last executing test programs:

1m49.409504513s ago: executing program 0 (id=1):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sysfs$auto(0x2, 0xe, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000280), 0x141182, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x40146f2c, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram11\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r1, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x40000000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(0x0, 0xfffffff7, 0x7, 0x5)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_VHOST_SET_BACKEND_FEATURES(r2, 0x4008af25, &(0x7f0000000000)=0x7)
mmap$auto(0x0, 0x9, 0x8000, 0xe238, 0x602, 0x5)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0)
rseq$auto(0x0, 0x6, 0x3, 0xff)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x1, 0x40009, 0x200df, 0x13, r3, 0x10001)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8df41, 0x0)
msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x0)
close_range$auto(0x2, 0xa, 0x20000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
fsopen$auto(0x0, 0xfffff801)

1m47.892502438s ago: executing program 0 (id=6):
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_allowed_congestion_control\x00', 0x0, 0x0)
bpf$auto(0x9, &(0x7f00000000c0)=@batch={0xffffffffffff3c77, 0x81, 0x2, 0x5, 0x2009, 0xffffffffffffffff, 0x6, 0x5850}, 0x18)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket(0x11, 0x3, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0)
socket(0xa, 0x2, 0x0)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x787806, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
r2 = socket(0xa, 0x2, 0x88)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x2, 0x88)
bpf$auto(0x0, 0x0, 0xa3)
bpf$auto(0x0, &(0x7f00000000c0)=@link_update={0xa, @new_map_fd=<r3=>r2, 0x100, @old_prog_fd=<r4=>r2}, 0x10)
bpf$auto(0x2, &(0x7f00000001c0)=@bpf_attr_1={r3, 0xbb8, @value, 0x2}, 0xcd)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r0, @ANYRES8=r0], 0x18}, 0x1, 0x0, 0x0, 0x40000}, 0x2000c082)
write$auto(r1, &(0x7f0000000000)='-\x00', 0xfdef)
statmount$auto(0x0, &(0x7f0000000180)={0x9, 0x1, 0x6, 0x1, 0x89, 0x7183, 0x43ffde, 0x7, 0x10, 0x9, 0x6, 0x80003, 0x2c, 0x11ffffffffffd, 0x85, 0xfffffffffffffffb, 0x9, 0x50007, 0x2, 0x80000002a0, 0x0, 0x80000001, 0x1, 0x7, 0x9, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, [0x0, 0x0, 0x6f7, 0x0, 0xe, 0xfff, 0x3, 0x0, 0x4, 0x5, 0x0, 0x0, 0x2000000000000, 0x400000002, 0x8f24a10, 0x2000000000000000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x2, 0x0, 0x3, 0x4, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, 0x0, 0x3, 0x6, 0x0, 0x2, 0x0, 0xfffffffffffffffd, 0xfffffffffffffff4]}, 0x1fe, 0xd)
r5 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r5, 0xfffffffffffffd02, &(0x7f00000001c0))
r6 = syz_genetlink_get_family_id$auto_nlbl_unlbl(&(0x7f0000000380), r4)
sendmsg$auto_NLBL_UNLABEL_C_STATICLISTDEF(r2, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000580)={&(0x7f00000003c0)={0x184, r6, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_SECCTX={0x4b, 0x7, "38f5e1ffbe7d4ef1794732503abb197980e788b7e1ad402bd53600bd506a3bdf05097e505fbbda8a01c5f46c59058e859cf1965df771791d9df046f31dfc8f0b8e6baee6662224"}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x5}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_to_hsr\x00'}, @NLBL_UNLABEL_A_SECCTX={0xd6, 0x7, "702d2779eb192c647319f4ec339786f96eb640206eb01fae44bda583dc9f198a0edfdd6b65824a7516ebf3840154129af11398f5b54174903e6449bdbee6e0f5fad9d82e670c4a269d72c580bee4cf932905eed2bff1303c48a232b80eb2747371f6019152d52a142651c945b71782a853f7c1254f44637902555effaff521b7a4a228457bfcf4d097bd2aaea17ddcb20fbfe8815ec3dc293a8cdaf03f442e327344fe76e0996fa639de6087d53b501901096f7b65b6e0001e84919a0e4c6eeb1ad427a935506bcf485f61a9ce91ba55865c"}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @rand_addr=0x64010100}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0xe9}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @rand_addr=0x64010100}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x29}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}]}, 0x184}, 0x1, 0x0, 0x0, 0x10}, 0x11)

1m47.479654306s ago: executing program 0 (id=8):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
socket(0x39, 0x3, 0xff)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/all/disable_ipv6\x00', 0x1401, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socketpair$auto(0x8, 0x2, 0x8000000000000000, 0x0)
close_range$auto(r0, 0x8000, 0x0)
socket(0x1e, 0x1, 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x1874c2, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0x4048aecb, 0x0)
mmap$auto(0x6, 0x400008, 0x101, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48004}, 0x4050)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
r3 = socket(0xa, 0x4, 0x84)
getsockopt$auto(r3, 0x84, 0x8, 0x0, &(0x7f0000000000)=0x9b)

1m45.99587989s ago: executing program 0 (id=12):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/comm\x00', 0x2, 0x0)
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x24, r2, 0x400, 0x70bd29, 0x25dddc02, {}, [@OVS_FLOW_ATTR_KEY={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x35, 0x0, 0x0, @fd=r0}]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x200408f0}, 0x800)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xd, 0x3, 0x0, 0x9, 0x9)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
lstat$auto(0x0, &(0x7f0000000640)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0x1000, 0x8, 0x80000000000000a, 0x40000404, 0xd, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
write$auto(r1, &(0x7f00000000c0)='\x00', 0x6)
mmap$auto(0x0, 0x20009, 0x29b010c0, 0x100000eb1, 0x40000000000a1, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
socket(0x2b, 0x5, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/ptp/ptp0/n_vclocks\x00', 0x8502, 0x0)
write$auto(r5, &(0x7f00000003c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x14\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C\xf8B^`\xf8\xc2\x0e\xfc>\xa1\xc5\x1dc\xb5S\xb0eX\xba\xe2\xb8\x17\xd1?\xec\xa3Rc2U\xc2OD\x1cl\xc6\xf0,4\x84A\x8f\xa0\xecJ\xb7\xfcnDO\n[^\xfc\xee\xf4\x98\xb3:K\x05\xd6ElP\xb1\xdc\xa2cg\xafENM\xb2\x1e\xfe\x0f}\xba\x83\x00\x81\x1at\xbf\x9ezF+x\xec\xe1`Qfm:\xfd\xeek\xa6#\xde\x16\x8f\xe9\xe9\xccbP\xb2z\xe1\xed\x97\x11\xaa\xea@\xee:\r\xb8\xe5\xd9CNG\x94\xe5\xcf\xfc3\xc7Z8\x03\x00\x00\x00\xc9\xe2ny\xa7\xd4\xb5A\x8e\xe2\x87\xf0\x17\x90%c\x1dE\xb1j2\x13\x10\xc2\x98\xeak\xa8\x10\xa0\x0f\xe8\x828\"9\xc1\xf2\xb6\x18\x9atD\xf13\xb2+$\x06q\xd6\x8e\xc18\x85\xd2\xd2\x1f\x97\x1d\xd7\x88\"\x01w\xaa\\\f\x98\xbf\xff\xeb\xceg\xa7\x8e\x84B\x7fn\xddu\xe0i\xd3\xf8\x8e\xf4\x111\x86\xfd\xcb\xa1\xd41\x8cI\xe0\xfa\xb3/(s\xd6\xd8\xcdCr\xf5MZ\xb8\xd4\x97\xae1\xc23ph\x84-@\xd4N_\n\xef\x86\x93T\\x\xf2\xce \xfe\v2E\xcatr\x00\xe5\xd7\xb2\x13\xe6\xd8\xd0\xe1|f\xaa\xadX@!\xc2]\xf9\x80\x9a\x1d\xcbt;\xfew\x14\x92\xc27\xbf\xad\x10\xa4\x93\xcd\xdc\x89\xa15\xe7r\x85\xcc\xd2p?\xf2\x0f`+\xb2\xcb\xf1\xddXw\xd2}Is%x\xbbJx\xebo{\x80\xc6o\x9e\xb2\"\x1c\vzL\"\x880|\v\xe0N\x8f\xd6\x8a\xaf', 0x80001)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000240)={0x0, 0xe8}, 0x2, 0x0, 0x3, 0xa505}, 0x800}, 0x7, 0x4008)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x2c, r4, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000000)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000)
r6 = getpgid(0x0)
rt_tgsigqueueinfo$auto(0x0, r6, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xc64, 0x5, @_sigfault={&(0x7f0000000280)="4e98bddd56f9aee83a14ea8056f83a66fa7617aa454aee28d300ca6de2887c8886f50916066886eb6f4654f7fe1734ba75808ab668bafc79d5bf32bc2d074f16b939daba88ece62c88763cff4ce9a503", @_addr_lsb=0x5}}})
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x10001, 0x7fffffffffffffff, 0xe817)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)

1m30.882218985s ago: executing program 32 (id=12):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/comm\x00', 0x2, 0x0)
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x24, r2, 0x400, 0x70bd29, 0x25dddc02, {}, [@OVS_FLOW_ATTR_KEY={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x35, 0x0, 0x0, @fd=r0}]}, @OVS_FLOW_ATTR_PROBE={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x200408f0}, 0x800)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xd, 0x3, 0x0, 0x9, 0x9)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
lstat$auto(0x0, &(0x7f0000000640)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0x1000, 0x8, 0x80000000000000a, 0x40000404, 0xd, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
write$auto(r1, &(0x7f00000000c0)='\x00', 0x6)
mmap$auto(0x0, 0x20009, 0x29b010c0, 0x100000eb1, 0x40000000000a1, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
socket(0x2b, 0x5, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000012c0)='/sys/devices/virtual/ptp/ptp0/n_vclocks\x00', 0x8502, 0x0)
write$auto(r5, &(0x7f00000003c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x14\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C\xf8B^`\xf8\xc2\x0e\xfc>\xa1\xc5\x1dc\xb5S\xb0eX\xba\xe2\xb8\x17\xd1?\xec\xa3Rc2U\xc2OD\x1cl\xc6\xf0,4\x84A\x8f\xa0\xecJ\xb7\xfcnDO\n[^\xfc\xee\xf4\x98\xb3:K\x05\xd6ElP\xb1\xdc\xa2cg\xafENM\xb2\x1e\xfe\x0f}\xba\x83\x00\x81\x1at\xbf\x9ezF+x\xec\xe1`Qfm:\xfd\xeek\xa6#\xde\x16\x8f\xe9\xe9\xccbP\xb2z\xe1\xed\x97\x11\xaa\xea@\xee:\r\xb8\xe5\xd9CNG\x94\xe5\xcf\xfc3\xc7Z8\x03\x00\x00\x00\xc9\xe2ny\xa7\xd4\xb5A\x8e\xe2\x87\xf0\x17\x90%c\x1dE\xb1j2\x13\x10\xc2\x98\xeak\xa8\x10\xa0\x0f\xe8\x828\"9\xc1\xf2\xb6\x18\x9atD\xf13\xb2+$\x06q\xd6\x8e\xc18\x85\xd2\xd2\x1f\x97\x1d\xd7\x88\"\x01w\xaa\\\f\x98\xbf\xff\xeb\xceg\xa7\x8e\x84B\x7fn\xddu\xe0i\xd3\xf8\x8e\xf4\x111\x86\xfd\xcb\xa1\xd41\x8cI\xe0\xfa\xb3/(s\xd6\xd8\xcdCr\xf5MZ\xb8\xd4\x97\xae1\xc23ph\x84-@\xd4N_\n\xef\x86\x93T\\x\xf2\xce \xfe\v2E\xcatr\x00\xe5\xd7\xb2\x13\xe6\xd8\xd0\xe1|f\xaa\xadX@!\xc2]\xf9\x80\x9a\x1d\xcbt;\xfew\x14\x92\xc27\xbf\xad\x10\xa4\x93\xcd\xdc\x89\xa15\xe7r\x85\xcc\xd2p?\xf2\x0f`+\xb2\xcb\xf1\xddXw\xd2}Is%x\xbbJx\xebo{\x80\xc6o\x9e\xb2\"\x1c\vzL\"\x880|\v\xe0N\x8f\xd6\x8a\xaf', 0x80001)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000240)={0x0, 0xe8}, 0x2, 0x0, 0x3, 0xa505}, 0x800}, 0x7, 0x4008)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x2c, r4, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_TUNNEL_INFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000000)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000)
r6 = getpgid(0x0)
rt_tgsigqueueinfo$auto(0x0, r6, 0x8, &(0x7f0000000100)={@siginfo_0_0={0x6, 0xc64, 0x5, @_sigfault={&(0x7f0000000280)="4e98bddd56f9aee83a14ea8056f83a66fa7617aa454aee28d300ca6de2887c8886f50916066886eb6f4654f7fe1734ba75808ab668bafc79d5bf32bc2d074f16b939daba88ece62c88763cff4ce9a503", @_addr_lsb=0x5}}})
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
execve$auto(&(0x7f0000000180)='./file0\x00', &(0x7f0000000100)=&(0x7f0000000080)='\xac\x00', 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x10001, 0x7fffffffffffffff, 0xe817)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)

6.065658962s ago: executing program 3 (id=307):
write$auto_nvmf_dev_fops_fabrics(0xffffffffffffffff, &(0x7f0000000080)="6a0de98af57fd0e4e6ef78a51622ae5568ddb8af67477d242e0be5258ab1d818dc476eae0455", 0x26)
socket(0x1d, 0x2, 0x7)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
io_uring_enter$auto(0x3, 0x1, 0x82400001, 0xb, 0x0, 0x18)
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, 0x0, 0x40001)
write$auto(0xca, &(0x7f0000000040)='\x04\x03\x00\r\xfb\xff\xb7\x14\x1a\xce\xebx\x83\x02l\xa5', 0x2d8)
r1 = socket(0x2, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
getsockname$auto(0x3, &(0x7f0000000d00), &(0x7f0000000d40)=0x4)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
mount$auto(0x0, 0x0, &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)
socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0x3, &(0x7f00000001c0)=@task_fd_query={0x0, 0xffffffffffffffff, 0x8, 0x30017, 0x8020000000a, 0x2, 0x5f, 0x20000000000803, 0xffffffffffffffff}, 0x6f0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1200"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
sendmsg$auto_NL80211_CMD_DISCONNECT(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x8040}, 0x1)
setsockopt$auto(0x3, 0x1, 0x2a, 0x0, 0x9)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
munmap$auto(0x0, 0xffffffff)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/net/lowpan0/mtu\x00', 0x183841, 0x0)
write$auto(r3, &(0x7f0000000300)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xabxo\xd9\x90\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xa5\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x85R\x96\xe4\x86\\\x13\xa9\x1a&\x19\x8a9\x82\xf0\x83\f\xf7\xeb', 0x4)

5.126095811s ago: executing program 3 (id=312):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f00000000c0)={0x0, 0x1f00, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r2], 0x24}}, 0x4000000)

5.036693384s ago: executing program 1 (id=313):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0)
mmap$auto(0xfa3, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0x0)
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000a, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
recvmmsg$auto(0x4, 0x0, 0x7, 0xe, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, 0x0, 0xfdef)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x203, 0x18c3a937)
ioctl$auto_X86_IOC_WRMSR_REGS(0xffffffffffffffff, 0xc02063a1, &(0x7f0000000100)=[0x7acb, 0x6, 0x9, 0xf7e6, 0x4, 0x7f, 0x3, 0x10000001])
unshare$auto(0x40000080)
syz_genetlink_get_family_id$auto_tipcv2(0x0, 0xffffffffffffffff)
openat$auto_proc_uid_map_operations_base(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, 0x0, 0x800)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4002000}, 0x40010)
close_range$auto(0x0, 0xfffffffffffff001, 0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000002480), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MON_GET(r3, &(0x7f00000083c0)={0x0, 0x0, &(0x7f0000008380)={&(0x7f0000003680)={0x14, r4, 0x32f, 0x70bd2a, 0x25dfdbff, {0x12, 0x0, 0xf0}}, 0x14}, 0x1, 0x0, 0x0, 0x4801}, 0x8080)

4.823785936s ago: executing program 4 (id=314):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0)
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x1)
open$dir(&(0x7f0000000000)='./file0\x00', 0x511081, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mtd\x00', 0xc40, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r0, 0x0, 0x4d)
rmdir$auto(&(0x7f0000000280)='./file0\x00')
mmap$auto(0x0, 0x20007, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x800)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
socket(0x10, 0x2, 0x0)
openat$auto_fops_u32_ro_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/ports/3/bpf_offloaded_id\x00', 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

4.429919645s ago: executing program 3 (id=315):
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x60100, 0x0)
socketpair$auto(0xae31, 0x3, 0x8000000000000000, 0x0)
socket(0xa, 0x5, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r1 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r1, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0xf, 0xb}, 0x800009}, 0x5, 0x20000000)

3.961794669s ago: executing program 4 (id=317):
syz_open_procfs$namespace(0x0, &(0x7f00000001c0)='ns/pid\x00')
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
write$auto(0xca, &(0x7f0000000140)='\x04\x0e\x06\xd5\x89|d\v\x00\x00@\x00\x81\x00\x00\x00\xf6\xf5\x00\xdf\xff\x00', 0x13)
r0 = socket(0x10, 0x2, 0xf)
r1 = bpf$auto(0x0, &(0x7f0000000200)=@bpf_attr_4={0x1e, r0, 0x5}, 0xd)
bpf$auto(0x2, &(0x7f0000000080)=@iter_create={r1, 0x98}, 0x5)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="120027"], 0x1ac}}, 0x4)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, r2)
recvmmsg$auto(r2, &(0x7f0000000100)={{0x0, 0x4, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="000229bd0000fbdbdf35020000000800fbffffffffff0737010005"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf250200000008000300000000001b"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
r3 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="8b0500000000fedbdf250a"], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="18"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
fanotify_init$auto(0x10067, 0x9)

3.945150439s ago: executing program 1 (id=318):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
setsockopt$auto(r0, 0x114, 0x8, 0x0, 0x4)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x6b)
r1 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/events/vmalloc/enable\x00', 0x246200, 0x0)
fcntl$auto_F_GET_RW_HINT(r1, 0x40b, 0x9)
r2 = socket(0x23, 0x1, 0xfffffffd)
connect$auto(r2, 0x0, 0x55)
r3 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x82, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
ioctl$auto_I2C_RETRIES(r4, 0x701, &(0x7f0000000080)="5bb3c6c4b6e33c6518e4e778a7c301b382f709f249f8fb0f88fa5055d8e08b1cd3fc32ddaf5727810e075b50c125c2cc72fdf8e76642fd0144855953fcb5b3012a7d1edcdf9115d0d3b55eb55d382f6a27bae23aaaaf102e74fc9dc94550277e2491e292366cd2e7873aa35b19598df36aecf4eb0dbf89029895c29f2eb46561cc525880b8de468e5c0a51d554bcb2e75d89e8844fe0dab56344873f2996fa84e5")
r5 = pidfd_open$auto(0x1, 0x0)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x1, 0xfffffffffffffffe, 0x7fffffffefff, 0x2, 0x2, 0x1, 0x2050b301a, 0x2c, 0x100000000000002, 0x4})
open_by_handle_at$auto(r2, 0x0, 0x3)
write$auto_debugfs_full_proxy_file_operations_internal(r3, 0x0, 0x20)

3.860335775s ago: executing program 2 (id=319):
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0)
clock_settime$auto(0xfffffffe, &(0x7f0000000000)={0x100000004, 0x8})
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
mmap$auto(0x0, 0x2, 0x4000000000df, 0x10011, 0xffffffffffffffff, 0x8400)
r1 = socket(0x22, 0x1, 0x100)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
r3 = ioctl$auto_SW_SYNC_GET_DEADLINE(r2, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r2})
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_psample(0x0, 0xffffffffffffffff)
sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r5, 0x0, 0x801)
mmap$auto(0x7, 0x20009, 0x5, 0xffffffff, 0x405, 0x8000)
r6 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f00000001c0), r3)
sendmsg$auto_NCSI_CMD_PKG_INFO(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="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"/285, @ANYRES16=r6, @ANYBLOB="000127bd7000fddbdf250100000008000300010000000800070001000000"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x1)
msync$auto(0x1fffeffc, 0x180100000000002, 0x400000004)
socket(0x26, 0x80805, 0x0)
mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r7 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r7, 0x40186f40, 0x0)
r8 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r8, 0x4b41, 0x7)

3.844993085s ago: executing program 3 (id=320):
r0 = socket(0x11, 0x3, 0x9)
setsockopt$auto_SO_NO_CHECK(r0, 0xf9, 0xb, &(0x7f00000000c0)='!\x00', 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x11, 0x80003, 0x300)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(r1, 0x107, 0x14, 0x0, 0x4)
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@iter_create={0xffffffffffffffff, 0x8}, 0xa3)
sendmmsg$auto(r0, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={0x0, 0x5cc}, 0x3, 0x0, 0x1, 0x6}, 0x5}, 0x2, 0x100)

3.446804919s ago: executing program 3 (id=321):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0xfffffffffffff25c, 0x3, 0x121, 0x16, 0xffffffffffffffff, 0x8)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000640), 0x4c4ac3, 0x0)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/neigh/wlan0/unres_qlen\x00', 0x129800, 0x0)
read$auto(0x3, 0x0, 0x80)
r2 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r2, 0x0, 0xc70)
pread64$auto(r1, 0x0, 0x7ff, 0x400)
sendmsg$auto_OVS_VPORT_CMD_NEW(r0, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000680)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="30000500b90762da642c90917feac2e20c2b3ba4bd8319cbafcdb6882c30cc49c0c85627c61bd609b1c4f6602567d2d64400060000f0ffffffffffff040000000000000001000000000000000000000000008003ffffffffffffffff010000000000000000000080000000000104000000000000"], 0x2e8}, 0x1, 0x0, 0x0, 0x1}, 0x4)
socket(0x1a, 0x1, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
close_range$auto(r3, r2, 0x8)
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x10100, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r4 = socket(0x23, 0x80805, 0x0)
bind$auto(r4, &(0x7f0000000000)=@in={0x2, 0x4e22, @remote}, 0x3)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x0, 0xeb1, 0x401, 0x8000)
read$auto_kernfs_file_fops_kernfs_internal(r5, 0x0, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)

3.103729464s ago: executing program 1 (id=322):
mmap$auto(0x7, 0x2020009, 0x7, 0xeb1, 0xffffffffffffffff, 0x6)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:04.0/resource0\x00', 0x4c0182, 0x0)
write$auto(0x3, 0x0, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x60100, 0x0)
socketpair$auto(0x1, 0x8, 0x9, 0x0)
socket(0xa, 0x5, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x9, 0x4020009, 0xdf, 0xeb1, r0, 0x7ffe)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x2000c, 0x9, 0x20eb1, 0x40000000000a5, 0x8000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0)
socket(0x29, 0x2, 0x0)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = getpid()
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0)
ioctl$auto(0x3, 0xfffffff4, 0x38)
select$auto(0xd, 0x0, 0x0, &(0x7f0000000200)={[0x6, 0x7, 0xd, 0x8fd6, 0x948d, 0x3, 0x80, 0x3, 0x6, 0x8000000000000000, 0x7, 0x100000000000005, 0xd, 0x8, 0x1, 0xfffffffffffffffe]}, 0x0)
r2 = openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/members\x00', 0x80280, 0x0)
read$auto(r2, 0x0, 0x10)
write$auto(0x3, 0x0, 0xffd8)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
socket(0x1a, 0x1, 0x105)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @loopback}, 0x6a)

2.813478316s ago: executing program 4 (id=323):
r0 = socket(0x11, 0x3, 0x9)
setsockopt$auto_SO_NO_CHECK(r0, 0xf9, 0xb, &(0x7f00000000c0)='!\x00', 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x11, 0x80003, 0x300)
io_uring_setup$auto(0x6, 0x0)
setsockopt$auto(r1, 0x107, 0x14, 0x0, 0x4)
sendmmsg$auto(0x3, 0x0, 0x7, 0x0)
bpf$auto(0x0, &(0x7f0000000000)=@iter_create={0xffffffffffffffff, 0x8}, 0xa3)
sendmmsg$auto(r0, &(0x7f0000000400)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={0x0, 0x49}, 0x3, 0x0, 0x1, 0x6}, 0x5}, 0x2, 0x100) (fail_nth: 5)

2.611232142s ago: executing program 2 (id=324):
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040))
fcntl$auto(r0, 0x402, 0x2)
statmount$auto(0x0, &(0x7f0000000180)={0xb, 0x1, 0x9, 0x5, 0x14, 0x944, 0x1ffe0, 0x3, 0x6, 0x7, 0x8009, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0x2, 0x5, 0x3, 0x40, 0x27, 0x20, 0x309, 0x6, 0x1ff, 0x0, 0x200000, 0xffffffffffffffff, 0x0, 0xffffffff, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0xa, 0xbd7, 0x0, 0x0, 0x2, 0x0, 0x7, 0x10, 0x0, 0x7, 0x26c2dc2]}, 0x1fe, 0x81)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYRES16, @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x40000010, 0x400, 0x2}]})
openat$auto_dev_fops_plock(0xffffffffffffff9c, 0x0, 0x4102, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$auto_tracing_stats_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/per_cpu/cpu0/stats\x00', 0x0, 0x0)
ptrace$auto(0x10, r3, 0x4, 0x7ff)
ptrace$auto(0xffffffffffffffff, r3, 0xfffffffffffffffe, 0x53)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2c, 0x3, 0x0)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000007c0)='/proc/sys/net/mptcp/blackhole_timeout\x00', 0x0, 0x0)
read$auto_proc_sys_file_operations_proc_sysctl(r4, 0x0, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0)

2.385599201s ago: executing program 4 (id=325):
mmap$auto(0x1, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x4)
r0 = socket(0x2, 0x80a, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(r0, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x7a1bf6010745696e, 0x0)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x9, 0x8, 0x1, 0x2, 0x4, 0x15f4da0e, 0x3, 0xd08, 0xc, 0x8, 0x4, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
sendmmsg$auto(r1, 0x0, 0x9a6, 0x7000000)
socket(0x2c, 0x1, 0x3)
mkdir$auto(&(0x7f0000000000)='}[,&*}\x00', 0xc401)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x10001, 0x0)
mount$auto(0x0, &(0x7f0000000100)='}[,&*}\x00', 0x0, 0x203, 0x0)
mmap$auto(0x0, 0x7, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x4)
socket(0x2, 0x2, 0x88)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @private=0xa010101}, 0x54)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c06, 0x0, 0x1, 0x0, 0x4, 0x9}, 0x6}, 0x9, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x23, 0x80000, 0xfffffffd)
mmap$auto(0x8, 0x202000d, 0x3, 0x11, 0xfffffffffffffffa, 0x7ffc)
socket(0x27, 0x801, 0x902)
lsm_set_self_attr$auto(0x401, &(0x7f00000001c0)={0x3, 0x7fffffffffffffff, 0x3, 0x68, "3f2722d6543c8c9fd4c9189a8a080d81d2314ba35e6819fd4940ad1d57e0a5d29fca003b672074d329336befd34ebd79030bc919e83db66158db69dd195eb7ec5dedc13f15a30da55e1084146ff71891402d92617f2b5d357486b12d1836cf2d7e47d606108e7397"}, 0x4, 0x4)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x44805}, 0x4000)
lstat$auto(0x0, &(0x7f0000000340)={0x3, 0x12, 0x100, 0x63, 0x0, 0x0, 0x0, 0xfffffffffefffffe, 0x40000000002f, 0x1000, 0xffffffffffffeffd, 0x7ffffffb, 0xc, 0x2fca, 0x9, 0x0, 0x200000100103})

2.095093267s ago: executing program 2 (id=326):
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0)
mmap$auto(0xa00000000000000, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0)

1.927867557s ago: executing program 2 (id=327):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000400), r0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0xfffffffffffffffd, 0x2000c, 0x4000000000cf, 0xeb0, 0x401, 0xffff)
r1 = socket(0x28, 0x1, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x1e, 0x4, 0x0)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
mmap$auto(0x0, 0x400404, 0xe3, 0x9b72, 0x2, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x80000000006)
close_range$auto(0x0, r1, 0x7c0)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x5, 0x0)
sysfs$auto(0x40000007, 0x4a, 0x104)
r2 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r2, 0x6, 0x0, 0x0, 0x0)
fsmount$auto(0x4, 0x0, 0x200003)
signalfd$auto(0xffffffffffffffff, 0x0, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0)
select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0xa, 0x0, 0x1, 0x948b, 0x1, 0x95f4da08, 0x2, 0x3, 0x2, 0x80000001, 0xb, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0)
socket(0xa, 0x801, 0x106)
getsockopt$auto_SO_OOBINLINE(r1, 0x8000083, 0xa, &(0x7f0000000040)='f\xfe\x933\x96\xe1i\xf5\xec\xcc\xd8\x1b\xd7\xfa\x0fEg\xd0\x00\x00\x00\x00', 0x0)
setsockopt$auto(r3, 0xfffffffe, 0x10010, 0x0, 0x8)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x12d40, 0x0)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

1.904010126s ago: executing program 4 (id=328):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_flow(0x0, 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_DEL(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800)
mmap$auto(0x5, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
mmap$auto(0x3, 0x402000b, 0x2000006, 0xeb1, 0x401, 0xfff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x2085c2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
socket(0x11, 0xa, 0x300)
pwrite64$auto(0xc8, &(0x7f0000000340)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdds\x1cJ\x99\x00:+\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\xadCl\x9e\xeb\xcd\vp\x99\x00\xc8\x06\xa5\xdc3\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0A\x94\xa3\xaef\x87\xd8\x95I\xfd\xa8\t\xac\x87\xb7\x1d\xd5\x83\xdcyu]\xde\xbe\xbf$<.}\x8b`\x04\xfc\xa2\xab\xb5]\x80\x00\xb9D\xc5\xbc\xf2a\xd66\xa5\xd3\xc1r\x96\x1e\x8db\x05=`\x01\x11\x04Tz\x87A$\x115\x95PUf\xa7\xfe\x19\x00\x82go}@W\xd5\xaej\x01\xbf>5n\x17S\xc0\x8a\xaf%O\xd1W\xa3ua+sUJ\xea\xf9\xb7p-\x128\x9d\xbaM_\xff\x1c\xc3sG\x04\xf2\xd3\xf3{;\xd4\xd7\x1c\x1dZ\xe9\xe9\xc9\x9cu5\xe9\xa2\xb3N\xd2\xc1\xc8\xa5\xadt\xd5BKD\x86\xeb%\a*<P\xb0\x8a\"\x176\xe1p*0\xac\xb9\xd5\xab\xcc$\x9ai\xca\v(\xcd?\x8d\xd2\x1d\xe1\x99N\x028\xe2\x12\t6x\xca{\n\xe86;\x81\xc4\x00\x8b\xed\xfa\xc0\x18\xe7\xd0\x97\xd8\x00\xd5\x85\x03\xf1\f\xcc\xf7\xb16L\xd4\xb0AV.\xe3\x9e\x8csh\x8a\x84\xe30\xde\x8d\xe3\xa4\xf1e\xcf\xb2Rx\x8f\x98G\xc3\xc8UP\xb4-\aW\xb5h\x8b\x98T\xe0n\x8d~\xf2\x8b\x1c>\x06\xbb\x1e\xfb\x11U\f&\xcbP\xf1\xcf\xccb\xe8Wb\xc5ae\xe3\xf9l\xa9vK\xed\x8cL\xfb%g\x83;\xe1\xe2w\xd6\xaa6\x16\x8fx\x1a\xd7\xc8\xf4[\xbc\b\xe1Z\x92\x14Q\xde<o\xb6[o\b\x00', 0xfdef, 0x3)
select$auto(0x81, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f0000000240)='//ev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x1, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000500, 0x0, 0x6, 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/net/bond0/bonding/all_slaves_active\x00', 0x902, 0x0)
pwritev$auto(0x3, &(0x7f0000001000)={0x0, 0x8}, 0x5, 0x3, 0x9)

1.771083299s ago: executing program 1 (id=329):
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon7\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0xa00)
clock_settime$auto(0xfffffffe, &(0x7f0000000000)={0x100000004, 0x8})
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8400)
r1 = socket(0x22, 0x1, 0x100)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x101100, 0x0)
r3 = ioctl$auto_SW_SYNC_GET_DEADLINE(r2, 0xc0105702, &(0x7f0000000000)={0x0, 0x0, r2})
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_genetlink_get_family_id$auto_psample(0x0, 0xffffffffffffffff)
sendmsg$auto_PSAMPLE_CMD_GET_GROUP(r5, 0x0, 0x801)
mmap$auto(0x7, 0x20009, 0x5, 0xffffffff, 0x405, 0x8000)
r6 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f00000001c0), r3)
sendmsg$auto_NCSI_CMD_PKG_INFO(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x24, r6, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@NCSI_ATTR_PACKAGE_ID={0x8, 0x3, 0x1}, @NCSI_ATTR_PACKAGE_MASK={0x8, 0x7, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x1)
msync$auto(0x1fffeffc, 0x180100000000002, 0x400000004)
socket(0x26, 0x80805, 0x0)
mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, 0x2, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8)
open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r7 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$auto_UBI_IOCATT(r7, 0x40186f40, 0x0)
r8 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r8, 0x4b41, 0x7)

1.50251384s ago: executing program 3 (id=330):
ioctl$auto_BCH_IOCTL_DISK_RESIZE(0xffffffffffffffff, 0x4018bc0e, &(0x7f00000000c0)={0x7ff, 0x0, 0x101, 0x9d75})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x1, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@vsock={0x28, 0x0, 0x2710, @local}, 0x55)
setsockopt$auto(0x400000000000003, 0x28, 0x0, 0x0, 0x56b)
socket(0xa, 0x2, 0x0)
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
socket(0x3, 0x3, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x7, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x62, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0xa00006, 0x2, 0x40eb1, 0x602, 0x300000000000)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000240)={"04ee08c9", 0x1, 0xf6, 0xd, 0x6, 0x7, "bd3b7d7d2a75d9fe381320cc9e1dea", "75b660e6", "847abc35", "9fea6d57", ["da621744c13a48dafa8e4863", "115e1f14786464a8bc277951", "e3d8afc7bf1a88e7344601e7", "e7b7ede0cfe03bb7d2b0bbe3"]})
socket(0x15, 0x5, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', <r5=>0x0})
sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002bbd7000ff5bdf250100000008000900", @ANYRES32=r5, @ANYBLOB="0800050006000000110001006f76735f12fffe000000000000000000080001005c2c4000"], 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x2000000)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)

726.246961ms ago: executing program 4 (id=331):
r0 = socket(0x11, 0x3, 0x9)
setsockopt$auto_SO_NO_CHECK(r0, 0xf9, 0xb, &(0x7f00000000c0)='!\x00', 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0xfffffffffffffffc, 0xffffffffffff5335, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0xe0d81, 0x0)
read$auto(r2, 0x0, 0x7)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r4 = socket(0x11, 0x3, 0x9)
r5 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, 0x0, 0xa2741, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r5, &(0x7f0000000100)="232d7efe595046ab5c98199adf260600de16baef6176e6021e1dcedc5b00e8fd3242", 0x76)
syz_genetlink_get_family_id$auto_nl80211(0x0, r4)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000240)='/Eev/\xf5Kkr\xfdc\x86\x9d\xb0audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x800)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000001c0), 0xffffffffffffffff)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
syz_genetlink_get_family_id$auto_batadv(0x0, r1)
madvise$auto(0x0, 0xffffffffffff0004, 0x1a)
setgroups$auto(0xe32, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
open(&(0x7f0000000100)='./file0\x00', 0x201c2, 0x10e)
getcwd$auto(0x0, 0xffffffffffffffff)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)

619.729016ms ago: executing program 2 (id=332):
mmap$auto(0x800000, 0x8, 0x0, 0x40eb2, 0x401, 0x300000000000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x1000000)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0xe2, 0x20009b74, r0, 0x28000)
openat$auto_msr_fops_msr(0xffffffffffffff9c, 0x0, 0xa0340, 0x0)
setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x803, 0xa, 0x0, 0x2)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
r2 = socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmmsg$auto(r2, 0x0, 0x9a6, 0x1c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'netdevsim0\x00'})
sendmsg$auto_NET_SHAPER_CMD_GET2(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYRES64=r1, @ANYRES32=r1], 0x14}, 0x1, 0x0, 0x0, 0x60040010}, 0x10)
mmap$auto(0x0, 0x2020009, 0x101, 0xeb3, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, r0, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x1f40)
ioctl$auto_VHOST_VSOCK_SET_GUEST_CID(0xffffffffffffffff, 0x4008af60, &(0x7f0000000100)=0x643)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x40242, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.2/modalias\x00', 0x400402, 0x0)
read$auto(r4, 0x0, 0x20)
writev$auto(r3, &(0x7f0000000200)={0x0, 0x10}, 0x3)
unshare$auto(0x20000080)
io_uring_setup$auto(0x5d, &(0x7f0000000080)={0x7fffffff, 0xd, 0x26, 0x6, 0x7, 0xfffffff9, 0xffffffffffffffff, [0x40], {0x6, 0x6, 0x8c48, 0x29f, 0x100, 0x80, 0x101, 0x5, 0x2}, {0x100, 0x20001, 0x52, 0x3, 0x1, 0x0, 0x76c5, 0x8, 0x100000000}})
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)

370.455513ms ago: executing program 1 (id=333):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
r0 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/numa_maps\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/auxiliary/drivers/aux_bridge.aux_bridge/uevent\x00', 0x214d41, 0x0)
read$auto_proc_sessionid_operations_base(r0, &(0x7f00000000c0)=""/4096, 0x1000)
modify_ldt$auto(0x2, 0x0, 0x7ff)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x400, 0x0)

291.039953ms ago: executing program 2 (id=334):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/vkms/graphics/fb0/blank\x00', 0xa001, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/sockstat6\x00', 0x40, 0x0)
pread64$auto(r1, 0x0, 0x200000000006, 0x1ff)
unshare$auto(0x40000080)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x161340, 0x130)
open(&(0x7f0000000200)='./file0\x00', 0x40801, 0x175)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_OWNER(r4, 0xaf01, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto(0x3, 0x4008af10, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/devices/virtual/block/loop4/size\x00', 0x40000, 0x0)
finit_module$auto(r5, 0x0, 0x3)
ptrace$auto(0xd, r3, 0x4, 0x0)
r6 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x28b42, 0x0)
ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000140)={0xa0000, 0xfffffffffffffffc, 0x98, 0x4, 0x4, 0x6, 0x3ff, 0x8000, 0x2b0e, 0x6, 0x9, 0xffff, 0x3, 0x9, 0x6ff5})
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r6, 0x40045010, &(0x7f0000000040))
mmap$auto(0x0, 0x80003, 0xffd, 0x8000000008012, r0, 0x2)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r7 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000100)={0x0, 0xffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb3, 0xfffffffffffffffa, 0x8040)
mmap$auto(0x0, 0x202000a, 0x3, 0xeb1, 0xfffffffffffffffa, 0x80000008000)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'veth0\x00'})
get_robust_list$auto(0x0, 0x0, 0x0)
close_range$auto(0x0, r7, 0x2)
socket(0x1d, 0x2, 0xfffffffe)
socket$nl_generic(0x10, 0x3, 0x10)

0s ago: executing program 1 (id=335):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xfffffffffffffdb5, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000300), r1)
read$auto(r1, &(0x7f0000000100)='nl80211\x00', 0xbe62)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYRES32=r0, @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000008000200", @ANYRES32=0x0, @ANYBLOB="0a00050000000000000000000a00010000000000000000000a0001000000000000000000060007000100000008000200", @ANYRES32=0x0, @ANYBLOB="0c001a"], 0x68}, 0x1, 0x0, 0x0, 0x4044080}, 0x40090)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/block/nbd4/sched/write2_next_rq\x00', 0x0, 0x0)
preadv$auto(0x3, &(0x7f00000004c0)={0x0, 0x8000000}, 0x3, 0x10000, 0x10)
r2 = socket(0x2, 0x1, 0x106)
setsockopt$auto(r2, 0x1, 0x21, 0x0, 0x9)
bind$auto(0x3, 0x0, 0x6a)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.193' (ED25519) to the list of known hosts.
[   97.538828][  T121] cfg80211: failed to load regulatory.db
[   97.780307][ T5854] cgroup: Unknown subsys name 'net'
[   97.901241][ T5854] cgroup: Unknown subsys name 'cpuset'
[   97.912809][ T5854] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   99.885693][ T5854] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  102.108631][ T5865] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  102.121202][ T5865] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  102.129628][ T5865] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  102.139823][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  102.148357][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  102.158341][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  102.169506][ T5185] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  102.189884][ T5185] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  102.207865][ T5869] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  102.217704][ T5874] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  102.226624][ T5874] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  102.235169][   T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  102.235862][ T5869] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  102.253957][ T5869] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  102.262455][   T51] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  102.270922][   T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  102.271208][ T5865] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  102.289047][ T5865] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  102.310434][   T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  102.319890][   T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  102.903546][ T5871] chnl_net:caif_netlink_parms(): no params data found
[  103.111540][ T5863] chnl_net:caif_netlink_parms(): no params data found
[  103.124088][ T5866] chnl_net:caif_netlink_parms(): no params data found
[  103.189250][ T5867] chnl_net:caif_netlink_parms(): no params data found
[  103.285760][ T5871] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.295693][ T5871] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.307112][ T5871] bridge_slave_0: entered allmulticast mode
[  103.315907][ T5871] bridge_slave_0: entered promiscuous mode
[  103.352909][ T5871] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.361090][ T5871] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.370137][ T5871] bridge_slave_1: entered allmulticast mode
[  103.379980][ T5871] bridge_slave_1: entered promiscuous mode
[  103.469171][ T5863] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.477471][ T5863] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.485707][ T5863] bridge_slave_0: entered allmulticast mode
[  103.494101][ T5863] bridge_slave_0: entered promiscuous mode
[  103.539482][ T5863] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.549007][ T5863] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.558665][ T5863] bridge_slave_1: entered allmulticast mode
[  103.568083][ T5863] bridge_slave_1: entered promiscuous mode
[  103.576578][ T5866] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.584387][ T5866] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.592209][ T5866] bridge_slave_0: entered allmulticast mode
[  103.600266][ T5866] bridge_slave_0: entered promiscuous mode
[  103.611533][ T5871] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.626157][ T5871] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.655657][ T5866] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.664936][ T5866] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.672806][ T5866] bridge_slave_1: entered allmulticast mode
[  103.680839][ T5866] bridge_slave_1: entered promiscuous mode
[  103.775276][ T5863] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.790600][ T5863] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.818300][ T5871] team0: Port device team_slave_0 added
[  103.828860][ T5866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.838629][ T5867] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.847443][ T5867] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.857706][ T5867] bridge_slave_0: entered allmulticast mode
[  103.867031][ T5867] bridge_slave_0: entered promiscuous mode
[  103.890963][ T5871] team0: Port device team_slave_1 added
[  103.912886][ T5866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.922837][ T5867] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.930730][ T5867] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.940381][ T5867] bridge_slave_1: entered allmulticast mode
[  103.949538][ T5867] bridge_slave_1: entered promiscuous mode
[  104.044371][ T5863] team0: Port device team_slave_0 added
[  104.055992][ T5863] team0: Port device team_slave_1 added
[  104.064118][ T5871] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.073554][ T5871] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.105912][ T5871] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.122695][ T5866] team0: Port device team_slave_0 added
[  104.133513][ T5867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.175362][ T5871] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.185175][ T5871] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.216131][ T5871] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.230614][ T5866] team0: Port device team_slave_1 added
[  104.240587][ T5867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.252159][ T5863] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.263567][ T5863] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.267197][   T51] Bluetooth: hci0: command tx timeout
[  104.305404][ T5863] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.321838][ T5863] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.329514][ T5863] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.359308][   T51] Bluetooth: hci2: command tx timeout
[  104.366562][ T5863] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.366633][   T51] Bluetooth: hci1: command tx timeout
[  104.426792][   T51] Bluetooth: hci3: command tx timeout
[  104.482057][ T5867] team0: Port device team_slave_0 added
[  104.504667][ T5866] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.514101][ T5866] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.543411][ T5866] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.579405][ T5867] team0: Port device team_slave_1 added
[  104.593783][ T5871] hsr_slave_0: entered promiscuous mode
[  104.601167][ T5871] hsr_slave_1: entered promiscuous mode
[  104.609466][ T5866] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.618599][ T5866] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.649181][ T5866] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.728521][ T5863] hsr_slave_0: entered promiscuous mode
[  104.735472][ T5863] hsr_slave_1: entered promiscuous mode
[  104.743129][ T5863] debugfs: 'hsr0' already exists in 'hsr'
[  104.749401][ T5863] Cannot create hsr debugfs directory
[  104.796123][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.803893][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.836782][ T5867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.850990][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.860531][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.892410][ T5867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.009242][ T5866] hsr_slave_0: entered promiscuous mode
[  105.017284][ T5866] hsr_slave_1: entered promiscuous mode
[  105.025050][ T5866] debugfs: 'hsr0' already exists in 'hsr'
[  105.033389][ T5866] Cannot create hsr debugfs directory
[  105.077107][ T5867] hsr_slave_0: entered promiscuous mode
[  105.085300][ T5867] hsr_slave_1: entered promiscuous mode
[  105.093379][ T5867] debugfs: 'hsr0' already exists in 'hsr'
[  105.100069][ T5867] Cannot create hsr debugfs directory
[  105.584567][ T5871] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  105.613341][ T5871] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  105.639755][ T5871] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  105.673466][ T5871] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  105.749368][ T5863] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  105.770968][ T5863] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  105.795705][ T5863] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  105.824784][ T5863] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  105.894994][ T5866] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  105.913250][ T5866] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  105.954778][ T5866] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  105.997470][ T5866] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  106.101413][ T5867] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  106.113831][ T5867] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  106.138747][ T5867] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  106.151325][ T5867] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  106.282308][ T5871] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.341656][   T51] Bluetooth: hci0: command tx timeout
[  106.368802][ T5871] 8021q: adding VLAN 0 to HW filter on device team0
[  106.401728][   T79] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.411204][   T79] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.430267][   T51] Bluetooth: hci1: command tx timeout
[  106.438654][ T5185] Bluetooth: hci2: command tx timeout
[  106.470940][ T1321] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.481356][ T1321] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.497162][   T51] Bluetooth: hci3: command tx timeout
[  106.513151][ T5863] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.579641][ T5863] 8021q: adding VLAN 0 to HW filter on device team0
[  106.600301][ T5866] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.645516][ T3594] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.653034][ T3594] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.702781][ T5866] 8021q: adding VLAN 0 to HW filter on device team0
[  106.742798][ T3594] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.750715][ T3594] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.811533][ T3594] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.820227][ T3594] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.878089][ T3594] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.886540][ T3594] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.924019][ T5867] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.072790][ T5867] 8021q: adding VLAN 0 to HW filter on device team0
[  107.085458][ T5871] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.138507][ T2972] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.147356][ T2972] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.191253][ T3594] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.201330][ T3594] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.422371][ T5867] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  107.467437][ T5871] veth0_vlan: entered promiscuous mode
[  107.528369][ T5871] veth1_vlan: entered promiscuous mode
[  107.688955][ T5871] veth0_macvtap: entered promiscuous mode
[  107.703923][ T5871] veth1_macvtap: entered promiscuous mode
[  107.772961][ T5871] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.821410][ T5871] batman_adv: batadv0: Interface activated: batadv_slave_1
[  107.884971][ T5863] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.903312][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.921041][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.980208][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.000104][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.021648][ T5866] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.181406][ T5863] veth0_vlan: entered promiscuous mode
[  108.213448][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.229025][ T5863] veth1_vlan: entered promiscuous mode
[  108.247382][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.251574][ T5867] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.329124][   T71] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.339618][   T71] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.357450][ T5866] veth0_vlan: entered promiscuous mode
[  108.418266][   T51] Bluetooth: hci0: command tx timeout
[  108.428169][ T5866] veth1_vlan: entered promiscuous mode
[  108.441016][ T5863] veth0_macvtap: entered promiscuous mode
[  108.484006][ T5863] veth1_macvtap: entered promiscuous mode
[  108.498958][   T51] Bluetooth: hci1: command tx timeout
[  108.505044][   T51] Bluetooth: hci2: command tx timeout
[  108.521483][ T5871] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  108.525121][ T5867] veth0_vlan: entered promiscuous mode
[  108.575548][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.598956][   T51] Bluetooth: hci3: command tx timeout
[  108.650069][ T5867] veth1_vlan: entered promiscuous mode
[  108.677366][ T5953] Zero length message leads to an empty skb
[  108.700446][ T5866] veth0_macvtap: entered promiscuous mode
[  108.717349][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.745284][ T5866] veth1_macvtap: entered promiscuous mode
[  108.760296][   T71] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.771693][   T71] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.787950][   T71] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.798598][   T71] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.882860][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.904623][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.962692][   T49] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.973685][   T49] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.997248][ T5867] veth0_macvtap: entered promiscuous mode
[  109.021709][   T49] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.035399][   T49] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.127805][ T5955] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  109.138176][ T5867] veth1_macvtap: entered promiscuous mode
[  109.310939][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.322513][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.339018][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.342856][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.357251][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.386918][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  109.396383][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  109.417948][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.502097][   T71] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.546450][   T71] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.591553][   T13] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.635985][   T71] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.655738][   T71] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.678555][   T13] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.701024][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.727581][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.107124][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  110.196885][    T0] NOHZ tick-stop error: local softirq work is pending, handler #3c2!!!
[  110.251266][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.284195][ T5967] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  110.295795][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.493771][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.502990][   T51] Bluetooth: hci0: command tx timeout
[  110.527268][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  110.561195][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.591220][   T51] Bluetooth: hci2: command tx timeout
[  110.597542][ T5185] Bluetooth: hci1: command tx timeout
[  110.657589][   T51] Bluetooth: hci3: command tx timeout
[  110.977136][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  111.017010][    T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!!
[  111.118873][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  111.480645][ T5987] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  111.509182][ T5987] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(44.0.4294967293), cmd(2)
[  112.148174][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  112.286778][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[  114.089829][ T6014] ptp ptp0: only physical clock in use now
[  115.199075][ T6009] syz.1.11 (6009) used greatest stack depth: 17752 bytes left
[  115.688555][ T6023] ecryptfs_parse_packet_length: Five-byte packet length not supported
[  115.706456][ T6023] ecryptfs_miscdev_write: Error parsing packet length; rc = [-22]
[  116.487357][ T6051] bond0: option all_slaves_active: invalid value (
)
[  117.282689][ T6065] FAULT_INJECTION: forcing a failure.
[  117.282689][ T6065] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  117.313244][ T6065] CPU: 0 UID: 0 PID: 6065 Comm: syz.3.22 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  117.313289][ T6065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  117.313306][ T6065] Call Trace:
[  117.313316][ T6065]  <TASK>
[  117.313328][ T6065]  dump_stack_lvl+0x16c/0x1f0
[  117.313369][ T6065]  should_fail_ex+0x512/0x640
[  117.313415][ T6065]  _copy_from_user+0x2e/0xd0
[  117.313462][ T6065]  move_addr_to_kernel+0x65/0x170
[  117.313493][ T6065]  __copy_msghdr+0x386/0x470
[  117.313530][ T6065]  copy_msghdr_from_user+0xc1/0x160
[  117.313566][ T6065]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  117.313626][ T6065]  ? __pfx__kstrtoull+0x10/0x10
[  117.313669][ T6065]  ___sys_sendmsg+0xfe/0x1d0
[  117.313707][ T6065]  ? __pfx____sys_sendmsg+0x10/0x10
[  117.313764][ T6065]  ? find_held_lock+0x2b/0x80
[  117.313819][ T6065]  __sys_sendmmsg+0x200/0x420
[  117.313860][ T6065]  ? __pfx___sys_sendmmsg+0x10/0x10
[  117.313910][ T6065]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  117.313963][ T6065]  ? fput+0x9b/0xd0
[  117.314003][ T6065]  ? ksys_write+0x1ac/0x250
[  117.314035][ T6065]  ? __pfx_ksys_write+0x10/0x10
[  117.314075][ T6065]  __x64_sys_sendmmsg+0x9c/0x100
[  117.314110][ T6065]  ? lockdep_hardirqs_on+0x7c/0x110
[  117.314145][ T6065]  do_syscall_64+0xcd/0x490
[  117.314184][ T6065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.314214][ T6065] RIP: 0033:0x7f10e498ebe9
[  117.314238][ T6065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.314270][ T6065] RSP: 002b:00007f10e5788038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  117.314299][ T6065] RAX: ffffffffffffffda RBX: 00007f10e4bb5fa0 RCX: 00007f10e498ebe9
[  117.314318][ T6065] RDX: 0000000000000002 RSI: 0000200000000400 RDI: 0000000000000003
[  117.314335][ T6065] RBP: 00007f10e5788090 R08: 0000000000000000 R09: 0000000000000000
[  117.314352][ T6065] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  117.314368][ T6065] R13: 00007f10e4bb6038 R14: 00007f10e4bb5fa0 R15: 00007ffc97ffbc88
[  117.314407][ T6065]  </TASK>
[  118.010850][ T6063] zswap: compressor 000 not available
[  120.691101][ T6111] netlink: 8 bytes leftover after parsing attributes in process `syz.1.32'.
[  120.781711][ T6112] netlink: 8 bytes leftover after parsing attributes in process `syz.1.32'.
[  121.131731][ T6124] netlink: 12 bytes leftover after parsing attributes in process `syz.3.34'.
[  122.716473][ T6145] vivid-003: =================  START STATUS  =================
[  122.769785][ T6145] vivid-003: Radio HW Seek Mode: Bounded
[  122.826548][ T6145] vivid-003: Radio Programmable HW Seek: false
[  122.833565][ T6145] vivid-003: RDS Rx I/O Mode: Block I/O
[  122.925649][ T6145] vivid-003: Generate RBDS Instead of RDS: false
[  122.980494][ T6145] vivid-003: RDS Reception: true
[  123.101000][ T6145] vivid-003: RDS Program Type: 0 inactive
[  123.108239][ T6145] vivid-003: RDS PS Name:  inactive
[  123.113761][ T6145] vivid-003: RDS Radio Text:  inactive
[  123.121084][ T6145] vivid-003: RDS Traffic Announcement: false inactive
[  123.129590][ T6145] vivid-003: RDS Traffic Program: false inactive
[  123.145860][ T6145] vivid-003: RDS Music: false inactive
[  123.166265][ T6160] FAULT_INJECTION: forcing a failure.
[  123.166265][ T6160] name failslab, interval 1, probability 0, space 0, times 1
[  123.284852][ T6160] CPU: 0 UID: 0 PID: 6160 Comm: syz.3.43 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  123.284881][ T6160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  123.284891][ T6160] Call Trace:
[  123.284898][ T6160]  <TASK>
[  123.284904][ T6160]  dump_stack_lvl+0x16c/0x1f0
[  123.284932][ T6160]  should_fail_ex+0x512/0x640
[  123.284957][ T6160]  ? __kmalloc_noprof+0xbf/0x510
[  123.284980][ T6160]  ? copy_splice_read+0x1a8/0xc20
[  123.284997][ T6160]  should_failslab+0xc2/0x120
[  123.285021][ T6160]  __kmalloc_noprof+0xd2/0x510
[  123.285047][ T6160]  copy_splice_read+0x1a8/0xc20
[  123.285068][ T6160]  ? __lock_acquire+0x62e/0x1ce0
[  123.285093][ T6160]  ? __pfx_copy_splice_read+0x10/0x10
[  123.285112][ T6160]  ? current_time+0x11d/0x1a0
[  123.285133][ T6160]  ? __pfx_current_time+0x10/0x10
[  123.285160][ T6160]  ? find_held_lock+0x2b/0x80
[  123.285178][ T6160]  ? __pfx_copy_splice_read+0x10/0x10
[  123.285195][ T6160]  do_splice_read+0x282/0x370
[  123.285216][ T6160]  splice_direct_to_actor+0x2a1/0xa30
[  123.285236][ T6160]  ? __pfx_direct_splice_actor+0x10/0x10
[  123.285259][ T6160]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  123.285284][ T6160]  do_splice_direct+0x174/0x240
[  123.285303][ T6160]  ? __pfx_do_splice_direct+0x10/0x10
[  123.285322][ T6160]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  123.285347][ T6160]  ? rw_verify_area+0xcf/0x6c0
[  123.285370][ T6160]  do_sendfile+0xb06/0xe50
[  123.285393][ T6160]  ? __pfx_do_sendfile+0x10/0x10
[  123.285413][ T6160]  ? arch_do_signal_or_restart+0x211/0x790
[  123.285436][ T6160]  ? __fget_files+0x20e/0x3c0
[  123.285456][ T6160]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  123.285484][ T6160]  __x64_sys_sendfile64+0x1d8/0x220
[  123.285509][ T6160]  ? ksys_write+0x1ac/0x250
[  123.285529][ T6160]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  123.285561][ T6160]  do_syscall_64+0xcd/0x490
[  123.285585][ T6160]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.285614][ T6160] RIP: 0033:0x7f10e498ebe9
[  123.285628][ T6160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.285646][ T6160] RSP: 002b:00007f10e5788038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  123.285663][ T6160] RAX: ffffffffffffffda RBX: 00007f10e4bb5fa0 RCX: 00007f10e498ebe9
[  123.285675][ T6160] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[  123.285685][ T6160] RBP: 00007f10e5788090 R08: 0000000000000000 R09: 0000000000000000
[  123.285695][ T6160] R10: 000000007fffe000 R11: 0000000000000246 R12: 0000000000000001
[  123.285706][ T6160] R13: 00007f10e4bb6038 R14: 00007f10e4bb5fa0 R15: 00007ffc97ffbc88
[  123.285728][ T6160]  </TASK>
[  123.308344][ T6145] vivid-003: ==================  END STATUS  ==================
[  124.677266][ T6174] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  124.805241][ T6175] openvswitch: netlink: Key 0 has unexpected len 16 expected 0
[  126.522125][ T6191] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  128.355452][ T6215] netlink: 342 bytes leftover after parsing attributes in process `syz.2.53'.
[  128.411362][ T6215] netlink: 342 bytes leftover after parsing attributes in process `syz.2.53'.
[  128.446849][ T6215] netlink: 342 bytes leftover after parsing attributes in process `syz.2.53'.
[  128.497272][ T6215] netlink: 342 bytes leftover after parsing attributes in process `syz.2.53'.
[  128.567929][ T6219] FAULT_INJECTION: forcing a failure.
[  128.567929][ T6219] name failslab, interval 1, probability 0, space 0, times 0
[  128.596378][ T6219] CPU: 0 UID: 0 PID: 6219 Comm: syz.2.53 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  128.596420][ T6219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  128.596435][ T6219] Call Trace:
[  128.596443][ T6219]  <TASK>
[  128.596454][ T6219]  dump_stack_lvl+0x16c/0x1f0
[  128.596494][ T6219]  should_fail_ex+0x512/0x640
[  128.596530][ T6219]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  128.596570][ T6219]  should_failslab+0xc2/0x120
[  128.596608][ T6219]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  128.596642][ T6219]  ? __alloc_skb+0x2b2/0x380
[  128.596683][ T6219]  __alloc_skb+0x2b2/0x380
[  128.596716][ T6219]  ? __pfx___alloc_skb+0x10/0x10
[  128.596750][ T6219]  ? __pfx___might_resched+0x10/0x10
[  128.596778][ T6219]  ? __lock_acquire+0xb97/0x1ce0
[  128.596819][ T6219]  netlink_alloc_large_skb+0x69/0x130
[  128.596858][ T6219]  netlink_sendmsg+0x6a1/0xdd0
[  128.596902][ T6219]  ? __pfx_netlink_sendmsg+0x10/0x10
[  128.596944][ T6219]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  128.596982][ T6219]  ____sys_sendmsg+0xa95/0xc70
[  128.597027][ T6219]  ? copy_msghdr_from_user+0x10a/0x160
[  128.597063][ T6219]  ? __pfx_____sys_sendmsg+0x10/0x10
[  128.597113][ T6219]  ? __pfx__kstrtoull+0x10/0x10
[  128.597155][ T6219]  ___sys_sendmsg+0x134/0x1d0
[  128.597194][ T6219]  ? __pfx____sys_sendmsg+0x10/0x10
[  128.597259][ T6219]  ? find_held_lock+0x2b/0x80
[  128.597313][ T6219]  __sys_sendmmsg+0x200/0x420
[  128.597354][ T6219]  ? __pfx___sys_sendmmsg+0x10/0x10
[  128.597405][ T6219]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  128.597459][ T6219]  ? fput+0x9b/0xd0
[  128.597498][ T6219]  ? ksys_write+0x1ac/0x250
[  128.597530][ T6219]  ? __pfx_ksys_write+0x10/0x10
[  128.597570][ T6219]  __x64_sys_sendmmsg+0x9c/0x100
[  128.597606][ T6219]  ? lockdep_hardirqs_on+0x7c/0x110
[  128.597641][ T6219]  do_syscall_64+0xcd/0x490
[  128.597680][ T6219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.597709][ T6219] RIP: 0033:0x7fb37378ebe9
[  128.597733][ T6219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.597759][ T6219] RSP: 002b:00007fb3745ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  128.597788][ T6219] RAX: ffffffffffffffda RBX: 00007fb3739b6090 RCX: 00007fb37378ebe9
[  128.597807][ T6219] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[  128.597824][ T6219] RBP: 00007fb3745ab090 R08: 0000000000000000 R09: 0000000000000000
[  128.597841][ T6219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  128.597858][ T6219] R13: 00007fb3739b6128 R14: 00007fb3739b6090 R15: 00007ffd2e63a1b8
[  128.597898][ T6219]  </TASK>
[  128.647984][ T6215] netlink: 342 bytes leftover after parsing attributes in process `syz.2.53'.
[  129.739670][ T5185] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  129.762821][ T5185] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  129.771344][ T5185] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  129.782866][ T5185] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  129.798597][ T5185] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  129.832369][ T6234] mmap: syz.3.58 (6234) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  131.150947][ T6231] chnl_net:caif_netlink_parms(): no params data found
[  131.866501][ T5185] Bluetooth: hci4: command tx timeout
[  131.883411][ T6231] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.966627][ T6231] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.975983][ T6231] bridge_slave_0: entered allmulticast mode
[  132.049272][ T6231] bridge_slave_0: entered promiscuous mode
[  132.092662][ T6231] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.149986][ T6231] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.194468][ T6231] bridge_slave_1: entered allmulticast mode
[  132.239979][ T6231] bridge_slave_1: entered promiscuous mode
[  132.597825][ T6231] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  132.642195][ T6231] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  133.120948][ T6231] team0: Port device team_slave_0 added
[  133.188335][ T6231] team0: Port device team_slave_1 added
[  133.799032][ T6231] batman_adv: batadv0: Adding interface: batadv_slave_0
[  133.817793][ T6231] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.903944][ T6231] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  133.936516][ T5185] Bluetooth: hci4: command tx timeout
[  134.012585][ T6231] batman_adv: batadv0: Adding interface: batadv_slave_1
[  134.045602][ T6231] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.088891][ T6231] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  134.489663][ T6231] hsr_slave_0: entered promiscuous mode
[  134.511267][ T6231] hsr_slave_1: entered promiscuous mode
[  134.529404][ T6231] debugfs: 'hsr0' already exists in 'hsr'
[  134.545708][ T6231] Cannot create hsr debugfs directory
[  136.016734][ T5185] Bluetooth: hci4: command tx timeout
[  136.500254][ T6231] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  136.567279][ T6231] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  136.874812][ T6231] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  137.011401][ T6231] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  137.367656][ T6274] FAULT_INJECTION: forcing a failure.
[  137.367656][ T6274] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.498154][ T6274] CPU: 0 UID: 0 PID: 6274 Comm: syz.1.65 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  137.498197][ T6274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  137.498213][ T6274] Call Trace:
[  137.498222][ T6274]  <TASK>
[  137.498233][ T6274]  dump_stack_lvl+0x16c/0x1f0
[  137.498274][ T6274]  should_fail_ex+0x512/0x640
[  137.498315][ T6274]  _copy_from_user+0x2e/0xd0
[  137.498363][ T6274]  snd_seq_oss_write+0x397/0x7d0
[  137.498402][ T6274]  ? __pfx_snd_seq_oss_write+0x10/0x10
[  137.498449][ T6274]  ? common_file_perm+0x1a9/0x340
[  137.498487][ T6274]  ? bpf_lsm_file_permission+0x9/0x10
[  137.498535][ T6274]  ? __pfx_odev_write+0x10/0x10
[  137.498577][ T6274]  odev_write+0x51/0xa0
[  137.498618][ T6274]  vfs_write+0x29d/0x11d0
[  137.498664][ T6274]  ? __pfx_vfs_write+0x10/0x10
[  137.498692][ T6274]  ? find_held_lock+0x2b/0x80
[  137.498722][ T6274]  ? __fget_files+0x204/0x3c0
[  137.498760][ T6274]  ? __fget_files+0x20e/0x3c0
[  137.498798][ T6274]  ksys_write+0x12a/0x250
[  137.498827][ T6274]  ? __pfx_ksys_write+0x10/0x10
[  137.498860][ T6274]  do_syscall_64+0xcd/0x490
[  137.498891][ T6274]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.498922][ T6274] RIP: 0033:0x7f60fc98ebe9
[  137.498942][ T6274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.498965][ T6274] RSP: 002b:00007f60fd820038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  137.498992][ T6274] RAX: ffffffffffffffda RBX: 00007f60fcbb6090 RCX: 00007f60fc98ebe9
[  137.499010][ T6274] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[  137.499026][ T6274] RBP: 00007f60fca11e19 R08: 0000000000000000 R09: 0000000000000000
[  137.499042][ T6274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  137.499058][ T6274] R13: 00007f60fcbb6128 R14: 00007f60fcbb6090 R15: 00007fff8ea9c0d8
[  137.499094][ T6274]  </TASK>
[  137.834387][ T6231] 8021q: adding VLAN 0 to HW filter on device bond0
[  138.119481][ T5185] Bluetooth: hci4: command tx timeout
[  138.243356][ T6231] 8021q: adding VLAN 0 to HW filter on device team0
[  138.521978][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  138.536811][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  138.718971][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  138.728396][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  138.763407][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  138.771589][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.574321][ T6231] 8021q: adding VLAN 0 to HW filter on device batadv0
[  141.675677][ T6327] process 'syz.2.73' launched './file0' with NULL argv: empty string added
[  141.986077][ T6344] random: crng reseeded on system resumption
[  142.285178][ T6231] veth0_vlan: entered promiscuous mode
[  142.403574][ T6231] veth1_vlan: entered promiscuous mode
[  142.814096][ T6231] veth0_macvtap: entered promiscuous mode
[  143.156646][ T6231] veth1_macvtap: entered promiscuous mode
[  143.630164][ T6231] batman_adv: batadv0: Interface activated: batadv_slave_0
[  143.679111][ T6349] syz.2.76 uses obsolete (PF_INET,SOCK_PACKET)
[  143.718194][ T6231] batman_adv: batadv0: Interface activated: batadv_slave_1
[  143.764315][ T6138] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  143.866344][ T6138] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  143.890100][ T6138] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  143.937458][ T6138] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  145.147014][   T79] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.176471][   T79] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.499143][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.565120][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.292792][   T79] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.345648][ T6389] FAULT_INJECTION: forcing a failure.
[  146.345648][ T6389] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.363973][ T6389] CPU: 0 UID: 0 PID: 6389 Comm: syz.2.86 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  146.364004][ T6389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  146.364015][ T6389] Call Trace:
[  146.364022][ T6389]  <TASK>
[  146.364030][ T6389]  dump_stack_lvl+0x16c/0x1f0
[  146.364058][ T6389]  should_fail_ex+0x512/0x640
[  146.364089][ T6389]  _copy_from_user+0x2e/0xd0
[  146.364208][ T6389]  dvb_usercopy+0x27e/0x340
[  146.364235][ T6389]  ? __pfx_dvb_frontend_do_ioctl+0x10/0x10
[  146.364267][ T6389]  ? __pfx_dvb_usercopy+0x10/0x10
[  146.364423][ T6389]  ? __fget_files+0x20e/0x3c0
[  146.364451][ T6389]  dvb_frontend_ioctl+0x50/0x80
[  146.364474][ T6389]  ? __pfx_dvb_frontend_ioctl+0x10/0x10
[  146.364497][ T6389]  __x64_sys_ioctl+0x18e/0x210
[  146.364528][ T6389]  do_syscall_64+0xcd/0x490
[  146.364554][ T6389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.364573][ T6389] RIP: 0033:0x7fb37378ebe9
[  146.364589][ T6389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.364606][ T6389] RSP: 002b:00007fb3745cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  146.364624][ T6389] RAX: ffffffffffffffda RBX: 00007fb3739b5fa0 RCX: 00007fb37378ebe9
[  146.364635][ T6389] RDX: 0000000000000004 RSI: 0000000080106f53 RDI: 0000000000000003
[  146.364646][ T6389] RBP: 00007fb3745cc090 R08: 0000000000000000 R09: 0000000000000000
[  146.364656][ T6389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.364666][ T6389] R13: 00007fb3739b6038 R14: 00007fb3739b5fa0 R15: 00007ffd2e63a1b8
[  146.364688][ T6389]  </TASK>
[  146.732096][ T6396] FAULT_INJECTION: forcing a failure.
[  146.732096][ T6396] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.836571][ T6396] CPU: 0 UID: 0 PID: 6396 Comm: syz.3.87 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  146.836616][ T6396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  146.836632][ T6396] Call Trace:
[  146.836642][ T6396]  <TASK>
[  146.836654][ T6396]  dump_stack_lvl+0x16c/0x1f0
[  146.836696][ T6396]  should_fail_ex+0x512/0x640
[  146.836741][ T6396]  _copy_from_user+0x2e/0xd0
[  146.836787][ T6396]  move_addr_to_kernel+0x65/0x170
[  146.836818][ T6396]  __sys_connect+0xb1/0x160
[  146.836848][ T6396]  ? __pfx___sys_connect+0x10/0x10
[  146.836894][ T6396]  ? __pfx_ksys_write+0x10/0x10
[  146.836936][ T6396]  __x64_sys_connect+0x72/0xb0
[  146.836965][ T6396]  ? lockdep_hardirqs_on+0x7c/0x110
[  146.837010][ T6396]  do_syscall_64+0xcd/0x490
[  146.837050][ T6396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.837078][ T6396] RIP: 0033:0x7f10e498ebe9
[  146.837101][ T6396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.837126][ T6396] RSP: 002b:00007f10e5767038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  146.837153][ T6396] RAX: ffffffffffffffda RBX: 00007f10e4bb6090 RCX: 00007f10e498ebe9
[  146.837170][ T6396] RDX: 0000000000000055 RSI: 00002000000018c0 RDI: 0000000000000003
[  146.837185][ T6396] RBP: 00007f10e5767090 R08: 0000000000000000 R09: 0000000000000000
[  146.837201][ T6396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.837218][ T6396] R13: 00007f10e4bb6128 R14: 00007f10e4bb6090 R15: 00007ffc97ffbc88
[  146.837253][ T6396]  </TASK>
[  147.085245][   T79] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.315230][   T79] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.563535][   T79] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.271620][ T6417] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3)
[  148.686699][   T79] bridge_slave_1: left allmulticast mode
[  148.722704][   T79] bridge_slave_1: left promiscuous mode
[  148.762841][   T79] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.961936][   T79] bridge_slave_0: left allmulticast mode
[  148.973387][   T79] bridge_slave_0: left promiscuous mode
[  148.990655][   T79] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.487056][ T6440] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  150.581869][ T5951] Process accounting resumed
[  151.182469][   T79] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  151.224519][   T79] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  151.265437][   T79] bond0 (unregistering): Released all slaves
[  152.315842][   T79] hsr_slave_0: left promiscuous mode
[  152.348482][   T79] hsr_slave_1: left promiscuous mode
[  152.422221][   T79] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  152.480380][   T79] batman_adv: batadv0: Removing interface: batadv_slave_0
[  152.583402][   T79] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  152.626520][   T79] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.791975][   T79] veth1_macvtap: left promiscuous mode
[  152.849161][   T79] veth0_macvtap: left promiscuous mode
[  152.881071][   T79] veth1_vlan: left promiscuous mode
[  152.892945][   T79] veth0_vlan: left promiscuous mode
[  155.439121][   T79] team0 (unregistering): Port device team_slave_1 removed
[  155.452922][ T5975] Process accounting resumed
[  155.637254][   T79] team0 (unregistering): Port device team_slave_0 removed
[  157.377388][ T6552] ubi0: attaching mtd0
[  157.384022][ T6552] ubi0: scanning is finished
[  157.384052][ T6552] ubi0: empty MTD device detected
[  157.909771][ T6552] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4
[  158.066103][ T6566] FAULT_INJECTION: forcing a failure.
[  158.066103][ T6566] name failslab, interval 1, probability 0, space 0, times 0
[  158.129651][ T6566] CPU: 0 UID: 0 PID: 6566 Comm: syz.1.120 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  158.129679][ T6566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  158.129690][ T6566] Call Trace:
[  158.129696][ T6566]  <TASK>
[  158.129703][ T6566]  dump_stack_lvl+0x16c/0x1f0
[  158.129732][ T6566]  should_fail_ex+0x512/0x640
[  158.129757][ T6566]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  158.129784][ T6566]  should_failslab+0xc2/0x120
[  158.129809][ T6566]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  158.129834][ T6566]  ? add_policy+0x20d/0x400
[  158.129861][ T6566]  ? kasan_save_track+0x14/0x30
[  158.129884][ T6566]  krealloc_noprof+0x159/0x3a0
[  158.129908][ T6566]  add_policy+0x20d/0x400
[  158.129940][ T6566]  netlink_policy_dump_add_policy+0xbf/0x4d0
[  158.129973][ T6566]  ? __pfx_netlink_policy_dump_add_policy+0x10/0x10
[  158.130012][ T6566]  ctrl_dumppolicy_start+0x802/0xa90
[  158.130042][ T6566]  ? __pfx_ctrl_dumppolicy_start+0x10/0x10
[  158.130070][ T6566]  ? trace_contention_end+0xdd/0x130
[  158.130104][ T6566]  ? __mutex_lock+0x1c4/0x10b0
[  158.130134][ T6566]  ? __pfx___mutex_lock+0x10/0x10
[  158.130157][ T6566]  ? __pfx_devlink_nl_pre_doit_port_optional+0x10/0x10
[  158.130187][ T6566]  ? __pfx_devlink_nl_health_reporter_test_doit+0x10/0x10
[  158.130215][ T6566]  ? __pfx_devlink_nl_post_doit+0x10/0x10
[  158.130254][ T6566]  ? __pfx_ctrl_dumppolicy_start+0x10/0x10
[  158.130282][ T6566]  genl_start+0x5fc/0x980
[  158.130312][ T6566]  __netlink_dump_start+0x60e/0x990
[  158.130339][ T6566]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  158.130369][ T6566]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  158.130403][ T6566]  ? __pfx_genl_get_cmd+0x10/0x10
[  158.130426][ T6566]  ? __pfx_genl_start+0x10/0x10
[  158.130450][ T6566]  ? __pfx_genl_dumpit+0x10/0x10
[  158.130474][ T6566]  ? __pfx_genl_done+0x10/0x10
[  158.130503][ T6566]  ? __radix_tree_lookup+0x21f/0x2c0
[  158.130527][ T6566]  genl_rcv_msg+0x46e/0x800
[  158.130557][ T6566]  ? __pfx_genl_rcv_msg+0x10/0x10
[  158.130584][ T6566]  ? __pfx_ctrl_dumppolicy_start+0x10/0x10
[  158.130612][ T6566]  ? __pfx_ctrl_dumppolicy+0x10/0x10
[  158.130637][ T6566]  ? __pfx_ctrl_dumppolicy_done+0x10/0x10
[  158.130676][ T6566]  netlink_rcv_skb+0x158/0x420
[  158.130700][ T6566]  ? __pfx_genl_rcv_msg+0x10/0x10
[  158.130728][ T6566]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  158.130762][ T6566]  ? netlink_deliver_tap+0x1ae/0xd30
[  158.130788][ T6566]  genl_rcv+0x28/0x40
[  158.130812][ T6566]  netlink_unicast+0x5a7/0x870
[  158.130839][ T6566]  ? __pfx_netlink_unicast+0x10/0x10
[  158.130863][ T6566]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  158.130885][ T6566]  ? __lock_acquire+0xb97/0x1ce0
[  158.130915][ T6566]  netlink_sendmsg+0x8d1/0xdd0
[  158.130942][ T6566]  ? __pfx_netlink_sendmsg+0x10/0x10
[  158.130969][ T6566]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  158.130993][ T6566]  ____sys_sendmsg+0xa95/0xc70
[  158.131022][ T6566]  ? copy_msghdr_from_user+0x10a/0x160
[  158.131045][ T6566]  ? __pfx_____sys_sendmsg+0x10/0x10
[  158.131090][ T6566]  ___sys_sendmsg+0x134/0x1d0
[  158.131114][ T6566]  ? __pfx____sys_sendmsg+0x10/0x10
[  158.131158][ T6566]  ? __mutex_unlock_slowpath+0x140/0x800
[  158.131188][ T6566]  __sys_sendmsg+0x16d/0x220
[  158.131212][ T6566]  ? __pfx___sys_sendmsg+0x10/0x10
[  158.131250][ T6566]  do_syscall_64+0xcd/0x490
[  158.131275][ T6566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.131294][ T6566] RIP: 0033:0x7f60fc98ebe9
[  158.131309][ T6566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.131326][ T6566] RSP: 002b:00007f60fd841038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  158.131344][ T6566] RAX: ffffffffffffffda RBX: 00007f60fcbb5fa0 RCX: 00007f60fc98ebe9
[  158.131355][ T6566] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  158.131366][ T6566] RBP: 00007f60fd841090 R08: 0000000000000000 R09: 0000000000000000
[  158.131376][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  158.131386][ T6566] R13: 00007f60fcbb6038 R14: 00007f60fcbb5fa0 R15: 00007fff8ea9c0d8
[  158.131409][ T6566]  </TASK>
[  158.564817][    C0] vkms_vblank_simulate: vblank timer overrun
[  158.894926][ T6576] FAULT_INJECTION: forcing a failure.
[  158.894926][ T6576] name failslab, interval 1, probability 0, space 0, times 0
[  158.909913][ T6576] CPU: 0 UID: 0 PID: 6576 Comm: syz.3.122 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  158.909957][ T6576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  158.909973][ T6576] Call Trace:
[  158.909982][ T6576]  <TASK>
[  158.909993][ T6576]  dump_stack_lvl+0x16c/0x1f0
[  158.910036][ T6576]  should_fail_ex+0x512/0x640
[  158.910073][ T6576]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  158.910122][ T6576]  should_failslab+0xc2/0x120
[  158.910159][ T6576]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  158.910195][ T6576]  ? __alloc_skb+0x2b2/0x380
[  158.910234][ T6576]  __alloc_skb+0x2b2/0x380
[  158.910267][ T6576]  ? __pfx___alloc_skb+0x10/0x10
[  158.910304][ T6576]  ? __pfx___might_resched+0x10/0x10
[  158.910333][ T6576]  ? __lock_acquire+0xb97/0x1ce0
[  158.910377][ T6576]  netlink_alloc_large_skb+0x69/0x130
[  158.910417][ T6576]  netlink_sendmsg+0x6a1/0xdd0
[  158.910461][ T6576]  ? __pfx_netlink_sendmsg+0x10/0x10
[  158.910519][ T6576]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  158.910557][ T6576]  ____sys_sendmsg+0xa95/0xc70
[  158.910603][ T6576]  ? copy_msghdr_from_user+0x10a/0x160
[  158.910639][ T6576]  ? __pfx_____sys_sendmsg+0x10/0x10
[  158.910687][ T6576]  ? kfree+0x24f/0x4d0
[  158.910710][ T6576]  ? __pfx__kstrtoull+0x10/0x10
[  158.910753][ T6576]  ___sys_sendmsg+0x134/0x1d0
[  158.910791][ T6576]  ? __pfx____sys_sendmsg+0x10/0x10
[  158.910863][ T6576]  ? __pfx___might_resched+0x10/0x10
[  158.910901][ T6576]  __sys_sendmmsg+0x200/0x420
[  158.910942][ T6576]  ? __pfx___sys_sendmmsg+0x10/0x10
[  158.910992][ T6576]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  158.911045][ T6576]  ? fput+0x9b/0xd0
[  158.911093][ T6576]  ? ksys_write+0x1ac/0x250
[  158.911126][ T6576]  ? __pfx_ksys_write+0x10/0x10
[  158.911166][ T6576]  __x64_sys_sendmmsg+0x9c/0x100
[  158.911202][ T6576]  ? lockdep_hardirqs_on+0x7c/0x110
[  158.911235][ T6576]  do_syscall_64+0xcd/0x490
[  158.911272][ T6576]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.911300][ T6576] RIP: 0033:0x7f10e498ebe9
[  158.911324][ T6576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.911348][ T6576] RSP: 002b:00007f10e5788038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  158.911373][ T6576] RAX: ffffffffffffffda RBX: 00007f10e4bb5fa0 RCX: 00007f10e498ebe9
[  158.911390][ T6576] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000005
[  158.911405][ T6576] RBP: 00007f10e5788090 R08: 0000000000000000 R09: 0000000000000000
[  158.911419][ T6576] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  158.911435][ T6576] R13: 00007f10e4bb6038 R14: 00007f10e4bb5fa0 R15: 00007ffc97ffbc88
[  158.911468][ T6576]  </TASK>
[  159.195297][    C0] vkms_vblank_simulate: vblank timer overrun
[  159.845589][ T6593] device-mapper: ioctl: name not supplied when creating device
[  160.075540][ T6600] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5
[  160.337427][ T6591] netlink: 342 bytes leftover after parsing attributes in process `syz.3.125'.
[  160.410104][ T6591] netlink: 342 bytes leftover after parsing attributes in process `syz.3.125'.
[  160.470815][ T6591] netlink: 342 bytes leftover after parsing attributes in process `syz.3.125'.
[  160.870133][ T6616] ima: policy update failed
[  160.910229][   T30] audit: type=1802 audit(1754887861.640:2): pid=6616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.129" res=0 errno=0
[  161.371795][ T6630] netlink: 342 bytes leftover after parsing attributes in process `syz.2.133'.
[  161.441160][ T6630] netlink: 342 bytes leftover after parsing attributes in process `syz.2.133'.
[  161.482664][ T6624] random: crng reseeded on system resumption
[  161.949733][ T6646] FAULT_INJECTION: forcing a failure.
[  161.949733][ T6646] name failslab, interval 1, probability 0, space 0, times 0
[  162.023701][ T6646] CPU: 1 UID: 0 PID: 6646 Comm: syz.1.136 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  162.023744][ T6646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  162.023760][ T6646] Call Trace:
[  162.023770][ T6646]  <TASK>
[  162.023781][ T6646]  dump_stack_lvl+0x16c/0x1f0
[  162.023822][ T6646]  should_fail_ex+0x512/0x640
[  162.023861][ T6646]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  162.023899][ T6646]  should_failslab+0xc2/0x120
[  162.023937][ T6646]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  162.023970][ T6646]  ? ptlock_alloc+0x1f/0x70
[  162.024002][ T6646]  ptlock_alloc+0x1f/0x70
[  162.024028][ T6646]  pte_alloc_one+0x82/0x3a0
[  162.024223][ T6646]  __pte_alloc+0x6d/0x3c0
[  162.024262][ T6646]  ? __pfx___pte_alloc+0x10/0x10
[  162.024298][ T6646]  ? __pfx___might_resched+0x10/0x10
[  162.024326][ T6646]  ? copy_page_range+0x1fa8/0x5c80
[  162.024360][ T6646]  copy_page_range+0x3b83/0x5c80
[  162.024438][ T6646]  ? __pfx_copy_page_range+0x10/0x10
[  162.024483][ T6646]  ? __pfx___might_resched+0x10/0x10
[  162.024509][ T6646]  ? __pfx_mas_store+0x10/0x10
[  162.024545][ T6646]  ? __vma_enter_locked+0x163/0x3f0
[  162.024580][ T6646]  ? dup_mmap+0xe38/0x21d0
[  162.024619][ T6646]  ? down_write+0x14d/0x200
[  162.024661][ T6646]  ? up_write+0x1b2/0x520
[  162.024706][ T6646]  dup_mmap+0xe88/0x21d0
[  162.024765][ T6646]  ? __pfx_dup_mmap+0x10/0x10
[  162.024837][ T6646]  copy_process+0x4081/0x7690
[  162.024896][ T6646]  ? __pfx_copy_process+0x10/0x10
[  162.024932][ T6646]  ? futex_private_hash_put+0x176/0x300
[  162.024975][ T6646]  ? futex_private_hash_put+0x18a/0x300
[  162.025019][ T6646]  kernel_clone+0xfc/0x930
[  162.025057][ T6646]  ? __pfx_futex_wake+0x10/0x10
[  162.025121][ T6646]  ? __pfx_kernel_clone+0x10/0x10
[  162.025183][ T6646]  __do_sys_clone+0xce/0x120
[  162.025222][ T6646]  ? __pfx___do_sys_clone+0x10/0x10
[  162.025257][ T6646]  ? ksys_unshare+0x687/0xa40
[  162.025315][ T6646]  ? xfd_validate_state+0x61/0x180
[  162.025374][ T6646]  do_syscall_64+0xcd/0x490
[  162.025414][ T6646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.025443][ T6646] RIP: 0033:0x7f60fc98ebe9
[  162.025469][ T6646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.025496][ T6646] RSP: 002b:00007f60fd840fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  162.025525][ T6646] RAX: ffffffffffffffda RBX: 00007f60fcbb5fa0 RCX: 00007f60fc98ebe9
[  162.025544][ T6646] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000002360411
[  162.025561][ T6646] RBP: 00007f60fca11e19 R08: 0000000000000000 R09: 0000000000000000
[  162.025579][ T6646] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  162.025596][ T6646] R13: 00007f60fcbb6038 R14: 00007f60fcbb5fa0 R15: 00007fff8ea9c0d8
[  162.025636][ T6646]  </TASK>
[  163.998047][ T6677] FAULT_INJECTION: forcing a failure.
[  163.998047][ T6677] name failslab, interval 1, probability 0, space 0, times 0
[  164.032178][ T6677] CPU: 0 UID: 0 PID: 6677 Comm: syz.3.142 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  164.032223][ T6677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  164.032240][ T6677] Call Trace:
[  164.032250][ T6677]  <TASK>
[  164.032261][ T6677]  dump_stack_lvl+0x16c/0x1f0
[  164.032303][ T6677]  should_fail_ex+0x512/0x640
[  164.032340][ T6677]  ? __kvmalloc_node_noprof+0x124/0x620
[  164.032378][ T6677]  should_failslab+0xc2/0x120
[  164.032416][ T6677]  __kvmalloc_node_noprof+0x137/0x620
[  164.032450][ T6677]  ? io_alloc_cache_init+0x33/0x170
[  164.032499][ T6677]  ? io_alloc_cache_init+0x33/0x170
[  164.032536][ T6677]  io_alloc_cache_init+0x33/0x170
[  164.032580][ T6677]  io_uring_setup+0x61d/0x2080
[  164.032621][ T6677]  ? __pfx_io_uring_setup+0x10/0x10
[  164.032656][ T6677]  ? do_futex+0x122/0x350
[  164.032693][ T6677]  ? __pfx_do_futex+0x10/0x10
[  164.032755][ T6677]  ? syscall_user_dispatch+0x78/0x140
[  164.032817][ T6677]  __x64_sys_io_uring_setup+0xc2/0x170
[  164.032855][ T6677]  do_syscall_64+0xcd/0x490
[  164.032895][ T6677]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.032924][ T6677] RIP: 0033:0x7f10e498ebe9
[  164.032948][ T6677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.032974][ T6677] RSP: 002b:00007f10e5788038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[  164.033002][ T6677] RAX: ffffffffffffffda RBX: 00007f10e4bb5fa0 RCX: 00007f10e498ebe9
[  164.033020][ T6677] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000f
[  164.033036][ T6677] RBP: 00007f10e4a11e19 R08: 0000000000000000 R09: 0000000000000000
[  164.033053][ T6677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.033070][ T6677] R13: 00007f10e4bb6038 R14: 00007f10e4bb5fa0 R15: 00007ffc97ffbc88
[  164.033109][ T6677]  </TASK>
[  164.727417][ T6693] netlink: 342 bytes leftover after parsing attributes in process `syz.2.145'.
[  164.913710][ T6693] netlink: 8 bytes leftover after parsing attributes in process `syz.2.145'.
[  166.797130][ T6738] batman_adv: batadv0: adding TT local entry 00:00:03:00:00:00 to non-existent VLAN 3
[  166.832327][ T6738] netlink: 342 bytes leftover after parsing attributes in process `syz.2.152'.
[  167.175036][ T6744] FAULT_INJECTION: forcing a failure.
[  167.175036][ T6744] name failslab, interval 1, probability 0, space 0, times 0
[  167.286442][ T6744] CPU: 0 UID: 0 PID: 6744 Comm: syz.3.155 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  167.286489][ T6744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  167.286507][ T6744] Call Trace:
[  167.286517][ T6744]  <TASK>
[  167.286528][ T6744]  dump_stack_lvl+0x16c/0x1f0
[  167.286571][ T6744]  should_fail_ex+0x512/0x640
[  167.286612][ T6744]  ? __kmalloc_noprof+0xbf/0x510
[  167.286647][ T6744]  ? sk_prot_alloc+0x1a8/0x2a0
[  167.286681][ T6744]  should_failslab+0xc2/0x120
[  167.286712][ T6744]  __kmalloc_noprof+0xd2/0x510
[  167.286747][ T6744]  sk_prot_alloc+0x1a8/0x2a0
[  167.286793][ T6744]  sk_alloc+0x36/0xc20
[  167.286840][ T6744]  alg_create+0x9e/0x150
[  167.286871][ T6744]  __sock_create+0x335/0x8d0
[  167.286921][ T6744]  __sys_socket+0x14d/0x260
[  167.286945][ T6744]  ? __pfx___sys_socket+0x10/0x10
[  167.286972][ T6744]  ? xfd_validate_state+0x61/0x180
[  167.287028][ T6744]  __x64_sys_socket+0x72/0xb0
[  167.287053][ T6744]  ? lockdep_hardirqs_on+0x7c/0x110
[  167.287081][ T6744]  do_syscall_64+0xcd/0x490
[  167.287113][ T6744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.287137][ T6744] RIP: 0033:0x7f10e498ebe9
[  167.287158][ T6744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.287180][ T6744] RSP: 002b:00007f10e5788038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  167.287210][ T6744] RAX: ffffffffffffffda RBX: 00007f10e4bb5fa0 RCX: 00007f10e498ebe9
[  167.287229][ T6744] RDX: 0000000000000000 RSI: 0000000000080805 RDI: 0000000000000026
[  167.287247][ T6744] RBP: 00007f10e4a11e19 R08: 0000000000000000 R09: 0000000000000000
[  167.287265][ T6744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  167.287280][ T6744] R13: 00007f10e4bb6038 R14: 00007f10e4bb5fa0 R15: 00007ffc97ffbc88
[  167.287313][ T6744]  </TASK>
[  168.372304][ T6773] netlink: 342 bytes leftover after parsing attributes in process `syz.4.159'.
[  168.442627][ T6773] netlink: 342 bytes leftover after parsing attributes in process `syz.4.159'.
[  168.493371][ T6773] netlink: 342 bytes leftover after parsing attributes in process `syz.4.159'.
[  168.543085][ T6776] netlink: 302 bytes leftover after parsing attributes in process `syz.4.159'.
[  168.784963][ T6784] openvswitch: netlink: nsh attribute has 14 unknown bytes.
[  169.912661][ T6803] syz.4.166 (6803): /proc/6801/oom_adj is deprecated, please use /proc/6801/oom_score_adj instead.
[  171.563565][ T6844] kmem.limit_in_bytes is deprecated and will be removed. Writing any value to this file has no effect. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  171.660878][ T6818] Invalid ELF header magic: != ELF
[  172.393151][ T5185] Bluetooth: hci4: unexpected event 0x3e length: 508 > 260
[  172.393181][ T5185] Bluetooth: hci4: unexpected subevent 0x02 length: 507 > 260
[  172.418586][ T5185] Bluetooth: hci4: Dropping invalid advertising data
[  172.425840][ T5185] Bluetooth: hci4: Dropping invalid advertising data
[  172.436087][ T5185] Bluetooth: hci4: Dropping invalid advertising data
[  172.443703][ T5185] Bluetooth: hci4: Malformed LE Event: 0x02
[  172.974813][ T6862] FAULT_INJECTION: forcing a failure.
[  172.974813][ T6862] name failslab, interval 1, probability 0, space 0, times 0
[  172.993808][ T6862] CPU: 1 UID: 0 PID: 6862 Comm: syz.2.173 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  172.993854][ T6862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  172.993872][ T6862] Call Trace:
[  172.993882][ T6862]  <TASK>
[  172.993894][ T6862]  dump_stack_lvl+0x16c/0x1f0
[  172.993946][ T6862]  should_fail_ex+0x512/0x640
[  172.993987][ T6862]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  172.994029][ T6862]  should_failslab+0xc2/0x120
[  172.994070][ T6862]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  172.994103][ T6862]  ? __pfx___might_resched+0x10/0x10
[  172.994135][ T6862]  ? __anon_vma_prepare+0x344/0x5e0
[  172.994175][ T6862]  __anon_vma_prepare+0x344/0x5e0
[  172.994205][ T6862]  ? __pfx___pte_alloc+0x10/0x10
[  172.994251][ T6862]  __vmf_anon_prepare+0x11c/0x240
[  172.994298][ T6862]  do_pte_missing+0x10bd/0x3ba0
[  172.994332][ T6862]  ? do_raw_spin_unlock+0x172/0x230
[  172.994380][ T6862]  ? __pmd_alloc+0x3fb/0x930
[  172.994429][ T6862]  __handle_mm_fault+0x152a/0x2a50
[  172.994472][ T6862]  ? __pfx___handle_mm_fault+0x10/0x10
[  172.994541][ T6862]  handle_mm_fault+0x589/0xd10
[  172.994581][ T6862]  __get_user_pages+0x551/0x34a0
[  172.994644][ T6862]  ? __pfx___get_user_pages+0x10/0x10
[  172.994718][ T6862]  populate_vma_page_range+0x267/0x3f0
[  172.994769][ T6862]  ? __pfx_populate_vma_page_range+0x10/0x10
[  172.994815][ T6862]  ? __pfx_find_vma_intersection+0x10/0x10
[  172.994861][ T6862]  ? do_mmap+0x69c/0x1210
[  172.994932][ T6862]  __mm_populate+0x1d8/0x380
[  172.994982][ T6862]  ? __pfx___mm_populate+0x10/0x10
[  172.995035][ T6862]  ? up_write+0x1b2/0x520
[  172.995084][ T6862]  vm_mmap_pgoff+0x37f/0x470
[  172.995133][ T6862]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  172.995186][ T6862]  ? __x64_sys_futex+0x1e0/0x4c0
[  172.995224][ T6862]  ? __x64_sys_futex+0x1e9/0x4c0
[  172.995268][ T6862]  ksys_mmap_pgoff+0x7d/0x5c0
[  172.995308][ T6862]  ? xfd_validate_state+0x61/0x180
[  172.995350][ T6862]  ? __pfx_do_writev+0x10/0x10
[  172.995388][ T6862]  __x64_sys_mmap+0x125/0x190
[  172.995440][ T6862]  do_syscall_64+0xcd/0x490
[  172.995481][ T6862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.995512][ T6862] RIP: 0033:0x7fb37378ebe9
[  172.995559][ T6862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.995587][ T6862] RSP: 002b:00007fb3745cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  172.995617][ T6862] RAX: ffffffffffffffda RBX: 00007fb3739b5fa0 RCX: 00007fb37378ebe9
[  172.995638][ T6862] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  172.995655][ T6862] RBP: 00007fb373811e19 R08: 0000000000000002 R09: 0000000000008000
[  172.995673][ T6862] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  172.995691][ T6862] R13: 00007fb3739b6038 R14: 00007fb3739b5fa0 R15: 00007ffd2e63a1b8
[  172.995733][ T6862]  </TASK>
[  173.949974][ T5185] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  174.870479][ T6892] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd12
[  176.935644][ T6936] cougar: G6 mapped to space
[  177.150227][ T6893] ima: policy update failed
[  177.161938][   T30] audit: type=1802 audit(1754887877.910:3): pid=6893 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.181" res=0 errno=0
[  177.490295][ T6953] FAULT_INJECTION: forcing a failure.
[  177.490295][ T6953] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.526880][ T6953] CPU: 1 UID: 0 PID: 6953 Comm: syz.3.192 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  177.526921][ T6953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  177.526946][ T6953] Call Trace:
[  177.526955][ T6953]  <TASK>
[  177.526967][ T6953]  dump_stack_lvl+0x16c/0x1f0
[  177.527007][ T6953]  should_fail_ex+0x512/0x640
[  177.527054][ T6953]  _copy_from_user+0x2e/0xd0
[  177.527099][ T6953]  copy_from_sockptr_offset.constprop.0+0x136/0x170
[  177.527146][ T6953]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  177.527206][ T6953]  copy_bpf_fprog_from_user+0xeb/0x250
[  177.527250][ T6953]  ? __pfx_copy_bpf_fprog_from_user+0x10/0x10
[  177.527299][ T6953]  ? __local_bh_enable_ip+0xa4/0x120
[  177.527338][ T6953]  sk_setsockopt+0x37a6/0x3af0
[  177.527387][ T6953]  ? __pfx_sk_setsockopt+0x10/0x10
[  177.527426][ T6953]  ? aa_sk_perm+0x2f4/0xb10
[  177.527467][ T6953]  ? __pfx_aa_sk_perm+0x10/0x10
[  177.527513][ T6953]  ? find_held_lock+0x2b/0x80
[  177.527548][ T6953]  ? aa_sock_opt_perm+0xfd/0x1c0
[  177.527603][ T6953]  do_sock_setsockopt+0x193/0x1d0
[  177.527652][ T6953]  __sys_setsockopt+0x120/0x1a0
[  177.527702][ T6953]  __x64_sys_setsockopt+0xbd/0x160
[  177.527734][ T6953]  ? do_syscall_64+0x91/0x490
[  177.527769][ T6953]  ? lockdep_hardirqs_on+0x7c/0x110
[  177.527800][ T6953]  do_syscall_64+0xcd/0x490
[  177.527837][ T6953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.527866][ T6953] RIP: 0033:0x7f10e498ebe9
[  177.527889][ T6953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.527916][ T6953] RSP: 002b:00007f10e5788038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  177.527950][ T6953] RAX: ffffffffffffffda RBX: 00007f10e4bb5fa0 RCX: 00007f10e498ebe9
[  177.527970][ T6953] RDX: 0000000000000033 RSI: 0000000000000001 RDI: 0000000000000003
[  177.527985][ T6953] RBP: 00007f10e5788090 R08: 0000000000000010 R09: 0000000000000000
[  177.528001][ T6953] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000001
[  177.528016][ T6953] R13: 00007f10e4bb6038 R14: 00007f10e4bb5fa0 R15: 00007ffc97ffbc88
[  177.528055][ T6953]  </TASK>
[  177.558727][ T6952] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  177.893296][ T6952] sp0: Synchronizing with TNC
[  178.226478][ T6962] netlink: 25 bytes leftover after parsing attributes in process `syz.2.194'.

syzkaller
syzkaller login: [  182.179629][ T7049] netlink: 8 bytes leftover after parsing attributes in process `syz.2.211'.
[  188.219167][ T7169] bond0: option all_slaves_active: invalid value (
)
[  189.998292][ T7196] netlink: 'syz.1.238': attribute type 2 has an invalid length.
[  190.534357][ T7210] program syz.3.241 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  190.915140][ T7200] vivid-015: =================  START STATUS  =================
[  190.929082][ T7200] vivid-015: Test Pattern: 75% Colorbar
[  190.948639][ T7200] vivid-015: Fill Percentage of Frame: 100
[  190.995587][ T7200] vivid-015: Horizontal Movement: No Movement
[  191.006249][ T7200] vivid-015: Vertical Movement: No Movement
[  191.021750][ T7213] netlink: 326 bytes leftover after parsing attributes in process `syz.3.242'.
[  191.030982][ T7200] vivid-015: OSD Text Mode: All
[  191.051738][ T7200] vivid-015: Show Border: false
[  191.101932][ T7200] vivid-015: Show Square: false
[  191.162650][ T7200] vivid-015: Sensor Flipped Horizontally: false
[  191.262489][ T7200] vivid-015: Sensor Flipped Vertically: false
[  191.268922][ T7200] vivid-015: Insert SAV Code in Image: false
[  191.306324][ T7200] vivid-015: Insert EAV Code in Image: false
[  191.408254][ T7200] vivid-015: Insert Video Guard Band: false
[  191.425273][ T7200] vivid-015: Reduced Framerate: false
[  191.430782][ T7200] vivid-015: HDMI 015-0 Is Connected To: Test Pattern Generator
[  191.448832][ T7200] vivid-015: S-Video 015-0 Is Connected To: Test Pattern Generator
[  191.490389][ T7200] vivid-015: Enable Capture Cropping: true
[  191.555570][ T7200] vivid-015: Enable Capture Composing: true
[  191.561551][ T7200] vivid-015: Enable Capture Scaler: true
[  191.623652][ T7200] vivid-015: Timestamp Source: End of Frame
[  191.697866][ T7200] vivid-015: Colorspace: sRGB
[  191.714832][ T7200] vivid-015: Transfer Function: Default
[  191.720560][ T7200] vivid-015: Y'CbCr Encoding: Default
[  191.733651][ T7200] vivid-015: HSV Encoding: Hue 0-179
[  191.743763][ T7200] vivid-015: Quantization: Default
[  191.797733][ T7200] vivid-015: Apply Alpha To Red Only: false
[  191.843585][ T7200] vivid-015: Standard Aspect Ratio: 4x3
[  191.863756][ T7200] vivid-015: DV Timings Signal Mode: Current DV Timings inactive
[  191.903654][ T7200] vivid-015: DV Timings: 640x480p59 inactive
[  191.909820][ T7200] vivid-015: DV Timings Aspect Ratio: Source Width x Height
[  191.973710][ T7200] vivid-015: Maximum EDID Blocks: 2
[  191.978987][ T7200] vivid-015: Limited RGB Range (16-235): false
[  192.113254][ T7200] vivid-015: Rx RGB Quantization Range: Automatic
[  192.138530][ T7200] vivid-015: Power Present: 0x00000001
[  192.153722][ T7200] tpg source WxH: 320x240 (Y'CbCr)
[  192.163109][ T7200] tpg field: 1
[  192.170185][ T7200] tpg crop: (0,0)/320x240
[  192.177297][ T7200] tpg compose: (0,0)/320x240
[  192.182056][ T7200] tpg colorspace: 8
[  192.186809][ T7200] tpg transfer function: 0/0
[  192.191511][ T7200] tpg Y'CbCr encoding: 0/0
[  192.202291][ T7200] tpg quantization: 0/0
[  192.207000][ T7200] tpg RGB range: 0/2
[  192.211108][ T7200] vivid-015: ==================  END STATUS  ==================
[  192.717177][ T7232] FAULT_INJECTION: forcing a failure.
[  192.717177][ T7232] name failslab, interval 1, probability 0, space 0, times 0
[  192.731513][ T7232] CPU: 1 UID: 0 PID: 7232 Comm: syz.4.246 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  192.731554][ T7232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  192.731571][ T7232] Call Trace:
[  192.731581][ T7232]  <TASK>
[  192.731592][ T7232]  dump_stack_lvl+0x16c/0x1f0
[  192.731634][ T7232]  should_fail_ex+0x512/0x640
[  192.731671][ T7232]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  192.731708][ T7232]  should_failslab+0xc2/0x120
[  192.731747][ T7232]  __kmalloc_cache_noprof+0x6a/0x3e0
[  192.731778][ T7232]  ? loopback_open+0x145/0x13a0
[  192.731820][ T7232]  loopback_open+0x145/0x13a0
[  192.731857][ T7232]  snd_pcm_open_substream+0xa5d/0x17f0
[  192.731880][ T7232]  ? __pfx_snd_pcm_open_substream+0x10/0x10
[  192.731907][ T7232]  snd_pcm_oss_open+0x735/0x1400
[  192.731944][ T7232]  ? __pfx_snd_pcm_oss_open+0x10/0x10
[  192.731972][ T7232]  ? __lock_acquire+0xb97/0x1ce0
[  192.731997][ T7232]  ? __pfx_default_wake_function+0x10/0x10
[  192.732017][ T7232]  ? __lock_acquire+0xb97/0x1ce0
[  192.732045][ T7232]  ? do_raw_spin_lock+0x12c/0x2b0
[  192.732073][ T7232]  ? soundcore_open+0x35a/0x580
[  192.732098][ T7232]  ? __pfx_snd_pcm_oss_open+0x10/0x10
[  192.732127][ T7232]  soundcore_open+0x409/0x580
[  192.732151][ T7232]  ? __pfx_soundcore_open+0x10/0x10
[  192.732174][ T7232]  chrdev_open+0x231/0x6a0
[  192.732198][ T7232]  ? __pfx_chrdev_open+0x10/0x10
[  192.732222][ T7232]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  192.732247][ T7232]  do_dentry_open+0x97f/0x1530
[  192.732268][ T7232]  ? __pfx_chrdev_open+0x10/0x10
[  192.732296][ T7232]  vfs_open+0x82/0x3f0
[  192.732325][ T7232]  path_openat+0x1de4/0x2cb0
[  192.732354][ T7232]  ? __pfx_path_openat+0x10/0x10
[  192.732381][ T7232]  do_filp_open+0x20b/0x470
[  192.732413][ T7232]  ? __pfx_do_filp_open+0x10/0x10
[  192.732451][ T7232]  ? alloc_fd+0x471/0x7d0
[  192.732482][ T7232]  do_sys_openat2+0x11b/0x1d0
[  192.732510][ T7232]  ? __pfx_do_sys_openat2+0x10/0x10
[  192.732546][ T7232]  __x64_sys_openat+0x174/0x210
[  192.732575][ T7232]  ? __pfx___x64_sys_openat+0x10/0x10
[  192.732614][ T7232]  do_syscall_64+0xcd/0x490
[  192.732638][ T7232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.732659][ T7232] RIP: 0033:0x7f06b4f8ebe9
[  192.732675][ T7232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.732692][ T7232] RSP: 002b:00007f06b5d76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  192.732710][ T7232] RAX: ffffffffffffffda RBX: 00007f06b51b6090 RCX: 00007f06b4f8ebe9
[  192.732721][ T7232] RDX: 0000000000020942 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  192.732732][ T7232] RBP: 00007f06b5011e19 R08: 0000000000000000 R09: 0000000000000000
[  192.732742][ T7232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  192.732752][ T7232] R13: 00007f06b51b6128 R14: 00007f06b51b6090 R15: 00007ffe54a79598
[  192.732775][ T7232]  </TASK>
[  193.508161][ T7225] vivid-003: =================  START STATUS  =================
[  193.610068][ T7225] vivid-003: Radio HW Seek Mode: Bounded
[  193.634398][ T7225] vivid-003: Radio Programmable HW Seek: false
[  193.640641][ T7225] vivid-003: RDS Rx I/O Mode: Block I/O
[  193.745820][ T7225] vivid-003: Generate RBDS Instead of RDS: false
[  193.784876][ T7225] vivid-003: RDS Reception: true
[  193.790091][ T7225] vivid-003: RDS Program Type: 0 inactive
[  193.924935][ T7225] vivid-003: RDS PS Name:  inactive
[  194.065040][ T7225] vivid-003: RDS Radio Text:  inactive
[  194.071039][ T7225] vivid-003: RDS Traffic Announcement: false inactive
[  194.084345][ T7225] vivid-003: RDS Traffic Program: false inactive
[  194.098674][ T7225] vivid-003: RDS Music: false inactive
[  194.113001][ T7225] vivid-003: ==================  END STATUS  ==================
[  197.081035][ T7315] FAULT_INJECTION: forcing a failure.
[  197.081035][ T7315] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  197.106204][ T7314] netlink: 350 bytes leftover after parsing attributes in process `syz.4.258'.
[  197.148888][ T7315] CPU: 1 UID: 0 PID: 7315 Comm: syz.4.258 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  197.148916][ T7315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  197.148926][ T7315] Call Trace:
[  197.148932][ T7315]  <TASK>
[  197.148939][ T7315]  dump_stack_lvl+0x16c/0x1f0
[  197.148966][ T7315]  should_fail_ex+0x512/0x640
[  197.148995][ T7315]  should_fail_alloc_page+0xe7/0x130
[  197.149021][ T7315]  prepare_alloc_pages+0x3c2/0x610
[  197.149050][ T7315]  ? rcu_is_watching+0x12/0xc0
[  197.149071][ T7315]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  197.149093][ T7315]  ? css_rstat_updated+0x1c2/0x510
[  197.149113][ T7315]  ? __pfx_css_rstat_updated+0x10/0x10
[  197.149139][ T7315]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  197.149170][ T7315]  ? __lock_acquire+0x62e/0x1ce0
[  197.149198][ T7315]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  197.149226][ T7315]  ? policy_nodemask+0xea/0x4e0
[  197.149252][ T7315]  alloc_pages_mpol+0x1fb/0x550
[  197.149277][ T7315]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  197.149303][ T7315]  ? __lock_acquire+0x62e/0x1ce0
[  197.149329][ T7315]  folio_alloc_mpol_noprof+0x36/0x2f0
[  197.149358][ T7315]  vma_alloc_folio_noprof+0xed/0x1e0
[  197.149386][ T7315]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  197.149428][ T7315]  do_pte_missing+0x2230/0x3ba0
[  197.149447][ T7315]  ? find_held_lock+0x2b/0x80
[  197.149470][ T7315]  __handle_mm_fault+0x152a/0x2a50
[  197.149496][ T7315]  ? __pfx___handle_mm_fault+0x10/0x10
[  197.149517][ T7315]  ? __pte_offset_map_lock+0x174/0x310
[  197.149542][ T7315]  ? find_held_lock+0x2b/0x80
[  197.149566][ T7315]  ? follow_page_pte.constprop.0+0x5cf/0x1390
[  197.149599][ T7315]  handle_mm_fault+0x589/0xd10
[  197.149622][ T7315]  __get_user_pages+0x551/0x34a0
[  197.149659][ T7315]  ? __pfx___get_user_pages+0x10/0x10
[  197.149693][ T7315]  populate_vma_page_range+0x267/0x3f0
[  197.149723][ T7315]  ? __pfx_populate_vma_page_range+0x10/0x10
[  197.149752][ T7315]  ? __pfx_find_vma_intersection+0x10/0x10
[  197.149780][ T7315]  ? do_mmap+0x69c/0x1210
[  197.149808][ T7315]  __mm_populate+0x1d8/0x380
[  197.149838][ T7315]  ? __pfx___mm_populate+0x10/0x10
[  197.149868][ T7315]  ? up_write+0x1b2/0x520
[  197.149896][ T7315]  vm_mmap_pgoff+0x37f/0x470
[  197.149925][ T7315]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  197.149956][ T7315]  ? __x64_sys_futex+0x1e0/0x4c0
[  197.149978][ T7315]  ? __x64_sys_futex+0x1e9/0x4c0
[  197.150004][ T7315]  ksys_mmap_pgoff+0x7d/0x5c0
[  197.150028][ T7315]  ? xfd_validate_state+0x61/0x180
[  197.150059][ T7315]  __x64_sys_mmap+0x125/0x190
[  197.150089][ T7315]  do_syscall_64+0xcd/0x490
[  197.150114][ T7315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.150132][ T7315] RIP: 0033:0x7f06b4f8ebe9
[  197.150147][ T7315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.150164][ T7315] RSP: 002b:00007f06b5d76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  197.150181][ T7315] RAX: ffffffffffffffda RBX: 00007f06b51b6090 RCX: 00007f06b4f8ebe9
[  197.150193][ T7315] RDX: 00000000000000df RSI: 0000000000400007 RDI: 0000000000000000
[  197.150203][ T7315] RBP: 00007f06b5011e19 R08: ffffffffffffffff R09: 0000000000000000
[  197.150214][ T7315] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  197.150224][ T7315] R13: 00007f06b51b6128 R14: 00007f06b51b6090 R15: 00007ffe54a79598
[  197.150247][ T7315]  </TASK>
[  199.958976][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  199.965627][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  200.697782][ T7364] FAULT_INJECTION: forcing a failure.
[  200.697782][ T7364] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  200.734972][ T7364] CPU: 0 UID: 0 PID: 7364 Comm: syz.2.264 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  200.735020][ T7364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  200.735038][ T7364] Call Trace:
[  200.735048][ T7364]  <TASK>
[  200.735060][ T7364]  dump_stack_lvl+0x16c/0x1f0
[  200.735102][ T7364]  should_fail_ex+0x512/0x640
[  200.735152][ T7364]  should_fail_alloc_page+0xe7/0x130
[  200.735220][ T7364]  prepare_alloc_pages+0x3c2/0x610
[  200.735273][ T7364]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  200.735309][ T7364]  ? arch_stack_walk+0xa6/0x100
[  200.735359][ T7364]  ? stack_trace_save+0x8e/0xc0
[  200.735394][ T7364]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  200.735429][ T7364]  ? rcu_is_watching+0x12/0xc0
[  200.735473][ T7364]  ? kasan_save_track+0x14/0x30
[  200.735507][ T7364]  ? __kasan_slab_alloc+0x89/0x90
[  200.735542][ T7364]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[  200.735576][ T7364]  ? __pmd_alloc+0xbf/0x930
[  200.735617][ T7364]  ? __handle_mm_fault+0xa06/0x2a50
[  200.735644][ T7364]  ? handle_mm_fault+0x589/0xd10
[  200.735682][ T7364]  ? __get_user_pages+0x551/0x34a0
[  200.735723][ T7364]  ? populate_vma_page_range+0x267/0x3f0
[  200.735767][ T7364]  ? __mm_populate+0x1d8/0x380
[  200.735811][ T7364]  ? vm_mmap_pgoff+0x37f/0x470
[  200.735859][ T7364]  ? ksys_mmap_pgoff+0x7d/0x5c0
[  200.735899][ T7364]  ? __x64_sys_mmap+0x125/0x190
[  200.735944][ T7364]  ? do_syscall_64+0xcd/0x490
[  200.735981][ T7364]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  200.736029][ T7364]  ? policy_nodemask+0xea/0x4e0
[  200.736074][ T7364]  alloc_pages_mpol+0x1fb/0x550
[  200.736116][ T7364]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  200.736169][ T7364]  alloc_pages_noprof+0x131/0x390
[  200.736211][ T7364]  pte_alloc_one+0x1c/0x3a0
[  200.736243][ T7364]  __pte_alloc+0x6d/0x3c0
[  200.736283][ T7364]  ? __pfx___pte_alloc+0x10/0x10
[  200.736327][ T7364]  ? do_raw_spin_lock+0x12c/0x2b0
[  200.736378][ T7364]  do_pte_missing+0x285a/0x3ba0
[  200.736410][ T7364]  ? do_raw_spin_unlock+0x172/0x230
[  200.736457][ T7364]  ? _raw_spin_unlock+0x28/0x50
[  200.736487][ T7364]  ? __pmd_alloc+0x3fb/0x930
[  200.736534][ T7364]  __handle_mm_fault+0x152a/0x2a50
[  200.736579][ T7364]  ? __pfx___handle_mm_fault+0x10/0x10
[  200.736663][ T7364]  handle_mm_fault+0x589/0xd10
[  200.736707][ T7364]  __get_user_pages+0x551/0x34a0
[  200.736773][ T7364]  ? __pfx___get_user_pages+0x10/0x10
[  200.736836][ T7364]  populate_vma_page_range+0x267/0x3f0
[  200.736887][ T7364]  ? __pfx_populate_vma_page_range+0x10/0x10
[  200.736930][ T7364]  ? __pfx_find_vma_intersection+0x10/0x10
[  200.736974][ T7364]  ? do_mmap+0x69c/0x1210
[  200.737022][ T7364]  __mm_populate+0x1d8/0x380
[  200.737070][ T7364]  ? __pfx___mm_populate+0x10/0x10
[  200.737122][ T7364]  ? up_write+0x1b2/0x520
[  200.737171][ T7364]  vm_mmap_pgoff+0x37f/0x470
[  200.737219][ T7364]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  200.737272][ T7364]  ? __x64_sys_futex+0x1e0/0x4c0
[  200.737309][ T7364]  ? __x64_sys_futex+0x1e9/0x4c0
[  200.737352][ T7364]  ksys_mmap_pgoff+0x7d/0x5c0
[  200.737393][ T7364]  ? xfd_validate_state+0x61/0x180
[  200.737433][ T7364]  ? __pfx_ksys_write+0x10/0x10
[  200.737475][ T7364]  __x64_sys_mmap+0x125/0x190
[  200.737526][ T7364]  do_syscall_64+0xcd/0x490
[  200.737567][ T7364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.737598][ T7364] RIP: 0033:0x7fb37378ebe9
[  200.737625][ T7364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.737662][ T7364] RSP: 002b:00007fb3745cc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  200.737693][ T7364] RAX: ffffffffffffffda RBX: 00007fb3739b5fa0 RCX: 00007fb37378ebe9
[  200.737712][ T7364] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  200.737731][ T7364] RBP: 00007fb373811e19 R08: 0000000000000002 R09: 0000000000008000
[  200.737750][ T7364] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  200.737767][ T7364] R13: 00007fb3739b6038 R14: 00007fb3739b5fa0 R15: 00007ffd2e63a1b8
[  200.737809][ T7364]  </TASK>
[  201.625593][ T7367] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  201.632808][ T7367] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  201.759711][ T7367] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  201.938412][ T7367] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  201.959196][ T7367] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  202.040746][ T7367] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  202.091963][ T7367] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  202.267036][ T7367] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  202.269877][ T7388] FAULT_INJECTION: forcing a failure.
[  202.269877][ T7388] name failslab, interval 1, probability 0, space 0, times 0
[  202.274434][ T7367] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  202.306798][ T7388] CPU: 0 UID: 0 PID: 7388 Comm: syz.4.268 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  202.306841][ T7388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  202.306863][ T7388] Call Trace:
[  202.306873][ T7388]  <TASK>
[  202.306885][ T7388]  dump_stack_lvl+0x16c/0x1f0
[  202.306927][ T7388]  should_fail_ex+0x512/0x640
[  202.306974][ T7388]  should_failslab+0xc2/0x120
[  202.307013][ T7388]  __kmalloc_cache_noprof+0x6a/0x3e0
[  202.307046][ T7388]  ? sctp_add_bind_addr+0xae/0x3f0
[  202.307080][ T7388]  sctp_add_bind_addr+0xae/0x3f0
[  202.307113][ T7388]  sctp_copy_local_addr_list+0x349/0x550
[  202.307152][ T7388]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  202.307191][ T7388]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  202.307228][ T7388]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  202.307276][ T7388]  sctp_bind_addr_copy+0xe0/0x530
[  202.307323][ T7388]  sctp_connect_new_asoc+0x1c9/0x770
[  202.307367][ T7388]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  202.307416][ T7388]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  202.307462][ T7388]  sctp_sendmsg+0x1560/0x1e10
[  202.307515][ T7388]  ? __pfx_sctp_sendmsg+0x10/0x10
[  202.307550][ T7388]  ? __pfx___might_resched+0x10/0x10
[  202.307591][ T7388]  ? aa_sk_perm+0x2f4/0xb10
[  202.307632][ T7388]  ? __pfx_aa_sk_perm+0x10/0x10
[  202.307664][ T7388]  ? __might_fault+0xe3/0x190
[  202.307709][ T7388]  ? __pfx_sctp_sendmsg+0x10/0x10
[  202.307750][ T7388]  inet_sendmsg+0x119/0x140
[  202.307782][ T7388]  __sys_sendto+0x43c/0x520
[  202.307816][ T7388]  ? __pfx___sys_sendto+0x10/0x10
[  202.307886][ T7388]  ? ksys_write+0x1ac/0x250
[  202.307919][ T7388]  ? __pfx_ksys_write+0x10/0x10
[  202.307958][ T7388]  __x64_sys_sendto+0xe0/0x1c0
[  202.307989][ T7388]  ? do_syscall_64+0x91/0x490
[  202.308025][ T7388]  ? lockdep_hardirqs_on+0x7c/0x110
[  202.308059][ T7388]  do_syscall_64+0xcd/0x490
[  202.308097][ T7388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.308126][ T7388] RIP: 0033:0x7f06b4f8ebe9
[  202.308150][ T7388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.308176][ T7388] RSP: 002b:00007f06b5d97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  202.308204][ T7388] RAX: ffffffffffffffda RBX: 00007f06b51b5fa0 RCX: 00007f06b4f8ebe9
[  202.308224][ T7388] RDX: 0000000000000401 RSI: 0000000000000000 RDI: 0000000000000003
[  202.308241][ T7388] RBP: 00007f06b5d97090 R08: 0000200000000000 R09: 000000000000001c
[  202.308260][ T7388] R10: 000000000000007f R11: 0000000000000246 R12: 0000000000000002
[  202.308278][ T7388] R13: 00007f06b51b6038 R14: 00007f06b51b5fa0 R15: 00007ffe54a79598
[  202.308326][ T7388]  </TASK>
[  202.696975][ T7367] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  202.707331][ T7367] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  202.779200][ T7367] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  202.895652][ T7367] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  203.644131][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  203.949719][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  204.275746][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  204.282850][ T7418] netlink: 342 bytes leftover after parsing attributes in process `syz.3.274'.
[  204.334371][ T7418] netlink: 302 bytes leftover after parsing attributes in process `syz.3.274'.
[  204.771722][   T51] Bluetooth: hci4: command 0x0c1a tx timeout
[  205.733411][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  206.030776][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  206.351159][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  206.836237][   T51] Bluetooth: hci4: command 0x0c1a tx timeout
[  207.068043][ T7450] netlink: 28 bytes leftover after parsing attributes in process `syz.4.282'.
[  207.706120][ T7478] ecryptfs_miscdev_write: Minimum acceptable packet size is [14], but amount of data written is only [5]. Discarding response packet.
[  207.797321][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  208.111747][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  208.435520][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  208.912509][   T51] Bluetooth: hci4: command 0x0c1a tx timeout
[  209.622928][ T7503] zswap: compressor  not available
[  210.206086][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  210.349804][ T7532] netlink: 'syz.4.295': attribute type 1 has an invalid length.
[  210.904627][ T7547] [U] -
[  210.940633][ T7547] capability: warning: `syz.3.298' uses 32-bit capabilities (legacy support in use)
[  211.211271][ T7546] [U] 
[  212.282821][ T5875] udevd[5875]: inotify_add_watch(7, /dev/nbd4128, 10) failed: No such file or directory
[  213.379822][   T51] Bluetooth: hci3: unexpected event 0x03 length: 725 > 11
[  214.215196][ T7612] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6
[  214.361907][ T7620] netlink: 8 bytes leftover after parsing attributes in process `syz.3.312'.
[  215.446532][ T5185] Bluetooth: hci4: unexpected event for opcode 0x7c89
[  215.955831][   T51] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  216.151787][ T7651] ubi0: attaching mtd0
[  216.157757][ T7651] ubi0: scanning is finished
[  216.422520][ T7651] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4
[  216.809681][   T30] audit: type=1800 audit(1754888940.542:4): pid=7665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.322" name="members" dev="configfs" ino=15447 res=0 errno=0
[  216.987828][ T7673] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  218.100427][ T7692] ubi0: attaching mtd0
[  218.115528][ T7692] ubi0: scanning is finished
[  218.144023][ T7693] bond0: option all_slaves_active: invalid value (
)
[  218.325644][ T7684] ima: policy update failed
[  218.346831][   T30] audit: type=1802 audit(1754888942.061:5): pid=7684 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.327" res=0 errno=0
[  218.400067][ T7692] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  218.408129][ T7692] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  218.416817][ T7692] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  218.424002][ T7692] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  218.526275][ T7692] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  218.534754][ T7692] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  218.569925][ T7692] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 4260517564
[  218.617054][ T7692] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  218.629392][ T7699] ubi0: background thread "ubi_bgt0d" started, PID 7699
[  219.061998][ T7704] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7
[  219.393470][ T7583] ------------[ cut here ]------------
[  219.399810][ T7583] ODEBUG: free active (active state 0) object: ffff888025945358 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0
[  219.528427][ T7583] WARNING: CPU: 0 PID: 7583 at lib/debugobjects.c:612 debug_print_object+0x1a2/0x2b0
[  219.538386][ T7583] Modules linked in:
[  219.542437][ T7583] CPU: 0 UID: 0 PID: 7583 Comm: syz.3.304 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  219.554203][ T7583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  219.564482][ T7583] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  219.570450][ T7583] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd e0 39 16 8c 4c 89 e6 48 c7 c7 60 2e 16 8c e8 ff 40 92 fc 90 <0f> 0b 90 90 58 83 05 16 dd c3 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  219.591142][ T7583] RSP: 0018:ffffc90002ec7798 EFLAGS: 00010286
[  219.597907][ T7583] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a02c8
[  219.605920][ T7583] RDX: ffff88801f7d1e00 RSI: ffffffff817a02d5 RDI: 0000000000000001
[  219.614265][ T7583] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  219.622294][ T7583] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8c163500
[  219.630484][ T7583] R13: ffffffff8bafec00 R14: ffffffff8a9a0a80 R15: ffffc90002ec7898
[  219.638620][ T7583] FS:  0000000000000000(0000) GS:ffff8881246c6000(0000) knlGS:0000000000000000
[  219.647628][ T7583] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  219.654219][ T7583] CR2: 0000000000000000 CR3: 000000005ecb6000 CR4: 00000000003526f0
[  219.662230][ T7583] Call Trace:
[  219.665511][ T7583]  <TASK>
[  219.668483][ T7583]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  219.674141][ T7583]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  219.680051][ T7583]  debug_check_no_obj_freed+0x4b7/0x600
[  219.685997][ T7583]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  219.692409][ T7583]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  219.698764][ T7583]  ? ida_free+0x202/0x2e0
[  219.703217][ T7583]  ? __pfx_ida_free+0x10/0x10
[  219.708185][ T7583]  kfree+0x28f/0x4d0
[  219.712098][ T7583]  ? hci_release_dev+0x4ef/0x610
[  219.717051][ T7583]  hci_release_dev+0x4ef/0x610
[  219.722315][ T7583]  ? __pfx_hci_release_dev+0x10/0x10
[  219.727682][ T7583]  ? rcu_is_watching+0x12/0xc0
[  219.732551][ T7583]  ? kfree+0x24f/0x4d0
[  219.736813][ T7583]  bt_host_release+0x6a/0xb0
[  219.741498][ T7583]  ? __pfx_bt_host_release+0x10/0x10
[  219.746789][ T7583]  device_release+0xa4/0x240
[  219.751527][ T7583]  kobject_put+0x1e7/0x5a0
[  219.756059][ T7583]  ? __pfx_vhci_release+0x10/0x10
[  219.761201][ T7583]  put_device+0x1f/0x30
[  219.765890][ T7583]  vhci_release+0x81/0xf0
[  219.770279][ T7583]  __fput+0x3ff/0xb70
[  219.774296][ T7583]  task_work_run+0x150/0x240
[  219.779010][ T7583]  ? __pfx_task_work_run+0x10/0x10
[  219.784437][ T7583]  do_exit+0x86f/0x2bf0
[  219.789202][ T7583]  ? proc_coredump_connector+0x2d1/0x4f0
[  219.794966][ T7583]  ? __pfx_do_exit+0x10/0x10
[  219.800625][ T7583]  do_group_exit+0xd3/0x2a0
[  219.805199][ T7583]  get_signal+0x2673/0x26d0
[  219.809967][ T7583]  ? force_sig_fault+0xc4/0x100
[  219.814919][ T7583]  ? __pfx_get_signal+0x10/0x10
[  219.820111][ T7583]  arch_do_signal_or_restart+0x8f/0x790
[  219.825890][ T7583]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  219.832075][ T7583]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  219.838285][ T7583]  irqentry_exit_to_user_mode+0x12a/0x270
[  219.844067][ T7583]  asm_exc_page_fault+0x26/0x30
[  219.848962][ T7583] RIP: 0033:0x21000
[  219.852781][ T7583] Code: Unable to access opcode bytes at 0x20fd6.
[  219.859396][ T7583] RSP: 002b:000000000000000a EFLAGS: 00010202
[  219.865517][ T7583] RAX: 0000000000000000 RBX: 00007f10e4bb5fa0 RCX: 00007f10e498ebe9
[  219.873549][ T7583] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  219.881565][ T7583] RBP: 00007f10e4a11e19 R08: 0000000000000002 R09: 0000000000000000
[  219.889969][ T7583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  219.898305][ T7583] R13: 00007f10e4bb6038 R14: 00007f10e4bb5fa0 R15: 00007ffc97ffbc88
[  219.906783][ T7583]  </TASK>
[  219.909974][ T7583] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  219.917258][ T7583] CPU: 0 UID: 0 PID: 7583 Comm: syz.3.304 Not tainted 6.16.0-syzkaller-12288-g2b38afce25c4 #0 PREEMPT(full) 
[  219.928813][ T7583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  219.938885][ T7583] Call Trace:
[  219.942256][ T7583]  <TASK>
[  219.945303][ T7583]  dump_stack_lvl+0x3d/0x1f0
[  219.949932][ T7583]  vpanic+0x6e8/0x7a0
[  219.953930][ T7583]  ? __pfx_vpanic+0x10/0x10
[  219.958456][ T7583]  ? debug_print_object+0x1a2/0x2b0
[  219.963679][ T7583]  panic+0xca/0xd0
[  219.967406][ T7583]  ? __pfx_panic+0x10/0x10
[  219.971889][ T7583]  ? check_panic_on_warn+0x1f/0xb0
[  219.977013][ T7583]  check_panic_on_warn+0xab/0xb0
[  219.981964][ T7583]  __warn+0xf6/0x3c0
[  219.985869][ T7583]  ? debug_print_object+0x1a2/0x2b0
[  219.991071][ T7583]  report_bug+0x3c3/0x580
[  219.995418][ T7583]  ? debug_print_object+0x1a2/0x2b0
[  220.000619][ T7583]  handle_bug+0x184/0x210
[  220.004978][ T7583]  exc_invalid_op+0x17/0x50
[  220.009507][ T7583]  asm_exc_invalid_op+0x1a/0x20
[  220.014369][ T7583] RIP: 0010:debug_print_object+0x1a2/0x2b0
[  220.020182][ T7583] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 54 41 56 48 8b 14 dd e0 39 16 8c 4c 89 e6 48 c7 c7 60 2e 16 8c e8 ff 40 92 fc 90 <0f> 0b 90 90 58 83 05 16 dd c3 0b 01 48 83 c4 18 5b 5d 41 5c 41 5d
[  220.039949][ T7583] RSP: 0018:ffffc90002ec7798 EFLAGS: 00010286
[  220.046052][ T7583] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff817a02c8
[  220.054144][ T7583] RDX: ffff88801f7d1e00 RSI: ffffffff817a02d5 RDI: 0000000000000001
[  220.062208][ T7583] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  220.070196][ T7583] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8c163500
[  220.078251][ T7583] R13: ffffffff8bafec00 R14: ffffffff8a9a0a80 R15: ffffc90002ec7898
[  220.086346][ T7583]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  220.091840][ T7583]  ? __warn_printk+0x198/0x350
[  220.096623][ T7583]  ? __warn_printk+0x1a5/0x350
[  220.101414][ T7583]  ? debug_print_object+0x1a1/0x2b0
[  220.106737][ T7583]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  220.112248][ T7583]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  220.118091][ T7583]  debug_check_no_obj_freed+0x4b7/0x600
[  220.123683][ T7583]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  220.129767][ T7583]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  220.135622][ T7583]  ? ida_free+0x202/0x2e0
[  220.140056][ T7583]  ? __pfx_ida_free+0x10/0x10
[  220.144774][ T7583]  kfree+0x28f/0x4d0
[  220.148696][ T7583]  ? hci_release_dev+0x4ef/0x610
[  220.153758][ T7583]  hci_release_dev+0x4ef/0x610
[  220.158574][ T7583]  ? __pfx_hci_release_dev+0x10/0x10
[  220.163929][ T7583]  ? rcu_is_watching+0x12/0xc0
[  220.168733][ T7583]  ? kfree+0x24f/0x4d0
[  220.172845][ T7583]  bt_host_release+0x6a/0xb0
[  220.177481][ T7583]  ? __pfx_bt_host_release+0x10/0x10
[  220.182794][ T7583]  device_release+0xa4/0x240
[  220.187405][ T7583]  kobject_put+0x1e7/0x5a0
[  220.191863][ T7583]  ? __pfx_vhci_release+0x10/0x10
[  220.196934][ T7583]  put_device+0x1f/0x30
[  220.201112][ T7583]  vhci_release+0x81/0xf0
[  220.205550][ T7583]  __fput+0x3ff/0xb70
[  220.209578][ T7583]  task_work_run+0x150/0x240
[  220.214200][ T7583]  ? __pfx_task_work_run+0x10/0x10
[  220.219353][ T7583]  do_exit+0x86f/0x2bf0
[  220.223557][ T7583]  ? proc_coredump_connector+0x2d1/0x4f0
[  220.229293][ T7583]  ? __pfx_do_exit+0x10/0x10
[  220.233927][ T7583]  do_group_exit+0xd3/0x2a0
[  220.238471][ T7583]  get_signal+0x2673/0x26d0
[  220.243010][ T7583]  ? force_sig_fault+0xc4/0x100
[  220.247878][ T7583]  ? __pfx_get_signal+0x10/0x10
[  220.252934][ T7583]  arch_do_signal_or_restart+0x8f/0x790
[  220.258498][ T7583]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  220.264591][ T7583]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  220.270782][ T7583]  irqentry_exit_to_user_mode+0x12a/0x270
[  220.276547][ T7583]  asm_exc_page_fault+0x26/0x30
[  220.281411][ T7583] RIP: 0033:0x21000
[  220.285834][ T7583] Code: Unable to access opcode bytes at 0x20fd6.
[  220.292263][ T7583] RSP: 002b:000000000000000a EFLAGS: 00010202
[  220.298360][ T7583] RAX: 0000000000000000 RBX: 00007f10e4bb5fa0 RCX: 00007f10e498ebe9
[  220.306540][ T7583] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  220.314538][ T7583] RBP: 00007f10e4a11e19 R08: 0000000000000002 R09: 0000000000000000
[  220.322543][ T7583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  220.330544][ T7583] R13: 00007f10e4bb6038 R14: 00007f10e4bb5fa0 R15: 00007ffc97ffbc88
[  220.338889][ T7583]  </TASK>
[  220.342320][ T7583] Kernel Offset: disabled
[  220.346653][ T7583] Rebooting in 86400 seconds..