last executing test programs:

14m39.400717519s ago: executing program 1 (id=927):
socket(0x1d, 0x5, 0x52)
mknod$auto(&(0x7f00000000c0)='./file0\x00', 0x8, 0x4000004)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
fcntl$auto(0x3, 0x401, 0x3)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x400000, 0xa0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = pidfd_open$auto(0x0, 0x0)
setns(r0, 0x60020000)
getcwd$auto(0x0, 0xffffffffffffffff)
fspick$auto(0xffffffffffffffff, 0x0, 0x805)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/cad_pid\x00', 0x242, 0x0)
timer_settime$auto(0x1, 0x3, 0x0, 0x0)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(r1, 0x400454ca, 0x38)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2800, 0x0)
ioctl$auto_TUNSETVNETLE2(r1, 0x400454dc, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x220408c0}, 0x24000805)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, 0x0, 0x4c800)
timer_create$auto(0x2, 0x0, 0x0)
timer_create$auto(0x9, 0x0, 0x0)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000140), 0x7111}, 0x8)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC2\x00', 0x103841, 0x0)
io_uring_setup$auto(0xb3d, &(0x7f0000000000)={0x4, 0x8, 0x1ff, 0x3, 0x4, 0x7, 0xffffffffffffffff, [0x4, 0xffff, 0x5], {0x2, 0x7, 0x2, 0xb, 0x6, 0x2, 0xd, 0x4, 0x6}, {0x8, 0x4, 0x2, 0x80000001, 0x5, 0x5, 0x7fff, 0x63e, 0x2}})
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r2, 0xc4c85513, &(0x7f0000000100)={{@raw=0x2, 0x85, 0xf67, 0x1, "669cbbd9e9756f22fdffa199e0f106000000000000000b2f4ab8633824f2d2252ca5f200"}, 0x0, @enumerated=@item_ptr=0x0, "282f77b07e718e11749a346177741dc299a28a585e87e0d908e2c8e50de501951d8fcdc4f791a11996aad5af504c0d9927e62ef70b23a13735a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6534b171d76ad633f94a608b818600a6c8500"})
r3 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154)
execveat$auto(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x11000)

14m23.545012935s ago: executing program 32 (id=927):
socket(0x1d, 0x5, 0x52)
mknod$auto(&(0x7f00000000c0)='./file0\x00', 0x8, 0x4000004)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x14f602, 0x0)
fcntl$auto(0x3, 0x401, 0x3)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x400000, 0xa0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = pidfd_open$auto(0x0, 0x0)
setns(r0, 0x60020000)
getcwd$auto(0x0, 0xffffffffffffffff)
fspick$auto(0xffffffffffffffff, 0x0, 0x805)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/kernel/cad_pid\x00', 0x242, 0x0)
timer_settime$auto(0x1, 0x3, 0x0, 0x0)
r1 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(r1, 0x400454ca, 0x38)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2800, 0x0)
ioctl$auto_TUNSETVNETLE2(r1, 0x400454dc, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x220408c0}, 0x24000805)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, 0x0, 0x4c800)
timer_create$auto(0x2, 0x0, 0x0)
timer_create$auto(0x9, 0x0, 0x0)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000140), 0x7111}, 0x8)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC2\x00', 0x103841, 0x0)
io_uring_setup$auto(0xb3d, &(0x7f0000000000)={0x4, 0x8, 0x1ff, 0x3, 0x4, 0x7, 0xffffffffffffffff, [0x4, 0xffff, 0x5], {0x2, 0x7, 0x2, 0xb, 0x6, 0x2, 0xd, 0x4, 0x6}, {0x8, 0x4, 0x2, 0x80000001, 0x5, 0x5, 0x7fff, 0x63e, 0x2}})
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r2, 0xc4c85513, &(0x7f0000000100)={{@raw=0x2, 0x85, 0xf67, 0x1, "669cbbd9e9756f22fdffa199e0f106000000000000000b2f4ab8633824f2d2252ca5f200"}, 0x0, @enumerated=@item_ptr=0x0, "282f77b07e718e11749a346177741dc299a28a585e87e0d908e2c8e50de501951d8fcdc4f791a11996aad5af504c0d9927e62ef70b23a13735a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6534b171d76ad633f94a608b818600a6c8500"})
r3 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154)
execveat$auto(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x11000)

12m58.779330183s ago: executing program 33 (id=1148):
r0 = socket(0x10, 0x2, 0x7) (async, rerun: 32)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'}) (async, rerun: 64)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x8000, 0x0) (async, rerun: 64)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
r2 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080) (async)
r3 = openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
move_mount$auto(r3, 0x0, r2, 0x0, 0x9) (async)
setsockopt$auto_SO_LOCK_FILTER(r3, 0xc, 0x2c, &(0x7f0000000000)='vcan0\x00', 0x8e0)
ioctl$auto(r0, 0x8004542e, 0xffffffffffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim2/new_port\x00', 0x183a41, 0x0)
writev$auto(r4, &(0x7f00000002c0)={&(0x7f0000000480)='4r', 0x5}, 0x1) (async)
mmap$auto(0x0, 0x80000004, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async, rerun: 64)
socket(0xa, 0x3, 0x13b) (async, rerun: 64)
connect$auto(0x3, 0x0, 0x58) (async, rerun: 32)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 32)
madvise$auto(0x0, 0xffffffffffff0005, 0x19) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
r5 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyw2\x00', 0x4001, 0x0) (async)
ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, &(0x7f00000001c0)={{0xfff2, 0x24, 0x4008, 0x3}, "6a034a07c7b82d90b69a39e32576f893fb4a384cd66e841f3f1561d49927726b0a6c36b0b2fd1678e816201ef562367fe6596824588a2e3d84ba165f00000000d0fc00", 0x4}) (async)
ioctl$auto_UI_DEV_CREATE(r5, 0x5501, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
writev$auto(r5, &(0x7f0000000340)={0x0, 0x500000}, 0x9)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x68) (async, rerun: 32)
ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000080)) (rerun: 32)

9m38.213402663s ago: executing program 34 (id=1684):
mount_setattr$auto(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000640)={0x10002c, 0x7f, 0x0, @raw=0xce8}, 0x287)
timer_settime$auto(0x1, 0x3, 0x0, 0x0)
r0 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_TASKSTATS_CMD_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0xec, 0x0, 0xa01, 0x70bd2b, 0x25dfdbfb, {}, [@TASKSTATS_CMD_ATTR_DEREGISTER_CPUMASK={0xd8, 0x4, 'N,SKSTATS\x00\xda\x04Fq\xa5\xb6X|\xad\x13\x9c, \xa4!\xc9<\xc5!\x9cP\x010\x98+\xc8\x81\x8f}\xd3\x80\xabe\x9d4\xa0\xc1$\xbe\xfa\xce\xd4\x17tw\xc0!\x0e-7\xbcz]\x95;\xdfV\xde\xcb\xcd]=\xaf<n\xd5\x8e\xc7e\xd8\xf4lY\x12\xbd\x91_\f\xb2(\x7f\x97\x87\x96\x8am_&f\xc3-\x92\xc8\x8c\xf1\xa5\xaa\xa4V\x9er\v\xc2&\\\n-\xec\xcb\xd2\xae\xfd\x96\x84\x92F\xe1\x10\x95\x8a\xe5\x1e\xc9\xe2\xca7\xe8N\xd8YBv\x88\xf1\x0f]\x9acf\x87\xc3\x90\xd8\xfb\x8e\xa3\xf3\\v4\xd3\x95\x1d\xc9\x94$j\xfbY\xa1\x10\x9c\x16i\xcap3\xa6\x9dk\x9b$\xe5\x8a}6l\x1d\x18\xe1\x14\xce\xb5\x19\'1\a$&\xb6\xbe!\xf9\x046\xca3\xdc>\x8a\x89\xad'}]}, 0xec}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000)
socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1300"], 0x1ac}, 0x1, 0x0, 0x0, 0x10}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket(0xa, 0x3, 0x8)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)=""/14, 0xe)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(r0, 0x400454ca, 0x38)
r1 = socket(0x18, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
r3 = socket(0x18, 0x5, 0x1)
connect$auto(r3, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x80047453, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyac\x00', 0x1cd902, 0x0)
ioctl$auto(r4, 0x4bfa, 0x9)
r5 = fcntl$getown(r0, 0x9)
prctl$auto(0x79, 0x7, r5, 0x4d, 0x1)
getrlimit$auto(0x80, 0x0)

2m45.931492998s ago: executing program 0 (id=2827):
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x4, 0x8000)
r0 = ioctl$auto_TUNSETSNDBUF2(0xffffffffffffffff, 0x400454d4, &(0x7f0000000100)=0x9)
close_range$auto(0x2, 0x8, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x169443, 0x114)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010029bd7000fbdbdf25010000000800010600000001080001"], 0x24}, 0x1, 0x0, 0x0, 0x14}, 0x0)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0xf0, 0x4002, 0x4}, 0x77, 0x5, 0x0, 0x62bd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$auto(r3, 0x29, 0x11, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$auto_BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000180)={"cc0c371bc307f81050419d2a3eaa8b38d5bd831a5f504b11db0f24699280b0b2", 0x6, 0xfffffff7, 0x8, 0x8, 0x6, <r4=>0xffffffffffffffff})
migrate_pages$auto(r4, 0x62, &(0x7f0000000280)=0x100000000, &(0x7f0000000300)=0xfffffffffffffffd)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r5 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
fsconfig$auto_FSCONFIG_CMD_RECONFIGURE(r5, 0x7, 0x0, 0x0, 0x0)
readahead$auto(r2, 0x1e56, 0x8)

2m44.190028905s ago: executing program 0 (id=2834):
r0 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
setsockopt$auto(0x3, 0x10000000084, 0x2, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x67e)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
r1 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x200000, 0x0)
read$auto_event_trigger_fops_trace(r1, &(0x7f0000000480)=""/117, 0x75)
connect$auto(r0, &(0x7f0000000240)=@l2tp={0x2, 0x0, @local, 0x1}, 0x54)
name_to_handle_at$auto(0xffffffffffffff9c, &(0x7f0000000000)='{\x00', &(0x7f0000000100)={0xa, 0x4a, "5287d6bf8b1193d13787"}, &(0x7f0000000180)="1b72a8bb372a400c781517222b2cc5f2d83139010da44fa313439972424a07b331110072275c77894f581aa12d73c32331f1f62a43972730e12624faaaa46e303a3d81eb0d157c22d1d50319d8ecea2b177dbe1d29cc2a517535af6ff4f4c29ed27898833794ff96698c240e2f8a36bea7f03e298336ea118b0cb5456c9bfb8713baae0dc1f2face263cd8d9e789bb0b9631cd2691cd8c969b52b75d0adef26a2d9ff9727d2c735207d074cf02216e0f025b20", 0x81)
unshare$auto(0x40000080)
ioctl$auto_NS_GET_TGID_IN_PIDNS(0xffffffffffffffff, 0x8004b709, &(0x7f0000000280)=0x5)
unshare$auto(0x40000080)
r2 = socket(0x18, 0x800, 0x2)
r3 = socket(0x1e, 0x1, 0x0)
connect$auto(r3, &(0x7f0000000000)=@tipc=@name={0x1e, 0x2, 0x1, {{0x1, 0x2}}}, 0x10)
getpeername$auto(r2, &(0x7f0000000040)=@llc={0x1a, 0x338, 0x7, 0xc, 0x9, 0x8, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, &(0x7f0000000080)=0xa98)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL802154_CMD_GET_SEC_KEY(0xffffffffffffffff, 0x0, 0x8000)
socket(0x2, 0x80802, 0x0)
r4 = socket(0x2b, 0x1, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
landlock_restrict_self$auto(r0, 0x3a)
r6 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000300), r4)
sendmsg$auto_BATADV_CMD_GET_DAT_CACHE(r5, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x3c, r6, 0x8, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @remote}, @BATADV_ATTR_ROUTER={0xa, 0x1d, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, @BATADV_ATTR_DAT_CACHE_VID={0x6, 0x25, 0xffff}, @BATADV_ATTR_LAST_SEEN_MSECS={0x8, 0x17, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10890}, 0x800)
ioctl$auto_BTRFS_IOC_ENCODED_WRITE_32(0xffffffffffffffff, 0x40789440, 0x0)
bind$auto(0x3, 0x0, 0x6a)
sendmmsg$auto(r4, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ff)

2m42.058561112s ago: executing program 0 (id=2837):
r0 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mq_notify$auto(r0, &(0x7f0000000180)={@sival_ptr=0x0, @raw=0x1, 0x1, @_sigev_thread={0x0, 0x0}})
r1 = mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
socket(0x1d, 0x3, 0x1)
bind$auto(0x3, &(0x7f0000000140)=@sco, 0x3)
mq_notify$auto(r1, 0x0)
mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x1, 0x84)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/swradio11\x00', 0x800000, 0x0)
r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
r3 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0x7fffffff)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/distance\x00', 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000001080)=""/98, 0x62)
write$auto(0x3, 0x0, 0x100000000)
ioctl$auto_SNDCTL_DSP_CHANNELS(r3, 0xc0045006, 0x0)
getdents$auto(r2, 0x0, 0x400018)
ioctl$auto(0x3, 0x4020565a, 0x38)
ioctl$auto(0xffffffffffffffff, 0x4020940d, 0x5c8d)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto(r5, 0x560a, r5)
fsconfig$auto_JFFS2_COMPR_MODE_NONE(0xffffffffffffffff, 0x4, &(0x7f0000000000)='/-,\x00', &(0x7f0000000080)="a3cd393a5824c624f3f44fde04d0b5c92cbb9ca2f7e671e1be7a886f8e3c9fe0", 0x0)

2m40.91800342s ago: executing program 0 (id=2843):
socket(0xa, 0x3, 0xff)
socket(0x29, 0x3, 0xff)
setsockopt$auto(0x400000000000003, 0x29, 0x16, 0x0, 0x20056b)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000)
mmap$auto(0x0, 0x202000d, 0x6, 0x16, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0xfffffffe, 0x8000000000000000, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x430740, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b73, r0, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x16e)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4e23, @loopback}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
fcntl$auto(r1, 0x80000001, 0xa553)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYBLOB="20002bbd7000fbdbdf257a000000060066004e24000004000501040087b7538a4794c2002500430031924ebda1caf58ee53ad1afc276c6e21e7a35768f899344e991e374111f3081ffaba8a74fdc72e1000000060012014eff000008006100ffffffff1300240042e28b6e759cde6edf63616bb99f14ffdfbc4155c7c03d8edd37e614f4c75d5e3a12066f545b1457d54c5612ab03d24272"], 0x70}, 0x1, 0x0, 0x0, 0x80}, 0x40)
mmap$auto(0x0, 0xfffffffffffffffb, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0xfffffffffffffffd, 0x2000b, 0xa169, 0x16, r1, 0x3)
mq_open$auto(&(0x7f00000001c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00'/133, 0x62, 0x7, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)

2m40.438013588s ago: executing program 6 (id=2844):
socket(0xa, 0x3, 0xff)
socket(0x29, 0x3, 0xff)
setsockopt$auto(0x400000000000003, 0x29, 0x16, 0x0, 0x20056b)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000)
mmap$auto(0x0, 0x202000d, 0x6, 0x16, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0xfffffffe, 0x8000000000000000, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x430740, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b73, r0, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x16e)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4e23, @loopback}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
fcntl$auto(r1, 0x80000001, 0xa553)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYBLOB="20002bbd7000fbdbdf257a000000060066004e24000004000501040087b7538a4794c2002500430031924ebda1caf58ee53ad1afc276c6e21e7a35768f899344e991e374111f3081ffaba8a74fdc72e1000000060012014eff000008006100ffffffff1300240042e28b6e759cde6edf63616bb99f14ffdfbc4155c7c03d8edd37e614f4c75d5e3a12066f545b1457d54c5612ab03d24272"], 0x70}, 0x1, 0x0, 0x0, 0x80}, 0x40)
mmap$auto(0x0, 0xfffffffffffffffb, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0xfffffffffffffffd, 0x2000b, 0xa169, 0x16, r1, 0x3)
mq_open$auto(&(0x7f00000001c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00'/133, 0x62, 0x7, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)

2m39.241066922s ago: executing program 6 (id=2846):
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop8\x00', 0x40743, 0x0)
ioctl$auto_SG_GET_RESERVED_SIZE(r0, 0x4c06, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0xe0180, 0x0)
r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = mq_open$auto(0x0, 0x7e, 0x9, 0x0)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r5 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000001c0), r2)
ioctl$auto_XFS_IOC_SWAPEXT(r3, 0xc0c0586d, &(0x7f0000000200)={0x2, @inferred=r4, @inferred=r1, 0x2, 0xfffffffffffffff7, '\x00', {0x88, 0x7ff, 0x0, <r6=>0xee01, 0xffffffffffffffff, 0x8001, 0x3, 0x2, {0x2, 0x6}, {0x2, 0xfffffffc}, {0x8, 0xe8}, 0x80000000000000, 0x2b5, 0x7, 0x401, 0x8, 0x0, 0x5, 0x6, 0x3, 0x4, '\x00', 0x5, 0xb, 0x3b, 0x400}})
r7 = wait4$auto(0xffffffffffffffff, &(0x7f00000002c0)=0x2, 0x4, &(0x7f0000000300)={{0x721973d5, 0x5c7}, {0x7fffffffffffffff, 0x2}, 0x1, 0x136, 0x2, 0xf38, 0x0, 0x0, 0x9, 0x5, 0x1, 0x7f, 0x2, 0x8, 0x2, 0xe})
r8 = getuid()
shmctl$auto_IPC_SET(0x6, 0x1, &(0x7f0000000380)={{0xcf71, 0xee01, <r9=>0x0, 0x302, 0xa9, 0x10001}, 0x2, 0x7, 0x2, 0x7, @inferred=0xffffffffffffffff, @raw=0x1, 0x5, 0x0, &(0x7f0000000200)="9df011252a64e715fdaca020cb061f278c1b0a843b13e9", &(0x7f00000002c0)="580348c98260193f6d3e9181c7ea0f657b5066cbdb8529bc4bf00148b1c2355a1ab6c27741dac2e07407c24148ef6e3e6bdeae467ed190d51af432f5662fcd00546c8e686a4552c22a30c37c1efa9595dae7c271533072c86a70327e0099f06eea0aeeadd0c370a50e340cad359710c91bc4711796f743c6a7620669d47d3d245fb9f50cb220092a9a60569710b406e7548a3ca68618513c2057272caf9b7366"})
lstat$auto(&(0x7f0000000100)='./file0\x00', &(0x7f0000000400)={0x0, 0x7, 0x78, 0x6, r8, r9, 0x0, 0x401, 0x80000000, 0x8000000000000000, 0x9, 0x9, 0x2, 0x7, 0x7, 0x0, 0x4})
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r3, &(0x7f0000003ec0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000003e80)={&(0x7f0000000840)={0x25e4, r5, 0x2, 0x70bd26, 0x25dfdbfd, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x113c, 0x1, 0x0, 0x1, [@typed={0xc, 0x3b, 0x0, 0x0, @u64=0x9}, @nested={0xea, 0x154, 0x0, 0x1, [@nested={0x4, 0x66}, @generic="81cde7471f17735d97f54a486f306bc4a658a4361f5f8a51dcd53aa2a8dc139dbc471186614cb96569e5e98490b76bed33a7c37eb2625cdd3d525df03d090fc707bc9469eb49fe283fac11baaeda0655a2b68268728d87afa7fce21e8a736bc7f608d69b8cbaa22350acb46dbb53a1961399c4f05b602be8ce2ea03258e5e989d35c570e879597473eac27d0cae93c7531a82968546e14a8b6cc37c093ef925a734aef42a54b912410cd41c3641b2c75c85d80ae779e48b70f1cf6b0c776f68ccf76fcae5cff5a3aba5d952aabe832c48a62b0820557", @nested={0x4, 0x47}, @nested={0x4, 0x12f}, @typed={0x4, 0x7a}]}, @nested={0x20, 0x7a, 0x0, 0x1, [@typed={0x4, 0x55}, @typed={0xc, 0x68, 0x0, 0x0, @u64=0x6}, @nested={0x4, 0x68}, @nested={0x4, 0x69}, @nested={0x4, 0xb5}]}, @typed={0x8, 0x7d, 0x0, 0x0, @u32=0x7}, @typed={0xd, 0x15d, 0x0, 0x0, @str='/dev/kvm\x00'}, @nested={0x1008, 0x142, 0x0, 0x1, [@generic="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", @nested={0x4, 0x92}]}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x111d, 0x1, 0x0, 0x1, [@generic, @typed={0x8, 0x107, 0x0, 0x0, @uid=r6}, @typed={0xc, 0x12b, 0x0, 0x0, @u64=0x5}, @nested={0x1008, 0xd4, 0x0, 0x1, [@typed={0x1004, 0x13a, 0x0, 0x0, @binary="8ebd51f7a17f151abc65683f11621514910673179bff3deccfea7d17f6794611650de04486a5f891c2dbc48539555672b5aff57c764de8f14fcaa288581372624ffa0e8fd2c95e3007205bf6854313de28bb814702c7adc88174e864ca5d4034707b2b581894e93c043f1fc8dbb57c4316db194fedde4e76248d4610ed44af902f6b673e0da4086b4d50ffaa06fd6b1a1c8d979654e9089c7c1115a21aec7627371ab848d91f0c262fc845093c30a1b9a47687546ec0dbaf460bd65b883a8bf78238558e3d055e941c84193fab9bdef2ebbad377452dbff0f8bc6a16d9f366ac3d52cd98cf5e9f793f754efa08f29601869623a7f09f5a5d5984b9bce0d69b1dc974d686671f5bcd56aa4a96822bebf13af4fd939cf4815667b852171e1c33599ce3be5d7bc886205411db24b91c9b1fc665ebf0aa199356d0a7173854d27056e4b306ffe610301a4f015c53210ea28a3e7b2e7b0d70bd21b0e0202c7dfe77fce409c9d2e7c94d8e0dd2c78d1a781ab62db0a41b5210814df534e1cd29601f5ffa0f956737bf946835716f3a1622a709562ed467a112da15cbf28da07728befa88e94f35fc614a44901293929d11edaedffa587276693055fcbc565b32be19d1ed78af72ba7818a777c1b43fa1bd6df729c07d0ae3876eb547649182902ec25b2c81f9050bd678102b7c92cb1c5a07d3ac24101f5129924801baaefede13e8ae837c60c4d36aa30f43f185bf98c9c1f120b8c61f08f60ce3c8aac610032cde1931e989eb8c2efbfa42c32d3ba244237b15f296b6606c39289021e1cd26175919a4baaed923695f47ade9b4577aebaf6aad5d5ca51a48414670d06ca3b7951631479072cffb228b79861820318e92120903582064d224b51d798be9bd07608a7fc30df52bc14ba14329baba1b2280d2d40ef08c0cb41fb0e433d7fac84e8884f70465bda631ff42e13526e913e38b06e7b60a3152fca929cbb978765ef0dd465e290b52710660a635951b853110af022fad06c79d5109ef3d34bdd1a184514e9c6290ff8aafebf2bc06460f9780fb49dee8c3174dee1472f521411fadb893823fed646cea3e5e4fc11147c3ea2f7fcd8c240ad0ce84af1ae91a194c0df924c0442976460325668a2867e2ea72ace11ec9d40461cf194b1ff3b7acda072e09f061cee38a661500e5789ddf1be9c0bd18e0b0c7629f797dc7b8cb66a6952e150878de84e4c4c4751698f1bb66eecea387512645230fc37c78f232d9303f4ec2ecaeecc1b69b2d58450a2e54b0a3daa28050e5affe9f4454a271eb40f30fed93d6b68815ef731ce53a00e68f2a1bd6f113c37232e0cb16ee20f3c2565366115b88ebf07fdc181c4a38379d800591d60a93730ece26a58188ad9b6977e9af912f0efc3f426dff5ce67225aea3f7e8c32c5aa4cb36f8a09c8901beaf93e687bf3ef6d1c838f913af39580207b5d3bdbea541613946d7e3536fb44b7e67a3f6a94851ba04d47d8b479d5691abcf59eecb661bea04a6812a8a931cd18df8657aa16e3c4b4bcd0a6ca5915c4b704978f66136dc9d86df03db90a848e6334cddf9fda86c9b5c108b360a1c8d0aa950263e5eef062930a4a3ecbad158df43b8cb691aadbcb83bb030af3dbf76bbb66014d283713e01a1837816086680d52b1022d6ba33bc240b94882108a39b505aa0976dfa9dfd8414e4ba09bc5e2caad05232e2b0ed225b53e501dbeda168a70ce387e2f923658b4311e4ae3dd167b1c2873d0cf1618a578104fae7f023ccd65624920c2f64041deccb4e221f0dcaa5fca86c457147235e0a88dd299fdf6b36e598a6ca12c625addbf98af5bcd804117b7e13c39a05036b6d8cb7de43f9a449670498b3a6ab78fec0cc71ce9536da8b4f7c70dd3f19037e7a033130157d4f22179d8fe576ea4d250e621bf98018877e8c90f73089e475ca02f2c9423adf6a5a2ef6360c79ca3491a62ddf10e52406a824f65e1f631f3330a077a8c95345fac0c12d2a774b397691bd9c7f4afb5db32e67906843db74d30de52bea8e17eddf1eb546fae294d2146ceb6e34019ecf5b67b70135c5820315db09f8a97f7fd2f61d6637410185383e49a076f5c45866949b803c22d6a4e5d2524cfaad110782dc9606722a18af71b270067fa33e3b9295b7164933809f061a8c32dc3f6b08590eb13527c44236850b9690eb53f418c0d22d8d38feb8269ab1162cb812a640f410a292810feace2e78123a93313867f0950dc150b32ae3b5a8b7402dcbcdb5075b882f476534099abeceb473a4cdba163cffb6fe244f236dbc155d0775ca32d91b8e345f4db6d5ca45ae10d9d61db1ee2be9c1d1ede055ca85396524b826ad3cb6b1777de529857e0938d721a1335d6f1687b826a8cbe58884c25fc70925db58a82478e086c979b81159ece8077a3660d4126a9240f88a006e707d76a43e1e2cda05b8dd3f94b5892c4680ade46450d7b139d631a05bae42f07af9d1263284cf224afc940ea648e2e773d5c510b578875807a72849e44b6b96be058fa0ace2d7e2f057aeb62d1d9c8b2f71ede5fbc93404df046809753059e05e7b92c641958167de11151bf8db8b25f52710674f78a8a6d229cf8d014c5986fa16347a225b33c7ec32535ce28ee8d294838f50ebdb7fac58319b8dd67c2cf9c957929d43ad254d21975cc83715491a980fe8fd32a336ea960d4822e8bbd936b33ac7b81917553792ed5a85938bcdc84506d6f34d5c87c7062ee85a244389fc843c0851b7b1ad912e25480b1eb633ad92247ac08a3d62d734b46f1010adee82134cb52a4159a1ba0209a19fb9c3bf91159d5c878a6324d4fefc16fca2b3e9baccbd287638a94a97736700a8ec9525d3ad16791b229037fd8adb64d8ea1a1bf0cd9fc05328a258a60d4ea10bdeb760d8812c39903f7c3e3e99f18d733930327894271b6c65cdc0526a1645698fad6fa381d570561fa82a1ce81b33ebbfdeaedd72efd5226ed2553ead4553e73d73feca8c79ba73b6b5f0eadd3565d3fbe8a9750570c2fb5844e930e280f6dec35b87c28ab4ab86b6037f53da5a9615eed1c7604750218f3e26b3d97c171d32f11734eb70466c001f0aac63f9e2a084684833850972d2a4a854b810f74d931c64bf0257b1f8e0d60ccdedac472c4a972f8c72480b9a9a45f26359f10b930225e6dbf39c92ed22d3db2f858a7bd3f681f48448f9f639568334c619d64b7ce1408221bd2292ee5f5cd3a7c0d250990fcc8e7419e73274209ef77a385b756a612e51a32c74dcb5a73a8988766b10a08e9996de26d056f7d177af6b5644f677302129c35d78f9410c7fbd3d7efa289cb7a118d19ee99c53fba3dbeeca75197d2ad933a2c622b337008a9af62b5ce5d58f3833a909bdcf1c1a66558d98e0428bec92f09873d8e7f256bdc48c49c8354a8a6c0f1d3ce53e1c7bed1b376b5e64ef758ef179f7bd8857b87107e6cd86024ca51f7f4a9d2e01a5c18f5c52d299954c3f8212511bc80899c2bd7f2701104292da699890b8cbaf43952483311a0f43a4f581ad79a60a57f398cce9294eefff53b6ebe0c011a6d75aa63cea31671777d6588a0dc24d8dffcd2ca3dfbc8e200534d706840b1e415e9b40160d8039eef899a52e82c122ac0cad35aadc5a516d10e57b72db3f2540c092e0e8942b427974b13f485d55703b6eb27e5bdbd43f55400d74d3d5137e2a3622b7442807d5f2612844a3363ea54b00166f1d3412eb55507d5514f44e9293c1738a292df39c39ab87e16def94828ae909ad59e394cc32d1cfff26c3231008ff025ebb8b85deb3df7ab4191a7ec0bdbaae739a954654537998da356d9f566aad5d7a27435c257acc5634e2927d142aa7bb1877454c3dafcefa1f3a6bbcc62039cb941b026958e49139709ec41f53427f5ac94b270385f56ad9b9e35375d9ee5b7982d6f39d02cb061c86a70315ab81ed445bc647979460f9175ac1d341475600d171d4f898cd856d98503bc58663cf393f714ce3fa2c801b4230d5baf50a2d46a6f3270e354b5d01130a614dcfdcb82ee265bc1819b5be4c6b3334cda54e6774c536b322f4aa8bd1224ef6f492351018967e8bece8da258c70f5d3184f26d7c020b466986c6e61bfb2aba6b720c36e4968ad14b1a45eadd93921774b1664d882bb815cc43ad8c2aa02f129ea219b0a490c811bf9097f064f961bcdeab8685d11b6524e8860bb6dd0a3720ed733c109a1aee8141e6fb90a505b8f688c9c3ae447c1226e05de2d7f3bbb8d0fd3df94ae12908959a74b328d2e1ba580bc0105915ffb47e5839362eae4e068ab5d4b32614613eb8abdc0230518ab3b05f2a143ad26aed3b71919302aad399a6d12ee0a50f0c38ff1fcfaa910174802e9cc7e521212cf63f57efe096f2510c4de4e61ff6220df72dc515c244bb1b7ffeb225e76b413d41f4fed80312c94a5f640f61a324e34a1691670b014afbfa828d20213d394ab58ac8b0b25d7d3be319f78953afb3285f5ca91c1eada7f463a2487e6dd6083012951423ff41dd25f19827ecdbc51d38b01165c30048f19d01ed6c63c684bd22c0150aa23cefce02f9439520b8f03687380d4866174b60bea26b8675d6ac6837d2cd71507baa8649131c87ffc0e2624edf41b0602d110ff4f3be25133e4e794b0714c14de86ff1108e334bffe7cbec040d295dd2bd7e6db82bf15d54ab4b5dfbfc03a2ee7e23aef5c4d8ece8306cceb693f26190456c8ff24cc730629d90e431c85de915b55df3a4988e6c7091fc1d26ddc1a8bf903f37449dff41853284f5bdca3b5667954272b67375f0201cde064f86e9a66e782e12b43ef66c9813d713320a57561ae3d35824810e4ee5966e20dd31da5908538a6f215ef07596d9f6842d8781dd8c60d48db92519c7157c3958e6666e6695cf4b3693e924d4f231b23c598c1b43851db90613b1e14cb5872796468aa8c3d92fef38851256852a13167c48828e76cf3cfd575bd95cc708720d90feb2b4188b96668819eb3a9139561e6a9e06e50e040da94ba024065cc72ceee31a0328d451e5d8d4fa823b01f7766dad07693201e3ee644b77ff5cded090cbe578da7d5589da1ec8b4aebb51a6abeeb13ad8cad2cf731d604bab2dc47e5be8821d4a5df86dd8de30d55ef08a2c80eb120cdb4c19d1e5bedd854b28a5163858a956ec72d72269d5940d7a33d51a4447a0713cc25b47f17ac8e64de5c79b78b8e61f6af97725c574d4dca4af9b06cab79f5dc3712238f8fa8cb03dacd55bb6d0288214b556e35eb58f993913dbed0cd77a86385b6d4ea8d21470f34d2436a566a576701d724e9668b500a63f017de2c0624bd153598626ad1b2baf09dfd8c9d64edba53b9a857cd4e1cb0e11db34de8a4da393c6d817dd739c79a213176cfe63572aaf6cb81e5d0f465d8d806a134bea11a32f1dcb0131a3ebde4e176bcaf7bce4e514a1a8192f4f22edd385c2a57cf8f3b8465bddd1346057ebd126ab22991e3d807c892affe083125409c040f2bcd52389320b9bd0cdc9febf18aae071f87cef2f26292ed75053770976987d50619654955a9f51455618db68d6671c058702fe44639e6290a4816d15ad7e48653c6cfaae7d541f2c73b9197d6b11103d02d7de6d1f7c20c268203f1abf8f3217e0ac8de2cd7b1cfc25d17bf30f3943e8cb0327017feeb9d56cbb8643775fe5481db898afddc6386621ee8d360ee524a7ec03ada4262a5bbd0085de7a1c14a0a9df4e03d66d72b80b59fa9e06d4d527476e3770a411fa6c9763041775ae7705492f2accd33"}]}, @generic="a35f14ad230ac5be2e6faf07a28fe24c3317ee1740577638b70d516869afc4aaa8e44a30df7b66c5ee76437cc7a4316626ff14103ac34757a8d28a92c33365a56976de19fef36b2066d81b992c470fa1a9266dfa5745861381d0d4b9bdb665645690e1c471f3f02b0293b541ecd8a24381db7e4483dc70f466dd5be14cd183371eca45dbe8a44fc65b1e80aa49e786de54d912824e4b9a9295e167135a58a3364957a708a037a5594ad86d1c9def636e45388207b7453d3cb26ab403591c4394eeb6e00f3d803a944ec0ddb06bb31e5a9ebef5f7b517115585344b78d461c26f1705779f7d0289bb45616c0d99", @typed={0x8, 0xae, 0x0, 0x0, @pid=r7}, @typed={0x8, 0x7f, 0x0, 0x0, @ipv4=@multicast1}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x148, 0x1, 0x0, 0x1, [@typed={0xc, 0x68, 0x0, 0x0, @u64=0x8}, @nested={0xc, 0x131, 0x0, 0x1, [@typed={0x8, 0x7e, 0x0, 0x0, @uid=r8}]}, @typed={0x14, 0xa4, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x42}}, @typed={0x8, 0xb1, 0x0, 0x0, @u32}, @typed={0x8, 0x105, 0x0, 0x0, @fd=r4}, @nested={0x98, 0x25, 0x0, 0x1, [@nested={0x4, 0x10e}, @typed={0x8, 0x121, 0x0, 0x0, @ipv4=@empty}, @nested={0x4, 0x6c}, @typed={0x14, 0x11d, 0x0, 0x0, @ipv6=@empty}, @typed={0x70, 0x95, 0x0, 0x0, @binary="7a625be36bfa319ab0f98e91efa5a1806fcce11b397734d594ef377ff771bb90abf8d349e00519e08b625674b0aeaa994673e042e520606a244b204c3d2933f7af3aeeba0a32ee832ba384a8d0b3ca7b441588b003971c8d7928dc1cc4c25b2d09d2fe4c5be4b2d3d8a01ef7"}]}, @nested={0x39, 0xe5, 0x0, 0x1, [@nested={0x4, 0xf3}, @generic="e050b59bd1c1421398758e01a21ca354bc4d743f97e4716581cd873e4f8d3e9227", @typed={0xd, 0x84, 0x0, 0x0, @str='/dev/kvm\x00'}]}, @typed={0xc, 0x25, 0x0, 0x0, @u64=0x2}, @nested={0x28, 0x11, 0x0, 0x1, [@nested={0x4, 0x35}, @typed={0x8, 0x1f, 0x0, 0x0, @fd=r3}, @typed={0x14, 0xb8, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @generic, @nested={0x4, 0x32}]}]}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x22b, 0x1, 0x0, 0x1, [@nested={0x44, 0x11c, 0x0, 0x1, [@typed={0x3b, 0x142, 0x0, 0x0, @binary="b2acddf6cd483130d31c79679d05d5ea4b027bc38f7951ad467c5523084be77550b816879c555f50967d191e61f2b38e73457a807b853b"}, @nested={0x4, 0x6c}]}, @typed={0x14, 0x92, 0x0, 0x0, @ipv6=@private0}, @nested={0x18b, 0x15c, 0x0, 0x1, [@generic="2667b0858ce5770c", @typed={0x8, 0xed, 0x0, 0x0, @uid}, @generic="1a56562f64437606cfa3deddcdc5434a0e7dfc538b3986ca098646d1aea3d1", @generic="506676abbde3ec9a089ffc843b81157c837137242fe3491f7c91e24cce561d2c16745777c401930d1081a6a0a229b1e85ca4f6725adcf6a4b6c643ff9890f8672a35d11b065e7408c484d0952ae8cb9b4b644cc24d93f282a00b51420c", @typed={0x8, 0x121, 0x0, 0x0, @fd=r4}, @nested={0x4, 0x63}, @nested={0x4, 0x8e}, @generic="9392e9ec1b0ba51461acccaada6300e902db90ef777ae35e907f83c6d79583aa081a21b792d854a21c5c7247144809f9c00726ce0ed9b518ff8a020baa57c73a95c6c153a654b779e23e91d3d784637174bd92a61fa8ed3f7756a4b782db371c6187a3226ed959084ac44801bf4e6174d6590c52208b066b76a25fbd1231022f3bac12c62ce0cf10ad173f12dd4163779f2e03a5c4df45cf7ed6d303a905c81f99b1f398b4f1e415681ff46990bf2990e39c439ddf798e388dccadd90467bd71db18daffc4b2fd0ba6c571b071930a1f6dcb06e1acd2c441ca3e900f72f594a8695575df53f22a98a6e3a5"]}, @typed={0x4, 0x4b}, @nested={0x8, 0xbc, 0x0, 0x1, [@nested={0x4, 0xb8}]}, @generic="416ef4e374a52cc24d6d57fa1f4d8e5738ef7a3f5f7ad9cee47e58b785d27ad01957b13af2324746149321fe9e2e54faa2ceada8c6bb29"]}]}, 0x25e4}, 0x1, 0x0, 0x0, 0x10}, 0x0)
newfstatat$auto(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x9, 0x40, 0x60, 0xff, 0xffffffffffffffff, <r10=>0xee01, 0x0, 0x2, 0x7fff, 0x9, 0x8, 0x8, 0x4, 0x80000000, 0xffffffffffffff5c, 0x9, 0x7}, 0x1a79)
r11 = getpid()
process_vm_readv$auto(r11, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={0x0, 0x40000000001243}, 0x4, 0x0)
shmctl$auto(0x800, 0x7fff, &(0x7f00000001c0)={{0x0, r8, r10, 0xf53, 0x7, 0x3, 0xf801}, 0x0, 0xff, 0x4, 0x3619a5fb, @inferred=r11, @raw=0x7, 0x5, 0x0, &(0x7f0000000140)="1c0f59a26b1d08379a5a9ad32d671ab7d3e677416eb8e30272fbf79f3ed3fb6695d1bc3359bbd8758842045ba1d0d206414d0b", &(0x7f0000000180)="c1fd89d7cee3846c7904a914e635fe56cfbe70cfe08f1b4a7531a0203d044ae7dec44965581a0038318f"})

2m39.041521439s ago: executing program 6 (id=2848):
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r0, 0x114, 0x271b, 0xfffffffffffffffc, 0x0)
bind$auto(0x3, 0x0, 0x6a)
r1 = io_uring_setup$auto(0x1, 0x0)
write$auto_fops_init_pkru_pkeys(r1, 0x0, 0x0)
migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b)
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x40440, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000001c0))
fanotify_init$auto(0x6, 0x0)
readv$auto(r2, &(0x7f0000000200)={0x0, 0xfffc}, 0x3)

2m38.679208153s ago: executing program 6 (id=2849):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/snd_hda_intel/parameters/power_save\x00', 0x80002, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r0, 0x1, 0x7ff)
ptrace$auto(0xc, r0, 0x9, 0xfffffffffffff6de)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000040))
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
read$auto(r2, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10002cbd7000fddbdf251c"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
bpf$auto(0x0, 0x0, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r6=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010027bd7000fddbdf250200000008000300", @ANYRES32=r6, @ANYBLOB="aa05000000000000"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x80)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7000fddbdf2503000000040008001400038010000c800c00038008000600", @ANYRES32=0x0, @ANYBLOB="12000100898771f1c19f17790481008286dd0000040002"], 0x44}, 0x1, 0x0, 0x0, 0x50}, 0xc800)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/mountinfo\x00', 0x20200, 0x0)
select$auto(0x4, 0x0, &(0x7f0000000100)={[0x9, 0x7, 0xfffffffffffffff9, 0x9, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0xffff, 0x1ff, 0xd, 0x3, 0x200000201, 0x7, 0x6]}, 0x0, 0x0)

2m38.100139157s ago: executing program 6 (id=2852):
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x19, 0x3, 0x1)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
syz_open_procfs$namespace(0x0, &(0x7f0000000080))
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000480)='/dev/sda1\x00', 0x8800, 0x0)
mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x13, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fda, 0x3, 0x7fffffffb000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000001380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xfc\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r&\xec\xb8\xb1Z\\\xc9L\xb2\t\xddbH|\xffGP\x97)\xb9:nqn\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc$\xa0\xa5\xce\xca\xe1P\xf7\xe5_\xca\xd5\xd8\xa4g_\xb1\x88\x8cAJS\x11\x8b\xd1%a\xe5DPk\x8c\xf9\xfb\xe0+\xdb\x12\x10.F\x00\xc37\xc7\xbf\x80\xbeu\xe1V\xb2\xc5\xc9\x1a\xc7\xdc}!\x10\xb1\",1%\x0e\xeb\x15\x15me\xe1a\x03\x18{\xb03+\x93*vB\xc6\xf1\xc6\xff\xbbt\x04!\xb6\v\xde2\xc9\x89#\xbaR\xee\x13jF%\xf2\x15\x9a\x82&\x89o\xa9\xd9\xbfFY\x90\x8c\xa0\xe4\x9d\xa2\xcd\x9a\xb5TC\xc4\x9d\x9ePb]\xaa\xc7f\x06N\xc5\xfa{\x02Y\xae\xf4(\xaa\x06);{?\x1e\fu\x19b\xdf$,\x01\"\x94\x00\x00\x00\x00\x003\xcfZ\xaf~<\xba\xb7\xa03\x8c\n*krS\x19Q#\x8f\xfbW\xad\xe0\xb3o\xcb\xf7\xda\x87C\x99\x1a\xa8\xc1\xe3\xc6%\xac\x01@*\xa0\xc4\xedn-lT\xe6*?\'\x9dW=\xa7\x03\x06\x83 IT\xa3\x7ff\xb6\x95\xe5\xd2\n\xaf\x87`\xce%\xf6 &\xa7M5I\x9c\x17h\x8c\xa4\x98\x16\xe0\xd9?Y\x7f\xf6\x85_{\xfd9p$B9_\xd8\xf4\x0e\xd0\xfa\xe7\xb0\xb8\xa0\xd7\a\xff.\"\x81\b\xb0\xb4\x84\xac\xad\x1b\x93~_\xea\xfe7\x03\"\xd9\x1d.\xe5{bHX\x14\xa1\bO\x03[^\x85jP\x89\t\x06GI\xb7\x99\xb2zZf\xc8\xd4\x8d\x1c\x1e\x03\xb9\xa7Nt\xae\xfff\xf9\tx\xae\xa8\x05\xb14\xc6\x9b\x1f\xd3\x01#\xc6\nb\xd4\xb4\xc8?\xa7\xe2R\xc1\xcf\xd2\xbc\xae\xd1\xc2\x88\"\xf3\xf0\xc0uQy\xec\xfab\xd6\xcd\x16)\x19*E\vm\x8d\x1bG:\x80\'pJ', 0x4100000a3d7)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0p/sub7/info\x00', 0x8040, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r1, 0x0, 0x0)
mmap$auto(0x2, 0x5, 0x3, 0xeb1, 0xfffffffffffffffa, 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
pread64$auto(r0, 0x0, 0x300000002, 0x100000001)
mmap$auto(0x0, 0x202000a, 0x9, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/nbd9\x00', 0x78000, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r2, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)

2m36.980300614s ago: executing program 6 (id=2854):
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0xffffffffffffffff, 0x7ffe)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/fail-nth\x00', 0x800, 0x0)
poll$auto(&(0x7f0000000d40)={0x3, 0xffff, 0xa}, 0x5, 0x400)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x9, 0xfffffffd}, 0x1}, 0x5, 0x20000000)

2m35.379675646s ago: executing program 2 (id=2857):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x40)
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, &(0x7f0000000440)=[0xfff, 0xedc0])
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x80c0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
shutdown$auto(0x200000003, 0x2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
r4 = open(0x0, 0x0, 0xb5d1af1605322df2)
sendfile$auto(0x3, r3, 0x0, 0x400000000006)
close_range$auto(0x2, 0x8, 0x0)
read$auto_proc_pid_smaps_operations_internal(r4, &(0x7f0000000480)=""/4096, 0x1000)
ioctl$auto_SOUND_MIXER_READ_CAPS2(r2, 0x80044dfc, &(0x7f0000000080))
r5 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xb, 0x0)
write$auto(0x3, 0x0, 0xfdef)
ioctl$auto(0x3, 0x541a, r5)

2m35.071248281s ago: executing program 2 (id=2858):
syz_open_procfs$namespace(0x0, &(0x7f0000000080))
mmap$auto(0x0, 0x200104, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mmap$auto(0x0, 0x402000a, 0x1006, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x2, 0x88)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x57e)
fcntl$auto_F_ADD_SEALS(r0, 0x410, 0x0)
symlink$auto(&(0x7f00000010c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./file0\x00')
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/sched_rr_timeslice_ms\x00', 0x2, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
connect$auto(0x3, 0x0, 0x58)
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000c00), r1)
sendmsg$auto_TCP_METRICS_CMD_DEL(r1, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000280)={0x24, r2, 0x901, 0x70bd27, 0x25dfdbfb, {}, [@TCP_METRICS_ATTR_SADDR_IPV4={0x8, 0xb, @private=0xac14140a}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @remote}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40)
socket(0x2c, 0x3, 0x0)
socket(0x10, 0x2, 0x4)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/sit0/statistics/tx_compressed\x00', 0x80000, 0x0)
mknod$auto(&(0x7f0000000300)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x1, 0x4)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0x4008ae6a, r3)

2m34.496060568s ago: executing program 2 (id=2859):
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x2, 0x0)
bind$auto(0x4, 0xfffffffffffffffe, 0x0)
r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x80000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000100)={0x60, 0x3, 0x100002, 0x7, 0x3f, 0x6, 0xe4, 0x0, 0x0, 0x2, 0x0, 0x6})

2m34.273721676s ago: executing program 2 (id=2860):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb0\x00', 0x83, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0x1b, 0x400, 0x9}]})
fchdir$auto(r0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x8000000)
semget$auto(0x0, 0x2e4a, 0x8000)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x1f4, 0x0)
mkdir$auto(&(0x7f00000000c0)='./cgroup.cpu/cpuset.cpus\x00', 0x3)
bpf$auto_BPF_OBJ_GET_INFO_BY_FD(0xf, &(0x7f00000002c0)=@link_detach, 0x1)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r3 = inotify_init1$auto(0x3000000000000)
socket$nl_generic(0x11, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x80000, 0x1)
prctl$auto(0x23, 0x9c3, 0x0, 0x0, 0x1)
unshare$auto(0x40000080)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/smaps_rollup\x00', 0x840, 0x0)
read$auto(r3, 0x0, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)

2m33.759532914s ago: executing program 2 (id=2861):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
syz_genetlink_get_family_id$auto_ila(&(0x7f0000000000), 0xffffffffffffffff) (async)
r0 = socket(0x28, 0x1, 0x0)
getsockopt$auto(r0, 0x28, 0x2, 0x0, 0x0)

2m33.486037188s ago: executing program 2 (id=2862):
mmap$auto(0x1, 0x7, 0x31, 0x8216, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio1\x00', 0x60343, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000400)='/dev/bus/usb/033/001\x00', 0x0, 0x0)
ioctl$auto_USBDEVFS_FREE_STREAMS(r1, 0x8008551d, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000001080)="7a47301037954c081c9a0bb04ef84993eab91abe1686f43e43d786e91365f04455bd620de9f3fb6d25e6c078c1a672c549dbc7876cb528ba081a81d884bfc00dd4eef57cedc0cc3756ff6a5b0aa8ba9511fe2b07c6e7f4732fe36ba2")
read$auto(0xffffffffffffffff, 0x0, 0x1f40)
ioctl$auto(0xc8, 0x800454e1, 0x5c8d)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto(0x3, 0x0, 0x8080)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
sendmsg$auto_SMC_NETLINK_DUMP_UEID(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0xfffffedb}, 0x1, 0x0, 0x0, 0x40015}, 0x1)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SNDRV_PCM_IOCTL_INFO2(0xffffffffffffffff, 0x81204101, &(0x7f0000000280)={0x3, 0x8041, 0x4, 0x1000, "8ae984f59ad56b41628d5ce9d7e8509b5967fbfaeacb8d14b00c0effa6eff1c9bbc3de6bc0e87cae64fc94e1e73af322af1fc3330217dc7315eceb81671b5307", "f26087d90f39ef27fe449a676612aa63d1229bfb5d08001f72919b51608d6dd7bf0793e003b6d1c2d6ba4551f19d44d0061fe47d742381fbdea19e01f10af002d023cf7851bbeaa163b8c98aacb98c49", "07bfdd649515caa087cbd691cbeb27f55a8beda3e933e252089a4abd4633aef7", 0x9b58, 0x5, 0x1, 0x9a, '\x00', "029b411bc31b3e0b801d22d72268831b6b48389cbd28c10350eb4fedd57919887772e8952f2605b3f0b4b17fdf3ad1bfde0ddb3c38c734d3990c2f45dbf64f73"})
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/pid_for_children\x00')
fchdir$auto(r2)
mount$auto(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@J\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
geteuid()
getegid()
socket(0x2, 0x1, 0x106)
shmat$auto(0x200, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x4)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
capset$auto(0x0, 0x0)
setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x2)
setsockopt$auto(0x3, 0x0, 0x18, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x3, 0x0)

2m30.156593463s ago: executing program 35 (id=2829):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
unshare$auto(0x40000080)
io_uring_setup$auto(0x82, 0x0) (async)
r0 = io_uring_setup$auto(0x82, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff) (async)
r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000002c0)={0x34, r2, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x200}, @NFSD_A_SERVER_SCOPE={0x17, 0x4, '/dev/snd/controlC0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x20008000}, 0xc840)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r1)
msgctl$auto_MSG_INFO(0x454d, 0xc, &(0x7f0000000240)={{0x3f, 0x0, 0xffffffffffffffff, 0x9, 0x0, 0x7f, 0x4}, 0x0, &(0x7f00000000c0)=0xc1, 0xb2ae, 0x7ff, 0x7, 0x6, 0x508, 0xfff, 0x3, 0xb, @raw=0x8, @raw=0x80000000})
sendmsg$auto_NL802154_CMD_ABORT_SCAN(r0, &(0x7f0000001780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001740)={&(0x7f00000017c0)=ANY=[], 0x1280}, 0x1, 0x0, 0x0, 0x4880}, 0x800)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8014}, 0x40000)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3c, 0x1, 0x0, 0x2, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC0\x00', 0x80, 0x0) (async)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC0\x00', 0x80, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim0/del_port\x00', 0xa001, 0x0)
write$auto(r3, &(0x7f0000000380)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85K /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x9, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2000}, {0x100, 0x1, 0x50, 0x5, 0x1, 0x7, 0x8, 0x8, 0x100000002}}) (async)
io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x9, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2000}, {0x100, 0x1, 0x50, 0x5, 0x1, 0x7, 0x8, 0x8, 0x100000002}})
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19) (async)
madvise$auto(0x0, 0x200007, 0x19)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x4000000000009b72, 0x2, 0x8000)
sched_getattr$auto(0x0, &(0x7f0000000000)={0xcf86, 0x106, 0x6, 0x200, 0x7, 0xb, 0x6, 0xfffffffffffffff8, 0x8, 0x90}, 0x68, 0x0) (async)
sched_getattr$auto(0x0, &(0x7f0000000000)={0xcf86, 0x106, 0x6, 0x200, 0x7, 0xb, 0x6, 0xfffffffffffffff8, 0x8, 0x90}, 0x68, 0x0)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, 0x0, 0x2304, 0x1a00)
io_uring_register$auto_IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, &(0x7f00000000c0)="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", 0x7f) (async)
io_uring_register$auto_IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, &(0x7f00000000c0)="a944632283192524b88550d61a5f4a7956e129d5567b806c780a19895b51451fff720448548edcadc08c3a512294141639e4b6121a47cad7ff0a2149a51e662c2be33948e7814204af200b09e4e13284ca721a31221a4be955e9f98ed1bcc56ba14c07787b8c2ac517ad1fa98decc978c727477fff0feef9391be0ca67681f2164c5a4d098479973ed99aa83c1d0e7042bf9ec0f30f136cd5dc60d8a636f3f78abeef1441e48994d94e7dfcbb2f14031385163298892ee3ec500f9bce47904cc82ec794dc54b2a8ada5aeba484ce4ce7aca4de4947d333e0cf999967790b4c8bd040c5a8e349174579c2e51bdfaf02b2c12d1ebdcb05048c689931af4cff28a8e8a48b2fa8fab5dd0a435f4439ee7aa4e50d3fd05c6fe2585f03729858cae3f326efaaed68ec2cefea1ae64a8959b6435033c3d6dfe30afca8992a73d5f948a9c242812dcad4eed7874eee4b28b8ba87bca05b616af1475021492a15efbb0475dad06cd658562bd86524ef8fb52993cbb25d0c67fde806c99c5566e9a80c4f2cc526a788113785cfe808880db4b13cc2e57e3e33401da02b2358980a9842e8f6dc9190686b7b21e3280615c6471a096535c5ae31645336d7f55f3c86bcbab7c963804824a900a0cca2e168deb128157defdc33e2abaf0f14a038b76eaaca807fafab10ee60b28b773f00f11efdc90b0a2203d08943f7a2c6964438bf180113f1f7fa11fc222a135b4b995ebbc478818177969530071c790a52aa69d93db60dc5813aaf1937267aa31f862d37a76baa8abaa317c315d6d1839915c0171ee2f73eb0fd107efeb7ce73a719dbd85a8dfbf0162b573266299a3a88ce7269193c0564cc20c3de7a8f1500d6711f457439355a5604a5c251d8c2a3e27fad4ae1fb48933db6a661f5da96c756d7a6887dbd2288117b38c2cfdc0e85d90a512d2b1add68a51fc625b582224f4b2e617ceccbc6b368f6c3b283b66476cd2294e6830d85aab23d3e2abe8e184e841509c97385337f", 0x7f)
mmap$auto(0x0, 0x2020209, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0a22cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab02807fe932b8a415a581dcdc7800f91e231c001d800400d3800c002000f3000000002b3c0c7e9b"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42)

2m25.598839281s ago: executing program 36 (id=2843):
socket(0xa, 0x3, 0xff)
socket(0x29, 0x3, 0xff)
setsockopt$auto(0x400000000000003, 0x29, 0x16, 0x0, 0x20056b)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
ioctl$auto_BLKRRPART(0xffffffffffffffff, 0x125f, 0x700000000000000)
mmap$auto(0x0, 0x202000d, 0x6, 0x16, 0xffffffffffffffff, 0x8000)
socketpair$auto(0x1, 0xfffffffe, 0x8000000000000000, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x430740, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b73, r0, 0x8000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x16e)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000140)=@in={0x2, 0x4e23, @loopback}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe)
fcntl$auto(r1, 0x80000001, 0xa553)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYBLOB="20002bbd7000fbdbdf257a000000060066004e24000004000501040087b7538a4794c2002500430031924ebda1caf58ee53ad1afc276c6e21e7a35768f899344e991e374111f3081ffaba8a74fdc72e1000000060012014eff000008006100ffffffff1300240042e28b6e759cde6edf63616bb99f14ffdfbc4155c7c03d8edd37e614f4c75d5e3a12066f545b1457d54c5612ab03d24272"], 0x70}, 0x1, 0x0, 0x0, 0x80}, 0x40)
mmap$auto(0x0, 0xfffffffffffffffb, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0xfffffffffffffffd, 0x2000b, 0xa169, 0x16, r1, 0x3)
mq_open$auto(&(0x7f00000001c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00'/133, 0x62, 0x7, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)

2m21.622289412s ago: executing program 37 (id=2854):
mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0xffffffffffffffff, 0x7ffe)
r0 = socket(0x2b, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/fail-nth\x00', 0x800, 0x0)
poll$auto(&(0x7f0000000d40)={0x3, 0xffff, 0xa}, 0x5, 0x400)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x9, 0xfffffffd}, 0x1}, 0x5, 0x20000000)

2m20.7292182s ago: executing program 8 (id=2864):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r0, 0x4, 0x100000000)
mmap$auto(0x13, 0xe472, 0x9, 0x40800000000eb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00'})
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x15, 0x2, 0xc)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000003780)={0x0, 0x0, &(0x7f0000003740)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x40080)
mmap$auto(0x0, 0x7, 0x2a, 0x9b52, 0xffffffffffffffff, 0x100)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$auto(0x3, &(0x7f0000000340)=@prog_bind_map={r1, r3, 0x9}, 0xffffffff)
r4 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/msr\x00', 0x181f82, 0x0)
readv$auto(r4, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
openat$auto_media_devnode_fops_mc_devnode(0xffffffffffffff9c, &(0x7f0000000040)='/dev/media1\x00', 0x22001, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/loop15/queue/atomic_write_boundary_bytes\x00', 0x141900, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000040)=""/124, 0x7c)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/devices/pci0000:00/0000:00:01.3/config\x00', 0x68102, 0x0)
pread64$auto(0xffffffffffffffff, 0x0, 0x0, 0x2)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x10000000000e8, 0x9, 0x2, 0x1, 0x5, 0x4, 0x15f4da0e, 0x8, 0x9, 0x100000000000000c, 0x8, 0x1, 0xfca, 0x9, 0x2, 0x4000000000000d]}, 0x0)
r6 = timerfd_create$auto(0x1, 0x0)
timerfd_settime$auto(r6, 0x0, &(0x7f0000000000)={{0x10, 0x3ff}, {0x10, 0x9}}, 0x0)

2m20.477916155s ago: executing program 8 (id=2868):
r0 = socket(0x2b, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
ioctl$auto_FIONREAD(r0, 0x541b, 0x7)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_bridges_fops_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/encoder-1/bridges\x00', 0x100, 0x0)
pread64$auto(r1, 0x0, 0x201, 0x569)
linkat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xf6\x04W\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xed\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\x9bg\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
mknod$auto(&(0x7f0000000040)='&&\x00', 0xcb, 0x6862)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
r2 = io_uring_setup$auto(0x1, &(0x7f0000000080)={0x7fffffff, 0xc, 0xc000, 0x6, 0xd4, 0xa, 0xffffffffffffffff, [0x4], {0x5, 0x6, 0x1000000f, 0x29f, 0x100, 0x7f, 0x101, 0x6, 0x10000}, {0x5, 0x40001, 0x21bb800, 0x5, 0x6f, 0x2, 0x1, 0x8, 0x8000000000000000}})
r3 = io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7fffffff, 0xa50, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x8, 0x1, 0x80000000, 0x100, 0x83, 0x101, 0x6, 0x8000000000000001}, {0x100, 0x1, 0x52, 0x5, 0x11, 0x101, 0x876c5, 0xc9, 0x3}})
io_uring_register$auto(r3, 0x15, 0x0, 0x9)
shutdown$auto(0x200000003, 0x2)
select$auto(0x8001, 0x0, &(0x7f0000000100)={[0x9, 0x200, 0x0, 0x80000000000001fe, 0x9, 0x3, 0xd, 0x7, 0xd886, 0x5e58296b, 0xa12, 0x41, 0x4, 0x200, 0x8, 0xc]}, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NFC_CMD_GET_DEVICE(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24008890}, 0x20000804)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/tcp_dctcp/parameters/dctcp_shift_g\x00', 0xc0202, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/button/parameters/lid_init_state\x00', 0x169882, 0x0)
r5 = bpf$auto_BPF_LINK_CREATE(0x1c, &(0x7f0000000100)=@bpf_attr_1={r2, 0x4, @next_key=0x7}, 0x0)
bpf$auto_BPF_MAP_FREEZE(0x16, &(0x7f0000000200)=@token_create={0x2, r5}, 0xfffffffc)
msgget$auto(0x0, 0x5)
msgsnd$auto(0x0, &(0x7f0000000040)={0x5}, 0x1000, 0x4)
msgctl$auto(0x0, 0x0, 0x0)
mprotect$auto(0x0, 0x8000000000000001, 0x8)

2m19.608041838s ago: executing program 8 (id=2871):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x40)
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, &(0x7f0000000440)=[0xfff, 0xedc0])
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x80c0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
shutdown$auto(0x200000003, 0x2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
r4 = open(0x0, 0x0, 0xb5d1af1605322df2)
sendfile$auto(0x3, r3, 0x0, 0x400000000006)
close_range$auto(0x2, 0x8, 0x0)
read$auto_proc_pid_smaps_operations_internal(r4, &(0x7f0000000480)=""/4096, 0x1000)
ioctl$auto_SOUND_MIXER_READ_CAPS2(r2, 0x80044dfc, &(0x7f0000000080))
r5 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xb, 0x0)
write$auto(0x3, 0x0, 0xfdef)
ioctl$auto(0x3, 0x541a, r5)

2m18.10840794s ago: executing program 38 (id=2862):
mmap$auto(0x1, 0x7, 0x31, 0x8216, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio1\x00', 0x60343, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000400)='/dev/bus/usb/033/001\x00', 0x0, 0x0)
ioctl$auto_USBDEVFS_FREE_STREAMS(r1, 0x8008551d, 0x0)
ioctl$auto_SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000001080)="7a47301037954c081c9a0bb04ef84993eab91abe1686f43e43d786e91365f04455bd620de9f3fb6d25e6c078c1a672c549dbc7876cb528ba081a81d884bfc00dd4eef57cedc0cc3756ff6a5b0aa8ba9511fe2b07c6e7f4732fe36ba2")
read$auto(0xffffffffffffffff, 0x0, 0x1f40)
ioctl$auto(0xc8, 0x800454e1, 0x5c8d)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
read$auto(0x3, 0x0, 0x8080)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
sendmsg$auto_SMC_NETLINK_DUMP_UEID(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0xfffffedb}, 0x1, 0x0, 0x0, 0x40015}, 0x1)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
write$auto(0x3, 0x0, 0x100082)
ioctl$auto_SNDRV_PCM_IOCTL_INFO2(0xffffffffffffffff, 0x81204101, &(0x7f0000000280)={0x3, 0x8041, 0x4, 0x1000, "8ae984f59ad56b41628d5ce9d7e8509b5967fbfaeacb8d14b00c0effa6eff1c9bbc3de6bc0e87cae64fc94e1e73af322af1fc3330217dc7315eceb81671b5307", "f26087d90f39ef27fe449a676612aa63d1229bfb5d08001f72919b51608d6dd7bf0793e003b6d1c2d6ba4551f19d44d0061fe47d742381fbdea19e01f10af002d023cf7851bbeaa163b8c98aacb98c49", "07bfdd649515caa087cbd691cbeb27f55a8beda3e933e252089a4abd4633aef7", 0x9b58, 0x5, 0x1, 0x9a, '\x00', "029b411bc31b3e0b801d22d72268831b6b48389cbd28c10350eb4fedd57919887772e8952f2605b3f0b4b17fdf3ad1bfde0ddb3c38c734d3990c2f45dbf64f73"})
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/pid_for_children\x00')
fchdir$auto(r2)
mount$auto(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@J\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x5, 0x0)
geteuid()
getegid()
socket(0x2, 0x1, 0x106)
shmat$auto(0x200, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x4)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
capset$auto(0x0, 0x0)
setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x2)
setsockopt$auto(0x3, 0x0, 0x18, 0x0, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x3, 0x0)

2m4.754659054s ago: executing program 1 (id=2873):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
write$auto(0xca, 0x0, 0x0)
r1 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
getdents$auto(r1, 0x0, 0x400018)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)=""/186, 0xba)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(0x0, r2)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="2f212cbd7000fcdbdf252100000008000300", @ANYRES32=r4, @ANYBLOB="04002d04397e41f7838d5ab326a3ea7204f34411a1b4fb2c547392b43c5b48e85bd7350ec99e8124cbdf1ba143912d"], 0x20}}, 0x4000000)

2m3.91817043s ago: executing program 39 (id=2871):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x40)
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, &(0x7f0000000440)=[0xfff, 0xedc0])
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x80c0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
shutdown$auto(0x200000003, 0x2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
r4 = open(0x0, 0x0, 0xb5d1af1605322df2)
sendfile$auto(0x3, r3, 0x0, 0x400000000006)
close_range$auto(0x2, 0x8, 0x0)
read$auto_proc_pid_smaps_operations_internal(r4, &(0x7f0000000480)=""/4096, 0x1000)
ioctl$auto_SOUND_MIXER_READ_CAPS2(r2, 0x80044dfc, &(0x7f0000000080))
r5 = open(&(0x7f00000000c0)='./file0\x00', 0x22240, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xb, 0x0)
write$auto(0x3, 0x0, 0xfdef)
ioctl$auto(0x3, 0x541a, r5)

2m1.970138459s ago: executing program 1 (id=2892):
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f00000012c0)={{@raw=0xd720, 0x1, 0x2, 0x6, "0582a820061b5c51a65a6dd72b0b15addbdf55cb4b0f2381f2673e3a1ebe21e1bf1b26f0db7b620200f764f9", @raw=0x1000}, 0x0, @integer64=@value_ptr=0x0, "528d458095d42b72adda0cac2d45bdaacf03000000000000008bf00ab57d5d73b094925aa92857fd2f672f85343275f80841c6cac1ba3023ab4510269ed959a79a789527276d90375018fc08050559d8936b8d72087a5689d4338da78b8b8bdcea8133ca43202fb78dacb3fea1258074885c899d75cd52751f9be959d90fa5c2"})
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0)
sendfile$auto(r0, r0, 0x0, 0x2)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x44eb2, 0xffffffffffffffff, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x40000000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x1cb602, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = pipe$auto(0x0)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
vmsplice$auto(r1, &(0x7f0000000000)={0x0, 0x4000005}, 0x6, 0x8)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x3, 0x5)
lseek$auto(0x3, 0x0, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
epoll_ctl$auto(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2ac842, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000080df, 0xeb1, 0x6, 0x8000)
move_pages$auto(0x0, 0x4, 0x0, 0x0, 0x0, 0x400000)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
msgctl$auto_MSG_INFO(0x5, 0xc, &(0x7f0000000280)={{0x9, 0xffffffffffffffff, <r2=>0xffffffffffffffff, 0x2, 0x287f, 0x2, 0x3}, 0x0, 0x0, 0x7fffffff, 0x9, 0x8, 0xffffffff, 0xfffffffffffffffe, 0x7fff, 0xfc2, 0x27f, @inferred, @raw=0x9})
setresgid$auto(0x0, 0xffffffffffffffff, r2)
setfsgid$auto(0x0)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
msgctl$auto(0x4, 0x10000, 0x0)
write$auto(0x3, 0x0, 0xfdef)
munmap$auto(0x8000, 0xffffffff)

1m58.775101901s ago: executing program 1 (id=2893):
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = getpid()
r1 = gettid()
mmap$auto(0x1fffffa, 0x400010, 0xdf, 0x9b74, 0x2, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
lseek$auto(0xffffffffffffffff, 0xfffffffffffffffd, 0x1)
write$auto(0x3, 0x0, 0x7fffffff)
r3 = syz_genetlink_get_family_id$auto_hsr(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_HSR_C_GET_NODE_LIST(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000180), 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x44, r3, 0x726, 0x70bd2d, 0x25dfdbfb, {}, [@HSR_A_NODE_ADDR_B={0xa, 0x5, @random="fe45e56bd72a"}, @HSR_A_IF2_AGE={0x8, 0x4, 0x8}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @random="3d17a7f1e392"}, @HSR_A_IF1_AGE={0x8, 0x3, 0x6}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x4080)
sendmsg$auto_HSR_C_GET_NODE_LIST(r2, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r3, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@HSR_A_IF1_SEQ={0x6, 0x6, 0x7}, @HSR_A_IF1_AGE={0x8, 0x3, 0x9}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x804)
sendmsg$auto_GTP_CMD_GETPDP(r2, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x20004080)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0x100000000)
r4 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0xa901, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xf4c)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x2, 0x0)
r5 = socket(0x15, 0x5, 0x0)
setsockopt$auto(r5, 0x114, 0x8, 0x0, 0x4)
close_range$auto(0x2, r4, 0x0)
socket(0x28, 0x5, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400c72da808bf9779d790fb28"], 0x2c}, 0x1, 0x0, 0x0, 0x4000014}, 0x400c000)
socket(0x10, 0x2, 0x4)
rt_tgsigqueueinfo$auto(r0, r1, 0x21, &(0x7f0000000400)={@siginfo_0_0={0x3, 0x1c51, 0xfffffffe, @_kill={r0}}})

1m57.621197622s ago: executing program 1 (id=2895):
mmap$auto(0x0, 0x5, 0x6, 0xeb1, 0xffffffffffffffff, 0xd22400000)
r0 = socket(0x10, 0x2, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/pid_for_children\x00')
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4010}, 0x51)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='&\x00'], 0x1ac}}, 0x20000095)
lseek$auto(r0, 0x4, 0x6)
mmap$auto(0x0, 0x4, 0xc00000072, 0x8b72, 0x1000000002, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0x13, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
mremap$auto(0x0, 0xffffffffffffffff, 0x3fda, 0x3, 0x7fffffffb000)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f0000001380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xfc\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\r&\xec\xb8\xb1Z\\\xc9L\xb2\t\xddbH|\xffGP\x97)\xb9:nqn\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc$\xa0\xa5\xce\xca\xe1P\xf7\xe5_\xca\xd5\xd8\xa4g_\xb1\x88\x8cAJS\x11\x8b\xd1%a\xe5DPk\x8c\xf9\xfb\xe0+\xdb\x12\x10.F\x00\xc37\xc7\xbf\x80\xbeu\xe1V\xb2\xc5\xc9\x1a\xc7\xdc}!\x10\xb1\",1%\x0e\xeb\x15\x15me\xe1a\x03\x18{\xb03+\x93*vB\xc6\xf1\xc6\xff\xbbt\x04!\xb6\v\xde2\xc9\x89#\xbaR\xee\x13jF%\xf2\x15\x9a\x82&\x89o\xa9\xd9\xbfFY\x90\x8c\xa0\xe4\x9d\xa2\xcd\x9a\xb5TC\xc4\x9d\x9ePb]\xaa\xc7f\x06N\xc5\xfa{\x02Y\xae\xf4(\xaa\x06);{?\x1e\fu\x19b\xdf$,\x01\"\x94\x00\x00\x00\x00\x003\xcfZ\xaf~<\xba\xb7\xa03\x8c\n*krS\x19Q#\x8f\xfbW\xad\xe0\xb3o\xcb\xf7\xda\x87C\x99\x1a\xa8\xc1\xe3\xc6%\xac\x01@*\xa0\xc4\xedn-lT\xe6*?\'\x9dW=\xa7\x03\x06\x83 IT\xa3\x7ff\xb6\x95\xe5\xd2\n\xaf\x87`\xce%\xf6 &\xa7M5I\x9c\x17h\x8c\xa4\x98\x16\xe0\xd9?Y\x7f\xf6\x85_{\xfd9p$B9_\xd8\xf4\x0e\xd0\xfa\xe7\xb0\xb8\xa0\xd7\a\xff.\"\x81\b\xb0\xb4\x84\xac\xad\x1b\x93~_\xea\xfe7\x03\"\xd9\x1d.\xe5{bHX\x14\xa1\bO\x03[^\x85jP\x89\t\x06GI\xb7\x99\xb2zZf\xc8\xd4\x8d\x1c\x1e\x03\xb9\xa7Nt\xae\xfff\xf9\tx\xae\xa8\x05\xb14\xc6\x9b\x1f\xd3\x01#\xc6\nb\xd4\xb4\xc8?\xa7\xe2R\xc1\xcf\xd2\xbc\xae\xd1\xc2\x88\"\xf3\xf0\xc0uQy\xec\xfab\xd6\xcd\x16)\x19*E\vm\x8d\x1bG:\x80\'pJ', 0x4100000a3d7)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0p/sub7/info\x00', 0x8040, 0x0)
read$auto_proc_reg_file_ops_compat_inode(r3, &(0x7f0000000100)=""/184, 0xb8)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
pread64$auto(r1, 0x0, 0x300000002, 0x100000001)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_setup$auto(0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r2, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2e)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff)

1m54.854787152s ago: executing program 1 (id=2900):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x40)
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, &(0x7f0000000440)=[0xfff, 0xedc0])
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x80c0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
shutdown$auto(0x200000003, 0x2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
r4 = open(0x0, 0x0, 0xb5d1af1605322df2)
sendfile$auto(0x3, r3, 0x0, 0x400000000006)
close_range$auto(0x2, 0x8, 0x0)
read$auto_proc_pid_smaps_operations_internal(r4, &(0x7f0000000480)=""/4096, 0x1000)
ioctl$auto_SOUND_MIXER_READ_CAPS2(r2, 0x80044dfc, &(0x7f0000000080))
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xb, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyr9\x00', 0x40001, 0x0)
write$auto(0x3, 0x0, 0xfdef)
ioctl$auto(0x3, 0x541a, 0xffffffffffffffff)

1m39.057103641s ago: executing program 40 (id=2900):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x40)
r0 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
ioctl$auto_VHOST_SET_OWNER(r0, 0xaf01, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, &(0x7f0000000440)=[0xfff, 0xedc0])
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x80c0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
shutdown$auto(0x200000003, 0x2)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
r4 = open(0x0, 0x0, 0xb5d1af1605322df2)
sendfile$auto(0x3, r3, 0x0, 0x400000000006)
close_range$auto(0x2, 0x8, 0x0)
read$auto_proc_pid_smaps_operations_internal(r4, &(0x7f0000000480)=""/4096, 0x1000)
ioctl$auto_SOUND_MIXER_READ_CAPS2(r2, 0x80044dfc, &(0x7f0000000080))
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xb, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptyr9\x00', 0x40001, 0x0)
write$auto(0x3, 0x0, 0xfdef)
ioctl$auto(0x3, 0x541a, 0xffffffffffffffff)

1m9.410774053s ago: executing program 3 (id=2970):
r0 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0)
process_madvise$auto_MADV_PAGEOUT(r0, &(0x7f0000000180)={&(0x7f00000000c0)="6bc435df379d38af2070e83ab820b0b15150be99d3063202de267667bb5fa15ce74ac0fb440ea2015d190f8ebd6e6427cb9a59d3cad3d2819c4e21caabd133d6cccdbae60f4ae89d62159cdb0cd02b6c24f2f4b16912ffec395de0e2a131d6047ed554bff8eed5782198b7615f59bd171d433765771e3ebe9ba010b66a31cb92dc09aab37592b5f66bbc92184733254768720007c7d6097032cea9fe5d18b38b4598956717fe92912375382c9e061b4241ee46870ca4b468af9c39ee2011", 0x3}, 0x1, 0x15, 0x5)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x9a6c, 0x5, 0xc, 0x0)
listmount$auto(0xfffffffffffffffd, 0x0, 0x8, 0x0)
ioctl$auto_PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x6, 0x0)
socket(0x11, 0x80003, 0x300)
socket(0x11, 0x3, 0x9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/ip6_mr_cache\x00', 0x1900, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
socket(0x15, 0x800, 0x1003b)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_smc_gen_netlink(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-touch8\x00', 0x103281, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/bus/pci/rescan\x00', 0x20681, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x8040, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x8800, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/dummy_hcd.7/usb8/authorized_default\x00', 0x20582, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pnp0/00:03/id\x00', 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/43:352/power/runtime_active_time\x00', 0x101800, 0x0)

1m8.580103169s ago: executing program 3 (id=2971):
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
open(0x0, 0x0, 0x154)
fsconfig$auto(0xffffffffffffffff, 0x8, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20000004}, 0x4000884)
lstat$auto(0x0, &(0x7f0000000180)={0xb, 0xfffffffffffffffe, 0x400000100000004, 0x1000, 0x0, 0x0, 0x0, 0x200fa98, 0xc, 0x6, 0x8000000004, 0x100000007fffffff, 0xffffffffffffffff, 0x0, 0x7, 0x4, 0x8})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
pipe$auto(0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0x9, 0x1009b72, 0x2, 0x8000)
mprotect$auto(0x0, 0x8000000000000001, 0x8)
mprotect$auto(0x0, 0x806121, 0x6)
read$auto(0xffffffffffffffff, 0x0, 0x1f46)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x443001f86cb35905, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xfffffffffffffffb, 0x8000)
socketpair$auto(0x1e, 0x5, 0xfffffffe, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mremap$auto(0x0, 0x4, 0x4, 0x7, 0x100000000)
io_uring_setup$auto(0x2, 0x0)
mlockall$auto(0x7)
ioctl$auto_KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r1, r1, 0x0, 0x3)
readv$auto(0xffffffffffffffff, 0x0, 0x400)

1m4.959828742s ago: executing program 3 (id=2975):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram10\x00', 0x14fe02, 0x0)
mmap$auto(0x100000000, 0x810004, 0xffb, 0x8000000008012, r0, 0x8000)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010)
fsconfig$auto(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x891}, 0x10)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000040), 0xa2741, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/vtconsole/vtcon1/bind\x00', 0x182b02, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
read$auto(r1, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x9}, 0x8)
unshare$auto(0x40000080)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x20000000000, 0x8, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8)
socket(0x2, 0x2, 0x1)
setsockopt$auto(0x3, 0x1, 0x22, 0x0, 0x9)
socket(0x2, 0x2, 0x1)
openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cpu/0/msr\x00', 0x8142, 0x0)
mmap$auto(0x2, 0x8d, 0x5, 0x11, r0, 0x8000)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x8000, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/modules\x00', 0x88400, 0x0)
io_uring_setup$auto(0xc, 0x0)
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x6)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/block/nbd6/sched/write0_fifo_list\x00', 0x400, 0x0)
socket(0xa, 0x1, 0x84)

1m2.979579069s ago: executing program 3 (id=2980):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000180)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x100000a3d6)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg1\x00', 0x20042, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
getsockopt$auto_SO_RCVPRIORITY(r1, 0x0, 0x52, &(0x7f00000002c0)=',\x00', &(0x7f0000000300)=0x81)
socketpair$auto(0x3d4, 0x7, 0x2, 0x0)
open(0x0, 0x202040, 0xf1)
openat$auto_dvb_frontend_fops_dvb_frontend(0xffffffffffffff9c, &(0x7f0000000000), 0x80800, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/lapb0/napi_defer_hard_irqs\x00', 0x8a401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS2(0xffffffffffffffff, 0xc2604111, &(0x7f0000000440)={0x3, [{[0x411340e3, 0x1ff, 0x400, 0x9, 0x513ae2d7, 0xa, 0x3ff, 0x9]}, {[0x3, 0x6, 0x0, 0xae, 0x401, 0xf, 0x0, 0x6]}, {[0x0, 0xfffffffe, 0x40, 0x4, 0x0, 0x10, 0x0, 0x8]}], [{[0x6, 0x6, 0xffffffff, 0x7fff, 0x8000, 0x8, 0x2]}, {[0xc8, 0x5, 0x5, 0x1bf, 0x3, 0x698, 0x85, 0x8000]}, {[0x7, 0x1cb7, 0x200010, 0x7fff, 0x7, 0x0, 0x3dde, 0x82]}, {[0xfffffff7, 0x326635c8, 0x7fff, 0xffffff00, 0x5, 0xfffffff9, 0xffff, 0x9]}, {[0x1, 0xfffffffd, 0x5, 0x5, 0x8, 0x200, 0x7fff, 0x2]}], [{0x8000, 0xfff}, {0x9619, 0x9}, {0x9, 0x2, 0x1, 0x0, 0x1}, {0x8001, 0x8, 0x0, 0x0, 0x1}, {0xe, 0x8001, 0x0, 0x0, 0x1}, {0x10, 0x9, 0x0, 0x0, 0x0, 0x1}, {0x7, 0x9, 0x1, 0x1, 0x0, 0x1}, {0x3, 0xd55e, 0x1, 0x1, 0x1}, {0x9, 0x4, 0x1, 0x0, 0x1}, {0x9, 0x5, 0x0, 0x0, 0x1, 0x1}, {0x7, 0x1, 0x0, 0x1, 0x0, 0x1}, {0x40, 0x800, 0x1, 0x0, 0x1, 0x1}], [{0x4, 0x1, 0x1, 0x1, 0x1}, {0x4, 0x9, 0x0, 0x1}, {0xfffffabf, 0x6d9, 0x0, 0x1, 0x1}, {0x8, 0x7, 0x0, 0x0, 0x1}, {0x6, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x8, 0x2, 0x0, 0x1, 0x0, 0x1}, {0x9, 0x3, 0x1, 0x0, 0x0, 0x1}, {0x9, 0x3, 0x0, 0x0, 0x1}, {0x3, 0xf, 0x0, 0x1, 0x1}], 0xfffff801, 0x6, 0xfffffff7, 0x7, 0x0, 0x5, 0x5, "ec2c9bcbd46405d68a0d8fd9ca099965", "537545b4903410f4a1f06cebed58bb6950fd914fdaeb291fcadeacb75fefda5700000067eefcc840cf4fda10b96010b1"})
r2 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000001040)='/sys/kernel/debug/tracing/trace_marker_raw\x00', 0xc05, 0x0)
writev$auto(r2, &(0x7f0000000140)={0x0, 0x6}, 0x4)
openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, 0x0, 0x940, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x14be02, 0x0)
socket(0x1d, 0x2, 0x2)
ioctl$auto_SNDRV_TIMER_IOCTL_CONTINUE_OLD(r1, 0x5422, &(0x7f0000000340)="69f96695f39d431afe7b50b4038ce1033a1d9268d6da159e43c69520204526d540de9d4b840bc127c7ec5b3b5926d95870fd161c7ed6181dc79a658fc444f1887c1943e9a093c1214ab9cdfb08db727bc982fbfa54c7d08f5bf36bd5ef205defdeccc219f667ae1de1d3827cd8e4a475cd05288f3d1f7e0e337af111e872721ceb3ed25c5405af4d47e051eb")
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0xa, 0x801, 0x84)
r4 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ubifs/chk_orphans\x00', 0x1a3080, 0x0)
read$auto_dfs_global_fops_debug(r4, 0x0, 0x0)
close_range$auto(r3, 0xfffffffffffff000, 0x4000000000002)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x1ff, 0xc, 0x8, 0x2007d49, 0xa, 0x4, 0x0, 0xffffffff, 0x3, 0x0, 0x2, 0x8000000abc, 0xfffffffffffffff7, 0x5, 0x2, 0x5363]}, 0x0)
write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, &(0x7f0000003900)='\t', 0x1)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/kvm/parameters/nx_huge_pages\x00', 0x80302, 0x0)
sendfile$auto(r5, r5, 0x0, 0x400000000006)
select$auto(0xb, 0x0, 0x0, &(0x7f0000000240)={[0x10000000000001ff, 0x8001, 0xff1, 0x6bc0ab2b, 0x12, 0x100000000000004, 0x3c2a19d5, 0xa2f9, 0x1, 0x8, 0x8, 0x3, 0x1, 0x5, 0xa, 0x800]}, 0x0)

1m1.546831611s ago: executing program 3 (id=2984):
mmap$auto(0x3ff, 0x40009, 0xdf, 0x9b72, 0x7, 0x10)
unshare$auto(0x40000080)
ioctl$auto_EVIOCGMASK(0xffffffffffffffff, 0x80104592, 0x0)
ioctl$auto(0x1, 0x5761, 0x4)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x8000fff5)

1m0.238985536s ago: executing program 3 (id=2986):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x30, r1, 0x1, 0x70bc28, 0x25dfdbfd, {}, [@NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0x800}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x93b}, @NFSD_A_SERVER_SCOPE={0x9, 0x4, 'nfsd\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x90)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002d80), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_MODULE_GET(r3, &(0x7f0000003180)={0x0, 0x0, &(0x7f0000003140)={&(0x7f0000003100)={0x2c, r2, 0x21d, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_MODULE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40084}, 0x8004)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x200, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x44040)

53.800975963s ago: executing program 9 (id=3002):
add_key$auto_KEY_SPEC_REQKEY_AUTH_KEY(0x0, 0x0, 0x0, 0x8, 0xfffffffffffffff9)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b4b", 0xfdef)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
msgctl$auto_MSG_INFO(0x5, 0xc, &(0x7f0000000280)={{0x9, 0xffffffffffffffff, <r1=>0xffffffffffffffff, 0x6, 0x287f, 0x2, 0x3}, 0x0, 0x0, 0x7fffffff, 0x9, 0xb, 0xffffffff, 0xfffffffffffffffe, 0x1, 0xfc2, 0x26f, @inferred, @raw=0x9})
setresgid$auto(0x0, 0xffffffffffffffff, r1)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
io_uring_register$auto(0x2, 0x9, 0x0, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
ioctl$auto(r2, 0x40084d05, r2)
socket(0x1d, 0x2, 0x6)
r3 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r4=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r4, 0xfd}, 0x6a)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xa, 0x3, 0xe, 0x940, 0xfffffff8, 0x3, 0x1004, 0x1, 0x9, 0x5, 0x6, 0x7, 0x1001000, 0x8, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x9]}, 0x4, 0x40000081)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x52, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x8044)
mmap$auto(0x0, 0xeb80, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x288202, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
timerfd_create$auto(0x9, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x80040, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)

52.528390654s ago: executing program 9 (id=3005):
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xffffffffffffffff, 0x8000)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101c40, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x6, 0xf8, 0xfffffffffffffffa, 0x8000)
r2 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r2, 0x114, 0x2713, 0xfffffffffffffffc, 0x0)
ioctl$auto(r0, 0x560a, r1)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x48084)
bind$auto(r0, &(0x7f0000000040)=@generic={0x5, "19f93ecdd2b5d83e7c1db5d90dbf"}, 0xf)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
connect$auto(0x3, 0x0, 0x54)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0x8, 0x8000)
r3 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0)
pread64$auto(r3, 0x0, 0x101, 0x103)
unshare$auto(0x40000080)
preadv$auto(0xffffffffffffffff, 0x0, 0x7, 0x7, 0x402)
madvise$auto(0x110c230000, 0x8031ca, 0x9)
madvise$auto(0x80000000, 0xda, 0x8)
read$auto_ptdump_fops_(0xffffffffffffffff, 0x0, 0x0)
unshare$auto(0x40000080)
r4 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card1/cable#1\x00', 0xc0f02, 0x0)
pread64$auto(r4, 0x0, 0x3, 0x5ef6)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r5, &(0x7f0000000500)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x95\x82 )\xca\x99h\xcf\xfdK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r6 = bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_4={0x1e, 0xffffffffffffffff, 0xffffffff}, 0xd)
bpf$auto(0x3, &(0x7f00000001c0)=@link_update={r6, @new_prog_fd, 0x403, @old_map_fd=r6}, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

48.878000072s ago: executing program 9 (id=3012):
msgsnd$auto(0x0, 0x0, 0x8, 0x9)
msgsnd$auto(0xa90e, 0x0, 0x2, 0x7)
msgsnd$auto(0x7, &(0x7f0000000080)={0x7fff, 0x81}, 0x4, 0x4)
r0 = socket(0x2a, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0)
read$auto(r1, 0x0, 0x4)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self/fail-nth\x00', 0x109802, 0x0)
ioctl$auto(0xffffffffffffffff, 0x64c8, 0xffffffffffffffff)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000000), 0xffffffffffffffff)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0xa0000, 0x0)
r4 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
mmap$auto(0x0, 0x40000b, 0xdf, 0x9b72, 0x2, 0x108000)
r5 = openat$auto_userio_fops_userio(0xffffffffffffff9c, &(0x7f0000000980), 0x102001, 0x0)
pwrite64$auto(r5, 0x0, 0x2, 0x0)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2)
sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x4, 0x70bd26, 0x25dfdbfb, {}, [@IOAM6_ATTR_SC_ID={0x8, 0x4, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x5}, 0x80)
write$auto_proc_mem_operations_base(r4, &(0x7f0000001680)="a7", 0xfffffc96)
epoll_ctl$auto(r3, 0x3, 0xffffffffffffffff, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
io_uring_setup$auto(0x6, 0x0)
unshare$auto(0x40000080)

45.313163088s ago: executing program 9 (id=3017):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x1eba02, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/bus/usb/drivers/ax88179_178a/remove_id\x00', 0x488081, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000340), 0xffffffffffffffff)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x82001, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000040)="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", 0x2f8)
write$auto(0xca, &(0x7f0000000140)='\x042\x01\f\r\a\x00\xf6OL\xc8\xbe\x94\xf2\xa2\x00\xfb\x84(\x83\";\xa8\xd7\x05uXR\xa3\xb3@T\x89\x8e\xd4Q\xdd\xb80\xc7\xad\\\xf7C\xb3\x8f\r?\xb3>r\xdf\x99%\xd6s\xe3\x8b*\xe2\xbc\xc9\x8bV\xf0\xb7\xec.\xae\xe1\x04\x00\x00\x00\xaa', 0x2da)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/rpc/nfs4.nametoid/channel\x00', 0x8f3b7a51b80ebd01, 0x0)
write$auto_proc_reg_file_ops_compat_inode(r1, &(0x7f0000000040)="205c2078027e0dc0023af10e9bfa1babfa20a974ca9a20370a", 0x19)
ioctl$auto_SNDCTL_SEQ_SYNC(r0, 0x5101, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000440)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
prctl$auto(0x9, 0x8001, 0xffffffffffffffff, 0x20000000000001, 0x0)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000004)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
open(&(0x7f0000000380)='./file0\x00', 0x303260, 0xc7)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9)
io_uring_setup$auto(0x1, 0x0)
connect$auto(0x3, 0x0, 0x55)
listen$auto(0x3, 0x81)
move_pages$auto(0x1, 0x20007, 0x0, 0x0, 0x0, 0x8000000000000000)
select$auto(0xa, 0x0, &(0x7f0000000100)={[0x20000000000d, 0x203, 0x0, 0xc, 0x5, 0x7, 0x6, 0x50cc, 0x9, 0xe8, 0x400000000ff, 0xa, 0x4, 0x0, 0x5, 0x7]}, 0x0, 0x0)
ioctl$auto_FS_IOC_RESVSP64(0xffffffffffffffff, 0x4030582a, 0x9)
execve$auto(&(0x7f0000000400)='./file0/file0\x00', 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
execve$auto(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)
execve$auto(&(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000600)='#\xdc\xfe\xd8E\xc8\x8bu4\xd9n\xcb\xca\xc7zw \x96\x9ejh\xad\x9eEc\xae\x1e\x89\x92\x9a\xbbP[B\xae\x9cf)\x15\xac\x90)l\x06\xf0\t\x12\x05zz\xa6\xb3\xce=\x00\x00\x00\x00\x00/\xc4T\x1f\xe5P\xff\xb4\xb7s0\x02\xc5\x81\x93\xc6\xc8\xb6Sp\x1a{8\xfc\xe0,X\xc7BU\xd0\x97\x7f1\x16\x99\x04\xabu/a(\x02\x7f\xbb\xbd\x906\xa8\xce\xee\xcd\xd7\t\x00\xfb\x83\xc8\x8aO\xe9\xbe=\xf7\xf4\x84,\x06\xd3j\x99b\xe6\xf6Y3A\xbb\xa4\xb2\f\x1b\xc3\x8a,g\xc6\xe8[\xdf\x88\x01\x9f7\xb5\x19m\xd8L\x84j\x8c\xec\xdf\x1a\xbd\xc5\x94\xb9\xb7\xd5\xa4\xc0\f-6\xfe\xa8\xed/u\x81_G\xfeR\xbb\x12\x16\xb8*\xa9\xc9\xe81\x9d\x06\xbbC\x17\xbb\xe6|\x97\xabB4J\xed+-\xf8u0/n\xcf\x8b\x95\x9d\xab\xa8\xc47\xa6\x0e\xdeOq\\\xc3\'{\b\xd3m\x94\xc2\xdd{\xeaO\x0e\xe4\xe0\xb9N:\xd60\x17,\x06\xc7B#Y0\x99\xeb\x874\xab?\xc8\x82\xe5\x8f\xb7\x91\xc2\xbe\xb2\x02\xfe\xd3k\xd5\xdcZ\xdcP\x8e+\xd8\xc7C\xcb\x15\x13c\xbf\xe8\xbd\"\x8f3\"\x14\xf8(\xda\x19\xcd\xec\x03.\xd9^\xc3A\xda\r[\x1a\xda\\#/\xd4\xaf\xd0\xe8\xa2\xdd\xc5{\xfa\xe0\x90\x8f\x99lQ\xec\x84h^\x11+\x93\b\xe0c\xe6\xd22\xf9\xa5')
madvise$auto(0xffffffff, 0x6d, 0x4)

44.970382124s ago: executing program 41 (id=2986):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x30, r1, 0x1, 0x70bc28, 0x25dfdbfd, {}, [@NFSD_A_SERVER_GRACETIME={0x8, 0x2, 0x800}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x93b}, @NFSD_A_SERVER_SCOPE={0x9, 0x4, 'nfsd\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x90)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000002d80), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_MODULE_GET(r3, &(0x7f0000003180)={0x0, 0x0, &(0x7f0000003140)={&(0x7f0000003100)={0x2c, r2, 0x21d, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_MODULE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40084}, 0x8004)
sendmsg$auto_ETHTOOL_MSG_FEC_SET(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x200, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x44040)

41.436751918s ago: executing program 9 (id=3023):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
close_range$auto(0x0, 0x5, 0x0)
mq_open$auto(&(0x7f00000000c0)='\x12\xe6D\b\x9e\x00\x80\x8d\f\xb9w-\xbd!\x9eb\xed\xfb\x0f\xe5\x9dZ\xc2\xd1\x01wBV\x91\x8f_\xc0.\x84\xfe\x84\xd1se\x01\x06\x00\xb3\x13_Y&\xa9\x88\xe4\xa2\xb0V\x85\x92<\xb6\xdcT \\\xf2\v\xb1\xe2\xd8\xfa\xd8V\xe5\x00\xfa\xe9!\xc5<\xce\x18=\x06\xdagq\xb5\r\t\xb2\xde\x99\xd50\xbb\x192\x1c4\x86\xc0\xc1-\xd5\x10\xc3\xfc*[8\x89h\xc5\xba\xff\xc8u5<y\xa5\x97\x13\xef\xc4g\xc3\xa4&\x81I6\v\xcc\x00\x00', 0x62, 0xfffc, 0x0)
mkdir$auto(&(0x7f0000000300)='}[,&*}\x00', 0x6)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/pci_bus/0000:00/rescan\x00', 0xc2801, 0x0)
r1 = socket(0x2a, 0x2, 0x1)
bind$auto(r1, &(0x7f0000000080)=@rc={0x1f, @none, 0x48}, 0x6c)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
write$auto(r0, 0x0, 0x6)
mount$auto(0x0, &(0x7f0000000280)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xcf, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
timer_create$auto_CLOCK_MONOTONIC(0x1, &(0x7f0000000580)={@sival_ptr=&(0x7f0000000340)="7b88298e507254d338d3a3209374d8b5433984351689522bd4697e4383eb6585bceb0535d2267565589724287ef45943cd5bf42dc9a51755723a605d14c3b8fbd12c12662bde81e34180377044e8fb06f21632e88d51422020356eee9965c408e7e88ab71035369109b8b4f5aab5e9b2e02c6fe7ce09eaaa5f4999c6ebc939ef54d0327b3f67e8cdfa5975504fa4dd27e26c8eaef9b239368d9652034a424778ca9074b813c713a187ad8012fa02c345c52dbf23c68843ee90efcd4cdc6aa5b2b897e7d73c61eb7dce863330c18a9c8b59", @inferred=r3, 0x9, @_sigev_thread={&(0x7f0000000480)=&(0x7f0000000440)=0x6, &(0x7f00000004c0)="b5c42831c354e12ef6a6b730cbfbbcedcf11518408a165a87740b6947483e1c4e73bab22ea0185918bd775b2b35151f2b532662c0547c10104123f229572f740476425107b842aaf8b274469b31eabb048e0c831603b4933124a0cd0de6445d36db69453f3066bf002cd7e7b2a224395604e02e6dcdbfe72307e08a2551d8e58d46167b4caaea44e0a9efe5025d296d3fa7bf41ad00b42b2d4ed3df85fb6"}}, &(0x7f00000005c0)=0x15)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000080)={0x5, 0xffff3155, 0x3})
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, 0x0)
ioctl$auto(0x3, 0xc0303e03, r2)
statfs$auto(&(0x7f0000000000)='}[,&*}\x00', &(0x7f0000000200)={0x1, 0x180000000000000, 0x10000, 0x7ff, 0x96f0, 0xb, 0x56b9, {[0x2c7e, 0x3]}, 0x10001, 0x8, 0x8, [0xa4, 0x3, 0x6, 0x9]})
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r4, r4, 0x0, 0x3)
fanotify_init$auto(0x65, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket(0x2, 0x80002, 0x73)
getpeername$auto(r5, 0x0, 0x0)
socket(0xa, 0x2, 0x0)
openat$auto_check_wx_fops_(0xffffffffffffff9c, &(0x7f0000000200), 0x4, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)

39.632998399s ago: executing program 9 (id=3028):
r0 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/projid_map\x00', 0x2, 0x0)
mkdir$auto(&(0x7f00000001c0)='./cgroup/../file0\x00', 0x2)
r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000840), 0xc0000, 0x0)
ioctl$auto_RNDADDTOENTCNT2(r1, 0x40045201, &(0x7f0000000880)=0x80000001)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x100000000000031, 0x0)
fsopen$auto(0x0, 0x1)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0xa, 0x20009, 0x4000000000df, 0xffffffffffffc27d, r0, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x8100, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
socket(0x15, 0x5, 0x0)
r2 = openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x2401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video46\x00', 0x20200, 0x0)
ioctl$auto(r3, 0xc0285628, r3)
write$auto(r2, &(0x7f0000000280)='9\x00d1L\xf0\x15\xba\xa17=(\x18\xdd\xff\xec\v\xb5^\xa1/[vv\x19\x00\x7f0\xa30\xc7\x9d\x1f]\xf8\xe04\xe7s\x9a\xd3H\xd3F\x819+\x90S\x10\xb2\b\xf8)\xe4IU\t\xb8\r\x9a\x8e\'Q\xfb\xb5I\x0f\x96;\xc7\\2V\x01g\xf8\xce\xbb\x9d\xa2c2\x00\x7f\xa1:\ax\xbc\x17\xde\x0e<\x00\x00\x00\x00\x00\x00\x00\x06\xc8\xf4\xdf\xcc\x9b\xd7D\xd7ARq', 0x10)
getsockopt$auto(r2, 0x8, 0x270d, 0xfffffffffffffffc, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000040)="3290b800009c550d22350f737ca2dd0af0d849aec832ec49c034169af8fa9231c143b1a8dd292977588a83400445ddc508f3aef64488936413adba3a9cc99bdfd8e7000000", 0x45)
mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000)
mincore$auto(0x1000, 0x8001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sysfs$auto(0x448f, 0xfff, 0xfffffffffffffff8)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
unshare$auto(0x40000080)

24.445797752s ago: executing program 42 (id=3028):
r0 = openat$auto_proc_projid_map_operations_base(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/projid_map\x00', 0x2, 0x0)
mkdir$auto(&(0x7f00000001c0)='./cgroup/../file0\x00', 0x2)
r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000840), 0xc0000, 0x0)
ioctl$auto_RNDADDTOENTCNT2(r1, 0x40045201, &(0x7f0000000880)=0x80000001)
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x100000000000031, 0x0)
fsopen$auto(0x0, 0x1)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0)
mmap$auto(0xa, 0x20009, 0x4000000000df, 0xffffffffffffc27d, r0, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x8100, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
socket(0x15, 0x5, 0x0)
r2 = openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x2401, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video46\x00', 0x20200, 0x0)
ioctl$auto(r3, 0xc0285628, r3)
write$auto(r2, &(0x7f0000000280)='9\x00d1L\xf0\x15\xba\xa17=(\x18\xdd\xff\xec\v\xb5^\xa1/[vv\x19\x00\x7f0\xa30\xc7\x9d\x1f]\xf8\xe04\xe7s\x9a\xd3H\xd3F\x819+\x90S\x10\xb2\b\xf8)\xe4IU\t\xb8\r\x9a\x8e\'Q\xfb\xb5I\x0f\x96;\xc7\\2V\x01g\xf8\xce\xbb\x9d\xa2c2\x00\x7f\xa1:\ax\xbc\x17\xde\x0e<\x00\x00\x00\x00\x00\x00\x00\x06\xc8\xf4\xdf\xcc\x9b\xd7D\xd7ARq', 0x10)
getsockopt$auto(r2, 0x8, 0x270d, 0xfffffffffffffffc, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000040)="3290b800009c550d22350f737ca2dd0af0d849aec832ec49c034169af8fa9231c143b1a8dd292977588a83400445ddc508f3aef64488936413adba3a9cc99bdfd8e7000000", 0x45)
mmap$auto(0x0, 0xc, 0x9c0f, 0x44eb2, 0x10006, 0x300000000000)
mincore$auto(0x1000, 0x8001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
sysfs$auto(0x448f, 0xfff, 0xfffffffffffffff8)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
unshare$auto(0x40000080)

20.64595193s ago: executing program 5 (id=3060):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x54)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
write$auto(0x3, 0x0, 0xfffffdef)
setsockopt$auto_SO_DEBUG(r0, 0x6, 0x1, 0x0, 0xda3)
madvise$auto(0x0, 0x2003ec, 0x14)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpeername$auto(0x3, 0x0, 0x0)
socket(0x2, 0x3, 0x100)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
socket(0x10, 0x2, 0x4)
r1 = bpf$auto(0x6, 0x0, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(r1, 0x0, 0x20008000)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
mount$auto(0x0, &(0x7f00000001c0)='}[,&*}\x00', 0x0, 0x7fff, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0xa6)
syz_genetlink_get_family_id$auto_seg6(0x0, r2)

20.102093823s ago: executing program 5 (id=3063):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r0, &(0x7f0000000280)={0x0, 0x80000000}, 0x6, 0x3, 0x4, 0x2a)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0x2, 0x8000000008012, r1, 0x8000)
mprotect$auto(0x1000, 0x401000, 0x4)
mmap$auto(0x0, 0x202000a, 0x5, 0xfffffffffffffffb, 0xfffffffffffffffa, 0x2)
r2 = socketcall$auto(0xffe, 0x0)
ioctl$auto_BTRFS_IOC_SNAP_CREATE_V2(r2, 0x50009417, 0x0)
ioctl$auto(0x3, 0x4008ae61, r2)
ioctl$auto_KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)={0xeb1, 0x0, [{0x3, 0x6, 0x5}, {0xffffffff, 0x0, 0x5}]})
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, 0x602, 0x300000000000)
ioctl$auto_USBDEVFS_DISCSIGNAL(0xffffffffffffffff, 0x8010550e, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x15, 0x5, 0x0)
rt_sigsuspend$auto(0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x8000000000000001, 0x7, 0x4, 0x9b72, 0xffffffffffffffff, 0xf34)
mremap$auto(0x1ff000, 0xff, 0x843, 0x3, 0xfffff000)

16.891487307s ago: executing program 5 (id=3067):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/memory/memory0/state\x00', 0x1e1842, 0x0)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
r2 = socket(0x2, 0x80802, 0x0)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0x80000, 0x1)
socket(0xa, 0x2, 0x0)
openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, 0x0, 0x20100, 0x0)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
setsockopt$auto(r2, 0x11, 0x67, 0x0, 0x8)
socket(0x10, 0x2, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
write$auto(0x3, 0x0, 0x81)
read$auto(r1, 0x0, 0x3)
sendfile$auto(r0, r0, 0x0, 0x6)
unshare$auto(0x40000080)
timer_create$auto(0xf, &(0x7f0000000100)={@sival_ptr=&(0x7f0000000080)="629a1175fba0d55f5677e10b0b086e40192cd5bb60336f005b613fd8caa4093dcd8b8947221a478a98e54065dcb37c07a186238c7c91bbc2cafeb16291f1576ae1b93113e2eae74707a6deb562a55078e1343c38ec5724f4321672e589561e66314f4a339c6ffe3b975561", @raw=0x3, 0xc3c5}, &(0x7f0000000140)=0x101)
socket(0xa, 0x3, 0x3)
mmap$auto(0x0, 0x3fffff, 0x7, 0x11, 0xdd, 0x0)

15.698194302s ago: executing program 5 (id=3070):
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x14fa02, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/usbcore/parameters/quirks\x00', 0xc0202, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000040)="bdcda609d0dd307ad1695e8740fefb7f2c", 0x11)
fsconfig$auto_HIDEPID_INVISIBLE(r0, 0x2, &(0x7f0000000080)='/dev/nullb0\x00', &(0x7f00000000c0), 0x2)
mmap$auto(0x0, 0x810004, 0x400000000fff, 0x8000000008011, 0x3, 0x8000)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r2 = socket(0xa, 0x3, 0x3a)
close$auto(r2)
io_uring_register$auto(r2, 0x8, 0x0, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffffff, 0x0, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
madvise$auto(0x2, 0x4f46, 0x6)

12.619454704s ago: executing program 5 (id=3073):
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x8)
r0 = fanotify_init$auto(0x3, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x19, 0x4, 0x4, 0xfb, 0x8, 0xd, 0x66b, 0x4, 0x7ff}, 0x1fd)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x2b, 0x1, 0x1)
getsockopt$auto(r1, 0x0, 0x484, 0x0, 0x0)
r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/ieee80211/phy6/netdev:wlan1/stations/08:02:11:00:00:00/last_seq_ctrl\x00', 0x88000, 0x0)
read$auto(r2, &(0x7f0000001200)='\x00', 0x4)
fanotify_mark$auto(r0, 0x205, 0x100002, 0x4, 0x0)
lsetxattr$auto(&(0x7f0000000d40)='./file0\x00', &(0x7f0000001140)='security.capability\xf6\x06\xa1\xcd\xd3<\x81\a(\xa2f*\xaf\xc8\x02\xe9\x14\x8fE2k\x19{\xd4\xf2\xdf\x80\x9c\x87\x86\xde20\x8e\x1cN\xd40\xd3Z\xf3K\x98vW\x7f\x94Z\x0e>\x85S&\xe5\x96\xce\xf15\xb3v\xa8R\x05\x94\x8c\x1df\x11\xbd\xd0\x7fu\xc7{\xe1\xff\xff\xc4\xbb\x17\xd5\xee\xd8\x143\xed\xc4|\xd3\f\x05\f\x95\xce\xbf9\xc8\xf1m\x96\xa3\xc0\xf29\x8b\x02\x89\xed`\xb4\xcb\xb3O\x97X\xe3\xd0j\xa5\xd0\x9e*\xf9|\xd9\xc2\xf4X\xc9[\xfa\xcf\xa3\xeb\x05EOgaA\xb1@f\x93F0\x8cR\xc5\xb6\x16\xfa\xe7\x13\x00\x02\xf4\x80\xe3\xd2\xf4MP\x87vB\xefJ\xeb\xb3\\\x88\x18` \xca\x8faI\x89\xb6\x91\x1ae\xd2\xad\xbe\xb3\xe6\bX]\xd7\x81.\xd2\xed\xc4\x9f\xb5~\xb4\xc6^\x97\xc3\xa2\x16\x99\xfc\x00_\xe6\xb0G\xe9`\xb4+2\x93\n9 EU\x1e\xb4\xbeVt\x89\xf9\xc7\xe1`4O\x00\x00\x00\x00\xa5\xe0\xf5\xb2\x00\x00t\x10\"\x15\xbc\xdb\x92\xff\xa7\xe1Vv\xe5*\xc5\xe1r\xf5\xa4Cw\x1c/?\xbcn\xe3\x8aX\xfc\xe9,\xca,9\xda\xad\x87\xb1\xb2\xff#\xa1Yi\xd3\x17l6\xa0\xd8\x1b\xad8\a\xfc%\xa6(\xcb\x97(\x16\x81\xbf\xc6\xdbw\x13!\xc9\xc6\xc3\xfbc\xfe\x83\xcd\x16 e\xcd\x91y@\xe2\xd8{\xec\xbb\xbb\x1d5\t\xed>\xa9&\xce\xfc\xab[\xae\xa1\x94\b\xcc/-\x12\x8d\x84K\xf0\xd0\x0f\x13)\x17CI\xb7\xf35\xfc\xe8(\xfa\t2\xafQ8}\xd8\xbb\xe4nlR\xf8\xc9\xf2\xa3\xe5\x83\r\t\xb96d\xd6\x1e\xbd*\xa4\xc9\xcbE2\xe9\x81\xc3\xc3\x8a\x15\xcb\xf2\x8a\n\xe8\x1c\x88\xd4\xa5\x96!dJ+\xd2\x01#v\xd8BgB`\x8alP\r\x04\xce\x04$\xaag\xb6\xdb6-0>\xb3u\xd4\xdb\xd8~\xb0\f', &(0x7f0000001340), 0x5, 0x2)
removexattr$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='security.capability\xf6\x06\xa1\xcd\xd3<\x81\a(\xa2f*\xaf\xc8\x02\xe9\x14\x8fE2k\x19{\xd4\xf2\xdf\x80\x9c\x87\x86\xde20\x8e\x1cN\xd40\xd3Z\xf3K\x98vW\x7f\x94Z\x0e>\x85S&\xe5\x96\xce\xf15\xb3v\xa8R\x05\x94\x8c\x1df\x11\xbd\xd0\x7fu\xc7{\xe1\xff\xff\xc4\xbb\x17\xd5\xee\xd8\x143\xed\xc4|\xd3\f\x05\f\x95\xce\xbf9\xc8\xf1m\x96\xa3\xc0\xf29\x8b\x02\x89\xed`\xb4\xcb\xb3O\x97X\xe3\xd0j\xa5\xd0\x9e*\xf9|\xd9\xc2\xf4X\xc9[\xfa\xcf\xa3\xeb\x05EOgaA\xb1@f\x93F0\x8cR\xc5\xb6\x16\xfa\xe7\x13\x00\x02\xf4\x80\xe3\xd2\xf4MP\x87vB\xefJ\xeb\xb3\\\x88\x18` \xca\x8faI\x89\xb6\x91\x1ae\xd2\xad\xbe\xb3\xe6\bX]\xd7\x81.\xd2\xed\xc4\x9f\xb5~\xb4\xc6^\x97\xc3\xa2\x16\x99\xfc\x00_\xe6\xb0G\xe9`\xb4+2\x93\n9 EU\x1e\xb4\xbeVt\x89\xf9\xc7\xe1`4O\x00\x00\x00\x00\xa5\xe0\xf5\xb2\x00\x00t\x10\"\x15\xbc\xdb\x92\xff\xa7\xe1Vv\xe5*\xc5\xe1r\xf5\xa4Cw\x1c/?\xbcn\xe3\x8aX\xfc\xe9,\xca,9\xda\xad\x87\xb1\xb2\xff#\xa1Yi\xd3\x17l6\xa0\xd8\x1b\xad8\a\xfc%\xa6(\xcb\x97(\x16\x81\xbf\xc6\xdbw\x13!\xc9\xc6\xc3\xfbc\xfe\x83\xcd\x16 e\xcd\x91y@\xe2\xd8{\xec\xbb\xbb\x1d5\t\xed>\xa9&\xce\xfc\xab[\xae\xa1\x94\b\xcc/-\x12\x8d\x84K\xf0\xd0\x0f\x13)\x17CI\xb7\xf35\xfc\xe8(\xfa\t2\xafQ8}\xd8\xbb\xe4nlR\xf8\xc9\xf2\xa3\xe5\x83\r\t\xb96d\xd6\x1e\xbd*\xa4\xc9\xcbE2\xe9\x81\xc3\xc3\x8a\x15\xcb\xf2\x8a\n\xe8\x1c\x88\xd4\xa5\x96!dJ+\xd2\x01#v\xd8BgB`\x8alP\r\x04\xce\x04$\xaag\xb6\xdb6-0>\xb3u\xd4\xdb\xd8~\xb0\f')
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/system/cpu/cpu0/topology/thread_siblings_list\x00', 0x80500, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0080, 0x0)
socket(0xa, 0x2, 0x73)
getpeername$auto(0x3, 0xfffffffffffffffe, 0x0)
keyctl$auto(0x9, 0xfffffffffffffffd, 0x7ffffffffffffffb, 0x80000000000000b, 0x8000000000000000)
r5 = ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
pread64$auto(r5, 0x0, 0xfffffffe, 0x100000000)
ioctl$auto_XFS_IOC_FSCOUNTS(r5, 0x80205871, &(0x7f0000000000)={0x80000001, 0x100000000, 0x1, 0x2})
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000002980)=""/4075, 0xfeb)

12.270126248s ago: executing program 5 (id=3074):
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
unshare$auto(0x40000080)
r1 = io_uring_setup$auto(0x82, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000002c0)={0x34, r3, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0x200}, @NFSD_A_SERVER_SCOPE={0x17, 0x4, '/dev/snd/controlC0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x20008000}, 0xc840)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000040), r2)
msgctl$auto_MSG_INFO(0x454d, 0xc, &(0x7f0000000240)={{0x3f, 0x0, 0xffffffffffffffff, 0x9, 0x0, 0x7f, 0x4}, 0x0, &(0x7f00000000c0)=0xc1, 0xb2ae, 0x7ff, 0x7, 0x6, 0x508, 0xfff, 0x3, 0xb, @raw=0x8, @raw=0x80000000})
sendmsg$auto_NL802154_CMD_ABORT_SCAN(r1, &(0x7f0000001780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001740)={&(0x7f00000017c0)=ANY=[], 0x1280}, 0x1, 0x0, 0x0, 0x4880}, 0x800)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8014}, 0x40000)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x3c, 0x1, 0x0, 0x2, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC0\x00', 0x80, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim0/del_port\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f0000000380)='0\x81=\"\xad/\x8d\b\x00\x18\xa4\xb0\xb4\xd9\x82=~\x17\xfb&L\xeb=j\a\xf1y\xb3\"\xeb\a\xdd\xf4\xf4Ry\xee\xd7\x1e\x1c\x86\x0f\xcf\x7f\xbf\xab\x12{\xc2\xc2*\xc1M+6/v8\xea\xe9\x85s4\xfe\xe5\t\x7fc\xfb7^\xb86J_\x1d1s!\x01\xff\xff\xff\xff\xff\xff\xff\x1dF\xe6\xf6\x17\x10+\xc0\xb0\xafc\x99\xd4\x150Y~\x1e\xe2\xd6x4fW\x13\xc4U`\x9e-X\xd7\xe2H^\fLS`\xfc\xbb\r\f\x00\xeaN\xa5\xd2\x82;\x7f\xa0.\x9a\xfb\x8d\xf3l\xf2\xd3\x95\xc1M5\xcb\xa6I\x067\xe36\xea\xe9\xe3\xf44oT_`8\xb3\xef\x04 \x05K\xf9\x87pl\xac\x86\nE\xc7e\xc5Q\x89\xcd@\x1c\x92\x00\x87\x976\x9f>\xa2\xcfm\xec\r\x11\x7f\x00\x00\x00\xb1\xde@\x02\xce\x03\xb7\xb1\xfb\x9fr\v\xb2\xe3\xc7\b\x85K /zm\x7f\x8fg,p\a\xc8\x7f\xa5\x87\x02\x87\xbbR=A\x00\x1f\x8a\xa7/Q\"J\xbb\xb0m\xf2SP\x84\x84S\xf0\xba\x9a\xf6\xb6`WI\xba\xba*8\x9f\xea\xe8K/\x98\xbc7~>\x12\x9buB\xcb\xe4\x8aKf\xba\x8c\x19m\xe6I\x02\xde\x80\x9d\x87}\xf4\xbd9\xaa\xd6\xdb1]\xde\xa0r\x14\xca56^\x94\xd2\xd8\xe6}9\x91\xb6\xf7\xa1=\x96\x11\xf1\\\xa91\x0e\xd1\xe4z\xc1;Pw!\x8b\xf5{\xc7Xd\xf1\xf2}\x96EVf\xc9\xa8\xcd\xe4\xc9\x8d\x1d7\xd5\x94\\\xb5\r\xd2\xaa\xe6H\xfe)\xb3a\x04\x1eRMl\xa3F\xa8W0\x90\xc9Ky#\x03\xf5~\xd2Z\xe9(\x99\b\x00M\xde\x01]\r\xd09k\xc2\x84\xc1\xabN\x96\x8a6\x98@\xd3\xab\xa8m\xdf\x8d\x1d\b\x82\xfcP\x87\x93\x80\x97Q\x86\x8a\x9c\xf8L\x0f\xa8@VE2\x9d\x1e`#\xd8\xd7M\xd4k1\xe6\x13Y\\\x83E\xd0e\x0eM\xa9Q\xac\x0e\x1d]\a\x19H\x81\xd2\xccF\xc6\xd4\xe2R$\xfa\xd6}\xbdsN\x18\xdf\xf5\xffP\xf5\f\xccL\xef\x83\xb3$\xd4\xf4\xb5\xe6\xd0 \xb9\xa7\x8e6\t\x83q\xef\b\xd2\xdb', 0x1)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
io_uring_setup$auto(0x2, &(0x7f0000000080)={0x80000003, 0x9, 0x9, 0x6, 0x4, 0x8, 0xffffffffffffffff, [], {0x9, 0x6, 0xf, 0x29f, 0x100, 0x7f, 0x101, 0x4000006, 0x2000}, {0x1ff, 0x1, 0x50, 0x5, 0x1, 0x7, 0x8, 0x8, 0x5}})
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048084)
madvise$auto(0x0, 0x200007, 0x19)
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x4000000000009b72, 0x2, 0x8000)
sched_getattr$auto(0x0, &(0x7f0000000000)={0xcf86, 0x106, 0x6, 0x200, 0x7, 0xb, 0x6, 0xfffffffffffffff8, 0x8, 0x90}, 0x68, 0x0)
madvise$auto(0x0, 0x8000000000000000, 0x15)

10.737772203s ago: executing program 7 (id=3077):
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f00000012c0)={{@raw=0xd720, 0x1, 0x2, 0x6, "0582a820061b5c51a65a6dd72b0b15addbdf55cb4b0f2381f2673e3a1ebe21e1bf1b26f0db7b620200f764f9", @raw=0x1000}, 0x0, @integer64=@value_ptr=0x0, "528d458095d42b72adda0cac2d45bdaacf03000000000000008bf00ab57d5d73b094925aa92857fd2f672f85343275f80841c6cac1ba3023ab4510269ed959a79a789527276d90375018fc08050559d8936b8d72087a5689d4338da78b8b8bdcea8133ca43202fb78dacb3fea1258074885c899d75cd52751f9be959d90fa5c2"})
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x44eb2, 0xffffffffffffffff, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x40000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
munmap$auto(0x8000, 0xffffffff)

9.221811193s ago: executing program 7 (id=3078):
timer_create$auto_CLOCK_TAI(0xb, 0x0, &(0x7f0000000fc0)=0xa)
mmap$auto(0x0, 0x4020005, 0xdf, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event0\x00', 0x101b03, 0x0)
ioctl$auto_EVIOCGMASK(r0, 0x80104592, &(0x7f0000000000)={0x11, 0x800004, 0x8})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
io_uring_setup$auto(0x59, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x24, 0x0, 0x1, 0x2070bd26, 0x25dfdbf8, {}, [@OVS_DP_ATTR_UPCALL_PID={0x8, 0x2, 0x4}, @OVS_DP_ATTR_UPCALL_PID={0x8}]}, 0x24}, 0x1, 0x300, 0x0, 0x801}, 0x0)
futex_waitv$auto(&(0x7f0000000000)={0xf, 0x1, 0x4007, 0x4}, 0x7b, 0xfffffffc, 0x0, 0x62bd)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c003b"], 0x1ac}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
ioctl$auto(r0, 0x8, r0)
sendmsg$auto_ETHTOOL_MSG_STATS_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYRES16, @ANYRES16, @ANYBLOB="01002dbd7000ffdbdf00200000000c00038008000200b40300001800028014000200766c616e0000000000000000000000006556e2734ce96265af1b0f78efb3dd15baa4c1c33ccc2fd6c3a5d2a9"], 0x38}, 0x1, 0x0, 0x0, 0x4000844}, 0x804)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="00010000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fcdbdf2503000000790008805b4f2525b2dc3a73ec37e7122e6f0d55382854d419b883b7ed64bd3c7b9fb15273e787030718751e0a22cc6cabcae114aa6448d0356183e1ca7c01536c5c6f37915b26a3e75515ab02807fe932b8a415a581dcdc7800f91e231c001d800400d3800c002000f3000000002b3c0c7e9b"], 0x100}, 0x1, 0x0, 0x0, 0x8000}, 0x42)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0xbb3b, 0xe2, 0x9b72, r1, 0x8000)
socket(0x2, 0x5, 0x0)
capset$auto(0x0, 0x0)

8.739182464s ago: executing program 4 (id=3079):
r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
setsockopt$auto_SO_ERROR(r0, 0x7, 0x4, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0xb)
ioctl$auto_PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f000000c380)={0x60, 0x4, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
read$auto_hwsim_simulate_radar_(0xffffffffffffffff, &(0x7f0000000080)=""/4096, 0x1000)
r1 = openat$auto_hpet_fops_hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x480100, 0x0)
ioctl$auto_HPET_DPI(r1, 0x6805, 0x0)
listen$auto(r0, 0x5)

8.388200543s ago: executing program 4 (id=3080):
unshare$auto(0x240000080)
r0 = socket(0x10, 0x2, 0xf)
bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_5={@target_ifindex, r0, 0x8, 0x1, r0, @relative_id=0x80000001, 0x80000001}, 0xd)
bpf$auto(0x3, &(0x7f00000002c0)=@enable_stats={0x2}, 0x8)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptya8\x00', 0x102, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
memfd_create$auto(&(0x7f0000000040)='IPVS\x00', 0x7)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
prctl$auto(0x3e, 0x1, 0x0, 0x1000000000000001, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x20a00, 0x0)
mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000440)='/dev/sg0\x00', 0x2, 0x0)
ioctl$auto_SG_GET_TIMEOUT2(r2, 0x2202, 0x0)
io_getevents$auto(0x409, 0xd9d, 0x7, 0x0, 0x0)
r3 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0)
ioctl$auto_UBI_IOCATT(r3, 0x40186f40, 0x0)
ioctl$auto_UBI_IOCDET(r3, 0x40046f41, 0x0)
r4 = syz_clone(0x20400, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000080)={"da97bc42846130071a81299cf978b509996203f04b9df1a6af53c43784e0253c", 0x8, 0x0, 0x4, 0x8, 0x3, r4})
ioctl$auto_BLKGETNRZONES(0xffffffffffffffff, 0x80041285, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioprio_set$auto(0x3, 0x0, 0x4b34)
sendmsg$auto_TIPC_NL_MEDIA_GET(0xffffffffffffffff, 0x0, 0x48010)
write$auto(r1, &(0x7f0000000380)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8\xa6\xb6\xaa\x96/OX\xba\x02\xc5\xc6B\x1d}Y\xbc@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf\xd6f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8', 0x7)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x800)
io_uring_setup$auto(0x7fffffff, 0x0)

7.080672393s ago: executing program 4 (id=3081):
r0 = socket(0x10, 0x2, 0x7)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00'})
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x8000, 0x0)
madvise$auto(0x0, 0xfffffffffffeffff, 0x15)
capget$auto(&(0x7f0000000040)={0x6, <r1=>0x0}, &(0x7f0000000100)={0x6, 0x9, 0x6ec0c42e})
r2 = prctl$auto(0x1ff, 0x5, r1, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
r3 = openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/psample/enable\x00', 0x101882, 0x0)
write$auto_nsim_psample_enable_fops_psample(r3, &(0x7f0000000000)='D', 0x1)
r4 = openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
move_mount$auto(r4, 0x0, r2, 0x0, 0x9)
setsockopt$auto_SO_LOCK_FILTER(r4, 0xc, 0x2c, &(0x7f0000000000)='vcan0\x00', 0x8e0)
ioctl$auto(r0, 0x8004542e, 0xffffffffffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim2/new_port\x00', 0x183a41, 0x0)
writev$auto(r5, &(0x7f00000002c0)={&(0x7f0000000480)='4r', 0x5}, 0x1)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x13b)
connect$auto(0x3, 0x0, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mmap$auto(0x0, 0x3, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r6 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r6, 0x405c5503, &(0x7f00000001c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fb4a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f00", 0xa})
ioctl$auto_UI_DEV_CREATE(r6, 0x5501, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
writev$auto(r6, &(0x7f0000000340)={0x0, 0x500000}, 0x9)
ioctl$auto_TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000080)=0x68)

6.470915511s ago: executing program 7 (id=3082):
unshare$auto(0x40000080)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
mmap$auto(0x0, 0x202000d, 0x8000000002, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x6, 0xd, 0xfffffffe, 0x6, 0x7fff, 0x8, 0xffffffffffffffff, [0x0, 0xfffffff7], {0x6, 0x10003, 0xb, 0x2de, 0x504, 0x1, 0x80, 0x46, 0x6}, {0xfff7ffff, 0x2, 0x52, 0x5, 0x10001, 0x40, 0x76c5, 0x8, 0x8000000000000000}})
getpid()
socket(0x2b, 0x1, 0x1)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000001480)='/proc/sys/net/ipv6/conf/geneve0/disable_ipv6\x00', 0x40001, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB="00005514", @ANYRES16, @ANYBLOB="010027bd7000fcdbdf250a0000001800018014000200776c616e31"], 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x40)
mmap$auto(0x0, 0x7, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x5)
ioctl$auto_VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f00000004c0)={0x1, 0x0, [{0x10001, 0x9, 0x7}, {0x1, 0x5, 0xfffffffffffffffe}, {0x6, 0x5, 0xee}, {0x20000000000004, 0x9}, {0xc51, 0x9, 0x5}, {0x6, 0x2, 0x10000}]})
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x1f40)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x212c81, 0x0)
writev$auto(r4, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6)
syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/net\x00')
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x880)
ioctl$auto(r1, 0x4040ae79, 0xffffffffffffffff)
unshare$auto(0x40000080)
semctl$auto_SETALL(0x9, 0xf, 0x11, 0x8)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)

3.857574139s ago: executing program 7 (id=3083):
r0 = socket(0x2, 0x1, 0x106)
openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/ubifs/chk_lprops\x00', 0x210000, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/kvm/parameters/nx_huge_pages\x00', 0x80302, 0x0)
sendfile$auto(r1, r1, 0x0, 0x400000000006)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_MON_PEER_GET(r2, &(0x7f0000006140)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x4405}, 0x4c848)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000002740), 0xffffffffffffffff)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r3, 0x1, 0x9)
ptrace$auto(0xc, r3, 0x6, 0x6)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyxe\x00', 0x240901, 0x0)
ioctl$auto_TIOCSTI2(r5, 0x5412, &(0x7f0000000040)="158f4a2b")
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/nbd7/queue/max_discard_segments\x00', 0x80000, 0x0)
read$auto(r6, 0x0, 0x9)
write$auto(0x3, 0x0, 0xfdef)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
unshare$auto(0x40000080)
r7 = socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, 0x0, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="72010000", @ANYRESDEC=r2, @ANYRES8=r4], 0x1ac}, 0x1, 0x0, 0x0, 0x10}, 0x40000)
bpf$auto(0x0, 0x0, 0x10)
sendmsg$auto_NL80211_CMD_GET_REG(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

2.911451277s ago: executing program 4 (id=3084):
set_mempolicy$auto(0x1, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)
seccomp$auto_SECCOMP_SET_MODE_FILTER(0x1, 0x458f, &(0x7f00000000c0)="4172df210ce29b98861137b7f41aa803048a26b85f228c1dd4dd83394ae0d8c49b778dad458267f0ff0eefdd9069e8ca4bb132a1245e96fdc13df84578f8b6dc24d0db1a86ca01c9266f940237ce68aa1ac85bb8d137119bec864581a5c43af8c1fbd550ff715a56afa066427bf8ba738f11cc2599d9eaf16d7ab70372dfbd6f8cfef4ee3d31c53919a08795ab21cca11094d79f8c4efb39c17a240ae4c5bdf3785e89eaae4e045c650ab56594936eb078d32c")
io_uring_setup$auto(0x59, &(0x7f0000000080)={0xb, 0x40000d, 0x10400, 0x6, 0x4, 0x3, 0xffffffffffffffff, [], {0x7, 0x200004, 0x4, 0x2a3, 0x100, 0x3, 0x40100101, 0x6}, {0xf8, 0x4, 0x9, 0x6, 0x39, 0x40, 0xcc, 0x8, 0x100000000}})
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r0, 0x5425, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
socket(0xa, 0x1, 0x84)
socket(0x2, 0x1, 0x106)
socket(0x8, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
pwritev$auto(r1, &(0x7f0000000140)={0x0, 0x400000000001}, 0x5, 0x5, 0xd3b8)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0)
ioctl$auto(0xffffffffffffffff, 0x89f0, 0xffffffffffffffff)
madvise$auto(0x7, 0x8, 0x15)
r2 = prctl$auto(0xbb, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x3, 0x20009, 0x4000000000df, 0x14, r2, 0x8000)
madvise$auto(0xfe7, 0x9, 0x3)
write$auto(0xffffffffffffffff, 0x0, 0xfffffdf1)
pwrite64$auto(0xffffffffffffffff, 0x0, 0x32e, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000)
madvise$auto_MADV_GUARD_INSTALL(0x0, 0x2021000, 0x66)

1.694892907s ago: executing program 0 (id=3055):
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f00000012c0)={{@raw=0xd720, 0x1, 0x2, 0x6, "0582a820061b5c51a65a6dd72b0b15addbdf55cb4b0f2381f2673e3a1ebe21e1bf1b26f0db7b620200f764f9", @raw=0x1000}, 0x0, @integer64=@value_ptr=0x0, "528d458095d42b72adda0cac2d45bdaacf03000000000000008bf00ab57d5d73b094925aa92857fd2f672f85343275f80841c6cac1ba3023ab4510269ed959a79a789527276d90375018fc08050559d8936b8d72087a5689d4338da78b8b8bdcea8133ca43202fb78dacb3fea1258074885c899d75cd52751f9be959d90fa5c2"})
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0)
sendfile$auto(r0, r0, 0x0, 0x2)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x44eb2, 0xffffffffffffffff, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
munmap$auto(0x8000, 0xffffffff)

1.4640206s ago: executing program 4 (id=3085):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000880), r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000940)={'ipvlan0\x00'})
socket(0x2, 0x801, 0x106)
shutdown$auto(0x200000003, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7fffeffd)
mmap$auto(0x1, 0x4020009, 0xffff, 0xeb1, r1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdir$auto(0x0, 0x3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20342, 0x0)
ioctl$auto(0x4000000000000c8, 0x400454d9, 0x3)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x20a00, 0x0)
r4 = openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000180), 0x40900, 0x0)
ioctl$auto_UBI_IOCATT(r4, 0x40186f40, 0x0)
inotify_init1$auto(0x5615)
ioctl$auto_UBI_IOCDET(r4, 0x40046f41, 0x0)
ioctl$auto_UBI_IOCDET(r4, 0x40046f41, 0x0)
ioctl$auto_BLKGETNRZONES(0xffffffffffffffff, 0x80041285, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioprio_set$auto(0x3, 0x0, 0x4b34)
read$auto(r2, 0x0, 0x1f40)
waitid$auto_P_ALL(0x0, 0x3, &(0x7f0000000080)={@siginfo_0_0={0x5, 0xc, 0x0, @_kill={0x0, 0xee00}}}, 0x7, &(0x7f0000000380)={{0x8000000000000001, 0x7}, {0x2, 0x5}, 0x7, 0x4, 0xffffffffffffffff, 0x837, 0x9, 0xfffffffffffffffd, 0x0, 0x293, 0x1, 0x3b8, 0x40, 0x6, 0xcf8, 0x66})
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0)

1.093448411s ago: executing program 7 (id=3086):
mmap$auto(0x0, 0x200104, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/sched_rr_timeslice_ms\x00', 0x2, 0x0)
syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2c, 0x3, 0x0)
socket(0x10, 0x2, 0x4)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/net/sit0/statistics/tx_compressed\x00', 0x80000, 0x0)
mknod$auto(0x0, 0x1, 0x4)
lstat$auto(&(0x7f0000000200)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
ioctl$auto(0x3, 0x4008ae6a, r0)

389.449732ms ago: executing program 7 (id=3087):
mmap$auto(0x0, 0x276, 0xdf, 0xeb1, 0x401, 0x8000)
timer_settime$auto(0x1, 0xa, &(0x7f00000000c0)={{0xffff, 0x2}, {0x7fffffff, 0xc00000}}, &(0x7f0000000240)={{0x8000, 0x6}, {0xfffffffffffffac9}})
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r1 = openat$auto_wakeup_sources_stats_fops_wakeup(0xffffffffffffff9c, &(0x7f0000000000), 0x36281, 0x0)
mmap$auto(0x400000000000000, 0x4020009, 0xdf, 0xeb1, 0x200000000000404, 0xfffffffffffffffe)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x2, 0x80002, 0x73)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x0, 0xffffeffe, 0x2)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r3, &(0x7f0000000000)="c80d1b5d399b3b", 0xfdef)
r4 = pidfd_open$auto(0x1, 0x800)
waitid$auto_P_PIDFD(0x3, r4, 0x0, 0xc, 0x0)
r5 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cpu/0/msr\x00', 0x8142, 0x0)
ioctl$auto_X86_IOC_WRMSR_REGS(r5, 0xc02063a1, &(0x7f0000000440)=[0x7acb, 0x6, 0x9, 0x3, 0x4, 0x7f, 0x3, 0x2])
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000100)={0xc798, &(0x7f0000000040)={0x3, 0xd0, 0xfe, @inferred=r2}})
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0xfffe)
migrate_pages$auto(0x0, 0x8, 0x0, &(0x7f00000001c0)=0x7b)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x40440, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, 0xffffffffffffffff)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(r1, 0x0, 0x3, 0x400)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)

366.454549ms ago: executing program 0 (id=3088):
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/011/001\x00', 0x121002, 0x0)
mmap$auto(0x0, 0x8010000, 0xffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
memfd_create$auto(0x0, 0xe)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x141702, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002d0008000700000000000000", @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x0)
r1 = socket(0xa, 0x2, 0x3a)
r2 = bpf$auto(0x5, &(0x7f0000000100)=@task_fd_query={0x2, r1, 0x3, 0x0, 0x85, 0x7, 0x9, 0x6, 0x8001}, 0x100)
pwrite64$auto(0xc8, &(0x7f0000000600)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rBBJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x99\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xb3\x9c2\xa2\xacyl\xb8\x00Y\xc8\'\xb6S(\xf2\xc2\xf2\x9dP\b\x88J\xae8\xf9>\xb6\xed\xb5/\xc9\xaa\xd8\xc4\xba\x94\xe6jv\x12Bp+\xb8\x16\x19kw\xbc\xbb5-i\xf0\xb9\xac\x9f&6\x89g\x9bh\x83D\xb3\x9fxe\x13\xd1\xb9\xe4\x7f|a\xf2\xdd\xa0\xfb\xfau-7\x94\x13\xa8\xec\xf6~\xacV\xa2S)\xc2\xce\x9b{+\x9ct2>\x98D\t\xc5HP\xc4\xb7\x84\xda*\x82)\x01\xd1\f\x1e\xd4\x8d0K\xa8\xd6\xa1\xa7\xd8VP\xfd\x19\x1cd\x84\xe7\xc6#\x9c\xdd\x88\xf9\x128\x0e\xe2\n\xd3\xd33\x01\xda\x83]\xd6\xd5U\xb0^\xaf\x12\x91\x85\x86\xfd\x95\'<x\xfc\x19j\xfd\x95\xeaf\x06\x14+\x06:\x803\xae[\xfa\xac\x83\xd2', 0x4f, 0x7)
write$auto(r0, &(0x7f0000000000)='//\xf2\x00', 0x80000000)
socketcall$auto(0x10001, &(0x7f0000000040)=0x8)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r3 = pidfd_open$auto(0x1, 0x0)
statx$auto(r3, 0x0, 0x1000, 0x4005, 0x0)
mmap$auto(0x0, 0x810006, 0xffb, 0x8000000008011, 0x3, 0x0)
msync$auto(0x0, 0xe0, 0x6)
r4 = landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa0, 0xffffffff, 0x1}, 0x9, 0x9)
read$auto_nodes_fops_netdebug(r2, &(0x7f0000000080)=""/48, 0x30)
landlock_restrict_self$auto(r4, 0x8)

0s ago: executing program 4 (id=3089):
r0 = openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim7/trap_flow_action_cookie\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x1eb1, r0, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
iopl$auto(0x3)

kernel console output (not intermixed with test programs):

: must specify a device to reconfigure
[ 1018.682234][T19580] blktrace: Concurrent blktraces are not allowed on loop2
[ 1018.693599][T19571] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2505'.
[ 1024.317966][T19601] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2512'.
[ 1026.141516][T19648] FAULT_INJECTION: forcing a failure.
[ 1026.141516][T19648] name failslab, interval 1, probability 0, space 0, times 0
[ 1026.177537][T12087] Bluetooth: hci0: unexpected event 0x3e length: 0 < 1
[ 1026.231874][T19648] CPU: 0 UID: 0 PID: 19648 Comm: syz.4.2523 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1026.231913][T19648] Tainted: [L]=SOFTLOCKUP
[ 1026.231921][T19648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1026.231936][T19648] Call Trace:
[ 1026.231944][T19648]  <TASK>
[ 1026.231953][T19648]  dump_stack_lvl+0x100/0x190
[ 1026.231983][T19648]  should_fail_ex.cold+0x5/0xa
[ 1026.232017][T19648]  should_failslab+0xc2/0x120
[ 1026.232046][T19648]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 1026.232074][T19648]  ? kstrdup_const+0x63/0x80
[ 1026.232098][T19648]  ? find_held_lock+0x2b/0x80
[ 1026.232127][T19648]  ? is_bpf_text_address+0x8a/0x1a0
[ 1026.232165][T19648]  kstrdup+0x51/0xe0
[ 1026.232194][T19648]  kstrdup_const+0x63/0x80
[ 1026.232219][T19648]  __kernfs_new_node+0x9b/0x9f0
[ 1026.232245][T19648]  ? __kernel_text_address+0xd/0x30
[ 1026.232271][T19648]  ? arch_stack_walk+0xa6/0xf0
[ 1026.232300][T19648]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1026.232334][T19648]  ? find_held_lock+0x2b/0x80
[ 1026.232363][T19648]  ? kernfs_root+0xee/0x2a0
[ 1026.232388][T19648]  ? kernfs_root+0xee/0x2a0
[ 1026.232421][T19648]  kernfs_new_node+0x11b/0x1a0
[ 1026.232466][T19648]  kernfs_create_dir_ns+0x4c/0x1a0
[ 1026.232502][T19648]  sysfs_create_dir_ns+0x13a/0x2b0
[ 1026.232529][T19648]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 1026.232554][T19648]  ? find_held_lock+0x2b/0x80
[ 1026.232583][T19648]  ? kobject_add_internal+0x25f/0x930
[ 1026.232607][T19648]  ? kobject_add_internal+0x25f/0x930
[ 1026.232631][T19648]  ? net_namespace+0x12/0x50
[ 1026.232662][T19648]  ? device_namespace+0x76/0xa0
[ 1026.232690][T19648]  kobject_add_internal+0x2c8/0x930
[ 1026.232719][T19648]  kobject_add+0x16a/0x1e0
[ 1026.232743][T19648]  ? __pfx_kobject_add+0x10/0x10
[ 1026.232772][T19648]  ? kobject_put+0xb9/0x640
[ 1026.232818][T19648]  device_add+0x294/0x1950
[ 1026.232845][T19648]  ? __pfx_dev_set_name+0x10/0x10
[ 1026.232875][T19648]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1026.232909][T19648]  ? __pfx_device_add+0x10/0x10
[ 1026.232935][T19648]  ? lockdep_init_map_type+0x5c/0x250
[ 1026.232976][T19648]  ? __init_waitqueue_head+0xca/0x150
[ 1026.233010][T19648]  netdev_register_kobject+0x1a9/0x3d0
[ 1026.233047][T19648]  register_netdevice+0x151c/0x24b0
[ 1026.233081][T19648]  ? __pfx_register_netdevice+0x10/0x10
[ 1026.233107][T19648]  ? net_generic+0xea/0x2a0
[ 1026.233137][T19648]  ppp_dev_configure+0x986/0xcb0
[ 1026.233169][T19648]  ppp_ioctl+0x9d7/0x27c0
[ 1026.233196][T19648]  ? find_held_lock+0x2b/0x80
[ 1026.233227][T19648]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1026.233257][T19648]  ? __fget_files+0x21f/0x3d0
[ 1026.233291][T19648]  ? __pfx_ppp_ioctl+0x10/0x10
[ 1026.233317][T19648]  __x64_sys_ioctl+0x18e/0x210
[ 1026.233344][T19648]  do_syscall_64+0x115/0x840
[ 1026.233378][T19648]  ? clear_bhb_loop+0x40/0x90
[ 1026.233408][T19648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1026.233433][T19648] RIP: 0033:0x7f153699ce59
[ 1026.233460][T19648] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1026.233484][T19648] RSP: 002b:00007f1537788028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1026.233507][T19648] RAX: ffffffffffffffda RBX: 00007f1536c15fa0 RCX: 00007f153699ce59
[ 1026.233523][T19648] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 000000000000000d
[ 1026.233537][T19648] RBP: 00007f1536a32d6f R08: 0000000000000000 R09: 0000000000000000
[ 1026.233552][T19648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1026.233567][T19648] R13: 00007f1536c16038 R14: 00007f1536c15fa0 R15: 00007ffcb433b128
[ 1026.233598][T19648]  </TASK>
[ 1026.589270][T19648] kobject: kobject_add_internal failed for ppp9 (error: -12 parent: net)
[ 1026.721453][T19650] bridge0: port 3(netdevsim3) entered blocking state
[ 1026.728382][T19650] bridge0: port 3(netdevsim3) entered disabled state
[ 1026.735611][T19650] netdevsim netdevsim2 netdevsim3: entered allmulticast mode
[ 1026.744902][T19650] netdevsim netdevsim2 netdevsim3: entered promiscuous mode
[ 1026.752760][T19650] bridge0: port 3(netdevsim3) entered blocking state
[ 1026.759577][T19650] bridge0: port 3(netdevsim3) entered forwarding state
[ 1027.509739][T19674] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2528'.
[ 1027.554040][T19670] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2528'.
[ 1029.167210][T19692] Process accounting paused
[ 1029.688915][T19717] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2536'.
[ 1030.509358][T19733] random: crng reseeded on system resumption
[ 1030.834009][T16662] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[ 1032.487049][T12087] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1032.646108][T12105] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1032.885355][T16662] Bluetooth: hci0: command 0x0406 tx timeout
[ 1033.167104][T19769] rnbd_client L202: map_device: Unknown parameter or missing value '0�="�/�'
[ 1034.966654][T16662] Bluetooth: hci0: command 0x0406 tx timeout
[ 1036.206063][T19823] netlink: 98 bytes leftover after parsing attributes in process `syz.4.2554'.
[ 1037.778749][T19841] bond0: option slaves: interface -��]���=,D�o does not exist!
[ 1038.842474][T19869] netlink: 'syz.2.2564': attribute type 1 has an invalid length.
[ 1039.351132][T12105] Bluetooth: hci4: unexpected event for opcode 0x7c89
[ 1039.888393][T19878] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2565'.
[ 1040.214748][T19857] FAULT_INJECTION: forcing a failure.
[ 1040.214748][T19857] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1040.286426][T19857] CPU: 0 UID: 0 PID: 19857 Comm: syz.6.2561 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1040.286463][T19857] Tainted: [L]=SOFTLOCKUP
[ 1040.286470][T19857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1040.286484][T19857] Call Trace:
[ 1040.286492][T19857]  <TASK>
[ 1040.286500][T19857]  dump_stack_lvl+0x100/0x190
[ 1040.286529][T19857]  should_fail_ex.cold+0x5/0xa
[ 1040.286559][T19857]  get_futex_key+0x1d2/0x1510
[ 1040.286600][T19857]  ? __pfx_get_futex_key+0x10/0x10
[ 1040.286648][T19857]  futex_wake+0xea/0x530
[ 1040.286679][T19857]  ? __pfx_futex_wake+0x10/0x10
[ 1040.286709][T19857]  ? lockdep_hardirqs_on+0x78/0x100
[ 1040.286753][T19857]  do_futex+0x32b/0x350
[ 1040.286778][T19857]  ? __pfx_do_futex+0x10/0x10
[ 1040.286805][T19857]  ? __pfx___might_resched+0x10/0x10
[ 1040.286833][T19857]  ? blkcg_maybe_throttle_current+0x5e8/0xeb0
[ 1040.286873][T19857]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1040.286906][T19857]  __x64_sys_futex+0x34f/0x4d0
[ 1040.286934][T19857]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1040.286957][T19857]  ? exit_to_user_mode_loop+0xf3/0x670
[ 1040.287000][T19857]  ? rcu_is_watching+0x12/0xc0
[ 1040.287031][T19857]  do_syscall_64+0x115/0x840
[ 1040.287063][T19857]  ? clear_bhb_loop+0x40/0x90
[ 1040.287091][T19857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1040.287115][T19857] RIP: 0033:0x7f212b59ce59
[ 1040.287134][T19857] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1040.287156][T19857] RSP: 002b:00007f212c4a00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1040.287178][T19857] RAX: ffffffffffffffda RBX: 00007f212b815fa8 RCX: 00007f212b59ce59
[ 1040.287193][T19857] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f212b815fac
[ 1040.287207][T19857] RBP: 00007f212b815fa0 R08: 0000000000000001 R09: 0000000000000000
[ 1040.287221][T19857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1040.287234][T19857] R13: 00007f212b816038 R14: 00007ffd528fa620 R15: 00007ffd528fa708
[ 1040.287263][T19857]  </TASK>
[ 1043.516256][T19915] netlink: 504 bytes leftover after parsing attributes in process `syz.0.2571'.
[ 1043.546043][T19918] binder: 19917:19918 ioctl c0046209 3 returned -22
[ 1044.041508][T12105] Bluetooth: hci0: unexpected event 0x30 length: 10 > 3
[ 1044.685444][T19938] ovs_: entered promiscuous mode
[ 1044.808363][T19938] futex_wake_op: syz.0.2577 tries to shift op by -1; fix this program
[ 1047.711326][T16662] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1047.732751][T16662] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1047.746311][T16662] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1047.763160][T16662] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1047.783071][T16662] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1049.850706][T12105] Bluetooth: hci2: command tx timeout
[ 1050.393227][T20036] FAULT_INJECTION: forcing a failure.
[ 1050.393227][T20036] name failslab, interval 1, probability 0, space 0, times 0
[ 1050.466235][T20036] CPU: 0 UID: 0 PID: 20036 Comm: syz.4.2595 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1050.466280][T20036] Tainted: [L]=SOFTLOCKUP
[ 1050.466289][T20036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1050.466306][T20036] Call Trace:
[ 1050.466313][T20036]  <TASK>
[ 1050.466322][T20036]  dump_stack_lvl+0x100/0x190
[ 1050.466351][T20036]  should_fail_ex.cold+0x5/0xa
[ 1050.466381][T20036]  ? tomoyo_encode2+0xfb/0x3c0
[ 1050.466414][T20036]  should_failslab+0xc2/0x120
[ 1050.466442][T20036]  __kmalloc_noprof+0xe0/0x850
[ 1050.466462][T20036]  ? d_absolute_path+0x136/0x1b0
[ 1050.466490][T20036]  tomoyo_encode2+0xfb/0x3c0
[ 1050.466527][T20036]  tomoyo_encode+0x29/0x50
[ 1050.466559][T20036]  tomoyo_realpath_from_path+0x18c/0x690
[ 1050.466600][T20036]  tomoyo_check_open_permission+0x2af/0x3c0
[ 1050.466631][T20036]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1050.466672][T20036]  ? hook_file_open+0x24e/0x7a0
[ 1050.466721][T20036]  ? path_get+0x61/0x80
[ 1050.466756][T20036]  tomoyo_file_open+0x6b/0x90
[ 1050.466779][T20036]  security_file_open+0xb5/0x1e0
[ 1050.466815][T20036]  do_dentry_open+0x588/0x14d0
[ 1050.466852][T20036]  vfs_open+0x82/0x3f0
[ 1050.466890][T20036]  path_openat+0x208c/0x31a0
[ 1050.466930][T20036]  ? __pfx_path_openat+0x10/0x10
[ 1050.466970][T20036]  do_file_open+0x20e/0x430
[ 1050.467009][T20036]  ? __pfx_do_file_open+0x10/0x10
[ 1050.467068][T20036]  ? alloc_fd+0x476/0x790
[ 1050.467099][T20036]  ? do_getname+0x191/0x390
[ 1050.467141][T20036]  do_sys_openat2+0x10d/0x1e0
[ 1050.467177][T20036]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1050.467224][T20036]  __x64_sys_openat+0x12d/0x210
[ 1050.467262][T20036]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1050.467298][T20036]  ? ksys_write+0x1ac/0x250
[ 1050.467328][T20036]  ? rcu_is_watching+0x12/0xc0
[ 1050.467359][T20036]  do_syscall_64+0x115/0x840
[ 1050.467392][T20036]  ? clear_bhb_loop+0x40/0x90
[ 1050.467421][T20036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1050.467446][T20036] RIP: 0033:0x7f153699ce59
[ 1050.467465][T20036] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1050.467488][T20036] RSP: 002b:00007f1537788028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1050.467510][T20036] RAX: ffffffffffffffda RBX: 00007f1536c15fa0 RCX: 00007f153699ce59
[ 1050.467526][T20036] RDX: 000000000014be02 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1050.467540][T20036] RBP: 00007f1536a32d6f R08: 0000000000000000 R09: 0000000000000000
[ 1050.467553][T20036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1050.467567][T20036] R13: 00007f1536c16038 R14: 00007f1536c15fa0 R15: 00007ffcb433b128
[ 1050.467597][T20036]  </TASK>
[ 1050.472545][T20036] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1051.531612][T20003] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1051.576136][T20003] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1051.590563][T20003] bridge_slave_0: entered allmulticast mode
[ 1051.614784][T20003] bridge_slave_0: entered promiscuous mode
[ 1051.637039][T20038] overlayfs: missing 'lowerdir'
[ 1051.648676][T20003] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1051.677304][T20003] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1051.706921][T20003] bridge_slave_1: entered allmulticast mode
[ 1051.745301][T20003] bridge_slave_1: entered promiscuous mode
[ 1051.927751][T16662] Bluetooth: hci2: command tx timeout
[ 1052.016463][T20003] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1052.078404][T20003] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1052.293659][T20003] team0: Port device team_slave_0 added
[ 1052.349466][T20003] team0: Port device team_slave_1 added
[ 1052.570342][T20003] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1052.606801][T20003] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1052.735071][T20003] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1052.793818][T20003] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1052.827093][T20003] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1052.973399][T20003] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1053.186724][T20076] FAULT_INJECTION: forcing a failure.
[ 1053.186724][T20076] name failslab, interval 1, probability 0, space 0, times 0
[ 1053.202079][T20003] hsr_slave_0: entered promiscuous mode
[ 1053.224658][T20003] hsr_slave_1: entered promiscuous mode
[ 1053.249231][T20003] debugfs: 'hsr0' already exists in 'hsr'
[ 1053.282599][T20003] Cannot create hsr debugfs directory
[ 1053.416554][T20076] CPU: 0 UID: 0 PID: 20076 Comm: syz.2.2600 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1053.416593][T20076] Tainted: [L]=SOFTLOCKUP
[ 1053.416602][T20076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1053.416617][T20076] Call Trace:
[ 1053.416625][T20076]  <TASK>
[ 1053.416634][T20076]  dump_stack_lvl+0x100/0x190
[ 1053.416665][T20076]  should_fail_ex.cold+0x5/0xa
[ 1053.416696][T20076]  should_failslab+0xc2/0x120
[ 1053.416726][T20076]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[ 1053.416767][T20076]  ? sock_alloc_inode+0x26/0x290
[ 1053.416805][T20076]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1053.416836][T20076]  sock_alloc_inode+0x26/0x290
[ 1053.416866][T20076]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1053.416895][T20076]  alloc_inode+0x68/0x250
[ 1053.416933][T20076]  sock_alloc+0x44/0x280
[ 1053.416958][T20076]  ? security_socket_create+0x7f/0x250
[ 1053.416986][T20076]  __sock_create+0xc2/0x860
[ 1053.417023][T20076]  __sys_socket+0x14d/0x260
[ 1053.417058][T20076]  ? __pfx___sys_socket+0x10/0x10
[ 1053.417091][T20076]  ? exit_to_user_mode_loop+0xf3/0x670
[ 1053.417139][T20076]  __x64_sys_socket+0x72/0xb0
[ 1053.417178][T20076]  ? lockdep_hardirqs_on+0x78/0x100
[ 1053.417214][T20076]  do_syscall_64+0x115/0x840
[ 1053.417247][T20076]  ? clear_bhb_loop+0x40/0x90
[ 1053.417277][T20076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1053.417302][T20076] RIP: 0033:0x7fca4399ce59
[ 1053.417322][T20076] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1053.417345][T20076] RSP: 002b:00007fca448fc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1053.417368][T20076] RAX: ffffffffffffffda RBX: 00007fca43c16090 RCX: 00007fca4399ce59
[ 1053.417384][T20076] RDX: 0000000000000006 RSI: 0000000000000002 RDI: 0000000000000011
[ 1053.417398][T20076] RBP: 00007fca43a32d6f R08: 0000000000000000 R09: 0000000000000000
[ 1053.417413][T20076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1053.417427][T20076] R13: 00007fca43c16128 R14: 00007fca43c16090 R15: 00007ffec5c348f8
[ 1053.417458][T20076]  </TASK>
[ 1053.417480][T20076] socket: no more sockets
[ 1054.009629][T16662] Bluetooth: hci2: command tx timeout
[ 1054.328062][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.342701][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.157110][T20003] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1055.876823][T20003] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1056.086034][T16662] Bluetooth: hci2: command tx timeout
[ 1056.308202][T20003] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1057.334246][T20109] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations!
[ 1058.377384][T20003] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1058.423331][T20003] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1058.524938][T20003] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1058.619892][T20003] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1058.682730][T20003] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1058.749728][T20003] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1058.799028][T20003] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1058.874891][T20003] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1059.502847][T20133] Process accounting resumed
[ 1059.876547][T20141] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2614'.
[ 1059.960372][T20141] ip6gretap0: entered promiscuous mode
[ 1060.031467][T20003] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1060.130927][T20003] 8021q: adding VLAN 0 to HW filter on device team0
[ 1060.173673][T12530] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1060.180939][T12530] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1060.291197][T12530] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1060.299020][T12530] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1063.081637][T20003] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1063.301705][T20003] veth0_vlan: entered promiscuous mode
[ 1063.361491][T20003] veth1_vlan: entered promiscuous mode
[ 1063.508094][T20003] veth0_macvtap: entered promiscuous mode
[ 1063.545689][T20003] veth1_macvtap: entered promiscuous mode
[ 1063.615103][T20003] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1063.657401][T20003] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1063.730601][T12085] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1063.770227][T12085] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1063.824112][T12085] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1063.888349][T12085] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1064.009472][T16662] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1064.366030][T20188] random: crng reseeded on system resumption
[ 1064.383377][T12530] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1064.394488][T20189] netlink: 'syz.6.2622': attribute type 11 has an invalid length.
[ 1064.464771][T12530] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1064.727616][T16358] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1064.789118][T16358] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1067.379145][T16662] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[ 1067.437364][T20240] vivid-009: =================  START STATUS  =================
[ 1067.667288][T20240] vivid-009: Generate PTS: true
[ 1067.750676][T20240] vivid-009: Generate SCR: true
[ 1067.808735][T20240] tpg source WxH: 320x240 (Y'CbCr)
[ 1067.869963][T20240] tpg field: 1
[ 1067.901996][T20240] tpg crop: (0,0)/320x240
[ 1067.944665][T20240] tpg compose: (0,0)/320x240
[ 1068.050234][T20240] tpg colorspace: 8
[ 1068.124006][T20240] tpg transfer function: 0/0
[ 1068.139606][T20246] device-mapper: ioctl: Invalid ioctl structure: name ��������d, dev 3000000000
[ 1068.216331][T20240] tpg Y'CbCr encoding: 0/0
[ 1068.266595][T20240] tpg quantization: 0/0
[ 1068.346185][T20240] tpg RGB range: 0/2
[ 1068.435281][T20240] vivid-009: ==================  END STATUS  ==================
[ 1069.051295][T20263] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2636'.
[ 1069.445341][T12105] Bluetooth: hci4: command 0x2016 tx timeout
[ 1069.574455][T20240] random: crng reseeded on system resumption
[ 1070.559069][T20284] random: crng reseeded on system resumption
[ 1071.525405][T16662] Bluetooth: hci4: command 0x2016 tx timeout
[ 1075.673810][T20352] FAULT_INJECTION: forcing a failure.
[ 1075.673810][T20352] name failslab, interval 1, probability 0, space 0, times 0
[ 1075.731656][T20352] CPU: 0 UID: 0 PID: 20352 Comm: syz.6.2653 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1075.731696][T20352] Tainted: [L]=SOFTLOCKUP
[ 1075.731704][T20352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1075.731720][T20352] Call Trace:
[ 1075.731728][T20352]  <TASK>
[ 1075.731736][T20352]  dump_stack_lvl+0x100/0x190
[ 1075.731767][T20352]  should_fail_ex.cold+0x5/0xa
[ 1075.731798][T20352]  should_failslab+0xc2/0x120
[ 1075.731828][T20352]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1075.731868][T20352]  ? security_inode_alloc+0x3b/0x2c0
[ 1075.731895][T20352]  ? lockdep_init_map_type+0x5c/0x250
[ 1075.731939][T20352]  security_inode_alloc+0x3b/0x2c0
[ 1075.731967][T20352]  inode_init_always_gfp+0xc77/0xfb0
[ 1075.732002][T20352]  alloc_inode+0x8e/0x250
[ 1075.732040][T20352]  path_from_stashed+0x25b/0x750
[ 1075.732073][T20352]  ? do_raw_spin_unlock+0x145/0x1e0
[ 1075.732105][T20352]  ns_get_path+0x60/0x80
[ 1075.732136][T20352]  proc_ns_get_link+0x121/0x230
[ 1075.732163][T20352]  ? __pfx_proc_ns_get_link+0x10/0x10
[ 1075.732193][T20352]  ? atime_needs_update+0x8b/0x6b0
[ 1075.732219][T20352]  pick_link+0xd17/0x13c0
[ 1075.732242][T20352]  ? __pfx_proc_ns_get_link+0x10/0x10
[ 1075.732272][T20352]  step_into_slowpath+0x9ba/0xf90
[ 1075.732304][T20352]  ? __pfx_step_into_slowpath+0x10/0x10
[ 1075.732329][T20352]  ? find_held_lock+0x2b/0x80
[ 1075.732368][T20352]  path_openat+0xf95/0x31a0
[ 1075.732408][T20352]  ? __pfx_path_openat+0x10/0x10
[ 1075.732449][T20352]  do_file_open+0x20e/0x430
[ 1075.732482][T20352]  ? __pfx_do_file_open+0x10/0x10
[ 1075.732543][T20352]  ? alloc_fd+0x476/0x790
[ 1075.732576][T20352]  ? do_getname+0x191/0x390
[ 1075.732615][T20352]  do_sys_openat2+0x10d/0x1e0
[ 1075.732654][T20352]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1075.732694][T20352]  ? __fget_files+0x21f/0x3d0
[ 1075.732736][T20352]  __x64_sys_openat+0x12d/0x210
[ 1075.732776][T20352]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1075.732821][T20352]  ? rcu_is_watching+0x12/0xc0
[ 1075.732853][T20352]  do_syscall_64+0x115/0x840
[ 1075.732887][T20352]  ? clear_bhb_loop+0x40/0x90
[ 1075.732916][T20352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1075.732942][T20352] RIP: 0033:0x7f212b55d68e
[ 1075.732961][T20352] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 1075.732985][T20352] RSP: 002b:00007f212c49fec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1075.733008][T20352] RAX: ffffffffffffffda RBX: 00007f212c4a06c0 RCX: 00007f212b55d68e
[ 1075.733024][T20352] RDX: 0000000000000002 RSI: 00007f212c49ff90 RDI: ffffffffffffff9c
[ 1075.733039][T20352] RBP: 00007f212b632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1075.733054][T20352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1075.733068][T20352] R13: 00007f212b816038 R14: 00007f212b815fa0 R15: 00007ffd528fa708
[ 1075.733098][T20352]  </TASK>
[ 1077.858502][T20359] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2655'.
[ 1078.353701][T20381] device-mapper: ioctl: Invalid ioctl structure: name ��������d, dev 3000000000
[ 1080.486176][T20416] FAULT_INJECTION: forcing a failure.
[ 1080.486176][T20416] name failslab, interval 1, probability 0, space 0, times 0
[ 1080.581110][T20416] CPU: 0 UID: 0 PID: 20416 Comm: syz.6.2665 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1080.581150][T20416] Tainted: [L]=SOFTLOCKUP
[ 1080.581158][T20416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1080.581173][T20416] Call Trace:
[ 1080.581182][T20416]  <TASK>
[ 1080.581191][T20416]  dump_stack_lvl+0x100/0x190
[ 1080.581220][T20416]  should_fail_ex.cold+0x5/0xa
[ 1080.581251][T20416]  ? cache_create_net+0xa2/0x1f0
[ 1080.581289][T20416]  should_failslab+0xc2/0x120
[ 1080.581320][T20416]  __kmalloc_noprof+0xe0/0x850
[ 1080.581349][T20416]  cache_create_net+0xa2/0x1f0
[ 1080.581389][T20416]  nfsd_idmap_init+0x11f/0x250
[ 1080.581418][T20416]  ? __pfx_nfsd_net_init+0x10/0x10
[ 1080.581455][T20416]  nfsd_net_init+0x85/0x3e0
[ 1080.581493][T20416]  ? __pfx_nfsd_net_init+0x10/0x10
[ 1080.581530][T20416]  ops_init+0x1e2/0x5f0
[ 1080.581559][T20416]  setup_net+0x118/0x3a0
[ 1080.581586][T20416]  ? __pfx_setup_net+0x10/0x10
[ 1080.581613][T20416]  ? mutex_init_lockdep+0xf1/0x120
[ 1080.581643][T20416]  copy_net_ns+0x46f/0x7c0
[ 1080.581674][T20416]  create_new_namespaces+0x3ea/0xac0
[ 1080.581712][T20416]  unshare_nsproxy_namespaces+0xf2/0x220
[ 1080.581746][T20416]  ksys_unshare+0x438/0xab0
[ 1080.581782][T20416]  ? __pfx_ksys_unshare+0x10/0x10
[ 1080.581816][T20416]  ? xfd_validate_state+0x129/0x190
[ 1080.581839][T20416]  ? ksys_write+0x1ac/0x250
[ 1080.581876][T20416]  __x64_sys_unshare+0x31/0x40
[ 1080.581918][T20416]  do_syscall_64+0x115/0x840
[ 1080.581953][T20416]  ? clear_bhb_loop+0x40/0x90
[ 1080.581983][T20416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1080.582008][T20416] RIP: 0033:0x7f212b59ce59
[ 1080.582027][T20416] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1080.582052][T20416] RSP: 002b:00007f212c4a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1080.582075][T20416] RAX: ffffffffffffffda RBX: 00007f212b815fa0 RCX: 00007f212b59ce59
[ 1080.582092][T20416] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1080.582106][T20416] RBP: 00007f212b632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1080.582121][T20416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1080.582135][T20416] R13: 00007f212b816038 R14: 00007f212b815fa0 R15: 00007ffd528fa708
[ 1080.582166][T20416]  </TASK>
[ 1082.351741][T20443] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2670'.
[ 1082.741650][T20453] ubi0: attaching mtd0
[ 1082.766605][T20453] ubi0: scanning is finished
[ 1082.788128][T20453] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1083.059386][T20453] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1084.621009][T12105] Bluetooth: hci4: unexpected event 0x1c length: 725 > 5
[ 1084.836801][T20498] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1086.051403][T15402] Process accounting resumed
[ 1087.362328][T20487] Process accounting resumed
[ 1087.721931][T20535] FAULT_INJECTION: forcing a failure.
[ 1087.721931][T20535] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1087.879490][T20535] CPU: 0 UID: 0 PID: 20535 Comm: syz.2.2686 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1087.879541][T20535] Tainted: [L]=SOFTLOCKUP
[ 1087.879551][T20535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1087.879566][T20535] Call Trace:
[ 1087.879574][T20535]  <TASK>
[ 1087.879582][T20535]  dump_stack_lvl+0x100/0x190
[ 1087.879612][T20535]  should_fail_ex.cold+0x5/0xa
[ 1087.879644][T20535]  get_futex_key+0x1d2/0x1510
[ 1087.879688][T20535]  ? __pfx_get_futex_key+0x10/0x10
[ 1087.879738][T20535]  futex_wake+0xea/0x530
[ 1087.879770][T20535]  ? __pfx_futex_wake+0x10/0x10
[ 1087.879801][T20535]  ? lockdep_hardirqs_on+0x78/0x100
[ 1087.879846][T20535]  do_futex+0x32b/0x350
[ 1087.879871][T20535]  ? __pfx_do_futex+0x10/0x10
[ 1087.879896][T20535]  ? __pfx___might_resched+0x10/0x10
[ 1087.879922][T20535]  ? blkcg_maybe_throttle_current+0x5e8/0xeb0
[ 1087.879966][T20535]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1087.880000][T20535]  __x64_sys_futex+0x34f/0x4d0
[ 1087.880027][T20535]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 1087.880058][T20535]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1087.880083][T20535]  ? exit_to_user_mode_loop+0xf3/0x670
[ 1087.880121][T20535]  ? rcu_is_watching+0x12/0xc0
[ 1087.880149][T20535]  ? exit_to_user_mode_loop+0xf3/0x670
[ 1087.880197][T20535]  ? rcu_is_watching+0x12/0xc0
[ 1087.880229][T20535]  do_syscall_64+0x115/0x840
[ 1087.880262][T20535]  ? clear_bhb_loop+0x40/0x90
[ 1087.880292][T20535]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1087.880317][T20535] RIP: 0033:0x7fca4399ce59
[ 1087.880336][T20535] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1087.880359][T20535] RSP: 002b:00007fca4491d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1087.880383][T20535] RAX: ffffffffffffffda RBX: 00007fca43c15fa8 RCX: 00007fca4399ce59
[ 1087.880398][T20535] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fca43c15fac
[ 1087.880413][T20535] RBP: 00007fca43c15fa0 R08: 0000000000000001 R09: 0000000000000000
[ 1087.880427][T20535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1087.880442][T20535] R13: 00007fca43c16038 R14: 00007ffec5c34810 R15: 00007ffec5c348f8
[ 1087.880472][T20535]  </TASK>
[ 1088.557910][T20533] vivid-007: =================  START STATUS  =================
[ 1088.591970][T20533] vivid-007: Generate PTS: true
[ 1088.611122][T20533] vivid-007: Generate SCR: true
[ 1088.630242][T20533] tpg source WxH: 320x240 (Y'CbCr)
[ 1088.651775][T20533] tpg field: 1
[ 1088.659226][T20533] tpg crop: (0,0)/320x240
[ 1088.667852][T20533] tpg compose: (0,0)/320x240
[ 1088.677972][T20533] tpg colorspace: 8
[ 1088.686823][T20533] tpg transfer function: 0/0
[ 1088.696456][T20533] tpg Y'CbCr encoding: 0/0
[ 1088.720108][T20533] tpg quantization: 0/0
[ 1088.763900][T20533] tpg RGB range: 0/2
[ 1088.809554][T20533] vivid-007: ==================  END STATUS  ==================
[ 1089.922945][T20567] FAULT_INJECTION: forcing a failure.
[ 1089.922945][T20567] name failslab, interval 1, probability 0, space 0, times 0
[ 1090.005339][T20567] CPU: 0 UID: 0 PID: 20567 Comm: syz.6.2692 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1090.005379][T20567] Tainted: [L]=SOFTLOCKUP
[ 1090.005388][T20567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1090.005403][T20567] Call Trace:
[ 1090.005411][T20567]  <TASK>
[ 1090.005420][T20567]  dump_stack_lvl+0x100/0x190
[ 1090.005450][T20567]  should_fail_ex.cold+0x5/0xa
[ 1090.005481][T20567]  should_failslab+0xc2/0x120
[ 1090.005512][T20567]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1090.005552][T20567]  ? __proc_create+0x2cb/0x8c0
[ 1090.005589][T20567]  __proc_create+0x2cb/0x8c0
[ 1090.005622][T20567]  ? __pfx___proc_create+0x10/0x10
[ 1090.005657][T20567]  ? _raw_write_unlock+0x28/0x50
[ 1090.005690][T20567]  ? proc_register+0x559/0x8a0
[ 1090.005729][T20567]  proc_create_reg+0x75/0x170
[ 1090.005765][T20567]  proc_create_data+0x86/0x110
[ 1090.005799][T20567]  ? __pfx_proc_create_data+0x10/0x10
[ 1090.005833][T20567]  ? cache_register_net+0x137/0x5e0
[ 1090.005856][T20567]  ? cache_register_net+0x137/0x5e0
[ 1090.005885][T20567]  cache_register_net+0x2d6/0x5e0
[ 1090.005911][T20567]  nfsd_idmap_init+0x16e/0x250
[ 1090.005940][T20567]  ? __pfx_nfsd_net_init+0x10/0x10
[ 1090.005977][T20567]  nfsd_net_init+0x85/0x3e0
[ 1090.006028][T20567]  ? __pfx_nfsd_net_init+0x10/0x10
[ 1090.006065][T20567]  ops_init+0x1e2/0x5f0
[ 1090.006095][T20567]  setup_net+0x118/0x3a0
[ 1090.006122][T20567]  ? __pfx_setup_net+0x10/0x10
[ 1090.006148][T20567]  ? mutex_init_lockdep+0xf1/0x120
[ 1090.006177][T20567]  copy_net_ns+0x46f/0x7c0
[ 1090.006209][T20567]  create_new_namespaces+0x3ea/0xac0
[ 1090.006247][T20567]  unshare_nsproxy_namespaces+0xf2/0x220
[ 1090.006281][T20567]  ksys_unshare+0x438/0xab0
[ 1090.006318][T20567]  ? __pfx_ksys_unshare+0x10/0x10
[ 1090.006352][T20567]  ? xfd_validate_state+0x129/0x190
[ 1090.006375][T20567]  ? ksys_write+0x1ac/0x250
[ 1090.006412][T20567]  __x64_sys_unshare+0x31/0x40
[ 1090.006446][T20567]  do_syscall_64+0x115/0x840
[ 1090.006480][T20567]  ? clear_bhb_loop+0x40/0x90
[ 1090.006510][T20567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1090.006535][T20567] RIP: 0033:0x7f212b59ce59
[ 1090.006555][T20567] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1090.006580][T20567] RSP: 002b:00007f212c4a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1090.006603][T20567] RAX: ffffffffffffffda RBX: 00007f212b815fa0 RCX: 00007f212b59ce59
[ 1090.006619][T20567] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1090.006634][T20567] RBP: 00007f212b632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1090.006648][T20567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1090.006662][T20567] R13: 00007f212b816038 R14: 00007f212b815fa0 R15: 00007ffd528fa708
[ 1090.006693][T20567]  </TASK>
[ 1090.700357][T20553] Process accounting paused
[ 1090.895366][T20572] vivid-008: =================  START STATUS  =================
[ 1090.964797][T20572] vivid-008: ==================  END STATUS  ==================
[ 1091.034756][T12105] Bluetooth: hci4: unexpected subevent 0x01 length: 123 > 18
[ 1091.042773][T12105] Bluetooth: hci4: Invalid handle: 0x3a4a > 0x0eff
[ 1093.062403][    T9] Process accounting resumed
[ 1094.269980][T20576] Process accounting resumed
[ 1096.467280][T20655] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[ 1096.497839][T20655] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[ 1096.545210][T20655] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[ 1096.581930][T20655] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[ 1096.624361][T20655] page dumped because: unmovable page
[ 1096.659168][T20655] page_owner info is not present (never set?)
[ 1097.375296][T16662] Bluetooth: hci1: command 0x0406 tx timeout
[ 1097.696385][T12105] Bluetooth: hci1: unexpected event for opcode 0x7c89
[ 1098.259249][T20697] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2719'.
[ 1099.073556][T20713] netlink: 'syz.0.2721': attribute type 21 has an invalid length.
[ 1099.116019][T20713] netlink: 'syz.0.2721': attribute type 3 has an invalid length.
[ 1099.151577][T20713] netlink: 306 bytes leftover after parsing attributes in process `syz.0.2721'.
[ 1099.199336][T20713] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1100.363413][T20730] random: crng reseeded on system resumption
[ 1102.190963][T20751] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1102.268554][T20751] vhci_hcd vhci_hcd.1: Wrong hub descriptor type for USB 3.0 roothub.
[ 1104.041705][T20770] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2734'.
[ 1104.584557][T20797] netlink: zone id is out of range
[ 1104.644085][T20797] netlink: zone id is out of range
[ 1104.700286][T20797] netlink: zone id is out of range
[ 1104.782816][T20797] netlink: zone id is out of range
[ 1104.852953][T20797] netlink: zone id is out of range
[ 1104.925068][T20797] netlink: zone id is out of range
[ 1104.992821][T20797] netlink: zone id is out of range
[ 1105.073970][T20797] netlink: zone id is out of range
[ 1105.141802][T20797] netlink: zone id is out of range
[ 1105.203095][T20797] netlink: zone id is out of range
[ 1106.770513][T20828] EXT4-fs (sda1): Delayed block allocation failed for inode 2031 at logical offset 14 with max blocks 45 with error 117
[ 1107.134676][T20828] EXT4-fs (sda1): This should not happen!! Data will be lost
[ 1107.134676][T20828] 
[ 1108.290200][T20874] random: crng reseeded on system resumption
[ 1108.766988][T20879] can: request_module (can-proto-4) failed.
[ 1108.864537][T20890] MTRR 0 not used
[ 1110.849180][T20925] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2750'.
[ 1112.058801][   T29] audit: type=1800 audit(524210.117:19): pid=20944 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2753" name="sr0" dev="devtmpfs" ino=2912 res=0 errno=0
[ 1113.060654][T20940] ima: policy update failed
[ 1113.111481][   T29] audit: type=1802 audit(524211.177:20): pid=20940 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.2752" res=0 errno=0
[ 1114.655333][T20983] ubi0: attaching mtd0
[ 1114.692086][T20983] ubi0: scanning is finished
[ 1114.713730][T20983] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1114.904483][T20983] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1115.777637][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.789069][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1118.320925][T21027] Process accounting paused
[ 1118.504264][T21035] nbd: must specify a size in bytes for the device
[ 1120.429544][T21035] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1121.082024][T21064] random: crng reseeded on system resumption
[ 1122.668908][T21091] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1123.989352][T21127] zswap: compressor Z�u��~���^��8��a��cu0���|��,a����Rr�qP������'��)��ޱ`�*�]���T]�X��؃(ۂ�TN�>�_��r$�������z��&�[+x[DPx�e?��m��3Q�z not available
[ 1124.141397][T21126] NFSD: Failed to start, no listeners configured.
[ 1124.538243][T21140] FAULT_INJECTION: forcing a failure.
[ 1124.538243][T21140] name failslab, interval 1, probability 0, space 0, times 0
[ 1124.624652][T21140] CPU: 0 UID: 0 PID: 21140 Comm: syz.6.2797 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1124.624690][T21140] Tainted: [L]=SOFTLOCKUP
[ 1124.624698][T21140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1124.624712][T21140] Call Trace:
[ 1124.624719][T21140]  <TASK>
[ 1124.624727][T21140]  dump_stack_lvl+0x100/0x190
[ 1124.624756][T21140]  should_fail_ex.cold+0x5/0xa
[ 1124.624786][T21140]  should_failslab+0xc2/0x120
[ 1124.624814][T21140]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1124.624852][T21140]  ? do_getname+0x35/0x390
[ 1124.624886][T21140]  ? find_held_lock+0x2b/0x80
[ 1124.624919][T21140]  do_getname+0x35/0x390
[ 1124.624956][T21140]  do_sys_openat2+0xc5/0x1e0
[ 1124.624993][T21140]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1124.625030][T21140]  ? rcu_is_watching+0x12/0xc0
[ 1124.625064][T21140]  __x64_sys_openat+0x12d/0x210
[ 1124.625105][T21140]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1124.625148][T21140]  ? rcu_is_watching+0x12/0xc0
[ 1124.625177][T21140]  do_syscall_64+0x115/0x840
[ 1124.625210][T21140]  ? clear_bhb_loop+0x40/0x90
[ 1124.625239][T21140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1124.625263][T21140] RIP: 0033:0x7f212b59ce59
[ 1124.625281][T21140] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1124.625305][T21140] RSP: 002b:00007f212c47f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1124.625328][T21140] RAX: ffffffffffffffda RBX: 00007f212b816090 RCX: 00007f212b59ce59
[ 1124.625343][T21140] RDX: 0000000000020401 RSI: 0000000000000000 RDI: ffffffffffffff9c
[ 1124.625358][T21140] RBP: 00007f212b632d6f R08: 0000000000000000 R09: 0000000000000000
[ 1124.625372][T21140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1124.625386][T21140] R13: 00007f212b816128 R14: 00007f212b816090 R15: 00007ffd528fa708
[ 1124.625415][T21140]  </TASK>
[ 1126.324553][T21133] Process accounting paused
[ 1128.929228][T21178] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1131.059313][T21249] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2816'.
[ 1131.267607][T21249] hsr_slave_0 (unregistering): left promiscuous mode
[ 1132.360586][T21266] zswap: compressor Z�u��~���^��8��a��cu0���|��,a����Rr�qP������'��)��ޱ`�*�]���T]�X��؃(ۂ�TN�>�_��r$�������z��&�[+x[DPx�e?��m��3Q�z not available
[ 1133.057791][T21264] NFSD: Failed to start, no listeners configured.
[ 1142.287158][T21438] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2847'.
[ 1142.761348][T21443] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2849'.
[ 1142.827693][T21443] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2849'.
[ 1151.173366][T16662] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1151.189394][T16662] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1151.202613][T16662] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1151.225017][T16662] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1151.232721][T16662] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1152.152513][T21504] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1152.185242][T21504] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1152.192562][T21504] bridge_slave_0: entered allmulticast mode
[ 1152.216986][T21504] bridge_slave_0: entered promiscuous mode
[ 1152.230079][T21504] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1152.253001][T21504] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1152.275568][T21504] bridge_slave_1: entered allmulticast mode
[ 1152.285413][T21504] bridge_slave_1: entered promiscuous mode
[ 1152.371256][T21504] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1152.400347][T21504] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1152.483120][T21504] team0: Port device team_slave_0 added
[ 1152.508050][T21504] team0: Port device team_slave_1 added
[ 1152.573223][T21504] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1152.596971][T21504] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1152.650336][T21504] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1152.677669][T21504] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1152.695374][T21504] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1152.752701][T21504] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1152.858983][T21504] hsr_slave_0: entered promiscuous mode
[ 1152.876121][T21504] hsr_slave_1: entered promiscuous mode
[ 1152.887087][T21504] debugfs: 'hsr0' already exists in 'hsr'
[ 1152.906581][T21504] Cannot create hsr debugfs directory
[ 1153.289456][T16662] Bluetooth: hci0: command tx timeout
[ 1153.466827][T21504] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1153.497791][T21504] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1153.518563][T21504] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1153.539942][T21504] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1153.556672][T21504] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1153.586178][T21504] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1153.608214][T21504] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1153.631268][T21504] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1153.831179][T21504] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1153.875739][T21504] 8021q: adding VLAN 0 to HW filter on device team0
[ 1153.902060][T12530] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1153.909274][T12530] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1153.954525][T12530] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1153.961719][T12530] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1154.862869][T21504] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1155.241828][T21504] veth0_vlan: entered promiscuous mode
[ 1155.257748][T21504] veth1_vlan: entered promiscuous mode
[ 1155.320753][T21504] veth0_macvtap: entered promiscuous mode
[ 1155.335571][T21504] veth1_macvtap: entered promiscuous mode
[ 1155.358472][T21504] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1155.366513][T16662] Bluetooth: hci0: command tx timeout
[ 1155.387433][T21504] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1155.403387][T12530] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1155.424970][T12530] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1155.437006][T12530] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1155.477028][T12530] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1155.754943][T16356] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1155.791237][T16356] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1155.860726][T12530] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1155.880006][T12530] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1155.962116][T12105] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1155.982408][T12105] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1155.996191][T12105] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1156.021075][T12105] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1156.031025][T12105] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1157.111681][T21548] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1157.121650][T21548] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1157.131331][T21548] bridge_slave_0: entered allmulticast mode
[ 1157.141143][T21548] bridge_slave_0: entered promiscuous mode
[ 1157.153167][T21548] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1157.162264][T21548] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1157.170932][T21548] bridge_slave_1: entered allmulticast mode
[ 1157.179517][T21548] bridge_slave_1: entered promiscuous mode
[ 1157.224970][T21548] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1157.241815][T21548] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1157.282192][T21548] team0: Port device team_slave_0 added
[ 1157.293594][T21548] team0: Port device team_slave_1 added
[ 1157.324514][T21548] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1157.332939][T21548] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1157.370183][T21548] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1157.383111][T21548] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1157.394453][T21548] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1157.438136][T21548] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1157.456771][T12105] Bluetooth: hci0: command tx timeout
[ 1157.514102][T21548] hsr_slave_0: entered promiscuous mode
[ 1157.521146][T21548] hsr_slave_1: entered promiscuous mode
[ 1157.529617][T21548] debugfs: 'hsr0' already exists in 'hsr'
[ 1157.535784][T21548] Cannot create hsr debugfs directory
[ 1158.080755][T12105] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[ 1158.088715][T16662] Bluetooth: hci5: command tx timeout
[ 1158.133214][T21548] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1158.162284][T21548] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1158.193086][T21548] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1158.203713][T21548] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1158.230477][T21548] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1158.254701][T21548] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1158.284575][T21548] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1158.304855][T21548] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1158.436298][T21548] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1158.461540][T21548] 8021q: adding VLAN 0 to HW filter on device team0
[ 1158.478763][T14763] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1158.486005][T14763] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1158.523950][T14763] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1158.531176][T14763] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1158.592773][T21548] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1159.036102][T21548] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1159.320921][T21548] veth0_vlan: entered promiscuous mode
[ 1159.337579][T21548] veth1_vlan: entered promiscuous mode
[ 1159.384958][T21548] veth0_macvtap: entered promiscuous mode
[ 1159.397684][T21548] veth1_macvtap: entered promiscuous mode
[ 1159.420459][T21548] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1159.442591][T21548] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1159.481367][T16356] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.507959][T16356] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.528992][T16662] Bluetooth: hci0: command tx timeout
[ 1159.588634][T16356] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.614870][T16356] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1159.892972][T12530] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1159.946005][T12530] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1160.034822][T12087] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1160.063564][T12087] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1160.072715][T12087] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1160.081552][T12087] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1160.099927][T12087] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1160.166331][T12105] Bluetooth: hci5: command tx timeout
[ 1160.208103][T16354] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1160.232743][T16354] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1161.606500][T16662] Bluetooth: hci0: command 0x2016 tx timeout
[ 1161.837231][T21608] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1161.852616][T21608] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1161.860855][T21608] bridge_slave_0: entered allmulticast mode
[ 1161.873620][T21608] bridge_slave_0: entered promiscuous mode
[ 1161.886760][T21608] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1161.894082][T21608] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1161.911194][T21608] bridge_slave_1: entered allmulticast mode
[ 1161.919697][T21608] bridge_slave_1: entered promiscuous mode
[ 1161.970632][T21608] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1161.983383][T21608] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1162.031121][T21608] team0: Port device team_slave_0 added
[ 1162.039575][T21608] team0: Port device team_slave_1 added
[ 1162.072801][T21608] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1162.080094][T21608] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1162.114768][T21608] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1162.137585][T21608] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1162.144678][T21608] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1162.176245][T21608] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1162.239297][T21608] hsr_slave_0: entered promiscuous mode
[ 1162.246451][T12105] Bluetooth: hci6: command tx timeout
[ 1162.254873][T16662] Bluetooth: hci5: command tx timeout
[ 1162.267019][T21608] hsr_slave_1: entered promiscuous mode
[ 1162.273303][T21608] debugfs: 'hsr0' already exists in 'hsr'
[ 1162.281611][T21608] Cannot create hsr debugfs directory
[ 1163.210397][T21608] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1163.262440][T21608] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1163.287495][T21608] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1163.330491][T21608] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1163.356377][T21608] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1163.408272][T21608] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1163.446169][T16662] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1163.469805][T16662] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1163.481273][T16662] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1163.499865][T16662] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1163.510451][T16662] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1163.523993][T21608] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1163.625643][T21608] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1163.685912][T16662] Bluetooth: hci0: command 0x2016 tx timeout
[ 1164.046507][T21608] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1164.161378][T21608] 8021q: adding VLAN 0 to HW filter on device team0
[ 1164.258932][T16354] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1164.266177][T16354] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1164.325998][T12105] Bluetooth: hci5: command tx timeout
[ 1164.331509][T16662] Bluetooth: hci6: command tx timeout
[ 1164.353492][T12530] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1164.360690][T12530] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1165.605669][T16662] Bluetooth: hci7: command tx timeout
[ 1165.682390][T21678] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1166.405679][T16662] Bluetooth: hci6: command tx timeout
[ 1166.418763][T21608] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1166.523977][T21656] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1166.558659][T21656] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1166.590738][T21656] bridge_slave_0: entered allmulticast mode
[ 1166.628237][T21656] bridge_slave_0: entered promiscuous mode
[ 1166.668795][T21656] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1166.703271][T21656] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1166.742346][T21656] bridge_slave_1: entered allmulticast mode
[ 1166.774889][T21656] bridge_slave_1: entered promiscuous mode
[ 1166.954543][T21656] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1167.040685][T21656] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1167.184685][T21656] team0: Port device team_slave_0 added
[ 1167.228834][T21656] team0: Port device team_slave_1 added
[ 1167.364827][T21656] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1167.397900][T21656] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1167.432878][T21656] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1167.486963][T21656] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1167.508805][T21656] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1167.593452][T21656] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1167.669364][T21608] veth0_vlan: entered promiscuous mode
[ 1167.686713][T16662] Bluetooth: hci7: command tx timeout
[ 1167.779105][T21608] veth1_vlan: entered promiscuous mode
[ 1167.793979][T21656] hsr_slave_0: entered promiscuous mode
[ 1167.807523][T21656] hsr_slave_1: entered promiscuous mode
[ 1167.814034][T21656] debugfs: 'hsr0' already exists in 'hsr'
[ 1167.820210][T21656] Cannot create hsr debugfs directory
[ 1167.918580][T21608] veth0_macvtap: entered promiscuous mode
[ 1167.948603][T21608] veth1_macvtap: entered promiscuous mode
[ 1168.012979][T21608] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1168.060154][T21608] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1168.098126][T16356] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1168.472124][T16356] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1168.485833][T16662] Bluetooth: hci6: command tx timeout
[ 1168.513224][T16356] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1168.729400][T16356] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1169.314354][T16357] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1169.398014][T16357] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1169.497166][T16357] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1169.536375][T16357] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1169.768070][T16662] Bluetooth: hci7: command tx timeout
[ 1170.384564][T21656] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1170.404423][T21656] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1170.409311][T21656] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1170.424045][T21656] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1170.478883][T21656] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1170.493475][T21656] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1170.507311][T21656] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1170.531725][T21656] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1171.200412][T21656] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1171.308276][T21656] 8021q: adding VLAN 0 to HW filter on device team0
[ 1171.343232][T16357] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1171.345239][T16357] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1171.372988][T16356] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1171.373094][T16356] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1171.846077][T16662] Bluetooth: hci7: command tx timeout
[ 1173.382270][T21769] input input13: cannot allocate more than FF_MAX_EFFECTS effects
[ 1174.092158][T21656] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1174.170314][T12105] Bluetooth: hci2: command 0x0406 tx timeout
[ 1174.396617][T21656] veth0_vlan: entered promiscuous mode
[ 1174.465739][T21656] veth1_vlan: entered promiscuous mode
[ 1174.819261][T21656] veth0_macvtap: entered promiscuous mode
[ 1174.937490][T21656] veth1_macvtap: entered promiscuous mode
[ 1175.030852][T21656] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1175.084873][T21656] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1175.143341][T12533] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1175.180202][T12533] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1175.219200][T12533] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1175.258226][T12533] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1175.652978][T16357] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1175.701039][T16357] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1176.038768][T16357] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1176.088675][T16357] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1177.211954][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.222459][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.034742][T12105] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1178.060524][T12105] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1178.075819][T12105] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1178.090311][T12105] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1178.101654][T12105] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1179.958614][T21881] GUP no longer grows the stack in syz.1.2892 (21881): 5000-401000 (4000)
[ 1180.023500][T21881] CPU: 0 UID: 0 PID: 21881 Comm: syz.1.2892 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1180.023540][T21881] Tainted: [L]=SOFTLOCKUP
[ 1180.023550][T21881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1180.023565][T21881] Call Trace:
[ 1180.023573][T21881]  <TASK>
[ 1180.023583][T21881]  dump_stack_lvl+0x100/0x190
[ 1180.023613][T21881]  gup_vma_lookup.cold+0x83/0x96
[ 1180.023653][T21881]  __get_user_pages+0x241/0x32a0
[ 1180.023695][T21881]  ? down_read_killable+0x307/0x4b0
[ 1180.023719][T21881]  ? finish_task_switch.isra.0+0x2cb/0x1010
[ 1180.023753][T21881]  ? __pfx___get_user_pages+0x10/0x10
[ 1180.023794][T21881]  __gup_longterm_locked+0x87d/0x16f0
[ 1180.023826][T21881]  ? __lock_acquire+0x4a5/0x2630
[ 1180.023872][T21881]  ? __pfx___gup_longterm_locked+0x10/0x10
[ 1180.023906][T21881]  ? lock_acquire+0x1b1/0x370
[ 1180.023955][T21881]  gup_fast_fallback+0x16dc/0x2790
[ 1180.024008][T21881]  ? __pfx_gup_fast_fallback+0x10/0x10
[ 1180.024043][T21881]  ? __lock_acquire+0x4a5/0x2630
[ 1180.024083][T21881]  ? finish_task_switch.isra.0+0x2cb/0x1010
[ 1180.024115][T21881]  ? lockdep_hardirqs_on+0x78/0x100
[ 1180.024154][T21881]  get_user_pages_fast+0xa7/0xf0
[ 1180.024186][T21881]  ? __pfx_get_user_pages_fast+0x10/0x10
[ 1180.024236][T21881]  __iov_iter_get_pages_alloc+0x8f2/0x1f20
[ 1180.024278][T21881]  ? pipe_lock+0x69/0x80
[ 1180.024310][T21881]  ? __pfx___iov_iter_get_pages_alloc+0x10/0x10
[ 1180.024347][T21881]  ? __pfx___mutex_lock+0x10/0x10
[ 1180.024386][T21881]  ? iovec_from_user+0xda/0x140
[ 1180.024428][T21881]  iov_iter_get_pages2+0xa3/0x100
[ 1180.024463][T21881]  ? __pfx_iov_iter_get_pages2+0x10/0x10
[ 1180.024499][T21881]  ? wait_for_space+0x2ca/0x3b0
[ 1180.024535][T21881]  __do_sys_vmsplice+0x7dd/0x13c0
[ 1180.024579][T21881]  ? __pfx___do_sys_vmsplice+0x10/0x10
[ 1180.024621][T21881]  ? __pfx_futex_wait+0x10/0x10
[ 1180.024701][T21881]  ? do_syscall_64+0x115/0x840
[ 1180.024735][T21881]  do_syscall_64+0x115/0x840
[ 1180.024769][T21881]  ? clear_bhb_loop+0x40/0x90
[ 1180.024799][T21881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1180.024825][T21881] RIP: 0033:0x7f572779ce59
[ 1180.024845][T21881] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1180.024870][T21881] RSP: 002b:00007f572868a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[ 1180.024894][T21881] RAX: ffffffffffffffda RBX: 00007f5727a16090 RCX: 00007f572779ce59
[ 1180.024911][T21881] RDX: 0000000000000006 RSI: 0000200000000000 RDI: 0000000000000000
[ 1180.024926][T21881] RBP: 00007f5727832d6f R08: 0000000000000000 R09: 0000000000000000
[ 1180.024941][T21881] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[ 1180.024957][T21881] R13: 00007f5727a16128 R14: 00007f5727a16090 R15: 00007ffd744237e8
[ 1180.024988][T21881]  </TASK>
[ 1180.777460][T12105] Bluetooth: hci8: command tx timeout
[ 1181.342960][T21879] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1181.384013][T21879] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1181.412918][T21879] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1181.473306][T21879] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1181.486022][T21879] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1181.513411][T21879] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1181.531408][T16662] Bluetooth: hci4: command 0x2016 tx timeout
[ 1181.547266][T21879] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1181.642731][T21879] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1181.714755][T21879] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1181.740780][T21879] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1181.820532][T21879] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1181.877943][T21879] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1181.892441][T21879] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 1181.943004][T21879] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 1181.973598][T21879] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1182.000125][T21879] Bluetooth: hci7: Opcode 0x0406 failed: -4
[ 1182.033775][T21879] Bluetooth: hci7: Opcode 0x0406 failed: -4
[ 1182.082678][T21879] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1182.106577][T21879] Bluetooth: hci8: Opcode 0x0406 failed: -4
[ 1182.153157][T21879] Bluetooth: hci8: Opcode 0x0406 failed: -4
[ 1182.899723][T21913] __vm_enough_memory: pid: 21913, comm: syz.9.2894, bytes: 4398046457856 not enough memory for the allocation
[ 1183.446167][T16662] Bluetooth: hci1: command 0x0406 tx timeout
[ 1183.525682][T16662] Bluetooth: hci2: command 0x0406 tx timeout
[ 1183.609600][T16662] Bluetooth: hci0: command 0x2016 tx timeout
[ 1183.732106][T21858] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1183.766083][T16662] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1183.811739][T21858] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1183.861455][T21858] bridge_slave_0: entered allmulticast mode
[ 1183.929767][T21858] bridge_slave_0: entered promiscuous mode
[ 1183.939034][T16662] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1184.016844][T16662] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1184.054777][T21858] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1184.087352][T16662] Bluetooth: hci8: command 0x040f tx timeout
[ 1184.112364][T21858] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1184.152332][T21858] bridge_slave_1: entered allmulticast mode
[ 1184.190034][T21858] bridge_slave_1: entered promiscuous mode
[ 1184.280155][T21933] Process accounting resumed
[ 1184.400838][T21858] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1184.503664][T21858] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1184.779072][T21858] team0: Port device team_slave_0 added
[ 1184.823681][T21858] team0: Port device team_slave_1 added
[ 1185.146382][T21858] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1185.183539][T21858] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1185.320965][T21858] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1185.439413][T21858] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1185.491246][T21858] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1185.538697][T16662] Bluetooth: hci1: command 0x0406 tx timeout
[ 1185.606492][T16662] Bluetooth: hci2: command 0x0406 tx timeout
[ 1185.667584][T21858] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1185.687785][T16662] Bluetooth: hci0: command 0x2016 tx timeout
[ 1185.846703][T16662] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1186.008092][T16662] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1186.089666][T16662] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1186.169462][T16662] Bluetooth: hci8: command 0x040f tx timeout
[ 1186.279422][T21858] hsr_slave_0: entered promiscuous mode
[ 1186.308347][T21858] hsr_slave_1: entered promiscuous mode
[ 1186.328127][T21858] debugfs: 'hsr0' already exists in 'hsr'
[ 1186.359929][T21858] Cannot create hsr debugfs directory
[ 1187.766297][T16662] Bluetooth: hci0: command 0x2016 tx timeout
[ 1187.925969][T16662] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1188.087025][T16662] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1188.165780][T16662] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1188.246728][T16662] Bluetooth: hci8: command 0x040f tx timeout
[ 1190.325522][T16662] Bluetooth: hci8: command 0x040f tx timeout
[ 1191.008981][T21858] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1191.064792][T21858] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1191.112895][T21858] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1191.189275][T21858] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1191.237505][T21858] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1191.293882][T21858] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1191.341520][T21858] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1191.403436][T21858] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1191.514938][T22029] vhci_hcd vhci_hcd.2: invalid port number 194
[ 1191.590653][T22029] vhci_hcd vhci_hcd.2: invalid port number 194
[ 1191.880906][   T29] audit: type=1804 audit(524289.937:21): pid=22029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.2907" name="/newroot/22/file0" dev="tmpfs" ino=136 res=1 errno=0
[ 1191.998137][   T29] audit: type=1804 audit(524289.987:22): pid=22046 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.7.2907" name="/newroot/22/file0" dev="tmpfs" ino=136 res=1 errno=0
[ 1192.405774][T16662] Bluetooth: hci8: command 0x040f tx timeout
[ 1192.583209][T21858] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1192.724082][T21858] 8021q: adding VLAN 0 to HW filter on device team0
[ 1192.810512][T14763] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1192.817779][T14763] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1193.245782][T14763] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1193.252975][T14763] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1195.073421][T22086] ubi0: attaching mtd0
[ 1195.118606][T22086] ubi0: scanning is finished
[ 1195.194386][T22086] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1195.680740][T22086] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1195.941425][T21858] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1196.194124][T21858] veth0_vlan: entered promiscuous mode
[ 1196.257499][T21858] veth1_vlan: entered promiscuous mode
[ 1196.492127][T21858] veth0_macvtap: entered promiscuous mode
[ 1196.554122][T21858] veth1_macvtap: entered promiscuous mode
[ 1196.662617][T21858] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1196.724383][T21858] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1196.803860][T14763] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1196.846235][T16356] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1196.896769][T16356] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1196.941799][T16356] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1196.983572][T22110] FAULT_INJECTION: forcing a failure.
[ 1196.983572][T22110] name failslab, interval 1, probability 0, space 0, times 0
[ 1197.187228][T22110] CPU: 0 UID: 0 PID: 22110 Comm: syz.9.2911 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1197.187268][T22110] Tainted: [L]=SOFTLOCKUP
[ 1197.187277][T22110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1197.187293][T22110] Call Trace:
[ 1197.187301][T22110]  <TASK>
[ 1197.187312][T22110]  dump_stack_lvl+0x100/0x190
[ 1197.187342][T22110]  should_fail_ex.cold+0x5/0xa
[ 1197.187375][T22110]  should_failslab+0xc2/0x120
[ 1197.187405][T22110]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[ 1197.187432][T22110]  ? nf_ct_net_init+0x11c/0x370
[ 1197.187470][T22110]  ? rhashtable_init_noprof+0x50e/0x890
[ 1197.187501][T22110]  ? rhashtable_init_noprof+0x62d/0x890
[ 1197.187530][T22110]  ? kasan_save_track+0x14/0x30
[ 1197.187560][T22110]  kmemdup_noprof+0x29/0x60
[ 1197.187586][T22110]  nf_ct_net_init+0x11c/0x370
[ 1197.187626][T22110]  ? __pfx_nf_ct_net_init+0x10/0x10
[ 1197.187665][T22110]  ops_init+0x1e2/0x5f0
[ 1197.187695][T22110]  setup_net+0x118/0x3a0
[ 1197.187723][T22110]  ? __pfx_setup_net+0x10/0x10
[ 1197.187750][T22110]  ? mutex_init_lockdep+0xf1/0x120
[ 1197.187780][T22110]  copy_net_ns+0x46f/0x7c0
[ 1197.187813][T22110]  create_new_namespaces+0x3ea/0xac0
[ 1197.187851][T22110]  unshare_nsproxy_namespaces+0xf2/0x220
[ 1197.187886][T22110]  ksys_unshare+0x438/0xab0
[ 1197.187923][T22110]  ? __pfx_ksys_unshare+0x10/0x10
[ 1197.187958][T22110]  ? xfd_validate_state+0x129/0x190
[ 1197.187982][T22110]  ? exit_to_user_mode_loop+0xf3/0x670
[ 1197.188048][T22110]  __x64_sys_unshare+0x31/0x40
[ 1197.188084][T22110]  do_syscall_64+0x115/0x840
[ 1197.188121][T22110]  ? clear_bhb_loop+0x40/0x90
[ 1197.188150][T22110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1197.188176][T22110] RIP: 0033:0x7fb953b9ce59
[ 1197.188197][T22110] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1197.188221][T22110] RSP: 002b:00007fb954a44028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1197.188248][T22110] RAX: ffffffffffffffda RBX: 00007fb953e15fa0 RCX: 00007fb953b9ce59
[ 1197.188265][T22110] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1197.188280][T22110] RBP: 00007fb953c32d6f R08: 0000000000000000 R09: 0000000000000000
[ 1197.188295][T22110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1197.188310][T22110] R13: 00007fb953e16038 R14: 00007fb953e15fa0 R15: 00007ffd41d06fb8
[ 1197.188341][T22110]  </TASK>
[ 1198.396902][T16357] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1198.415904][T16357] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1198.624321][T16357] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1198.676220][T16357] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1199.697691][T22144] bonding: &I�r��h,�|� is being created...
[ 1200.974998][T22161] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1201.202338][T16662] Bluetooth: hci8: unexpected event 0x31 length: 19 > 6
[ 1202.571914][T12105] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1202.601738][T12105] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1202.617205][T12105] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1202.639714][T12105] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1202.656046][T12105] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1203.271046][T22177] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1204.728883][T12105] Bluetooth: hci9: command tx timeout
[ 1206.447371][T22251] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2929'.
[ 1206.503553][T22251] netlink: 13 bytes leftover after parsing attributes in process `syz.9.2929'.
[ 1206.805808][T12105] Bluetooth: hci9: command tx timeout
[ 1207.338744][T22196] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1207.402848][T22196] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1207.483585][T22196] bridge_slave_0: entered allmulticast mode
[ 1207.531707][T22196] bridge_slave_0: entered promiscuous mode
[ 1207.597642][T22196] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1207.649018][T22196] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1207.683712][T22196] bridge_slave_1: entered allmulticast mode
[ 1207.724006][T22196] bridge_slave_1: entered promiscuous mode
[ 1208.095752][T22196] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1208.172660][T22196] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1208.615999][T22196] team0: Port device team_slave_0 added
[ 1208.668622][T22196] team0: Port device team_slave_1 added
[ 1208.873663][T22196] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1208.884005][T22283] netlink: 172 bytes leftover after parsing attributes in process `syz.3.2932'.
[ 1208.906918][T12105] Bluetooth: hci9: command tx timeout
[ 1208.933789][T22196] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1209.137428][T22196] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1209.250128][T22196] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1209.312280][T22196] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1209.371609][T22289] : Can't lookup blockdev
[ 1209.488429][T22196] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1209.934178][T22196] hsr_slave_0: entered promiscuous mode
[ 1209.974532][T22196] hsr_slave_1: entered promiscuous mode
[ 1210.041781][T22196] debugfs: 'hsr0' already exists in 'hsr'
[ 1210.090848][T22196] Cannot create hsr debugfs directory
[ 1210.965406][T12105] Bluetooth: hci9: command tx timeout
[ 1212.592424][T22333] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2940'.
[ 1214.524824][T22358] : Can't lookup blockdev
[ 1214.739296][T12105] Bluetooth: hci8: unexpected event for opcode 0x7c89
[ 1215.355342][T22342] Process accounting paused
[ 1215.878764][T22377] net_ratelimit: 47 callbacks suppressed
[ 1215.878786][T22377] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1216.174642][T22382] __vm_enough_memory: pid: 22382, comm: syz.7.2946, bytes: 4398046511104 not enough memory for the allocation
[ 1216.921550][T22196] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1216.984623][T22196] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1217.028538][T22196] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1217.081372][T22196] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1217.152271][T22196] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1217.231819][T22196] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1217.282699][T22196] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1217.359739][T22196] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1217.426670][T22390] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1217.495410][T22390] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1217.554686][T22390] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1217.592954][T22390] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1217.657560][T22390] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1217.683647][T22390] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1217.722334][T22390] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1217.783501][T22390] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1217.820752][T22390] Bluetooth: hci9: Opcode 0x0c1a failed: -4
[ 1217.861643][T22390] Bluetooth: hci9: Opcode 0x0406 failed: -4
[ 1217.974466][T22390] Bluetooth: hci9: Opcode 0x0406 failed: -4
[ 1218.009822][T22196] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1218.144860][T22196] 8021q: adding VLAN 0 to HW filter on device team0
[ 1218.265322][T12533] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1218.272503][T12533] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1218.406359][T12533] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1218.413619][T12533] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1218.529844][T22411] random: crng reseeded on system resumption
[ 1218.814170][T12105] Bluetooth: hci4: command 0x2016 tx timeout
[ 1219.527295][T12105] Bluetooth: hci1: command 0x0406 tx timeout
[ 1219.609115][T12105] Bluetooth: hci0: command 0x2016 tx timeout
[ 1219.615357][T16662] Bluetooth: hci2: command 0x0406 tx timeout
[ 1219.697474][T12105] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1219.704998][T16662] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1219.715839][T22436] FAULT_INJECTION: forcing a failure.
[ 1219.715839][T22436] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1219.773720][T12105] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1219.847138][T12105] Bluetooth: hci9: command 0x0c1a tx timeout
[ 1219.853228][T16662] Bluetooth: hci8: command 0x040f tx timeout
[ 1219.873130][T22436] CPU: 0 UID: 0 PID: 22436 Comm: syz.7.2952 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1219.873171][T22436] Tainted: [L]=SOFTLOCKUP
[ 1219.873180][T22436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1219.873196][T22436] Call Trace:
[ 1219.873204][T22436]  <TASK>
[ 1219.873213][T22436]  dump_stack_lvl+0x100/0x190
[ 1219.873253][T22436]  should_fail_ex.cold+0x5/0xa
[ 1219.873286][T22436]  get_futex_key+0x1d2/0x1510
[ 1219.873330][T22436]  ? __pfx_get_futex_key+0x10/0x10
[ 1219.873370][T22436]  ? putname+0xb1/0x110
[ 1219.873403][T22436]  ? kasan_save_stack+0x3f/0x50
[ 1219.873426][T22436]  ? kasan_save_stack+0x30/0x50
[ 1219.873452][T22436]  ? kasan_save_track+0x14/0x30
[ 1219.873476][T22436]  ? kasan_save_free_info+0x3b/0x70
[ 1219.873511][T22436]  ? __kasan_slab_free+0x5f/0x80
[ 1219.873536][T22436]  ? kmem_cache_free+0x127/0x6c0
[ 1219.873572][T22436]  ? putname+0xb1/0x110
[ 1219.873606][T22436]  futex_wake+0xea/0x530
[ 1219.873640][T22436]  ? __pfx_futex_wake+0x10/0x10
[ 1219.873682][T22436]  do_futex+0x32b/0x350
[ 1219.873708][T22436]  ? __pfx_do_futex+0x10/0x10
[ 1219.873741][T22436]  __x64_sys_futex+0x34f/0x4d0
[ 1219.873772][T22436]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1219.873803][T22436]  ? rcu_is_watching+0x12/0xc0
[ 1219.873835][T22436]  do_syscall_64+0x115/0x840
[ 1219.873870][T22436]  ? clear_bhb_loop+0x40/0x90
[ 1219.873900][T22436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1219.873926][T22436] RIP: 0033:0x7ff32899ce59
[ 1219.873946][T22436] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1219.873970][T22436] RSP: 002b:00007ff32991a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1219.873995][T22436] RAX: ffffffffffffffda RBX: 00007ff328c16098 RCX: 00007ff32899ce59
[ 1219.874011][T22436] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff328c1609c
[ 1219.874027][T22436] RBP: 00007ff328c16090 R08: 0000000000000001 R09: 0000000000000000
[ 1219.874042][T22436] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[ 1219.874057][T22436] R13: 00007ff328c16128 R14: 00007ffe91127fa0 R15: 00007ffe91128088
[ 1219.874088][T22436]  </TASK>
[ 1221.925458][T16662] Bluetooth: hci9: command 0x0c1a tx timeout
[ 1222.669391][T16662] Bluetooth: hci6: unexpected subevent 0x01 length: 123 > 18
[ 1222.743981][T22196] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1223.383040][T22478] FAULT_INJECTION: forcing a failure.
[ 1223.383040][T22478] name failslab, interval 1, probability 0, space 0, times 0
[ 1223.573496][T22478] CPU: 0 UID: 0 PID: 22478 Comm: syz.9.2956 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1223.573536][T22478] Tainted: [L]=SOFTLOCKUP
[ 1223.573545][T22478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1223.573561][T22478] Call Trace:
[ 1223.573569][T22478]  <TASK>
[ 1223.573579][T22478]  dump_stack_lvl+0x100/0x190
[ 1223.573609][T22478]  should_fail_ex.cold+0x5/0xa
[ 1223.573641][T22478]  should_failslab+0xc2/0x120
[ 1223.573671][T22478]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1223.573712][T22478]  ? __proc_create+0x2cb/0x8c0
[ 1223.573750][T22478]  __proc_create+0x2cb/0x8c0
[ 1223.573783][T22478]  ? __pfx___proc_create+0x10/0x10
[ 1223.573819][T22478]  ? _raw_write_unlock+0x28/0x50
[ 1223.573852][T22478]  ? proc_register+0x559/0x8a0
[ 1223.573888][T22478]  proc_create_reg+0x75/0x170
[ 1223.573925][T22478]  proc_create_net_data+0x8e/0x1c0
[ 1223.573960][T22478]  ? __pfx_proc_create_net_data+0x10/0x10
[ 1223.573993][T22478]  ? net_generic+0xea/0x2a0
[ 1223.574024][T22478]  nfs_fs_proc_net_init+0x141/0x1e0
[ 1223.574054][T22478]  nfs_net_init+0x130/0x340
[ 1223.574082][T22478]  ? __pfx_nfs_net_init+0x10/0x10
[ 1223.574107][T22478]  ops_init+0x1e2/0x5f0
[ 1223.574138][T22478]  setup_net+0x118/0x3a0
[ 1223.574166][T22478]  ? __pfx_setup_net+0x10/0x10
[ 1223.574193][T22478]  ? mutex_init_lockdep+0xf1/0x120
[ 1223.574223][T22478]  copy_net_ns+0x46f/0x7c0
[ 1223.574255][T22478]  create_new_namespaces+0x3ea/0xac0
[ 1223.574293][T22478]  unshare_nsproxy_namespaces+0xf2/0x220
[ 1223.574328][T22478]  ksys_unshare+0x438/0xab0
[ 1223.574366][T22478]  ? __pfx_ksys_unshare+0x10/0x10
[ 1223.574400][T22478]  ? xfd_validate_state+0x129/0x190
[ 1223.574440][T22478]  ? ksys_write+0x1ac/0x250
[ 1223.574479][T22478]  __x64_sys_unshare+0x31/0x40
[ 1223.574514][T22478]  do_syscall_64+0x115/0x840
[ 1223.574550][T22478]  ? clear_bhb_loop+0x40/0x90
[ 1223.574581][T22478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1223.574606][T22478] RIP: 0033:0x7fb953b9ce59
[ 1223.574627][T22478] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1223.574651][T22478] RSP: 002b:00007fb954a44028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1223.574675][T22478] RAX: ffffffffffffffda RBX: 00007fb953e15fa0 RCX: 00007fb953b9ce59
[ 1223.574691][T22478] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1223.574706][T22478] RBP: 00007fb953c32d6f R08: 0000000000000000 R09: 0000000000000000
[ 1223.574722][T22478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1223.574737][T22478] R13: 00007fb953e16038 R14: 00007fb953e15fa0 R15: 00007ffd41d06fb8
[ 1223.574771][T22478]  </TASK>
[ 1224.283866][T12105] Bluetooth: hci9: command 0x0c1a tx timeout
[ 1224.776981][T12087] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1224.848934][T22465] Process accounting resumed
[ 1225.139687][T22196] veth0_vlan: entered promiscuous mode
[ 1225.237333][T22196] veth1_vlan: entered promiscuous mode
[ 1225.430832][T22196] veth0_macvtap: entered promiscuous mode
[ 1225.493051][T22196] veth1_macvtap: entered promiscuous mode
[ 1225.703180][T22196] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1225.780630][T22196] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1225.882489][T16358] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1225.977825][T16358] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1226.039187][T16358] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1226.089014][T16358] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1226.812632][T12087] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1226.942730][T22439] Process accounting resumed
[ 1226.954540][T22503] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1226.987775][T22503] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1227.023244][T22503] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1227.057981][T22503] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1227.099762][T22503] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1227.144300][T22503] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1227.180073][T22503] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1227.224851][T22503] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1227.270570][T22503] Bluetooth: hci9: Opcode 0x0c1a failed: -4
[ 1227.685846][T16662] Bluetooth: hci4: command 0x2016 tx timeout
[ 1227.822202][T16357] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1227.882820][T16357] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1228.069792][T16356] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1228.120443][T16356] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1228.620189][T22541] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2963'.
[ 1229.047595][T16662] Bluetooth: hci2: command 0x0406 tx timeout
[ 1229.053684][T12087] Bluetooth: hci1: command 0x0406 tx timeout
[ 1229.126149][T16662] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1229.132269][T12087] Bluetooth: hci0: command 0x2016 tx timeout
[ 1229.206321][T12087] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1229.212484][T16662] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1229.285431][T16662] Bluetooth: hci9: command 0x0c1a tx timeout
[ 1229.291602][T12087] Bluetooth: hci8: command 0x040f tx timeout
[ 1230.513492][T22558] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint
[ 1230.554041][ T5296] 8021q: adding VLAN 0 to HW filter on device &I�r��h,�|�
[ 1236.042936][   T29] audit: type=1800 audit(524334.107:23): pid=22637 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.2974" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[ 1236.791166][T22647] FAULT_INJECTION: forcing a failure.
[ 1236.791166][T22647] name failslab, interval 1, probability 0, space 0, times 0
[ 1236.980072][T22647] CPU: 0 UID: 0 PID: 22647 Comm: syz.9.2976 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1236.980113][T22647] Tainted: [L]=SOFTLOCKUP
[ 1236.980122][T22647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1236.980137][T22647] Call Trace:
[ 1236.980146][T22647]  <TASK>
[ 1236.980156][T22647]  dump_stack_lvl+0x100/0x190
[ 1236.980186][T22647]  should_fail_ex.cold+0x5/0xa
[ 1236.980217][T22647]  ? tomoyo_encode2+0xfb/0x3c0
[ 1236.980251][T22647]  should_failslab+0xc2/0x120
[ 1236.980282][T22647]  __kmalloc_noprof+0xe0/0x850
[ 1236.980304][T22647]  ? d_absolute_path+0x136/0x1b0
[ 1236.980334][T22647]  tomoyo_encode2+0xfb/0x3c0
[ 1236.980373][T22647]  tomoyo_encode+0x29/0x50
[ 1236.980408][T22647]  tomoyo_realpath_from_path+0x18c/0x690
[ 1236.980451][T22647]  tomoyo_check_open_permission+0x2af/0x3c0
[ 1236.980485][T22647]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1236.980533][T22647]  ? hook_file_open+0x24e/0x7a0
[ 1236.980585][T22647]  ? path_get+0x61/0x80
[ 1236.980622][T22647]  tomoyo_file_open+0x6b/0x90
[ 1236.980647][T22647]  security_file_open+0xb5/0x1e0
[ 1236.980683][T22647]  do_dentry_open+0x588/0x14d0
[ 1236.980721][T22647]  vfs_open+0x82/0x3f0
[ 1236.980780][T22647]  path_openat+0x208c/0x31a0
[ 1236.980834][T22647]  ? __pfx_path_openat+0x10/0x10
[ 1236.980889][T22647]  do_file_open+0x20e/0x430
[ 1236.980924][T22647]  ? __pfx_do_file_open+0x10/0x10
[ 1236.980976][T22647]  ? alloc_fd+0x476/0x790
[ 1236.981009][T22647]  ? do_getname+0x191/0x390
[ 1236.981049][T22647]  do_sys_openat2+0x10d/0x1e0
[ 1236.981088][T22647]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1236.981137][T22647]  __x64_sys_openat+0x12d/0x210
[ 1236.981177][T22647]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1236.981215][T22647]  ? ksys_write+0x1ac/0x250
[ 1236.981248][T22647]  ? rcu_is_watching+0x12/0xc0
[ 1236.981280][T22647]  do_syscall_64+0x115/0x840
[ 1236.981315][T22647]  ? clear_bhb_loop+0x40/0x90
[ 1236.981346][T22647]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1236.981371][T22647] RIP: 0033:0x7fb953b9ce59
[ 1236.981392][T22647] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1236.981417][T22647] RSP: 002b:00007fb954a44028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1236.981441][T22647] RAX: ffffffffffffffda RBX: 00007fb953e15fa0 RCX: 00007fb953b9ce59
[ 1236.981458][T22647] RDX: 0000000000040000 RSI: 0000200000000100 RDI: ffffffffffffff9c
[ 1236.981474][T22647] RBP: 00007fb953c32d6f R08: 0000000000000000 R09: 0000000000000000
[ 1236.981494][T22647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1236.981509][T22647] R13: 00007fb953e16038 R14: 00007fb953e15fa0 R15: 00007ffd41d06fb8
[ 1236.981541][T22647]  </TASK>
[ 1237.348569][T22643] Console: switching to colour VGA+ 80x25
[ 1237.456003][T22647] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1237.916811][T22667] syz.9.2979 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1237.982889][T22667] futex_wake_op: syz.9.2979 tries to shift op by -2048; fix this program
[ 1238.351845][T22673] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1238.686761][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.696950][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.642512][T22685] serio: Serial port pty173
[ 1239.933570][T22699] FAULT_INJECTION: forcing a failure.
[ 1239.933570][T22699] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1239.967936][T22695] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1240.095388][T22699] CPU: 0 UID: 0 PID: 22699 Comm: syz.3.2984 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1240.095428][T22699] Tainted: [L]=SOFTLOCKUP
[ 1240.095437][T22699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1240.095452][T22699] Call Trace:
[ 1240.095461][T22699]  <TASK>
[ 1240.095471][T22699]  dump_stack_lvl+0x100/0x190
[ 1240.095502][T22699]  should_fail_ex.cold+0x5/0xa
[ 1240.095534][T22699]  get_futex_key+0x1d2/0x1510
[ 1240.095579][T22699]  ? __pfx_get_futex_key+0x10/0x10
[ 1240.095621][T22699]  ? __pfx_get_futex_key+0x10/0x10
[ 1240.095667][T22699]  futex_wait_setup+0x83/0x510
[ 1240.095707][T22699]  __futex_wait+0x19f/0x300
[ 1240.095745][T22699]  ? __pfx___futex_wait+0x10/0x10
[ 1240.095781][T22699]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1240.095817][T22699]  ? futex_hash+0x2ad/0x370
[ 1240.095858][T22699]  ? futex_hash+0x141/0x370
[ 1240.095901][T22699]  futex_wait+0xe6/0x370
[ 1240.095932][T22699]  ? __pfx_futex_wait+0x10/0x10
[ 1240.095970][T22699]  ? ksys_write+0x190/0x250
[ 1240.095998][T22699]  ? ksys_write+0x190/0x250
[ 1240.096032][T22699]  do_futex+0x1ef/0x350
[ 1240.096058][T22699]  ? __pfx_do_futex+0x10/0x10
[ 1240.096091][T22699]  __x64_sys_futex+0x34f/0x4d0
[ 1240.096121][T22699]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1240.096147][T22699]  ? ksys_write+0x1ac/0x250
[ 1240.096179][T22699]  ? rcu_is_watching+0x12/0xc0
[ 1240.096212][T22699]  do_syscall_64+0x115/0x840
[ 1240.096254][T22699]  ? clear_bhb_loop+0x40/0x90
[ 1240.096286][T22699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1240.096312][T22699] RIP: 0033:0x7f134939ce59
[ 1240.096332][T22699] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1240.096358][T22699] RSP: 002b:00007f134a2a70e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1240.096382][T22699] RAX: ffffffffffffffda RBX: 00007f1349616098 RCX: 00007f134939ce59
[ 1240.096399][T22699] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1349616098
[ 1240.096414][T22699] RBP: 00007f1349616090 R08: 0000000000000000 R09: 0000000000000000
[ 1240.096430][T22699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1240.096445][T22699] R13: 00007f1349616128 R14: 00007fff89750730 R15: 00007fff89750818
[ 1240.096476][T22699]  </TASK>
[ 1240.403203][T22706] netlink: 28 bytes leftover after parsing attributes in process `syz.9.2985'.
[ 1244.217770][T22750] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1244.237864][T22760] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1244.254370][T22750] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1244.284919][T22750] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1244.327691][T22750] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1244.367736][T22750] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1244.414141][T22750] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1244.453562][T22750] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1244.515850][T22750] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1244.560399][T22750] Bluetooth: hci9: Opcode 0x0c1a failed: -4
[ 1244.792519][T22773] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2994'.
[ 1246.083055][T22785] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1246.123127][T22785] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1246.160418][T22785] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1246.171931][T22777] Process accounting resumed
[ 1246.193695][T22785] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1246.236161][T22785] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1246.287279][T22785] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1246.334336][T22785] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1246.362006][T22785] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1246.393197][T22785] Bluetooth: hci9: Opcode 0x0c1a failed: -4
[ 1247.367005][T12087] Bluetooth: hci4: command 0x2016 tx timeout
[ 1247.642042][T22832] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3002'.
[ 1248.165896][T12087] Bluetooth: hci2: command 0x0406 tx timeout
[ 1248.165952][T12087] Bluetooth: hci1: command 0x0406 tx timeout
[ 1248.246461][T16662] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1248.246521][T16662] Bluetooth: hci0: command 0x2016 tx timeout
[ 1248.325727][T12087] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1248.406344][T12087] Bluetooth: hci9: command 0x0c1a tx timeout
[ 1248.412523][T16662] Bluetooth: hci8: command 0x040f tx timeout
[ 1248.419567][T12105] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1249.069663][T22855] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3006'.
[ 1249.683594][T22869] futex_wake_op: syz.7.3007 tries to shift op by -2048; fix this program
[ 1252.225659][T22895] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1252.299797][T22895] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1252.342471][T22895] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1252.403342][T22895] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1252.444326][T22895] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1252.484235][T22895] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1252.561555][T22895] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1252.599616][T22895] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1252.616137][T22909] FAULT_INJECTION: forcing a failure.
[ 1252.616137][T22909] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1252.652316][T22895] Bluetooth: hci9: Opcode 0x0c1a failed: -4
[ 1252.702477][T22909] CPU: 0 UID: 0 PID: 22909 Comm: syz.9.3012 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1252.702517][T22909] Tainted: [L]=SOFTLOCKUP
[ 1252.702525][T22909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1252.702541][T22909] Call Trace:
[ 1252.702550][T22909]  <TASK>
[ 1252.702560][T22909]  dump_stack_lvl+0x100/0x190
[ 1252.702591][T22909]  should_fail_ex.cold+0x5/0xa
[ 1252.702618][T22909]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1252.702652][T22909]  should_fail_alloc_page+0xeb/0x140
[ 1252.702684][T22909]  prepare_alloc_pages+0x1f0/0x5f0
[ 1252.702719][T22909]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[ 1252.702763][T22909]  ? lru_gen_add_folio+0x20f/0x13d0
[ 1252.702797][T22909]  ? __lock_acquire+0x4a5/0x2630
[ 1252.702855][T22909]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1252.702902][T22909]  ? __lock_acquire+0x4a5/0x2630
[ 1252.702949][T22909]  ? __lock_acquire+0x4a5/0x2630
[ 1252.702987][T22909]  ? __css_rstat_updated+0x1ce/0x5a0
[ 1252.703034][T22909]  ? lock_acquire+0x1b1/0x370
[ 1252.703073][T22909]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1252.703111][T22909]  ? policy_nodemask+0xed/0x4f0
[ 1252.703143][T22909]  alloc_pages_mpol+0x1fb/0x540
[ 1252.703175][T22909]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1252.703208][T22909]  ? __lock_acquire+0x4a5/0x2630
[ 1252.703252][T22909]  folio_alloc_mpol_noprof+0x36/0x260
[ 1252.703289][T22909]  vma_alloc_folio_noprof+0xed/0x1d0
[ 1252.703323][T22909]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1252.703367][T22909]  do_anonymous_page+0xb46/0x2050
[ 1252.703411][T22909]  ? rcu_read_unlock+0x2d/0xb0
[ 1252.703457][T22909]  __handle_mm_fault+0x1d2c/0x2a00
[ 1252.703499][T22909]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1252.703530][T22909]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1252.703571][T22909]  ? pte_offset_map_lock+0x174/0x320
[ 1252.703599][T22909]  ? find_held_lock+0x2b/0x80
[ 1252.703639][T22909]  ? follow_page_pte+0x4d0/0x13f0
[ 1252.703675][T22909]  handle_mm_fault+0x37b/0xa30
[ 1252.703718][T22909]  __get_user_pages+0x1178/0x32a0
[ 1252.703761][T22909]  ? __pfx___get_user_pages+0x10/0x10
[ 1252.703800][T22909]  populate_vma_page_range+0x267/0x3f0
[ 1252.703836][T22909]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1252.703869][T22909]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1252.703900][T22909]  ? do_mmap+0x93f/0x12f0
[ 1252.703939][T22909]  __mm_populate+0x107/0x3a0
[ 1252.703973][T22909]  ? __pfx___mm_populate+0x10/0x10
[ 1252.704008][T22909]  ? up_write+0x28c/0x4f0
[ 1252.704038][T22909]  vm_mmap_pgoff+0x37f/0x470
[ 1252.704073][T22909]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1252.704107][T22909]  ? do_futex+0x192/0x350
[ 1252.704134][T22909]  ? __pfx_do_futex+0x10/0x10
[ 1252.704158][T22909]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1252.704202][T22909]  ksys_mmap_pgoff+0xe4/0x610
[ 1252.704233][T22909]  ? __x64_sys_futex+0x358/0x4d0
[ 1252.704260][T22909]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[ 1252.704290][T22909]  ? xfd_validate_state+0x129/0x190
[ 1252.704321][T22909]  __x64_sys_mmap+0x125/0x190
[ 1252.704351][T22909]  do_syscall_64+0x115/0x840
[ 1252.704386][T22909]  ? clear_bhb_loop+0x40/0x90
[ 1252.704417][T22909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1252.704443][T22909] RIP: 0033:0x7fb953b9ce59
[ 1252.704464][T22909] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1252.704490][T22909] RSP: 002b:00007fb954a44028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1252.704514][T22909] RAX: ffffffffffffffda RBX: 00007fb953e15fa0 RCX: 00007fb953b9ce59
[ 1252.704531][T22909] RDX: 00000000000000df RSI: 000000000040000b RDI: 0000000000000000
[ 1252.704547][T22909] RBP: 00007fb953c32d6f R08: 0000000000000002 R09: 0000000000108000
[ 1252.704562][T22909] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[ 1252.704577][T22909] R13: 00007fb953e16038 R14: 00007fb953e15fa0 R15: 00007ffd41d06fb8
[ 1252.704608][T22909]  </TASK>
[ 1253.319717][T22912] misc userio: No port type given on /dev/userio
[ 1253.536170][T12087] Bluetooth: hci4: command 0x2016 tx timeout
[ 1254.327068][T12087] Bluetooth: hci1: command 0x0406 tx timeout
[ 1254.406525][T12087] Bluetooth: hci2: command 0x0406 tx timeout
[ 1254.486026][T12087] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1254.492150][T16662] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1254.498385][T12105] Bluetooth: hci0: command 0x2016 tx timeout
[ 1254.648177][T16662] Bluetooth: hci8: command 0x040f tx timeout
[ 1254.654258][T12087] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1254.726370][T16662] Bluetooth: hci9: command 0x0c1a tx timeout
[ 1255.439142][T22937] Process accounting paused
[ 1256.053305][T16662] Bluetooth: hci6: unexpected event 0x32 length: 727 > 9
[ 1256.562217][T22944] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1256.652356][T22944] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1256.693987][T22944] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1256.738179][T22944] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1256.773099][T22944] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1256.815023][T22944] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1256.844727][T22944] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1256.878361][T22944] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1256.954448][T22944] Bluetooth: hci9: Opcode 0x0c1a failed: -4
[ 1257.038918][T12087] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1257.060041][T12087] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1257.069172][T12087] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1257.093138][T12087] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1257.116731][T12087] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1257.849506][T16662] Bluetooth: hci4: command 0x2016 tx timeout
[ 1258.131270][T22970] futex_wake_op: syz.7.3019 tries to shift op by -2048; fix this program
[ 1258.354162][T22970] futex_wake_op: syz.7.3019 tries to shift op by -2048; fix this program
[ 1258.726147][T16662] Bluetooth: hci1: command 0x0406 tx timeout
[ 1258.732286][T12087] Bluetooth: hci2: command 0x0406 tx timeout
[ 1258.806587][T16662] Bluetooth: hci0: command 0x2016 tx timeout
[ 1258.812657][T12087] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1258.885441][T12087] Bluetooth: hci8: command 0x040f tx timeout
[ 1258.891590][T16662] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1258.897981][T12105] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1258.966211][T12087] Bluetooth: hci9: command 0x0c1a tx timeout
[ 1259.205456][T12087] Bluetooth: hci10: command tx timeout
[ 1259.409641][   T29] audit: type=1800 audit(524357.457:24): pid=22990 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.3022" name="lu_gp_id" dev="configfs" ino=99903 res=0 errno=0
[ 1259.510283][T22980] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1259.547312][T22980] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1259.598697][T22980] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1259.653283][T22980] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1259.709014][T22980] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1259.762569][T22980] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1259.810211][T22980] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1259.851076][T22980] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1259.915507][T22980] Bluetooth: hci9: Opcode 0x0c1a failed: -4
[ 1259.959130][T22980] Bluetooth: hci10: Opcode 0x0c1a failed: -4
[ 1260.014488][T22980] Bluetooth: hci10: Opcode 0x0406 failed: -4
[ 1260.060755][T22980] Bluetooth: hci10: Opcode 0x0406 failed: -4
[ 1260.619358][T23008] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3025'.
[ 1260.683147][T23010] netlink: 'syz.5.3025': attribute type 1 has an invalid length.
[ 1260.805818][T12087] Bluetooth: hci4: command 0x2016 tx timeout
[ 1260.813533][T23010] netlink: 13 bytes leftover after parsing attributes in process `syz.5.3025'.
[ 1261.605288][T12087] Bluetooth: hci2: command 0x0406 tx timeout
[ 1261.611379][T16662] Bluetooth: hci1: command 0x0406 tx timeout
[ 1261.691380][T12087] Bluetooth: hci0: command 0x2016 tx timeout
[ 1261.765397][T12087] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1261.771502][T16662] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1261.846081][T12087] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1261.925439][T12087] Bluetooth: hci9: command 0x0c1a tx timeout
[ 1261.931522][T16662] Bluetooth: hci8: command 0x040f tx timeout
[ 1262.005881][T12087] Bluetooth: hci10: command 0x040f tx timeout
[ 1262.034629][T22958] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1262.076275][T22958] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1262.133461][T22958] bridge_slave_0: entered allmulticast mode
[ 1262.186147][T22958] bridge_slave_0: entered promiscuous mode
[ 1262.346836][T22958] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1262.386540][T22958] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1262.412917][T22958] bridge_slave_1: entered allmulticast mode
[ 1262.454983][T22958] bridge_slave_1: entered promiscuous mode
[ 1262.744405][T22958] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1262.811995][T22958] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1263.046657][T22958] team0: Port device team_slave_0 added
[ 1263.093258][T22958] team0: Port device team_slave_1 added
[ 1263.284240][T22958] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1263.327554][T22958] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1263.444715][T22958] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1263.507052][T22958] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1263.533377][T22958] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1263.646267][T22958] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1263.988453][T22958] hsr_slave_0: entered promiscuous mode
[ 1264.022649][T22958] hsr_slave_1: entered promiscuous mode
[ 1264.046790][T22958] debugfs: 'hsr0' already exists in 'hsr'
[ 1264.069688][T22958] Cannot create hsr debugfs directory
[ 1264.085281][T12087] Bluetooth: hci10: command 0x040f tx timeout
[ 1265.320364][T22958] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1265.722681][T22958] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1265.950099][T22958] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1266.139741][T22958] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1266.165370][T12087] Bluetooth: hci10: command 0x040f tx timeout
[ 1266.530221][T23074] netlink: 41 bytes leftover after parsing attributes in process `syz.5.3036'.
[ 1266.606745][T23074] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1266.614078][T23074] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1266.668472][T23074] blktrace: Concurrent blktraces are not allowed on loop2
[ 1267.057000][T22958] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1267.104589][T22958] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1267.141717][T22958] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1267.203401][T22958] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1267.243434][T22958] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1267.276184][T22958] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1267.307949][T22958] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1267.357691][T22958] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1267.780095][T22958] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1267.891544][T22958] 8021q: adding VLAN 0 to HW filter on device team0
[ 1267.970983][T12530] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1267.978196][T12530] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1268.073105][T12530] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1268.080422][T12530] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1268.245675][T12087] Bluetooth: hci10: command 0x040f tx timeout
[ 1269.124462][T23109] bridge0: port 3(batadv0) entered blocking state
[ 1269.244565][T23109] bridge0: port 3(batadv0) entered disabled state
[ 1269.264990][T23109] batadv0: entered allmulticast mode
[ 1269.292060][T23109] batadv0: entered promiscuous mode
[ 1269.310892][T23109] bridge0: port 3(batadv0) entered blocking state
[ 1269.317496][T23109] bridge0: port 3(batadv0) entered forwarding state
[ 1269.537295][T16357] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[ 1269.547063][T16357] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[ 1269.960203][T22958] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1270.325475][T12087] Bluetooth: hci10: command 0x040f tx timeout
[ 1270.711310][T22958] veth0_vlan: entered promiscuous mode
[ 1270.747580][T22958] veth1_vlan: entered promiscuous mode
[ 1270.837916][T22958] veth0_macvtap: entered promiscuous mode
[ 1270.862028][T22958] veth1_macvtap: entered promiscuous mode
[ 1270.912509][T22958] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1270.958298][T22958] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1271.022113][T12533] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.077396][T12533] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.113761][T12533] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.143371][T12533] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.411441][T16356] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1271.444402][T16356] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1271.524773][T12533] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1271.552892][T12533] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1273.604726][T23167] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1273.861280][T23171] netlink: 'syz.5.3046': attribute type 4 has an invalid length.
[ 1274.045982][T23171] netlink: 314 bytes leftover after parsing attributes in process `syz.5.3046'.
[ 1276.671225][T23207] usb usb16: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1277.268297][T16662] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 1277.290257][T16662] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 1277.308164][T16662] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 1277.323359][T16662] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 1277.331506][T16662] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 1277.993617][T23221] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1278.636275][T23224] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(3.0.0), cmd(3)
[ 1279.445462][T16662] Bluetooth: hci11: command tx timeout
[ 1279.511927][T16662] Bluetooth: hci10: unexpected subevent 0x01 length: 123 > 18
[ 1280.974682][T23256] FAULT_INJECTION: forcing a failure.
[ 1280.974682][T23256] name failslab, interval 1, probability 0, space 0, times 0
[ 1281.074801][T23256] CPU: 0 UID: 0 PID: 23256 Comm: syz.7.3061 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1281.074841][T23256] Tainted: [L]=SOFTLOCKUP
[ 1281.074850][T23256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1281.074866][T23256] Call Trace:
[ 1281.074874][T23256]  <TASK>
[ 1281.074884][T23256]  dump_stack_lvl+0x100/0x190
[ 1281.074926][T23256]  should_fail_ex.cold+0x5/0xa
[ 1281.074959][T23256]  should_failslab+0xc2/0x120
[ 1281.074989][T23256]  kmem_cache_alloc_noprof+0x7b/0x6e0
[ 1281.075033][T23256]  ? anon_vma_fork+0x19a/0x6b0
[ 1281.075075][T23256]  anon_vma_fork+0x19a/0x6b0
[ 1281.075124][T23256]  dup_mmap+0x143e/0x21b0
[ 1281.075169][T23256]  ? __pfx_dup_mmap+0x10/0x10
[ 1281.075201][T23256]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1281.075241][T23256]  ? __lock_acquire+0x4a5/0x2630
[ 1281.075282][T23256]  ? find_held_lock+0x2b/0x80
[ 1281.075312][T23256]  ? __percpu_counter_init_many+0x2bc/0x3b0
[ 1281.075372][T23256]  copy_process+0x6c78/0x7ed0
[ 1281.075405][T23256]  ? __futex_wait+0x256/0x300
[ 1281.075452][T23256]  ? __pfx_copy_process+0x10/0x10
[ 1281.075490][T23256]  ? futex_hash+0x141/0x370
[ 1281.075536][T23256]  kernel_clone+0x176/0x9e0
[ 1281.075568][T23256]  ? __pfx_futex_wait+0x10/0x10
[ 1281.075600][T23256]  ? __pfx_kernel_clone+0x10/0x10
[ 1281.075651][T23256]  __do_sys_clone+0xd9/0x120
[ 1281.075685][T23256]  ? __pfx___do_sys_clone+0x10/0x10
[ 1281.075738][T23256]  ? rcu_is_watching+0x12/0xc0
[ 1281.075770][T23256]  do_syscall_64+0x115/0x840
[ 1281.075804][T23256]  ? clear_bhb_loop+0x40/0x90
[ 1281.075834][T23256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1281.075859][T23256] RIP: 0033:0x7ff32899ce59
[ 1281.075884][T23256] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1281.075913][T23256] RSP: 002b:00007ff32993afd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1281.075941][T23256] RAX: ffffffffffffffda RBX: 00007ff328c15fa0 RCX: 00007ff32899ce59
[ 1281.075958][T23256] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1281.075974][T23256] RBP: 00007ff328a32d6f R08: 0000000000000000 R09: 0000000000000000
[ 1281.075989][T23256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1281.076004][T23256] R13: 00007ff328c16038 R14: 00007ff328c15fa0 R15: 00007ffe91128088
[ 1281.076036][T23256]  </TASK>
[ 1281.457195][T23261] syz.4.3062(23261): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[ 1281.560844][T16662] Bluetooth: hci11: command tx timeout
[ 1281.696941][T12105] Bluetooth: hci10: command 0x040f tx timeout
[ 1282.062657][T23213] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1282.093928][T23213] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1282.124617][T23256] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3061'.
[ 1282.137454][T23213] bridge_slave_0: entered allmulticast mode
[ 1282.153454][T23258] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1282.203592][T23258] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1282.210441][T23213] bridge_slave_0: entered promiscuous mode
[ 1282.227490][T23258] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1282.244570][T23258] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1282.256985][T23256] veth1_macvtap: left promiscuous mode
[ 1282.262626][T23256] macsec0: entered promiscuous mode
[ 1282.273780][T23258] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1282.294371][T23256] macsec0: entered allmulticast mode
[ 1282.307957][T23258] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1282.322355][T23213] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1282.335359][T23258] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1282.349714][T23213] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1282.365436][T23258] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1282.384150][T23213] bridge_slave_1: entered allmulticast mode
[ 1282.399930][T23258] Bluetooth: hci9: Opcode 0x0c1a failed: -4
[ 1282.434540][T23213] bridge_slave_1: entered promiscuous mode
[ 1282.478750][T23258] Bluetooth: hci10: Opcode 0x0c1a failed: -4
[ 1282.502040][T23258] Bluetooth: hci11: Opcode 0x0c1a failed: -4
[ 1282.554213][T23258] Bluetooth: hci11: Opcode 0x0406 failed: -4
[ 1282.601130][T23258] Bluetooth: hci11: Opcode 0x0406 failed: -4
[ 1282.784124][T23213] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1282.892499][T23213] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1283.111201][T23213] team0: Port device team_slave_0 added
[ 1283.318791][T23213] team0: Port device team_slave_1 added
[ 1283.603602][T23213] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1283.611068][T12105] Bluetooth: hci4: command 0x2016 tx timeout
[ 1283.652707][T23213] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1283.759126][T23213] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1283.885710][T23213] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1283.910061][T23213] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1284.018401][T23213] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1284.246090][T12087] Bluetooth: hci2: command 0x0406 tx timeout
[ 1284.252493][T16662] Bluetooth: hci1: command 0x0406 tx timeout
[ 1284.258676][T12105] Bluetooth: hci0: command 0x2016 tx timeout
[ 1284.325566][T12105] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1284.331671][T12087] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1284.405651][T12105] Bluetooth: hci9: command 0x0c1a tx timeout
[ 1284.411761][T12087] Bluetooth: hci8: command 0x040f tx timeout
[ 1284.418010][T16662] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1284.559456][T23213] hsr_slave_0: entered promiscuous mode
[ 1284.568151][T12105] Bluetooth: hci11: command 0x0419 tx timeout
[ 1284.576451][T12087] Bluetooth: hci10: command 0x040f tx timeout
[ 1284.587151][T23213] hsr_slave_1: entered promiscuous mode
[ 1284.593805][T23213] debugfs: 'hsr0' already exists in 'hsr'
[ 1284.600456][T23213] Cannot create hsr debugfs directory
[ 1285.590916][T23296] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3068'.
[ 1285.662970][T23298] Process accounting resumed
[ 1286.458029][T23213] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1286.646253][T12105] Bluetooth: hci11: command 0x0419 tx timeout
[ 1287.371058][T23213] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1287.898417][T23213] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1288.725845][T12105] Bluetooth: hci11: command 0x0419 tx timeout
[ 1289.810014][T23213] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1289.933513][T23213] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1289.990869][T23213] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1290.083422][T23213] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1290.137752][T23213] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1290.197134][T23213] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1290.285928][T23213] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1290.338082][T23213] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1290.806210][T12105] Bluetooth: hci11: command 0x0419 tx timeout
[ 1291.360989][T23350] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1291.457060][T23350] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1291.486810][T23350] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1291.514498][T23350] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1291.537949][T23350] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1291.563025][T23350] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1291.596397][T23350] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1291.632899][T23350] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1291.659874][T23350] Bluetooth: hci9: Opcode 0x0c1a failed: -4
[ 1291.693725][T23350] Bluetooth: hci10: Opcode 0x0c1a failed: -4
[ 1291.731880][T23350] Bluetooth: hci11: Opcode 0x0c1a failed: -4
[ 1291.807353][T23213] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1291.922718][T23213] 8021q: adding VLAN 0 to HW filter on device team0
[ 1291.999898][T16354] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1292.007122][T16354] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1292.132742][T16354] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1292.139971][T16354] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1292.646991][T12105] Bluetooth: hci4: command 0x2016 tx timeout
[ 1292.797539][T23365] netlink: 146 bytes leftover after parsing attributes in process `syz.7.3078'.
[ 1293.093421][T23372] ubi0: attaching mtd0
[ 1293.118463][T23372] ubi0: scanning is finished
[ 1293.155272][T23372] ubi0 error: ubi_read_volume_table: the layout volume was not found
[ 1293.525530][T12105] Bluetooth: hci0: command 0x2016 tx timeout
[ 1293.531613][T12087] Bluetooth: hci2: command 0x0406 tx timeout
[ 1293.537706][T16662] Bluetooth: hci1: command 0x0406 tx timeout
[ 1293.605687][T12105] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1293.612396][T12087] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1293.618539][T16662] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1293.685907][T12105] Bluetooth: hci9: command 0x0c1a tx timeout
[ 1293.692407][T16662] Bluetooth: hci8: command 0x040f tx timeout
[ 1293.704629][T23372] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1293.765849][T16662] Bluetooth: hci11: command 0x0419 tx timeout
[ 1293.772006][T12105] Bluetooth: hci10: command 0x040f tx timeout
[ 1295.367969][T23395] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input14
[ 1296.477291][T16357] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1297.022413][T23213] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1297.472674][T23213] veth0_vlan: entered promiscuous mode
[ 1297.529179][T23213] veth1_vlan: entered promiscuous mode
[ 1297.699604][T23213] veth0_macvtap: entered promiscuous mode
[ 1297.744774][T23213] veth1_macvtap: entered promiscuous mode
[ 1297.846483][T23213] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1297.911498][T23213] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1297.984793][T12533] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1298.037379][T12533] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1298.099918][T12533] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1298.149875][T12533] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1298.831529][T12533] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1298.863652][T12533] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1299.180250][T16356] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1299.204637][T16356] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1300.109316][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.115968][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.385704][T23414] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1300.399258][T23414] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1300.427782][T23414] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1300.444983][T23414] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1300.472726][T23414] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1300.495614][T23414] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1300.512088][T23414] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1300.542202][T23414] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1300.559492][T23414] Bluetooth: hci9: Opcode 0x0c1a failed: -4
[ 1300.584995][T23414] Bluetooth: hci10: Opcode 0x0c1a failed: -4
[ 1300.604682][T23414] Bluetooth: hci11: Opcode 0x0c1a failed: -4
[ 1301.367376][   T30] INFO: task syz-executor:15132 blocked for more than 143 seconds.
[ 1301.367409][   T30]       Tainted: G             L      syzkaller #0
[ 1301.367425][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1301.367436][   T30] task:syz-executor    state:D stack:22744 pid:15132 tgid:15132 ppid:1      task_flags:0x400140 flags:0x00080002
[ 1301.367512][   T30] Call Trace:
[ 1301.367520][   T30]  <TASK>
[ 1301.367535][   T30]  __schedule+0x1295/0x67a0
[ 1301.367591][   T30]  ? __pfx___schedule+0x10/0x10
[ 1301.367622][   T30]  ? find_held_lock+0x2b/0x80
[ 1301.367656][   T30]  ? schedule+0x2bf/0x390
[ 1301.367692][   T30]  schedule+0xdd/0x390
[ 1301.367730][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1301.367764][   T30]  __mutex_lock+0xced/0x1b10
[ 1301.367802][   T30]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1301.367845][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1301.367892][   T30]  ? net_generic+0xea/0x2a0
[ 1301.367922][   T30]  ? net_generic+0xea/0x2a0
[ 1301.367959][   T30]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1301.367994][   T30]  nfsd_shutdown_threads+0x5b/0xf0
[ 1301.368030][   T30]  nfsd_umount+0x3b/0x60
[ 1301.368067][   T30]  deactivate_locked_super+0xc1/0x1b0
[ 1301.368096][   T30]  deactivate_super+0xe7/0x110
[ 1301.368123][   T30]  cleanup_mnt+0x21f/0x450
[ 1301.368154][   T30]  task_work_run+0x150/0x240
[ 1301.368181][   T30]  ? __pfx_task_work_run+0x10/0x10
[ 1301.368208][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1301.368242][   T30]  exit_to_user_mode_loop+0x157/0x670
[ 1301.368283][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1301.368315][   T30]  do_syscall_64+0x652/0x840
[ 1301.368350][   T30]  ? clear_bhb_loop+0x40/0x90
[ 1301.368382][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.368409][   T30] RIP: 0033:0x7f212b59e097
[ 1301.368429][   T30] RSP: 002b:00007ffd528f9978 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1301.368455][   T30] RAX: 0000000000000000 RBX: 00007f212b6321ca RCX: 00007f212b59e097
[ 1301.368472][   T30] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd528f9a30
[ 1301.368489][   T30] RBP: 00007ffd528f9a30 R08: 00007ffd528faa30 R09: 00000000ffffffff
[ 1301.368506][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd528faac0
[ 1301.368522][   T30] R13: 00007f212b6321ca R14: 0000000000117605 R15: 00007ffd528fab00
[ 1301.368555][   T30]  </TASK>
[ 1301.368575][   T30] INFO: task syz-executor:20003 blocked for more than 143 seconds.
[ 1301.368595][   T30]       Tainted: G             L      syzkaller #0
[ 1301.368610][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1301.368621][   T30] task:syz-executor    state:D stack:24200 pid:20003 tgid:20003 ppid:1      task_flags:0x400140 flags:0x00080002
[ 1301.368696][   T30] Call Trace:
[ 1301.368704][   T30]  <TASK>
[ 1301.368723][   T30]  __schedule+0x1295/0x67a0
[ 1301.369134][   T30]  ? __pfx___schedule+0x10/0x10
[ 1301.369167][   T30]  ? find_held_lock+0x2b/0x80
[ 1301.369199][   T30]  ? schedule+0x2bf/0x390
[ 1301.369235][   T30]  schedule+0xdd/0x390
[ 1301.369267][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1301.369300][   T30]  __mutex_lock+0xced/0x1b10
[ 1301.369337][   T30]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1301.369379][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1301.369425][   T30]  ? net_generic+0xea/0x2a0
[ 1301.369455][   T30]  ? net_generic+0xea/0x2a0
[ 1301.369493][   T30]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1301.369528][   T30]  nfsd_shutdown_threads+0x5b/0xf0
[ 1301.369564][   T30]  nfsd_umount+0x3b/0x60
[ 1301.369600][   T30]  deactivate_locked_super+0xc1/0x1b0
[ 1301.369628][   T30]  deactivate_super+0xe7/0x110
[ 1301.369656][   T30]  cleanup_mnt+0x21f/0x450
[ 1301.369687][   T30]  task_work_run+0x150/0x240
[ 1301.369712][   T30]  ? __pfx_task_work_run+0x10/0x10
[ 1301.369746][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1301.369779][   T30]  exit_to_user_mode_loop+0x157/0x670
[ 1301.369819][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1301.369851][   T30]  do_syscall_64+0x652/0x840
[ 1301.369885][   T30]  ? clear_bhb_loop+0x40/0x90
[ 1301.369916][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.369942][   T30] RIP: 0033:0x7fb7ccd9e097
[ 1301.369962][   T30] RSP: 002b:00007ffd56556258 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1301.369987][   T30] RAX: 0000000000000000 RBX: 00007fb7cce321ca RCX: 00007fb7ccd9e097
[ 1301.370004][   T30] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd56556310
[ 1301.370021][   T30] RBP: 00007ffd56556310 R08: 00007ffd56557310 R09: 00000000ffffffff
[ 1301.370039][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd565573a0
[ 1301.370055][   T30] R13: 00007fb7cce321ca R14: 000000000011660c R15: 00007ffd565573e0
[ 1301.370087][   T30]  </TASK>
[ 1301.370103][   T30] INFO: task syz.2.2862:21502 blocked for more than 143 seconds.
[ 1301.370124][   T30]       Tainted: G             L      syzkaller #0
[ 1301.370138][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1301.370149][   T30] task:syz.2.2862      state:D stack:27640 pid:21502 tgid:21500 ppid:18930  task_flags:0x400140 flags:0x00080002
[ 1301.370230][   T30] Call Trace:
[ 1301.370238][   T30]  <TASK>
[ 1301.370252][   T30]  __schedule+0x1295/0x67a0
[ 1301.370302][   T30]  ? __pfx___schedule+0x10/0x10
[ 1301.370333][   T30]  ? find_held_lock+0x2b/0x80
[ 1301.370634][   T30]  ? schedule+0x2bf/0x390
[ 1301.370672][   T30]  schedule+0xdd/0x390
[ 1301.370704][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1301.370744][   T30]  __mutex_lock+0xced/0x1b10
[ 1301.370781][   T30]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1301.370823][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1301.370870][   T30]  ? net_generic+0xea/0x2a0
[ 1301.370901][   T30]  ? net_generic+0xea/0x2a0
[ 1301.370938][   T30]  ? nfsd_shutdown_threads+0x5b/0xf0
[ 1301.370973][   T30]  nfsd_shutdown_threads+0x5b/0xf0
[ 1301.371009][   T30]  nfsd_umount+0x3b/0x60
[ 1301.371045][   T30]  deactivate_locked_super+0xc1/0x1b0
[ 1301.371073][   T30]  deactivate_super+0xe7/0x110
[ 1301.371101][   T30]  cleanup_mnt+0x21f/0x450
[ 1301.371132][   T30]  task_work_run+0x150/0x240
[ 1301.371158][   T30]  ? __pfx_task_work_run+0x10/0x10
[ 1301.371185][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1301.371218][   T30]  exit_to_user_mode_loop+0x157/0x670
[ 1301.371258][   T30]  ? rcu_is_watching+0x12/0xc0
[ 1301.371290][   T30]  do_syscall_64+0x652/0x840
[ 1301.371325][   T30]  ? clear_bhb_loop+0x40/0x90
[ 1301.371356][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1301.371382][   T30] RIP: 0033:0x7fca4399ce59
[ 1301.371401][   T30] RSP: 002b:00007fca448fc028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1301.371426][   T30] RAX: ffffffffffffffec RBX: 00007fca43c16090 RCX: 00007fca4399ce59
[ 1301.371444][   T30] RDX: 00002000000001c0 RSI: 0000200000000000 RDI: 0000000000000000
[ 1301.371461][   T30] RBP: 00007fca43a32d6f R08: 0000000000000000 R09: 0000000000000000
[ 1301.371478][   T30] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[ 1301.371494][   T30] R13: 00007fca43c16128 R14: 00007fca43c16090 R15: 00007ffec5c348f8
[ 1301.371526][   T30]  </TASK>
[ 1301.371584][   T30] 
[ 1301.371584][   T30] Showing all locks held in the system:
[ 1301.371602][   T30] 1 lock held by khungtaskd/30:
[ 1301.371617][   T30]  #0: ffffffff8e7e5360 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[ 1301.371731][   T30] 2 locks held by syz-executor/15132:
[ 1301.371746][   T30]  #0: ffff88802dd840d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1301.371814][   T30]  #1: ffffffff8ec623e0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1301.371884][   T30] 2 locks held by kworker/u10:41/16354:
[ 1301.371899][   T30]  #0: ffff88813fe94940 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980
[ 1301.371965][   T30]  #1: ffffc90004037d08 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980
[ 1301.372027][   T30] 2 locks held by syz-executor/20003:
[ 1301.372041][   T30]  #0: ffff888034b2c0d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1301.372106][   T30]  #1: ffffffff8ec623e0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1301.372176][   T30] 2 locks held by syz.4.2829/21329:
[ 1301.372190][   T30]  #0: ffffffff906b4a88 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1301.372289][   T30]  #1: ffffffff8ec623e0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x8c8/0x1100
[ 1301.372351][   T30] 2 locks held by syz.2.2862/21502:
[ 1301.372366][   T30]  #0: ffff888078f3e0d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1301.372433][   T30]  #1: ffffffff8ec623e0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1301.372505][   T30] 2 locks held by syz-executor/21548:
[ 1301.372520][   T30]  #0: ffff8880797000d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1301.372586][   T30]  #1: ffffffff8ec623e0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1301.372657][   T30] 2 locks held by syz-executor/21608:
[ 1301.372671][   T30]  #0: ffff88807d0d40d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1301.372746][   T30]  #1: ffffffff8ec623e0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1301.372816][   T30] 2 locks held by syz-executor/21656:
[ 1301.372831][   T30]  #0: ffff888032d060d8 (&type->s_umount_key#52){+.+.}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1301.372898][   T30]  #1: ffffffff8ec623e0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1301.372971][   T30] 2 locks held by syz.3.2986/22720:
[ 1301.372986][   T30]  #0: ffffffff906b4a88 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1301.373054][   T30]  #1: ffffffff8ec623e0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x8c8/0x1100
[ 1301.373116][   T30] 2 locks held by syz.5.3074/23328:
[ 1301.373131][   T30]  #0: ffffffff906b4a88 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1301.373199][   T30]  #1: ffffffff8ec623e0 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x8c8/0x1100
[ 1301.373260][   T30] 5 locks held by syz.7.3087/23429:
[ 1301.373276][   T30] 1 lock held by syz.0.3088/23433:
[ 1301.373291][   T30] 1 lock held by syz.4.3089/23434:
[ 1301.373305][   T30]  #0: ffff88807ca9e538 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x1f5/0x470
[ 1301.373372][   T30] 1 lock held by syz.4.3089/23435:
[ 1301.373388][   T30] 1 lock held by syz.4.3089/23436:
[ 1301.373402][   T30] 1 lock held by modprobe/23438:
[ 1301.373418][   T30] 
[ 1301.373424][   T30] =============================================
[ 1301.373424][   T30] 
[ 1301.373436][   T30] NMI backtrace for cpu 0
[ 1301.373452][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1301.373484][   T30] Tainted: [L]=SOFTLOCKUP
[ 1301.373492][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1301.373505][   T30] Call Trace:
[ 1301.373512][   T30]  <TASK>
[ 1301.373521][   T30]  dump_stack_lvl+0x100/0x190
[ 1301.373545][   T30]  nmi_cpu_backtrace.cold+0x12d/0x151
[ 1301.373574][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1301.373598][   T30]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[ 1301.373629][   T30]  sys_info+0x141/0x190
[ 1301.373649][   T30]  watchdog+0xcb1/0x1030
[ 1301.373688][   T30]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1301.373726][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1301.373759][   T30]  ? __kthread_parkme+0x18c/0x230
[ 1301.373793][   T30]  ? kthread+0x13a/0x450
[ 1301.373830][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1301.373861][   T30]  kthread+0x370/0x450
[ 1301.373896][   T30]  ? __pfx_kthread+0x10/0x10
[ 1301.373933][   T30]  ret_from_fork+0x72b/0xd50
[ 1301.373959][   T30]  ? __pfx_ret_from_fork+0x10/0x10
[ 1301.373985][   T30]  ? __switch_to+0x800/0x1100
[ 1301.374017][   T30]  ? __switch_to_asm+0x39/0x70
[ 1301.374047][   T30]  ? __pfx_kthread+0x10/0x10
[ 1301.374085][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1301.374129][   T30]  </TASK>
[ 1301.374160][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[ 1301.374178][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1301.374211][   T30] Tainted: [L]=SOFTLOCKUP
[ 1301.374220][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1301.374235][   T30] Call Trace:
[ 1301.374243][   T30]  <TASK>
[ 1301.374252][   T30]  dump_stack_lvl+0x100/0x190
[ 1301.374277][   T30]  vpanic+0x552/0x970
[ 1301.374300][   T30]  ? __pfx_vpanic+0x10/0x10
[ 1301.374324][   T30]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[ 1301.374353][   T30]  ? nmi_trigger_cpumask_backtrace+0x182/0x230
[ 1301.374384][   T30]  panic+0xd1/0xe0
[ 1301.374406][   T30]  ? __pfx_panic+0x10/0x10
[ 1301.374433][   T30]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[ 1301.374460][   T30]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[ 1301.374487][   T30]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[ 1301.374513][   T30]  ? watchdog.cold+0x1ec/0x234
[ 1301.374541][   T30]  ? watchdog+0xcc1/0x1030
[ 1301.374575][   T30]  watchdog.cold+0x1fd/0x234
[ 1301.374608][   T30]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1301.374641][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1301.374675][   T30]  ? __kthread_parkme+0x18c/0x230
[ 1301.374710][   T30]  ? kthread+0x13a/0x450
[ 1301.374749][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1301.374782][   T30]  kthread+0x370/0x450
[ 1301.374817][   T30]  ? __pfx_kthread+0x10/0x10
[ 1301.374856][   T30]  ret_from_fork+0x72b/0xd50
[ 1301.374882][   T30]  ? __pfx_ret_from_fork+0x10/0x10
[ 1301.374909][   T30]  ? __switch_to+0x800/0x1100
[ 1301.374941][   T30]  ? __switch_to_asm+0x39/0x70
[ 1301.374972][   T30]  ? __pfx_kthread+0x10/0x10
[ 1301.375014][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1301.375059][   T30]  </TASK>
[ 1301.375127][   T30] Kernel Offset: disabled