last executing test programs:

15m38.876880181s ago: executing program 2 (id=122):
statmount$auto(0x0, &(0x7f0000000640)={0x8001, 0x1, 0x201, 0x1, 0x2, 0x3, 0x3ffdf, 0x400, 0x4, 0x9, 0x9, 0x280000, 0x4, 0x1, 0xb2, 0x2, 0x9, 0x2, 0x4, 0x80000002a0, 0x0, 0x1, 0xffffffff, 0x200, 0x6, 0xbca7, 0x4, 0x80004000, 0x800, 0x800005, 0x0, [0x0, 0x4, 0x4, 0x4, 0x0, 0x8000000000, 0x0, 0x1, 0x0, 0xffffffeffffffffc, 0x0, 0x6, 0x0, 0x0, 0x7fffffff, 0x4, 0x0, 0x1, 0x2000000, 0x9, 0xffffffffffffffff, 0x0, 0x6, 0x0, 0x40000000, 0x8000000000000000, 0x0, 0x9, 0x0, 0x0, 0x80000001, 0x0, 0x6, 0x400000000000000, 0x200, 0x80000000, 0x313c, 0x0, 0x9, 0x0, 0xe17, 0x0, 0x6], "47f243ebc9676da57f5738014d46696935422962869255df5abc5ca580464786f62dd9f1db3fddd5da7676f5fdaeffef41737b17d46a25bc7e34bb815ff1508758aa176da7d468250a9b39d246"}, 0x1fe, 0x20000009)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e1000000000000000100"}, 0x58)
prctl$auto_PR_SET_MM_ARG_END(0x1, 0x9, 0xffffffffffffffff, 0x6, 0x8)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0)
clock_settime$auto(0xfffffffe, &(0x7f0000000000)={0x100000004, 0x8})
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
socket(0x22, 0x1, 0x100)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
r2 = ioctl$auto_SW_SYNC_GET_DEADLINE(r1, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r1})
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0xffffffff, 0x6, 0x6, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x27, 0xd, 0x8fd6, 0x9, 0x1, 0x15f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0xfff, 0x7d, 0xb, 0xb4a, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_psample(0x0, r2)
sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r4, 0x0, 0x801)
mmap$auto(0x7, 0x20009, 0x5, 0xffffffff, 0x405, 0x8000)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(&(0x7f0000000000)='./file0\x00', 0x261c0, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r5, 0x40186f40, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)

15m37.447147296s ago: executing program 2 (id=127):
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000004c0), 0x101202, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101302, 0x0)
write$auto(0x3, 0x0, 0x0)
write$auto_nvmf_dev_fops_fabrics(r0, 0x0, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x121d02, 0x0)
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x622340, 0x0)
openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_secret$auto(0x0)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000002180), 0x100, 0x0)
eventfd$auto(0x3)
pipe$auto(0x0)
socket(0xa, 0x2, 0x88)
socketpair$auto(0x1e, 0x1, 0x4, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0xeb1, r1, 0x8000)
ioctl$auto_TCFLSH2(r2, 0xc0384707, 0x0)
read$auto(r0, 0x0, 0x1f43)

15m36.684508201s ago: executing program 2 (id=129):
writev$auto(0xffffffffffffffff, 0x0, 0x3)
r0 = socket(0x11, 0x2, 0x9)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x20)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/v4l-subdev2\x00', 0x2000, 0x0)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000240), r0)
sendmsg$auto_GTP_CMD_NEWPDP(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="000000000964c3ecaada7e204c8d7d17489679f433c3ac0892c5069a3252a4b439c41900fcf7b025e0290080000033ff8a0aac1b9fedc7e704", @ANYRES16=r2, @ANYBLOB="040027bd7000fbdbdf250000000014000b00fe8000000000000000000000000000bb"], 0x28}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004041)
r3 = openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x2, 0x0)
bpf$auto(0x6, &(0x7f0000000100)=@prog_bind_map={r3, 0xffffffffffffffff, 0xe20}, 0x8098)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0xc)
capset$auto(0x0, &(0x7f0000000000)={0x4, 0xa, 0x48})
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e21, @multicast1}, 0x6a)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0xfffffffd, 0x5, 0xffffffff, 0x0)
unshare$auto(0x40000080)
write$auto(0x3, 0x0, 0xffd8)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x23, 0x0, 0x9)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x400, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)

15m35.823834044s ago: executing program 2 (id=134):
mmap$auto(0x0, 0x7, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x7)
r1 = openat$auto_ftrace_set_event_notrace_pid_fops_trace_events(0xffffffffffffff9c, 0x0, 0x60782, 0x0)
write$auto_console_fops_tty_io(r1, 0x0, 0x0)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x9}, 0x3)
bpf$auto(0x5, 0x0, 0x47)
io_setup$auto(0xffff, &(0x7f0000000580))

15m35.396167042s ago: executing program 2 (id=137):
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027619b4e0635ecdff5757c36ca699735903afd"], 0x1ac}, 0x1, 0x0, 0x0, 0x40080}, 0x40000)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
read$auto(r0, &(0x7f00000000c0)='\x00', 0x2)
close_range$auto(0x2, 0x8, 0x0)
r1 = io_uring_setup$auto(0x6, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x40001, 0x0)
write$auto(0x3, 0x0, 0xfdef)
ioctl$auto_KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000000000)={0x3, [0xfffffff7, 0x0, 0x4, 0x9ad, 0x1]})
ioctl$auto(0x3, 0x541a, 0xffffffffffffffff)

15m34.408271813s ago: executing program 2 (id=139):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x22240, 0x0)
socket(0x2c, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x5, 0x80000000, 0x0)
socket(0xa, 0x5, 0x0)
socket(0x3, 0x801, 0x84)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x40000000008, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/cx2341x/parameters/debug\x00', 0x181842, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x10000000001013, 0x2, 0x8000)
setsockopt$auto(0x3, 0x114, 0xa, 0x0, 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
unshare$auto(0x40000080)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000000e00)="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", 0xcb6)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x1008000)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/khugepaged/defrag\x00', 0x2, 0x0)
sendfile$auto(r2, 0x3, 0x0, 0xc01)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
connect$auto(0x3, 0x0, 0x55)
listen$auto(0x3, 0x81)
accept$auto(0x3, 0x0, 0x0)

15m19.239157033s ago: executing program 32 (id=139):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x22240, 0x0)
socket(0x2c, 0x3, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1e, 0x5, 0x80000000, 0x0)
socket(0xa, 0x5, 0x0)
socket(0x3, 0x801, 0x84)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x40000000008, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/cx2341x/parameters/debug\x00', 0x181842, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x10000000001013, 0x2, 0x8000)
setsockopt$auto(0x3, 0x114, 0xa, 0x0, 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/bond0/queues/tx-9/xps_rxqs\x00', 0x1a1842, 0x0)
unshare$auto(0x40000080)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000000e00)="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", 0xcb6)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x1008000)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/khugepaged/defrag\x00', 0x2, 0x0)
sendfile$auto(r2, 0x3, 0x0, 0xc01)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
connect$auto(0x3, 0x0, 0x55)
listen$auto(0x3, 0x81)
accept$auto(0x3, 0x0, 0x0)

4m34.988998698s ago: executing program 3 (id=1909):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
r1 = socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54)
getsockopt$auto(r1, 0x84, 0x83, 0x0, &(0x7f0000000280)=0x1000c0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r0)
r3 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/fscreate\x00', 0x183681, 0x0)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
r4 = socket(0x10, 0x2, 0x14)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51)
sendmmsg$auto(r4, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0)
writev$auto(r3, &(0x7f0000000140)={0x0, 0x2}, 0xa)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)

4m34.289288311s ago: executing program 3 (id=1911):
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x60000, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0xf7}, 0x7)
read$auto(0x3, 0x0, 0x8)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="00000000b470328b14cae3fcbf54728e12b7e1", @ANYRES16=r1, @ANYBLOB="200727bd7000fcdbdf2501000000050019010600000008004b009300000008002301010000001600130025d5474ebdf4ee8e1de01b9997e7e49e772e0000140004006e696376663000"/82], 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x11)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x3, 0xff)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
r2 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x2001, 0x0)
ioctl$auto(r2, 0x400454d0, r2)
fcntl$auto_F_GETFD(r0, 0x1, 0x2)
cachestat$auto(0x1, 0xfffffffffffffffc, 0xfffffffffffffffe, 0x5)
sendmmsg$auto(0x3, 0x0, 0x2000004, 0x0)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x80f02, 0x0)
ioctl$auto_SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000100)="0001")
socket(0x10, 0x3, 0x3)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
link$auto(0x0, &(0x7f0000000200)='./file1\x00')
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)

4m33.530495485s ago: executing program 3 (id=1915):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask_requested\x00', 0x0, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x3)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x2, 0x8000)
fchdir$auto(r0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/cpumask_requested\x00', 0x0, 0x0) (async)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x3) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x2, 0x8000) (async)
fchdir$auto(r0) (async)

4m32.183102585s ago: executing program 3 (id=1919):
socket(0x1a, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/modules\x00', 0x88400, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$dir(0xffffffffffffff9c, 0x0, 0x381000, 0x100)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/node/node1/compact\x00', 0xc2481, 0x0)
r2 = mq_open$auto(0x0, 0x2, 0x4, 0x0)
mq_timedsend$auto(r2, &(0x7f00000000c0)='\xcf\x8d\xb6\xaa\x80\xd5\xb4_:A\xacz\xdc\xa0\x1d', 0x2, 0x6, 0x0)
writev$auto(r1, &(0x7f0000000080)={&(0x7f0000000040), 0x1000}, 0x3)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
open(0x0, 0x6041, 0x0)
socket(0x6, 0x2, 0x6)
r3 = socket(0x11, 0x80003, 0x300)
flistxattr$auto(r3, 0x0, 0x0)
semctl$auto_SETVAL(0x4, 0xfffffff7, 0x10, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/block/nbd14/queue/max_segments\x00', 0x80, 0x0)
read$auto(r5, &(0x7f0000000300)='\x06\x93an\x83\xe7s?\x1c\xad\xe9\v\xf5F\xbc\xaa&\xa0\xc9xH\xab\xc9\xe2\'w\x82\x8b\xc7b\xc6\x91eC\x1e\xda\x81\xaf/\xc6\"\x850S\xcaL\xe7-\xa9H\xffu\r\xbbL\x01\xff?\xba\f\xac\xabe\xc705\xd4\xb6\xed\x89L\x85\v\xe3m\xf1u8t&P%p\x8a\xca7B\x1f\x82P!;\xf9d&3\x9f\"\xe0\xf0\x92\xf2\xb8\xb2\x9ct\xdc\xfe\xdc\x91L\xccZ\xe1F{\x1a\xc4]m\xdb\xc2\xfc\xed\x00'/143, 0x2)
read$auto(r4, 0x0, 0x20)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/dummy_hcd.5/usb6/6-0:1.0/usb6-port1/power/runtime_active_time\x00', 0xc0000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8282, 0x0)

4m28.565949405s ago: executing program 3 (id=1927):
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r0 = openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ieee80211/phy6/queues\x00', 0x200000, 0x0)
shmctl$auto_SHM_STAT(0xec, 0xd, &(0x7f0000000200)={{0xffffffff, <r1=>0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, 0x4f, 0x1}, 0x5, 0x8001, 0x8, 0x9, @raw=0x5, @inferred, 0x0, 0x0, &(0x7f0000000080)="1f02004358dcfe4baf25bd6f5df1e99f4f45973bcc70949c7fff283b75f7ba486688191c96ed5c9f8504b0d3e078d1bf189ba8726eb8a66ca1571e6dced2b08fdac2fd09c8ffe08d1077696d1bdbb7f4ed1d52642029987e984668c0b34d2f13f306010f1407216bedb278d028dc6fc08ff169db37854b98a1d0", &(0x7f0000000100)="44394565a56eaa6c5dc287000d3f3597564c91d9ff451d100b0a2efae93e4869107d894e90bb041c1219080b5b3ac0226905b21c01130307f3718dd1bdbee54a6d7bc6d0783ab1e9816f70f501f238d70917ec582cc7eb15f3d75fe0a408419627d0d1dc8cf0059bcdabffade666580313fd005ab94e9717d9929d41b175c6ea7b5e8b79cbd4c48c5f970bc1265b532154e8759e1dee86674a7217b496c8c3f15e22c8e2b663f53257bfd7d6c6985b1a467d883ce98b77201aa7ca2fb06d33e6d68ad82e614f3691bd5eeaa0c000f3620ef3bbf7de0c3b94a34ada12a4bb3c8eb8102ed7daa5a33f1f6c405d458b56c28e06a94b3edc1f"})
newfstatat$auto(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x4, 0x7, 0x3, 0x8, 0xee00, <r2=>0xee00, 0x0, 0x5, 0x8ef7, 0x3, 0x0, 0x5, 0xfffffffffffffffd, 0x8001, 0x100000001, 0x9, 0xffffffffffff6ea4}, 0xfffffffe)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_hsr(&(0x7f00000011c0), 0xffffffffffffffff)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f0000001340)={0x0, 0x0, &(0x7f0000001300)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="fbdbdf250300000008000200000000000000295d8ae148dfb9c1b7fec17f6dad66818e085912aa1e53d387c96bc45aeca86012344ab1a853027e8173a9ce783283734b9e2bd2cdab7bf646e253da5017930380256edbf9de4f9371a1968a37622b9a80a2af7e1d72e070b0b309bf5c6dc6ccba484e10d357f8b51d5b1d48abebc4617fe2c7870e125946b6632e3cb66dd60a405fa92ac465894246052c57a34eb53837865bfb771e3871c1fb2a98128a065ea44c50190862380b366fda452d879c4b0b63f8ea2866d15b8e1da6ab58ef44b25f10dd131b80461c71ce2376acaad4bdfb20e0296efa60fcc3ef969a882496ccff3cf55738dee19adb1e538f1ce100ba98150b095c1d7347b7fbd0cfe160639ce64c9980d55938", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x240008c5}, 0x48094)
fstat$auto(r0, &(0x7f0000000380)={0x9, 0x10, 0x100000000, 0x3, r1, r2, 0x0, 0x4, 0x4228, 0x7fffffff, 0xffffffffffffffff, 0x3ff, 0x0, 0x9, 0x2, 0xffffffff00000000, 0x6})
close_range$auto(r0, 0xfffffffffffff000, 0x2)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
socket(0x2, 0x3, 0x1)
statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000440), 0xffffffffffffffff)
ioctl$auto(0x1, 0x890b, 0x8)

4m28.182707884s ago: executing program 3 (id=1928):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r1, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000fcdbdf25020000001c0001800800058004007d00100001800a009300292c5d2d2c00000001c00514cedec00f06e6afe29d9ecd4c1cdbe1094fd8d5f8da802d80a35dd0a51fb0c23f1332018b4908cc3a76a43d72f4259d7e3ac2954c294fd7f5af737ac0ee7aa305950be9e267e724d1d0bacac67a9ec747d2cbbe71ecb07c0624da55cc224c0d78cda341cf646c7e00b76d817a9ad672e96b609fe14b"], 0x30}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000)
sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
write$auto(0xffffffffffffffff, 0x0, 0x6)
sendmsg$auto_OVS_VPORT_CMD_DEL(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x48010)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8502, 0x0)
write$auto(r3, 0x0, 0x80001)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(0xffffffffffffffff, 0x0, 0x4000000)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000)
open(0x0, 0x2a4c0, 0x40)
execve$auto(0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x10001, 0x7fffffffffffffff, 0xe817)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.8/usb25/25-0:1.0/ep_81/bInterval\x00', 0x382b00, 0x0)
sendfile$auto(r4, r1, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x40a40, 0x0)
io_uring_setup$auto(0x85, 0x0)
r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
ioctl$auto(r5, 0x802c550a, 0x1)
r6 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, r6, 0x10008000)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0)
pwritev$auto(r7, &(0x7f0000000100)={&(0x7f0000000080), 0xe001}, 0x3, 0xe, 0x3)
r8 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x408141, 0x0)
ioctl$auto_SNDCTL_SEQ_OUTOFBAND(r8, 0x40085112, 0x0)

4m12.565337163s ago: executing program 33 (id=1928):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r1, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000fcdbdf25020000001c0001800800058004007d00100001800a009300292c5d2d2c00000001c00514cedec00f06e6afe29d9ecd4c1cdbe1094fd8d5f8da802d80a35dd0a51fb0c23f1332018b4908cc3a76a43d72f4259d7e3ac2954c294fd7f5af737ac0ee7aa305950be9e267e724d1d0bacac67a9ec747d2cbbe71ecb07c0624da55cc224c0d78cda341cf646c7e00b76d817a9ad672e96b609fe14b"], 0x30}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000)
sendmsg$auto_OVS_FLOW_CMD_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
write$auto(0xffffffffffffffff, 0x0, 0x6)
sendmsg$auto_OVS_VPORT_CMD_DEL(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x48010)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8502, 0x0)
write$auto(r3, 0x0, 0x80001)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(0xffffffffffffffff, 0x0, 0x4000000)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000)
open(0x0, 0x2a4c0, 0x40)
execve$auto(0x0, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x10001, 0x7fffffffffffffff, 0xe817)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.8/usb25/25-0:1.0/ep_81/bInterval\x00', 0x382b00, 0x0)
sendfile$auto(r4, r1, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0x40a40, 0x0)
io_uring_setup$auto(0x85, 0x0)
r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
ioctl$auto(r5, 0x802c550a, 0x1)
r6 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, r6, 0x10008000)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x2, 0x0)
pwritev$auto(r7, &(0x7f0000000100)={&(0x7f0000000080), 0xe001}, 0x3, 0xe, 0x3)
r8 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000001bc0)='/dev/sequencer2\x00', 0x408141, 0x0)
ioctl$auto_SNDCTL_SEQ_OUTOFBAND(r8, 0x40085112, 0x0)

31.774554548s ago: executing program 1 (id=2377):
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
bpf$auto(0x2, &(0x7f00000001c0)=@batch={0x8000000000009, 0x80000001, 0x10008, 0x8250, 0xa6d5, 0xffffffffffffffff, 0x7, 0x6}, 0x103)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d8010000", @ANYRES16, @ANYBLOB="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"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x8000)
r0 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0xfffff000)

30.980312928s ago: executing program 1 (id=2379):
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/exception_policy\x00', 0xc0080, 0x0)
pread64$auto(r0, 0x0, 0x5, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2c, 0x1, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x2, 0x401, 0xdb, 0x18, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mbind$auto(0x0, 0x800605, 0x8003, &(0x7f0000000100)=0xfffe, 0x3, 0x3)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/locks\x00', 0x0, 0x0)
pread64$auto(r1, 0x0, 0x7, 0x5)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
r2 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
read$auto_minstrel_ht_stat_fops_rc80211_minstrel_ht_debugfs(r2, &(0x7f0000000340)=""/253, 0xfd)
timer_create$auto(0x3, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/net/pppol2tp\x00', 0x0, 0x0)
pread64$auto(r3, 0x0, 0xd, 0x6e9)

24.606231296s ago: executing program 1 (id=2388):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/scsi/sg/debug\x00', 0x100, 0x0)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000000), 0x400800, 0x0)
io_uring_register$auto(0x10, 0x7, 0xfffffffffffffffc, 0x1)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x3, 0x0)
ioctl$auto_KVM_CHECK_EXTENSION(r1, 0xae03, 0x51)
ioctl$auto_PPPIOCSMRU(r0, 0x40047452, &(0x7f0000000040)=0x3ff)
sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, 0x0, 0x2, 0x70bd2a, 0x25dfdbfe, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4080}, 0x800)
mmap$auto(0x0, 0x7, 0xff, 0xebd, r0, 0x6)
socket(0x2b, 0x1, 0xfffff049)
setsockopt$auto(0x3, 0x6, 0x19, 0x0, 0xfb3)
unshare$auto(0x40000080)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/midiC2D1\x00', 0x14001, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtd0ro\x00', 0x2c00, 0x0)
ioctl$auto_MEMREADOOB(r3, 0xc0104d04, &(0x7f0000000080)={0x7761, 0x80, 0x0})
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x41000, 0x0)
syslog$auto(0xb, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\x01\x00\x00\x00\x00\x00\x00\x00c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
poll$auto(&(0x7f0000000180)={<r4=>0xffffffffffffffff, 0xfff7, 0x9816}, 0x7f, 0x9)
ioctl$auto(r4, 0x4008af24, 0xffffffffffffffff)
r5 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC1D0p\x00', 0x167101, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_CHANNEL_INFO(r5, 0x80184132, &(0x7f0000000240)={0x9, 0x49f, 0x0, 0xf583})
mmap$auto(0x0, 0x7, 0x9c0f, 0x44eb2, 0xffffffffffffffff, 0x2fffffffffff)
close_range$auto(0x2, 0x8, 0x4)

19.241029247s ago: executing program 1 (id=2401):
statmount$auto(0x0, &(0x7f0000000640)={0x8001, 0x1, 0x201, 0x1, 0x2, 0x3, 0x3ffdf, 0x400, 0x4, 0x9, 0x9, 0x280000, 0x4, 0x1, 0xb2, 0x2, 0x9, 0x2, 0x4, 0x80000002a0, 0x0, 0x1, 0xffffffff, 0x200, 0x6, 0xbca7, 0x4, 0x80004000, 0x800, 0x800005, 0x0, [0x0, 0x4, 0x4, 0x4, 0x0, 0x8000000000, 0x0, 0x1, 0x0, 0xffffffeffffffffc, 0x0, 0x6, 0x0, 0x0, 0x7fffffff, 0x4, 0x0, 0x1, 0x2000000, 0x9, 0xffffffffffffffff, 0x0, 0x6, 0x0, 0x40000000, 0x8000000000000000, 0x0, 0x9, 0x0, 0x0, 0x80000001, 0x0, 0x6, 0x400000000000000, 0x200, 0x80000000, 0x313c, 0x0, 0x9, 0x0, 0xe17, 0x0, 0x6], "47f243ebc9676da57f5738014d46696935422962869255df5abc5ca580464786f62dd9f1db3fddd5da7676f5fdaeffef41737b17d46a25bc7e34bb815ff1508758aa176da7d468250a9b39d246"}, 0x1fe, 0x20000009)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100000000000000004000"}, 0x58)
prctl$auto_PR_SET_MM_ARG_END(0x1, 0x9, 0xffffffffffffffff, 0x6, 0x8)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0)
clock_settime$auto(0xfffffffe, &(0x7f0000000000)={0x100000004, 0x8})
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
socket(0x22, 0x1, 0x100)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
r2 = ioctl$auto_SW_SYNC_GET_DEADLINE(r1, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r1})
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0xffffffff, 0x6, 0x6, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x27, 0xd, 0x8fd6, 0x9, 0x1, 0x15f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0xfff, 0x7d, 0xb, 0xb4a, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_psample(0x0, r2)
sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r4, 0x0, 0x801)
mmap$auto(0x7, 0x20009, 0x5, 0xffffffff, 0x405, 0x8000)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(&(0x7f0000000000)='./file0\x00', 0x261c0, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r5, 0x40186f40, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)

16.13785257s ago: executing program 1 (id=2404):
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0)
clock_settime$auto(0xfffffffe, &(0x7f0000000000)={0x100000004, 0x8})
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
r1 = socket(0x22, 0x1, 0x100)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
r3 = ioctl$auto_SW_SYNC_GET_DEADLINE(r2, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r2})
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r6 = socket(0x2, 0x5, 0x0)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/dvb_usb_dibusb_mc/new_id\x00', 0x80002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r7, &(0x7f0000003900)='\t', 0x1)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'veth0_to_hsr\x00', <r8=>0x0})
r9 = getpid()
sendmsg$auto_OVS_DP_CMD_NEW(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x7ec284a4a8dc18cd}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0000000000000006", @ANYRES16=0x0, @ANYBLOB="00012bbd7000fedbdf250100000008000900", @ANYRES32=r8, @ANYBLOB="050001000000000008000200", @ANYRES32=r9, @ANYBLOB="0800050005000000"], 0x34}, 0x1, 0x0, 0x0, 0x40800}, 0x20040901)
getsockopt$auto_SO_LOCK_FILTER(r6, 0x0, 0x2c, 0x0, &(0x7f0000000100)=0x8)
syz_genetlink_get_family_id$auto_psample(0x0, 0xffffffffffffffff)
sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r5, 0x0, 0x801)
mmap$auto(0x7, 0x20009, 0x5, 0xffffffff, 0x405, 0x8000)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mmap$auto(0x0, 0x20009, 0x100, 0xeb1, 0x401, 0x2)
r10 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r10, 0x40186f40, 0x0)

15.533812422s ago: executing program 0 (id=2406):
ioperm$auto(0x7, 0x5ad2, 0x8)
ioctl$auto_USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = ioctl$auto_SIOCGIFHWADDR2(0xffffffffffffffff, 0x8927, &(0x7f0000001240)="9ab50f4ecf847be05f351e6488b61b974daa95047bb74b315eed6dca52dbdae0242fcfb571a66c97616937dd93b97753a5af8eadde84d075a946b81cdc6c72bd40aad677442d78a9994343e93dbf7822b41297f10050e625de61812235419b61ca6e1cf512102bf572750799aa3964739a05ea21d618836df2cf96ebcc6d292f0545e1eb5e66f83ca5b02974f6e1cd2acedee5d3b4ffdafe41befaaf1e517f633ea0e3d67782d4189bdf2c6a65f72859659a9ab103b7813b1630bb6f2fb4863586abb50472130ea12c4b4aba1e6bc7bac83382aa3bba6fc507788cd0b19beec49ae5b89b5a91aa0048f0d058daad9b1f0a396c35595d66e0ca73bd85830896d61370d97956eed87e06c4199bb2afa4338793b007e67835158c000971ca880dc7ee66113cf14495b0f4339cef5ac32c775d7db142f0a63d7fe953177f2ef74fbe6791a0dbbeddb2060899962e8a45a9fa8f07c39e260873330d84b00875d18b79e1c773918de40b9d457e92aa8cb305e4d88c10e8e27e7452362269216617b6688155473a8ce9850ba6627d1dc13f6b12679cb1a2c292ec5f4179b5f3b3375ad86b07e9d0ce7b00aa9ed5ca064645dc63be31d980f23257e30f76da5b7c7b9288b1f9201526113dc5a1bb6868da8c4097911a19863753cab06714d88848a93cfb183d2fc04ef62292aca7030578e9deb86077d38502dffc31e5eba12846f302793061d70cd92f6e8dcea38a4d51e9d96e20e49b70fab676aa1e69ce4ad9350001eaa3dd7f9af5aedf664876fe6fdac17799b2046f62fe5052ed5f3408fe2f1c716e9e9a1f5ba039a39db432c6dab2ec3a720a0415baca171e6e611c14bb511444af9e559223a1e9d2692ce839be9168d82477cbef48d915698ab249e58667942914a841828f4e15d5bb6d00fddbdd6b5b170f0326be5d5e2f515e7e5a8933fcacbd3d14f5d03a3b85a28462f3b22c5a0fea03f8ea21b5a0de0b1ff8ff47e2a6a7d2da26ec901d27ca5816108494e1ee2d8e9c1af62daa7e2f9437a735d504bb46dd720578ed308f70609188ce6a15d30bd9fe10e4c028f46450a7572256f84d1d59444e4a08d6f79811115506206e4d6714cb12dac45a6a85be8913ba01d71e5f19d6e90d830958a3f56923edb5a0efc8346d4d193a0abbb658f219279a5d9f5c5d524e5f000cfe9943beb70eb5994e26aadbd3f47dc18003165b39b5cf718900ab4b845a0493481ee388fccfc460859bd85fa63c0b58b775d3729db3c1cc58573e36b3bd33dd890a9d26a2a3a8b2def1a7c6eb3129cdceff29d3ec2ff52b9bd2ecb7ebc103706366c9e88c089f332d8bb380dc3afe436e490a538cd8c43ea63bd65e9486ce2c52e55d9eca84b24cc77f33e2c3096a04705dedc238779c4a497082d6d6a7dfb3b5259112546874411622e28e15c70ad98fd1e916843b06c4ee3f13c3cfdf5fc0d393391bad9d68335c0b4e32c4407c60ba070eeb6dd282b2f7ff6134e039eb011f0b4026f2ed46426fb07a335c21614dbabfb7cef26b96f29b0805642e9b0f5d9c675d5cf89111791600d330d8503efd3ee384e5e7fe02b8137f8881e8ac23eb4f4fa6a1a88a9fa8dfa9e446bb7f117a3d6687b2d2d505c461703eb5df4032b9371ebe49710c8e8244f10943a516bb84307769d12ea0d2c5244d8f41e646d162706cb35b9ac6e2e1650eddf1cca58c1a8fd2c8e6fc485ab478dd2a0913ffdce715d775f38c4b692d16cab3a24edc5fe496dc98a68451eb4776db277465525780d92bcaeebf145408a6607f86fc94043ee30683106cde9c71edd460f783e602465f32554c09376860d3d9420badf095ff9fdfb3311af5800eda2ee5741e555ea42b121d1f7001b471df869b7b2b0de36a31b443e75bc8f101884c227fab4951f0bd1b503f9d5c816afe75061648eec404c1ed0eb57e4f8a5e966f45227be127369550f5daec076d5020274a9a5bac078e700dd9b95ba961be08f97fcd543f88691e32d0aa9f8776f58c96de8cce194aee6f9010d7710b692ddfa24457a3a623b91d743521dfe43a21ecce2863356308526687c7ed1169386be11059614cd138d439725ac4b5c0a9e04f503dd1461e57935de94a12a64d18c1845500665f81bae9ef33033a4a2d04ca381da212a68e1f267f03ffb71db53ff0da93176b47ff0568a5acee10190c12c9fda1543c318229708f6985e224ce750e9ca937d6927c1de7e5fd7e7db6cd42478e0d11a97e8959ce0118d556960d4cfde1625c72220ac1988fc3c69850d00a08246bda3846b623e0c1a731d47ba3216fa91139d5f5a8af9897fb08bc53e682e669e4a20962f841e13da43b62ad6eba654f815c2ad347ae279ab134cca6a1ebd06e822cdceeb58d4329d501c216357a12fd92fa0c27de77e756cdec09698284802eb2d21ca7e1a3619da2591c1fe29d4da0744f1110594f57a20c286f78b1111814c55715e05e4c753bc0242c9abb850b508e061c1179d88fb11b33bb1f34d05cb38e99a57d1a06ea61590431db1cf22817c85f885978f08f92335e997eff96a5feb784e410d41a953a6d92eb5973c08aa728ab673c0e693f47055c112d8efc8bd84f4c85b2f160b4c47da302cfa214b822b68276fbd50933facc06956aea16f35e61e859072749a49f13d33376ec41f7dc85625e1e48fc821317f43b0be304f448eb1de7c68ba84e774a2d22b1d3f55c144f59c15fc19c6df45ac3ac6461df9aebebfc8738b7b2e0dbdd99909498a3741d9101d82540a64b5e7a149e1f98a0788704a843faece338d465826b58f3e11aef73d44efdce1739b1927c45248d32be74ea0fabbe17e7c0657cc68419d96f19119493ab5569c86aa80b6bc4b410b011a12e1ad5365c674720c2f2a4c78962affef7e63c4ca0d4235f977ae416153edef6402b95ec61cb561759217002b66a78b65819d1b649a85308943148ac025410dbe4f9f18694a1c7289118035f454f81e1d9b6ab076ddb50e8c7b8ed2fd36d4dd6c5c928041afc8936fa83244aa9dbf08676cc30580d8fee518e24ed4089b63f9930c194e048b88cec98f9190a81f1a09e80c2af63e4738d4bf6c8e4eff41a846a25f8d74ab88f9d85c9b059bab15fc1fc485e1f92fa4f41a3a275e9609ea0c7dff7c9488f482067f38f4e8f424007498ac1da9eeba9857b34dc21d552dada4aff917d37463fb054ddedf52ab3def2813fd115e3f36c3f82719a486d2605aadd9c3e708261e2acf13fa9cd81fa2f23aea49b3a42b3ad43bd140ccb5c274c099062d1148d1def0171c5b8b49ac6b462de5246523cee3bb96d6340c8992114ce7f3d0d6ef92f02bfe3142dc1cc03310ea49fe1000b6a5e2353e25b4d373830a2030f7a7f33c60d583ca9ecf9930a22fb8415364d22a1f5aa8ebd95930123e04edaa80b5bdd0473a2c95be3797d6100145d674498fea24a87009149aa27a7060ccaf0ea0675a0c498370beff8978604ac3d3aec9cf3ad53ec8a698c5e1a44d0a4be22e5a16547db9eef5577d6ecd5a2967c4d4255e8908ccb347fe7cb5a7246345035a7a8a12993f8fdc661ffd3a84736ee9a5852dcf8e3aca4afa19a598c9379dd6d3c594e9aa54c1b5f0a2add05c979c76f9d1796c2072e0a6b5348ec199aa7abb34cde352f97e61823977723500867f803371f115c3528b30442fdd828f872d7c962f21053d6fb1fea2ac4e273902edf14d1b9c362f76c67ee7ff175ddb443afd3bab63767d2a64416d50015c09ae0a0faf5b6cbd39a31b7d324d110a84800f2c541cb39836c4cc2e7de0596b78e580533c1dc1126acc7aa5e8d2c2680b511ef4160351e924411b092a94c0a6df787eea3a6960ee27c1480ffc3dd286af35183020315a00ea9dc2384edb0a9c420c12a35ef16fa73d6caf07d796416768be12fad0fd636304918b7cc7901d5db64e6d3d1f7560b859c2044f38e46eec7c2cca01492309c948880326e60fb540bec547626cb5ceb48eae7f0bdd5f38b7ca69159bf39e5a6dee36f2199bae38a2d21e3316c8debcadfb4121af4446cc9fe2a536689816f66510d8906a1f96db1b71a7ab1a9de45e67d93586db93397eae71e6eca1e84531ba50ee9ab11bc01eba40063e74b0efd6ae4ab90bb50e2312861c92b43720e83d3bad50bf66f87be98c40b275339177dba753ddab002b07827ab860e9613a1bb0c13e690dbd71f5a30578e5ab1d1426ca07cb698f30cdfe1853a10fa976822da5c1b3ab8bd6df956e74a667867b94f26b696b9379ab818eed48a13fa6a3590cc1b6e159f25d3f7f7c5178ae84974460d7880b84aa90077a0a8dce82fd6bed76df7cf1dd42b33ec26cdf374ff068db186ddf08112eabfcd7b3f25afaa765bc831a3c7e7d93d6794c2c92d1223de9b15217632aa17ee09651556d0617219d9142f155dd8b1d87cf31715113519edbfdc5d6849feb239a73b53f94430f8e7ee022cdf8cc9aeb877e4109db461e6dd68351a1522d41854ff59a91b854cab163329442c01cbc3b352c8068131c8c22f7b9220e009e3890f396d5fe69137e2f0b52b27d190705cc4dac692ebb7d9662268cc641d03804d7f5bc99437e49a3e2e6b8879d37322faaec90df4a1201bb1f58d1eedadf74df18be13e0aff304b583da98589aa22e27b1f78beaea663e3182d2b12a2f3c835c0feb3001d787b297a2aaaaa649fbd9269dc534c810ea064d6d27d54e54f73e39ed4ef101491c144f7010aa2519587cda497d770763f60e6d9df6672c3a47991d757b7ccaa38550f42d0ed724b52c04a61e3670a3af1bab73543112f20b4b17e1ca567c2e2dfd8ded52e80ef79f2f0ca312099a2905ee699a61eb34aee75c974ba6c8e6b6f8d4346baa5164edbf9f892f5b20fe2e4d63d697e17a41ff323e114e5b8f8bf9204ac842e4cb0eaf872ed92e92a09a61e17010be88bcffa11a464e9dd15f772b17a0a26a384a6bbe80a2bed2c5f3c5db439384781893c68f35e7f04dd4b90fb35566b4b5e230410f2a88302436113a0d7ce0a589e9155273ffee7fc927dd0f1e5592c727a2bcfe61eb5d95811981d0d307406d5da4c6c164be156558675bc34d2bb1e9bfb3ff557b101892ba10bce45f85ff739acb1513058e74ebf675dafc64501525b510f70338d31ba19b7ab4eae92c2c33d59b616fbeacb0b0af4615a08b316d9ea8ef31b7e27f0d286aa4f918d8fd553d8e463df06cd6a7303b5f0ee14e2b60e910f02e7e4eeb55ca3b1210050359d9f662556ba38c50ea31080fe172438b438af83572cd33451fb92ec62ab10d4a439c571ee290d524270a0cc90665c9f6347f9f3d78efcda9e6e13a255f9080f66dbf0030cb9c1d10ade44412bb9e5783a86e35eb5b28095f52942b83013967d661e2e7bd9b525f1fb8b0d127dce73876805ed4954bd7cf9cf6f43c06c4463dc9d339394e2f83304223627d76d61b245140f440446d4e6eabe0450034f82b1d6f2d6d090895de305a84e7bb7824ad84429aa50775536dbda7bcacadfe01b5d6ca8e46b897c21122655677a176bab6b260deb3d6803607b9aa85d74e748aedc17537bb0bd0b4800cd9ad3705b9960a61f501a4bdaee05309c5537189a8d616554429de7717674aa88674733fb68eeab898aade23712c8058a855904f4e7085115f36b6df394864d88e6cf183753248eefad820ff3f1dda2ff430da2c16633f7bb86fced18a6217c71a412287f31c1699553ad9695195a95baca9cd3f6510d9dbcb5a404fb02d4a6a476090ffab0efa6")
mmap$auto(0x0, 0x4, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = io_uring_setup$auto(0x4, 0x0)
mmap$auto(0x4, 0x2020009, 0xffffffffffffffff, 0xcb1, r0, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x8000012, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x8001)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, &(0x7f0000000080)={&(0x7f0000000000), 0x8}, 0xf, 0x8, 0x0)
r4 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0)
write$auto(r4, 0x0, 0xe)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty45\x00', 0x88702, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r6)
r8 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000002c0), r3)
sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000300)={&(0x7f0000002240)={0x139c, r8, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@OVS_FLOW_ATTR_MASK={0x2ab, 0x7, 0x0, 0x1, [@typed={0x92, 0x141, 0x0, 0x0, @binary="e07583493346adb40b85e292c24f48d73425ab2a9dc442841501a840f87a267d1d99b7f40f8358d4b53026791630d723feef579c98ed3db007da8c1c03490cce909ac888d08b51736b7b8bfba6eef5700a490de2e024645d7f823072b79e89d55310d78dca94d61cad83a146cd38a648c2cfd3c3df0a5e90dcaa4eabb6a3d619df5084ba61c1c6158306f4f8c099"}, @typed={0x51, 0xa1, 0x0, 0x0, @binary="4884758d0e1c7640a26471ec24cc32e41e38cc4f1ff91d8996ebcc972e9fc82cdbe4a5a785da954e4c1d036b4bcde7de2cc88a50b36286ab2304497e03cd8ef51be00d64ba876e5c3a49d8eef7"}, @nested={0xc, 0x29, 0x0, 0x1, [@nested={0x4, 0x8}, @nested={0x4, 0x70}, @generic]}, @generic="1b684d41880c8699f9fb1e3fb5e2a18e10b562ed6a1f9de13c6e1dfdf9287a2ed600905a7e9243ebd9201365409b5db5fd204e6c72f4251877b6c861d844da30c1a5d3073ef3c9fcd9c86604484a9f397d43fc95dfd20be4fcd7107d8581aa9321b990b963e1b75be963d9f0bd95dccf9dae56cf29c5b70c5b35d188600b5d8641b44f906fa6d489ec0f7dd2bc6545687598be84663ff6fc5ec80b5013605e7f30a0fd231da682503b7fa2aa35e0327d9fb00c877d6b5abf20dc60f7bbae4a2fb299c095d127b1917748524267a500e729191982441f8885c6765c", @typed={0x14, 0x133, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @nested={0xbb, 0x77, 0x0, 0x1, [@generic="37517aaf4db3bcf2e4ef37c165bdc25d6013c7592df2c5c8107debd1d287c24dd75eb1d79ef3371360793d5be63d9439434ebebc2000c5f0a291ed4c6dbfdd662b2848a5f6b577525e6171f49bfa9e803eb098e7a06944a8d65c8e0e776f59df8d20858c4b219f9b2af4753cfdc0c712978713035f23542d173d76ba177a8d45ea895bce8cc087d8df153274bcda5f5ea9b5e2bb566703612329942e119227bb0cfaa27a78e180881cca47268cdaf63e0696b1ad9ae79e"]}, @typed={0x8, 0xdc, 0x0, 0x0, @ipv4=@multicast1}]}, @OVS_FLOW_ATTR_MASK={0x10d1, 0x7, 0x0, 0x1, [@generic="cb161162f7f540484069acf078ae439cc61f722b08564186a9c8e8e9f90f240579a6d5cd4aece97ff7bade5833c043dfdf", @typed={0x7, 0x6c, 0x0, 0x0, @str='{:\x00'}, @generic="be85860e83c02da82dfba586f57c157b720397f4d7d14051a4eca7f37e009bcee8e79a952f15823101d0d524804fa11199fa435b779c2382bb1f7f41a0591a931c5e1bdc7cdb711f72a72861771d6a86b737aa76c4b1e1eb13ba7f876a61557ecb8286f260ae313134694f727c204e56916b4dbba7d50cd8", @typed={0x8, 0xac, 0x0, 0x0, @u32=0x6}, @typed={0x14, 0x50, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @generic, @generic="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"]}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x5}]}, 0x139c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000800)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000001c0), r6)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="0c92d819d0e88e262001b0e15c80c455b2af845587df9a43e7553d0edaaade964269648a6b5b0cff6c7354692c35eca74b8c4e560b176658a522fa899f65fb32216d3daefdddc76030c316dd7b689f3c5b9199c0d8ef100b", @ANYRES16=r10, @ANYBLOB="010025bd7000ffdbdf2504000000"], 0x14}, 0x1, 0x0, 0x0, 0x41}, 0x4004040)
r11 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000003c0), r2)
sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r1, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r11, 0x20, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0xff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x4)
sendmsg$auto_WG_CMD_GET_DEVICE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, r7, 0x703, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x60000000, 0x985}, 0x4)
write$auto_tty_fops_tty_io(r5, &(0x7f0000000580)="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", 0xfdef)
modify_ldt$auto(0x11, 0xfffffffffffffffc, 0x23b94)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/029/001\x00', 0xa002, 0x0)
statx$auto(0xffffffffffffffff, 0x0, 0x1000, 0x8, 0x0)

14.292753s ago: executing program 0 (id=2409):
mmap$auto(0xc, 0x4030009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x11, 0xa, 0x300)
r1 = socket(0xa, 0x5, 0x84)
bpf$auto(0xfffffffd, &(0x7f0000000000)=@bpf_attr_5={@target_fd, 0xffffffffffffffff, 0x6, 0x4, 0xffffffffffffffff, @relative_fd=r0, 0xd}, 0xa3)
sendto$auto(r1, 0x0, 0x401, 0xffff, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyt9\x00', 0x46102, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x1, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r2, 0x5401, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/console\x00', 0x102, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getpid()
ioctl$auto_UBI_IOCDET(0xffffffffffffffff, 0x40046f41, 0x0)
unshare$auto(0x40000080)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x22000, 0x0)
openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/cpuid\x00', 0x88900, 0x0)
readv$auto(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000540), 0x40200}, 0x80000000)
mmap$auto(0x1, 0x6020009, 0x3, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x8003)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
eventfd$auto(0x8c)
r4 = socket(0x10, 0x2, 0x4)
socket(0x2, 0x5, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x28641, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xebf, r4, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x7, 0x0, 0x5, 0xffffffff, 0x2000000000210004, 0x0, 0x200007, 0x5, 0x2, 0x7, 0xaf, 0x6, 0x8, 0x3, 0xa, 0x7, 0x0, 0x0, 0x10000005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, [0x3, 0x0, 0x0, 0xc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x200000000000000, 0x0, 0x200, 0x0, 0x5]}, 0x1fe, 0x81)

13.050004186s ago: executing program 1 (id=2411):
statmount$auto(0x0, &(0x7f0000000640)={0x8001, 0x1, 0x201, 0x1, 0x2, 0x3, 0x3ffdf, 0x400, 0x4, 0x9, 0x9, 0x280000, 0x4, 0x1, 0xb2, 0x2, 0x9, 0x2, 0x4, 0x80000002a0, 0x0, 0x1, 0xffffffff, 0x200, 0x6, 0xbca7, 0x4, 0x80004000, 0x800, 0x800005, 0x0, [0x0, 0x4, 0x4, 0x4, 0x0, 0x8000000000, 0x0, 0x1, 0x0, 0xffffffeffffffffc, 0x0, 0x6, 0x0, 0x0, 0x7fffffff, 0x4, 0x0, 0x1, 0x2000000, 0x9, 0xffffffffffffffff, 0x0, 0x6, 0x0, 0x40000000, 0x8000000000000000, 0x0, 0x9, 0x0, 0x0, 0x80000001, 0x0, 0x6, 0x400000000000000, 0x200, 0x80000000, 0x313c, 0x0, 0x9, 0x0, 0xe17, 0x0, 0x6], "47f243ebc9676da57f5738014d46696935422962869255df5abc5ca580464786f62dd9f1db3fddd5da7676f5fdaeffef41737b17d46a25bc7e34bb815ff1508758aa176da7d468250a9b39d246"}, 0x1fe, 0x20000009)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto_PR_SET_MM_ARG_END(0x1, 0x9, 0xffffffffffffffff, 0x6, 0x8)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0)
clock_settime$auto(0xfffffffe, &(0x7f0000000000)={0x100000004, 0x8})
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
socket(0x22, 0x1, 0x100)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
r2 = ioctl$auto_SW_SYNC_GET_DEADLINE(r1, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r1})
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0xffffffff, 0x6, 0x6, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x27, 0xd, 0x8fd6, 0x9, 0x1, 0x15f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0xfff, 0x7d, 0xb, 0xb4a, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_psample(0x0, r2)
sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r4, 0x0, 0x801)
mmap$auto(0x7, 0x20009, 0x5, 0xffffffff, 0x405, 0x8000)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(&(0x7f0000000000)='./file0\x00', 0x261c0, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r5, 0x40186f40, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)

12.051074663s ago: executing program 0 (id=2413):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyz3\x00', 0x800, 0x0)
ioctl$auto(r0, 0x4bfa, 0x1)
epoll_create$auto(0x4)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
select$auto(0x3, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x0, 0x15f4da0a, 0x200000000000003, 0xf5b, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
pipe$auto(0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0x4048aec9, r1)
sched_get_priority_min$auto(0x40)
mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyz4\x00', 0x200, 0x0)
ioctl$auto_TIOCGICOUNT2(r3, 0x545d, &(0x7f0000000680))

9.381312987s ago: executing program 0 (id=2419):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r0, 0x4bfa, 0x1)
epoll_create$auto(0x4)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
pipe$auto(0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0x4048aec9, r1)
sched_get_priority_min$auto(0x40)
mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x200, 0x0)
ioctl$auto_TIOCGICOUNT2(r3, 0x545d, &(0x7f0000000680))

8.871376234s ago: executing program 5 (id=2420):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)={0x34, r1, 0x1, 0x2070bd26, 0x25dfdbfd, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, '\x00\x00\x00\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0xffffffffffffffff}, @OVS_DP_ATTR_MASKS_CACHE_SIZE={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4c855}, 0x4880)

8.306659106s ago: executing program 5 (id=2421):
r0 = socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
r1 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000140), r0)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYRES16=r0, @ANYRESDEC=r0, @ANYBLOB="0100"/14], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYRES8=r1, @ANYBLOB='J'], 0x1ac}}, 0x40000)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
r2 = getpid() (async)
r3 = gettid()
rt_tgsigqueueinfo$auto(r2, r3, 0x1f, &(0x7f0000000400)={@siginfo_0_0={0x7ff, 0x101, 0x3, @_sigfault={0x0, @_addr_bnd={"f38c6c13db093f74", 0x0, 0x0}}}}) (async, rerun: 64)
rt_sigprocmask$auto(0x2, &(0x7f0000000040)={0x2}, 0x0, 0x8) (async, rerun: 64)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) (async)
r4 = socket(0x1b, 0x3, 0x76)
madvise$auto(0x0, 0x2000040080000004, 0xe) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
getsockopt$auto_SO_RCVPRIORITY(r4, 0x2, 0x52, 0x0, &(0x7f0000000240)=0x7) (async)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r6, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000180)={0x28, r7, 0x1, 0x870bd2b, 0x25dfdbfc, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x14, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_TRANSPORT_NAME={0x9, 0x2, 'nfsd\x00'}, @NFSD_A_SOCK_ADDR={0x4}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000081}, 0x20000000) (async)
prctl$auto(0x7fffffff, 0xffff, 0x0, 0x1, 0x0)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
io_uring_setup$auto(0x85, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
mmap$auto(0x0, 0x40000a, 0xdf, 0x11, 0xffffffffffffffff, 0xfb) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000) (async)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)

6.928981899s ago: executing program 4 (id=2422):
madvise$auto(0x0, 0x2000040080000004, 0xe)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101802, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000080)={0x3, 0x1, 0x800000ff, 0xffffff71, 0x10000})
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_policy\x00', 0x202, 0x0)
r3 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/seccomp/actions_logged\x00', 0x8202, 0x0)
sendfile$auto(r4, r3, 0x0, 0x48)
sendfile$auto(r2, r0, 0x0, 0x48)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/smbd_max_fragmented_recv_size\x00', 0xe0002, 0x0)
write$auto(r2, 0x0, 0x10000000000080)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/gre0/flags\x00', 0x1, 0x0)
r5 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000640), 0x80, 0x0)
poll$auto(&(0x7f0000000f80)={<r6=>r5, 0x2}, 0x98, 0x5)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
fstat$auto(0x2, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x200000008000)
ioctl$auto_XFS_IOC_PATH_TO_HANDLE(r6, 0xc0385869, &(0x7f0000001680)={0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0})
io_uring_setup$auto(0x6, 0x0)
r7 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$auto_mISDN_fops_timerdev(0xffffffffffffffff, &(0x7f0000002a40)=""/4097, 0x1001)
ioctl$auto_IMADDTIMER(r7, 0x80044940, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video13\x00', 0x20000, 0x0)
ioctl$auto(0x3, 0xc0285628, 0x8)
ioctl$auto_IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r6, 0x7a6, 0x0)

6.696262401s ago: executing program 5 (id=2423):
r0 = ioctl$auto_TUNGETFILTER(0xffffffffffffffff, 0x801054db, &(0x7f0000000540)={0x2, &(0x7f0000000500)={0xa7, 0xf3, 0x1, @raw=0x2}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_net_shaper(&(0x7f0000001500), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001540)={'netdevsim0\x00', <r3=>0x0})
sendmsg$auto_NET_SHAPER_CMD_GROUP(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f00000010c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd7000fedbdf25040000000c000180080001000300000010000a800c000180080001000200000008000800", @ANYRES32=r3, @ANYBLOB="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"], 0x38}, 0x1, 0x0, 0x30000, 0x44000}, 0x14)
sendmsg$auto_NET_SHAPER_CMD_DELETE(r0, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x6c, r2, 0x8, 0x70bd2c, 0x25dfdbfc, {}, [@NET_SHAPER_A_HANDLE={0x1c, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x200}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x1}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x5}]}, @NET_SHAPER_A_HANDLE={0x3c, 0x1, 0x0, 0x1, [@NET_SHAPER_A_HANDLE_SCOPE={0x8}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x8181}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0xfffff801}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0xe4f}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0x1}, @NET_SHAPER_A_HANDLE_SCOPE={0x8, 0x1, 0xff}, @NET_SHAPER_A_HANDLE_ID={0x8, 0x2, 0x5}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000011}, 0x10)

6.159138864s ago: executing program 5 (id=2424):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
socket(0x3, 0x3, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r2, 0x84, 0x70, 0x0, &(0x7f0000000240)=0x10009b)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
ioctl$auto_NS_GET_PID_IN_PIDNS(r0, 0x8004b708, &(0x7f0000000180)=0x5)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r3, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x2, 0x0)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x165242, 0x102)
fallocate$auto(r4, 0x0, 0x400000a, 0x4b)
lseek$auto(r4, 0x3, 0x3)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000240)={"04ee08c9", 0x1, 0xf6, 0xd, 0x6, 0x7, "bd3b7d7d2a75d9fe381320cc9e1dea", "75b660e6", "847abc35", "9fea6d57", ["da621744c13a48dafa8e4863", "115e1f14786464a8bc277951", "e3d8afc7bf1a88e7344601e7", "e7b7ede0cfe03bb7d2b0bbe3"]})
socket(0x15, 0x5, 0x0)
rename$auto(&(0x7f0000000140)='.\x00', &(0x7f0000000240)='./file0\x00')
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', <r7=>0x0})
sendmsg$auto_OVS_DP_CMD_NEW(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)={0x40, r6, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r7}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x6}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_\x12\xff\xfe\x00\x00\x00\x00\x00\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)

5.348189362s ago: executing program 0 (id=2425):
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/exception_policy\x00', 0xc0080, 0x0)
pread64$auto(r0, 0x0, 0x5, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2c, 0x1, 0x3)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
mmap$auto(0x2, 0x401, 0xdb, 0x18, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mbind$auto(0x0, 0x800605, 0x8003, &(0x7f0000000100)=0xfffe, 0x3, 0x3)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/locks\x00', 0x0, 0x0)
pread64$auto(r1, 0x0, 0x7, 0x5)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
timer_create$auto(0x3, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000380)='/proc/thread-self/net/pppol2tp\x00', 0x0, 0x0)
pread64$auto(r2, 0x0, 0xd, 0x6e9)

5.308833548s ago: executing program 4 (id=2426):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)={0x14, r0, 0x1, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x68, 0x20000000, 0x24000000}, 0xd0)

4.861602931s ago: executing program 4 (id=2427):
statmount$auto(0x0, &(0x7f0000000640)={0x8001, 0x1, 0x201, 0x1, 0x2, 0x3, 0x3ffdf, 0x400, 0x4, 0x9, 0x9, 0x280000, 0x4, 0x1, 0xb2, 0x2, 0x9, 0x2, 0x4, 0x80000002a0, 0x0, 0x1, 0xffffffff, 0x200, 0x6, 0xbca7, 0x4, 0x80004000, 0x800, 0x800005, 0x0, [0x0, 0x4, 0x4, 0x4, 0x0, 0x8000000000, 0x0, 0x1, 0x0, 0xffffffeffffffffc, 0x0, 0x6, 0x0, 0x0, 0x7fffffff, 0x4, 0x0, 0x1, 0x2000000, 0x9, 0xffffffffffffffff, 0x0, 0x6, 0x0, 0x40000000, 0x8000000000000000, 0x0, 0x9, 0x0, 0x0, 0x80000001, 0x0, 0x6, 0x400000000000000, 0x200, 0x80000000, 0x313c, 0x0, 0x9, 0x0, 0xe17, 0x0, 0x6], "47f243ebc9676da57f5738014d46696935422962869255df5abc5ca580464786f62dd9f1db3fddd5da7676f5fdaeffef41737b17d46a25bc7e34bb815ff1508758aa176da7d468250a9b39d246"}, 0x1fe, 0x20000009)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e10000000000f5ffffff00"}, 0x58)
prctl$auto_PR_SET_MM_ARG_END(0x1, 0x9, 0xffffffffffffffff, 0x6, 0x8)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0)
clock_settime$auto(0xfffffffe, &(0x7f0000000000)={0x100000004, 0x8})
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
socket(0x22, 0x1, 0x100)
r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
r2 = ioctl$auto_SW_SYNC_GET_DEADLINE(r1, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r1})
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0xffffffff, 0x6, 0x6, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x27, 0xd, 0x8fd6, 0x9, 0x1, 0x15f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0xfff, 0x7d, 0xb, 0xb4a, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_psample(0x0, r2)
sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r4, 0x0, 0x801)
mmap$auto(0x7, 0x20009, 0x5, 0xffffffff, 0x405, 0x8000)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
open(&(0x7f0000000000)='./file0\x00', 0x261c0, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r5 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r5, 0x40186f40, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)

3.387489915s ago: executing program 4 (id=2428):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/unix\x00', 0x121040, 0x0)
pread64$auto(r0, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{o2?\x0f\x11\x90^\xdf/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x5)
r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder1\x00', 0x189060, 0x0)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/oom_adj\x00', 0x300, 0x0)
read$auto(r2, 0x0, 0x1f40)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/fail-nth\x00', 0x88802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
futex$auto(0x0, 0x0, 0x9, &(0x7f0000000000)={0x7fffffffffffffff, 0x20000000000}, 0x0, 0x4206)
ioctl$auto_BINDER_VERSION(r1, 0xc0046209, 0x0)
prctl$auto_PR_SET_MM_ENV_START(0x100, 0xa, 0xffffffffffffffff, 0x4d, 0x1)
fanotify_init$auto(0x401, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x7)

2.958634433s ago: executing program 5 (id=2429):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/unix\x00', 0x121040, 0x0)
pread64$auto(r0, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{o2?\x0f\x11\x90^\xdf/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x5)
r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000040)='/dev/binderfs/binder1\x00', 0x189060, 0x0)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/oom_adj\x00', 0x300, 0x0)
read$auto(r2, 0x0, 0x1f40)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/fail-nth\x00', 0x88802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
futex$auto(0x0, 0x0, 0x9, &(0x7f0000000000)={0x7fffffffffffffff, 0x20000000000}, 0x0, 0x4206)
ioctl$auto_BINDER_VERSION(r1, 0xc0046209, 0x0)
prctl$auto_PR_SET_MM_ENV_START(0x100, 0xa, 0xffffffffffffffff, 0x4d, 0x1)
fanotify_init$auto(0x401, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x7)
bind$auto(0x3, &(0x7f0000000040)=@llc={0x1a, 0x323, 0x40, 0x87, 0xf8, 0x5, @multicast}, 0x1)

1.979655681s ago: executing program 4 (id=2430):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyb3\x00', 0x4000, 0x0)
request_key$auto_KEY_SPEC_PROCESS_KEYRING(&(0x7f0000000040)='/dev/binderfs/binder0\x00', &(0x7f0000000080)='/dev/binderfs/binder0\x00', &(0x7f00000000c0)='/dev/binderfs/binder0\x00', 0xfffffffffffffffe)
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder0\x00', 0x80, 0x0)
ioctl$auto_BINDER_VERSION(r0, 0xc0046209, 0x0)
r1 = bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000140)=@enable_stats={0x8}, 0x9)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x88)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/arch_status\x00', 0x8203, 0x0)
socketpair$auto(0x1e, 0x1, 0x0, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x2a401, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
ioctl$auto_TCFLSH2(r3, 0x8910, 0x0)
sendmsg$auto_NL80211_CMD_STOP_SCHED_SCAN(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x24, r2, 0x108, 0x70bd2c, 0x25dfdbfb, {}, [@NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x5}, @NL80211_ATTR_MLO_LINK_ID={0x5, 0x139, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x40804)

873.716049ms ago: executing program 0 (id=2431):
mmap$auto(0x0, 0x20009, 0x7, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
symlink$auto(&(0x7f0000000300)='\\\':.\x00', &(0x7f0000000100)='\xfb\x00')
r0 = socket(0x2, 0x801, 0x84)
r1 = getsockopt$auto(r0, 0x84, 0x2, 0x0, 0x0)
setsockopt$auto(0x3, 0x10000000084, 0x65, 0x0, 0x4)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
writev$auto(0x1, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
pread64$auto(0xffffffffffffffff, 0x0, 0x7fc, 0x400)
r2 = socket(0x22, 0x1, 0x80000000)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x600, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x74c)
unshare$auto(0x40000080)
sendmmsg$auto(r2, 0x0, 0x63b, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'veth0\x00', <r4=>0x0})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_MACSEC_CMD_ADD_RXSC(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="f51b26bd7000fedbdf2517"], 0x14}, 0x1, 0x0, 0x0, 0x8090}, 0x40a6)
mmap$auto(0x0, 0x400008, 0xe4, 0x800100000009b72, r1, 0x400)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r6 = socket(0xa, 0x2, 0x88)
capset$auto(0x0, 0x0)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x800, 0x100)
setsockopt$auto(r6, 0x29, 0x10, 0x0, 0x1)
socket(0xa, 0x801, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x10001, 0x400008, 0xc3, 0x15, 0x2, 0x8000)
bind$auto(0xffffffffffffffff, 0x0, 0xffffffe6)

567.931271ms ago: executing program 4 (id=2432):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r0, 0x4bfa, 0x1)
epoll_create$auto(0x4)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
io_uring_setup$auto(0x1, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
pipe$auto(0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0x4048aec9, r1)
sched_get_priority_min$auto(0x40)
mmap$auto(0x0, 0x8, 0x3, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyz4\x00', 0x200, 0x0)
ioctl$auto_TIOCGICOUNT2(r3, 0x545d, 0x0)

0s ago: executing program 5 (id=2433):
ioperm$auto(0x7, 0x5ad2, 0x8)
ioctl$auto_USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = ioctl$auto_SIOCGIFHWADDR2(0xffffffffffffffff, 0x8927, &(0x7f0000001240)="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")
mmap$auto(0x0, 0x4, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = io_uring_setup$auto(0x4, 0x0)
mmap$auto(0x4, 0x2020009, 0xffffffffffffffff, 0xcb1, r0, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x8000012, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x8001)
process_madvise$auto_PIDFD_SELF_THREAD_GROUP(0xffffffffffffb1e0, &(0x7f0000000080)={&(0x7f0000000000), 0x8}, 0xf, 0x8, 0x0)
r4 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0)
write$auto(r4, 0x0, 0xe)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty45\x00', 0x88702, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), r6)
r8 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f00000002c0), r3)
sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000300)={&(0x7f0000002240)={0x1430, r8, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@OVS_FLOW_ATTR_MASK={0x2ab, 0x7, 0x0, 0x1, [@typed={0x92, 0x141, 0x0, 0x0, @binary="e07583493346adb40b85e292c24f48d73425ab2a9dc442841501a840f87a267d1d99b7f40f8358d4b53026791630d723feef579c98ed3db007da8c1c03490cce909ac888d08b51736b7b8bfba6eef5700a490de2e024645d7f823072b79e89d55310d78dca94d61cad83a146cd38a648c2cfd3c3df0a5e90dcaa4eabb6a3d619df5084ba61c1c6158306f4f8c099"}, @typed={0x51, 0xa1, 0x0, 0x0, @binary="4884758d0e1c7640a26471ec24cc32e41e38cc4f1ff91d8996ebcc972e9fc82cdbe4a5a785da954e4c1d036b4bcde7de2cc88a50b36286ab2304497e03cd8ef51be00d64ba876e5c3a49d8eef7"}, @nested={0xc, 0x29, 0x0, 0x1, [@nested={0x4, 0x8}, @nested={0x4, 0x70}, @generic]}, @generic="1b684d41880c8699f9fb1e3fb5e2a18e10b562ed6a1f9de13c6e1dfdf9287a2ed600905a7e9243ebd9201365409b5db5fd204e6c72f4251877b6c861d844da30c1a5d3073ef3c9fcd9c86604484a9f397d43fc95dfd20be4fcd7107d8581aa9321b990b963e1b75be963d9f0bd95dccf9dae56cf29c5b70c5b35d188600b5d8641b44f906fa6d489ec0f7dd2bc6545687598be84663ff6fc5ec80b5013605e7f30a0fd231da682503b7fa2aa35e0327d9fb00c877d6b5abf20dc60f7bbae4a2fb299c095d127b1917748524267a500e729191982441f8885c6765c", @typed={0x14, 0x133, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @nested={0xbb, 0x77, 0x0, 0x1, [@generic="37517aaf4db3bcf2e4ef37c165bdc25d6013c7592df2c5c8107debd1d287c24dd75eb1d79ef3371360793d5be63d9439434ebebc2000c5f0a291ed4c6dbfdd662b2848a5f6b577525e6171f49bfa9e803eb098e7a06944a8d65c8e0e776f59df8d20858c4b219f9b2af4753cfdc0c712978713035f23542d173d76ba177a8d45ea895bce8cc087d8df153274bcda5f5ea9b5e2bb566703612329942e119227bb0cfaa27a78e180881cca47268cdaf63e0696b1ad9ae79e"]}, @typed={0x8, 0xdc, 0x0, 0x0, @ipv4=@multicast1}]}, @OVS_FLOW_ATTR_MASK={0x1165, 0x7, 0x0, 0x1, [@generic="cb161162f7f540484069acf078ae439cc61f722b08564186a9c8e8e9f90f240579a6d5cd4aece97ff7bade5833c043dfdf", @typed={0x7, 0x6c, 0x0, 0x0, @str='{:\x00'}, @generic="be85860e83c02da82dfba586f57c157b720397f4d7d14051a4eca7f37e009bcee8e79a952f15823101d0d524804fa11199fa435b779c2382bb1f7f41a0591a931c5e1bdc7cdb711f72a72861771d6a86b737aa76c4b1e1eb13ba7f876a61557ecb8286f260ae313134694f727c204e56916b4dbba7d50cd8", @typed={0x8, 0xac, 0x0, 0x0, @u32=0x6}, @typed={0x14, 0x50, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @generic="69896fd511127bae85ab6524e00b7e0fe1a4c1208d5e1ad6b363d185fb55d740c0decd6aaee9d87146347f564ba5c7aa6040091eea704f0b81a8db13a7cc113d80a77e7563fb75049ed99bff4ade77eb7f5557dee9622fdb3a72acab7a6b36c6f9eb58864b41963a84eb2a1412c2ee381fcf1891545abe72eed838e4bb7c592db10e5a1560da29b21d4fefdbdf6c9db6e9ecea28", @generic="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"]}, @OVS_FLOW_ATTR_UFID={0x5, 0x9, 0x5}]}, 0x1430}, 0x1, 0x0, 0x0, 0x40000}, 0x4000800)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f00000001c0), r6)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="0c92d819d0e88e262001b0e15c80c455b2af845587df9a43e7553d0edaaade964269648a6b5b0cff6c7354692c35eca74b8c4e560b176658a522fa899f65fb32216d3daefdddc76030c316dd7b689f3c5b9199c0d8ef100b", @ANYRES16=r10, @ANYBLOB="010025bd7000ffdbdf2504000000"], 0x14}, 0x1, 0x0, 0x0, 0x41}, 0x4004040)
r11 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000003c0), r2)
sendmsg$auto_NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r1, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r11, 0x20, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0xff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x4)
sendmsg$auto_WG_CMD_GET_DEVICE(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, r7, 0x703, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x60000000, 0x985}, 0x4)
write$auto_tty_fops_tty_io(r5, &(0x7f0000000580)="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", 0xfdef)
modify_ldt$auto(0x11, 0xfffffffffffffffc, 0x23b94)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bus/usb/029/001\x00', 0xa002, 0x0)
statx$auto(0xffffffffffffffff, 0x0, 0x1000, 0x8, 0x0)

kernel console output (not intermixed with test programs):

"syz.3.1520" name="bus" dev="tmpfs" ino=1949 res=0 errno=0
[  659.893073][T12648] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  659.900425][T12648] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  659.906527][T12648] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  659.955078][T12648] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  660.138353][T12655] can: request_module (can-proto-3) failed.
[  661.559355][T11526] Bluetooth: hci0: command 0x0406 tx timeout
[  661.963339][T11526] Bluetooth: hci2: command 0x0406 tx timeout
[  661.963355][ T5875] Bluetooth: hci1: command 0x0406 tx timeout
[  662.051386][T11526] Bluetooth: hci4: command 0x0c1a tx timeout
[  662.326526][T12671] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1526'.
[  662.347246][T12670] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1526'.
[  662.892619][T12681] FAULT_INJECTION: forcing a failure.
[  662.892619][T12681] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  662.949395][T12681] CPU: 0 UID: 0 PID: 12681 Comm: syz.0.1528 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  662.949449][T12681] Tainted: [U]=USER
[  662.949459][T12681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  662.949478][T12681] Call Trace:
[  662.949488][T12681]  <TASK>
[  662.949499][T12681]  dump_stack_lvl+0x16c/0x1f0
[  662.949547][T12681]  should_fail_ex+0x512/0x640
[  662.949599][T12681]  _copy_from_user+0x2e/0xd0
[  662.949653][T12681]  ____sys_sendmsg+0x607/0xc70
[  662.949711][T12681]  ? __pfx_____sys_sendmsg+0x10/0x10
[  662.949769][T12681]  ? __pfx__kstrtoull+0x10/0x10
[  662.949815][T12681]  ___sys_sendmsg+0x134/0x1d0
[  662.949857][T12681]  ? __pfx____sys_sendmsg+0x10/0x10
[  662.949918][T12681]  ? find_held_lock+0x2b/0x80
[  662.949979][T12681]  __sys_sendmmsg+0x200/0x420
[  662.950039][T12681]  ? __pfx___sys_sendmmsg+0x10/0x10
[  662.950096][T12681]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  662.950157][T12681]  ? fput+0x9b/0xd0
[  662.950203][T12681]  ? ksys_write+0x1ac/0x250
[  662.950239][T12681]  ? __pfx_ksys_write+0x10/0x10
[  662.950282][T12681]  __x64_sys_sendmmsg+0x9c/0x100
[  662.950324][T12681]  ? lockdep_hardirqs_on+0x7c/0x110
[  662.950363][T12681]  do_syscall_64+0xcd/0x490
[  662.950409][T12681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  662.950441][T12681] RIP: 0033:0x7f0e0bf8ebe9
[  662.950466][T12681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  662.950498][T12681] RSP: 002b:00007f0e0ce5b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  662.950528][T12681] RAX: ffffffffffffffda RBX: 00007f0e0c1b6090 RCX: 00007f0e0bf8ebe9
[  662.950548][T12681] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000004
[  662.950567][T12681] RBP: 00007f0e0ce5b090 R08: 0000000000000000 R09: 0000000000000000
[  662.950587][T12681] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  662.950607][T12681] R13: 00007f0e0c1b6128 R14: 00007f0e0c1b6090 R15: 00007ffdad1d6388
[  662.950649][T12681]  </TASK>
[  663.397962][T12685] futex_wake_op: syz.1.1529 tries to shift op by -9; fix this program
[  663.763216][   T30] audit: type=1806 audit(6050170059.571:34):  res=-14
[  666.103826][T12718] vhci_hcd: invalid port number 21
[  666.788685][T12731] netlink: 'syz.3.1539': attribute type 11 has an invalid length.
[  667.566544][T12745] can: request_module (can-proto-0) failed.
[  668.612900][   T30] audit: type=1800 audit(6050170064.421:35): pid=12765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1549" name="bus" dev="tmpfs" ino=1996 res=0 errno=0
[  669.327665][T12765] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  669.379732][T12765] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  669.409518][T12765] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  669.439587][T12765] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  670.261871][T12790] FAULT_INJECTION: forcing a failure.
[  670.261871][T12790] name failslab, interval 1, probability 0, space 0, times 0
[  670.314838][T12790] CPU: 1 UID: 0 PID: 12790 Comm: syz.3.1555 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  670.314894][T12790] Tainted: [U]=USER
[  670.314904][T12790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  670.314925][T12790] Call Trace:
[  670.314935][T12790]  <TASK>
[  670.314948][T12790]  dump_stack_lvl+0x16c/0x1f0
[  670.315004][T12790]  should_fail_ex+0x512/0x640
[  670.315055][T12790]  should_failslab+0xc2/0x120
[  670.315101][T12790]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  670.315141][T12790]  ? skb_clone+0x190/0x3f0
[  670.315188][T12790]  skb_clone+0x190/0x3f0
[  670.315231][T12790]  netlink_deliver_tap+0xabd/0xd30
[  670.315282][T12790]  netlink_unicast+0x64c/0x870
[  670.315333][T12790]  ? __pfx_netlink_unicast+0x10/0x10
[  670.315373][T12790]  ? __pfx___might_resched+0x10/0x10
[  670.315406][T12790]  ? __lock_acquire+0xb97/0x1ce0
[  670.315460][T12790]  netlink_sendmsg+0x8d1/0xdd0
[  670.315510][T12790]  ? __pfx_netlink_sendmsg+0x10/0x10
[  670.315559][T12790]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  670.315601][T12790]  ____sys_sendmsg+0xa95/0xc70
[  670.315654][T12790]  ? copy_msghdr_from_user+0x10a/0x160
[  670.315695][T12790]  ? __pfx_____sys_sendmsg+0x10/0x10
[  670.315767][T12790]  ___sys_sendmsg+0x134/0x1d0
[  670.315811][T12790]  ? __pfx____sys_sendmsg+0x10/0x10
[  670.315896][T12790]  ? __mutex_unlock_slowpath+0x140/0x800
[  670.315952][T12790]  __sys_sendmsg+0x16d/0x220
[  670.316001][T12790]  ? __pfx___sys_sendmsg+0x10/0x10
[  670.316071][T12790]  do_syscall_64+0xcd/0x490
[  670.316117][T12790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  670.316150][T12790] RIP: 0033:0x7fa745f8ebe9
[  670.316175][T12790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  670.316207][T12790] RSP: 002b:00007fa746e45038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  670.316239][T12790] RAX: ffffffffffffffda RBX: 00007fa7461b5fa0 RCX: 00007fa745f8ebe9
[  670.316260][T12790] RDX: 0000000000000038 RSI: 0000200000000b00 RDI: 0000000000000003
[  670.316280][T12790] RBP: 00007fa746e45090 R08: 0000000000000000 R09: 0000000000000000
[  670.316300][T12790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  670.316320][T12790] R13: 00007fa7461b6038 R14: 00007fa7461b5fa0 R15: 00007fff629fcb68
[  670.316364][T12790]  </TASK>
[  671.243216][T11526] Bluetooth: hci0: command 0x0406 tx timeout
[  671.399255][T11526] Bluetooth: hci1: command 0x0406 tx timeout
[  671.479271][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  671.479271][T11526] Bluetooth: hci4: command 0x0c1a tx timeout
[  671.637905][T12804] futex_wake_op: syz.1.1558 tries to shift op by -9; fix this program
[  673.139976][T12823] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1562'.
[  673.893670][T12832] can: request_module (can-proto-0) failed.
[  675.319764][T12820] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  675.326192][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  677.137145][T12820] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  677.209466][T12820] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  677.215751][T12820] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  677.399462][ T5875] Bluetooth: hci1: command 0x0406 tx timeout
[  677.706080][T12869] FAULT_INJECTION: forcing a failure.
[  677.706080][T12869] name failslab, interval 1, probability 0, space 0, times 0
[  677.753758][T12869] CPU: 1 UID: 0 PID: 12869 Comm: syz.1.1571 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  677.753816][T12869] Tainted: [U]=USER
[  677.753828][T12869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  677.753848][T12869] Call Trace:
[  677.753859][T12869]  <TASK>
[  677.753871][T12869]  dump_stack_lvl+0x16c/0x1f0
[  677.753918][T12869]  should_fail_ex+0x512/0x640
[  677.753963][T12869]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  677.754003][T12869]  should_failslab+0xc2/0x120
[  677.754047][T12869]  __kmalloc_cache_noprof+0x6a/0x3e0
[  677.754083][T12869]  ? rtnl_newlink+0x11b/0x2000
[  677.754133][T12869]  ? __pfx_rtnl_newlink+0x10/0x10
[  677.754177][T12869]  rtnl_newlink+0x11b/0x2000
[  677.754244][T12869]  ? __pfx_rtnl_newlink+0x10/0x10
[  677.754289][T12869]  ? kasan_quarantine_put+0x10a/0x240
[  677.754327][T12869]  ? lockdep_hardirqs_on+0x7c/0x110
[  677.754374][T12869]  ? kmem_cache_free+0x2d1/0x4d0
[  677.754409][T12869]  ? kfree_skbmem+0x1a4/0x1f0
[  677.754450][T12869]  ? __lock_acquire+0x62e/0x1ce0
[  677.754498][T12869]  ? rcu_is_watching+0x12/0xc0
[  677.754544][T12869]  ? find_held_lock+0x2b/0x80
[  677.754572][T12869]  ? __pfx_rtnl_newlink+0x10/0x10
[  677.754614][T12869]  ? __pfx_rtnl_newlink+0x10/0x10
[  677.754654][T12869]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  677.754699][T12869]  ? __pfx_rtnl_newlink+0x10/0x10
[  677.754742][T12869]  rtnetlink_rcv_msg+0x95b/0xe90
[  677.754790][T12869]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  677.754845][T12869]  ? ref_tracker_free+0x37c/0x830
[  677.754894][T12869]  netlink_rcv_skb+0x158/0x420
[  677.754927][T12869]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  677.754963][T12869]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  677.755006][T12869]  ? netlink_deliver_tap+0x1ae/0xd30
[  677.755041][T12869]  netlink_unicast+0x5a7/0x870
[  677.755077][T12869]  ? __pfx_netlink_unicast+0x10/0x10
[  677.755109][T12869]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  677.755148][T12869]  netlink_sendmsg+0x8d1/0xdd0
[  677.755185][T12869]  ? __pfx_netlink_sendmsg+0x10/0x10
[  677.755220][T12869]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  677.755260][T12869]  __sys_sendto+0x4a0/0x520
[  677.755289][T12869]  ? __pfx___sys_sendto+0x10/0x10
[  677.755325][T12869]  ? find_held_lock+0x2b/0x80
[  677.755369][T12869]  __x64_sys_sendto+0xe0/0x1c0
[  677.755395][T12869]  ? do_syscall_64+0x91/0x490
[  677.755427][T12869]  ? lockdep_hardirqs_on+0x7c/0x110
[  677.755456][T12869]  do_syscall_64+0xcd/0x490
[  677.755490][T12869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  677.755515][T12869] RIP: 0033:0x7f72f2590a7c
[  677.755534][T12869] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  677.755557][T12869] RSP: 002b:00007f72f34a1ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  677.755580][T12869] RAX: ffffffffffffffda RBX: 00007f72f34a1fc0 RCX: 00007f72f2590a7c
[  677.755596][T12869] RDX: 000000000000001c RSI: 00007f72f34a2010 RDI: 0000000000000005
[  677.755610][T12869] RBP: 0000000000000000 R08: 00007f72f34a1f14 R09: 000000000000000c
[  677.755625][T12869] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005
[  677.755639][T12869] R13: 00007f72f34a1f68 R14: 00007f72f34a2010 R15: 0000000000000000
[  677.755668][T12869]  </TASK>
[  679.239363][ T5875] Bluetooth: hci4: command 0x0c1a tx timeout
[  679.245694][T11526] Bluetooth: hci2: command 0x0406 tx timeout
[  679.277282][T12883] FAULT_INJECTION: forcing a failure.
[  679.277282][T12883] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  679.449339][T12883] CPU: 1 UID: 0 PID: 12883 Comm: syz.4.1575 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  679.449400][T12883] Tainted: [U]=USER
[  679.449411][T12883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  679.449428][T12883] Call Trace:
[  679.449439][T12883]  <TASK>
[  679.449451][T12883]  dump_stack_lvl+0x16c/0x1f0
[  679.449498][T12883]  should_fail_ex+0x512/0x640
[  679.449550][T12883]  _copy_from_user+0x2e/0xd0
[  679.449604][T12883]  sctp_setsockopt+0x2045/0xb870
[  679.449655][T12883]  ? __pfx_sctp_setsockopt+0x10/0x10
[  679.449695][T12883]  ? find_held_lock+0x2b/0x80
[  679.449726][T12883]  ? aa_sock_opt_perm+0xfd/0x1c0
[  679.449773][T12883]  ? sock_common_setsockopt+0x2e/0xf0
[  679.449815][T12883]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  679.449862][T12883]  do_sock_setsockopt+0xf3/0x1d0
[  679.449908][T12883]  __sys_setsockopt+0x120/0x1a0
[  679.449948][T12883]  __x64_sys_setsockopt+0xbd/0x160
[  679.449979][T12883]  ? do_syscall_64+0x91/0x490
[  679.450015][T12883]  ? lockdep_hardirqs_on+0x7c/0x110
[  679.450078][T12883]  do_syscall_64+0xcd/0x490
[  679.450117][T12883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  679.450146][T12883] RIP: 0033:0x7f3a3358ebe9
[  679.450167][T12883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  679.450195][T12883] RSP: 002b:00007f3a317f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  679.450222][T12883] RAX: ffffffffffffffda RBX: 00007f3a337b6090 RCX: 00007f3a3358ebe9
[  679.450241][T12883] RDX: 000000000000000d RSI: 0000010000000084 RDI: 0000000000000003
[  679.450258][T12883] RBP: 00007f3a317f6090 R08: 0000000000000008 R09: 0000000000000000
[  679.450274][T12883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  679.450292][T12883] R13: 00007f3a337b6128 R14: 00007f3a337b6090 R15: 00007ffee28bcb28
[  679.450329][T12883]  </TASK>
[  682.409605][   T30] audit: type=1800 audit(6050170078.211:36): pid=12921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1580" name="bus" dev="tmpfs" ino=2153 res=0 errno=0
[  683.147659][T12924] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  683.159418][T12924] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  683.215045][T12924] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  683.247504][T12924] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  685.159311][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  685.239700][T11526] Bluetooth: hci1: command 0x0406 tx timeout
[  685.246731][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  685.319433][ T5875] Bluetooth: hci4: command 0x0c1a tx timeout
[  686.308377][T12945] netlink: 334 bytes leftover after parsing attributes in process `syz.3.1588'.
[  687.265498][T12965] can: request_module (can-proto-0) failed.
[  687.853019][   T30] audit: type=1800 audit(6050170083.661:37): pid=12980 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1594" name="bus" dev="tmpfs" ino=1870 res=0 errno=0
[  688.565088][T12980] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  688.578733][T12980] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  688.599566][T12980] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  688.619170][T12980] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  689.212429][T12998] FAULT_INJECTION: forcing a failure.
[  689.212429][T12998] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  689.329137][T12998] CPU: 0 UID: 0 PID: 12998 Comm: syz.1.1598 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  689.329198][T12998] Tainted: [U]=USER
[  689.329209][T12998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  689.329231][T12998] Call Trace:
[  689.329242][T12998]  <TASK>
[  689.329254][T12998]  dump_stack_lvl+0x16c/0x1f0
[  689.329307][T12998]  should_fail_ex+0x512/0x640
[  689.329368][T12998]  _copy_from_iter+0x463/0x16f0
[  689.329455][T12998]  ? rcu_is_watching+0x12/0xc0
[  689.329494][T12998]  ? __pfx__copy_from_iter+0x10/0x10
[  689.329549][T12998]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  689.329598][T12998]  ? __asan_memset+0x23/0x50
[  689.329634][T12998]  ? __build_skb_around+0x278/0x3b0
[  689.329673][T12998]  ? is_vmalloc_addr+0x86/0xa0
[  689.329721][T12998]  netlink_sendmsg+0x829/0xdd0
[  689.329775][T12998]  ? __pfx_netlink_sendmsg+0x10/0x10
[  689.329829][T12998]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  689.329876][T12998]  ____sys_sendmsg+0xa95/0xc70
[  689.329938][T12998]  ? __pfx_____sys_sendmsg+0x10/0x10
[  689.330017][T12998]  ___sys_sendmsg+0x134/0x1d0
[  689.330074][T12998]  ? __pfx____sys_sendmsg+0x10/0x10
[  689.330141][T12998]  ? find_held_lock+0x2b/0x80
[  689.330206][T12998]  __sys_sendmmsg+0x200/0x420
[  689.330258][T12998]  ? __pfx___sys_sendmmsg+0x10/0x10
[  689.330320][T12998]  ? __pfx_do_futex+0x10/0x10
[  689.330387][T12998]  ? __sys_socket+0xac/0x260
[  689.330424][T12998]  ? xfd_validate_state+0x61/0x180
[  689.330476][T12998]  ? __pfx_do_writev+0x10/0x10
[  689.330524][T12998]  __x64_sys_sendmmsg+0x9c/0x100
[  689.330571][T12998]  ? lockdep_hardirqs_on+0x7c/0x110
[  689.330616][T12998]  do_syscall_64+0xcd/0x490
[  689.330667][T12998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  689.330704][T12998] RIP: 0033:0x7f72f258ebe9
[  689.330733][T12998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  689.330770][T12998] RSP: 002b:00007f72f34a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  689.330806][T12998] RAX: ffffffffffffffda RBX: 00007f72f27b5fa0 RCX: 00007f72f258ebe9
[  689.330829][T12998] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000008
[  689.330850][T12998] RBP: 00007f72f2611e19 R08: 0000000000000000 R09: 0000000000000000
[  689.330871][T12998] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000
[  689.330892][T12998] R13: 00007f72f27b6038 R14: 00007f72f27b5fa0 R15: 00007ffc45acbc68
[  689.330938][T12998]  </TASK>
[  689.775143][T12998] syz.1.1598 (12998): /proc/12997/oom_adj is deprecated, please use /proc/12997/oom_score_adj instead.
[  690.599716][ T5875] Bluetooth: hci1: command 0x0406 tx timeout
[  690.599726][T11526] Bluetooth: hci0: command 0x0406 tx timeout
[  690.679264][ T5875] Bluetooth: hci4: command 0x0c1a tx timeout
[  690.682195][T11526] Bluetooth: hci2: command 0x0406 tx timeout
[  691.527337][T13014] can: request_module (can-proto-0) failed.
[  692.765695][T13028] ubi: mtd0 is already attached to ubi0
[  693.490700][T13041] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1608'.
[  694.835867][T13063] can: request_module (can-proto-0) failed.
[  695.672119][   T30] audit: type=1800 audit(6050170091.481:38): pid=13078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1616" name="bus" dev="tmpfs" ino=1903 res=0 errno=0
[  696.048927][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  696.055430][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  696.778966][T13084] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  696.803105][T13084] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  696.836646][T13084] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  696.864813][T13084] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  697.245930][T13097] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1621'.
[  698.839280][ T5875] Bluetooth: hci1: command 0x0406 tx timeout
[  698.845419][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  698.851780][T11526] Bluetooth: hci2: command 0x0406 tx timeout
[  698.919286][ T5875] Bluetooth: hci4: command 0x0c1a tx timeout
[  700.383993][T13124] random: crng reseeded on system resumption
[  700.429810][T13125] FAULT_INJECTION: forcing a failure.
[  700.429810][T13125] name failslab, interval 1, probability 0, space 0, times 0
[  700.474185][T13125] CPU: 1 UID: 0 PID: 13125 Comm: syz.0.1627 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  700.474241][T13125] Tainted: [U]=USER
[  700.474251][T13125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  700.474269][T13125] Call Trace:
[  700.474280][T13125]  <TASK>
[  700.474293][T13125]  dump_stack_lvl+0x16c/0x1f0
[  700.474338][T13125]  should_fail_ex+0x512/0x640
[  700.474381][T13125]  ? fs_reclaim_acquire+0xae/0x150
[  700.474442][T13125]  should_failslab+0xc2/0x120
[  700.474485][T13125]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  700.474537][T13125]  ? security_inode_alloc+0x3b/0x2b0
[  700.474577][T13125]  security_inode_alloc+0x3b/0x2b0
[  700.474613][T13125]  inode_init_always_gfp+0xce4/0x1030
[  700.474655][T13125]  alloc_inode+0x86/0x240
[  700.474701][T13125]  sock_alloc+0x40/0x280
[  700.474745][T13125]  __sock_create+0xc1/0x8d0
[  700.474802][T13125]  mptcp_subflow_create_socket+0xf5/0xed0
[  700.474856][T13125]  ? __pfx_mptcp_subflow_create_socket+0x10/0x10
[  700.474924][T13125]  __mptcp_nmpc_sk+0x182/0x7d0
[  700.474954][T13125]  ? __pfx___mptcp_nmpc_sk+0x10/0x10
[  700.474988][T13125]  ? __local_bh_enable_ip+0xa4/0x120
[  700.475030][T13125]  mptcp_sendmsg+0x163d/0x1eb0
[  700.475075][T13125]  ? aa_sk_perm+0x2f4/0xb10
[  700.475122][T13125]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  700.475175][T13125]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  700.475212][T13125]  inet_sendmsg+0x119/0x140
[  700.475244][T13125]  ____sys_sendmsg+0x973/0xc70
[  700.475296][T13125]  ? __pfx_____sys_sendmsg+0x10/0x10
[  700.475357][T13125]  ? __pfx__kstrtoull+0x10/0x10
[  700.475402][T13125]  ___sys_sendmsg+0x134/0x1d0
[  700.475461][T13125]  ? __pfx____sys_sendmsg+0x10/0x10
[  700.475520][T13125]  ? find_held_lock+0x2b/0x80
[  700.475577][T13125]  __sys_sendmmsg+0x200/0x420
[  700.475622][T13125]  ? __pfx___sys_sendmmsg+0x10/0x10
[  700.475676][T13125]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  700.475733][T13125]  ? fput+0x9b/0xd0
[  700.475777][T13125]  ? ksys_write+0x1ac/0x250
[  700.475812][T13125]  ? __pfx_ksys_write+0x10/0x10
[  700.475861][T13125]  __x64_sys_sendmmsg+0x9c/0x100
[  700.475931][T13125]  ? lockdep_hardirqs_on+0x7c/0x110
[  700.475968][T13125]  do_syscall_64+0xcd/0x490
[  700.476018][T13125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  700.476049][T13125] RIP: 0033:0x7f0e0bf8ebe9
[  700.476074][T13125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  700.476103][T13125] RSP: 002b:00007f0e0ce5b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  700.476133][T13125] RAX: ffffffffffffffda RBX: 00007f0e0c1b6090 RCX: 00007f0e0bf8ebe9
[  700.476154][T13125] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000004
[  700.476179][T13125] RBP: 00007f0e0ce5b090 R08: 0000000000000000 R09: 0000000000000000
[  700.476196][T13125] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  700.476215][T13125] R13: 00007f0e0c1b6128 R14: 00007f0e0c1b6090 R15: 00007ffdad1d6388
[  700.476256][T13125]  </TASK>
[  700.476303][T13125] socket: no more sockets
[  702.730484][ T5875] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  702.730532][ T5875] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  702.746455][ T5875] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  702.746518][ T5875] Bluetooth: hci1: adv larger than maximum supported
[  702.755583][ T5875] Bluetooth: hci1: adv larger than maximum supported
[  702.762516][ T5875] Bluetooth: hci1: Malformed LE Event: 0x0d
[  702.914900][ T5875] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  702.914950][ T5875] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  702.934678][ T5875] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  702.934721][ T5875] Bluetooth: hci1: adv larger than maximum supported
[  702.942087][ T5875] Bluetooth: hci1: adv larger than maximum supported
[  702.948904][ T5875] Bluetooth: hci1: Malformed LE Event: 0x0d
[  706.103363][T13168] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1637'.
[  706.851228][T13182] can: request_module (can-proto-0) failed.
[  707.371765][T13188] sd 0:0:1:0: PR command failed: 1026
[  707.377694][T13188] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  707.420578][T13171] blktrace: Concurrent blktraces are not allowed on loop2
[  707.449207][T13188] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  710.854070][T13238] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1652'.
[  713.685270][ T5875] block nbd0: Receive control failed (result -107)
[  715.711459][T13291] netlink: 266 bytes leftover after parsing attributes in process `syz.4.1662'.
[  715.746340][T13287] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1659'.
[  715.807754][T13287] veth0_macvtap: left promiscuous mode
[  715.810002][T13291] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  715.861020][T13290] ima: policy update failed
[  715.876000][   T30] audit: type=1802 audit(6050170111.671:39): pid=13290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.1662" res=0 errno=0
[  716.888448][T13286] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  717.851152][T13313] can: request_module (can-proto-0) failed.
[  724.712456][T13400] block nbd7: not configured, cannot reconfigure
[  724.824477][T13395] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1684'.
[  725.159400][T13399] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1684'.
[  726.474345][T13416] ubi: mtd0 is already attached to ubi0
[  727.815530][T13438] FAULT_INJECTION: forcing a failure.
[  727.815530][T13438] name failslab, interval 1, probability 0, space 0, times 0
[  727.874694][T13438] CPU: 0 UID: 0 PID: 13438 Comm: syz.4.1693 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  727.874755][T13438] Tainted: [U]=USER
[  727.874768][T13438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  727.874789][T13438] Call Trace:
[  727.874801][T13438]  <TASK>
[  727.874814][T13438]  dump_stack_lvl+0x16c/0x1f0
[  727.874865][T13438]  should_fail_ex+0x512/0x640
[  727.874915][T13438]  ? __kmalloc_noprof+0xbf/0x510
[  727.874959][T13438]  ? lsm_blob_alloc+0x68/0x90
[  727.875009][T13438]  should_failslab+0xc2/0x120
[  727.875057][T13438]  __kmalloc_noprof+0xd2/0x510
[  727.875108][T13438]  lsm_blob_alloc+0x68/0x90
[  727.875163][T13438]  security_sk_alloc+0x30/0x270
[  727.875205][T13438]  sk_prot_alloc+0xfb/0x2a0
[  727.875263][T13438]  sk_alloc+0x36/0xc20
[  727.875306][T13438]  inet_create+0x3a1/0x1040
[  727.875342][T13438]  ? inet_create+0x93/0x1040
[  727.875383][T13438]  __sock_create+0x335/0x8d0
[  727.875457][T13438]  mptcp_subflow_create_socket+0xf5/0xed0
[  727.875519][T13438]  ? __pfx_mptcp_subflow_create_socket+0x10/0x10
[  727.875704][T13438]  __mptcp_nmpc_sk+0x182/0x7d0
[  727.875755][T13438]  ? __pfx___mptcp_nmpc_sk+0x10/0x10
[  727.875787][T13438]  ? __local_bh_enable_ip+0xa4/0x120
[  727.875833][T13438]  mptcp_sendmsg+0x163d/0x1eb0
[  727.875881][T13438]  ? aa_sk_perm+0x2f4/0xb10
[  727.875933][T13438]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  727.875982][T13438]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  727.876023][T13438]  inet_sendmsg+0x119/0x140
[  727.876058][T13438]  ____sys_sendmsg+0x973/0xc70
[  727.876115][T13438]  ? __pfx_____sys_sendmsg+0x10/0x10
[  727.876173][T13438]  ? __pfx__kstrtoull+0x10/0x10
[  727.876245][T13438]  ___sys_sendmsg+0x134/0x1d0
[  727.876289][T13438]  ? __pfx____sys_sendmsg+0x10/0x10
[  727.876346][T13438]  ? find_held_lock+0x2b/0x80
[  727.876403][T13438]  __sys_sendmmsg+0x200/0x420
[  727.876450][T13438]  ? __pfx___sys_sendmmsg+0x10/0x10
[  727.876503][T13438]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  727.876557][T13438]  ? fput+0x9b/0xd0
[  727.876600][T13438]  ? ksys_write+0x1ac/0x250
[  727.876633][T13438]  ? __pfx_ksys_write+0x10/0x10
[  727.876674][T13438]  __x64_sys_sendmmsg+0x9c/0x100
[  727.876713][T13438]  ? lockdep_hardirqs_on+0x7c/0x110
[  727.876748][T13438]  do_syscall_64+0xcd/0x490
[  727.876792][T13438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  727.876827][T13438] RIP: 0033:0x7f3a3358ebe9
[  727.876854][T13438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  727.876887][T13438] RSP: 002b:00007f3a317f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  727.876920][T13438] RAX: ffffffffffffffda RBX: 00007f3a337b6090 RCX: 00007f3a3358ebe9
[  727.876940][T13438] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000004
[  727.876959][T13438] RBP: 00007f3a317f6090 R08: 0000000000000000 R09: 0000000000000000
[  727.876977][T13438] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  727.876995][T13438] R13: 00007f3a337b6128 R14: 00007f3a337b6090 R15: 00007ffee28bcb28
[  727.877035][T13438]  </TASK>
[  728.961247][   T30] audit: type=1800 audit(6050170124.771:40): pid=13458 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1699" name="bus" dev="tmpfs" ino=2181 res=0 errno=0
[  729.001062][T13446] can: request_module (can-proto-0) failed.
[  729.601592][T13458] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  729.607800][T13458] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  729.614397][T13458] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  729.637758][T13458] Bluetooth: hci4: Opcode 0x0c1a failed: -4

syzkaller
syzkaller login: [  731.217575][   T30] audit: type=1800 audit(6050170127.021:41): pid=13488 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1704" name="bus" dev="tmpfs" ino=2312 res=0 errno=0
[  731.564425][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  731.639263][ T5875] Bluetooth: hci4: command 0x0c1a tx timeout
[  731.646148][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  731.652452][T11526] Bluetooth: hci1: command 0x0406 tx timeout
[  731.958050][T13488] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  732.016085][T13488] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  732.053013][T13488] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  732.069504][T13488] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  732.587492][T13502] FAULT_INJECTION: forcing a failure.
[  732.587492][T13502] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  732.601284][T13502] CPU: 0 UID: 0 PID: 13502 Comm: syz.4.1710 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  732.601340][T13502] Tainted: [U]=USER
[  732.601350][T13502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  732.601370][T13502] Call Trace:
[  732.601380][T13502]  <TASK>
[  732.601392][T13502]  dump_stack_lvl+0x16c/0x1f0
[  732.601438][T13502]  should_fail_ex+0x512/0x640
[  732.601489][T13502]  _copy_from_user+0x2e/0xd0
[  732.601543][T13502]  copy_msghdr_from_user+0x98/0x160
[  732.601588][T13502]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  732.601641][T13502]  ? __lock_acquire+0x62e/0x1ce0
[  732.601702][T13502]  ___sys_recvmsg+0xdb/0x1a0
[  732.601745][T13502]  ? __pfx____sys_recvmsg+0x10/0x10
[  732.601789][T13502]  ? find_held_lock+0x2b/0x80
[  732.601848][T13502]  do_recvmmsg+0x2fe/0x750
[  732.601894][T13502]  ? __pfx_do_recvmmsg+0x10/0x10
[  732.601934][T13502]  ? ksys_write+0x190/0x250
[  732.601980][T13502]  ? __mutex_unlock_slowpath+0x163/0x800
[  732.602037][T13502]  ? __fget_files+0x20e/0x3c0
[  732.602082][T13502]  __x64_sys_recvmmsg+0x22a/0x280
[  732.602129][T13502]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  732.602185][T13502]  do_syscall_64+0xcd/0x490
[  732.602237][T13502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  732.602272][T13502] RIP: 0033:0x7f3a3358ebe9
[  732.602296][T13502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  732.602329][T13502] RSP: 002b:00007f3a3431f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  732.602359][T13502] RAX: ffffffffffffffda RBX: 00007f3a337b5fa0 RCX: 00007f3a3358ebe9
[  732.602381][T13502] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  732.602400][T13502] RBP: 00007f3a3431f090 R08: 0000000000000000 R09: 0000000000000000
[  732.602420][T13502] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  732.602439][T13502] R13: 00007f3a337b6038 R14: 00007f3a337b5fa0 R15: 00007ffee28bcb28
[  732.602481][T13502]  </TASK>
[  732.973997][T13520] netlink: 'syz.3.1712': attribute type 1 has an invalid length.
[  733.034189][T13520] nbd: error processing sock list
[  733.468342][   T30] audit: type=1800 audit(6050170129.261:42): pid=13525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1713" name="bus" dev="tmpfs" ino=2208 res=0 errno=0
[  734.039474][ T5868] Bluetooth: hci1: command 0x0406 tx timeout
[  734.119193][ T5868] Bluetooth: hci4: command 0x0c1a tx timeout
[  734.126453][ T5868] Bluetooth: hci2: command 0x0406 tx timeout
[  734.170691][T13525] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  734.208059][T13525] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  734.263681][T13525] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  734.315164][T13525] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  734.594151][T13534] nbd: must specify a size in bytes for the device
[  735.799210][ T5868] Bluetooth: hci0: command 0x0406 tx timeout
[  736.287815][ T5868] Bluetooth: hci2: command 0x0406 tx timeout
[  736.289427][ T5875] Bluetooth: hci1: command 0x0406 tx timeout
[  736.369612][ T5875] Bluetooth: hci4: command 0x0c1a tx timeout
[  737.384351][T13573] FAULT_INJECTION: forcing a failure.
[  737.384351][T13573] name failslab, interval 1, probability 0, space 0, times 0
[  737.427390][T13579] ovs_: entered promiscuous mode
[  737.471679][T13573] CPU: 0 UID: 0 PID: 13573 Comm: syz.1.1720 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  737.471733][T13573] Tainted: [U]=USER
[  737.471744][T13573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  737.471764][T13573] Call Trace:
[  737.471775][T13573]  <TASK>
[  737.471788][T13573]  dump_stack_lvl+0x16c/0x1f0
[  737.471836][T13573]  should_fail_ex+0x512/0x640
[  737.471884][T13573]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  737.471924][T13573]  should_failslab+0xc2/0x120
[  737.471968][T13573]  __kmalloc_cache_noprof+0x6a/0x3e0
[  737.472004][T13573]  ? subflow_create_ctx+0x9b/0x2c0
[  737.472055][T13573]  subflow_create_ctx+0x9b/0x2c0
[  737.472099][T13573]  subflow_ulp_init+0xc3/0x4d0
[  737.472176][T13573]  tcp_set_ulp+0x329/0x7f0
[  737.472230][T13573]  mptcp_subflow_create_socket+0x361/0xed0
[  737.472290][T13573]  ? __pfx_mptcp_subflow_create_socket+0x10/0x10
[  737.472357][T13573]  __mptcp_nmpc_sk+0x182/0x7d0
[  737.472389][T13573]  ? __pfx___mptcp_nmpc_sk+0x10/0x10
[  737.472426][T13573]  ? __local_bh_enable_ip+0xa4/0x120
[  737.472474][T13573]  mptcp_sendmsg+0x163d/0x1eb0
[  737.472525][T13573]  ? aa_sk_perm+0x2f4/0xb10
[  737.472577][T13573]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  737.472627][T13573]  ? __pfx_mptcp_sendmsg+0x10/0x10
[  737.472670][T13573]  inet_sendmsg+0x119/0x140
[  737.472711][T13573]  ____sys_sendmsg+0x973/0xc70
[  737.472771][T13573]  ? __pfx_____sys_sendmsg+0x10/0x10
[  737.472832][T13573]  ? __pfx__kstrtoull+0x10/0x10
[  737.472884][T13573]  ___sys_sendmsg+0x134/0x1d0
[  737.472930][T13573]  ? __pfx____sys_sendmsg+0x10/0x10
[  737.472996][T13573]  ? find_held_lock+0x2b/0x80
[  737.473059][T13573]  __sys_sendmmsg+0x200/0x420
[  737.473110][T13573]  ? __pfx___sys_sendmmsg+0x10/0x10
[  737.473177][T13573]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  737.473242][T13573]  ? fput+0x9b/0xd0
[  737.473290][T13573]  ? ksys_write+0x1ac/0x250
[  737.473328][T13573]  ? __pfx_ksys_write+0x10/0x10
[  737.473377][T13573]  __x64_sys_sendmmsg+0x9c/0x100
[  737.473420][T13573]  ? lockdep_hardirqs_on+0x7c/0x110
[  737.473462][T13573]  do_syscall_64+0xcd/0x490
[  737.473509][T13573]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  737.473544][T13573] RIP: 0033:0x7f72f258ebe9
[  737.473569][T13573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  737.473603][T13573] RSP: 002b:00007f72f3482038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  737.473634][T13573] RAX: ffffffffffffffda RBX: 00007f72f27b6090 RCX: 00007f72f258ebe9
[  737.473655][T13573] RDX: 0000000000000005 RSI: 0000200000000140 RDI: 0000000000000004
[  737.473676][T13573] RBP: 00007f72f3482090 R08: 0000000000000000 R09: 0000000000000000
[  737.473697][T13573] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  737.473718][T13573] R13: 00007f72f27b6128 R14: 00007f72f27b6090 R15: 00007ffc45acbc68
[  737.473763][T13573]  </TASK>
[  738.620097][T13603] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1728'.
[  738.697538][T13603] caif0: entered promiscuous mode
[  740.513946][T13630] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1737'.
[  740.566929][T13630] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1737'.
[  741.662022][T13637] FAULT_INJECTION: forcing a failure.
[  741.662022][T13637] name failslab, interval 1, probability 0, space 0, times 0
[  741.758349][T13637] CPU: 0 UID: 0 PID: 13637 Comm: syz.4.1738 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  741.758397][T13637] Tainted: [U]=USER
[  741.758406][T13637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  741.758422][T13637] Call Trace:
[  741.758431][T13637]  <TASK>
[  741.758441][T13637]  dump_stack_lvl+0x16c/0x1f0
[  741.758480][T13637]  should_fail_ex+0x512/0x640
[  741.758518][T13637]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  741.758554][T13637]  should_failslab+0xc2/0x120
[  741.758590][T13637]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  741.758620][T13637]  ? __pfx_acct_collect+0x10/0x10
[  741.758662][T13637]  ? taskstats_exit+0x654/0xbe0
[  741.758705][T13637]  taskstats_exit+0x654/0xbe0
[  741.758746][T13637]  ? __pfx_taskstats_exit+0x10/0x10
[  741.758796][T13637]  do_exit+0x5dc/0x2bf0
[  741.758842][T13637]  ? __pfx_do_exit+0x10/0x10
[  741.758878][T13637]  ? do_raw_spin_lock+0x12c/0x2b0
[  741.758920][T13637]  ? find_held_lock+0x2b/0x80
[  741.758950][T13637]  do_group_exit+0xd3/0x2a0
[  741.759004][T13637]  get_signal+0x2673/0x26d0
[  741.759040][T13637]  ? __pfx_do_recvmmsg+0x10/0x10
[  741.759084][T13637]  ? __pfx_get_signal+0x10/0x10
[  741.759126][T13637]  arch_do_signal_or_restart+0x8f/0x790
[  741.759166][T13637]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  741.759213][T13637]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  741.759260][T13637]  exit_to_user_mode_loop+0x84/0x110
[  741.759307][T13637]  do_syscall_64+0x3f6/0x490
[  741.759350][T13637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.759382][T13637] RIP: 0033:0x7f3a3358ebe9
[  741.759407][T13637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  741.759438][T13637] RSP: 002b:00007f3a317f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  741.759466][T13637] RAX: fffffffffffffe00 RBX: 00007f3a337b6090 RCX: 00007f3a3358ebe9
[  741.759488][T13637] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  741.759507][T13637] RBP: 00007f3a317f6090 R08: 0000000000000000 R09: 0000000000000000
[  741.759527][T13637] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  741.759545][T13637] R13: 00007f3a337b6128 R14: 00007f3a337b6090 R15: 00007ffee28bcb28
[  741.759585][T13637]  </TASK>
[  741.987963][    C0] vkms_vblank_simulate: vblank timer overrun
[  742.046827][T13640] can: request_module (can-proto-0) failed.
[  743.652906][T13661] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input48
[  748.228440][T13707] program syz.1.1752 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  749.542571][T13705] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  750.853323][T13720] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  751.035800][T13734] futex_wake_op: syz.1.1758 tries to shift op by -9; fix this program
[  752.365346][T13754] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1763'.
[  754.020509][T13780] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1770'.
[  754.755939][   T30] audit: type=1800 audit(6050170150.561:43): pid=13794 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1774" name="bus" dev="tmpfs" ino=2142 res=0 errno=0
[  755.970032][T13798] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  756.002160][T13798] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  756.008316][T13798] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  756.127630][T13798] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  756.432414][T13811] ubi: mtd0 is already attached to ubi0
[  756.906273][T13820] FAULT_INJECTION: forcing a failure.
[  756.906273][T13820] name failslab, interval 1, probability 0, space 0, times 0
[  756.961364][T13820] CPU: 1 UID: 0 PID: 13820 Comm: syz.4.1779 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  756.961423][T13820] Tainted: [U]=USER
[  756.961440][T13820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  756.961461][T13820] Call Trace:
[  756.961473][T13820]  <TASK>
[  756.961486][T13820]  dump_stack_lvl+0x16c/0x1f0
[  756.961538][T13820]  should_fail_ex+0x512/0x640
[  756.961586][T13820]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  756.961628][T13820]  should_failslab+0xc2/0x120
[  756.961673][T13820]  __kmalloc_cache_noprof+0x6a/0x3e0
[  756.961709][T13820]  ? snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0xa4/0x580
[  756.961773][T13820]  snd_mixer_oss_get_volume1_sw.constprop.0.isra.0+0xa4/0x580
[  756.961837][T13820]  snd_mixer_oss_get_recsrc1_sw+0x104/0x1d0
[  756.961890][T13820]  ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10
[  756.961939][T13820]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  756.961997][T13820]  snd_mixer_oss_ioctl1+0x18f4/0x1e40
[  756.962043][T13820]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  756.962096][T13820]  ? __pfx_snd_mixer_oss_get_recsrc1_sw+0x10/0x10
[  756.962149][T13820]  ? __pfx_snd_mixer_oss_ioctl1+0x10/0x10
[  756.962195][T13820]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  756.962262][T13820]  ? find_held_lock+0x2b/0x80
[  756.962295][T13820]  ? hook_file_ioctl_common+0x145/0x410
[  756.962347][T13820]  ? __fget_files+0x20e/0x3c0
[  756.962393][T13820]  snd_mixer_oss_ioctl+0x3e/0x50
[  756.962444][T13820]  ? __pfx_snd_mixer_oss_ioctl+0x10/0x10
[  756.962491][T13820]  __x64_sys_ioctl+0x18e/0x210
[  756.962546][T13820]  do_syscall_64+0xcd/0x490
[  756.962589][T13820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  756.962624][T13820] RIP: 0033:0x7f3a3358ebe9
[  756.962649][T13820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  756.962683][T13820] RSP: 002b:00007f3a317d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  756.962714][T13820] RAX: ffffffffffffffda RBX: 00007f3a337b6180 RCX: 00007f3a3358ebe9
[  756.962735][T13820] RDX: 00002000000012c0 RSI: 0000000080044dff RDI: 0000000000000008
[  756.962773][T13820] RBP: 00007f3a33611e19 R08: 0000000000000000 R09: 0000000000000000
[  756.962793][T13820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  756.962813][T13820] R13: 00007f3a337b6218 R14: 00007f3a337b6180 R15: 00007ffee28bcb28
[  756.962856][T13820]  </TASK>
[  757.484211][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  757.490803][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  757.668334][T13822] blktrace: Concurrent blktraces are not allowed on loop2
[  758.044449][ T5868] Bluetooth: hci1: command 0x0406 tx timeout
[  758.044472][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  758.044525][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  758.203563][ T5875] Bluetooth: hci4: command 0x0c1a tx timeout
[  758.226259][T13832] FAULT_INJECTION: forcing a failure.
[  758.226259][T13832] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  758.275425][T13832] CPU: 0 UID: 0 PID: 13832 Comm: syz.1.1783 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  758.275482][T13832] Tainted: [U]=USER
[  758.275492][T13832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  758.275512][T13832] Call Trace:
[  758.275523][T13832]  <TASK>
[  758.275536][T13832]  dump_stack_lvl+0x16c/0x1f0
[  758.275584][T13832]  should_fail_ex+0x512/0x640
[  758.275637][T13832]  _copy_from_user+0x2e/0xd0
[  758.275691][T13832]  copy_msghdr_from_user+0x98/0x160
[  758.275735][T13832]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  758.275784][T13832]  ? kfree+0x24f/0x4d0
[  758.275814][T13832]  ? __lock_acquire+0x62e/0x1ce0
[  758.275867][T13832]  ___sys_recvmsg+0xdb/0x1a0
[  758.275910][T13832]  ? __pfx____sys_recvmsg+0x10/0x10
[  758.275976][T13832]  ? __pfx___might_resched+0x10/0x10
[  758.276020][T13832]  do_recvmmsg+0x2fe/0x750
[  758.276070][T13832]  ? __pfx_do_recvmmsg+0x10/0x10
[  758.276110][T13832]  ? ksys_write+0x190/0x250
[  758.276155][T13832]  ? __mutex_unlock_slowpath+0x163/0x800
[  758.276213][T13832]  ? __fget_files+0x20e/0x3c0
[  758.276259][T13832]  __x64_sys_recvmmsg+0x22a/0x280
[  758.276314][T13832]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  758.276372][T13832]  do_syscall_64+0xcd/0x490
[  758.276420][T13832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  758.276454][T13832] RIP: 0033:0x7f72f258ebe9
[  758.276480][T13832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  758.276512][T13832] RSP: 002b:00007f72f34a3038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  758.276544][T13832] RAX: ffffffffffffffda RBX: 00007f72f27b5fa0 RCX: 00007f72f258ebe9
[  758.276565][T13832] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  758.276585][T13832] RBP: 00007f72f34a3090 R08: 0000000000000000 R09: 0000000000000000
[  758.276606][T13832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  758.276625][T13832] R13: 00007f72f27b6038 R14: 00007f72f27b5fa0 R15: 00007ffc45acbc68
[  758.276668][T13832]  </TASK>
[  758.861836][T13802] kernel profiling enabled (shift: 7)
[  761.201867][T13862] nvme_fabrics: missing parameter 'transport=%s'
[  761.208288][T13862] nvme_fabrics: missing parameter 'nqn=%s'
[  761.569169][T13865] nvme_fabrics: missing parameter 'transport=%s'
[  761.669883][T13865] nvme_fabrics: missing parameter 'nqn=%s'
[  763.237854][T13876] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1792'.
[  763.299218][T13876] nbd: must specify a size in bytes for the device
[  764.136114][   T30] audit: type=1800 audit(6050170159.941:44): pid=13882 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1793" name="bus" dev="tmpfs" ino=2300 res=0 errno=0
[  765.029860][T13882] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  765.036208][T13882] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  765.042791][T13882] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  765.048940][T13882] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  767.046709][T13918] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1801'.
[  767.080684][T11526] Bluetooth: hci4: command 0x0c1a tx timeout
[  767.086981][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  767.086986][T11526] Bluetooth: hci1: command 0x0406 tx timeout
[  767.087034][T11526] Bluetooth: hci0: command 0x0406 tx timeout
[  770.947015][T13963] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1810'.
[  771.460176][T13959] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  771.534807][T13959] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  771.559186][T13959] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  771.650569][T13959] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  773.489293][T11526] Bluetooth: hci0: command 0x0406 tx timeout
[  773.560408][T11526] Bluetooth: hci2: command 0x0406 tx timeout
[  773.567518][ T5868] Bluetooth: hci1: command 0x0406 tx timeout
[  773.729265][T11526] Bluetooth: hci4: command 0x0c1a tx timeout
[  774.085965][T13984] can0: slcan on pty238.
[  774.247921][T13984] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  774.971334][T13983] can0 (unregistered): slcan off pty238.
[  777.290734][T14019] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  777.297296][T14019] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  777.318299][T13996] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  777.453578][T14019] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  777.606977][T14019] Bluetooth: hci4: Opcode 0x0c1a failed: -4


	
	
	
	
	
	
	
	
	

	
	

	
		

	
		

	


		

		
	
		
	
	

	



			








	





	



	


	


	









	




	





		







	

	
		
	
	

	

		

		
		

		

		
		

			




			



			




			



	
				
	
	



	
		


	
	

	
				
	
	



				
	
	

	
	

	
	

	
	

	
			


	
	
	
	
	
	
	

	
		



	
	

	
	

	
	

	
	

	

	
		

	


		

		
	
		
	
	

	



			








	





	



	


	


	









	




	






		










	

	
		
	
	

	
	
	

	
	
	
	
	
	
	
	
	

	

	
	

	


			




			



			




			


	

	
		

	

	
		

	


	
	

		
	
		
	
	

	



			








	

	
	






	







		

		

	
	
		








	
	






	










	





	





		












	
	

	
	
	

	
		
			

			

			

			

			

			

			

			

			

			

	
	

	
	

	
		
	

	
		


	
	

	
				
	
	



				
	
	

	
	

	
	

	
	

	
































	

	
		
























	
	

















	
	
	
	
	

	


	
	
	



	
	


syzkaller
syzkaller login: [  814.589433][T14532] netlink: 'syz.3.1928': attribute type 1 has an invalid length.
[  815.200977][T14520] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1924'.
[  816.051969][T14545] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1930'.
[  816.146979][T14544] can: request_module (can-proto-0) failed.
[  817.305798][T14560] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1935'.
[  817.354699][   T30] audit: type=1800 audit(6050170213.131:48): pid=14561 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1934" name="bus" dev="tmpfs" ino=2516 res=0 errno=0
[  818.100131][T14562] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  818.119640][T14562] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  818.125788][T14562] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  818.150336][T14562] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  818.926748][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  818.936195][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  819.597209][T14577] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1939'.
[  819.799464][T11526] Bluetooth: hci0: command 0x0406 tx timeout
[  820.199131][T11526] Bluetooth: hci4: command 0x0c1a tx timeout
[  820.199585][ T5875] Bluetooth: hci2: command 0x0406 tx timeout
[  820.206139][T11526] Bluetooth: hci1: command 0x0406 tx timeout
[  820.485542][T14593] random: crng reseeded on system resumption
[  825.066388][T14638] net_ratelimit: 80 callbacks suppressed
[  825.066409][T14638] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[  827.745429][T14651] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  830.938387][ T5875] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  830.969424][ T5875] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  830.980435][ T5875] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  830.991347][ T5875] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  831.010769][ T5875] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  831.713782][T14702] input: jJǸ-�¶š9ã%vø“û¨l�ÐQ 	J86Ö‘ as /devices/virtual/input/input51
[  832.382017][T14690] chnl_net:caif_netlink_parms(): no params data found
[  833.082614][ T5875] Bluetooth: hci3: command tx timeout
[  833.173636][T14720] FAULT_INJECTION: forcing a failure.
[  833.173636][T14720] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  833.173691][T14720] CPU: 0 UID: 0 PID: 14720 Comm: syz.0.1970 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  833.173754][T14720] Tainted: [U]=USER
[  833.173765][T14720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  833.173785][T14720] Call Trace:
[  833.173798][T14720]  <TASK>
[  833.173810][T14720]  dump_stack_lvl+0x16c/0x1f0
[  833.173859][T14720]  should_fail_ex+0x512/0x640
[  833.173914][T14720]  _copy_from_user+0x2e/0xd0
[  833.173970][T14720]  copy_msghdr_from_user+0x98/0x160
[  833.174014][T14720]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  833.174074][T14720]  ? kfree+0x24f/0x4d0
[  833.174103][T14720]  ? __pfx__kstrtoull+0x10/0x10
[  833.174153][T14720]  ___sys_sendmsg+0xfe/0x1d0
[  833.174200][T14720]  ? __pfx____sys_sendmsg+0x10/0x10
[  833.174287][T14720]  ? __pfx___might_resched+0x10/0x10
[  833.174334][T14720]  __sys_sendmmsg+0x200/0x420
[  833.174384][T14720]  ? __pfx___sys_sendmmsg+0x10/0x10
[  833.174445][T14720]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  833.174509][T14720]  ? fput+0x9b/0xd0
[  833.174558][T14720]  ? ksys_write+0x1ac/0x250
[  833.174597][T14720]  ? __pfx_ksys_write+0x10/0x10
[  833.174645][T14720]  __x64_sys_sendmmsg+0x9c/0x100
[  833.174688][T14720]  ? lockdep_hardirqs_on+0x7c/0x110
[  833.174738][T14720]  do_syscall_64+0xcd/0x490
[  833.174787][T14720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  833.174823][T14720] RIP: 0033:0x7f0e0bf8ebe9
[  833.174849][T14720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  833.174882][T14720] RSP: 002b:00007f0e0ce7c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  833.174915][T14720] RAX: ffffffffffffffda RBX: 00007f0e0c1b5fa0 RCX: 00007f0e0bf8ebe9
[  833.174939][T14720] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  833.174961][T14720] RBP: 00007f0e0ce7c090 R08: 0000000000000000 R09: 0000000000000000
[  833.174982][T14720] R10: 00000000070001f4 R11: 0000000000000246 R12: 0000000000000001
[  833.175004][T14720] R13: 00007f0e0c1b6038 R14: 00007f0e0c1b5fa0 R15: 00007ffdad1d6388
[  833.175050][T14720]  </TASK>
[  833.291146][T14690] bridge0: port 1(bridge_slave_0) entered blocking state
[  833.300909][T14690] bridge0: port 1(bridge_slave_0) entered disabled state
[  833.301148][T14690] bridge_slave_0: entered allmulticast mode
[  833.303147][T14690] bridge_slave_0: entered promiscuous mode
[  833.342505][T14690] bridge0: port 2(bridge_slave_1) entered blocking state
[  833.369273][T14690] bridge0: port 2(bridge_slave_1) entered disabled state
[  833.369552][T14690] bridge_slave_1: entered allmulticast mode
[  833.373668][T14690] bridge_slave_1: entered promiscuous mode
[  833.826163][T14690] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  833.891788][T14690] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  834.092441][T14690] team0: Port device team_slave_0 added
[  834.115003][T14690] team0: Port device team_slave_1 added
[  834.392218][T14690] batman_adv: batadv0: Adding interface: batadv_slave_0
[  834.392247][T14690] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  834.392291][T14690] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  834.394807][T14690] batman_adv: batadv0: Adding interface: batadv_slave_1
[  834.394833][T14690] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  834.394880][T14690] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  835.106862][T14690] hsr_slave_0: entered promiscuous mode
[  835.108128][T14690] hsr_slave_1: entered promiscuous mode
[  835.169699][ T5875] Bluetooth: hci3: command tx timeout
[  835.290204][T14690] debugfs: 'hsr0' already exists in 'hsr'
[  835.290251][T14690] Cannot create hsr debugfs directory
[  835.429383][T14732] FAULT_INJECTION: forcing a failure.
[  835.429383][T14732] name failslab, interval 1, probability 0, space 0, times 0
[  835.429626][T14732] CPU: 0 UID: 0 PID: 14732 Comm: syz.0.1973 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  835.429675][T14732] Tainted: [U]=USER
[  835.429686][T14732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  835.429705][T14732] Call Trace:
[  835.429716][T14732]  <TASK>
[  835.429728][T14732]  dump_stack_lvl+0x16c/0x1f0
[  835.429772][T14732]  should_fail_ex+0x512/0x640
[  835.429817][T14732]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  835.429861][T14732]  should_failslab+0xc2/0x120
[  835.429902][T14732]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  835.429944][T14732]  ? __d_alloc+0x32/0xae0
[  835.429991][T14732]  __d_alloc+0x32/0xae0
[  835.430035][T14732]  d_alloc_pseudo+0x1c/0xc0
[  835.430084][T14732]  alloc_file_pseudo+0xcf/0x230
[  835.430136][T14732]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  835.430198][T14732]  __shmem_file_setup+0x1a3/0x330
[  835.430249][T14732]  shmem_zero_setup+0x93/0x1a0
[  835.430291][T14732]  __mmap_region+0x2081/0x27b0
[  835.430332][T14732]  ? finish_task_switch.isra.0+0x21c/0xc10
[  835.430367][T14732]  ? __pfx___mmap_region+0x10/0x10
[  835.430405][T14732]  ? rcu_is_watching+0x12/0xc0
[  835.430447][T14732]  ? rcu_is_watching+0x12/0xc0
[  835.430479][T14732]  ? trace_sched_exit_tp+0xd1/0x120
[  835.430530][T14732]  ? __schedule+0x11a3/0x5de0
[  835.430562][T14732]  ? __lock_acquire+0x62e/0x1ce0
[  835.430629][T14732]  ? __pfx___schedule+0x10/0x10
[  835.430713][T14732]  ? trace_cap_capable+0x18d/0x200
[  835.430761][T14732]  mmap_region+0x1ab/0x3f0
[  835.430798][T14732]  ? __get_unmapped_area+0x267/0x440
[  835.430851][T14732]  do_mmap+0xa3e/0x1210
[  835.430905][T14732]  ? __pfx_do_mmap+0x10/0x10
[  835.430952][T14732]  ? __pfx_down_write_killable+0x10/0x10
[  835.431007][T14732]  vm_mmap_pgoff+0x29e/0x470
[  835.431060][T14732]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  835.431114][T14732]  ? __x64_sys_futex+0x1e0/0x4c0
[  835.431155][T14732]  ? __x64_sys_futex+0x1e9/0x4c0
[  835.431208][T14732]  ksys_mmap_pgoff+0x7d/0x5c0
[  835.431252][T14732]  ? xfd_validate_state+0x61/0x180
[  835.431299][T14732]  ? __pfx_ksys_write+0x10/0x10
[  835.431340][T14732]  __x64_sys_mmap+0x125/0x190
[  835.431396][T14732]  do_syscall_64+0xcd/0x490
[  835.431441][T14732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  835.431476][T14732] RIP: 0033:0x7f0e0bf8ebe9
[  835.431502][T14732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  835.431535][T14732] RSP: 002b:00007f0e0ce7c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  835.431566][T14732] RAX: ffffffffffffffda RBX: 00007f0e0c1b5fa0 RCX: 00007f0e0bf8ebe9
[  835.431587][T14732] RDX: 00000000000000df RSI: 0000000000020009 RDI: 0000000000000000
[  835.431607][T14732] RBP: 00007f0e0c011e19 R08: ffffffffffffffff R09: 0000000000008000
[  835.431629][T14732] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  835.431648][T14732] R13: 00007f0e0c1b6038 R14: 00007f0e0c1b5fa0 R15: 00007ffdad1d6388
[  835.431691][T14732]  </TASK>
[  837.244844][ T5875] Bluetooth: hci3: command tx timeout
[  837.271809][T14690] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  837.383790][T14690] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  837.432372][T14690] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  837.518394][T14690] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  838.731250][T14762] usb usb23: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  838.760937][T14762] ima: policy update failed
[  838.765720][   T30] audit: type=1802 audit(6050170234.571:49): pid=14762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.1978" res=0 errno=0
[  838.823555][T14690] 8021q: adding VLAN 0 to HW filter on device bond0
[  838.924051][T14690] 8021q: adding VLAN 0 to HW filter on device team0
[  838.991745][ T9428] bridge0: port 1(bridge_slave_0) entered blocking state
[  839.000806][ T9428] bridge0: port 1(bridge_slave_0) entered forwarding state
[  839.054902][ T9428] bridge0: port 2(bridge_slave_1) entered blocking state
[  839.062443][ T9428] bridge0: port 2(bridge_slave_1) entered forwarding state
[  839.320567][ T5875] Bluetooth: hci3: command tx timeout
[  839.801403][T14773] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1981'.
[  840.795270][T14690] 8021q: adding VLAN 0 to HW filter on device batadv0
[  842.783518][T14690] veth0_vlan: entered promiscuous mode
[  842.835019][T14690] veth1_vlan: entered promiscuous mode
[  842.994308][T14690] veth0_macvtap: entered promiscuous mode
[  843.038018][T14690] veth1_macvtap: entered promiscuous mode
[  843.157633][T14690] batman_adv: batadv0: Interface activated: batadv_slave_0
[  843.212701][T14690] batman_adv: batadv0: Interface activated: batadv_slave_1
[  843.316883][ T9421] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  843.364239][ T9421] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  843.441480][ T9421] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  843.474894][ T9421] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  844.077878][ T9425] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  844.106672][ T9425] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  844.366400][ T9421] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  844.401169][ T9421] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  846.751536][T14847] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  846.917510][T14846] ubi: mtd0 is already attached to ubi0
[  848.512974][T14863] can: request_module (can-proto-0) failed.
[  849.173982][T14877] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  849.618408][T14881] nbd: socks must be embedded in a SOCK_ITEM attr
[  849.723669][T14881] block nbd1: shutting down sockets
[  851.096518][   T30] audit: type=1800 audit(6050170246.901:50): pid=14905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2008" name="bus" dev="tmpfs" ino=49 res=0 errno=0
[  851.822054][T14905] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  851.828673][T14905] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  851.876170][T14905] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  851.919474][T14905] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  851.973453][T14905] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  852.001906][T14905] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  853.560849][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  853.879311][ T5875] Bluetooth: hci4: command 0x0c1a tx timeout
[  853.880404][T11526] Bluetooth: hci1: command 0x0406 tx timeout
[  853.963118][T11526] Bluetooth: hci3: command 0x0c1a tx timeout
[  855.108087][T14942] ubi: mtd0 is already attached to ubi0
[  856.040209][T11526] Bluetooth: hci3: command 0x0c1a tx timeout
[  856.718394][T14955] can: request_module (can-proto-0) failed.
[  857.155636][T14958] can: request_module (can-proto-0) failed.
[  858.119389][T11526] Bluetooth: hci3: command 0x0c1a tx timeout
[  859.268523][   T30] audit: type=1800 audit(6050170255.051:51): pid=14995 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2037" name="discovery_nqn" dev="configfs" ino=62564 res=0 errno=0
[  859.894731][   T30] audit: type=1800 audit(6050170255.701:52): pid=15007 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2031" name="bus" dev="tmpfs" ino=86 res=0 errno=0
[  860.629579][T15007] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  860.635825][T15007] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  860.686398][T15007] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  860.743086][T15007] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  862.132396][T15026] random: crng reseeded on system resumption
[  862.679215][ T5875] Bluetooth: hci1: command 0x0406 tx timeout
[  862.685343][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  862.759341][ T5875] Bluetooth: hci3: command 0x0c1a tx timeout
[  862.759362][T11526] Bluetooth: hci4: command 0x0c1a tx timeout
[  864.061048][   T30] audit: type=1800 audit(6050170259.871:53): pid=15039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2039" name="bus" dev="tmpfs" ino=2785 res=0 errno=0
[  864.698126][   T30] audit: type=1800 audit(6050170260.491:54): pid=15049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2041" name="bus" dev="tmpfs" ino=107 res=0 errno=0
[  865.031373][T15042] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  865.033048][T15042] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  865.033291][T15042] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  865.033510][T15042] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  866.839471][ T5875] Bluetooth: hci0: command 0x0406 tx timeout
[  867.084266][ T5875] Bluetooth: hci3: command 0x0c1a tx timeout
[  867.084328][T11526] Bluetooth: hci4: command 0x0c1a tx timeout
[  867.090448][ T5875] Bluetooth: hci1: command 0x0406 tx timeout
[  871.133779][T15098] ovs_ÿþ: entered promiscuous mode
[  872.016341][T15128] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2058'.
[  874.760785][T15154] can: request_module (can-proto-0) failed.
[  876.774353][T15180] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2068'.
[  878.436070][T15197] can: request_module (can-proto-0) failed.
[  878.634009][T15201] can: request_module (can-proto-0) failed.
[  880.390796][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  880.397311][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  882.999816][T15244] nbd: socks must be embedded in a SOCK_ITEM attr
[  883.009907][T15244] block nbd1: shutting down sockets
[  888.693909][T15308] can: request_module (can-proto-0) failed.
[  889.444734][T15316] random: crng reseeded on system resumption
[  891.612323][T15339] random: crng reseeded on system resumption
[  891.776082][T15343] FAULT_INJECTION: forcing a failure.
[  891.776082][T15343] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  891.958785][T15343] CPU: 0 UID: 0 PID: 15343 Comm: syz.5.2106 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  891.958841][T15343] Tainted: [U]=USER
[  891.958852][T15343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  891.958870][T15343] Call Trace:
[  891.958880][T15343]  <TASK>
[  891.958890][T15343]  dump_stack_lvl+0x16c/0x1f0
[  891.958943][T15343]  should_fail_ex+0x512/0x640
[  891.958993][T15343]  _copy_from_user+0x2e/0xd0
[  891.959043][T15343]  copy_msghdr_from_user+0x98/0x160
[  891.959086][T15343]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  891.959135][T15343]  ? kfree+0x24f/0x4d0
[  891.959165][T15343]  ? __pfx__kstrtoull+0x10/0x10
[  891.959210][T15343]  ___sys_sendmsg+0xfe/0x1d0
[  891.959251][T15343]  ? __pfx____sys_sendmsg+0x10/0x10
[  891.959330][T15343]  ? __pfx___might_resched+0x10/0x10
[  891.959371][T15343]  __sys_sendmmsg+0x200/0x420
[  891.959418][T15343]  ? __pfx___sys_sendmmsg+0x10/0x10
[  891.959473][T15343]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  891.959533][T15343]  ? fput+0x9b/0xd0
[  891.959579][T15343]  ? ksys_write+0x1ac/0x250
[  891.959615][T15343]  ? __pfx_ksys_write+0x10/0x10
[  891.959660][T15343]  __x64_sys_sendmmsg+0x9c/0x100
[  891.959701][T15343]  ? lockdep_hardirqs_on+0x7c/0x110
[  891.959747][T15343]  do_syscall_64+0xcd/0x490
[  891.959792][T15343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  891.959825][T15343] RIP: 0033:0x7fa09f58ebe9
[  891.959849][T15343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  891.959880][T15343] RSP: 002b:00007fa0a04cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  891.959911][T15343] RAX: ffffffffffffffda RBX: 00007fa09f7b5fa0 RCX: 00007fa09f58ebe9
[  891.959930][T15343] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  891.959948][T15343] RBP: 00007fa0a04cb090 R08: 0000000000000000 R09: 0000000000000000
[  891.959967][T15343] R10: 00000000070001f4 R11: 0000000000000246 R12: 0000000000000002
[  891.959985][T15343] R13: 00007fa09f7b6038 R14: 00007fa09f7b5fa0 R15: 00007ffd9f8ccd38
[  891.960025][T15343]  </TASK>
[  892.861970][T15352] can: request_module (can-proto-3) failed.
[  895.625929][T15391] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2118'.
[  899.598672][T15438] writing to auto_msgmni has no effect
[  903.569187][T15465] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  904.605565][T15488] futex_wake_op: syz.5.2134 tries to shift op by -9; fix this program
[  904.756986][   T10] smpboot: CPU 1 is now offline
[  905.972902][T15502] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2137'.
[  908.962636][T15522] can: request_module (can-proto-0) failed.
[  910.418725][T15529] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2143'.
[  911.241677][T15541] can: request_module (can-proto-0) failed.
[  912.158023][T15552] nbd: socks must be embedded in a SOCK_ITEM attr
[  912.266489][T15552] block nbd1: shutting down sockets
[  914.004860][T15550] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  914.065794][T15563] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2153'.
[  915.245458][T15578] FAULT_INJECTION: forcing a failure.
[  915.245458][T15578] name failslab, interval 1, probability 0, space 0, times 0
[  915.485855][T15578] CPU: 0 UID: 0 PID: 15578 Comm: syz.5.2156 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  915.485898][T15578] Tainted: [U]=USER
[  915.485906][T15578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  915.485920][T15578] Call Trace:
[  915.485930][T15578]  <TASK>
[  915.485940][T15578]  dump_stack_lvl+0x16c/0x1f0
[  915.485976][T15578]  should_fail_ex+0x512/0x640
[  915.486010][T15578]  ? fs_reclaim_acquire+0xae/0x150
[  915.486048][T15578]  ? tomoyo_encode2+0x100/0x3e0
[  915.486090][T15578]  should_failslab+0xc2/0x120
[  915.486123][T15578]  __kmalloc_noprof+0xd2/0x510
[  915.486152][T15578]  ? d_absolute_path+0x136/0x1a0
[  915.486192][T15578]  tomoyo_encode2+0x100/0x3e0
[  915.486230][T15578]  tomoyo_encode+0x29/0x50
[  915.486263][T15578]  tomoyo_realpath_from_path+0x18f/0x6e0
[  915.486307][T15578]  tomoyo_path_number_perm+0x245/0x580
[  915.486336][T15578]  ? tomoyo_path_number_perm+0x237/0x580
[  915.486368][T15578]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  915.486400][T15578]  ? find_held_lock+0x2b/0x80
[  915.486450][T15578]  ? find_held_lock+0x2b/0x80
[  915.486473][T15578]  ? hook_file_ioctl_common+0x145/0x410
[  915.486512][T15578]  ? __fget_files+0x20e/0x3c0
[  915.486544][T15578]  security_file_ioctl+0x9b/0x240
[  915.486576][T15578]  __x64_sys_ioctl+0xb7/0x210
[  915.486616][T15578]  do_syscall_64+0xcd/0x490
[  915.486651][T15578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  915.486677][T15578] RIP: 0033:0x7fa09f58ebe9
[  915.486695][T15578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  915.486717][T15578] RSP: 002b:00007fa0a04cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  915.486740][T15578] RAX: ffffffffffffffda RBX: 00007fa09f7b5fa0 RCX: 00007fa09f58ebe9
[  915.486756][T15578] RDX: 0000200000000140 RSI: 0000000080045519 RDI: 0000000000000003
[  915.486771][T15578] RBP: 00007fa0a04cb090 R08: 0000000000000000 R09: 0000000000000000
[  915.486785][T15578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  915.486799][T15578] R13: 00007fa09f7b6038 R14: 00007fa09f7b5fa0 R15: 00007ffd9f8ccd38
[  915.486829][T15578]  </TASK>
[  915.486855][T15578] ERROR: Out of memory at tomoyo_realpath_from_path.
[  915.840201][T15579] netlink: 'syz.4.2155': attribute type 7 has an invalid length.
[  915.880967][T15579] netlink: 17 bytes leftover after parsing attributes in process `syz.4.2155'.
[  917.220744][T15594] ubi: mtd0 is already attached to ubi0
[  925.170805][T15664] futex_wake_op: syz.1.2176 tries to shift op by -9; fix this program
[  930.442230][T15697] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2184'.
[  932.425869][T15714] can: request_module (can-proto-0) failed.
[  940.525904][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  940.532804][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  941.838502][T15770] FAULT_INJECTION: forcing a failure.
[  941.838502][T15770] name failslab, interval 1, probability 0, space 0, times 0
[  941.944658][T15770] CPU: 0 UID: 0 PID: 15770 Comm: syz.1.2198 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  941.944703][T15770] Tainted: [U]=USER
[  941.944710][T15770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  941.944725][T15770] Call Trace:
[  941.944733][T15770]  <TASK>
[  941.944742][T15770]  dump_stack_lvl+0x16c/0x1f0
[  941.944778][T15770]  should_fail_ex+0x512/0x640
[  941.944813][T15770]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  941.944844][T15770]  should_failslab+0xc2/0x120
[  941.944877][T15770]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  941.944907][T15770]  ? mempool_init_node+0x302/0x6e0
[  941.944949][T15770]  ? __pfx_mempool_alloc_slab+0x10/0x10
[  941.944983][T15770]  mempool_init_node+0x302/0x6e0
[  941.945024][T15770]  ? __pfx_mempool_alloc_slab+0x10/0x10
[  941.945060][T15770]  ? __pfx_mempool_free_slab+0x10/0x10
[  941.945095][T15770]  mempool_init_noprof+0x3a/0x50
[  941.945134][T15770]  bioset_init+0x37a/0x880
[  941.945172][T15770]  ? __pfx_bioset_init+0x10/0x10
[  941.945217][T15770]  __alloc_disk_node+0x83/0x630
[  941.945250][T15770]  ? blk_alloc_queue+0x1a3/0x760
[  941.945276][T15770]  __blk_alloc_disk+0xd0/0x160
[  941.945309][T15770]  ? __pfx___blk_alloc_disk+0x10/0x10
[  941.945360][T15770]  ? lockdep_init_map_type+0x5c/0x280
[  941.945404][T15770]  ? lockdep_init_map_type+0x5c/0x280
[  941.945443][T15770]  dm_create+0x4bf/0x1160
[  941.945479][T15770]  dev_create+0x121/0x290
[  941.945517][T15770]  ? __pfx_dev_create+0x10/0x10
[  941.945569][T15770]  ? __might_fault+0x13b/0x190
[  941.945604][T15770]  ctl_ioctl+0x798/0xd60
[  941.945640][T15770]  ? __pfx_dev_create+0x10/0x10
[  941.945677][T15770]  ? __pfx_ctl_ioctl+0x10/0x10
[  941.945741][T15770]  ? __fget_files+0x20e/0x3c0
[  941.945772][T15770]  dm_ctl_ioctl+0x22/0x30
[  941.945805][T15770]  ? __pfx_dm_ctl_ioctl+0x10/0x10
[  941.945840][T15770]  __x64_sys_ioctl+0x18e/0x210
[  941.945880][T15770]  do_syscall_64+0xcd/0x490
[  941.945914][T15770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  941.945939][T15770] RIP: 0033:0x7f72f258ebe9
[  941.945957][T15770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  941.945980][T15770] RSP: 002b:00007f72f34a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  941.946003][T15770] RAX: ffffffffffffffda RBX: 00007f72f27b5fa0 RCX: 00007f72f258ebe9
[  941.946018][T15770] RDX: 00002000000001c0 RSI: fffffffffffffd03 RDI: 0000000000000008
[  941.946033][T15770] RBP: 00007f72f2611e19 R08: 0000000000000000 R09: 0000000000000000
[  941.946047][T15770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  941.946061][T15770] R13: 00007f72f27b6038 R14: 00007f72f27b5fa0 R15: 00007ffc45acbc68
[  941.946091][T15770]  </TASK>
[  944.038293][T15771] FAULT_INJECTION: forcing a failure.
[  944.038293][T15771] name failslab, interval 1, probability 0, space 0, times 0
[  944.135430][T15771] CPU: 0 UID: 0 PID: 15771 Comm: syz.1.2198 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  944.135476][T15771] Tainted: [U]=USER
[  944.135484][T15771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  944.135500][T15771] Call Trace:
[  944.135512][T15771]  <TASK>
[  944.135523][T15771]  dump_stack_lvl+0x16c/0x1f0
[  944.135561][T15771]  should_fail_ex+0x512/0x640
[  944.135597][T15771]  ? fs_reclaim_acquire+0xae/0x150
[  944.135640][T15771]  should_failslab+0xc2/0x120
[  944.135676][T15771]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  944.135710][T15771]  ? sock_alloc_inode+0x25/0x1c0
[  944.135752][T15771]  ? __pfx_sock_alloc_inode+0x10/0x10
[  944.135788][T15771]  sock_alloc_inode+0x25/0x1c0
[  944.135824][T15771]  alloc_inode+0x61/0x240
[  944.135863][T15771]  sock_alloc+0x40/0x280
[  944.135898][T15771]  __sock_create+0xc1/0x8d0
[  944.135939][T15771]  ? lockdep_init_map_type+0x5c/0x280
[  944.135979][T15771]  smc_create+0x15d/0x2a0
[  944.136006][T15771]  __sock_create+0x335/0x8d0
[  944.136052][T15771]  __sys_socket+0x14d/0x260
[  944.136077][T15771]  ? __pfx___sys_socket+0x10/0x10
[  944.136100][T15771]  ? xfd_validate_state+0x61/0x180
[  944.136138][T15771]  ? __pfx___do_sys_prctl+0x10/0x10
[  944.136196][T15771]  __x64_sys_socket+0x72/0xb0
[  944.136219][T15771]  ? lockdep_hardirqs_on+0x7c/0x110
[  944.136249][T15771]  do_syscall_64+0xcd/0x490
[  944.136297][T15771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  944.136322][T15771] RIP: 0033:0x7f72f258ebe9
[  944.136340][T15771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  944.136363][T15771] RSP: 002b:00007f72f3482038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  944.136386][T15771] RAX: ffffffffffffffda RBX: 00007f72f27b6090 RCX: 00007f72f258ebe9
[  944.136402][T15771] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 000000000000002b
[  944.136416][T15771] RBP: 00007f72f2611e19 R08: 0000000000000000 R09: 0000000000000000
[  944.136430][T15771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  944.136443][T15771] R13: 00007f72f27b6128 R14: 00007f72f27b6090 R15: 00007ffc45acbc68
[  944.136477][T15771]  </TASK>
[  944.136545][T15771] socket: no more sockets
[  946.087668][T15802] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2206'.
[  946.246236][T15805] nbd: socks must be embedded in a SOCK_ITEM attr
[  946.323459][T15805] block nbd1: shutting down sockets
[  947.193357][T15816] ubi: mtd0 is already attached to ubi0
[  948.841226][T15834] FAULT_INJECTION: forcing a failure.
[  948.841226][T15834] name failslab, interval 1, probability 0, space 0, times 0
[  949.169165][T15834] CPU: 0 UID: 0 PID: 15834 Comm: syz.5.2214 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  949.169223][T15834] Tainted: [U]=USER
[  949.169231][T15834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  949.169246][T15834] Call Trace:
[  949.169255][T15834]  <TASK>
[  949.169264][T15834]  dump_stack_lvl+0x16c/0x1f0
[  949.169302][T15834]  should_fail_ex+0x512/0x640
[  949.169337][T15834]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  949.169389][T15834]  should_failslab+0xc2/0x120
[  949.169424][T15834]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  949.169453][T15834]  ? _raw_spin_unlock+0x28/0x50
[  949.169479][T15834]  ? alloc_inode+0xc3/0x240
[  949.169520][T15834]  alloc_inode+0xc3/0x240
[  949.169555][T15834]  new_inode+0x22/0x1c0
[  949.169593][T15834]  simple_fill_super+0x306/0x720
[  949.169626][T15834]  ? __pfx_nfsd_fill_super+0x10/0x10
[  949.169656][T15834]  nfsd_fill_super+0x90/0x530
[  949.169683][T15834]  ? __pfx_set_anon_super_fc+0x10/0x10
[  949.169710][T15834]  ? __pfx_nfsd_fill_super+0x10/0x10
[  949.169737][T15834]  get_tree_keyed+0x10b/0x1d0
[  949.169767][T15834]  vfs_get_tree+0x8b/0x340
[  949.169789][T15834]  path_mount+0x1482/0x1fd0
[  949.169827][T15834]  ? __pfx_path_mount+0x10/0x10
[  949.169860][T15834]  ? kmem_cache_free+0x2d1/0x4d0
[  949.169887][T15834]  ? putname+0x154/0x1a0
[  949.169934][T15834]  ? putname+0x154/0x1a0
[  949.169972][T15834]  ? __x64_sys_mount+0x28d/0x310
[  949.170002][T15834]  __x64_sys_mount+0x28d/0x310
[  949.170035][T15834]  ? __pfx___x64_sys_mount+0x10/0x10
[  949.170076][T15834]  do_syscall_64+0xcd/0x490
[  949.170111][T15834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  949.170136][T15834] RIP: 0033:0x7fa09f58ebe9
[  949.170155][T15834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  949.170179][T15834] RSP: 002b:00007fa0a04cb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  949.170205][T15834] RAX: ffffffffffffffda RBX: 00007fa09f7b5fa0 RCX: 00007fa09f58ebe9
[  949.170221][T15834] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[  949.170236][T15834] RBP: 00007fa09f611e19 R08: 0000000000000000 R09: 0000000000000000
[  949.170250][T15834] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[  949.170265][T15834] R13: 00007fa09f7b6038 R14: 00007fa09f7b5fa0 R15: 00007ffd9f8ccd38
[  949.170296][T15834]  </TASK>
[  950.434091][   T30] audit: type=1800 audit(6050170346.171:55): pid=15855 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2219" name="bus" dev="tmpfs" ino=361 res=0 errno=0
[  950.459960][    C0] vkms_vblank_simulate: vblank timer overrun
[  952.201168][T15877] HfR: entered promiscuous mode
[  954.054285][T15886] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2226'.
[  957.216535][T15905] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  958.133017][T15939] binder: 15937:15939 ioctl c0046209 0 returned -22
[  958.256122][T15939] FAULT_INJECTION: forcing a failure.
[  958.256122][T15939] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  958.459655][T15939] CPU: 0 UID: 0 PID: 15939 Comm: syz.1.2239 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  958.459698][T15939] Tainted: [U]=USER
[  958.459706][T15939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  958.459721][T15939] Call Trace:
[  958.459740][T15939]  <TASK>
[  958.459751][T15939]  dump_stack_lvl+0x16c/0x1f0
[  958.459788][T15939]  should_fail_ex+0x512/0x640
[  958.459827][T15939]  _copy_to_user+0x32/0xd0
[  958.459869][T15939]  simple_read_from_buffer+0xcb/0x170
[  958.459897][T15939]  proc_fail_nth_read+0x197/0x240
[  958.459926][T15939]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  958.459954][T15939]  ? rw_verify_area+0xcf/0x6c0
[  958.459978][T15939]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  958.460004][T15939]  vfs_read+0x1e4/0xcf0
[  958.460036][T15939]  ? __pfx___mutex_lock+0x10/0x10
[  958.460069][T15939]  ? __pfx_vfs_read+0x10/0x10
[  958.460104][T15939]  ? __fget_files+0x20e/0x3c0
[  958.460139][T15939]  ksys_read+0x12a/0x250
[  958.460167][T15939]  ? __pfx_ksys_read+0x10/0x10
[  958.460203][T15939]  do_syscall_64+0xcd/0x490
[  958.460238][T15939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  958.460263][T15939] RIP: 0033:0x7f72f258d5fc
[  958.460281][T15939] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  958.460305][T15939] RSP: 002b:00007f72f34a3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  958.460328][T15939] RAX: ffffffffffffffda RBX: 00007f72f27b5fa0 RCX: 00007f72f258d5fc
[  958.460344][T15939] RDX: 000000000000000f RSI: 00007f72f34a30a0 RDI: 0000000000000004
[  958.460358][T15939] RBP: 00007f72f34a3090 R08: 0000000000000000 R09: 0000000000000000
[  958.460373][T15939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  958.460387][T15939] R13: 00007f72f27b6038 R14: 00007f72f27b5fa0 R15: 00007ffc45acbc68
[  958.460417][T15939]  </TASK>
[  960.265544][T15943] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  961.602575][T15956] nbd: socks must be embedded in a SOCK_ITEM attr
[  961.690665][T15956] block nbd1: shutting down sockets
[  961.754934][T15962] binder: 15961:15962 ioctl c0046209 0 returned -22
[  961.903590][T15963] ubi: mtd0 is already attached to ubi0
[  962.803342][T15975] syz.5.2247 (15975) used obsolete PPPIOCDETACH ioctl
[  963.318309][T15987] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2250'.
[  964.275246][T15999] ubi: mtd0 is already attached to ubi0
[  965.503649][T16007] usb usb37: usbfs: process 16007 (syz.0.2253) did not claim interface 0 before use
[  965.592212][T16009] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  968.330261][   T30] audit: type=1804 audit(6050170364.131:56): pid=16032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.2259" name="/newroot/sys/kernel/tracing/set_event" dev="tracefs" ino=21 res=1 errno=0
[  968.365814][T16032] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2259'.
[  969.478537][T16045] bridge0: port 3(dummy0) entered blocking state
[  969.668579][T16045] bridge0: port 3(dummy0) entered disabled state
[  969.836251][T16045] dummy0: entered allmulticast mode
[  969.913330][T16045] dummy0: entered promiscuous mode
[  969.984355][T16045] bridge0: port 3(dummy0) entered blocking state
[  969.991032][T16045] bridge0: port 3(dummy0) entered forwarding state
[  970.130621][T16041] device-mapper: ioctl: device name cannot contain '/'
[  972.995499][T16068] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2266'.
[  975.741529][T16092] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2272'.
[  975.871290][T16101] nfs4: Unknown parameter '€
'
[  978.257940][T16119] FAULT_INJECTION: forcing a failure.
[  978.257940][T16119] name failslab, interval 1, probability 0, space 0, times 0
[  978.258000][T16119] CPU: 0 UID: 0 PID: 16119 Comm: syz.0.2276 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  978.258034][T16119] Tainted: [U]=USER
[  978.258042][T16119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  978.258055][T16119] Call Trace:
[  978.258062][T16119]  <TASK>
[  978.258071][T16119]  dump_stack_lvl+0x16c/0x1f0
[  978.258104][T16119]  should_fail_ex+0x512/0x640
[  978.258137][T16119]  ? fs_reclaim_acquire+0xae/0x150
[  978.258174][T16119]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  978.258208][T16119]  should_failslab+0xc2/0x120
[  978.258240][T16119]  __kmalloc_noprof+0xd2/0x510
[  978.258274][T16119]  tomoyo_realpath_from_path+0xc2/0x6e0
[  978.258310][T16119]  ? tomoyo_profile+0x47/0x60
[  978.258350][T16119]  tomoyo_path_number_perm+0x245/0x580
[  978.258378][T16119]  ? tomoyo_path_number_perm+0x237/0x580
[  978.258409][T16119]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  978.258439][T16119]  ? find_held_lock+0x2b/0x80
[  978.258488][T16119]  ? find_held_lock+0x2b/0x80
[  978.258509][T16119]  ? hook_file_ioctl_common+0x145/0x410
[  978.258547][T16119]  ? __fget_files+0x20e/0x3c0
[  978.258577][T16119]  security_file_ioctl+0x9b/0x240
[  978.258609][T16119]  __x64_sys_ioctl+0xb7/0x210
[  978.258649][T16119]  do_syscall_64+0xcd/0x490
[  978.258681][T16119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  978.258705][T16119] RIP: 0033:0x7f0e0bf8ebe9
[  978.258722][T16119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  978.258745][T16119] RSP: 002b:00007f0e0ce7c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  978.258766][T16119] RAX: ffffffffffffffda RBX: 00007f0e0c1b5fa0 RCX: 00007f0e0bf8ebe9
[  978.258781][T16119] RDX: 0000000000000000 RSI: 00000000c0046209 RDI: 0000000000000004
[  978.258795][T16119] RBP: 00007f0e0ce7c090 R08: 0000000000000000 R09: 0000000000000000
[  978.258809][T16119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  978.258823][T16119] R13: 00007f0e0c1b6038 R14: 00007f0e0c1b5fa0 R15: 00007ffdad1d6388
[  978.258852][T16119]  </TASK>
[  978.258860][T16119] ERROR: Out of memory at tomoyo_realpath_from_path.
[  979.020905][T16125] ubi: mtd0 is already attached to ubi0
[  979.420455][T16123] FAULT_INJECTION: forcing a failure.
[  979.420455][T16123] name failslab, interval 1, probability 0, space 0, times 0
[  979.420497][T16123] CPU: 0 UID: 0 PID: 16123 Comm: syz.0.2278 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  979.420532][T16123] Tainted: [U]=USER
[  979.420540][T16123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  979.420554][T16123] Call Trace:
[  979.420562][T16123]  <TASK>
[  979.420570][T16123]  dump_stack_lvl+0x16c/0x1f0
[  979.420624][T16123]  should_fail_ex+0x512/0x640
[  979.420657][T16123]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  979.420689][T16123]  should_failslab+0xc2/0x120
[  979.420721][T16123]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  979.420748][T16123]  ? __pfx_acct_collect+0x10/0x10
[  979.420784][T16123]  ? taskstats_exit+0x654/0xbe0
[  979.420823][T16123]  taskstats_exit+0x654/0xbe0
[  979.420859][T16123]  ? __pfx_taskstats_exit+0x10/0x10
[  979.420901][T16123]  do_exit+0x5dc/0x2bf0
[  979.420934][T16123]  ? __pfx___might_resched+0x10/0x10
[  979.420964][T16123]  ? __pfx_do_exit+0x10/0x10
[  979.420996][T16123]  ? do_raw_spin_lock+0x12c/0x2b0
[  979.421033][T16123]  ? find_held_lock+0x2b/0x80
[  979.421060][T16123]  do_group_exit+0xd3/0x2a0
[  979.421096][T16123]  get_signal+0x2673/0x26d0
[  979.421123][T16123]  ? kick_process+0xf6/0x1a0
[  979.421164][T16123]  ? __pfx_task_work_add+0x10/0x10
[  979.421199][T16123]  ? __pfx_redirected_tty_write+0x10/0x10
[  979.421234][T16123]  ? __pfx_get_signal+0x10/0x10
[  979.421269][T16123]  arch_do_signal_or_restart+0x8f/0x790
[  979.421303][T16123]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  979.421341][T16123]  ? ksys_write+0x1ac/0x250
[  979.421368][T16123]  ? __pfx_ksys_write+0x10/0x10
[  979.421401][T16123]  exit_to_user_mode_loop+0x84/0x110
[  979.421438][T16123]  do_syscall_64+0x3f6/0x490
[  979.421470][T16123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  979.421494][T16123] RIP: 0033:0x7f0e0bf8ebe9
[  979.421512][T16123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  979.421535][T16123] RSP: 002b:00007f0e0ce7c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  979.421557][T16123] RAX: fffffffffffffe00 RBX: 00007f0e0c1b5fa0 RCX: 00007f0e0bf8ebe9
[  979.421573][T16123] RDX: 0000000000000004 RSI: 0000200000000440 RDI: 0000000000000003
[  979.421597][T16123] RBP: 00007f0e0ce7c090 R08: 0000000000000000 R09: 0000000000000000
[  979.421611][T16123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  979.421625][T16123] R13: 00007f0e0c1b6038 R14: 00007f0e0c1b5fa0 R15: 00007ffdad1d6388
[  979.421654][T16123]  </TASK>
[  981.541792][T16125] tty tty12: ldisc open failed (-12), clearing slot 11
[  985.081229][ T5868] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  989.299502][T16174] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  990.167338][T16207] FAULT_INJECTION: forcing a failure.
[  990.167338][T16207] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  990.255942][T16207] CPU: 0 UID: 0 PID: 16207 Comm: syz.4.2296 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  990.255996][T16207] Tainted: [U]=USER
[  990.256003][T16207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  990.256018][T16207] Call Trace:
[  990.256026][T16207]  <TASK>
[  990.256035][T16207]  dump_stack_lvl+0x16c/0x1f0
[  990.256073][T16207]  should_fail_ex+0x512/0x640
[  990.256111][T16207]  _copy_to_user+0x32/0xd0
[  990.256152][T16207]  simple_read_from_buffer+0xcb/0x170
[  990.256179][T16207]  proc_fail_nth_read+0x197/0x240
[  990.256207][T16207]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  990.256234][T16207]  ? rw_verify_area+0xcf/0x6c0
[  990.256258][T16207]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  990.256283][T16207]  vfs_read+0x1e4/0xcf0
[  990.256313][T16207]  ? __pfx___mutex_lock+0x10/0x10
[  990.256345][T16207]  ? __pfx_vfs_read+0x10/0x10
[  990.256379][T16207]  ? __fget_files+0x20e/0x3c0
[  990.256413][T16207]  ksys_read+0x12a/0x250
[  990.256439][T16207]  ? __pfx_ksys_read+0x10/0x10
[  990.256466][T16207]  ? fput+0x9b/0xd0
[  990.256503][T16207]  do_syscall_64+0xcd/0x490
[  990.256536][T16207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  990.256560][T16207] RIP: 0033:0x7f3a3358d5fc
[  990.256581][T16207] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  990.256604][T16207] RSP: 002b:00007f3a3431f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  990.256628][T16207] RAX: ffffffffffffffda RBX: 00007f3a337b5fa0 RCX: 00007f3a3358d5fc
[  990.256644][T16207] RDX: 000000000000000f RSI: 00007f3a3431f0a0 RDI: 0000000000000005
[  990.256660][T16207] RBP: 00007f3a3431f090 R08: 0000000000000000 R09: 0000000000000000
[  990.256675][T16207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  990.256690][T16207] R13: 00007f3a337b6038 R14: 00007f3a337b5fa0 R15: 00007ffee28bcb28
[  990.256720][T16207]  </TASK>
[  993.450359][T16215] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  993.557569][T16234] FAULT_INJECTION: forcing a failure.
[  993.557569][T16234] name failslab, interval 1, probability 0, space 0, times 0
[  993.709382][T16234] CPU: 0 UID: 0 PID: 16234 Comm: syz.1.2304 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[  993.709426][T16234] Tainted: [U]=USER
[  993.709434][T16234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  993.709448][T16234] Call Trace:
[  993.709457][T16234]  <TASK>
[  993.709467][T16234]  dump_stack_lvl+0x16c/0x1f0
[  993.709502][T16234]  should_fail_ex+0x512/0x640
[  993.709535][T16234]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  993.709562][T16234]  should_failslab+0xc2/0x120
[  993.709592][T16234]  __kmalloc_cache_noprof+0x6a/0x3e0
[  993.709616][T16234]  ? subflow_create_ctx+0x9b/0x2c0
[  993.709649][T16234]  subflow_create_ctx+0x9b/0x2c0
[  993.709680][T16234]  subflow_ulp_init+0xc3/0x4d0
[  993.709710][T16234]  tcp_set_ulp+0x329/0x7f0
[  993.709747][T16234]  mptcp_subflow_create_socket+0x361/0xed0
[  993.709787][T16234]  ? __pfx_mptcp_subflow_create_socket+0x10/0x10
[  993.709831][T16234]  __mptcp_nmpc_sk+0x182/0x7d0
[  993.709853][T16234]  ? __pfx___mptcp_nmpc_sk+0x10/0x10
[  993.709877][T16234]  ? __local_bh_enable_ip+0xa4/0x120
[  993.709908][T16234]  mptcp_getsockopt+0xcf8/0xe20
[  993.709942][T16234]  ? __pfx_mptcp_getsockopt+0x10/0x10
[  993.709975][T16234]  ? find_held_lock+0x2b/0x80
[  993.709997][T16234]  ? __might_fault+0xe3/0x190
[  993.710023][T16234]  ? __might_fault+0xe3/0x190
[  993.710046][T16234]  ? __might_fault+0x13b/0x190
[  993.710082][T16234]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  993.710127][T16234]  do_sock_getsockopt+0x34a/0x440
[  993.710165][T16234]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  993.710199][T16234]  ? __fget_files+0x204/0x3c0
[  993.710239][T16234]  __sys_getsockopt+0x123/0x1b0
[  993.710274][T16234]  __x64_sys_getsockopt+0xbd/0x160
[  993.710301][T16234]  ? do_syscall_64+0x91/0x490
[  993.710331][T16234]  ? lockdep_hardirqs_on+0x7c/0x110
[  993.710359][T16234]  do_syscall_64+0xcd/0x490
[  993.710391][T16234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  993.710415][T16234] RIP: 0033:0x7f72f258ebe9
[  993.710436][T16234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  993.710459][T16234] RSP: 002b:00007f72f34a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  993.710482][T16234] RAX: ffffffffffffffda RBX: 00007f72f27b5fa0 RCX: 00007f72f258ebe9
[  993.710497][T16234] RDX: 0000000000000021 RSI: 0000000000000006 RDI: 0000000000000008
[  993.710510][T16234] RBP: 00007f72f2611e19 R08: 0000000000000000 R09: 0000000000000000
[  993.710524][T16234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  993.710538][T16234] R13: 00007f72f27b6038 R14: 00007f72f27b5fa0 R15: 00007ffc45acbc68
[  993.710567][T16234]  </TASK>
[  995.784240][T16251] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  996.214046][T16245] openvswitch: ovs_ÿþ: Dropping previously announced user features
[  999.440405][ T5868] Bluetooth: hci0: unexpected event 0x01 length: 5 > 1
[ 1002.460501][T11526] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1002.484629][T11526] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1002.509210][T11526] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1002.540750][T11526] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1002.549625][T11526] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1003.242961][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[ 1003.253508][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[ 1004.599677][T11526] Bluetooth: hci1: command tx timeout
[ 1005.826200][ T9417] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1006.135372][ T9417] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1006.679649][T11526] Bluetooth: hci1: command tx timeout
[ 1006.742921][ T9417] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1007.431610][ T9417] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1007.643240][T16323] chnl_net:caif_netlink_parms(): no params data found
[ 1008.164010][T16350] syz_tun: tun_chr_ioctl cmd 1074025673
[ 1008.760013][T11526] Bluetooth: hci1: command tx timeout
[ 1008.765711][T16323] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1008.853104][T16323] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1008.924376][T16323] bridge_slave_0: entered allmulticast mode
[ 1009.000150][T16323] bridge_slave_0: entered promiscuous mode
[ 1009.080190][T16323] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1009.088879][T16323] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1009.193416][T16323] bridge_slave_1: entered allmulticast mode
[ 1009.235971][T16323] bridge_slave_1: entered promiscuous mode
[ 1010.331818][T16323] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1010.425950][T16323] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1010.843493][T11526] Bluetooth: hci1: command tx timeout
[ 1010.893778][ T9417] dummy0: left allmulticast mode
[ 1010.914229][ T9417] dummy0: left promiscuous mode
[ 1010.977747][ T9417] bridge0: port 3(dummy0) entered disabled state
[ 1011.201559][ T9417] bridge_slave_1: left allmulticast mode
[ 1011.201634][ T9417] bridge_slave_1: left promiscuous mode
[ 1011.201843][ T9417] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1011.331715][ T9417] bridge_slave_0: left allmulticast mode
[ 1011.331744][ T9417] bridge_slave_0: left promiscuous mode
[ 1011.331908][ T9417] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1015.830782][ T9417] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1015.872114][ T9417] bond0 (unregistering): Released all slaves
[ 1016.185324][ T9417] HSR: left promiscuous mode
[ 1016.296722][T16323] team0: Port device team_slave_0 added
[ 1016.600911][ T9417] ovs_ÿþ: left promiscuous mode
[ 1016.660681][T16323] team0: Port device team_slave_1 added
[ 1016.670333][ T9417] HfR: left promiscuous mode
[ 1017.179545][T16323] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1017.186555][T16323] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1017.373076][T16323] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1017.424651][T16323] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1017.473333][T16323] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1017.619047][T16323] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1018.224080][T16323] hsr_slave_0: entered promiscuous mode
[ 1018.270259][T16323] hsr_slave_1: entered promiscuous mode
[ 1018.276472][T16323] debugfs: 'hsr0' already exists in 'hsr'
[ 1018.345987][T16323] Cannot create hsr debugfs directory
[ 1019.849078][T16431] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[ 1021.155677][T16440] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[ 1024.807274][T16462] can: request_module (can-proto-0) failed.
[ 1025.171985][T16323] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1025.364490][T16323] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1025.786461][T16323] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1025.862225][T16477] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1025.884800][T16323] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1025.910314][T16477] block nbd1: shutting down sockets
[ 1026.415799][ T9417] hsr_slave_0: left promiscuous mode
[ 1026.562378][ T9417] hsr_slave_1: left promiscuous mode
[ 1026.614447][ T9417] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1026.684574][ T9417] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1026.755202][ T9417] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1026.831288][ T9417] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1027.086737][ T9417] veth1_macvtap: left promiscuous mode
[ 1027.149398][ T9417] veth1_vlan: left promiscuous mode
[ 1027.155882][ T9417] veth0_vlan: left promiscuous mode
[ 1030.344032][ T9417] team0 (unregistering): Port device team_slave_1 removed
[ 1030.564241][ T9417] team0 (unregistering): Port device team_slave_0 removed
[ 1033.107714][T16323] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1033.217944][T16323] 8021q: adding VLAN 0 to HW filter on device team0
[ 1033.272904][T16553] FAULT_INJECTION: forcing a failure.
[ 1033.272904][T16553] name fail_futex, interval 1, probability 0, space 0, times 1
[ 1033.272946][T16553] CPU: 0 UID: 0 PID: 16553 Comm: syz.5.2346 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[ 1033.272982][T16553] Tainted: [U]=USER
[ 1033.272990][T16553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1033.273005][T16553] Call Trace:
[ 1033.273012][T16553]  <TASK>
[ 1033.273021][T16553]  dump_stack_lvl+0x16c/0x1f0
[ 1033.273056][T16553]  should_fail_ex+0x512/0x640
[ 1033.273095][T16553]  get_futex_key+0x1d0/0x1560
[ 1033.273128][T16553]  ? __pfx_get_futex_key+0x10/0x10
[ 1033.273178][T16553]  futex_wake+0xea/0x530
[ 1033.273215][T16553]  ? rcu_is_watching+0x12/0xc0
[ 1033.273241][T16553]  ? __pfx_futex_wake+0x10/0x10
[ 1033.273281][T16553]  ? kmem_cache_free+0x2d1/0x4d0
[ 1033.273307][T16553]  ? fd_install+0x225/0x750
[ 1033.273331][T16553]  ? putname+0x154/0x1a0
[ 1033.273370][T16553]  do_futex+0x1e3/0x350
[ 1033.273401][T16553]  ? __pfx_do_futex+0x10/0x10
[ 1033.273440][T16553]  __x64_sys_futex+0x1e0/0x4c0
[ 1033.273473][T16553]  ? __x64_sys_openat+0x174/0x210
[ 1033.273512][T16553]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1033.273556][T16553]  do_syscall_64+0xcd/0x490
[ 1033.273590][T16553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1033.273620][T16553] RIP: 0033:0x7fa09f58ebe9
[ 1033.273639][T16553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1033.273666][T16553] RSP: 002b:00007fa0a04aa0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1033.273691][T16553] RAX: ffffffffffffffda RBX: 00007fa09f7b6098 RCX: 00007fa09f58ebe9
[ 1033.273708][T16553] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa09f7b609c
[ 1033.273724][T16553] RBP: 00007fa09f7b6090 R08: 00007fa0a04cc000 R09: 0000000000000000
[ 1033.273740][T16553] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[ 1033.273754][T16553] R13: 00007fa09f7b6128 R14: 00007ffd9f8ccc50 R15: 00007ffd9f8ccd38
[ 1033.273785][T16553]  </TASK>
[ 1033.321925][ T9428] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1033.322064][ T9428] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1033.397616][ T9425] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1033.397713][ T9425] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1034.853572][T16323] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1035.271062][T16323] veth0_vlan: entered promiscuous mode
[ 1035.350105][T16323] veth1_vlan: entered promiscuous mode
[ 1036.688713][T16323] veth0_macvtap: entered promiscuous mode
[ 1036.941355][T16323] veth1_macvtap: entered promiscuous mode
[ 1037.123403][T16323] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1037.196961][T16323] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1037.297102][ T9414] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1037.357147][ T9414] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1037.490624][ T9414] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1037.570302][ T9414] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1038.650453][ T9417] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1038.720945][ T9417] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1039.179805][ T9417] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1039.219042][ T9417] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1039.789450][T16620] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1039.822482][T16599] openvswitch: ovs_ÿþ: Dropping previously announced user features
[ 1050.781204][T16699] can: request_module (can-proto-0) failed.
[ 1052.448199][T16716] ubi: mtd0 is already attached to ubi0
[ 1055.699843][T16739] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1055.735270][T16739] block nbd1: shutting down sockets
[ 1056.697356][   T30] audit: type=1800 audit(6050170452.501:57): pid=16744 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2385" name="bus" dev="tmpfs" ino=40 res=0 errno=0
[ 1057.411822][T16744] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1057.451119][T16744] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1057.457380][T16744] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1057.543794][T16744] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1057.607399][T16744] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1057.760205][T16744] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1058.298003][T16760] binder: 16758:16760 ioctl c0046209 0 returned -22
[ 1058.999287][ T5868] Bluetooth: hci0: command 0x0406 tx timeout
[ 1059.479374][ T5868] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1059.485666][T11526] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1059.563603][ T5868] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1060.642041][T16786] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2397'.
[ 1061.345890][T16786] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1061.404972][T16786] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1061.447635][T16786] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1061.476845][T16786] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1061.639009][ T5868] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1063.721804][ T5868] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1064.480263][T16809] ubi: mtd0 is already attached to ubi0
[ 1064.685645][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[ 1064.692097][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[ 1067.692677][T16839] ubi: mtd0 is already attached to ubi0
[ 1067.868513][T16843] ubi: mtd0 is already attached to ubi0
[ 1070.722266][T16875] ubi: mtd0 is already attached to ubi0
[ 1074.185973][T11526] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1074.197579][T11526] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1074.206325][T11526] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1074.230691][T11526] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1074.238814][T11526] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1076.279214][T11526] Bluetooth: hci2: command tx timeout
[ 1076.701657][ T9421] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1077.492851][ T9421] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1078.139317][ T9421] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1078.167892][T16971] ubi: mtd0 is already attached to ubi0
[ 1078.317773][T16924] chnl_net:caif_netlink_parms(): no params data found
[ 1078.359272][T11526] Bluetooth: hci2: command tx timeout
[ 1078.640321][ T9421] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1078.792031][T16955] openvswitch: ovs_ÿþ: Dropping previously announced user features
[ 1079.473152][T16979] FAULT_INJECTION: forcing a failure.
[ 1079.473152][T16979] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1079.653776][T16979] CPU: 0 UID: 0 PID: 16979 Comm: syz.4.2428 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[ 1079.653818][T16979] Tainted: [U]=USER
[ 1079.653826][T16979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1079.653840][T16979] Call Trace:
[ 1079.653848][T16979]  <TASK>
[ 1079.653857][T16979]  dump_stack_lvl+0x16c/0x1f0
[ 1079.653892][T16979]  should_fail_ex+0x512/0x640
[ 1079.653939][T16979]  get_futex_key+0x1d0/0x1560
[ 1079.653972][T16979]  ? __pfx_get_futex_key+0x10/0x10
[ 1079.654011][T16979]  futex_wake+0xea/0x530
[ 1079.654047][T16979]  ? rcu_is_watching+0x12/0xc0
[ 1079.654072][T16979]  ? __pfx_futex_wake+0x10/0x10
[ 1079.654111][T16979]  ? kmem_cache_free+0x2d1/0x4d0
[ 1079.654137][T16979]  ? fd_install+0x225/0x750
[ 1079.654161][T16979]  ? putname+0x154/0x1a0
[ 1079.654199][T16979]  do_futex+0x1e3/0x350
[ 1079.654230][T16979]  ? __pfx_do_futex+0x10/0x10
[ 1079.654268][T16979]  __x64_sys_futex+0x1e0/0x4c0
[ 1079.654301][T16979]  ? __x64_sys_openat+0x174/0x210
[ 1079.654340][T16979]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1079.654383][T16979]  do_syscall_64+0xcd/0x490
[ 1079.654427][T16979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1079.654451][T16979] RIP: 0033:0x7f3a3358ebe9
[ 1079.654471][T16979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1079.654494][T16979] RSP: 002b:00007f3a317f60e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1079.654516][T16979] RAX: ffffffffffffffda RBX: 00007f3a337b6098 RCX: 00007f3a3358ebe9
[ 1079.654532][T16979] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3a337b609c
[ 1079.654547][T16979] RBP: 00007f3a337b6090 R08: 00007f3a34320000 R09: 0000000000000000
[ 1079.654561][T16979] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[ 1079.654575][T16979] R13: 00007f3a337b6128 R14: 00007ffee28bca40 R15: 00007ffee28bcb28
[ 1079.654604][T16979]  </TASK>
[ 1080.454392][T16924] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1080.509539][T16984] binder: 16983:16984 ioctl c0046209 0 returned -22
[ 1080.526482][T16924] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1080.542861][T11526] Bluetooth: hci2: command tx timeout
[ 1080.591873][T16924] bridge_slave_0: entered allmulticast mode
[ 1080.650286][T16924] bridge_slave_0: entered promiscuous mode
[ 1080.710740][T16924] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1080.718361][T16924] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1080.809398][T16924] bridge_slave_1: entered allmulticast mode
[ 1080.818164][T16924] bridge_slave_1: entered promiscuous mode
[ 1081.135381][T16984] sp0: Synchronizing with TNC
[ 1081.165057][T16924] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1081.223723][T16983] [U] è
[ 1081.250121][T16924] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1081.654930][T16924] team0: Port device team_slave_0 added
[ 1081.738447][T16924] team0: Port device team_slave_1 added
[ 1082.256828][ T9421] team0: left allmulticast mode
[ 1082.301279][ T9421] team_slave_0: left allmulticast mode
[ 1082.380436][ T9421] team_slave_1: left allmulticast mode
[ 1082.386146][ T9421] team0: left promiscuous mode
[ 1082.470017][ T9421] team_slave_0: left promiscuous mode
[ 1082.475667][ T9421] team_slave_1: left promiscuous mode
[ 1082.567748][T17006] ==================================================================
[ 1082.575889][T17006] BUG: KASAN: slab-use-after-free in force_devcd_write+0x312/0x340
[ 1082.583815][T17006] Read of size 8 at addr ffff888028163000 by task syz.5.2433/17006
[ 1082.591743][T17006] 
[ 1082.594090][T17006] CPU: 0 UID: 0 PID: 17006 Comm: syz.5.2433 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[ 1082.594137][T17006] Tainted: [U]=USER
[ 1082.594146][T17006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1082.594161][T17006] Call Trace:
[ 1082.594184][T17006]  <TASK>
[ 1082.594194][T17006]  dump_stack_lvl+0x116/0x1f0
[ 1082.594230][T17006]  print_report+0xcd/0x630
[ 1082.594262][T17006]  ? __virt_addr_valid+0x81/0x610
[ 1082.594293][T17006]  ? __phys_addr+0xe8/0x180
[ 1082.594323][T17006]  ? force_devcd_write+0x312/0x340
[ 1082.594354][T17006]  kasan_report+0xe0/0x110
[ 1082.594385][T17006]  ? force_devcd_write+0x312/0x340
[ 1082.594420][T17006]  force_devcd_write+0x312/0x340
[ 1082.594450][T17006]  ? __pfx_force_devcd_write+0x10/0x10
[ 1082.594483][T17006]  ? __debugfs_file_get+0x1fe/0x840
[ 1082.594578][T17006]  ? __pfx___debugfs_file_get+0x10/0x10
[ 1082.594619][T17006]  full_proxy_write+0x12e/0x1a0
[ 1082.594657][T17006]  ? __pfx_full_proxy_write+0x10/0x10
[ 1082.594695][T17006]  vfs_write+0x29d/0x11d0
[ 1082.594725][T17006]  ? __pfx___mutex_lock+0x10/0x10
[ 1082.594756][T17006]  ? __pfx_vfs_write+0x10/0x10
[ 1082.594787][T17006]  ? __fget_files+0x20e/0x3c0
[ 1082.594816][T17006]  ksys_write+0x12a/0x250
[ 1082.594843][T17006]  ? __pfx_ksys_write+0x10/0x10
[ 1082.594875][T17006]  do_syscall_64+0xcd/0x490
[ 1082.594907][T17006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1082.594933][T17006] RIP: 0033:0x7fa09f58ebe9
[ 1082.594951][T17006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1082.594975][T17006] RSP: 002b:00007fa0a04cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1082.594998][T17006] RAX: ffffffffffffffda RBX: 00007fa09f7b5fa0 RCX: 00007fa09f58ebe9
[ 1082.595015][T17006] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000005
[ 1082.595029][T17006] RBP: 00007fa09f611e19 R08: 0000000000000000 R09: 0000000000000000
[ 1082.595044][T17006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1082.595059][T17006] R13: 00007fa09f7b6038 R14: 00007fa09f7b5fa0 R15: 00007ffd9f8ccd38
[ 1082.595083][T17006]  </TASK>
[ 1082.595090][T17006] 
[ 1082.812793][T17006] Allocated by task 5864:
[ 1082.817129][T17006]  kasan_save_stack+0x33/0x60
[ 1082.821847][T17006]  kasan_save_track+0x14/0x30
[ 1082.826823][T17006]  __kasan_kmalloc+0xaa/0xb0
[ 1082.831529][T17006]  vhci_open+0x4c/0x430
[ 1082.835801][T17006]  misc_open+0x35a/0x420
[ 1082.840084][T17006]  chrdev_open+0x231/0x6a0
[ 1082.844922][T17006]  do_dentry_open+0x97f/0x1530
[ 1082.849970][T17006]  vfs_open+0x82/0x3f0
[ 1082.854078][T17006]  path_openat+0x1de4/0x2cb0
[ 1082.858970][T17006]  do_filp_open+0x20b/0x470
[ 1082.863611][T17006]  do_sys_openat2+0x11b/0x1d0
[ 1082.868340][T17006]  __x64_sys_openat+0x174/0x210
[ 1082.873238][T17006]  do_syscall_64+0xcd/0x490
[ 1082.878352][T17006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1082.884266][T17006] 
[ 1082.886591][T17006] Freed by task 16608:
[ 1082.890675][T17006]  kasan_save_stack+0x33/0x60
[ 1082.895382][T17006]  kasan_save_track+0x14/0x30
[ 1082.900081][T17006]  kasan_save_free_info+0x3b/0x60
[ 1082.905146][T17006]  __kasan_slab_free+0x60/0x70
[ 1082.909949][T17006]  kfree+0x2b4/0x4d0
[ 1082.914005][T17006]  vhci_release+0xbb/0xf0
[ 1082.918498][T17006]  __fput+0x3ff/0xb70
[ 1082.922543][T17006]  task_work_run+0x150/0x240
[ 1082.927553][T17006]  do_exit+0x86f/0x2bf0
[ 1082.932713][T17006]  do_group_exit+0xd3/0x2a0
[ 1082.937253][T17006]  get_signal+0x2673/0x26d0
[ 1082.941781][T17006]  arch_do_signal_or_restart+0x8f/0x790
[ 1082.947368][T17006]  irqentry_exit_to_user_mode+0x12a/0x270
[ 1082.953136][T17006]  asm_exc_invalid_op+0x1a/0x20
[ 1082.958006][T17006] 
[ 1082.960346][T17006] The buggy address belongs to the object at ffff888028163000
[ 1082.960346][T17006]  which belongs to the cache kmalloc-1k of size 1024
[ 1082.974591][T17006] The buggy address is located 0 bytes inside of
[ 1082.974591][T17006]  freed 1024-byte region [ffff888028163000, ffff888028163400)
[ 1082.988322][T17006] 
[ 1082.990659][T17006] The buggy address belongs to the physical page:
[ 1082.997077][T17006] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888028163800 pfn:0x28160
[ 1083.007154][T17006] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1083.016050][T17006] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[ 1083.024570][T17006] page_type: f5(slab)
[ 1083.028567][T17006] raw: 00fff00000000240 ffff88801b841dc0 ffffea0001ee7610 ffffea0001415c10
[ 1083.037167][T17006] raw: ffff888028163800 000000000010000d 00000000f5000000 0000000000000000
[ 1083.045892][T17006] head: 00fff00000000240 ffff88801b841dc0 ffffea0001ee7610 ffffea0001415c10
[ 1083.055191][T17006] head: ffff888028163800 000000000010000d 00000000f5000000 0000000000000000
[ 1083.064078][T17006] head: 00fff00000000003 ffffea0000a05801 00000000ffffffff 00000000ffffffff
[ 1083.072768][T17006] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 1083.081559][T17006] page dumped because: kasan: bad access detected
[ 1083.088008][T17006] page_owner tracks the page as allocated
[ 1083.093752][T17006] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 36, tgid 36 (kworker/u8:2), ts 16110951865, free_ts 0
[ 1083.112096][T17006]  post_alloc_hook+0x1c0/0x230
[ 1083.116884][T17006]  get_page_from_freelist+0x132b/0x38e0
[ 1083.122542][T17006]  __alloc_frozen_pages_noprof+0x261/0x23f0
[ 1083.128678][T17006]  new_slab+0x94/0x330
[ 1083.132774][T17006]  ___slab_alloc+0xcf2/0x1740
[ 1083.137583][T17006]  __slab_alloc.constprop.0+0x56/0xb0
[ 1083.142987][T17006]  __kmalloc_cache_node_noprof+0x100/0x420
[ 1083.149080][T17006]  blk_mq_alloc_and_init_hctx+0x639/0x11c0
[ 1083.155481][T17006]  __blk_mq_realloc_hw_ctxs+0x495/0x610
[ 1083.161149][T17006]  blk_mq_init_allocated_queue+0x3af/0x1240
[ 1083.167069][T17006]  blk_mq_alloc_queue+0x1bb/0x280
[ 1083.172123][T17006]  scsi_alloc_sdev+0x888/0xd70
[ 1083.176901][T17006]  scsi_probe_and_add_lun+0x76b/0xd80
[ 1083.182289][T17006]  __scsi_scan_target+0x1e8/0x580
[ 1083.187349][T17006]  scsi_scan_channel+0x149/0x1e0
[ 1083.192308][T17006]  scsi_scan_host_selected+0x302/0x400
[ 1083.197786][T17006] page_owner free stack trace missing
[ 1083.203173][T17006] 
[ 1083.205523][T17006] Memory state around the buggy address:
[ 1083.211698][T17006]  ffff888028162f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1083.219773][T17006]  ffff888028162f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1083.227862][T17006] >ffff888028163000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1083.236149][T17006]                    ^
[ 1083.240250][T17006]  ffff888028163080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1083.248338][T17006]  ffff888028163100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1083.256420][T17006] ==================================================================
[ 1083.269910][ T9421] bridge0: port 3(team0) entered disabled state
[ 1083.509881][T11526] Bluetooth: hci2: command tx timeout
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1083.761518][ T9421] bridge_slave_1: left allmulticast mode
[ 1083.767304][ T9421] bridge_slave_1: left promiscuous mode
[ 1083.857236][ T9421] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1084.201613][ T9421] bridge_slave_0: left allmulticast mode
[ 1084.251428][ T9421] bridge_slave_0: left promiscuous mode
[ 1084.257235][ T9421] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1085.369916][T17006] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1085.377648][T17006] CPU: 0 UID: 0 PID: 17006 Comm: syz.5.2433 Tainted: G     U              6.17.0-rc1-syzkaller-00038-g0cc53520e68b #0 PREEMPT(full) 
[ 1085.392082][T17006] Tainted: [U]=USER
[ 1085.396651][T17006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1085.406721][T17006] Call Trace:
[ 1085.410118][T17006]  <TASK>
[ 1085.413085][T17006]  dump_stack_lvl+0x3d/0x1f0
[ 1085.418387][T17006]  vpanic+0x6e8/0x7a0
[ 1085.422452][T17006]  ? __pfx_vpanic+0x10/0x10
[ 1085.427006][T17006]  ? __pfx_vprintk_emit+0x10/0x10
[ 1085.432088][T17006]  ? force_devcd_write+0x312/0x340
[ 1085.437414][T17006]  panic+0xca/0xd0
[ 1085.441196][T17006]  ? __pfx_panic+0x10/0x10
[ 1085.445662][T17006]  ? force_devcd_write+0x312/0x340
[ 1085.450983][T17006]  ? preempt_schedule_common+0x44/0xc0
[ 1085.456477][T17006]  ? preempt_schedule_thunk+0x16/0x30
[ 1085.461925][T17006]  check_panic_on_warn+0xab/0xb0
[ 1085.467094][T17006]  end_report+0x107/0x170
[ 1085.471515][T17006]  kasan_report+0xee/0x110
[ 1085.476251][T17006]  ? force_devcd_write+0x312/0x340
[ 1085.481409][T17006]  force_devcd_write+0x312/0x340
[ 1085.486435][T17006]  ? __pfx_force_devcd_write+0x10/0x10
[ 1085.492012][T17006]  ? __debugfs_file_get+0x1fe/0x840
[ 1085.497249][T17006]  ? __pfx___debugfs_file_get+0x10/0x10
[ 1085.502859][T17006]  full_proxy_write+0x12e/0x1a0
[ 1085.507768][T17006]  ? __pfx_full_proxy_write+0x10/0x10
[ 1085.513288][T17006]  vfs_write+0x29d/0x11d0
[ 1085.517649][T17006]  ? __pfx___mutex_lock+0x10/0x10
[ 1085.522704][T17006]  ? __pfx_vfs_write+0x10/0x10
[ 1085.527496][T17006]  ? __fget_files+0x20e/0x3c0
[ 1085.532202][T17006]  ksys_write+0x12a/0x250
[ 1085.536661][T17006]  ? __pfx_ksys_write+0x10/0x10
[ 1085.541555][T17006]  do_syscall_64+0xcd/0x490
[ 1085.546092][T17006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1085.552004][T17006] RIP: 0033:0x7fa09f58ebe9
[ 1085.556436][T17006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1085.576070][T17006] RSP: 002b:00007fa0a04cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1085.584507][T17006] RAX: ffffffffffffffda RBX: 00007fa09f7b5fa0 RCX: 00007fa09f58ebe9
[ 1085.592665][T17006] RDX: 000000000000000e RSI: 0000000000000000 RDI: 0000000000000005
[ 1085.602841][T17006] RBP: 00007fa09f611e19 R08: 0000000000000000 R09: 0000000000000000
[ 1085.612846][T17006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1085.620857][T17006] R13: 00007fa09f7b6038 R14: 00007fa09f7b5fa0 R15: 00007ffd9f8ccd38
[ 1085.629555][T17006]  </TASK>
[ 1085.632686][T17006] Kernel Offset: disabled
[ 1085.637089][T17006] Rebooting in 86400 seconds..