last executing test programs:

8m47.720085779s ago: executing program 1 (id=436):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram1/queue/add_random\x00', 0x1a1842, 0x0)
mmap$auto(0x0, 0x400007, 0x4, 0x9b72, 0x2, 0x7ffc)
r0 = socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x1, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
eventfd2$auto(0x7, 0xf)
setsockopt$auto(0xffffffffffffffff, 0x107, 0xe, 0x0, 0x4)
write$auto(0xffffffffffffffff, &(0x7f0000000100)='9\x00d1L\xff\x15\xba\xa17=w\xc1\xf8\xff\xff\v\xb5^\xa1/\xfb\xaf\xc8\xfc\\\xa9@\xc0\xee\xa2[', 0x1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x2, 0x1)
write$auto(0x3, 0x0, 0xfdef)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x11)
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, 0x0, 0x800)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f00000000c0), 0x12, 0x0, 0x9, 0x0, 0x80, 0xb}, 0x800009}, 0x5, 0x40)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r0)
sendmsg$auto_NL80211_CMD_DISASSOCIATE(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x54}, 0x1)
socket(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
move_pages$auto(0x1, 0x233, 0x0, 0x0, 0x0, 0x8000000000000000)
close_range$auto(0x2, 0x8, 0x0)
acct$auto(&(0x7f0000000000)='/dev/fb0\x00')
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttypd\x00', 0x60903, 0x0)
acct$auto(0x0)
acct$auto(0x0)

8m44.066544486s ago: executing program 1 (id=454):
setreuid$auto(0x4, 0x8)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x2, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'virt_wifi0\x00'})
ioctl$auto(r0, 0xa00, r1)
socket(0x10, 0x3, 0xb)
bind$auto(0x3, &(0x7f0000000040)=@nl=@proc={0x10, 0x0, 0x25dfdbfc, 0x8000}, 0x68) (async)
bind$auto(0x3, &(0x7f0000000040)=@nl=@proc={0x10, 0x0, 0x25dfdbfc, 0x8000}, 0x68)

8m42.113649134s ago: executing program 1 (id=457):
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8001)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000080), 0x43f, 0x0)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
r1 = socket(0x2, 0x1, 0x0)
r2 = socket(0x1e, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
memfd_create$auto(&(0x7f0000000000)='\xc4--:\xdd:,./-${\x00', 0x4)
ftruncate$auto(0x3, 0x400180200000)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/pts/ptmx\x00', 0x0, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/fs/cifs/dfscache\x00', 0x40080, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptyud\x00', 0x40, 0x0)
ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x80045439, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
bpf$auto_BPF_LINK_CREATE(0x1c, &(0x7f0000000200)=@link_create={@map_fd=<r6=>r4, @target_fd=r1, 0x1, 0x100000e, @tracing={0x6, 0x6}}, 0x7fff)
ioctl$auto_IOCTL_GET_NUM_DEVICES(r6, 0x40046104, &(0x7f0000000180)=0x7)
r7 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_policy\x00', 0x202, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f00000002c0), r2)
sendmsg$auto_NFC_CMD_LLC_GET_PARAMS(r6, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x44, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {}, [@NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x9}, @NFC_ATTR_FIRMWARE_NAME={0x6, 0x14, '!/'}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0x8}, @NFC_ATTR_FIRMWARE_NAME={0xf, 0x14, '/:{d%.$\'$).'}, @NFC_ATTR_RF_MODE={0x5, 0xb, 0x7}]}, 0x44}}, 0x0)
listen$auto(r5, 0x1)
sendfile$auto(r7, r5, 0x0, 0x48)
setsockopt$auto(r3, 0xa, 0x9, &(0x7f00000001c0)='#./\x00', 0x63a566c3)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r8 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/jfs/loglevel\x00', 0x1a9701, 0x0)
write$auto(r8, 0x0, 0x9)

8m41.05774587s ago: executing program 1 (id=459):
mmap$auto(0x0, 0x2020009, 0x9, 0xeb3, 0xfffefffffffffffa, 0x8000)
fcntl$auto(0xffffffffffffffff, 0x409, 0x40003f)
r0 = prctl$auto_PR_SET_VMA_ANON_NAME(0x4, 0x0, 0x0, 0x7a, 0x7)
poll$auto(&(0x7f0000000180)={<r1=>r0, 0x72d7, 0x7}, 0xffffffff, 0x80)
writev$auto(r0, &(0x7f0000000140)={&(0x7f00000000c0)="bbc69f44294e96f44775c8ae2f799d5b6cd3299545567a43016b6aec10e08a4fb9dbbca984cc42f44cdd54999180d823053a2bcc3081d962d5d7782de2cd2ad59a53569f780f1c9034ccad3581883cc6b1a76687a38c9eeb864081f5aa5c16157d43f44f0da3d1f57668fd3b292a2de512328f62", 0x3}, 0x8)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
futex_requeue$auto(&(0x7f0000000080)={0x0, 0x39c3c00000000, 0xdd54}, 0x80800001, 0x1007fc, 0x8001)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/proc/swaps\x00', 0x0, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev3\x00', 0x149400, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fe, 0x104, 0x80000001, 0x7, 0x1, 0x3, 0x15f4da0a, 0x6, 0x3, 0x62, 0x1, 0x7, 0x6d3f, 0x2, 0x2, 0xfffffffffffffffe]}, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
ioctl$auto_XFS_IOC_GET_RESBLKS(r2, 0x80105873, &(0x7f0000000040)={0x7, 0x1})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x10, 0x2, 0x63f)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="5e0027617c36720add70ab"], 0x1ac}, 0x1, 0x0, 0x0, 0x1}, 0x4040880)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
unshare$auto(0x40000080)
init_module$auto(0x0, 0xffff9, 0x0)
pidfd_open$auto(0x1, 0x0)

8m39.162142894s ago: executing program 1 (id=464):
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x80000, 0x0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
open(&(0x7f00000001c0)='./file0\x00', 0x121142, 0x13d)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
read$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x3, 0x0, 0xfffffdef)
socket$nl_generic(0x10, 0x3, 0x10)
setresuid$auto(0x8, 0x8, 0x0)
setfsuid$auto(0x0)
keyctl$auto(0x5, 0xffffffffffffffff, 0x0, 0x0, 0x20000000000006)
openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000001340)='7\x04\x00\x00@\xff\x90D\xe8=;d\xd7;\xfb\x7f\xcb\xab\xa7f\xf9D\xb5\x1a[\xad', 0xffbffdef)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000001200)={{&(0x7f0000000100)="17246e7794873deec864ea5e47975ffb3ccc7984c0be195a9f0ed09bc0e762819f25fa1a777dbbde195177557d4f26a76732f15746b63d0c3868059d0e5ea73f7189f3567b774d41de16d5ef3bf9ff71aa00e7441407c7ddc3bcbc25e69831b3651df18b30ae81782204d1efd7971ceb0145a60d578b6093a4d69c39824669994c4c47ebdf7d401d6e792c672375a2cf20b3f795e88a8abbcdcce72a51d58ce76ec4959e59285729736c92707e37", 0x6, &(0x7f0000000080)={&(0x7f0000000000)="2e26199ffdc367279dc3fc1bd94df0", 0x9}, 0x8e8, &(0x7f0000000200)="02e0c31653f3aba965850f5a39703aba767e99d687995d5b8eb5802addf8e18819323a356aa029f868f7b520c5fbc701ece2c05bc25e391f5a8ed72d6a2c69236a16ed142c29113448c7b9d1583b28eb538e411f2efa66fc458438bfb8c128cb5634239459454b648e640bb7ccdc3a11170705a7358f10d3ceede386b6b209d4ededcba2cb2742e0d535cae099ffcd0793686a40eb517b1ffc25d8f350236bfedf9d053f555043cc761148310042927e57c1c87952501702541bee6c085e80c29420fcc2156ea2522ec2464c8ef7d3c4c8e3850e05650b798a2b6eedc77d21d6b4c54316676d17e4467ccc06f6eb68d5732fafe3dbba26723bfc7d51262549efeb465f6fbebfb01e938c8c8cd5c05e9e6cec6e1a9aa6f39b83f3d4722c81a9795aa0478602c0a52279d9c300e387d296f7da6868a2d76f68f325d0052a2d670d0ddf4fe89593f6490b3afa7fccec0fc9c26bbcdb1176aaa162a70ee3d3d8618209bf99dee748d1957d527385467169aadc56fb3ab9c8bce0eccb53d31cb73b81a976024173af14d091e8478395864ecabb4f6f6ac7c641b95d9113e33111544a56ba10d172dca9c1d53931115b56c07a5c86dd77c948a7bf43c4532647d631cd775632737a3a942c0a1cf8b228c584675bc5d461e006f9d200af3a695060e7ab5be5cf8753ab726205eabf13c464b6a41d1d5f9063af59f661879a3a7f23528c4a15ffd097d3500efdc6b74b1d0d4f9bc4782dce33545e0a47ebb5fff96730dcd6b603e4a4b748b9bb7fd47a36feb1d94b0ef21f7c14dee900a3a833143f56c62d06098e8241d433cf1bc293014506b5fea9def95731e7d7c9d8cee5da3bfb12a986810fcebd201027720148530d92d801a395217744a4604afd7d507e27f982dd178b65dbe3c025d8a1ec18cfe3b828646ad2c59facce6e5e6915b1b0ffa9b9e1a9639c94d9fb898116636c1f5afca8d997da3eccd9d9ee460df8ead2832117af7f1b36bc14ad35244f7c1f0381e748d57cfe67028a0d6319eea3ae65319971542667a08822e7cf08cb90d4681d687b14c525bad9cfcb6f88dede0f3630639642235db4e1a77bd008a9b89b7c11a2aa4d138f5220afd6a429ec32c0a99dcfe3bbc03a423cd5a68ccc8d3744f7cc2bf9c05bc4094ab030d3e42a6d9cf857d4659f8f255a8d93f82565ccaa9f1e7c14caf5ddeae549a8b410304d6ce8b94b34f2fb5d189cb808507b635665a3a538da68ff18a01cb6c258a404fbe52dcafd86ed78492998e11c671d390efd60d750bdf15d457f2d3c4b4cb44aa8a7164637f1c607b352675996f6d9a959e8e29dbfc86c249d8475123e7a5d3090f9364480dc06677376c2879d6f5641b9933f5b3b2efe6daabad4fe79f59900772398d63f0390bed8be7216175b9e4b61713935b3fc55c1c4902f66cadc44601caec1e5bd68be35249798968290a0a9b9ef3a66f6aabf1c1f9a26fd8866bf945bd00071aedf19017f86098cb5dce0c1219e5a852d052ba990221b4936a8a73c07f787a5df7887df8fe318b5bd1335bea33d3101affcf183fe208809e7895aac000629c371085fdff4ad82b899b6b1d6e7988af609e7f96b282b4cf11713976619565e0bd615b01e03fc45d3ff7b1424d8761b2c7bd6d2fb6b69a6adc00667c1e241119f2e17eaf866d4026f117e1bcf0d3ca95b4decef6fe5adaa99406dc0b2773ec21d99d272f3a6ad5332334fa1d032d84d44d759dea9fd94ee072bfdba53be0a116655be0b15f80f95b8be9ecd3bec8ff27b8f6767fa909e5e1ee585ba0760132138df6dddfe2460250961545e5bc388ce1be2664156106263726f70d6aea2a4c1be870e593f3755573baabe8a0e107bd38158f6b596ffe789949918f5ce64d0038c1e9f5a511130ab3e3005b073ccdb5fa40d5a8c4d0449bce7802c9b149cb3736164453e14e0b3012f84b79103649b833b651b56726f46ce318e3ee09d08a74227c6eda2baa66b682198a3df249d5d4e2a36d0d50ce30c47f504d2603f91746e7300e1766220c5f739a6e56b336b815f8eb4f80cc8e24c1daa2321ae693cf6f5f59040e74d888266b3e9bbd117171be4fbf802d18a94c263158bd7539db560a34acbc4d127d396760a6e4937c8511ee16224471b5095264ce00473e975e203d6296c556e1b4df8f7f415bf2f14f042b1e1014b917b8399736483bf85ee55facc4ef8e8ceb4ccd2ea00e1c6b29041e100fdec857b04f90c54d13044bf0132a8521285e9b58d5471fea0f0386457409e05b78873601ee24196751a7566cc228dc11d0dcb90b0e49ddf3e7821d65503d6196a0c24615eaf07b18a95444bedd3640c311b7e1cd5f979d2830d6fff023c632c6f2df19632dcc1b59eca40dfe71b24032da3beaf64effcc104093a90047cc2751d6ff2657582a8cedec200916c3a9444d09713d800756405b761d5f89602c6ecfedc89ab1079d4747dc68122ea6e7526bb10a821d487d9966391a0fb2b13d08c1e219dbf3d9079433610d50a190963be0f790f3f822597965e5f2042f6b28c5e23165cc554c8f8923762d671a652b2604bb4733f3828d7cca6b32590b7c7a33ea3a7d692cb49bad916fe9b1a709a534856bbf79b74138fc4126ffd7fac912423e17aece3462bb290e326ab40c56a61d7e4246672857e074af8c979d12a55f0a9a4834f22a01348104faf4fcf78f9c594a179666398b306425c4820535c68a7e66528d0151bbd820e6c9c033d64d240ef4b0f8742a86287ffe6a47ab3acc37bc810872f0bb4adabe44131a54e2db8f024d963ae07452883d753955404f608bdd0a9eced864747449693f54172003e44eeb2eb7f43517ce2f60c21a6a6bf48bca05d8ce6b405e0cecf9a35f1df8ca081438c009700e00287b2ea1b7c09759b69f2720885d721cf4242b9800e8a7feca881ee63fdaa4dd72fab7cf333ed88c237ae584d85fed3fb8cec577d06c345176aed0a6879fd6562bfc5475f35636c8f7cb56c9dd748319b606fc985597362af674e9036e908313f22a7a6a255bf30081b43d830b6e1f61ef26bceb84e682625213ea18d5104ef73fe49f11661df1159fac28127f46a5da507d872a008228504bbb96c4edd5e698dbb22fea5015a7e02d7f778bf6fa524e9f9fc195b0a47d5398499d6dc18e0f0528dea5d6207fb5103d15b30fec40cb64cda0d6d97e141d75b14efeb2808c37fc01ac8a402f543af636ab41ba382b21f123180c04c008dc2e34ce9431b3b4aa401a2d3d9d4c6f65c4f159fb37f650d8288d16675eaade9440adf3a8a86e0864d86d4faa48f78a48c45d9a65d770e0e23214bac72fd151e5bfee9f2be016f5a85ad91ef7ef77932d616a3890fa828b68edfa5f6d61d694f6dcf4e8b2e7bdc596dc831becfeac84f26ee0d8b64edfb3dd129d15a097c13fc11e36866f74c6fef0acdeb981ff4480630c963c5e6771f1d4daa4c14478c30d27a64a2507d78c3697eed6a1a487020b4b3a9289c34593224891c1d9e49a9e5c6c5e0dabc1cde31f4242c34f2c6932d359cc5e2291c25ffb8f43862dc99ac327ff5169873d496625dc0bd8f36568deb3daa7e427a17bb3d248101cf8765a7405a16ef53b6c3a2e62a14a61117253b00ac503dac5c717327f0f74fe6e3047e22f3ae4c73ef026186ab36066024fbc9eea4f101db8926780d28ce911c67f0e50279e2d0348c92ddbb608a061858cd18a3d567189e477fa4b5743b547c2b2570d705d258593089a7a808b9169290125327dfead7c2c194b453fd28b00beb3fdd74483cce70fcef6197491500d54d4e3d6a9cbe4991c1b47d4a43ea96ba431625b78d1d9ab76e2d5f75857f0d7094737df09c62f6190eed54c1f404de5c33a0a1e482641bf8b9d31d616363acc4c3419e6916cee023b2edd2bf2813169702aa15fb535abe0484b66e29ee2bf28153f3fb8c43d9efd9199bc900bf02c89501d65faf70426538aec9f519a7b13c24cd2c6602bf5deee6cb7533480a140ea32b732f83d5e6d5d6823989531742853a43460b7974f780a8a4edc76e3df71014cebcdd0ac60006f0c6b22f3c8ce8e859c06ae529b1dd4d854f2f158fda72bc86d8a5cea665b8b401e263bbef5975dd275600eb663355e8f80cafefb42a918a7c077ac03d6beaca124c47743ba084fcabaf7ab782018e1575ce74fe70bb6b61ad474b645cc69aa83b50c323d7d0f07c85383a8f588ea3c124c71655160464250447b2ddcc5e6cb082488ac9ae2fbd359d2c1e69f10a7171a75ca6ce5b328c3407ce40559b7bfa37471bff5dc2caf5ffafb6f7f21b2b1dbe83eafcd58b76987807c8e023ce06a77b3f57925e327fad6ce2dd72f713631a6b016c07fb19a3c4cfdb6e77122cc79f37aa03aaa7286c3748016abea1641f9ac9fef3a73842484fa562d3f0798b6e8b8ff47d3a50252efb86466a5ca71ab54542800882f053bd8eb870be68ab3f3fa0300348f21640a48183d4ab14a57bf7a3651073558aabe7a95cc12cd422de147fc8d8fa6e369aea30f1af78d169642e6dc55438c5549c0a32a0649b957c3064d1c2a108ab2f5efbc183b97b5fef39c4de38efbaf5799712256da8aaa811952be6fdf1ae6ebe5ecf1af6b5169bd9bdb7362f7216fdddc7d7e0c820dc0993b12dd9e26e96be3d1870336282550caaf25ac48bf9fb984aa0ac60b042c5dcae8039c6d52cb14a715a0a84080c7b46d1c030fdc18a2cac5453375d0aa0827f567a777f1224d489695e7c5089931c0de128fba8c3ea98d66acf3b82ce4bab7fbaf4bfde9e4db461d1276e3bd0f955cf7cbc655d64a98f463b1028f691881dca0c185d1a7df149fd9c9805f9b3869c256a6a9c2e87fc787c3a2154b225af48db977a61cc7ae74afda9a1ee6ce39f08384d96d695286dc6c2dd7492fb44c06b55dc2f65355e8c066801e185f38b61cf81be2e0eb25612d11d3a0ad0b7485c5e490655f178e01b5375e4d30df04dc3a8960f45ea14de0aa19d23e8ef5a97fe30d7d845a782487bba8a387d4cd48c789b948b943f434eb0e2942ef983d1e1a9ceba68718c0200dcbc1e701b9028e6e97d54353c24faea9c42076175bf2f8850bf5812302ce17f0914f65a84106dfb36bfeb7061ece9266ecba3e49cebb15757d372a85c2332efdee9f59834c53a3185429e9be5127d6189498aec48bfe74299da789e8364e19dbb3ced79babd94d96ffb14dd6f33c81beaf94516405cd4d421fdaf51320ad4d98ba620a4a6589db38f6ee940b7152bcb6d8f8340f1f193ceb78f81c4bc226589a5a716e70b6f1942af1c13709174a8b5660ef7bbbe703d634aca7bc1fece3eb69f05e85ede8b548bf47004c5fdf857895370dd21cb7c69b17a97cb7424c4b3ecd979d7370e19e1090fcf993c07b26dd680400e2743afec38270d17c5f06602e5565b12f229ba068b5c09bdf32d4fc5f2bbd135b68340fdd191928fe9602321ec990b00653090b6e59feb9915ca665b539507f1be3264d98ed83f529d9e3ace58bd2d09bb55cf4d33ad637e640220ae2beb7733954594767df762f01fd4abe8a913d4bbe5f7ccc8f4bddfab39cf80266bc9689041b118c7355cee518f55ef45edf07462a49390e667f12edfd84ddbcdbe716110efdf2927e85f0f28deff95b47880ce60aaaf2cc18d23870c3e2919860f18ece3260f0200a15f79282ccdabf29aff64ab8fc1b723c3006f34e55e2c563a2f1b4009b391b103d3cf077f27ca733ed351197f10386009bab2e5614ab9ed20b39c564bca095ea17565abc9a13c11f9dde842f0ad36", 0x3, 0xfff}, 0x2}, 0x0, 0xfffffffb, &(0x7f0000001240)={0x7, 0x284})
r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a240, 0x0)
read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000080)=""/27, 0x1b)
futex$auto(0xfffffffffffffffe, 0xb, 0x47, 0x0, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x1d, 0x3, 0x1)
setsockopt$auto(r1, 0x65, 0x1, 0x0, 0x800)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vhci_hcd.15/usb39/39-0:1.0/usb39-port3/location\x00', 0x480001, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000080)="d1ef49b7292627666e03014c3e4310daa3a274922d6a2cc30a0539e34d37a9a267de70b49eba44ee6898a3a226cd73088ca31b18dbfd9fd20cb3a5d94c79b4dd7099770bb2511b12b6dab50e7cdfb975597cf315ae81cdeed1cea9145166b52ea392d28342db6ee4277b6e809e", 0x6d)
syslog$auto(0x3ff, &(0x7f0000000140)='#!@/[\x00', 0xe)

8m38.599569875s ago: executing program 1 (id=467):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000440), 0x20201, 0x0)
ioctl$auto_I2C_RDWR(r1, 0x707, &(0x7f0000000180)="17e1bb")
read$auto(r0, 0x0, 0x7)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x69d01, 0x0)
write$auto(0x3, 0x0, 0xffd8)
r4 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000040c0)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x100, 0x0)
preadv$auto(r4, &(0x7f0000004480)={0x0, 0x100000000}, 0x4, 0xb72, 0xfffffffffffffff7)
socket(0x2, 0x801, 0x3ff)
mmap$auto(0x0, 0x101, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, r3, 0x10)
memfd_create$auto(0x0, 0xe)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
write$auto(0x3, 0x0, 0x100082)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
migrate_pages$auto(0x0, 0x8, 0x0, 0x0)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r5, 0xc0045006, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
semctl$auto_SETALL(0xffffffff, 0x7, 0x11, 0x1ff)

8m23.373412157s ago: executing program 32 (id=467):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0)
r1 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000440), 0x20201, 0x0)
ioctl$auto_I2C_RDWR(r1, 0x707, &(0x7f0000000180)="17e1bb")
read$auto(r0, 0x0, 0x7)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x69d01, 0x0)
write$auto(0x3, 0x0, 0xffd8)
r4 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000040c0)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x100, 0x0)
preadv$auto(r4, &(0x7f0000004480)={0x0, 0x100000000}, 0x4, 0xb72, 0xfffffffffffffff7)
socket(0x2, 0x801, 0x3ff)
mmap$auto(0x0, 0x101, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, r3, 0x10)
memfd_create$auto(0x0, 0xe)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
write$auto(0x3, 0x0, 0x100082)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
migrate_pages$auto(0x0, 0x8, 0x0, 0x0)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r5, 0xc0045006, 0x0)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
semctl$auto_SETALL(0xffffffff, 0x7, 0x11, 0x1ff)

1m9.718700428s ago: executing program 4 (id=2361):
mmap$auto(0x0, 0x2020009, 0x2000000000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x22240, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0)
socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000)
sendmsg$auto_BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000840)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20048894)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/class/net/bonding_masters\x00', 0x100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)=""/4096, 0x1000)
r1 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x109402, 0x0)
ioctl$auto_UBI_IOCDET(r1, 0x40046f41, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty0\x00', 0x102, 0x0)
fcntl$auto(0xff80000000000000, 0x4, 0xfffffffffffffffc)
write$auto(0x3, 0x0, 0x4fffffdf2)
ioctl$auto(0x3, 0x402c542b, 0x38)

1m9.485044712s ago: executing program 4 (id=2363):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x400005, 0x800000000000df, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)={0x14, r1, 0x1, 0x5, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x44004811}, 0x40000c0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x40, 0x10004, 0x0)
shutdown$auto(0x200000003, 0x2)

1m6.282873221s ago: executing program 4 (id=2379):
mmap$auto(0x0, 0x5, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r0 = epoll_create$auto(0x2)
epoll_pwait2$auto(r0, 0x0, 0x8, &(0x7f0000002780)={0x0, 0x6}, 0x0, 0x8)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/mm/ksm/pages_scanned\x00', 0x42000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x0, 0xfffffffc, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x1ff, 0x7, 0x5, 0x717f, 0x1ffde, 0x7, 0x3, 0x10000000000009, 0x9, 0x80003, 0x4, 0x200000000001, 0xb4, 0x9, 0x0, 0x10006, 0x4004080, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x40, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x8]}, 0x1fc, 0xd)
r3 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x40000, 0x0)
pread64$auto(r4, &(0x7f0000000040)='/dev/tty0\x00', 0x3, 0x7)
ioctl$auto__ctl_fops_dm_ioctl(r3, 0xfffffffffffffd0a, &(0x7f00000001c0))
r5 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000200)={[0x8, 0xffffffffffffff49, 0x5, 0x1823, 0x800000000004, 0x1, 0x5, 0x19, 0x10, 0x5, 0x2dde, 0x8, 0xfffffffffffffffa, 0xab, 0x0, 0x1]}, &(0x7f0000000040)={0x0, 0x7})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, 0x0)
socket(0x2b, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0)
socketpair$auto(0x4, 0x1, 0x20000, 0x0)
r6 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TIOCSETD2(r6, 0x5423, 0x0)
ioctl$auto_TIOCVHANGUP2(r2, 0x5437, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000140)=""/171, 0xab)

1m4.069841907s ago: executing program 4 (id=2387):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x10, 0x9, 0x63, 0x0, 0x0, 0x0, 0x0, 0x40000000000f, 0x7, 0xfffffffffffffffd, 0x7ffffffb, 0x9, 0xffffffff7ffffffc, 0x9, 0x7, 0x200000100103})
madvise$auto(0x0, 0x2000040080000004, 0xe)
mlockall$auto(0x8000000000000001)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x9)
unshare$auto(0x40000080)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
r0 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
pread64$auto(r0, 0x0, 0x8006, 0x20003)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$auto_VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f00000001c0)={0x81, <r2=>r1})
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_1\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'syzkaller0\x00', <r5=>0x0})
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000480)={&(0x7f0000000380)={0xc8, r3, 0x20, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x84, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x45}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x44d5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}]}, @ETHTOOL_A_CHANNELS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x858}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x48044}, 0x4000001)
io_setup$auto(0x80002, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8000000, &(0x7f00000002c0)={0x0, 0x2}, 0x1, 0x0, 0x2, 0x7}, 0x4}, 0x3, 0x0)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000640)='/sys/devices/virtual/mtd/mtd0/mtdblock0/queue/iosched/write_expire\x00', 0x102, 0x0)
sendfile$auto(r6, r6, 0x0, 0x7)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x400, 0x0)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/36u\x00', 0x26040, 0x0)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

1m0.495826001s ago: executing program 4 (id=2395):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/module/ocfs2_dlmfs/parameters/capabilities\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000840)=""/41, 0x29)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x0, 0x0)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(r2, 0x80045010, &(0x7f0000004440))
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x5608, r3)

59.851755163s ago: executing program 4 (id=2399):
r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0)
mmap$auto(0x6, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
openat$dir(0xffffffffffffff9c, 0x0, 0x40400, 0x48)
read$auto(r0, 0x0, 0x5)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
process_madvise$auto_MADV_KEEPONFORK(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)="3c8d5c18078952ed89dbe3ff1261cd11210fc9f8863b3c3c8206373ee8bbd30724e116c19ccd26861eb49f38f7b49921b51f5e61d80f1d89ee9599b5697a7f22", 0x3}, 0x8, 0x13, 0x9a)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r1, 0xc0045009, &(0x7f0000000080)='[')
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r2 = socket(0x2b, 0x1, 0x1)
r3 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000001)
sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001400c7d2a2e1917949643de42b"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x2b, 0x2, 0x41)
recvmmsg$auto(r3, &(0x7f0000000580)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x5, 0x80000001}, 0x1}, 0x3, 0x6, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x109402, 0x0)
close_range$auto(0x2, 0xa, 0x0)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0xfffffff7, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x40000402, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'pimreg0\x00'})

44.710797792s ago: executing program 33 (id=2399):
r0 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f000000e680), 0x2, 0x0)
mmap$auto(0x6, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
openat$dir(0xffffffffffffff9c, 0x0, 0x40400, 0x48)
read$auto(r0, 0x0, 0x5)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
process_madvise$auto_MADV_KEEPONFORK(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)="3c8d5c18078952ed89dbe3ff1261cd11210fc9f8863b3c3c8206373ee8bbd30724e116c19ccd26861eb49f38f7b49921b51f5e61d80f1d89ee9599b5697a7f22", 0x3}, 0x8, 0x13, 0x9a)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SUBDIVIDE(r1, 0xc0045009, &(0x7f0000000080)='[')
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
r2 = socket(0x2b, 0x1, 0x1)
r3 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFC_CMD_DEP_LINK_DOWN(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000001)
sendmsg$auto_NFSD_CMD_THREADS_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001400c7d2a2e1917949643de42b"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x2b, 0x2, 0x41)
recvmmsg$auto(r3, &(0x7f0000000580)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x5, 0x80000001}, 0x1}, 0x3, 0x6, 0x0)
mprotect$auto(0x1ffff000, 0x8000000000000001, 0xd)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x109402, 0x0)
close_range$auto(0x2, 0xa, 0x0)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0xfffffff7, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x40000402, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'pimreg0\x00'})

9.178665457s ago: executing program 5 (id=2499):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x3)
pwrite64$auto(0xc8, 0x0, 0x48, 0x7)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0)
read$auto_snd_ctl_f_ops_control(r2, 0x0, 0x0)
setgroups$auto(0xc00000000, 0xfffffffffffffffc)
sendmsg$auto_IPVS_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x4004040)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/gretap0/accept_ra_min_lft\x00', 0x1a3000, 0x0)

8.406291475s ago: executing program 5 (id=2501):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
r0 = socket(0x2, 0x801, 0x84)
r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
capset$auto(0x0, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r1, 0x7a8, 0xf000000)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x1, 0x20000084)
set_mempolicy$auto(0x6, &(0x7f0000000000)=0x3, 0x21)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
io_uring_setup$auto(0x7ff, 0x0)
socket(0xa, 0x3, 0xff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020007, 0xffffffffffffffff, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r2 = prctl$auto(0x1000000003b, 0x1, 0x0, 0x0, 0x7)
dup2$auto(r2, r2)
sendmsg$auto_GTP_CMD_ECHOREQ(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40040c4)
set_mempolicy$auto(0x5, &(0x7f0000000140)=0x2, 0x7fffffffffffffff)
r3 = socket(0x10, 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/midiC2D1\x00', 0x20000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40010)
recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x7, 0x0, 0x1, 0x0, 0x4, 0x8}, 0x800}, 0x10a, 0xc, 0x0)
ioctl$auto_PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f00000000c0)={0x9, &(0x7f0000000040)={0x5, 0x9, 0x9}})

7.256064826s ago: executing program 0 (id=2505):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x8000, 0x7, 0xbf, 0x401, 0x8001)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/vhci_hcd.6/usb21/power/wakeup_count\x00', 0x20300, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_genetlink_get_family_id$auto_ovs_vport(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/radio0\x00', 0x8000, 0x0)
openat$auto_proc_oom_score_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/oom_score_adj\x00', 0x80000, 0x0)
socket(0x2, 0x5, 0x0)
ioctl$auto_TCSBRKP2(0xffffffffffffffff, 0x5425, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/module/batman_adv/parameters/routing_algo\x00', 0x200, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/veth0_to_team/interval_probe_time_ms\x00', 0x0, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/004/001\x00', 0xa941, 0x0)
socketpair$auto(0x1, 0x7, 0xd490, 0x0)
semctl$auto(0x204, 0xfffffffe, 0x3, 0x4)
r2 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0)
write$auto(r2, 0x0, 0xc1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000)
gettid()
getpid()
r3 = clone$auto(0x6, 0x9, 0x0, 0x0, 0xe08)
move_pages$auto(r3, 0x9d27, 0x0, 0x0, 0x0, 0xf)
madvise$auto(0x0, 0x3, 0x66)
madvise$auto(0xb, 0xffffffffffff0005, 0x19)
r4 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r0)
sendmsg$auto_OVS_VPORT_CMD_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010027bd7100fedbdf25030000000100b20d0000000000000000"], 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x0)

6.31759115s ago: executing program 0 (id=2506):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0a00, 0x0)
pread64$auto(r0, 0x0, 0x3ff, 0x9)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0)

5.711710483s ago: executing program 5 (id=2509):
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000)
io_setup$auto(0x1, 0x0)
io_pgetevents$auto(0x0, 0x1, 0x820000a31f, 0x0, 0x0, 0x0)
semctl$auto(0x201, 0xfffffffffffffffa, 0x3, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)={0x45c, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@HWSIM_ATTR_FREQ={0x8, 0x13, 0x8001}, @HWSIM_ATTR_RADIO_ID={0x8, 0xa, 0x1}, @HWSIM_ATTR_PMSR_RESULT={0x438, 0x1c, 0x0, 0x1, [@NL80211_PMSR_ATTR_PEERS={0x378, 0x5, 0x0, 0x1, [{0x98, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x2b, 0x1, "5328e4e303face040befd2101c9902e885387a74c032fe19e533a9e018880e4967b029badea425"}, @NL80211_PMSR_PEER_ATTR_ADDR={0x66, 0x1, "6b074ccd6dcf3891b543b8004df8a752d9e2a1f0729e6681abe3905ce26957e840379d8c6fad9e9377379fd47c7f3467de1d0e6ae268b1947cc424e5e2702f05de674da3bd353a9b75b718ca14a40df6c9f813f017212cd32804fad90d3dc0c69c87"}]}, {0x2ac, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x2f, 0x1, "ad74853b62df1c21396376fbd6e891ed45d20f946c066df51e447f91df641c6f57a144cfc3e988ad8de19d"}, @NL80211_PMSR_PEER_ATTR_RESP={0x278, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x1}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0xb898}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0xffffffffffffffff}, @NL80211_PMSR_RESP_ATTR_DATA={0x248, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x60, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x1}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x24000000000000}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x34, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0xed}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0x40}, @HWSIM_RATE_INFO_ATTR_LEGACY={0x6, 0x3, 0x3}, @HWSIM_RATE_INFO_ATTR_NSS={0x5, 0x4, 0x8}, @HWSIM_RATE_INFO_ATTR_EHT_GI={0x5}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0xe}]}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0xffff}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x40}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0x5, 0x14, '!'}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0x5, 0x14, '@'}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x7f}]}, @NL80211_PMSR_TYPE_FTM={0x5c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES={0x8, 0x4, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0x6, 0x14, '+\x00'}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x2}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0x29e04a5c}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x4d}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0xaa}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x80000000}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0x10000}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE={0xc, 0x11, 0xbf}, @NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME={0x5, 0x5, 0x36}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0xf}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD={0xc}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0xab63}]}, @NL80211_PMSR_TYPE_FTM={0x68, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x7}, @NL80211_PMSR_FTM_RESP_ATTR_LCI={0x23, 0x13, '/proc/irq/default_smp_affinity\x00'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0xe}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x9}, @NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD={0xc, 0x12, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX={0x6, 0x2, 0xb75}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS={0x8, 0x3, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x84, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x5}, @NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD={0x8, 0xa, 0x4}, @NL80211_PMSR_FTM_RESP_ATTR_TX_RATE={0x2c, 0xb, 0x0, 0x1, [@HWSIM_RATE_INFO_ATTR_FLAGS={0x5, 0x1, 0xfb}, @HWSIM_RATE_INFO_ATTR_HE_GI={0x5, 0x6, 0x4}, @HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH={0x5, 0x9, 0x5}, @HWSIM_RATE_INFO_ATTR_BW={0x5, 0x5, 0x6}, @HWSIM_RATE_INFO_ATTR_HE_DCM={0x5, 0x7, 0x6}]}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG={0xc, 0xd, 0x8}, @NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON={0x8, 0x1, 0x1000}, @NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST={0x5, 0x8, 0xef}, @NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION={0x5, 0x7, 0x7}, @NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC={0x9, 0x14, 'nfsd\x00'}, @NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE={0xc, 0xe, 0xb8f00000}]}]}]}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0x28, 0x1, "193ffdf0f6e74cae9de0868c5ca4c5d3682bc22132075282cd99a903f863559e786b5db0"}, @NL80211_PMSR_PEER_ATTR_RESP={0x4}]}]}, @NL80211_PMSR_ATTR_PEERS={0xbc, 0x5, 0x0, 0x1, [{0xb4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_RESP={0xc, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x1}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x28, 0x4, 0x0, 0x1, [@NL80211_PMSR_RESP_ATTR_HOST_TIME={0xc, 0x3, 0x3}, @NL80211_PMSR_RESP_ATTR_AP_TSF={0xc, 0x4, 0xf7}, @NL80211_PMSR_RESP_ATTR_STATUS={0x8, 0x2, 0x4}, @NL80211_PMSR_RESP_ATTR_FINAL={0x4}]}, @NL80211_PMSR_PEER_ATTR_RESP={0x4}, @NL80211_PMSR_PEER_ATTR_ADDR={0x77, 0x1, "e1dd4048295dc03b183afb62e622b74c5f147e58570f8393edb697aa593e398ed0e6b6b5365a684c95c837bd1a5e02a235a6e041a5f0aaf17cde10dc3b625bc5c66dfe60a308866a7ca23170224a3e96901aba5943143fea45a3afdc3de927402ff95401d8eeed7759743750802a752aee776b"}]}, {0x4}]}]}]}, 0x45c}, 0x1, 0x0, 0x0, 0x24040000}, 0x8018880)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r0)
fsconfig$auto_EROFS_MOUNT_DAX_NEVER(r0, 0x0, &(0x7f0000000240)='nl80211\x00', &(0x7f0000000280)="018fc6846a98f3e122b3173e46d5e17fe990e7c67e839c6ec9", 0x80)
sendmsg$auto_NL80211_CMD_SET_FILS_AAD(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xa8, r2, 0x400, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x2}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x8}, @NL80211_ATTR_SUPPORTED_SELECTORS={0x81, 0x14e, "cb8d433078162e044103a2c142303b930508a35ecd4a1e4f8205f302dcb49490c2fc8b39751ee689a08b270f02bdf08be36cdd2d09a2e8ab49fb419ad149c9939e5ba3c194f267ad7e7e731a49a1cfc1236bae7df75fef5c2cd676141210bdc2cbec81cb1a6feadee4ee88c017dce89534a2d7266d434203ae23091b0c"}]}, 0xa8}}, 0x40)
sysfs$auto(0x2, 0x100001000000032, 0x0)
r3 = fsopen$auto(0x0, 0x1)
fsconfig$auto_SHMEM_HUGE_NEVER(r3, 0x3, &(0x7f0000001640)='+\x00', &(0x7f0000001680)="df", 0x0)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r4 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event0\x00', 0x80801, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x6)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="5ab11d4bca4386dae3b02708d15998c643525f4657370d966570d6344e7bd48d10c6fd496bbfe496b9f043bcb737d379391d7b0599eb2fa1bcbc9e2315426f0cfd3ed7a9281ef8c09ee156426f341a9fb5b7b232259c79d051ef77", @ANYRES16=r5, @ANYBLOB="00012cbd7000fddbdf2502000000080001000a00000008000100fa5d000008000100feffffff"], 0x2c}, 0x1, 0x0, 0x0, 0x48000}, 0xc000)
ioctl$auto_EVIOCSMASK(r4, 0x40104593, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/irq/default_smp_affinity\x00', 0x2, 0x0)
write$auto(r6, 0x0, 0x7)
prctl$auto(0x10, 0x6, 0x7, 0xffffffffffffff78, 0x8)
ioctl$auto_EVIOCGMASK(r4, 0x80104592, 0x0)

5.469108278s ago: executing program 0 (id=2511):
close_range$auto(0x2, 0x8, 0x0)
socket(0x1, 0x5, 0x0)
unshare$auto(0x40000080)
dup2$auto(0x0, 0x3)
open(0x0, 0x2002, 0x1)
prctl$auto(0x26, 0x3, 0x2009, 0x0, 0x5)
socket(0xa, 0x6, 0x0)
mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000180)=""/250, 0xfa)
setresuid$auto(0x2, 0xffffffffffffffff, 0x200)
keyctl$auto(0xb, 0xfffffffd, 0x7, 0xfffffffffff00003, 0x6)
syz_clone3(&(0x7f0000000200)={0x186800080, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
kill$auto(0x0, 0x21)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/btrfs/features/temp_fsid\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/58, 0x3a)
mlock$auto(0x4, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='V'], 0x1ac}}, 0x40000)
r2 = socket(0x10, 0x2, 0x0)
syslog$auto(0x9, &(0x7f0000000000)='/sys/fs/btrfs/features/temp_fsid\x00', 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vkms/drm/card1/card1-Virtual-1/edid\x00', 0x8000, 0x0)
read$auto(0x3, 0x0, 0x80)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, &(0x7f00000002c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

5.039543119s ago: executing program 2 (id=2512):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008)
r0 = socket(0x27, 0x2, 0x1000003)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
r1 = socket(0xf, 0x5, 0x20)
setsockopt$auto(r1, 0x6, 0x9, 0x0, 0x7fffffff)
r2 = getsockopt$auto(r1, 0x6, 0x9, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xebf, 0x401, 0x5)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x42100, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000080), r5)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r5, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f00000025c0)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="00022cbd7000fcdbdf25030000000500010000000000140006006e69637666300000000000000000000004100700b96e9607f666b9141ba6c8775d7e2778bbcee3a75105bb2de121dbe421ab9cdd915098bd410b226eef83f612ed8995162efc9c9a434f4aac45332287257f6b452350f73c6f29746d675ba9ae460fdff329bed9f539070a1f232f0560922e0c86315e66f7931305dc8ad850fa48dba36605a73c6cb0dca376fdd9956a7f6f5af03530bc7731a9a8e0fef620800179e632b67e3d3899e085f8e56aad455d2ab0cc16f097812b1d88278b30f99e2428991a0b1bd6f547bd1d1880328a4ce57585b462f8ce5b0d614670393b5b3d86cbfed5f40f2c7ede1ccb970e180233f6e6f2f2bf46ffc99b2374d10ec39b067845f4ba9fc7e35519a487218531010d51f3ac5dcd4c6b480a775c607e24382da2648bf679336e5188d5bda2a378079d3a9d749abd6e84abdf047c20f09af5745a289a578ef295a6ff7ff3b321bb13e1095d997984697f502e5284a217bdae9a0cc57eeceb046294f72b3bd3bf56f0c595942e239b62a49a3d89e18b477006f99e17ab8fcd9b777e6e21d4a720a41fe3b57d2694cc6cf8883de22ff7e7be4061d7de112d7174e1ce22b053c788e75370fcf176912600697bdee746d04de3268f3757cc4928d3d28c0440356cd78baa2f79592061a0ef9d1ca53c28c72a510943b8c41f021378e72e06a689722ed6eef77e47907d7a0dfb8e3b8eda4773dc8f085bdd6c3a72def0e72a3be3761868ec3ef9041878fcb109c59f92823ba9d2dc1d55fbaca5c63aed376f4bd91883adf4e25595efbb2fde03525a8733345ded2445df819e6c0f4f5c2d1bba8352eb98625fc83bcdaf5d7c1256f0f21b68b4b5c2491e5671f856e96304c8f2307f7519d36953f716375b810b59fab040567a88ce4e44bc0deaf27f09f5a0f9b6c2ac235527a43af53ddf6658b8899090c32b16b60c6d4a93559169073bd7888e742b094565e04323357e69b051f7971dbb233295997fdbe49f50fff6a283e90769ff5343b8bd44defda88fca65a00a1dbf442785f20b1cc02609dc5b4df949b326a0bfbc88b212b45432d0ef18d8af8688694f57f070647a46fbb745946ec187c0b12121ed320baa832a0a601b05b3636ea712071167921e2393d3a65082bcaa026e341fc292dbb00f9e9596fa99b5bb1253deeb7aad546be4ca5c5ce16f261e424c5f211a2cd2735eb20f18f7518f8b9216879fdba5bdf56d7741d22cfb7714a099b5c2143ccab43f45c2316d7c2452aea3ae4675cddfed906bc9d3942eb853e3ce822508ebb957cb58762ae8fa1c1aa75ca297af4f3f91832f740c58377c43b17e3ef8c06a06c318bf11b9358e5b2ba532daa3512a5f2f0e39e0fda77c336bdc1113f82b2eaeff8002f49a342c64744eda064ce1d069d3ac981f0d398774b13d64630b3b7032b18d930165993028409ae4e1219466c44026c8149e12c92b770f6fbcc054e1e6f6a0476432247cb592d4a3d8b05944fe55d256fc96655c3a1f3afa5141806a88f4bf1331f04c8dab84d5547777d786b1ddc38785c49da02227eae942d569c23ed1e5f1c5ea9870496d921edc677cf8980ce63ca3f643333405a3fb03c598dfbd36f21e800772be7db2bd7376d2180fe9707b7a32f9a0b9563dd55c98909c0bbd9a1c6e6e1b2d1b62ecb0d1f3c8058a8a26661ab4a446a37e6f0540bf0260eb1defef0042cbfd4b53e4f86741871617dcfe1a0122168127bedba0be0543f74941978a90443af758bc89e664df613ce83c98f1ff0bea3a2de32621722f2df01cc5a6b212f1d796c91737dc541b707885048742f69a3c3c21be9c6ca42a4602d789f9be8f786596aae6e79a4104563f30c68647a03d07b50d831e9228e7916e9d22fcfd612162366f79fa63617f434d9c2baefd9b6f7fe99540d1249511ff2aea3a060f94779e9c4c27ab9039413245cd3c84cd9c375a595af7091fb340ca9a88a21c36f09cbefcf696a2acb502142c2bfee1cac5c5d0892f698020f1923865f3bff80e10112d9256756990b447123ef076a16479cb508a543aa43910f30ef4d8fde8d97633acf5d52e11868cdf9aa81ee18a6631d26ec6745ff37ead2955c4e0cb1b44dd339092a67a6d7e4e057b10d636d1025363d869afaba058688ae84df63f07f0672af4e557488a83c409df7d2fae49d6271f490f120dc9b61a4ddbda7e491c4753afd0cb984c63cf46487b71610798329f8d20e2c915c3f8ad3a3084ed2f46883b3a71341982d2f89874c961d871ce951d6e5ae9ab20b75fc76dbbb47f4eb841fe0008af11d6dbb606b6a565ee2a61ce23338967c8c4361a4dfa96132cc4ddcc32cf5bd60eecccadf764990e99de75733387011a3715d19cfef7837fb420bdf5fbb5115d35b33ed497696abe17d1837f94d5aecdb57d5f52d28ab0d57cc25b932a6364c0d4c1ccc3167870068de4e4257c6d76e029dbd20c8952787a6654d3a9e638442c44271c66f5804265ae50479676d6d449e9e350c917dfa186cd70533f706f91f4cb9c5c724c319072d71ca622a50c709764c74eca42c66aca9b1e9e4919f31c9462f70530f7a263f3b67d631e696931f88a73ed21d4893fc5b2f8912977da84789e53fc28d80f7618c18621469326759f1740a34428c664e5277e23e186f4052401e3fd0c7a37e540b90790afdb3b3d2a6dae427fe04cb97defe8e9f14789ca334eaf5e781fa339c6dab20b7d09398569592d7ff49488d2373195dbd79595be71943179321c424520aa621d59647a9fa79e07d8d4e6979354f91de018f63272fbf5600e999405d07e11018ff8cb84bdbeb8dee07f03e012f8a9aa1bd4c23a696d77cc88880e9d7ea478471e996fb7c27396c4480ef92de53625a65f57a7a3692abe52740510291e92fc6fd5cc0bc0fae52e70d56d655a266870c0f51c55520146c6754ddaaadd6e88ac2684cf1c87b991f35676b35a4d6743bed2c14051f9fcd772f7f23b274f9916fb83fae58c504334243fac65b2c05c6d57c8768970880ccce7a2c4674e0743949470554b00d0041831cb99175956126489d54ee45fac07d576d07e88c85cbd1a84871b897e676b934911a80cb24f2827f6213b47b77b6e9eeb2c2517695deaaaa8002af846f07f69914c9140a0d7f6c56e63a41c5a6c29b17d79bdde8b8bfc827f5beb044b809a3bbf2c7b5b932a18fc42efcdc1c8265bcbab848bd8e39defacd61f1d4e5cc455a08248688680921c33c4353d1a4f8115f726d499e07764ecfc07a826f32d56711fa81ea5478fc1ff9b555803ff306f81cea7fb33ece5d561b44d54e67189cc322b219981d72d2357d4dc80cf6b0760b4feb810bd6b339db21594066838172543e5bbc3c1091ac8d667874ec36b541e440ed181b1f8964333348afeeb1c95e01f7093356d062eb8d2deb332ba6e3e1c64670f37fb91babd49c8e2edf3b84d90a4914963f252120721701315b1936303e00ae74539811b2967e9ad1767ce6e2c1a86df8f704eddce431229cbe1b1ed4b14814c8e590b778518afccfe13805897979760c0f99e2b4408eb6a694c338d15b3e8eb1ea49affcdf0f3af4e6cd7fb4d90b5f82a792061b6d42041b2f6b3e41a35ead2fb7b85c8c5b2c796e28ea194ee28b3fefea97f770bb8e61ae7c01c259f516680b6b8394c603f119ce451ce84ed2e39ac887b37ccf8ce0a5e6829a8acf339aaf7aa219074abc7d01cfb193f22c9d44ac2011fb79919d3d8bcf35d10dc815002382fc8d233395ad2d65c1bcf2c4e04737ea7ef1753bcaba3f47f1a416e9727e6e5e11018e49d407e043801d6f5f8ae58bd85eb56de2201089ba32e45b14a6817893b9f19a2ab1d1df40efb3de3a637054994aaec427797bfb224a1d8577af90228a3f7be552163d7837e17e281f163464ce6a6b26289eaa2851be3722c5f6d0d67de49c1fbe95e8d7386f2ca9bf8a9fcf9932a57ea28f4e714ea95245269ec7be11e42e37d4c617d216cab3ca36483c737633c1b5cbf8a202b3afee80ebea0a62dbcdd340b748d384106ec0c9cc0da1192fb124b64655d82006aa619f5dfb8d9be38615fd4bba5a5297cb7856d0293bcf26030a22291df8c055a1569c037c1fb1f5ce1971b8516da80e2e68b664ea1f821dd77589332d4b02bd95c4b3ead1dab6eb293d4ecb471f8f8dbf1a40da1c2487f67b83d3b3c711dfed4a30837aaf667697bf11ff39138950e04dc466bf53023da4a44bae27813a46bb8794f5c28b50887fb8c402f75ab21bd9e4137b977eb8d3896aa257728ff16093dec55ffe658737d47776170ac52cc8f79d33002d0f1b6715a305bc91c5972a3241955cd7c029141321545815211a2ff7bb903516df0cb0b526c1fb1c15e8b48031e9988b7e5d056906fb3a1746e571f3eba5780a5550067265b0878145ff8a18e397a2150a9c52f3796121855580cd06c41a1668594b1043858c216a9dce757202f9c9fa3ed65b86de5f967d559756e94fcaa57e9ebc0fac9db58a2d46c30c241ff0c2ab8b521afd917c3b8d34370947da8e1386de7c934eae95fcdbbbecf6121849e97474cbaf2a0f82de9030c8e181813c6d20bf5b86888328a38c669f4896c14b9c7bbf86853a21d78f33d4be9018787a69d609b34af7612dffdda19a0a0d8dfafcee05dd16e48ae8ec2b8a6044e0b14e24dad3f16f9699e568371b4ed70bebe857b6ae77af21174d207e73a4d809e62fdfc05814c25ec1f57bd1811c4c7a054107e4a6f186f0210c2411499e10960e5a08aebfe31b7fd43d13d8b17f47202b0e7b7edb3bddeb0e856f1d7a1d37e9358d472ca4da2595a8f803a0d3c6df76690940b520176cf461bd60e7726fe54035cd300236a24c9f48841b9f2f684af6d7d0a68f88f187dd7fde6cc2f0cae36ae4d9bcd04c9471dc2247b29155643db3a969dc1f147a5029549be1b7260e84c18a7f1a02b033e1a23431bbec98f12e82e81d4fe94061514491f4d0f4fa0ead670f77b0768b41946cafab0aac7ed76c35ed2c653ba0c0ae6434bff946ed3117c927ded519128dc382786eacb34d5a5d9f2144c8d4314a891ea8891e8bb07c3f14c04297aab8ec2c537cb564b1a8ba606faedbf25b10e0948b22d4ecd6939cf6208d70d8869d7a8ae192788ea412aa21ff6b5e586e35f7c792e5eb37d8f57a66d4533b3b7a8a425180f0bb1734a4944f898e92651755c8fd56e9f10d24cb03be9b16ae102fb1e0cc83c66cc976d026f01729ce58ae5f4c0b438a729b6274a15c36ac4fdb0bef8f73fd8df76fa2c28ae3c70286fec76caf97fb4d43dd0812227b01ddcfd2355a24bdd5a575f68f759b8087bb546948d90bbacff1dabf0183efea7e4d8d9bee95400def0a2c1217c7f632cd57d2233bc8a64f25e8eb384ee3881f46c3f0a333a8440f4d0a219ba523e3433003014349d4b1b7d315470edd8c2eebeedb9e75782fc7d30c374c05851af90300506cce47214e165e2afbe9396048d2d8da08b1fc0e5be7f5a912b29e60adaa842b8a6ede53a46f05da8e940914579ae34d90293c6fa58e51785e224327dc7652bcaae1e9f2396368ce21298ad98cae25b95e52cd3c2817bf4c55d"], 0x1094}, 0x1, 0x0, 0x0, 0x80}, 0x40040)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0xca, 0x7fffffff, 0x16, r5, 0x4)
ioctl$auto(r5, 0x57, r3)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execve$auto(&(0x7f0000000240)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000580)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9q\x16pA7u\xf1\x82\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xaeP\xee\xee\x96\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xffp\x1a{\x04\xabu/a0\x02\x7f\xbb\xbd\x90\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xb5\x172\xdc\xe7\xdb\xdf\x0f\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xab\xcf\x00J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xe9m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0u\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00/Z\x9b1\x9f\x8d\xd2\xaeog\xdb\xb1a\xd0R\xa7\xa9\xde\x18JJ_\x04F9\xaaCQ\x03\xec\xd9\x12c\xf6\xa6H\xa7\xeb\xd0\xc6+.\x0e3\n\n\x8eD:\xa4\xa3\x9e\xd8\xf6q\xd2a\xe9\x06\f\x04\xe5\v\xcd+\xb9\xb4\x91\xedrp\xab?\xa1q\xfb\xa6CW\xe5C\xf4y\xc0\xa9\xb6+sx\x9f\f*\x93_\x12\xaf\xfd\x88\xdby\xe0\xb5\xaf:\xa7\xe7[~K\xf7\x82\xdel\xf5\x83\xed\xa3\xe5S\xddX)@\x9d\xc14 \xee6\xb5\x0e\x7f\x05\x80\xa1O:\xee$\xbbI\r\xabLJ~+B\xec0`\x88H\xd9y\xbf\x031mDD\xc4\x16&\xb8{x\xd0\xb0\x83\xb8t\x8b\xce\xf0\xca\xfe\x16\xfd\xad\xa3\x03d{Y\x16j\x01\xa6m,CaE\xa66]\x1e\xc0\x97PQ\xbe\xa3y\xc3w[\xa6\xb6`!\xa5g\xe6\x87W]\x83\x83\x14a\xf4\x12\xbdBr\xf8\xad\xfc\xd6\xf9+s\x13bI\xf6\xa2\xf8\xf7b\x86\x90W\xf2\xec\x94\xba\xf0\x06\x90\x94sd\rRZ\xba\x84S/\x19\x97\xa9\xd3\x8a\x9e]\xb3{\xb6\x1e\x90\xbb\xc0\xbe\x14\xb8\x9e\x89i\x987=N\xf0\b\r\xb1\x9d{\t\x94\xce+x\x11\xbe\xff\xd3m\xfc\x01')
r6 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r7 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_clock\x00', 0x0, 0x0)
ioctl$auto_UDMABUF_CREATE_LIST(r5, 0x40087543, &(0x7f00000004c0)={0x1, 0x80, [{r2, 0x0, 0x5, 0xef0}, {r6, 0x0, 0xffffffffffffffff, 0x9}, {r0, 0x0, 0x10000333d, 0x7}, {r7, 0x0, 0x7, 0x2}, {r0, 0x0, 0x8, 0xd589}, {r1, 0x0, 0xa7, 0x2}]})
sysfs$auto(0x2, 0x11, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp1\x00', 0x20040, 0x0)
r8 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r8, 0x8, 0x0, 0x0, 0x0)
close_range$auto(r2, r5, 0x4f)

4.795739273s ago: executing program 5 (id=2514):
mmap$auto(0x0, 0x8000020009, 0xdf, 0x11, 0x401, 0x8000)
syz_clone(0x40100100, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/stat/synproxy\x00', 0xc0a00, 0x0)
pread64$auto(r0, 0x0, 0x3ff, 0x9)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0)

3.699262924s ago: executing program 2 (id=2516):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001640), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4)

3.60628681s ago: executing program 3 (id=2517):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008)
r0 = socket(0x27, 0x2, 0x1000003)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
r1 = socket(0xf, 0x5, 0x20)
setsockopt$auto(r1, 0x6, 0x9, 0x0, 0x7fffffff)
r2 = getsockopt$auto(r1, 0x6, 0x9, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xebf, 0x401, 0x5)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x42100, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000080), r5)
sendmsg$auto_NLBL_UNLABEL_C_STATICADD(r5, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f00000025c0)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="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"], 0x1094}, 0x1, 0x0, 0x0, 0x80}, 0x40040)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0xca, 0x7fffffff, 0x16, r5, 0x4)
ioctl$auto(r5, 0x57, r3)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
execve$auto(&(0x7f0000000240)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000580)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9q\x16pA7u\xf1\x82\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xaeP\xee\xee\x96\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\xf20/\xc4T\x1f\xe5P\xffp\x1a{\x04\xabu/a0\x02\x7f\xbb\xbd\x90\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xb5\x172\xdc\xe7\xdb\xdf\x0f\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xab\xcf\x00J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xe9m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0u\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00/Z\x9b1\x9f\x8d\xd2\xaeog\xdb\xb1a\xd0R\xa7\xa9\xde\x18JJ_\x04F9\xaaCQ\x03\xec\xd9\x12c\xf6\xa6H\xa7\xeb\xd0\xc6+.\x0e3\n\n\x8eD:\xa4\xa3\x9e\xd8\xf6q\xd2a\xe9\x06\f\x04\xe5\v\xcd+\xb9\xb4\x91\xedrp\xab?\xa1q\xfb\xa6CW\xe5C\xf4y\xc0\xa9\xb6+sx\x9f\f*\x93_\x12\xaf\xfd\x88\xdby\xe0\xb5\xaf:\xa7\xe7[~K\xf7\x82\xdel\xf5\x83\xed\xa3\xe5S\xddX)@\x9d\xc14 \xee6\xb5\x0e\x7f\x05\x80\xa1O:\xee$\xbbI\r\xabLJ~+B\xec0`\x88H\xd9y\xbf\x031mDD\xc4\x16&\xb8{x\xd0\xb0\x83\xb8t\x8b\xce\xf0\xca\xfe\x16\xfd\xad\xa3\x03d{Y\x16j\x01\xa6m,CaE\xa66]\x1e\xc0\x97PQ\xbe\xa3y\xc3w[\xa6\xb6`!\xa5g\xe6\x87W]\x83\x83\x14a\xf4\x12\xbdBr\xf8\xad\xfc\xd6\xf9+s\x13bI\xf6\xa2\xf8\xf7b\x86\x90W\xf2\xec\x94\xba\xf0\x06\x90\x94sd\rRZ\xba\x84S/\x19\x97\xa9\xd3\x8a\x9e]\xb3{\xb6\x1e\x90\xbb\xc0\xbe\x14\xb8\x9e\x89i\x987=N\xf0\b\r\xb1\x9d{\t\x94\xce+x\x11\xbe\xff\xd3m\xfc\x01')
r6 = ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r7 = openat$auto_trace_clock_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_clock\x00', 0x0, 0x0)
ioctl$auto_UDMABUF_CREATE_LIST(r5, 0x40087543, &(0x7f00000004c0)={0x1, 0x80, [{r2, 0x0, 0x5, 0xef0}, {r6, 0x0, 0xffffffffffffffff, 0x9}, {r0, 0x0, 0x10000333d, 0x7}, {r7, 0x0, 0x7, 0x2}, {r0, 0x0, 0x8, 0xd589}, {r1, 0x0, 0xa7, 0x2}]})
sysfs$auto(0x2, 0x11, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp1\x00', 0x20040, 0x0)
r8 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r8, 0x8, 0x0, 0x0, 0x0)
close_range$auto(r2, r5, 0x4f)

3.523673265s ago: executing program 2 (id=2518):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x842, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xa0440, 0x0)
r1 = socket(0x1d, 0x5, 0x88)
getsockopt$auto(r1, 0x1, 0x40, &(0x7f00000000c0)='\x05/\xc3:\x00', &(0x7f0000000100)=0x7)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/64, 0x40)
adjtimex$auto(&(0x7f00000006c0)={0xf332b6c, 0x0, 0x0, 0xfffffffffffffffd, 0x4e8, 0xfffffffffffffffd, 0x6, 0x0, 0x1, 0x0, 0x8, {0x100000001, 0x10000}, 0x1, 0x2, 0xfffffffffffffffd, 0x6, 0x0, 0x10000080000004, 0x81, 0xffffffffffff628e, 0xa747, 0xdeb1, 0x804})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000500)='/dev/video0\x00', 0x0, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000440)='\xb3\f\x1b\xb1\xea\xa5]&jI(\xeb\x0fN\xf6$\x9e\x1f\xbb\x02\xb8\x14\xe2\xd6b\xb1G=\x05S\xfc\xa7\x89\x18.\x15\xc2~\x1d\v\xc0\xdc\xc4\t\x8dX{wjk\x94myA11\xcb\xd3e\x8f\xeb\x04\xe8\xd8\xbdq\x9d\xaa;\xbe\xe5d\xcf\x8f\x96\x85=\xaf\xda\xa7\xc3\xe7|a+st\xfa\x99\xf5\x9b\xf4\xd7\xfca~Rq Ni\xd6\xdc\xb2\xcb\x1f\xfa\xed\x176\xc0\xd7h\x9c\v\x05*\xa7\xce\xc8\x01\xbd\f.c\xe2\xf5\x90r}\x9a', 0xa3d9)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x10000000000006, 0xdf, 0x400009b72, 0x2, 0x80000000)
unshare$auto(0x40000080)
socket(0x15, 0x5, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x0, 0x0)
ioctl$auto(r3, 0x560d, 0xffffffffffffffff)
r4 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
write$auto_mousedev_fops_mousedev(r4, &(0x7f00000000c0), 0x0)
select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x200000000007, 0xd, 0x1, 0x948b, 0x3, 0x7f, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x6d3f, 0x9, 0x9, 0xfffffffffffffffd]}, 0x0)
socket(0xf, 0x3, 0x2)
mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x400, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1fb, 0x7, 0xd, 0x7181, 0x1ffde, 0x5, 0x3, 0x4, 0x9, 0x3, 0x0, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4]}, 0x1fe, 0xd)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)

3.033788791s ago: executing program 5 (id=2519):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x3)
pwrite64$auto(0xc8, 0x0, 0x48, 0x7)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0)
read$auto_snd_ctl_f_ops_control(r2, 0x0, 0x0)
setgroups$auto(0xc00000000, 0xfffffffffffffffc)
sendmsg$auto_IPVS_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x4004040)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x1a3000, 0x0)

2.563005738s ago: executing program 0 (id=2520):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0a00, 0x0)
pread64$auto(r0, 0x0, 0x3ff, 0x9)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0)

1.799173034s ago: executing program 5 (id=2521):
socket(0x21, 0x2, 0x2)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000)
r0 = prctl$auto(0x23, 0x200000000000009, 0x7fffffffefff, 0x0, 0x0)
r1 = openat$auto_proc_pid_cmdline_ops_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/cmdline\x00', 0x2000, 0x0)
read$auto_proc_pid_cmdline_ops_base(r1, &(0x7f0000000040)=""/159, 0x9f)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r2 = socket(0x10, 0x2, 0x0)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(r2, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000400)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="010027bd7000fbdbdf250a00000004100280"], 0x18}, 0x1, 0x0, 0x0, 0x4801}, 0x0)
sysfs$auto(0x2, 0x10000000000002a, 0x0)
fsopen$auto(0x0, 0x1)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0xffffffff)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
sendmsg$auto_TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f00000079c0)={0x0, 0x0, &(0x7f0000007980)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="01007050a7f82fc634b10f"], 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x2)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)=ANY=[@ANYBLOB="72010000", @ANYRES32=r0], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
write$auto(0x3, 0x0, 0xfdef)
write$auto(0x3, 0x0, 0xfdef)
close_range$auto(0x2, 0x8, 0x0)
setsockopt$auto(0x3, 0x115, 0x3, 0xffffffffffffffff, 0x1)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x127002, 0x0)
openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/free_buffer\x00', 0x20103, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r4)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f00000004c0)={0x324, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x5}, @ETHTOOL_A_EEE_ENABLED={0x5, 0x5, 0x1}, @ETHTOOL_A_EEE_MODES_OURS={0x2f8, 0x2, 0x0, 0x1, [@typed={0x8, 0x12, 0x0, 0x0, @u32=0x3}, @nested={0x2eb, 0xa4, 0x0, 0x1, [@nested={0x4, 0x56}, @generic="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", @typed={0x8, 0x82, 0x0, 0x0, @u32=0xfff}, @generic="251fb25e4f0466ceb9ac99ff45f4c7607de4f5e248e76fee0d4968f6dcc62c22d28d61a17640bc73fdc099dfb41ea2bc5b34a9fc57f04288367c7f449cd4af2385c4814f60a023288ef9480001cd54ad6349e18ded715f0f8cdfefeffb1128d64624e25774e9597d52c2e3bbe7e6f9fb546639e1ca2088d806fed5d04dac0e19edde0c5ad3560c18f2bb639c3f5fa6613406ba022408f38a385b2e87ae65fe36e9ecff72504a1fb3f71b2b9c50bdae861d5ff6f769eec4384355838c43ac62934dbfa460b2698ce35600ea3a1a13", @generic="0cba796b41abb1b01e1dfe4d4a3c5cb12b75911fbbfdc3be5beca0a557ea7f7f0b15249f87f5cd75f812f48eb2db9f256d5356a45f95c971800b0f856c9fa57c03cfc8399cedd65cca57102427a4e651da1df4af40f792847b22c798b224d4ff248d837f7187908dec9342a23700e441e98ec2e6211517e4071caf865db3a7c5652cbb5103b4af81239b6d2680a6f6175602ad87085341"]}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}]}, 0x324}, 0x1, 0x0, 0x0, 0x4c044}, 0x20)
sendmsg$auto_OVS_VPORT_CMD_GET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x20, r5, 0x1, 0x71bd27, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0xdb2}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x0)

1.786356161s ago: executing program 3 (id=2522):
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x0, 0x0)
r0 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/events/vmalloc/free_vmap_area_noflush/inject\x00', 0x2, 0x0)
write$auto_event_inject_fops_trace(r0, &(0x7f00000002c0)='\f', 0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/bus/usb/drivers/mars/uevent\x00', 0x40001, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_coredump_filter_operations_base(0xffffffffffffff9c, &(0x7f0000000140), 0x141002, 0x0)
readv$auto(0x3, &(0x7f00000002c0)={0x0, 0x8}, 0x8)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x82802, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x807, 0x5, 0x7181, 0x1ffde, 0x7, 0x3, 0x8, 0x9, 0x80003, 0x4, 0x200000000001, 0x384, 0x9, 0x8, 0x10006, 0x400007f, 0x0, 0x0, 0xe, 0x22000, 0x200, 0x0, 0x84, 0x4187, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd6]}, 0x1fa, 0xd)
r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000580), 0x2802, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r1, 0x2, &(0x7f0000000380)="dcbb5fd7054bed139fb7f9fb1dca8fe1d88f65ee057c0e6faac40d106e4f0d52edf6e31c48e8d983ae3431fa707225c2c387e1a200b38759ba8e9187200e6d044ef46a534de751b1436f20ed7071b254509700aa726ea003a1b7b9ce2313756dc84bc4556ddac694c4553d72ed13a885176712c9cff968f74bd1d14ff734ad08e60cf7e7a7dd07d2b6ca9cb21ddaae68d2969afcf6c734f6ee1c63b1c93abf32264f9ec022b64c903276298739ee8ae7ac1fe14534ad54004f39ea1b99964702554c1494e1742baeae527cf3007d50fc92e924f73b6288e5d9fd071d2fba76b2fabd3faf5229f4c3168226346e3087026d3d2c8aed398d4988971e05ff0ab9f5f2328e7f51d5061584b44581a4c83e413718d3a82f87daf87d1d5a2c32fbaa58f095fbf34ccc603b632155c27289cb5598049a7c9160dfe8a01d5a1983408082941eb39db2a09c5a34dc876dfa58a589687aa0cf6be7b5b084a8f753758332896ec3adad7a79b751908ee2b3d25131f44185a0ed8d20e9b6b8a1ed11402b02e544b67caf3177eda039e64aaf295eca7953c165fa73afca96d7750663711101c6e14e44817c6ad4b1474132dd441ca5c9d7776c871ffacbd96910496cad7010b9b526135e84")
ioctl$auto__ctl_fops_dm_ioctl(r1, 0xfffffff7effffd05, &(0x7f00000001c0))

1.531168253s ago: executing program 3 (id=2523):
mmap$auto(0x0, 0x20009, 0xe, 0xeb1, 0x403, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x100, 0x0)
read$auto(r0, 0x0, 0x20)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x401, 0x7}, 0x9, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)

1.523697532s ago: executing program 0 (id=2524):
syslog$auto(0x3, &(0x7f0000000000)='-@#%}#[\\}@(%\\/\x88*\xd5(\x00', 0xff)
socket(0x10, 0x2, 0x4)
epoll_pwait2$auto(0x1, 0xfffffffffffffffc, 0x3, 0xfffffffffffffffd, 0xffffffffffffffff, 0x6)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff)
writev$auto(r0, 0x0, 0x7)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x155)
r1 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r1, 0x107, 0xf, 0x0, 0x6)
read$auto(0x3, 0x0, 0x8080)

1.442641652s ago: executing program 3 (id=2525):
mmap$auto(0x0, 0x20009, 0xe, 0xeb1, 0x403, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x100, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x0, 0x401, 0x7}, 0x9, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)

1.339958499s ago: executing program 2 (id=2526):
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000002c00)='/dev/cec18\x00', 0x708c1, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000100)={"fdaf5684", 0xffff, 0x6, 0x3, 0x20009b0, 0x80, "c625aa3f222ce10400", '\x00', "0402eead", "05000200", ["0000003cac6a80e24f2c8d40", "f8ffffffffffffff00e10001", "b06f8ca10c66eebcbd6f17c8", "5f53589752d01e60b2239000"]})
r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x30480, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
r3 = openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x400, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
setrlimit$auto(0x1000000007, 0x0)
getxattrat$auto(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0xb91)
read$auto(r3, 0x0, 0x9)
ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
adjtimex$auto(0x0)
ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r2, 0x7a8, 0x0)
r4 = openat$auto_rfcomm_dlc_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x103500, 0x0)
pipe$auto(&(0x7f0000000040)=r4)
readv$auto(0x3, &(0x7f0000000080)={0x0, 0x8}, 0x80)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r5, &(0x7f0000000040)="f6e6812018deadf7e88f819e30236ce79200d01532f2ed0d", 0x18)
uname$auto(0x0)
ioctl$auto(r1, 0x0, r4)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
r6 = socket(0x2, 0x6, 0x0)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x9)
listen$auto(r6, 0x81)
close_range$auto(0x2, 0x8000, 0x0)

754.974042ms ago: executing program 3 (id=2527):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f0000004080)='/sys/kernel/debug/zswap/pool_total_size\x00', 0x2, 0x0)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0x10b000, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x3, 0x7fff, 0xfffffffffffffffa, 0x8001)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
msgsnd$auto(0x0, &(0x7f0000000080)={0x1, 0x6}, 0x8, 0x7)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000)
msgrcv$auto(0x0, 0x0, 0x4bd, 0x1, 0xf1)

255.871542ms ago: executing program 2 (id=2528):
ioperm$auto(0x7, 0x6, 0x2)
socket(0x2, 0x3, 0xa)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x4)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x7fffffff, 0x5)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x1c1041, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000f40), 0x2100, 0x0)
setresuid$auto(0x2, 0x7, 0x8080)
ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x2b, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/blank\x00', 0xa001, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/nr14/ifalias\x00', 0x80, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mtrr\x00', 0xc0000, 0x0)
socket(0x1d, 0x2, 0x6)
socket(0x2, 0x2, 0x1)
socket(0x10, 0x2, 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/hugetlb.1GB.rsvd.limit_in_bytes\x00', 0xc2481, 0x0)
io_uring_setup$auto(0x6, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
open(&(0x7f0000000100)='.\x00', 0x40000, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/013/001\x00', 0xa101, 0x0)
io_uring_setup$auto(0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)

170.817913ms ago: executing program 3 (id=2529):
syslog$auto(0x3, &(0x7f0000000000)='-@#%}#[\\}@(%\\/\x88*\xd5(\x00', 0xff)
socket(0x10, 0x2, 0x4)
epoll_pwait2$auto(0x1, 0xfffffffffffffffc, 0x3, 0xfffffffffffffffd, 0xffffffffffffffff, 0x6)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a4, 0xffff)
close_range$auto(0x2, 0x8000, 0x0)
open(0x0, 0xa22c0, 0x155)
r0 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r0, 0x107, 0xf, 0x0, 0x6)
read$auto(0x3, 0x0, 0x8080)

12.934431ms ago: executing program 2 (id=2530):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
writev$auto(r1, &(0x7f0000000240)={0x0, 0x7}, 0x3)
pwrite64$auto(0xc8, 0x0, 0x48, 0x7)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0) (fail_nth: 4)
read$auto_snd_ctl_f_ops_control(r2, 0x0, 0x0)
setgroups$auto(0xc00000000, 0xfffffffffffffffc)
sendmsg$auto_IPVS_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x4004040)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x1a3000, 0x0)

0s ago: executing program 0 (id=2531):
madvise$auto(0xd8, 0x20, 0x80000000)
unshare$auto(0x40000080)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyyf\x00', 0x40, 0x0)
mmap$auto(0xc, 0x20009, 0x5, 0xeb1, 0x405, 0x8000)
openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0)
write$auto(0x3, 0x0, 0xffd8)
unshare$auto(0x40008081)
rseq$auto(&(0x7f00000001c0)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
socket(0x26, 0xa, 0x1)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
process_mrelease$auto(0xffffffffffffffff, 0x80000007)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
r0 = socket(0x1d, 0x2, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0xa0900, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mincore$auto(0x1000, 0x8001, 0x0)
fcntl$auto(0xffffffffffffffff, 0x5, 0x8)
madvise$auto(0xffffffffffffffff, 0x7fffffffffffffff, 0x9)
clone$auto(0x21, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x6)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
close_range$auto(0x2, 0x8, 0x0)
ptrace$auto(0x4206, 0x1, 0x0, 0x200005)
r1 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000100), r0)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x75471c25055587ab}, 0xc, &(0x7f0000000140)={&(0x7f00000052c0)=ANY=[@ANYBLOB='t#\x00\x00', @ANYRES16=r1, @ANYBLOB="00022bbd7000ffdbdf25020000005f2304802d3a467717388fa0501dec2da3caf08154aad9eb4f427db0191180c807c2cbd06ce4174dfc17fc53b68973a68ea159473abb007f9892ee3f28c3491598c1f81fb41e13b6c1bc430dd1ba4e2cb619470df07702b351b16e0198d4a1a9b7b643a056901d16c5a4544a4d0b5d70a73aeacbda41a7afa5bede5e2c1d94cd06bab13d3c980600518525e2e558779f54739c455754d6ab95e9039d882d9e12c103314b80c9b69005487e216653d94a8aafb3e0c3191ed40de5267d4953feb0a07da0404070b4ff185cc2f28a4757c0c86a0400a100abd424533f27a7765c85375bbd5da35140808caca6b71599553cd2e756ac14e903b702c083b951b2effd12bdaf28b58edba597a8bfd9b14c794cfb7e91c61405a8fa4e1995ff1e1fe22d26beef68392c0db55e24660941ae8e3168d9bd1f87f8f773b2943049f15b2506b62a84c7956af5a2bc7fc7c5d66cee6596dd020e78dfc8f4594c52212915def3c787f8c253f1712294f5b56fce78e33af876a1339eb314f1cbee8396be8453717c0b559a8b23cf9ca769f47c0a0717eb82519ff45f4fbf63c1f425653da9e27400f217af1d3a8789025fde54914302a54e68e041e865fc1d3f5718644c4f7fb8e02af888337b56b065c4b0b8002a7dcf030a86af699829a6073283a3004f51413050a200709afdd7bc3ea6069e7d7a102fa66fac20c06addc2aef1d41331f51da36301aa825553e3bef16f5a0b9e84c5bce7d3af478fa409d37616ada2703dd4a4a4bdf522be87bfb3404cff5f154c116c4c7594ed53d7034cee656206e7863788793a61998cfd5f99486e669886538b64d07b85a8b2ab64d003d2d9e89d129a478ad64c567f43496b37ca74b6e1cfec496a2ba7927425d17e6dbc9e904149060bb20e50ec6362e91ff5bca5c0db1954da97dc942478ea1806ee10dcc002fbc8caebc882007d199d04dd27f36ded9c0618af814068929cf6a4ce848059b9862a4dc61e4b363fcb2eaecd3749eeb65583e2665cf3750129a8a1d4c08039eaaa2f31e8bdc3982b19338f2fdd41dcdc01e7be6267017fac597cb0d98bd2dc8802399a2346767ae802321b8432898a7e8ebc01404c7529d0c1d27353fcdb3b4a6ef9c75f7f6903d60cf4a80f6ae24095752cb71e552b89cd92ac12f268f476bb9b846d2aaa18e62dd463b0f2a67afc5c24581fde264e4b9d4300201d01c0198883654814f831138357430d90dd842562ea0e19d850ea51fe7991630036e993980ef5ab38d264d3a02984f6e577fe4c1f73b2dfc9d29548e4d7157d4f3eae00e5e1d07e5f5f72fe1a1ba798ceb4e648af6891a5cdf94061c97273ea57ff50094be0648d1071d431d9b530eb5a3d53f83df47ea0effabdff4a31971d3263f5ce4127d18f3801e816449ed0129650cb8750d62c81d1dd1c12588edb27b4941beabf5101d9d612843c07365bdb8f2e1c16df2d50a17a652fdb7606418a34e97ed80a366fe6fac87ff180802797230cfc05b91a72044d0fe8022c7d13272cb36a3291d6a57c5a1ec5c587a54eebb8f80771f0ccca2addd6cad9500b9612a2c7b9acf179c7bc2189a8a49e8002f18f770d5e9d4e404c1bc440c1b88c2ab9233d7ff463378eb3d7ce72a9d9be2cd2b0ff96fee0aa7b4220ccc0b7aba376725b477ee5d357fc2b1a2a6b214544700600b6d734547146a0fae50724a97eebab6ba79d845b49af1b7c194fc0a413ddaab5cbb532d83829ceb8b8044957ab339ea8f9ce944244ff31ae3fe7206234508ddad723d0e89602696bcd2560005da5bf237211cd8318a1174953dd9a2bf593b84ea8020887c569b05b167a16d8fdda29601088d69c097b17c0c69c6fa7a5b40fc17dd8352e8d19d643ed3e811a2821fb57a445e7b0e94c5bc111a7141c600c43046d8f4733789508e35c9e721e045628768bd58f742967ee715350b3db83261a442b52373bae7b070896b2786571f455ee6bb357cd97169fcc85c716cdac353a23067d14698fefad080258403c86d01f3aa47652996518a5ec39b3ee8c0f546919d543da092c77da516975086546648d5fabd060b8b9b95a982bf98a7bec8c7b88efcdff6f6a63886c676b4e393576dee09e5f4e40cee461a11d8ba473dba11816a646ee08f523c9034388cbf777b1a0cb88d809b2b81561c8ddcb3f7ca8f6737309bbc03514be6e118ab4a60c9ee0eab89fb14de8eb537921304854cb09e93566b309c6cb1aa96a117dc5e7a03fc3e772b74c195cff1c52d72b038220ea3bb84b232b96bedc6a1d38de23ffa3f787c0d81f584f9834526b1a6898a5a879e0e65793a1b4bdc4cbe153a12fc7b91d0e5a04c3045c6eab9575d0888832f98d081861eb706c723f9b63aeb588f493e1d461ed8e380feb0f0c49cbcec7dfe68b7189184116661e648ff57cb71304f92221f630d2823554d1e89863fa0d14896738f4056c0a6daef806d51fd8ecb117a6a6afb907e33136fd1d3a56de10450d660826dd779c3ff9bc11052e61d53748e94efd60948c194504203df36f65ce1068d59c57a3bd2c7af9590f46cf0175be6753611b118e170ae5303b88614a59b9ea4895b56dd18a8612b90c312579a000ffa8912f34484b0aca4c58aaf99e271bf0cc9dbf968834b05f68881ffd8c04dfc6a95e2a5df0aeaf60f4b47116784ff536b0d669da27df1401e5ad82957f71a383a240f6e0693dbe38db8ba8f010d66c6e2ccfd8dcf832ea8781d8620e0aa25b1b8860bca7d32155be9b5d7556c9a555a024d8cf7dd56c878018f0a66a41e6e43cb4e815eed18a9085520149cd6aef88203d6622820abee3cfd9f12f167273857ebd265fb9c4d705c598d25ae6efba5e4de0cab6361c4dc025aa263daf1f4ccbde8542cb54c936a41162fd3fe24f61479c5367d3a46e9545bcdf72a76978ca1474f63448270475e63453f23b405a7d614ae2db51e910fd816e6d9ca2f4af848f30c8293415bc12596a745b29bdc9ec7ba217be38752250402e934f9c32c4969fcc90982698a03aedc5c03165ea3c08add53a1d68e51d26c36ece053e2500000000000000062810ca687a06decbea4b7a8cb908f3ffa6345868a3ed096dd7b0152f559f8724f6553207da590366912a8d97d3d483e83d92fdc0dcd33b98566c9ddc61fcf727cc6da0daec32583e10e95fc4230b7bb6a28f4e5b67a6a27894230c967a412926df78697844aa7ab7496b008e961e12d0263617a1284787e3db839b32afce58ee46085dcc6f76f4048e05d73d679d84e1bbe79a3407deb452e649836892833a55d9c2672e55436cb47d01314c69fca05295b36eec0972cb28f1722408fa9be3351a47fb9fa8c47bb239bcea9756a6a0d154b5cf6a6fa3bcfef512d6c99f7752c48e6855616c87be0200d4ff7469e83be3c51b3346d407006760fb6f0037552ef7fc280bf4a95767897e766f376cd6d647a5ae238474ac2c576beb4a221de83d3b4bb1ffa4c04de6a795f2a1e1cd15350f59a6b49b8ff956906a71f036f6fd317496edf2f2744de9b4e84ca24db3cad61f06e16e85886ec8d7b0b36d010519ece5f461c82ae70f96b34f01913965521d2159ca00eb51a6b88459a58788ee53c6e5f17cf5b2fe9e9e51883024bf0a7e4b2d5acd8975bc15e036ea73428b257d8c566c4b6cec3650ac1e416e69c0ceb4064513bd91401f845adf27037fee73c8b564299a7806bf6459bae24fbf04d2b0d2ff82db6da6c5e5739aff059a6fda22fa6a07f9c73167ae850c5f3cae2931721bc05ad42535d413f036cc1449f5a8b10f4059ab4f87390f475ae5c14652db883e3ff57e9679914b4b160d0da73760a0eb925afe1998df9e6af644e78d61e0565d608c8cdf93f45d80ab3e35be327af3add64a476b75ccf5e4939817472b545fe34f9b5a5bc1f8b373a638d623c2b629e6ff30d149e98c663ab3222a3f260af819931a4dc96b18f07d6d636531e7d8ed7713768bd1db44550c4aafe63d5a5d723b0477ef3cd2853a36f5bd250d85bc02a5179afba875a81554f11f4a376597a1342ee5bba7d493d8c941424e04e402f7dbe6be7d36d6ea993ba44b2892160d8599db9b413ca14e4647353e7e816ed32a9f1807dfa8dc1cbaea02a0d743020d5e03b551a22ece101c016b56e3a441ad6cc8f583c2027a7941c86e38fe61b2f14903a4f3c79758fa043739cd09c940eebfbd5986f01d3f3d0cfe84d3f7a5fddd01713f482969893b9c9d5f081bb12dd9321becc8e2ee4c1bb35f80803da9271ab5d672f17e8e407dcc5d448e08187e808256e077a74e04185f3cf21da80d8f988c718bad5356be96b9bea59e6d4d5d0f483465441af28ab9fe9813600447fefc0efcd1b92b2661d49ae577bba01d33578ee7d2f16ae1b11f6fee1e416073c14f9222acf9098130e470ed04a48d4c3c7e83862890ade58ee3298c1842d3876a361f1934b0be68877ca31d9449d2b1816ad36b8a5891f33b3fec98d066623d8cec1e57fae6915565f2fdf0d575e262697f99b56f01be8e641fbc3b42dabfa473f6b4b1dcb2140222fed321f072b8ecd57ba7ae2d3f6bce56bc54bf1a888c0e9bf1c1be4034f396e324b0a7fd8a6e667f20d76c79390f5bd038c1a8fd9bb744e2a0f5f376c0ee17c35f0cea2b95ca3252d92af62f1d4006c74fc5274206d45af407bfc14c5e0d20df4f637649ffc4df6e2f841fcb8ac7eb355c00b0038c2ccf2eb46ca8c1f124ade6e739aad6481f37c1f2aae4461825a0f257b92d7e8f02cb71933bde822d4c2bda64921527f5642329ea3592527d42f30e971e24102fe4b457359816a1755919fe7f6097ef7d74bb6057ae3390c08299acdc89edcd7b872c0ef4a6d8e27a9463797576e155f574e8fa8e9236f2f58f06fd7a47ee101fad48fa0ab3c89b2aa892213de8fd7d90dea3a66bd19b6f59e8ebecbb39776c1805cffa5a14834a6e7b0c1c9d048afd9809fbe1c690d9c620dcd0b39d0fb347d4cd7174de238dbd1c67de6bed392cffe040f8f24e69ea7638c3689104287a2229f77c249bdccfe9f7b59800cb87fef44cd01549b3c418483d7b4c5eec4de74941a4c2bc70a1c367f5f35027d2f95fb91e3d5aa960cf5871a3e070c99946ba2b13f1475177c81cd5c5a6651dbfb5fdbb86a8804bf4ea1b55297c504339a18433cf03f4bcb65bc13fa5d40089c756c4c27d7c42c39f6afd5bbb67e3d3fd1774f8f4c473b76e547fecbbe6e46e46c101a96d98bb849ddb78c94d5b4682e8649523b66935388db03e2ffc77c0eb6e674c939d6ceac77e91dc58491037764bc90140511849dac684064b2ec1706790d9cec13fc98639cec69fdbdb62b64c0935d4f060d696e8001e8ac0577541c3b18ee5282a3736f10e93938e7caaccfd28297b07be84b4eea600459d8b3ae567642618eddb16ccf8cc4a0a0e55c50b55558aa186815a6c060a72054c3cd45f710f934b71b8a824e294dc1bfd7750c488e87bf6fb706320fb9e5445195fbba3d0d5847250f54644207b6df83a16cb6db4e2e6f70390e19c880bb63679634a5ba0a6afeb84f7ae722340d6274c07910a5d89785951ee4daaf62f482bef7f694ecb0ca7eebc172b866561539b97125bd93c27743f91ab380a4ebf7b5da6157835ab15fe8b8a88d992206e1f03bc72ef85570a92787b7751c31f5f943252b2620eb6d7e3b97fb50c78a188f914c6cec86e4cf17ea64a496cd87adfa6a819703edb2cc2ea8bca6548d0247a3710804f5e72bc0a9f9e05d5723140a4d62ebe360fcc09e626a60ce6622b1fbf416f9f867627a1a1dc9230f2aa11270c4f94798a61e2a95adf883a907d3c3296e43925290d87fc81c2db1f3e291c0206219a376455bbb2c1157ad73c68556f6489ca7ddcc84ca8f850a69c47716bdffd4b56efefaecb393ce1db43d3a52a4f4d24fe74f5b0a848ee8ef92c29b96be2c5043e1c4057b8dc57e931778f49f60bc588b9cfcff032e812c7d201ae5e7dfd2d7e28603e777998f12530c6392c84fe38dad1872266bb6f4c9a315b8d7c95497b2f5ea89073784dadce54f5f8b91463895df0edba95360bce4bdbae4428c4e7f508e6d0acb336b50ef32714e304f0274722479a1663cbd35fe91de985e12b9b4bcf2f73bb36048215a161046ab3b02885c3e5f03846e8e4c5e69a96be7b79fff8387550ea0d98a36a4775631e19a31eaebc9a403249a9e63cb094618b55ff788282848c7a4ed2d81aa21de8bbc337ac05a735a734ab81ead71b9d4fbae77c1b212c0e5e3a220714f6d33c94b1fdd8f50b34330efe94ed574d029fe440684bdb296243b60d444ed4454fb9b45997510329d72a0ccd2fddf2c0baea400b4e10c049f14ec28c8451ea1f4691f24b0f8ec09bbc7f89bf15cbd47b5444c7b54315de3837f84faa2755b8c22fb1ce113d82b31469382a0859abb5fb0420c4de675d9e40ac35c252703b485422b7dc39ffb1d44e9c00bfe101b66c05dfa0574ee5a1dab044945f0ba1198a73c1076c8417c748f27ff96a26b83e2bab2c5c7fe829c0a7d5b48fb46f5435d27e07611e371f280affa0d5204211748052fe8adb6e276013f6460461dc41b35abdfceea46d9e444310f7c9cf0ecd9e95bf9bf19ff036c44cc7af002a2d7ed31de47c7c2522694e9434debcdc0e0439166d27691a07855d919cf9c9db37d683c9f509bf8b3fea9b2bc99ce5e9935d5386d047affb973f75943c60d1e67fd464e6489f1e763b0b80be749d3304885654e0c28498e5cd7b9f63f34797ed375fc2109962ed493dd2b3d6f95a2c76cb24f57164cad1d1b7d702128127c8216e733f3281731ca21af1ef56acc24b27a154ce4f486112c0c9ef7d230481c42bfcd0b467714a8eba047d9e536537959017fcb30b1bcb62ef5f3940272b05fbb70e4bc14080bc528903ae8b7b72c88ef4ca7f6c2017731fd1cc80b7e401000033ff235872f6824028146a9227b0a0b44a866ca35fac7cd08f37edcd1ae8205022ea8729100f77429676d5e85a1e8f98f2ac3558cdf5e5b37c7e8a5a6b3a6694fb895302e7dd06fb67adcb712c5575f49137324895db92bdc6a326d23ccc9e1f14342f5e9876f7565e6836422fedec422a228267419a1b53caa49cc9cac217444cf805ba89eee66e6514f44e478dc6a47e4197c2cf3fb0941b2305c09a46ea95d32b7dee3099acf0db37a81783ffdec596bd144f688ddc6d0af4fa8fd4abc16964a8f32e19eac7b21bfe0793259161e910e90233fb128ae545993946d2e553141bcc5ad3279809f87e27d4e4d4902e4ff85264eb240e020a083419471af51cb5a0d684bcafa589dc67b0cd367c7c45552445ceac2dce1d21217cb5ddb1ab405bb1876b60a4045fe85c22aa58543886cf8158c19f7536d61230c2362bf4eb3d0020deeb8c67cb8ad20ac9812a3faca2b27024eb96b8f42255d0acfd852685edc6f8ba0e5d54630b6faf865e1113471aafe05d257d2124fb49417daec8347bfc7b02c5df02f100afe72745f9e19080062d23852ffe0ade619febf57e855b6d5bc2f7e42a17f9b992af1ef6922c20ae3d319a3507bea18b57a8df7fa4475bc610d68e65cbe2edfd4c785eaae53054217371698ed5720137cf442e412171e1b9c540a5edf8076d117fb24f5fa1bfa463824cdef7043056f18e12b70967be7fff5acb35e2e5c23eabdf4ab903cc59bcaf317d878755592095ed28faddecd9b73af1e28929cd24000e91a1ba064a307d159e87f29ebecb23b49ec1d6a55f7c0b2b31e0fcf72ce595e69ba0e4027a0d2e076d65c9424c5fcc9a4dfeeface47219955965fe97c53f65083d83689076ed024a8a6f8b23b6de11bcd455fe6a8bdbaf66ad5244707522312c40c7ab30dde8085ca6cf325b1dacf7d6b32b66b2a0651bf71501b6768716dc10dac94db667aadbd061ecf92a2cbff28c76585245c9cff8bfcd5265c9939f3499e1b51015c1d33448083af910cd0c7c0950161dfb73b0f36b65c0696f495e60e8a53558238f68fea85e43813db0c7471ea69ad5541f3c068ef955785be534ca02e269495f20eabe5ec4f0894a314e4f1b18ea3eb392a0057e1896257ab56f44e84709270271126a182401cb8c5dc9378af4d63bf44d1c16d02aba544d72e5642cac1ce9aa89330d3a7b2a3361e251f497f1a3d5fd4995034abc0d3b4efefb045576b4aebde361ef5feb7eaacc44f30e822a5e001d6e279842a53bf6f7845ae371a43077a8c2df1335362fab0510ea58073e7089e25cd1d4455dc7ad1ee8857881a9bdf5e7dddf11bea98526a10d400bfe65aa764b3b8d30c99659a607878123fdfb26dfb056dc17136eadb08b47b5c42fe22333beddf64e31c30bffd812be0d2cf0785c16dd0430f9988945996d533dc288902ad6a8ead5596a5528ac54aa81d9cdc590688140ea43bf948a801986bf22aac1e9eea67cb0ce355256542d1f4b9b93779424e3e7c178f08224faedb6a6142d764a497352cc2f59c9efc493cadab63c4335ddb3f180981d08b1587ec8d6f23f6325506909326706b00d192321fcd3e2aaa6a156054435c8449491a71f91f27e71929b969b9ce14174a778f14401a024e5654a4deb3d37ca98dab5c3a70f81337ad6d725ce0a45153226d8eaa5d1f4a8227204ef8ad841ab2609fa7db41fc580986ada5af6746a23a71debe173484882cd3bec383ed8ba38227d5de5993df753fa906b8c0642c565b31e25ae78e104f68e5311a7e553f400f6671d850a94c058562bfc7bf9fb45fa4effcdb04964178bd547918184bb37456480556b4736f7311f0a59377affb896255d1e1f4d1fa1d8bad7abc1dbc4b9082f632361aa289cb2b07307d5d752273859f16e594d9f4c498599dab172fb2a73da079f8bdae881511297551aba7f7aed9563968d48cbb85c88c3463a2768f7588ffb3f67723c15bd215d39415b845dcbedbe4a01ec08d8fba67303ad01b4c0e30d00054128cff57660d9b26663bc67f11ee54c9a27d4bb9d1c25600a3208857049930929de3dc2977d20bb99f2d5954fe77408f6820a967a2f564e3c49555fe9ce7461def0f573a682eba914d1817df52f1902b8c80be228cba2534aa03b78f410b82f0f067f20748070b0e37b2bb0bbae144fa3fd8c3d7e4e3e08db8db7a4cb21f00d0dbb48c9c20120831fb14d5291ec6b08d68e45321d11d061364f8d6e6646b1a4d3e47d02c50b79b4a1100c88c4080775e16fd619150ec7500b05d0ebb07ef35fc1970f27dc745c41c587cc66809b865c490cb3b546e27a199504fd3f0e78157c1d4d6b767a46766ac2ebf69e4aaee4285eb30ed08d5245412003d474dff0e8ab01a800354f46efe75679300d8ad2d194cf1cdf0c38ac3d8da3e7fcd970a2776315711a131fc36c8e693d9a0e367d62b72a26b2206c3d1e77c0dd279dd9e4791c28877488080ccaede9d82a97d4914665a5e0901a580ccc389551084b15cfe4dca9c74a3e5dfea2c82155e651ab1be8a3d4e0fa2843e6845f3abcbdd6d7c5a99203c3c30cd6e92898ff4ff8db4ce80cd1805604ca97fded59c1f76b86740e4951a11486982cae7c5c677814f321846b5f1db4e87490191d209af5050d7e2c268d7f762f2e70410a424a064bcb3ab04ba3a926ae9afd2406ddc680be12ca00f0f2a37f04e5d5513cb29395bd94656b9635ca3cef433051f1384587a4ffcdadd246d2874fc18101591a18722a0dced15e42f9a0f449bbe821a05a51a4a3e791715d6eb89d301fd00157482361ea6fd33904ace02a779ce209a7b6d234f29e32bcca2a673c7041ca7660d3453af38a982e7a0830606f2f7b1078ee9d980da5d496878d75d6067a32be339c51b9f96afa1c7f047e83e75a825eacfb2adb569a3e24128212a292a563a21d5210510cbe4bcd9f140e593e3b2d3864e255afe1a9c049ebc176c9aa4c82a7012a427561b58e10021aacf7ae63cf01c7fca3f10804dab47b669dd45df400c9009bc6a5c1bc937bc98b0cb4ae7caf49e6cf01ab16ec2abd585ff1ef719c1ea7258e14d24ffe3608c781e8b122f7a5b27201210323da1710691a473fb44faa069348520f6907d423b4b5a9a165d048526520e95edb8bc13020d909c7d1be1729e62826b7253f6eeeba6a226ee31299ea975c45636f62855056521756a5bd134ccb93ad707fa1825a1b7d3938cac2870c9663a7b91ae373442f220866afb61e6366f21fab22df776866a36c810fb2b8c0621a982b299ce25e31f01e92a2aac711c8ea953812d4fdf64f3935320fcfc3da63fb7aad2bf13768f5278897624b061a223d0dec8372f025efcb519022b719bb3c53328e8a319a6abac964ea54ad0697221ce2f59c24ec7e885b61c51744796004bc589d7c8665257f8c4e188b98a5484936c7ddf8fff9fb3daf63bc876f8977691dfa9a475e4887aadc0881ded073011aeb161525a845762d1d02bccfcd6ccaa0884d5f8e952d62a32ae5d711a6da8b9c6c6cb5988bd764da4688a3c5f5c4f5f067e63882263061913a6f0843344e4c7e2c19d9c9dbf8bb1a93415a87f6ae4b925238ac3d2c73c82da2cdfab9cb1ca225098eb587eb42b53dd016522197d7bfbdb896c393b451d4d71e409da0e0b41008867c839bfdd5e70a121b952e84b36fc89a1f88d64491c720b775a574d94623ada8366d38c420b1702687f8c6dd5b7e09c0d51a92580878b364a2580b54754c588e0c2cf9854d196e394c4b45d70cb2924cf7398fdb48ff019bfef36a7be697b3140e655bc854043a8de68c54b8d00a2a9ee5a987b948e4bdb3780e080a168ba2ab925b50d56f4ba257d3b7e4add13afebddc1f19ff5cc1ddcbf260b1d0976d66662e0e1b2111f7edafdf9454c1f0c15a9e1883a1c3482fc3cc36f940e39dea84043a3637b82ff7e37aec91ffe9e7c14da0303db4e0ec62d562d2f6a931fc4194e462a2b41250287ed64432ca011d81c20e676941481b628e4797e71038c1bee7e370bc0201a20c3ff98d24af3aca4c6d4ee9ebe5204d2c392169c05341d17f02760a9e29599fac4559ef4068fbe6dd8755615051ab0850d4798c37aee441c270286bf8fa09c06e1b20e6b10ac414d867f0b936c8dbe37e0a8dcbeff60ce9d49d28850a0e8dd1983836ce0dc32e5649932ec13a5792314a2bc32448d75ad3f247378b691b77df37b00e449ac522c553dfd53a1c8ceb40291406422864eb45f457e1b27943057ee51c3f900aa42a319b2abf03ab95814790833bc76a2cf90939f7227b10829abf85df2788be68ca5b06077e9e82958040d9d4ebfbca6272ea01ac63b555e5fa571a80d81ea2c316fc9dcae244f037e174f35363ae56d9a58cbaed2fc300f518adf6a916ea5dddd42db226ce1cf3e232633447ae01d159fe8748788728b2c7dedc68bf7b7bf0b7018d64d23a2248cb9d22cd4f1253a80b849d0be6160be93b93604620ebcbadcf86a4fe7a07ebfead4cde988d5cbd8792bfd51d5ee37354339ec2ed912623f974aa7bb26fbcb05c4e9f55f14faedc42e70a5104f1c99cf9fe7744a270b3bbea2633d8ddb21d521dc123ef929c526650ef3b6e1de1eb0133a2da05ae62615287ff709dd7414f1a42548b057f801b33fa868ac2e4af38245f74e985821d6ac81b23fc0334d8dccb03c9cb7f7c39573591c87f55fdb299daef5704cbe231a8a3e07834ace9bf8883ce5542bb34e57238cf725a836204f9f1601149d861a232f70217c966e75805b265c43d4871c2e0102a407abeb2b6600454ab112a47ae334000ba40bfd4e8a9c4dc92b340b2cb92712522b443224934dcd65a1bc5a0a393451eaa290560194e7f4c3157f6ef8db8d3dbe691448be2ebc3eeff50581d911b816dc25c0b436b48cf597581cafb0ffae6763b46297e287a5adab6ee4c9a4b3eee453dcde7d95a531aeda506c7191bfdeb6acf67f549051d164d2782920bb2820471140313d60e9a22ca0e85590f3c2d514894e9453b00c75929d026233db64e29f628dcd4551370727cf2a533b14542b2a076f6ee4b6c6446e77aa8022f8b7df2fab38dd234d2ecb667da972de0e873d008cbbd2904ca7102c6d4d327d873757dddfaa4f6ad2108a486e159d95c9d6a9d24fc20035d0ad41635ff83c327984a9e78f59c81c63055e39ad4ecebfe32aafea272a4416b389effaad6eacdc08aea34353b1f510e048d2414b8ce0e180451e91ec337e3f38fdd4f7465df4e9f067815b0b014436b59ffdea52063849fcb93ecda6b49a584ca93fa963751ea89768beb9d78c9aafcb94ac22577d8bb9cad9ee7f9c9dad9ceef653c5681064de804e7abbaf173667051f11bc39a051a2068700a9631ea2071b982ee5568d073ea355f27c5f3109bb4f7b024a7c8251773eb939110007ae1c61faf6a70f33647a465012dd9d34fd3a068bf82070a6a3b9f82f2cee13521abb320d4205941df4690423bfad07969956a53e5b45652d953a8f3a66f0368bc88a5e64668187067dbf7c66585c0200055db3ad5d7e0007efffd7fcddb66f74a9933600b443a9ea0ce1ca6d68b76d61f8e00f4bb6c54ec921eb233c3baa690be815607f5ee355d912fb04bfc5401e7291f3cf9424213b2ad50108016a3562b6fc6f9cb5e538ab74aaa33d30b93a61a2b1e8e2e8f708d497704b51be8b00e51bcebf33095211c403d795e2ff2bc9123cf3bf31d6fb26eae77f6dba0d8c3914b35ff485c15df1b13f322ac3ce9ddccf33c2d8cb988db64d732cc82e51cd6620b1d8ec32e528ada9615c063b1dad8cedee8543b19399c0f77bb5063a2506cfc41c998d9be7e0da98a9d76ee228763e3e549f8ba4e429e2fde9aef82be93000000878f42688bba77d82bbedf0b0b17a949dd2e0db8402cb0e160be2af770e4aad3b252c43e950ca0442c0ddef096ffaaf5559ad151fac83cf811d1fb92743a18a17039ccd46a41b84864942d17a1eed031eaec6bf89add76560b8666fc1c6be7904172e069eace8e6394a2e3646e318d6c126533b3c4b8e02c3947"], 0x2374}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4e20, @loopback}, 0x45)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000040), 0xffffffffffffffff)

kernel console output (not intermixed with test programs):

ffffffffffda RBX: 00007fa9ccbb6160 RCX: 00007fa9cc98cb7c
[  515.816200][T13000] RDX: 000000000000000f RSI: 00007fa9cd7800a0 RDI: 0000000000000005
[  515.816218][T13000] RBP: 00007fa9cd780090 R08: 0000000000000000 R09: 0000000000000000
[  515.816236][T13000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  515.816253][T13000] R13: 0000000000000001 R14: 00007fa9ccbb6160 R15: 00007ffe7549a698
[  515.816293][T13000]  </TASK>
[  516.008825][    C0] vkms_vblank_simulate: vblank timer overrun
[  517.265055][T13016] openvswitch: netlink: nsh attr 68 is out of range max 3
[  519.110798][T13042] CIFS mount error: No usable UNC path provided in device string!
[  519.110798][T13042] 
[  519.124601][T13042] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  520.363486][T13060] openvswitch: netlink: nsh attr 68 is out of range max 3
[  521.769982][T13083] FAULT_INJECTION: forcing a failure.
[  521.769982][T13083] name fail_futex, interval 1, probability 0, space 0, times 0
[  521.801250][T13083] CPU: 0 UID: 0 PID: 13083 Comm: syz.4.1703 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  521.801308][T13083] Tainted: [U]=USER
[  521.801320][T13083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  521.801339][T13083] Call Trace:
[  521.801349][T13083]  <TASK>
[  521.801361][T13083]  dump_stack_lvl+0x16c/0x1f0
[  521.801414][T13083]  should_fail_ex+0x512/0x640
[  521.801460][T13083]  get_futex_key+0x49e/0x1000
[  521.801503][T13083]  ? __pfx_get_futex_key+0x10/0x10
[  521.801554][T13083]  futex_wake+0xe7/0x4e0
[  521.801602][T13083]  ? __pfx_futex_wake+0x10/0x10
[  521.801651][T13083]  ? kmem_cache_free+0x2d4/0x4d0
[  521.801688][T13083]  ? fd_install+0x225/0x750
[  521.801715][T13083]  ? putname+0x154/0x1a0
[  521.801762][T13083]  do_futex+0x1e3/0x350
[  521.801799][T13083]  ? __pfx_do_futex+0x10/0x10
[  521.801835][T13083]  ? __sock_release+0x20b/0x270
[  521.801893][T13083]  __x64_sys_futex+0x1e0/0x4c0
[  521.801935][T13083]  ? __x64_sys_openat+0x174/0x210
[  521.801983][T13083]  ? __pfx___x64_sys_futex+0x10/0x10
[  521.802025][T13083]  ? rcu_is_watching+0x12/0xc0
[  521.802068][T13083]  do_syscall_64+0xcd/0x230
[  521.802129][T13083]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.802162][T13083] RIP: 0033:0x7fc50af8e169
[  521.802189][T13083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  521.802222][T13083] RSP: 002b:00007fc50bd860e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  521.802253][T13083] RAX: ffffffffffffffda RBX: 00007fc50b1b5fa8 RCX: 00007fc50af8e169
[  521.802277][T13083] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc50b1b5fac
[  521.802297][T13083] RBP: 00007fc50b1b5fa0 R08: 00007fc50bd87000 R09: 0000000000000000
[  521.802316][T13083] R10: 0000000000000005 R11: 0000000000000246 R12: 00007fc50b1b5fac
[  521.802343][T13083] R13: 0000000000000000 R14: 00007ffd2121c450 R15: 00007ffd2121c538
[  521.802381][T13083]  </TASK>
[  522.006246][    C0] vkms_vblank_simulate: vblank timer overrun
[  525.922029][T13123] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1715'.
[  527.533399][   T55] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  527.533436][   T55] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  527.550337][   T55] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  527.551374][   T55] Bluetooth: hci0: Malformed LE Event: 0x0d
[  527.891787][T13157] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input63
[  528.925967][T13172] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input64
[  529.337890][T13180] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input65
[  531.009809][T13205] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input67
[  531.330911][T13216] FAULT_INJECTION: forcing a failure.
[  531.330911][T13216] name failslab, interval 1, probability 0, space 0, times 0
[  531.357421][T13216] CPU: 1 UID: 0 PID: 13216 Comm: syz.4.1744 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  531.357475][T13216] Tainted: [U]=USER
[  531.357486][T13216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  531.357504][T13216] Call Trace:
[  531.357515][T13216]  <TASK>
[  531.357527][T13216]  dump_stack_lvl+0x16c/0x1f0
[  531.357580][T13216]  should_fail_ex+0x512/0x640
[  531.357618][T13216]  ? fs_reclaim_acquire+0xae/0x150
[  531.357676][T13216]  should_failslab+0xc2/0x120
[  531.357720][T13216]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  531.357760][T13216]  ? security_inode_alloc+0x3b/0x2b0
[  531.357805][T13216]  security_inode_alloc+0x3b/0x2b0
[  531.357844][T13216]  inode_init_always_gfp+0xce4/0x1030
[  531.357909][T13216]  alloc_inode+0x86/0x240
[  531.357953][T13216]  new_inode+0x22/0x1c0
[  531.358017][T13216]  proc_sys_make_inode+0x47/0x5c0
[  531.358057][T13216]  proc_sys_lookup+0x282/0x410
[  531.358097][T13216]  ? __pfx_proc_sys_lookup+0x10/0x10
[  531.358141][T13216]  ? __d_lookup+0x266/0x4a0
[  531.358197][T13216]  ? __pfx_proc_sys_lookup+0x10/0x10
[  531.358232][T13216]  lookup_open.isra.0+0x4d7/0x1580
[  531.358299][T13216]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  531.358377][T13216]  ? lookup_fast+0x156/0x610
[  531.358431][T13216]  path_openat+0x905/0x2d40
[  531.358477][T13216]  ? __pfx_path_openat+0x10/0x10
[  531.358524][T13216]  do_filp_open+0x20b/0x470
[  531.358558][T13216]  ? __pfx_do_filp_open+0x10/0x10
[  531.358624][T13216]  ? alloc_fd+0x471/0x7d0
[  531.358667][T13216]  do_sys_openat2+0x11b/0x1d0
[  531.358715][T13216]  ? __pfx_do_sys_openat2+0x10/0x10
[  531.358759][T13216]  ? __sock_release+0x20b/0x270
[  531.358822][T13216]  __x64_sys_openat+0x174/0x210
[  531.358869][T13216]  ? __pfx___x64_sys_openat+0x10/0x10
[  531.358921][T13216]  ? rcu_is_watching+0x12/0xc0
[  531.358965][T13216]  do_syscall_64+0xcd/0x230
[  531.359015][T13216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  531.359048][T13216] RIP: 0033:0x7fc50af8e169
[  531.359073][T13216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  531.359106][T13216] RSP: 002b:00007fc50bd86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  531.359137][T13216] RAX: ffffffffffffffda RBX: 00007fc50b1b5fa0 RCX: 00007fc50af8e169
[  531.359158][T13216] RDX: 00000000001a3000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  531.359180][T13216] RBP: 00007fc50b010a68 R08: 0000000000000000 R09: 0000000000000000
[  531.359199][T13216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  531.359219][T13216] R13: 0000000000000000 R14: 00007fc50b1b5fa0 R15: 00007ffd2121c538
[  531.359269][T13216]  </TASK>
[  531.415224][T13219] usbip-vudc usbip-vudc.0: gadget not bound
[  531.629627][    C0] vkms_vblank_simulate: vblank timer overrun
[  531.966325][T13221] Invalid ELF header magic: != ELF
[  532.993022][T13233] CIFS mount error: No usable UNC path provided in device string!
[  532.993022][T13233] 
[  533.003627][T13233] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  534.729289][T13269] FAULT_INJECTION: forcing a failure.
[  534.729289][T13269] name failslab, interval 1, probability 0, space 0, times 0
[  534.910188][T13269] CPU: 1 UID: 0 PID: 13269 Comm: syz.0.1754 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  534.910249][T13269] Tainted: [U]=USER
[  534.910261][T13269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  534.910280][T13269] Call Trace:
[  534.910291][T13269]  <TASK>
[  534.910304][T13269]  dump_stack_lvl+0x16c/0x1f0
[  534.910357][T13269]  should_fail_ex+0x512/0x640
[  534.910397][T13269]  ? fs_reclaim_acquire+0xae/0x150
[  534.910454][T13269]  should_failslab+0xc2/0x120
[  534.910497][T13269]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  534.910535][T13269]  ? __proc_create+0xc3/0x8c0
[  534.910573][T13269]  ? __proc_create+0x2ce/0x8c0
[  534.910618][T13269]  __proc_create+0x2ce/0x8c0
[  534.910668][T13269]  ? __pfx___proc_create+0x10/0x10
[  534.910706][T13269]  ? _raw_write_unlock+0x28/0x50
[  534.910748][T13269]  ? proc_register+0x314/0x5f0
[  534.910802][T13269]  _proc_mkdir+0xb9/0x200
[  534.910843][T13269]  ? __pfx__proc_mkdir+0x10/0x10
[  534.910893][T13269]  ? __pfx_netfilter_net_init+0x10/0x10
[  534.910933][T13269]  netfilter_net_init+0x37b/0x4b0
[  534.910969][T13269]  ? sysctl_net_init+0x27/0x30
[  534.911017][T13269]  ops_init+0x1df/0x5f0
[  534.911068][T13269]  setup_net+0x21e/0x850
[  534.911119][T13269]  ? __pfx_setup_net+0x10/0x10
[  534.911163][T13269]  ? lockdep_init_map_type+0x5c/0x280
[  534.911212][T13269]  ? __pfx_down_read_killable+0x10/0x10
[  534.911246][T13269]  ? debug_mutex_init+0x37/0x70
[  534.911285][T13269]  copy_net_ns+0x2a6/0x5f0
[  534.911342][T13269]  create_new_namespaces+0x3ea/0xad0
[  534.911392][T13269]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  534.911436][T13269]  ksys_unshare+0x45b/0xa40
[  534.911484][T13269]  ? __pfx_ksys_unshare+0x10/0x10
[  534.911530][T13269]  ? xfd_validate_state+0x5d/0x180
[  534.911567][T13269]  ? rcu_is_watching+0x12/0xc0
[  534.911611][T13269]  __x64_sys_unshare+0x31/0x40
[  534.911668][T13269]  do_syscall_64+0xcd/0x230
[  534.911719][T13269]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.911754][T13269] RIP: 0033:0x7fa9cc98e169
[  534.911780][T13269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.911813][T13269] RSP: 002b:00007fa9cd7c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  534.911845][T13269] RAX: ffffffffffffffda RBX: 00007fa9ccbb5fa0 RCX: 00007fa9cc98e169
[  534.911867][T13269] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  534.911887][T13269] RBP: 00007fa9cca10a68 R08: 0000000000000000 R09: 0000000000000000
[  534.911906][T13269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  534.911925][T13269] R13: 0000000000000000 R14: 00007fa9ccbb5fa0 R15: 00007ffe7549a698
[  534.911966][T13269]  </TASK>
[  534.911980][T13269] cannot create netfilter proc entry
[  535.323004][   T55] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  535.858804][T13283] FAULT_INJECTION: forcing a failure.
[  535.858804][T13283] name failslab, interval 1, probability 0, space 0, times 0
[  535.891622][T13283] CPU: 1 UID: 0 PID: 13283 Comm: syz.2.1757 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  535.891682][T13283] Tainted: [U]=USER
[  535.891692][T13283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  535.891710][T13283] Call Trace:
[  535.891721][T13283]  <TASK>
[  535.891733][T13283]  dump_stack_lvl+0x16c/0x1f0
[  535.891786][T13283]  should_fail_ex+0x512/0x640
[  535.891825][T13283]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  535.891864][T13283]  should_failslab+0xc2/0x120
[  535.891909][T13283]  __kmalloc_cache_noprof+0x6a/0x3e0
[  535.891944][T13283]  ? _raw_spin_unlock+0x28/0x50
[  535.891982][T13283]  ? snd_ctl_open+0x174/0x5e0
[  535.892030][T13283]  snd_ctl_open+0x174/0x5e0
[  535.892091][T13283]  ? __pfx_snd_ctl_open+0x10/0x10
[  535.892133][T13283]  snd_open+0x1fe/0x450
[  535.892181][T13283]  ? __pfx_snd_open+0x10/0x10
[  535.892229][T13283]  chrdev_open+0x231/0x6a0
[  535.892267][T13283]  ? __pfx_apparmor_file_open+0x10/0x10
[  535.892311][T13283]  ? __pfx_chrdev_open+0x10/0x10
[  535.892353][T13283]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  535.892412][T13283]  do_dentry_open+0x741/0x1c10
[  535.892451][T13283]  ? __pfx_chrdev_open+0x10/0x10
[  535.892496][T13283]  vfs_open+0x82/0x3f0
[  535.892559][T13283]  path_openat+0x1e5e/0x2d40
[  535.892611][T13283]  ? __pfx_path_openat+0x10/0x10
[  535.892656][T13283]  do_filp_open+0x20b/0x470
[  535.892692][T13283]  ? __pfx_do_filp_open+0x10/0x10
[  535.892757][T13283]  ? alloc_fd+0x471/0x7d0
[  535.892799][T13283]  do_sys_openat2+0x11b/0x1d0
[  535.892845][T13283]  ? __pfx_do_sys_openat2+0x10/0x10
[  535.892908][T13283]  __x64_sys_openat+0x174/0x210
[  535.892954][T13283]  ? __pfx___x64_sys_openat+0x10/0x10
[  535.892999][T13283]  ? rcu_is_watching+0x12/0xc0
[  535.893041][T13283]  do_syscall_64+0xcd/0x230
[  535.893091][T13283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.893123][T13283] RIP: 0033:0x7f6b9418e169
[  535.893149][T13283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  535.893180][T13283] RSP: 002b:00007f6b950c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  535.893212][T13283] RAX: ffffffffffffffda RBX: 00007f6b943b5fa0 RCX: 00007f6b9418e169
[  535.893233][T13283] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  535.893252][T13283] RBP: 00007f6b94210a68 R08: 0000000000000000 R09: 0000000000000000
[  535.893271][T13283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  535.893288][T13283] R13: 0000000000000000 R14: 00007f6b943b5fa0 R15: 00007ffe78470678
[  535.893325][T13283]  </TASK>
[  539.874800][T13331] openvswitch: netlink: nsh attr 68 is out of range max 3
[  541.114651][T13358] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input69
[  543.203728][T13389] FAULT_INJECTION: forcing a failure.
[  543.203728][T13389] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  543.237684][T13389] CPU: 1 UID: 0 PID: 13389 Comm: syz.4.1792 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  543.237736][T13389] Tainted: [U]=USER
[  543.237746][T13389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  543.237764][T13389] Call Trace:
[  543.237773][T13389]  <TASK>
[  543.237784][T13389]  dump_stack_lvl+0x16c/0x1f0
[  543.237841][T13389]  should_fail_ex+0x512/0x640
[  543.237883][T13389]  _copy_from_user+0x2e/0xd0
[  543.237925][T13389]  vmemdup_user+0x66/0xe0
[  543.237968][T13389]  con_set_unimap+0x4b/0x640
[  543.238020][T13389]  vt_ioctl+0x1117/0x2f50
[  543.238060][T13389]  ? lockdep_hardirqs_on+0x7c/0x110
[  543.238109][T13389]  ? __pfx_vt_ioctl+0x10/0x10
[  543.238150][T13389]  ? tomoyo_path_number_perm+0x295/0x580
[  543.238194][T13389]  ? tomoyo_path_number_perm+0x18d/0x580
[  543.238236][T13389]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  543.238274][T13389]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  543.238320][T13389]  ? do_vfs_ioctl+0x512/0x1990
[  543.238364][T13389]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  543.238410][T13389]  ? tty_jobctrl_ioctl+0x152/0xe00
[  543.238452][T13389]  ? __pfx_vt_ioctl+0x10/0x10
[  543.238489][T13389]  tty_ioctl+0x65a/0x1610
[  543.238520][T13389]  ? __pfx_tty_ioctl+0x10/0x10
[  543.238561][T13389]  ? find_held_lock+0x2b/0x80
[  543.238593][T13389]  ? hook_file_ioctl_common+0x145/0x410
[  543.238637][T13389]  ? __fget_files+0x20e/0x3c0
[  543.238673][T13389]  ? __pfx_tty_ioctl+0x10/0x10
[  543.238703][T13389]  __x64_sys_ioctl+0x190/0x200
[  543.238752][T13389]  do_syscall_64+0xcd/0x230
[  543.238808][T13389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  543.238840][T13389] RIP: 0033:0x7fc50af8e169
[  543.238864][T13389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  543.238895][T13389] RSP: 002b:00007fc50bd86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  543.238924][T13389] RAX: ffffffffffffffda RBX: 00007fc50b1b5fa0 RCX: 00007fc50af8e169
[  543.238943][T13389] RDX: 0000000000000000 RSI: 0000000000004b67 RDI: 0000000000000003
[  543.238960][T13389] RBP: 00007fc50bd86090 R08: 0000000000000000 R09: 0000000000000000
[  543.238978][T13389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  543.238994][T13389] R13: 0000000000000000 R14: 00007fc50b1b5fa0 R15: 00007ffd2121c538
[  543.239032][T13389]  </TASK>
[  543.666252][ T5848] Bluetooth: hci0: unexpected subevent 0x01 length: 125 > 18
[  543.674250][ T5848] Bluetooth: hci0: Invalid handle: 0x1e1a > 0x0eff
[  544.616224][T13409] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1799'.
[  545.098977][T13421] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input71
[  545.567649][T13427] program syz.0.1803 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  549.886913][   T55] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  550.591264][T13517] FAULT_INJECTION: forcing a failure.
[  550.591264][T13517] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  550.683238][T13517] CPU: 1 UID: 0 PID: 13517 Comm: syz.0.1831 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  550.683290][T13517] Tainted: [U]=USER
[  550.683300][T13517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  550.683319][T13517] Call Trace:
[  550.683328][T13517]  <TASK>
[  550.683341][T13517]  dump_stack_lvl+0x16c/0x1f0
[  550.683391][T13517]  should_fail_ex+0x512/0x640
[  550.683434][T13517]  _copy_to_user+0x32/0xd0
[  550.683477][T13517]  simple_read_from_buffer+0xcb/0x170
[  550.683530][T13517]  proc_fail_nth_read+0x197/0x270
[  550.683580][T13517]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  550.683631][T13517]  ? rw_verify_area+0xcf/0x680
[  550.683680][T13517]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  550.683727][T13517]  vfs_read+0x1de/0xc70
[  550.683764][T13517]  ? __pfx___mutex_lock+0x10/0x10
[  550.683808][T13517]  ? __pfx_vfs_read+0x10/0x10
[  550.683851][T13517]  ? __fget_files+0x20e/0x3c0
[  550.683879][T13517]  ? rcu_watching_snap_stopped_since+0xe0/0x110
[  550.683928][T13517]  ksys_read+0x12a/0x240
[  550.683959][T13517]  ? __pfx_ksys_read+0x10/0x10
[  550.683989][T13517]  ? rcu_is_watching+0x12/0xc0
[  550.684032][T13517]  do_syscall_64+0xcd/0x230
[  550.684088][T13517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  550.684119][T13517] RIP: 0033:0x7fa9cc98cb7c
[  550.684143][T13517] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  550.684174][T13517] RSP: 002b:00007fa9cd7c2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  550.684203][T13517] RAX: ffffffffffffffda RBX: 00007fa9ccbb5fa0 RCX: 00007fa9cc98cb7c
[  550.684224][T13517] RDX: 000000000000000f RSI: 00007fa9cd7c20a0 RDI: 0000000000000004
[  550.684243][T13517] RBP: 00007fa9cd7c2090 R08: 0000000000000000 R09: 0000000000000000
[  550.684267][T13517] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000001
[  550.684285][T13517] R13: 0000000000000000 R14: 00007fa9ccbb5fa0 R15: 00007ffe7549a698
[  550.684325][T13517]  </TASK>
[  550.719934][T13525] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1833'.
[  551.523584][   T55] Bluetooth: hci2: unexpected subevent 0x01 length: 4 < 18
[  551.844148][T13550] openvswitch: netlink: nsh attr 68 is out of range max 3
[  552.228525][T13571] delete_channel: no stack
[  553.198365][   T55] Bluetooth: hci0: unexpected subevent 0x01 length: 4 < 18
[  554.974308][T13622] netlink: 'syz.4.1863': attribute type 1 has an invalid length.
[  555.074497][T13622] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1863'.
[  555.809640][T13648] Invalid ELF header magic: != ELF
[  556.406859][T13665] FAULT_INJECTION: forcing a failure.
[  556.406859][T13665] name failslab, interval 1, probability 0, space 0, times 0
[  556.517990][T13665] CPU: 0 UID: 0 PID: 13665 Comm: syz.4.1876 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  556.518043][T13665] Tainted: [U]=USER
[  556.518053][T13665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  556.518071][T13665] Call Trace:
[  556.518081][T13665]  <TASK>
[  556.518092][T13665]  dump_stack_lvl+0x16c/0x1f0
[  556.518143][T13665]  should_fail_ex+0x512/0x640
[  556.518180][T13665]  ? fs_reclaim_acquire+0xae/0x150
[  556.518234][T13665]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  556.518280][T13665]  should_failslab+0xc2/0x120
[  556.518321][T13665]  __kmalloc_noprof+0xd2/0x510
[  556.518367][T13665]  tomoyo_realpath_from_path+0xc2/0x6e0
[  556.518419][T13665]  ? tomoyo_profile+0x47/0x60
[  556.518452][T13665]  tomoyo_path_number_perm+0x245/0x580
[  556.518488][T13665]  ? tomoyo_path_number_perm+0x237/0x580
[  556.518531][T13665]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  556.518574][T13665]  ? find_held_lock+0x2b/0x80
[  556.518652][T13665]  ? find_held_lock+0x2b/0x80
[  556.518685][T13665]  ? hook_file_ioctl_common+0x145/0x410
[  556.518732][T13665]  ? __fget_files+0x20e/0x3c0
[  556.518769][T13665]  security_file_ioctl+0x9b/0x240
[  556.518813][T13665]  __x64_sys_ioctl+0xb7/0x200
[  556.518884][T13665]  do_syscall_64+0xcd/0x230
[  556.518934][T13665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.518965][T13665] RIP: 0033:0x7fc50af8e169
[  556.518990][T13665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  556.519021][T13665] RSP: 002b:00007fc50bd86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  556.519051][T13665] RAX: ffffffffffffffda RBX: 00007fc50b1b5fa0 RCX: 00007fc50af8e169
[  556.519072][T13665] RDX: 0000200000000700 RSI: 00000000c4c85513 RDI: 0000000000000003
[  556.519091][T13665] RBP: 00007fc50bd86090 R08: 0000000000000000 R09: 0000000000000000
[  556.519109][T13665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  556.519127][T13665] R13: 0000000000000000 R14: 00007fc50b1b5fa0 R15: 00007ffd2121c538
[  556.519167][T13665]  </TASK>
[  556.519178][T13665] ERROR: Out of memory at tomoyo_realpath_from_path.
[  557.325340][T13679] input: j%v����l��Q�	J86�� as /devices/virtual/input/input76
[  557.350694][T13649] svc: failed to register nfsdv3 RPC service (errno 512).
[  557.416653][T13649] svc: failed to register nfsaclv3 RPC service (errno 111).
[  558.216934][T13687] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  558.256304][T13687] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  558.448026][T13703] FAULT_INJECTION: forcing a failure.
[  558.448026][T13703] name failslab, interval 1, probability 0, space 0, times 0
[  558.464311][T13703] CPU: 0 UID: 0 PID: 13703 Comm: syz.0.1890 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  558.464367][T13703] Tainted: [U]=USER
[  558.464377][T13703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  558.464395][T13703] Call Trace:
[  558.464405][T13703]  <TASK>
[  558.464418][T13703]  dump_stack_lvl+0x16c/0x1f0
[  558.464471][T13703]  should_fail_ex+0x512/0x640
[  558.464509][T13703]  ? fs_reclaim_acquire+0xae/0x150
[  558.464563][T13703]  ? tomoyo_encode2+0x100/0x3e0
[  558.464606][T13703]  should_failslab+0xc2/0x120
[  558.464649][T13703]  __kmalloc_noprof+0xd2/0x510
[  558.464688][T13703]  ? d_absolute_path+0x136/0x1a0
[  558.464738][T13703]  tomoyo_encode2+0x100/0x3e0
[  558.464790][T13703]  tomoyo_encode+0x29/0x50
[  558.464834][T13703]  tomoyo_realpath_from_path+0x18f/0x6e0
[  558.464893][T13703]  tomoyo_path_number_perm+0x245/0x580
[  558.464932][T13703]  ? tomoyo_path_number_perm+0x237/0x580
[  558.464977][T13703]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  558.465019][T13703]  ? find_held_lock+0x2b/0x80
[  558.465092][T13703]  ? find_held_lock+0x2b/0x80
[  558.465125][T13703]  ? hook_file_ioctl_common+0x145/0x410
[  558.465230][T13703]  ? __fget_files+0x20e/0x3c0
[  558.465270][T13703]  security_file_ioctl+0x9b/0x240
[  558.465320][T13703]  __x64_sys_ioctl+0xb7/0x200
[  558.465372][T13703]  do_syscall_64+0xcd/0x230
[  558.465421][T13703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  558.465449][T13703] RIP: 0033:0x7fa9cc98e169
[  558.465475][T13703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  558.465506][T13703] RSP: 002b:00007fa9cd7c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  558.465536][T13703] RAX: ffffffffffffffda RBX: 00007fa9ccbb5fa0 RCX: 00007fa9cc98e169
[  558.465556][T13703] RDX: 0000200000000700 RSI: 00000000c4c85513 RDI: 0000000000000003
[  558.465574][T13703] RBP: 00007fa9cd7c2090 R08: 0000000000000000 R09: 0000000000000000
[  558.465591][T13703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  558.465608][T13703] R13: 0000000000000000 R14: 00007fa9ccbb5fa0 R15: 00007ffe7549a698
[  558.465648][T13703]  </TASK>
[  558.466925][T13703] ERROR: Out of memory at tomoyo_realpath_from_path.
[  561.133081][T13743] FAULT_INJECTION: forcing a failure.
[  561.133081][T13743] name fail_futex, interval 1, probability 0, space 0, times 0
[  561.148950][T13743] CPU: 1 UID: 0 PID: 13743 Comm: syz.4.1904 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  561.148991][T13743] Tainted: [U]=USER
[  561.148998][T13743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  561.149013][T13743] Call Trace:
[  561.149021][T13743]  <TASK>
[  561.149029][T13743]  dump_stack_lvl+0x16c/0x1f0
[  561.149068][T13743]  should_fail_ex+0x512/0x640
[  561.149101][T13743]  get_futex_key+0x49e/0x1000
[  561.149132][T13743]  ? __pfx_get_futex_key+0x10/0x10
[  561.149168][T13743]  futex_wake+0xe7/0x4e0
[  561.149203][T13743]  ? __pfx_futex_wake+0x10/0x10
[  561.149239][T13743]  ? kmem_cache_free+0x2d4/0x4d0
[  561.149266][T13743]  ? fd_install+0x225/0x750
[  561.149286][T13743]  ? putname+0x154/0x1a0
[  561.149320][T13743]  do_futex+0x1e3/0x350
[  561.149348][T13743]  ? __pfx_do_futex+0x10/0x10
[  561.149375][T13743]  ? __sock_release+0x20b/0x270
[  561.149416][T13743]  __x64_sys_futex+0x1e0/0x4c0
[  561.149446][T13743]  ? __x64_sys_openat+0x174/0x210
[  561.149482][T13743]  ? __pfx___x64_sys_futex+0x10/0x10
[  561.149511][T13743]  ? rcu_is_watching+0x12/0xc0
[  561.149544][T13743]  do_syscall_64+0xcd/0x230
[  561.149582][T13743]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  561.149606][T13743] RIP: 0033:0x7fc50af8e169
[  561.149624][T13743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  561.149648][T13743] RSP: 002b:00007fc50bd860e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  561.149670][T13743] RAX: ffffffffffffffda RBX: 00007fc50b1b5fa8 RCX: 00007fc50af8e169
[  561.149686][T13743] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc50b1b5fac
[  561.149700][T13743] RBP: 00007fc50b1b5fa0 R08: 00007fc50bd87000 R09: 0000000000000000
[  561.149715][T13743] R10: 0000000000000002 R11: 0000000000000246 R12: 00007fc50b1b5fac
[  561.149729][T13743] R13: 0000000000000000 R14: 00007ffd2121c450 R15: 00007ffd2121c538
[  561.149758][T13743]  </TASK>
[  561.345824][    C1] vkms_vblank_simulate: vblank timer overrun
[  561.913493][T13749] openvswitch: netlink: nsh attr 68 is out of range max 3
[  564.026353][T13762] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1912'.
[  564.049067][T13762] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1912'.
[  566.542311][T13804] openvswitch: netlink: nsh attr 68 is out of range max 3
[  566.854657][T13810] sg_write: process 1128 (syz.4.1922) changed security contexts after opening file descriptor, this is not allowed.
[  567.849712][T13831] FAULT_INJECTION: forcing a failure.
[  567.849712][T13831] name fail_futex, interval 1, probability 0, space 0, times 0
[  567.864337][T13831] CPU: 1 UID: 0 PID: 13831 Comm: syz.0.1929 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  567.864389][T13831] Tainted: [U]=USER
[  567.864400][T13831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  567.864418][T13831] Call Trace:
[  567.864428][T13831]  <TASK>
[  567.864440][T13831]  dump_stack_lvl+0x16c/0x1f0
[  567.864495][T13831]  should_fail_ex+0x512/0x640
[  567.864542][T13831]  get_futex_key+0x49e/0x1000
[  567.864584][T13831]  ? __pfx_get_futex_key+0x10/0x10
[  567.864636][T13831]  futex_wake+0xe7/0x4e0
[  567.864683][T13831]  ? __pfx_futex_wake+0x10/0x10
[  567.864733][T13831]  ? kmem_cache_free+0x2d4/0x4d0
[  567.864768][T13831]  ? fd_install+0x225/0x750
[  567.864795][T13831]  ? putname+0x154/0x1a0
[  567.864857][T13831]  do_futex+0x1e3/0x350
[  567.864895][T13831]  ? __pfx_do_futex+0x10/0x10
[  567.864932][T13831]  ? __sock_release+0x20b/0x270
[  567.864989][T13831]  __x64_sys_futex+0x1e0/0x4c0
[  567.865030][T13831]  ? __x64_sys_openat+0x174/0x210
[  567.865076][T13831]  ? __pfx___x64_sys_futex+0x10/0x10
[  567.865117][T13831]  ? rcu_is_watching+0x12/0xc0
[  567.865162][T13831]  do_syscall_64+0xcd/0x230
[  567.865221][T13831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.865254][T13831] RIP: 0033:0x7fa9cc98e169
[  567.865281][T13831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  567.865315][T13831] RSP: 002b:00007fa9cd7c20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  567.865346][T13831] RAX: ffffffffffffffda RBX: 00007fa9ccbb5fa8 RCX: 00007fa9cc98e169
[  567.865367][T13831] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa9ccbb5fac
[  567.865387][T13831] RBP: 00007fa9ccbb5fa0 R08: 00007fa9cd7c3000 R09: 0000000000000000
[  567.865407][T13831] R10: 0000000000000002 R11: 0000000000000246 R12: 00007fa9ccbb5fac
[  567.865426][T13831] R13: 0000000000000000 R14: 00007ffe7549a5b0 R15: 00007ffe7549a698
[  567.865466][T13831]  </TASK>
[  568.066088][    C1] vkms_vblank_simulate: vblank timer overrun
[  568.175259][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  568.211093][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  568.262860][T13834] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1930'.
[  568.703454][T13846] FAULT_INJECTION: forcing a failure.
[  568.703454][T13846] name failslab, interval 1, probability 0, space 0, times 0
[  568.726959][T13846] CPU: 0 UID: 0 PID: 13846 Comm: syz.2.1934 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  568.727017][T13846] Tainted: [U]=USER
[  568.727029][T13846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  568.727048][T13846] Call Trace:
[  568.727067][T13846]  <TASK>
[  568.727080][T13846]  dump_stack_lvl+0x16c/0x1f0
[  568.727134][T13846]  should_fail_ex+0x512/0x640
[  568.727172][T13846]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  568.727213][T13846]  should_failslab+0xc2/0x120
[  568.727258][T13846]  __kmalloc_cache_noprof+0x6a/0x3e0
[  568.727293][T13846]  ? _raw_spin_unlock+0x28/0x50
[  568.727333][T13846]  ? snd_ctl_open+0x174/0x5e0
[  568.727382][T13846]  snd_ctl_open+0x174/0x5e0
[  568.727426][T13846]  ? __pfx_snd_ctl_open+0x10/0x10
[  568.727467][T13846]  snd_open+0x1fe/0x450
[  568.727516][T13846]  ? __pfx_snd_open+0x10/0x10
[  568.727563][T13846]  chrdev_open+0x231/0x6a0
[  568.727600][T13846]  ? __pfx_apparmor_file_open+0x10/0x10
[  568.727644][T13846]  ? __pfx_chrdev_open+0x10/0x10
[  568.727686][T13846]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  568.727747][T13846]  do_dentry_open+0x741/0x1c10
[  568.727784][T13846]  ? __pfx_chrdev_open+0x10/0x10
[  568.727831][T13846]  vfs_open+0x82/0x3f0
[  568.727880][T13846]  path_openat+0x1e5e/0x2d40
[  568.727930][T13846]  ? __pfx_path_openat+0x10/0x10
[  568.727977][T13846]  do_filp_open+0x20b/0x470
[  568.728012][T13846]  ? __pfx_do_filp_open+0x10/0x10
[  568.728084][T13846]  ? alloc_fd+0x471/0x7d0
[  568.728127][T13846]  do_sys_openat2+0x11b/0x1d0
[  568.728176][T13846]  ? __pfx_do_sys_openat2+0x10/0x10
[  568.728240][T13846]  __x64_sys_openat+0x174/0x210
[  568.728288][T13846]  ? __pfx___x64_sys_openat+0x10/0x10
[  568.728340][T13846]  ? rcu_is_watching+0x12/0xc0
[  568.728386][T13846]  do_syscall_64+0xcd/0x230
[  568.728438][T13846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.728472][T13846] RIP: 0033:0x7f6b9418e169
[  568.728498][T13846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  568.728531][T13846] RSP: 002b:00007f6b950c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  568.728563][T13846] RAX: ffffffffffffffda RBX: 00007f6b943b5fa0 RCX: 00007f6b9418e169
[  568.728584][T13846] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  568.728604][T13846] RBP: 00007f6b94210a68 R08: 0000000000000000 R09: 0000000000000000
[  568.728623][T13846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  568.728641][T13846] R13: 0000000000000000 R14: 00007f6b943b5fa0 R15: 00007ffe78470678
[  568.728682][T13846]  </TASK>
[  570.402577][T13867] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1937'.
[  572.308427][T13886] vivid-003: =================  START STATUS  =================
[  572.347049][T13886] vivid-003: Radio HW Seek Mode: Bounded
[  572.404445][T13886] vivid-003: Radio Programmable HW Seek: false
[  572.520070][T13886] vivid-003: RDS Rx I/O Mode: Block I/O
[  572.566130][T13886] vivid-003: Generate RBDS Instead of RDS: false
[  572.576850][T13886] vivid-003: RDS Reception: true
[  572.600088][T13886] vivid-003: RDS Program Type: 0 inactive
[  572.633192][T13886] vivid-003: RDS PS Name:  inactive
[  572.670213][T13886] vivid-003: RDS Radio Text:  inactive
[  572.757684][T13886] vivid-003: RDS Traffic Announcement: false inactive
[  572.765270][T13886] vivid-003: RDS Traffic Program: false inactive
[  572.772060][T13886] vivid-003: RDS Music: false inactive
[  572.778074][T13886] vivid-003: ==================  END STATUS  ==================
[  573.057413][T13908] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1952'.
[  575.256274][T13954] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input77
[  576.892486][T14012] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input78
[  577.298437][T14023] FAULT_INJECTION: forcing a failure.
[  577.298437][T14023] name fail_futex, interval 1, probability 0, space 0, times 0
[  577.368752][T14023] CPU: 0 UID: 0 PID: 14023 Comm: syz.2.1985 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  577.368800][T14023] Tainted: [U]=USER
[  577.368808][T14023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  577.368822][T14023] Call Trace:
[  577.368829][T14023]  <TASK>
[  577.368839][T14023]  dump_stack_lvl+0x16c/0x1f0
[  577.368877][T14023]  should_fail_ex+0x512/0x640
[  577.368911][T14023]  get_futex_key+0x49e/0x1000
[  577.368941][T14023]  ? __pfx_get_futex_key+0x10/0x10
[  577.368966][T14023]  ? __pfx___schedule+0x10/0x10
[  577.368997][T14023]  ? do_raw_spin_unlock+0x172/0x230
[  577.369022][T14023]  ? trace_pid_list_is_set+0x100/0x150
[  577.369053][T14023]  futex_wait_setup+0x78/0x290
[  577.369086][T14023]  ? event_filter_pid_sched_wakeup_probe_post+0x103/0x270
[  577.369126][T14023]  __futex_wait+0x266/0x3c0
[  577.369162][T14023]  ? __pfx___futex_wait+0x10/0x10
[  577.369201][T14023]  ? __pfx_futex_wake_mark+0x10/0x10
[  577.369249][T14023]  futex_wait+0xe8/0x380
[  577.369282][T14023]  ? __pfx_futex_wait+0x10/0x10
[  577.369321][T14023]  ? kmem_cache_free+0x2d4/0x4d0
[  577.369347][T14023]  ? fd_install+0x225/0x750
[  577.369367][T14023]  ? putname+0x154/0x1a0
[  577.369406][T14023]  do_futex+0x229/0x350
[  577.369434][T14023]  ? __pfx_do_futex+0x10/0x10
[  577.369464][T14023]  ? __sys_sendmsg+0x199/0x220
[  577.369505][T14023]  __x64_sys_futex+0x1e0/0x4c0
[  577.369537][T14023]  ? __pfx___x64_sys_futex+0x10/0x10
[  577.369568][T14023]  ? rcu_is_watching+0x12/0xc0
[  577.369600][T14023]  do_syscall_64+0xcd/0x230
[  577.369638][T14023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  577.369662][T14023] RIP: 0033:0x7f6b9418e169
[  577.369680][T14023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  577.369704][T14023] RSP: 002b:00007f6b950c80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  577.369726][T14023] RAX: ffffffffffffffda RBX: 00007f6b943b5fa8 RCX: 00007f6b9418e169
[  577.369742][T14023] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6b943b5fa8
[  577.369757][T14023] RBP: 00007f6b943b5fa0 R08: 0000000000000000 R09: 0000000000000000
[  577.369771][T14023] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6b943b5fac
[  577.369785][T14023] R13: 0000000000000000 R14: 00007ffe78470590 R15: 00007ffe78470678
[  577.369822][T14023]  </TASK>
[  578.547946][   T55] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11
[  578.858185][T14047] ptrace attach of "./syz-executor exec"[5836] was attempted by "./syz-executor exec"[14047]
[  580.326955][T14081] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2007'.
[  580.340273][T14088] FAULT_INJECTION: forcing a failure.
[  580.340273][T14088] name failslab, interval 1, probability 0, space 0, times 0
[  580.358451][T14088] CPU: 1 UID: 0 PID: 14088 Comm: syz.0.2009 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  580.358509][T14088] Tainted: [U]=USER
[  580.358519][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  580.358538][T14088] Call Trace:
[  580.358549][T14088]  <TASK>
[  580.358560][T14088]  dump_stack_lvl+0x16c/0x1f0
[  580.358614][T14088]  should_fail_ex+0x512/0x640
[  580.358651][T14088]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  580.358691][T14088]  should_failslab+0xc2/0x120
[  580.358734][T14088]  __kmalloc_cache_noprof+0x6a/0x3e0
[  580.358770][T14088]  ? snd_card_file_add+0x52/0x330
[  580.358824][T14088]  ? __pfx_snd_ctl_open+0x10/0x10
[  580.358879][T14088]  snd_card_file_add+0x52/0x330
[  580.358931][T14088]  ? __pfx_snd_ctl_open+0x10/0x10
[  580.358972][T14088]  ? __pfx_snd_ctl_open+0x10/0x10
[  580.359013][T14088]  snd_ctl_open+0x9d/0x5e0
[  580.359057][T14088]  ? __pfx_snd_ctl_open+0x10/0x10
[  580.359096][T14088]  snd_open+0x1fe/0x450
[  580.359144][T14088]  ? __pfx_snd_open+0x10/0x10
[  580.359191][T14088]  chrdev_open+0x231/0x6a0
[  580.359227][T14088]  ? __pfx_apparmor_file_open+0x10/0x10
[  580.359270][T14088]  ? __pfx_chrdev_open+0x10/0x10
[  580.359312][T14088]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  580.359372][T14088]  do_dentry_open+0x741/0x1c10
[  580.359409][T14088]  ? __pfx_chrdev_open+0x10/0x10
[  580.359454][T14088]  vfs_open+0x82/0x3f0
[  580.359504][T14088]  path_openat+0x1e5e/0x2d40
[  580.359552][T14088]  ? __pfx_path_openat+0x10/0x10
[  580.359598][T14088]  do_filp_open+0x20b/0x470
[  580.359632][T14088]  ? __pfx_do_filp_open+0x10/0x10
[  580.359695][T14088]  ? alloc_fd+0x471/0x7d0
[  580.359737][T14088]  do_sys_openat2+0x11b/0x1d0
[  580.359781][T14088]  ? __pfx_do_sys_openat2+0x10/0x10
[  580.359853][T14088]  __x64_sys_openat+0x174/0x210
[  580.359901][T14088]  ? __pfx___x64_sys_openat+0x10/0x10
[  580.359949][T14088]  ? rcu_is_watching+0x12/0xc0
[  580.359994][T14088]  do_syscall_64+0xcd/0x230
[  580.360046][T14088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.360078][T14088] RIP: 0033:0x7fa9cc98e169
[  580.360105][T14088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  580.360138][T14088] RSP: 002b:00007fa9cd7c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  580.360170][T14088] RAX: ffffffffffffffda RBX: 00007fa9ccbb5fa0 RCX: 00007fa9cc98e169
[  580.360191][T14088] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  580.360212][T14088] RBP: 00007fa9cca10a68 R08: 0000000000000000 R09: 0000000000000000
[  580.360232][T14088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  580.360251][T14088] R13: 0000000000000000 R14: 00007fa9ccbb5fa0 R15: 00007ffe7549a698
[  580.360291][T14088]  </TASK>
[  581.454126][T14118] FAULT_INJECTION: forcing a failure.
[  581.454126][T14118] name failslab, interval 1, probability 0, space 0, times 0
[  581.469594][T14118] CPU: 0 UID: 0 PID: 14118 Comm: syz.2.2019 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  581.469653][T14118] Tainted: [U]=USER
[  581.469663][T14118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  581.469682][T14118] Call Trace:
[  581.469692][T14118]  <TASK>
[  581.469704][T14118]  dump_stack_lvl+0x16c/0x1f0
[  581.469759][T14118]  should_fail_ex+0x512/0x640
[  581.469802][T14118]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  581.469839][T14118]  should_failslab+0xc2/0x120
[  581.469881][T14118]  __kmalloc_cache_noprof+0x6a/0x3e0
[  581.469916][T14118]  ? _raw_spin_unlock+0x28/0x50
[  581.469952][T14118]  ? snd_ctl_open+0x174/0x5e0
[  581.470005][T14118]  snd_ctl_open+0x174/0x5e0
[  581.470048][T14118]  ? __pfx_snd_ctl_open+0x10/0x10
[  581.470087][T14118]  snd_open+0x1fe/0x450
[  581.470134][T14118]  ? __pfx_snd_open+0x10/0x10
[  581.470178][T14118]  chrdev_open+0x231/0x6a0
[  581.470215][T14118]  ? __pfx_apparmor_file_open+0x10/0x10
[  581.470258][T14118]  ? __pfx_chrdev_open+0x10/0x10
[  581.470298][T14118]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  581.470357][T14118]  do_dentry_open+0x741/0x1c10
[  581.470393][T14118]  ? __pfx_chrdev_open+0x10/0x10
[  581.470436][T14118]  vfs_open+0x82/0x3f0
[  581.470485][T14118]  path_openat+0x1e5e/0x2d40
[  581.470533][T14118]  ? __pfx_path_openat+0x10/0x10
[  581.470577][T14118]  do_filp_open+0x20b/0x470
[  581.470611][T14118]  ? __pfx_do_filp_open+0x10/0x10
[  581.470673][T14118]  ? alloc_fd+0x471/0x7d0
[  581.470713][T14118]  do_sys_openat2+0x11b/0x1d0
[  581.470758][T14118]  ? __pfx_do_sys_openat2+0x10/0x10
[  581.470819][T14118]  __x64_sys_openat+0x174/0x210
[  581.470866][T14118]  ? __pfx___x64_sys_openat+0x10/0x10
[  581.470916][T14118]  ? rcu_is_watching+0x12/0xc0
[  581.470968][T14118]  do_syscall_64+0xcd/0x230
[  581.471020][T14118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  581.471054][T14118] RIP: 0033:0x7f6b9418e169
[  581.471079][T14118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  581.471111][T14118] RSP: 002b:00007f6b950c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  581.471142][T14118] RAX: ffffffffffffffda RBX: 00007f6b943b5fa0 RCX: 00007f6b9418e169
[  581.471163][T14118] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  581.471182][T14118] RBP: 00007f6b94210a68 R08: 0000000000000000 R09: 0000000000000000
[  581.471200][T14118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  581.471217][T14118] R13: 0000000000000000 R14: 00007f6b943b5fa0 R15: 00007ffe78470678
[  581.471257][T14118]  </TASK>
[  582.255451][T14145] IPVS: length: 150994944 != 15703474184
[  582.956557][T14167] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input79
[  583.328039][T14177] FAULT_INJECTION: forcing a failure.
[  583.328039][T14177] name fail_futex, interval 1, probability 0, space 0, times 0
[  583.407356][T14177] CPU: 0 UID: 0 PID: 14177 Comm: syz.0.2031 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  583.407414][T14177] Tainted: [U]=USER
[  583.407425][T14177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  583.407445][T14177] Call Trace:
[  583.407456][T14177]  <TASK>
[  583.407468][T14177]  dump_stack_lvl+0x16c/0x1f0
[  583.407532][T14177]  should_fail_ex+0x512/0x640
[  583.407579][T14177]  get_futex_key+0x49e/0x1000
[  583.407622][T14177]  ? __pfx_get_futex_key+0x10/0x10
[  583.407673][T14177]  futex_wake+0xe7/0x4e0
[  583.407723][T14177]  ? __pfx_futex_wake+0x10/0x10
[  583.407772][T14177]  ? kmem_cache_free+0x2d4/0x4d0
[  583.407809][T14177]  ? fd_install+0x225/0x750
[  583.407836][T14177]  ? putname+0x154/0x1a0
[  583.407884][T14177]  do_futex+0x1e3/0x350
[  583.407923][T14177]  ? __pfx_do_futex+0x10/0x10
[  583.407973][T14177]  __x64_sys_futex+0x1e0/0x4c0
[  583.408014][T14177]  ? __x64_sys_openat+0x174/0x210
[  583.408068][T14177]  ? __pfx___x64_sys_futex+0x10/0x10
[  583.408109][T14177]  ? rcu_is_watching+0x12/0xc0
[  583.408155][T14177]  do_syscall_64+0xcd/0x230
[  583.408207][T14177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  583.408241][T14177] RIP: 0033:0x7fa9cc98e169
[  583.408267][T14177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  583.408300][T14177] RSP: 002b:00007fa9cd7c20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  583.408331][T14177] RAX: ffffffffffffffda RBX: 00007fa9ccbb5fa8 RCX: 00007fa9cc98e169
[  583.408354][T14177] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa9ccbb5fac
[  583.408373][T14177] RBP: 00007fa9ccbb5fa0 R08: 00007fa9cd7c3000 R09: 0000000000000000
[  583.408393][T14177] R10: 0000000000000005 R11: 0000000000000246 R12: 00007fa9ccbb5fac
[  583.408413][T14177] R13: 0000000000000000 R14: 00007ffe7549a5b0 R15: 00007ffe7549a698
[  583.408453][T14177]  </TASK>
[  584.679108][T14191] Invalid ELF header magic: != ELF
[  589.097002][T14273] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input80
[  591.489580][T14337] netlink: 338 bytes leftover after parsing attributes in process `syz.4.2070'.
[  592.264318][T14346] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2072'.
[  592.294054][T14343] Page cache invalidation failure on direct I/O.  Possible data corruption due to collision with buffered I/O!
[  592.428434][T14343] File: /dev/ram7 PID: 14343 Comm: syz.4.2072
[  592.516862][   T30] audit: type=1800 audit(6442451252.178:12): pid=14346 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2072" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0
[  595.724044][T14414] openvswitch: netlink: nsh attr 68 is out of range max 3
[  595.759244][T14416] device-mapper: ioctl: Invalid ioctl structure: name , dev 8000010007
[  597.804709][T14441] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2096'.
[  601.186919][T14485] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2111'.
[  601.725385][T14496] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input81
[  601.768703][T14492] zswap: compressor  not available
[  602.482857][T14506] FAULT_INJECTION: forcing a failure.
[  602.482857][T14506] name failslab, interval 1, probability 0, space 0, times 0
[  602.533211][T14506] CPU: 1 UID: 0 PID: 14506 Comm: syz.0.2120 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  602.533270][T14506] Tainted: [U]=USER
[  602.533282][T14506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  602.533301][T14506] Call Trace:
[  602.533313][T14506]  <TASK>
[  602.533325][T14506]  dump_stack_lvl+0x16c/0x1f0
[  602.533380][T14506]  should_fail_ex+0x512/0x640
[  602.533418][T14506]  ? __kmalloc_noprof+0xbf/0x510
[  602.533461][T14506]  ? vkms_crtc_atomic_check+0x3c5/0x880
[  602.533515][T14506]  should_failslab+0xc2/0x120
[  602.533559][T14506]  __kmalloc_noprof+0xd2/0x510
[  602.533598][T14506]  ? drm_atomic_add_affected_planes+0x32b/0x3f0
[  602.533648][T14506]  vkms_crtc_atomic_check+0x3c5/0x880
[  602.533724][T14506]  ? __pfx_vkms_crtc_atomic_check+0x10/0x10
[  602.533772][T14506]  drm_atomic_helper_check_planes+0x4da/0x900
[  602.533832][T14506]  drm_atomic_helper_check+0xae/0x190
[  602.533883][T14506]  vkms_atomic_check+0x1d9/0x250
[  602.533923][T14506]  ? __pfx_vkms_atomic_check+0x10/0x10
[  602.533968][T14506]  drm_atomic_check_only+0x19c7/0x3130
[  602.534028][T14506]  drm_atomic_commit+0x136/0x300
[  602.534065][T14506]  ? __pfx_drm_atomic_commit+0x10/0x10
[  602.534102][T14506]  ? __pfx___drm_printfn_info+0x10/0x10
[  602.534149][T14506]  ? drm_client_rotation+0x4d9/0x6a0
[  602.534189][T14506]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[  602.534239][T14506]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  602.534321][T14506]  drm_client_modeset_commit_locked+0x14d/0x580
[  602.534363][T14506]  drm_client_modeset_commit+0x4f/0x80
[  602.534398][T14506]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[  602.534452][T14506]  ? __pfx_drm_fbdev_client_restore+0x10/0x10
[  602.534494][T14506]  drm_fbdev_client_restore+0x2c/0x40
[  602.534541][T14506]  drm_client_dev_restore+0x1f3/0x2a0
[  602.534582][T14506]  drm_release+0x2c4/0x360
[  602.534615][T14506]  ? __pfx_drm_release+0x10/0x10
[  602.534643][T14506]  __fput+0x3ff/0xb70
[  602.534697][T14506]  task_work_run+0x14d/0x240
[  602.534732][T14506]  ? __pfx_task_work_run+0x10/0x10
[  602.534765][T14506]  ? __pfx___do_sys_close_range+0x10/0x10
[  602.534798][T14506]  ? rcu_is_watching+0x12/0xc0
[  602.534841][T14506]  syscall_exit_to_user_mode+0x27b/0x2a0
[  602.534891][T14506]  do_syscall_64+0xda/0x230
[  602.534942][T14506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  602.534976][T14506] RIP: 0033:0x7fa9cc98e169
[  602.535003][T14506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  602.535035][T14506] RSP: 002b:00007fa9cd7a1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  602.535066][T14506] RAX: 0000000000000000 RBX: 00007fa9ccbb6080 RCX: 00007fa9cc98e169
[  602.535085][T14506] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  602.535104][T14506] RBP: 00007fa9cca10a68 R08: 0000000000000000 R09: 0000000000000000
[  602.535122][T14506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  602.535140][T14506] R13: 0000000000000000 R14: 00007fa9ccbb6080 R15: 00007ffe7549a698
[  602.535183][T14506]  </TASK>
[  605.831987][T14544] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2128'.
[  608.701936][T14553] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  608.708168][T14553] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  608.753874][T14553] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  608.773370][T14553] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  608.997998][T14553] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  609.103463][T14553] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  610.070025][T14582] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2139'.
[  610.777149][ T5151] Bluetooth: hci2: command 0x0c1a tx timeout
[  610.784525][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[  610.790435][T11244] Bluetooth: hci3: command 0x0c1a tx timeout
[  611.085752][T14597] Bluetooth: hci0: command 0x0c1a tx timeout
[  612.848813][T14597] Bluetooth: hci3: command 0x0c1a tx timeout
[  613.164656][T14597] Bluetooth: hci0: command 0x0c1a tx timeout
[  613.396754][T14649] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2151'.
[  615.922501][T14679] FAULT_INJECTION: forcing a failure.
[  615.922501][T14679] name failslab, interval 1, probability 0, space 0, times 0
[  615.973061][T14679] CPU: 1 UID: 0 PID: 14679 Comm: syz.4.2158 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  615.973120][T14679] Tainted: [U]=USER
[  615.973129][T14679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  615.973144][T14679] Call Trace:
[  615.973153][T14679]  <TASK>
[  615.973163][T14679]  dump_stack_lvl+0x16c/0x1f0
[  615.973207][T14679]  should_fail_ex+0x512/0x640
[  615.973239][T14679]  ? __kmalloc_noprof+0xbf/0x510
[  615.973274][T14679]  ? __register_sysctl_table+0xb3/0x1900
[  615.973307][T14679]  should_failslab+0xc2/0x120
[  615.973350][T14679]  __kmalloc_noprof+0xd2/0x510
[  615.973391][T14679]  __register_sysctl_table+0xb3/0x1900
[  615.973426][T14679]  ? is_module_address+0x5f/0xf0
[  615.973469][T14679]  ? __pfx___register_sysctl_table+0x10/0x10
[  615.973501][T14679]  ? is_module_address+0x69/0xf0
[  615.973537][T14679]  ? register_net_sysctl_sz+0x228/0x3e0
[  615.973582][T14679]  ? __asan_memcpy+0x3c/0x60
[  615.973613][T14679]  sysctl_core_net_init+0xe3/0x280
[  615.973644][T14679]  ? __pfx_sysctl_core_net_init+0x10/0x10
[  615.973673][T14679]  ops_init+0x1df/0x5f0
[  615.973713][T14679]  setup_net+0x21e/0x850
[  615.973755][T14679]  ? __pfx_setup_net+0x10/0x10
[  615.973791][T14679]  ? lockdep_init_map_type+0x5c/0x280
[  615.973830][T14679]  ? __pfx_down_read_killable+0x10/0x10
[  615.973859][T14679]  ? debug_mutex_init+0x37/0x70
[  615.973889][T14679]  copy_net_ns+0x2a6/0x5f0
[  615.973934][T14679]  create_new_namespaces+0x3ea/0xad0
[  615.973977][T14679]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  615.974017][T14679]  ksys_unshare+0x45b/0xa40
[  615.974056][T14679]  ? __pfx_ksys_unshare+0x10/0x10
[  615.974094][T14679]  ? xfd_validate_state+0x5d/0x180
[  615.974123][T14679]  ? rcu_is_watching+0x12/0xc0
[  615.974157][T14679]  __x64_sys_unshare+0x31/0x40
[  615.974196][T14679]  do_syscall_64+0xcd/0x230
[  615.974237][T14679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  615.974264][T14679] RIP: 0033:0x7fc50af8e169
[  615.974285][T14679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  615.974313][T14679] RSP: 002b:00007fc50bd86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  615.974344][T14679] RAX: ffffffffffffffda RBX: 00007fc50b1b5fa0 RCX: 00007fc50af8e169
[  615.974362][T14679] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  615.974378][T14679] RBP: 00007fc50b010a68 R08: 0000000000000000 R09: 0000000000000000
[  615.974395][T14679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  615.974411][T14679] R13: 0000000000000000 R14: 00007fc50b1b5fa0 R15: 00007ffd2121c538
[  615.974445][T14679]  </TASK>
[  616.241238][    C1] vkms_vblank_simulate: vblank timer overrun
[  616.585467][T14716] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2165'.
[  618.564318][T14763] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  618.595927][T14763] openvswitch: netlink: Tunnel attr 0 has unexpected len 0 expected 8
[  621.588020][T14821] delete_channel: no stack
[  622.211431][T14851] FAULT_INJECTION: forcing a failure.
[  622.211431][T14851] name failslab, interval 1, probability 0, space 0, times 0
[  622.211495][T14851] CPU: 1 UID: 0 PID: 14851 Comm: syz.0.2186 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  622.211541][T14851] Tainted: [U]=USER
[  622.211551][T14851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  622.211569][T14851] Call Trace:
[  622.211579][T14851]  <TASK>
[  622.211590][T14851]  dump_stack_lvl+0x16c/0x1f0
[  622.211639][T14851]  should_fail_ex+0x512/0x640
[  622.211676][T14851]  ? fs_reclaim_acquire+0xae/0x150
[  622.211737][T14851]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  622.211781][T14851]  should_failslab+0xc2/0x120
[  622.211822][T14851]  __kmalloc_noprof+0xd2/0x510
[  622.211870][T14851]  tomoyo_realpath_from_path+0xc2/0x6e0
[  622.211920][T14851]  ? tomoyo_profile+0x47/0x60
[  622.211953][T14851]  tomoyo_path_number_perm+0x245/0x580
[  622.211990][T14851]  ? tomoyo_path_number_perm+0x237/0x580
[  622.212033][T14851]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  622.212075][T14851]  ? find_held_lock+0x2b/0x80
[  622.212145][T14851]  ? find_held_lock+0x2b/0x80
[  622.212175][T14851]  ? hook_file_ioctl_common+0x145/0x410
[  622.212221][T14851]  ? __fget_files+0x20e/0x3c0
[  622.212259][T14851]  security_file_ioctl+0x9b/0x240
[  622.212302][T14851]  __x64_sys_ioctl+0xb7/0x200
[  622.212351][T14851]  do_syscall_64+0xcd/0x230
[  622.212399][T14851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  622.212430][T14851] RIP: 0033:0x7fa9cc98e169
[  622.212454][T14851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  622.212485][T14851] RSP: 002b:00007fa9cd7a1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  622.212513][T14851] RAX: ffffffffffffffda RBX: 00007fa9ccbb6080 RCX: 00007fa9cc98e169
[  622.212534][T14851] RDX: 0000000000000000 RSI: 0000000000005608 RDI: 0000000000000003
[  622.212551][T14851] RBP: 00007fa9cd7a1090 R08: 0000000000000000 R09: 0000000000000000
[  622.212569][T14851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  622.212586][T14851] R13: 0000000000000000 R14: 00007fa9ccbb6080 R15: 00007ffe7549a698
[  622.212626][T14851]  </TASK>
[  622.212637][T14851] ERROR: Out of memory at tomoyo_realpath_from_path.
[  624.541728][T14876] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input82
[  624.595343][T14879] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input83
[  624.670633][T11244] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  624.682578][T11244] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  624.710914][T11244] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  624.751915][T11244] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  624.761263][T11244] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  625.427289][ T7826] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  625.695188][ T7826] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  625.859269][ T7826] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  626.101888][ T7826] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  626.840133][T11244] Bluetooth: hci4: command tx timeout
[  626.855198][T14880] chnl_net:caif_netlink_parms(): no params data found
[  627.252100][ T7826] bridge_slave_1: left allmulticast mode
[  627.257811][ T7826] bridge_slave_1: left promiscuous mode
[  627.298607][ T7826] bridge0: port 2(bridge_slave_1) entered disabled state
[  627.422633][ T7826] bridge_slave_0: left allmulticast mode
[  627.428362][ T7826] bridge_slave_0: left promiscuous mode
[  627.436952][ T7826] bridge0: port 1(bridge_slave_0) entered disabled state
[  628.099410][ T7826] ip_vti0 (unregistering): left allmulticast mode
[  628.310019][T14918] FAULT_INJECTION: forcing a failure.
[  628.310019][T14918] name failslab, interval 1, probability 0, space 0, times 0
[  628.346212][T14918] CPU: 0 UID: 0 PID: 14918 Comm: syz.4.2203 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  628.346268][T14918] Tainted: [U]=USER
[  628.346278][T14918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  628.346297][T14918] Call Trace:
[  628.346307][T14918]  <TASK>
[  628.346322][T14918]  dump_stack_lvl+0x16c/0x1f0
[  628.346375][T14918]  should_fail_ex+0x512/0x640
[  628.346414][T14918]  ? fs_reclaim_acquire+0xae/0x150
[  628.346469][T14918]  should_failslab+0xc2/0x120
[  628.346513][T14918]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  628.346554][T14918]  ? security_inode_alloc+0x3b/0x2b0
[  628.346598][T14918]  security_inode_alloc+0x3b/0x2b0
[  628.346646][T14918]  inode_init_always_gfp+0xce4/0x1030
[  628.346686][T14918]  alloc_inode+0x86/0x240
[  628.346729][T14918]  sock_alloc+0x40/0x280
[  628.346778][T14918]  __sock_create+0xc1/0x8d0
[  628.346827][T14918]  __sys_socket+0x14d/0x260
[  628.346861][T14918]  ? __pfx___sys_socket+0x10/0x10
[  628.346896][T14918]  ? rcu_is_watching+0x12/0xc0
[  628.346939][T14918]  __x64_sys_socket+0x72/0xb0
[  628.346969][T14918]  ? lockdep_hardirqs_on+0x7c/0x110
[  628.347013][T14918]  do_syscall_64+0xcd/0x230
[  628.347064][T14918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  628.347098][T14918] RIP: 0033:0x7fc50af8e169
[  628.347125][T14918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  628.347157][T14918] RSP: 002b:00007fc50bd65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  628.347189][T14918] RAX: ffffffffffffffda RBX: 00007fc50b1b6080 RCX: 00007fc50af8e169
[  628.347209][T14918] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  628.347229][T14918] RBP: 00007fc50b010a68 R08: 0000000000000000 R09: 0000000000000000
[  628.347249][T14918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  628.347268][T14918] R13: 0000000000000000 R14: 00007fc50b1b6080 R15: 00007ffd2121c538
[  628.347309][T14918]  </TASK>
[  628.347355][T14918] socket: no more sockets
[  628.921210][T11244] Bluetooth: hci4: command tx timeout
[  628.998127][ T7826] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  629.018799][ T7826] bond0 (unregistering): Released all slaves
[  629.201853][T11244] Bluetooth: hci3: Malformed Event: 0x02
[  629.356591][T14880] bridge0: port 1(bridge_slave_0) entered blocking state
[  629.367679][T14880] bridge0: port 1(bridge_slave_0) entered disabled state
[  629.390108][T14880] bridge_slave_0: entered allmulticast mode
[  629.404767][T14880] bridge_slave_0: entered promiscuous mode
[  629.445955][T14880] bridge0: port 2(bridge_slave_1) entered blocking state
[  629.474423][T14880] bridge0: port 2(bridge_slave_1) entered disabled state
[  629.498075][T14880] bridge_slave_1: entered allmulticast mode
[  629.510747][T14880] bridge_slave_1: entered promiscuous mode
[  629.567873][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  629.574591][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  629.605108][T14935] FAULT_INJECTION: forcing a failure.
[  629.605108][T14935] name fail_futex, interval 1, probability 0, space 0, times 0
[  629.628057][T14935] CPU: 1 UID: 0 PID: 14935 Comm: syz.2.2207 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  629.628115][T14935] Tainted: [U]=USER
[  629.628126][T14935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  629.628145][T14935] Call Trace:
[  629.628156][T14935]  <TASK>
[  629.628169][T14935]  dump_stack_lvl+0x16c/0x1f0
[  629.628223][T14935]  should_fail_ex+0x512/0x640
[  629.628270][T14935]  get_futex_key+0x49e/0x1000
[  629.628310][T14935]  ? __pfx_try_to_wake_up+0x10/0x10
[  629.628345][T14935]  ? __pfx_get_futex_key+0x10/0x10
[  629.628381][T14935]  ? find_held_lock+0x2b/0x80
[  629.628428][T14935]  futex_wake+0xe7/0x4e0
[  629.628475][T14935]  ? apparmor_file_permission+0x251/0x400
[  629.628515][T14935]  ? bpf_lsm_file_permission+0x9/0x10
[  629.628550][T14935]  ? __pfx_futex_wake+0x10/0x10
[  629.628594][T14935]  ? __pfx_snd_ctl_read+0x10/0x10
[  629.628637][T14935]  ? vfs_read+0x238/0xc70
[  629.628678][T14935]  do_futex+0x1e3/0x350
[  629.628718][T14935]  ? __pfx_do_futex+0x10/0x10
[  629.628766][T14935]  __x64_sys_futex+0x1e0/0x4c0
[  629.628809][T14935]  ? fput+0x70/0xf0
[  629.628848][T14935]  ? __pfx___x64_sys_futex+0x10/0x10
[  629.628895][T14935]  ? ksys_read+0x1b9/0x240
[  629.628928][T14935]  ? __pfx_ksys_read+0x10/0x10
[  629.628961][T14935]  ? rcu_is_watching+0x12/0xc0
[  629.629006][T14935]  do_syscall_64+0xcd/0x230
[  629.629058][T14935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.629092][T14935] RIP: 0033:0x7f6b9418e169
[  629.629118][T14935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  629.629152][T14935] RSP: 002b:00007f6b950c80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  629.629184][T14935] RAX: ffffffffffffffda RBX: 00007f6b943b5fa8 RCX: 00007f6b9418e169
[  629.629206][T14935] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6b943b5fac
[  629.629227][T14935] RBP: 00007f6b943b5fa0 R08: 00007f6b950c9000 R09: 0000000000000000
[  629.629247][T14935] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f6b943b5fac
[  629.629268][T14935] R13: 0000000000000000 R14: 00007ffe78470590 R15: 00007ffe78470678
[  629.629311][T14935]  </TASK>
[  630.094295][T14880] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  630.155586][T14880] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  630.407717][T14880] team0: Port device team_slave_0 added
[  630.476797][T14880] team0: Port device team_slave_1 added
[  630.655797][T14880] batman_adv: batadv0: Adding interface: batadv_slave_0
[  630.672528][T14880] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  630.753928][T14880] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  630.835798][T14880] batman_adv: batadv0: Adding interface: batadv_slave_1
[  630.843026][T14880] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  630.909678][T14880] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  631.005415][T11244] Bluetooth: hci4: command tx timeout
[  631.825540][T14880] hsr_slave_0: entered promiscuous mode
[  631.855793][T14880] hsr_slave_1: entered promiscuous mode
[  632.164733][ T7826] hsr_slave_0: left promiscuous mode
[  632.225680][ T7826] hsr_slave_1: left promiscuous mode
[  632.267556][ T7826] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  632.289906][ T7826] batman_adv: batadv0: Removing interface: batadv_slave_1
[  632.618451][ T7826] veth1_macvtap: left promiscuous mode
[  632.674995][ T7826] veth0_macvtap: left promiscuous mode
[  633.090000][T11244] Bluetooth: hci4: command tx timeout
[  634.635940][ T7826] team0 (unregistering): Port device team_slave_1 removed
[  634.789649][ T7826] team0 (unregistering): Port device team_slave_0 removed
[  636.736292][T14996] FAULT_INJECTION: forcing a failure.
[  636.736292][T14996] name failslab, interval 1, probability 0, space 0, times 0
[  636.770080][T14996] CPU: 0 UID: 0 PID: 14996 Comm: syz.4.2216 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  636.770139][T14996] Tainted: [U]=USER
[  636.770150][T14996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  636.770168][T14996] Call Trace:
[  636.770179][T14996]  <TASK>
[  636.770191][T14996]  dump_stack_lvl+0x16c/0x1f0
[  636.770242][T14996]  should_fail_ex+0x512/0x640
[  636.770281][T14996]  ? __kmalloc_noprof+0xbf/0x510
[  636.770322][T14996]  ? __list_lru_init+0xe8/0x4c0
[  636.770362][T14996]  should_failslab+0xc2/0x120
[  636.770405][T14996]  __kmalloc_noprof+0xd2/0x510
[  636.770450][T14996]  __list_lru_init+0xe8/0x4c0
[  636.770495][T14996]  alloc_super+0x8bf/0xbd0
[  636.770532][T14996]  ? __pfx_test_keyed_super+0x10/0x10
[  636.770580][T14996]  sget_fc+0x116/0xc20
[  636.770612][T14996]  ? __pfx_set_anon_super_fc+0x10/0x10
[  636.770665][T14996]  ? __pfx_nfsd_fill_super+0x10/0x10
[  636.770699][T14996]  get_tree_keyed+0x59/0x1d0
[  636.770735][T14996]  vfs_get_tree+0x8b/0x340
[  636.770782][T14996]  path_mount+0x14d4/0x1f30
[  636.770822][T14996]  ? kmem_cache_free+0x2d4/0x4d0
[  636.770857][T14996]  ? __pfx_path_mount+0x10/0x10
[  636.770907][T14996]  ? putname+0x154/0x1a0
[  636.770955][T14996]  __x64_sys_mount+0x28d/0x310
[  636.770993][T14996]  ? __pfx___x64_sys_mount+0x10/0x10
[  636.771025][T14996]  ? rcu_is_watching+0x12/0xc0
[  636.771066][T14996]  do_syscall_64+0xcd/0x230
[  636.771118][T14996]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  636.771152][T14996] RIP: 0033:0x7fc50af8e169
[  636.771178][T14996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  636.771212][T14996] RSP: 002b:00007fc50bd86038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  636.771240][T14996] RAX: ffffffffffffffda RBX: 00007fc50b1b5fa0 RCX: 00007fc50af8e169
[  636.771261][T14996] RDX: 00002000000001c0 RSI: 00002000000000c0 RDI: 0000000000000000
[  636.771282][T14996] RBP: 00007fc50b010a68 R08: 0000000000000000 R09: 0000000000000000
[  636.771301][T14996] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  636.771321][T14996] R13: 0000000000000000 R14: 00007fc50b1b5fa0 R15: 00007ffd2121c538
[  636.771363][T14996]  </TASK>
[  637.108238][T14999] busy
[  638.706218][T14880] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  638.769570][T14880] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  638.808905][T14880] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  638.859615][T14880] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  639.557838][T14880] 8021q: adding VLAN 0 to HW filter on device bond0
[  639.648858][T14880] 8021q: adding VLAN 0 to HW filter on device team0
[  640.025219][ T7826] bridge0: port 1(bridge_slave_0) entered blocking state
[  640.032431][ T7826] bridge0: port 1(bridge_slave_0) entered forwarding state
[  640.182528][ T8507] bridge0: port 2(bridge_slave_1) entered blocking state
[  640.190916][ T8507] bridge0: port 2(bridge_slave_1) entered forwarding state
[  640.238371][T15064] kafs: addr_prefs: Invalid Command
[  640.425277][T14880] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  641.129745][T14880] 8021q: adding VLAN 0 to HW filter on device batadv0
[  641.409066][T14880] veth0_vlan: entered promiscuous mode
[  641.798970][T14880] veth1_vlan: entered promiscuous mode
[  642.180455][T14880] veth0_macvtap: entered promiscuous mode
[  642.211701][T15098] Invalid ELF header magic: != ELF
[  642.326878][T14880] veth1_macvtap: entered promiscuous mode
[  642.433643][T14880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  642.464607][T14880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  642.512794][T14880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  642.606507][T14880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  642.609712][T14880] batman_adv: batadv0: Interface activated: batadv_slave_0
[  642.633864][T14880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  642.633897][T14880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  642.633914][T14880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  642.633937][T14880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  642.635505][T14880] batman_adv: batadv0: Interface activated: batadv_slave_1
[  642.639387][T14880] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  642.639475][T14880] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  642.639535][T14880] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  642.639579][T14880] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  643.334226][ T7826] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  643.392365][ T7826] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  643.684494][ T8510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  643.705689][ T8510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  646.427069][T15157] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  646.455248][T15157] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  646.470399][T15157] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  646.493920][T15157] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  646.515569][T15157] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  646.545920][T15157] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  646.857297][T15182] FAULT_INJECTION: forcing a failure.
[  646.857297][T15182] name failslab, interval 1, probability 0, space 0, times 0
[  646.866711][T15183] netlink: 'syz.4.2240': attribute type 22 has an invalid length.
[  646.902672][T15183] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2240'.
[  646.930981][T15182] CPU: 1 UID: 0 PID: 15182 Comm: syz.2.2241 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  646.931039][T15182] Tainted: [U]=USER
[  646.931050][T15182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  646.931070][T15182] Call Trace:
[  646.931089][T15182]  <TASK>
[  646.931101][T15182]  dump_stack_lvl+0x16c/0x1f0
[  646.931154][T15182]  should_fail_ex+0x512/0x640
[  646.931193][T15182]  ? __kvmalloc_node_noprof+0x122/0x600
[  646.931236][T15182]  should_failslab+0xc2/0x120
[  646.931279][T15182]  __kvmalloc_node_noprof+0x135/0x600
[  646.931320][T15182]  ? __do_sys_setgroups+0x111/0x4e0
[  646.931377][T15182]  ? __do_sys_setgroups+0x111/0x4e0
[  646.931424][T15182]  __do_sys_setgroups+0x111/0x4e0
[  646.931471][T15182]  ? 0xffffffffff600000
[  646.931494][T15182]  ? rcu_is_watching+0x12/0xc0
[  646.931531][T15182]  do_syscall_64+0xcd/0x230
[  646.931582][T15182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  646.931616][T15182] RIP: 0033:0x7f6b9418e169
[  646.931640][T15182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  646.931674][T15182] RSP: 002b:00007f6b950c8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074
[  646.931705][T15182] RAX: ffffffffffffffda RBX: 00007f6b943b5fa0 RCX: 00007f6b9418e169
[  646.931726][T15182] RDX: 0000000000000000 RSI: ffffffffff600000 RDI: 0000000c00000000
[  646.931746][T15182] RBP: 00007f6b94210a68 R08: 0000000000000000 R09: 0000000000000000
[  646.931765][T15182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  646.931783][T15182] R13: 0000000000000000 R14: 00007f6b943b5fa0 R15: 00007ffe78470678
[  646.931816][T15182]  ? 0xffffffffff600000
[  646.931846][T15182]  </TASK>
[  647.720689][T11244] Bluetooth: hci1: command 0x0c1a tx timeout
[  648.457075][T15215] FAULT_INJECTION: forcing a failure.
[  648.457075][T15215] name failslab, interval 1, probability 0, space 0, times 0
[  648.472817][T15215] CPU: 0 UID: 0 PID: 15215 Comm: syz.4.2249 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  648.472865][T15215] Tainted: [U]=USER
[  648.472874][T15215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  648.472892][T15215] Call Trace:
[  648.472901][T15215]  <TASK>
[  648.472921][T15215]  dump_stack_lvl+0x16c/0x1f0
[  648.472967][T15215]  should_fail_ex+0x512/0x640
[  648.472999][T15215]  ? __kmalloc_noprof+0xbf/0x510
[  648.473035][T15215]  ? lsm_blob_alloc+0x68/0x90
[  648.473057][T15215]  should_failslab+0xc2/0x120
[  648.473093][T15215]  __kmalloc_noprof+0xd2/0x510
[  648.473133][T15215]  lsm_blob_alloc+0x68/0x90
[  648.473157][T15215]  security_prepare_creds+0x30/0x270
[  648.473199][T15215]  prepare_creds+0x56f/0x7d0
[  648.473244][T15215]  set_current_groups+0x15/0xd0
[  648.473284][T15215]  __do_sys_setgroups+0x3db/0x4e0
[  648.473322][T15215]  ? 0xffffffffff600000
[  648.473347][T15215]  do_syscall_64+0xcd/0x230
[  648.473388][T15215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  648.473416][T15215] RIP: 0033:0x7fc50af8e169
[  648.473436][T15215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  648.473463][T15215] RSP: 002b:00007fc50bd86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074
[  648.473490][T15215] RAX: ffffffffffffffda RBX: 00007fc50b1b5fa0 RCX: 00007fc50af8e169
[  648.473508][T15215] RDX: 0000000000000000 RSI: ffffffffff600000 RDI: 0000000c00000000
[  648.473526][T15215] RBP: 00007fc50b010a68 R08: 0000000000000000 R09: 0000000000000000
[  648.473542][T15215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  648.473557][T15215] R13: 0000000000000000 R14: 00007fc50b1b5fa0 R15: 00007ffd2121c538
[  648.473585][T15215]  ? 0xffffffffff600000
[  648.473608][T15215]  </TASK>
[  648.660742][    C0] vkms_vblank_simulate: vblank timer overrun
[  648.667570][T11244] Bluetooth: hci4: command 0x0c1a tx timeout
[  648.673716][T11244] Bluetooth: hci0: command 0x0c1a tx timeout
[  648.673832][T14597] Bluetooth: hci3: command 0x0c1a tx timeout
[  650.753080][T15246] : renamed from gre0 (while UP)
[  650.760040][ T5151] Bluetooth: hci4: command 0x0c1a tx timeout
[  650.901698][T15238] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2254'.
[  651.874376][ T5151] Bluetooth: hci1: Unable to find connection for big 0xd2
[  652.016403][T15272] erspan0: entered allmulticast mode
[  652.845518][T14597] Bluetooth: hci4: command 0x0c1a tx timeout
[  652.877302][T15291] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input85
[  654.552582][T15311] could not allocate digest TFM handle 
[  656.952059][T15336] syz.2.2276(15336): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  657.607370][T15352] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2285'.
[  658.687949][T15369] netlink: zone id is out of range
[  658.908704][T15373] PID 15373 killed due to inadequate hugepage pool
[  658.950781][T15373] PID 15373 killed due to inadequate hugepage pool
[  658.991526][T15373] PID 15373 killed due to inadequate hugepage pool
[  660.938147][T15389] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  660.977383][T15389] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  661.008797][T15389] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  661.015878][T15389] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  662.849971][T14597] Bluetooth: hci1: command 0x0c1a tx timeout
[  663.000330][T14597] Bluetooth: hci3: command 0x0c1a tx timeout
[  663.079992][T14597] Bluetooth: hci4: command 0x0c1a tx timeout
[  663.080128][ T5151] Bluetooth: hci0: command 0x0c1a tx timeout
[  664.915874][T14597] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  664.926853][T14597] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  664.937132][T14597] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  664.961429][T14597] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  664.972542][T14597] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  665.839713][T15459] chnl_net:caif_netlink_parms(): no params data found
[  666.628603][T15459] bridge0: port 1(bridge_slave_0) entered blocking state
[  666.646161][T15459] bridge0: port 1(bridge_slave_0) entered disabled state
[  666.660324][T15459] bridge_slave_0: entered allmulticast mode
[  666.678917][T15459] bridge_slave_0: entered promiscuous mode
[  666.703335][T15459] bridge0: port 2(bridge_slave_1) entered blocking state
[  666.720356][T15459] bridge0: port 2(bridge_slave_1) entered disabled state
[  666.737964][T15459] bridge_slave_1: entered allmulticast mode
[  666.754835][T15459] bridge_slave_1: entered promiscuous mode
[  666.923831][T15481] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input87
[  667.080439][ T5151] Bluetooth: hci2: command tx timeout
[  667.288821][T15459] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  667.358495][T15484] HfR: entered promiscuous mode
[  667.429193][T15459] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  667.991675][T15459] team0: Port device team_slave_0 added
[  668.061526][T15459] team0: Port device team_slave_1 added
[  669.056929][T15498] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2322'.
[  669.161108][ T5151] Bluetooth: hci2: command tx timeout
[  669.205634][T15459] batman_adv: batadv0: Adding interface: batadv_slave_0
[  669.219903][T15459] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  669.317221][T15459] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  669.430813][T15459] batman_adv: batadv0: Adding interface: batadv_slave_1
[  669.438099][T15459] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  669.498312][T15459] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  669.946519][T15510] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2328'.
[  669.967890][T15510] bridge_slave_1: left allmulticast mode
[  669.979868][T15510] bridge_slave_1: left promiscuous mode
[  669.987347][T15510] bridge0: port 2(bridge_slave_1) entered disabled state
[  670.091141][T15510] bridge_slave_0: left allmulticast mode
[  670.096880][T15510] bridge_slave_0: left promiscuous mode
[  670.120571][T15510] bridge0: port 1(bridge_slave_0) entered disabled state
[  670.289283][T15459] hsr_slave_0: entered promiscuous mode
[  670.301121][T15459] hsr_slave_1: entered promiscuous mode
[  670.307552][T15459] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  670.322796][T15459] Cannot create hsr debugfs directory
[  671.240310][ T5151] Bluetooth: hci2: command tx timeout
[  671.537602][T15524] bond0: option all_slaves_active: invalid value ()
[  671.811337][T15459] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  672.099433][T15459] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  672.302862][T15459] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  672.576698][T15459] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  673.124068][T15459] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  673.233529][T15459] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  673.256116][T15459] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  673.320337][ T5151] Bluetooth: hci2: command tx timeout
[  673.380113][T15459] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  674.146464][T15459] 8021q: adding VLAN 0 to HW filter on device bond0
[  674.257674][T15459] 8021q: adding VLAN 0 to HW filter on device team0
[  674.372015][ T7131] bridge0: port 1(bridge_slave_0) entered blocking state
[  674.379233][ T7131] bridge0: port 1(bridge_slave_0) entered forwarding state
[  674.415010][ T7131] bridge0: port 2(bridge_slave_1) entered blocking state
[  674.422276][ T7131] bridge0: port 2(bridge_slave_1) entered forwarding state
[  676.056749][T15459] 8021q: adding VLAN 0 to HW filter on device batadv0
[  676.347007][T15459] veth0_vlan: entered promiscuous mode
[  676.591309][T15459] veth1_vlan: entered promiscuous mode
[  676.774616][T15459] veth0_macvtap: entered promiscuous mode
[  676.834304][T15459] veth1_macvtap: entered promiscuous mode
[  677.031644][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  677.051229][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  677.090367][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  677.101572][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  677.111756][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  677.122636][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  677.135985][T15459] batman_adv: batadv0: Interface activated: batadv_slave_0
[  677.153335][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  677.170514][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  677.181081][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  677.213114][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  677.233485][T15459] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  677.244493][T15459] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  677.256477][T15459] batman_adv: batadv0: Interface activated: batadv_slave_1
[  677.275360][T15459] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  677.297950][T15459] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  677.317287][T15459] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  677.337375][T15459] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  678.211984][ T8505] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  678.212012][ T8505] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  678.332408][ T8505] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  678.332432][ T8505] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  683.896442][T15706] sd 0:0:1:0: PR command failed: 1026
[  683.903392][T15706] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  683.932156][T15706] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  685.254336][T15729] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2377'.
[  686.622207][T15742] Invalid ELF header magic: != ELF
[  686.680317][T15747] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2384'.
[  690.131945][T15791] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input89
[  690.900943][T15806] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2393'.
[  691.005990][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  691.012443][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  692.811248][T15841] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2402'.
[  693.122479][T15844] FAULT_INJECTION: forcing a failure.
[  693.122479][T15844] name failslab, interval 1, probability 0, space 0, times 0
[  693.180056][T15844] CPU: 1 UID: 0 PID: 15844 Comm: syz.0.2403 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  693.180115][T15844] Tainted: [U]=USER
[  693.180126][T15844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  693.180145][T15844] Call Trace:
[  693.180156][T15844]  <TASK>
[  693.180168][T15844]  dump_stack_lvl+0x16c/0x1f0
[  693.180220][T15844]  should_fail_ex+0x512/0x640
[  693.180259][T15844]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  693.180298][T15844]  should_failslab+0xc2/0x120
[  693.180342][T15844]  __kmalloc_cache_noprof+0x6a/0x3e0
[  693.180377][T15844]  ? _raw_spin_unlock+0x28/0x50
[  693.180415][T15844]  ? snd_ctl_open+0x174/0x5e0
[  693.180464][T15844]  snd_ctl_open+0x174/0x5e0
[  693.180508][T15844]  ? __pfx_snd_ctl_open+0x10/0x10
[  693.180549][T15844]  snd_open+0x1fe/0x450
[  693.180596][T15844]  ? __pfx_snd_open+0x10/0x10
[  693.180642][T15844]  chrdev_open+0x231/0x6a0
[  693.180679][T15844]  ? __pfx_apparmor_file_open+0x10/0x10
[  693.180722][T15844]  ? __pfx_chrdev_open+0x10/0x10
[  693.180761][T15844]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  693.180847][T15844]  do_dentry_open+0x741/0x1c10
[  693.180884][T15844]  ? __pfx_chrdev_open+0x10/0x10
[  693.180930][T15844]  vfs_open+0x82/0x3f0
[  693.180993][T15844]  path_openat+0x1e5e/0x2d40
[  693.181043][T15844]  ? __pfx_path_openat+0x10/0x10
[  693.181089][T15844]  do_filp_open+0x20b/0x470
[  693.181125][T15844]  ? __pfx_do_filp_open+0x10/0x10
[  693.181188][T15844]  ? alloc_fd+0x471/0x7d0
[  693.181230][T15844]  do_sys_openat2+0x11b/0x1d0
[  693.181277][T15844]  ? __pfx_do_sys_openat2+0x10/0x10
[  693.181339][T15844]  __x64_sys_openat+0x174/0x210
[  693.181387][T15844]  ? __pfx___x64_sys_openat+0x10/0x10
[  693.181436][T15844]  ? rcu_is_watching+0x12/0xc0
[  693.181481][T15844]  do_syscall_64+0xcd/0x230
[  693.181532][T15844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  693.181565][T15844] RIP: 0033:0x7fa9cc98e169
[  693.181592][T15844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  693.181624][T15844] RSP: 002b:00007fa9cd7c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  693.181655][T15844] RAX: ffffffffffffffda RBX: 00007fa9ccbb5fa0 RCX: 00007fa9cc98e169
[  693.181676][T15844] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  693.181695][T15844] RBP: 00007fa9cca10a68 R08: 0000000000000000 R09: 0000000000000000
[  693.181714][T15844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  693.181732][T15844] R13: 0000000000000000 R14: 00007fa9ccbb5fa0 R15: 00007ffe7549a698
[  693.181772][T15844]  </TASK>
[  693.446757][    C1] vkms_vblank_simulate: vblank timer overrun
[  693.835181][   T30] audit: type=1800 audit(6442514953.504:13): pid=15849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2405" name="lu_gp_id" dev="configfs" ino=54700 res=0 errno=0
[  694.345326][T15857] netlink: 130 bytes leftover after parsing attributes in process `syz.2.2408'.
[  694.955208][T15862] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input90
[  695.691306][T15869] nfs4: Unknown parameter 'nfsd'
[  700.160609][T15921] device-mapper: ioctl: Unable to rename non-existent device,  to �
[  700.672202][T15926] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input91
[  700.991864][T14597] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  701.013666][T14597] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  701.024519][T14597] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  701.036440][T14597] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  701.044748][T14597] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  701.377499][T15928] chnl_net:caif_netlink_parms(): no params data found
[  702.233987][T15928] bridge0: port 1(bridge_slave_0) entered blocking state
[  702.284667][T15928] bridge0: port 1(bridge_slave_0) entered disabled state
[  702.310010][T15928] bridge_slave_0: entered allmulticast mode
[  702.317450][T15928] bridge_slave_0: entered promiscuous mode
[  702.470819][T15928] bridge0: port 2(bridge_slave_1) entered blocking state
[  702.478003][T15928] bridge0: port 2(bridge_slave_1) entered disabled state
[  702.550158][T15928] bridge_slave_1: entered allmulticast mode
[  702.558421][T15928] bridge_slave_1: entered promiscuous mode
[  702.734157][ T8507] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.080075][ T5151] Bluetooth: hci3: command tx timeout
[  703.602963][T15928] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  704.221903][ T8507] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  704.563413][T15928] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  705.160174][ T5151] Bluetooth: hci3: command tx timeout
[  705.227339][ T8507] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  705.327747][T15928] team0: Port device team_slave_0 added
[  705.362395][T15928] team0: Port device team_slave_1 added
[  705.822244][T15928] batman_adv: batadv0: Adding interface: batadv_slave_0
[  705.829354][T15928] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  705.909293][T15928] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  705.942837][T15928] batman_adv: batadv0: Adding interface: batadv_slave_1
[  705.963298][T15928] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  706.030101][T15928] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  706.615923][T15928] hsr_slave_0: entered promiscuous mode
[  706.681432][T15928] hsr_slave_1: entered promiscuous mode
[  706.688726][T15928] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  706.720501][T15928] Cannot create hsr debugfs directory
[  707.065446][ T8507] bridge_slave_1: left allmulticast mode
[  707.083996][ T8507] bridge_slave_1: left promiscuous mode
[  707.110129][ T8507] bridge0: port 2(bridge_slave_1) entered disabled state
[  707.211483][ T8507] bridge_slave_0: left allmulticast mode
[  707.240166][ T5151] Bluetooth: hci3: command tx timeout
[  707.245841][ T8507] bridge_slave_0: left promiscuous mode
[  707.257213][ T8507] bridge0: port 1(bridge_slave_0) entered disabled state
[  708.393838][T14597] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  708.404221][T14597] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  708.427225][T14597] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  708.442971][T14597] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  708.464016][T14597] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  708.964895][T15978] FAULT_INJECTION: forcing a failure.
[  708.964895][T15978] name failslab, interval 1, probability 0, space 0, times 0
[  708.978157][T15978] CPU: 1 UID: 0 PID: 15978 Comm: syz.3.2437 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  708.978214][T15978] Tainted: [U]=USER
[  708.978225][T15978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  708.978244][T15978] Call Trace:
[  708.978256][T15978]  <TASK>
[  708.978265][T15978]  dump_stack_lvl+0x16c/0x1f0
[  708.978320][T15978]  should_fail_ex+0x512/0x640
[  708.978352][T15978]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  708.978390][T15978]  should_failslab+0xc2/0x120
[  708.978427][T15978]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  708.978460][T15978]  ? alloc_empty_file+0x55/0x1e0
[  708.978500][T15978]  alloc_empty_file+0x55/0x1e0
[  708.978538][T15978]  path_openat+0xe0/0x2d40
[  708.978564][T15978]  ? __x64_sys_openat+0x174/0x210
[  708.978602][T15978]  ? do_syscall_64+0xcd/0x230
[  708.978639][T15978]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.978677][T15978]  ? __pfx_path_openat+0x10/0x10
[  708.978713][T15978]  do_filp_open+0x20b/0x470
[  708.978741][T15978]  ? __pfx_do_filp_open+0x10/0x10
[  708.978791][T15978]  ? alloc_fd+0x471/0x7d0
[  708.978823][T15978]  do_sys_openat2+0x11b/0x1d0
[  708.978861][T15978]  ? __pfx_do_sys_openat2+0x10/0x10
[  708.978901][T15978]  ? __pfx___might_resched+0x10/0x10
[  708.978940][T15978]  __x64_sys_openat+0x174/0x210
[  708.978980][T15978]  ? __pfx___x64_sys_openat+0x10/0x10
[  708.979021][T15978]  ? rcu_is_watching+0x12/0xc0
[  708.979057][T15978]  do_syscall_64+0xcd/0x230
[  708.979098][T15978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.979143][T15978] RIP: 0033:0x7efcd238e169
[  708.979164][T15978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  708.979191][T15978] RSP: 002b:00007efcd3237038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  708.979216][T15978] RAX: ffffffffffffffda RBX: 00007efcd25b5fa0 RCX: 00007efcd238e169
[  708.979234][T15978] RDX: 0000000000008c00 RSI: 00002000000011c0 RDI: ffffffffffffff9c
[  708.979250][T15978] RBP: 00007efcd2410a68 R08: 0000000000000000 R09: 0000000000000000
[  708.979266][T15978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  708.979282][T15978] R13: 0000000000000000 R14: 00007efcd25b5fa0 R15: 00007ffd4061d0c8
[  708.979320][T15978]  </TASK>
[  709.380068][ T5151] Bluetooth: hci3: command tx timeout
[  710.290560][ T8507] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  710.308468][ T8507] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  710.327603][ T8507] bond0 (unregistering): Released all slaves
[  710.519969][ T5151] Bluetooth: hci1: command tx timeout
[  711.402935][ T8507] hsr_slave_0: left promiscuous mode
[  711.416665][ T8507] hsr_slave_1: left promiscuous mode
[  711.450637][ T8507] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  711.489875][ T8507] batman_adv: batadv0: Removing interface: batadv_slave_1
[  711.562088][ T8507] veth0_macvtap: left promiscuous mode
[  711.581924][ T8507] veth1_vlan: left promiscuous mode
[  711.587365][ T8507] veth0_vlan: left promiscuous mode
[  712.604727][ T5151] Bluetooth: hci1: command tx timeout
[  712.936422][ T8507] team0 (unregistering): Port device team_slave_1 removed
[  713.080970][ T8507] team0 (unregistering): Port device team_slave_0 removed
[  714.690029][ T5151] Bluetooth: hci1: command tx timeout
[  714.939450][T15975] chnl_net:caif_netlink_parms(): no params data found
[  716.068298][T16054] Invalid ELF header magic: != ELF
[  716.161661][ T8507] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  716.443451][ T8507] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  716.536643][T15975] bridge0: port 1(bridge_slave_0) entered blocking state
[  716.545189][T15975] bridge0: port 1(bridge_slave_0) entered disabled state
[  716.553000][T15975] bridge_slave_0: entered allmulticast mode
[  716.560790][T15975] bridge_slave_0: entered promiscuous mode
[  716.760424][ T5151] Bluetooth: hci1: command tx timeout
[  716.774628][ T8507] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  716.803743][T15975] bridge0: port 2(bridge_slave_1) entered blocking state
[  716.803877][T15975] bridge0: port 2(bridge_slave_1) entered disabled state
[  716.804018][T15975] bridge_slave_1: entered allmulticast mode
[  716.805502][T15975] bridge_slave_1: entered promiscuous mode
[  717.056078][T15975] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  717.085514][ T8507] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  717.257658][T15975] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  717.593182][T15975] team0: Port device team_slave_0 added
[  717.612102][T15928] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  717.626091][T15928] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  717.685634][T15975] team0: Port device team_slave_1 added
[  717.764894][T15928] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  717.848162][T15975] batman_adv: batadv0: Adding interface: batadv_slave_0
[  717.877141][T15975] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  717.950755][T15975] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  717.963060][T15928] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  718.097318][T15975] batman_adv: batadv0: Adding interface: batadv_slave_1
[  718.137478][T15975] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  718.193981][T15975] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  718.612090][T15975] hsr_slave_0: entered promiscuous mode
[  718.661154][T15975] hsr_slave_1: entered promiscuous mode
[  718.667617][T15975] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  718.707652][T15975] Cannot create hsr debugfs directory
[  719.043535][ T8507] erspan0 (unregistering): left allmulticast mode
[  719.299516][ T8507] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  719.314113][ T8507] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  719.325541][ T8507] bond0 (unregistering): Released all slaves
[  719.520540][ T8507] .SR: left promiscuous mode
[  720.242030][ T8507] hsr_slave_0: left promiscuous mode
[  720.257320][ T8507] hsr_slave_1: left promiscuous mode
[  720.277963][ T8507] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  720.287898][ T8507] batman_adv: batadv0: Removing interface: batadv_slave_0
[  720.384497][ T8507] veth1_macvtap: left promiscuous mode
[  720.399055][ T8507] veth0_macvtap: left promiscuous mode
[  720.431924][ T8507] veth1_vlan: left promiscuous mode
[  720.437626][ T8507] veth0_vlan: left promiscuous mode
[  721.398030][ T8507] team0 (unregistering): Port device team_slave_1 removed
[  721.476826][ T8507] team0 (unregistering): Port device team_slave_0 removed
[  722.359299][T15928] 8021q: adding VLAN 0 to HW filter on device bond0
[  722.642791][T15928] 8021q: adding VLAN 0 to HW filter on device team0
[  722.720578][ T8510] bridge0: port 1(bridge_slave_0) entered blocking state
[  722.728109][ T8510] bridge0: port 1(bridge_slave_0) entered forwarding state
[  722.819530][T15975] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  722.904083][T16119] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2452'.
[  722.917612][ T8510] bridge0: port 2(bridge_slave_1) entered blocking state
[  722.924856][ T8510] bridge0: port 2(bridge_slave_1) entered forwarding state
[  722.993393][T15975] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  723.020630][T15975] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  723.113117][T15975] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  723.536958][T15928] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  723.969297][T16144] [U] 
[  723.972198][T16144] [U] 
[  723.974925][T16144] [U] 
[  723.977673][T16144] [U] 
[  724.015237][T16144] [U] 
[  724.018007][T16144] [U] 
[  724.020768][T16144] [U] 
[  724.023482][T16144] [U] 
[  724.058038][T16144] [U] 
[  724.060815][T16144] [U] 
[  724.063528][T16144] [U] 
[  724.066261][T16144] [U] 
[  724.104620][T16144] [U] 
[  724.107372][T16144] [U] 
[  724.110108][T16144] [U] 
[  724.112822][T16144] [U] 
[  724.173110][T16144] [U] 
[  724.176017][T16144] [U] 
[  724.178791][T16144] [U] 
[  724.181554][T16144] [U] 
[  724.195352][T16144] [U] 
[  724.198110][T16144] [U] 
[  724.200853][T16144] [U] 
[  724.203768][T16144] [U] 
[  724.316812][T16144] [U] 
[  724.319612][T16144] [U] 
[  724.322379][T16144] [U] 
[  724.325158][T16144] [U] 
[  724.365258][T16144] [U] 
[  724.368126][T16144] [U] 
[  724.370878][T16144] [U] 
[  724.373605][T16144] [U] 
[  724.401278][T16144] [U] 
[  724.404078][T16144] [U] 
[  724.406841][T16144] [U] 
[  724.409610][T16144] [U] 
[  724.413384][T16144] [U] 
[  724.416168][T16144] [U] 
[  724.418922][T16144] [U] 
[  724.421678][T16144] [U] 
[  724.426984][T16144] [U] 
[  724.429771][T16144] [U] 
[  724.432546][T16144] [U] 
[  724.435303][T16144] [U] 
[  724.447800][T16144] [U] 
[  724.450594][T16144] [U] 
[  724.453350][T16144] [U] 
[  724.456113][T16144] [U] 
[  724.468640][T16144] [U] 
[  724.471469][T16144] [U] 
[  724.474250][T16144] [U] 
[  724.477012][T16144] [U] 
[  724.548973][T15975] 8021q: adding VLAN 0 to HW filter on device bond0
[  724.556425][T16144] [U] 
[  724.559154][T16144] [U] 
[  724.561879][T16144] [U] 
[  724.564598][T16144] [U] 
[  724.605284][T16144] [U] 
[  724.608080][T16144] [U] 
[  724.610818][T16144] [U] 
[  724.613528][T16144] [U] 
[  724.666600][T15975] 8021q: adding VLAN 0 to HW filter on device team0
[  724.680499][T16144] [U] 
[  724.683307][T16144] [U] 
[  724.686070][T16144] [U] 
[  724.688824][T16144] [U] 
[  724.706537][ T8792] bridge0: port 1(bridge_slave_0) entered blocking state
[  724.714051][ T8792] bridge0: port 1(bridge_slave_0) entered forwarding state
[  724.726215][T16144] [U] 
[  724.728956][T16144] [U] 
[  724.731682][T16144] [U] 
[  724.734525][T16144] [U] 
[  724.747080][T15928] 8021q: adding VLAN 0 to HW filter on device batadv0
[  724.768040][ T8792] bridge0: port 2(bridge_slave_1) entered blocking state
[  724.775341][ T8792] bridge0: port 2(bridge_slave_1) entered forwarding state
[  724.800924][T16144] [U] 
[  724.803745][T16144] [U] 
[  724.806502][T16144] [U] 
[  724.809286][T16144] [U] 
[  724.829004][T16144] [U] 
[  724.831793][T16144] [U] 
[  724.834558][T16144] [U] 
[  724.837318][T16144] [U] 
[  724.916103][T16144] [U] 
[  725.014520][T15928] veth0_vlan: entered promiscuous mode
[  725.059352][T15928] veth1_vlan: entered promiscuous mode
[  725.202734][T15928] veth0_macvtap: entered promiscuous mode
[  725.241816][T15928] veth1_macvtap: entered promiscuous mode
[  725.284363][T15928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  725.343235][T15928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  725.369900][T15928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  725.417482][T15928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  725.465146][T15928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  725.512165][T15928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  725.541392][T15928] batman_adv: batadv0: Interface activated: batadv_slave_0
[  725.605410][T15928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  725.647345][T15928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  725.725730][T15928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  725.763184][T15928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  725.785299][T15928] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  725.911483][T15928] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  725.945774][T15928] batman_adv: batadv0: Interface activated: batadv_slave_1
[  726.090549][T15928] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  726.099340][T15928] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  726.179826][T15928] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  726.216860][T15928] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  726.577054][T15975] 8021q: adding VLAN 0 to HW filter on device batadv0
[  726.707115][ T8510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  726.739638][ T8510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  726.808679][ T8509] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  726.843887][ T8509] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  727.933138][T15975] veth0_vlan: entered promiscuous mode
[  728.087946][T15975] veth1_vlan: entered promiscuous mode
[  728.552250][T15975] veth0_macvtap: entered promiscuous mode
[  728.591340][T15975] veth1_macvtap: entered promiscuous mode
[  728.637229][T15975] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  728.648384][T15975] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  728.659557][T15975] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  728.674051][T15975] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  728.684590][T15975] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  728.697598][T15975] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  728.708535][T15975] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  728.730111][T15975] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  728.743294][T15975] batman_adv: batadv0: Interface activated: batadv_slave_0
[  728.769184][T15975] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  728.790427][T15975] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  728.810017][T15975] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  728.825598][T15975] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  728.911730][T15975] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  728.922708][T15975] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  728.943600][T15975] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  728.955832][T15975] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  728.970302][T15975] batman_adv: batadv0: Interface activated: batadv_slave_1
[  729.065074][T15975] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  729.155083][T15975] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  729.184145][T15975] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  729.193160][T15975] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  729.889164][ T8507] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  729.963404][ T8507] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  730.116366][ T8792] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  730.150513][ T8792] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  733.852175][T16285] random: crng reseeded on system resumption
[  739.375559][T16388] lo: entered allmulticast mode
[  739.454977][T16390] lo: left allmulticast mode
[  741.239084][T16416] synth uevent: /bus/hid/drivers/zeroplus: unknown uevent action string
[  742.661737][T16446] FAULT_INJECTION: forcing a failure.
[  742.661737][T16446] name failslab, interval 1, probability 0, space 0, times 0
[  742.728679][T16446] CPU: 0 UID: 0 PID: 16446 Comm: syz.5.2499 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  742.728747][T16446] Tainted: [U]=USER
[  742.728756][T16446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  742.728773][T16446] Call Trace:
[  742.728782][T16446]  <TASK>
[  742.728793][T16446]  dump_stack_lvl+0x16c/0x1f0
[  742.728840][T16446]  should_fail_ex+0x512/0x640
[  742.728878][T16446]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  742.728920][T16446]  should_failslab+0xc2/0x120
[  742.728963][T16446]  __kmalloc_cache_noprof+0x6a/0x3e0
[  742.728998][T16446]  ? _raw_spin_unlock+0x28/0x50
[  742.729034][T16446]  ? snd_ctl_open+0x174/0x5e0
[  742.729079][T16446]  snd_ctl_open+0x174/0x5e0
[  742.729122][T16446]  ? __pfx_snd_ctl_open+0x10/0x10
[  742.729160][T16446]  snd_open+0x1fe/0x450
[  742.729208][T16446]  ? __pfx_snd_open+0x10/0x10
[  742.729253][T16446]  chrdev_open+0x231/0x6a0
[  742.729288][T16446]  ? __pfx_apparmor_file_open+0x10/0x10
[  742.729330][T16446]  ? __pfx_chrdev_open+0x10/0x10
[  742.729371][T16446]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  742.729431][T16446]  do_dentry_open+0x741/0x1c10
[  742.729467][T16446]  ? __pfx_chrdev_open+0x10/0x10
[  742.729510][T16446]  vfs_open+0x82/0x3f0
[  742.729559][T16446]  path_openat+0x1e5e/0x2d40
[  742.729607][T16446]  ? __pfx_path_openat+0x10/0x10
[  742.729653][T16446]  do_filp_open+0x20b/0x470
[  742.729699][T16446]  ? __pfx_do_filp_open+0x10/0x10
[  742.729768][T16446]  ? alloc_fd+0x471/0x7d0
[  742.729810][T16446]  do_sys_openat2+0x11b/0x1d0
[  742.729855][T16446]  ? __pfx_do_sys_openat2+0x10/0x10
[  742.729920][T16446]  __x64_sys_openat+0x174/0x210
[  742.729969][T16446]  ? __pfx___x64_sys_openat+0x10/0x10
[  742.730021][T16446]  ? rcu_is_watching+0x12/0xc0
[  742.730067][T16446]  do_syscall_64+0xcd/0x230
[  742.730119][T16446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.730153][T16446] RIP: 0033:0x7fadc1d8e169
[  742.730179][T16446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  742.730214][T16446] RSP: 002b:00007fadc2b17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  742.730246][T16446] RAX: ffffffffffffffda RBX: 00007fadc1fb5fa0 RCX: 00007fadc1d8e169
[  742.730268][T16446] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  742.730288][T16446] RBP: 00007fadc1e10a68 R08: 0000000000000000 R09: 0000000000000000
[  742.730308][T16446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  742.730327][T16446] R13: 0000000000000000 R14: 00007fadc1fb5fa0 R15: 00007ffe52143078
[  742.730369][T16446]  </TASK>
[  744.842555][T16467] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2505'.
[  745.928101][T16480] FAULT_INJECTION: forcing a failure.
[  745.928101][T16480] name failslab, interval 1, probability 0, space 0, times 0
[  745.952033][T16480] CPU: 1 UID: 0 PID: 16480 Comm: syz.3.2508 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  745.952093][T16480] Tainted: [U]=USER
[  745.952104][T16480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  745.952125][T16480] Call Trace:
[  745.952135][T16480]  <TASK>
[  745.952148][T16480]  dump_stack_lvl+0x16c/0x1f0
[  745.952201][T16480]  should_fail_ex+0x512/0x640
[  745.952244][T16480]  ? __kvmalloc_node_noprof+0x122/0x600
[  745.952288][T16480]  should_failslab+0xc2/0x120
[  745.952332][T16480]  __kvmalloc_node_noprof+0x135/0x600
[  745.952389][T16480]  ? __do_sys_setgroups+0x111/0x4e0
[  745.952448][T16480]  ? __do_sys_setgroups+0x111/0x4e0
[  745.952496][T16480]  __do_sys_setgroups+0x111/0x4e0
[  745.952545][T16480]  ? 0xffffffffff600000
[  745.952568][T16480]  ? rcu_is_watching+0x12/0xc0
[  745.952606][T16480]  do_syscall_64+0xcd/0x230
[  745.952658][T16480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  745.952692][T16480] RIP: 0033:0x7efcd238e169
[  745.952716][T16480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  745.952750][T16480] RSP: 002b:00007efcd3237038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074
[  745.952784][T16480] RAX: ffffffffffffffda RBX: 00007efcd25b5fa0 RCX: 00007efcd238e169
[  745.952807][T16480] RDX: 0000000000000000 RSI: ffffffffff600000 RDI: 0000000c00000000
[  745.952828][T16480] RBP: 00007efcd2410a68 R08: 0000000000000000 R09: 0000000000000000
[  745.952849][T16480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  745.952869][T16480] R13: 0000000000000000 R14: 00007efcd25b5fa0 R15: 00007ffd4061d0c8
[  745.952904][T16480]  ? 0xffffffffff600000
[  745.952934][T16480]  </TASK>
[  745.953842][T16478] FAULT_INJECTION: forcing a failure.
[  745.953842][T16478] name failslab, interval 1, probability 0, space 0, times 0
[  746.173729][T16482] netlink: 'syz.5.2509': attribute type 11 has an invalid length.
[  746.189959][T16482] netlink: 'syz.5.2509': attribute type 11 has an invalid length.
[  746.199290][T16482] netlink: 'syz.5.2509': attribute type 11 has an invalid length.
[  746.209938][T16478] CPU: 0 UID: 0 PID: 16478 Comm: syz.2.2507 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  746.209988][T16478] Tainted: [U]=USER
[  746.209997][T16478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  746.210014][T16478] Call Trace:
[  746.210023][T16478]  <TASK>
[  746.210033][T16478]  dump_stack_lvl+0x16c/0x1f0
[  746.210078][T16478]  should_fail_ex+0x512/0x640
[  746.210112][T16478]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  746.210145][T16478]  should_failslab+0xc2/0x120
[  746.210182][T16478]  __kmalloc_cache_noprof+0x6a/0x3e0
[  746.210211][T16478]  ? get_mountpoint+0x145/0x420
[  746.210253][T16478]  get_mountpoint+0x145/0x420
[  746.210289][T16478]  do_lock_mount+0x120/0x5b0
[  746.210327][T16478]  path_mount+0x1a21/0x1f30
[  746.210360][T16478]  ? kmem_cache_free+0x2d4/0x4d0
[  746.210391][T16478]  ? __pfx_path_mount+0x10/0x10
[  746.210427][T16478]  ? putname+0x154/0x1a0
[  746.210465][T16478]  __x64_sys_mount+0x28d/0x310
[  746.210497][T16478]  ? __pfx___x64_sys_mount+0x10/0x10
[  746.210526][T16478]  ? rcu_is_watching+0x12/0xc0
[  746.210565][T16478]  do_syscall_64+0xcd/0x230
[  746.210607][T16478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  746.210634][T16478] RIP: 0033:0x7f8b2c98e169
[  746.210654][T16478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  746.210681][T16478] RSP: 002b:00007f8b2d821038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  746.210707][T16478] RAX: ffffffffffffffda RBX: 00007f8b2cbb5fa0 RCX: 00007f8b2c98e169
[  746.210724][T16478] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000
[  746.210740][T16478] RBP: 00007f8b2ca10a68 R08: 0000000000000000 R09: 0000000000000000
[  746.210756][T16478] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  746.210771][T16478] R13: 0000000000000000 R14: 00007f8b2cbb5fa0 R15: 00007ffeb3e1a5b8
[  746.210804][T16478]  </TASK>
[  746.422945][T16482] netlink: 'syz.5.2509': attribute type 11 has an invalid length.
[  746.430947][T16482] netlink: 'syz.5.2509': attribute type 11 has an invalid length.
[  747.510656][T16488] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  747.749108][T16488] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  747.811227][T16488] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  747.888063][T16488] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  747.960319][T16488] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  747.970058][T16488] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  748.021188][T16488] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  748.039622][T16488] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  748.067273][T16488] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  748.093816][T16488] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  749.062900][T16516] FAULT_INJECTION: forcing a failure.
[  749.062900][T16516] name failslab, interval 1, probability 0, space 0, times 0
[  749.167947][T16516] CPU: 0 UID: 0 PID: 16516 Comm: syz.5.2519 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  749.168004][T16516] Tainted: [U]=USER
[  749.168024][T16516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  749.168045][T16516] Call Trace:
[  749.168055][T16516]  <TASK>
[  749.168069][T16516]  dump_stack_lvl+0x16c/0x1f0
[  749.168126][T16516]  should_fail_ex+0x512/0x640
[  749.168165][T16516]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  749.168206][T16516]  should_failslab+0xc2/0x120
[  749.168251][T16516]  __kmalloc_cache_noprof+0x6a/0x3e0
[  749.168288][T16516]  ? _raw_spin_unlock+0x28/0x50
[  749.168328][T16516]  ? snd_ctl_open+0x174/0x5e0
[  749.168377][T16516]  snd_ctl_open+0x174/0x5e0
[  749.168423][T16516]  ? __pfx_snd_ctl_open+0x10/0x10
[  749.168467][T16516]  snd_open+0x1fe/0x450
[  749.168520][T16516]  ? __pfx_snd_open+0x10/0x10
[  749.168569][T16516]  chrdev_open+0x231/0x6a0
[  749.168609][T16516]  ? __pfx_apparmor_file_open+0x10/0x10
[  749.168656][T16516]  ? __pfx_chrdev_open+0x10/0x10
[  749.168699][T16516]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  749.168760][T16516]  do_dentry_open+0x741/0x1c10
[  749.168799][T16516]  ? __pfx_chrdev_open+0x10/0x10
[  749.168849][T16516]  vfs_open+0x82/0x3f0
[  749.168915][T16516]  path_openat+0x1e5e/0x2d40
[  749.168968][T16516]  ? __pfx_path_openat+0x10/0x10
[  749.169023][T16516]  do_filp_open+0x20b/0x470
[  749.169061][T16516]  ? __pfx_do_filp_open+0x10/0x10
[  749.169127][T16516]  ? alloc_fd+0x471/0x7d0
[  749.169170][T16516]  do_sys_openat2+0x11b/0x1d0
[  749.169221][T16516]  ? __pfx_do_sys_openat2+0x10/0x10
[  749.169286][T16516]  __x64_sys_openat+0x174/0x210
[  749.169340][T16516]  ? __pfx___x64_sys_openat+0x10/0x10
[  749.169393][T16516]  ? rcu_is_watching+0x12/0xc0
[  749.169439][T16516]  do_syscall_64+0xcd/0x230
[  749.169494][T16516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  749.169528][T16516] RIP: 0033:0x7fadc1d8e169
[  749.169556][T16516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  749.169590][T16516] RSP: 002b:00007fadc2b17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  749.169623][T16516] RAX: ffffffffffffffda RBX: 00007fadc1fb5fa0 RCX: 00007fadc1d8e169
[  749.169645][T16516] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  749.169667][T16516] RBP: 00007fadc1e10a68 R08: 0000000000000000 R09: 0000000000000000
[  749.169687][T16516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  749.169705][T16516] R13: 0000000000000000 R14: 00007fadc1fb5fa0 R15: 00007ffe52143078
[  749.169751][T16516]  </TASK>
[  749.569843][ T5151] Bluetooth: hci4: command 0x0c1a tx timeout
[  749.588343][T16513] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2518'.
[  749.805449][ T5151] Bluetooth: hci2: command 0x0c1a tx timeout
[  749.890590][T16524] device-mapper: ioctl: Unable to rename non-existent device,  to �
[  749.960730][ T5151] Bluetooth: hci3: command 0x0c1a tx timeout
[  750.039944][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout
[  750.391090][T16540] FAULT_INJECTION: forcing a failure.
[  750.391090][T16540] name failslab, interval 1, probability 0, space 0, times 0
[  750.473709][T16540] CPU: 1 UID: 0 PID: 16540 Comm: syz.3.2525 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  750.473772][T16540] Tainted: [U]=USER
[  750.473783][T16540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  750.473802][T16540] Call Trace:
[  750.473811][T16540]  <TASK>
[  750.473822][T16540]  dump_stack_lvl+0x16c/0x1f0
[  750.473882][T16540]  should_fail_ex+0x512/0x640
[  750.473921][T16540]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  750.473967][T16540]  should_failslab+0xc2/0x120
[  750.474011][T16540]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  750.474050][T16540]  ? do_raw_spin_unlock+0x172/0x230
[  750.474082][T16540]  ? alloc_inode+0xc3/0x240
[  750.474130][T16540]  alloc_inode+0xc3/0x240
[  750.474173][T16540]  new_inode+0x22/0x1c0
[  750.474234][T16540]  nfsd_get_inode+0x1a/0x190
[  750.474290][T16540]  nfsd_fill_super+0x18e/0x530
[  750.474328][T16540]  ? __pfx_nfsd_fill_super+0x10/0x10
[  750.474361][T16540]  get_tree_keyed+0x10b/0x1d0
[  750.474396][T16540]  vfs_get_tree+0x8b/0x340
[  750.474445][T16540]  path_mount+0x14d4/0x1f30
[  750.474485][T16540]  ? kmem_cache_free+0x2d4/0x4d0
[  750.474529][T16540]  ? __pfx_path_mount+0x10/0x10
[  750.474572][T16540]  ? putname+0x154/0x1a0
[  750.474618][T16540]  __x64_sys_mount+0x28d/0x310
[  750.474657][T16540]  ? __pfx___x64_sys_mount+0x10/0x10
[  750.474694][T16540]  ? rcu_is_watching+0x12/0xc0
[  750.474757][T16540]  do_syscall_64+0xcd/0x230
[  750.474829][T16540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.474864][T16540] RIP: 0033:0x7efcd238e169
[  750.474896][T16540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  750.474929][T16540] RSP: 002b:00007efcd3237038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  750.474959][T16540] RAX: ffffffffffffffda RBX: 00007efcd25b5fa0 RCX: 00007efcd238e169
[  750.474980][T16540] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000
[  750.475000][T16540] RBP: 00007efcd2410a68 R08: 0000000000000000 R09: 0000000000000000
[  750.475021][T16540] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  750.475040][T16540] R13: 0000000000000000 R14: 00007efcd25b5fa0 R15: 00007ffd4061d0c8
[  750.475081][T16540]  </TASK>
[  751.680436][T16562] FAULT_INJECTION: forcing a failure.
[  751.680436][T16562] name failslab, interval 1, probability 0, space 0, times 0
[  751.709880][T16562] CPU: 0 UID: 0 PID: 16562 Comm: syz.2.2530 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  751.709930][T16562] Tainted: [U]=USER
[  751.709940][T16562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  751.709956][T16562] Call Trace:
[  751.709965][T16562]  <TASK>
[  751.709976][T16562]  dump_stack_lvl+0x16c/0x1f0
[  751.710026][T16562]  should_fail_ex+0x512/0x640
[  751.710061][T16562]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  751.710102][T16562]  should_failslab+0xc2/0x120
[  751.710143][T16562]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  751.710182][T16562]  ? security_file_alloc+0x34/0x2b0
[  751.710227][T16562]  security_file_alloc+0x34/0x2b0
[  751.710268][T16562]  init_file+0x93/0x4c0
[  751.710308][T16562]  alloc_empty_file+0x73/0x1e0
[  751.710351][T16562]  path_openat+0xe0/0x2d40
[  751.710380][T16562]  ? __x64_sys_openat+0x174/0x210
[  751.710422][T16562]  ? do_syscall_64+0xcd/0x230
[  751.710464][T16562]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  751.710509][T16562]  ? __pfx_path_openat+0x10/0x10
[  751.710552][T16562]  do_filp_open+0x20b/0x470
[  751.710585][T16562]  ? __pfx_do_filp_open+0x10/0x10
[  751.710645][T16562]  ? alloc_fd+0x471/0x7d0
[  751.710683][T16562]  do_sys_openat2+0x11b/0x1d0
[  751.710724][T16562]  ? __pfx_do_sys_openat2+0x10/0x10
[  751.710782][T16562]  ? __fget_files+0x20e/0x3c0
[  751.710816][T16562]  __x64_sys_openat+0x174/0x210
[  751.710860][T16562]  ? __pfx___x64_sys_openat+0x10/0x10
[  751.710903][T16562]  ? ksys_write+0x1b9/0x240
[  751.710935][T16562]  ? rcu_is_watching+0x12/0xc0
[  751.710974][T16562]  do_syscall_64+0xcd/0x230
[  751.711013][T16562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  751.711041][T16562] RIP: 0033:0x7f8b2c98e169
[  751.711063][T16562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  751.711089][T16562] RSP: 002b:00007f8b2d821038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  751.711114][T16562] RAX: ffffffffffffffda RBX: 00007f8b2cbb5fa0 RCX: 00007f8b2c98e169
[  751.711132][T16562] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  751.711148][T16562] RBP: 00007f8b2d821090 R08: 0000000000000000 R09: 0000000000000000
[  751.711165][T16562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  751.711183][T16562] R13: 0000000000000000 R14: 00007f8b2cbb5fa0 R15: 00007ffeb3e1a5b8
[  751.711223][T16562]  </TASK>
[  751.891298][ T5151] Bluetooth: hci2: command 0x0c1a tx timeout
[  751.919869][T16569] ==================================================================
[  751.972777][T16569] BUG: KASAN: slab-use-after-free in force_devcd_write+0x312/0x340
[  751.980814][T16569] Read of size 8 at addr ffff88807ca72800 by task syz.0.2531/16569
[  751.988754][T16569] 
[  751.991156][T16569] CPU: 0 UID: 0 PID: 16569 Comm: syz.0.2531 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  751.991211][T16569] Tainted: [U]=USER
[  751.991222][T16569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  751.991242][T16569] Call Trace:
[  751.991253][T16569]  <TASK>
[  751.991266][T16569]  dump_stack_lvl+0x116/0x1f0
[  751.991317][T16569]  print_report+0xc3/0x670
[  751.991359][T16569]  ? __virt_addr_valid+0x5e/0x590
[  751.991403][T16569]  ? __phys_addr+0xc6/0x150
[  751.991449][T16569]  ? force_devcd_write+0x312/0x340
[  751.991480][T16569]  kasan_report+0xe0/0x110
[  751.991522][T16569]  ? force_devcd_write+0x312/0x340
[  751.991559][T16569]  force_devcd_write+0x312/0x340
[  751.991591][T16569]  ? __pfx_force_devcd_write+0x10/0x10
[  751.991625][T16569]  ? __debugfs_file_get+0x1fe/0x840
[  751.991663][T16569]  ? __pfx___debugfs_file_get+0x10/0x10
[  751.991715][T16569]  full_proxy_write+0x13c/0x200
[  751.991755][T16569]  vfs_write+0x25c/0x1180
[  751.991788][T16569]  ? __pfx_full_proxy_write+0x10/0x10
[  751.991829][T16569]  ? __pfx___mutex_lock+0x10/0x10
[  751.991877][T16569]  ? __pfx_vfs_write+0x10/0x10
[  751.991916][T16569]  ? __fget_files+0x20e/0x3c0
[  751.991952][T16569]  ksys_write+0x12a/0x240
[  751.991984][T16569]  ? __pfx_ksys_write+0x10/0x10
[  751.992017][T16569]  ? rcu_is_watching+0x12/0xc0
[  751.992054][T16569]  do_syscall_64+0xcd/0x230
[  751.992102][T16569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  751.992135][T16569] RIP: 0033:0x7f4d4cd8e169
[  751.992159][T16569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  751.992194][T16569] RSP: 002b:00007f4d4abb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  751.992225][T16569] RAX: ffffffffffffffda RBX: 00007f4d4cfb6160 RCX: 00007f4d4cd8e169
[  751.992246][T16569] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[  751.992266][T16569] RBP: 00007f4d4ce10a68 R08: 0000000000000000 R09: 0000000000000000
[  751.992285][T16569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  751.992304][T16569] R13: 0000000000000000 R14: 00007f4d4cfb6160 R15: 00007ffd0b275628
[  751.992335][T16569]  </TASK>
[  751.992345][T16569] 
[  752.040407][ T5151] Bluetooth: hci3: command 0x0c1a tx timeout
[  752.044873][T16569] Allocated by task 16450:
[  752.119906][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout
[  752.124385][T16569]  kasan_save_stack+0x33/0x60
[  752.233959][T16569]  kasan_save_track+0x14/0x30
[  752.238695][T16569]  __kasan_kmalloc+0xaa/0xb0
[  752.243342][T16569]  __kmalloc_noprof+0x223/0x510
[  752.248244][T16569]  ieee802_11_parse_elems_full+0x1d7/0x3780
[  752.254174][T16569]  ieee80211_inform_bss+0x10b/0x1140
[  752.259498][T16569]  cfg80211_inform_single_bss_data+0x8e7/0x1df0
[  752.265870][T16569]  cfg80211_inform_bss_data+0x224/0x3bd0
[  752.271543][T16569]  cfg80211_inform_bss_frame_data+0x26e/0x7a0
[  752.277656][T16569]  ieee80211_bss_info_update+0x310/0xab0
[  752.283323][T16569]  ieee80211_scan_rx+0x475/0xae0
[  752.288302][T16569]  ieee80211_rx_list+0x1bdb/0x2980
[  752.293447][T16569]  ieee80211_rx_napi+0xdc/0x410
[  752.298428][T16569]  ieee80211_handle_queued_frames+0xd5/0x130
[  752.304431][T16569]  tasklet_action_common+0x281/0x400
[  752.309830][T16569]  handle_softirqs+0x216/0x8e0
[  752.314616][T16569]  __irq_exit_rcu+0x109/0x170
[  752.319333][T16569]  irq_exit_rcu+0x9/0x30
[  752.323597][T16569]  sysvec_apic_timer_interrupt+0x57/0xc0
[  752.329280][T16569]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  752.335278][T16569] 
[  752.337617][T16569] Freed by task 16450:
[  752.341790][T16569]  kasan_save_stack+0x33/0x60
[  752.346513][T16569]  kasan_save_track+0x14/0x30
[  752.351209][T16569]  kasan_save_free_info+0x3b/0x60
[  752.356356][T16569]  __kasan_slab_free+0x51/0x70
[  752.361233][T16569]  kfree+0x2b6/0x4d0
[  752.365148][T16569]  ieee80211_inform_bss+0x77c/0x1140
[  752.370484][T16569]  cfg80211_inform_single_bss_data+0x8e7/0x1df0
[  752.376847][T16569]  cfg80211_inform_bss_data+0x224/0x3bd0
[  752.382532][T16569]  cfg80211_inform_bss_frame_data+0x26e/0x7a0
[  752.388645][T16569]  ieee80211_bss_info_update+0x310/0xab0
[  752.394396][T16569]  ieee80211_scan_rx+0x475/0xae0
[  752.399360][T16569]  ieee80211_rx_list+0x1bdb/0x2980
[  752.404507][T16569]  ieee80211_rx_napi+0xdc/0x410
[  752.409558][T16569]  ieee80211_handle_queued_frames+0xd5/0x130
[  752.415562][T16569]  tasklet_action_common+0x281/0x400
[  752.420880][T16569]  handle_softirqs+0x216/0x8e0
[  752.425671][T16569]  __irq_exit_rcu+0x109/0x170
[  752.430371][T16569]  irq_exit_rcu+0x9/0x30
[  752.434639][T16569]  sysvec_apic_timer_interrupt+0x57/0xc0
[  752.440307][T16569]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  752.446337][T16569] 
[  752.448690][T16569] The buggy address belongs to the object at ffff88807ca72800
[  752.448690][T16569]  which belongs to the cache kmalloc-1k of size 1024
[  752.462789][T16569] The buggy address is located 0 bytes inside of
[  752.462789][T16569]  freed 1024-byte region [ffff88807ca72800, ffff88807ca72c00)
[  752.476566][T16569] 
[  752.478900][T16569] The buggy address belongs to the physical page:
[  752.485447][T16569] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7ca70
[  752.494312][T16569] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  752.502847][T16569] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  752.510418][T16569] page_type: f5(slab)
[  752.514421][T16569] raw: 00fff00000000040 ffff88801b441dc0 dead000000000100 dead000000000122
[  752.523126][T16569] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  752.531766][T16569] head: 00fff00000000040 ffff88801b441dc0 dead000000000100 dead000000000122
[  752.540912][T16569] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  752.549800][T16569] head: 00fff00000000003 ffffea0001f29c01 00000000ffffffff 00000000ffffffff
[  752.558874][T16569] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  752.567585][T16569] page dumped because: kasan: bad access detected
[  752.574041][T16569] page_owner tracks the page as allocated
[  752.579833][T16569] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 67, tgid 67 (kworker/u8:4), ts 105110905531, free_ts 104981091381
[  752.599450][T16569]  post_alloc_hook+0x181/0x1b0
[  752.604249][T16569]  get_page_from_freelist+0x135c/0x3920
[  752.609825][T16569]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  752.615757][T16569]  alloc_pages_mpol+0x1fb/0x550
[  752.620652][T16569]  new_slab+0x244/0x340
[  752.624947][T16569]  ___slab_alloc+0xd9c/0x1940
[  752.629683][T16569]  __slab_alloc.constprop.0+0x56/0xb0
[  752.635090][T16569]  __kmalloc_noprof+0x2f2/0x510
[  752.640079][T16569]  ieee802_11_parse_elems_full+0x1d7/0x3780
[  752.646124][T16569]  ieee80211_ibss_rx_queued_mgmt+0xc69/0x2fd0
[  752.652255][T16569]  ieee80211_iface_work+0xbf4/0x1020
[  752.657581][T16569]  cfg80211_wiphy_work+0x3dc/0x550
[  752.662736][T16569]  process_one_work+0x9cc/0x1b70
[  752.667721][T16569]  worker_thread+0x6c8/0xf10
[  752.672379][T16569]  kthread+0x3c2/0x780
[  752.676508][T16569]  ret_from_fork+0x45/0x80
[  752.680965][T16569] page last free pid 5945 tgid 5945 stack trace:
[  752.688121][T16569]  __free_frozen_pages+0x69d/0xff0
[  752.693275][T16569]  qlist_free_all+0x4e/0x120
[  752.697903][T16569]  kasan_quarantine_reduce+0x195/0x1e0
[  752.703418][T16569]  __kasan_slab_alloc+0x69/0x90
[  752.708413][T16569]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[  752.714351][T16569]  jbd2__journal_start+0x193/0x6a0
[  752.719492][T16569]  __ext4_journal_start_sb+0x195/0x690
[  752.725008][T16569]  ext4_dirty_inode+0xa1/0x130
[  752.729796][T16569]  __mark_inode_dirty+0x1eb/0xe50
[  752.735023][T16569]  generic_update_time+0xcf/0xf0
[  752.739987][T16569]  file_update_time+0x17d/0x1c0
[  752.744873][T16569]  ext4_page_mkwrite+0x35e/0x1750
[  752.749919][T16569]  do_page_mkwrite+0x171/0x380
[  752.754719][T16569]  do_pte_missing+0x29c/0x3fb0
[  752.759502][T16569]  __handle_mm_fault+0x103d/0x2a40
[  752.764672][T16569]  handle_mm_fault+0x3fe/0xad0
[  752.769463][T16569] 
[  752.771801][T16569] Memory state around the buggy address:
[  752.777445][T16569]  ffff88807ca72700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  752.785528][T16569]  ffff88807ca72780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  752.793626][T16569] >ffff88807ca72800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  752.801905][T16569]                    ^
[  752.806006][T16569]  ffff88807ca72880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  752.814231][T16569]  ffff88807ca72900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  752.822343][T16569] ==================================================================
[  752.868845][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  752.875509][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  753.077310][T16569] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  753.084780][T16569] CPU: 0 UID: 0 PID: 16569 Comm: syz.0.2531 Tainted: G     U              6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[  753.098474][T16569] Tainted: [U]=USER
[  753.102318][T16569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  753.112419][T16569] Call Trace:
[  753.115754][T16569]  <TASK>
[  753.118728][T16569]  dump_stack_lvl+0x3d/0x1f0
[  753.123392][T16569]  panic+0x71c/0x800
[  753.127360][T16569]  ? __pfx_panic+0x10/0x10
[  753.131852][T16569]  ? mark_held_locks+0x49/0x80
[  753.136668][T16569]  ? preempt_schedule_thunk+0x16/0x30
[  753.142328][T16569]  ? force_devcd_write+0x312/0x340
[  753.147487][T16569]  ? preempt_schedule_common+0x44/0xc0
[  753.153111][T16569]  ? force_devcd_write+0x312/0x340
[  753.158592][T16569]  check_panic_on_warn+0xab/0xb0
[  753.163639][T16569]  end_report+0x107/0x170
[  753.168010][T16569]  kasan_report+0xee/0x110
[  753.172554][T16569]  ? force_devcd_write+0x312/0x340
[  753.177713][T16569]  force_devcd_write+0x312/0x340
[  753.182684][T16569]  ? __pfx_force_devcd_write+0x10/0x10
[  753.188173][T16569]  ? __debugfs_file_get+0x1fe/0x840
[  753.193402][T16569]  ? __pfx___debugfs_file_get+0x10/0x10
[  753.198985][T16569]  full_proxy_write+0x13c/0x200
[  753.203867][T16569]  vfs_write+0x25c/0x1180
[  753.208221][T16569]  ? __pfx_full_proxy_write+0x10/0x10
[  753.213629][T16569]  ? __pfx___mutex_lock+0x10/0x10
[  753.218690][T16569]  ? __pfx_vfs_write+0x10/0x10
[  753.223484][T16569]  ? __fget_files+0x20e/0x3c0
[  753.228190][T16569]  ksys_write+0x12a/0x240
[  753.232546][T16569]  ? __pfx_ksys_write+0x10/0x10
[  753.237420][T16569]  ? rcu_is_watching+0x12/0xc0
[  753.242213][T16569]  do_syscall_64+0xcd/0x230
[  753.246755][T16569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  753.252778][T16569] RIP: 0033:0x7f4d4cd8e169
[  753.257228][T16569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  753.277330][T16569] RSP: 002b:00007f4d4abb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  753.285806][T16569] RAX: ffffffffffffffda RBX: 00007f4d4cfb6160 RCX: 00007f4d4cd8e169
[  753.293912][T16569] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[  753.301922][T16569] RBP: 00007f4d4ce10a68 R08: 0000000000000000 R09: 0000000000000000
[  753.310089][T16569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  753.318270][T16569] R13: 0000000000000000 R14: 00007f4d4cfb6160 R15: 00007ffd0b275628
[  753.326278][T16569]  </TASK>
[  753.329777][T16569] Kernel Offset: disabled
[  753.334309][T16569] Rebooting in 86400 seconds..