last executing test programs:

3m3.427870978s ago: executing program 1 (id=1702):
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffc, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x4000008000)
r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000080), 0x40e00, 0x0)
ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000300), 0x8281, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = socket(0x10, 0x2, 0xf)
close_range$auto(0x0, 0xffffeffe, 0x2)
pipe$auto(0x0)
socket(0xa, 0x3, 0xff)
pipe$auto(0x0)
bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, r2, 0xffffffff}, 0xd)
bpf$auto(0x4, &(0x7f0000000080)=@bpf_attr_3={0x5, 0x0, 0x702955be, 0x40000, 0x4, 0x5, 0x80, 0x7, 0xfffff800, "0566c8ee7c78a925488276d7697a12bd", 0x0, 0x6, 0xffffffffffffffff, 0x7, 0x9, 0x4, 0x5, 0x10001, 0x0, 0x8001, @attach_btf_obj_fd, 0x7e, 0x4, 0x1, 0x5, 0x3}, 0x5)
ioctl$auto_PPPIOCATTACH(r1, 0x4004743d, 0x0)
openat$auto_tk_debug_sleep_time_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
rt_sigqueueinfo$auto(0x0, 0x9, &(0x7f00000000c0)={@_si_pad})
r3 = socket(0xa, 0x2, 0x88)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/cpu/vulnerabilities/mmio_stale_data\x00', 0x80000, 0x0)
read$auto(r4, &(0x7f0000000040)='^\x00', 0x75e)
close_range$auto(0x2, 0x8, 0x0)
shmget$auto(0x8, 0x10565, 0x7ff)
shmat$auto(0x0, &(0x7f0000000580)='(\x00', 0xfffffffa)
sync_file_range$auto(r3, 0xfffffffffffffe95, 0x9, 0x9)
shmctl$auto(0x0, 0x0, 0xfffffffffffffffd)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
socketpair$auto(0xf5, 0x7, 0x7ff, &(0x7f0000000080)=0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0x20499d, 0x9)

3m2.230459759s ago: executing program 1 (id=1707):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/025/001\x00', 0x8901, 0x0)
ioctl$auto(r0, 0x5522, r0)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x208840, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/blkio.bfq.io_wait_time\x00', 0x40000, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYBLOB="f154b2a9b57a4cfa7d376e3f1ae022cfa702a980b4c36207dcd9cbdc6ff1622892116c8f84093367fc9c67efd2a845f1f19dac828004829e482f8005f350b0a225bc230953a14b88db463806b83c7eb9c8bfecc9acb76899d65e5e5dd0b4ceefce751d3d0fe4ce9b2c68759f7bb2354cc5baef1ca0874b2a1a6aaed884c9d121cb3c78b6cead", @ANYBLOB="0a0005000180c200000e00000a07000000000000000e00000a000100000000000000000008000200", @ANYRES32], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000003b40)={'veth0_to_hsr\x00', <r3=>0x0})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYRES16=r3], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40001)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa506}, 0x800}, 0x7, 0x4008)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000300), 0x3d3902, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000340), 0x40000, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_GET_MSRS(r5, 0x4008ae89, &(0x7f0000000600)={0x6, 0x0, [{0xcfff, 0x2, 0x3}, {0x8, 0xffffffff, 0x4}, {0x9, 0x10000004, 0xffffffffffff1c1d}, {0xffffff70, 0x5}, {0x401, 0xd, 0x100}, {0x9, 0x1, 0x1ff}, {0x9, 0x401, 0x5}]})
r6 = ioctl$auto_TUNGETVNETBE2(0xffffffffffffffff, 0x800454df, &(0x7f0000000380)=0x957)
r7 = signalfd$auto(r6, &(0x7f0000000080)={0x6}, 0x7)
ioctl$auto_debugfs_full_proxy_file_operations_internal(r7, 0x6, &(0x7f00000000c0)="8749e28ce5046f2bfbd73c4467d7cfc858e66b9d946abe0fec376fcc7291632aaf3305637e25fa98fb4a1cbe5a92976e464a991313d6bacb713ba18c267cf71bc318e3affe4263a43239ceacc3b7a50fb86c0255692ac5aa0d304f65")
pidfd_getfd$auto(r6, r0, 0xffff)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000180), r7)
r8 = gettid()
kill$auto(r8, 0x11)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r11=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r9, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=ANY=[@ANYBLOB="794c3bf4fc9df9eb8b3f9f25c50000d4b5c54cc210b1340c9afbe839deabf9e3beff653d", @ANYRES16=r10, @ANYBLOB="010027bd7000fbdbdf25140000000c00018008000100", @ANYRES32=r11, @ANYBLOB="05001900010000000800060009000000"], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x800)

3m1.821776301s ago: executing program 1 (id=1708):
r0 = openat$auto_userfaultfd_dev_fops_userfaultfd(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
timerfd_settime$auto(r0, 0x8, &(0x7f0000000040)={{0x5, 0x5}, {0x4, 0xffffffffffffffff}}, &(0x7f0000000080)={{0x7, 0x43}, {0x1, 0x300000000000000}})
ioctl$auto_FIONREAD(r0, 0x541b, 0x1) (async)
ioctl$auto_FIONREAD(r0, 0x541b, 0x62) (async)
ioctl$auto_FS_IOC_ZERO_RANGE(r0, 0x40305839, 0x9) (async, rerun: 32)
r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f00000000c0), 0x882, 0x0) (rerun: 32)
ioctl$auto_RNDGETENTCNT2(r1, 0x80045200, &(0x7f0000000100)=0x8) (async)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sg0\x00', 0x4400, 0x0)
ioctl$auto_SCSI_IOCTL_SYNC(r2, 0x4, &(0x7f0000000180)="fe2edd7ded0832cd9648e070831cd69e13fe0f") (async)
ioctl$auto_RNDADDTOENTCNT2(r1, 0x40045201, &(0x7f00000001c0)=0x4) (async)
r3 = openat$auto_btrfs_dir_file_operations_inode(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/bluetooth/hci1/rfkill6/power\x00', 0x800, 0x0)
ioctl$auto_BTRFS_IOC_SUBVOL_CREATE_V2(r3, 0x50009418, &(0x7f0000000240)={@raw=0xd, 0x7, 0xc, @unused, @devid=0x3})
ioctl$auto_SG_GET_ACCESS_COUNT(r2, 0x2289, &(0x7f0000001240)="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")
r4 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000002240)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0x80, 0x0)
ioctl$auto(r4, 0x616, 0xffffffffffffffff) (async)
ioctl$auto_VHOST_SET_VRING_NUM(0xffffffffffffffff, 0x4008af10, &(0x7f00000022c0)={0xfffffffc, 0x843a}) (async)
setsockopt$auto_SO_RCVLOWAT(r3, 0x400000, 0x12, &(0x7f0000002300)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0xff) (async)
unshare$auto(0x3)
read$auto_btrfs_dir_file_operations_inode(r3, &(0x7f0000002380)=""/4096, 0x1000) (async)
unshare$auto(0x3) (async, rerun: 32)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000003380)='/dev/sequencer\x00', 0x20100, 0x0) (rerun: 32)
ioctl$auto_SNDCTL_TMR_START(r5, 0x5402, &(0x7f00000033c0)="82234b668a40ab9314107241d22c2b61192711b38d9cf0681958d7b6e75481651982ed6c953873cd337711efd0e1dc7d5908c754c8fbf325f8e58b0e7f") (async)
r6 = syz_clone(0x1200, &(0x7f0000003400)="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", 0x1000, &(0x7f0000004400), &(0x7f0000004440), &(0x7f0000004480)="bb2d73ddbb3765a49a907a8b83133b6dcca08120f4570ad3670c3e970133ddff9fc33866b347f0a9fb80e0e3336614b3172eb0a3892a952797f12484fa34558c6f3942528d79") (async)
ioctl$auto_SG_SCSI_RESET(r2, 0x2284, &(0x7f0000004500)="6db59e69deccb9f8ff2f7668e57fa333dbb2ed0b1f17c2ae386aa005bf4b41726477e9898823dfb2bb94eebdbc6e3813470c268a150547d3ec1ac9ffc6faf9bf0c7b85200e032ef130edac68e7f357c47f7cbdd07759c256a823abd8d812a20987ac0fe9042589c096fb9a9714983a369ad1d9a76098a761496036f55ad7a7615d17c5f48fff3bdefa2ca77cd83baa7ed322a0dea8eb8230f6f80c458c38c13f902ce463320f61d2b628ed3f8e14b442d0") (async, rerun: 32)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000045c0)='/dev/sequencer2\x00', 0x480, 0x0) (rerun: 32)
r7 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000004600)='/sys/kernel/debug/dri/vkms/Writeback-1/edid_override\x00', 0x1, 0x0)
read$auto_drm_edid_fops_drm_debugfs(r7, &(0x7f0000004640)=""/203, 0xcb) (async)
arch_prctl$auto_ARCH_MAP_VDSO_64(0x2003, 0x9) (async, rerun: 64)
r8 = prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_GET(0x6, 0x2, r6, 0x5, 0x5) (rerun: 64)
sendmsg$auto_MAC802154_HWSIM_CMD_NEW_EDGE(r8, &(0x7f00000052c0)={&(0x7f0000004740)={0x10, 0x0, 0x0, 0x400020}, 0xc, &(0x7f0000005280)={&(0x7f0000004b40)={0x70c, 0x0, 0x2, 0x70bd28, 0x25dfdbff, {}, [@MAC802154_HWSIM_ATTR_RADIO_EDGE={0x2f7, 0x2, 0x0, 0x1, [@generic="c66f9231dfafaeefa837450ad47535bec1c397aa21d7a1071eca41a8c3fe6c080df01a8d382f8b02a06175ea5b39555e3d1cbcb5cb9304ea4c3fb8f41b0697c9a48895a39d3b0878bd4ecd20c2c4775ac01d38", @nested={0x3b, 0xbe, 0x0, 0x1, [@nested={0x4, 0x29}, @typed={0x4, 0xbc}, @typed={0x8, 0x69, 0x0, 0x0, @uid}, @generic="48ea777fd7898d48c07d3b3c0a8b0d7a88e74cfe564c4b47db5723b6ed55e183eaea54", @typed={0x4, 0x4}]}, @nested={0x264, 0x136, 0x0, 0x1, [@generic="4d49b00aae744f3b584b1d8f937e132453a35336f0353d20ab43f6cafcd5f67c30044317989330f42d23c759ae15f4031f6e4c499ad05cf003705c80e77d55593bfcd2c566ecdaa3d79992b1247eaa9a8ff6761e601396ae9573c24c8e79a547f00ba9c7cb0da58f3a2dba09373e2daeff9d544414c7a4da94de05028ea1d6dbbe7283c66a74c2b47fb8744aee4b4e80add17a3aa51501999ad89118be4f85a4c75f0ad877956883cb7655d021ca61e8d8dc9abaf3e7e00d0a9568c50a216008caad20d9b5d5ee6366ea8354ad2750292fc664b6cb9257e6fe893466bc86ae3cfa3c00cfa0e0aec99f", @generic="04cec328d58ee4ae097c96ccf5d84d7f509fb8ff2e47b153d2c3cedd32275079837f4ee85218cef92d2993211da266e8092597836cc60f2b93f167b6d88d28e04fe27ece5b56bbcc6c723928d78ad62a3324b399874bd89b7b24ef3d3203b13eaf40a87c203af41dd3bf36eaf01941762c3c0a61e88b86588cb46024b2d29733f863453392deadfa32ec3ee9aae25471e6cbe6747b843765e0de76", @generic="596fb1ce0a97506106928849ef78545bd418a274dd1198421ffa580de4eb7e0743a7c0bb0d733ba0d853187ce94b0249b7cff0be9a2021aca227207e4aad41bf4045a2f0a5d9f34461e65031c980d3419a9b9353d58fadf2e26618c89eb2e76cf736e174b09fd24f3ea9c0fc867255a97bb36c2ab9fddb41aea9af2f252fc64a83ec1db2afee54cbd558205880e9f7f71c73c16df7cdc0dba617b9aa64cf2ca9afe070f17296dab8115707eb141da32e6fabca3a3748285e98cce7fbc8336abd63b2ec95a988a9a66182d6d236bea56a15765b8d2af5c6d145a39122"]}]}, @MAC802154_HWSIM_ATTR_RADIO_EDGE={0x94, 0x2, 0x0, 0x1, [@nested={0x8d, 0x145, 0x0, 0x1, [@typed={0x8, 0x130, 0x0, 0x0, @u32=0x4}, @typed={0x8, 0x77, 0x0, 0x0, @uid}, @nested={0x4, 0xcc}, @nested={0x4, 0x11f}, @generic="a911906259610f6c671e2e6cd3da88b137b6b4b31a5cca747a8d620cd70c0da1497dc7bd0cb83db352a594d7d05afa3445a5af68e6f5e499f6aa767d0e94ca73cc254418329bf5b2fa8cc4cd2514685667f680ad999089ec7686bd3cccf2a162b8c88ab9f6e39c70263b745751bb6348f7"]}]}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x1}, @MAC802154_HWSIM_ATTR_RADIO_EDGES={0x2d5, 0x3, 0x0, 0x1, [@typed={0xc, 0xcb, 0x0, 0x0, @u64=0xffffffffffff7fff}, @generic="9994dc2bdf9a909fa7b606cd2e39baf492e81ef6dcd195651f66bae5b5739df1101dc552089415498a3aa50d602efdc4f36dc4812285946006df3fce20457193da5419d73040322874839ca07a6b5b18ef343e7d9d1c20db3d7dee0574b17db256aebffd5bf4", @generic="8f286f16de1d70a24419778baa3948c478cf5097f1e118bd00bb118448aebe280a5d950f369f338a3e4e86b5bcd06ead8d078fa45a660293e8a3a6b31b8cc58ea7600269a506ed783659b5ab841d30f571c2e27c65a46c229e86366b6f417b1423db093c5426adcfe59b64bf885d80fbf57659958905d0c41dfeb23d391a2de31f6b92f30398ac8b491ac62cd21d27", @generic="8928537a96ffb233ba03f7b609797c18ea8a7c3a17dcd069d2706efc720bb42843cfb61489fa75b0ecc9120d64deeacf1726a37ac637a440edbf87f703109c22b206f77b0c30fa7c25012f7450da642093a141ab73905838807b91ff3e4bed40ee8f8889c8b2adab2f348de179b9c9c4b0d35b2a4a16a224cbc9b507a241c8d7b4f8fdc0f2f3036c46ff07c59b814ff054061d58f991bcdee4c6c3712f1110b5d7328c05b2c565b44a28464c0d9e72bc171cb1d8207d2e5d4732e12b47ad6322accc04b89d140c5beb275595ae934ed3d24fe383d2d8f5790fe8a225f62f2e7fa57db6e189baa7f2a806", @typed={0x8, 0xda, 0x0, 0x0, @u32=0x2}, @generic="ca96c9154f2be9ae0f299adde539f8f76240761fe03c22df3e6424c79b106bed36b6130ca2d60003f853a9c30b352836872b0198c4b3f6f188e14c301334c03786655b677722a738fd0fb82d81e8eb3c45e1f1f080ec3b9829032988e412369d87be275a94dfd8a845076c84181a0c30a6f552ba6f28497c1bb0d1a38700caf201df74ae7924714c3b67dcf42d5fdffe92dde6d638e3f6c2b45fb8858ecb9468cb7bc11e119977b0324daa940e25f9ece6b3adb12f438da5f4e704e2526648218a8a8c7730c99a642fce3d2cb83ceedabbd7d6d2388bea755ae22d83e796"]}, @MAC802154_HWSIM_ATTR_RADIO_EDGES={0x8, 0x3, 0x0, 0x1, [@typed={0x4, 0x3b}]}, @MAC802154_HWSIM_ATTR_RADIO_EDGES={0x7b, 0x3, 0x0, 0x1, [@nested={0x5e, 0x87, 0x0, 0x1, [@generic="97510f73eac1834b3b2c1473486d71f6cc7ef532d62645824f89695729edd402589b45e08e01dcea5b320b52e7025a921c49f6fdaed2deee0e829493a8327da25a2e4db8c6", @nested={0x4, 0x130}, @nested={0x4, 0xcf}, @generic="1380c8cc7a", @typed={0x8, 0x14b, 0x0, 0x0, @u32=0xd}]}, @generic="7e3b5b1d958a253cd3779060bd6c990d2ed0ecaf8bd41d"]}, @MAC802154_HWSIM_ATTR_RADIO_ID={0x8, 0x1, 0x8}]}, 0x70c}, 0x1, 0x0, 0x0, 0x800}, 0x8000)

3m1.639479064s ago: executing program 1 (id=1709):
write$auto(0xffffffffffffffff, &(0x7f0000000080)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/admmidi2\x00', 0x26102, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(r0, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x202000a, 0xffffffff, 0xdc, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = socket(0x2, 0x3, 0x6)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x401c5820, 0x0)
mkdir$auto(0x0, 0x353)
keyctl$auto(0x1f, 0x1, 0x6, 0x3, 0x3ff)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, 0x0, 0x103003, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000340), 0x80200, 0x0)
pread64$auto(r3, &(0x7f0000000240)='\x03W\x96l\x15\x00'/21, 0x100000002, 0x100000001)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

2m58.298548405s ago: executing program 1 (id=1719):
mmap$auto(0x0, 0x7, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
pipe$auto(0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_GET_RADIO(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x14, r2, 0x1, 0x70bd26, 0x259fdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
ioctl$auto(0x3, 0x4040ae79, r0)

2m57.42757736s ago: executing program 1 (id=1722):
timer_create$auto(0x7, 0x0, &(0x7f0000000140)=0x6)
timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x0, 0x800}}, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
fcntl$auto(0x3, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3b)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x8, 0x2000000000002)
r0 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
fchdir$auto(r0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8000ffff}, 0x3)

2m56.933522509s ago: executing program 32 (id=1722):
timer_create$auto(0x7, 0x0, &(0x7f0000000140)=0x6)
timer_settime$auto(0x0, 0xffff8000, &(0x7f00000000c0)={{0xf, 0x10007}, {0x0, 0x800}}, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
fcntl$auto(0x3, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3b)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x8, 0x2000000000002)
r0 = open(&(0x7f0000000000)='./cgroup\x00', 0x0, 0x64)
fchdir$auto(r0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/cgroup.type\x00', 0x103042, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8000ffff}, 0x3)

11.144071954s ago: executing program 3 (id=2459):
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xfffffedf, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
statmount$auto(0x0, 0x0, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/fs/cifs/smbd_receive_credit_max\x00', 0x641, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.0/usb1/avoid_reset_quirk\x00', 0x68006, 0x0)
read$auto(r1, 0x0, 0x20)
write$auto(r0, 0x0, 0x9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/workqueue/parameters/watchdog_thresh\x00', 0x1e2142, 0x0)
r2 = open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0xb5d1af1605322df2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/platform/i8042/serio1/description\x00', 0x8000, 0x0)
open_by_handle_at$auto(r2, &(0x7f0000000000)={0x8, 0x2, "8b00000000000000"}, 0x36c)
socket(0x1d, 0x2, 0x2)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/smbd_max_frmr_depth\x00', 0x40302, 0x0)
open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x42842, 0x95)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x0)
memfd_secret$auto(0x0)
socket(0xa, 0x2, 0x3a)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
ioctl$auto_TIOCSETD2(r3, 0x5423, 0x0)
socket(0x1e, 0x1, 0x0)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x101300, 0x0)

10.426096849s ago: executing program 3 (id=2464):
syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff)
mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)={0x1a8, 0x0, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_REG_ALPHA2={0xfc, 0x21, "ab7955ebff1d077bac847c945aeadbc991b86560157156160e3562f811f2cce660b3205e562e9ef78b713c8bb28f758309cddc197e0c59d1214f6f7d53ede91e4c487370b7858281f45b82525f327a9f7ac91c50e33c480d76850e0ff956fb1da6df2dce88c84f97b0c89ad89687d996e1adc673313c91ad98d87dc260fbac20a8e31e3e612cceb303b7c0d7a1fe17f87c42564ed36ff7914ea4799ef825e1b0e0979aa97cf3ecefb0907b0316e4f7938fe48a0d666014d3a1dd7bc6d5d98c5a294c8ce0bca008bbc5e1915b7518ecf8c7ec5fcd531df28573b44c0618f406fc19f3f21f13c445e3f4b91a639f2986500f95174f734d1ecc"}, @NL80211_ATTR_WIPHY_NAME={0x8, 0x2, '$4/\x00'}, @NL80211_ATTR_HE_BSS_COLOR={0x14, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x100000048}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}]}, @NL80211_ATTR_TDLS_SUPPORT={0x4}, @NL80211_ATTR_REKEY_DATA={0x66, 0x7a, 0x0, 0x1, [@typed={0x5, 0xfa, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x9a, 0x0, 0x0, @pid}, @typed={0x0, 0x4d, 0x0, 0x0, @ipv4=@local}]}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x4}, @NL80211_ATTR_MESH_ID={0x0, 0x18, "1abf47ef01e03e7c0a7e2ef89858d227c8a0b29ed23ec8"}]}, 0x1a8}, 0x1, 0x0, 0x0, 0x20008001}, 0x48)
sendmsg$auto_NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES8, @ANYBLOB="20002dbd7000fbdbdf2581000000d400340030be0000a504640da2ef83d398f96d7034da523d057a17c330762053fc9846b569595c8e055963aafcc06f9d814e77cf"], 0x1c}, 0x1, 0x0, 0x0, 0x94}, 0x805)
socket(0x15, 0x5, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
madvise$auto(0x110c230000, 0x1, 0x9)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0002, 0x0)
getrandom$auto(0x0, 0x3, 0x80000001)
statmount$auto(0x0, &(0x7f0000000180)={0x9, 0xfffffffe, 0x44f, 0xa, 0x10, 0x1007181, 0x0, 0x62, 0x7, 0x800, 0x0, 0x26, 0x4, 0x200003fffffe, 0xfffffffffffffff5, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x862, 0xf, 0x22002, 0x200, 0x0, 0x62f, 0x6, 0x0, 0x0, 0x0, 0xb626, [0x409a, 0xffffffffffff04ef, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9e, 0x0, 0xa7, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x40, 0x81, 0x8a0, 0xb, 0x81, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100002, 0x0, 0x3ff, 0x6, 0x0, 0x0, 0x2000000, 0x0, 0x4000000000000, 0x5]}, 0x800000000000b, 0xbc)
r1 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r1, 0xfffffff7effffd0c, &(0x7f00000001c0))
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x9, 0x7, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffa)
clone$auto(0x1, 0x40000000003e, 0x0, 0x0, 0x40000009)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x2)
getdents64$auto(r2, &(0x7f0000000f40)={0x309, 0x7, 0xffff, 0x7}, 0x200c8)
msync$auto(0x110c230000, 0x200001, 0x6)

6.833034461s ago: executing program 0 (id=2474):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/ifb0/flags\x00', 0xb02, 0x0)
socket(0x23, 0x80805, 0x0)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000005d40), 0x8600, 0x0)
r1 = epoll_create$auto(0x3e)
epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0)
ioctl$auto(0x3, 0x89ed, 0xfffffffffffff4e0)
sendfile$auto(r0, r0, &(0x7f0000000100)=0x9, 0xffff)
mmap$auto(0x0, 0x81, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = inotify_init1$auto(0x3000000000000)
ioctl$auto_BLKPBSZGET(r2, 0x127b, 0x0)
r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r3, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x9, 0x4, 0xffffffffffffffff, 0xebe, r3, 0x8024)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000380), 0x100, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
r4 = socket(0xa, 0x3, 0x3b)
getsockopt$auto(r4, 0x29, 0x6, 0x0, 0x0)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
r5 = openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
read$auto(r5, &(0x7f0000000080)='\xbb\x00', 0x3)
ioctl$auto_EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x9})
r6 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x2, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r6, &(0x7f0000000140)="1dca160c9026f371d6e92319763e11da35ec9f0379e2081bff03000000000000882674a5c0acdadb0ee83a0eac2e06dbfb6ff5efc39f8459cf518c93c02cd2ac800540569e21a7b3ee40aad7376b454ba1da11fb04ba54575684455f33e5292d772e78755a02c9eee52a5584ea33ddb13f11a93d6b4e3d4505f00084", 0x7c)
ioctl$auto(0x3, 0x80004509, 0x10000000000402)
getpgrp(0x0)
getpid()

6.157186832s ago: executing program 0 (id=2475):
mmap$auto(0x0, 0x800, 0x4000000000df, 0x40000000000ed0, 0xffffffffffffffff, 0x7ffc)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x448600, 0x0)
write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) (async, rerun: 64)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) (rerun: 64)
sendmsg$auto_NL80211_CMD_ADD_LINK_STA(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x800, 0x70bd29, 0x25dfdbfc, {}, [@NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x845}, 0x97a64b66617a15c7) (async, rerun: 64)
getrlimit$auto(0x3, 0x0) (async, rerun: 64)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/nullb0\x00', 0x60742, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x10, 0x2, 0x4) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r4 = socket(0x10, 0x2, 0xc)
adjtimex$auto(&(0x7f0000000000)={0xffff92b5, 0x0, 0x9, 0x3, 0x0, 0x80000000000000, 0x7ffffffe, 0x0, 0x4513, 0x9, 0xffffffffffffffff, {0x7, 0x6}, 0xfffffffc, 0xbfa, 0x9, 0xc, 0x0, 0x2, 0x8, 0xff, 0x10000, 0x100000001, 0x4}) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="b5e3492bd200fcdbdf2521000000080003"], 0x1c}}, 0x4000000) (async, rerun: 32)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r4, @ANYBLOB="01"], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x80) (async)
write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef)
ioctl$auto_BLKZEROOUT(r2, 0x127f, 0x0) (async)
r5 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x100eb1, 0x401, 0x8000) (async)
io_uring_setup$auto(0x6, 0x0) (async)
ioctl$auto_SNDRV_PCM_IOCTL_RESET2(r5, 0x4141, 0x0)

5.420974871s ago: executing program 3 (id=2477):
socket(0x2, 0x801, 0x100)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = io_uring_setup$auto(0x6, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';')
sendmsg$auto_NBD_CMD_STATUS(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)={0x20, 0x0, 0x400, 0x50bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x46}]}, 0x20}}, 0x24000001)
ppoll$auto(&(0x7f0000000140)={0xffffffffffffffff, 0x3ff, 0x4}, 0x7f, 0x0, 0x0, 0x8)
r2 = openat$auto_fops_u8_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/nfcsim/nfc1/dropframe\x00', 0x200, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000040)={0x5, "924ba5606b71574304331c0ecaaae281d91ec54d4f6cfb52ffc22e496b9ef639", @inferred=r2})

5.241018524s ago: executing program 4 (id=2478):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r0 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0)
mmap$auto(0x20000, 0x400008, 0x3, 0x9b72, 0xffffffffffffffff, 0x0)
r1 = socket(0x2, 0x1, 0x0)
getsockopt$auto(r1, 0x0, 0xcd, 0x0, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0)
r2 = openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'ip6tnl0\x00', <r3=>0x0})
connect$auto(r2, &(0x7f0000000280)=@xdp={0x2c, 0x2, r3, 0x25}, 0x5c2)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
fallocate$auto(r0, 0x1, 0x2, 0x6657)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x1, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0x5, 0xd, 0x8fd6, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x9, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1000000000000001, 0x1]}, 0x0)
socket(0xa, 0x4, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "00800000ffefffffff0200000001"}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x3, 0x0)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)

5.00362454s ago: executing program 0 (id=2479):
r0 = socket(0xa, 0x2, 0x0)
ioctl$auto(0x3, 0xae41, r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r1, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f00000004c0)={0x3c, r2, 0x789, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_MODULE_EEPROM_LENGTH={0x8, 0x3, 0x5}, @ETHTOOL_A_MODULE_EEPROM_OFFSET={0x8, 0x2, 0xdc}, @ETHTOOL_A_MODULE_EEPROM_I2C_ADDRESS={0x5, 0x6, 0x9}, @ETHTOOL_A_MODULE_EEPROM_BANK={0x5, 0x5, 0xb}, @ETHTOOL_A_MODULE_EEPROM_PAGE={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004840)
r3 = openat$auto_severities_coverage_fops_severity(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000040)=@link_update={r0, @new_map_fd, 0xffff, @old_prog_fd=r3}, 0x2)
mmap$auto(0x0, 0x2020009, 0x100003, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0xa, 0x801, 0x106)
setsockopt$auto(r4, 0x6, 0x21, 0x0, 0x10)
socket(0xa, 0x2, 0x73)
ioctl$auto(0x3, 0x80000541b, 0x38)
socket(0xa, 0x2, 0x0) (async)
ioctl$auto(0x3, 0xae41, r0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r1, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f00000004c0)={0x3c, r2, 0x789, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_MODULE_EEPROM_LENGTH={0x8, 0x3, 0x5}, @ETHTOOL_A_MODULE_EEPROM_OFFSET={0x8, 0x2, 0xdc}, @ETHTOOL_A_MODULE_EEPROM_I2C_ADDRESS={0x5, 0x6, 0x9}, @ETHTOOL_A_MODULE_EEPROM_BANK={0x5, 0x5, 0xb}, @ETHTOOL_A_MODULE_EEPROM_PAGE={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004840) (async)
openat$auto_severities_coverage_fops_severity(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async)
bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000040)=@link_update={r0, @new_map_fd, 0xffff, @old_prog_fd=r3}, 0x2) (async)
mmap$auto(0x0, 0x2020009, 0x100003, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
socket(0xa, 0x801, 0x106) (async)
setsockopt$auto(r4, 0x6, 0x21, 0x0, 0x10) (async)
socket(0xa, 0x2, 0x73) (async)
ioctl$auto(0x3, 0x80000541b, 0x38) (async)

4.561917153s ago: executing program 0 (id=2481):
r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/arp_tables_targets\x00', 0x582, 0x0)
mmap$auto(0x5, 0x20009, 0x4000000000e0, 0xeb1, 0x401, 0x200000008000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0xffffffffffffff6a, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4000009}, 0x24004880)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010600bd7000fbdbdf250a"], 0x1c}}, 0x20008810)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=':'], 0x1ac}}, 0x40000)
sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)
syz_genetlink_get_family_id$auto_nl80211(0x0, r1)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
sendmsg$auto_NL80211_CMD_GET_REG(r1, 0x0, 0x40010)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0xa, 0x8)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000180)=""/250, 0xfa)
unshare$auto(0x40000080)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x42, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x0, 0x3, 0x0)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0xfffffffffffffffe, 0x2003f2, 0x0)
r3 = syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="010231bd7047fddbdf250c0000006788695a5a5b"], 0x14}}, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x103003, 0x0)

4.464240841s ago: executing program 2 (id=2482):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x8, 0x8000) (async)
mmap$auto(0x0, 0x2, 0x7, 0xa99, 0x7, 0x0) (async)
keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8)
keyctl$auto(0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0) (async)
keyctl$auto(0x8, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x6) (async)
socket(0x11, 0x80003, 0x300)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x4004) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={0x0, 0x49}, 0x5, 0x0, 0x5, 0x1000}, 0x5}, 0x2, 0x100)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
r0 = socket(0x11, 0x80003, 0x300)
sendfile$auto(0x1, r0, 0x0, 0x8fb5) (async)
setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2) (async)
setuid$auto(0xe) (async)
keyctl$auto(0x7, 0xfffffffb, 0x2, 0x3e, 0x8)
close_range$auto(0x2, 0xa, 0x0) (async)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) (async)
keyctl$auto(0xffffffff, 0x0, 0x0, 0x0, 0x0) (async)
fsmount$auto(0xffffffffffffffff, 0x8, 0x6) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
socket(0x2, 0x801, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)

4.106084648s ago: executing program 4 (id=2483):
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x8000000401, 0x8000)
r0 = gettid()
close_range$auto(0x2, 0x8, 0x0)
r1 = timerfd_create$auto_CLOCK_BOOTTIME(0x7, 0x5)
r2 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), 0xffffffffffffffff)
r3 = openat$auto_ocfs2_control_fops_stack_user(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r4, &(0x7f00000002c0)='N\xd5\f\xb9GC*(,\x00\xc4bAL\xa3`\xb1\xf2\xe7\xc04b$\x99.\xb4\xcc\xc0%\xaa\xd3\xd5\xef\xa4\xd35u\xc0\xa6\r\xcaJ\x11\xaf\x93\xde\xc3|\x17\x96\xd1\x15g\x10\x1ai1(=!\xf1\xe8\xe4\xcdm\xedKW\xe7\xfbL\\\xf2sj(\v\xcd\xe5\x02B\x81ss\xdd\x8199\xa5\x1e\xb0A\xa3\xcbj7\xe9\xc9L\xcc\xc6\xa4\xaf%\xba\xda\xee\xd8%:bXj\xd5[UG\x8a\x8ab\x9a\x18\xe8K\xafU\x8d\xb1\f~\xaa\xab(\x86(\xf9\b\xf7$%\xf2\x11\xa4\x9bj\xc1)\n\x1ft\xb6\xaf\xe2\xd4\x95\xa3\xe1\x1f\xf7uw\a\xd0\x83{_>/\xff', 0x100000001)
r5 = waitid$auto_P_ALL(0x0, 0x2, 0x0, 0x5, &(0x7f0000000b40)={{0x2000000000003b}, {0xfffffffffffff4c5, 0x2}, 0x408, 0x8, 0x0, 0xdd0, 0x7, 0x10, 0x0, 0x4, 0x7, 0x7, 0x0, 0x96bd, 0x7ff, 0xbf0})
write$auto(r4, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587)
r6 = openat$auto_show_traces_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/available_tracers\x00', 0x20880, 0x0)
r7 = openat$auto_msft_opcode_fops_(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/bluetooth/hci7/msft_opcode\x00', 0x422a02, 0x0)
msgctl$auto_IPC_INFO(0x6, 0x3, &(0x7f0000000200)={{0x5, <r8=>0xee01, 0x0, 0x6, 0x5, 0x4, 0x2}, &(0x7f0000000180)=0x8, &(0x7f00000001c0)=0x2, 0x7fff, 0x5, 0x1ff, 0x39, 0x7bb1afd, 0x2, 0x800, 0x1, @raw=0x8, @inferred=r0})
msgctl$auto_IPC_SET(0x0, 0x1, &(0x7f0000000300)={{0x2703dfbe, 0xffffffffffffffff, 0xffffffffffffffff, 0x2, 0x7, 0x9, 0x7f}, &(0x7f0000000280), &(0x7f00000002c0)=0x9, 0xffffffffffffffff, 0x534, 0x1, 0x8, 0x0, 0x7f, 0x6, 0x4, @inferred=<r9=>r0, @inferred=<r10=>r0})
shmctl$auto_SHM_STAT_ANY(0x0, 0xf, &(0x7f00000004c0)={{0xe1, 0x0, 0xee01, 0x300, 0x6, 0x2, 0x9}, 0x4, 0xfff, 0x8, 0x7, @raw=0x3, @raw=0xdd, 0xfff8, 0x0, &(0x7f0000000380), &(0x7f00000005c0)="e0e9e67f12e1700a6a0b6f6a81833dca87e2d2d90109e11ef0bfaad6b6357ca977e12c3b1a53d3bdeb0412d2ed01a44f585d55b540965651c879863cabe71ac31fb540c5b67ad32b2a979f94bf68d4dab4683646688dfe7217fe07c0b804e5becfd00bcca2cfc46b40331cf0c9276fa514c922c009424dd89aef0e70430eae8c30701afa9279d7578e4974f011596783fb776a5b277550b01b7a08a94410bea3f55e10bb4493f4064193f283dd0e3bed0bebb73a1e875e9780499ea18aad73e478d9c2e55711e7e1964b0d30889e695e53cb2b3e860241193a89da2ecc02aaa1a8edc2038421cc2bf92d259f1d70612840"})
sendmsg$auto_OVS_CT_LIMIT_CMD_GET(r1, &(0x7f0000000580)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000540)={&(0x7f00000059c0)=ANY=[@ANYRES64=0x0, @ANYRES16=r2, @ANYRES16=r6, @ANYRES32=r0, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="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", @ANYRES32=r10, @ANYBLOB="100500000000000000005900", @ANYRES32=0xee00, @ANYBLOB="c90001800800130000000000e88f7754175f0fd57942355b56ced0f7907ab293e8e1d03c01e9899e69e56e896f608eec2edae73242785482bd8dea67f26ef70f6ad3e810d05e7661e817cad7c4d6b05ee43fb8c54ddc60c7039eda1ed81e43ca38f3be99a0469d9f6e865fdfafe7834c09e776182cc2794ade1a9ae0a32a8b80af522812d9cb64a973fc86bf0fab85949fb1cb6f3327d0aa6c0feb2cb8b2c1f7f76f171fde2ce5ffc70800c500", @ANYRES32=r6, @ANYBLOB='\b\x00\t\x00', @ANYRES32=r7, @ANYBLOB="040013800c002f800400648004001c000000003800018085c5d6b35fc7752575051d5be888e32982a2cf52b7f6423d0565af0077af1a8a7438fb509dc99e9417392b1e4ff7608f43aca6f1850201800c000a000f00000000000000787e4d9fe7123dd4fa1ddfabd83a4f26070144e70facca65e23eea5a43169d9724f9525603ce2a1f960cd96048f9443edbca1969f601a717bc287e34a3d9615265fdbe638c464a0176ca4c32a9b67b0b52f12d22b188f5811000348004005a8008006c00", @ANYRES32=r8, @ANYBLOB="6eb839f2b4fa3e4f59dec77c8b83c94bfb2111e7c294", @ANYRESHEX=r9, @ANYBLOB="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"], 0x2c58}, 0x1, 0x0, 0x0, 0x20000000}, 0x8840)
mmap$auto(0x7fff, 0x100, 0xdf, 0x9b73, 0x2, 0x4000000000)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x1ff, 0x20000000)
r11 = open(&(0x7f0000000040)='./file0\x00', 0x22240, 0x154)
fcntl$auto(r11, 0x400, 0x1)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
socket(0x2, 0x80002, 0x73)
shutdown$auto(0x200000003, 0x2)
fchdir$auto(0xffffffffffffffff)
unshare$auto(0x8000000)
semget$auto(0x0, 0x2e4a, 0x8000)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x1f4, 0x0)
unshare$auto(0x8000400)
r12 = fcntl$auto(0x3, 0xe9, r5)
read$auto_ftrace_enable_fops_trace_events(r12, &(0x7f0000000380)=""/158, 0x9e)

3.937093587s ago: executing program 3 (id=2484):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
timer_create$auto(0x3, 0x0, &(0x7f0000000280)=0x6)
timer_gettime$auto(0x0, &(0x7f0000001f80)={{0x9, 0x100000001}, {0x9f9a, 0x401}})
sched_setattr$auto(0x0, 0x0, 0x7b)
msync$auto(0x1ffff000, 0x1800000fffffff4, 0x400000004)
open(&(0x7f0000000080)='./file0\x00', 0x88981, 0x20)
mmap$auto(0x8005, 0x2020009, 0x3, 0xeb1, r1, 0x8000)
r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
madvise$auto(0x0, 0xffffffffffff0005, 0x200019)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6)
ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r2, 0x7cb, 0x0)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x2, 0x0)
sendmsg$auto_NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000440)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x160, 0x0, 0x4, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_IE_PROBE_RESP={0x14b, 0x7f, "bae078e19dbc69422c11bddcd28f5752e8064a6ef40d5796c0480da91691d53354d8da69d7d71a8a7c56199ec15ba929fb4f15cbc6bff9bc2c2ef7ecbeadc888b30b145c3f686aa8d7952884bb0dd1a77b896461344e925f154cb85063197a70e2ee4b0a3b0891c7d70989f54f4cf02f4547049fd8f287a6b9247009d838a57a38c11df5d0895b1c4b315971f9386aefea27a98573ce3f05fa4c5b32b9ef4f8c55529b4372de05eb19a55f232cbfd2592480d180ba578b2a170724812fe5c85025dfce3720414e2d04a42bac9091aef2283806b3f9606c751822bbfe7d1f88d384bcff08c1322f75d3a05f0d4c6e2cdac1adf5129f130a2ee59764d3c5a8fbdc4d9916dabe147dfac236a83eaea52680be6c81444bb34e1138e7056523532b16117d8e2b2890281dfb77ff82499ecb0c91983a1d5b2b34419ae28828e0764f99d781f1e87d439d"}]}, 0x160}, 0x1, 0x0, 0x0, 0x404c810}, 0x20000000)
write$auto_tomoyo_operations_securityfs_if(r4, 0x0, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)
mmap$auto(0x8, 0x400008, 0xdf, 0x9b72, 0x2, 0x3)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r5, r5, 0x0)
sysfs$auto(0x2, 0x3, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto_JFFS2_COMPR_MODE_FORCELZO(r5, 0x5, &(0x7f0000001880)='/proc/self/cmdline\x00', 0x0, 0x4)

3.415222247s ago: executing program 2 (id=2485):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x10, 0x0)
r0 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)
prctl$auto_PR_SET_DUMPABLE(0x4, 0xa91, 0x9, 0x6, 0xdd6)

3.357582699s ago: executing program 0 (id=2486):
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x80000000000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x80, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
io_uring_setup$auto(0x4, 0x0)
close_range$auto(0x0, 0xffffeffe, 0x2)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x1c8740, 0x0)
poll$auto(&(0x7f0000000100)={r0, 0x1, 0x4}, 0x7fe, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x401bf, 0x7352, 0x3f, 0x8000000000000001, 0x1ffde, 0xa, 0x3, 0x2, 0xc, 0x3, 0x2c873627, 0x4, 0x3000, 0x200, 0x6, 0x7ff, 0x83, 0x4, 0x0, 0x7, 0x1ffc, 0x202, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x4c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x1fe, 0xd)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='p\x00', @ANYRES16], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0xb, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='*'], 0x1ac}}, 0x40000)
r1 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000000), 0x8a80, 0x0)
mmap$auto(0x86, 0x4020009, 0x6, 0xeb1, r1, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
statx$auto(0xffffffffffffffff, 0x0, 0x1000, 0x8, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x6)
mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000)
r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
syz_genetlink_get_family_id$auto_ovs_meter(0x0, r2)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyt1\x00', 0x0, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x80802, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/swradio12\x00', 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0x36, 0x1009b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x40a, 0x5, 0xffffffff, 0x0)
socket(0x5, 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)

3.229037702s ago: executing program 2 (id=2487):
keyctl$auto_KEY_REQKEY_DEFL_NO_CHANGE(0x4, 0xffffffffffffffff, 0x0, 0x0, 0x800) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{&(0x7f0000000000), 0x406a37, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0xffff}, 0x8}, 0xb, 0xdb22, 0x0)
listen$auto(0x3, 0x81) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'ipvlan1\x00'})
r2 = socket(0x2, 0xa, 0x0)
sendmmsg$auto(r2, &(0x7f00000000c0)={{&(0x7f0000000000), 0xd1, &(0x7f0000000080)={0x0, 0x5ea}, 0x1, 0x0, 0x1, 0xaf23}, 0x6}, 0x5, 0x1997b23d)
socket(0xa, 0x5, 0x0) (async)
getsockopt$auto(0x6, 0x1, 0xb, 0xfffffffffffffffc, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty37\x00', 0x800, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async, rerun: 32)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'erspan0\x00'}) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002) (async, rerun: 32)
socket(0xa, 0x5, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
socket(0x23, 0x80805, 0x2) (rerun: 64)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async)
bpf$auto(0x0, &(0x7f0000000040)=@link_update={r0, @new_map_fd=r1, 0x10001, @old_map_fd}, 0x92) (async)
write$auto(r3, &(0x7f0000000080)='V\x89Zn\xbd\x93\x8e\x91$\x11\xddM\n\xc292\xb6$\xde|\x85\x83R\xe7*\x9bY\xce\xa9\x10\xf6\x8c|\xfb\xd0x\xd8\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa6f\xa8\xe0RV\x91\xd4\x16\xa9\xafWW\xb1\xf4o\x1d \xc6\xef\x9dB\xce\xde\xac\x97v\\n\x00\xc6L\xa8\x01~\xe9\x8d\xc7\x18\xcc\xed\xfe\xe3\xe6!\x9e\x9d\x04\xe9\xfc', 0xdda)

3.077897032s ago: executing program 4 (id=2488):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x8000, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
fchmod$auto(r0, 0x5)

2.604549708s ago: executing program 3 (id=2489):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge_slave_1\x00'})
sendmsg$auto_ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000002fc0)={0x14, r1, 0x1, 0x70bd2b, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20004800}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x3c, r3, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x58}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x11e789c}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/devices/platform/dummy_udc.5/udc/dummy_udc.5/function\x00', 0x62840, 0x0)
read$auto(r4, 0x0, 0x1ff)

2.356627262s ago: executing program 3 (id=2490):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0)
openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, 0x0, 0x440, 0x0)
socket(0x29, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/040/001\x00', 0x802, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x1c, 0x2, 0x8, 0x7fa, &(0x7f0000001800)})
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x0, 0x0)
r2 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001140)='/dev/psaux\x00', 0x42000, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000280)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x400b, r2, [0x0, 0x0, 0x4], {0x6, 0x6, 0x8c48, 0x29a, 0x109, 0x80, 0x104, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x24, 0xfe000000, 0x8, 0x3}})
r3 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x0, 0x0)
read$auto_vhci_fops_hci_vhci(r3, &(0x7f0000000d40)=""/16, 0x10)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000580)={[0x7, 0x8000, 0xd, 0x1, 0x948d, 0x3, 0x10015f4da06, 0xc, 0x7, 0x64c1, 0x8000001f, 0x8, 0x6d42, 0x100c, 0x2]}, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x1, 0x1)
setsockopt$auto(0x3, 0x0, 0x4, 0x0, 0x28)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff)
madvise$auto(0x0, 0x200007, 0x19)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

1.774229443s ago: executing program 4 (id=2491):
lsm_set_self_attr$auto(0x4, &(0x7f00000002c0)={0x6d, 0x8, 0x80}, 0x80, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0xb, 0x3, 0x1ff, 0x10001001, 0x1, 0x717e, 0x0, 0x7, 0x200000000000003, 0xd, 0x2, 0x80007, 0x4, 0x1ffffffffffd, 0x2, 0x2, 0x7, 0x10002, 0x7f, 0x8, 0x5, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0xfffd, 0xfffffffc, [0x56, 0x3, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x46, 0x7, 0x0, 0x0, 0x0, 0x7, 0x4, 0x2c, 0xa, 0x3, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x81, 0x0, 0x1, 0x1, 0xfffff7ffffffffff, 0x5eb3, 0x8000000, 0x0, 0xffffffffffffffff, 0x3]}, 0x1fe, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = getpid()
r1 = gettid()
sigaltstack$auto(&(0x7f0000000000)={0x0, 0x0, 0x12bc000000000}, 0x0)
rt_tgsigqueueinfo$auto(r0, r1, 0x21, 0x0)
sigaltstack$auto(&(0x7f00000000c0)={&(0x7f0000000040)="3cac28a645718bad5cc9de3d1e412790d619618eb80f022aea9fcb56eb5c64bf1da52c7c5e7c83dbb1b661d072f0aafd58fd0efd80dbe5836d27259c878e18a0ba0b4168719a94f6bffd1e6670213d2600af2f1963a7f2185040159240563bdee23b99", 0x7, 0x9}, &(0x7f0000000140)={&(0x7f0000000100)="0c4113ddbec6ac235fc0f851d44f7f21b41383bf8ec520ac2b99d57cae", 0x5, 0x2})
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x1541, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffffffffffd03, &(0x7f00000001c0))

1.663416705s ago: executing program 2 (id=2492):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/kernel/threads-max\x00', 0x20202, 0x0)
mmap$auto(0x0, 0xf4, 0xdf, 0xeb1, 0x69a5, 0xa800000000000000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'virt_wifi0\x00', <r1=>0x0})
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=r1, @ANYBLOB="0a0005000180c200000e00000a07000000000000000e00000a000100000000000000000008000200", @ANYRES32=r1], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
r2 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
r3 = socket(0x1d, 0x3, 0x1)
setsockopt$auto(r3, 0x65, 0x4, 0x0, 0x8)
r4 = socket(0x2, 0x1, 0x106)
getsockopt$auto_SO_PASSPIDFD(r4, 0x6, 0x4c, 0x0, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @empty}, 0x6a)
listen$auto(0x3, 0x81)
sendmmsg$auto(r2, 0x0, 0x5, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x100)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x89}, 0x7}, 0x3, 0x0)

1.429546766s ago: executing program 0 (id=2493):
shmctl$auto_SHM_UNLOCK(0x8, 0xc, &(0x7f0000000180)={{0x80000001, 0xee00, 0x0, 0x4, 0x1, 0x3, 0x94}, 0x3, 0x639, 0xffffffffffffffff, 0x291, @inferred=0xffffffffffffffff, @inferred, 0x7, 0x0, &(0x7f0000000080)="1321b4fcc1dcb5bc2d68f96b52e85f3fd7e415f14f5ee525e4b67927bab46eff41bab5529940fe12952bf8b98d61e12864a71c24035c502a0027f50c5b1bc9939d6952b2b6307722728de762a2811bd9ca8bced9b5d1851416fa4ff327bfc1a963bfb5", 0x0})
timer_settime$auto(0x0, 0x5, &(0x7f00000000c0)={{0x8, 0x10007}, {0x9, 0x10}}, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [{0x277, 0x3, 0x8d03}]})

1.194483787s ago: executing program 4 (id=2494):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r0 = prctl$auto_PR_SCHED_CORE_GET(0x3, 0x0, 0x0, 0x4, 0x3)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x40008c5)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card1/pcm0c/sub4/hw_params\x00', 0x109581, 0x0)
write$auto(0x3, 0x0, 0x100082)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(r1, 0xffffffffffffffff, 0xffffffff)
r2 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
fanotify_init$auto(0x65, 0x2)
pipe$auto(0x0)
clone$auto(0x7fff, 0xff, 0x0, 0x0, 0x7)
select$auto(0x12, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x8, 0xd3e, 0x1, 0x948b, 0x3, 0xf1f, 0x10001, 0x3, 0x62, 0x80000001, 0x7, 0xb, 0x9, 0x2, 0x7f]}, 0x0)
dup2$auto(0x5, 0x4)
write$auto(0x6, 0x0, 0x100000001)
splice$auto(0x4, 0x0, r2, 0x0, 0x10000, 0x7)
mmap$auto(0x8001, 0x440008, 0x2, 0x13, 0x2, 0x8000)
syz_genetlink_get_family_id$auto_smbd_genl(0x0, 0xffffffffffffffff)
sendmsg$auto_KSMBD_EVENT_LOGIN_RESPONSE(r2, 0x0, 0x20)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$auto_NET_SHAPER_CMD_GROUP(0xffffffffffffffff, 0x0, 0x14)
r3 = socket(0x2, 0x3, 0xff)
setsockopt$auto(r3, 0xff, 0x1, 0x0, 0x7)
getpriority$auto_PRIO_USER(0x2, 0x0)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
r4 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
write$auto(r4, 0x0, 0xfffffdef)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r5, 0x0, 0x7)

1.071108685s ago: executing program 2 (id=2495):
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x06:\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9', 0xfdef, 0x3)
r0 = socket(0x10, 0x2, 0x0)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd700002dcdf25030000000400080014000180100010800400080008000b00", @ANYRES32=0x0, @ANYBLOB="040036de3fcd1e6b833b4b7e990800"], 0x30}, 0x1, 0x0, 0x0, 0x200400f0}, 0x800)
io_uring_register$auto(0xffffffffffffffff, 0x1f, &(0x7f0000000180), 0x1)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80502, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f00000000c0))
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r7=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="2f212cbd7000fcdbdf25210000be4191bbb06bf4d5146c3bc3e88cc80008000300", @ANYRES32=r7, @ANYBLOB="04002c80"], 0x20}}, 0x4000000)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r8)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r10=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="2f212cbd7010ca705d845526cc0008000380", @ANYRES32=r10], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x8810)
sendmsg$auto_ETHTOOL_MSG_MODULE_GET(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000700)=ANY=[@ANYBLOB="0200000040d4ebeeeb145d45d8daa42dd095d099b5bc91bf12f055ab4e765976cf69000000000000000000", @ANYRES16=r3, @ANYBLOB="000028bd7000fddbdf252200000018000180140002006c6f000000000000000000000000000058000180140002007465616d5f736c6176655f300000000008000100", @ANYRES32=r7, @ANYBLOB="14000200767863616e31000000000000000000001400020063616966300000000000000000000000080003000700000008000100", @ANYRES32=r10, @ANYBLOB], 0x84}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="17000000", @ANYBLOB='j\x00%'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000980), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f00000002c0)={'dummy0\x00', <r13=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(0xffffffffffffffff, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000a40)={0x20, r12, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}]}]}, 0x20}, 0x1, 0x700000000000000}, 0x40000)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000005c0)={&(0x7f00000007c0)={0xe4, r12, 0x20, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}]}, @ETHTOOL_A_CHANNELS_HEADER={0x4}, @ETHTOOL_A_CHANNELS_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xb}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_CHANNELS_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x401}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_CHANNELS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xc3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}]}]}, 0xe4}, 0x1, 0x0, 0x0, 0x24004000}, 0x8841)
syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f00000006c0), r4)
mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x0, 0x8000)
bpf$auto(0x2, &(0x7f00000001c0)=@batch={0x8000000000008, 0x80000001, 0x20000000010008, 0xffffffffffffc32b, 0xa6d5, 0xffffffffffffffff, 0x7, 0x6}, 0x106)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000b00)=ANY=[@ANYRESHEX=r6, @ANYRES16, @ANYBLOB="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"], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="01"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x8000)
socket(0x10, 0x2, 0x4)

605.629396ms ago: executing program 2 (id=2497):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) (async)
close_range$auto(0x2, 0x8, 0xffffffff)
connect$auto(0xffffffffffffffff, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x1, 0xfffffffe}, 0x55)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(r1, &(0x7f0000000000)='//\xf2\x00', 0x80000000) (async)
adjtimex$auto(&(0x7f00000004c0)={0xf332b6e, 0x0, 0xfffffffffffffffc, 0xa67, 0x1, 0x2, 0x20000006, 0x0, 0xffffffffffffff7f, 0x368e, 0x2, {0xffffffff, 0x20000000010000}, 0x5, 0x6, 0xfffffffffffffffa, 0x47, 0x0, 0x9, 0x81, 0xffffffffffff628e, 0xa747, 0x7, 0x807})
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x581402, 0x0) (async)
r2 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0xc0402, 0x0)
ioctl$auto_posix_clock_file_operations_posix_clock(r2, 0xc0403d11, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto(0x1, 0x541b, 0x8) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
waitid$auto_P_ALL(0x0, 0x3b000, &(0x7f0000000280)={@_si_pad}, 0x0, &(0x7f0000000300)={{0xda0000000000000, 0x969d}, {0x2, 0x200}, 0x8000000000000000, 0x7, 0x8, 0xd11c, 0xb871, 0x6, 0x9ffd, 0x81, 0x4, 0x1000000000f8c5, 0xffa, 0x81, 0xa, 0xd}) (async)
madvise$auto(0x0, 0x2003f2, 0x15)
madvise$auto(0x0, 0x200007, 0x1d)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r3, &(0x7f00000003c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4G\x0f\xed\xc0D\xd6\xaf%\xa5\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xccT\fZq', 0x100000a3da) (async)
close_range$auto(0x0, 0xfffffffffffff001, 0x2) (async)
socket(0x2b, 0x1, 0x0) (async)
listen$auto(0x3, 0x81) (async)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
socket(0x3, 0xa, 0x20) (async)
open(&(0x7f0000000040)='./cgroup\x00', 0x80, 0xb5d1af1605322de0) (async)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x0, 0x0)

0s ago: executing program 4 (id=2498):
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x4, 0x9, 0x100, 0xffffffffffffffff, 0x2, 0x8}, 0x100000ce)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x29, 0x2, 0x0)
r1 = socket(0x10, 0x2, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/o2cb/logmask/ERROR\x00', 0x183042, 0x0)
sendfile$auto(r2, r2, 0x0, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000)
recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
ioctl$auto(r0, 0x89f1, 0x24)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) (async)
bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x4, 0x9, 0x100, 0xffffffffffffffff, 0x2, 0x8}, 0x100000ce) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socket(0x29, 0x2, 0x0) (async)
socket(0x10, 0x2, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/o2cb/logmask/ERROR\x00', 0x183042, 0x0) (async)
sendfile$auto(r2, r2, 0x0, 0x8000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000) (async)
recvmmsg$auto(r1, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0) (async)
rseq$auto(0x0, 0x8000, 0x0, 0x6) (async)
ioctl$auto(r0, 0x89f1, 0x24) (async)

kernel console output (not intermixed with test programs):

[  406.885943][T12170] R13: 00007f527f616038 R14: 00007f527f615fa0 R15: 00007ffdd5a9b288
[  406.885985][T12170]  </TASK>
[  407.472969][T12176] netlink: 'syz.0.1345': attribute type 1 has an invalid length.
[  408.037838][T12197] nfs: Unknown parameter '¼(7m$ÂÇ@A?žÀ¤Bñ(uÁýÓß¡ÒÞ]'
[  408.171852][T12204] FAULT_INJECTION: forcing a failure.
[  408.171852][T12204] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  408.262210][T12204] CPU: 1 UID: 0 PID: 12204 Comm: syz.0.1353 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  408.262255][T12204] Tainted: [L]=SOFTLOCKUP
[  408.262264][T12204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  408.262280][T12204] Call Trace:
[  408.262289][T12204]  <TASK>
[  408.262299][T12204]  dump_stack_lvl+0x100/0x190
[  408.262346][T12204]  should_fail_ex.cold+0x5/0xa
[  408.262377][T12204]  _copy_to_user+0x32/0xd0
[  408.262433][T12204]  simple_read_from_buffer+0xcb/0x170
[  408.262477][T12204]  proc_fail_nth_read+0x1af/0x230
[  408.262509][T12204]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  408.262544][T12204]  ? rw_verify_area+0xce/0x6d0
[  408.262580][T12204]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  408.262611][T12204]  vfs_read+0x1e4/0xb30
[  408.262657][T12204]  ? __pfx_vfs_read+0x10/0x10
[  408.262695][T12204]  ? __fget_files+0x215/0x3d0
[  408.262744][T12204]  ? __fget_files+0x21f/0x3d0
[  408.262794][T12204]  ksys_read+0x12a/0x250
[  408.262835][T12204]  ? __pfx_ksys_read+0x10/0x10
[  408.262888][T12204]  do_syscall_64+0x106/0xf80
[  408.262919][T12204]  ? clear_bhb_loop+0x40/0x90
[  408.262954][T12204]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.262983][T12204] RIP: 0033:0x7f527f35cece
[  408.263007][T12204] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  408.263033][T12204] RSP: 002b:00007f52801cefe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  408.263062][T12204] RAX: ffffffffffffffda RBX: 00007f52801cf6c0 RCX: 00007f527f35cece
[  408.263081][T12204] RDX: 000000000000000f RSI: 00007f52801cf0a0 RDI: 0000000000000005
[  408.263098][T12204] RBP: 00007f52801cf090 R08: 0000000000000000 R09: 0000000000000000
[  408.263114][T12204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  408.263129][T12204] R13: 00007f527f616038 R14: 00007f527f615fa0 R15: 00007ffdd5a9b288
[  408.263166][T12204]  </TASK>
[  412.740157][T12338] FAULT_INJECTION: forcing a failure.
[  412.740157][T12338] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  412.793737][T12338] CPU: 0 UID: 0 PID: 12338 Comm: syz.0.1384 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  412.793791][T12338] Tainted: [L]=SOFTLOCKUP
[  412.793803][T12338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  412.793820][T12338] Call Trace:
[  412.793831][T12338]  <TASK>
[  412.793842][T12338]  dump_stack_lvl+0x100/0x190
[  412.793895][T12338]  should_fail_ex.cold+0x5/0xa
[  412.793925][T12338]  ? prepare_alloc_pages+0x16d/0x5f0
[  412.793962][T12338]  should_fail_alloc_page+0xeb/0x140
[  412.794015][T12338]  prepare_alloc_pages+0x1f0/0x5f0
[  412.794056][T12338]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  412.794102][T12338]  ? rcu_is_watching+0x12/0xc0
[  412.794151][T12338]  ? __lock_acquire+0x4a5/0x2630
[  412.794203][T12338]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  412.794252][T12338]  ? do_raw_spin_lock+0x128/0x260
[  412.794295][T12338]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  412.794335][T12338]  ? find_held_lock+0x2b/0x80
[  412.794393][T12338]  ? __lock_acquire+0x4a5/0x2630
[  412.794440][T12338]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  412.794493][T12338]  ? policy_nodemask+0xed/0x4f0
[  412.794548][T12338]  alloc_pages_mpol+0x1fb/0x550
[  412.794601][T12338]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  412.794652][T12338]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  412.794687][T12338]  ? __folio_batch_add_and_move+0x5e5/0xc60
[  412.794730][T12338]  folio_alloc_mpol_noprof+0x36/0x340
[  412.794769][T12338]  shmem_alloc_folio+0x135/0x160
[  412.794810][T12338]  shmem_alloc_and_add_folio+0x371/0xd40
[  412.794859][T12338]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  412.794907][T12338]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  412.794960][T12338]  shmem_get_folio_gfp+0x6ab/0x1900
[  412.795007][T12338]  ? find_held_lock+0x2b/0x80
[  412.795055][T12338]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  412.795099][T12338]  ? ktime_get_coarse_real_ts64_mg+0x235/0x300
[  412.795135][T12338]  ? lockdep_hardirqs_on+0x78/0x100
[  412.795174][T12338]  shmem_fault+0x1f9/0xa20
[  412.795214][T12338]  ? __lock_acquire+0x4a5/0x2630
[  412.795249][T12338]  ? __pfx_shmem_fault+0x10/0x10
[  412.795294][T12338]  ? __up_read+0x2c5/0x700
[  412.795352][T12338]  ? __pfx_filemap_map_pages+0x10/0x10
[  412.795389][T12338]  __do_fault+0x10d/0x550
[  412.795448][T12338]  ? __pfx_filemap_map_pages+0x10/0x10
[  412.795487][T12338]  do_fault+0x2db/0x1950
[  412.795525][T12338]  __handle_mm_fault+0x180f/0x2b60
[  412.795573][T12338]  ? __pfx___handle_mm_fault+0x10/0x10
[  412.795613][T12338]  ? pte_offset_map_lock+0x174/0x320
[  412.795660][T12338]  ? find_held_lock+0x2b/0x80
[  412.795719][T12338]  ? follow_page_pte+0x5b3/0x1400
[  412.795758][T12338]  handle_mm_fault+0x36d/0xa20
[  412.795804][T12338]  __get_user_pages+0xf9c/0x34d0
[  412.795845][T12338]  ? down_read_killable+0x30e/0x4c0
[  412.795889][T12338]  ? __pfx___get_user_pages+0x10/0x10
[  412.795931][T12338]  faultin_page_range+0x1f1/0x9e0
[  412.795973][T12338]  madvise_do_behavior+0x354/0x510
[  412.796010][T12338]  ? __pfx_madvise_do_behavior+0x10/0x10
[  412.796067][T12338]  do_madvise+0x195/0x240
[  412.796099][T12338]  ? __pfx_do_madvise+0x10/0x10
[  412.796128][T12338]  ? do_futex+0x192/0x350
[  412.796170][T12338]  ? blkcg_maybe_throttle_current+0x5df/0xeb0
[  412.796238][T12338]  __x64_sys_madvise+0xa9/0x110
[  412.796269][T12338]  ? lockdep_hardirqs_on+0x78/0x100
[  412.796303][T12338]  do_syscall_64+0x106/0xf80
[  412.796336][T12338]  ? clear_bhb_loop+0x40/0x90
[  412.796375][T12338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.796533][T12338] RIP: 0033:0x7f527f39c629
[  412.796561][T12338] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  412.796591][T12338] RSP: 002b:00007f52801ae028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  412.796622][T12338] RAX: ffffffffffffffda RBX: 00007f527f616090 RCX: 00007f527f39c629
[  412.796642][T12338] RDX: 0000000000000017 RSI: ffffffffffff0005 RDI: 0000000000000000
[  412.796661][T12338] RBP: 00007f527f432b39 R08: 0000000000000000 R09: 0000000000000000
[  412.796679][T12338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  412.796697][T12338] R13: 00007f527f616128 R14: 00007f527f616090 R15: 00007ffdd5a9b288
[  412.796740][T12338]  </TASK>
[  413.862412][T12355] bridge0: port 3(gretap0) entered blocking state
[  413.869177][T12355] bridge0: port 3(gretap0) entered disabled state
[  413.911094][T12355] gretap0: entered allmulticast mode
[  413.998280][T12355] gretap0: entered promiscuous mode
[  414.011653][T12355] bridge0: port 3(gretap0) entered blocking state
[  414.018282][T12355] bridge0: port 3(gretap0) entered forwarding state
[  414.562565][T12367] random: crng reseeded on system resumption
[  414.783194][ T7089] Bluetooth: hci0: unexpected subevent 0x03 length: 253 > 9
[  415.119060][T12375] KVM: debugfs: duplicate directory 12375-3
[  415.880811][T12399] zswap: compressor  not available
[  416.416276][T12411] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1400: iget: checksum invalid
[  416.429083][T12411] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  416.464690][T12411] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1400: iget: checksum invalid
[  416.497697][T12411] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  416.535079][T12411] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1400: iget: checksum invalid
[  416.560787][T12411] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  416.626965][T12411] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1400: iget: checksum invalid
[  416.714441][T12411] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  416.731899][T12411] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  416.745152][T12411] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  416.951465][T12403] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12
[  417.342077][T12406] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input13
[  417.378873][T12422] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1403'.
[  417.429224][T12422] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1403'.
[  417.442987][T12426] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1404'.
[  418.098212][T12439] HfR: entered promiscuous mode
[  425.066188][T12601] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  425.686674][T12622] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1461'.
[  425.875441][T12618] zswap: compressor  not available
[  426.225962][T12616] netlink: 186 bytes leftover after parsing attributes in process `syz.0.1460'.
[  426.725352][T12626] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input14
[  427.252634][T12629] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input15
[  427.339520][T12670] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1470: iget: checksum invalid
[  427.461789][T12670] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  427.516958][T12670] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1470: iget: checksum invalid
[  427.560449][T12670] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  427.588044][T12670] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1470: iget: checksum invalid
[  427.601840][T12670] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  427.639358][T12670] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.2.1470: iget: checksum invalid
[  427.651104][T12670] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  427.677261][T12670] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  427.688962][T12670] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  427.710762][T12676] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1473'.
[  428.997955][T12697] netlink: 'syz.2.1478': attribute type 4 has an invalid length.
[  429.029431][T12697] netlink: 'syz.2.1478': attribute type 1 has an invalid length.
[  429.037470][T12698] netlink: 'syz.2.1478': attribute type 4 has an invalid length.
[  429.045724][T12698] netlink: 'syz.2.1478': attribute type 1 has an invalid length.
[  429.211696][T12697] Â: entered promiscuous mode
[  431.645552][T12727] FAULT_INJECTION: forcing a failure.
[  431.645552][T12727] name failslab, interval 1, probability 0, space 0, times 0
[  431.661269][T12727] CPU: 1 UID: 0 PID: 12727 Comm: syz.1.1487 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  431.661324][T12727] Tainted: [L]=SOFTLOCKUP
[  431.661336][T12727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  431.661356][T12727] Call Trace:
[  431.661366][T12727]  <TASK>
[  431.661378][T12727]  dump_stack_lvl+0x100/0x190
[  431.661429][T12727]  should_fail_ex.cold+0x5/0xa
[  431.661463][T12727]  should_failslab+0xc2/0x120
[  431.661509][T12727]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  431.661551][T12727]  ? alloc_empty_file+0x55/0x1c0
[  431.661594][T12727]  alloc_empty_file+0x55/0x1c0
[  431.661629][T12727]  alloc_file_pseudo+0x13a/0x230
[  431.661666][T12727]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  431.661711][T12727]  ? alloc_fd+0x476/0x790
[  431.661760][T12727]  ? do_raw_spin_unlock+0x145/0x1e0
[  431.661811][T12727]  __anon_inode_getfile+0xe8/0x280
[  431.661848][T12727]  anon_inode_getfile_fmode+0x37/0xa0
[  431.661884][T12727]  do_eventfd+0x159/0x2b0
[  431.661925][T12727]  __x64_sys_eventfd+0x32/0x50
[  431.661965][T12727]  do_syscall_64+0x106/0xf80
[  431.662000][T12727]  ? clear_bhb_loop+0x40/0x90
[  431.662038][T12727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.662070][T12727] RIP: 0033:0x7ff21c79c629
[  431.662097][T12727] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  431.662127][T12727] RSP: 002b:00007ff21a9f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000011c
[  431.662159][T12727] RAX: ffffffffffffffda RBX: 00007ff21ca15fa0 RCX: 00007ff21c79c629
[  431.662180][T12727] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  431.662198][T12727] RBP: 00007ff21c832b39 R08: 0000000000000000 R09: 0000000000000000
[  431.662217][T12727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  431.662244][T12727] R13: 00007ff21ca16038 R14: 00007ff21ca15fa0 R15: 00007fff559f0ad8
[  431.662285][T12727]  </TASK>
[  433.610151][T12764] ima: policy update failed
[  433.631155][   T30] audit: type=1807 audit(2147485722.187:17): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%ḦrêOŽ res=0
[  433.676205][   T30] audit: type=1802 audit(2147485722.187:18): pid=12764 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.0.1497" res=0 errno=0
[  433.759465][   T30] audit: type=1802 audit(2147485722.187:19): pid=12764 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.1497" res=0 errno=0
[  433.777469][T12769] device-mapper: ioctl: Unable to rename non-existent device,  to uuid „
[  434.008054][T12776] FAULT_INJECTION: forcing a failure.
[  434.008054][T12776] name fail_futex, interval 1, probability 0, space 0, times 0
[  434.049734][T12776] CPU: 1 UID: 0 PID: 12776 Comm: syz.0.1499 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  434.049765][T12776] Tainted: [L]=SOFTLOCKUP
[  434.049771][T12776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  434.049782][T12776] Call Trace:
[  434.049788][T12776]  <TASK>
[  434.049795][T12776]  dump_stack_lvl+0x100/0x190
[  434.049827][T12776]  should_fail_ex.cold+0x5/0xa
[  434.049845][T12776]  ? __mutex_unlock_slowpath+0x15c/0x790
[  434.049870][T12776]  get_futex_key+0x1d2/0x1620
[  434.049895][T12776]  ? __pfx_get_futex_key+0x10/0x10
[  434.049917][T12776]  ? _raw_write_unlock+0x28/0x50
[  434.049936][T12776]  ? keyring_instantiate+0x101/0x300
[  434.049960][T12776]  futex_wake+0xea/0x530
[  434.049989][T12776]  ? __pfx_futex_wake+0x10/0x10
[  434.050017][T12776]  ? keyring_free_preparse+0x9/0x10
[  434.050034][T12776]  ? key_instantiate_and_link+0x39d/0x4b0
[  434.050064][T12776]  ? key_alloc+0xbb4/0x1310
[  434.050096][T12776]  do_futex+0x32b/0x350
[  434.050119][T12776]  ? __pfx_do_futex+0x10/0x10
[  434.050147][T12776]  __x64_sys_futex+0x34f/0x4d0
[  434.050173][T12776]  ? __pfx___x64_sys_futex+0x10/0x10
[  434.050204][T12776]  do_syscall_64+0x106/0xf80
[  434.050227][T12776]  ? clear_bhb_loop+0x40/0x90
[  434.050250][T12776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  434.050269][T12776] RIP: 0033:0x7f527f39c629
[  434.050284][T12776] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  434.050302][T12776] RSP: 002b:00007f52801ae0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  434.050320][T12776] RAX: ffffffffffffffda RBX: 00007f527f616098 RCX: 00007f527f39c629
[  434.050331][T12776] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f527f61609c
[  434.050342][T12776] RBP: 00007f527f616090 R08: 0000000000000001 R09: 0000000000000000
[  434.050353][T12776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  434.050363][T12776] R13: 00007f527f616128 R14: 00007ffdd5a9b1a0 R15: 00007ffdd5a9b288
[  434.050385][T12776]  </TASK>
[  434.853435][T12789] Invalid ELF header magic: != ELF
[  435.241926][T12799] zswap: compressor  not available
[  435.330265][T12817] 
[  436.348476][T12832] FAULT_INJECTION: forcing a failure.
[  436.348476][T12832] name failslab, interval 1, probability 0, space 0, times 0
[  436.392561][T12832] CPU: 1 UID: 0 PID: 12832 Comm: syz.0.1510 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  436.392612][T12832] Tainted: [L]=SOFTLOCKUP
[  436.392624][T12832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  436.392642][T12832] Call Trace:
[  436.392652][T12832]  <TASK>
[  436.392664][T12832]  dump_stack_lvl+0x100/0x190
[  436.392716][T12832]  should_fail_ex.cold+0x5/0xa
[  436.392752][T12832]  should_failslab+0xc2/0x120
[  436.392801][T12832]  __kmalloc_cache_node_noprof+0x7d/0x770
[  436.392846][T12832]  ? blk_mq_init_tags+0x8c/0x300
[  436.392896][T12832]  blk_mq_init_tags+0x8c/0x300
[  436.392941][T12832]  blk_mq_alloc_map_and_rqs+0x218/0xeb0
[  436.392996][T12832]  blk_mq_alloc_sched_tags+0x1de/0x350
[  436.393037][T12832]  blk_mq_alloc_sched_res+0x8e/0x250
[  436.393073][T12832]  elevator_change+0x136/0x530
[  436.393129][T12832]  elv_iosched_store+0x3dc/0x480
[  436.393175][T12832]  ? __pfx_elv_iosched_store+0x10/0x10
[  436.393202][T12832]  ? kasan_save_track+0x14/0x30
[  436.393265][T12832]  ? __pfx_elv_iosched_store+0x10/0x10
[  436.393297][T12832]  queue_attr_store+0x25f/0x2f0
[  436.393342][T12832]  ? __pfx_queue_attr_store+0x10/0x10
[  436.393383][T12832]  ? __lock_acquire+0x4a5/0x2630
[  436.393437][T12832]  ? find_held_lock+0x2b/0x80
[  436.393482][T12832]  ? sysfs_file_kobj+0xe4/0x290
[  436.393515][T12832]  ? sysfs_file_kobj+0xe4/0x290
[  436.393553][T12832]  ? __pfx_queue_attr_store+0x10/0x10
[  436.393594][T12832]  sysfs_kf_write+0xf2/0x150
[  436.393630][T12832]  kernfs_fop_write_iter+0x3e0/0x5f0
[  436.393677][T12832]  ? __pfx_sysfs_kf_write+0x10/0x10
[  436.393716][T12832]  iter_file_splice_write+0x82b/0x10a0
[  436.393788][T12832]  ? __pfx_iter_file_splice_write+0x10/0x10
[  436.393845][T12832]  ? __pfx_copy_splice_read+0x10/0x10
[  436.393914][T12832]  ? __pfx_iter_file_splice_write+0x10/0x10
[  436.393965][T12832]  direct_splice_actor+0x192/0x6c0
[  436.394016][T12832]  splice_direct_to_actor+0x345/0xa30
[  436.394066][T12832]  ? __pfx_direct_splice_actor+0x10/0x10
[  436.394122][T12832]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  436.394191][T12832]  do_splice_direct+0x174/0x240
[  436.394238][T12832]  ? __pfx_do_splice_direct+0x10/0x10
[  436.394281][T12832]  ? common_file_perm+0x1ab/0x4f0
[  436.394327][T12832]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  436.394392][T12832]  ? rw_verify_area+0xce/0x6d0
[  436.394437][T12832]  do_sendfile+0xadc/0xe20
[  436.394488][T12832]  ? __pfx_do_sendfile+0x10/0x10
[  436.394535][T12832]  ? __x64_sys_futex+0x34f/0x4d0
[  436.394571][T12832]  ? __x64_sys_futex+0x358/0x4d0
[  436.394614][T12832]  __x64_sys_sendfile64+0x1d8/0x220
[  436.394647][T12832]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  436.394693][T12832]  do_syscall_64+0x106/0xf80
[  436.394727][T12832]  ? clear_bhb_loop+0x40/0x90
[  436.394766][T12832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.394798][T12832] RIP: 0033:0x7f527f39c629
[  436.394823][T12832] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  436.394851][T12832] RSP: 002b:00007f52801ae028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  436.394880][T12832] RAX: ffffffffffffffda RBX: 00007f527f616090 RCX: 00007f527f39c629
[  436.394899][T12832] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 0000000000000009
[  436.394916][T12832] RBP: 00007f527f432b39 R08: 0000000000000000 R09: 0000000000000000
[  436.394932][T12832] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000
[  436.394949][T12832] R13: 00007f527f616128 R14: 00007f527f616090 R15: 00007ffdd5a9b288
[  436.394990][T12832]  </TASK>
[  436.999764][T12847] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(201.0.67108862), cmd(12)
[  437.205525][T12858] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1519'.
[  437.250088][T12860] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1519'.
[  437.416653][   T30] audit: type=1804 audit(2147485725.987:20): pid=12858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1519" name="/newroot/324/file0" dev="tmpfs" ino=1715 res=1 errno=0
[  439.276534][T12902] cgroup: fork rejected by pids controller in /syz3
[  440.002775][T13071] zswap: compressor  not available
[  440.058002][T13076] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes
[  440.229080][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  440.238636][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  440.489682][ T7851] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  440.806872][T13094] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 0, inode_bitmap = 137
[  440.833604][ T7851] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  440.860023][T13094] EXT4-fs error (device sda1): ext4_validate_inode_bitmap:104: comm syz-executor: Corrupt inode bitmap - block_group = 1, inode_bitmap = 138
[  440.963484][T13094] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm syz-executor: bg 0: bad block bitmap checksum
[  441.117777][ T7851] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.340034][ T9949] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  441.351753][ T9949] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  441.364291][ T9949] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  441.375062][ T7851] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.403687][ T9949] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  441.412578][ T9949] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  443.062933][ T7851] bridge_slave_1: left allmulticast mode
[  443.088846][ T7851] bridge_slave_1: left promiscuous mode
[  443.096904][ T7851] bridge0: port 2(bridge_slave_1) entered disabled state
[  443.188060][ T7851] bridge_slave_0: left allmulticast mode
[  443.200413][ T7851] bridge_slave_0: left promiscuous mode
[  443.221068][ T7851] bridge0: port 1(bridge_slave_0) entered disabled state
[  443.499949][ T9949] Bluetooth: hci3: command tx timeout
[  444.172218][ T7851] HfR: left promiscuous mode
[  444.324728][ T7851] Â: left promiscuous mode
[  444.459654][T13144] kexec: Could not allocate control_code_buffer
[  444.524816][T13119] chnl_net:caif_netlink_parms(): no params data found
[  444.952453][T13119] bridge0: port 1(bridge_slave_0) entered blocking state
[  445.007186][T13119] bridge0: port 1(bridge_slave_0) entered disabled state
[  445.014565][T13119] bridge_slave_0: entered allmulticast mode
[  445.033520][T13119] bridge_slave_0: entered promiscuous mode
[  445.224526][T13119] bridge0: port 2(bridge_slave_1) entered blocking state
[  445.245961][T13119] bridge0: port 2(bridge_slave_1) entered disabled state
[  445.274022][T13119] bridge_slave_1: entered allmulticast mode
[  445.294339][T13119] bridge_slave_1: entered promiscuous mode
[  445.398192][T13119] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  445.467855][T13119] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  445.560003][ T9949] Bluetooth: hci3: command tx timeout
[  445.566775][T13180] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  445.573641][T13180] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  445.595571][T13180] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  445.604754][T13180] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  445.620841][T13180] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  445.634716][T13180] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  445.676801][T13119] team0: Port device team_slave_0 added
[  445.749707][T13119] team0: Port device team_slave_1 added
[  445.912479][ T7851] hsr_slave_0: left promiscuous mode
[  445.928623][ T7851] hsr_slave_1: left promiscuous mode
[  445.944877][ T7851] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  445.955077][ T7851] batman_adv: batadv0: Removing interface: batadv_slave_0
[  445.991491][ T7851] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  446.002041][ T7851] batman_adv: batadv0: Removing interface: batadv_slave_1
[  446.062600][ T7851] veth1_macvtap: left promiscuous mode
[  446.068802][ T7851] veth0_macvtap: left promiscuous mode
[  446.353636][T13224] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1562'.
[  446.597854][ T7851] team0 (unregistering): Port device team_slave_1 removed
[  446.623538][ T7851] team0 (unregistering): Port device team_slave_0 removed
[  446.834017][T13119] batman_adv: batadv0: Adding interface: batadv_slave_0
[  446.851587][T13119] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  446.899768][T13119] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  446.909712][ T9949] Bluetooth: hci1: command 0x0c1a tx timeout
[  446.998615][T13119] batman_adv: batadv0: Adding interface: batadv_slave_1
[  447.013280][T13119] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  447.063108][T13119] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  447.094645][T13224] gretap0: left allmulticast mode
[  447.104416][T13224] gretap0: left promiscuous mode
[  447.118776][T13224] bridge0: port 3(gretap0) entered disabled state
[  447.157706][T13224] bridge_slave_1: left allmulticast mode
[  447.163520][T13224] bridge_slave_1: left promiscuous mode
[  447.174777][T13224] bridge0: port 2(bridge_slave_1) entered disabled state
[  447.198868][T13224] bridge_slave_0: left allmulticast mode
[  447.624688][T13224] bridge_slave_0: left promiscuous mode
[  447.631749][T13224] bridge0: port 1(bridge_slave_0) entered disabled state
[  447.640652][ T9949] Bluetooth: hci3: command 0x0419 tx timeout
[  447.651841][ T7089] Bluetooth: hci0: command 0x0c1a tx timeout
[  447.662435][ T7084] Bluetooth: hci2: command 0x0c1a tx timeout
[  447.743756][T13234] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjEùrõ£Ò„yù*›"¤l-ý¤ôy–ú„
[  447.957335][T13119] hsr_slave_0: entered promiscuous mode
[  448.002518][T13119] hsr_slave_1: entered promiscuous mode
[  448.009259][T13119] debugfs: 'hsr0' already exists in 'hsr'
[  448.037341][T13119] Cannot create hsr debugfs directory
[  449.692995][ T7089] Bluetooth: hci3: command 0x0419 tx timeout
[  450.360273][T13119] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  450.395827][T13119] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  450.418240][T13119] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  450.461726][T13119] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  450.752664][T13119] 8021q: adding VLAN 0 to HW filter on device bond0
[  450.833011][T13119] 8021q: adding VLAN 0 to HW filter on device team0
[  451.023516][T13119] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  451.070141][T13119] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  451.433598][ T7863] bridge0: port 1(bridge_slave_0) entered blocking state
[  451.440873][ T7863] bridge0: port 1(bridge_slave_0) entered forwarding state
[  451.538226][ T7863] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.545760][ T7863] bridge0: port 2(bridge_slave_1) entered forwarding state
[  451.764913][ T7089] Bluetooth: hci3: command 0x0419 tx timeout
[  452.068859][T13119] 8021q: adding VLAN 0 to HW filter on device batadv0
[  452.376840][T13119] veth0_vlan: entered promiscuous mode
[  452.521023][T13119] veth1_vlan: entered promiscuous mode
[  452.636385][T13343] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1576'.
[  453.084451][T13345] netlink: 'syz.3.1577': attribute type 33 has an invalid length.
[  453.092787][T13345] netlink: 322 bytes leftover after parsing attributes in process `syz.3.1577'.
[  453.132534][T13119] veth0_macvtap: entered promiscuous mode
[  453.146166][T13119] veth1_macvtap: entered promiscuous mode
[  453.381503][T13119] batman_adv: batadv0: Interface activated: batadv_slave_0
[  453.480854][T13119] batman_adv: batadv0: Interface activated: batadv_slave_1
[  453.547145][ T7863] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  453.583049][ T7863] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  453.591941][ T7863] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  453.638255][ T7863] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  453.840999][ T7089] Bluetooth: hci3: command 0x0419 tx timeout
[  453.941496][T13376] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1582: iget: checksum invalid
[  453.964588][ T7863] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  453.981087][ T7863] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  453.990944][T13376] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  454.024055][T13376] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1582: iget: checksum invalid
[  454.055360][T13376] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  454.086902][T13376] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1582: iget: checksum invalid
[  454.123672][T13001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  454.132066][T13001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  454.141030][T13376] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  454.167257][T13376] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1582: iget: checksum invalid
[  454.200673][T13376] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  454.225563][T13376] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  454.252721][T13376] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  457.262383][T13438] FAULT_INJECTION: forcing a failure.
[  457.262383][T13438] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  457.343072][T13438] CPU: 0 UID: 0 PID: 13438 Comm: syz.0.1591 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  457.343125][T13438] Tainted: [L]=SOFTLOCKUP
[  457.343136][T13438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  457.343155][T13438] Call Trace:
[  457.343165][T13438]  <TASK>
[  457.343177][T13438]  dump_stack_lvl+0x100/0x190
[  457.343225][T13438]  should_fail_ex.cold+0x5/0xa
[  457.343255][T13438]  ? prepare_alloc_pages+0x16d/0x5f0
[  457.343291][T13438]  should_fail_alloc_page+0xeb/0x140
[  457.343343][T13438]  prepare_alloc_pages+0x1f0/0x5f0
[  457.343375][T13438]  ? bpf_ksym_find+0x124/0x1c0
[  457.343415][T13438]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  457.343461][T13438]  ? kernel_text_address+0x8d/0x100
[  457.343514][T13438]  ? __kernel_text_address+0xd/0x30
[  457.343563][T13438]  ? unwind_get_return_address+0x59/0xa0
[  457.343595][T13438]  ? arch_stack_walk+0xa6/0xf0
[  457.343638][T13438]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  457.343689][T13438]  ? stack_trace_save+0x8e/0xc0
[  457.343743][T13438]  ? stack_depot_save_flags+0x27/0x9d0
[  457.343793][T13438]  ? mas_store_prealloc+0x893/0xfb0
[  457.343850][T13438]  ? kasan_save_stack+0x3f/0x50
[  457.343900][T13438]  ? kasan_save_stack+0x30/0x50
[  457.343942][T13438]  ? kasan_save_track+0x14/0x30
[  457.343993][T13438]  ? __kasan_slab_alloc+0x89/0x90
[  457.344043][T13438]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  457.344085][T13438]  ? __pmd_alloc+0xbf/0x9c0
[  457.344115][T13438]  ? __handle_mm_fault+0xa99/0x2b60
[  457.344150][T13438]  ? handle_mm_fault+0x36d/0xa20
[  457.344185][T13438]  ? __get_user_pages+0xf9c/0x34d0
[  457.344213][T13438]  ? populate_vma_page_range+0x267/0x3f0
[  457.344244][T13438]  ? __mm_populate+0x107/0x3a0
[  457.344274][T13438]  ? vm_mmap_pgoff+0x37f/0x470
[  457.344302][T13438]  ? ksys_mmap_pgoff+0xe1/0x650
[  457.344348][T13438]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  457.344400][T13438]  ? policy_nodemask+0xed/0x4f0
[  457.344454][T13438]  alloc_pages_mpol+0x1fb/0x550
[  457.344506][T13438]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  457.344567][T13438]  alloc_pages_noprof+0x131/0x390
[  457.344618][T13438]  pte_alloc_one+0x1e/0x3e0
[  457.344648][T13438]  __pte_alloc+0x6d/0x3f0
[  457.344696][T13438]  ? __pfx___pte_alloc+0x10/0x10
[  457.344745][T13438]  ? do_raw_spin_lock+0x128/0x260
[  457.344787][T13438]  ? find_held_lock+0x2b/0x80
[  457.344837][T13438]  do_anonymous_page+0x13cc/0x1fb0
[  457.344876][T13438]  ? do_raw_spin_unlock+0x145/0x1e0
[  457.344920][T13438]  ? _raw_spin_unlock+0x28/0x50
[  457.344949][T13438]  ? __pmd_alloc+0x6aa/0x9c0
[  457.344993][T13438]  __handle_mm_fault+0x1d42/0x2b60
[  457.345038][T13438]  ? mt_find+0x45e/0x8e0
[  457.345077][T13438]  ? __pfx___handle_mm_fault+0x10/0x10
[  457.345113][T13438]  ? __pfx_mt_find+0x10/0x10
[  457.345185][T13438]  handle_mm_fault+0x36d/0xa20
[  457.345229][T13438]  __get_user_pages+0xf9c/0x34d0
[  457.345277][T13438]  ? __pfx___get_user_pages+0x10/0x10
[  457.345320][T13438]  populate_vma_page_range+0x267/0x3f0
[  457.345353][T13438]  ? __pfx_populate_vma_page_range+0x10/0x10
[  457.345384][T13438]  ? __pfx_find_vma_intersection+0x10/0x10
[  457.345432][T13438]  ? do_mmap+0x93f/0x12f0
[  457.345465][T13438]  __mm_populate+0x107/0x3a0
[  457.345499][T13438]  ? __pfx___mm_populate+0x10/0x10
[  457.345533][T13438]  ? up_write+0x290/0x4f0
[  457.345579][T13438]  vm_mmap_pgoff+0x37f/0x470
[  457.345616][T13438]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  457.345649][T13438]  ? do_futex+0x192/0x350
[  457.345688][T13438]  ? __pfx_do_futex+0x10/0x10
[  457.345734][T13438]  ksys_mmap_pgoff+0xe1/0x650
[  457.345783][T13438]  ? __x64_sys_futex+0x34f/0x4d0
[  457.345820][T13438]  ? __x64_sys_futex+0x358/0x4d0
[  457.345859][T13438]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  457.345909][T13438]  ? xfd_validate_state+0x129/0x190
[  457.345967][T13438]  __x64_sys_mmap+0x125/0x190
[  457.346016][T13438]  do_syscall_64+0x106/0xf80
[  457.346049][T13438]  ? clear_bhb_loop+0x40/0x90
[  457.346088][T13438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.346121][T13438] RIP: 0033:0x7f527f39c629
[  457.346148][T13438] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  457.346179][T13438] RSP: 002b:00007f52801cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  457.346208][T13438] RAX: ffffffffffffffda RBX: 00007f527f615fa0 RCX: 00007f527f39c629
[  457.346227][T13438] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  457.346245][T13438] RBP: 00007f527f432b39 R08: 0000000000000002 R09: 0000000000008000
[  457.346263][T13438] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  457.346281][T13438] R13: 00007f527f616038 R14: 00007f527f615fa0 R15: 00007ffdd5a9b288
[  457.346324][T13438]  </TASK>
[  458.091836][T13447] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1593'.
[  458.139012][T13447] bridge_slave_1: left allmulticast mode
[  458.144886][T13447] bridge_slave_1: left promiscuous mode
[  458.170603][T13447] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.232057][T13447] bridge_slave_0: left allmulticast mode
[  458.253083][T13447] bridge_slave_0: left promiscuous mode
[  458.268785][T13447] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.050864][T13460] netlink: 'syz.1.1596': attribute type 33 has an invalid length.
[  459.075534][T13460] netlink: 322 bytes leftover after parsing attributes in process `syz.1.1596'.
[  459.263968][T13470] netlink: 'syz.1.1600': attribute type 11 has an invalid length.
[  459.642049][T13485] netlink: 980 bytes leftover after parsing attributes in process `syz.3.1604'.
[  461.045773][T13522] netlink: 'syz.0.1609': attribute type 33 has an invalid length.
[  461.075335][T13522] netlink: 322 bytes leftover after parsing attributes in process `syz.0.1609'.
[  461.745078][T13547] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1618'.
[  461.766777][T13546] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1618'.
[  462.822628][T13581] bridge_slave_1: left allmulticast mode
[  462.829337][T13581] bridge_slave_1: left promiscuous mode
[  462.841606][T13581] bridge0: port 2(bridge_slave_1) entered disabled state
[  465.573925][T13625] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1634'.
[  469.637164][T13836] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1655'.
[  470.527861][T13850] MTRR 1 not used
[  472.624476][T13861] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1660'.
[  472.816645][T13865] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1661'.
[  477.799036][T13945] vhci_hcd vhci_hcd.0: invalid port number 16
[  479.035047][T13972] netlink: 4552 bytes leftover after parsing attributes in process `syz.2.1681'.
[  479.061289][T13972] writes to the poll attribute are ignored.
[  479.080275][T13972] please use driver specific parameters instead.
[  479.204926][T13978] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  479.229977][T13978] FAULT_INJECTION: forcing a failure.
[  479.229977][T13978] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  479.261667][T13978] CPU: 1 UID: 0 PID: 13978 Comm: syz.2.1683 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  479.261722][T13978] Tainted: [L]=SOFTLOCKUP
[  479.261735][T13978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  479.261751][T13978] Call Trace:
[  479.261762][T13978]  <TASK>
[  479.261774][T13978]  dump_stack_lvl+0x100/0x190
[  479.261825][T13978]  should_fail_ex.cold+0x5/0xa
[  479.261862][T13978]  _copy_from_user+0x2e/0xd0
[  479.261909][T13978]  restore_sigcontext+0xcd/0x6a0
[  479.261947][T13978]  ? __pfx_restore_sigcontext+0x10/0x10
[  479.262020][T13978]  ? __pfx_restore_altstack+0x10/0x10
[  479.262063][T13978]  ? _raw_spin_unlock_irq+0x23/0x50
[  479.262095][T13978]  ? lockdep_hardirqs_on+0x78/0x100
[  479.262135][T13978]  __do_sys_rt_sigreturn+0x229/0x2c0
[  479.262174][T13978]  ? __pfx___do_sys_rt_sigreturn+0x10/0x10
[  479.262222][T13978]  do_syscall_64+0x106/0xf80
[  479.262257][T13978]  ? clear_bhb_loop+0x40/0x90
[  479.262296][T13978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  479.262329][T13978] RIP: 0033:0x7fc66c93da19
[  479.262354][T13978] Code: 11 06 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 0c 25
[  479.262384][T13978] RSP: 002b:00007fc66d79fa80 EFLAGS: 00000246 ORIG_RAX: 000000000000000f
[  479.262414][T13978] RAX: ffffffffffffffda RBX: 00007fc66cc15fa0 RCX: 00007fc66c93da19
[  479.262434][T13978] RDX: 00007fc66d79fa80 RSI: 00007fc66d79fbb0 RDI: 0000000000000011
[  479.262453][T13978] RBP: 00007fc66ca32b39 R08: 0000000000000000 R09: 0000000000000000
[  479.262471][T13978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  479.262488][T13978] R13: 00007fc66cc16038 R14: 00007fc66cc15fa0 R15: 00007ffe8f033a98
[  479.262529][T13978]  </TASK>
[  479.316600][T13976] NFSD: Failed to start, no listeners configured.
[  482.469480][T14029] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1692'.
[  484.240993][T13702] syz.0.1648 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  484.263060][T13702] CPU: 1 UID: 0 PID: 13702 Comm: syz.0.1648 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  484.263106][T13702] Tainted: [L]=SOFTLOCKUP
[  484.263116][T13702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  484.263132][T13702] Call Trace:
[  484.263141][T13702]  <TASK>
[  484.263152][T13702]  dump_stack_lvl+0x100/0x190
[  484.263200][T13702]  dump_header+0xfb/0x606
[  484.263235][T13702]  oom_kill_process.cold+0xd/0x330
[  484.263282][T13702]  out_of_memory+0x340/0x14f0
[  484.263333][T13702]  ? __pfx_out_of_memory+0x10/0x10
[  484.263385][T13702]  mem_cgroup_out_of_memory+0xc6/0x130
[  484.263424][T13702]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  484.263460][T13702]  ? find_held_lock+0x2b/0x80
[  484.263514][T13702]  ? do_raw_spin_unlock+0x145/0x1e0
[  484.263556][T13702]  ? _raw_spin_unlock+0x28/0x50
[  484.263589][T13702]  try_charge_memcg+0x652/0xc90
[  484.263644][T13702]  ? __pfx_try_charge_memcg+0x10/0x10
[  484.263690][T13702]  ? find_held_lock+0x2b/0x80
[  484.263743][T13702]  ? rcu_read_unlock+0x17/0x60
[  484.263771][T13702]  ? rcu_read_unlock+0x17/0x60
[  484.263815][T13702]  charge_memcg+0xa6/0x280
[  484.263862][T13702]  __mem_cgroup_charge+0x2b/0x1e0
[  484.263898][T13702]  shmem_alloc_and_add_folio+0x451/0xd40
[  484.263951][T13702]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  484.263994][T13702]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  484.264047][T13702]  shmem_get_folio_gfp+0x6ab/0x1900
[  484.264097][T13702]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  484.264146][T13702]  shmem_write_begin+0x1a4/0x420
[  484.264189][T13702]  ? __pfx_shmem_write_begin+0x10/0x10
[  484.264234][T13702]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  484.264283][T13702]  ? lockdep_hardirqs_on+0x78/0x100
[  484.264322][T13702]  generic_perform_write+0x292/0xa40
[  484.264374][T13702]  ? __pfx_generic_perform_write+0x10/0x10
[  484.264422][T13702]  ? file_update_time_flags+0x373/0x500
[  484.264461][T13702]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  484.264490][T13702]  shmem_file_write_iter+0x10e/0x140
[  484.264523][T13702]  __kernel_write_iter+0x2ac/0x920
[  484.264570][T13702]  ? __pfx___kernel_write_iter+0x10/0x10
[  484.264614][T13702]  ? __up_read+0x2c5/0x700
[  484.264657][T13702]  ? dump_user_range+0x73b/0xb50
[  484.264697][T13702]  dump_user_range+0x3f9/0xb50
[  484.264735][T13702]  ? __pfx_dump_user_range+0x10/0x10
[  484.264769][T13702]  ? __pfx_writenote+0x10/0x10
[  484.264803][T13702]  elf_core_dump+0x2d16/0x3c60
[  484.264848][T13702]  ? __pfx_elf_core_dump+0x10/0x10
[  484.264872][T13702]  ? finish_task_switch.isra.0+0x200/0xb80
[  484.264907][T13702]  ? rcu_is_watching+0x12/0xc0
[  484.264945][T13702]  ? finish_task_switch.isra.0+0x2c6/0xb80
[  484.264972][T13702]  ? 0xffffffffff600000
[  484.264994][T13702]  ? __schedule+0x1000/0x60e0
[  484.265016][T13702]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  484.265039][T13702]  ? lockdep_hardirqs_on+0x78/0x100
[  484.265114][T13702]  ? vfs_coredump+0x27b4/0x5570
[  484.265135][T13702]  vfs_coredump+0x27b4/0x5570
[  484.265171][T13702]  ? __pfx_vfs_coredump+0x10/0x10
[  484.265196][T13702]  ? __lock_acquire+0x4a5/0x2630
[  484.265237][T13702]  ? lock_acquire+0x1cf/0x380
[  484.265280][T13702]  ? is_bpf_text_address+0x8a/0x1a0
[  484.265314][T13702]  ? bpf_ksym_find+0x124/0x1c0
[  484.265348][T13702]  ? __kernel_text_address+0xd/0x30
[  484.265380][T13702]  ? unwind_get_return_address+0x59/0xa0
[  484.265405][T13702]  ? arch_stack_walk+0xa6/0xf0
[  484.265438][T13702]  ? __sigqueue_free+0xbe/0x2a0
[  484.265467][T13702]  ? stack_trace_save+0x8e/0xc0
[  484.265503][T13702]  ? __pfx_stack_trace_save+0x10/0x10
[  484.265540][T13702]  ? stack_depot_save_flags+0x27/0x9d0
[  484.265578][T13702]  ? __lock_acquire+0x4a5/0x2630
[  484.265662][T13702]  ? proc_coredump_connector+0x2d3/0x4f0
[  484.265688][T13702]  ? __pfx_proc_coredump_connector+0x10/0x10
[  484.265727][T13702]  ? rcu_is_watching+0x12/0xc0
[  484.265765][T13702]  get_signal+0x1f2a/0x21e0
[  484.265802][T13702]  ? __pfx_get_signal+0x10/0x10
[  484.265822][T13702]  ? __pfx_force_sig_fault+0x10/0x10
[  484.265854][T13702]  arch_do_signal_or_restart+0x91/0x770
[  484.265884][T13702]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  484.265922][T13702]  ? do_user_addr_fault+0x8d6/0x12f0
[  484.265966][T13702]  irqentry_exit+0x1f8/0x670
[  484.265996][T13702]  asm_exc_page_fault+0x26/0x30
[  484.266019][T13702] RIP: 0033:0xc0000
[  484.266043][T13702] Code: Unable to access opcode bytes at 0xbffd6.
[  484.266053][T13702] RSP: 002b:000000000000000a EFLAGS: 00010217
[  484.266073][T13702] RAX: 0000000000000000 RBX: 00007f527f616180 RCX: 00007f527f39c629
[  484.266088][T13702] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b4a
[  484.266102][T13702] RBP: 00007f527f432b39 R08: 0000000000000002 R09: 0000000000000000
[  484.266116][T13702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  484.266129][T13702] R13: 00007f527f616218 R14: 00007f527f616180 R15: 00007ffdd5a9b288
[  484.266163][T13702]  </TASK>
[  484.266171][T13702] memory: usage 307200kB, limit 307200kB, failcnt 24093
[  485.162192][T13702] memory+swap: usage 432140kB, limit 9007199254740988kB, failcnt 0
[  485.183072][   T30] audit: type=1800 audit(2147485774.032:21): pid=14074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1702" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  485.376191][T13702] kmem: usage 3752kB, limit 9007199254740988kB, failcnt 0
[  485.415335][T13702] Memory cgroup stats for /syz0:
[  485.415679][T13702] cache 310321152
[  485.431410][T13702] rss 163840
[  485.434763][T13702] rss_huge 0
[  485.440028][T13702] shmem 310321152
[  485.443781][T13702] mapped_file 0
[  485.450570][T13702] dirty 0
[  485.467694][T13702] writeback 0
[  485.475521][T13702] workingset_refault_anon 7274
[  485.506550][T13702] workingset_refault_file 4826
[  485.521674][T13702] swap 127938560
[  485.525292][T13702] swapcached 167264256
[  485.552026][T13702] pgpgin 611978
[  485.555642][T13702] pgpgout 543826
[  485.596066][T13702] pgfault 430739
[  485.599752][T13702] pgmajfault 1177
[  485.614390][T13702] inactive_anon 141545472
[  485.640084][T13702] active_anon 168996864
[  485.664806][T13702] inactive_file 0
[  485.695117][T13702] active_file 0
[  485.715574][T13702] unevictable 0
[  485.719109][T13702] hierarchical_memory_limit 314572800
[  485.741400][T13702] hierarchical_memsw_limit 9223372036854771712
[  485.765152][T13702] total_cache 310321152
[  485.785159][T13702] total_rss 163840
[  485.788979][T13702] total_rss_huge 0
[  485.815312][T13702] total_shmem 310321152
[  485.819544][T13702] total_mapped_file 0
[  485.888054][T13702] total_dirty 0
[  485.953557][T13702] total_writeback 0
[  485.964162][T13702] total_workingset_refault_anon 7274
[  486.008299][T13702] total_workingset_refault_file 4826
[  486.032008][T13702] total_swap 127938560
[  486.043975][T13702] total_swapcached 167264256
[  486.056305][T13702] total_pgpgin 611978
[  486.075817][T13702] total_pgpgout 543826
[  486.080034][T13702] total_pgfault 430739
[  486.085015][T14084] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1705: iget: checksum invalid
[  486.114206][T13702] total_pgmajfault 1177
[  486.118400][T13702] total_inactive_anon 141545472
[  486.139427][T13702] total_active_anon 168996864
[  486.145092][T14084] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  486.156681][T13702] total_inactive_file 0
[  486.174365][T13702] total_active_file 0
[  486.178704][T13702] total_unevictable 0
[  486.188828][T13702] anon_cost 0
[  486.192387][T13702] file_cost 0
[  486.199481][T14084] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1705: iget: checksum invalid
[  486.220937][T13702] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.1648,pid=13708,uid=0
[  486.271099][T13702] Memory cgroup out of memory: Killed process 13708 (syz.0.1648) total-vm:98840kB, anon-rss:1344kB, file-rss:47908kB, shmem-rss:0kB, UID:0 pgtables:192kB oom_score_adj:1000
[  486.324030][T14084] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  486.376551][T14084] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1705: iget: checksum invalid
[  486.465048][T14084] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  486.514271][T14084] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.3.1705: iget: checksum invalid
[  486.565213][T14084] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  486.576504][T14084] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  486.623467][T14084] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  488.617143][T13707] syz.0.1648 (13707) used greatest stack depth: 20040 bytes left
[  488.775838][   T32] oom_reaper: reaped process 13708 (syz.0.1648), now anon-rss:0kB, file-rss:39400kB, shmem-rss:0kB
[  489.159536][T13691] syz.0.1648 (13691) used greatest stack depth: 19904 bytes left
[  489.194330][T13703] syz.0.1648 (13703) used greatest stack depth: 19576 bytes left
[  489.261252][T13690] syz.0.1648 (13690) used greatest stack depth: 19208 bytes left
[  490.519213][ T7089] Bluetooth: hci2: unexpected subevent 0x04 length: 122 > 11
[  491.250912][T13919] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  491.567494][T13919] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  491.715954][  T796] usb usb40-port2: attempt power cycle
[  491.791129][T13919] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  491.892491][ T7084] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  491.913559][ T7084] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  491.941190][ T7084] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  491.969795][ T7084] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  491.992952][ T7084] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  492.134753][T13919] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  492.341827][  T796] usb usb40-port2: unable to enumerate USB device
[  492.645278][T14187] zswap: compressor û not available
[  493.697442][T13919] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  493.743768][T13919] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  493.769544][T13919] bond0 (unregistering): Released all slaves
[  493.925610][T13919] HfR: left promiscuous mode
[  494.023137][ T7084] Bluetooth: hci1: command tx timeout
[  494.349545][T14171] chnl_net:caif_netlink_parms(): no params data found
[  494.817918][T14171] bridge0: port 1(bridge_slave_0) entered blocking state
[  494.937909][T14171] bridge0: port 1(bridge_slave_0) entered disabled state
[  494.945560][T14171] bridge_slave_0: entered allmulticast mode
[  494.955172][T14171] bridge_slave_0: entered promiscuous mode
[  494.975526][T14171] bridge0: port 2(bridge_slave_1) entered blocking state
[  494.991871][T14171] bridge0: port 2(bridge_slave_1) entered disabled state
[  495.022056][T14171] bridge_slave_1: entered allmulticast mode
[  495.039542][T14171] bridge_slave_1: entered promiscuous mode
[  495.226511][T14171] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  495.336579][T14171] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  495.387649][ T7084] Bluetooth: hci2: unexpected event 0x32 length: 727 > 9
[  495.561440][T14260] netlink: 354 bytes leftover after parsing attributes in process `syz.0.1739'.
[  495.708100][T14171] team0: Port device team_slave_0 added
[  495.719403][T14171] team0: Port device team_slave_1 added
[  495.906938][T14171] batman_adv: batadv0: Adding interface: batadv_slave_0
[  495.920608][T14171] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  495.959685][T14171] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  496.044147][T14171] batman_adv: batadv0: Adding interface: batadv_slave_1
[  496.062101][T14171] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  496.089038][T14171] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  496.103821][ T7084] Bluetooth: hci1: command tx timeout
[  496.629122][T14285] netlink: NAT attribute has 1 unknown bytes
[  496.701681][T14171] hsr_slave_0: entered promiscuous mode
[  496.727940][T14171] hsr_slave_1: entered promiscuous mode
[  496.744786][T14171] debugfs: 'hsr0' already exists in 'hsr'
[  496.767947][T14171] Cannot create hsr debugfs directory
[  497.281270][T14310] : Can't lookup blockdev
[  497.500119][T14317] netlink: 302 bytes leftover after parsing attributes in process `syz.3.1750'.
[  497.674980][   T30] audit: type=1807 audit(2147485786.587:22): UNKNOWN=òÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿ
[  497.675338][   T30] audit: type=1802 audit(2147485786.587:23): pid=14306 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.1745" res=0 errno=0
[  497.818899][T13919] hsr_slave_1: left promiscuous mode
[  497.857053][T13919] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  497.866398][T13919] batman_adv: batadv0: Removing interface: batadv_slave_0
[  497.874401][T13919] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  497.886602][T13919] batman_adv: batadv0: Removing interface: batadv_slave_1
[  497.992734][T13919] veth1_vlan: left promiscuous mode
[  497.998373][T13919] veth0_vlan: left promiscuous mode
[  498.169263][ T7084] Bluetooth: hci1: command tx timeout
[  498.338189][T14288] ima: policy update failed
[  498.388248][   T30] audit: type=1802 audit(2147485787.300:24): pid=14288 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.1745" res=0 errno=0
[  499.885125][T13919] team0 (unregistering): Port device team_slave_1 removed
[  499.982944][T13919] team0 (unregistering): Port device team_slave_0 removed
[  500.230544][ T7084] Bluetooth: hci1: command tx timeout
[  501.313453][T14171] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  501.353743][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  501.360631][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  501.430359][T14171] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  501.488280][T14171] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  501.568401][T14171] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  501.820055][T14368] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1760'.
[  501.863466][T14368] netlink: 330 bytes leftover after parsing attributes in process `syz.2.1760'.
[  502.312016][T14171] 8021q: adding VLAN 0 to HW filter on device bond0
[  502.374475][T14171] 8021q: adding VLAN 0 to HW filter on device team0
[  502.398195][T13911] bridge0: port 1(bridge_slave_0) entered blocking state
[  502.405618][T13911] bridge0: port 1(bridge_slave_0) entered forwarding state
[  502.462160][ T7842] bridge0: port 2(bridge_slave_1) entered blocking state
[  502.469412][ T7842] bridge0: port 2(bridge_slave_1) entered forwarding state
[  502.951799][T14371] vhci_hcd vhci_hcd.2: invalid port number 255
[  502.984015][T14371] vhci_hcd vhci_hcd.2: invalid port number 255
[  503.238700][T14171] 8021q: adding VLAN 0 to HW filter on device batadv0
[  503.494045][T14398] netlink: 'syz.3.1766': attribute type 21 has an invalid length.
[  503.543179][T14398] netlink: 326 bytes leftover after parsing attributes in process `syz.3.1766'.
[  503.845988][T14171] veth0_vlan: entered promiscuous mode
[  503.892528][T14171] veth1_vlan: entered promiscuous mode
[  503.973403][T14171] veth0_macvtap: entered promiscuous mode
[  504.014104][T14171] veth1_macvtap: entered promiscuous mode
[  504.051371][T14171] batman_adv: batadv0: Interface activated: batadv_slave_0
[  504.083001][T14171] batman_adv: batadv0: Interface activated: batadv_slave_1
[  504.116504][T13917] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  504.135256][T13917] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  504.160410][T13917] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  504.181113][T13917] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  504.484896][ T7842] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  504.518157][ T7842] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  504.603738][T13919] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  504.627881][T13919] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  510.195888][T14577] netlink: 'syz.3.1804': attribute type 1 has an invalid length.
[  510.204903][T14577] netlink: 314 bytes leftover after parsing attributes in process `syz.3.1804'.
[  510.966318][T14591] zswap: compressor û not available
[  512.270917][   T30] audit: type=1800 audit(2147485801.263:25): pid=14634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1819" name="dbroot" dev="configfs" ino=54631 res=0 errno=0
[  515.840967][T14728] FAULT_INJECTION: forcing a failure.
[  515.840967][T14728] name failslab, interval 1, probability 0, space 0, times 0
[  515.857376][T14728] CPU: 1 UID: 0 PID: 14728 Comm: syz.4.1835 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  515.857409][T14728] Tainted: [L]=SOFTLOCKUP
[  515.857416][T14728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  515.857427][T14728] Call Trace:
[  515.857433][T14728]  <TASK>
[  515.857440][T14728]  dump_stack_lvl+0x100/0x190
[  515.857480][T14728]  should_fail_ex.cold+0x5/0xa
[  515.857512][T14728]  should_failslab+0xc2/0x120
[  515.857558][T14728]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  515.857595][T14728]  ? alloc_inode+0x183/0x250
[  515.857629][T14728]  ? find_inode_fast+0x1fa/0x910
[  515.857664][T14728]  alloc_inode+0x183/0x250
[  515.857687][T14728]  iget_locked+0x1d9/0x6d0
[  515.857712][T14728]  ? __pfx_iget_locked+0x10/0x10
[  515.857732][T14728]  ? kernfs_root+0xee/0x2a0
[  515.857755][T14728]  ? kernfs_root+0xee/0x2a0
[  515.857782][T14728]  kernfs_get_inode+0x46/0x470
[  515.857805][T14728]  kernfs_iop_lookup+0x1a7/0x2d0
[  515.857832][T14728]  __lookup_slow+0x251/0x460
[  515.857855][T14728]  ? __pfx___lookup_slow+0x10/0x10
[  515.857887][T14728]  ? __d_lookup+0x266/0x4a0
[  515.857915][T14728]  lookup_slow+0x50/0x70
[  515.857936][T14728]  link_path_walk+0x1377/0x1cc0
[  515.857970][T14728]  path_openat+0x1be/0x31a0
[  515.857998][T14728]  ? kasan_save_stack+0x3f/0x50
[  515.858022][T14728]  ? kasan_save_stack+0x30/0x50
[  515.858047][T14728]  ? kasan_save_track+0x14/0x30
[  515.858072][T14728]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  515.858103][T14728]  ? __pfx_path_openat+0x10/0x10
[  515.858140][T14728]  do_file_open+0x20e/0x430
[  515.858171][T14728]  ? __pfx_do_file_open+0x10/0x10
[  515.858215][T14728]  ? alloc_fd+0x476/0x790
[  515.858245][T14728]  ? do_getname+0x191/0x390
[  515.858267][T14728]  do_sys_openat2+0x10d/0x1e0
[  515.858289][T14728]  ? __pfx_do_sys_openat2+0x10/0x10
[  515.858319][T14728]  __x64_sys_openat+0x12d/0x210
[  515.858341][T14728]  ? __pfx___x64_sys_openat+0x10/0x10
[  515.858372][T14728]  do_syscall_64+0x106/0xf80
[  515.858392][T14728]  ? clear_bhb_loop+0x40/0x90
[  515.858414][T14728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.858433][T14728] RIP: 0033:0x7ff192d9c629
[  515.858457][T14728] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  515.858475][T14728] RSP: 002b:00007ff190ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  515.858493][T14728] RAX: ffffffffffffffda RBX: 00007ff193015fa0 RCX: 00007ff192d9c629
[  515.858504][T14728] RDX: 0000000000183841 RSI: 0000200000000280 RDI: ffffffffffffff9c
[  515.858524][T14728] RBP: 00007ff192e32b39 R08: 0000000000000000 R09: 0000000000000000
[  515.858540][T14728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  515.858557][T14728] R13: 00007ff193016038 R14: 00007ff193015fa0 R15: 00007fffd0e27e38
[  515.858600][T14728]  </TASK>
[  516.622152][T14729] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  516.674160][T14729] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  516.684760][T14729] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  516.690933][T14729] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  516.721842][T14729] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  516.739539][T14745] netlink: 350 bytes leftover after parsing attributes in process `syz.4.1838'.
[  516.771511][T14729] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  517.102359][T14755] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1840'.
[  517.722083][T14760] kexec: Could not allocate control_code_buffer
[  518.226765][ T7084] Bluetooth: hci2: command 0x0c1a tx timeout
[  518.697103][ T7084] Bluetooth: hci1: command 0x0c1a tx timeout
[  518.703367][ T7089] Bluetooth: hci3: command 0x0419 tx timeout
[  518.709563][ T9949] Bluetooth: hci0: command 0x0c1a tx timeout
[  519.807953][T14827] block nbd7: not configured, cannot reconfigure
[  519.868900][T14825] block nbd7: not configured, cannot reconfigure
[  520.242364][T14833] Invalid ELF header magic: != ELF
[  520.763143][T14801] Bluetooth: hci1: command 0x0c1a tx timeout
[  522.838370][T14801] Bluetooth: hci1: command 0x0c1a tx timeout
[  523.412628][T14939] random: crng reseeded on system resumption
[  523.439577][T14939] hub 1-0:1.0: USB hub found
[  523.445177][T14939] hub 1-0:1.0: 1 port detected
[  524.483807][T14949] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1879'.
[  526.301263][T15004] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1897'.
[  527.560903][T15039] FAULT_INJECTION: forcing a failure.
[  527.560903][T15039] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  527.609405][T15039] CPU: 0 UID: 0 PID: 15039 Comm: syz.0.1907 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  527.609457][T15039] Tainted: [L]=SOFTLOCKUP
[  527.609469][T15039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  527.609487][T15039] Call Trace:
[  527.609498][T15039]  <TASK>
[  527.609510][T15039]  dump_stack_lvl+0x100/0x190
[  527.609578][T15039]  should_fail_ex.cold+0x5/0xa
[  527.609608][T15039]  ? prepare_alloc_pages+0x16d/0x5f0
[  527.609643][T15039]  should_fail_alloc_page+0xeb/0x140
[  527.609693][T15039]  prepare_alloc_pages+0x1f0/0x5f0
[  527.609731][T15039]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  527.609776][T15039]  ? arch_stack_walk+0xa6/0xf0
[  527.609823][T15039]  ? tomoyo_path_number_perm+0x46d/0x580
[  527.609865][T15039]  ? stack_trace_save+0x8e/0xc0
[  527.609911][T15039]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  527.609959][T15039]  ? __lock_acquire+0x4a5/0x2630
[  527.609995][T15039]  ? kasan_save_stack+0x3f/0x50
[  527.610048][T15039]  ? tomoyo_path_number_perm+0x46d/0x580
[  527.610090][T15039]  ? security_file_ioctl+0xd3/0x230
[  527.610132][T15039]  ? __x64_sys_ioctl+0xb7/0x210
[  527.610179][T15039]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  527.610231][T15039]  ? policy_nodemask+0xed/0x4f0
[  527.610298][T15039]  alloc_pages_mpol+0x1fb/0x550
[  527.610349][T15039]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  527.610390][T15039]  ? do_raw_spin_lock+0x128/0x260
[  527.610434][T15039]  ? find_held_lock+0x2b/0x80
[  527.610479][T15039]  ? do_proc_control+0x204/0xe50
[  527.610541][T15039]  alloc_pages_noprof+0x131/0x390
[  527.610593][T15039]  get_free_pages_noprof+0x10/0xb0
[  527.610647][T15039]  do_proc_control+0x210/0xe50
[  527.610695][T15039]  ? __might_fault+0xc5/0x140
[  527.610736][T15039]  ? __pfx_do_proc_control+0x10/0x10
[  527.610790][T15039]  usbdev_ioctl+0x1a28/0x3aa0
[  527.610836][T15039]  ? __pfx_usbdev_ioctl+0x10/0x10
[  527.610889][T15039]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  527.610939][T15039]  ? do_vfs_ioctl+0x226/0x13e0
[  527.610993][T15039]  ? find_held_lock+0x2b/0x80
[  527.611037][T15039]  ? __fget_files+0x215/0x3d0
[  527.611078][T15039]  ? hook_file_ioctl_common+0x146/0x410
[  527.611125][T15039]  ? __fget_files+0x21f/0x3d0
[  527.611174][T15039]  ? __pfx_usbdev_ioctl+0x10/0x10
[  527.611216][T15039]  __x64_sys_ioctl+0x18e/0x210
[  527.611260][T15039]  do_syscall_64+0x106/0xf80
[  527.611290][T15039]  ? clear_bhb_loop+0x40/0x90
[  527.611379][T15039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.611400][T15039] RIP: 0033:0x7f527f39c629
[  527.611417][T15039] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  527.611438][T15039] RSP: 002b:00007f52801cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  527.611466][T15039] RAX: ffffffffffffffda RBX: 00007f527f615fa0 RCX: 00007f527f39c629
[  527.611485][T15039] RDX: 0000200000000180 RSI: 00000000c0185500 RDI: 0000000000000007
[  527.611504][T15039] RBP: 00007f527f432b39 R08: 0000000000000000 R09: 0000000000000000
[  527.611521][T15039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  527.611535][T15039] R13: 00007f527f616038 R14: 00007f527f615fa0 R15: 00007ffdd5a9b288
[  527.611570][T15039]  </TASK>
[  528.910225][T15066] FAULT_INJECTION: forcing a failure.
[  528.910225][T15066] name failslab, interval 1, probability 0, space 0, times 0
[  528.940668][T15066] CPU: 1 UID: 0 PID: 15066 Comm: syz.4.1912 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  528.940700][T15066] Tainted: [L]=SOFTLOCKUP
[  528.940707][T15066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  528.940717][T15066] Call Trace:
[  528.940724][T15066]  <TASK>
[  528.940731][T15066]  dump_stack_lvl+0x100/0x190
[  528.940762][T15066]  should_fail_ex.cold+0x5/0xa
[  528.940784][T15066]  should_failslab+0xc2/0x120
[  528.940813][T15066]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  528.940839][T15066]  ? alloc_empty_file+0x55/0x1c0
[  528.940859][T15066]  ? __pfx_stack_trace_save+0x10/0x10
[  528.940892][T15066]  alloc_empty_file+0x55/0x1c0
[  528.940914][T15066]  path_openat+0xe8/0x31a0
[  528.940940][T15066]  ? kasan_save_stack+0x3f/0x50
[  528.940965][T15066]  ? kasan_save_stack+0x30/0x50
[  528.940989][T15066]  ? kasan_save_track+0x14/0x30
[  528.941013][T15066]  ? __kasan_slab_alloc+0x89/0x90
[  528.941039][T15066]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  528.941063][T15066]  ? do_getname+0x35/0x390
[  528.941081][T15066]  ? do_sys_openat2+0xc5/0x1e0
[  528.941101][T15066]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.941124][T15066]  ? __pfx_path_openat+0x10/0x10
[  528.941160][T15066]  do_file_open+0x20e/0x430
[  528.941190][T15066]  ? __pfx_do_file_open+0x10/0x10
[  528.941233][T15066]  ? alloc_fd+0x476/0x790
[  528.941262][T15066]  ? do_getname+0x191/0x390
[  528.941284][T15066]  do_sys_openat2+0x10d/0x1e0
[  528.941305][T15066]  ? __pfx_do_sys_openat2+0x10/0x10
[  528.941328][T15066]  ? fput+0x79/0x100
[  528.941357][T15066]  __x64_sys_openat+0x12d/0x210
[  528.941380][T15066]  ? __pfx___x64_sys_openat+0x10/0x10
[  528.941409][T15066]  do_syscall_64+0x106/0xf80
[  528.941431][T15066]  ? clear_bhb_loop+0x40/0x90
[  528.941453][T15066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.941472][T15066] RIP: 0033:0x7ff192d9c629
[  528.941489][T15066] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  528.941506][T15066] RSP: 002b:00007ff190ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  528.941524][T15066] RAX: ffffffffffffffda RBX: 00007ff193015fa0 RCX: 00007ff192d9c629
[  528.941536][T15066] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  528.941547][T15066] RBP: 00007ff192e32b39 R08: 0000000000000000 R09: 0000000000000000
[  528.941559][T15066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  528.941569][T15066] R13: 00007ff193016038 R14: 00007ff193015fa0 R15: 00007fffd0e27e38
[  528.941592][T15066]  </TASK>
[  529.696394][T15069] netlink: 'syz.3.1913': attribute type 2 has an invalid length.
[  529.819206][T15072] netlink: 'syz.3.1913': attribute type 2 has an invalid length.
[  531.614859][T15108] netlink: 190 bytes leftover after parsing attributes in process `syz.3.1926'.
[  532.397280][T15122] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  532.416697][T15122] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  532.446480][T15122] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  532.456908][T15122] page_type: f5(slab)
[  532.461049][T15122] raw: 00fff00000000040 ffff88813fe3c140 dead000000000100 dead000000000122
[  532.481492][T15122] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  532.507751][T15122] head: 00fff00000000040 ffff88813fe3c140 dead000000000100 dead000000000122
[  532.527820][T15122] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  532.579633][T15122] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  532.609522][T15122] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  532.680872][T15122] page dumped because: unmovable page
[  532.690952][T15122] page_owner tracks the page as allocated
[  532.761995][T15122] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 993, tgid 993 (kworker/u8:7), ts 154006122944, free_ts 153919899297
[  532.854730][T15122]  post_alloc_hook+0x153/0x170
[  532.859639][T15122]  get_page_from_freelist+0x111d/0x3140
[  532.929882][T15122]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  532.955696][T15122]  alloc_pages_mpol+0x1fb/0x550
[  533.102763][T15122]  new_slab+0x43a/0x6d0
[  533.107018][T15122]  ___slab_alloc+0x2a0/0x850
[  533.178671][T15122]  __kmalloc_node_track_caller_noprof+0x45c/0x850
[  533.236077][T15122]  kmalloc_reserve+0xe8/0x350
[  533.242199][T15122]  __alloc_skb+0x185/0x710
[  533.323544][T15122]  nsim_dev_trap_report_work+0x2af/0xd10
[  533.395932][T15122]  process_one_work+0x9d7/0x1920
[  533.518911][T15122]  worker_thread+0x5da/0xe40
[  533.523616][T15122]  kthread+0x370/0x450
[  533.622904][T15122]  ret_from_fork+0x754/0xd80
[  533.676237][T15122]  ret_from_fork_asm+0x1a/0x30
[  533.681123][T15122] page last free pid 5830 tgid 5830 stack trace:
[  533.724051][T15122]  __free_frozen_pages+0x7e1/0x10d0
[  533.729760][T15122]  __folio_put+0x3b4/0x540
[  533.737317][T15122]  page_to_skb+0x84e/0xc40
[  533.741859][T15122]  receive_buf+0x85b/0x4670
[  533.751578][T15122]  virtnet_poll+0x1cb3/0x3a70
[  533.766937][T15122]  __napi_poll.constprop.0+0xaf/0x450
[  533.772667][T15122]  net_rx_action+0xa40/0xf20
[  533.779734][T15122]  handle_softirqs+0x1eb/0x9e0
[  533.791632][T15122]  __irq_exit_rcu+0xef/0x150
[  533.809410][T15122]  irq_exit_rcu+0x9/0x30
[  533.904483][T15122]  common_interrupt+0xbe/0xe0
[  533.911472][T15122]  asm_common_interrupt+0x26/0x40
[  535.931026][T15171] vhci_hcd vhci_hcd.2: invalid port number 16
[  535.983791][T15171] vhci_hcd vhci_hcd.2: invalid port number 16
[  537.565678][T15210] futex_wake_op: syz.3.1951 tries to shift op by -2048; fix this program
[  537.626799][T15210] futex_wake_op: syz.3.1951 tries to shift op by -2048; fix this program
[  537.786652][T15214] futex_wake_op: syz.0.1952 tries to shift op by -2048; fix this program
[  537.849904][T15214] 0x000000000001-0x000000020000 : ""
[  538.043019][T15214] ftl_cs: FTL header corrupt!
[  538.266572][T15225] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  538.562779][T15233] random: crng reseeded on system resumption
[  539.642237][T15247] zswap: compressor  not available
[  540.468576][ T9059] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  540.480490][ T9059] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  540.489582][ T9059] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  540.498299][ T9059] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  540.511634][ T9059] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  541.816062][T15275] chnl_net:caif_netlink_parms(): no params data found
[  542.574738][ T9059] Bluetooth: hci4: command tx timeout
[  542.578507][T15275] bridge0: port 1(bridge_slave_0) entered blocking state
[  542.609469][T15275] bridge0: port 1(bridge_slave_0) entered disabled state
[  542.625165][T15275] bridge_slave_0: entered allmulticast mode
[  542.637822][T15275] bridge_slave_0: entered promiscuous mode
[  542.669781][T15275] bridge0: port 2(bridge_slave_1) entered blocking state
[  542.695365][T15275] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.702680][T15275] bridge_slave_1: entered allmulticast mode
[  542.713077][T15275] bridge_slave_1: entered promiscuous mode
[  542.820295][T15275] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  542.840012][T15275] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  542.965360][T15275] team0: Port device team_slave_0 added
[  543.007361][T15275] team0: Port device team_slave_1 added
[  543.109091][T15275] batman_adv: batadv0: Adding interface: batadv_slave_0
[  543.133904][T15275] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  543.191131][T15275] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  543.273320][T15275] batman_adv: batadv0: Adding interface: batadv_slave_1
[  543.280324][T15275] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  543.320562][T15275] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  543.591416][T15275] hsr_slave_0: entered promiscuous mode
[  543.623007][T15275] hsr_slave_1: entered promiscuous mode
[  543.632847][   T30] audit: type=1800 audit(2147486855.776:26): pid=15352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1983" name="features" dev="configfs" ino=58103 res=0 errno=0
[  543.634262][T15275] debugfs: 'hsr0' already exists in 'hsr'
[  543.709124][T15275] Cannot create hsr debugfs directory
[  544.109877][T15367] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1984'.
[  544.280329][T15275] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  544.443160][T15275] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  544.625178][T15381] random: crng reseeded on system resumption
[  544.656120][ T9059] Bluetooth: hci4: command tx timeout
[  544.663771][T15275] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  544.826055][T15275] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  545.151467][T15404] FAULT_INJECTION: forcing a failure.
[  545.151467][T15404] name failslab, interval 1, probability 0, space 0, times 0
[  545.216989][T15275] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  545.217108][T15404] CPU: 1 UID: 0 PID: 15404 Comm: syz.2.1993 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  545.217145][T15404] Tainted: [L]=SOFTLOCKUP
[  545.217154][T15404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  545.217168][T15404] Call Trace:
[  545.217176][T15404]  <TASK>
[  545.217186][T15404]  dump_stack_lvl+0x100/0x190
[  545.217227][T15404]  should_fail_ex.cold+0x5/0xa
[  545.217258][T15404]  ? tomoyo_encode2+0xfb/0x3c0
[  545.217282][T15404]  should_failslab+0xc2/0x120
[  545.217322][T15404]  __kmalloc_noprof+0xe0/0x850
[  545.217365][T15404]  tomoyo_encode2+0xfb/0x3c0
[  545.217396][T15404]  tomoyo_encode+0x29/0x50
[  545.217419][T15404]  tomoyo_realpath_from_path+0x18c/0x690
[  545.217462][T15404]  tomoyo_path_number_perm+0x23c/0x580
[  545.217498][T15404]  ? tomoyo_path_number_perm+0x22e/0x580
[  545.217537][T15404]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  545.217610][T15404]  ? find_held_lock+0x2b/0x80
[  545.217648][T15404]  ? __fget_files+0x215/0x3d0
[  545.217684][T15404]  ? hook_file_ioctl_common+0x146/0x410
[  545.217728][T15404]  ? __fget_files+0x21f/0x3d0
[  545.217771][T15404]  security_file_ioctl+0xd3/0x230
[  545.217811][T15404]  __x64_sys_ioctl+0xb7/0x210
[  545.217846][T15404]  do_syscall_64+0x106/0xf80
[  545.217875][T15404]  ? clear_bhb_loop+0x40/0x90
[  545.217906][T15404]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  545.217932][T15404] RIP: 0033:0x7fc66c99c629
[  545.217953][T15404] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  545.217978][T15404] RSP: 002b:00007fc66d7a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  545.218003][T15404] RAX: ffffffffffffffda RBX: 00007fc66cc15fa0 RCX: 00007fc66c99c629
[  545.218019][T15404] RDX: 00002000000000c0 RSI: 000000004008ae89 RDI: 0000000000000004
[  545.218035][T15404] RBP: 00007fc66d7a0090 R08: 0000000000000000 R09: 0000000000000000
[  545.218050][T15404] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  545.218065][T15404] R13: 00007fc66cc16038 R14: 00007fc66cc15fa0 R15: 00007ffe8f033a98
[  545.218100][T15404]  </TASK>
[  545.222053][T15404] ERROR: Out of memory at tomoyo_realpath_from_path.
[  545.446206][T15409] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1994'.
[  545.497361][T15275] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  545.502483][T15409] netlink: 354 bytes leftover after parsing attributes in process `syz.0.1994'.
[  545.529746][T15275] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  545.576805][T15275] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  546.246376][T15275] 8021q: adding VLAN 0 to HW filter on device bond0
[  546.303406][T15275] 8021q: adding VLAN 0 to HW filter on device team0
[  546.330792][ T7838] bridge0: port 1(bridge_slave_0) entered blocking state
[  546.338105][ T7838] bridge0: port 1(bridge_slave_0) entered forwarding state
[  546.385036][T13907] bridge0: port 2(bridge_slave_1) entered blocking state
[  546.392390][T13907] bridge0: port 2(bridge_slave_1) entered forwarding state
[  546.717008][ T9059] Bluetooth: hci4: command tx timeout
[  547.281825][T15465] zswap: compressor  not available
[  547.540287][ T7088] gretap0: left allmulticast mode
[  547.551168][ T7088] gretap0: left promiscuous mode
[  547.556506][ T7088] bridge0: port 4(gretap0) entered disabled state
[  547.570659][ T7088] dummy0: left allmulticast mode
[  547.576336][ T7088] dummy0: left promiscuous mode
[  547.581883][ T7088] bridge0: port 3(dummy0) entered disabled state
[  547.592738][ T7088] bridge_slave_0: left allmulticast mode
[  547.600625][ T7088] bridge_slave_0: left promiscuous mode
[  547.613134][ T7088] bridge0: port 1(bridge_slave_0) entered disabled state
[  547.876535][ T7088] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  547.887259][ T7088] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  547.897364][ T7088] bond0 (unregistering): Released all slaves
[  548.349490][T15275] 8021q: adding VLAN 0 to HW filter on device batadv0
[  548.801183][ T9059] Bluetooth: hci4: command tx timeout
[  548.809702][T15275] veth0_vlan: entered promiscuous mode
[  548.879652][T15275] veth1_vlan: entered promiscuous mode
[  549.167966][T15275] veth0_macvtap: entered promiscuous mode
[  549.422543][T15275] veth1_macvtap: entered promiscuous mode
[  549.704946][ T7088] hsr_slave_0: left promiscuous mode
[  549.713333][ T7088] hsr_slave_1: left promiscuous mode
[  549.721613][ T7088] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  549.729698][ T7088] batman_adv: batadv0: Removing interface: batadv_slave_0
[  549.752865][ T7088] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  549.760346][ T7088] batman_adv: batadv0: Removing interface: batadv_slave_1
[  549.780360][ T7088] veth1_vlan: left promiscuous mode
[  550.024133][ T7088] team0 (unregistering): Port device team_slave_1 removed
[  550.051070][ T7088] team0 (unregistering): Port device team_slave_0 removed
[  550.316134][T15275] batman_adv: batadv0: Interface activated: batadv_slave_0
[  550.392308][T15275] batman_adv: batadv0: Interface activated: batadv_slave_1
[  550.451540][ T9487] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  550.463928][ T9487] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  550.488521][ T9487] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  550.499511][ T9487] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  550.802349][ T7838] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  550.834977][ T7838] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  550.908223][ T7088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  550.927293][ T7088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  551.025588][T15507] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[  551.040040][ T9059] Bluetooth: hci1: unexpected event 0x32 length: 727 > 9
[  551.048928][T15507] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  551.117993][T15507] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[  551.158396][T15510] netlink: set zone limit has 8 unknown bytes
[  551.179959][T15510] netlink: zone id is out of range
[  551.185354][T15507] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  551.198974][T15510] netlink: zone id is out of range
[  551.207805][T15510] netlink: zone id is out of range
[  551.226716][T15507] page dumped because: unmovable page
[  551.249368][T15510] netlink: zone id is out of range
[  551.262755][T15507] page_owner info is not present (never set?)
[  551.283679][T15510] netlink: zone id is out of range
[  551.288893][T15510] netlink: zone id is out of range
[  551.335311][T15510] netlink: zone id is out of range
[  551.340703][T15510] netlink: zone id is out of range
[  551.394872][T15517] zswap: compressor  not available
[  551.433391][T15510] netlink: zone id is out of range
[  552.039257][T15535] FAULT_INJECTION: forcing a failure.
[  552.039257][T15535] name failslab, interval 1, probability 0, space 0, times 0
[  552.039313][T15535] CPU: 1 UID: 0 PID: 15535 Comm: syz.4.2023 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  552.039354][T15535] Tainted: [L]=SOFTLOCKUP
[  552.039364][T15535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  552.039381][T15535] Call Trace:
[  552.039390][T15535]  <TASK>
[  552.039400][T15535]  dump_stack_lvl+0x100/0x190
[  552.039448][T15535]  should_fail_ex.cold+0x5/0xa
[  552.039483][T15535]  ? tomoyo_realpath_from_path+0xb6/0x690
[  552.039515][T15535]  should_failslab+0xc2/0x120
[  552.039563][T15535]  __kmalloc_noprof+0xe0/0x850
[  552.039615][T15535]  tomoyo_realpath_from_path+0xb6/0x690
[  552.039656][T15535]  tomoyo_path_perm+0x276/0x460
[  552.039696][T15535]  ? tomoyo_path_perm+0x262/0x460
[  552.039740][T15535]  ? __pfx_tomoyo_path_perm+0x10/0x10
[  552.039828][T15535]  ? __fget_files+0x21f/0x3d0
[  552.039887][T15535]  security_inode_getattr+0x116/0x280
[  552.039929][T15535]  vfs_fstat+0x4b/0xe0
[  552.039964][T15535]  __do_sys_newfstat+0x8b/0x110
[  552.039994][T15535]  ? __pfx___do_sys_newfstat+0x10/0x10
[  552.040071][T15535]  do_syscall_64+0x106/0xf80
[  552.040106][T15535]  ? clear_bhb_loop+0x40/0x90
[  552.040146][T15535]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  552.040179][T15535] RIP: 0033:0x7ff192d9c629
[  552.040206][T15535] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  552.040235][T15535] RSP: 002b:00007ff190ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000005
[  552.040264][T15535] RAX: ffffffffffffffda RBX: 00007ff193015fa0 RCX: 00007ff192d9c629
[  552.040283][T15535] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000006
[  552.040301][T15535] RBP: 00007ff192e32b39 R08: 0000000000000000 R09: 0000000000000000
[  552.040319][T15535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  552.040336][T15535] R13: 00007ff193016038 R14: 00007ff193015fa0 R15: 00007fffd0e27e38
[  552.040378][T15535]  </TASK>
[  552.052017][T15535] ERROR: Out of memory at tomoyo_realpath_from_path.
[  553.011270][T15562] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2022'.
[  555.442706][ T9059] Bluetooth: hci0: unexpected event 0x32 length: 727 > 9
[  555.446098][T15634] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[  555.501226][T15634] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  555.569427][T15634] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[  555.649886][T15634] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  555.680305][T15634] page dumped because: unmovable page
[  555.737252][T15634] page_owner info is not present (never set?)
[  558.083345][T15684] sg_write: data in/out 196572/1048664 bytes for SCSI command 0x0-- guessing data in;
[  558.083345][T15684]    program syz.3.2051 not setting count and/or reply_len properly
[  559.246881][T15713] Line length is too long: Should be less than 4094
[  559.806061][T15719] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  559.857321][T15719] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  559.909218][T15719] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  559.980774][T15719] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  560.012577][T15719] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  560.309462][T15719] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  560.598098][T15712] FAULT_INJECTION: forcing a failure.
[  560.598098][T15712] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  560.611431][T15712] CPU: 1 UID: 0 PID: 15712 Comm: syz.0.2061 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  560.611469][T15712] Tainted: [L]=SOFTLOCKUP
[  560.611476][T15712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  560.611488][T15712] Call Trace:
[  560.611494][T15712]  <TASK>
[  560.611502][T15712]  dump_stack_lvl+0x100/0x190
[  560.611532][T15712]  should_fail_ex.cold+0x5/0xa
[  560.611554][T15712]  _copy_from_user+0x2e/0xd0
[  560.611582][T15712]  snd_rawmidi_kernel_write1+0x390/0x7c0
[  560.611620][T15712]  snd_rawmidi_write+0x2dc/0xc60
[  560.611656][T15712]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  560.611684][T15712]  ? common_file_perm+0x1ab/0x4f0
[  560.611712][T15712]  ? __pfx_default_wake_function+0x10/0x10
[  560.611732][T15712]  ? bpf_lsm_file_permission+0x9/0x10
[  560.611759][T15712]  ? security_file_permission+0x76/0x210
[  560.611787][T15712]  ? rw_verify_area+0xce/0x6d0
[  560.611813][T15712]  vfs_write+0x2aa/0x1070
[  560.611841][T15712]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  560.611871][T15712]  ? __pfx_vfs_write+0x10/0x10
[  560.611896][T15712]  ? find_held_lock+0x2b/0x80
[  560.611924][T15712]  ? __fget_files+0x215/0x3d0
[  560.611949][T15712]  ? __fget_files+0x215/0x3d0
[  560.611979][T15712]  ? __fget_files+0x21f/0x3d0
[  560.612013][T15712]  ksys_write+0x1f8/0x250
[  560.612040][T15712]  ? __pfx_ksys_write+0x10/0x10
[  560.612072][T15712]  do_syscall_64+0x106/0xf80
[  560.612092][T15712]  ? clear_bhb_loop+0x40/0x90
[  560.612114][T15712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.612133][T15712] RIP: 0033:0x7f527f39c629
[  560.612148][T15712] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  560.612165][T15712] RSP: 002b:00007f52801cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  560.612184][T15712] RAX: ffffffffffffffda RBX: 00007f527f615fa0 RCX: 00007f527f39c629
[  560.612195][T15712] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000007
[  560.612206][T15712] RBP: 00007f527f432b39 R08: 0000000000000000 R09: 0000000000000000
[  560.612216][T15712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  560.612226][T15712] R13: 00007f527f616038 R14: 00007f527f615fa0 R15: 00007ffdd5a9b288
[  560.612255][T15712]  </TASK>
[  561.430091][T15746] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  561.923726][ T9059] Bluetooth: hci1: command 0x0c1a tx timeout
[  561.929873][T14801] Bluetooth: hci3: command 0x0419 tx timeout
[  562.008536][ T9059] Bluetooth: hci4: command 0x0c1a tx timeout
[  562.137784][T15760] Invalid ELF header magic: != ELF
[  562.487809][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  562.494264][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  562.543287][T15775] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2076'.
[  562.555855][T15775] bridge0: port 2(bridge_slave_1) entered disabled state
[  562.565437][T15757] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  562.573427][T15757] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  562.582359][T15757] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  562.595377][T15757] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  562.604962][T15775] bridge_slave_1 (unregistering): left allmulticast mode
[  562.748119][T15775] bridge_slave_1 (unregistering): left promiscuous mode
[  562.780822][T15775] bridge0: port 2(bridge_slave_1) entered disabled state
[  562.926661][T15787] FAULT_INJECTION: forcing a failure.
[  562.926661][T15787] name failslab, interval 1, probability 0, space 0, times 0
[  562.960541][T15787] CPU: 0 UID: 0 PID: 15787 Comm: syz.2.2079 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  562.960591][T15787] Tainted: [L]=SOFTLOCKUP
[  562.960602][T15787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  562.960618][T15787] Call Trace:
[  562.960628][T15787]  <TASK>
[  562.960639][T15787]  dump_stack_lvl+0x100/0x190
[  562.960688][T15787]  should_fail_ex.cold+0x5/0xa
[  562.960723][T15787]  should_failslab+0xc2/0x120
[  562.960770][T15787]  __kvmalloc_node_noprof+0xfa/0xa00
[  562.960812][T15787]  ? seq_read_iter+0x819/0x1270
[  562.960864][T15787]  seq_read_iter+0x819/0x1270
[  562.960907][T15787]  ? __pfx__kstrtoull+0x10/0x10
[  562.960941][T15787]  ? __pfx_aa_file_perm+0x10/0x10
[  562.960980][T15787]  kernfs_fop_read_iter+0x46c/0x610
[  562.961012][T15787]  ? __lock_acquire+0x4a5/0x2630
[  562.961045][T15787]  ? copy_iovec_from_user+0x102/0x140
[  562.961092][T15787]  do_iter_readv_writev+0x60d/0x920
[  562.961136][T15787]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  562.961174][T15787]  ? common_file_perm+0x1ab/0x4f0
[  562.961230][T15787]  ? rw_verify_area+0xce/0x6d0
[  562.961272][T15787]  vfs_readv+0x4d3/0x8d0
[  562.961320][T15787]  ? get_pid_task+0x106/0x250
[  562.961365][T15787]  ? __pfx_vfs_readv+0x10/0x10
[  562.961414][T15787]  ? rcu_read_lock_any_held+0x6a/0xa0
[  562.961465][T15787]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  562.961529][T15787]  ? do_readv+0x13e/0x340
[  562.961567][T15787]  do_readv+0x13e/0x340
[  562.961608][T15787]  ? __pfx_do_readv+0x10/0x10
[  562.961659][T15787]  do_syscall_64+0x106/0xf80
[  562.961691][T15787]  ? clear_bhb_loop+0x40/0x90
[  562.961729][T15787]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  562.961759][T15787] RIP: 0033:0x7fc66c99c629
[  562.961785][T15787] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  562.961812][T15787] RSP: 002b:00007fc66d7a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  562.961841][T15787] RAX: ffffffffffffffda RBX: 00007fc66cc15fa0 RCX: 00007fc66c99c629
[  562.961860][T15787] RDX: 0000000000000003 RSI: 0000200000000a80 RDI: 0000000000000003
[  562.961877][T15787] RBP: 00007fc66d7a0090 R08: 0000000000000000 R09: 0000000000000000
[  562.961893][T15787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  562.961910][T15787] R13: 00007fc66cc16038 R14: 00007fc66cc15fa0 R15: 00007ffe8f033a98
[  562.961950][T15787]  </TASK>
[  563.834550][ T9059] Bluetooth: hci0: command 0x0c1a tx timeout
[  564.643893][ T9059] Bluetooth: hci4: command 0x0c1a tx timeout
[  564.650835][T14801] Bluetooth: hci1: command 0x0c1a tx timeout
[  564.657326][ T9949] Bluetooth: hci3: command 0x0419 tx timeout
[  565.601002][   T30] audit: type=1800 audit(2147486877.839:27): pid=15852 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2100" name="members" dev="configfs" ino=62581 res=0 errno=0
[  566.711080][ T9059] Bluetooth: hci4: command 0x0c1a tx timeout
[  566.858067][T15882] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18
[  567.519517][T15873] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  567.702931][T15873] FAULT_INJECTION: forcing a failure.
[  567.702931][T15873] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  567.734635][T15873] CPU: 1 UID: 0 PID: 15873 Comm: syz.3.2103 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  567.734681][T15873] Tainted: [L]=SOFTLOCKUP
[  567.734691][T15873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  567.734708][T15873] Call Trace:
[  567.734718][T15873]  <TASK>
[  567.734730][T15873]  dump_stack_lvl+0x100/0x190
[  567.734775][T15873]  should_fail_ex.cold+0x5/0xa
[  567.734809][T15873]  _copy_from_user+0x2e/0xd0
[  567.734854][T15873]  snd_rawmidi_kernel_write1+0x390/0x7c0
[  567.734915][T15873]  snd_rawmidi_write+0x2dc/0xc60
[  567.734975][T15873]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  567.735015][T15873]  ? common_file_perm+0x1ab/0x4f0
[  567.735056][T15873]  ? __pfx_default_wake_function+0x10/0x10
[  567.735087][T15873]  ? bpf_lsm_file_permission+0x9/0x10
[  567.735125][T15873]  ? security_file_permission+0x76/0x210
[  567.735168][T15873]  ? rw_verify_area+0xce/0x6d0
[  567.735217][T15873]  vfs_write+0x2aa/0x1070
[  567.735258][T15873]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  567.735310][T15873]  ? __pfx_vfs_write+0x10/0x10
[  567.735345][T15873]  ? find_held_lock+0x2b/0x80
[  567.735385][T15873]  ? __fget_files+0x215/0x3d0
[  567.735424][T15873]  ? __fget_files+0x215/0x3d0
[  567.735471][T15873]  ? __fget_files+0x21f/0x3d0
[  567.735520][T15873]  ksys_write+0x1f8/0x250
[  567.735559][T15873]  ? __pfx_ksys_write+0x10/0x10
[  567.735609][T15873]  do_syscall_64+0x106/0xf80
[  567.735639][T15873]  ? clear_bhb_loop+0x40/0x90
[  567.735674][T15873]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.735701][T15873] RIP: 0033:0x7f0bb859c629
[  567.735726][T15873] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  567.735752][T15873] RSP: 002b:00007f0bb93a2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  567.735779][T15873] RAX: ffffffffffffffda RBX: 00007f0bb8815fa0 RCX: 00007f0bb859c629
[  567.735798][T15873] RDX: 000000100000a3d9 RSI: 00002000000000c0 RDI: 0000000000000007
[  567.735815][T15873] RBP: 00007f0bb8632b39 R08: 0000000000000000 R09: 0000000000000000
[  567.735832][T15873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  567.735848][T15873] R13: 00007f0bb8816038 R14: 00007f0bb8815fa0 R15: 00007fff9db7f458
[  567.735886][T15873]  </TASK>
[  569.603234][T15938] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2117'.
[  570.865302][T15956] FAULT_INJECTION: forcing a failure.
[  570.865302][T15956] name failslab, interval 1, probability 0, space 0, times 0
[  570.892110][T15956] CPU: 1 UID: 0 PID: 15956 Comm: syz.2.2124 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  570.892161][T15956] Tainted: [L]=SOFTLOCKUP
[  570.892173][T15956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  570.892190][T15956] Call Trace:
[  570.892200][T15956]  <TASK>
[  570.892212][T15956]  dump_stack_lvl+0x100/0x190
[  570.892262][T15956]  should_fail_ex.cold+0x5/0xa
[  570.892295][T15956]  ? sk_prot_alloc+0x10b/0x2a0
[  570.892332][T15956]  should_failslab+0xc2/0x120
[  570.892379][T15956]  __kmalloc_noprof+0xe0/0x850
[  570.892428][T15956]  sk_prot_alloc+0x10b/0x2a0
[  570.892470][T15956]  sk_alloc+0x36/0xe80
[  570.892500][T15956]  pfkey_create+0x105/0x600
[  570.892537][T15956]  __sock_create+0x339/0x860
[  570.892587][T15956]  __sys_socket+0x14d/0x260
[  570.892629][T15956]  ? __pfx___sys_socket+0x10/0x10
[  570.892676][T15956]  __x64_sys_socket+0x72/0xb0
[  570.892715][T15956]  ? lockdep_hardirqs_on+0x78/0x100
[  570.892748][T15956]  do_syscall_64+0x106/0xf80
[  570.892779][T15956]  ? clear_bhb_loop+0x40/0x90
[  570.892814][T15956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  570.892845][T15956] RIP: 0033:0x7fc66c99c629
[  570.892871][T15956] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  570.892898][T15956] RSP: 002b:00007fc66d77f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  570.892937][T15956] RAX: ffffffffffffffda RBX: 00007fc66cc16090 RCX: 00007fc66c99c629
[  570.892956][T15956] RDX: 0000000000000002 RSI: 0000000000000003 RDI: 000000000000000f
[  570.892973][T15956] RBP: 00007fc66ca32b39 R08: 0000000000000000 R09: 0000000000000000
[  570.892990][T15956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  570.893008][T15956] R13: 00007fc66cc16128 R14: 00007fc66cc16090 R15: 00007ffe8f033a98
[  570.893048][T15956]  </TASK>
[  574.133174][T16001] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_cmd_wq": -EINTR
[  574.384233][T16008] netlink: 342 bytes leftover after parsing attributes in process `syz.0.2136'.
[  576.426202][ T5839] usb usb40-port2: attempt power cycle
[  577.022997][ T5839] usb usb40-port2: unable to enumerate USB device
[  578.697155][   T30] audit: type=1800 audit(2147486891.011:28): pid=16082 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2151" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  579.488980][T16089] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2153'.
[  579.540909][T16090] netlink: 338 bytes leftover after parsing attributes in process `syz.3.2153'.
[  581.837998][T16124] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2162'.
[  582.729687][T16147] nbd: illegal input index -1073741824
[  582.735512][T16147] nbd: illegal input index -1073741824
[  582.837185][T16147] nbd: illegal input index -1073741824
[  583.951084][T16183] net_ratelimit: 20 callbacks suppressed
[  583.951117][T16183] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  584.206162][T16179] block nbd8: shutting down sockets
[  584.253427][T16182] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2173'.
[  585.588185][T16202] Invalid ELF header magic: != ELF
[  587.479526][T16224] ima: policy update failed
[  587.506804][   T30] audit: type=1802 audit(4294967304.545:29): pid=16224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2181" res=0 errno=0
[  587.988897][T16245] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2187'.
[  588.170317][T16236] netlink: 4128 bytes leftover after parsing attributes in process `syz.2.2183'.
[  588.565382][T16250] dyndbg: bad flag-op p, at start of print-parent
[  588.588272][T16250] dyndbg: flags parse failed
[  588.605196][T16250] dyndbg: bad flag-op n, at start of nosym-o
[  588.623414][T16250] dyndbg: flags parse failed
[  590.526117][T16284] bridge_slave_1: left allmulticast mode
[  590.545439][T16284] bridge_slave_1: left promiscuous mode
[  590.569353][T16284] bridge0: port 2(bridge_slave_1) entered disabled state
[  591.100866][T16300] FAULT_INJECTION: forcing a failure.
[  591.100866][T16300] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  591.131046][T16300] CPU: 1 UID: 0 PID: 16300 Comm: syz.4.2200 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  591.131095][T16300] Tainted: [L]=SOFTLOCKUP
[  591.131101][T16300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  591.131112][T16300] Call Trace:
[  591.131118][T16300]  <TASK>
[  591.131126][T16300]  dump_stack_lvl+0x100/0x190
[  591.131158][T16300]  should_fail_ex.cold+0x5/0xa
[  591.131179][T16300]  _copy_from_user+0x2e/0xd0
[  591.131208][T16300]  snd_rawmidi_kernel_write1+0x390/0x7c0
[  591.131246][T16300]  snd_rawmidi_write+0x2dc/0xc60
[  591.131280][T16300]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  591.131308][T16300]  ? common_file_perm+0x1ab/0x4f0
[  591.131337][T16300]  ? __pfx_default_wake_function+0x10/0x10
[  591.131357][T16300]  ? bpf_lsm_file_permission+0x9/0x10
[  591.131383][T16300]  ? security_file_permission+0x76/0x210
[  591.131414][T16300]  ? rw_verify_area+0xce/0x6d0
[  591.131439][T16300]  vfs_write+0x2aa/0x1070
[  591.131466][T16300]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  591.131497][T16300]  ? __pfx_vfs_write+0x10/0x10
[  591.131521][T16300]  ? find_held_lock+0x2b/0x80
[  591.131549][T16300]  ? __fget_files+0x215/0x3d0
[  591.131575][T16300]  ? __fget_files+0x215/0x3d0
[  591.131605][T16300]  ? __fget_files+0x21f/0x3d0
[  591.131636][T16300]  ksys_write+0x1f8/0x250
[  591.131662][T16300]  ? __pfx_ksys_write+0x10/0x10
[  591.131698][T16300]  do_syscall_64+0x106/0xf80
[  591.131719][T16300]  ? clear_bhb_loop+0x40/0x90
[  591.131740][T16300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.131759][T16300] RIP: 0033:0x7ff192d9c629
[  591.131774][T16300] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  591.131791][T16300] RSP: 002b:00007ff190fd5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  591.131809][T16300] RAX: ffffffffffffffda RBX: 00007ff193016090 RCX: 00007ff192d9c629
[  591.131820][T16300] RDX: 000000100000a3d9 RSI: 0000200000000640 RDI: 0000000000000004
[  591.131830][T16300] RBP: 00007ff192e32b39 R08: 0000000000000000 R09: 0000000000000000
[  591.131841][T16300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  591.131851][T16300] R13: 00007ff193016128 R14: 00007ff193016090 R15: 00007fffd0e27e38
[  591.131872][T16300]  </TASK>
[  593.776062][T16340] No such timeout policy ""
[  593.784525][T16340] netlink: Failed to associated timeout policy ''
[  595.096019][T16345] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  595.160224][T16345] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  595.186149][T16345] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  595.216080][T16355] HfR: entered promiscuous mode
[  595.236150][T16345] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  596.401455][ T9059] Bluetooth: hci0: command 0x0c1a tx timeout
[  596.440229][T16391] random: crng reseeded on system resumption
[  597.197852][ T9059] Bluetooth: hci1: command 0x0c1a tx timeout
[  597.204064][ T9059] Bluetooth: hci3: command 0x0419 tx timeout
[  597.279662][ T9059] Bluetooth: hci4: command 0x0c1a tx timeout
[  598.727346][ T9059] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5
[  598.821519][T16432] openvswitch: netlink: Multiple metadata blocks provided
[  599.001198][ T9059] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  599.638470][T16448] vivid-001: =================  START STATUS  =================
[  599.665011][T16448] vivid-001: Radio HW Seek Mode: Bounded
[  599.706043][T16448] vivid-001: Radio Programmable HW Seek: false
[  599.725900][T16448] vivid-001: RDS Rx I/O Mode: Block I/O
[  599.731554][T16448] vivid-001: Generate RBDS Instead of RDS: false
[  599.748340][T16448] vivid-001: RDS Reception: true
[  599.753554][T16448] vivid-001: RDS Program Type: 0 inactive
[  599.773398][T16448] vivid-001: RDS PS Name:  inactive
[  599.805603][T16448] vivid-001: RDS Radio Text:  inactive
[  599.846835][T16448] vivid-001: RDS Traffic Announcement: false inactive
[  599.865464][T16448] vivid-001: RDS Traffic Program: false inactive
[  599.871923][T16448] vivid-001: RDS Music: false inactive
[  599.879369][T16448] vivid-001: ==================  END STATUS  ==================
[  600.107809][T16448] FAULT_INJECTION: forcing a failure.
[  600.107809][T16448] name failslab, interval 1, probability 0, space 0, times 0
[  600.131942][T16448] CPU: 1 UID: 0 PID: 16448 Comm: syz.0.2227 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  600.131974][T16448] Tainted: [L]=SOFTLOCKUP
[  600.131981][T16448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  600.131991][T16448] Call Trace:
[  600.131997][T16448]  <TASK>
[  600.132004][T16448]  dump_stack_lvl+0x100/0x190
[  600.132034][T16448]  should_fail_ex.cold+0x5/0xa
[  600.132055][T16448]  should_failslab+0xc2/0x120
[  600.132085][T16448]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  600.132109][T16448]  ? mpol_new+0x11b/0x2d0
[  600.132139][T16448]  mpol_new+0x11b/0x2d0
[  600.132166][T16448]  do_set_mempolicy+0x85/0x3e0
[  600.132194][T16448]  ? __pfx_do_set_mempolicy+0x10/0x10
[  600.132226][T16448]  ? __x64_sys_futex+0x34f/0x4d0
[  600.132250][T16448]  kernel_set_mempolicy+0x198/0x1e0
[  600.132280][T16448]  ? __pfx_kernel_set_mempolicy+0x10/0x10
[  600.132316][T16448]  do_syscall_64+0x106/0xf80
[  600.132336][T16448]  ? clear_bhb_loop+0x40/0x90
[  600.132358][T16448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.132376][T16448] RIP: 0033:0x7f527f39c629
[  600.132392][T16448] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  600.132408][T16448] RSP: 002b:00007f52801cf028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ee
[  600.132426][T16448] RAX: ffffffffffffffda RBX: 00007f527f615fa0 RCX: 00007f527f39c629
[  600.132438][T16448] RDX: 0000000000000021 RSI: 00002000000000c0 RDI: 0000000000000001
[  600.132448][T16448] RBP: 00007f527f432b39 R08: 0000000000000000 R09: 0000000000000000
[  600.132458][T16448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  600.132468][T16448] R13: 00007f527f616038 R14: 00007f527f615fa0 R15: 00007ffdd5a9b288
[  600.132490][T16448]  </TASK>
[  601.151073][T16469] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.2232: iget: checksum invalid
[  601.182929][T16469] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  601.373852][T16469] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.2232: iget: checksum invalid
[  601.459019][T16469] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  601.550141][T16481] tipc: Started in network mode
[  601.555283][T16481] tipc: Node identity ee00, cluster identity 4711
[  601.567489][T16469] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.2232: iget: checksum invalid
[  601.586768][T16481] tipc: Node number set to 60928
[  601.622485][T16469] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  601.643485][T16469] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.4.2232: iget: checksum invalid
[  601.734199][T16469] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  601.744791][T16469] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  601.804777][T16469] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  604.119599][T16527] zswap: compressor  not available
[  604.694691][T16547] No such timeout policy ""
[  604.719946][T16547] netlink: Failed to associated timeout policy ''
[  604.959239][T16551] netlink: 350 bytes leftover after parsing attributes in process `syz.4.2252'.
[  606.052275][T16569] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2254'.
[  606.248437][T16575] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2257'.
[  606.269902][T16575] FAULT_INJECTION: forcing a failure.
[  606.269902][T16575] name failslab, interval 1, probability 0, space 0, times 0
[  606.269956][T16575] CPU: 0 UID: 0 PID: 16575 Comm: syz.3.2257 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  606.270000][T16575] Tainted: [L]=SOFTLOCKUP
[  606.270010][T16575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  606.270028][T16575] Call Trace:
[  606.270038][T16575]  <TASK>
[  606.270050][T16575]  dump_stack_lvl+0x100/0x190
[  606.270098][T16575]  should_fail_ex.cold+0x5/0xa
[  606.270132][T16575]  should_failslab+0xc2/0x120
[  606.270183][T16575]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  606.270234][T16575]  ? __alloc_skb+0x140/0x710
[  606.270270][T16575]  __alloc_skb+0x140/0x710
[  606.270297][T16575]  ? __alloc_skb+0x5b7/0x710
[  606.270326][T16575]  ? __pfx___alloc_skb+0x10/0x10
[  606.270355][T16575]  ? __pfx___might_resched+0x10/0x10
[  606.270394][T16575]  ? __lock_acquire+0x4a5/0x2630
[  606.270438][T16575]  netlink_alloc_large_skb+0x69/0x150
[  606.270476][T16575]  netlink_sendmsg+0x680/0xda0
[  606.270515][T16575]  ? __pfx_netlink_sendmsg+0x10/0x10
[  606.270556][T16575]  ? __import_iovec+0x1d2/0x640
[  606.270605][T16575]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  606.270651][T16575]  ____sys_sendmsg+0xa54/0xc30
[  606.270697][T16575]  ? __pfx_____sys_sendmsg+0x10/0x10
[  606.270744][T16575]  ? try_to_wake_up+0x644/0x1a80
[  606.270800][T16575]  ___sys_sendmsg+0x190/0x1e0
[  606.270845][T16575]  ? __pfx____sys_sendmsg+0x10/0x10
[  606.270889][T16575]  ? futex_private_hash_put+0x107/0x1c0
[  606.270970][T16575]  __sys_sendmsg+0x170/0x220
[  606.271005][T16575]  ? __pfx___sys_sendmsg+0x10/0x10
[  606.271037][T16575]  ? __x64_sys_futex+0x34f/0x4d0
[  606.271097][T16575]  do_syscall_64+0x106/0xf80
[  606.271127][T16575]  ? clear_bhb_loop+0x40/0x90
[  606.271166][T16575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  606.271198][T16575] RIP: 0033:0x7f0bb859c629
[  606.271224][T16575] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  606.271253][T16575] RSP: 002b:00007f0bb93a2028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  606.271284][T16575] RAX: ffffffffffffffda RBX: 00007f0bb8815fa0 RCX: 00007f0bb859c629
[  606.271304][T16575] RDX: 0000000000000840 RSI: 0000200000003940 RDI: 0000000000000008
[  606.271322][T16575] RBP: 00007f0bb8632b39 R08: 0000000000000000 R09: 0000000000000000
[  606.271340][T16575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  606.271357][T16575] R13: 00007f0bb8816038 R14: 00007f0bb8815fa0 R15: 00007fff9db7f458
[  606.271398][T16575]  </TASK>
[  606.845169][T16593] random: crng reseeded on system resumption
[  609.796382][T16648] HfR: entered promiscuous mode
[  610.117219][T16655] program syz.2.2276 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  611.628266][ T9059] Bluetooth: hci3: Malformed LE Event: 0x0b
[  612.946616][T16687] netlink: 306 bytes leftover after parsing attributes in process `syz.0.2283'.
[  614.113208][T16730] netlink: 334 bytes leftover after parsing attributes in process `syz.0.2288'.
[  615.339394][T16764] ptrace attach of "./syz-executor exec"[5826] was attempted by ""[16764]
[  617.904782][T16800] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2303'.
[  618.298248][T16809] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2306'.
[  618.417159][T16809] dummy0: entered promiscuous mode
[  618.422805][T16809] dummy0: entered allmulticast mode
[  619.497394][T16803] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(3)
[  621.732651][T16837] Console: switching to colour frame buffer device 128x48
[  623.327454][T16860] zswap: compressor  not available
[  623.634944][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  623.641834][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  623.811622][T16878] Invalid ELF header magic: != ELF
[  624.086452][T16878] Invalid ELF header magic: != ELF
[  625.451684][T16912] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2331'.
[  625.614587][T16905] [U] 
[  626.185556][T16925] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(201.0.67108862), cmd(12)
[  628.885064][T16969] random: crng reseeded on system resumption
[  628.923539][T16969] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2343'.
[  631.342927][T16950] netlink: 306 bytes leftover after parsing attributes in process `syz.2.2339'.
[  633.169022][T17022] random: crng reseeded on system resumption
[  635.804356][T17070] netlink: 'syz.3.2368': attribute type 1 has an invalid length.
[  637.054679][T17093] hub 1-0:1.0: USB hub found
[  637.068982][T17093] hub 1-0:1.0: 1 port detected
[  638.011426][T17106] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2374'.
[  638.402963][T17106] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  638.472470][T17106] batman_adv: batadv0: Removing interface: batadv_slave_0
[  638.507150][T17106] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  638.518251][T17106] batman_adv: batadv0: Removing interface: batadv_slave_1
[  639.642756][T17121] netlink: 330 bytes leftover after parsing attributes in process `syz.3.2377'.
[  639.714393][ T7838] EXT4-fs error (device sda1): ext4_validate_block_bitmap:423: comm kworker/u10:7: bg 2: bad block bitmap checksum
[  639.747295][ T7838] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 1353 with max blocks 1 with error 74
[  639.809862][ T7838] EXT4-fs (sda1): This should not happen!! Data will be lost
[  639.809862][ T7838] 
[  642.408883][T17166] forcing mempool usage for bio_alloc_bioset+0x392/0x850
[  642.983916][T17162] zswap: compressor  not available
[  643.195127][T17171] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  643.230945][T17171] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  643.264352][T17171] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  643.283425][T17171] page_type: f5(slab)
[  643.293543][T17171] raw: 00fff00000000040 ffff88813fe3c140 dead000000000100 dead000000000122
[  643.336190][T17171] raw: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  643.373767][T17171] head: 00fff00000000040 ffff88813fe3c140 dead000000000100 dead000000000122
[  643.445628][T17171] head: 0000000000000000 0000000000040004 00000000f5000000 0000000000000000
[  643.480427][T17171] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  643.494332][T17171] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  643.528580][T17171] page dumped because: unmovable page
[  643.595438][T17171] page_owner tracks the page as allocated
[  643.601259][T17171] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 993, tgid 993 (kworker/u8:7), ts 154006122944, free_ts 153919899297
[  643.692966][T17171]  post_alloc_hook+0x153/0x170
[  643.712818][T17171]  get_page_from_freelist+0x111d/0x3140
[  643.739041][T17171]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  643.763768][T17171]  alloc_pages_mpol+0x1fb/0x550
[  643.772766][T17171]  new_slab+0x43a/0x6d0
[  643.777088][T17171]  ___slab_alloc+0x2a0/0x850
[  643.802079][T17171]  __kmalloc_node_track_caller_noprof+0x45c/0x850
[  643.852534][T17171]  kmalloc_reserve+0xe8/0x350
[  643.857782][T17171]  __alloc_skb+0x185/0x710
[  643.862752][T17171]  nsim_dev_trap_report_work+0x2af/0xd10
[  643.868448][T17171]  process_one_work+0x9d7/0x1920
[  643.874120][T17171]  worker_thread+0x5da/0xe40
[  643.878787][T17171]  kthread+0x370/0x450
[  643.883469][T17171]  ret_from_fork+0x754/0xd80
[  643.888382][T17171]  ret_from_fork_asm+0x1a/0x30
[  643.893752][T17171] page last free pid 5830 tgid 5830 stack trace:
[  643.900277][T17171]  __free_frozen_pages+0x7e1/0x10d0
[  643.906432][T17171]  __folio_put+0x3b4/0x540
[  643.916929][T17171]  page_to_skb+0x84e/0xc40
[  643.924656][T17171]  receive_buf+0x85b/0x4670
[  643.934744][T17171]  virtnet_poll+0x1cb3/0x3a70
[  643.962982][T17171]  __napi_poll.constprop.0+0xaf/0x450
[  643.968487][T17171]  net_rx_action+0xa40/0xf20
[  644.013814][T17171]  handle_softirqs+0x1eb/0x9e0
[  644.033772][T17171]  __irq_exit_rcu+0xef/0x150
[  644.044420][T17171]  irq_exit_rcu+0x9/0x30
[  644.062925][T17171]  common_interrupt+0xbe/0xe0
[  644.079768][T17171]  asm_common_interrupt+0x26/0x40
[  644.462585][T17225] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2399'.
[  644.474965][T17225] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  644.492906][T17225] batman_adv: batadv0: Removing interface: batadv_slave_0
[  644.569375][T17225] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  644.576933][T17225] batman_adv: batadv0: Removing interface: batadv_slave_1
[  645.057178][T17244] netlink: 62 bytes leftover after parsing attributes in process `syz.0.2403'.
[  645.129788][T17247] netlink: 62 bytes leftover after parsing attributes in process `syz.0.2403'.
[  645.308631][T17247] netlink: 62 bytes leftover after parsing attributes in process `syz.0.2403'.
[  645.392270][T17247] netlink: 62 bytes leftover after parsing attributes in process `syz.0.2403'.
[  645.404923][T17247] netlink: 62 bytes leftover after parsing attributes in process `syz.0.2403'.
[  645.415032][T17247] netlink: 62 bytes leftover after parsing attributes in process `syz.0.2403'.
[  645.447542][T17247] netlink: 62 bytes leftover after parsing attributes in process `syz.0.2403'.
[  645.464526][T17247] netlink: 62 bytes leftover after parsing attributes in process `syz.0.2403'.
[  645.536273][T17247] netlink: 62 bytes leftover after parsing attributes in process `syz.0.2403'.
[  646.741569][T17279] random: crng reseeded on system resumption
[  649.654174][T17331] __nla_validate_parse: 10 callbacks suppressed
[  649.654200][T17331] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2422'.
[  652.878837][T17413] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  654.654009][T17439] [U] ^H
[  654.760208][T17444] random: crng reseeded on system resumption
[  656.387162][T17457] netlink: 330 bytes leftover after parsing attributes in process `syz.0.2451'.
[  656.499960][T17457] 
: renamed from ip6tnl0 (while UP)
[  656.983968][T17486] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  657.226521][T17488] netlink: 7 bytes leftover after parsing attributes in process `syz.4.2458'.
[  657.957992][T17510] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2461'.
[  657.959319][T17509] blktrace: Concurrent blktraces are not allowed on sg0
[  658.109034][T17510] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  658.123292][T17510] batman_adv: batadv0: Removing interface: batadv_slave_0
[  658.212820][T17510] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  658.336783][T17510] batman_adv: batadv0: Removing interface: batadv_slave_1
[  658.390743][T17525] FAULT_INJECTION: forcing a failure.
[  658.390743][T17525] name failslab, interval 1, probability 0, space 0, times 0
[  658.426740][T17525] CPU: 1 UID: 0 PID: 17525 Comm: syz.4.2465 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  658.426791][T17525] Tainted: [L]=SOFTLOCKUP
[  658.426802][T17525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  658.426820][T17525] Call Trace:
[  658.426831][T17525]  <TASK>
[  658.426843][T17525]  dump_stack_lvl+0x100/0x190
[  658.426894][T17525]  should_fail_ex.cold+0x5/0xa
[  658.426928][T17525]  ? tomoyo_encode2+0xfb/0x3c0
[  658.426958][T17525]  should_failslab+0xc2/0x120
[  658.427007][T17525]  __kmalloc_noprof+0xe0/0x850
[  658.427047][T17525]  ? d_absolute_path+0x136/0x1b0
[  658.427094][T17525]  tomoyo_encode2+0xfb/0x3c0
[  658.427138][T17525]  tomoyo_encode+0x29/0x50
[  658.427166][T17525]  tomoyo_realpath_from_path+0x18c/0x690
[  658.427208][T17525]  tomoyo_path_number_perm+0x23c/0x580
[  658.427251][T17525]  ? tomoyo_path_number_perm+0x22e/0x580
[  658.427298][T17525]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  658.427340][T17525]  ? futex_wait+0x125/0x380
[  658.427416][T17525]  ? find_held_lock+0x2b/0x80
[  658.427461][T17525]  ? __fget_files+0x215/0x3d0
[  658.427505][T17525]  ? hook_file_ioctl_common+0x146/0x410
[  658.427556][T17525]  ? __fget_files+0x21f/0x3d0
[  658.427605][T17525]  security_file_ioctl+0xd3/0x230
[  658.427652][T17525]  __x64_sys_ioctl+0xb7/0x210
[  658.427693][T17525]  do_syscall_64+0x106/0xf80
[  658.427727][T17525]  ? clear_bhb_loop+0x40/0x90
[  658.427764][T17525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.427794][T17525] RIP: 0033:0x7ff192d9c629
[  658.427820][T17525] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  658.427849][T17525] RSP: 002b:00007ff190fd5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  658.427878][T17525] RAX: ffffffffffffffda RBX: 00007ff193016090 RCX: 00007ff192d9c629
[  658.427897][T17525] RDX: 0000200000000040 RSI: 0000000040107447 RDI: 0000000000000003
[  658.427915][T17525] RBP: 00007ff192e32b39 R08: 0000000000000000 R09: 0000000000000000
[  658.427933][T17525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  658.427950][T17525] R13: 00007ff193016128 R14: 00007ff193016090 R15: 00007fffd0e27e38
[  658.427991][T17525]  </TASK>
[  658.428035][T17525] ERROR: Out of memory at tomoyo_realpath_from_path.
[  659.320422][T17545] input: f¬
 as /devices/virtual/input/input19
[  661.775222][T17573] FAULT_INJECTION: forcing a failure.
[  661.775222][T17573] name failslab, interval 1, probability 0, space 0, times 0
[  661.800793][T17573] CPU: 0 UID: 0 PID: 17573 Comm: syz.0.2474 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  661.800845][T17573] Tainted: [L]=SOFTLOCKUP
[  661.800856][T17573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  661.800873][T17573] Call Trace:
[  661.800883][T17573]  <TASK>
[  661.800896][T17573]  dump_stack_lvl+0x100/0x190
[  661.800946][T17573]  should_fail_ex.cold+0x5/0xa
[  661.800993][T17573]  should_failslab+0xc2/0x120
[  661.801044][T17573]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  661.801100][T17573]  ? security_inode_alloc+0x3b/0x2c0
[  661.801143][T17573]  ? lockdep_init_map_type+0x5c/0x250
[  661.801188][T17573]  security_inode_alloc+0x3b/0x2c0
[  661.801231][T17573]  inode_init_always_gfp+0xced/0x1040
[  661.801287][T17573]  alloc_inode+0x8e/0x250
[  661.801322][T17573]  sock_alloc+0x44/0x280
[  661.801356][T17573]  ? security_socket_create+0x7f/0x250
[  661.801399][T17573]  __sock_create+0xc2/0x860
[  661.801448][T17573]  __sys_socket+0x14d/0x260
[  661.801494][T17573]  ? __pfx___sys_socket+0x10/0x10
[  661.801551][T17573]  __x64_sys_socket+0x72/0xb0
[  661.801594][T17573]  ? lockdep_hardirqs_on+0x78/0x100
[  661.801630][T17573]  do_syscall_64+0x106/0xf80
[  661.801664][T17573]  ? clear_bhb_loop+0x40/0x90
[  661.801703][T17573]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  661.801735][T17573] RIP: 0033:0x7f527f39c629
[  661.801761][T17573] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  661.801789][T17573] RSP: 002b:00007f52801cf028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  661.801818][T17573] RAX: ffffffffffffffda RBX: 00007f527f615fa0 RCX: 00007f527f39c629
[  661.801838][T17573] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  661.801856][T17573] RBP: 00007f527f432b39 R08: 0000000000000000 R09: 0000000000000000
[  661.801875][T17573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  661.801893][T17573] R13: 00007f527f616038 R14: 00007f527f615fa0 R15: 00007ffdd5a9b288
[  661.801933][T17573]  </TASK>
[  661.801965][T17573] socket: no more sockets
[  663.455388][T17595] random: crng reseeded on system resumption
[  667.115104][T17667] netlink: 338 bytes leftover after parsing attributes in process `syz.2.2492'.
[  667.139570][T17667] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[  667.441114][T14134] usb usb40-port2: attempt power cycle
[  667.526208][T17683] openvswitch: netlink: Multiple metadata blocks provided
[  667.642028][T17683] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2495'.
[  667.933281][T14801] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  667.942955][T14801] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  667.957512][T14801] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  667.968398][T14801] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  667.976725][T14801] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  668.064772][T14134] usb usb40-port2: unable to enumerate USB device
[  668.562516][T17690] chnl_net:caif_netlink_parms(): no params data found
[  668.782301][T12630] ------------[ cut here ]------------
[  668.788059][T12630] ODEBUG: free active (active state 0) object: ffff8880337d1460 object type: timer_list hint: hci_devcd_timeout+0x0/0x2e0
[  668.800925][T12630] WARNING: lib/debugobjects.c:612 at debug_print_object+0x18e/0x2a0, CPU#1: syz.0.1460/12630
[  668.811188][T12630] Modules linked in:
[  668.815111][T12630] CPU: 1 UID: 0 PID: 12630 Comm: syz.0.1460 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  668.826346][T12630] Tainted: [L]=SOFTLOCKUP
[  668.830725][T12630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  668.841278][T12630] RIP: 0010:debug_print_object+0x19b/0x2a0
[  668.847144][T12630] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d 62 fb e8 0b 41 56 48 8b 14 dd e0 fc 1a 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 0c 9b de 0b 01 48 83 c4 18 5b 5d 41 5c 41
[  668.868149][T12630] RSP: 0018:ffffc9000edb7708 EFLAGS: 00010246
[  668.874417][T12630] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000
[  668.882518][T12630] RDX: ffffffff8c1afc20 RSI: ffffffff8c1af840 RDI: ffffffff90e41b30
[  668.890881][T12630] RBP: 0000000000000001 R08: ffff8880337d1460 R09: ffffffff8bb2b800
[  668.899355][T12630] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1af840
[  668.907442][T12630] R13: ffffffff8bb2b840 R14: ffffffff8a95bc30 R15: ffffc9000edb7808
[  668.915981][T12630] FS:  0000000000000000(0000) GS:ffff888124451000(0000) knlGS:0000000000000000
[  668.925086][T12630] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  668.931751][T12630] CR2: 0000001b32063fff CR3: 0000000041092000 CR4: 00000000003526f0
[  668.939854][T12630] Call Trace:
[  668.943211][T12630]  <TASK>
[  668.946148][T12630]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  668.951733][T12630]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  668.957550][T12630]  debug_check_no_obj_freed+0x4da/0x630
[  668.963159][T12630]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  668.969237][T12630]  ? __page_table_check_zero+0x333/0x410
[  668.974919][T12630]  ? __page_table_check_zero+0x338/0x410
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  668.980639][T12630]  __free_frozen_pages+0x392/0x10d0
[  668.985860][T12630]  hci_release_dev+0x4ef/0x630
[  668.990843][T12630]  ? __pfx_hci_release_dev+0x10/0x10
[  668.996163][T12630]  ? device_release+0x69/0x240
[  669.001321][T12630]  ? rcu_is_watching+0x12/0xc0
[  669.006274][T12630]  ? device_release+0x69/0x240
[  669.011069][T12630]  ? kfree+0x2ec/0x6b0
[  669.015232][T12630]  bt_host_release+0x6a/0xb0
[  669.019853][T12630]  ? __pfx_bt_host_release+0x10/0x10
[  669.025483][T12630]  device_release+0xa4/0x240
[  669.030250][T12630]  kobject_put+0x1f7/0x640
[  669.035253][T12630]  put_device+0x1f/0x30
[  669.039530][T12630]  vhci_release+0x185/0x230
[  669.044262][T12630]  ? __pfx_vhci_release+0x10/0x10
[  669.049368][T12630]  __fput+0x3ff/0xb40
[  669.053649][T12630]  task_work_run+0x150/0x240
[  669.058455][T12630]  ? __pfx_task_work_run+0x10/0x10
[  669.063653][T12630]  do_exit+0x829/0x2aa0
[  669.067932][T12630]  ? __pfx_do_exit+0x10/0x10
[  669.072756][T12630]  ? do_raw_spin_lock+0x128/0x260
[  669.078008][T12630]  ? find_held_lock+0x2b/0x80
[  669.082775][T12630]  ? get_signal+0x7e0/0x21e0
[  669.087387][T12630]  do_group_exit+0xd5/0x2a0
[  669.092227][T12630]  get_signal+0x1ec7/0x21e0
[  669.096737][T12630]  ? __pfx___handle_mm_fault+0x10/0x10
[  669.102251][T12630]  ? __pfx_get_signal+0x10/0x10
[  669.107202][T12630]  ? do_futex+0x192/0x350
[  669.111700][T12630]  arch_do_signal_or_restart+0x91/0x770
[  669.117391][T12630]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  669.123881][T12630]  ? __pfx___x64_sys_futex+0x10/0x10
[  669.129233][T12630]  exit_to_user_mode_loop+0x86/0x4a0
[  669.135003][T12630]  do_syscall_64+0x668/0xf80
[  669.139710][T12630]  ? clear_bhb_loop+0x40/0x90
[  669.144399][T12630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  669.150398][T12630] RIP: 0033:0x7f527f39c629
[  669.155006][T12630] Code: Unable to access opcode bytes at 0x7f527f39c5ff.
[  669.162473][T12630] RSP: 002b:00007f52801ae0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  669.171157][T12630] RAX: fffffffffffffe00 RBX: 00007f527f616098 RCX: 00007f527f39c629
[  669.179188][T12630] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f527f616098
[  669.187544][T12630] RBP: 00007f527f616090 R08: 0000000000000000 R09: 0000000000000000
[  669.195731][T12630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  669.203913][T12630] R13: 00007f527f616128 R14: 00007ffdd5a9b1a0 R15: 00007ffdd5a9b288
[  669.212229][T12630]  </TASK>
[  669.215354][T12630] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  669.222638][T12630] CPU: 1 UID: 0 PID: 12630 Comm: syz.0.1460 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  669.233603][T12630] Tainted: [L]=SOFTLOCKUP
[  669.237924][T12630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  669.247998][T12630] Call Trace:
[  669.251290][T12630]  <TASK>
[  669.254229][T12630]  dump_stack_lvl+0x100/0x190
[  669.258932][T12630]  vpanic+0x552/0x970
[  669.263084][T12630]  ? __pfx_vpanic+0x10/0x10
[  669.267717][T12630]  panic+0xd1/0xe0
[  669.271572][T12630]  ? __pfx_panic+0x10/0x10
[  669.276125][T12630]  ? check_panic_on_warn+0x1f/0x90
[  669.281371][T12630]  check_panic_on_warn.cold+0x19/0x34
[  669.286859][T12630]  ? debug_print_object+0x18e/0x2a0
[  669.292279][T12630]  __warn.cold+0x191/0x348
[  669.296713][T12630]  __report_bug+0x296/0x3d0
[  669.301218][T12630]  ? debug_print_object+0x18e/0x2a0
[  669.306513][T12630]  ? __pfx___report_bug+0x10/0x10
[  669.311545][T12630]  ? unwind_next_frame+0x3c8/0x1ea0
[  669.316835][T12630]  report_bug_entry+0xe1/0x290
[  669.321616][T12630]  ? debug_print_object+0x19b/0x2a0
[  669.327056][T12630]  handle_bug+0x1c9/0x2a0
[  669.331513][T12630]  exc_invalid_op+0x17/0x50
[  669.336204][T12630]  asm_exc_invalid_op+0x1a/0x20
[  669.341063][T12630] RIP: 0010:debug_print_object+0x19b/0x2a0
[  669.347410][T12630] Code: b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 4f 48 8d 3d 62 fb e8 0b 41 56 48 8b 14 dd e0 fc 1a 8c 4c 89 e6 <67> 48 0f b9 3a 58 83 05 0c 9b de 0b 01 48 83 c4 18 5b 5d 41 5c 41
[  669.367253][T12630] RSP: 0018:ffffc9000edb7708 EFLAGS: 00010246
[  669.373442][T12630] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000
[  669.381430][T12630] RDX: ffffffff8c1afc20 RSI: ffffffff8c1af840 RDI: ffffffff90e41b30
[  669.390008][T12630] RBP: 0000000000000001 R08: ffff8880337d1460 R09: ffffffff8bb2b800
[  669.398094][T12630] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c1af840
[  669.406208][T12630] R13: ffffffff8bb2b840 R14: ffffffff8a95bc30 R15: ffffc9000edb7808
[  669.414636][T12630]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  669.420243][T12630]  ? __pfx_hci_devcd_timeout+0x10/0x10
[  669.425899][T12630]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  669.432009][T12630]  debug_check_no_obj_freed+0x4da/0x630
[  669.438184][T12630]  ? __pfx_debug_check_no_obj_freed+0x10/0x10
[  669.444271][T12630]  ? __page_table_check_zero+0x333/0x410
[  669.450123][T12630]  ? __page_table_check_zero+0x338/0x410
[  669.455972][T12630]  __free_frozen_pages+0x392/0x10d0
[  669.461231][T12630]  hci_release_dev+0x4ef/0x630
[  669.466231][T12630]  ? __pfx_hci_release_dev+0x10/0x10
[  669.471572][T12630]  ? device_release+0x69/0x240
[  669.476366][T12630]  ? rcu_is_watching+0x12/0xc0
[  669.481244][T12630]  ? device_release+0x69/0x240
[  669.486363][T12630]  ? kfree+0x2ec/0x6b0
[  669.490444][T12630]  bt_host_release+0x6a/0xb0
[  669.495047][T12630]  ? __pfx_bt_host_release+0x10/0x10
[  669.500379][T12630]  device_release+0xa4/0x240
[  669.505202][T12630]  kobject_put+0x1f7/0x640
[  669.509648][T12630]  put_device+0x1f/0x30
[  669.513933][T12630]  vhci_release+0x185/0x230
[  669.518482][T12630]  ? __pfx_vhci_release+0x10/0x10
[  669.523624][T12630]  __fput+0x3ff/0xb40
[  669.527668][T12630]  task_work_run+0x150/0x240
[  669.532397][T12630]  ? __pfx_task_work_run+0x10/0x10
[  669.537549][T12630]  do_exit+0x829/0x2aa0
[  669.541829][T12630]  ? __pfx_do_exit+0x10/0x10
[  669.546527][T12630]  ? do_raw_spin_lock+0x128/0x260
[  669.551690][T12630]  ? find_held_lock+0x2b/0x80
[  669.556517][T12630]  ? get_signal+0x7e0/0x21e0
[  669.561141][T12630]  do_group_exit+0xd5/0x2a0
[  669.565759][T12630]  get_signal+0x1ec7/0x21e0
[  669.570394][T12630]  ? __pfx___handle_mm_fault+0x10/0x10
[  669.575981][T12630]  ? __pfx_get_signal+0x10/0x10
[  669.581174][T12630]  ? do_futex+0x192/0x350
[  669.585553][T12630]  arch_do_signal_or_restart+0x91/0x770
[  669.591239][T12630]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  669.597798][T12630]  ? __pfx___x64_sys_futex+0x10/0x10
[  669.603557][T12630]  exit_to_user_mode_loop+0x86/0x4a0
[  669.608974][T12630]  do_syscall_64+0x668/0xf80
[  669.613947][T12630]  ? clear_bhb_loop+0x40/0x90
[  669.618643][T12630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  669.624628][T12630] RIP: 0033:0x7f527f39c629
[  669.629158][T12630] Code: Unable to access opcode bytes at 0x7f527f39c5ff.
[  669.636174][T12630] RSP: 002b:00007f52801ae0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  669.644788][T12630] RAX: fffffffffffffe00 RBX: 00007f527f616098 RCX: 00007f527f39c629
[  669.653299][T12630] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f527f616098
[  669.661452][T12630] RBP: 00007f527f616090 R08: 0000000000000000 R09: 0000000000000000
[  669.670132][T12630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  669.678243][T12630] R13: 00007f527f616128 R14: 00007ffdd5a9b1a0 R15: 00007ffdd5a9b288
[  669.686494][T12630]  </TASK>
[  669.689947][T12630] Kernel Offset: disabled
[  669.694275][T12630] Rebooting in 86400 seconds..