]        vfs_open+0x82/0x3f0
[ 1151.510277][T24169]        path_openat+0x1e88/0x2d80
[ 1151.515890][T24169]        do_filp_open+0x20c/0x470
[ 1151.521405][T24169]        do_sys_openat2+0x17a/0x1e0
[ 1151.527114][T24169]        __x64_sys_openat+0x175/0x210
[ 1151.533032][T24169]        do_syscall_64+0xcd/0x250
[ 1151.538555][T24169]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.545603][T24169] 
[ 1151.545603][T24169] -> #1 (set->srcu){.+.+}-{0:0}:
[ 1151.553424][T24169]        __synchronize_srcu+0xa9/0x2a0
[ 1151.559421][T24169]        blk_mq_update_nr_requests+0x288/0x670
[ 1151.566177][T24169]        queue_requests_store+0x161/0x210
[ 1151.572458][T24169]        queue_attr_store+0x370/0x510
[ 1151.578360][T24169]        sysfs_kf_write+0x117/0x170
[ 1151.584078][T24169]        kernfs_fop_write_iter+0x33d/0x500
[ 1151.590455][T24169]        vfs_write+0x5ae/0x1150
[ 1151.595776][T24169]        ksys_write+0x12b/0x250
[ 1151.601099][T24169]        do_syscall_64+0xcd/0x250
[ 1151.606618][T24169]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.613664][T24169] 
[ 1151.613664][T24169] -> #0 (&q->q_usage_counter(io)#51){++++}-{0:0}:
[ 1151.623116][T24169]        __lock_acquire+0x249e/0x3c40
[ 1151.629018][T24169]        lock_acquire.part.0+0x11b/0x380
[ 1151.635206][T24169]        blk_mq_submit_bio+0x20f5/0x2610
[ 1151.641391][T24169]        __submit_bio+0x3d1/0x690
[ 1151.646902][T24169]        submit_bio_noacct_nocheck+0x698/0xd70
[ 1151.653654][T24169]        submit_bio_noacct+0x50d/0x1ec0
[ 1151.659737][T24169]        mpage_readahead+0x41d/0x590
[ 1151.665533][T24169]        read_pages+0x1a7/0xc60
[ 1151.670850][T24169]        page_cache_ra_unbounded+0x426/0x7d0
[ 1151.677411][T24169]        force_page_cache_ra+0x24b/0x340
[ 1151.683592][T24169]        page_cache_sync_ra+0x158/0xa30
[ 1151.689677][T24169]        filemap_get_pages+0xb62/0x1c30
[ 1151.695771][T24169]        filemap_read+0x3c5/0xe70
[ 1151.701285][T24169]        blkdev_read_iter+0x187/0x4b0
[ 1151.707182][T24169]        vfs_read+0x886/0xbf0
[ 1151.712318][T24169]        ksys_read+0x12b/0x250
[ 1151.717551][T24169]        do_syscall_64+0xcd/0x250
[ 1151.723074][T24169]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.730126][T24169] 
[ 1151.730126][T24169] other info that might help us debug this:
[ 1151.730126][T24169] 
[ 1151.741353][T24169] Chain exists of:
[ 1151.741353][T24169]   &q->q_usage_counter(io)#51 --> &mm->mmap_lock --> mapping.invalidate_lock#2
[ 1151.741353][T24169] 
[ 1151.757603][T24169]  Possible unsafe locking scenario:
[ 1151.757603][T24169] 
[ 1151.765773][T24169]        CPU0                    CPU1
[ 1151.771650][T24169]        ----                    ----
[ 1151.777529][T24169]   rlock(mapping.invalidate_lock#2);
[ 1151.783426][T24169]                                lock(&mm->mmap_lock);
[ 1151.790945][T24169]                                lock(mapping.invalidate_lock#2);
[ 1151.799520][T24169]   rlock(&q->q_usage_counter(io)#51);
[ 1151.805512][T24169] 
[ 1151.805512][T24169]  *** DEADLOCK ***
[ 1151.805512][T24169] 
[ 1151.814448][T24169] 1 lock held by udevd/24169:
[ 1151.819568][T24169]  #0: ffff888023944e40 (mapping.invalidate_lock#2){++++}-{4:4}, at: page_cache_ra_unbounded+0x173/0x7d0
[ 1151.831911][T24169] 
[ 1151.831911][T24169] stack backtrace:
[ 1151.838385][T24169] CPU: 1 UID: 0 PID: 24169 Comm: udevd Not tainted 6.14.0-rc5-syzkaller-00013-g99fa936e8e4f #0
[ 1151.838412][T24169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1151.838425][T24169] Call Trace:
[ 1151.838432][T24169]  <TASK>
[ 1151.838441][T24169]  dump_stack_lvl+0x116/0x1f0
[ 1151.838472][T24169]  print_circular_bug+0x490/0x760
[ 1151.838498][T24169]  check_noncircular+0x31a/0x400
[ 1151.838522][T24169]  ? __pfx_check_noncircular+0x10/0x10
[ 1151.838544][T24169]  ? __kernel_text_address+0xd/0x40
[ 1151.838568][T24169]  ? unwind_get_return_address+0x59/0xa0
[ 1151.838597][T24169]  ? lockdep_lock+0xc6/0x200
[ 1151.838616][T24169]  ? __pfx_lockdep_lock+0x10/0x10
[ 1151.838636][T24169]  __lock_acquire+0x249e/0x3c40
[ 1151.838664][T24169]  ? __pfx___lock_acquire+0x10/0x10
[ 1151.838686][T24169]  ? hlock_class+0x4e/0x130
[ 1151.838704][T24169]  ? mark_lock+0xb5/0xc60
[ 1151.838726][T24169]  ? mark_lock+0xb5/0xc60
[ 1151.838747][T24169]  ? page_cache_ra_unbounded+0x426/0x7d0
[ 1151.838768][T24169]  ? page_cache_sync_ra+0x158/0xa30
[ 1151.838789][T24169]  lock_acquire.part.0+0x11b/0x380
[ 1151.838814][T24169]  ? __submit_bio+0x3d1/0x690
[ 1151.838834][T24169]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1151.838858][T24169]  ? rcu_is_watching+0x12/0xc0
[ 1151.838877][T24169]  ? trace_lock_acquire+0x14e/0x1f0
[ 1151.838897][T24169]  ? __submit_bio+0x3d1/0x690
[ 1151.838916][T24169]  ? lock_acquire+0x2f/0xb0
[ 1151.838939][T24169]  ? __submit_bio+0x3d1/0x690
[ 1151.838958][T24169]  blk_mq_submit_bio+0x20f5/0x2610
[ 1151.838979][T24169]  ? __submit_bio+0x3d1/0x690
[ 1151.838999][T24169]  ? __pfx_blk_mq_submit_bio+0x10/0x10
[ 1151.839019][T24169]  ? mark_lock+0xb5/0xc60
[ 1151.839041][T24169]  ? __pfx___lock_acquire+0x10/0x10
[ 1151.839063][T24169]  ? __pfx___lock_acquire+0x10/0x10
[ 1151.839086][T24169]  ? trace_lock_acquire+0x14e/0x1f0
[ 1151.839105][T24169]  ? __pfx_mark_lock+0x10/0x10
[ 1151.839137][T24169]  __submit_bio+0x3d1/0x690
[ 1151.839156][T24169]  ? __pfx___submit_bio+0x10/0x10
[ 1151.839175][T24169]  ? trace_lock_acquire+0x14e/0x1f0
[ 1151.839200][T24169]  ? submit_bio_noacct_nocheck+0x698/0xd70
[ 1151.839220][T24169]  submit_bio_noacct_nocheck+0x698/0xd70
[ 1151.839241][T24169]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[ 1151.839263][T24169]  ? __pfx___might_resched+0x10/0x10
[ 1151.839293][T24169]  submit_bio_noacct+0x50d/0x1ec0
[ 1151.839314][T24169]  mpage_readahead+0x41d/0x590
[ 1151.839335][T24169]  ? __pfx_mpage_readahead+0x10/0x10
[ 1151.839359][T24169]  ? __pfx_blkdev_get_block+0x10/0x10
[ 1151.839382][T24169]  ? __folio_batch_add_and_move+0x5f3/0xc60
[ 1151.839406][T24169]  ? __pfx_lock_release+0x10/0x10
[ 1151.839429][T24169]  ? trace_lock_acquire+0x14e/0x1f0
[ 1151.839449][T24169]  ? __pfx_blkdev_readahead+0x10/0x10
[ 1151.839471][T24169]  read_pages+0x1a7/0xc60
[ 1151.839489][T24169]  ? __folio_batch_add_and_move+0x689/0xc60
[ 1151.839515][T24169]  ? __pfx_read_pages+0x10/0x10
[ 1151.839539][T24169]  page_cache_ra_unbounded+0x426/0x7d0
[ 1151.839563][T24169]  force_page_cache_ra+0x24b/0x340
[ 1151.839585][T24169]  page_cache_sync_ra+0x158/0xa30
[ 1151.839605][T24169]  ? __lock_acquire+0xcc5/0x3c40
[ 1151.839629][T24169]  filemap_get_pages+0xb62/0x1c30
[ 1151.839656][T24169]  ? __pfx_filemap_get_pages+0x10/0x10
[ 1151.839681][T24169]  ? __pfx___might_resched+0x10/0x10
[ 1151.839709][T24169]  filemap_read+0x3c5/0xe70
[ 1151.839731][T24169]  ? trace_lock_acquire+0x14e/0x1f0
[ 1151.839754][T24169]  ? __pfx_filemap_read+0x10/0x10
[ 1151.839786][T24169]  ? apparmor_file_permission+0x251/0x400
[ 1151.839808][T24169]  blkdev_read_iter+0x187/0x4b0
[ 1151.839831][T24169]  vfs_read+0x886/0xbf0
[ 1151.839856][T24169]  ? __pfx_vfs_read+0x10/0x10
[ 1151.839879][T24169]  ? blkdev_llseek+0x9b/0xd0
[ 1151.839899][T24169]  ? __pfx_lock_release+0x10/0x10
[ 1151.839924][T24169]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1151.839953][T24169]  ksys_read+0x12b/0x250
[ 1151.839975][T24169]  ? __pfx_ksys_read+0x10/0x10
[ 1151.840000][T24169]  do_syscall_64+0xcd/0x250
[ 1151.840024][T24169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1151.840049][T24169] RIP: 0033:0x7f80b6716b6a
[ 1151.840064][T24169] Code: 00 3d 00 00 41 00 75 0d 50 48 8d 3d 2d 08 0a 00 e8 ea 7d 01 00 31 c0 e9 07 ff ff ff 64 8b 04 25 18 00 00 00 85 c0 75 1b 0f 05 <48> 3d 00 f0 ff ff 76 6c 48 8b 15 8f a2 0d 00 f7 d8 64 89 02 48 83
[ 1151.840081][T24169] RSP: 002b:00007ffd0684bb88 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1151.840098][T24169] RAX: ffffffffffffffda RBX: 00001fffffff0000 RCX: 00007f80b6716b6a
[ 1151.840111][T24169] RDX: 0000000000000040 RSI: 00005598138dfd08 RDI: 0000000000000009
[ 1151.840129][T24169] RBP: 0000000000000040 R08: 00005598138dfce0 R09: 0000000000001000
[ 1151.840140][T24169] R10: 0000000000000015 R11: 0000000000000246 R12: 00005598138dfce0
[ 1151.840152][T24169] R13: 00005598138dfcf8 R14: 00005598138f5ad8 R15: 00005598138f5a80
[ 1151.840170][T24169]  </TASK>
[ 1152.910111][T24770] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4785'.