last executing test programs:
2m39.133992187s ago: executing program 3 (id=2243):
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x80000001, 0x8)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x20)
recvfrom$auto(0x3, 0x0, 0x8000000010, 0x8, 0x0, 0xfffffffffffffffd)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0x200100)
close_range$auto(0xffffffffffffffff, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x12800d, 0x80000000000000df, 0xeb1, r0, 0x8000)
mmap$auto(0xffffffffffffff80, 0x20000a00004, 0x400002, 0x15, 0x602, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x2, 0x8000)
open(0x0, 0x22240, 0x155)
sysfs$auto(0x2, 0xe, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r1 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r1, 0x40146f2c, 0x0)
r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x403c6f2b, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x3f)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x96141, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0F:00/status\x00', 0xa140, 0x0)
r3 = socket(0x23, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000b00), r3)
2m38.519771368s ago: executing program 3 (id=2244):
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x6, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}}, 0x4, 0x4008)
setsockopt$auto(0xffffffffffffffff, 0x1, 0xc, 0x0, 0x7fffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/disk\x00', 0xc0082, 0x0)
write$auto(r0, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcdz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf\x00'/478, 0xb)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\xf8\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')
socket(0xa, 0x1, 0x6)
socket(0x23, 0x80805, 0x0)
io_uring_setup$auto(0x3, 0x0)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), 0xffffffffffffffff)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', 0x0, 0x10000, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80200", @ANYRES8, @ANYBLOB="01002dbd7000fcdbdf25010000000c0002000500000000000000c5000700c1007cf7c27c120e3984130834a73f9221887ac28e443c4a1a7da8d2ddcf2890cce5822826764f3f410e53f43f30"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x2400c090)
2m37.358585505s ago: executing program 3 (id=2249):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mremap$auto(0x110c231000, 0x4, 0x4, 0x7, 0x100000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket(0xa, 0x2, 0x73)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000400)='/dev/snd/pcmC0D0c\x00', 0x1200, 0x0)
fcntl$auto_F_DUPFD_CLOEXEC(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
mknod$auto(0x0, 0x7, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x9)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
socket(0x28, 0x5, 0x0)
unshare$auto(0x40000080)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
socket(0x1, 0x1, 0x0)
bind$auto(0x3, 0x0, 0x6b)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sr0\x00', 0x60742, 0x0)
mmap$auto(0x0, 0x10000, 0xde, 0x11, r2, 0x28000)
connect$auto(0x3, 0x0, 0x6b)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\xff\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\tfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7t\xee\xc9\x00'/226, 0x40fded, 0x81)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x5, 0x1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mknod$auto(&(0x7f0000001040)=':,\x00', 0xca, 0xfffffffa)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f00000010c0), 0xffffffffffffffff)
r3 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r3, &(0x7f0000000040)=""/4096, 0xfffffe82)
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, &(0x7f0000001300)=&(0x7f0000001080)='\x8c\x82\xa5')
2m36.680557505s ago: executing program 3 (id=2252):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xb5f0, 0x7352, 0x36, 0x65f, 0x80000001, 0x7, 0x3, 0x2, 0x9, 0x7, 0x0, 0x4, 0xb4, 0x3, 0x9, 0x10003, 0x80, 0x8, 0x0, 0x7, 0x2000, 0x3, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0xc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x5)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x20005, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x801, 0x84)
r0 = socket(0x2, 0x3, 0x1)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x7, @local}, 0x55)
capget$auto(0x0, 0xfffffffffffffffe)
getsid$auto(0x0)
setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x8)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00'], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
accept4$auto(r1, &(0x7f0000000040)=@xdp={0x2c, 0x3, 0x0, 0x1d}, &(0x7f0000000080)=0x2, 0x5)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1f, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x2, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3b, 0x6, 0x0, 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/loop4\x00', 0xc040, 0x0)
ioctl$auto(0x3, 0x1, 0x90000800000402)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x1d, 0x2, 0x2)
connect$auto(0x5, 0x0, 0x9)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYRES16=r3, @ANYRESOCT], 0x38}, 0x1, 0x0, 0x0, 0x2c050811}, 0x10)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0)
2m35.681512407s ago: executing program 3 (id=2254):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xb5f0, 0x7352, 0x36, 0x65f, 0x80000001, 0x7, 0x3, 0x2, 0x9, 0x7, 0x0, 0x4, 0xb4, 0x3, 0x9, 0x10003, 0x80, 0x8, 0x0, 0x7, 0x2000, 0x3, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, [0xc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0x5)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
mmap$auto(0x0, 0x20005, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x801, 0x84)
r0 = socket(0x2, 0x3, 0x1)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x7, @local}, 0x55)
capget$auto(0x0, 0xfffffffffffffffe)
getsid$auto(0x0)
setsockopt$auto(0x3, 0x10000000084, 0x1e, 0x0, 0x8)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00'], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r1 = socket(0x10, 0x2, 0x0)
accept4$auto(r1, &(0x7f0000000040)=@xdp={0x2c, 0x3, 0x0, 0x1d}, &(0x7f0000000080)=0x2, 0x5)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1f, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket(0x2, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3b, 0x6, 0x0, 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/loop4\x00', 0xc040, 0x0)
ioctl$auto(0x3, 0x1, 0x90000800000402)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x1d, 0x2, 0x2)
connect$auto(0x5, 0x0, 0x9)
sendmsg$auto_HSR_C_GET_NODE_STATUS(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYRES16=r3, @ANYRESOCT], 0x38}, 0x1, 0x0, 0x0, 0x2c050811}, 0x10)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/pm_async\x00', 0x183941, 0x0)
2m34.74871314s ago: executing program 3 (id=2258):
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x6, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}}, 0x4, 0x4008)
setsockopt$auto(0xffffffffffffffff, 0x1, 0xc, 0x0, 0x7fffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/disk\x00', 0xc0082, 0x0)
write$auto(r0, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcdz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf\x00'/478, 0xb)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0xe1ee815847af655a)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\xf8\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')
socket(0xa, 0x1, 0x6)
socket(0x23, 0x80805, 0x0)
io_uring_setup$auto(0x3, 0x0)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), r2)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', 0x0, 0x10000, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80200", @ANYRES8, @ANYBLOB="01002dbd7000fcdbdf25010000000c0002000500000000000000c5000700c1007cf7c27c120e3984130834a73f9221887ac28e443c4a1a7da8d2ddcf2890cce5822826764f3f410e53f43f30"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x2400c090)
2m30.779438237s ago: executing program 0 (id=2269):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x22, 0x3, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/logsyscall\x00', 0x20a42, 0x0)
init_module$auto(0x0, 0xffff9, 0x0)
pselect6$auto(0x9, &(0x7f0000000000)={[0x8, 0x1, 0x0, 0x6, 0x8001, 0xfffffffffffff000, 0x200fff, 0x9, 0xcf1, 0x100000003, 0x8000000000000001, 0x0, 0x2f, 0x4002, 0x8000000000000002, 0xfffffffffffffffe]}, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
syz_clone3(&(0x7f0000000100)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x11, 0x3, 0x0)
r1 = open(&(0x7f0000000200)='./file0\x00', 0x1882c2, 0x78e22799f4a46f1c)
flock$auto(r1, 0x6)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e)
flock$auto(r2, 0x1)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e)
flock$auto(r3, 0x2)
socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000001900), 0xffffffffffffffff)
sendmmsg$auto(r1, &(0x7f0000000180)={{0x0, 0x0, &(0x7f00000001c0)={0x0, 0xdc2}, 0x4, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
close_range$auto(r0, 0xffffffffffffffff, 0x0)
2m30.099847271s ago: executing program 0 (id=2270):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketcall$auto(0x8000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0xa, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
ioctl$auto_EVIOCGRAB(r1, 0x40044590, &(0x7f0000000000)=0x2)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0x10, 0x0, 0x0, &(0x7f00000001c0)={[0x1ff, 0x4, 0xd3e, 0x1, 0xa, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x5, 0x80000001, 0x7fff, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x206, 0x7, 0xfffffffffffffff6, 0x7, 0x9, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0)
2m28.488281445s ago: executing program 0 (id=2273):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x6, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181500, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/compaction_proactiveness\x00', 0x40001, 0x0)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto(0xa, 0x2, 0x13, 0x21)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
write$auto(r1, 0x0, 0x5)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0xf7}, 0x7)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x27ffe)
mmap$auto(0x101, 0x1000000002020009, 0x80000000000004, 0xeb5, 0xffffffffffffffff, 0x6)
2m27.33531176s ago: executing program 0 (id=2275):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/43:256/strict_limit\x00', 0xa022, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x15, r0, 0x8000)
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/version\x00', 0x40802, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0x20400, 0x0)
r2 = openat$auto_mon_fops_stat_usb_mon(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/usb/usbmon/12s\x00', 0x80000, 0x0)
close_range$auto(r1, r2, 0x1)
r3 = epoll_create$auto(0x3e)
ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f00000000c0)="64a3d249864821621bbbc74c0d032a62f9a7906e68e93f")
epoll_ctl$auto(r3, 0x1, r1, 0x0)
2m26.457414428s ago: executing program 0 (id=2276):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000180)='/dev/admmidi2\x00', 0x88042, 0x0)
read$auto(r0, 0x0, 0x20)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x8002, 0x0)
close_range$auto(0x2, 0x8, 0x4000000)
2m25.6182295s ago: executing program 0 (id=2280):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x10000ffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lsm_get_self_attr$auto(0x68, 0x0, &(0x7f0000002440)=0x8, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/udp_early_demux\x00', 0x28802, 0x0)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r0, 0x0, 0xc70)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f0000000440)={0x84844000, 0x0, 0x0, 0x0, {0x26}, 0x0, 0x0, 0x0, 0x0}, 0x58)
readahead$auto(0xffffffffffffffff, 0x7, 0x0)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f0000000180)=""/253, 0xfd)
read$auto(r3, 0x0, 0x20)
write$auto(r2, 0x0, 0x1)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f0000000900)=""/4096, 0x1000)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
2m21.642967118s ago: executing program 1 (id=2293):
close_range$auto(0x2, 0xa, 0x0)
io_uring_setup$auto(0x6, 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0x8, 0x2)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000180)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x9, 0x0, 0x4000000000007, 0xa505}}, 0x4, 0x4008)
setsockopt$auto(0xffffffffffffffff, 0x1, 0xc, 0x0, 0x7fffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/disk\x00', 0xc0082, 0x0)
write$auto(r0, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcdz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf\x00'/478, 0xb)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0xe1ee815847af655a)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\xf8\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')
socket(0xa, 0x1, 0x6)
socket(0x23, 0x80805, 0x0)
io_uring_setup$auto(0x3, 0x0)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), r2)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', 0x0, 0x10000, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80200", @ANYRES8, @ANYBLOB="01002dbd7000fcdbdf25010000000c0002000500000000000000c5000700c1007cf7c27c120e3984130834a73f9221887ac28e443c4a1a7da8d2ddcf2890cce5822826764f3f410e53f43f30"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x2400c090)
2m21.278266783s ago: executing program 1 (id=2294):
r0 = socket(0x26, 0x80805, 0x0)
mmap$auto(0x80000000000000, 0x2020009, 0x5, 0x19, r0, 0x0)
r1 = socket(0xa, 0x801, 0x84)
mmap$auto(0x0, 0x202000b, 0x9, 0xeb1, 0xffffffffffffffff, 0x8000)
bind$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
setsockopt$auto(r1, 0x1, 0x9, 0x0, 0x4)
write$auto(0x3, 0x0, 0xffd8)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/tty34\x00', 0x620880, 0x0)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/controlC1\x00', 0x80, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
seccomp$auto(0x7, 0x400, &(0x7f0000000000)="67742e0f356f1653f306c5a08cfc9111699edb97c3819f6941493ab4961b8171be7bd4cadd1004a1bbce34da76df549f3ecc3f97cd074f3ca1fa4e321f8e7fe43b6bba9fb333406f8f")
r4 = socketpair$auto(0x1, 0x1, 0x1, 0x0)
newfstatat$auto(r4, 0x0, 0x0, 0xfffffffe)
name_to_handle_at$auto(0xffffffffffffffff, &(0x7f00000000c0)='/\x00R\xa6\x00\xc8\xda\xdc\xb1\xb4#\xe4\xeb\xe1e/\x1b/\xb9L\xc6P\x82\xba\x90@\xb8\xb5\xb1\xe8\"\x88s\xdf\x15\xaa\x18\xa9\x86\xc7\x87g>8\xae\x99\xd4~\xc6\xa7\\\xcc\xfeV\x83\f\xdc\xdc~\x8e\xd5\x18\x13\x16\xc5\x93E\x10\xcb\x1c\x02\x00\xd2\xa4_\xa3\xdcS\xe2\xe2\xc6\x85p\xfa\xc3/G\x86\xea\x9f\xb0\x9a\xcc6\x1a\x06\x91\x9f\xcfC\xedU\x00f`\x02\x04\xef\xfe\x10\xec\x17\x83%K\x04\xd5s\x86\xe4\x9d\x15\f\x8c\xd9wj\xe5t\x82o7\xc05ul\xacU\xbf\xc0\xfe\xb4\xd7\t\xe0s]\xcd\xac\x87\xa5\xa6.t\xa9\xe8\xa6>\xf2\xd0\xb1\x83\x83\x91\a\xdc\xe9\xaa\x1dx\x06\xa77\xd6\xe1\xe9\x94\xb9Xi\xbbv_\x9a_bv%\xcb\xc7\xdd\xa3\xb4\tpr%\xdf\xc9\x06\xa2\xe7\xe1\xde\x16\xf7\x03x\xf8\v\v\x1a\xfcm\x87r\xc1\b\xca\x97\xb0\xeb\xd6F\x8f^\x94\xdf\x9ax\xf4\x03e[l\xa5', 0x0, 0x0, 0x1001)
r5 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_VHOST_NET_SET_BACKEND(r5, 0x4008af30, 0x0)
ioctl$auto(r3, 0x80dc5521, r2)
signalfd4$auto(0xffffffffffffffff, 0x0, 0x8, 0x800)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0x20000000)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
socket(0x11, 0x80003, 0x6)
socket(0x11, 0x80003, 0x300)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/net/ptype\x00', 0x101000, 0x0)
pread64$auto(r6, 0x0, 0x8, 0xffff)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1441, 0x0)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, r3, 0x6)
socket(0xa, 0x5, 0x0)
2m21.179931724s ago: executing program 1 (id=2295):
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x80000001, 0x8)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
read$auto(0xffffffffffffffff, 0x0, 0x20)
r0 = seccomp$auto(0x4, 0x40, &(0x7f0000000000)="16d765c639fe9e8ff2653367fc67eaa3fe275856d4db602b7ec55ee3c00e1796108dff66f6ea5741cdf554024475a6")
recvfrom$auto(r0, 0x0, 0xd, 0x6, 0x0, 0xfffffffffffffffd)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x3, 0x100)
userfaultfd$auto(0x5)
r1 = eventfd2$auto(0x6af3, 0x800)
socket(0xa, 0x3, 0xff)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
writev$auto(r1, &(0x7f0000000100)={0x0, 0x8}, 0x40000000008)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = socket(0x28, 0x3, 0x7fffffff)
fsync$auto(r2)
r3 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x82802, 0x0)
write$auto(r3, &(0x7f0000000280)='S\x00\x00\x00\xfe\xff\xff\xff\xdf\x9e\xf4\x14\xd2d2\xc4\x97\xde0\xb1\x85\xc6vHI\x8bMJ}\x8d\xc1\x94D\xdbSt/\xdd\xb5\fnW{\x00^:\x80\xb5\xdd\x8d\x1e\x96\xdf\xcb\xac\xbfB\xb3\xba\x9a\x02\xeaZ\xb9Rg\"\x87\x9e\x9c\xb3\xac\x16\xa3g\xad\xf7<\xc5c\xfa2\x97,O\xb2\xe3\xad\xe0v\x13\x1dc\xbf\x95[p\x15\xf6\xa8\xd0*\xee\xcdX\x1dM\xe3\x8cT\xc6\x1dj\xe8\xc1\xc0\x85cp\xad\v,O\xb8\x9b\xd8\xe0\x964/\x8fQ\xaf\x13\xd7\xf14\x85\xe8\x0f\'\xc4\xe3\x1c', 0x808587)
select$auto(0x8, &(0x7f00000000c0)={[0x800eedc, 0x7, 0x4, 0x9, 0x6, 0x1ff, 0x7, 0x8001, 0x4, 0x4618ecd2, 0x0, 0x10001, 0x4, 0x9a8c, 0x7, 0x10001]}, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendfile$auto(r4, r4, 0x0, 0x7ffff003)
vmsplice$auto(0x2, &(0x7f00000000c0)={0x0, 0x7ff}, 0x8000000000000001, 0x0)
write$auto(0x1, 0x0, 0x80000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
2m21.065324983s ago: executing program 1 (id=2297):
r0 = socket(0x25, 0x1, 0x0)
sendto$auto(r0, 0x0, 0x0, 0x0, 0x0, 0x3)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x180b03, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mount$auto(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='hfs\x00\x81\xe2\xde\xa8\xb7\xc4G[*}\xaa{\xf1\x86\xf7d@\xe8Y\xea\xb1H\x01\xff\"^\'6\xba\xa9s\x1d\xf4\xe1i\xc5\xb6_B\xa7KFS\xc1\xa7\x8e*h\xe3\x8b\x7f\xca\xfcNEi\x84?\x82\xff\xf2\xac\xd1\xee\xf4\x9a?\xac\x11\x88\aO\x84\xe6k\a\x9bY\xddx\xb8\xdf\vHv\xb5\f\xbc\b\xc0\xfa\xc0\xfe\xa6\xce\xbd\x03\x00\x93\xdc4\x97\xce\xd5&\x93\xae\x05q\xe9\xa8?\x00\xbdi\x88q\xd0w\xfd@\r\xce\xe4\xadrt`\xf8`b\xbf\xeci\x93a\xc6o\x9ej\xe4\xa3\x9d\xaa\xe1\xe1N\n\xbcq\n[\"5\xd4\xa6\x96#).\xbd\x8aD\x88>8J\v\xb5\x99H\xc5\a\xc9\xcf\xbc\x85\xbf\x85\x81\x0f\x7f8\x11\xdbK\xf3\xc2#\x18 \xdf\x05\xcd\xbb\xc03_\xb7Q@\xf2G', 0x7, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "00800000ffefffffff0200000001"}, 0x55)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
msync$auto(0x1, 0x9, 0xfffffff7)
write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680)="a7", 0x80000)
madvise$auto(0x0, 0x20200, 0x15)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
2m20.904866673s ago: executing program 1 (id=2299):
r0 = socket(0x25, 0x1, 0x0)
sendto$auto(r0, 0x0, 0x0, 0x0, 0x0, 0x3)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x20000800)
open(&(0x7f0000000040)='./file0\x00', 0x149443, 0x0)
mount$auto(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='hfs\x00\x81\xe2\xde\xa8\xb7\xc4G[*}\xaa{\xf1\x86\xf7d@\xe8Y\xea\xb1H\x01\xff\"^\'6\xba\xa9s\x1d\xf4\xe1i\xc5\xb6_B\xa7KFS\xc1\xa7\x8e*h\xe3\x8b\x7f\xca\xfcNEi\x84?\x82\xff\xf2\xac\xd1\xee\xf4\x9a?\xac\x11\x88\aO\x84\xe6k\a\x9bY\xddx\xb8\xdf\vHv\xb5\f\xbc\b\xc0\xfa\xc0\xfe\xa6\xce\xbd\x03\x00\x93\xdc4\x97\xce\xd5&\x93\xae\x05q\xe9\xa8?\x00\xbdi\x88q\xd0w\xfd@\r\xce\xe4\xadrt`\xf8`b\xbf\xeci\x93a\xc6o\x9ej\xe4\xa3\x9d\xaa\xe1\xe1N\n\xbcq\n[\"5\xd4\xa6\x96#).\xbd\x8aD\x88>8J\v\xb5\x99H\xc5\a\xc9\xcf\xbc\x85\xbf\x85\x81\x0f\x7f8\x11\xdbK\xf3\xc2#\x18 \xdf\x05\xcd\xbb\xc03_\xb7Q@\xf2G', 0x7, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "00800000ffefffffff0200000001"}, 0x55)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
close_range$auto(0x2, 0x8, 0x0)
msync$auto(0x1, 0x9, 0xfffffff7)
write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680)="a7", 0x80000)
madvise$auto(0x0, 0x20200, 0x15)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
2m20.723109422s ago: executing program 1 (id=2301):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x10000ffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lsm_get_self_attr$auto(0x68, 0x0, &(0x7f0000002440)=0x8, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r0, 0x0, 0xc70)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f0000000440)={0x84844000, 0x0, 0x0, 0x0, {0x26}, 0x0, 0x0, 0x0, 0x0}, 0x58)
readahead$auto(0xffffffffffffffff, 0x7, 0x0)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f0000000180)=""/253, 0xfd)
read$auto(r3, 0x0, 0x20)
write$auto(r2, 0x0, 0x1)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f0000000900)=""/4096, 0x1000)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
2m10.470493529s ago: executing program 32 (id=2280):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x10000ffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lsm_get_self_attr$auto(0x68, 0x0, &(0x7f0000002440)=0x8, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/udp_early_demux\x00', 0x28802, 0x0)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r0, 0x0, 0xc70)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f0000000440)={0x84844000, 0x0, 0x0, 0x0, {0x26}, 0x0, 0x0, 0x0, 0x0}, 0x58)
readahead$auto(0xffffffffffffffff, 0x7, 0x0)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f0000000180)=""/253, 0xfd)
read$auto(r3, 0x0, 0x20)
write$auto(r2, 0x0, 0x1)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f0000000900)=""/4096, 0x1000)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
2m5.64202413s ago: executing program 33 (id=2301):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/irq/11/smp_affinity\x00', 0xe0182, 0x0)
readv$auto(0x3, &(0x7f0000000000)={0x0, 0x10000ffff}, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
lsm_get_self_attr$auto(0x68, 0x0, &(0x7f0000002440)=0x8, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x1, 0xdf, 0x9b72, 0x2, 0x40008000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
read$auto(0x3, 0x0, 0x80)
r0 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
write$auto(r0, 0x0, 0xc70)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
syz_clone3(&(0x7f0000000440)={0x84844000, 0x0, 0x0, 0x0, {0x26}, 0x0, 0x0, 0x0, 0x0}, 0x58)
readahead$auto(0xffffffffffffffff, 0x7, 0x0)
mremap$auto(0x1ff000, 0x100008, 0x843, 0x3, 0xfffff000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x8001, 0x2)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r2 = openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto_tty_fops_tty_io(0xffffffffffffffff, &(0x7f0000000180)=""/253, 0xfd)
read$auto(r3, 0x0, 0x20)
write$auto(r2, 0x0, 0x1)
read$auto_proc_pid_maps_operations_internal(r1, &(0x7f0000000900)=""/4096, 0x1000)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
1.911889707s ago: executing program 2 (id=2578):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
madvise$auto(0x0, 0x200007, 0x8)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x3e00, 0x0)
mmap$auto(0x0, 0x2020009, 0x7, 0x18, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x0, 0x9)
read$auto_mon_fops_text_t_mon_text(0xffffffffffffffff, 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x800, 0x0)
syz_genetlink_get_family_id$auto_nlbl_calipso(&(0x7f0000000080), 0xffffffffffffffff)
sysfs$auto(0x2, 0xe, 0x0)
lsm_list_modules$auto(0x0, 0x0, 0x0)
r0 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80000, 0x0)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff)
ioctl$auto_dvb_demux_fops_dmxdev(r0, 0x40146f2c, 0x0)
socket(0x10, 0x2, 0x4)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_ID(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="21022cbc7000ebdbdf2501"], 0x14}, 0x1, 0x0, 0x0, 0x400c050}, 0x4000080)
kexec_load$auto(0x4, 0x4, &(0x7f00000001c0)={@kbuf=&(0x7f00000003c0)="93994f855aee3b6ac555a223ce397f167a754e3af5c6b38dfc616619cad0665a00afdb6fe5b04d8194785ad616f0b6f73bebaf8246d0fccfd009b154fdb1bd3730e064321866c0166a593a7a74dac49d1546fe0e925cbd528b9b9ad938e0b26ad4b3f024db0983f7886755372e86a2dce28fc03ef786756ac07900ff6478def427dff80de51e7db9e74d68bee49d849aabe4a049a69d6f9b144185c9b994ebb25145637bfcb0e6a8d6916fc2b0d14db985d2bdab11287c00f51ecd21d03620da547c0722028750357955d1766f97917bfc597d668d6a433eb287e3f32bdd99dfae1d1630979bbda2fba5f1cce0", 0x0, 0x6, 0x3}, 0x7)
getpriority$auto_PRIO_USER(0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare$auto(0x8000000)
shmget$auto(0x0, 0xfffffffffeffffff, 0x69c2)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
mmap$auto(0x7ffffffd, 0x40000c, 0x11, 0x9b72, 0x2, 0x8000)
epoll_create$auto(0x4)
socket(0x1d, 0x1, 0x7fff)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
1.776616164s ago: executing program 2 (id=2579):
mmap$auto(0x0, 0x3, 0x3, 0xeb1, 0x51c, 0x8000) (async)
r0 = socket(0xa, 0x2, 0x73)
ioctl$auto(r0, 0x8918, 0x38)
1.69184071s ago: executing program 2 (id=2580):
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x100842, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000001cc0), 0x101440, 0x0)
read$auto_snd_timer_f_ops_timer(r1, &(0x7f0000000100)=""/88, 0x58)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_START_OLD(r1, 0x5420, 0x0)
ioctl$auto_SNDCTL_TMR_CONTINUE(r0, 0x5404, 0x0)
ioctl$auto_UI_GET_VERSION(0xffffffffffffffff, 0x8004552d, &(0x7f0000000040)=0x10)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/43:256/strict_limit\x00', 0xa022, 0x0)
pwrite64$auto(r2, &(0x7f00000000c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7fff, 0xc)
867.403133ms ago: executing program 2 (id=2581):
io_uring_setup$auto(0x6, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x4, 0x4008)
setsockopt$auto(0xffffffffffffffff, 0x1, 0xc, 0x0, 0x7fffffff)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/disk\x00', 0xc0082, 0x0)
write$auto(r0, &(0x7f0000000340)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,D\xbf&\x9eb|\n\xee\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbb\xbb\xf9\xcdz\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x1d\x88mr\xfd\xf1\x1b;\xabt\xd1a}\x10\xab\xeb_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL\x15/\xf9\'\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\aA\xe9(\x00\x00\x00\x00\x00N\xb5J\xc8A\xc7m\xbf\x19\xae\x9d\xcaR\x0f\xa8\xdf\xe4M\xe1>k\x93\x01\xe5\xba(\x96K\xc1=d3\xe00u\"`]\xb3\x11a\x1cSn\xe7\x87\x84\x93\xe4\x90]\x86\x10\xe5\xacK\x99\xc1$\x91\x05\x00\x00\x00O\x01xc\xa8\x9a\x1bK\x00\x00\xf6\xa2\x8a\x7f4\f[BLH$6\xfb,\xd8\xd3\xd0\xa1v\x14\xcd\x1a\xbdx\xaed\x9d\\\xd0\xff\xd2Y\xc4\x9fT\xb2\xd5\r\xf1#\xd5\xf2\x9cU\xd1:+\xb63\xae\xc1\xf7\xe1\xd4\x879?\xdd\xd6\xd4\xa3\xc7\xd8 S\xfc:\xe1{\x16\\h\x9d\xbc#KEC\x1a\xf9KH`\x82e:_\x9b\xf1\xc1\x8e\xf0\xc46\x98\xd6u\x90\x18\x8f\xe8\xc3%\x8e9\xab\x7f\x0e\n\xb2\xa4\xef\x90\xb16\x04\xbc\xc9\xdc\xad,\xcc\xad}DY\x1d\x1fv\x90\x97u\xa1\xfb\x13\xa93\xb6XJ\x84\xe3\xc1)\x98\xae5q\xa5L\x87\x1aq\x1d0\xf1\xcb\xe5\xf4F!*\xf9\xb3,w\"\xf2\xd0\xd1Vj\xd0\x06\xcc\xbc\xee0\x98.\xd9dC\x8e9\xfdM\\\xc5&\\\x9b\x81\x88t\xa4\x9f\xd1P\xd2e\x9c\xf9\xd2\xaf\x00'/478, 0xb)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
execve$auto(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0xe1ee815847af655a)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000300)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\xf8\xf20/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a0\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5\x94\xd0\xf5\xe7\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00')
socket(0xa, 0x1, 0x6)
socket(0x23, 0x80805, 0x0)
io_uring_setup$auto(0x3, 0x0)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nbd(&(0x7f00000000c0), r2)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', 0x0, 0x10000, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80200", @ANYRES8, @ANYBLOB="01002dbd7000fcdbdf25010000000c0002000500000000000000c5000700c1007cf7c27c120e3984130834a73f9221887ac28e443c4a1a7da8d2ddcf2890cce5822826764f3f410e53f43f30"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x2400c090)
503.644342ms ago: executing program 2 (id=2582):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketcall$auto(0x8000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0xa, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x20881, 0x0)
ioctl$auto_EVIOCGRAB(r1, 0x40044590, &(0x7f0000000000)=0x2)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
io_uring_setup$auto(0x6, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
select$auto(0x10, 0x0, 0x0, &(0x7f00000001c0)={[0x1ff, 0x4, 0xd3e, 0x1, 0xa, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x5, 0x80000001, 0x7fff, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x206, 0x7, 0xfffffffffffffff6, 0x7, 0x9, 0x79d, 0x6, 0x100000000000000, 0xfffffffffffffffe, 0xf]}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x8000000000000000, 0x15)
madvise$auto(0x0, 0x2000000080000001, 0x3)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0xa, 0x0)
0s ago: executing program 2 (id=2583):
r0 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)
ioctl$auto(r0, 0x64c2, 0x1e2)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\x00\xff\x9f\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\tfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7t\xee\xc9\x00'/226, 0x40fded, 0x81)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x5, 0x1, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mknod$auto(&(0x7f0000001040)=':,\x00', 0xca, 0xfffffffa)
r2 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
read$auto_rng_chrdev_ops_core(r2, &(0x7f0000000040)=""/4096, 0xfffffe82)
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, &(0x7f0000001300)=&(0x7f0000001080)='\x8c\x82\xa5')
r3 = syz_genetlink_get_family_id$auto_vdpa(&(0x7f0000001100), r1)
sendmsg$auto_VDPA_CMD_DEV_DEL(r1, &(0x7f00000011c0)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001180)={&(0x7f0000001140)={0x38, r3, 0x8, 0x70bd25, 0x25dfdbfe, {}, [@VDPA_ATTR_DEV_NAME={0x14, 0x4, 'syzkaller0\x00'}, @VDPA_ATTR_DEV_QUEUE_INDEX={0x8, 0x11, 0x7fffffff}, @VDPA_ATTR_DEV_NET_CFG_MTU={0x6, 0xd, 0x895}]}, 0x38}}, 0xd36b4a098fff6072)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_UNEXPECTED_FRAME(r4, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000080)={&(0x7f0000000640)=ANY=[@ANYBLOB="5e00f60087f5575f279427137fffffffffffffff5f17146a", @ANYRES16=r5, @ANYBLOB="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"], 0x218}, 0x1, 0x0, 0x0, 0x4000041}, 0x8c1)
r6 = socket(0x2, 0x3, 0x6)
sendmsg$auto_NL80211_CMD_DEL_KEY(r6, &(0x7f0000000600)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000005c0)={&(0x7f0000005880)=ANY=[@ANYBLOB="30230000383fed364257938de435cc6d3b6aec2e083a711d97dc5cce49c57ff7168f642841dfd88c6d45065a9de77d49d9862d9aa1222913c90f9abf382f92f74f3d89b0d63cc5be416f20750d9be0bf8dafcc2115fa654d128c75e6e84649f75f1821d4c6fb8229f03354b0bae318ddeb8b15d5ab202e42beb12c2b16a7b1390a2336090ebd0b86a494f262eaf40320f94ad63a927cef29a5e2277fc446fb4bec4bc50989301fe784b23c6fb680d0d80f191e7ac9156a7589dccbbb743bae635ee7529940bc0c6189482edeabf80d34e025011df9c20086491f562d0000000000000000", @ANYRES16=r5, @ANYBLOB="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"], 0x2330}, 0x1, 0x0, 0x0, 0x240088c0}, 0x4000)
fstat$auto(r0, &(0x7f0000001240)={0x62a, 0x2, 0x0, 0x6,
aVPNE.3)[J [ 729.573975][T17054] [U] &~pU#9a@9*8QnC;A$)yJ\cF%H!݂ 6~4vw<&lgm+W 5s?sl"b [ 729.586275][T17054] [U] N`ϸ7wlxJ-A [ 729.591047][T17054] [U] i_k=,oo?Ҙ99J [ 730.428674][T15846] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 730.440396][T15846] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 730.458370][T15846] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 730.466917][T15846] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 730.475077][T15846] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 730.525742][T17063] binder: 17062:17063 ioctl c018620c 0 returned -1 [ 730.535264][T17063] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2505'. [ 730.695511][T17068] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:28: corrupted xattr entries [ 730.718692][T17059] chnl_net:caif_netlink_parms(): no params data found [ 730.868523][T17059] bridge0: port 1(bridge_slave_0) entered blocking state [ 730.876064][T17059] bridge0: port 1(bridge_slave_0) entered disabled state [ 730.888852][T17059] bridge_slave_0: entered allmulticast mode [ 730.897460][T17059] bridge_slave_0: entered promiscuous mode [ 730.907275][T17059] bridge0: port 2(bridge_slave_1) entered blocking state [ 730.914934][T17059] bridge0: port 2(bridge_slave_1) entered disabled state [ 730.922397][T17059] bridge_slave_1: entered allmulticast mode [ 730.931060][T17059] bridge_slave_1: entered promiscuous mode [ 730.978396][T17059] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 730.992357][T17059] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 731.040418][T17059] team0: Port device team_slave_0 added [ 731.050332][T17059] team0: Port device team_slave_1 added [ 731.093516][T17059] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 731.100719][T17059] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 731.127328][T17059] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 731.141032][T17059] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 731.148701][T17059] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 731.175053][T17059] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 731.242619][T17059] hsr_slave_0: entered promiscuous mode [ 731.249757][T17059] hsr_slave_1: entered promiscuous mode [ 731.256940][T17059] debugfs: 'hsr0' already exists in 'hsr' [ 731.263217][T17059] Cannot create hsr debugfs directory [ 731.697734][T17076] random: crng reseeded on system resumption [ 732.573085][T15846] Bluetooth: hci9: command tx timeout [ 732.862104][T17083] random: crng reseeded on system resumption [ 734.098598][T17106] FAULT_INJECTION: forcing a failure. [ 734.098598][T17106] name failslab, interval 1, probability 0, space 0, times 0 [ 734.111727][T17106] CPU: 0 UID: 0 PID: 17106 Comm: syz.2.2515 Tainted: G U syzkaller #0 PREEMPT(full) [ 734.111775][T17106] Tainted: [U]=USER [ 734.111786][T17106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 734.111805][T17106] Call Trace: [ 734.111816][T17106][ 734.111828][T17106] dump_stack_lvl+0x16c/0x1f0 [ 734.111871][T17106] should_fail_ex+0x512/0x640 [ 734.111904][T17106] ? fs_reclaim_acquire+0xae/0x150 [ 734.111947][T17106] should_failslab+0xc2/0x120 [ 734.111989][T17106] kmem_cache_alloc_noprof+0x75/0x720 [ 734.112039][T17106] ? __pfx_map_id_range_down+0x10/0x10 [ 734.112078][T17106] ? security_inode_alloc+0x3b/0x2b0 [ 734.112129][T17106] ? security_inode_alloc+0x3b/0x2b0 [ 734.112163][T17106] security_inode_alloc+0x3b/0x2b0 [ 734.112200][T17106] inode_init_always_gfp+0xced/0x1040 [ 734.112247][T17106] alloc_inode+0x86/0x240 [ 734.112277][T17106] sock_alloc+0x40/0x280 [ 734.112316][T17106] __sock_create+0xc2/0x8a0 [ 734.112368][T17106] __sys_socket+0x153/0x2d0 [ 734.112412][T17106] ? __pfx___sys_socket+0x10/0x10 [ 734.112458][T17106] ? xfd_validate_state+0x61/0x180 [ 734.112517][T17106] __x64_sys_socket+0x72/0xb0 [ 734.112561][T17106] ? lockdep_hardirqs_on+0x7c/0x110 [ 734.112598][T17106] do_syscall_64+0xcd/0xf80 [ 734.112639][T17106] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 734.112670][T17106] RIP: 0033:0x7efd7938f7c9 [ 734.112695][T17106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 734.112726][T17106] RSP: 002b:00007efd7a21c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 734.112762][T17106] RAX: ffffffffffffffda RBX: 00007efd795e6180 RCX: 00007efd7938f7c9 [ 734.112782][T17106] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 734.112801][T17106] RBP: 00007efd79413f91 R08: 0000000000000000 R09: 0000000000000000 [ 734.112821][T17106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 734.112840][T17106] R13: 00007efd795e6218 R14: 00007efd795e6180 R15: 00007fff40afc2a8 [ 734.112883][T17106] [ 734.327425][T17106] socket: no more sockets [ 734.653153][T15846] Bluetooth: hci9: command tx timeout [ 734.805953][T17113] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:12: corrupted xattr entries [ 735.608727][T17118] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input223 [ 735.925738][T17126] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries [ 736.733207][T15846] Bluetooth: hci9: command tx timeout [ 738.170486][T17155] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries [ 738.188320][T17156] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries [ 738.202436][T17154] zswap: compressor not available [ 738.250402][T17158] random: crng reseeded on system resumption [ 738.410622][T17162] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:19: corrupted xattr entries [ 738.813054][T15846] Bluetooth: hci9: command tx timeout [ 740.768700][T17176] binder: 17175:17176 ioctl c018620c 0 returned -1 [ 740.778325][T17176] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2533'. [ 743.465391][T17196] random: crng reseeded on system resumption [ 745.977650][T17210] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries [ 748.085094][T17234] random: crng reseeded on system resumption [ 748.858084][T17239] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries [ 748.875596][T17241] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries [ 748.983634][ T30] audit: type=1800 audit(4294967299.210:19): pid=17238 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2549" name="dbroot" dev="configfs" ino=62197 res=0 errno=0 [ 748.999190][T17238] db_root: cannot open: [ 749.302895][T17244] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries [ 749.317008][T17245] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:36: corrupted xattr entries [ 749.350234][T17243] zswap: compressor not available [ 749.928888][T17253] [U] [ 749.931741][T17253] [U] [ 749.934464][T17253] [U] [ 749.937242][T17253] [U] [ 749.943149][T17253] [U] [ 749.945915][T17253] [U] [ 749.948649][T17253] [U] [ 749.951364][T17253] [U] [ 749.954594][T17253] [U] [ 749.957329][T17253] [U] [ 749.960047][T17253] [U] [ 749.962768][T17253] [U] [ 749.967505][T17253] [U] [ 749.970257][T17253] [U] [ 749.972995][T17253] [U] [ 749.975726][T17253] [U] [ 749.980764][T17253] [U] [ 749.983515][T17253] [U] [ 749.986245][T17253] [U] [ 749.988952][T17253] [U] [ 750.002832][T17253] [U] [ 750.005589][T17253] [U] vć(Ganؾdvy M8u [ 750.011567][T17253] [U] .[E\ݻ۶./Xx$VcXg [ 750.017116][T17253] [U] +?sLMlݲrF [ 750.021015][T17253] [U] !K)_{i7\"}awts@V5NiӬ>+R}E/W/S]-"͙KSOx [ 750.031881][T17253] [U] sPg8%xaNn-axFFD J]G3==y3_"7a&lJީg)_@[o,#d`ߵȫ],(7 bg 66[bWS, K [ 750.046941][T17253] [U] [ 750.049827][T17253] [U] ZYE# [ 750.053421][T17253] [U] }&i&F諍.A+ n-<ha3L/\o/ǵg%cL [ 750.061178][T17253] [U] |~,xۯjhח; [ 750.066338][T17253] [U] H [ 750.069319][T17253] [U] N\+ku7a҂B?=|ߊ$47@X.Q1ϳٰ(j)hXnbviWMY~{?tRqDLIWyRgާn0S,aSl(Hv^}%3r7 nROzFG28MqMJ4\@|F [ 750.086111][T17253] [U] U^,;!.x,1h7r顠he`}c@R6J{C;W妷 *lSݮHeg!Xˊ7VkگOX_Mcy1cwi [ 750.099082][T17253] [U] m \q}L,3kJvѭ!g#Kk1#5慛S:C5J|v_V=ݢ+V<+V5uP.g [ 750.109708][T17253] [U] 5\yl`U $ [ 750.114947][T17253] [U] {ts7Ԉs~^1>6R{_F7^4Hki,Akإn [ 750.124290][T17253] [U] KsMb=)$NIby*=O))imZ$!W^'TKWnRhvuxUL\Rex~s).Ϡ{6z%V)N_Ʌl+p.۳rAS5vA+pcOUNL[jw9˾.$4{JRw#촪mO<>*oc"x[Itv8^ckߋDXKE/Nn;AtzTHM\PE#Stm] [ 750.149923][T17253] [U] S;j!e°콋L'!R%[ɉmo">cY$NK4y [ 750.158697][T17253] [U] >-f [ 750.163535][T17253] [U] &غ)?6q~KՉ[R#GeZJ@uFDtb')UzOo*HDwjkEPȭ31ܒ.?噰i*:ۃ$]( [ 750.175375][T17253] [U] -kblp]b$kІ'ֆ7^>5+1D錳#qS [ 750.182421][T17253] [U] DUf)/ڊ9xS}ʁ)~IEGjz|`kQH%WXz8ޖn`Ӱppfofڜ3 Y-20A+X`iy`bE݊ [ 750.197278][T17253] [U] ZX?F EvA [ 750.201350][T17253] [U] P2A@/1 [ 750.206036][T17253] [U] AOsoӱO#/>%CM2 [ 750.212458][T17253] [U] &k<Ĝ2KAVZy-UtDφ\}yxm [ 750.219492][T17253] [U] /{1?F_t/Hw9͈^N9nNL0AXmϫz uOUs'Ҷ-=\b%+i8IYW ~rRWuųyDh/wfxoBz{ [ 750.261810][T17253] [U] $X-9۲2#78IPM[#A{Q8j!4-$iNl}{nPڛsn(^c-p;+&=ip2[{a;؋\?te-/~#;+PքF7Q [ 750.278485][T17253] [U] 9HjTH [ 750.282134][T17253] [U] rf&kyzEJ>VLNxy SN;sJ [ 750.288496][T17253] [U] %?4BT&)E3>_Ҧ͏I:tIhҠqm{c?CK(G͊6pSg}-hd.o0̓-1:sZj.?2(٤SY/Z)Jѡp5 >퀩5˗Z0I4~Z a~}h [ 750.465088][T17253] [U] %RZD& Hv8^" [ 750.470048][T17253] [U] n˻ [ 750.473218][T17253] [U] lL/TM!> [ 750.476955][T17253] [U] @Lz?l_ [ 750.480518][T17253] [U] P5oOu.,WH [ 750.485217][T17253] [U] EiHXv [ 750.488520][T17253] [U] >mY*C [ 750.493219][T17253] [U] W(:ץ0ܓ)OD [ 750.511730][T17253] [U] 0$DH|U]%b,\\z/FtG [ 751.829795][T17263] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input224 [ 752.659191][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 752.669659][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 752.702608][T17271] random: crng reseeded on system resumption [ 752.946729][T17274] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2556'. [ 753.257163][ T7366] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 753.268058][ T7366] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 753.277601][ T7366] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 753.287470][ T7366] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 753.295934][ T7366] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 753.421563][T17281] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:0: corrupted xattr entries [ 753.439998][T17277] chnl_net:caif_netlink_parms(): no params data found [ 753.514334][T17277] bridge0: port 1(bridge_slave_0) entered blocking state [ 753.521512][T17277] bridge0: port 1(bridge_slave_0) entered disabled state [ 753.529388][T17277] bridge_slave_0: entered allmulticast mode [ 753.537778][T17277] bridge_slave_0: entered promiscuous mode [ 753.546200][T17277] bridge0: port 2(bridge_slave_1) entered blocking state [ 753.553568][T17277] bridge0: port 2(bridge_slave_1) entered disabled state [ 753.560787][T17277] bridge_slave_1: entered allmulticast mode [ 753.568395][T17277] bridge_slave_1: entered promiscuous mode [ 753.598659][T17277] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 753.610641][T17277] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 753.644459][T17277] team0: Port device team_slave_0 added [ 753.653268][T17277] team0: Port device team_slave_1 added [ 753.679508][T17277] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 753.686668][T17277] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 753.713080][T17277] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 753.725306][T17277] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 753.732264][T17277] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 753.758501][T17277] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 753.829262][T17277] hsr_slave_0: entered promiscuous mode [ 753.836718][T17277] hsr_slave_1: entered promiscuous mode [ 753.843383][T17277] debugfs: 'hsr0' already exists in 'hsr' [ 753.849155][T17277] Cannot create hsr debugfs directory [ 754.583879][T17294] random: crng reseeded on system resumption [ 755.373114][ T7366] Bluetooth: hci10: command tx timeout [ 755.622473][T17307] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input225 [ 755.695537][T17308] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input226 [ 757.397449][T17318] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000 [ 757.407992][T17318] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff) [ 757.416411][T17318] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000 [ 757.426329][T17318] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 757.435286][T17318] page dumped because: unmovable page [ 757.440693][T17318] page_owner info is not present (never set?) [ 757.453100][ T7366] Bluetooth: hci10: command tx timeout [ 758.091995][T15846] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 758.104861][T15846] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 758.116179][T15846] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 758.124799][T15846] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 758.132418][T15846] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 758.286981][T17338] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:20: corrupted xattr entries [ 758.304879][T17329] chnl_net:caif_netlink_parms(): no params data found [ 758.396291][T17329] bridge0: port 1(bridge_slave_0) entered blocking state [ 758.403558][T17329] bridge0: port 1(bridge_slave_0) entered disabled state [ 758.410758][T17329] bridge_slave_0: entered allmulticast mode [ 758.419403][T17329] bridge_slave_0: entered promiscuous mode [ 758.436573][T17329] bridge0: port 2(bridge_slave_1) entered blocking state [ 758.445361][T17329] bridge0: port 2(bridge_slave_1) entered disabled state [ 758.456468][T17329] bridge_slave_1: entered allmulticast mode [ 758.464812][T17329] bridge_slave_1: entered promiscuous mode [ 758.499361][T17329] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 758.512409][T17329] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 758.544100][T17329] team0: Port device team_slave_0 added [ 758.553783][T17329] team0: Port device team_slave_1 added [ 758.581178][T17329] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 758.588217][T17329] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 758.614472][T17329] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 758.626823][T17329] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 758.633978][T17329] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 758.662829][T17329] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 758.717550][T17329] hsr_slave_0: entered promiscuous mode [ 758.724350][T17329] hsr_slave_1: entered promiscuous mode [ 758.730525][T17329] debugfs: 'hsr0' already exists in 'hsr' [ 758.736689][T17329] Cannot create hsr debugfs directory [ 758.997760][T17344] bridge0: port 2(batadv0) entered blocking state [ 759.004963][T17344] bridge0: port 2(batadv0) entered disabled state [ 759.011535][T17344] batadv0: entered allmulticast mode [ 759.019563][T17344] batadv0: entered promiscuous mode [ 759.026937][ T6974] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 759.027054][T17344] bridge0: port 2(batadv0) entered blocking state [ 759.036747][ T6974] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 759.043201][T17344] bridge0: port 2(batadv0) entered forwarding state [ 759.533176][T15846] Bluetooth: hci10: command tx timeout [ 760.173100][T15846] Bluetooth: hci11: command tx timeout [ 760.404011][T17359] FAULT_INJECTION: forcing a failure. [ 760.404011][T17359] name failslab, interval 1, probability 0, space 0, times 0 [ 760.416833][T17359] CPU: 1 UID: 0 PID: 17359 Comm: syz.2.2575 Tainted: G U syzkaller #0 PREEMPT(full) [ 760.416885][T17359] Tainted: [U]=USER [ 760.416896][T17359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 760.416914][T17359] Call Trace: [ 760.416926][T17359] [ 760.416939][T17359] dump_stack_lvl+0x16c/0x1f0 [ 760.416981][T17359] should_fail_ex+0x512/0x640 [ 760.417015][T17359] ? kmem_cache_alloc_noprof+0x62/0x720 [ 760.417068][T17359] should_failslab+0xc2/0x120 [ 760.417110][T17359] kmem_cache_alloc_noprof+0x75/0x720 [ 760.417159][T17359] ? sk_prot_alloc+0x60/0x2a0 [ 760.417204][T17359] ? sk_prot_alloc+0x60/0x2a0 [ 760.417240][T17359] sk_prot_alloc+0x60/0x2a0 [ 760.417282][T17359] sk_alloc+0x36/0xb80 [ 760.417315][T17359] rds_create+0x9e/0x5f0 [ 760.417366][T17359] __sock_create+0x339/0x8a0 [ 760.417416][T17359] __sys_socket+0x153/0x2d0 [ 760.417459][T17359] ? __pfx___sys_socket+0x10/0x10 [ 760.417504][T17359] ? xfd_validate_state+0x61/0x180 [ 760.417550][T17359] ? __pfx_ksys_write+0x10/0x10 [ 760.417595][T17359] __x64_sys_socket+0x72/0xb0 [ 760.417637][T17359] ? lockdep_hardirqs_on+0x7c/0x110 [ 760.417674][T17359] do_syscall_64+0xcd/0xf80 [ 760.417723][T17359] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 760.417754][T17359] RIP: 0033:0x7efd7938f7c9 [ 760.417780][T17359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 760.417812][T17359] RSP: 002b:00007efd7a25e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 760.417843][T17359] RAX: ffffffffffffffda RBX: 00007efd795e5fa0 RCX: 00007efd7938f7c9 [ 760.417865][T17359] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015 [ 760.417884][T17359] RBP: 00007efd79413f91 R08: 0000000000000000 R09: 0000000000000000 [ 760.417903][T17359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 760.417921][T17359] R13: 00007efd795e6038 R14: 00007efd795e5fa0 R15: 00007fff40afc2a8 [ 760.417963][T17359] [ 761.210656][T17367] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:20: corrupted xattr entries [ 761.614524][T15846] Bluetooth: hci10: command tx timeout [ 762.254075][T15846] Bluetooth: hci11: command tx timeout [ 763.068666][T17384] EXT4-fs error (device sda1): xattr_find_entry:337: inode #1312: comm kworker/u10:4: corrupted xattr entries [ 763.533068][ T31] INFO: task syz-executor:15900 blocked for more than 143 seconds. [ 763.541046][ T31] Tainted: G U syzkaller #0 [ 763.548550][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 763.557644][ T31] task:syz-executor state:D stack:24472 pid:15900 tgid:15900 ppid:1 task_flags:0x480140 flags:0x00080003 [ 763.570081][ T31] Call Trace: [ 763.573724][ T31][ 763.576694][ T31] ? __schedule+0x1149/0x5de0 [ 763.581442][ T31] __schedule+0x11c9/0x5de0 [ 763.586616][ T31] ? is_bpf_text_address+0x8a/0x1a0 [ 763.591945][ T31] ? __kasan_check_byte+0x13/0x50 [ 763.597395][ T31] ? rcu_is_watching+0x12/0xc0 [ 763.602593][ T31] ? __kasan_check_byte+0x13/0x50 [ 763.608050][ T31] ? __pfx___schedule+0x10/0x10 [ 763.613318][ T31] ? __kernel_text_address+0xd/0x40 [ 763.618659][ T31] ? unwind_get_return_address+0x59/0xa0 [ 763.624824][ T31] ? find_held_lock+0x2b/0x80 [ 763.629630][ T31] ? schedule+0x2d7/0x3a0 [ 763.634503][ T31] schedule+0xe7/0x3a0 [ 763.638692][ T31] schedule_timeout+0x257/0x290 [ 763.644089][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 763.649603][ T31] ? mark_held_locks+0x49/0x80 [ 763.654887][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 763.660220][ T31] do_wait_for_common+0x2d7/0x4c0 [ 763.665852][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 763.671377][ T31] ? __pfx_do_wait_for_common+0x10/0x10 [ 763.677508][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 763.682661][ T31] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 763.688612][ T31] ? __pfx___might_resched+0x10/0x10 [ 763.694467][ T31] wait_for_completion+0x49/0x60 [ 763.699537][ T31] remove_one+0x312/0x420 [ 763.705061][ T31] ? find_next_child+0x18f/0x280 [ 763.710533][ T31] __simple_recursive_removal+0x15b/0x610 [ 763.716667][ T31] ? __pfx_remove_one+0x10/0x10 [ 763.721643][ T31] debugfs_remove+0x5d/0x80 [ 763.726661][ T31] nsim_drv_remove+0xd2/0x1d0 [ 763.731473][ T31] ? __pfx_nsim_bus_remove+0x10/0x10 [ 763.737365][ T31] device_remove+0xcb/0x170 [ 763.742002][ T31] device_release_driver_internal+0x44b/0x620 [ 763.748671][ T31] bus_remove_device+0x22f/0x420 [ 763.754168][ T31] device_del+0x396/0x9f0 [ 763.758689][ T31] ? __pfx_device_del+0x10/0x10 [ 763.764215][ T31] ? __lock_acquire+0x433/0x22f0 [ 763.769296][ T31] device_unregister+0x1d/0xc0 [ 763.774946][ T31] del_device_store+0x355/0x4a0 [ 763.780270][ T31] ? __pfx_del_device_store+0x10/0x10 [ 763.786283][ T31] ? find_held_lock+0x2b/0x80 [ 763.791135][ T31] ? sysfs_file_kobj+0xe4/0x290 [ 763.796583][ T31] ? __pfx_del_device_store+0x10/0x10 [ 763.802133][ T31] bus_attr_store+0x74/0xb0 [ 763.807279][ T31] ? __pfx_bus_attr_store+0x10/0x10 [ 763.812630][ T31] sysfs_kf_write+0xf2/0x150 [ 763.817835][ T31] kernfs_fop_write_iter+0x3af/0x570 [ 763.823552][ T31] ? __pfx_sysfs_kf_write+0x10/0x10 [ 763.828928][ T31] vfs_write+0x7d3/0x11d0 [ 763.833893][ T31] ? __pfx_kernfs_fop_write_iter+0x10/0x10 [ 763.839917][ T31] ? __pfx_vfs_write+0x10/0x10 [ 763.845550][ T31] ? __pfx_do_sys_openat2+0x10/0x10 [ 763.850962][ T31] ? find_held_lock+0x2b/0x80 [ 763.856390][ T31] ksys_write+0x12a/0x250 [ 763.860908][ T31] ? __pfx_ksys_write+0x10/0x10 [ 763.866410][ T31] ? do_user_addr_fault+0x381/0xda0 [ 763.871772][ T31] do_syscall_64+0xcd/0xf80 [ 763.876861][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 763.883287][ T31] RIP: 0033:0x7f8a91d8e27f [ 763.887940][ T31] RSP: 002b:00007ffd0a13b440 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 763.902901][ T31] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f8a91d8e27f [ 763.911015][ T31] RDX: 0000000000000001 RSI: 00007ffd0a13b490 RDI: 0000000000000005 [ 763.922235][ T31] RBP: 00007f8a91e152cb R08: 0000000000000000 R09: 00007ffd0a13b297 [ 763.930719][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 763.942782][ T31] R13: 00007ffd0a13b490 R14: 00007f8a92b14620 R15: 0000000000000003 [ 763.950871][ T31] [ 763.955028][ T31] INFO: task syz.0.2280:16001 blocked for more than 143 seconds. [ 763.963295][ T31] Tainted: G U syzkaller #0 [ 763.969826][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 763.979020][ T31] task:syz.0.2280 state:D stack:26232 pid:16001 tgid:15999 ppid:5835 task_flags:0x400140 flags:0x00080002 [ 763.992339][ T31] Call Trace: [ 763.996003][ T31][ 763.998995][ T31] ? __schedule+0x1149/0x5de0 [ 764.004237][ T31] __schedule+0x11c9/0x5de0 [ 764.008861][ T31] ? check_path.constprop.0+0x24/0x50 [ 764.014861][ T31] ? __pfx___schedule+0x10/0x10 [ 764.019848][ T31] ? __lock_acquire+0x11a1/0x22f0 [ 764.025003][ T31] ? find_held_lock+0x2b/0x80 [ 764.029753][ T31] ? schedule+0x2d7/0x3a0 [ 764.034194][ T31] schedule+0xe7/0x3a0 [ 764.038299][ T31] schedule_preempt_disabled+0x13/0x30 [ 764.043857][ T31] __mutex_lock+0xcf8/0x1b10 [ 764.048486][ T31] ? _parse_integer_limit+0x17f/0x1d0 [ 764.054035][ T31] ? nsim_bus_dev_max_vfs_write+0x206/0x410 [ 764.059993][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 764.065095][ T31] ? __pfx_kstrtouint+0x10/0x10 [ 764.070074][ T31] ? nsim_bus_dev_max_vfs_write+0x1bb/0x410 [ 764.076114][ T31] ? nsim_bus_dev_max_vfs_write+0x206/0x410 [ 764.082045][ T31] nsim_bus_dev_max_vfs_write+0x206/0x410 [ 764.087848][ T31] ? __pfx_nsim_bus_dev_max_vfs_write+0x10/0x10 [ 764.094362][ T31] ? __debugfs_file_get+0x1fe/0x840 [ 764.099595][ T31] full_proxy_write+0x131/0x1a0 [ 764.104523][ T31] ? __pfx_full_proxy_write+0x10/0x10 [ 764.109971][ T31] vfs_write+0x2a0/0x11d0 [ 764.114443][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 764.119516][ T31] ? __pfx_vfs_write+0x10/0x10 [ 764.124396][ T31] ? __fget_files+0x20e/0x3c0 [ 764.129140][ T31] ksys_write+0x12a/0x250 [ 764.133617][ T31] ? __pfx_ksys_write+0x10/0x10 [ 764.138511][ T31] do_syscall_64+0xcd/0xf80 [ 764.143133][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 764.149063][ T31] RIP: 0033:0x7f0543b8f7c9 [ 764.153590][ T31] RSP: 002b:00007f0544945038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 764.162144][ T31] RAX: ffffffffffffffda RBX: 00007f0543de5fa0 RCX: 00007f0543b8f7c9 [ 764.170163][ T31] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000005 [ 764.178327][ T31] RBP: 00007f0543c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 764.186374][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 764.194431][ T31] R13: 00007f0543de6038 R14: 00007f0543de5fa0 R15: 00007ffcf698c5d8 [ 764.202423][ T31] [ 764.205585][ T31] [ 764.205585][ T31] Showing all locks held in the system: [ 764.213388][ T31] 1 lock held by khungtaskd/31: [ 764.218258][ T31] #0: ffffffff8e1c8620 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 764.228255][ T31] 7 locks held by syz-executor/15900: [ 764.233707][ T31] #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 764.242808][ T31] #1: ffff88807a92e488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 764.252638][ T31] #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 764.262885][ T31] #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 764.273403][ T31] #4: ffff88807fb390e8 (&dev->mutex){....}-{4:4}, at: device_release_driver_internal+0xa4/0x620 [ 764.284090][ T31] #5: ffff88807fb3a250 (&devlink->lock_key#2){+.+.}-{4:4}, at: nsim_drv_remove+0x4a/0x1d0 [ 764.294265][ T31] #6: ffff88805c0b1568 (&sb->s_type->i_mutex_key#8/2){+.+.}-{4:4}, at: __simple_recursive_removal+0x354/0x610 [ 764.306209][ T31] 3 locks held by syz.0.2280/16001: [ 764.311414][ T31] #0: ffff888077648b78 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370 [ 764.320568][ T31] #1: ffff888141680420 (sb_writers#8){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 764.329657][ T31] #2: ffff88807fb3a250 (&devlink->lock_key#2){+.+.}-{4:4}, at: nsim_bus_dev_max_vfs_write+0x206/0x410 [ 764.334745][T15846] Bluetooth: hci11: command tx timeout [ 764.340853][ T31] 2 locks held by syz.1.2301/16111: [ 764.351461][ T31] #0: ffff888141680420 (sb_writers#8){.+.+}-{0:0}, at: path_openat+0x183a/0x3140 [ 764.360847][ T31] #1: ffff88805c0b1568 (&sb->s_type->i_mutex_key#16){++++}-{4:4}, at: path_openat+0x1248/0x3140 [ 764.371555][ T31] 4 locks held by syz-executor/16240: [ 764.377057][ T31] #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 764.386161][ T31] #1: ffff8880313e9888 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 764.396100][ T31] #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 764.406246][ T31] #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 764.416741][ T31] 4 locks held by syz-executor/16295: [ 764.422138][ T31] #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 764.431227][ T31] #1: ffff88805b38ec88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 764.441086][ T31] #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 764.451186][ T31] #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 764.461583][ T31] 4 locks held by syz-executor/16539: [ 764.467020][ T31] #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 764.476198][ T31] #1: ffff888077a0e488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 764.486113][ T31] #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 764.496586][ T31] #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 764.507142][ T31] 4 locks held by syz-executor/16715: [ 764.512540][ T31] #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 764.521656][ T31] #1: ffff88805b7ba088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 764.531614][ T31] #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 764.541800][ T31] #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 764.552356][ T31] 4 locks held by syz-executor/16758: [ 764.557816][ T31] #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 764.566906][ T31] #1: ffff888092cefc88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 764.576749][ T31] #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 764.586868][ T31] #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 764.597224][ T31] 4 locks held by syz-executor/17059: [ 764.602620][ T31] #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 764.611733][ T31] #1: ffff888044298c88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 764.621594][ T31] #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 764.631714][ T31] #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 764.642093][ T31] 4 locks held by syz-executor/17277: [ 764.647547][ T31] #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 764.656648][ T31] #1: ffff8880a0e6b088 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 764.666526][ T31] #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 764.676704][ T31] #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 764.687252][ T31] 4 locks held by syz-executor/17329: [ 764.692642][ T31] #0: ffff88807d9c2420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250 [ 764.701783][ T31] #1: ffff8880a4b01488 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570 [ 764.711689][ T31] #2: ffff88814332f698 (kn->active#52){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570 [ 764.721949][ T31] #3: ffffffff8f491aa8 (nsim_bus_dev_list_lock){+.+.}-{4:4}, at: del_device_store+0xd1/0x4a0 [ 764.732341][ T31] [ 764.734864][ T31] ============================================= [ 764.734864][ T31] [ 764.743398][ T31] NMI backtrace for cpu 1 [ 764.743423][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U syzkaller #0 PREEMPT(full) [ 764.743464][ T31] Tainted: [U]=USER [ 764.743474][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 764.743489][ T31] Call Trace: [ 764.743496][ T31][ 764.743503][ T31] dump_stack_lvl+0x116/0x1f0 [ 764.743530][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 764.743560][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 764.743589][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 764.743618][ T31] watchdog+0xf14/0x1140 [ 764.743647][ T31] ? rcu_is_watching+0x12/0xc0 [ 764.743673][ T31] ? __pfx_watchdog+0x10/0x10 [ 764.743789][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 764.743813][ T31] ? __kthread_parkme+0x19e/0x250 [ 764.743848][ T31] ? __pfx_watchdog+0x10/0x10 [ 764.743872][ T31] kthread+0x3c5/0x780 [ 764.743891][ T31] ? __pfx_kthread+0x10/0x10 [ 764.743913][ T31] ? rcu_is_watching+0x12/0xc0 [ 764.743941][ T31] ? __pfx_kthread+0x10/0x10 [ 764.743960][ T31] ret_from_fork+0x855/0xa50 [ 764.743978][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 764.743995][ T31] ? __switch_to+0x7af/0x10d0 [ 764.744017][ T31] ? __pfx_kthread+0x10/0x10 [ 764.744035][ T31] ret_from_fork_asm+0x1a/0x30 [ 764.744068][ T31] [ 764.744075][ T31] Sending NMI from CPU 1 to CPUs 0: [ 764.880781][ C0] NMI backtrace for cpu 0 [ 764.880803][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G U syzkaller #0 PREEMPT(full) [ 764.880836][ C0] Tainted: [U]=USER [ 764.880843][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 764.880856][ C0] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 764.880888][ C0] Code: 15 59 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d f3 f4 0e 00 fb f48c 27 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 764.880911][ C0] RSP: 0018:ffffffff8de07df8 EFLAGS: 000002c6 [ 764.880931][ C0] RAX: 00000000007efa67 RBX: 0000000000000000 RCX: ffffffff8b5b5429 [ 764.880954][ C0] RDX: 0000000000000000 RSI: ffffffff8d89e18d RDI: ffffffff8bd1bd00 [ 764.880970][ C0] RBP: fffffbfff1bd2f50 R08: 0000000000000001 R09: ffffed10170866e5 [ 764.880985][ C0] R10: ffff8880b843372b R11: 00000000ffffffff R12: 0000000000000000 [ 764.881000][ C0] R13: ffffffff8de97a80 R14: ffffffff9065cfd0 R15: 0000000000000000 [ 764.881015][ C0] FS: 0000000000000000(0000) GS:ffff888124ba8000(0000) knlGS:0000000000000000 [ 764.881039][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 764.881055][ C0] CR2: 00007efd795b7198 CR3: 0000000074e5a000 CR4: 00000000003526f0 [ 764.881070][ C0] Call Trace: [ 764.881079][ C0] [ 764.881087][ C0] default_idle+0x13/0x20 [ 764.881116][ C0] default_idle_call+0x6c/0xb0 [ 764.881145][ C0] do_idle+0x38d/0x500 [ 764.881176][ C0] ? __pfx_do_idle+0x10/0x10 [ 764.881208][ C0] cpu_startup_entry+0x4f/0x60 [ 764.881238][ C0] rest_init+0x16b/0x2b0 [ 764.881267][ C0] ? acpi_subsystem_init+0x133/0x180 [ 764.881359][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 764.881411][ C0] start_kernel+0x3f6/0x4d0 [ 764.881444][ C0] x86_64_start_reservations+0x18/0x30 [ 764.881471][ C0] x86_64_start_kernel+0x130/0x190 [ 764.881497][ C0] common_startup_64+0x13e/0x148 [ 764.881529][ C0] [ 766.412929][T15846] Bluetooth: hci11: command tx timeout