last executing test programs:

7.844072215s ago: executing program 1 (id=677):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000a, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x30008000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000229bd7000ffffdf251300000002000000060000000500050008ec000005001d0004000000050017000d000000"], 0x44}}, 0x480)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="e0000000", @ANYRESOCT=r0, @ANYBLOB="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"], 0xe0}}, 0x80)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xb)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_GTP_CMD_NEWPDP(r2, 0x0, 0x8040)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000080)
r3 = socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xb, r5)
r6 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000080), 0x18100, 0x0)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_GET(r3, &(0x7f0000000580)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fbdbdf250d0000001c00018008000100", @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="38000180080003000100000008000308cb7b0ea28d4ae300", @ANYRES32=0x0, @ANYBLOB="140002007663616e3000000000000000000000000800030000360700"], 0x68}, 0x1, 0x0, 0x0, 0x4008801}, 0x4010)
recvmmsg$auto(r6, &(0x7f0000000280)={{&(0x7f0000000100)="03246b7b0b42c708578f8410691bfd7296017d30088d5677369f6b7caa110026740700000047a8f8bf6b097da98d474044ea15f3a792a30abf2b9086ab470df67c6cc3de43755a5557c8b88f3113f2f346d34026ad68753d16a4683d65abc0268f6365d61c02a82f67f15489a3e9f238f9cf5aa0327862eb54c0d5c0c5a9162165666573120c14c554a8decb3e39a9b5ad76867d8e92b5baacafa079a36021813f066fd8f554e04c7ec810cb", 0x5, &(0x7f00000001c0)={0x0, 0x9}, 0xb, &(0x7f0000000200)="a25faeaabefaf2cba143ffe68b90cabdfc52af366cab3eb0fa827263d8f2f32f7bde56ac37c396cbc154d2576097cc9e3c76f9563620aef4c9f56a8313aade1f1ef54b3de7ffcf901b740e29aaf1e3", 0x1, 0x9f5}, 0x8}, 0x91f7, 0x4, &(0x7f00000002c0)={0xa8c1, 0x1})
ioctl$auto_KVM_CREATE_VM(r4, 0x4004ae8b, 0x80ffff)
madvise$auto(0x0, 0x2003f0, 0x17)
connect$auto(0xffffffffffffffff, 0x0, 0x55)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0)

7.257783233s ago: executing program 2 (id=679):
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x184)
ioctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
r0 = socket(0x2, 0x1, 0x106)
getsockopt$auto(r0, 0x29, 0x4b, 0x0, 0x0)
readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)

6.246845456s ago: executing program 2 (id=681):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0xfffd, 0x8000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
sched_get_priority_min$auto(0x40)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x5f}, 0x1, 0x0, 0x0, 0x400c810}, 0x8800)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
bpf$auto(0x0, &(0x7f0000000340)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_id=0xfa, 0x80}, 0x96)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x4b4d, r1)

6.243981934s ago: executing program 1 (id=682):
socket(0xa, 0x2, 0x0)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
nanosleep$auto(&(0x7f0000000180)={0x0, 0x44d4}, 0x0)
getpid()
clock_nanosleep$auto(0x9, 0x0, 0x0, 0x0)
socketpair$auto(0x6, 0x3, 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001d, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x8)
r1 = socket(0x22, 0x3, 0x1)
connect$auto(r1, 0x0, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x9, 0x0)
shutdown$auto(0x200000003, 0x2)

6.164719404s ago: executing program 3 (id=683):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000a, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x30008000}, 0xc, &(0x7f00000003c0)={0x0, 0x44}}, 0x480)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="e0000000", @ANYRESOCT=r0, @ANYBLOB="000225bd7000fcdbdf251300000005001900ff000000050031000200000005002100490000001f00160041257fbd06fe8d9e1b53db4978a05fb198fa34ef11ff48b64add810084001e00f85ee71f959a30e226bb614d465893a1435593333f77e38723f28f1204b4ae1c19758c5c25bb58ad8689e4e12783e94906ac1ec1e3c10400000000000000db3e0f9adebdd26c318ebe557360648ed598e033c398603d709bea39bbe8d8425de6e0b87d1452e8bb151d93069acb3629e7bca9004e9770a971b508116370d78437050018000700000005003400cd000000e2b5bec4b31af4caef30047aaf9b95bb5fcd5a8b64b6746d7b0e98ea3c7692a45576c00ee435f88f6cf6f55e7f180ae0e90ce592bcacb5510c2d71b890fb409dde44b9cf51f507fd29faf675af66ee48a2b2dbcd407e048dfd12790242b2cdc60ff7782db8b7b076960829bb2cca16bdfe47530562b298fd0392127745676d5cb492d9728aefcb7337"], 0xe0}}, 0x80)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xb)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_GTP_CMD_NEWPDP(r1, 0x0, 0x8040)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000080)
r2 = socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$auto(0x3, 0xb, r4)
r5 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000080), 0x18100, 0x0)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_GET(r2, &(0x7f0000000580)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fbdbdf250d0000001c00018008000100", @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="38000180080003000100000008000308cb7b0ea28d4ae300", @ANYRES32=0x0, @ANYBLOB="140002007663616e3000000000000000000000000800030000360700"], 0x68}, 0x1, 0x0, 0x0, 0x4008801}, 0x4010)
recvmmsg$auto(r5, &(0x7f0000000280)={{&(0x7f0000000100)="03246b7b0b42c708578f8410691bfd7296017d30088d5677369f6b7caa110026740700000047a8f8bf6b097da98d474044ea15f3a792a30abf2b9086ab470df67c6cc3de43755a5557c8b88f3113f2f346d34026ad68753d16a4683d65abc0268f6365d61c02a82f67f15489a3e9f238f9cf5aa0327862eb54c0d5c0c5a9162165666573120c14c554a8decb3e39a9b5ad76867d8e92b5baacafa079a36021813f066fd8f554e04c7ec810cb", 0x5, &(0x7f00000001c0)={0x0, 0x9}, 0xb, &(0x7f0000000200)="a25faeaabefaf2cba143ffe68b90cabdfc52af366cab3eb0fa827263d8f2f32f7bde56ac37c396cbc154d2576097cc9e3c76f9563620aef4c9f56a8313aade1f1ef54b3de7ffcf901b740e29aaf1e3", 0x1, 0x9f5}, 0x8}, 0x91f7, 0x4, &(0x7f00000002c0)={0xa8c1, 0x1})
ioctl$auto_KVM_CREATE_VM(r3, 0x4004ae8b, 0x80ffff)
madvise$auto(0x0, 0x2003f0, 0x17)
connect$auto(0xffffffffffffffff, 0x0, 0x55)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0)

5.157588488s ago: executing program 2 (id=685):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x68a80, 0x0)
ioctl$auto(r0, 0x400454ca, 0xffffffffffffffff)
mmap$auto(0x1fe, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0xc0080, 0x0)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
ioctl$auto_FIDEDUPERANGE(r1, 0xc0189436, 0x8000)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
rename$auto(&(0x7f00000000c0)=':,\x00', 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
rename$auto(&(0x7f00000001c0)=':,/file0\x00', 0x0)
r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r4, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_NAME={0x8, 0x1, 'HfR\x00'}, @OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x9}]}, 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x80)
setgroups$auto(0x0, 0x0)
r5 = socket(0x1d, 0x3, 0x1)
setsockopt$auto(r5, 0x65, 0x1, 0x0, 0x800)
pread64$auto(r5, &(0x7f00000001c0)='\x00', 0xf4, 0x8000000000000000)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
write$auto(0xca, &(0x7f00000002c0)='\x04\x0fU\r\xfb\xff\xf6[L\xc8\xbe\x94\xf2\xa2\x00\x00v\xccX\xc5er\x83\xc3\x0e\xce\x98oHAF$\x90\xe3,h\x05\xbe^\x86\xe9)i\xc8\xd5@\x8d\xba\x8c\xc1\xe6l\x81@\xf4i\xf0\xd8\xff\x81\xc2fr\x84)\x88\f\xb8\x06\xea4t(B^\xa1M\xee\xc3\xd1\xb2\x9f\xe6\xe5j\x19\x00\b\x98\x82\xd7\xee\xae3\x90\x1fI\x1e(\x90\x92\x8aV\xbe\xc7\x01\xdc\xbel$\x8e@\x14\xff\xff\x87\xba[\xae\x1d\xef\xab\xf7\xb9\vzS\xae', 0x2d9)

4.36105747s ago: executing program 0 (id=686):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
socket(0x2, 0x801, 0x106)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0)
inotify_add_watch$auto(r1, &(0x7f00000001c0)='./file0\x00', 0x1)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe4643, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x501, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000200), 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x1ff)
r3 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000100), 0xffffffffffffffff)
syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_VENDOR(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_LOOP_CTL_ADD(r3, 0x4c80, 0xfffffffffffffffd)

4.36035115s ago: executing program 1 (id=687):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x2, 0x1, 0x106)
r0 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r0, 0x84, 0x70, 0x0, &(0x7f0000000240)=0x10009b)
r1 = getsockopt$auto(0xffffffffffffffff, 0x110, 0x9, 0xffffffffffffffff, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x1e, 0x805, 0x0)
read$auto_deferred_devs_fops_(r1, &(0x7f0000000080)=""/243, 0xf3)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x2c, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r5, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r5)
read$auto(r5, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r1)
sendmsg$auto_NL80211_CMD_SET_STATION(r3, &(0x7f0000000980)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000280)={0x680, r6, 0x4, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa9}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x99, 0xac, "600f86e0caacb08c7fc6b4014457376fb1458652584f462b1d0a7e80f8cd812bb1ca6cc96fea0345b21a77eb5c45b1d8f337ecc4fad6a1a1fb4935699aa0bb333469e6e7c8cf71383ff4f4c1c2254b87dfd58bfe433ccafc548785b09187077b8f7755c6aceb0c54ba0c806a04d1ae5321b4b902b5443501c22cf7866a70470ed9e2f1b5860b826ae0aeabd298fee59ab992781e53"}, @NL80211_ATTR_TID_CONFIG={0x5c8, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x8}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1000}]}, {0x310, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x9}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xed}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x2fc, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE={0xcd, 0x5, "6ae0aecff52a1accec7fa3c4b6aefab81aded08b7a0554a87d3004806aadf941f89cae75a5246167dd99c6c49583f681af5d90e344e766d115d4300193d0fe61b34823df3a13d685f8005d0c50e1371b2362ea49da775ce767d65e7801cbaff546943655bb2e0e48ee08443370b769b29a54c8b0a5c1d077c70f462eada18d4265e2f58808e37c7272fb453a5112644e485d51f5380ab89c00bff3882489c4bcde82d8353656a430e7ac71a17b28dd3b3e4c1d38921cd934921100775030866cf0ff1a107e2a368799"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x4}, @NL80211_TXRATE_HE={0x81, 0x5, "c8ac9130ce822f8c7c4b5e8e73ce3ebfe8e1bcca851620d51be5b6863da8b0b7739340f4a0ba8cf44995f38dbb04252a9c5ad622865072eac27b20a965fb29fa6e8c1aeda20fdba33289922dc355af7e3e70f97a6f508a15d2a8b411d44adcea37df9eb7e9d174f0bacb860e2203160b7458d899fd4a0797e9e932609f"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x80}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x7}, @NL80211_TXRATE_HE={0xdc, 0x5, "2c40be7f6a470bd8ea3a39680250af528756185736dfe15ca9fc47e50d271fcd0f774d3dcfe4a9a9894c3ab3e12340cc8ca962aa7a6667cf7530d839c7b18a5f519373c702909c4f20929b5609dae45d6676fe7edd3a9552a22dbd9568c67be65f19fff7a42ff40fd24050810f79278a90d0e013ff9b7406e5adf085433b0986942e1b99d1056a0eddd2106e3c03718388cb640a1da7e37dc41220fe826c22e656419876b376a1388d9c24103714699aa4a4dc86e944d1a20a3fa0d2de91d731eac16e0b05173764c81ff5b872f3e690e97782abce6c8663"}, @NL80211_TXRATE_HE={0x87, 0x5, "776d3e9bb675fb914a211369fad69b5150b477cad002ca970156ca94f6f62e12ec5dea08c048bdc27a3aa0bd1de30f541ba3852681b61b18bcb1fd4ca21702c81445d67ed7c7b4c6c3254310cd5dba3d29b39d0dd80186f2c3e3bc5fd132b43f2f91adc4c4860d65af4247d217400f26298b2b0189ba5b38e6587e2fdb895e4e0e5414"}, @NL80211_TXRATE_HT={0x26, 0x2, "1472a585a4aff42888ec5c65da9ab7fdf24eb2c27d54b3789df41f29705090ac119e"}]}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x101}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xf3}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xfe}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x10}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x81}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x5a}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x7}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x7}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x1d4, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0xc}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE={0x31, 0x5, "ed068ee78482b5b9b1e6b9c738a34ec2e8c63c4e842635533b73ba34f7c134e7923d0dc60e405a5b7b3c9adba3"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xb7}, @NL80211_TXRATE_HT={0x3b, 0x2, "6710d193b898ddda0da095aa2d275e78b30193375c58b2acc47c039fd6292b49844440492d0194e5bd204022ff9f9a8fd81f06ddead810"}]}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x7}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x138, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x8c, 0x3, "81a45833b0798b69438c16d452b76add585fb34533368ac136c62000a6bfe8725e9afb0e4b876e95f4877b100fbed5a268d8b2f545dae7c002c716c8b00e46d26d4235f6a004ab977a7292a997c20ac1dbeb6a4e3d6816597c4603e87690f315083c1f97e014e84d9fbda7993f61124f4eefdfd76d81c21aade3b046c796f1902eb1933040052d27"}, @NL80211_TXRATE_HE={0x33, 0x5, "362520778508b33d8b37c159353d5dd104bd3d5346b965445a24617aee08a1d6d391c1bcf5ec847c4ea09c0bbd190e"}, @NL80211_TXRATE_HT={0xa, 0x2, "761382f5dc25"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xa4}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x8a}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, "4b3e7c247011778a0f8a365be1541fda8c42b689c726a1f449"}, @NL80211_TXRATE_GI={0x5, 0x4, 0x13}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, "ea025e2ae64971f64f9584fde3eb54824b9ca54d72752cb9f8"}]}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x7f}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x7fff}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x96}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x9}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x4}]}]}]}, 0x680}, 0x1, 0x0, 0x0, 0x80}, 0x40080)
sysfs$auto(0x2, 0x1a, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x3, &(0x7f0000000000)='4\x93f\x06\x04\x00\x00', &(0x7f0000000040), 0x7f)

4.360096755s ago: executing program 3 (id=688):
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video37\x00', 0x8a240, 0x0)
mmap$auto(0x0, 0x40000c, 0x45bd, 0x9b72, 0x2, 0x8000)
r0 = epoll_create$auto(0x4)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2200, 0x0)
socket(0x2, 0x1, 0x106)
getsockopt$auto(r0, 0xfffffff4, 0x100004, 0xfffffffffffffffe, 0xfffffffffffffffd)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101e81, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdc, 0xeb5, 0x401, 0x41)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000180)=""/68, 0x44)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r2)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd3e, 0x1, 0x948b, 0x3, 0x95f4da0a, 0xffffffffffffffff, 0x3, 0x62, 0x80000001, 0x7, 0x6d3f, 0x9, 0x8, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000001ff, 0x4, 0xd, 0x1, 0x3, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000023, 0x7, 0x6d3e, 0xd, 0xd, 0x1]}, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = getpid()
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0)
read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f0000000000)=""/194, 0xc2)
select$auto(0x5, &(0x7f0000000080)={[0x400020000008, 0xfffffffffffffffc, 0x7, 0x6, 0xc, 0x3, 0x3, 0x1ffe000, 0xcad, 0x2, 0x9, 0xf, 0xa657, 0x202, 0xd3, 0x1]}, 0x0, 0x0, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x6, 0x0)
close_range$auto(0x2, 0xa, 0x0)

4.082458013s ago: executing program 0 (id=690):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000a, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x30008000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000229bd7000ffffdf251300000002000000060000000500050008ec000005001d0004000000050017000d000000"], 0x44}}, 0x480)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="e0000000", @ANYRESOCT=r0, @ANYBLOB="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"], 0xe0}}, 0x80)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xb)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_GTP_CMD_NEWPDP(r2, 0x0, 0x8040)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000080)
r3 = socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xb, r5)
r6 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000080), 0x18100, 0x0)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_GET(r3, &(0x7f0000000580)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fbdbdf250d0000001c00018008000100", @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="38000180080003000100000008000308cb7b0ea28d4ae300", @ANYRES32=0x0, @ANYBLOB="140002007663616e3000000000000000000000000800030000360700"], 0x68}, 0x1, 0x0, 0x0, 0x4008801}, 0x4010)
recvmmsg$auto(r6, &(0x7f0000000280)={{&(0x7f0000000100)="03246b7b0b42c708578f8410691bfd7296017d30088d5677369f6b7caa110026740700000047a8f8bf6b097da98d474044ea15f3a792a30abf2b9086ab470df67c6cc3de43755a5557c8b88f3113f2f346d34026ad68753d16a4683d65abc0268f6365d61c02a82f67f15489a3e9f238f9cf5aa0327862eb54c0d5c0c5a9162165666573120c14c554a8decb3e39a9b5ad76867d8e92b5baacafa079a36021813f066fd8f554e04c7ec810cb", 0x5, &(0x7f00000001c0)={0x0, 0x9}, 0xb, &(0x7f0000000200)="a25faeaabefaf2cba143ffe68b90cabdfc52af366cab3eb0fa827263d8f2f32f7bde56ac37c396cbc154d2576097cc9e3c76f9563620aef4c9f56a8313aade1f1ef54b3de7ffcf901b740e29aaf1e3", 0x1, 0x9f5}, 0x8}, 0x91f7, 0x4, &(0x7f00000002c0)={0xa8c1, 0x1})
ioctl$auto_KVM_CREATE_VM(r4, 0x4004ae8b, 0x80ffff)
madvise$auto(0x0, 0x2003f0, 0x17)
connect$auto(0xffffffffffffffff, 0x0, 0x55)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0)

3.937202363s ago: executing program 2 (id=691):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000a, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x30008000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000229bd7000ffffdf251300000002000000060000000500050008ec000005001d0004000000050017000d000000"], 0x44}}, 0x480)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="e0000000", @ANYRESOCT=r0, @ANYBLOB="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"], 0xe0}}, 0x80)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xb)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_GTP_CMD_NEWPDP(r2, 0x0, 0x8040)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000080)
r3 = socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xb, r5)
r6 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000080), 0x18100, 0x0)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_GET(r3, &(0x7f0000000580)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fbdbdf250d0000001c00018008000100", @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="38000180080003000100000008000308cb7b0ea28d4ae300", @ANYRES32=0x0, @ANYBLOB="140002007663616e3000000000000000000000000800030000360700"], 0x68}, 0x1, 0x0, 0x0, 0x4008801}, 0x4010)
recvmmsg$auto(r6, &(0x7f0000000280)={{&(0x7f0000000100)="03246b7b0b42c708578f8410691bfd7296017d30088d5677369f6b7caa110026740700000047a8f8bf6b097da98d474044ea15f3a792a30abf2b9086ab470df67c6cc3de43755a5557c8b88f3113f2f346d34026ad68753d16a4683d65abc0268f6365d61c02a82f67f15489a3e9f238f9cf5aa0327862eb54c0d5c0c5a9162165666573120c14c554a8decb3e39a9b5ad76867d8e92b5baacafa079a36021813f066fd8f554e04c7ec810cb", 0x5, &(0x7f00000001c0)={0x0, 0x9}, 0xb, &(0x7f0000000200)="a25faeaabefaf2cba143ffe68b90cabdfc52af366cab3eb0fa827263d8f2f32f7bde56ac37c396cbc154d2576097cc9e3c76f9563620aef4c9f56a8313aade1f1ef54b3de7ffcf901b740e29aaf1e3", 0x1, 0x9f5}, 0x8}, 0x91f7, 0x4, &(0x7f00000002c0)={0xa8c1, 0x1})
ioctl$auto_KVM_CREATE_VM(r4, 0x4004ae8b, 0x80ffff)
madvise$auto(0x0, 0x2003f0, 0x17)
connect$auto(0xffffffffffffffff, 0x0, 0x55)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0)

3.065162388s ago: executing program 0 (id=692):
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x184)
ioctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x40000008000)
r0 = socket(0x2, 0x1, 0x106)
getsockopt$auto(r0, 0x29, 0x4b, 0x0, 0x0)
readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)

3.064706327s ago: executing program 1 (id=693):
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r0 = open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x2, 0x1, 0x106)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x300, 0x0)
listen$auto(0x3, 0x3fffff)
mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000)
vmsplice$auto(0xffffffffffffffff, 0x0, 0x6, 0x1)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f0000001380)={0x2, 0x0, [{0x10b, 0x400, 0xffffffffffffffff}]})
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffff7effffd01, &(0x7f00000001c0))
ioctl$auto_PROCMAP_QUERY(0xffffffffffffffff, 0xc0686611, 0x0)
write$auto_proc_projid_map_operations_base(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mtdblock0\x00', 0x14f642, 0x0)

3.063068111s ago: executing program 3 (id=694):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x2, 0x1, 0x106)
r0 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r0, 0x84, 0x70, 0x0, &(0x7f0000000240)=0x10009b)
r1 = getsockopt$auto(0xffffffffffffffff, 0x110, 0x9, 0xffffffffffffffff, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x1e, 0x805, 0x0)
read$auto_deferred_devs_fops_(r1, &(0x7f0000000080)=""/243, 0xf3)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x2c, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r5, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r5)
read$auto(r5, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r1)
sendmsg$auto_NL80211_CMD_SET_STATION(r3, &(0x7f0000000980)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000280)={0x67c, r6, 0x4, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa9}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x99, 0xac, "600f86e0caacb08c7fc6b4014457376fb1458652584f462b1d0a7e80f8cd812bb1ca6cc96fea0345b21a77eb5c45b1d8f337ecc4fad6a1a1fb4935699aa0bb333469e6e7c8cf71383ff4f4c1c2254b87dfd58bfe433ccafc548785b09187077b8f7755c6aceb0c54ba0c806a04d1ae5321b4b902b5443501c22cf7866a70470ed9e2f1b5860b826ae0aeabd298fee59ab992781e53"}, @NL80211_ATTR_TID_CONFIG={0x5c4, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x8}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1000}]}, {0x310, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x9}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xed}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x2fc, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE={0xcd, 0x5, "6ae0aecff52a1accec7fa3c4b6aefab81aded08b7a0554a87d3004806aadf941f89cae75a5246167dd99c6c49583f681af5d90e344e766d115d4300193d0fe61b34823df3a13d685f8005d0c50e1371b2362ea49da775ce767d65e7801cbaff546943655bb2e0e48ee08443370b769b29a54c8b0a5c1d077c70f462eada18d4265e2f58808e37c7272fb453a5112644e485d51f5380ab89c00bff3882489c4bcde82d8353656a430e7ac71a17b28dd3b3e4c1d38921cd934921100775030866cf0ff1a107e2a368799"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x4}, @NL80211_TXRATE_HE={0x81, 0x5, "c8ac9130ce822f8c7c4b5e8e73ce3ebfe8e1bcca851620d51be5b6863da8b0b7739340f4a0ba8cf44995f38dbb04252a9c5ad622865072eac27b20a965fb29fa6e8c1aeda20fdba33289922dc355af7e3e70f97a6f508a15d2a8b411d44adcea37df9eb7e9d174f0bacb860e2203160b7458d899fd4a0797e9e932609f"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x80}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x7}, @NL80211_TXRATE_HE={0xdc, 0x5, "2c40be7f6a470bd8ea3a39680250af528756185736dfe15ca9fc47e50d271fcd0f774d3dcfe4a9a9894c3ab3e12340cc8ca962aa7a6667cf7530d839c7b18a5f519373c702909c4f20929b5609dae45d6676fe7edd3a9552a22dbd9568c67be65f19fff7a42ff40fd24050810f79278a90d0e013ff9b7406e5adf085433b0986942e1b99d1056a0eddd2106e3c03718388cb640a1da7e37dc41220fe826c22e656419876b376a1388d9c24103714699aa4a4dc86e944d1a20a3fa0d2de91d731eac16e0b05173764c81ff5b872f3e690e97782abce6c8663"}, @NL80211_TXRATE_HE={0x87, 0x5, "776d3e9bb675fb914a211369fad69b5150b477cad002ca970156ca94f6f62e12ec5dea08c048bdc27a3aa0bd1de30f541ba3852681b61b18bcb1fd4ca21702c81445d67ed7c7b4c6c3254310cd5dba3d29b39d0dd80186f2c3e3bc5fd132b43f2f91adc4c4860d65af4247d217400f26298b2b0189ba5b38e6587e2fdb895e4e0e5414"}, @NL80211_TXRATE_HT={0x26, 0x2, "1472a585a4aff42888ec5c65da9ab7fdf24eb2c27d54b3789df41f29705090ac119e"}]}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x101}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xf3}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xfe}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x10}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x81}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x5a}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x7}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x7}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x1d0, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0xc}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE={0x31, 0x5, "ed068ee78482b5b9b1e6b9c738a34ec2e8c63c4e842635533b73ba34f7c134e7923d0dc60e405a5b7b3c9adba3"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xb7}, @NL80211_TXRATE_HT={0x3b, 0x2, "6710d193b898ddda0da095aa2d275e78b30193375c58b2acc47c039fd6292b49844440492d0194e5bd204022ff9f9a8fd81f06ddead810"}]}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x7}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x134, 0xd, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x90, 0x3, "81a45833b0798b69438c16d452b76add585fb34533368ac136c62000a6bfe8725e9afb0e4b876e95f4877b100fbed5a268d8b2f545dae7c002c716c8b00e46d26d4235f6a004ab977a7292a997c20ac1dbeb6a4e3d6816597c4603e87690f315083c1f97e014e84d9fbda7993f61124f4eefdfd76d81c21aade3b046c796f1902eb1933040052d27ef816f3c"}, @NL80211_TXRATE_HE={0x33, 0x5, "362520778508b33d8b37c159353d5dd104bd3d5346b965445a24617aee08a1d6d391c1bcf5ec847c4ea09c0bbd190e"}, @NL80211_TXRATE_HT={0xa, 0x2, "761382f5dc25"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xa4}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x8a}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, "4b3e7c247011778a0f8a365be1541fda8c42b689c726a1f449"}, @NL80211_TXRATE_GI={0x5, 0x4, 0x13}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, "ea025e2ae64971f64f9584fde3eb54824b9ca54d72752cb9f8"}]}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x7f}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x7fff}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x96}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x9}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x4}]}]}]}, 0x67c}, 0x1, 0x0, 0x0, 0x80}, 0x40080)
sysfs$auto(0x2, 0x1a, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x3, &(0x7f0000000000)='4\x93f\x06\x04\x00\x00', &(0x7f0000000040), 0x7f)

2.305172752s ago: executing program 3 (id=695):
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendfile$auto(0x1, 0xffffffffffffffff, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x184)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0)
r0 = socket(0x2, 0x1, 0x106)
openat$auto_fops_u32_ro_(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim6/ports/2/bpf_offloaded_id\x00', 0x141800, 0x0)
getsockopt$auto(r0, 0x29, 0x4b, 0x0, 0x0)
readv$auto(0x3, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)

2.30442s ago: executing program 2 (id=696):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000a, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x30008000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1], 0x44}}, 0x480)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="e0000000", @ANYRESOCT=r0, @ANYBLOB="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"], 0xe0}}, 0x80)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xb)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_GTP_CMD_NEWPDP(r2, 0x0, 0x8040)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000080)
r3 = socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xb, r5)
r6 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000080), 0x18100, 0x0)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_GET(r3, &(0x7f0000000580)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fbdbdf250d0000001c00018008000100", @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="38000180080003000100000008000308cb7b0ea28d4ae300", @ANYRES32=0x0, @ANYBLOB="140002007663616e3000000000000000000000000800030000360700"], 0x68}, 0x1, 0x0, 0x0, 0x4008801}, 0x4010)
recvmmsg$auto(r6, &(0x7f0000000280)={{&(0x7f0000000100)="03246b7b0b42c708578f8410691bfd7296017d30088d5677369f6b7caa110026740700000047a8f8bf6b097da98d474044ea15f3a792a30abf2b9086ab470df67c6cc3de43755a5557c8b88f3113f2f346d34026ad68753d16a4683d65abc0268f6365d61c02a82f67f15489a3e9f238f9cf5aa0327862eb54c0d5c0c5a9162165666573120c14c554a8decb3e39a9b5ad76867d8e92b5baacafa079a36021813f066fd8f554e04c7ec810cb", 0x5, &(0x7f00000001c0)={0x0, 0x9}, 0xb, &(0x7f0000000200)="a25faeaabefaf2cba143ffe68b90cabdfc52af366cab3eb0fa827263d8f2f32f7bde56ac37c396cbc154d2576097cc9e3c76f9563620aef4c9f56a8313aade1f1ef54b3de7ffcf901b740e29aaf1e3", 0x1, 0x9f5}, 0x8}, 0x91f7, 0x4, &(0x7f00000002c0)={0xa8c1, 0x1})
ioctl$auto_KVM_CREATE_VM(r4, 0x4004ae8b, 0x80ffff)
madvise$auto(0x0, 0x2003f0, 0x17)
connect$auto(0xffffffffffffffff, 0x0, 0x55)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0)

1.769143427s ago: executing program 1 (id=697):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000280)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,v\xf58\x83\xcf\xc5D\xcc', 0x100000a3d9)
write$auto(0xffffffffffffffff, 0x0, 0x98c7)
connect$auto(0x3, 0x0, 0x81)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/interrupts\x00', 0x18b202, 0x0)
pread64$auto(r1, 0x0, 0x100000001, 0x100)
readv$auto(0x3, 0x0, 0x4)
unshare$auto(0x40000080)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
writev$auto(0x3, &(0x7f0000004100)={0x0, 0x2000000b}, 0x3ff)

1.751918935s ago: executing program 0 (id=705):
r0 = openat$auto_vsock_device_ops_af_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
ioctl$auto_IOCTL_VM_SOCKETS_GET_LOCAL_CID(r0, 0x7b9, 0x700000000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(0xffffffffffffffff, 0xc1004111, 0x0)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0040, 0x0)
pread64$auto(r1, 0x0, 0x7ff, 0x400)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xf, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xfffffffffffffffd, 0x2d, 0x400000000000948b, 0x3, 0x15f4da0a, 0x5, 0x3, 0x7, 0x3c, 0x100000000, 0x1, 0x9, 0x1, 0x8]}, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r4 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
read$auto_regulator_summary_fops_(0xffffffffffffffff, &(0x7f0000000400)=""/17, 0x11)
gettimeofday$auto(&(0x7f0000000280)={0xd7db, 0x7}, &(0x7f0000000380)={0x9ed, 0xc})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
utimes$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000240)={0xfffffffffffffff7, 0x4})
listen$auto(r4, 0x6)
setresgid$auto(0xffffffffffffffff, 0x0, 0x7fffffffffffffff)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx3\x00', 0x42880, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x40, 0x0, 0x300, 0x70bd26, 0x25dfdbfb, {}, [@HSR_A_IFINDEX={0x8}, @HSR_A_IF2_AGE={0x8, 0x4, 0xcb6c}, @HSR_A_IF2_AGE={0x8, 0x4, 0xa}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_IF1_SEQ={0x6}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x40800)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0)
read$auto(r5, 0x0, 0x1ff)
write$auto(0x3, 0x0, 0x7)

1.491512214s ago: executing program 3 (id=698):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0xfffd, 0x8000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x787b, 0x7000000)
sched_get_priority_min$auto(0x40)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0xfdef)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x5f}, 0x1, 0x0, 0x0, 0x400c810}, 0x8800)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
bpf$auto(0x0, &(0x7f0000000340)=@bpf_attr_5={@target_fd=0x5, 0x7f, 0x9c, 0x7b2, 0x1, @relative_id=0xfa, 0x80}, 0x96)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x4b4d, r1)

761.685752ms ago: executing program 0 (id=699):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
get_robust_list$auto(0x0, 0x0, 0x0)
io_uring_setup$auto(0x1, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
r1 = socket(0x2, 0x3, 0xa)
openat$auto_udf_dir_operations_udfdecl(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bluetooth/hci7/power\x00', 0x100800, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket(0x25, 0x5, 0x0)
sendfile$auto(0x6, r1, 0x0, 0xfdef)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0)
rseq$auto(&(0x7f0000000200)={0xe, 0x20401, 0x5fc, 0x10000006, 0xffffffff, 0x9}, 0x40, 0x0, 0x6)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)

761.331973ms ago: executing program 2 (id=700):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x2, 0x1, 0x106)
r0 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r0, 0x84, 0x70, 0x0, &(0x7f0000000240)=0x10009b)
r1 = getsockopt$auto(0xffffffffffffffff, 0x110, 0x9, 0xffffffffffffffff, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x1e, 0x805, 0x0)
read$auto_deferred_devs_fops_(r1, &(0x7f0000000080)=""/243, 0xf3)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x2c, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r5, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r5)
read$auto(r5, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r1)
sendmsg$auto_NL80211_CMD_SET_STATION(r3, &(0x7f0000000980)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000280)={0x680, r6, 0x4, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa9}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x99, 0xac, "600f86e0caacb08c7fc6b4014457376fb1458652584f462b1d0a7e80f8cd812bb1ca6cc96fea0345b21a77eb5c45b1d8f337ecc4fad6a1a1fb4935699aa0bb333469e6e7c8cf71383ff4f4c1c2254b87dfd58bfe433ccafc548785b09187077b8f7755c6aceb0c54ba0c806a04d1ae5321b4b902b5443501c22cf7866a70470ed9e2f1b5860b826ae0aeabd298fee59ab992781e53"}, @NL80211_ATTR_TID_CONFIG={0x5c8, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x8}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1000}]}, {0x310, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x9}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xed}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x2fc, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE={0xcd, 0x5, "6ae0aecff52a1accec7fa3c4b6aefab81aded08b7a0554a87d3004806aadf941f89cae75a5246167dd99c6c49583f681af5d90e344e766d115d4300193d0fe61b34823df3a13d685f8005d0c50e1371b2362ea49da775ce767d65e7801cbaff546943655bb2e0e48ee08443370b769b29a54c8b0a5c1d077c70f462eada18d4265e2f58808e37c7272fb453a5112644e485d51f5380ab89c00bff3882489c4bcde82d8353656a430e7ac71a17b28dd3b3e4c1d38921cd934921100775030866cf0ff1a107e2a368799"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x4}, @NL80211_TXRATE_HE={0x81, 0x5, "c8ac9130ce822f8c7c4b5e8e73ce3ebfe8e1bcca851620d51be5b6863da8b0b7739340f4a0ba8cf44995f38dbb04252a9c5ad622865072eac27b20a965fb29fa6e8c1aeda20fdba33289922dc355af7e3e70f97a6f508a15d2a8b411d44adcea37df9eb7e9d174f0bacb860e2203160b7458d899fd4a0797e9e932609f"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x80}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x7}, @NL80211_TXRATE_HE={0xdc, 0x5, "2c40be7f6a470bd8ea3a39680250af528756185736dfe15ca9fc47e50d271fcd0f774d3dcfe4a9a9894c3ab3e12340cc8ca962aa7a6667cf7530d839c7b18a5f519373c702909c4f20929b5609dae45d6676fe7edd3a9552a22dbd9568c67be65f19fff7a42ff40fd24050810f79278a90d0e013ff9b7406e5adf085433b0986942e1b99d1056a0eddd2106e3c03718388cb640a1da7e37dc41220fe826c22e656419876b376a1388d9c24103714699aa4a4dc86e944d1a20a3fa0d2de91d731eac16e0b05173764c81ff5b872f3e690e97782abce6c8663"}, @NL80211_TXRATE_HE={0x87, 0x5, "776d3e9bb675fb914a211369fad69b5150b477cad002ca970156ca94f6f62e12ec5dea08c048bdc27a3aa0bd1de30f541ba3852681b61b18bcb1fd4ca21702c81445d67ed7c7b4c6c3254310cd5dba3d29b39d0dd80186f2c3e3bc5fd132b43f2f91adc4c4860d65af4247d217400f26298b2b0189ba5b38e6587e2fdb895e4e0e5414"}, @NL80211_TXRATE_HT={0x26, 0x2, "1472a585a4aff42888ec5c65da9ab7fdf24eb2c27d54b3789df41f29705090ac119e"}]}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x101}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xf3}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xfe}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x10}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x81}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x5a}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x7}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x7}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x1d4, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0xc}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE={0x31, 0x5, "ed068ee78482b5b9b1e6b9c738a34ec2e8c63c4e842635533b73ba34f7c134e7923d0dc60e405a5b7b3c9adba3"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xb7}, @NL80211_TXRATE_HT={0x3b, 0x2, "6710d193b898ddda0da095aa2d275e78b30193375c58b2acc47c039fd6292b49844440492d0194e5bd204022ff9f9a8fd81f06ddead810"}]}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x7}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x138, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x8c, 0x3, "81a45833b0798b69438c16d452b76add585fb34533368ac136c62000a6bfe8725e9afb0e4b876e95f4877b100fbed5a268d8b2f545dae7c002c716c8b00e46d26d4235f6a004ab977a7292a997c20ac1dbeb6a4e3d6816597c4603e87690f315083c1f97e014e84d9fbda7993f61124f4eefdfd76d81c21aade3b046c796f1902eb1933040052d27"}, @NL80211_TXRATE_HE={0x33, 0x5, "362520778508b33d8b37c159353d5dd104bd3d5346b965445a24617aee08a1d6d391c1bcf5ec847c4ea09c0bbd190e"}, @NL80211_TXRATE_HT={0xa, 0x2, "761382f5dc25"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xa4}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x8a}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, "4b3e7c247011778a0f8a365be1541fda8c42b689c726a1f449"}, @NL80211_TXRATE_GI={0x5, 0x4, 0x13}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, "ea025e2ae64971f64f9584fde3eb54824b9ca54d72752cb9f8"}]}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x7f}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x7fff}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x96}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x9}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x4}]}]}]}, 0x680}, 0x1, 0x0, 0x0, 0x80}, 0x40080)
sysfs$auto(0x2, 0x1a, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x3, &(0x7f0000000000)='4\x93f\x06\x04\x00\x00', &(0x7f0000000040), 0x7f)

409.068656ms ago: executing program 3 (id=701):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000a, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
r1 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x30008000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000229bd7000ffffdf251300000002000000060000000500050008ec000005001d0004000000050017000d000000"], 0x44}}, 0x480)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="e0000000", @ANYRESOCT=r0, @ANYBLOB="000225bd7000fcdbdf251300000005001900ff000000050031000200000005002100490000001f00160041257fbd06fe8d9e1b53db4978a05fb198fa34ef11ff48b64add810084001e00f85ee71f959a30e226bb614d465893a1435593333f77e38723f28f1204b4ae1c19758c5c25bb58ad8689e4e12783e94906ac1ec1e3c10400000000000000db3e0f9adebdd26c318ebe557360648ed598e033c398603d709bea39bbe8d8425de6e0b87d1452e8bb151d93069acb3629e7bca9004e9770a971b508116370d78437050018000700000005003400cd000000e2b5bec4b31af4caef30047aaf9b95bb5fcd5a8b64b6746d7b0e98ea3c7692a45576c00ee435f88f6cf6f55e7f180ae0e90ce592bcacb5510c2d71b890fb409dde44b9cf51f507fd29faf675af66ee48a2b2dbcd407e048dfd12790242b2cdc60ff7782db8b7b076960829bb2cca16bdfe47530562b298fd0392127745676d5cb492d9728aefcb7337"], 0xe0}}, 0x80)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0xb)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmsg$auto_GTP_CMD_NEWPDP(r2, 0x0, 0x8040)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000080)
r3 = socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xb, r5)
r6 = openat$auto_ima_ascii_measurements_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000080), 0x18100, 0x0)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_GET(r3, &(0x7f0000000580)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fbdbdf250d0000001c00018008000100", @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="38000180080003000100000008000308cb7b0ea28d4ae300", @ANYRES32=0x0, @ANYBLOB="140002007663616e3000000000000000000000000800030000360700"], 0x68}, 0x1, 0x0, 0x0, 0x4008801}, 0x4010)
recvmmsg$auto(r6, &(0x7f0000000280)={{&(0x7f0000000100)="03246b7b0b42c708578f8410691bfd7296017d30088d5677369f6b7caa110026740700000047a8f8bf6b097da98d474044ea15f3a792a30abf2b9086ab470df67c6cc3de43755a5557c8b88f3113f2f346d34026ad68753d16a4683d65abc0268f6365d61c02a82f67f15489a3e9f238f9cf5aa0327862eb54c0d5c0c5a9162165666573120c14c554a8decb3e39a9b5ad76867d8e92b5baacafa079a36021813f066fd8f554e04c7ec810cb", 0x5, &(0x7f00000001c0)={0x0, 0x9}, 0xb, &(0x7f0000000200)="a25faeaabefaf2cba143ffe68b90cabdfc52af366cab3eb0fa827263d8f2f32f7bde56ac37c396cbc154d2576097cc9e3c76f9563620aef4c9f56a8313aade1f1ef54b3de7ffcf901b740e29aaf1e3", 0x1, 0x9f5}, 0x8}, 0x91f7, 0x4, &(0x7f00000002c0)={0xa8c1, 0x1})
ioctl$auto_KVM_CREATE_VM(r4, 0x4004ae8b, 0x80ffff)
madvise$auto(0x0, 0x2003f0, 0x17)
connect$auto(0xffffffffffffffff, 0x0, 0x55)
ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, 0x0)

6.180305ms ago: executing program 1 (id=702):
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x242c81, 0x0)
ioctl$auto(0x3, 0xae41, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
pidfd_send_signal$auto_PIDFD_SELF_THREAD(0xffffffffffffd8ef, 0x3, 0x0, 0x0)
mmap$auto(0xfa, 0x2, 0x0, 0x3e, 0xffffffffffffffff, 0xffffffffffffffb1)
pwrite64$auto(0xffffffffffffffff, 0x0, 0x0, 0x8)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)

0s ago: executing program 0 (id=711):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
socket(0x2, 0x1, 0x106)
r0 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r0, 0x84, 0x70, 0x0, &(0x7f0000000240)=0x10009b)
r1 = getsockopt$auto(0xffffffffffffffff, 0x110, 0x9, 0xffffffffffffffff, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x1e, 0x805, 0x0)
read$auto_deferred_devs_fops_(r1, &(0x7f0000000080)=""/243, 0xf3)
openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002ec0), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x2c, r4, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x278e18a297a8387c}, 0x24000802)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r5, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r5)
read$auto(r5, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-subdev2\x00', 0x80000, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), r1)
sendmsg$auto_NL80211_CMD_SET_STATION(r3, &(0x7f0000000980)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000280)={0x680, r6, 0x4, 0x70bd27, 0x25dfdbff, {}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa9}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x99, 0xac, "600f86e0caacb08c7fc6b4014457376fb1458652584f462b1d0a7e80f8cd812bb1ca6cc96fea0345b21a77eb5c45b1d8f337ecc4fad6a1a1fb4935699aa0bb333469e6e7c8cf71383ff4f4c1c2254b87dfd58bfe433ccafc548785b09187077b8f7755c6aceb0c54ba0c806a04d1ae5321b4b902b5443501c22cf7866a70470ed9e2f1b5860b826ae0aeabd298fee59ab992781e53"}, @NL80211_ATTR_TID_CONFIG={0x5c8, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x8}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1000}]}, {0x310, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x9}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xed}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x2fc, 0xd, 0x0, 0x1, [@NL80211_TXRATE_HE={0xcd, 0x5, "6ae0aecff52a1accec7fa3c4b6aefab81aded08b7a0554a87d3004806aadf941f89cae75a5246167dd99c6c49583f681af5d90e344e766d115d4300193d0fe61b34823df3a13d685f8005d0c50e1371b2362ea49da775ce767d65e7801cbaff546943655bb2e0e48ee08443370b769b29a54c8b0a5c1d077c70f462eada18d4265e2f58808e37c7272fb453a5112644e485d51f5380ab89c00bff3882489c4bcde82d8353656a430e7ac71a17b28dd3b3e4c1d38921cd934921100775030866cf0ff1a107e2a368799"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x4}, @NL80211_TXRATE_HE={0x81, 0x5, "c8ac9130ce822f8c7c4b5e8e73ce3ebfe8e1bcca851620d51be5b6863da8b0b7739340f4a0ba8cf44995f38dbb04252a9c5ad622865072eac27b20a965fb29fa6e8c1aeda20fdba33289922dc355af7e3e70f97a6f508a15d2a8b411d44adcea37df9eb7e9d174f0bacb860e2203160b7458d899fd4a0797e9e932609f"}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x80}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x7}, @NL80211_TXRATE_HE={0xdc, 0x5, "2c40be7f6a470bd8ea3a39680250af528756185736dfe15ca9fc47e50d271fcd0f774d3dcfe4a9a9894c3ab3e12340cc8ca962aa7a6667cf7530d839c7b18a5f519373c702909c4f20929b5609dae45d6676fe7edd3a9552a22dbd9568c67be65f19fff7a42ff40fd24050810f79278a90d0e013ff9b7406e5adf085433b0986942e1b99d1056a0eddd2106e3c03718388cb640a1da7e37dc41220fe826c22e656419876b376a1388d9c24103714699aa4a4dc86e944d1a20a3fa0d2de91d731eac16e0b05173764c81ff5b872f3e690e97782abce6c8663"}, @NL80211_TXRATE_HE={0x87, 0x5, "776d3e9bb675fb914a211369fad69b5150b477cad002ca970156ca94f6f62e12ec5dea08c048bdc27a3aa0bd1de30f541ba3852681b61b18bcb1fd4ca21702c81445d67ed7c7b4c6c3254310cd5dba3d29b39d0dd80186f2c3e3bc5fd132b43f2f91adc4c4860d65af4247d217400f26298b2b0189ba5b38e6587e2fdb895e4e0e5414"}, @NL80211_TXRATE_HT={0x26, 0x2, "1472a585a4aff42888ec5c65da9ab7fdf24eb2c27d54b3789df41f29705090ac119e"}]}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x101}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xf3}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xfe}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x10}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x81}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x5a}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x7}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x7}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x1d4, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8c, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0xc}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE={0x31, 0x5, "ed068ee78482b5b9b1e6b9c738a34ec2e8c63c4e842635533b73ba34f7c134e7923d0dc60e405a5b7b3c9adba3"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xb7}, @NL80211_TXRATE_HT={0x3b, 0x2, "6710d193b898ddda0da095aa2d275e78b30193375c58b2acc47c039fd6292b49844440492d0194e5bd204022ff9f9a8fd81f06ddead810"}]}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x7}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x138, 0xd, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x8c, 0x3, "81a45833b0798b69438c16d452b76add585fb34533368ac136c62000a6bfe8725e9afb0e4b876e95f4877b100fbed5a268d8b2f545dae7c002c716c8b00e46d26d4235f6a004ab977a7292a997c20ac1dbeb6a4e3d6816597c4603e87690f315083c1f97e014e84d9fbda7993f61124f4eefdfd76d81c21aade3b046c796f1902eb1933040052d27"}, @NL80211_TXRATE_HE={0x33, 0x5, "362520778508b33d8b37c159353d5dd104bd3d5346b965445a24617aee08a1d6d391c1bcf5ec847c4ea09c0bbd190e"}, @NL80211_TXRATE_HT={0xa, 0x2, "761382f5dc25"}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0xa4}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x8a}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, "4b3e7c247011778a0f8a365be1541fda8c42b689c726a1f449"}, @NL80211_TXRATE_GI={0x5, 0x4, 0x13}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, "ea025e2ae64971f64f9584fde3eb54824b9ca54d72752cb9f8"}]}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x7f}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x7fff}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x96}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x9}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x4}]}]}]}, 0x680}, 0x1, 0x0, 0x0, 0x80}, 0x40080)
sysfs$auto(0x2, 0x1a, 0x0)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x3, &(0x7f0000000000)='4\x93f\x06\x04\x00\x00', &(0x7f0000000040), 0x7f)

kernel console output (not intermixed with test programs):

red forwarding state
[   87.833020][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.840230][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.882667][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.889952][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.996914][ T5861] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.045353][ T5185] Bluetooth: hci0: command tx timeout
[   88.124089][   T51] Bluetooth: hci2: command tx timeout
[   88.129614][ T5185] Bluetooth: hci3: command tx timeout
[   88.136725][   T51] Bluetooth: hci1: command tx timeout
[   88.175094][ T5873] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.238849][ T5861] veth0_vlan: entered promiscuous mode
[   88.297674][ T5861] veth1_vlan: entered promiscuous mode
[   88.360839][ T5873] veth0_vlan: entered promiscuous mode
[   88.395365][ T5873] veth1_vlan: entered promiscuous mode
[   88.438823][ T5861] veth0_macvtap: entered promiscuous mode
[   88.461933][ T5861] veth1_macvtap: entered promiscuous mode
[   88.494663][ T5861] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.522769][ T5873] veth0_macvtap: entered promiscuous mode
[   88.531487][ T5861] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.550762][ T5864] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.564783][ T5873] veth1_macvtap: entered promiscuous mode
[   88.582806][ T5870] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.592481][   T49] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.602959][   T49] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.624466][   T49] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.643234][   T49] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.671797][ T5873] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.738765][ T5873] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.763049][ T1153] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.777431][ T1153] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.787203][ T5864] veth0_vlan: entered promiscuous mode
[   88.810523][ T1153] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.821280][ T1153] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.853966][ T5870] veth0_vlan: entered promiscuous mode
[   88.867244][ T5864] veth1_vlan: entered promiscuous mode
[   88.890263][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.910415][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.933156][ T5870] veth1_vlan: entered promiscuous mode
[   89.011536][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.021339][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.045922][ T5864] veth0_macvtap: entered promiscuous mode
[   89.062613][ T1153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.081780][ T1153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.106092][ T5861] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   89.111713][ T5870] veth0_macvtap: entered promiscuous mode
[   89.157614][ T3011] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.162490][ T5864] veth1_macvtap: entered promiscuous mode
[   89.184352][ T3011] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.199471][ T5870] veth1_macvtap: entered promiscuous mode
[   89.267167][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.282657][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.326745][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.336663][  T804] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.364830][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.373190][  T804] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.395270][  T804] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.455170][  T804] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.455256][  T804] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.455300][  T804] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.455337][  T804] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.455377][  T804] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.719336][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.744421][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   89.753702][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   89.785200][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.821919][  T804] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.839493][  T804] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.947809][ T1153] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.979371][ T1153] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.034133][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.088306][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.103311][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.126239][ T5185] Bluetooth: hci0: command tx timeout
[   90.204361][ T5185] Bluetooth: hci3: command tx timeout
[   90.209855][   T51] Bluetooth: hci1: command tx timeout
[   90.210137][ T5872] Bluetooth: hci2: command tx timeout
[   90.493956][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.564164][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.574101][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.933991][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.018915][ T5986] netlink: 25 bytes leftover after parsing attributes in process `syz.2.11'.
[   91.044163][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.052495][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.443296][ T5991] process 'syz.2.12' launched ':,' with NULL argv: empty string added
[   91.524940][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.849708][ T5991] FAULT_INJECTION: forcing a failure.
[   91.849708][ T5991] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   91.862964][ T5991] CPU: 1 UID: 0 PID: 5991 Comm: syz.2.12 Not tainted syzkaller #0 PREEMPT(full) 
[   91.862999][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   91.863017][ T5991] Call Trace:
[   91.863030][ T5991]  <TASK>
[   91.863041][ T5991]  dump_stack_lvl+0x16c/0x1f0
[   91.863084][ T5991]  should_fail_ex+0x512/0x640
[   91.863126][ T5991]  _copy_from_user+0x2e/0xd0
[   91.863167][ T5991]  copy_msghdr_from_user+0x98/0x160
[   91.863202][ T5991]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   91.863244][ T5991]  ? __pfx_futex_wake_mark+0x10/0x10
[   91.863286][ T5991]  ___sys_sendmsg+0xfe/0x1d0
[   91.863321][ T5991]  ? __pfx____sys_sendmsg+0x10/0x10
[   91.863399][ T5991]  __sys_sendmsg+0x16d/0x220
[   91.863433][ T5991]  ? __pfx___sys_sendmsg+0x10/0x10
[   91.863465][ T5991]  ? __x64_sys_futex+0x1e0/0x4c0
[   91.863511][ T5991]  do_syscall_64+0xcd/0x490
[   91.863544][ T5991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.863567][ T5991] RIP: 0033:0x7fd57ab8ebe9
[   91.863593][ T5991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.863620][ T5991] RSP: 002b:00007fd57b914038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   91.863642][ T5991] RAX: ffffffffffffffda RBX: 00007fd57adb5fa0 RCX: 00007fd57ab8ebe9
[   91.863657][ T5991] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000006
[   91.863670][ T5991] RBP: 00007fd57ac11e19 R08: 0000000000000000 R09: 0000000000000000
[   91.863682][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   91.863695][ T5991] R13: 00007fd57adb6038 R14: 00007fd57adb5fa0 R15: 00007ffd6fe35368
[   91.863724][ T5991]  </TASK>
[   92.213787][ T5872] Bluetooth: hci0: command tx timeout
[   92.215879][   T43] cfg80211: failed to load regulatory.db
[   92.283808][ T5872] Bluetooth: hci2: command tx timeout
[   92.286531][   T51] Bluetooth: hci1: command tx timeout
[   92.289259][ T5872] Bluetooth: hci3: command tx timeout
[   93.196292][ T6004] Zero length message leads to an empty skb
[   93.255344][ T6004] netlink: 'syz.2.16': attribute type 4 has an invalid length.
[   93.293918][ T6004] netlink: 'syz.2.16': attribute type 5 has an invalid length.
[   93.301506][ T6004] netlink: 10 bytes leftover after parsing attributes in process `syz.2.16'.
[   97.988896][ T6060] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   99.465343][ T6088] netlink: 28 bytes leftover after parsing attributes in process `syz.3.39'.
[  101.010885][ T6112] mmap: syz.3.46 (6112) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  103.149530][   T30] audit: type=1804 audit(1756144814.326:2): pid=6142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.52" name="/newroot/10/file0" dev="tmpfs" ino=70 res=1 errno=0
[  103.702277][ T6137] FAULT_INJECTION: forcing a failure.
[  103.702277][ T6137] name failslab, interval 1, probability 0, space 0, times 1
[  103.734058][ T6148] netlink: 330 bytes leftover after parsing attributes in process `syz.2.54'.
[  103.771348][ T6137] CPU: 1 UID: 0 PID: 6137 Comm: syz.1.51 Not tainted syzkaller #0 PREEMPT(full) 
[  103.771385][ T6137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  103.771399][ T6137] Call Trace:
[  103.771408][ T6137]  <TASK>
[  103.771418][ T6137]  dump_stack_lvl+0x16c/0x1f0
[  103.771458][ T6137]  should_fail_ex+0x512/0x640
[  103.771493][ T6137]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  103.771528][ T6137]  should_failslab+0xc2/0x120
[  103.771563][ T6137]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  103.771595][ T6137]  ? __pmd_alloc+0xbf/0x930
[  103.771639][ T6137]  __pmd_alloc+0xbf/0x930
[  103.771673][ T6137]  ? __pud_alloc+0x526/0x750
[  103.771712][ T6137]  copy_page_range+0x3eaf/0x5c80
[  103.771744][ T6137]  ? copy_process+0x4081/0x7690
[  103.771811][ T6137]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  103.771852][ T6137]  ? mas_wr_store_entry+0xa14/0x2550
[  103.771892][ T6137]  ? mas_destroy+0x5de/0xa20
[  103.771928][ T6137]  ? __pfx_copy_page_range+0x10/0x10
[  103.771958][ T6137]  ? mas_store+0x7a9/0x1160
[  103.771995][ T6137]  ? find_held_lock+0x2b/0x80
[  103.772020][ T6137]  ? __pfx_mas_store+0x10/0x10
[  103.772053][ T6137]  ? __vma_enter_locked+0x163/0x3f0
[  103.772100][ T6137]  dup_mmap+0xe88/0x21d0
[  103.772152][ T6137]  ? __pfx_dup_mmap+0x10/0x10
[  103.772215][ T6137]  copy_process+0x4081/0x7690
[  103.772246][ T6137]  ? __pfx___futex_wait+0x10/0x10
[  103.772295][ T6137]  ? __pfx_copy_process+0x10/0x10
[  103.772325][ T6137]  ? futex_private_hash_put+0x176/0x300
[  103.772360][ T6137]  ? futex_private_hash_put+0x18a/0x300
[  103.772397][ T6137]  kernel_clone+0xfc/0x930
[  103.772432][ T6137]  ? __pfx_kernel_clone+0x10/0x10
[  103.772486][ T6137]  __do_sys_clone+0xce/0x120
[  103.772518][ T6137]  ? __pfx___do_sys_clone+0x10/0x10
[  103.772569][ T6137]  ? xfd_validate_state+0x61/0x180
[  103.772604][ T6137]  ? __pfx_do_writev+0x10/0x10
[  103.772643][ T6137]  do_syscall_64+0xcd/0x490
[  103.772681][ T6137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.772707][ T6137] RIP: 0033:0x7f9d1f38ebe9
[  103.772728][ T6137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.772752][ T6137] RSP: 002b:00007f9d2027dfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  103.772783][ T6137] RAX: ffffffffffffffda RBX: 00007f9d1f5b5fa0 RCX: 00007f9d1f38ebe9
[  103.772800][ T6137] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  103.772815][ T6137] RBP: 00007f9d1f411e19 R08: 0000000000000000 R09: 0000000000000000
[  103.772831][ T6137] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  103.772847][ T6137] R13: 00007f9d1f5b6038 R14: 00007f9d1f5b5fa0 R15: 00007ffd5fa0d508
[  103.772884][ T6137]  </TASK>
[  104.187244][ T6151] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  104.508786][ T6158] netlink: 25 bytes leftover after parsing attributes in process `syz.3.57'.
[  106.644454][ T6182] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  106.689689][ T6182] netlink: 8 bytes leftover after parsing attributes in process `syz.0.62'.
[  107.921456][   T30] audit: type=1804 audit(1756144819.096:3): pid=6194 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.64" name="/newroot/18/file0" dev="tmpfs" ino=108 res=1 errno=0
[  108.160233][ T6201] FAULT_INJECTION: forcing a failure.
[  108.160233][ T6201] name failslab, interval 1, probability 0, space 0, times 0
[  108.220532][ T6201] CPU: 0 UID: 0 PID: 6201 Comm: syz.3.66 Not tainted syzkaller #0 PREEMPT(full) 
[  108.220567][ T6201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  108.220582][ T6201] Call Trace:
[  108.220590][ T6201]  <TASK>
[  108.220601][ T6201]  dump_stack_lvl+0x16c/0x1f0
[  108.220639][ T6201]  should_fail_ex+0x512/0x640
[  108.220674][ T6201]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  108.220708][ T6201]  should_failslab+0xc2/0x120
[  108.220743][ T6201]  __kmalloc_cache_noprof+0x6a/0x3e0
[  108.220770][ T6201]  ? __debugfs_file_get+0x2ad/0x840
[  108.220810][ T6201]  __debugfs_file_get+0x2ad/0x840
[  108.220845][ T6201]  ? __pfx___debugfs_file_get+0x10/0x10
[  108.220879][ T6201]  ? do_raw_spin_lock+0x12c/0x2b0
[  108.220917][ T6201]  ? __pfx_apparmor_file_open+0x10/0x10
[  108.220953][ T6201]  open_proxy_open+0x7e/0x320
[  108.220981][ T6201]  do_dentry_open+0x982/0x1530
[  108.221014][ T6201]  ? __pfx_open_proxy_open+0x10/0x10
[  108.221045][ T6201]  vfs_open+0x82/0x3f0
[  108.221085][ T6201]  path_openat+0x1de4/0x2cb0
[  108.221135][ T6201]  ? __pfx_path_openat+0x10/0x10
[  108.221181][ T6201]  do_filp_open+0x20b/0x470
[  108.221213][ T6201]  ? __pfx_do_filp_open+0x10/0x10
[  108.221269][ T6201]  ? alloc_fd+0x471/0x7d0
[  108.221306][ T6201]  do_sys_openat2+0x11b/0x1d0
[  108.221342][ T6201]  ? __pfx_do_sys_openat2+0x10/0x10
[  108.221391][ T6201]  __x64_sys_openat+0x174/0x210
[  108.221429][ T6201]  ? __pfx___x64_sys_openat+0x10/0x10
[  108.221480][ T6201]  do_syscall_64+0xcd/0x490
[  108.221516][ T6201]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.221542][ T6201] RIP: 0033:0x7f765798ebe9
[  108.221562][ T6201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.221586][ T6201] RSP: 002b:00007f765888a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  108.221610][ T6201] RAX: ffffffffffffffda RBX: 00007f7657bb5fa0 RCX: 00007f765798ebe9
[  108.221628][ T6201] RDX: 0000000000002000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  108.221644][ T6201] RBP: 00007f7657a11e19 R08: 0000000000000000 R09: 0000000000000000
[  108.221660][ T6201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  108.221675][ T6201] R13: 00007f7657bb6038 R14: 00007f7657bb5fa0 R15: 00007ffdfed41248
[  108.221709][ T6201]  </TASK>
[  108.243888][ T6203] FAULT_INJECTION: forcing a failure.
[  108.243888][ T6203] name failslab, interval 1, probability 0, space 0, times 0
[  108.546641][ T6203] CPU: 1 UID: 0 PID: 6203 Comm: syz.1.67 Not tainted syzkaller #0 PREEMPT(full) 
[  108.546677][ T6203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  108.546691][ T6203] Call Trace:
[  108.546700][ T6203]  <TASK>
[  108.546710][ T6203]  dump_stack_lvl+0x16c/0x1f0
[  108.546747][ T6203]  should_fail_ex+0x512/0x640
[  108.546782][ T6203]  ? __kmalloc_noprof+0xbf/0x510
[  108.546813][ T6203]  ? iovec_from_user+0x108/0x140
[  108.546834][ T6203]  should_failslab+0xc2/0x120
[  108.546866][ T6203]  __kmalloc_noprof+0xd2/0x510
[  108.546902][ T6203]  iovec_from_user+0x108/0x140
[  108.546929][ T6203]  process_vm_rw+0x1d8/0x2c0
[  108.546963][ T6203]  ? __pfx_process_vm_rw+0x10/0x10
[  108.547021][ T6203]  ? do_raw_spin_lock+0x12c/0x2b0
[  108.547074][ T6203]  ? xfd_validate_state+0x61/0x180
[  108.547106][ T6203]  ? __task_pid_nr_ns+0x17c/0x500
[  108.547143][ T6203]  __x64_sys_process_vm_readv+0xe2/0x1c0
[  108.547175][ T6203]  ? do_syscall_64+0x91/0x490
[  108.547205][ T6203]  ? lockdep_hardirqs_on+0x7c/0x110
[  108.547235][ T6203]  do_syscall_64+0xcd/0x490
[  108.547269][ T6203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.547293][ T6203] RIP: 0033:0x7f9d1f38ebe9
[  108.547313][ T6203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.547343][ T6203] RSP: 002b:00007f9d2027e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  108.547367][ T6203] RAX: ffffffffffffffda RBX: 00007f9d1f5b5fa0 RCX: 00007f9d1f38ebe9
[  108.547384][ T6203] RDX: 0000040000000001 RSI: 0000200000000000 RDI: 0000000000000034
[  108.547400][ T6203] RBP: 00007f9d1f411e19 R08: 000000000000000a R09: 0000000000000000
[  108.547414][ T6203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  108.547429][ T6203] R13: 00007f9d1f5b6038 R14: 00007f9d1f5b5fa0 R15: 00007ffd5fa0d508
[  108.547463][ T6203]  </TASK>
[  108.794414][ T6207] netlink: 338 bytes leftover after parsing attributes in process `syz.3.68'.
[  108.851505][ T6207] netlink: 338 bytes leftover after parsing attributes in process `syz.3.68'.
[  108.910254][ T6207] netlink: 290 bytes leftover after parsing attributes in process `syz.3.68'.
[  108.960162][ T6207] veth0_macvtap: left promiscuous mode
[  108.975157][ T6209] netlink: 290 bytes leftover after parsing attributes in process `syz.3.68'.
[  108.987515][ T6209] veth0_macvtap: entered promiscuous mode
[  110.454849][ T6240] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  111.230509][ T6238] FAULT_INJECTION: forcing a failure.
[  111.230509][ T6238] name failslab, interval 1, probability 0, space 0, times 0
[  111.335875][ T6238] CPU: 0 UID: 0 PID: 6238 Comm: syz.3.78 Not tainted syzkaller #0 PREEMPT(full) 
[  111.335911][ T6238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  111.335926][ T6238] Call Trace:
[  111.335934][ T6238]  <TASK>
[  111.335944][ T6238]  dump_stack_lvl+0x16c/0x1f0
[  111.335983][ T6238]  should_fail_ex+0x512/0x640
[  111.336016][ T6238]  ? __build_skb_around+0x278/0x3b0
[  111.336047][ T6238]  should_failslab+0xc2/0x120
[  111.336083][ T6238]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  111.336115][ T6238]  ? sctp_chunkify+0x51/0x2d0
[  111.336146][ T6238]  sctp_chunkify+0x51/0x2d0
[  111.336173][ T6238]  _sctp_make_chunk+0x148/0x270
[  111.336201][ T6238]  sctp_make_abort+0x41/0x410
[  111.336229][ T6238]  sctp_make_abort_user+0x7c/0x4b0
[  111.336257][ T6238]  ? lockdep_hardirqs_on+0x7c/0x110
[  111.336290][ T6238]  ? __pfx_sctp_make_abort_user+0x10/0x10
[  111.336319][ T6238]  ? skb_dequeue+0x126/0x180
[  111.336349][ T6238]  sctp_close+0x220/0x940
[  111.336386][ T6238]  ? __pfx_sctp_close+0x10/0x10
[  111.336413][ T6238]  ? __pfx___might_resched+0x10/0x10
[  111.336445][ T6238]  ? down_write+0x14d/0x200
[  111.336477][ T6238]  ? ip_mc_drop_socket+0x1f/0x280
[  111.336509][ T6238]  ? __pfx_down_write+0x10/0x10
[  111.336547][ T6238]  inet_release+0xea/0x200
[  111.336574][ T6238]  __sock_release+0xb0/0x270
[  111.336608][ T6238]  ? __pfx_sock_close+0x10/0x10
[  111.336638][ T6238]  sock_close+0x1c/0x30
[  111.336670][ T6238]  __fput+0x402/0xb70
[  111.336704][ T6238]  ? _raw_spin_unlock_irq+0x23/0x50
[  111.336734][ T6238]  task_work_run+0x14d/0x240
[  111.336783][ T6238]  ? __pfx_task_work_run+0x10/0x10
[  111.336824][ T6238]  ? __pfx___do_sys_close_range+0x10/0x10
[  111.336864][ T6238]  exit_to_user_mode_loop+0xeb/0x110
[  111.336902][ T6238]  do_syscall_64+0x3f6/0x490
[  111.336938][ T6238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.336964][ T6238] RIP: 0033:0x7f765798ebe9
[  111.336984][ T6238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.337007][ T6238] RSP: 002b:00007f765888a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  111.337031][ T6238] RAX: 0000000000000000 RBX: 00007f7657bb5fa0 RCX: 00007f765798ebe9
[  111.337047][ T6238] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000
[  111.337062][ T6238] RBP: 00007f7657a11e19 R08: 0000000000000000 R09: 0000000000000000
[  111.337077][ T6238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.337091][ T6238] R13: 00007f7657bb6038 R14: 00007f7657bb5fa0 R15: 00007ffdfed41248
[  111.337127][ T6238]  </TASK>
[  111.882014][ T6255] netlink: 20 bytes leftover after parsing attributes in process `syz.1.81'.
[  111.992786][ T6255] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  113.642938][ T6272] input: f�
 as /devices/virtual/input/input5
[  113.892070][ T5872] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  113.892104][ T5872] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  113.908176][ T5872] Bluetooth: hci3: Dropping invalid advertising data
[  113.918115][ T5872] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  114.442216][ T6288] netlink: 25 bytes leftover after parsing attributes in process `syz.3.91'.
[  115.082297][ T6297] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  116.213382][ T6312] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  116.224653][ T6294] netlink: 342 bytes leftover after parsing attributes in process `syz.3.93'.
[  117.585173][ T5872] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  117.585210][ T5872] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  117.601061][ T5872] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  117.601129][ T5872] Bluetooth: hci2: Malformed LE Event: 0x0d
[  117.884863][ T6339] binder: 6338:6339 ioctl 5380 2000000000c0 returned -22
[  117.900804][ T6339] capability: warning: `syz.3.105' uses 32-bit capabilities (legacy support in use)
[  118.000110][ T6339] sd 0:0:1:0: PR command failed: 1026
[  118.021062][ T6339] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  118.036262][ T6339] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  118.999015][ T6354] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  119.043903][ T6354] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  119.933359][ T6378] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  121.400083][ T6396] Console: switching to colour VGA+ 80x25
[  121.643199][ T6398] Console: switching to colour frame buffer device 128x48
[  122.144569][ T6409] netlink: 338 bytes leftover after parsing attributes in process `syz.0.122'.
[  122.206258][ T6409] netlink: 338 bytes leftover after parsing attributes in process `syz.0.122'.
[  122.281172][ T6409] netlink: 290 bytes leftover after parsing attributes in process `syz.0.122'.
[  123.253332][ T6422] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input6
[  125.850546][ T6476] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  125.895857][   T30] audit: type=1804 audit(1756144837.076:4): pid=6476 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.137" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  125.966860][ T6472] FAULT_INJECTION: forcing a failure.
[  125.966860][ T6472] name failslab, interval 1, probability 0, space 0, times 0
[  126.016610][ T6472] CPU: 1 UID: 0 PID: 6472 Comm: syz.3.135 Not tainted syzkaller #0 PREEMPT(full) 
[  126.016643][ T6472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  126.016658][ T6472] Call Trace:
[  126.016667][ T6472]  <TASK>
[  126.016677][ T6472]  dump_stack_lvl+0x16c/0x1f0
[  126.016717][ T6472]  should_fail_ex+0x512/0x640
[  126.016753][ T6472]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  126.016785][ T6472]  should_failslab+0xc2/0x120
[  126.016818][ T6472]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  126.016848][ T6472]  ? ptlock_alloc+0x1f/0x70
[  126.016878][ T6472]  ptlock_alloc+0x1f/0x70
[  126.016902][ T6472]  pte_alloc_one+0x82/0x3a0
[  126.016927][ T6472]  __pte_alloc+0x6d/0x3c0
[  126.016957][ T6472]  ? __pfx___pte_alloc+0x10/0x10
[  126.016985][ T6472]  ? __pfx___might_resched+0x10/0x10
[  126.017008][ T6472]  ? copy_page_range+0x1fa8/0x5c80
[  126.017036][ T6472]  copy_page_range+0x3b83/0x5c80
[  126.017102][ T6472]  ? __pfx_copy_page_range+0x10/0x10
[  126.017141][ T6472]  ? __pfx___might_resched+0x10/0x10
[  126.017163][ T6472]  ? __pfx_mas_store+0x10/0x10
[  126.017196][ T6472]  ? __vma_enter_locked+0x163/0x3f0
[  126.017222][ T6472]  ? dup_mmap+0xe38/0x21d0
[  126.017254][ T6472]  ? down_write+0x14d/0x200
[  126.017289][ T6472]  ? up_write+0x1b2/0x520
[  126.017324][ T6472]  dup_mmap+0xe88/0x21d0
[  126.017372][ T6472]  ? __pfx_dup_mmap+0x10/0x10
[  126.017433][ T6472]  copy_process+0x4081/0x7690
[  126.017464][ T6472]  ? __pfx___futex_wait+0x10/0x10
[  126.017513][ T6472]  ? __pfx_copy_process+0x10/0x10
[  126.017541][ T6472]  ? futex_private_hash_put+0x176/0x300
[  126.017581][ T6472]  ? futex_private_hash_put+0x18a/0x300
[  126.017618][ T6472]  kernel_clone+0xfc/0x930
[  126.017655][ T6472]  ? __pfx_kernel_clone+0x10/0x10
[  126.017708][ T6472]  __do_sys_clone+0xce/0x120
[  126.017740][ T6472]  ? __pfx___do_sys_clone+0x10/0x10
[  126.017787][ T6472]  ? xfd_validate_state+0x61/0x180
[  126.017820][ T6472]  ? __pfx_do_writev+0x10/0x10
[  126.017858][ T6472]  do_syscall_64+0xcd/0x490
[  126.017896][ T6472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.017921][ T6472] RIP: 0033:0x7f765798ebe9
[  126.017949][ T6472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.017973][ T6472] RSP: 002b:00007f7658868fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  126.017998][ T6472] RAX: ffffffffffffffda RBX: 00007f7657bb6090 RCX: 00007f765798ebe9
[  126.018015][ T6472] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  126.018030][ T6472] RBP: 00007f7657a11e19 R08: 0000000000000000 R09: 0000000000000000
[  126.018045][ T6472] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  126.018060][ T6472] R13: 00007f7657bb6128 R14: 00007f7657bb6090 R15: 00007ffdfed41248
[  126.018098][ T6472]  </TASK>
[  126.294273][    C1] vkms_vblank_simulate: vblank timer overrun
[  128.699150][ T6516] FAULT_INJECTION: forcing a failure.
[  128.699150][ T6516] name failslab, interval 1, probability 0, space 0, times 0
[  128.730943][ T6517] FAULT_INJECTION: forcing a failure.
[  128.730943][ T6517] name failslab, interval 1, probability 0, space 0, times 0
[  128.883975][ T6516] CPU: 0 UID: 0 PID: 6516 Comm: syz.3.148 Not tainted syzkaller #0 PREEMPT(full) 
[  128.884011][ T6516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  128.884027][ T6516] Call Trace:
[  128.884037][ T6516]  <TASK>
[  128.884047][ T6516]  dump_stack_lvl+0x16c/0x1f0
[  128.884086][ T6516]  should_fail_ex+0x512/0x640
[  128.884118][ T6516]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  128.884146][ T6516]  should_failslab+0xc2/0x120
[  128.884175][ T6516]  __kmalloc_cache_node_noprof+0x6d/0x420
[  128.884201][ T6516]  ? kfree+0x2b4/0x4d0
[  128.884222][ T6516]  ? blk_mq_init_tags+0x87/0x2b0
[  128.884260][ T6516]  blk_mq_init_tags+0x87/0x2b0
[  128.884312][ T6516]  blk_mq_alloc_map_and_rqs+0x237/0xf60
[  128.884350][ T6516]  ? rcu_is_watching+0x12/0xc0
[  128.884382][ T6516]  __blk_mq_alloc_map_and_rqs+0x128/0x1f0
[  128.884420][ T6516]  blk_mq_alloc_tag_set+0x778/0x1260
[  128.884461][ T6516]  loop_add+0x3b2/0xb70
[  128.884488][ T6516]  ? __pfx_loop_add+0x10/0x10
[  128.884534][ T6516]  ? find_held_lock+0x2b/0x80
[  128.884560][ T6516]  loop_control_ioctl+0x13e/0x630
[  128.884585][ T6516]  ? __pfx_loop_control_ioctl+0x10/0x10
[  128.884613][ T6516]  ? __pfx_loop_control_ioctl+0x10/0x10
[  128.884639][ T6516]  __x64_sys_ioctl+0x18e/0x210
[  128.884675][ T6516]  do_syscall_64+0xcd/0x490
[  128.884706][ T6516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.884728][ T6516] RIP: 0033:0x7f765798ebe9
[  128.884746][ T6516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.884767][ T6516] RSP: 002b:00007f765888a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  128.884788][ T6516] RAX: ffffffffffffffda RBX: 00007f7657bb5fa0 RCX: 00007f765798ebe9
[  128.884803][ T6516] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008
[  128.884816][ T6516] RBP: 00007f7657a11e19 R08: 0000000000000000 R09: 0000000000000000
[  128.884830][ T6516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  128.884843][ T6516] R13: 00007f7657bb6038 R14: 00007f7657bb5fa0 R15: 00007ffdfed41248
[  128.884872][ T6516]  </TASK>
[  128.885072][ T6516] blk-mq: reduced tag depth (128 -> 64)
[  128.956880][ T6517] CPU: 1 UID: 0 PID: 6517 Comm: syz.2.147 Not tainted syzkaller #0 PREEMPT(full) 
[  128.956914][ T6517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  128.956928][ T6517] Call Trace:
[  128.956938][ T6517]  <TASK>
[  128.956948][ T6517]  dump_stack_lvl+0x16c/0x1f0
[  128.956986][ T6517]  should_fail_ex+0x512/0x640
[  128.957029][ T6517]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  128.957065][ T6517]  should_failslab+0xc2/0x120
[  128.957100][ T6517]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  128.957130][ T6517]  ? _raw_spin_unlock+0x28/0x50
[  128.957157][ T6517]  ? alloc_inode+0xc3/0x240
[  128.957197][ T6517]  alloc_inode+0xc3/0x240
[  128.957232][ T6517]  new_inode+0x22/0x1c0
[  128.957268][ T6517]  simple_fill_super+0x306/0x720
[  128.957301][ T6517]  ? __pfx_nfsd_fill_super+0x10/0x10
[  128.957331][ T6517]  nfsd_fill_super+0x90/0x530
[  128.957357][ T6517]  ? __pfx_set_anon_super_fc+0x10/0x10
[  128.957384][ T6517]  ? __pfx_nfsd_fill_super+0x10/0x10
[  128.957412][ T6517]  get_tree_keyed+0x10e/0x1d0
[  128.957442][ T6517]  vfs_get_tree+0x8b/0x340
[  128.957465][ T6517]  path_mount+0x1513/0x2000
[  128.957502][ T6517]  ? __pfx_path_mount+0x10/0x10
[  128.957536][ T6517]  ? kmem_cache_free+0x2d1/0x4d0
[  128.957562][ T6517]  ? putname+0x154/0x1a0
[  128.957600][ T6517]  ? putname+0x154/0x1a0
[  128.957636][ T6517]  ? __x64_sys_mount+0x28d/0x310
[  128.957664][ T6517]  __x64_sys_mount+0x28d/0x310
[  128.957696][ T6517]  ? __pfx___x64_sys_mount+0x10/0x10
[  128.957738][ T6517]  do_syscall_64+0xcd/0x490
[  128.957774][ T6517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.957799][ T6517] RIP: 0033:0x7fd57ab8ebe9
[  128.957820][ T6517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.957844][ T6517] RSP: 002b:00007fd578df6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  128.957868][ T6517] RAX: ffffffffffffffda RBX: 00007fd57adb6090 RCX: 00007fd57ab8ebe9
[  128.957885][ T6517] RDX: 0000200000000140 RSI: 0000200000000100 RDI: 0000000000000000
[  128.957900][ T6517] RBP: 00007fd57ac11e19 R08: 0000000000000000 R09: 0000000000000000
[  128.957916][ T6517] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[  128.957931][ T6517] R13: 00007fd57adb6128 R14: 00007fd57adb6090 R15: 00007ffd6fe35368
[  128.957966][ T6517]  </TASK>
[  130.739292][ T6544] FAULT_INJECTION: forcing a failure.
[  130.739292][ T6544] name failslab, interval 1, probability 0, space 0, times 0
[  130.754153][ T6544] CPU: 0 UID: 0 PID: 6544 Comm: syz.0.154 Not tainted syzkaller #0 PREEMPT(full) 
[  130.754187][ T6544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  130.754202][ T6544] Call Trace:
[  130.754210][ T6544]  <TASK>
[  130.754218][ T6544]  dump_stack_lvl+0x16c/0x1f0
[  130.754258][ T6544]  should_fail_ex+0x512/0x640
[  130.754292][ T6544]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  130.754320][ T6544]  ? __pfx_dvb_frontend_thread+0x10/0x10
[  130.754355][ T6544]  should_failslab+0xc2/0x120
[  130.754387][ T6544]  __kmalloc_cache_noprof+0x6a/0x3e0
[  130.754412][ T6544]  ? lockdep_init_map_type+0x5c/0x280
[  130.754446][ T6544]  ? __kthread_create_on_node+0xce/0x3f0
[  130.754483][ T6544]  ? __pfx_dvb_frontend_thread+0x10/0x10
[  130.754518][ T6544]  __kthread_create_on_node+0xce/0x3f0
[  130.754554][ T6544]  ? __pfx___kthread_create_on_node+0x10/0x10
[  130.754606][ T6544]  ? __pfx_dvb_frontend_thread+0x10/0x10
[  130.754643][ T6544]  kthread_create_on_node+0xc7/0x100
[  130.754676][ T6544]  ? __pfx_kthread_create_on_node+0x10/0x10
[  130.754717][ T6544]  ? mark_held_locks+0x49/0x80
[  130.754749][ T6544]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  130.754779][ T6544]  ? lockdep_hardirqs_on+0x7c/0x110
[  130.754817][ T6544]  dvb_frontend_open+0xf47/0x1730
[  130.754860][ T6544]  ? __pfx_dvb_frontend_open+0x10/0x10
[  130.754898][ T6544]  dvb_device_open+0x26d/0x3b0
[  130.754934][ T6544]  ? __pfx_dvb_device_open+0x10/0x10
[  130.754970][ T6544]  chrdev_open+0x234/0x6a0
[  130.755004][ T6544]  ? __pfx_chrdev_open+0x10/0x10
[  130.755039][ T6544]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  130.755075][ T6544]  do_dentry_open+0x982/0x1530
[  130.755118][ T6544]  ? __pfx_chrdev_open+0x10/0x10
[  130.755160][ T6544]  vfs_open+0x82/0x3f0
[  130.755203][ T6544]  path_openat+0x1de4/0x2cb0
[  130.755246][ T6544]  ? __pfx_path_openat+0x10/0x10
[  130.755287][ T6544]  do_filp_open+0x20b/0x470
[  130.755319][ T6544]  ? __pfx_do_filp_open+0x10/0x10
[  130.755376][ T6544]  ? alloc_fd+0x471/0x7d0
[  130.755415][ T6544]  do_sys_openat2+0x11b/0x1d0
[  130.755453][ T6544]  ? __pfx_do_sys_openat2+0x10/0x10
[  130.755506][ T6544]  __x64_sys_openat+0x174/0x210
[  130.755545][ T6544]  ? __pfx___x64_sys_openat+0x10/0x10
[  130.755593][ T6544]  do_syscall_64+0xcd/0x490
[  130.755624][ T6544]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.755647][ T6544] RIP: 0033:0x7fea28d8ebe9
[  130.755667][ T6544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.755688][ T6544] RSP: 002b:00007fea29b7a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  130.755712][ T6544] RAX: ffffffffffffffda RBX: 00007fea28fb5fa0 RCX: 00007fea28d8ebe9
[  130.755728][ T6544] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  130.755743][ T6544] RBP: 00007fea28e11e19 R08: 0000000000000000 R09: 0000000000000000
[  130.755759][ T6544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  130.755773][ T6544] R13: 00007fea28fb6038 R14: 00007fea28fb5fa0 R15: 00007ffe60f08718
[  130.755804][ T6544]  </TASK>
[  130.755838][ T6544] i2c i2c-0: dvb_frontend_start: failed to start kthread (-12)
[  132.620579][ T6561] FAULT_INJECTION: forcing a failure.
[  132.620579][ T6561] name failslab, interval 1, probability 0, space 0, times 0
[  132.643501][   T30] audit: type=1804 audit(1756144843.816:5): pid=6564 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.156" name="/newroot/36/file0" dev="tmpfs" ino=208 res=1 errno=0
[  132.663533][ T6561] CPU: 1 UID: 0 PID: 6561 Comm: syz.2.155 Not tainted syzkaller #0 PREEMPT(full) 
[  132.663570][ T6561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  132.663586][ T6561] Call Trace:
[  132.663596][ T6561]  <TASK>
[  132.663605][ T6561]  dump_stack_lvl+0x16c/0x1f0
[  132.663644][ T6561]  should_fail_ex+0x512/0x640
[  132.663679][ T6561]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  132.663714][ T6561]  should_failslab+0xc2/0x120
[  132.663746][ T6561]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  132.663778][ T6561]  ? ptlock_alloc+0x1f/0x70
[  132.663809][ T6561]  ptlock_alloc+0x1f/0x70
[  132.663833][ T6561]  pte_alloc_one+0x82/0x3a0
[  132.663861][ T6561]  __pte_alloc+0x6d/0x3c0
[  132.663909][ T6561]  ? __pfx___pte_alloc+0x10/0x10
[  132.663943][ T6561]  ? __pfx___might_resched+0x10/0x10
[  132.663969][ T6561]  ? copy_page_range+0x1fa8/0x5c80
[  132.664000][ T6561]  copy_page_range+0x3b83/0x5c80
[  132.664065][ T6561]  ? mas_destroy+0x5de/0xa20
[  132.664101][ T6561]  ? __pfx_copy_page_range+0x10/0x10
[  132.664131][ T6561]  ? mas_store+0x7a9/0x1160
[  132.664168][ T6561]  ? find_held_lock+0x2b/0x80
[  132.664194][ T6561]  ? __pfx_mas_store+0x10/0x10
[  132.664226][ T6561]  ? __vma_enter_locked+0x163/0x3f0
[  132.664271][ T6561]  dup_mmap+0xe88/0x21d0
[  132.664321][ T6561]  ? __pfx_dup_mmap+0x10/0x10
[  132.664378][ T6561]  copy_process+0x4081/0x7690
[  132.664421][ T6561]  ? __pfx_copy_process+0x10/0x10
[  132.664449][ T6561]  ? futex_private_hash_put+0x176/0x300
[  132.664483][ T6561]  ? futex_private_hash_put+0x18a/0x300
[  132.664519][ T6561]  kernel_clone+0xfc/0x930
[  132.664548][ T6561]  ? __pfx_futex_wake+0x10/0x10
[  132.664577][ T6561]  ? __pfx_kernel_clone+0x10/0x10
[  132.664604][ T6561]  ? __pfx_vfs_writev+0x10/0x10
[  132.664649][ T6561]  __do_sys_clone+0xce/0x120
[  132.664681][ T6561]  ? __pfx___do_sys_clone+0x10/0x10
[  132.664729][ T6561]  ? xfd_validate_state+0x61/0x180
[  132.664763][ T6561]  ? __pfx_do_writev+0x10/0x10
[  132.664800][ T6561]  do_syscall_64+0xcd/0x490
[  132.664835][ T6561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.664860][ T6561] RIP: 0033:0x7fd57ab8ebe9
[  132.664881][ T6561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.664913][ T6561] RSP: 002b:00007fd578df5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  132.664937][ T6561] RAX: ffffffffffffffda RBX: 00007fd57adb6090 RCX: 00007fd57ab8ebe9
[  132.664955][ T6561] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  132.664971][ T6561] RBP: 00007fd57ac11e19 R08: 0000000000000000 R09: 0000000000000000
[  132.664987][ T6561] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  132.665002][ T6561] R13: 00007fd57adb6128 R14: 00007fd57adb6090 R15: 00007ffd6fe35368
[  132.665038][ T6561]  </TASK>
[  132.906123][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  132.953792][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  133.342773][   T30] audit: type=1804 audit(1756144844.516:6): pid=6559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.156" name="/newroot/36/file0" dev="tmpfs" ino=208 res=1 errno=0
[  134.110161][ T6583] Process accounting resumed
[  134.670601][   T30] audit: type=1800 audit(1756144845.846:7): pid=6615 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.165" name="members" dev="configfs" ino=10086 res=0 errno=0
[  137.623346][ T6668] [U] 
[  137.626409][ T6668] [U] 
[  137.629086][ T6668] [U] 
[  137.631760][ T6668] [U] 
[  137.684028][ T6668] [U] 
[  137.686736][ T6668] [U] 
[  137.689409][ T6668] [U] 
[  137.692106][ T6668] [U] 
[  137.712128][ T6668] [U] 
[  137.714842][ T6668] [U] 
[  137.717516][ T6668] [U] 
[  137.720191][ T6668] [U] 
[  137.843833][ T6668] [U] 
[  137.846542][ T6668] [U] 
[  137.849218][ T6668] [U] 
[  137.851901][ T6668] [U] 
[  137.864828][ T6668] [U] 
[  137.867556][ T6668] [U] 
[  137.870264][ T6668] [U] 
[  137.872965][ T6668] [U] 
[  137.881695][ T6668] [U] 
[  137.884414][ T6668] [U] 
[  137.887102][ T6668] [U] 
[  137.889776][ T6668] [U] 
[  137.900015][ T6668] [U] 
[  137.902738][ T6668] [U] 
[  137.905456][ T6668] [U] 
[  137.908178][ T6668] [U] 
[  137.915924][ T6668] [U] 
[  137.918641][ T6668] [U] 
[  137.921354][ T6668] [U] 
[  137.924074][ T6668] [U] 
[  137.929375][ T6668] [U] 
[  137.932071][ T6668] [U] 
[  137.934770][ T6668] [U] 
[  137.937464][ T6668] [U] 
[  138.032413][ T6668] [U] 
[  138.035151][ T6668] [U] 
[  138.037863][ T6668] [U] 
[  138.040576][ T6668] [U] 
[  138.090092][ T6668] [U] 
[  138.092833][ T6668] [U] 
[  138.095529][ T6668] [U] 
[  138.098226][ T6668] [U] 
[  138.101936][ T6668] [U] 
[  138.104658][ T6668] [U] 
[  138.107351][ T6668] [U] 
[  138.110046][ T6668] [U] 
[  138.118219][ T6668] [U] 
[  138.120914][ T6668] [U] 
[  138.123606][ T6668] [U] 
[  138.126291][ T6668] [U] 
[  138.129910][ T6668] [U] 
[  138.132595][ T6668] [U] 
[  138.135268][ T6668] [U] 
[  138.137947][ T6668] [U] 
[  138.141302][ T6668] [U] 
[  138.143990][ T6668] [U] 
[  138.146681][ T6668] [U] 
[  138.149352][ T6668] [U] 
[  138.152647][ T6668] [U] 
[  138.155348][ T6668] [U] 
[  138.158043][ T6668] [U] 
[  138.160732][ T6668] [U] 
[  138.169935][ T6668] [U] 
[  138.172643][ T6668] [U] 
[  138.175493][ T6668] [U] 
[  138.178166][ T6668] [U] 
[  138.183848][ T6668] [U] 
[  138.186559][ T6668] [U] 
[  138.189233][ T6668] [U] 
[  138.191926][ T6668] [U] 
[  138.226176][ T6668] [U] 
[  138.228924][ T6668] [U] 
[  138.231635][ T6668] [U] 
[  138.234389][ T6668] [U] 
[  138.255878][ T6668] [U] 
[  138.301171][ T6682] usbcore.quirks: string doesn't fit in 127 chars.
[  141.498852][   T30] audit: type=1804 audit(1756144852.676:8): pid=6752 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.198" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  142.906629][ T6775] zswap: compressor  not available
[  143.923882][ T6798] FAULT_INJECTION: forcing a failure.
[  143.923882][ T6798] name failslab, interval 1, probability 0, space 0, times 0
[  143.969603][ T6798] CPU: 1 UID: 0 PID: 6798 Comm: syz.3.206 Not tainted syzkaller #0 PREEMPT(full) 
[  143.969639][ T6798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  143.969655][ T6798] Call Trace:
[  143.969664][ T6798]  <TASK>
[  143.969674][ T6798]  dump_stack_lvl+0x16c/0x1f0
[  143.969715][ T6798]  should_fail_ex+0x512/0x640
[  143.969750][ T6798]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  143.969792][ T6798]  should_failslab+0xc2/0x120
[  143.969827][ T6798]  __kmalloc_cache_noprof+0x6a/0x3e0
[  143.969855][ T6798]  ? kvm_dev_ioctl+0x15f6/0x1af0
[  143.969887][ T6798]  kvm_dev_ioctl+0x15f6/0x1af0
[  143.969926][ T6798]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  143.969957][ T6798]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  143.969972][ T6798]  __x64_sys_ioctl+0x18e/0x210
[  143.969995][ T6798]  do_syscall_64+0xcd/0x490
[  143.970015][ T6798]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.970029][ T6798] RIP: 0033:0x7f765798ebe9
[  143.970041][ T6798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.970054][ T6798] RSP: 002b:00007f765888a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  143.970068][ T6798] RAX: ffffffffffffffda RBX: 00007f7657bb5fa0 RCX: 00007f765798ebe9
[  143.970077][ T6798] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002
[  143.970089][ T6798] RBP: 00007f7657a11e19 R08: 0000000000000000 R09: 0000000000000000
[  143.970097][ T6798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  143.970105][ T6798] R13: 00007f7657bb6038 R14: 00007f7657bb5fa0 R15: 00007ffdfed41248
[  143.970122][ T6798]  </TASK>
[  148.440583][ T6862] netlink: 25 bytes leftover after parsing attributes in process `syz.0.223'.
[  149.613890][ T6884] netlink: 330 bytes leftover after parsing attributes in process `syz.1.229'.
[  150.349257][ T5872] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  150.387432][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805e802800: rx timeout, send abort
[  150.896724][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805e802800: abort rx timeout. Force session deactivation
[  150.955360][ T6828] Process accounting resumed
[  151.054198][ T6913] netlink: 28 bytes leftover after parsing attributes in process `syz.0.236'.
[  151.415089][ T6913] hsr_slave_0: left promiscuous mode
[  151.445866][ T6913] hsr_slave_1: left promiscuous mode
[  155.606795][ T6986] netlink: 338 bytes leftover after parsing attributes in process `syz.3.253'.
[  155.620268][ T6992] netlink: 338 bytes leftover after parsing attributes in process `syz.3.253'.
[  155.642452][ T6996] netlink: 342 bytes leftover after parsing attributes in process `syz.3.253'.
[  156.431883][ T7011] FAULT_INJECTION: forcing a failure.
[  156.431883][ T7011] name failslab, interval 1, probability 0, space 0, times 0
[  156.481949][ T7011] CPU: 1 UID: 0 PID: 7011 Comm: syz.1.257 Not tainted syzkaller #0 PREEMPT(full) 
[  156.481986][ T7011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  156.482001][ T7011] Call Trace:
[  156.482011][ T7011]  <TASK>
[  156.482021][ T7011]  dump_stack_lvl+0x16c/0x1f0
[  156.482061][ T7011]  should_fail_ex+0x512/0x640
[  156.482096][ T7011]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  156.482131][ T7011]  should_failslab+0xc2/0x120
[  156.482164][ T7011]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  156.482196][ T7011]  ? __kernfs_new_node+0xd2/0x8e0
[  156.482234][ T7011]  __kernfs_new_node+0xd2/0x8e0
[  156.482271][ T7011]  ? __pfx___kernfs_new_node+0x10/0x10
[  156.482313][ T7011]  ? find_held_lock+0x2b/0x80
[  156.482339][ T7011]  ? kernfs_root+0xee/0x2a0
[  156.482379][ T7011]  kernfs_new_node+0x13c/0x1e0
[  156.482421][ T7011]  __kernfs_create_file+0x53/0x350
[  156.482452][ T7011]  sysfs_add_file_mode_ns+0x207/0x3c0
[  156.482492][ T7011]  internal_create_group+0x578/0xf30
[  156.482534][ T7011]  ? __pfx_internal_create_group+0x10/0x10
[  156.482590][ T7011]  sysfs_slab_add+0x1a3/0x1e0
[  156.482621][ T7011]  do_kmem_cache_create+0x529/0x720
[  156.482653][ T7011]  ? __kmem_cache_create_args+0x205/0x390
[  156.482687][ T7011]  __kmem_cache_create_args+0x225/0x390
[  156.482720][ T7011]  mon_text_open+0x313/0x4f0
[  156.482750][ T7011]  ? __pfx_mon_text_open+0x10/0x10
[  156.482777][ T7011]  ? __debugfs_file_get+0x1fe/0x840
[  156.482816][ T7011]  ? __pfx_mon_text_ctor+0x10/0x10
[  156.482844][ T7011]  ? __pfx_apparmor_file_open+0x10/0x10
[  156.482871][ T7011]  ? lockdown_is_locked_down+0x3f/0x130
[  156.482894][ T7011]  ? bpf_lsm_locked_down+0x9/0x10
[  156.482921][ T7011]  ? __pfx_mon_text_open+0x10/0x10
[  156.482948][ T7011]  full_proxy_open_regular+0x1b9/0x360
[  156.482977][ T7011]  do_dentry_open+0x982/0x1530
[  156.483009][ T7011]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  156.483043][ T7011]  vfs_open+0x82/0x3f0
[  156.483082][ T7011]  path_openat+0x1de4/0x2cb0
[  156.483122][ T7011]  ? __pfx_path_openat+0x10/0x10
[  156.483162][ T7011]  do_filp_open+0x20b/0x470
[  156.483192][ T7011]  ? __pfx_do_filp_open+0x10/0x10
[  156.483247][ T7011]  ? alloc_fd+0x471/0x7d0
[  156.483285][ T7011]  do_sys_openat2+0x11b/0x1d0
[  156.483322][ T7011]  ? __pfx_do_sys_openat2+0x10/0x10
[  156.483362][ T7011]  ? __pfx___might_resched+0x10/0x10
[  156.483398][ T7011]  __x64_sys_openat+0x174/0x210
[  156.483436][ T7011]  ? __pfx___x64_sys_openat+0x10/0x10
[  156.483483][ T7011]  do_syscall_64+0xcd/0x490
[  156.483521][ T7011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.483553][ T7011] RIP: 0033:0x7f9d1f38ebe9
[  156.483575][ T7011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.483600][ T7011] RSP: 002b:00007f9d2027e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  156.483625][ T7011] RAX: ffffffffffffffda RBX: 00007f9d1f5b5fa0 RCX: 00007f9d1f38ebe9
[  156.483643][ T7011] RDX: 0000000000101080 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  156.483660][ T7011] RBP: 00007f9d1f411e19 R08: 0000000000000000 R09: 0000000000000000
[  156.483675][ T7011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  156.483691][ T7011] R13: 00007f9d1f5b6038 R14: 00007f9d1f5b5fa0 R15: 00007ffd5fa0d508
[  156.483727][ T7011]  </TASK>
[  156.816356][ T7011] SLUB: Unable to add cache mon_text_ffff88807c2ef000 to sysfs
[  157.049511][ T7018] netlink: 5 bytes leftover after parsing attributes in process `syz.0.258'.
[  157.455830][ T7022] Invalid ELF header magic: != ELF
[  157.933688][ T7022] netlink: 330 bytes leftover after parsing attributes in process `syz.3.261'.
[  159.123805][ T7035] zswap: compressor  not available
[  159.442603][ T7053] FAULT_INJECTION: forcing a failure.
[  159.442603][ T7053] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  159.456472][ T7053] CPU: 1 UID: 0 PID: 7053 Comm: syz.2.268 Not tainted syzkaller #0 PREEMPT(full) 
[  159.456504][ T7053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  159.456518][ T7053] Call Trace:
[  159.456527][ T7053]  <TASK>
[  159.456536][ T7053]  dump_stack_lvl+0x16c/0x1f0
[  159.456575][ T7053]  should_fail_ex+0x512/0x640
[  159.456615][ T7053]  should_fail_alloc_page+0xe7/0x130
[  159.456650][ T7053]  prepare_alloc_pages+0x3c2/0x610
[  159.456691][ T7053]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  159.456724][ T7053]  ? stack_trace_save+0x8e/0xc0
[  159.456751][ T7053]  ? __pfx_stack_trace_save+0x10/0x10
[  159.456780][ T7053]  ? stack_depot_save_flags+0x29/0x9c0
[  159.456820][ T7053]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  159.456849][ T7053]  ? __kasan_kmalloc+0xaa/0xb0
[  159.456876][ T7053]  ? write_ldt+0x852/0xd20
[  159.456900][ T7053]  ? do_syscall_64+0xcd/0x490
[  159.456931][ T7053]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.456983][ T7053]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  159.457024][ T7053]  ? policy_nodemask+0xea/0x4e0
[  159.457061][ T7053]  alloc_pages_mpol+0x1fb/0x550
[  159.457098][ T7053]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  159.457141][ T7053]  alloc_pages_noprof+0x131/0x390
[  159.457175][ T7053]  get_zeroed_page_noprof+0x18/0xb0
[  159.457209][ T7053]  alloc_ldt_struct+0x9f/0x1a0
[  159.457232][ T7053]  write_ldt+0x852/0xd20
[  159.457264][ T7053]  ? __pfx_write_ldt+0x10/0x10
[  159.457297][ T7053]  ? up_write+0x1b2/0x520
[  159.457339][ T7053]  __x64_sys_modify_ldt+0xb1/0x170
[  159.457367][ T7053]  do_syscall_64+0xcd/0x490
[  159.457401][ T7053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.457423][ T7053] RIP: 0033:0x7fd57ab8ebe9
[  159.457443][ T7053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.457467][ T7053] RSP: 002b:00007fd57b914038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[  159.457492][ T7053] RAX: ffffffffffffffda RBX: 00007fd57adb5fa0 RCX: 00007fd57ab8ebe9
[  159.457508][ T7053] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000001
[  159.457522][ T7053] RBP: 00007fd57ac11e19 R08: 0000000000000000 R09: 0000000000000000
[  159.457537][ T7053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  159.457552][ T7053] R13: 00007fd57adb6038 R14: 00007fd57adb5fa0 R15: 00007ffd6fe35368
[  159.457588][ T7053]  </TASK>
[  159.900410][ T7059] FAULT_INJECTION: forcing a failure.
[  159.900410][ T7059] name failslab, interval 1, probability 0, space 0, times 0
[  159.913611][ T7059] CPU: 1 UID: 0 PID: 7059 Comm: syz.3.270 Not tainted syzkaller #0 PREEMPT(full) 
[  159.913644][ T7059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  159.913657][ T7059] Call Trace:
[  159.913665][ T7059]  <TASK>
[  159.913673][ T7059]  dump_stack_lvl+0x16c/0x1f0
[  159.913709][ T7059]  should_fail_ex+0x512/0x640
[  159.913746][ T7059]  should_failslab+0xc2/0x120
[  159.913774][ T7059]  __kmalloc_cache_noprof+0x6a/0x3e0
[  159.913799][ T7059]  ? nfc_genl_rcv_nl_event+0xc1/0x2e0
[  159.913844][ T7059]  nfc_genl_rcv_nl_event+0xc1/0x2e0
[  159.913884][ T7059]  notifier_call_chain+0xbc/0x410
[  159.913914][ T7059]  ? __pfx_nfc_genl_rcv_nl_event+0x10/0x10
[  159.913973][ T7059]  blocking_notifier_call_chain+0x69/0xa0
[  159.914011][ T7059]  netlink_release+0x186b/0x2020
[  159.914053][ T7059]  ? netlink_release+0x1de/0x2020
[  159.914090][ T7059]  ? __pfx_netlink_release+0x10/0x10
[  159.914128][ T7059]  ? __pfx_locks_remove_file+0x10/0x10
[  159.914159][ T7059]  __sock_release+0xb0/0x270
[  159.914195][ T7059]  ? __pfx_sock_close+0x10/0x10
[  159.914227][ T7059]  sock_close+0x1c/0x30
[  159.914258][ T7059]  __fput+0x402/0xb70
[  159.914295][ T7059]  ? _raw_spin_unlock_irq+0x23/0x50
[  159.914328][ T7059]  task_work_run+0x14d/0x240
[  159.914368][ T7059]  ? __pfx_task_work_run+0x10/0x10
[  159.914407][ T7059]  ? __pfx___do_sys_close_range+0x10/0x10
[  159.914445][ T7059]  exit_to_user_mode_loop+0xeb/0x110
[  159.914484][ T7059]  do_syscall_64+0x3f6/0x490
[  159.914521][ T7059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.914545][ T7059] RIP: 0033:0x7f765798ebe9
[  159.914565][ T7059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.914589][ T7059] RSP: 002b:00007f765888a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  159.914613][ T7059] RAX: 0000000000000000 RBX: 00007f7657bb5fa0 RCX: 00007f765798ebe9
[  159.914630][ T7059] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  159.914644][ T7059] RBP: 00007f7657a11e19 R08: 0000000000000000 R09: 0000000000000000
[  159.914660][ T7059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  159.914676][ T7059] R13: 00007f7657bb6038 R14: 00007f7657bb5fa0 R15: 00007ffdfed41248
[  159.914712][ T7059]  </TASK>
[  163.736257][ T7114] ACPI: Can not change Invalid GPE/Fixed Event status
[  164.362421][ T7111] Process accounting paused
[  165.111736][ T7135] netlink: 8 bytes leftover after parsing attributes in process `syz.0.286'.
[  167.204754][ T7178] netlink: 25 bytes leftover after parsing attributes in process `syz.3.295'.
[  167.508463][ T7187] XFS: Clearing xfsstats
[  167.769433][   T51] Bluetooth: hci0: unexpected subevent 0x12 length: 123 > 5
[  168.068566][ T7202] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input7
[  168.094773][ T7202] FAULT_INJECTION: forcing a failure.
[  168.094773][ T7202] name fail_futex, interval 1, probability 0, space 0, times 1
[  168.108021][ T7203] __vm_enough_memory: pid: 7203, comm: syz.1.301, bytes: 4398046511104 not enough memory for the allocation
[  168.192137][ T7202] CPU: 1 UID: 0 PID: 7202 Comm: syz.3.300 Not tainted syzkaller #0 PREEMPT(full) 
[  168.192171][ T7202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  168.192185][ T7202] Call Trace:
[  168.192194][ T7202]  <TASK>
[  168.192204][ T7202]  dump_stack_lvl+0x16c/0x1f0
[  168.192241][ T7202]  should_fail_ex+0x512/0x640
[  168.192278][ T7202]  get_futex_key+0x1d0/0x1560
[  168.192312][ T7202]  ? __pfx_get_futex_key+0x10/0x10
[  168.192338][ T7202]  ? trace_pid_list_is_set+0xfb/0x150
[  168.192368][ T7202]  ? do_raw_spin_unlock+0x172/0x230
[  168.192405][ T7202]  futex_wait_setup+0x9d/0x550
[  168.192450][ T7202]  __futex_wait+0x194/0x2f0
[  168.192487][ T7202]  ? __pfx___futex_wait+0x10/0x10
[  168.192520][ T7202]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  168.192548][ T7202]  ? lockdep_hardirqs_on+0x7c/0x110
[  168.192577][ T7202]  ? __pfx_futex_wake_mark+0x10/0x10
[  168.192615][ T7202]  ? futex_private_hash_put+0x176/0x300
[  168.192648][ T7202]  ? futex_private_hash_put+0x18a/0x300
[  168.192678][ T7202]  futex_wait+0xe8/0x380
[  168.192711][ T7202]  ? __pfx_futex_wait+0x10/0x10
[  168.192760][ T7202]  ? uinput_ioctl_handler.isra.0+0x828/0x1df0
[  168.192797][ T7202]  do_futex+0x229/0x350
[  168.192826][ T7202]  ? __pfx_do_futex+0x10/0x10
[  168.192857][ T7202]  ? find_held_lock+0x2b/0x80
[  168.192880][ T7202]  __x64_sys_futex+0x1e0/0x4c0
[  168.192901][ T7202]  ? __pfx___x64_sys_futex+0x10/0x10
[  168.192919][ T7202]  ? xfd_validate_state+0x61/0x180
[  168.192945][ T7202]  do_syscall_64+0xcd/0x490
[  168.192965][ T7202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.192979][ T7202] RIP: 0033:0x7f765798ebe9
[  168.192991][ T7202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.193004][ T7202] RSP: 002b:00007f765888a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  168.193018][ T7202] RAX: ffffffffffffffda RBX: 00007f7657bb5fa8 RCX: 00007f765798ebe9
[  168.193027][ T7202] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f7657bb5fa8
[  168.193036][ T7202] RBP: 00007f7657bb5fa0 R08: 0000000000000000 R09: 0000000000000000
[  168.193044][ T7202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  168.193052][ T7202] R13: 00007f7657bb6038 R14: 00007ffdfed41160 R15: 00007ffdfed41248
[  168.193070][ T7202]  </TASK>
[  168.418962][    C1] vkms_vblank_simulate: vblank timer overrun
[  169.019308][ T7217] random: crng reseeded on system resumption




		


	
		

	


	
	

		
	
		
	
	



			








	





	




	
	



























	







	
		


		
			
				
	


	
		
	
	
	
	






	




	




		







	
				
	
	



	

		

	

	
	

			
				


	
	
	

	
		





	

	









		









	

	









		




	

	
		
	
	

	
	
	
	

	
	

	
		

	


	

	

		
	
		
	
	



			








	

	






	
	



	
	









		

	















	










		
	
	






























	

		
	
	


	









	
	
	
	


	






	






	







		









	

	

	

	
	
	
	

		
	
	



			






















		
	
	


	









	
	
	
	


	






	






	







		








	

	
	
	
	



			
			
	
	
		



	


	








	
	




	
	
	

			
			
	

		
		
		









	



	
	
	

			
			
	

		
		
		









	



			
		
	
	
	
	

			
			
		






			
		
	
	
	
	

			
			
		






			
		
	
	
	
	

			
			
		






			
		
	
	
	
	

			
			
		















	
	
	


	
	
	
	
	
	
	
	
	
	
	



	











	
	
	
	
	
	
	
	
	
	
	





	





	





	





	






	











	






	
	
		
		

	



	
		

	


	
	

		
	
		
	
	



			








	





	







	




	

	
	


	



	
	


	



	

		

		
	


	


		
		
	
	
	
	
	
	
	
	
	
		
	
	
	






	




	




		







	

	
	

	
		
	
			
	
			


			

	

	



	




	
	
	
	
	
	

	
	

	
		

	
		

	


	

	

		
	
		
	
	



			








	

	






	
	



	
	









	



















	




	






	










		
	
	







































	
	

	


























	




	




















	










	



	





	

			
				
	
	

	
	
	
	
	

	






	




	





		













	

	
		
	

		
	
	



			


























	
	

	


























	




	




















	










	



	





	

			
				
	
	

	
	
	
	
	

	






	




	





		







	

	
	
	
	



			
			
	
	
		



	


	








	
	




	
	
	

			
			
	

		
		
		









	



	
	
	

			
			
	

		
		
		









	



			
		
	
	
	
	

			
			
		






			
		
	
	
	
	

			
			
		






			
		
	
	
	
	

			
			
		






			
		
	
	
	
	

			
			
		















	
	
	


	

	
	
	
	
	
	
	
	
	



	











	
	
	
	
	
	
	
	
	
	
	





	





	





	





	






	











	


	
		

	


	
	

		
	





		
	
	



			








	

	
	


	







	




	

	
	


	



	
	


	



	

	

	

	

	




	
	
	
	
	






	





	





		







	




	
				
	
	
	
	
	
	
	
	



	

	
		
			

			

			

			

			

			


	
		

	


	
	

		
	
		
	
	



			








	


	

	



	



	

	



	





	






	





	







		










	

	
		

syzkaller
syzkaller login: [  209.251849][ T7941] 0x000200000001-0xa29656a63616329 : ""
[  209.258544][ T7941] mtd: partition "" is out of reach -- disabled
[  209.368316][ T7941] ftl_cs: FTL header not found.
[  210.831276][ T7969] zswap: compressor  not available
[  210.834099][ T7978] FAULT_INJECTION: forcing a failure.
[  210.834099][ T7978] name failslab, interval 1, probability 0, space 0, times 0
[  210.854855][ T7973] Setting dangerous option i915.mitigations - tainting kernel
[  210.895488][ T7978] CPU: 1 UID: 0 PID: 7978 Comm: syz.3.452 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  210.895534][ T7978] Tainted: [U]=USER
[  210.895543][ T7978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  210.895558][ T7978] Call Trace:
[  210.895568][ T7978]  <TASK>
[  210.895578][ T7978]  dump_stack_lvl+0x16c/0x1f0
[  210.895617][ T7978]  should_fail_ex+0x512/0x640
[  210.895652][ T7978]  ? __kmalloc_noprof+0xbf/0x510
[  210.895685][ T7978]  ? iovec_from_user+0x108/0x140
[  210.895708][ T7978]  should_failslab+0xc2/0x120
[  210.895741][ T7978]  __kmalloc_noprof+0xd2/0x510
[  210.895779][ T7978]  iovec_from_user+0x108/0x140
[  210.895808][ T7978]  process_vm_rw+0x1d8/0x2c0
[  210.895844][ T7978]  ? __pfx_process_vm_rw+0x10/0x10
[  210.895903][ T7978]  ? do_raw_spin_lock+0x12c/0x2b0
[  210.895957][ T7978]  ? xfd_validate_state+0x61/0x180
[  210.895991][ T7978]  ? __task_pid_nr_ns+0x17c/0x500
[  210.896029][ T7978]  __x64_sys_process_vm_readv+0xe2/0x1c0
[  210.896063][ T7978]  ? do_syscall_64+0x91/0x490
[  210.896096][ T7978]  ? lockdep_hardirqs_on+0x7c/0x110
[  210.896133][ T7978]  do_syscall_64+0xcd/0x490
[  210.896171][ T7978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.896197][ T7978] RIP: 0033:0x7f765798ebe9
[  210.896218][ T7978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.896242][ T7978] RSP: 002b:00007f765888a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  210.896267][ T7978] RAX: ffffffffffffffda RBX: 00007f7657bb5fa0 RCX: 00007f765798ebe9
[  210.896284][ T7978] RDX: 0000040000000001 RSI: 0000200000000000 RDI: 00000000000001d9
[  210.896300][ T7978] RBP: 00007f7657a11e19 R08: 000000000000000a R09: 0000000000000000
[  210.896315][ T7978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  210.896330][ T7978] R13: 00007f7657bb6038 R14: 00007f7657bb5fa0 R15: 00007ffdfed41248
[  210.896365][ T7978]  </TASK>
[  211.264486][ T7981] FAULT_INJECTION: forcing a failure.
[  211.264486][ T7981] name failslab, interval 1, probability 0, space 0, times 0
[  211.277198][ T7981] CPU: 1 UID: 0 PID: 7981 Comm: syz.0.454 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  211.277236][ T7981] Tainted: [U]=USER
[  211.277244][ T7981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  211.277259][ T7981] Call Trace:
[  211.277268][ T7981]  <TASK>
[  211.277277][ T7981]  dump_stack_lvl+0x16c/0x1f0
[  211.277316][ T7981]  should_fail_ex+0x512/0x640
[  211.277352][ T7981]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  211.277380][ T7981]  should_failslab+0xc2/0x120
[  211.277410][ T7981]  __kmalloc_cache_noprof+0x6a/0x3e0
[  211.277436][ T7981]  ? alloc_fs_context+0x57/0x9c0
[  211.277470][ T7981]  alloc_fs_context+0x57/0x9c0
[  211.277505][ T7981]  path_mount+0xbdd/0x2000
[  211.277543][ T7981]  ? __pfx_path_mount+0x10/0x10
[  211.277579][ T7981]  ? kmem_cache_free+0x2d1/0x4d0
[  211.277607][ T7981]  ? putname+0x154/0x1a0
[  211.277645][ T7981]  ? putname+0x154/0x1a0
[  211.277682][ T7981]  ? __x64_sys_mount+0x28d/0x310
[  211.277712][ T7981]  __x64_sys_mount+0x28d/0x310
[  211.277744][ T7981]  ? __pfx___x64_sys_mount+0x10/0x10
[  211.277787][ T7981]  do_syscall_64+0xcd/0x490
[  211.277821][ T7981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.277846][ T7981] RIP: 0033:0x7fea28d8ebe9
[  211.277867][ T7981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.277891][ T7981] RSP: 002b:00007fea29b7a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  211.277915][ T7981] RAX: ffffffffffffffda RBX: 00007fea28fb5fa0 RCX: 00007fea28d8ebe9
[  211.277932][ T7981] RDX: 0000200000000140 RSI: 0000200000000080 RDI: 0000000000000000
[  211.277948][ T7981] RBP: 00007fea28e11e19 R08: 00002000000001c0 R09: 0000000000000000
[  211.277964][ T7981] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  211.277979][ T7981] R13: 00007fea28fb6038 R14: 00007fea28fb5fa0 R15: 00007ffe60f08718
[  211.278013][ T7981]  </TASK>
[  211.527811][ T7970] Process accounting resumed
[  213.401828][ T8027] netlink: 8 bytes leftover after parsing attributes in process `syz.3.463'.
[  214.945132][ T8054] ptrace attach of "./syz-executor exec"[5861] was attempted by "�&�^�.�gܻ��o��Յ��x�>��md�\x0dn[�έ\x0a����?��0^*o
�\x0c��'��\x1bx*�\x0b���϶q/�X3�wꌆ:���:�z�ڣ����A2�ݟ-���Esō����V��`�7�{�o��5��l������\x09���X\x09Gt�����*�
�|�e�&�!.�:h�$8\x09�������&�1 ����fw���»���Q��DZ;{Y]�C�W��\x0c�ô.Lo� �����]$����n�\x07Z�&JʦL���)�m�
T�P I�dpS5J�)3��s
�x��ϡ\x0c����\x5c&�2c]�%��4gW_��ֵy�ӽ͐-���d���x\x07g,.�^�=� 6?�b���]���,��q�4��_�rm�f~�\x0cdQs�qLϦ
F�`�\x07�FBY�2�֒,,�jfx�d-ǎ�<g�aj2[�́=�\x0b�!��ٗNg�bvĂsֵ%�Y��
7�?7N*���*��њ�-�+JH(�Jy������X�����Z �qG�VV�Bʞ�|����GF�V7�ݻ9�\x5c,P*��ݴ�)�,����b}�aJ����2&��7>~�ĝ��̓)����Nk%\x5c�o$�]H�O~�3~Ձ�gf;�x��DTU��F$�i$vЪ~��0%��� ��q'����W�6����.����R[C�O�3p�+�\x22r� \x0be,�Y�l�\x22�$ї��g�\x22�����lT�\x22`�!�`:D1�B�xF��|\x1b\x0a������5r�*��� S_�~E���z:��I\x0d`7�y�~<�D���S�[��dlr���hߛ�.tU��m߇x��2�!G�1b;>� I��\x0d�2��]r�Nc��\x0c\x09���=��l�I,�_�����Al:�*��?1�>�g��#z>qQ!ގ������
[  217.458516][ T8092] netlink: 8 bytes leftover after parsing attributes in process `syz.0.480'.
[  219.313186][ T8147] input: f�
 as /devices/virtual/input/input12
[  219.692989][ T8157] can0: slcan on ptm0.
[  219.775411][ T8155] can0 (unregistered): slcan off ptm0.
[  221.722646][ T8212] FAULT_INJECTION: forcing a failure.
[  221.722646][ T8212] name failslab, interval 1, probability 0, space 0, times 0
[  221.740626][ T8212] CPU: 0 UID: 0 PID: 8212 Comm: syz.3.500 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  221.740667][ T8212] Tainted: [U]=USER
[  221.740676][ T8212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  221.740691][ T8212] Call Trace:
[  221.740700][ T8212]  <TASK>
[  221.740711][ T8212]  dump_stack_lvl+0x16c/0x1f0
[  221.740750][ T8212]  should_fail_ex+0x512/0x640
[  221.740793][ T8212]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  221.740823][ T8212]  should_failslab+0xc2/0x120
[  221.740854][ T8212]  __kmalloc_cache_noprof+0x6a/0x3e0
[  221.740878][ T8212]  ? find_held_lock+0x2b/0x80
[  221.740898][ T8212]  ? alloc_pipe_info+0x10e/0x590
[  221.740932][ T8212]  alloc_pipe_info+0x10e/0x590
[  221.740966][ T8212]  splice_direct_to_actor+0x77d/0xa30
[  221.740992][ T8212]  ? __lock_acquire+0x62e/0x1ce0
[  221.741021][ T8212]  ? __pfx_direct_splice_actor+0x10/0x10
[  221.741049][ T8212]  ? __pfx_aa_file_perm+0x10/0x10
[  221.741082][ T8212]  ? futex_private_hash_put+0x176/0x300
[  221.741111][ T8212]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  221.741142][ T8212]  do_splice_direct+0x174/0x240
[  221.741168][ T8212]  ? __pfx_do_splice_direct+0x10/0x10
[  221.741192][ T8212]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  221.741215][ T8212]  ? bpf_lsm_file_permission+0x9/0x10
[  221.741248][ T8212]  ? security_file_permission+0x71/0x210
[  221.741280][ T8212]  ? rw_verify_area+0xcf/0x6c0
[  221.741308][ T8212]  do_sendfile+0xb06/0xe50
[  221.741341][ T8212]  ? __pfx_do_sendfile+0x10/0x10
[  221.741373][ T8212]  ? __x64_sys_futex+0x1e0/0x4c0
[  221.741398][ T8212]  ? __x64_sys_futex+0x1e9/0x4c0
[  221.741417][ T8212]  __x64_sys_sendfile64+0x1d8/0x220
[  221.741436][ T8212]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  221.741460][ T8212]  do_syscall_64+0xcd/0x490
[  221.741481][ T8212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.741495][ T8212] RIP: 0033:0x7f765798ebe9
[  221.741507][ T8212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.741521][ T8212] RSP: 002b:00007f765888a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  221.741534][ T8212] RAX: ffffffffffffffda RBX: 00007f7657bb5fa0 RCX: 00007f765798ebe9
[  221.741543][ T8212] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[  221.741551][ T8212] RBP: 00007f7657a11e19 R08: 0000000000000000 R09: 0000000000000000
[  221.741559][ T8212] R10: 0000000000000a15 R11: 0000000000000246 R12: 0000000000000000
[  221.741567][ T8212] R13: 00007f7657bb6038 R14: 00007f7657bb5fa0 R15: 00007ffdfed41248
[  221.741585][ T8212]  </TASK>
[  222.073248][ T8224] netlink: 338 bytes leftover after parsing attributes in process `syz.0.501'.
[  222.484833][ T8224] netlink: 338 bytes leftover after parsing attributes in process `syz.0.501'.
[  222.511508][ T8231] netlink: 290 bytes leftover after parsing attributes in process `syz.0.501'.
[  222.562590][ T8231] veth0_macvtap: left promiscuous mode
[  222.593852][ T8224] netlink: 290 bytes leftover after parsing attributes in process `syz.0.501'.
[  222.617584][ T8224] veth0_macvtap: entered promiscuous mode
[  222.761022][ T8232] netlink: 342 bytes leftover after parsing attributes in process `syz.1.503'.
[  223.548482][ T8245] FAULT_INJECTION: forcing a failure.
[  223.548482][ T8245] name failslab, interval 1, probability 0, space 0, times 0
[  223.673665][ T8245] CPU: 0 UID: 0 PID: 8245 Comm: syz.1.506 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  223.673707][ T8245] Tainted: [U]=USER
[  223.673715][ T8245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  223.673730][ T8245] Call Trace:
[  223.673739][ T8245]  <TASK>
[  223.673748][ T8245]  dump_stack_lvl+0x16c/0x1f0
[  223.673787][ T8245]  should_fail_ex+0x512/0x640
[  223.673821][ T8245]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  223.673855][ T8245]  should_failslab+0xc2/0x120
[  223.673887][ T8245]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  223.673915][ T8245]  ? mas_alloc_nodes+0x18b/0x8b0
[  223.673947][ T8245]  mas_alloc_nodes+0x18b/0x8b0
[  223.673984][ T8245]  mas_node_count_gfp+0x105/0x130
[  223.674016][ T8245]  mas_preallocate+0x7e0/0xde0
[  223.674051][ T8245]  ? __memcg_slab_post_alloc_hook+0x412/0x960
[  223.674091][ T8245]  ? __pfx_mas_preallocate+0x10/0x10
[  223.674137][ T8245]  ? anon_vma_name+0x81/0x2f0
[  223.674178][ T8245]  __split_vma+0x34a/0x1070
[  223.674211][ T8245]  ? __pfx___split_vma+0x10/0x10
[  223.674236][ T8245]  ? rcu_is_watching+0x12/0xc0
[  223.674283][ T8245]  vma_modify+0x16dc/0x2030
[  223.674314][ T8245]  ? __pfx___schedule+0x10/0x10
[  223.674342][ T8245]  ? __lock_acquire+0xb97/0x1ce0
[  223.674375][ T8245]  ? __pfx_vma_modify+0x10/0x10
[  223.674413][ T8245]  vma_modify_flags+0x212/0x2d0
[  223.674442][ T8245]  ? __pfx_vma_modify_flags+0x10/0x10
[  223.674495][ T8245]  mlock_fixup+0x27c/0xe50
[  223.674524][ T8245]  ? mas_find+0x156/0x6d0
[  223.674560][ T8245]  apply_vma_lock_flags+0x261/0x390
[  223.674593][ T8245]  ? __pfx_apply_vma_lock_flags+0x10/0x10
[  223.674642][ T8245]  ? __pfx___might_resched+0x10/0x10
[  223.674680][ T8245]  ? __pfx_down_write_killable+0x10/0x10
[  223.674726][ T8245]  do_mlock+0x2ac/0x810
[  223.674759][ T8245]  ? __pfx_do_mlock+0x10/0x10
[  223.674785][ T8245]  ? rcu_is_watching+0x12/0xc0
[  223.674809][ T8245]  ? irqentry_exit+0x3b/0x90
[  223.674856][ T8245]  __x64_sys_mlock+0x59/0x80
[  223.674883][ T8245]  do_syscall_64+0xcd/0x490
[  223.674914][ T8245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.674938][ T8245] RIP: 0033:0x7f9d1f38ebe9
[  223.674959][ T8245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.674980][ T8245] RSP: 002b:00007f9d2027e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  223.675005][ T8245] RAX: ffffffffffffffda RBX: 00007f9d1f5b5fa0 RCX: 00007f9d1f38ebe9
[  223.675023][ T8245] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000000fbe8
[  223.675038][ T8245] RBP: 00007f9d1f411e19 R08: 0000000000000000 R09: 0000000000000000
[  223.675054][ T8245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  223.675069][ T8245] R13: 00007f9d1f5b6038 R14: 00007f9d1f5b5fa0 R15: 00007ffd5fa0d508
[  223.675105][ T8245]  </TASK>
[  224.857786][ T8249] Process accounting paused
[  224.978129][ T8272] input: f�
 as /devices/virtual/input/input13
[  228.373163][ T8352] netlink: 338 bytes leftover after parsing attributes in process `syz.1.528'.
[  228.396171][ T8352] netlink: 338 bytes leftover after parsing attributes in process `syz.1.528'.
[  228.525851][ T8352] netlink: 290 bytes leftover after parsing attributes in process `syz.1.528'.
[  228.550901][ T8352] veth0_macvtap: left promiscuous mode
[  228.574978][ T8352] netlink: 290 bytes leftover after parsing attributes in process `syz.1.528'.
[  228.594403][ T8352] veth0_macvtap: entered promiscuous mode
[  229.899372][ T8384] netlink: 338 bytes leftover after parsing attributes in process `syz.3.535'.
[  229.955291][ T8387] netlink: 338 bytes leftover after parsing attributes in process `syz.3.535'.
[  230.987925][ T8410] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  230.996038][ T8410] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  231.041543][ T8408] netlink: 338 bytes leftover after parsing attributes in process `syz.2.539'.
[  231.052238][ T8413] netlink: 338 bytes leftover after parsing attributes in process `syz.1.547'.
[  231.071588][ T8414] netlink: 338 bytes leftover after parsing attributes in process `syz.2.539'.
[  231.083114][ T8413] netlink: 338 bytes leftover after parsing attributes in process `syz.1.547'.
[  231.095770][ T8408] veth0_macvtap: left promiscuous mode
[  231.115054][ T8408] veth0_macvtap: entered promiscuous mode
[  232.742415][ T8440] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input14
[  234.268390][ T8464] __nla_validate_parse: 3 callbacks suppressed
[  234.268411][ T8464] netlink: 338 bytes leftover after parsing attributes in process `syz.2.552'.
[  234.387490][ T8464] netlink: 338 bytes leftover after parsing attributes in process `syz.2.552'.
[  234.414706][ T8468] netlink: 290 bytes leftover after parsing attributes in process `syz.2.552'.
[  234.501097][ T8468] veth0_macvtap: left promiscuous mode
[  234.544082][ T8464] netlink: 290 bytes leftover after parsing attributes in process `syz.2.552'.
[  234.569846][ T8464] veth0_macvtap: entered promiscuous mode
[  235.292486][ T8470] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input15
[  236.047455][ T8497] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  236.055659][ T8497] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  236.680013][ T8511] Console: switching to colour VGA+ 80x25
[  237.009988][ T8513] Console: switching to colour frame buffer device 128x48
[  239.893987][ T8554] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input16
[  240.449060][ T8564] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed
[  240.479324][ T8564] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff)
[  242.551643][ T8565] Process accounting paused
[  243.872583][ T8625] Console: switching to colour VGA+ 80x25
[  244.085701][ T8618] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input17
[  244.161329][ T8627] Console: switching to colour frame buffer device 128x48
[  246.930644][ T8695] netlink: 20 bytes leftover after parsing attributes in process `syz.0.599'.
[  247.165418][ T8693] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input18
[  247.401755][ T8695] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  251.391565][ T8785] Console: switching to colour VGA+ 80x25
[  251.668237][ T8793] Console: switching to colour frame buffer device 128x48
[  254.187050][ T8844] random: crng reseeded on system resumption
[  254.960459][ T8832] Process accounting resumed
[  255.726804][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  255.733162][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  259.799189][ T8961] netlink: zone id is out of range
[  259.813046][ T8961] netlink: zone id is out of range
[  259.840820][ T8961] netlink: zone id is out of range
[  259.915619][ T8961] netlink: zone id is out of range
[  259.924376][ T8961] netlink: zone id is out of range
[  259.945675][ T8961] netlink: zone id is out of range
[  259.981594][ T8961] netlink: zone id is out of range
[  260.012321][ T8961] netlink: zone id is out of range
[  260.022119][ T8961] netlink: zone id is out of range
[  260.051898][ T8961] netlink: zone id is out of range
[  261.369103][ T9000] netlink: 28 bytes leftover after parsing attributes in process `syz.0.657'.
[  261.390949][ T9000] bridge0: port 2(bridge_slave_1) entered disabled state
[  261.490228][ T9000] bridge_slave_1 (unregistering): left allmulticast mode
[  261.498725][ T9000] bridge_slave_1 (unregistering): left promiscuous mode
[  261.535871][ T9000] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.210209][ T9017] FAULT_INJECTION: forcing a failure.
[  262.210209][ T9017] name failslab, interval 1, probability 0, space 0, times 0
[  262.231867][ T9017] CPU: 0 UID: 0 PID: 9017 Comm: syz.2.662 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  262.231908][ T9017] Tainted: [U]=USER
[  262.231917][ T9017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  262.231931][ T9017] Call Trace:
[  262.231940][ T9017]  <TASK>
[  262.231950][ T9017]  dump_stack_lvl+0x16c/0x1f0
[  262.231988][ T9017]  should_fail_ex+0x512/0x640
[  262.232031][ T9017]  ? __kmalloc_noprof+0xbf/0x510
[  262.232064][ T9017]  ? group_cpus_evenly+0xeb/0x650
[  262.232089][ T9017]  should_failslab+0xc2/0x120
[  262.232122][ T9017]  __kmalloc_noprof+0xd2/0x510
[  262.232160][ T9017]  group_cpus_evenly+0xeb/0x650
[  262.232192][ T9017]  ? __pfx_group_cpus_evenly+0x10/0x10
[  262.232233][ T9017]  blk_mq_map_queues+0xa5/0x4d0
[  262.232263][ T9017]  ? __pfx_blk_mq_map_queues+0x10/0x10
[  262.232291][ T9017]  ? rcu_is_watching+0x12/0xc0
[  262.232322][ T9017]  blk_mq_update_queue_map+0x34a/0x3e0
[  262.232363][ T9017]  blk_mq_alloc_tag_set+0x61a/0x1260
[  262.232409][ T9017]  loop_add+0x3b2/0xb70
[  262.232438][ T9017]  ? __pfx_loop_add+0x10/0x10
[  262.232490][ T9017]  ? find_held_lock+0x2b/0x80
[  262.232521][ T9017]  loop_control_ioctl+0x13e/0x630
[  262.232550][ T9017]  ? __pfx_loop_control_ioctl+0x10/0x10
[  262.232584][ T9017]  ? __pfx_loop_control_ioctl+0x10/0x10
[  262.232614][ T9017]  __x64_sys_ioctl+0x18e/0x210
[  262.232656][ T9017]  do_syscall_64+0xcd/0x490
[  262.232692][ T9017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.232718][ T9017] RIP: 0033:0x7fd57ab8ebe9
[  262.232739][ T9017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.232763][ T9017] RSP: 002b:00007fd57b914038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  262.232788][ T9017] RAX: ffffffffffffffda RBX: 00007fd57adb5fa0 RCX: 00007fd57ab8ebe9
[  262.232805][ T9017] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008
[  262.232821][ T9017] RBP: 00007fd57ac11e19 R08: 0000000000000000 R09: 0000000000000000
[  262.232837][ T9017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  262.232852][ T9017] R13: 00007fd57adb6038 R14: 00007fd57adb5fa0 R15: 00007ffd6fe35368
[  262.232886][ T9017]  </TASK>
[  264.941104][ T9096] __vm_enough_memory: pid: 9096, comm: syz.0.672, bytes: 4398046511104 not enough memory for the allocation
[  265.878156][ T9108] FAULT_INJECTION: forcing a failure.
[  265.878156][ T9108] name failslab, interval 1, probability 0, space 0, times 0
[  265.926671][ T9108] CPU: 0 UID: 0 PID: 9108 Comm: syz.1.674 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  265.926697][ T9108] Tainted: [U]=USER
[  265.926702][ T9108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  265.926711][ T9108] Call Trace:
[  265.926716][ T9108]  <TASK>
[  265.926722][ T9108]  dump_stack_lvl+0x16c/0x1f0
[  265.926746][ T9108]  should_fail_ex+0x512/0x640
[  265.926766][ T9108]  ? __kmalloc_cache_node_noprof+0x5a/0x420
[  265.926786][ T9108]  should_failslab+0xc2/0x120
[  265.926805][ T9108]  __kmalloc_cache_node_noprof+0x6d/0x420
[  265.926821][ T9108]  ? sbitmap_init_node+0x2ca/0x770
[  265.926835][ T9108]  ? sbitmap_queue_init_node+0x291/0x4a0
[  265.926852][ T9108]  sbitmap_queue_init_node+0x291/0x4a0
[  265.926870][ T9108]  blk_mq_init_tags+0x162/0x2b0
[  265.926892][ T9108]  blk_mq_alloc_map_and_rqs+0x237/0xf60
[  265.926913][ T9108]  ? rcu_is_watching+0x12/0xc0
[  265.926931][ T9108]  __blk_mq_alloc_map_and_rqs+0x128/0x1f0
[  265.926951][ T9108]  blk_mq_alloc_tag_set+0x778/0x1260
[  265.926974][ T9108]  loop_add+0x3b2/0xb70
[  265.926991][ T9108]  ? __pfx_loop_add+0x10/0x10
[  265.927018][ T9108]  ? find_held_lock+0x2b/0x80
[  265.927034][ T9108]  loop_control_ioctl+0x13e/0x630
[  265.927050][ T9108]  ? __pfx_loop_control_ioctl+0x10/0x10
[  265.927068][ T9108]  ? __pfx_loop_control_ioctl+0x10/0x10
[  265.927084][ T9108]  __x64_sys_ioctl+0x18e/0x210
[  265.927107][ T9108]  do_syscall_64+0xcd/0x490
[  265.927127][ T9108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.927142][ T9108] RIP: 0033:0x7f9d1f38ebe9
[  265.927154][ T9108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  265.927168][ T9108] RSP: 002b:00007f9d2027e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  265.927182][ T9108] RAX: ffffffffffffffda RBX: 00007f9d1f5b5fa0 RCX: 00007f9d1f38ebe9
[  265.927191][ T9108] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000008
[  265.927200][ T9108] RBP: 00007f9d1f411e19 R08: 0000000000000000 R09: 0000000000000000
[  265.927208][ T9108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  265.927216][ T9108] R13: 00007f9d1f5b6038 R14: 00007f9d1f5b5fa0 R15: 00007ffd5fa0d508
[  265.927234][ T9108]  </TASK>
[  265.927349][ T9108] blk-mq: reduced tag depth (128 -> 64)
[  269.419184][ T9171] FAULT_INJECTION: forcing a failure.
[  269.419184][ T9171] name failslab, interval 1, probability 0, space 0, times 0
[  269.433805][ T9171] CPU: 1 UID: 0 PID: 9171 Comm: syz.2.685 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  269.433839][ T9171] Tainted: [U]=USER
[  269.433848][ T9171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  269.433857][ T9171] Call Trace:
[  269.433863][ T9171]  <TASK>
[  269.433869][ T9171]  dump_stack_lvl+0x16c/0x1f0
[  269.433894][ T9171]  should_fail_ex+0x512/0x640
[  269.433914][ T9171]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  269.433935][ T9171]  should_failslab+0xc2/0x120
[  269.433954][ T9171]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  269.433970][ T9171]  ? kernel_text_address+0x8d/0x100
[  269.433982][ T9171]  ? is_bpf_text_address+0x8a/0x1a0
[  269.433999][ T9171]  ? __d_alloc+0x32/0xae0
[  269.434020][ T9171]  __d_alloc+0x32/0xae0
[  269.434039][ T9171]  d_alloc_parallel+0x111/0x1480
[  269.434063][ T9171]  ? __pfx_stack_trace_save+0x10/0x10
[  269.434081][ T9171]  ? check_path.constprop.0+0x24/0x50
[  269.434098][ T9171]  ? __pfx_d_alloc_parallel+0x10/0x10
[  269.434121][ T9171]  ? lockdep_init_map_type+0x5c/0x280
[  269.434140][ T9171]  ? lockdep_init_map_type+0x5c/0x280
[  269.434162][ T9171]  __lookup_slow+0x193/0x460
[  269.434184][ T9171]  ? __pfx___lookup_slow+0x10/0x10
[  269.434207][ T9171]  ? perf_trace_mm_compaction_suitable_template+0x410/0x5e0
[  269.434233][ T9171]  ? perf_trace_mm_compaction_suitable_template+0x410/0x5e0
[  269.434254][ T9171]  ? d_lookup+0xe7/0x190
[  269.434277][ T9171]  lookup_noperm+0xe1/0x110
[  269.434299][ T9171]  simple_start_creating+0xd1/0x1b0
[  269.434316][ T9171]  start_creating.part.0+0x82/0x190
[  269.434340][ T9171]  __debugfs_create_file+0xa7/0x6b0
[  269.434360][ T9171]  debugfs_create_file_full+0x41/0x60
[  269.434379][ T9171]  ? __pfx_do_setup+0x10/0x10
[  269.434398][ T9171]  ref_tracker_dir_debugfs+0x19d/0x290
[  269.434420][ T9171]  ? __pfx_ref_tracker_dir_debugfs+0x10/0x10
[  269.434454][ T9171]  ? __kvmalloc_node_noprof+0x298/0x620
[  269.434469][ T9171]  ? trace_kmalloc+0x2b/0xd0
[  269.434489][ T9171]  ? lockdep_init_map_type+0x5c/0x280
[  269.434510][ T9171]  alloc_netdev_mqs+0x30f/0x1530
[  269.434535][ T9171]  internal_dev_create+0x8a/0x520
[  269.434556][ T9171]  ovs_vport_add+0x144/0x4d0
[  269.434577][ T9171]  new_vport+0x16/0x1d0
[  269.434592][ T9171]  ovs_dp_cmd_new+0x6ba/0xe60
[  269.434613][ T9171]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  269.434634][ T9171]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  269.434657][ T9171]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  269.434683][ T9171]  genl_family_rcv_msg_doit+0x206/0x2f0
[  269.434707][ T9171]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  269.434734][ T9171]  ? bpf_lsm_capable+0x9/0x10
[  269.434747][ T9171]  ? security_capable+0x7e/0x260
[  269.434762][ T9171]  ? ns_capable+0xd7/0x110
[  269.434779][ T9171]  genl_rcv_msg+0x55c/0x800
[  269.434802][ T9171]  ? __pfx_genl_rcv_msg+0x10/0x10
[  269.434824][ T9171]  ? __pfx_ovs_dp_cmd_new+0x10/0x10
[  269.434847][ T9171]  netlink_rcv_skb+0x155/0x420
[  269.434866][ T9171]  ? __pfx_genl_rcv_msg+0x10/0x10
[  269.434889][ T9171]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  269.434915][ T9171]  ? netlink_deliver_tap+0x1ae/0xd30
[  269.434937][ T9171]  genl_rcv+0x28/0x40
[  269.434955][ T9171]  netlink_unicast+0x5aa/0x870
[  269.434977][ T9171]  ? __pfx_netlink_unicast+0x10/0x10
[  269.434997][ T9171]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  269.435014][ T9171]  ? __lock_acquire+0xb97/0x1ce0
[  269.435037][ T9171]  netlink_sendmsg+0x8d1/0xdd0
[  269.435059][ T9171]  ? __pfx_netlink_sendmsg+0x10/0x10
[  269.435081][ T9171]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  269.435099][ T9171]  ____sys_sendmsg+0xa95/0xc70
[  269.435114][ T9171]  ? copy_msghdr_from_user+0x10a/0x160
[  269.435132][ T9171]  ? __pfx_____sys_sendmsg+0x10/0x10
[  269.435151][ T9171]  ? __pfx_futex_wake_mark+0x10/0x10
[  269.435174][ T9171]  ___sys_sendmsg+0x134/0x1d0
[  269.435193][ T9171]  ? __pfx____sys_sendmsg+0x10/0x10
[  269.435236][ T9171]  __sys_sendmsg+0x16d/0x220
[  269.435255][ T9171]  ? __pfx___sys_sendmsg+0x10/0x10
[  269.435273][ T9171]  ? __x64_sys_futex+0x1e0/0x4c0
[  269.435302][ T9171]  do_syscall_64+0xcd/0x490
[  269.435330][ T9171]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.435345][ T9171] RIP: 0033:0x7fd57ab8ebe9
[  269.435359][ T9171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  269.435373][ T9171] RSP: 002b:00007fd57b914038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  269.435387][ T9171] RAX: ffffffffffffffda RBX: 00007fd57adb5fa0 RCX: 00007fd57ab8ebe9
[  269.435397][ T9171] RDX: 0000000000000080 RSI: 0000200000000140 RDI: 0000000000000007
[  269.435405][ T9171] RBP: 00007fd57ac11e19 R08: 0000000000000000 R09: 0000000000000000
[  269.435414][ T9171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  269.435422][ T9171] R13: 00007fd57adb6038 R14: 00007fd57adb5fa0 R15: 00007ffd6fe35368
[  269.435441][ T9171]  </TASK>
[  270.040010][ T9171] HfR: entered promiscuous mode
[  270.091543][ T5865] Bluetooth: hci3: unexpected event 0x0f length: 726 > 4
[  270.091586][ T5865] Bluetooth: hci3: unexpected event for opcode 0xf6ff
[  272.072823][ T9208] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(1)
[  272.889638][ T9215] Process accounting resumed
[  274.479039][ T9269] FAULT_INJECTION: forcing a failure.
[  274.479039][ T9269] name failslab, interval 1, probability 0, space 0, times 0
[  274.491989][ T9269] CPU: 1 UID: 0 PID: 9269 Comm: syz.1.702 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  274.492028][ T9269] Tainted: [U]=USER
[  274.492038][ T9269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  274.492052][ T9269] Call Trace:
[  274.492061][ T9269]  <TASK>
[  274.492072][ T9269]  dump_stack_lvl+0x16c/0x1f0
[  274.492110][ T9269]  should_fail_ex+0x512/0x640
[  274.492144][ T9269]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  274.492174][ T9269]  ? __pfx_dvb_frontend_thread+0x10/0x10
[  274.492208][ T9269]  should_failslab+0xc2/0x120
[  274.492242][ T9269]  __kmalloc_cache_noprof+0x6a/0x3e0
[  274.492268][ T9269]  ? lockdep_init_map_type+0x5c/0x280
[  274.492301][ T9269]  ? __kthread_create_on_node+0xce/0x3f0
[  274.492339][ T9269]  ? __pfx_dvb_frontend_thread+0x10/0x10
[  274.492372][ T9269]  __kthread_create_on_node+0xce/0x3f0
[  274.492405][ T9269]  ? __pfx___kthread_create_on_node+0x10/0x10
[  274.492447][ T9269]  ? intel_guc_context_reset_process_msg+0x5da/0x10d0
[  274.492476][ T9269]  ? __lock_acquire+0xb97/0x1ce0
[  274.492506][ T9269]  ? __pfx_dvb_frontend_thread+0x10/0x10
[  274.492553][ T9269]  kthread_create_on_node+0xc7/0x100
[  274.492586][ T9269]  ? __pfx_kthread_create_on_node+0x10/0x10
[  274.492624][ T9269]  ? mark_held_locks+0x49/0x80
[  274.492654][ T9269]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  274.492683][ T9269]  ? lockdep_hardirqs_on+0x7c/0x110
[  274.492718][ T9269]  dvb_frontend_open+0xf47/0x1730
[  274.492760][ T9269]  ? __pfx_dvb_frontend_open+0x10/0x10
[  274.492791][ T9269]  dvb_device_open+0x26d/0x3b0
[  274.492828][ T9269]  ? __pfx_dvb_device_open+0x10/0x10
[  274.492863][ T9269]  chrdev_open+0x234/0x6a0
[  274.492892][ T9269]  ? __pfx_apparmor_file_open+0x10/0x10
[  274.492924][ T9269]  ? __pfx_chrdev_open+0x10/0x10
[  274.492959][ T9269]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  274.492992][ T9269]  do_dentry_open+0x982/0x1530
[  274.493022][ T9269]  ? __pfx_chrdev_open+0x10/0x10
[  274.493060][ T9269]  vfs_open+0x82/0x3f0
[  274.493103][ T9269]  path_openat+0x1de4/0x2cb0
[  274.493143][ T9269]  ? __pfx_path_openat+0x10/0x10
[  274.493180][ T9269]  do_filp_open+0x20b/0x470
[  274.493211][ T9269]  ? __pfx_do_filp_open+0x10/0x10
[  274.493268][ T9269]  ? alloc_fd+0x471/0x7d0
[  274.493306][ T9269]  do_sys_openat2+0x11b/0x1d0
[  274.493342][ T9269]  ? __pfx_do_sys_openat2+0x10/0x10
[  274.493392][ T9269]  __x64_sys_openat+0x174/0x210
[  274.493425][ T9269]  ? __pfx___x64_sys_openat+0x10/0x10
[  274.493474][ T9269]  do_syscall_64+0xcd/0x490
[  274.493510][ T9269]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.493544][ T9269] RIP: 0033:0x7f9d1f38ebe9
[  274.493566][ T9269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.493593][ T9269] RSP: 002b:00007f9d2027e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  274.493619][ T9269] RAX: ffffffffffffffda RBX: 00007f9d1f5b5fa0 RCX: 00007f9d1f38ebe9
[  274.493637][ T9269] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  274.493654][ T9269] RBP: 00007f9d1f411e19 R08: 0000000000000000 R09: 0000000000000000
[  274.493671][ T9269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  274.493687][ T9269] R13: 00007f9d1f5b6038 R14: 00007f9d1f5b5fa0 R15: 00007ffd5fa0d508
[  274.493723][ T9269]  </TASK>
[  274.849842][ T9269] i2c i2c-0: dvb_frontend_start: failed to start kthread (-12)
[  274.881682][ T9276] ==================================================================
[  274.889789][ T9276] BUG: KASAN: slab-use-after-free in dvb_device_open+0x36a/0x3b0
[  274.897545][ T9276] Read of size 8 at addr ffff88802a2dc618 by task syz.1.702/9276
[  274.905278][ T9276] 
[  274.907622][ T9276] CPU: 0 UID: 0 PID: 9276 Comm: syz.1.702 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  274.907662][ T9276] Tainted: [U]=USER
[  274.907671][ T9276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  274.907687][ T9276] Call Trace:
[  274.907696][ T9276]  <TASK>
[  274.907705][ T9276]  dump_stack_lvl+0x116/0x1f0
[  274.907743][ T9276]  print_report+0xcd/0x630
[  274.907775][ T9276]  ? __virt_addr_valid+0x81/0x610
[  274.907806][ T9276]  ? __phys_addr+0xe8/0x180
[  274.907837][ T9276]  ? dvb_device_open+0x36a/0x3b0
[  274.907871][ T9276]  kasan_report+0xe0/0x110
[  274.907903][ T9276]  ? dvb_device_open+0x36a/0x3b0
[  274.907941][ T9276]  ? __pfx_dvb_device_open+0x10/0x10
[  274.907976][ T9276]  dvb_device_open+0x36a/0x3b0
[  274.908011][ T9276]  ? __pfx_dvb_device_open+0x10/0x10
[  274.908045][ T9276]  chrdev_open+0x234/0x6a0
[  274.908077][ T9276]  ? __pfx_apparmor_file_open+0x10/0x10
[  274.908106][ T9276]  ? __pfx_chrdev_open+0x10/0x10
[  274.908139][ T9276]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  274.908171][ T9276]  do_dentry_open+0x982/0x1530
[  274.908202][ T9276]  ? __pfx_chrdev_open+0x10/0x10
[  274.908237][ T9276]  vfs_open+0x82/0x3f0
[  274.908275][ T9276]  path_openat+0x1de4/0x2cb0
[  274.908310][ T9276]  ? __pfx_path_openat+0x10/0x10
[  274.908345][ T9276]  do_filp_open+0x20b/0x470
[  274.908373][ T9276]  ? __pfx_do_filp_open+0x10/0x10
[  274.908415][ T9276]  ? alloc_fd+0x471/0x7d0
[  274.908446][ T9276]  do_sys_openat2+0x11b/0x1d0
[  274.908483][ T9276]  ? __pfx_do_sys_openat2+0x10/0x10
[  274.908535][ T9276]  ? find_held_lock+0x2b/0x80
[  274.908562][ T9276]  ? handle_mm_fault+0x2ab/0xd10
[  274.908591][ T9276]  __x64_sys_openat+0x174/0x210
[  274.908630][ T9276]  ? __pfx___x64_sys_openat+0x10/0x10
[  274.908670][ T9276]  ? do_user_addr_fault+0x843/0x1370
[  274.908713][ T9276]  do_syscall_64+0xcd/0x490
[  274.908746][ T9276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.908773][ T9276] RIP: 0033:0x7f9d1f38ebe9
[  274.908793][ T9276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.908819][ T9276] RSP: 002b:00007f9d2025d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  274.908845][ T9276] RAX: ffffffffffffffda RBX: 00007f9d1f5b6090 RCX: 00007f9d1f38ebe9
[  274.908863][ T9276] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  274.908880][ T9276] RBP: 00007f9d1f411e19 R08: 0000000000000000 R09: 0000000000000000
[  274.908897][ T9276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  274.908912][ T9276] R13: 00007f9d1f5b6128 R14: 00007f9d1f5b6090 R15: 00007ffd5fa0d508
[  274.908939][ T9276]  </TASK>
[  274.908947][ T9276] 
[  275.168262][ T9276] Allocated by task 1:
[  275.172317][ T9276]  kasan_save_stack+0x33/0x60
[  275.176991][ T9276]  kasan_save_track+0x14/0x30
[  275.181659][ T9276]  __kasan_kmalloc+0xaa/0xb0
[  275.186238][ T9276]  dvb_register_device+0x1e4/0x2370
[  275.191435][ T9276]  dvb_register_frontend+0x5a6/0x880
[  275.196716][ T9276]  vidtv_bridge_probe+0x459/0xa90
[  275.201740][ T9276]  platform_probe+0x103/0x1d0
[  275.206413][ T9276]  really_probe+0x241/0xa90
[  275.210911][ T9276]  __driver_probe_device+0x1de/0x440
[  275.216191][ T9276]  driver_probe_device+0x4c/0x1b0
[  275.221213][ T9276]  __driver_attach+0x283/0x580
[  275.225973][ T9276]  bus_for_each_dev+0x13e/0x1d0
[  275.230814][ T9276]  bus_add_driver+0x2e9/0x690
[  275.235518][ T9276]  driver_register+0x15c/0x4b0
[  275.240283][ T9276]  vidtv_bridge_init+0x45/0x80
[  275.245050][ T9276]  do_one_initcall+0x120/0x6e0
[  275.249808][ T9276]  kernel_init_freeable+0x5c2/0x910
[  275.254997][ T9276]  kernel_init+0x1c/0x2b0
[  275.259320][ T9276]  ret_from_fork+0x5d4/0x6f0
[  275.263910][ T9276]  ret_from_fork_asm+0x1a/0x30
[  275.268678][ T9276] 
[  275.270999][ T9276] Freed by task 9269:
[  275.274966][ T9276]  kasan_save_stack+0x33/0x60
[  275.279649][ T9276]  kasan_save_track+0x14/0x30
[  275.284326][ T9276]  kasan_save_free_info+0x3b/0x60
[  275.289361][ T9276]  __kasan_slab_free+0x60/0x70
[  275.294119][ T9276]  kfree+0x2b4/0x4d0
[  275.298002][ T9276]  dvb_device_put.part.0+0x60/0x90
[  275.303108][ T9276]  dvb_device_open+0x2a4/0x3b0
[  275.307868][ T9276]  chrdev_open+0x234/0x6a0
[  275.312281][ T9276]  do_dentry_open+0x982/0x1530
[  275.317037][ T9276]  vfs_open+0x82/0x3f0
[  275.321105][ T9276]  path_openat+0x1de4/0x2cb0
[  275.325685][ T9276]  do_filp_open+0x20b/0x470
[  275.330182][ T9276]  do_sys_openat2+0x11b/0x1d0
[  275.334857][ T9276]  __x64_sys_openat+0x174/0x210
[  275.339711][ T9276]  do_syscall_64+0xcd/0x490
[  275.344222][ T9276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.350105][ T9276] 
[  275.352422][ T9276] The buggy address belongs to the object at ffff88802a2dc600
[  275.352422][ T9276]  which belongs to the cache kmalloc-256 of size 256
[  275.366465][ T9276] The buggy address is located 24 bytes inside of
[  275.366465][ T9276]  freed 256-byte region [ffff88802a2dc600, ffff88802a2dc700)
[  275.380163][ T9276] 
[  275.382474][ T9276] The buggy address belongs to the physical page:
[  275.388878][ T9276] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2a2dc
[  275.397626][ T9276] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  275.406110][ T9276] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  275.413640][ T9276] page_type: f5(slab)
[  275.417620][ T9276] raw: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000
[  275.426193][ T9276] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  275.434776][ T9276] head: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000
[  275.443437][ T9276] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  275.452102][ T9276] head: 00fff00000000001 ffffea0000a8b701 00000000ffffffff 00000000ffffffff
[  275.460762][ T9276] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  275.469416][ T9276] page dumped because: kasan: bad access detected
[  275.475820][ T9276] page_owner tracks the page as allocated
[  275.481515][ T9276] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 18730127734, free_ts 0
[  275.501220][ T9276]  post_alloc_hook+0x1c0/0x230
[  275.505983][ T9276]  get_page_from_freelist+0x132b/0x38e0
[  275.511519][ T9276]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  275.517404][ T9276]  alloc_pages_mpol+0x1fb/0x550
[  275.522249][ T9276]  new_slab+0x247/0x330
[  275.526408][ T9276]  ___slab_alloc+0xcf2/0x1740
[  275.531101][ T9276]  __slab_alloc.constprop.0+0x56/0xb0
[  275.536483][ T9276]  __kmalloc_cache_noprof+0xfb/0x3e0
[  275.541770][ T9276]  bus_add_driver+0x92/0x690
[  275.546356][ T9276]  driver_register+0x15c/0x4b0
[  275.551123][ T9276]  usb_register_driver+0x216/0x4d0
[  275.556233][ T9276]  do_one_initcall+0x120/0x6e0
[  275.560989][ T9276]  kernel_init_freeable+0x5c2/0x910
[  275.566176][ T9276]  kernel_init+0x1c/0x2b0
[  275.570495][ T9276]  ret_from_fork+0x5d4/0x6f0
[  275.575083][ T9276]  ret_from_fork_asm+0x1a/0x30
[  275.579842][ T9276] page_owner free stack trace missing
[  275.585190][ T9276] 
[  275.587497][ T9276] Memory state around the buggy address:
[  275.593114][ T9276]  ffff88802a2dc500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  275.601161][ T9276]  ffff88802a2dc580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  275.609208][ T9276] >ffff88802a2dc600: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  275.617253][ T9276]                             ^
[  275.622086][ T9276]  ffff88802a2dc680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  275.630134][ T9276]  ffff88802a2dc700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  275.638180][ T9276] ==================================================================
[  275.646240][    C0] vkms_vblank_simulate: vblank timer overrun
[  275.688909][ T9276] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  275.696162][ T9276] CPU: 0 UID: 0 PID: 9276 Comm: syz.1.702 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  275.706941][ T9276] Tainted: [U]=USER
[  275.710741][ T9276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  275.720872][ T9276] Call Trace:
[  275.724134][ T9276]  <TASK>
[  275.727053][ T9276]  dump_stack_lvl+0x3d/0x1f0
[  275.731636][ T9276]  vpanic+0x6e8/0x7a0
[  275.735607][ T9276]  ? __pfx_vpanic+0x10/0x10
[  275.740099][ T9276]  ? __pfx_vprintk_emit+0x10/0x10
[  275.745121][ T9276]  ? dvb_device_open+0x36a/0x3b0
[  275.750053][ T9276]  panic+0xca/0xd0
[  275.753765][ T9276]  ? __pfx_panic+0x10/0x10
[  275.758169][ T9276]  ? dvb_device_open+0x36a/0x3b0
[  275.763103][ T9276]  ? preempt_schedule_common+0x44/0xc0
[  275.768550][ T9276]  ? preempt_schedule_thunk+0x16/0x30
[  275.773912][ T9276]  check_panic_on_warn+0xab/0xb0
[  275.778841][ T9276]  end_report+0x107/0x170
[  275.783160][ T9276]  kasan_report+0xee/0x110
[  275.787561][ T9276]  ? dvb_device_open+0x36a/0x3b0
[  275.792491][ T9276]  ? __pfx_dvb_device_open+0x10/0x10
[  275.797771][ T9276]  dvb_device_open+0x36a/0x3b0
[  275.802534][ T9276]  ? __pfx_dvb_device_open+0x10/0x10
[  275.807805][ T9276]  chrdev_open+0x234/0x6a0
[  275.812207][ T9276]  ? __pfx_apparmor_file_open+0x10/0x10
[  275.817736][ T9276]  ? __pfx_chrdev_open+0x10/0x10
[  275.822660][ T9276]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  275.828987][ T9276]  do_dentry_open+0x982/0x1530
[  275.833766][ T9276]  ? __pfx_chrdev_open+0x10/0x10
[  275.838698][ T9276]  vfs_open+0x82/0x3f0
[  275.842752][ T9276]  path_openat+0x1de4/0x2cb0
[  275.847330][ T9276]  ? __pfx_path_openat+0x10/0x10
[  275.852253][ T9276]  do_filp_open+0x20b/0x470
[  275.856740][ T9276]  ? __pfx_do_filp_open+0x10/0x10
[  275.861756][ T9276]  ? alloc_fd+0x471/0x7d0
[  275.866088][ T9276]  do_sys_openat2+0x11b/0x1d0
[  275.870752][ T9276]  ? __pfx_do_sys_openat2+0x10/0x10
[  275.875935][ T9276]  ? find_held_lock+0x2b/0x80
[  275.880592][ T9276]  ? handle_mm_fault+0x2ab/0xd10
[  275.885510][ T9276]  __x64_sys_openat+0x174/0x210
[  275.890364][ T9276]  ? __pfx___x64_sys_openat+0x10/0x10
[  275.895724][ T9276]  ? do_user_addr_fault+0x843/0x1370
[  275.900999][ T9276]  do_syscall_64+0xcd/0x490
[  275.905487][ T9276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.911361][ T9276] RIP: 0033:0x7f9d1f38ebe9
[  275.915765][ T9276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.935359][ T9276] RSP: 002b:00007f9d2025d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  275.943754][ T9276] RAX: ffffffffffffffda RBX: 00007f9d1f5b6090 RCX: 00007f9d1f38ebe9
[  275.951706][ T9276] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  275.959663][ T9276] RBP: 00007f9d1f411e19 R08: 0000000000000000 R09: 0000000000000000
[  275.967621][ T9276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  275.975570][ T9276] R13: 00007f9d1f5b6128 R14: 00007f9d1f5b6090 R15: 00007ffd5fa0d508
[  275.983543][ T9276]  </TASK>
[  275.986804][ T9276] Kernel Offset: disabled
[  275.991116][ T9276] Rebooting in 86400 seconds..