last executing test programs:

6.639217777s ago: executing program 1 (id=597):
socket(0xa, 0x3, 0x3a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/statistics/rx_packets\x00', 0x244100, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0)
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="e3b72bbd7000fcdbdf251d"], 0x14}, 0x1, 0x0, 0x0, 0x20008841}, 0x48000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000200)="0b41eabf", 0x4)
read$auto(r2, &(0x7f0000000100)='N\xd5\f\xb9GC*(,\x00\xc4bAL\xa3`\xb1\xf2\xe7\xc04b$\x99.\xb4\xcc\xc0%\xaa\xd3\xd5\xef\xa4\xd35u\xc0\xa6\r\xcaJ\x11\xaf\x93\xde\xc3|\x17\x96\xd1\x15g\x10\x1ai1(=!\xf1\xe8\xe4\xcdm\xedKW\xe7\xfbL\\\xf2sj(\v\xcd\xe5\x02B\x81ss$ \x93\xff\xd9\x96\xb8\x88\x92@{\xdd\x8199\xa5\x1e\xb0A\xa3\xcbj7\xe9\xc9L\xcc\xc6\xa4\xaf%\xba\xda\xee\xd8%:bXj\xd5[UG\x8a\x8ab\x9a\x18\xe8K\xafU\x8d\xb1\f~\xaa\xab(\x86(\xf9\b\xf7$%\xf2\x11\xa4\x9bj\xc1)\n\x1ft\xb6\xaf\xe2\xd4\x95\xa3\xe1\x1f\xf7uw\a\xd0\x83{_>/\xff', 0x100000004)
sendmsg$auto_HWSIM_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000dc0)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
write$auto(r2, &(0x7f00000000c0)='\xc4\x1dR\x00\x003\x1bO\xbb\x98)\x7fTa1\xa3\xd0\x89\x1e\\\xff', 0x8587)

5.821419283s ago: executing program 0 (id=600):
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
sysfs$auto(0x2, 0x10000000000002c, 0x0)
fsopen$auto(0x0, 0x1)
fsconfig$auto(r0, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf250200000008000300000000001b0004"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

5.649982044s ago: executing program 1 (id=602):
r0 = fsopen$auto(&(0x7f0000000000)='/sys/kernel/debug/orangefs/kernel-debug\x00', 0xe003b837)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
read$auto(r1, 0x0, 0xfffffffffffffffb)
r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), 0xffffffffffffffff)
r3 = getpid()
inotify_init1$auto(0x800)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xffd}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000180)="3bb52db856f2ba82c1461bc3adb87f16f1af6bc87fe3d0661749cbfd96367a9d17814b162df12acbf18ca85216b13a5aa9e1a6a39e0722ddd1e881", 0x1ffffffff}, 0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = memfd_create$auto(&(0x7f0000000300)='caif0\x00', 0x3ff)
ioctl$auto(0xc8, 0x400454cb, 0x0)
vmsplice$auto(r4, &(0x7f0000000440)={&(0x7f0000000340)="c26b6bee934ffa89a4f5cc7e1b42ee05d7487680ccd443115cc498dd8e97d8b2d57f43714fa3441eb9c3751a7c23295d6c21f8474683d58f4d5dc4d19b5d4281b426994125ada61848858f4002baa6dcdd0cdf8dc06f0be632c083d21fcc47fd3c5c67a4ee6ee62046e9829630f34c3a2dbf82ae480ce9ba5cf4d1516b75f50639b2d41948a5f7f1b18b33fa35e69bdce6bda605fd5bf122aafc4b9d2a878de2f9b33ef357e47bab7b2c7b5eebbfbb299d43b3bf33ac4a4668b7b1328817d860577e90def189da8c14693f991b5226484e5f553b1bc651d922f82d43d6112c3b4d5c105257005baf0083b7f57d485808c9b9608a", 0x2}, 0x510, 0x7fffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r5, r5, 0x0)
r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vbi3\x00', 0x2af01, 0x0)
ioctl$auto(r6, 0xc0585611, r6)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'caif0\x00'})
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40040000}, 0xc, &(0x7f0000000280)={&(0x7f0000000680)={0x508, r2, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0x2b8, 0x3, 0x0, 0x1, [@typed={0x8, 0x45, 0x0, 0x0, @pid=r3}, @nested={0x2a9, 0x13d, 0x0, 0x1, [@generic="c878dcdf5eae4cb262b50d08cedf6c49c8648ceda607e1f9b443f74809fe5fc18392aadb9409f7a9289df327fac4cf844ca95d9bd4abfabdb19b00887ff437095ce1504c5bb873269a78e024cc894bde13d1717cff79ee01c540cf955b460a8043144cbbc97270e8d480d48abf5968ffba70992be82534e57600ab5183c4298fd92a734450e733e7616da33edc6df9b3208f109cee52a9009e25b351caed0e7716d454a97a29f0100e20a9b817d670051659bbe29c8dde02b95546c2496d00a05e", @generic="c3060c866bdb1e215193fc6f39863c75f30d2c2182d5844c6486613262ea9f18a6f4d7bfd1dea2a5193605e09dd190c486acfcfffe123197348eede86e8f3f5855414e60487b4c13c27c5bc5d3243c75bced462465373450791d83b06781280108222a0b562164f0904f823451d0f06fad2f673a2addc38c691f72769c942eecdcd665a0998ea7df163f6342f08ea2d41f7a85bb23d6d547c9baf831ff5abbf4122f6d3a3cf2005143a453f43aa0091d0c34e866ef0e33a8a408fe60f16bfbcd251e0ccfc15dbe5157811f1ab18326bee17b6fc1ca5b20e1323452745f9bbb8bfada1265293c", @typed={0x14, 0x156, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3b}}}, @nested={0x4, 0x12e}, @generic="7a81ab3629991738c2b8372e73a894571f390af36b7155852a4c8ee4d6401bd16bf5c31f1139aedbdcc91778b927f58cca931c118b0d6728994ccf8856ad9cec2ec87013d2b396920a9b67064d0a51980b44", @generic="d244c7e677524bf73a697802c02b59364a7c06635be2e2d483b53cbd06ec2318a732b8ff5723be2b57045cbf296b55f84d1909a435d0576698012cbacd6e01836b2de77131dea3273504c1968b4761fbf329217d343b094fa365d686e57c9e2704dd1103e2362d6c738c4b094e07cf791fdbbd6ac1e53d468e8a7cfb02d0817755a1093aaa7fed6b", @typed={0x4, 0x85}, @nested={0x4, 0x132}, @nested={0x4, 0x7c}]}]}, @MACSEC_ATTR_SA_CONFIG={0x108, 0x3, 0x0, 0x1, [@nested={0x10, 0x31, 0x0, 0x1, [@typed={0xc, 0x12b, 0x0, 0x0, @u64=0x5}]}, @generic="abde9d59d2e4b731a5c09e3d49014abcfc85812e4f2a2c0be68675b99e690f207ee00e19f6574efb9e37ae331ade3a026d28bdb89a49798a1f47bada65b5f4c69d6ac4b7d1586dcb62a2d9d24d0d094ee50500fb19d963530d4eca72d014a731cb31ee584d184072ecfe81c19747ad6284f04992d4c25ed551f7422aefc990921fa68158c0aae66c43be8c4f8426fe8043e224cc58d2d8b6a6765429cd8e3e08efc76f9f4ddeea29e0383be4a6dec0744c12a1fb7da9d07a0a9ed6f0fcfc11c5e00ff249a863af12c002c52aeb712218caa54a1568010fb97d7627468961b2da237ced9566915ffa87b7f87bc92d805fb4c348b0"]}, @MACSEC_ATTR_RXSC_CONFIG={0x134, 0x2, 0x0, 0x1, [@nested={0x14, 0x25, 0x0, 0x1, [@typed={0xb, 0x8c, 0x0, 0x0, @str='macsec\x00'}, @nested={0x4, 0xed}]}, @nested={0x8, 0x12e, 0x0, 0x1, [@nested={0x4, 0x140}]}, @nested={0x5a, 0x13b, 0x0, 0x1, [@generic="a099c42a3b254bbb3a1f132b4f9af7ec29d8c025c2ea0cfce9e617fc7eb9230e662ee62a5f5680373d417e9ab945", @typed={0x4, 0x6a}, @nested={0x4, 0x54}, @typed={0x14, 0x131, 0x0, 0x0, @ipv6=@private2}, @nested={0x4, 0x12f}, @typed={0x8, 0x99, 0x0, 0x0, @fd=r0}]}, @typed={0x8, 0xff, 0x0, 0x0, @u32=0x6}, @nested={0x9e, 0xfd, 0x0, 0x1, [@generic="b8ced7969ff9144f4b6673b6bc59aa5a08f2dd69488e87729ba4eaea2199018e3f44fb3da7612522fd189759f655b3b2a65b54288c685ebfb8b030209402d8f4cad649aa7fea8640c72b9f130013fa521841cb31e98d54a2a210d67351806cdc33723826b542458c354eabbd61b1b8f39dbde287c89a23813abdafe6feb085217eaf1ecf995f630beb56b9e56b992bcee34f1a4cb55ce4febf90"]}, @typed={0x4, 0x23}, @nested={0xc, 0x32, 0x0, 0x1, [@typed={0x8, 0x37, 0x0, 0x0, @ipv4=@rand_addr=0x64010100}]}]}]}, 0x508}, 0x1, 0x0, 0x0, 0x44090}, 0xc850)
openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000640), 0x201, 0x0)

5.336286458s ago: executing program 0 (id=604):
pread64$auto(0xffffffffffffffff, 0x0, 0x3, 0x8000)
open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
r0 = socket(0x18, 0x5, 0x1)
connect$auto(r0, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
close_range$auto(0x0, 0xfffff004, 0x2)

5.214032108s ago: executing program 1 (id=606):
openat$auto_adf_ctl_ops_adf_ctl_drv(0xffffffffffffff9c, &(0x7f0000000080), 0x20140, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_ehash_entries\x00', 0x40100, 0x0)
ioctl$auto_BTRFS_IOC_RM_DEV(0xffffffffffffffff, 0x5000940b, &(0x7f0000001180)={@raw=0x6, "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"})
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000200), 0x101802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x301040, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x2000, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0xaea3, 0x0)
r2 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001140)='/dev/psaux\x00', 0x42000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x8, 0x3000, 0x6, 0x7, 0x400b, r2, [], {0x6, 0x6, 0x8c48, 0x29a, 0x9, 0x80, 0x104, 0x6, 0x4}, {0x100, 0x1, 0x101, 0x85, 0x2, 0x24, 0xfe000000, 0x8, 0x3}})
r3 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x0, 0x0)
read$auto_vhci_fops_hci_vhci(r3, &(0x7f0000000d40)=""/16, 0x10)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000580)={[0x1ff, 0x8000, 0xd, 0x400001, 0x200948d, 0x3, 0x10015f4da0a, 0xe, 0x7, 0x5, 0x8000001f, 0x8, 0x6d3e, 0x200000002, 0x2, 0xffffffffffffffff]}, 0x0)

4.944808575s ago: executing program 0 (id=609):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x28, 0x1, 0x0)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
setsockopt$auto_SO_BUSY_POLL_BUDGET(r0, 0x1, 0x46, 0x0, 0x94)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000040)={[0xc, 0x200, 0xb, 0x8fd6, 0x0, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0x1]}, 0x0)
openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/comm\x00', 0x2, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'vlan1\x00', <r3=>0x0})
sendmsg$auto_NETDEV_CMD_BIND_RX(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x28, r2, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r3}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r1}, @NETDEV_A_DMABUF_QUEUES={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)
r4 = socketpair$auto(0x2001c, 0x5, 0xbae, 0x0)
ioctl$auto_BLKTRACESETUP2(r4, 0xc0481273, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r7)
ioctl$auto_KVM_CREATE_VM(r6, 0xc048aeca, 0x0)
sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(r4, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r5, 0x330, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_STA_WME={0x4}, @NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x9f}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}, @NL80211_ATTR_VIF_RADIO_MASK={0x8, 0x14d, 0xd}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x44041)

4.633023282s ago: executing program 2 (id=610):
kexec_load$auto(0xff, 0xfff, 0x0, 0x4)
socket(0xa, 0x5, 0x84)
ioctl$auto_EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, 0x0)
mmap$auto(0x0, 0x400008, 0xe3, 0x9b72, 0xffffffffffffffff, 0x9)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x82002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)="fb", 0x1)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/apparmor/parameters/path_max\x00', 0x40, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f00000000c0)=""/5, 0x5) (fail_nth: 2)
socket(0x10, 0x2, 0xc)

4.101640477s ago: executing program 1 (id=611):
socket(0xa, 0x3, 0x3a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/statistics/rx_packets\x00', 0x244100, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0)
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="e3b72bbd7000fcdbdf251d"], 0x14}, 0x1, 0x0, 0x0, 0x20008841}, 0x48000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000200)="0b41eabf", 0x4)
read$auto(r2, &(0x7f0000000100)='N\xd5\f\xb9GC*(,\x00\xc4bAL\xa3`\xb1\xf2\xe7\xc04b$\x99.\xb4\xcc\xc0%\xaa\xd3\xd5\xef\xa4\xd35u\xc0\xa6\r\xcaJ\x11\xaf\x93\xde\xc3|\x17\x96\xd1\x15g\x10\x1ai1(=!\xf1\xe8\xe4\xcdm\xedKW\xe7\xfbL\\\xf2sj(\v\xcd\xe5\x02B\x81ss$ \x93\xff\xd9\x96\xb8\x88\x92@{\xdd\x8199\xa5\x1e\xb0A\xa3\xcbj7\xe9\xc9L\xcc\xc6\xa4\xaf%\xba\xda\xee\xd8%:bXj\xd5[UG\x8a\x8ab\x9a\x18\xe8K\xafU\x8d\xb1\f~\xaa\xab(\x86(\xf9\b\xf7$%\xf2\x11\xa4\x9bj\xc1)\n\x1ft\xb6\xaf\xe2\xd4\x95\xa3\xe1\x1f\xf7uw\a\xd0\x83{_>/\xff', 0x100000004)
sendmsg$auto_HWSIM_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000dc0)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
write$auto(r2, &(0x7f00000000c0)='\xc4\x1dR\x00\x003\x1bO\xbb\x98)\x7fTa1\xa3\xd0\x89\x1e\\\xff', 0x8587)

3.632452698s ago: executing program 2 (id=612):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/net/bond0/queues/tx-6/traffic_class\x00', 0xe0a00, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000010c0)=""/136, 0x88)
openat$auto_trace_fops_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
socket(0x2d, 0x2, 0x0)
ioctl$auto(0x3, 0x89e0, 0x91)
ioctl$auto(r0, 0x4, 0xffffffffffffffff)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000300)='/proc/asound/card0/pcm0c/sub0/status\x00', 0x100, 0x0)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
pidfd_open$auto(0x1, 0x0)
r2 = socket(0x1, 0x3, 0x100)
setuid$auto(0xe)
r3 = socket(0x2a, 0x2, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYRES16=r1, @ANYRES16=<r4=>0xffffffffffffffff, @ANYRESDEC=r2], 0x1d8}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x46, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0112f647a6e1ea6dff1f2c4deb304affb391cab462c26ef92e3c9d05933168000000000000000000"], 0x14}, 0x1, 0x0, 0x0, 0x20040800}, 0x8000)
r5 = socket(0x25, 0x80000, 0xf)
sendmmsg$auto(r5, &(0x7f0000000140)={{&(0x7f0000000540)="420ae5241e61f87ca248ed7915a40f9466996b2655435377670375339767371f7957c8a72ee1320b8f5a73952007f1619169c2922315c5d352038a05a506bfdeb32c14343eca110ccf122e2dc8dcda15380e488a80df4a790d4ac31b62d222847b6a42302c9ed0f652de67488656ab454909b0f135faaa2e5ea1f143402fbd22acc0cf079e553c274dcf9a6bb98f7bbf8af552e93d5c4ffe74270d9be19d9ebbe3482c34334409f9b869701987bd4dbf134823162b40c13dd8c289419c365b66103932479b6efeff", 0x10, 0x0, 0x9, 0x0, 0x1f, 0x9}, 0x800009}, 0x7, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
setsockopt$auto(0x400000000000003, 0x29, 0x3, 0x0, 0x4)
r6 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000080), r5)
sendmsg$auto_NFC_CMD_FW_DOWNLOAD(0xffffffffffffffff, &(0x7f0000002700)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000026c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='g\"\x00\x00', @ANYRES16=r6], 0x2270}, 0x1, 0x0, 0x0, 0x804}, 0x4)
sendmsg$auto_NFC_CMD_LLC_SET_PARAMS(r3, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x80c0}, 0x2c000001)
r7 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="72010000", @ANYRESHEX=r4], 0x1ac}}, 0x0)

3.42335057s ago: executing program 0 (id=622):
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x28, 0x1, 0x0)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x15, 0x5, 0x0)
setsockopt$auto_SO_BUSY_POLL_BUDGET(r0, 0x1, 0x46, 0x0, 0x94)
select$auto(0x9, 0x0, 0x0, &(0x7f0000000040)={[0xc, 0x200, 0xb, 0x8fd6, 0x0, 0x3, 0x15f4da0a, 0x3, 0x3, 0x9, 0x80000001, 0x7, 0x1, 0x9, 0x1, 0x1]}, 0x0)
openat$auto_proc_pid_set_comm_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/comm\x00', 0x2, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
openat$auto_ubi_ctrl_cdev_operations_ubi(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000080), r1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'vlan1\x00', <r3=>0x0})
sendmsg$auto_NETDEV_CMD_BIND_RX(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x28, r2, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@NETDEV_A_DMABUF_IFINDEX={0x8, 0x1, r3}, @NETDEV_A_DMABUF_FD={0x8, 0x3, r1}, @NETDEV_A_DMABUF_QUEUES={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4)
r4 = socketpair$auto(0x2001c, 0x5, 0xbae, 0x0)
ioctl$auto_BLKTRACESETUP2(r4, 0xc0481273, 0x0)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r7)
ioctl$auto_KVM_CREATE_VM(r6, 0xc048aeca, 0x0)
sendmsg$auto_NL80211_CMD_UPDATE_CONNECT_PARAMS(r4, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r5, 0x330, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_STA_WME={0x4}, @NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x9f}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}, @NL80211_ATTR_VIF_RADIO_MASK={0x8, 0x14d, 0xd}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x44041)

3.22912374s ago: executing program 2 (id=615):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000900), 0xffffffffffffffff)
sendmsg$auto_OVS_FLOW_CMD_NEW(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000000)={0x18, r1, 0x1, 0x70bd25, 0x25dfdbff, {}, [@OVS_FLOW_ATTR_KEY={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x50040}, 0x810)

3.077878087s ago: executing program 3 (id=616):
r0 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cec4\x00', 0x10b703, 0x0)
ioctl$auto_CEC_S_MODE(r0, 0x40046109, &(0x7f0000002c40)=0xd0)
socket(0xa, 0x2, 0x88)
r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x101000, 0x0)
ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r1, 0xc05c6104, &(0x7f00000000c0)={"58f99464", 0x8, 0x6, 0x1, 0x3, 0x5, "4bb69ec4b3f4c14539898e4c5682f5", "347f00", "a630df9d", "a0ed9959", ["cd9196b8fe1a8a7eb90401a9", "2f9c30017721de33c560b95a", "d3fe6c55a78d6932211c9b69", "ea334f1f1e5e27a1320d6edb"]})
r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000048c0)='/dev/dsp1\x00', 0x20000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
ioctl$auto_SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000180)="6da6b940dfe114cacac8b7cca871a393aaf922f69708e077a3ff54d760f973198c7f36202c9afdaf7bc2eb57e0")
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\b', @ANYRES16=0x0, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000a000700000000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x300, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x9}, 0x3, 0x0)
select$auto(0x4, 0x0, &(0x7f0000000100)={[0x9, 0x7, 0xfffffffffffffff9, 0x9, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0xffff, 0x1ff, 0xd, 0x3, 0x200000201, 0x7, 0x6]}, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto(r4, 0x104000000000010e, 0xa, 0x0, 0x400)
r5 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_GTP_CMD_NEWPDP(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="07d0ac5a000000000020000000000000"], 0x14}, 0x1, 0x0, 0x0, 0x44}, 0x4)
sendmsg$auto_GTP_CMD_ECHOREQ(r3, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r5, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@GTPA_FLOW={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000000}, 0x80)
sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={0x0, 0xb5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x48880)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55)
close_range$auto(0x2, 0x8, 0x0)

3.013471406s ago: executing program 2 (id=617):
pread64$auto(0xffffffffffffffff, 0x0, 0x3, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
r0 = socket(0x18, 0x5, 0x1)
connect$auto(r0, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
close_range$auto(0x0, 0xfffff004, 0x2)

2.962921843s ago: executing program 1 (id=618):
r0 = fsopen$auto(&(0x7f0000000000)='/sys/kernel/debug/orangefs/kernel-debug\x00', 0xe003b837)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/pci/00/01.3\x00', 0x100, 0x0)
read$auto(r1, 0x0, 0xfffffffffffffffb)
r2 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000080), 0xffffffffffffffff)
r3 = getpid()
inotify_init1$auto(0x800)
process_vm_readv$auto(r3, &(0x7f0000000000)={0x0, 0xffd}, 0x800000001, &(0x7f0000000280)={&(0x7f0000000180)="3bb52db856f2ba82c1461bc3adb87f16f1af6bc87fe3d0661749cbfd96367a9d17814b162df12acbf18ca85216b13a5aa9e1a6a39e0722ddd1e881", 0x1ffffffff}, 0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = memfd_create$auto(&(0x7f0000000300)='caif0\x00', 0x3ff)
ioctl$auto(0xc8, 0x400454cb, 0x0)
vmsplice$auto(r4, &(0x7f0000000440)={&(0x7f0000000340)="c26b6bee934ffa89a4f5cc7e1b42ee05d7487680ccd443115cc498dd8e97d8b2d57f43714fa3441eb9c3751a7c23295d6c21f8474683d58f4d5dc4d19b5d4281b426994125ada61848858f4002baa6dcdd0cdf8dc06f0be632c083d21fcc47fd3c5c67a4ee6ee62046e9829630f34c3a2dbf82ae480ce9ba5cf4d1516b75f50639b2d41948a5f7f1b18b33fa35e69bdce6bda605fd5bf122aafc4b9d2a878de2f9b33ef357e47bab7b2c7b5eebbfbb299d43b3bf33ac4a4668b7b1328817d860577e90def189da8c14693f991b5226484e5f553b1bc651d922f82d43d6112c3b4d5c105257005baf0083b7f57d485808c9b9608adb956f3992d8", 0x2}, 0x510, 0x7fffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r5, r5, 0x0)
r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vbi3\x00', 0x2af01, 0x0)
ioctl$auto(r6, 0xc0585611, r6)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'caif0\x00'})
sendmsg$auto_MACSEC_CMD_UPD_RXSC(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40040000}, 0xc, &(0x7f0000000280)={&(0x7f0000000680)={0x508, r2, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@MACSEC_ATTR_SA_CONFIG={0x2b8, 0x3, 0x0, 0x1, [@typed={0x8, 0x45, 0x0, 0x0, @pid=r3}, @nested={0x2a9, 0x13d, 0x0, 0x1, [@generic="c878dcdf5eae4cb262b50d08cedf6c49c8648ceda607e1f9b443f74809fe5fc18392aadb9409f7a9289df327fac4cf844ca95d9bd4abfabdb19b00887ff437095ce1504c5bb873269a78e024cc894bde13d1717cff79ee01c540cf955b460a8043144cbbc97270e8d480d48abf5968ffba70992be82534e57600ab5183c4298fd92a734450e733e7616da33edc6df9b3208f109cee52a9009e25b351caed0e7716d454a97a29f0100e20a9b817d670051659bbe29c8dde02b95546c2496d00a05e", @generic="c3060c866bdb1e215193fc6f39863c75f30d2c2182d5844c6486613262ea9f18a6f4d7bfd1dea2a5193605e09dd190c486acfcfffe123197348eede86e8f3f5855414e60487b4c13c27c5bc5d3243c75bced462465373450791d83b06781280108222a0b562164f0904f823451d0f06fad2f673a2addc38c691f72769c942eecdcd665a0998ea7df163f6342f08ea2d41f7a85bb23d6d547c9baf831ff5abbf4122f6d3a3cf2005143a453f43aa0091d0c34e866ef0e33a8a408fe60f16bfbcd251e0ccfc15dbe5157811f1ab18326bee17b6fc1ca5b20e1323452745f9bbb8bfada1265293c", @typed={0x14, 0x156, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3b}}}, @nested={0x4, 0x12e}, @generic="7a81ab3629991738c2b8372e73a894571f390af36b7155852a4c8ee4d6401bd16bf5c31f1139aedbdcc91778b927f58cca931c118b0d6728994ccf8856ad9cec2ec87013d2b396920a9b67064d0a51980b44", @generic="d244c7e677524bf73a697802c02b59364a7c06635be2e2d483b53cbd06ec2318a732b8ff5723be2b57045cbf296b55f84d1909a435d0576698012cbacd6e01836b2de77131dea3273504c1968b4761fbf329217d343b094fa365d686e57c9e2704dd1103e2362d6c738c4b094e07cf791fdbbd6ac1e53d468e8a7cfb02d0817755a1093aaa7fed6b", @typed={0x4, 0x85}, @nested={0x4, 0x132}, @nested={0x4, 0x7c}]}]}, @MACSEC_ATTR_SA_CONFIG={0x108, 0x3, 0x0, 0x1, [@nested={0x10, 0x31, 0x0, 0x1, [@typed={0xc, 0x12b, 0x0, 0x0, @u64=0x5}]}, @generic="abde9d59d2e4b731a5c09e3d49014abcfc85812e4f2a2c0be68675b99e690f207ee00e19f6574efb9e37ae331ade3a026d28bdb89a49798a1f47bada65b5f4c69d6ac4b7d1586dcb62a2d9d24d0d094ee50500fb19d963530d4eca72d014a731cb31ee584d184072ecfe81c19747ad6284f04992d4c25ed551f7422aefc990921fa68158c0aae66c43be8c4f8426fe8043e224cc58d2d8b6a6765429cd8e3e08efc76f9f4ddeea29e0383be4a6dec0744c12a1fb7da9d07a0a9ed6f0fcfc11c5e00ff249a863af12c002c52aeb712218caa54a1568010fb97d7627468961b2da237ced9566915ffa87b7f87bc92d805fb4c348b0"]}, @MACSEC_ATTR_RXSC_CONFIG={0x134, 0x2, 0x0, 0x1, [@nested={0x14, 0x25, 0x0, 0x1, [@typed={0xb, 0x8c, 0x0, 0x0, @str='macsec\x00'}, @nested={0x4, 0xed}]}, @nested={0x8, 0x12e, 0x0, 0x1, [@nested={0x4, 0x140}]}, @nested={0x5a, 0x13b, 0x0, 0x1, [@generic="a099c42a3b254bbb3a1f132b4f9af7ec29d8c025c2ea0cfce9e617fc7eb9230e662ee62a5f5680373d417e9ab945", @typed={0x4, 0x6a}, @nested={0x4, 0x54}, @typed={0x14, 0x131, 0x0, 0x0, @ipv6=@private2}, @nested={0x4, 0x12f}, @typed={0x8, 0x99, 0x0, 0x0, @fd=r0}]}, @typed={0x8, 0xff, 0x0, 0x0, @u32=0x6}, @nested={0x9e, 0xfd, 0x0, 0x1, [@generic="b8ced7969ff9144f4b6673b6bc59aa5a08f2dd69488e87729ba4eaea2199018e3f44fb3da7612522fd189759f655b3b2a65b54288c685ebfb8b030209402d8f4cad649aa7fea8640c72b9f130013fa521841cb31e98d54a2a210d67351806cdc33723826b542458c354eabbd61b1b8f39dbde287c89a23813abdafe6feb085217eaf1ecf995f630beb56b9e56b992bcee34f1a4cb55ce4febf90"]}, @typed={0x4, 0x23}, @nested={0xc, 0x32, 0x0, 0x1, [@typed={0x8, 0x37, 0x0, 0x0, @ipv4=@rand_addr=0x64010100}]}]}]}, 0x508}, 0x1, 0x0, 0x0, 0x44090}, 0xc850)
openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000640), 0x201, 0x0)

2.765670538s ago: executing program 2 (id=619):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim2/new_port\x00', 0x183a41, 0x0)
writev$auto(r0, &(0x7f00000002c0)={&(0x7f0000000480)='4r', 0x5}, 0x1)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x3, 0x10, 0x40eb1, 0x401, 0xc)
r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r1, 0x0, 0x7)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000080)={0x0, 0x9}, 0x3)
kexec_load$auto(0xff, 0xfff, 0x0, 0x4)
ioctl$auto_EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x82002, 0x0)

2.661892719s ago: executing program 1 (id=620):
mmap$auto(0x0, 0x400008, 0xdf, 0x2000000009b72, 0xffffffffffffffff, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/per_cpu/cpu0/buffer_size_kb\x00', 0x42, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
getsockopt$auto(0x3, 0x200000000001, 0x1f, 0x0, 0x0)
io_uring_setup$auto(0x5b, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x10000, 0x1, 0x29f, 0x100, 0xfff, 0x101, 0x6, 0x2}, {0xfb, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x176c5, 0x400005, 0x100000005}})
bind$auto(0xffffffffffffffff, 0x0, 0x4006b)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto(0xa, 0x2, 0x13, 0xde)
r0 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
write$auto(0xffffffffffffffff, 0x0, 0x5)
socket(0x11, 0xa, 0xa)
sendmsg$auto_OVS_FLOW_CMD_SET(r0, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x90}, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x1000}, 0x100000007)

2.620202507s ago: executing program 3 (id=621):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/ram2/partscan\x00', 0x80200, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="140300003a4fa5eb57f121e263e697d4ed450653c9a04d4e5b9123e0f90e62c85d2f924ff0dd765749c6", @ANYRES16=0x0, @ANYBLOB="3b3d2bbd7000fcdbdf2502000000"], 0x14}}, 0x80)
close_range$auto(0x2, 0x8, 0x0)
r0 = io_uring_setup$auto(0x59, &(0x7f0000000100)={0x0, 0x1d, 0x3000, 0x58, 0x7, 0x402a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7d, 0x0, 0x6}, {0x100, 0x3, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c0, 0x7, 0x100000000}})
fsconfig$auto_HIDEPID_OFF(r0, 0xfffffffb, &(0x7f0000000180)='/dev/ptp0\x00', &(0x7f0000000340)="949b01109e510ee98b0c9dd09ac041e0a4846c1104b354f84e05ca2fcbaca8406382d20fcc34eb23e0ddd11247c0165bf9f2168746c3d7093e0af410d989c2fa5eac1668f7cbc3842c2b5b06bf951ebb71b2770fbbfcc0a5bc0e9ba4984b7b499917d5c71eafc8af037717ee42801dff32392d163d163386e0b0e003f4ff671a97009c0a30133eb73687573d4e8dfe2929d56711bf7a9ba586fc0dc2d9c3486d5bc7db09d83907c0f4fa8b468cd31b0f09447f47bc4a8da5f5d05eaecf8de0d50d537bd030779555e628fa659f16b2b5b106dc3606bd6b45b16ef1e0e47d07bdc640278948e8b465c8875d83", 0x0)
io_uring_register$auto(0x2, 0x21, &(0x7f0000000240), 0x1)
io_uring_setup$auto(0x5b, &(0x7f0000000080)={0x7fffffff, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x10000, 0x1, 0x29f, 0x100, 0xfff, 0x101, 0x6, 0x2}, {0xfb, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x176c5, 0x400005, 0x100000005}})
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/event1\x00', 0x40000, 0x0)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x0, 0x0)
mmap$auto(0x2000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket(0x11, 0x2, 0x2)
openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/034/001\x00', 0x201, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x2401, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x2, 0x73)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
socket(0xa, 0x2, 0x0)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000000c0), 0x161401, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2b, 0x1, 0x0)

1.981561631s ago: executing program 2 (id=623):
unshare$auto(0x40000080)
unshare$auto(0x1)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/pm_print_times\x00', 0x82942, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/net/rpc/nfs4.idtoname/channel\x00', 0x400, 0x0)
close_range$auto(0x2, 0x8, 0x0)
write$auto_ocfs2_control_fops_stack_user(0xffffffffffffffff, &(0x7f0000000000), 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
r0 = socket(0x2, 0x2, 0x0)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
rseq$auto(0x0, 0x8000, 0x0, 0x6)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
unshare$auto(0x40000080)
r1 = socket(0x23, 0x2, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x50)
r2 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0c\x00', 0x28000, 0x0)
ioctl$auto___SNDRV_PCM_IOCTL_SYNC_PTR322(r2, 0xc0844123, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r1)
sendmsg$auto_NL80211_CMD_LEAVE_MESH(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c39b39dc7c434bfff9ba0db76d8f1f851ea38b828dfcaaa93", @ANYRES16=r3, @ANYBLOB="000327bd7000fbdbdf25450000000500d50074000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20}, 0x40c8000)
landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa4, 0xffffffffffffffff, 0x68ef}, 0x9, 0x6)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x2, 0x0)
write$auto(r4, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x2000000006, 0x2)

1.677762112s ago: executing program 3 (id=624):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/net/bond0/bonding/arp_validate\x00', 0x2002, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
ioctl$auto_XFS_IOC_ERROR_INJECTION(0xffffffffffffffff, 0x40085874, 0x0)
read$auto_proc_timers_operations_base(0xffffffffffffffff, &(0x7f0000000200)=""/8, 0x8)
r0 = syz_genetlink_get_family_id$auto_ioam6(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="040028bd7000fedbdf250000000006000600050000000802020003000000080004006401000014000c00fe800000000000000000000000000033080008005e00000008000500"], 0x60}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000040)
sendmsg$auto_IOAM6_CMD_DUMP_NAMESPACES(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)={0x14, r0, 0x70b, 0x70bd24, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4040041}, 0xc840)
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r1, &(0x7f0000000040)="f6e6812018deadf7e88f819e30236ce79200e01532f2ed0d", 0x18)
r2 = openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', 0x48081, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000540)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/ACPI0010:00/LNXCPU:01/power/control\x00', 0x5b0181, 0x0)
write$auto_ocfs2_control_fops_stack_user(r3, &(0x7f0000003900)='\t', 0x1)
write$auto(r2, &(0x7f0000000080)=')@-!\x00', 0x1e1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r4, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="34000000804dff1522be0e0194776bd94c6801c9f6ee306f2ec81dfaed9e139ce02b9b6a5cfc10bebee9aeea67d4342a6ff114000000000000000044c4", @ANYRES16=r5, @ANYBLOB="0100253d7000fddbdf2501000000140007800c0001800800018000000000040089800c0002000600000000000000"], 0x34}, 0x1, 0x0, 0x0, 0x804}, 0x8880)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/kernel/perf_event_max_contexts_per_stack\x00', 0x202, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3ff, 0x200000000009, 0x5, 0x14, 0x944, 0x1ffe4, 0x3, 0x6, 0x4, 0x9, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0xd, 0x5, 0x3, 0x4, 0x7, 0x20, 0x309, 0x8, 0x0, 0xe, 0x0, 0x0, 0x0, 0x78, 0x0, 0x2, [0x3, 0x0, 0x0, 0x200, 0x9, 0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x4000000000000, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82, 0x9, 0x9, 0x0, 0xbec, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x10, 0xfffffffffffffffe, 0xffffffffffffd059, 0x0, 0x0, 0x0, 0x2961, 0x0, 0x2]}, 0x2001fb, 0x7f)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="0c7b52f929ab39361700f9339f55c5e667872058064b9f4ab08448119e450eba2033223f6e2f4e9acbb8919324493a9adbdd437aca1cbaad92873e8f9edd3f9b5e671ecb3c78bc1142f2ae58a67112b4e7c8534c", @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r6 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r6, &(0x7f0000000200)={{0x0, 0x1f00, &(0x7f0000000100)={0x0, 0xfdef}, 0x2, 0x0, 0x7, 0xa505}, 0x700}, 0x7, 0x4008)
sendmsg$auto_IOAM6_CMD_DEL_SCHEMA(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="000825bd700b000040080006000400000008000000ff070000080004000000000008000400000000000800000000000000029312caeae57377acde36056934f24e1d840555d50b730daa8b4c85cefad026cbae6d346731a43590663e0dc20bd0b8e5"], 0x44}, 0x1, 0x0, 0x0, 0x10040000}, 0x810)

1.148416056s ago: executing program 0 (id=625):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/workqueue/nf_ft_offload_del/nice\x00', 0x4aaa2, 0x0)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r0 = openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
pread64$auto(r0, &(0x7f0000000380)='\x00', 0x8e1c, 0x100)
r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/version\x00', 0x20002, 0x0)
write$auto_tomoyo_operations_securityfs_if(r1, 0x0, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)

1.019134672s ago: executing program 3 (id=626):
r0 = bpf$auto_BPF_ENABLE_STATS(0x20, &(0x7f0000000000)=@enable_stats={0x2}, 0x6)
sendmsg$auto_NL80211_CMD_CRIT_PROTOCOL_STOP(r0, &(0x7f0000000640)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000100)={0x500, 0x0, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@NL80211_ATTR_WDEV={0xc}, @NL80211_ATTR_WIPHY_SELF_MANAGED_REG={0x4}, @NL80211_ATTR_BEACON_TAIL={0x434, 0xf, "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"}, @NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x1}, @NL80211_ATTR_MAX_HW_TIMESTAMP_PEERS={0x6, 0x143, 0x3}, @NL80211_ATTR_MAC_MASK={0x8f, 0xd7, "f8097e888ca9294472eae19c2cb716d8980211d66d057def44a5f2baaa1023c5e446ca5c58edb3f617168713c4f1e024868fa7d3e9397240bd0df6a01fcc6b485a7e4bae8b914c1159e19bba7c022d111d66189109e8e34f2a4f4f3c10c3440dc6a47505da56e62fcee0daa0690468233b1bd371fbdf4fae4067f00cb26c41a72bff88211965444fda3430"}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8}]}, 0x500}}, 0x200400c5)
syz_genetlink_get_family_id$auto_psample(&(0x7f0000000680), r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r0)
sendmsg$auto_NL80211_CMD_TDLS_MGMT(r1, &(0x7f0000000940)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000900)={&(0x7f0000000740)={0x1ac, r2, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x8}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_STA_FLAGS2={0x5a, 0x43, "06988ee5c305cca817dee91498d28a84f97712ba427ae15df9028951fb91857c4f42a60b2859fccee02264ff58485c82935267b3db104736be0911844862b32cc636b9af9b7b257c980ccc6de7331d99e61659abf505"}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x7}, @NL80211_ATTR_SUPPORTED_SELECTORS={0x12, 0x14e, "e0c2ed902ee00d1c84bfc42cd2a4"}, @NL80211_ATTR_WPA_VERSIONS={0x8, 0x4b, 0x9}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x2}, @NL80211_ATTR_PMKID={0x87, 0x55, "e26de629a7fad8edb0d5e91de1168087c1362d42d9ac4002b933eff45ef2d592b62a3af496ba973613120d0281be6314f16d0f424f53a72414691d6eeb48443b173ee492026c81ac38a084e9594b6a66655af356bb4436a9da29757f2701c792d9295b3deaaddcc475457a33245e29537a0f4f8978b0ceffdaac6ff56688c34c5dfd58"}, @NL80211_ATTR_HT_CAPABILITY={0x77, 0x1f, "eb75146a6c4cfdafe37c9761ad9d147cedbdf2e618ebfb3e5b7e310e9c48f04b9ea394d1858f2f773c1da92cf90c97090a91dbe1b0ed6001dcc2fc6259d3a05f1fa1e0045e161425df20d73381aeb4ef2477160c24b0a49f7d1a9ecd64c33a5701238bc58ad310561227d879ddad7822e9bb51"}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x1}, 0x24000050)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL802154_CMD_NEW_SEC_LEVEL(r3, &(0x7f0000000a40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x40028088}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x24, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_BEACON_INTERVAL={0x5, 0x26, 0x8e}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x7f}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x20004044)
r4 = waitid$auto_P_PGID(0x2, 0x0, &(0x7f0000000a80)={@_si_pad}, 0x80, &(0x7f0000000b00)={{0x4, 0x31}, {0x3, 0x2341}, 0x2, 0x8, 0x5, 0x5, 0x514, 0x8, 0x8, 0x478, 0x5, 0x3, 0x100000001, 0x8001, 0x2, 0xd})
ptrace$auto_PTRACE_SYSEMU_SINGLESTEP(0x20, r4, 0x7, 0x9)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000c00), r0)
sendmsg$auto_L2TP_CMD_NOOP(r3, &(0x7f0000000d00)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c40)={0x48, r5, 0x100, 0x70bd26, 0x25dfdbfc, {}, [@L2TP_ATTR_PEER_COOKIE={0xc, 0x10, 0x81}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0xfff6}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x6}, @L2TP_ATTR_OFFSET={0x6, 0x3, 0x5}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e21}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x9}]}, 0x48}, 0x1, 0x0, 0x0, 0x40010}, 0x8000)
read$auto_nvram_misc_fops_nvram(r0, &(0x7f0000000d40)=""/255, 0xff)
r6 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000e40)='/dev/binderfs/binder1\x00', 0x1, 0x0)
write$auto_ctl_device_fops_user(r0, &(0x7f0000000e80)="16840e2a4e6e91a40e234c88fd94033674fa3ae1c12f5b3cd6a62cc7629f100ec9023a92f1b4e991d57b3dff0b63ee3b1fd8c94250a62b64f1514334be5f7975d6f45d9ea5ff8b92f308cefc10ef295b95756b5b8b938cdf5a657797e03fba7e420050d2026251", 0x67)
fanotify_mark$auto(r6, 0x80000000, 0x3, r0, &(0x7f0000000f00)='./file0\x00')
setsockopt$auto_SO_SNDTIMEO_OLD(r0, 0x4, 0x15, &(0x7f0000000f40)='/dev/binderfs/binder1\x00', 0x8)
r7 = openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f0000000f80)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/trigger\x00', 0x0, 0x0)
execveat$auto(r7, &(0x7f0000000fc0)='./file0\x00', &(0x7f0000001040)=&(0x7f0000001000)='l2tp\x00', &(0x7f00000010c0)=&(0x7f0000001080)='\x00', 0x1ff)
read$auto_uprobe_events_ops_trace_uprobe(r0, &(0x7f0000001100)=""/251, 0xfb)
sendmsg$auto_NL80211_CMD_VENDOR(r3, &(0x7f0000001380)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001340)={&(0x7f0000001240)={0xd4, r2, 0x400, 0x70bd28, 0x25dfdbff, {}, [@NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0xa4fc}, @NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0x6}, @NL80211_ATTR_VHT_CAPABILITY={0x36, 0x9d, "180f31b12605048c8d3e81b87c51ceb463d799c8e07a857175c3c9e5ab53a57c0631f31cbd4a99a76e1d1bffeb4a6e7cc065"}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_HT_CAPABILITY={0x65, 0x1f, "c9e4b3ba87c1c12c566c3aae155035d324ee40d7ce371a39e378c34285b192db6818287d382adbfce15d67c1f051daf42fba95b32efaf4a21253addd94446ee6b28ec94669bc3c4f30428ed045d69bf216742cf10c0521bb6c2a6b295e554349d8"}, @NL80211_ATTR_WIPHY_FRAG_THRESHOLD={0x8, 0x3f, 0x7}, @NL80211_ATTR_EPCS={0x4}]}, 0xd4}, 0x1, 0x0, 0x0, 0x4048011}, 0x40800)
r8 = openat$auto(0xffffffffffffffff, &(0x7f00000013c0)='./file0\x00', 0xb4f7, 0x2)
close_range$auto(r6, r8, 0x36c)
setsockopt$auto_SO_OOBINLINE(r7, 0xfff, 0xa, &(0x7f0000001400)='\x00', 0x8)
fcntl$auto(r3, 0xfffffffe, r4)
r9 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001480), r3)
sendmsg$auto_ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000001580)={&(0x7f0000001440), 0xc, &(0x7f0000001540)={&(0x7f00000014c0)={0x74, r9, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x14, 0x2, 0x0, 0x1, [@typed={0xd, 0x75, 0x0, 0x0, @str='*\x90\xfd.\':\\\x1f\x00'}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_PHY_INDEX={0x8, 0x4, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x48010}, 0x4008050)
mq_open$auto(&(0x7f00000015c0)='\x00', 0xfffffeff, 0x3ff, &(0x7f0000001600)={0xf, 0x1, 0x7, 0x66})
r10 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000001640)='/dev/audio\x00', 0x8600, 0x0)
ioctl$auto_OSS_ALSAEMULVER2(r10, 0x80044df9, &(0x7f0000001680)="b3b7e911ea0f5b1124ecb81be9027a9cd5b99abd20904e3ac292a9e499a6243c3c5d350fb33f8f086b78c09a13b036beddf876c7")

785.782173ms ago: executing program 3 (id=627):
socket(0xa, 0x3, 0x3a)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/mac802154_hwsim/ieee802154/phy1/net/wpan1/statistics/rx_packets\x00', 0x244100, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x0)
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="e3b72bbd7000fcdbdf251d"], 0x14}, 0x1, 0x0, 0x0, 0x20008841}, 0x48000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd15/queue/scheduler\x00', 0x103a42, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/netdevsim/del_device\x00', 0x501, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000200)="0b41eabf", 0x4)
read$auto(r2, &(0x7f0000000100)='N\xd5\f\xb9GC*(,\x00\xc4bAL\xa3`\xb1\xf2\xe7\xc04b$\x99.\xb4\xcc\xc0%\xaa\xd3\xd5\xef\xa4\xd35u\xc0\xa6\r\xcaJ\x11\xaf\x93\xde\xc3|\x17\x96\xd1\x15g\x10\x1ai1(=!\xf1\xe8\xe4\xcdm\xedKW\xe7\xfbL\\\xf2sj(\v\xcd\xe5\x02B\x81ss$ \x93\xff\xd9\x96\xb8\x88\x92@{\xdd\x8199\xa5\x1e\xb0A\xa3\xcbj7\xe9\xc9L\xcc\xc6\xa4\xaf%\xba\xda\xee\xd8%:bXj\xd5[UG\x8a\x8ab\x9a\x18\xe8K\xafU\x8d\xb1\f~\xaa\xab(\x86(\xf9\b\xf7$%\xf2\x11\xa4\x9bj\xc1)\n\x1ft\xb6\xaf\xe2\xd4\x95\xa3\xe1\x1f\xf7uw\a\xd0\x83{_>/\xff', 0x100000004)
sendmsg$auto_HWSIM_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000dc0)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
write$auto(r2, &(0x7f00000000c0)='\xc4\x1dR\x00\x003\x1bO\xbb\x98)\x7fTa1\xa3\xd0\x89\x1e\\\xff', 0x8587)

771.400043ms ago: executing program 0 (id=628):
pread64$auto(0xffffffffffffffff, 0x0, 0x3, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0\x00'})
close_range$auto(0x0, 0xffffffffffffffff, 0x2)
socket(0xa, 0x2, 0x0)
r0 = socket(0x18, 0x5, 0x1)
connect$auto(r0, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a)
close_range$auto(0x0, 0xfffff004, 0x2)

0s ago: executing program 3 (id=629):
r0 = socket(0x2, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
fallocate$auto(r0, 0x7, 0x4, 0x7ff)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
uname$auto(0x0)
setsockopt$auto(0x3, 0x10000000084, 0x84, 0x0, 0x90)
shutdown$auto(0x200000003, 0x0)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
sendmsg$auto_NFC_CMD_DEACTIVATE_TARGET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x4000800)
process_madvise$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, &(0x7f0000000140)={&(0x7f0000000000), 0x55}, 0x6, 0x8, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000080)={0x79})
setsockopt$auto(r0, 0x1, 0xf, &(0x7f0000000000)='\'-+\x00\x10\xa4#\x92`\xdb\xafL\x0f\xfbUV\xa6KH]Cv\xbf\xf2a\v', 0xeb66)
mmap$auto(0x0, 0x400008, 0xdf, 0xf1, 0x2, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r3 = pidfd_open$auto(0x1, 0x0)
setns(r3, 0x60020000)
bind$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x4001, @loopback}, 0x6b)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.116' (ED25519) to the list of known hosts.
[   82.254215][ T5812] cgroup: Unknown subsys name 'net'
[   82.385479][ T5812] cgroup: Unknown subsys name 'cpuset'
[   82.395404][ T5812] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   84.132745][ T5812] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   86.014416][ T5826] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   86.023466][ T5826] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   86.047678][ T5829] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   86.057339][ T5829] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   86.066462][ T5829] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   86.076138][ T5829] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   86.084281][ T5829] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   86.093321][ T5829] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   86.101567][ T5829] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   86.103413][ T5836] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   86.110846][ T5829] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   86.116234][ T5836] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   86.124697][ T5829] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   86.131385][ T5836] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   86.137723][ T5829] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   86.161910][ T5839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   86.169556][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   86.180523][ T5839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   86.188625][ T5839] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   86.197012][ T5829] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   86.684584][ T5828] chnl_net:caif_netlink_parms(): no params data found
[   86.907742][ T5834] chnl_net:caif_netlink_parms(): no params data found
[   86.921986][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.929258][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.937035][ T5828] bridge_slave_0: entered allmulticast mode
[   86.945220][ T5828] bridge_slave_0: entered promiscuous mode
[   86.960269][ T5827] chnl_net:caif_netlink_parms(): no params data found
[   86.984187][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.991570][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.998766][ T5828] bridge_slave_1: entered allmulticast mode
[   87.006275][ T5828] bridge_slave_1: entered promiscuous mode
[   87.027761][ T5823] chnl_net:caif_netlink_parms(): no params data found
[   87.210539][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.272904][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.406607][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.413932][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.421065][ T5827] bridge_slave_0: entered allmulticast mode
[   87.428711][ T5827] bridge_slave_0: entered promiscuous mode
[   87.435941][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.443213][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.450894][ T5834] bridge_slave_0: entered allmulticast mode
[   87.458523][ T5834] bridge_slave_0: entered promiscuous mode
[   87.468460][ T5828] team0: Port device team_slave_0 added
[   87.496928][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.504574][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.512477][ T5827] bridge_slave_1: entered allmulticast mode
[   87.519655][ T5827] bridge_slave_1: entered promiscuous mode
[   87.526879][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.534531][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.541782][ T5834] bridge_slave_1: entered allmulticast mode
[   87.548954][ T5834] bridge_slave_1: entered promiscuous mode
[   87.558185][ T5828] team0: Port device team_slave_1 added
[   87.573661][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.580899][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.588234][ T5823] bridge_slave_0: entered allmulticast mode
[   87.595760][ T5823] bridge_slave_0: entered promiscuous mode
[   87.638380][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.645786][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.653334][ T5823] bridge_slave_1: entered allmulticast mode
[   87.660548][ T5823] bridge_slave_1: entered promiscuous mode
[   87.706991][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.714712][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.740724][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.755617][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.769071][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.792709][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.802917][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.809911][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.840530][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.865465][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.877391][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.908471][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.941140][ T5827] team0: Port device team_slave_0 added
[   87.970350][ T5834] team0: Port device team_slave_0 added
[   87.978739][ T5827] team0: Port device team_slave_1 added
[   87.998092][ T5823] team0: Port device team_slave_0 added
[   88.006058][ T5834] team0: Port device team_slave_1 added
[   88.048621][ T5823] team0: Port device team_slave_1 added
[   88.083384][ T5828] hsr_slave_0: entered promiscuous mode
[   88.090367][ T5828] hsr_slave_1: entered promiscuous mode
[   88.107961][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.115195][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.141754][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.154832][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.161942][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.188612][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.201854][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.209008][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.235600][ T5826] Bluetooth: hci2: command tx timeout
[   88.235603][ T5829] Bluetooth: hci0: command tx timeout
[   88.242045][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.269569][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.276908][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.303924][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.311618][ T5829] Bluetooth: hci3: command tx timeout
[   88.314726][ T5826] Bluetooth: hci1: command tx timeout
[   88.350855][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.357952][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.384338][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.397586][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.404765][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.431553][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.542158][ T5827] hsr_slave_0: entered promiscuous mode
[   88.548488][ T5827] hsr_slave_1: entered promiscuous mode
[   88.554926][ T5827] debugfs: 'hsr0' already exists in 'hsr'
[   88.560736][ T5827] Cannot create hsr debugfs directory
[   88.591096][ T5834] hsr_slave_0: entered promiscuous mode
[   88.597942][ T5834] hsr_slave_1: entered promiscuous mode
[   88.604374][ T5834] debugfs: 'hsr0' already exists in 'hsr'
[   88.610229][ T5834] Cannot create hsr debugfs directory
[   88.637132][ T5823] hsr_slave_0: entered promiscuous mode
[   88.644127][ T5823] hsr_slave_1: entered promiscuous mode
[   88.650513][ T5823] debugfs: 'hsr0' already exists in 'hsr'
[   88.656632][ T5823] Cannot create hsr debugfs directory
[   89.054821][ T5828] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   89.093279][ T5828] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   89.105036][ T5828] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   89.131184][ T5828] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   89.208480][ T5827] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   89.225794][ T5827] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   89.237980][ T5827] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   89.250070][ T5827] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   89.358112][ T5834] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   89.375810][ T5834] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   89.386210][ T5834] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   89.400309][ T5834] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   89.511200][ T5823] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   89.526069][ T5823] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   89.538815][ T5823] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   89.554543][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.565816][ T5823] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   89.644509][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   89.666490][  T133] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.673801][  T133] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.702828][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.709981][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.734496][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.810866][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[   89.825724][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   89.854472][ T1336] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.861717][ T1336] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.894185][  T133] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.901904][  T133] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.966810][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[   90.043032][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.057412][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.064577][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.118944][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.126472][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.252547][ T5823] 8021q: adding VLAN 0 to HW filter on device team0
[   90.294597][  T149] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.301801][  T149] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.312528][ T5826] Bluetooth: hci2: command tx timeout
[   90.318072][ T5826] Bluetooth: hci0: command tx timeout
[   90.333768][  T149] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.341067][  T149] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.355443][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.382592][ T5826] Bluetooth: hci1: command tx timeout
[   90.384341][ T5829] Bluetooth: hci3: command tx timeout
[   90.560318][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.610462][ T5828] veth0_vlan: entered promiscuous mode
[   90.658609][ T5828] veth1_vlan: entered promiscuous mode
[   90.755932][ T5827] veth0_vlan: entered promiscuous mode
[   90.808372][ T5828] veth0_macvtap: entered promiscuous mode
[   90.850924][ T5827] veth1_vlan: entered promiscuous mode
[   90.865471][ T5828] veth1_macvtap: entered promiscuous mode
[   90.928951][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.959112][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.987304][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.998813][ T5827] veth0_macvtap: entered promiscuous mode
[   91.023423][ T1336] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.034747][ T1336] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.047267][ T5827] veth1_macvtap: entered promiscuous mode
[   91.058496][ T1336] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.067478][ T1336] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.113020][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.138755][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.154225][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.193113][ T1336] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.202614][ T1336] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.238377][   T36] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.248943][   T36] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.305331][ T5834] veth0_vlan: entered promiscuous mode
[   91.338130][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.356459][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.380372][ T5834] veth1_vlan: entered promiscuous mode
[   91.405634][ T5823] veth0_vlan: entered promiscuous mode
[   91.470658][  T133] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.473411][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.483841][ T5823] veth1_vlan: entered promiscuous mode
[   91.492984][  T133] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.500364][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.589344][ T5828] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   91.630673][ T5823] veth0_macvtap: entered promiscuous mode
[   91.651631][  T133] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.659530][  T133] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.688144][ T5834] veth0_macvtap: entered promiscuous mode
[   91.708280][ T5823] veth1_macvtap: entered promiscuous mode
[   91.749426][ T5834] veth1_macvtap: entered promiscuous mode
[   91.809023][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.844146][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.893501][   T36] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.915210][   T36] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.935464][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.951186][   T36] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.972570][   T36] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.013912][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.075776][ T5924] Zero length message leads to an empty skb
[   92.132055][   T36] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.148975][   T36] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.158377][   T24] cfg80211: failed to load regulatory.db
[   92.194326][   T36] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.209495][   T36] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.245258][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.253308][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.383931][ T5829] Bluetooth: hci2: command tx timeout
[   92.384133][ T5826] Bluetooth: hci0: command tx timeout
[   92.395469][  T149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.408353][  T149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.463319][ T5826] Bluetooth: hci3: command tx timeout
[   92.463355][ T5829] Bluetooth: hci1: command tx timeout
[   92.477438][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.498704][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.611156][ T1336] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.680544][ T1336] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.975813][ T5933] smpboot: CPU 1 is now offline
[   93.055817][ T5932] process 'syz.2.5' launched '/dev/fd/4' with NULL argv: empty string added
[   93.168770][ T5933] mmap: syz.1.2 (5933) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   93.641809][ T5936] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   93.674731][ T5936] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   93.748428][ T5936] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   93.893102][ T5936] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   93.929101][ T5936] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   94.037024][ T5936] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   94.097452][ T5936] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   94.139268][ T5936] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   94.167284][   T36] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.192506][ T5936] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   94.274816][ T5936] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   94.295534][ T5936] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   94.404420][ T5936] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   94.564551][ T5937] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   94.585425][ T5937] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   94.654323][ T5937] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   94.660452][ T5937] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   94.775109][ T5956] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   94.791106][ T5951] zswap: compressor � not available
[   95.373038][ T5973] Format for deleting device is "id" (uint).
[   95.605704][ T5977] syz.0.11 uses obsolete (PF_INET,SOCK_PACKET)
[   96.095760][ T5972] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   96.124167][ T5972] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   96.156816][ T5972] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   96.189497][ T5972] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   97.345164][ T5987] zswap: compressor � not available
[   97.501916][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout
[   97.961089][   T30] audit: type=1326 audit(1776006296.902:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6002 comm="syz.0.19" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f52b679c819 code=0x0
[   98.008590][ T6004] zswap: compressor Z(u not available
[   98.143080][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[   98.225144][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[   98.231497][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout
[   98.989174][ T6028] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[   99.582068][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout
[  100.222473][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  100.272538][ T6047] random: crng reseeded on system resumption
[  100.305029][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout
[  100.311085][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  100.831189][ T6052] netlink: 28 bytes leftover after parsing attributes in process `syz.3.31'.
[  101.672765][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout
[  102.017124][ T6059] zswap: compressor � not available
[  102.301478][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  102.382827][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout
[  102.389143][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  103.039287][ T6086] futex_wake_op: syz.1.39 tries to shift op by -2048; fix this program
[  103.084986][ T6086] futex_wake_op: syz.1.39 tries to shift op by -2048; fix this program
[  103.153941][ T6088] 0x000000000001-0x000000020000 : ""
[  103.283981][ T6088] ftl_cs: FTL header corrupt!
[  105.218516][ T6118] netlink: 28 bytes leftover after parsing attributes in process `syz.1.48'.
[  105.726874][ T6124] netlink: 252 bytes leftover after parsing attributes in process `syz.0.50'.
[  105.789235][ T6127] netlink: 252 bytes leftover after parsing attributes in process `syz.0.50'.
[  105.818555][ T6126] FAULT_INJECTION: forcing a failure.
[  105.818555][ T6126] name failslab, interval 1, probability 0, space 0, times 1
[  105.911454][ T6126] CPU: 0 UID: 0 PID: 6126 Comm: syz.2.49 Not tainted syzkaller #0 PREEMPT(full) 
[  105.911482][ T6126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  105.911492][ T6126] Call Trace:
[  105.911498][ T6126]  <TASK>
[  105.911506][ T6126]  dump_stack_lvl+0x100/0x190
[  105.911540][ T6126]  should_fail_ex.cold+0x5/0xa
[  105.911563][ T6126]  should_failslab+0xc2/0x120
[  105.911585][ T6126]  __kmalloc_cache_noprof+0x7a/0x6f0
[  105.911611][ T6126]  ? snd_virmidi_output_open+0xc4/0x670
[  105.911640][ T6126]  snd_virmidi_output_open+0xc4/0x670
[  105.911667][ T6126]  open_substream+0x480/0x9e0
[  105.911696][ T6126]  rawmidi_open_priv+0x595/0x6f0
[  105.911728][ T6126]  snd_rawmidi_open+0x4c9/0xba0
[  105.911760][ T6126]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  105.911791][ T6126]  ? __pfx_default_wake_function+0x10/0x10
[  105.911814][ T6126]  ? kobject_get_unless_zero+0x156/0x200
[  105.911841][ T6126]  ? __pfx_snd_rawmidi_open+0x10/0x10
[  105.911876][ T6126]  snd_open+0x22d/0x4c0
[  105.911900][ T6126]  ? __pfx_snd_open+0x10/0x10
[  105.911923][ T6126]  chrdev_open+0x234/0x6a0
[  105.911942][ T6126]  ? __pfx_apparmor_file_open+0x10/0x10
[  105.911964][ T6126]  ? __pfx_chrdev_open+0x10/0x10
[  105.911986][ T6126]  ? fsnotify_open_perm_and_set_mode+0x17a/0xa80
[  105.912012][ T6126]  do_dentry_open+0x6d8/0x1660
[  105.912031][ T6126]  ? __pfx_chrdev_open+0x10/0x10
[  105.912057][ T6126]  vfs_open+0x82/0x3f0
[  105.912090][ T6126]  path_openat+0x208c/0x31a0
[  105.912118][ T6126]  ? __pfx_path_openat+0x10/0x10
[  105.912147][ T6126]  do_file_open+0x20e/0x430
[  105.912169][ T6126]  ? __pfx_do_file_open+0x10/0x10
[  105.912205][ T6126]  ? alloc_fd+0x476/0x790
[  105.912227][ T6126]  ? do_getname+0x191/0x390
[  105.912253][ T6126]  do_sys_openat2+0x10d/0x1e0
[  105.912280][ T6126]  ? __pfx_do_sys_openat2+0x10/0x10
[  105.912307][ T6126]  ? __fget_files+0x21f/0x3d0
[  105.912330][ T6126]  __x64_sys_openat+0x12d/0x210
[  105.912357][ T6126]  ? __pfx___x64_sys_openat+0x10/0x10
[  105.912396][ T6126]  do_syscall_64+0x106/0xf80
[  105.912420][ T6126]  ? clear_bhb_loop+0x40/0x90
[  105.912443][ T6126]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.912469][ T6126] RIP: 0033:0x7f363879c819
[  105.912484][ T6126] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  105.912501][ T6126] RSP: 002b:00007f363957c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  105.912519][ T6126] RAX: ffffffffffffffda RBX: 00007f3638a15fa0 RCX: 00007f363879c819
[  105.912530][ T6126] RDX: 0000000000000201 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  105.912541][ T6126] RBP: 00007f3638832c91 R08: 0000000000000000 R09: 0000000000000000
[  105.912551][ T6126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  105.912561][ T6126] R13: 00007f3638a16038 R14: 00007f3638a15fa0 R15: 00007ffcc47ea5a8
[  105.912584][ T6126]  </TASK>
[  106.507033][ T6130] FAULT_INJECTION: forcing a failure.
[  106.507033][ T6130] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  106.541386][ T6130] CPU: 0 UID: 0 PID: 6130 Comm: syz.2.49 Not tainted syzkaller #0 PREEMPT(full) 
[  106.541413][ T6130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  106.541424][ T6130] Call Trace:
[  106.541430][ T6130]  <TASK>
[  106.541437][ T6130]  dump_stack_lvl+0x100/0x190
[  106.541470][ T6130]  should_fail_ex.cold+0x5/0xa
[  106.541489][ T6130]  ? prepare_alloc_pages+0x16d/0x5f0
[  106.541514][ T6130]  should_fail_alloc_page+0xeb/0x140
[  106.541537][ T6130]  prepare_alloc_pages+0x1f0/0x5f0
[  106.541564][ T6130]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  106.541596][ T6130]  ? pte_offset_map_lock+0x174/0x320
[  106.541617][ T6130]  ? find_held_lock+0x2b/0x80
[  106.541635][ T6130]  ? find_held_lock+0x2b/0x80
[  106.541652][ T6130]  ? finish_fault+0x96d/0x15e0
[  106.541674][ T6130]  ? finish_fault+0x96d/0x15e0
[  106.541699][ T6130]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  106.541728][ T6130]  ? finish_fault+0xa7d/0x15e0
[  106.541758][ T6130]  ? folio_unlock+0xf5/0x190
[  106.541783][ T6130]  ? do_fault+0x666/0x18e0
[  106.541807][ T6130]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  106.541828][ T6130]  ? policy_nodemask+0xed/0x4f0
[  106.541850][ T6130]  alloc_pages_mpol+0x1fb/0x550
[  106.541872][ T6130]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  106.541899][ T6130]  folio_alloc_mpol_noprof+0x36/0x340
[  106.541925][ T6130]  shmem_alloc_folio+0x135/0x160
[  106.541951][ T6130]  shmem_alloc_and_add_folio+0x371/0xd40
[  106.541985][ T6130]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  106.542016][ T6130]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  106.542045][ T6130]  ? __bpf_trace_sched_exit_tp+0xa0/0xc0
[  106.542078][ T6130]  shmem_get_folio_gfp+0x6ab/0x1900
[  106.542113][ T6130]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  106.542155][ T6130]  shmem_write_begin+0x1a4/0x420
[  106.542187][ T6130]  ? __pfx_shmem_write_begin+0x10/0x10
[  106.542218][ T6130]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  106.542245][ T6130]  generic_perform_write+0x292/0xa40
[  106.542281][ T6130]  ? __pfx_generic_perform_write+0x10/0x10
[  106.542308][ T6130]  ? __mark_inode_dirty+0x55c/0x1790
[  106.542337][ T6130]  ? mnt_put_write_access_file+0x4e/0x100
[  106.542358][ T6130]  ? file_update_time_flags+0x373/0x500
[  106.542385][ T6130]  shmem_file_write_iter+0x10e/0x140
[  106.542408][ T6130]  vfs_write+0x6ac/0x1070
[  106.542427][ T6130]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  106.542451][ T6130]  ? __pfx_vfs_write+0x10/0x10
[  106.542482][ T6130]  ksys_write+0x12a/0x250
[  106.542501][ T6130]  ? __pfx_ksys_write+0x10/0x10
[  106.542525][ T6130]  do_syscall_64+0x106/0xf80
[  106.542545][ T6130]  ? clear_bhb_loop+0x40/0x90
[  106.542567][ T6130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.542585][ T6130] RIP: 0033:0x7f363879c819
[  106.542601][ T6130] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  106.542617][ T6130] RSP: 002b:00007f36369f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  106.542636][ T6130] RAX: ffffffffffffffda RBX: 00007f3638a16090 RCX: 00007f363879c819
[  106.542648][ T6130] RDX: 00000000fffffdf1 RSI: 0000000000000000 RDI: 0000000000000003
[  106.542658][ T6130] RBP: 00007f3638832c91 R08: 0000000000000000 R09: 0000000000000000
[  106.542669][ T6130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  106.542680][ T6130] R13: 00007f3638a16128 R14: 00007f3638a16090 R15: 00007ffcc47ea5a8
[  106.542703][ T6130]  </TASK>
[  109.177786][ T6145] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  109.224023][ T6145] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  109.265500][ T6145] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  109.315465][ T6145] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  110.021773][ T6167] random: crng reseeded on system resumption
[  110.221352][ T5829] Bluetooth: hci0: command 0x0c1a tx timeout
[  110.268380][ T6171] netlink: 252 bytes leftover after parsing attributes in process `syz.2.61'.
[  110.339052][ T6171] netlink: 252 bytes leftover after parsing attributes in process `syz.2.61'.
[  110.703916][ T6177] netlink: 'syz.2.62': attribute type 10 has an invalid length.
[  110.747381][ T6177] netlink: 330 bytes leftover after parsing attributes in process `syz.2.62'.
[  111.269875][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  111.276026][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  111.344220][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout
[  112.176146][ T6192] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  112.202434][ T6192] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  112.229798][ T6192] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  112.283181][ T6192] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  112.727444][ T6214] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  112.749250][ T6217] netlink: zone id is out of range
[  112.767235][ T6217] netlink: zone id is out of range
[  113.050492][ T6225] netlink: 'syz.1.78': attribute type 10 has an invalid length.
[  113.093084][ T6225] netlink: 330 bytes leftover after parsing attributes in process `syz.1.78'.
[  113.164052][ T6214] bond0: invalid ARP target specified
[  113.422498][ T6228] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  113.505199][ T6230] netlink: 'syz.1.79': attribute type 10 has an invalid length.
[  113.542690][ T6230] netlink: 330 bytes leftover after parsing attributes in process `syz.1.79'.
[  113.591209][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout
[  114.230599][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  114.303229][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout
[  114.309397][ T5826] Bluetooth: hci2: command 0x0c1a tx timeout
[  115.378785][ T6262] FAULT_INJECTION: forcing a failure.
[  115.378785][ T6262] name failslab, interval 1, probability 0, space 0, times 0
[  115.486253][ T6262] CPU: 0 UID: 0 PID: 6262 Comm: syz.3.85 Not tainted syzkaller #0 PREEMPT(full) 
[  115.486282][ T6262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  115.486292][ T6262] Call Trace:
[  115.486299][ T6262]  <TASK>
[  115.486306][ T6262]  dump_stack_lvl+0x100/0x190
[  115.486340][ T6262]  should_fail_ex.cold+0x5/0xa
[  115.486362][ T6262]  should_failslab+0xc2/0x120
[  115.486384][ T6262]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  115.486413][ T6262]  ? security_inode_alloc+0x3b/0x2c0
[  115.486434][ T6262]  ? lockdep_init_map_type+0x5c/0x250
[  115.486462][ T6262]  security_inode_alloc+0x3b/0x2c0
[  115.486484][ T6262]  inode_init_always_gfp+0xced/0x1040
[  115.486510][ T6262]  alloc_inode+0x8e/0x250
[  115.486536][ T6262]  path_from_stashed+0x25b/0x750
[  115.486556][ T6262]  ? do_raw_spin_unlock+0x145/0x1e0
[  115.486588][ T6262]  ns_get_path+0x60/0x80
[  115.486608][ T6262]  proc_ns_get_link+0x121/0x230
[  115.486636][ T6262]  ? __pfx_proc_ns_get_link+0x10/0x10
[  115.486668][ T6262]  ? atime_needs_update+0x8b/0x6b0
[  115.486697][ T6262]  pick_link+0xd17/0x13c0
[  115.486724][ T6262]  ? __pfx_proc_ns_get_link+0x10/0x10
[  115.486754][ T6262]  step_into_slowpath+0x9ba/0xf90
[  115.486787][ T6262]  ? __pfx_step_into_slowpath+0x10/0x10
[  115.486816][ T6262]  ? find_held_lock+0x2b/0x80
[  115.486840][ T6262]  path_openat+0xf95/0x31a0
[  115.486867][ T6262]  ? __pfx_path_openat+0x10/0x10
[  115.486894][ T6262]  do_file_open+0x20e/0x430
[  115.486918][ T6262]  ? __pfx_do_file_open+0x10/0x10
[  115.486953][ T6262]  ? alloc_fd+0x476/0x790
[  115.486973][ T6262]  ? do_getname+0x191/0x390
[  115.486999][ T6262]  do_sys_openat2+0x10d/0x1e0
[  115.487032][ T6262]  ? __pfx_do_sys_openat2+0x10/0x10
[  115.487059][ T6262]  ? __fget_files+0x21f/0x3d0
[  115.487081][ T6262]  __x64_sys_openat+0x12d/0x210
[  115.487110][ T6262]  ? __pfx___x64_sys_openat+0x10/0x10
[  115.487145][ T6262]  do_syscall_64+0x106/0xf80
[  115.487165][ T6262]  ? clear_bhb_loop+0x40/0x90
[  115.487187][ T6262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.487205][ T6262] RIP: 0033:0x7f35d595d04e
[  115.487221][ T6262] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  115.487238][ T6262] RSP: 002b:00007f35d3bf5ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  115.487256][ T6262] RAX: ffffffffffffffda RBX: 00007f35d3bf66c0 RCX: 00007f35d595d04e
[  115.487268][ T6262] RDX: 0000000000000002 RSI: 00007f35d3bf5f90 RDI: ffffffffffffff9c
[  115.487279][ T6262] RBP: 00007f35d5a32c91 R08: 0000000000000000 R09: 0000000000000000
[  115.487289][ T6262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  115.487299][ T6262] R13: 00007f35d5c16128 R14: 00007f35d5c16090 R15: 00007ffdb64ee608
[  115.487321][ T6262]  </TASK>
[  116.326220][ T6269] netlink: 'syz.1.87': attribute type 10 has an invalid length.
[  116.364143][ T6269] netlink: 330 bytes leftover after parsing attributes in process `syz.1.87'.
[  116.486915][ T6268] usb usb22: usbfs: process 6268 (syz.3.89) did not claim interface 1 before use
[  116.743396][ T6278] vivid-007: =================  START STATUS  =================
[  116.751214][ T6278] vivid-007: Generate PTS: true
[  117.111366][ T6278] vivid-007: Generate SCR: true
[  117.116492][ T6278] tpg source WxH: 320x240 (Y'CbCr)
[  117.222503][ T6278] tpg field: 1
[  117.315728][ T6278] tpg crop: (0,0)/320x240
[  117.402543][ T6278] tpg compose: (0,0)/320x240
[  117.524893][ T6278] tpg colorspace: 8
[  117.595552][ T6278] tpg transfer function: 0/0
[  117.645631][ T6278] tpg Y'CbCr encoding: 0/0
[  117.676516][ T6278] tpg quantization: 0/0
[  117.715397][ T6278] tpg RGB range: 0/2
[  117.719459][ T6278] vivid-007: ==================  END STATUS  ==================
[  117.909514][ T6299] FAULT_INJECTION: forcing a failure.
[  117.909514][ T6299] name failslab, interval 1, probability 0, space 0, times 0
[  117.973805][ T6299] CPU: 0 UID: 0 PID: 6299 Comm: syz.0.95 Not tainted syzkaller #0 PREEMPT(full) 
[  117.973831][ T6299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  117.973841][ T6299] Call Trace:
[  117.973848][ T6299]  <TASK>
[  117.973855][ T6299]  dump_stack_lvl+0x100/0x190
[  117.973888][ T6299]  should_fail_ex.cold+0x5/0xa
[  117.973915][ T6299]  ? tomoyo_realpath_from_path+0xb6/0x690
[  117.973944][ T6299]  should_failslab+0xc2/0x120
[  117.973965][ T6299]  __kmalloc_noprof+0xe0/0x850
[  117.974005][ T6299]  tomoyo_realpath_from_path+0xb6/0x690
[  117.974044][ T6299]  tomoyo_check_open_permission+0x2af/0x3c0
[  117.974069][ T6299]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  117.974113][ T6299]  ? lock_acquire+0x1cf/0x380
[  117.974137][ T6299]  ? find_held_lock+0x2b/0x80
[  117.974161][ T6299]  tomoyo_file_open+0x6b/0x90
[  117.974180][ T6299]  security_file_open+0xb5/0x1e0
[  117.974206][ T6299]  do_dentry_open+0x5aa/0x1660
[  117.974233][ T6299]  vfs_open+0x82/0x3f0
[  117.974261][ T6299]  path_openat+0x208c/0x31a0
[  117.974289][ T6299]  ? __pfx_path_openat+0x10/0x10
[  117.974318][ T6299]  do_file_open+0x20e/0x430
[  117.974340][ T6299]  ? __pfx_do_file_open+0x10/0x10
[  117.974376][ T6299]  ? alloc_fd+0x476/0x790
[  117.974398][ T6299]  ? do_getname+0x191/0x390
[  117.974424][ T6299]  do_sys_openat2+0x10d/0x1e0
[  117.974450][ T6299]  ? __pfx_do_sys_openat2+0x10/0x10
[  117.974477][ T6299]  ? __fget_files+0x21f/0x3d0
[  117.974500][ T6299]  __x64_sys_openat+0x12d/0x210
[  117.974527][ T6299]  ? __pfx___x64_sys_openat+0x10/0x10
[  117.974562][ T6299]  do_syscall_64+0x106/0xf80
[  117.974581][ T6299]  ? clear_bhb_loop+0x40/0x90
[  117.974604][ T6299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.974623][ T6299] RIP: 0033:0x7f52b679c819
[  117.974638][ T6299] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  117.974655][ T6299] RSP: 002b:00007f52b75f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  117.974673][ T6299] RAX: ffffffffffffffda RBX: 00007f52b6a15fa0 RCX: 00007f52b679c819
[  117.974685][ T6299] RDX: 0000000000048f41 RSI: 0000000000000000 RDI: ffffffffffffff9c
[  117.974696][ T6299] RBP: 00007f52b6832c91 R08: 0000000000000000 R09: 0000000000000000
[  117.974707][ T6299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  117.974718][ T6299] R13: 00007f52b6a16038 R14: 00007f52b6a15fa0 R15: 00007ffd47be07a8
[  117.974742][ T6299]  </TASK>
[  118.484312][ T6299] ERROR: Out of memory at tomoyo_realpath_from_path.
[  119.052729][ T6311] netlink: 'syz.0.98': attribute type 10 has an invalid length.
[  119.091378][ T6311] netlink: 330 bytes leftover after parsing attributes in process `syz.0.98'.
[  120.145150][ T6321] netlink: 330 bytes leftover after parsing attributes in process `syz.1.101'.
[  120.218883][ T6321] mac80211_hwsim hwsim6 �: renamed from wlan0 (while UP)
[  120.282164][ T6322] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd12
[  121.091108][ T6334] netlink: 334 bytes leftover after parsing attributes in process `syz.2.102'.
[  121.673436][ T6344] netlink: 'syz.0.106': attribute type 10 has an invalid length.
[  121.712640][ T6344] netlink: 330 bytes leftover after parsing attributes in process `syz.0.106'.
[  121.911853][ T6351] netlink: 'syz.2.108': attribute type 10 has an invalid length.
[  122.027230][ T6351] netlink: 330 bytes leftover after parsing attributes in process `syz.2.108'.
[  122.979616][ T6234] syz.2.77 (6234) used greatest stack depth: 17880 bytes left
[  123.880762][ T6398] netlink: 'syz.0.120': attribute type 10 has an invalid length.
[  123.927938][ T6398] netlink: 330 bytes leftover after parsing attributes in process `syz.0.120'.
[  125.105419][ T6419] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  125.959860][ T6435] netlink: 'syz.0.130': attribute type 10 has an invalid length.
[  125.992275][ T6435] netlink: 330 bytes leftover after parsing attributes in process `syz.0.130'.
[  126.090919][ T6440] netlink: 8 bytes leftover after parsing attributes in process `syz.1.131'.
[  126.714368][ T6448] netlink: 28 bytes leftover after parsing attributes in process `syz.1.135'.
[  126.758200][ T6448] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  126.773597][ T6448] batman_adv: batadv0: Removing interface: batadv_slave_0
[  126.799554][ T6448] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  126.870151][ T6448] batman_adv: batadv0: Removing interface: batadv_slave_1
[  127.276566][ T6449] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  127.300193][ T6449] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  127.350416][ T6449] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  127.378671][ T6449] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  127.778831][ T6473] netlink: 'syz.3.140': attribute type 10 has an invalid length.
[  127.813950][ T6473] netlink: 330 bytes leftover after parsing attributes in process `syz.3.140'.
[  128.717266][ T6490] bonding: no command found in bonding_masters - use +ifname or -ifname
[  128.782357][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout
[  129.342008][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  129.423679][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  129.429728][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout
[  129.513491][ T6487] kexec: Could not allocate control_code_buffer
[  129.880791][ T6520] netlink: 'syz.2.152': attribute type 10 has an invalid length.
[  129.971224][ T6520] netlink: 330 bytes leftover after parsing attributes in process `syz.2.152'.
[  130.660989][ T6530] netlink: 28 bytes leftover after parsing attributes in process `syz.2.156'.
[  130.767311][ T6530] veth1_macvtap: left promiscuous mode
[  130.864626][ T6530] macsec0: entered promiscuous mode
[  130.900443][ T6530] macsec0: entered allmulticast mode
[  132.666007][ T6564] netlink: 'syz.2.164': attribute type 10 has an invalid length.
[  132.746363][ T6564] netlink: 330 bytes leftover after parsing attributes in process `syz.2.164'.
[  133.018081][ T6568] FAULT_INJECTION: forcing a failure.
[  133.018081][ T6568] name failslab, interval 1, probability 0, space 0, times 0
[  133.059897][ T6568] CPU: 0 UID: 0 PID: 6568 Comm: syz.3.167 Not tainted syzkaller #0 PREEMPT(full) 
[  133.059924][ T6568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  133.059935][ T6568] Call Trace:
[  133.059942][ T6568]  <TASK>
[  133.059950][ T6568]  dump_stack_lvl+0x100/0x190
[  133.059983][ T6568]  should_fail_ex.cold+0x5/0xa
[  133.060005][ T6568]  should_failslab+0xc2/0x120
[  133.060027][ T6568]  __kmalloc_node_noprof+0xe6/0x850
[  133.060056][ T6568]  ? alloc_slab_obj_exts+0xae/0x260
[  133.060086][ T6568]  alloc_slab_obj_exts+0xae/0x260
[  133.060113][ T6568]  __memcg_slab_post_alloc_hook+0x246/0x990
[  133.060141][ T6568]  ? kasan_save_track+0x14/0x30
[  133.060161][ T6568]  kmem_cache_alloc_noprof+0x58a/0x6e0
[  133.060189][ T6568]  ? seq_open+0x55/0x170
[  133.060219][ T6568]  seq_open+0x55/0x170
[  133.060245][ T6568]  kernfs_fop_open+0x590/0xd50
[  133.060272][ T6568]  do_dentry_open+0x6d8/0x1660
[  133.060291][ T6568]  ? __pfx_kernfs_fop_open+0x10/0x10
[  133.060318][ T6568]  vfs_open+0x82/0x3f0
[  133.060344][ T6568]  path_openat+0x208c/0x31a0
[  133.060372][ T6568]  ? __pfx_path_openat+0x10/0x10
[  133.060400][ T6568]  do_file_open+0x20e/0x430
[  133.060422][ T6568]  ? __pfx_do_file_open+0x10/0x10
[  133.060458][ T6568]  ? alloc_fd+0x476/0x790
[  133.060479][ T6568]  ? do_getname+0x191/0x390
[  133.060506][ T6568]  do_sys_openat2+0x10d/0x1e0
[  133.060532][ T6568]  ? __pfx_do_sys_openat2+0x10/0x10
[  133.060559][ T6568]  ? find_held_lock+0x2b/0x80
[  133.060583][ T6568]  __x64_sys_openat+0x12d/0x210
[  133.060609][ T6568]  ? __pfx___x64_sys_openat+0x10/0x10
[  133.060643][ T6568]  do_syscall_64+0x106/0xf80
[  133.060663][ T6568]  ? clear_bhb_loop+0x40/0x90
[  133.060684][ T6568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.060703][ T6568] RIP: 0033:0x7f35d599c819
[  133.060718][ T6568] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  133.060735][ T6568] RSP: 002b:00007f35d6779028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  133.060752][ T6568] RAX: ffffffffffffffda RBX: 00007f35d5c15fa0 RCX: 00007f35d599c819
[  133.060764][ T6568] RDX: 0000000000082002 RSI: 0000200000000480 RDI: ffffffffffffff9c
[  133.060775][ T6568] RBP: 00007f35d5a32c91 R08: 0000000000000000 R09: 0000000000000000
[  133.060785][ T6568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  133.060796][ T6568] R13: 00007f35d5c16038 R14: 00007f35d5c15fa0 R15: 00007ffdb64ee608
[  133.060818][ T6568]  </TASK>
[  133.668078][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  133.681966][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  133.871665][ T6582] FAULT_INJECTION: forcing a failure.
[  133.871665][ T6582] name failslab, interval 1, probability 0, space 0, times 0
[  133.928504][ T6582] CPU: 0 UID: 0 PID: 6582 Comm: syz.3.172 Not tainted syzkaller #0 PREEMPT(full) 
[  133.928531][ T6582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  133.928542][ T6582] Call Trace:
[  133.928549][ T6582]  <TASK>
[  133.928556][ T6582]  dump_stack_lvl+0x100/0x190
[  133.928590][ T6582]  should_fail_ex.cold+0x5/0xa
[  133.928612][ T6582]  should_failslab+0xc2/0x120
[  133.928634][ T6582]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  133.928663][ T6582]  ? __d_alloc+0x34/0xa80
[  133.928690][ T6582]  __d_alloc+0x34/0xa80
[  133.928710][ T6582]  ? __pfx_stack_trace_save+0x10/0x10
[  133.928733][ T6582]  d_alloc_parallel+0x111/0x14e0
[  133.928763][ T6582]  ? kasan_save_stack+0x3f/0x50
[  133.928779][ T6582]  ? kasan_save_stack+0x30/0x50
[  133.928795][ T6582]  ? kasan_save_track+0x14/0x30
[  133.928811][ T6582]  ? __kasan_slab_free+0x5f/0x80
[  133.928867][ T6582]  ? path_openat+0x1be/0x31a0
[  133.928891][ T6582]  ? __pfx_d_alloc_parallel+0x10/0x10
[  133.928922][ T6582]  ? lockdep_init_map_type+0x5c/0x250
[  133.928949][ T6582]  ? lockdep_init_map_type+0x5c/0x250
[  133.928979][ T6582]  __lookup_slow+0x193/0x460
[  133.929005][ T6582]  ? __pfx___lookup_slow+0x10/0x10
[  133.929048][ T6582]  lookup_slow+0x50/0x70
[  133.929074][ T6582]  link_path_walk+0x1377/0x1cc0
[  133.929111][ T6582]  path_openat+0x1be/0x31a0
[  133.929131][ T6582]  ? kasan_save_stack+0x3f/0x50
[  133.929147][ T6582]  ? kasan_save_stack+0x30/0x50
[  133.929162][ T6582]  ? kasan_save_track+0x14/0x30
[  133.929178][ T6582]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  133.929213][ T6582]  ? __pfx_path_openat+0x10/0x10
[  133.929241][ T6582]  do_file_open+0x20e/0x430
[  133.929263][ T6582]  ? __pfx_do_file_open+0x10/0x10
[  133.929291][ T6582]  ? __pfx_kfree_link+0x10/0x10
[  133.929324][ T6582]  ? alloc_fd+0x476/0x790
[  133.929345][ T6582]  ? do_getname+0x191/0x390
[  133.929371][ T6582]  do_sys_openat2+0x10d/0x1e0
[  133.929396][ T6582]  ? __pfx_do_sys_openat2+0x10/0x10
[  133.929430][ T6582]  __x64_sys_openat+0x12d/0x210
[  133.929456][ T6582]  ? __pfx___x64_sys_openat+0x10/0x10
[  133.929490][ T6582]  do_syscall_64+0x106/0xf80
[  133.929510][ T6582]  ? clear_bhb_loop+0x40/0x90
[  133.929537][ T6582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.929556][ T6582] RIP: 0033:0x7f35d595d04e
[  133.929571][ T6582] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  133.929588][ T6582] RSP: 002b:00007f35d6778ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  133.929606][ T6582] RAX: ffffffffffffffda RBX: 00007f35d67796c0 RCX: 00007f35d595d04e
[  133.929617][ T6582] RDX: 0000000000000002 RSI: 00007f35d6778f90 RDI: ffffffffffffff9c
[  133.929628][ T6582] RBP: 00007f35d5a32c91 R08: 0000000000000000 R09: 0000000000000000
[  133.929638][ T6582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  133.929649][ T6582] R13: 00007f35d5c16038 R14: 00007f35d5c15fa0 R15: 00007ffdb64ee608
[  133.929673][ T6582]  </TASK>
[  135.403157][ T6606] netlink: 'syz.2.178': attribute type 10 has an invalid length.
[  135.475467][ T6606] netlink: 330 bytes leftover after parsing attributes in process `syz.2.178'.
[  135.552073][ T6600] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  135.568859][ T6600] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  135.616501][ T6600] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  135.658800][ T6600] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  136.383499][ T6629] Format for deleting device is "id" (uint).
[  136.992088][ T6638] netlink: 'syz.0.189': attribute type 10 has an invalid length.
[  136.999927][ T6638] netlink: 330 bytes leftover after parsing attributes in process `syz.0.189'.
[  137.342335][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout
[  137.581720][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  137.661671][ T5826] Bluetooth: hci3: command 0x0c1a tx timeout
[  137.667742][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  138.206665][ T6652] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  138.246018][ T6652] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  138.293473][ T6652] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  138.333909][ T6652] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  139.322650][ T6692] FAULT_INJECTION: forcing a failure.
[  139.322650][ T6692] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  139.339119][ T6693] FAULT_INJECTION: forcing a failure.
[  139.339119][ T6693] name fail_futex, interval 1, probability 0, space 0, times 1
[  139.435651][ T6692] CPU: 0 UID: 0 PID: 6692 Comm: syz.3.201 Not tainted syzkaller #0 PREEMPT(full) 
[  139.435678][ T6692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  139.435689][ T6692] Call Trace:
[  139.435695][ T6692]  <TASK>
[  139.435702][ T6692]  dump_stack_lvl+0x100/0x190
[  139.435842][ T6692]  should_fail_ex.cold+0x5/0xa
[  139.435882][ T6692]  _copy_from_user+0x2e/0xd0
[  139.435909][ T6692]  memdup_user_nul+0x6c/0x120
[  139.435929][ T6692]  nsim_dev_health_break_write+0xbd/0x210
[  139.435957][ T6692]  ? __pfx_nsim_dev_health_break_write+0x10/0x10
[  139.435991][ T6692]  full_proxy_write+0x135/0x1a0
[  139.436023][ T6692]  vfs_write+0x2aa/0x1070
[  139.436043][ T6692]  ? __pfx_full_proxy_write+0x10/0x10
[  139.436075][ T6692]  ? __pfx_vfs_write+0x10/0x10
[  139.436093][ T6692]  ? __fget_files+0x215/0x3d0
[  139.436117][ T6692]  ? __fget_files+0x21f/0x3d0
[  139.436147][ T6692]  ksys_write+0x12a/0x250
[  139.436166][ T6692]  ? __pfx_ksys_write+0x10/0x10
[  139.436191][ T6692]  do_syscall_64+0x106/0xf80
[  139.436211][ T6692]  ? clear_bhb_loop+0x40/0x90
[  139.436234][ T6692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.436254][ T6692] RIP: 0033:0x7f35d599c819
[  139.436270][ T6692] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  139.436287][ T6692] RSP: 002b:00007f35d6779028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  139.436305][ T6692] RAX: ffffffffffffffda RBX: 00007f35d5c15fa0 RCX: 00007f35d599c819
[  139.436317][ T6692] RDX: 00000000000001e1 RSI: 0000200000000080 RDI: 0000000000000003
[  139.436328][ T6692] RBP: 00007f35d6779090 R08: 0000000000000000 R09: 0000000000000000
[  139.436338][ T6692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.436349][ T6692] R13: 00007f35d5c16038 R14: 00007f35d5c15fa0 R15: 00007ffdb64ee608
[  139.436372][ T6692]  </TASK>
[  139.658153][ T6697] netlink: 'syz.0.202': attribute type 10 has an invalid length.
[  139.666139][ T6697] netlink: 330 bytes leftover after parsing attributes in process `syz.0.202'.
[  139.871392][ T6693] CPU: 0 UID: 0 PID: 6693 Comm: syz.1.200 Not tainted syzkaller #0 PREEMPT(full) 
[  139.871419][ T6693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  139.871430][ T6693] Call Trace:
[  139.871437][ T6693]  <TASK>
[  139.871444][ T6693]  dump_stack_lvl+0x100/0x190
[  139.871476][ T6693]  should_fail_ex.cold+0x5/0xa
[  139.871498][ T6693]  get_futex_key+0x1d2/0x1620
[  139.871525][ T6693]  ? __pfx_get_futex_key+0x10/0x10
[  139.871556][ T6693]  futex_wait_setup+0x83/0x510
[  139.871592][ T6693]  __futex_wait+0x19f/0x300
[  139.871622][ T6693]  ? __pfx___futex_wait+0x10/0x10
[  139.871654][ T6693]  ? __pfx_futex_wake_mark+0x10/0x10
[  139.871686][ T6693]  ? find_held_lock+0x2b/0x80
[  139.871705][ T6693]  ? futex_wake+0x456/0x530
[  139.871738][ T6693]  futex_wait+0xed/0x380
[  139.871775][ T6693]  ? __pfx_futex_wait+0x10/0x10
[  139.871808][ T6693]  ? putname+0xb1/0x110
[  139.871828][ T6693]  ? kmem_cache_free+0x124/0x6a0
[  139.871858][ T6693]  do_futex+0x1ef/0x350
[  139.871883][ T6693]  ? __pfx_do_futex+0x10/0x10
[  139.871906][ T6693]  ? __pfx_do_sys_openat2+0x10/0x10
[  139.871933][ T6693]  ? find_held_lock+0x2b/0x80
[  139.871953][ T6693]  __x64_sys_futex+0x34f/0x4d0
[  139.871980][ T6693]  ? __x64_sys_openat+0x12d/0x210
[  139.872006][ T6693]  ? __pfx___x64_sys_futex+0x10/0x10
[  139.872039][ T6693]  do_syscall_64+0x106/0xf80
[  139.872058][ T6693]  ? clear_bhb_loop+0x40/0x90
[  139.872080][ T6693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.872099][ T6693] RIP: 0033:0x7f9e9779c819
[  139.872115][ T6693] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  139.872132][ T6693] RSP: 002b:00007f9e985770e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  139.872150][ T6693] RAX: ffffffffffffffda RBX: 00007f9e97a16098 RCX: 00007f9e9779c819
[  139.872161][ T6693] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9e97a16098
[  139.872171][ T6693] RBP: 00007f9e97a16090 R08: 0000000000000000 R09: 0000000000000000
[  139.872182][ T6693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  139.872192][ T6693] R13: 00007f9e97a16128 R14: 00007ffcbb371800 R15: 00007ffcbb3718e8
[  139.872214][ T6693]  </TASK>
[  140.340098][ T5826] Bluetooth: hci0: command 0x0c1a tx timeout
[  140.346232][ T5826] Bluetooth: hci2: command 0x0c1a tx timeout
[  140.352476][ T5826] Bluetooth: hci1: command 0x0c1a tx timeout
[  140.484721][ T5829] Bluetooth: hci3: command 0x0c1a tx timeout
[  141.884242][ T6719] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  141.890802][ T6731] Format for deleting device is "id" (uint).
[  141.904947][ T6719] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  141.938511][ T6719] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  141.968133][ T6719] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  142.245102][ T6735] binder: 6734:6735 ioctl 400c620e 0 returned -22
[  142.329896][ T6737] netlink: 'syz.3.211': attribute type 10 has an invalid length.
[  142.400107][ T6737] netlink: 330 bytes leftover after parsing attributes in process `syz.3.211'.
[  142.705585][ T6748] ubi31: attaching mtd0
[  142.752171][ T6748] ubi31: scanning is finished
[  142.756985][ T6748] ubi31: empty MTD device detected
[  143.102650][ T6748] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  143.140436][ T6748] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3518 bytes
[  143.197941][ T6748] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  143.244404][ T6748] ubi31: VID header offset: 514 (aligned 514), data offset: 578
[  143.282975][ T6748] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  143.326923][ T6748] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 20
[  143.381476][ T6748] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 4005136013
[  143.447942][ T6748] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  143.515731][ T6757] ubi31: background thread "ubi_bgt31d" started, PID 6757
[  143.532775][ T6765] openvswitch: netlink: Geneve option length err (len 256, max 255).
[  143.661383][ T5829] Bluetooth: hci0: command 0x0c1a tx timeout
[  143.981937][ T5829] Bluetooth: hci3: command 0x0c1a tx timeout
[  143.988130][ T5826] Bluetooth: hci2: command 0x0c1a tx timeout
[  143.994769][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout
[  144.040265][ T6773] netlink: 'syz.2.222': attribute type 10 has an invalid length.
[  144.057677][ T6773] netlink: 330 bytes leftover after parsing attributes in process `syz.2.222'.
[  144.268995][ T6777] Format for deleting device is "id" (uint).
[  144.317032][ T6766] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  144.336277][ T6766] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  144.359352][ T6766] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  144.383457][ T6766] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  144.972916][ T6789] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input5
[  145.049383][ T6784] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  145.443095][ T6798] QAT: Device 0 not found
[  145.730379][ T6803] netlink: 'syz.3.231': attribute type 10 has an invalid length.
[  145.752727][ T6803] netlink: 330 bytes leftover after parsing attributes in process `syz.3.231'.
[  145.821377][ T5829] Bluetooth: hci0: command 0x0c1a tx timeout
[  146.381454][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  146.387557][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout
[  146.462109][ T5829] Bluetooth: hci3: command 0x0c1a tx timeout
[  146.863562][ T6812] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  146.903290][ T6812] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  146.951500][ T6812] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  146.972963][ T6812] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  147.234448][ T6832] netlink: 8 bytes leftover after parsing attributes in process `syz.0.238'.
[  148.124283][ T6843] netlink: 'syz.2.240': attribute type 10 has an invalid length.
[  148.171193][ T6843] netlink: 330 bytes leftover after parsing attributes in process `syz.2.240'.
[  148.222078][ T5829] Bluetooth: hci0: command 0x0c1a tx timeout
[  148.941323][ T5829] Bluetooth: hci1: command 0x0c1a tx timeout
[  149.021639][ T5829] Bluetooth: hci3: command 0x0c1a tx timeout
[  149.028695][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout
[  150.922900][ T6869] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  150.958650][ T6869] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  151.062748][ T6869] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  151.068833][ T6869] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  151.149092][ T6879] FAULT_INJECTION: forcing a failure.
[  151.149092][ T6879] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.208923][ T6879] CPU: 0 UID: 0 PID: 6879 Comm: syz.0.250 Not tainted syzkaller #0 PREEMPT(full) 
[  151.208949][ T6879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  151.208960][ T6879] Call Trace:
[  151.208966][ T6879]  <TASK>
[  151.208973][ T6879]  dump_stack_lvl+0x100/0x190
[  151.209007][ T6879]  should_fail_ex.cold+0x5/0xa
[  151.209030][ T6879]  _copy_from_iter+0x1f4/0x1690
[  151.209059][ T6879]  ? __asan_memset+0x23/0x50
[  151.209091][ T6879]  ? __pfx__copy_from_iter+0x10/0x10
[  151.209116][ T6879]  ? __pfx___alloc_skb+0x10/0x10
[  151.209154][ T6879]  netlink_sendmsg+0x808/0xda0
[  151.209179][ T6879]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.209198][ T6879]  ? __import_iovec+0x1d2/0x640
[  151.209225][ T6879]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  151.209249][ T6879]  ____sys_sendmsg+0x9e1/0xb70
[  151.209271][ T6879]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.209293][ T6879]  ? __pfx_____sys_sendmsg+0x10/0x10
[  151.209326][ T6879]  ___sys_sendmsg+0x190/0x1e0
[  151.209352][ T6879]  ? __pfx____sys_sendmsg+0x10/0x10
[  151.209402][ T6879]  __sys_sendmsg+0x170/0x220
[  151.209421][ T6879]  ? __pfx___sys_sendmsg+0x10/0x10
[  151.209452][ T6879]  do_syscall_64+0x106/0xf80
[  151.209472][ T6879]  ? clear_bhb_loop+0x40/0x90
[  151.209495][ T6879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.209514][ T6879] RIP: 0033:0x7f52b679c819
[  151.209529][ T6879] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  151.209547][ T6879] RSP: 002b:00007f52b75f4028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  151.209565][ T6879] RAX: ffffffffffffffda RBX: 00007f52b6a15fa0 RCX: 00007f52b679c819
[  151.209576][ T6879] RDX: 000000000004c848 RSI: 0000200000006140 RDI: 0000000000000003
[  151.209587][ T6879] RBP: 00007f52b75f4090 R08: 0000000000000000 R09: 0000000000000000
[  151.209597][ T6879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.209607][ T6879] R13: 00007f52b6a16038 R14: 00007f52b6a15fa0 R15: 00007ffd47be07a8
[  151.209630][ T6879]  </TASK>
[  151.456201][ T6881] netlink: 'syz.2.251': attribute type 10 has an invalid length.
[  151.464032][ T6881] netlink: 330 bytes leftover after parsing attributes in process `syz.2.251'.
[  152.462061][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout
[  152.748008][ T6903] openvswitch: netlink: Flow actions attr not present in new flow.
[  152.839572][ T6908] binder: 6907:6908 ioctl 400c620e 0 returned -22
[  152.944433][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout
[  153.101533][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout
[  153.107712][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  153.177515][ T6917] netlink: 'syz.1.260': attribute type 10 has an invalid length.
[  153.197240][ T6917] netlink: 330 bytes leftover after parsing attributes in process `syz.1.260'.
[  154.126685][ T6935] futex_wake_op: syz.2.267 tries to shift op by -2048; fix this program
[  154.504428][ T6951] binder: 6950:6951 ioctl 400c620e 0 returned -22
[  154.992980][ T6963] netlink: 'syz.1.271': attribute type 10 has an invalid length.
[  155.000791][ T6963] netlink: 330 bytes leftover after parsing attributes in process `syz.1.271'.
[  157.507307][ T7015] netlink: 342 bytes leftover after parsing attributes in process `syz.3.282'.
[  160.069800][ T7050] netlink: 'syz.1.291': attribute type 10 has an invalid length.
[  160.104158][ T7050] netlink: 330 bytes leftover after parsing attributes in process `syz.1.291'.
[  160.813018][ T7066] vivid-007: =================  START STATUS  =================
[  160.882740][ T7066] vivid-007: Generate PTS: true
[  160.887739][ T7066] vivid-007: Generate SCR: true
[  160.937117][ T7066] tpg source WxH: 320x240 (Y'CbCr)
[  160.969176][ T7066] tpg field: 1
[  160.986147][ T7066] tpg crop: (0,0)/320x240
[  161.036127][ T7066] tpg compose: (0,0)/320x240
[  161.065569][ T7066] tpg colorspace: 8
[  161.069412][ T7066] tpg transfer function: 0/0
[  161.287192][ T7066] tpg Y'CbCr encoding: 0/0
[  161.326935][ T7066] tpg quantization: 0/0
[  161.363811][ T7066] tpg RGB range: 0/2
[  161.428019][ T7066] vivid-007: ==================  END STATUS  ==================
[  161.568981][ T7081] FAULT_INJECTION: forcing a failure.
[  161.568981][ T7081] name fail_futex, interval 1, probability 0, space 0, times 0
[  161.640768][ T7081] CPU: 0 UID: 0 PID: 7081 Comm: syz.1.299 Not tainted syzkaller #0 PREEMPT(full) 
[  161.640794][ T7081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  161.640805][ T7081] Call Trace:
[  161.640811][ T7081]  <TASK>
[  161.640818][ T7081]  dump_stack_lvl+0x100/0x190
[  161.640853][ T7081]  should_fail_ex.cold+0x5/0xa
[  161.640882][ T7081]  get_futex_key+0x1d2/0x1620
[  161.640908][ T7081]  ? __pfx_get_futex_key+0x10/0x10
[  161.640930][ T7081]  ? lock_acquire+0x1cf/0x380
[  161.640962][ T7081]  futex_wake+0xea/0x530
[  161.640993][ T7081]  ? __pfx_futex_wake+0x10/0x10
[  161.641022][ T7081]  ? exit_mm_release+0x19/0x30
[  161.641052][ T7081]  do_futex+0x32b/0x350
[  161.641078][ T7081]  ? __pfx_do_futex+0x10/0x10
[  161.641101][ T7081]  ? __might_fault+0xc5/0x140
[  161.641135][ T7081]  mm_release+0x24a/0x2f0
[  161.641155][ T7081]  do_exit+0x704/0x2b60
[  161.641183][ T7081]  ? __pfx_do_exit+0x10/0x10
[  161.641208][ T7081]  ? do_raw_spin_lock+0x128/0x260
[  161.641236][ T7081]  ? find_held_lock+0x2b/0x80
[  161.641258][ T7081]  ? get_signal+0x7e0/0x21e0
[  161.641280][ T7081]  do_group_exit+0xd5/0x2a0
[  161.641308][ T7081]  get_signal+0x1ec7/0x21e0
[  161.641336][ T7081]  ? __pfx_get_signal+0x10/0x10
[  161.641357][ T7081]  ? do_futex+0x192/0x350
[  161.641385][ T7081]  arch_do_signal_or_restart+0x91/0x770
[  161.641409][ T7081]  ? find_held_lock+0x2b/0x80
[  161.641427][ T7081]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  161.641457][ T7081]  ? __pfx___x64_sys_futex+0x10/0x10
[  161.641488][ T7081]  exit_to_user_mode_loop+0x86/0x4a0
[  161.641517][ T7081]  do_syscall_64+0x668/0xf80
[  161.641536][ T7081]  ? clear_bhb_loop+0x40/0x90
[  161.641559][ T7081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.641578][ T7081] RIP: 0033:0x7f9e9779c819
[  161.641594][ T7081] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  161.641612][ T7081] RSP: 002b:00007f9e985980e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  161.641630][ T7081] RAX: 0000000000000001 RBX: 00007f9e97a15fa8 RCX: 00007f9e9779c819
[  161.641641][ T7081] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9e97a15fac
[  161.641651][ T7081] RBP: 00007f9e97a15fa0 R08: 0000000000000000 R09: 0000000000000000
[  161.641662][ T7081] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[  161.641672][ T7081] R13: 00007f9e97a16038 R14: 00007ffcbb371800 R15: 00007ffcbb3718e8
[  161.641694][ T7081]  </TASK>
[  162.880104][ T7091] netlink: 'syz.0.301': attribute type 10 has an invalid length.
[  162.921397][ T7091] netlink: 330 bytes leftover after parsing attributes in process `syz.0.301'.
[  163.862886][ T7121] bond0: option packets_per_slave: invalid value (X�n�p�)
[  163.908149][ T7121] bond0: option packets_per_slave: allowed values 0 - 65535
[  164.018112][ T7123] FAULT_INJECTION: forcing a failure.
[  164.018112][ T7123] name failslab, interval 1, probability 0, space 0, times 0
[  164.069704][ T7123] CPU: 0 UID: 0 PID: 7123 Comm: syz.2.309 Not tainted syzkaller #0 PREEMPT(full) 
[  164.069731][ T7123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  164.069742][ T7123] Call Trace:
[  164.069748][ T7123]  <TASK>
[  164.069755][ T7123]  dump_stack_lvl+0x100/0x190
[  164.069788][ T7123]  should_fail_ex.cold+0x5/0xa
[  164.069810][ T7123]  should_failslab+0xc2/0x120
[  164.069831][ T7123]  __kmalloc_cache_noprof+0x7a/0x6f0
[  164.069857][ T7123]  ? __request_module+0x2b7/0x6c0
[  164.069882][ T7123]  ? lockdep_hardirqs_on+0x78/0x100
[  164.069905][ T7123]  __request_module+0x2b7/0x6c0
[  164.069932][ T7123]  ? __pfx___request_module+0x10/0x10
[  164.069966][ T7123]  ? rcu_is_watching+0x12/0xc0
[  164.069995][ T7123]  ? apparmor_capable+0x1d7/0x4d0
[  164.070022][ T7123]  tty_ldisc_get.part.0+0x1e9/0x370
[  164.070053][ T7123]  tty_set_ldisc+0x5d/0x740
[  164.070083][ T7123]  tty_ioctl+0x695/0x1690
[  164.070101][ T7123]  ? __pfx_tty_ioctl+0x10/0x10
[  164.070124][ T7123]  ? do_raw_spin_unlock+0x145/0x1e0
[  164.070152][ T7123]  ? hook_file_ioctl_common+0x146/0x410
[  164.070181][ T7123]  ? xfd_validate_state+0x129/0x190
[  164.070210][ T7123]  ? __pfx_tty_ioctl+0x10/0x10
[  164.070232][ T7123]  __x64_sys_ioctl+0x18e/0x210
[  164.070262][ T7123]  do_syscall_64+0x106/0xf80
[  164.070281][ T7123]  ? clear_bhb_loop+0x40/0x90
[  164.070303][ T7123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.070329][ T7123] RIP: 0033:0x7f363879c819
[  164.070345][ T7123] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  164.070361][ T7123] RSP: 002b:00007f363957c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  164.070380][ T7123] RAX: ffffffffffffffda RBX: 00007f3638a15fa0 RCX: 00007f363879c819
[  164.070391][ T7123] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000008
[  164.070401][ T7123] RBP: 00007f3638832c91 R08: 0000000000000000 R09: 0000000000000000
[  164.070411][ T7123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.070421][ T7123] R13: 00007f3638a16038 R14: 00007f3638a15fa0 R15: 00007ffcc47ea5a8
[  164.070444][ T7123]  </TASK>
[  164.447956][ T7131] FAULT_INJECTION: forcing a failure.
[  164.447956][ T7131] name failslab, interval 1, probability 0, space 0, times 0
[  164.460679][ T7131] CPU: 0 UID: 0 PID: 7131 Comm: syz.1.311 Not tainted syzkaller #0 PREEMPT(full) 
[  164.460704][ T7131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  164.460714][ T7131] Call Trace:
[  164.460722][ T7131]  <TASK>
[  164.460731][ T7131]  dump_stack_lvl+0x100/0x190
[  164.460764][ T7131]  should_fail_ex.cold+0x5/0xa
[  164.460786][ T7131]  should_failslab+0xc2/0x120
[  164.460808][ T7131]  __kmalloc_cache_noprof+0x7a/0x6f0
[  164.460834][ T7131]  ? kernfs_fop_open+0x23d/0xd50
[  164.460861][ T7131]  kernfs_fop_open+0x23d/0xd50
[  164.460887][ T7131]  do_dentry_open+0x6d8/0x1660
[  164.460906][ T7131]  ? __pfx_kernfs_fop_open+0x10/0x10
[  164.460933][ T7131]  vfs_open+0x82/0x3f0
[  164.460960][ T7131]  path_openat+0x208c/0x31a0
[  164.460987][ T7131]  ? __pfx_path_openat+0x10/0x10
[  164.461016][ T7131]  do_file_open+0x20e/0x430
[  164.461038][ T7131]  ? __pfx_do_file_open+0x10/0x10
[  164.461074][ T7131]  ? alloc_fd+0x476/0x790
[  164.461096][ T7131]  ? do_getname+0x191/0x390
[  164.461122][ T7131]  do_sys_openat2+0x10d/0x1e0
[  164.461148][ T7131]  ? __pfx_do_sys_openat2+0x10/0x10
[  164.461175][ T7131]  ? find_held_lock+0x2b/0x80
[  164.461199][ T7131]  __x64_sys_openat+0x12d/0x210
[  164.461225][ T7131]  ? __pfx___x64_sys_openat+0x10/0x10
[  164.461266][ T7131]  do_syscall_64+0x106/0xf80
[  164.461285][ T7131]  ? clear_bhb_loop+0x40/0x90
[  164.461307][ T7131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.461326][ T7131] RIP: 0033:0x7f9e9779c819
[  164.461342][ T7131] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  164.461359][ T7131] RSP: 002b:00007f9e98598028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  164.461377][ T7131] RAX: ffffffffffffffda RBX: 00007f9e97a15fa0 RCX: 00007f9e9779c819
[  164.461389][ T7131] RDX: 0000000000082002 RSI: 0000200000000480 RDI: ffffffffffffff9c
[  164.461399][ T7131] RBP: 00007f9e97832c91 R08: 0000000000000000 R09: 0000000000000000
[  164.461409][ T7131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.461420][ T7131] R13: 00007f9e97a16038 R14: 00007f9e97a15fa0 R15: 00007ffcbb3718e8
[  164.461443][ T7131]  </TASK>
[  165.125207][ T7135] netlink: 'syz.3.312': attribute type 10 has an invalid length.
[  165.273311][ T7135] netlink: 330 bytes leftover after parsing attributes in process `syz.3.312'.
[  165.368518][ T7139] zswap: compressor � not available
[  165.591846][ T7154] openvswitch: netlink: Flow actions attr not present in new flow.
[  168.452733][ T7193] netlink: 'syz.3.326': attribute type 10 has an invalid length.
[  168.501364][ T7193] netlink: 330 bytes leftover after parsing attributes in process `syz.3.326'.
[  171.087697][ T7235] netlink: 'syz.2.335': attribute type 10 has an invalid length.
[  171.129677][ T7235] netlink: 330 bytes leftover after parsing attributes in process `syz.2.335'.
[  172.940357][ T7258] netlink: 504 bytes leftover after parsing attributes in process `syz.2.340'.
[  173.671784][ T7268] netlink: 'syz.2.344': attribute type 10 has an invalid length.
[  173.679648][ T7268] netlink: 330 bytes leftover after parsing attributes in process `syz.2.344'.
[  175.431230][ T7291] FAULT_INJECTION: forcing a failure.
[  175.431230][ T7291] name failslab, interval 1, probability 0, space 0, times 0
[  175.493092][ T7291] CPU: 0 UID: 0 PID: 7291 Comm: syz.3.353 Not tainted syzkaller #0 PREEMPT(full) 
[  175.493119][ T7291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  175.493130][ T7291] Call Trace:
[  175.493136][ T7291]  <TASK>
[  175.493143][ T7291]  dump_stack_lvl+0x100/0x190
[  175.493176][ T7291]  should_fail_ex.cold+0x5/0xa
[  175.493198][ T7291]  should_failslab+0xc2/0x120
[  175.493220][ T7291]  __kmalloc_cache_noprof+0x7a/0x6f0
[  175.493246][ T7291]  ? __request_module+0x2b7/0x6c0
[  175.493271][ T7291]  ? lockdep_hardirqs_on+0x78/0x100
[  175.493294][ T7291]  __request_module+0x2b7/0x6c0
[  175.493321][ T7291]  ? __pfx___request_module+0x10/0x10
[  175.493353][ T7291]  ? rcu_is_watching+0x12/0xc0
[  175.493383][ T7291]  ? apparmor_capable+0x1d7/0x4d0
[  175.493410][ T7291]  tty_ldisc_get.part.0+0x1e9/0x370
[  175.493441][ T7291]  tty_set_ldisc+0x5d/0x740
[  175.493471][ T7291]  tty_ioctl+0x695/0x1690
[  175.493497][ T7291]  ? __pfx_tty_ioctl+0x10/0x10
[  175.493520][ T7291]  ? do_raw_spin_unlock+0x145/0x1e0
[  175.493548][ T7291]  ? hook_file_ioctl_common+0x146/0x410
[  175.493577][ T7291]  ? xfd_validate_state+0x129/0x190
[  175.493606][ T7291]  ? __pfx_tty_ioctl+0x10/0x10
[  175.493624][ T7291]  __x64_sys_ioctl+0x18e/0x210
[  175.493654][ T7291]  do_syscall_64+0x106/0xf80
[  175.493673][ T7291]  ? clear_bhb_loop+0x40/0x90
[  175.493695][ T7291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.493714][ T7291] RIP: 0033:0x7f35d599c819
[  175.493730][ T7291] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  175.493746][ T7291] RSP: 002b:00007f35d6779028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  175.493764][ T7291] RAX: ffffffffffffffda RBX: 00007f35d5c15fa0 RCX: 00007f35d599c819
[  175.493776][ T7291] RDX: 0000000000000000 RSI: 0000000000005423 RDI: 0000000000000008
[  175.493786][ T7291] RBP: 00007f35d5a32c91 R08: 0000000000000000 R09: 0000000000000000
[  175.493796][ T7291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  175.493806][ T7291] R13: 00007f35d5c16038 R14: 00007f35d5c15fa0 R15: 00007ffdb64ee608
[  175.493828][ T7291]  </TASK>
[  176.088123][ T7294] netlink: 16 bytes leftover after parsing attributes in process `syz.2.361'.
[  176.632700][ T7302] Format for deleting device is "id" (uint).
[  176.993211][ T7305] binder: 7304:7305 ioctl 400c620e 0 returned -22
[  178.272833][ T7321] netlink: 334 bytes leftover after parsing attributes in process `syz.3.364'.
[  178.926108][ T7326] mkiss: ax0: crc mode is auto.
[  181.640722][ T7363] binder: 7362:7363 ioctl 400c620e 0 returned -22
[  181.809596][ T7364] FAULT_INJECTION: forcing a failure.
[  181.809596][ T7364] name failslab, interval 1, probability 0, space 0, times 0
[  182.043889][ T7364] CPU: 0 UID: 0 PID: 7364 Comm: syz.3.376 Not tainted syzkaller #0 PREEMPT(full) 
[  182.043917][ T7364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  182.043927][ T7364] Call Trace:
[  182.043934][ T7364]  <TASK>
[  182.043941][ T7364]  dump_stack_lvl+0x100/0x190
[  182.043973][ T7364]  should_fail_ex.cold+0x5/0xa
[  182.043996][ T7364]  should_failslab+0xc2/0x120
[  182.044018][ T7364]  __kmalloc_cache_noprof+0x7a/0x6f0
[  182.044044][ T7364]  ? kernfs_fop_open+0x23d/0xd50
[  182.044070][ T7364]  kernfs_fop_open+0x23d/0xd50
[  182.044097][ T7364]  do_dentry_open+0x6d8/0x1660
[  182.044116][ T7364]  ? __pfx_kernfs_fop_open+0x10/0x10
[  182.044143][ T7364]  vfs_open+0x82/0x3f0
[  182.044169][ T7364]  path_openat+0x208c/0x31a0
[  182.044197][ T7364]  ? __pfx_path_openat+0x10/0x10
[  182.044225][ T7364]  do_file_open+0x20e/0x430
[  182.044247][ T7364]  ? __pfx_do_file_open+0x10/0x10
[  182.044283][ T7364]  ? alloc_fd+0x476/0x790
[  182.044305][ T7364]  ? do_getname+0x191/0x390
[  182.044339][ T7364]  do_sys_openat2+0x10d/0x1e0
[  182.044365][ T7364]  ? __pfx_do_sys_openat2+0x10/0x10
[  182.044392][ T7364]  ? find_held_lock+0x2b/0x80
[  182.044417][ T7364]  __x64_sys_openat+0x12d/0x210
[  182.044444][ T7364]  ? __pfx___x64_sys_openat+0x10/0x10
[  182.044478][ T7364]  do_syscall_64+0x106/0xf80
[  182.044498][ T7364]  ? clear_bhb_loop+0x40/0x90
[  182.044520][ T7364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.044539][ T7364] RIP: 0033:0x7f35d599c819
[  182.044553][ T7364] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  182.044570][ T7364] RSP: 002b:00007f35d6779028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  182.044589][ T7364] RAX: ffffffffffffffda RBX: 00007f35d5c15fa0 RCX: 00007f35d599c819
[  182.044600][ T7364] RDX: 0000000000082002 RSI: 0000200000000480 RDI: ffffffffffffff9c
[  182.044611][ T7364] RBP: 00007f35d5a32c91 R08: 0000000000000000 R09: 0000000000000000
[  182.044621][ T7364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  182.044631][ T7364] R13: 00007f35d5c16038 R14: 00007f35d5c15fa0 R15: 00007ffdb64ee608
[  182.044653][ T7364]  </TASK>
[  184.899895][ T7399] FAULT_INJECTION: forcing a failure.
[  184.899895][ T7399] name failslab, interval 1, probability 0, space 0, times 0
[  185.053551][ T7399] CPU: 0 UID: 0 PID: 7399 Comm: syz.0.384 Not tainted syzkaller #0 PREEMPT(full) 
[  185.053578][ T7399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  185.053589][ T7399] Call Trace:
[  185.053596][ T7399]  <TASK>
[  185.053603][ T7399]  dump_stack_lvl+0x100/0x190
[  185.053636][ T7399]  should_fail_ex.cold+0x5/0xa
[  185.053658][ T7399]  should_failslab+0xc2/0x120
[  185.053679][ T7399]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  185.053709][ T7399]  ? seq_open+0x55/0x170
[  185.053736][ T7399]  ? __pfx_edid_show+0x10/0x10
[  185.053759][ T7399]  ? __pfx_edid_open+0x10/0x10
[  185.053778][ T7399]  seq_open+0x55/0x170
[  185.053802][ T7399]  ? __pfx_edid_show+0x10/0x10
[  185.053824][ T7399]  single_open+0xfc/0x1d0
[  185.053851][ T7399]  full_proxy_open_regular+0x1b6/0x370
[  185.053872][ T7399]  do_dentry_open+0x6d8/0x1660
[  185.053892][ T7399]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  185.053915][ T7399]  vfs_open+0x82/0x3f0
[  185.053942][ T7399]  path_openat+0x208c/0x31a0
[  185.053969][ T7399]  ? __pfx_path_openat+0x10/0x10
[  185.053996][ T7399]  do_file_open+0x20e/0x430
[  185.054018][ T7399]  ? __pfx_do_file_open+0x10/0x10
[  185.054053][ T7399]  ? alloc_fd+0x476/0x790
[  185.054074][ T7399]  ? do_getname+0x191/0x390
[  185.054099][ T7399]  do_sys_openat2+0x10d/0x1e0
[  185.054125][ T7399]  ? __pfx_do_sys_openat2+0x10/0x10
[  185.054152][ T7399]  ? __fget_files+0x21f/0x3d0
[  185.054174][ T7399]  __x64_sys_openat+0x12d/0x210
[  185.054200][ T7399]  ? __pfx___x64_sys_openat+0x10/0x10
[  185.054234][ T7399]  do_syscall_64+0x106/0xf80
[  185.054254][ T7399]  ? clear_bhb_loop+0x40/0x90
[  185.054276][ T7399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.054302][ T7399] RIP: 0033:0x7f52b679c819
[  185.054318][ T7399] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  185.054335][ T7399] RSP: 002b:00007f52b75f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  185.054352][ T7399] RAX: ffffffffffffffda RBX: 00007f52b6a15fa0 RCX: 00007f52b679c819
[  185.054364][ T7399] RDX: 0000000000000400 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  185.054375][ T7399] RBP: 00007f52b6832c91 R08: 0000000000000000 R09: 0000000000000000
[  185.054385][ T7399] R10: 0000000000001800 R11: 0000000000000246 R12: 0000000000000000
[  185.054396][ T7399] R13: 00007f52b6a16038 R14: 00007f52b6a15fa0 R15: 00007ffd47be07a8
[  185.054418][ T7399]  </TASK>
[  186.103007][ T7409] binder: 7401:7409 ioctl 400c620e 0 returned -22
[  186.419220][ T7414] netlink: 'syz.1.387': attribute type 10 has an invalid length.
[  186.461574][ T7414] netlink: 330 bytes leftover after parsing attributes in process `syz.1.387'.
[  187.151126][ T7429] netlink: 4 bytes leftover after parsing attributes in process `syz.3.388'.
[  187.718951][ T7434] sp0: Synchronizing with TNC
[  190.375510][ T7464] netlink: 'syz.0.397': attribute type 10 has an invalid length.
[  190.455611][ T7464] netlink: 330 bytes leftover after parsing attributes in process `syz.0.397'.
[  192.230147][ T7484] FAULT_INJECTION: forcing a failure.
[  192.230147][ T7484] name failslab, interval 1, probability 0, space 0, times 0
[  192.432167][ T7484] CPU: 0 UID: 0 PID: 7484 Comm: syz.2.405 Not tainted syzkaller #0 PREEMPT(full) 
[  192.432194][ T7484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  192.432206][ T7484] Call Trace:
[  192.432212][ T7484]  <TASK>
[  192.432219][ T7484]  dump_stack_lvl+0x100/0x190
[  192.432252][ T7484]  should_fail_ex.cold+0x5/0xa
[  192.432275][ T7484]  should_failslab+0xc2/0x120
[  192.432297][ T7484]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  192.432326][ T7484]  ? alloc_inode+0x68/0x250
[  192.432351][ T7484]  ? start_dirop+0x79/0xb0
[  192.432370][ T7484]  ? __pfx_rpc_alloc_inode+0x10/0x10
[  192.432397][ T7484]  alloc_inode+0x68/0x250
[  192.432422][ T7484]  new_inode+0x22/0x1c0
[  192.432446][ T7484]  ? dput.part.0+0xdd/0x570
[  192.432485][ T7484]  rpc_new_dir+0x96/0x420
[  192.432513][ T7484]  rpc_fill_super+0x344/0x4f0
[  192.432543][ T7484]  ? __pfx_rpc_fill_super+0x10/0x10
[  192.432577][ T7484]  get_tree_keyed+0x10e/0x1d0
[  192.432596][ T7484]  vfs_get_tree+0x92/0x320
[  192.432623][ T7484]  vfs_cmd_create+0xd7/0x2a0
[  192.432649][ T7484]  __do_sys_fsconfig+0x55a/0xcb0
[  192.432678][ T7484]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  192.432715][ T7484]  do_syscall_64+0x106/0xf80
[  192.432733][ T7484]  ? clear_bhb_loop+0x40/0x90
[  192.432756][ T7484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.432775][ T7484] RIP: 0033:0x7f363879c819
[  192.432790][ T7484] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  192.432807][ T7484] RSP: 002b:00007f363957c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  192.432829][ T7484] RAX: ffffffffffffffda RBX: 00007f3638a15fa0 RCX: 00007f363879c819
[  192.432840][ T7484] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002
[  192.432850][ T7484] RBP: 00007f3638832c91 R08: 0000000000000000 R09: 0000000000000000
[  192.432861][ T7484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  192.432871][ T7484] R13: 00007f3638a16038 R14: 00007f3638a15fa0 R15: 00007ffcc47ea5a8
[  192.432893][ T7484]  </TASK>
[  193.236196][ T7496] Format for deleting device is "id" (uint).
[  194.545345][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  194.551838][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  195.706365][ T7546] Invalid input. Must be >= 4608
[  196.055964][ T7551] binder: 7550:7551 ioctl 400c620e 0 returned -22
[  196.300658][ T7555] FAULT_INJECTION: forcing a failure.
[  196.300658][ T7555] name failslab, interval 1, probability 0, space 0, times 0
[  196.357685][ T7555] CPU: 0 UID: 0 PID: 7555 Comm: syz.3.419 Not tainted syzkaller #0 PREEMPT(full) 
[  196.357711][ T7555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  196.357722][ T7555] Call Trace:
[  196.357729][ T7555]  <TASK>
[  196.357737][ T7555]  dump_stack_lvl+0x100/0x190
[  196.357770][ T7555]  should_fail_ex.cold+0x5/0xa
[  196.357792][ T7555]  should_failslab+0xc2/0x120
[  196.357814][ T7555]  __kmalloc_cache_noprof+0x7a/0x6f0
[  196.357840][ T7555]  ? kernfs_fop_open+0x9f4/0xd50
[  196.357866][ T7555]  kernfs_fop_open+0x9f4/0xd50
[  196.357893][ T7555]  do_dentry_open+0x6d8/0x1660
[  196.357913][ T7555]  ? __pfx_kernfs_fop_open+0x10/0x10
[  196.357940][ T7555]  vfs_open+0x82/0x3f0
[  196.357967][ T7555]  path_openat+0x208c/0x31a0
[  196.357995][ T7555]  ? __pfx_path_openat+0x10/0x10
[  196.358024][ T7555]  do_file_open+0x20e/0x430
[  196.358046][ T7555]  ? __pfx_do_file_open+0x10/0x10
[  196.358083][ T7555]  ? alloc_fd+0x476/0x790
[  196.358104][ T7555]  ? do_getname+0x191/0x390
[  196.358131][ T7555]  do_sys_openat2+0x10d/0x1e0
[  196.358156][ T7555]  ? __pfx_do_sys_openat2+0x10/0x10
[  196.358183][ T7555]  ? find_held_lock+0x2b/0x80
[  196.358207][ T7555]  __x64_sys_openat+0x12d/0x210
[  196.358233][ T7555]  ? __pfx___x64_sys_openat+0x10/0x10
[  196.358275][ T7555]  do_syscall_64+0x106/0xf80
[  196.358295][ T7555]  ? clear_bhb_loop+0x40/0x90
[  196.358318][ T7555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.358337][ T7555] RIP: 0033:0x7f35d599c819
[  196.358353][ T7555] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  196.358370][ T7555] RSP: 002b:00007f35d6779028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  196.358388][ T7555] RAX: ffffffffffffffda RBX: 00007f35d5c15fa0 RCX: 00007f35d599c819
[  196.358400][ T7555] RDX: 0000000000082002 RSI: 0000200000000480 RDI: ffffffffffffff9c
[  196.358412][ T7555] RBP: 00007f35d5a32c91 R08: 0000000000000000 R09: 0000000000000000
[  196.358423][ T7555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  196.358434][ T7555] R13: 00007f35d5c16038 R14: 00007f35d5c15fa0 R15: 00007ffdb64ee608
[  196.358456][ T7555]  </TASK>
[  197.156654][ T7565] FAULT_INJECTION: forcing a failure.
[  197.156654][ T7565] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  197.204910][ T7565] CPU: 0 UID: 0 PID: 7565 Comm: syz.1.422 Not tainted syzkaller #0 PREEMPT(full) 
[  197.204942][ T7565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  197.204953][ T7565] Call Trace:
[  197.204959][ T7565]  <TASK>
[  197.204967][ T7565]  dump_stack_lvl+0x100/0x190
[  197.205001][ T7565]  should_fail_ex.cold+0x5/0xa
[  197.205020][ T7565]  ? prepare_alloc_pages+0x16d/0x5f0
[  197.205046][ T7565]  should_fail_alloc_page+0xeb/0x140
[  197.205069][ T7565]  prepare_alloc_pages+0x1f0/0x5f0
[  197.205096][ T7565]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  197.205127][ T7565]  ? bpf_ksym_find+0x124/0x1c0
[  197.205151][ T7565]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  197.205173][ T7565]  ? is_bpf_text_address+0x94/0x1a0
[  197.205203][ T7565]  ? kernel_text_address+0x8d/0x100
[  197.205238][ T7565]  ? __kernel_text_address+0xd/0x30
[  197.205265][ T7565]  ? unwind_get_return_address+0x59/0xa0
[  197.205286][ T7565]  ? arch_stack_walk+0xa6/0xf0
[  197.205307][ T7565]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  197.205340][ T7565]  ? __lock_acquire+0x4a5/0x2630
[  197.205365][ T7565]  ? stack_trace_save+0x8e/0xc0
[  197.205385][ T7565]  ? stack_depot_save_flags+0x27/0x9d0
[  197.205417][ T7565]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  197.205438][ T7565]  ? policy_nodemask+0xed/0x4f0
[  197.205460][ T7565]  alloc_pages_mpol+0x1fb/0x550
[  197.205482][ T7565]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  197.205509][ T7565]  folio_alloc_mpol_noprof+0x36/0x340
[  197.205535][ T7565]  shmem_alloc_folio+0x135/0x160
[  197.205561][ T7565]  shmem_alloc_and_add_folio+0x371/0xd40
[  197.205596][ T7565]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  197.205627][ T7565]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  197.205663][ T7565]  shmem_get_folio_gfp+0x6ab/0x1900
[  197.205697][ T7565]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  197.205728][ T7565]  ? filemap_map_pages+0xe4c/0x2010
[  197.205761][ T7565]  shmem_fault+0x1f9/0xa20
[  197.205792][ T7565]  ? __pfx_shmem_fault+0x10/0x10
[  197.205825][ T7565]  ? __pfx_filemap_map_pages+0x10/0x10
[  197.205861][ T7565]  __do_fault+0x10d/0x550
[  197.205883][ T7565]  do_fault+0xabb/0x18e0
[  197.205909][ T7565]  __handle_mm_fault+0x1815/0x2b60
[  197.205938][ T7565]  ? mt_find+0x45e/0x8e0
[  197.205961][ T7565]  ? __pfx___handle_mm_fault+0x10/0x10
[  197.205986][ T7565]  ? __pfx_mt_find+0x10/0x10
[  197.206021][ T7565]  ? find_vma+0xbf/0x140
[  197.206039][ T7565]  ? __pfx_find_vma+0x10/0x10
[  197.206060][ T7565]  handle_mm_fault+0x36d/0xa20
[  197.206092][ T7565]  do_user_addr_fault+0x74c/0x12f0
[  197.206118][ T7565]  exc_page_fault+0x6f/0xd0
[  197.206139][ T7565]  asm_exc_page_fault+0x26/0x30
[  197.206162][ T7565] RIP: 0010:fault_in_readable+0xde/0x190
[  197.206182][ T7565] Code: e8 d7 b3 ff 4c 89 f0 48 85 c0 0f 85 bf 00 00 00 e8 b7 dd b3 ff 0f 01 cb 0f ae e8 4c 89 fb 4d 85 ff 75 31 eb 48 e8 a2 dd b3 ff <44> 8a 33 e8 9a dd b3 ff 48 81 c3 00 10 00 00 31 ff 48 81 e3 00 f0
[  197.206198][ T7565] RSP: 0018:ffffc900038afb00 EFLAGS: 00050283
[  197.206214][ T7565] RAX: 000000000000c4d0 RBX: 0000000000017000 RCX: ffffc90005cc3000
[  197.206296][ T7565] RDX: 0000000000080000 RSI: ffffffff825465de RDI: ffff888029d3db80
[  197.206311][ T7565] RBP: 0000000000018000 R08: 0000000000000006 R09: 0000000000018000
[  197.206322][ T7565] R10: 0000000000017000 R11: 0000000000000000 R12: 0000000000001000
[  197.206332][ T7565] R13: 1ffff92000715f61 R14: 0000000000000000 R15: 0000000000017000
[  197.206355][ T7565]  ? fault_in_readable+0xde/0x190
[  197.206383][ T7565]  ? __pfx_fault_in_readable+0x10/0x10
[  197.206411][ T7565]  fault_in_iov_iter_readable+0x101/0x2c0
[  197.206440][ T7565]  generic_perform_write+0x863/0xa40
[  197.206477][ T7565]  ? __pfx_generic_perform_write+0x10/0x10
[  197.206506][ T7565]  ? __mark_inode_dirty+0x55c/0x1790
[  197.206536][ T7565]  ? mnt_put_write_access_file+0x4e/0x100
[  197.206569][ T7565]  ? file_update_time_flags+0x373/0x500
[  197.206598][ T7565]  shmem_file_write_iter+0x10e/0x140
[  197.206623][ T7565]  vfs_write+0x6ac/0x1070
[  197.206643][ T7565]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  197.206667][ T7565]  ? __pfx_vfs_write+0x10/0x10
[  197.206702][ T7565]  ksys_write+0x12a/0x250
[  197.206721][ T7565]  ? __pfx_ksys_write+0x10/0x10
[  197.206749][ T7565]  do_syscall_64+0x106/0xf80
[  197.206769][ T7565]  ? clear_bhb_loop+0x40/0x90
[  197.206792][ T7565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.206811][ T7565] RIP: 0033:0x7f9e9779c819
[  197.206827][ T7565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  197.206844][ T7565] RSP: 002b:00007f9e98598028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  197.206861][ T7565] RAX: ffffffffffffffda RBX: 00007f9e97a15fa0 RCX: 00007f9e9779c819
[  197.206874][ T7565] RDX: 00000000fffffdf1 RSI: 0000000000000000 RDI: 0000000000000003
[  197.206884][ T7565] RBP: 00007f9e97832c91 R08: 0000000000000000 R09: 0000000000000000
[  197.206894][ T7565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  197.206904][ T7565] R13: 00007f9e97a16038 R14: 00007f9e97a15fa0 R15: 00007ffcbb3718e8
[  197.206928][ T7565]  </TASK>
[  199.142344][ T7585] binder: 7581:7585 ioctl 400c620e 0 returned -22
[  199.174455][ T7584] random: crng reseeded on system resumption
[  199.406017][ T7584] hub 1-0:1.0: USB hub found
[  199.541997][ T7584] hub 1-0:1.0: 1 port detected
[  199.856051][ T7594] netlink: 'syz.3.431': attribute type 10 has an invalid length.
[  199.888304][ T7594] netlink: 330 bytes leftover after parsing attributes in process `syz.3.431'.
[  200.455309][ T7605] netlink: 'syz.3.435': attribute type 10 has an invalid length.
[  200.501421][ T7605] netlink: 330 bytes leftover after parsing attributes in process `syz.3.435'.
[  201.179279][ T7619] binder: 7618:7619 ioctl 400c620e 0 returned -22
[  201.508702][ T7621] netlink: 48 bytes leftover after parsing attributes in process `syz.1.440'.
[  201.732245][ T7624] program syz.1.440 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  201.824904][ T7629] FAULT_INJECTION: forcing a failure.
[  201.824904][ T7629] name failslab, interval 1, probability 0, space 0, times 0
[  201.889833][ T7629] CPU: 0 UID: 0 PID: 7629 Comm: syz.3.443 Not tainted syzkaller #0 PREEMPT(full) 
[  201.889860][ T7629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  201.889871][ T7629] Call Trace:
[  201.889878][ T7629]  <TASK>
[  201.889885][ T7629]  dump_stack_lvl+0x100/0x190
[  201.889918][ T7629]  should_fail_ex.cold+0x5/0xa
[  201.889941][ T7629]  should_failslab+0xc2/0x120
[  201.889963][ T7629]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  201.889993][ T7629]  ? seq_open+0x55/0x170
[  201.890018][ T7629]  ? lockdep_init_map_type+0x5c/0x250
[  201.890047][ T7629]  seq_open+0x55/0x170
[  201.890073][ T7629]  kernfs_fop_open+0x590/0xd50
[  201.890101][ T7629]  do_dentry_open+0x6d8/0x1660
[  201.890120][ T7629]  ? __pfx_kernfs_fop_open+0x10/0x10
[  201.890154][ T7629]  vfs_open+0x82/0x3f0
[  201.890181][ T7629]  path_openat+0x208c/0x31a0
[  201.890209][ T7629]  ? __pfx_path_openat+0x10/0x10
[  201.890237][ T7629]  do_file_open+0x20e/0x430
[  201.890259][ T7629]  ? __pfx_do_file_open+0x10/0x10
[  201.890295][ T7629]  ? alloc_fd+0x476/0x790
[  201.890316][ T7629]  ? do_getname+0x191/0x390
[  201.890342][ T7629]  do_sys_openat2+0x10d/0x1e0
[  201.890368][ T7629]  ? __pfx_do_sys_openat2+0x10/0x10
[  201.890396][ T7629]  ? find_held_lock+0x2b/0x80
[  201.890420][ T7629]  __x64_sys_openat+0x12d/0x210
[  201.890446][ T7629]  ? __pfx___x64_sys_openat+0x10/0x10
[  201.890481][ T7629]  do_syscall_64+0x106/0xf80
[  201.890501][ T7629]  ? clear_bhb_loop+0x40/0x90
[  201.890522][ T7629]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.890541][ T7629] RIP: 0033:0x7f35d599c819
[  201.890556][ T7629] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  201.890573][ T7629] RSP: 002b:00007f35d6779028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  201.890591][ T7629] RAX: ffffffffffffffda RBX: 00007f35d5c15fa0 RCX: 00007f35d599c819
[  201.890603][ T7629] RDX: 0000000000082002 RSI: 0000200000000480 RDI: ffffffffffffff9c
[  201.890613][ T7629] RBP: 00007f35d5a32c91 R08: 0000000000000000 R09: 0000000000000000
[  201.890624][ T7629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  201.890634][ T7629] R13: 00007f35d5c16038 R14: 00007f35d5c15fa0 R15: 00007ffdb64ee608
[  201.890656][ T7629]  </TASK>
[  202.373785][ T7626] netlink: 'syz.2.442': attribute type 10 has an invalid length.
[  202.411635][ T7626] netlink: 330 bytes leftover after parsing attributes in process `syz.2.442'.
[  202.457803][   T30] audit: type=1807 audit(1776006401.307:3): UNKNOWN=0"�]$|�1j�0B|d���ӉO��+��/��x����WӦ��^��gq%Ḧr�O� res=0
[  202.513588][   T30] audit: type=1802 audit(1776006401.307:4): pid=7624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.440" res=0 errno=0
[  202.574195][ T7620] ima: policy update failed
[  202.601930][   T30] audit: type=1802 audit(1776006401.547:5): pid=7620 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.440" res=0 errno=0
[  202.882788][ T7637] netlink: 'syz.2.445': attribute type 10 has an invalid length.
[  202.961318][ T7637] netlink: 330 bytes leftover after parsing attributes in process `syz.2.445'.
[  203.513888][ T7647] binder: 7646:7647 ioctl 400c620e 0 returned -22
[  204.420199][ T7663] netlink: 'syz.0.455': attribute type 10 has an invalid length.
[  204.510593][ T7663] netlink: 330 bytes leftover after parsing attributes in process `syz.0.455'.
[  204.559815][ T7670] binder: 7669:7670 ioctl 400c620e 0 returned -22
[  206.222087][ T7699] binder: 7698:7699 ioctl 400c620e 0 returned -22
[  206.344965][ T7702] netlink: 'syz.2.469': attribute type 10 has an invalid length.
[  206.371476][ T7702] netlink: 330 bytes leftover after parsing attributes in process `syz.2.469'.
[  207.325862][ T7723] ubi: mtd0 is already attached to ubi31
[  207.532261][ T7729] tc_dump_action: action bad kind
[  207.917870][ T7732] netlink: 'syz.0.480': attribute type 10 has an invalid length.
[  208.002747][ T7732] netlink: 330 bytes leftover after parsing attributes in process `syz.0.480'.
[  208.100066][ T7738] Format for deleting device is "id" (uint).
[  208.183454][ T7724] capability: warning: `syz.2.477' uses 32-bit capabilities (legacy support in use)
[  208.663775][ T7749] FAULT_INJECTION: forcing a failure.
[  208.663775][ T7749] name failslab, interval 1, probability 0, space 0, times 0
[  208.774936][ T7749] CPU: 0 UID: 0 PID: 7749 Comm: syz.0.485 Not tainted syzkaller #0 PREEMPT(full) 
[  208.774965][ T7749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  208.774975][ T7749] Call Trace:
[  208.774982][ T7749]  <TASK>
[  208.774990][ T7749]  dump_stack_lvl+0x100/0x190
[  208.775023][ T7749]  should_fail_ex.cold+0x5/0xa
[  208.775045][ T7749]  should_failslab+0xc2/0x120
[  208.775066][ T7749]  __kmalloc_cache_noprof+0x7a/0x6f0
[  208.775093][ T7749]  ? kernfs_fop_open+0x23d/0xd50
[  208.775119][ T7749]  kernfs_fop_open+0x23d/0xd50
[  208.775145][ T7749]  do_dentry_open+0x6d8/0x1660
[  208.775164][ T7749]  ? __pfx_kernfs_fop_open+0x10/0x10
[  208.775191][ T7749]  vfs_open+0x82/0x3f0
[  208.775218][ T7749]  path_openat+0x208c/0x31a0
[  208.775246][ T7749]  ? __pfx_path_openat+0x10/0x10
[  208.775274][ T7749]  do_file_open+0x20e/0x430
[  208.775297][ T7749]  ? __pfx_do_file_open+0x10/0x10
[  208.775332][ T7749]  ? alloc_fd+0x476/0x790
[  208.775372][ T7749]  ? do_getname+0x191/0x390
[  208.775399][ T7749]  do_sys_openat2+0x10d/0x1e0
[  208.775425][ T7749]  ? __pfx_do_sys_openat2+0x10/0x10
[  208.775452][ T7749]  ? find_held_lock+0x2b/0x80
[  208.775476][ T7749]  __x64_sys_openat+0x12d/0x210
[  208.775504][ T7749]  ? __pfx___x64_sys_openat+0x10/0x10
[  208.775538][ T7749]  do_syscall_64+0x106/0xf80
[  208.775557][ T7749]  ? clear_bhb_loop+0x40/0x90
[  208.775579][ T7749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.775598][ T7749] RIP: 0033:0x7f52b679c819
[  208.775613][ T7749] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  208.775630][ T7749] RSP: 002b:00007f52b75f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  208.775648][ T7749] RAX: ffffffffffffffda RBX: 00007f52b6a15fa0 RCX: 00007f52b679c819
[  208.775660][ T7749] RDX: 0000000000082002 RSI: 0000200000000480 RDI: ffffffffffffff9c
[  208.775671][ T7749] RBP: 00007f52b6832c91 R08: 0000000000000000 R09: 0000000000000000
[  208.775681][ T7749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  208.775691][ T7749] R13: 00007f52b6a16038 R14: 00007f52b6a15fa0 R15: 00007ffd47be07a8
[  208.775715][ T7749]  </TASK>
[  210.056645][ T7771] Format for deleting device is "id" (uint).
[  210.707957][ T7781] netlink: 'syz.0.493': attribute type 10 has an invalid length.
[  210.757963][ T7781] netlink: 330 bytes leftover after parsing attributes in process `syz.0.493'.
[  211.568814][ T7794] Format for deleting device is "id" (uint).
[  212.516288][ T7810] input: jJǸ-���9�%v���J86�� as /devices/virtual/input/input9
[  213.023232][ T7821] netlink: 'syz.0.505': attribute type 10 has an invalid length.
[  213.054648][ T7821] netlink: 330 bytes leftover after parsing attributes in process `syz.0.505'.
[  214.255340][ T7831] FAULT_INJECTION: forcing a failure.
[  214.255340][ T7831] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  214.413035][ T7831] CPU: 0 UID: 0 PID: 7831 Comm: syz.0.507 Not tainted syzkaller #0 PREEMPT(full) 
[  214.413060][ T7831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  214.413071][ T7831] Call Trace:
[  214.413078][ T7831]  <TASK>
[  214.413085][ T7831]  dump_stack_lvl+0x100/0x190
[  214.413118][ T7831]  should_fail_ex.cold+0x5/0xa
[  214.413136][ T7831]  ? prepare_alloc_pages+0x16d/0x5f0
[  214.413161][ T7831]  should_fail_alloc_page+0xeb/0x140
[  214.413185][ T7831]  prepare_alloc_pages+0x1f0/0x5f0
[  214.413208][ T7831]  ? __pfx_mas_wr_bnode+0x10/0x10
[  214.413234][ T7831]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  214.413269][ T7831]  ? mas_ascend+0x53d/0xb30
[  214.413289][ T7831]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  214.413311][ T7831]  ? mas_next_node+0x7f8/0xf30
[  214.413330][ T7831]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  214.413364][ T7831]  ? mt_validate_nulls+0x1b3/0x9c0
[  214.413389][ T7831]  ? __pfx_mt_validate_nulls+0x10/0x10
[  214.413415][ T7831]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  214.413436][ T7831]  ? policy_nodemask+0xed/0x4f0
[  214.413458][ T7831]  alloc_pages_mpol+0x1fb/0x550
[  214.413480][ T7831]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  214.413502][ T7831]  ? __lock_acquire+0x4a5/0x2630
[  214.413530][ T7831]  folio_alloc_mpol_noprof+0x36/0x340
[  214.413555][ T7831]  alloc_migration_target_by_mpol+0x2c1/0x650
[  214.413582][ T7831]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  214.413608][ T7831]  ? __pfx___might_resched+0x10/0x10
[  214.413636][ T7831]  ? is_bpf_text_address+0x8a/0x1a0
[  214.413669][ T7831]  migrate_pages_batch+0x4f2/0x4530
[  214.413692][ T7831]  ? core_kernel_text+0x70/0xb0
[  214.413720][ T7831]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  214.413746][ T7831]  ? arch_stack_walk+0xa6/0xf0
[  214.413770][ T7831]  ? __pfx_migrate_pages_batch+0x10/0x10
[  214.413795][ T7831]  ? __pfx_stack_trace_save+0x10/0x10
[  214.413815][ T7831]  ? stack_depot_save_flags+0x27/0x9d0
[  214.413840][ T7831]  ? __split_vma+0x392/0xd90
[  214.413874][ T7831]  ? kasan_save_stack+0x3f/0x50
[  214.413890][ T7831]  ? kasan_save_stack+0x30/0x50
[  214.413905][ T7831]  ? kasan_save_track+0x14/0x30
[  214.413921][ T7831]  ? __kasan_slab_alloc+0x89/0x90
[  214.413938][ T7831]  ? kmem_cache_alloc_noprof+0x241/0x6e0
[  214.413966][ T7831]  ? __mpol_dup+0x74/0x390
[  214.413992][ T7831]  ? mbind_range+0x2ad/0x550
[  214.414017][ T7831]  migrate_pages_sync+0x12c/0x880
[  214.414042][ T7831]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  214.414073][ T7831]  ? __pfx_migrate_pages_sync+0x10/0x10
[  214.414099][ T7831]  ? __lock_acquire+0x4a5/0x2630
[  214.414128][ T7831]  migrate_pages+0x1aae/0x28a0
[  214.414155][ T7831]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  214.414187][ T7831]  ? __pfx_migrate_pages+0x10/0x10
[  214.414213][ T7831]  ? find_held_lock+0x2b/0x80
[  214.414232][ T7831]  ? do_mbind+0x555/0xfd0
[  214.414262][ T7831]  ? up_write+0x290/0x4f0
[  214.414290][ T7831]  do_mbind+0x5a4/0xfd0
[  214.414320][ T7831]  ? __pfx_do_mbind+0x10/0x10
[  214.414343][ T7831]  ? ksys_write+0x190/0x250
[  214.414360][ T7831]  ? ksys_write+0x190/0x250
[  214.414387][ T7831]  ? __pfx_get_nodes+0x10/0x10
[  214.414410][ T7831]  kernel_mbind+0x1b7/0x200
[  214.414437][ T7831]  ? __pfx_kernel_mbind+0x10/0x10
[  214.414467][ T7831]  do_syscall_64+0x106/0xf80
[  214.414486][ T7831]  ? clear_bhb_loop+0x40/0x90
[  214.414508][ T7831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.414526][ T7831] RIP: 0033:0x7f52b679c819
[  214.414542][ T7831] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  214.414559][ T7831] RSP: 002b:00007f52b75d3028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  214.414577][ T7831] RAX: ffffffffffffffda RBX: 00007f52b6a16090 RCX: 00007f52b679c819
[  214.414588][ T7831] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000
[  214.414598][ T7831] RBP: 00007f52b6832c91 R08: 0000002000000006 R09: 0000000000000002
[  214.414609][ T7831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  214.414619][ T7831] R13: 00007f52b6a16128 R14: 00007f52b6a16090 R15: 00007ffd47be07a8
[  214.414641][ T7831]  </TASK>
[  215.045455][ T7846] Format for deleting device is "id" (uint).
[  215.554754][ T7850] netlink: 24 bytes leftover after parsing attributes in process `syz.3.513'.
[  215.799949][ T7854] netlink: 'syz.3.514': attribute type 10 has an invalid length.
[  215.825394][ T7854] netlink: 330 bytes leftover after parsing attributes in process `syz.3.514'.
[  216.272228][ T7859] netlink: 'syz.3.516': attribute type 10 has an invalid length.
[  216.327196][ T7859] netlink: 330 bytes leftover after parsing attributes in process `syz.3.516'.
[  216.649002][ T7878] FAULT_INJECTION: forcing a failure.
[  216.649002][ T7878] name failslab, interval 1, probability 0, space 0, times 0
[  216.698953][ T7878] CPU: 0 UID: 0 PID: 7878 Comm: syz.3.522 Not tainted syzkaller #0 PREEMPT(full) 
[  216.698986][ T7878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  216.698997][ T7878] Call Trace:
[  216.699004][ T7878]  <TASK>
[  216.699017][ T7878]  dump_stack_lvl+0x100/0x190
[  216.699052][ T7878]  should_fail_ex.cold+0x5/0xa
[  216.699074][ T7878]  ? kernfs_fop_write_iter+0x26a/0x5f0
[  216.699096][ T7878]  should_failslab+0xc2/0x120
[  216.699117][ T7878]  __kmalloc_noprof+0xe0/0x850
[  216.699152][ T7878]  kernfs_fop_write_iter+0x26a/0x5f0
[  216.699177][ T7878]  vfs_write+0x6ac/0x1070
[  216.699196][ T7878]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  216.699224][ T7878]  ? __pfx_vfs_write+0x10/0x10
[  216.699260][ T7878]  ksys_write+0x12a/0x250
[  216.699280][ T7878]  ? __pfx_ksys_write+0x10/0x10
[  216.699305][ T7878]  do_syscall_64+0x106/0xf80
[  216.699325][ T7878]  ? clear_bhb_loop+0x40/0x90
[  216.699347][ T7878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.699366][ T7878] RIP: 0033:0x7f35d599c819
[  216.699382][ T7878] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  216.699398][ T7878] RSP: 002b:00007f35d3bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  216.699416][ T7878] RAX: ffffffffffffffda RBX: 00007f35d5c16090 RCX: 00007f35d599c819
[  216.699428][ T7878] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000006
[  216.699438][ T7878] RBP: 00007f35d3bf6090 R08: 0000000000000000 R09: 0000000000000000
[  216.699449][ T7878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.699459][ T7878] R13: 00007f35d5c16128 R14: 00007f35d5c16090 R15: 00007ffdb64ee608
[  216.699482][ T7878]  </TASK>
[  217.382817][ T7884] Format for deleting device is "id" (uint).
[  217.463987][ T7886] netlink: 'syz.1.524': attribute type 10 has an invalid length.
[  217.494006][ T7886] netlink: 330 bytes leftover after parsing attributes in process `syz.1.524'.
[  217.511838][ T7878] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  217.528499][ T7878] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  217.564821][ T7878] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  217.606415][ T7878] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  218.749423][ T7898] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  218.775569][ T7898] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  218.809753][ T7898] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  218.840352][ T7898] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  219.695412][ T7931] netlink: 'syz.1.533': attribute type 10 has an invalid length.
[  219.717992][ T7931] netlink: 330 bytes leftover after parsing attributes in process `syz.1.533'.
[  219.944450][ T7930] i2c i2c-0: Frontend requested software zigzag, but didn't set the frequency step size
[  220.150711][ T6949] Bluetooth: hci0: command 0x0c1a tx timeout
[  220.443073][ T7944] Format for deleting device is "id" (uint).
[  220.785766][ T6949] Bluetooth: hci1: command 0x0c1a tx timeout
[  220.861373][ T6949] Bluetooth: hci3: command 0x0c1a tx timeout
[  220.867576][ T6949] Bluetooth: hci2: command 0x0c1a tx timeout
[  221.264538][ T7955] netlink: 334 bytes leftover after parsing attributes in process `syz.2.539'.
[  221.595031][ T7962] netlink: 10 bytes leftover after parsing attributes in process `syz.1.542'.
[  221.869664][ T7965] netlink: 'syz.1.543': attribute type 10 has an invalid length.
[  221.938616][ T7965] netlink: 330 bytes leftover after parsing attributes in process `syz.1.543'.
[  223.283990][ T8000] netlink: 'syz.3.554': attribute type 10 has an invalid length.
[  223.404781][ T8000] netlink: 330 bytes leftover after parsing attributes in process `syz.3.554'.
[  223.622900][ T8012] binder: 8011:8012 ioctl 400c620e 0 returned -14
[  225.204595][ T8039] netlink: 'syz.0.569': attribute type 10 has an invalid length.
[  225.247551][ T8039] netlink: 330 bytes leftover after parsing attributes in process `syz.0.569'.
[  225.622779][ T8054] binder: 8053:8054 ioctl 400c620e 0 returned -14
[  227.433800][ T8093] netlink: 'syz.3.579': attribute type 10 has an invalid length.
[  227.530038][ T8093] netlink: 330 bytes leftover after parsing attributes in process `syz.3.579'.
[  227.897620][ T8097] binder: 8095:8097 ioctl 400c620e 0 returned -14
[  228.103993][ T8100] FAULT_INJECTION: forcing a failure.
[  228.103993][ T8100] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  228.162300][ T8098] Format for deleting device is "id" (uint).
[  228.251324][ T8100] CPU: 0 UID: 0 PID: 8100 Comm: syz.0.583 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  228.251356][ T8100] Tainted: [L]=SOFTLOCKUP
[  228.251362][ T8100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  228.251372][ T8100] Call Trace:
[  228.251379][ T8100]  <TASK>
[  228.251386][ T8100]  dump_stack_lvl+0x100/0x190
[  228.251421][ T8100]  should_fail_ex.cold+0x5/0xa
[  228.251440][ T8100]  ? page_copy_sane+0x17c/0x2d0
[  228.251465][ T8100]  copy_folio_from_iter_atomic+0x427/0x1e70
[  228.251501][ T8100]  ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[  228.251527][ T8100]  ? shmem_write_begin+0x1ba/0x420
[  228.251558][ T8100]  ? __pfx_shmem_write_begin+0x10/0x10
[  228.251589][ T8100]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  228.251616][ T8100]  generic_perform_write+0x4cb/0xa40
[  228.251652][ T8100]  ? __pfx_generic_perform_write+0x10/0x10
[  228.251678][ T8100]  ? __mark_inode_dirty+0x55c/0x1790
[  228.251706][ T8100]  ? mnt_put_write_access_file+0x4e/0x100
[  228.251726][ T8100]  ? file_update_time_flags+0x373/0x500
[  228.251754][ T8100]  shmem_file_write_iter+0x10e/0x140
[  228.251777][ T8100]  vfs_write+0x6ac/0x1070
[  228.251796][ T8100]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  228.251820][ T8100]  ? __pfx_vfs_write+0x10/0x10
[  228.251852][ T8100]  ksys_write+0x12a/0x250
[  228.251870][ T8100]  ? __pfx_ksys_write+0x10/0x10
[  228.251895][ T8100]  do_syscall_64+0x106/0xf80
[  228.251915][ T8100]  ? clear_bhb_loop+0x40/0x90
[  228.251937][ T8100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.251963][ T8100] RIP: 0033:0x7f52b679c819
[  228.251980][ T8100] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  228.251996][ T8100] RSP: 002b:00007f52b75f4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  228.252014][ T8100] RAX: ffffffffffffffda RBX: 00007f52b6a15fa0 RCX: 00007f52b679c819
[  228.252025][ T8100] RDX: 00000000fffffdf1 RSI: 0000000000000000 RDI: 0000000000000003
[  228.252035][ T8100] RBP: 00007f52b6832c91 R08: 0000000000000000 R09: 0000000000000000
[  228.252046][ T8100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  228.252056][ T8100] R13: 00007f52b6a16038 R14: 00007f52b6a15fa0 R15: 00007ffd47be07a8
[  228.252079][ T8100]  </TASK>
[  229.017685][ T8110] openvswitch: netlink: Flow actions attr not present in new flow.
[  229.793275][ T8117] netlink: 'syz.2.589': attribute type 10 has an invalid length.
[  229.882447][ T8117] netlink: 330 bytes leftover after parsing attributes in process `syz.2.589'.
[  230.390166][ T8138] openvswitch: netlink: Flow key attr not present in new flow.
[  230.502555][ T8140] bond0: option packets_per_slave: invalid value (X�n�p�)
[  230.553022][ T8140] bond0: option packets_per_slave: allowed values 0 - 65535
[  230.784751][ T8145] Format for deleting device is "id" (uint).
[  231.856098][ T8160] netlink: 'syz.2.601': attribute type 10 has an invalid length.
[  231.959606][ T8165] openvswitch: netlink: Flow key attr not present in new flow.
[  232.048396][ T8160] netlink: 330 bytes leftover after parsing attributes in process `syz.2.601'.
[  232.963606][ T8183] zswap: compressor � not available
[  232.969089][ T8186] FAULT_INJECTION: forcing a failure.
[  232.969089][ T8186] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  233.055374][ T8186] CPU: 0 UID: 0 PID: 8186 Comm: syz.2.610 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  233.055406][ T8186] Tainted: [L]=SOFTLOCKUP
[  233.055412][ T8186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  233.055423][ T8186] Call Trace:
[  233.055429][ T8186]  <TASK>
[  233.055436][ T8186]  dump_stack_lvl+0x100/0x190
[  233.055470][ T8186]  should_fail_ex.cold+0x5/0xa
[  233.055493][ T8186]  _copy_to_iter+0x1f3/0x1720
[  233.055523][ T8186]  ? __pfx__copy_to_iter+0x10/0x10
[  233.055547][ T8186]  ? kernfs_seq_stop+0xcd/0x120
[  233.055572][ T8186]  ? kernfs_put_active+0x93/0xe0
[  233.055593][ T8186]  seq_read_iter+0xdab/0x1270
[  233.055620][ T8186]  kernfs_fop_read_iter+0x46c/0x610
[  233.055643][ T8186]  ? rw_verify_area+0xce/0x6d0
[  233.055671][ T8186]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[  233.055696][ T8186]  vfs_read+0x825/0xb30
[  233.055716][ T8186]  ? __pfx_vfs_read+0x10/0x10
[  233.055748][ T8186]  ksys_read+0x12a/0x250
[  233.055766][ T8186]  ? __pfx_ksys_read+0x10/0x10
[  233.055791][ T8186]  do_syscall_64+0x106/0xf80
[  233.055811][ T8186]  ? clear_bhb_loop+0x40/0x90
[  233.055834][ T8186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.055854][ T8186] RIP: 0033:0x7f363879c819
[  233.055877][ T8186] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  233.055894][ T8186] RSP: 002b:00007f36369f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  233.055912][ T8186] RAX: ffffffffffffffda RBX: 00007f3638a16090 RCX: 00007f363879c819
[  233.055923][ T8186] RDX: 0000000000000005 RSI: 00002000000000c0 RDI: 0000000000000005
[  233.055934][ T8186] RBP: 00007f36369f6090 R08: 0000000000000000 R09: 0000000000000000
[  233.055944][ T8186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.055954][ T8186] R13: 00007f3638a16128 R14: 00007f3638a16090 R15: 00007ffcc47ea5a8
[  233.055977][ T8186]  </TASK>
[  233.511951][ T8195] Format for deleting device is "id" (uint).
[  233.882958][ T8203] netlink: 'syz.3.614': attribute type 10 has an invalid length.
[  233.934105][ T8203] netlink: 330 bytes leftover after parsing attributes in process `syz.3.614'.
[  234.022557][ T8209] openvswitch: netlink: Flow key attr not present in new flow.
[  234.309352][ T8211] netlink: 'syz.3.616': attribute type 10 has an invalid length.
[  234.351080][ T8211] netlink: 330 bytes leftover after parsing attributes in process `syz.3.616'.
[  234.620138][ T8218] FAULT_INJECTION: forcing a failure.
[  234.620138][ T8218] name failslab, interval 1, probability 0, space 0, times 0
[  234.692959][ T8218] CPU: 0 UID: 0 PID: 8218 Comm: syz.2.619 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  234.692990][ T8218] Tainted: [L]=SOFTLOCKUP
[  234.692996][ T8218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  234.693007][ T8218] Call Trace:
[  234.693014][ T8218]  <TASK>
[  234.693021][ T8218]  dump_stack_lvl+0x100/0x190
[  234.693062][ T8218]  should_fail_ex.cold+0x5/0xa
[  234.693085][ T8218]  should_failslab+0xc2/0x120
[  234.693106][ T8218]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  234.693136][ T8218]  ? seq_open+0x55/0x170
[  234.693160][ T8218]  ? lockdep_init_map_type+0x5c/0x250
[  234.693189][ T8218]  seq_open+0x55/0x170
[  234.693216][ T8218]  kernfs_fop_open+0x590/0xd50
[  234.693244][ T8218]  do_dentry_open+0x6d8/0x1660
[  234.693263][ T8218]  ? __pfx_kernfs_fop_open+0x10/0x10
[  234.693290][ T8218]  vfs_open+0x82/0x3f0
[  234.693317][ T8218]  path_openat+0x208c/0x31a0
[  234.693344][ T8218]  ? __pfx_path_openat+0x10/0x10
[  234.693373][ T8218]  do_file_open+0x20e/0x430
[  234.693394][ T8218]  ? __pfx_do_file_open+0x10/0x10
[  234.693431][ T8218]  ? alloc_fd+0x476/0x790
[  234.693453][ T8218]  ? do_getname+0x191/0x390
[  234.693479][ T8218]  do_sys_openat2+0x10d/0x1e0
[  234.693505][ T8218]  ? __pfx_do_sys_openat2+0x10/0x10
[  234.693531][ T8218]  ? find_held_lock+0x2b/0x80
[  234.693555][ T8218]  __x64_sys_openat+0x12d/0x210
[  234.693581][ T8218]  ? __pfx___x64_sys_openat+0x10/0x10
[  234.693615][ T8218]  do_syscall_64+0x106/0xf80
[  234.693635][ T8218]  ? clear_bhb_loop+0x40/0x90
[  234.693657][ T8218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.693675][ T8218] RIP: 0033:0x7f363879c819
[  234.693691][ T8218] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  234.693707][ T8218] RSP: 002b:00007f363957c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  234.693725][ T8218] RAX: ffffffffffffffda RBX: 00007f3638a15fa0 RCX: 00007f363879c819
[  234.693736][ T8218] RDX: 0000000000082002 RSI: 0000200000000480 RDI: ffffffffffffff9c
[  234.693747][ T8218] RBP: 00007f3638832c91 R08: 0000000000000000 R09: 0000000000000000
[  234.693757][ T8218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  234.693767][ T8218] R13: 00007f3638a16038 R14: 00007f3638a15fa0 R15: 00007ffcc47ea5a8
[  234.693789][ T8218]  </TASK>
[  236.475663][ T8229] FAULT_INJECTION: forcing a failure.
[  236.475663][ T8229] name failslab, interval 1, probability 0, space 0, times 0
[  236.572964][ T8229] CPU: 0 UID: 0 PID: 8229 Comm: syz.2.623 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  236.572996][ T8229] Tainted: [L]=SOFTLOCKUP
[  236.573002][ T8229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  236.573013][ T8229] Call Trace:
[  236.573019][ T8229]  <TASK>
[  236.573026][ T8229]  dump_stack_lvl+0x100/0x190
[  236.573062][ T8229]  should_fail_ex.cold+0x5/0xa
[  236.573084][ T8229]  should_failslab+0xc2/0x120
[  236.573105][ T8229]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  236.573134][ T8229]  ? __mpol_dup+0x74/0x390
[  236.573161][ T8229]  __mpol_dup+0x74/0x390
[  236.573184][ T8229]  ? __pfx___mpol_dup+0x10/0x10
[  236.573213][ T8229]  mbind_range+0x2ad/0x550
[  236.573239][ T8229]  do_mbind+0x7dc/0xfd0
[  236.573269][ T8229]  ? __pfx_do_mbind+0x10/0x10
[  236.573292][ T8229]  ? ksys_write+0x190/0x250
[  236.573310][ T8229]  ? ksys_write+0x190/0x250
[  236.573337][ T8229]  ? __pfx_get_nodes+0x10/0x10
[  236.573360][ T8229]  kernel_mbind+0x1b7/0x200
[  236.573386][ T8229]  ? __pfx_kernel_mbind+0x10/0x10
[  236.573416][ T8229]  do_syscall_64+0x106/0xf80
[  236.573436][ T8229]  ? clear_bhb_loop+0x40/0x90
[  236.573467][ T8229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.573487][ T8229] RIP: 0033:0x7f363879c819
[  236.573503][ T8229] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  236.573520][ T8229] RSP: 002b:00007f36369f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  236.573538][ T8229] RAX: ffffffffffffffda RBX: 00007f3638a16090 RCX: 00007f363879c819
[  236.573549][ T8229] RDX: 0000000000000004 RSI: 00000000002091d2 RDI: 0000000000000000
[  236.573560][ T8229] RBP: 00007f3638832c91 R08: 0000002000000006 R09: 0000000000000002
[  236.573570][ T8229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  236.573581][ T8229] R13: 00007f3638a16128 R14: 00007f3638a16090 R15: 00007ffcc47ea5a8
[  236.573603][ T8229]  </TASK>
[  236.801271][ T8244] Format for deleting device is "id" (uint).
[  236.913508][ T8221] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x5 pfn:0x76ca5
[  236.922544][ T8221] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  236.931142][ T8221] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  236.938755][ T8221] page_type: f5(slab)
[  236.943087][ T8221] raw: 00fff00000000000 ffffea0001db2801 dead000000000122 dead000000000400
[  236.952145][ T8221] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  236.961560][ T8221] head: 00fff00000000040 ffff88813fe3b140 dead000000000100 dead000000000122
[  236.970602][ T8221] head: 0000000000000000 0000000800040004 00000000f5000000 0000000000000000
[  236.979406][ T8221] head: 00fff00000000003 ffffea0001db2801 00000000ffffffff 00000000ffffffff
[  236.988857][ T8221] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  236.998118][ T8221] page dumped because: VM_BUG_ON_PAGE(page->compound_head & 1)
[  237.006238][ T8221] page_owner tracks the page as allocated
[  237.022976][ T8221] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 8244, tgid 8242 (syz.3.627), ts 236840341087, free_ts 235745078077
[  237.045247][ T8221]  post_alloc_hook+0x153/0x170
[  237.050047][ T8221]  get_page_from_freelist+0x111d/0x3140
[  237.056120][ T8221]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  237.066139][ T8221]  new_slab+0xa6/0x6b0
[  237.070391][ T8221]  refill_objects+0x26b/0x400
[  237.079512][ T8221]  __pcs_replace_empty_main+0x1ab/0x660
[  237.085690][ T8221]  __kmalloc_noprof+0x688/0x850
[  237.091481][ T8221]  tomoyo_realpath_from_path+0xb6/0x690
[  237.098795][ T8221]  tomoyo_get_exe+0x63/0xa0
[  237.106525][ T8221]  tomoyo_write_control+0x69e/0x13a0
[  237.116450][ T8221]  vfs_write+0x2aa/0x1070
[  237.133950][ T8221]  ksys_write+0x12a/0x250
[  237.138314][ T8221]  do_syscall_64+0x106/0xf80
[  237.146372][ T8221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.171331][ T8221] page last free pid 8231 tgid 8227 stack trace:
[  237.186080][ T8221]  __free_frozen_pages+0x7e1/0x10d0
[  237.196150][ T8221]  qlist_free_all+0x47/0xe0
[  237.200707][ T8221]  kasan_quarantine_reduce+0x1a0/0x1f0
[  237.226740][ T8221]  __kasan_slab_alloc+0x69/0x90
[  237.243689][ T8221]  kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  237.254429][ T8221]  __alloc_skb+0x140/0x710
[  237.258894][ T8221]  rtmsg_ifinfo_build_skb+0x81/0x260
[  237.269331][ T8221]  rtmsg_ifinfo+0xa4/0x1b0
[  237.273981][ T8221]  register_netdevice+0x1b79/0x2210
[  237.279291][ T8221]  __ip_tunnel_create+0x52b/0x670
[  237.284658][ T8221]  ip_tunnel_init_net+0x230/0x780
[  237.294026][ T8221]  ops_init+0x1e2/0x5f0
[  237.310039][ T8221]  setup_net+0x118/0x3a0
[  237.315216][ T8221]  copy_net_ns+0x46f/0x7c0
[  237.319764][ T8221]  create_new_namespaces+0x3ea/0xac0
[  237.354898][ T8221]  unshare_nsproxy_namespaces+0xc3/0x1f0
[  237.376407][ T8221] ------------[ cut here ]------------
[  237.383153][ T8221] kernel BUG at ./include/linux/page-flags.h:351!
[  237.499411][ T8221] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[  237.505692][ T8221] CPU: 0 UID: 0 PID: 8221 Comm: syz.1.620 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  237.516457][ T8221] Tainted: [L]=SOFTLOCKUP
[  237.520773][ T8221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  237.531001][ T8221] RIP: 0010:set_ps_flags+0x321/0x390
[  237.536299][ T8221] Code: f6 0f 84 9e fe ff ff e8 ad 66 b9 ff 49 83 ed 01 e9 98 fe ff ff e8 9f 66 b9 ff 48 c7 c6 40 64 be 8b 48 89 df e8 90 82 05 00 90 <0f> 0b e8 98 02 25 00 e9 0e fd ff ff e8 be 02 25 00 e9 78 fd ff ff
[  237.556196][ T8221] RSP: 0018:ffffc90004817900 EFLAGS: 00010246
[  237.562298][ T8221] RAX: 0000000000080000 RBX: ffffea0001db2940 RCX: ffffc90005cc3000
[  237.570476][ T8221] RDX: 0000000000080000 RSI: ffffffff82546008 RDI: ffff888031e284c4
[  237.578534][ T8221] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  237.586590][ T8221] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc900048179d0
[  237.594835][ T8221] R13: 0000000000000000 R14: ffffea0001db2974 R15: ffffc900048179d0
[  237.602893][ T8221] FS:  00007f9e985986c0(0000) GS:ffff888124340000(0000) knlGS:0000000000000000
[  237.611823][ T8221] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  237.618428][ T8221] CR2: 000055555f0eea28 CR3: 000000007b6f0000 CR4: 00000000003526f0
[  237.626442][ T8221] Call Trace:
[  237.629825][ T8221]  <TASK>
[  237.632756][ T8221]  snapshot_page+0x49a/0x660
[  237.637357][ T8221]  get_kpage_count+0x94/0x240
[  237.642042][ T8221]  ? __pfx___schedule+0x10/0x10
[  237.646923][ T8221]  ? __pfx_get_kpage_count+0x10/0x10
[  237.652241][ T8221]  ? __pfx___might_resched+0x10/0x10
[  237.657708][ T8221]  ? __nr_to_section+0xaa/0x100
[  237.662781][ T8221]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  237.668691][ T8221]  kpage_read.isra.0+0x1b8/0x2b0
[  237.673765][ T8221]  ? __pfx_kpagecount_read+0x10/0x10
[  237.679086][ T8221]  proc_reg_read+0x120/0x330
[  237.683793][ T8221]  ? __pfx_proc_reg_read+0x10/0x10
[  237.689105][ T8221]  vfs_readv+0x5d8/0x8d0
[  237.693387][ T8221]  ? rcu_is_watching+0x12/0xc0
[  237.698176][ T8221]  ? __pfx_vfs_readv+0x10/0x10
[  237.703040][ T8221]  ? fdget_pos+0x2aa/0x380
[  237.707475][ T8221]  ? __fget_files+0x21f/0x3d0
[  237.712160][ T8221]  ? do_readv+0x13e/0x340
[  237.716512][ T8221]  do_readv+0x13e/0x340
[  237.720700][ T8221]  ? __pfx_do_readv+0x10/0x10
[  237.725397][ T8221]  do_syscall_64+0x106/0xf80
[  237.729994][ T8221]  ? clear_bhb_loop+0x40/0x90
[  237.734686][ T8221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.740594][ T8221] RIP: 0033:0x7f9e9779c819
[  237.745012][ T8221] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  237.764717][ T8221] RSP: 002b:00007f9e98598028 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  237.773141][ T8221] RAX: ffffffffffffffda RBX: 00007f9e97a15fa0 RCX: 00007f9e9779c819
[  237.781114][ T8221] RDX: 0000000100000007 RSI: 00002000000001c0 RDI: 0000000000000003
[  237.789180][ T8221] RBP: 00007f9e97832c91 R08: 0000000000000000 R09: 0000000000000000
[  237.797337][ T8221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  237.805393][ T8221] R13: 00007f9e97a16038 R14: 00007f9e97a15fa0 R15: 00007ffcbb3718e8
[  237.813562][ T8221]  </TASK>
[  237.816595][ T8221] Modules linked in:
[  237.821271][ T8221] ---[ end trace 0000000000000000 ]---
[  237.864165][ T8221] RIP: 0010:set_ps_flags+0x321/0x390
[  237.869576][ T8221] Code: f6 0f 84 9e fe ff ff e8 ad 66 b9 ff 49 83 ed 01 e9 98 fe ff ff e8 9f 66 b9 ff 48 c7 c6 40 64 be 8b 48 89 df e8 90 82 05 00 90 <0f> 0b e8 98 02 25 00 e9 0e fd ff ff e8 be 02 25 00 e9 78 fd ff ff
[  237.892980][ T8221] RSP: 0018:ffffc90004817900 EFLAGS: 00010246
[  237.899157][ T8221] RAX: 0000000000080000 RBX: ffffea0001db2940 RCX: ffffc90005cc3000
[  237.908480][ T8221] RDX: 0000000000080000 RSI: ffffffff82546008 RDI: ffff888031e284c4
[  237.919006][ T8221] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  237.927323][ T8221] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc900048179d0
[  237.938158][ T8221] R13: 0000000000000000 R14: ffffea0001db2974 R15: ffffc900048179d0
[  237.948004][ T8221] FS:  00007f9e985986c0(0000) GS:ffff888124340000(0000) knlGS:0000000000000000
[  237.962080][ T8221] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  237.968744][ T8221] CR2: 00007f52b69e92f8 CR3: 000000007b6f0000 CR4: 00000000003526f0
[  237.995972][ T8221] Kernel panic - not syncing: Fatal exception
[  238.002119][ T8221] Kernel Offset: disabled
[  238.006465][ T8221] Rebooting in 86400 seconds..