last executing test programs:

4m53.237706807s ago: executing program 2 (id=858):
writev$auto(0x3, 0x0, 0x8009) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000003c0), r0)
sendmsg$auto_NL80211_CMD_REQ_SET_REG(r0, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x18, r1, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@NL80211_ATTR_CONTROL_PORT={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x80}, 0x8004)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
madvise$auto(0xffffffffffff2f6d, 0xffffffffffff0004, 0x8) (async)
r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x40, 0x0)
ioctl$auto_EVIOCGKEYCODE_V2(r3, 0x80284504, &(0x7f0000000080)={0x79, 0x8, 0x9, 0x9, "28a597c00b095efff861c162a00dc6ee2fefdb18e2859da964dcb3d31affce19"})
madvise$auto(0x0, 0x200007, 0x8) (async)
socket(0x10, 0x2, 0x0)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/oom_adj\x00', 0x3e00, 0x0)
read$auto(r4, 0x0, 0x1f40) (async)
timer_create$auto_CLOCK_TAI(0xb, &(0x7f0000000080)={@sival_int=0x6, @raw=0x4, 0x6}, &(0x7f00000000c0)) (async, rerun: 32)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) (async, rerun: 32)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) (async)
socket(0xa, 0x3, 0x3a) (async)
semctl$auto(0x80001ff, 0x804, 0x13, 0x6) (async, rerun: 32)
setsockopt$auto(0x400000000000003, 0x29, 0xd2, 0x0, 0x567) (async, rerun: 32)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x7}, 0x3) (async, rerun: 64)
mmap$auto(0x8001, 0x2, 0x5, 0x9b72, 0xffffffffffffffff, 0x28028) (async, rerun: 64)
r6 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r6, 0xc004743e, 0x0) (async, rerun: 64)
r7 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000140), 0xffffffffffffffff) (rerun: 64)
sendmsg$auto_OVS_FLOW_CMD_DEL(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="f28982d005ec0ea616fe18000000", @ANYRES16=r7, @ANYBLOB="01002dbd7000fddbdf250200000004000180"], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x800)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), r5)
sendmsg$auto_NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x44, r8, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0xff01}, @NL80211_ATTR_REG_RULES={0x4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x6d}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x2}, @NL80211_ATTR_SPLIT_WIPHY_DUMP={0x4}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0xa0}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x8}]}, 0x44}}, 0x40) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)

4m52.248397304s ago: executing program 2 (id=862):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='1\x00\xc7k\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00j(=\xd1<\xf9\x96\x10>\xb9\x05\xbe\xc8v\x81-ILplM\x98\x88J\xfd\x17\xc8K\xdd\x89;T@d\xa3_\xfcb8\x7fA\x11\xba\xefL\xe1L\x8aE}\xa7\x05\b\xd7\xe2\xae\xfek\xbbw\x8c\x88\x1emW-\xf5\x94\xdak\x81\xe4\x1e\x1dS\xf2~>\xb1\xc6\xd1\xee\xc8\x19e\xc1w\xf05%\xd76]\x0f\v\x01\xa4(\xec\xd3\xca\a\x15&nv\xc1}\xfcD', 0x81)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = gettid()
kill$auto(r0, 0x11)
mmap$auto(0x0, 0x4, 0x7, 0xeb1, 0x404, 0x10008000)
close_range$auto(0x2, 0x8, 0x0)
eventfd$auto(0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x11, 0x3, 0x2)
socket(0x21, 0x2, 0xa)
getsockopt$auto(0x6, 0x110, 0x5, 0xffffffffffffffff, 0x0)
fcntl$auto_F_SETOWN(r2, 0x8, r0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="688f5a00", @ANYRESDEC=r1, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYRESOCT, @ANYRES32=r0, @ANYBLOB="060006000500000008002e"], 0x68}, 0x1, 0x0, 0x0, 0x20000001}, 0x40)
mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffa)
r3 = pidfd_open$auto(0x1, 0x0)
mmap$auto(0x0, 0x400002, 0x3, 0x7fffffffffffffff, r3, 0x6)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x3, 0x3, 0x0, 0x0, 0x4)
socket(0x1d, 0x889c39ee443acea9, 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
lsm_set_self_attr$auto(0x9, 0x0, 0x80, 0x0)
prctl$auto(0x490d, 0x2cb, r0, 0x9, 0x0)
write$auto(0xffffffffffffffff, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000240)='/dev/binderfs/binder0\x00', 0x800, 0x0)
socket(0xa, 0x3, 0x100)
socket(0x1e, 0x1, 0x0)

4m50.884693245s ago: executing program 2 (id=867):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f00000000c0), r0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
pidfd_open$auto(0x1, 0x0)
socket(0x2000000000000021, 0x2, 0x10000000000002)
socket(0x2a, 0x2, 0x0)
bind$auto(0x3, &(0x7f0000000080)=@qipcrtr={0x2a, 0x1, 0x1}, 0x6b)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x8f, 0x400, 0x2}]})

4m50.533617582s ago: executing program 2 (id=870):
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/ext4/sda1/mb_groups\x00', 0x40102, 0x0)
mmap$auto(0x0, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
connect$auto(0x3, &(0x7f0000000080)=@nl=@kern={0x10, 0x0, 0x0, 0x800000}, 0x54)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x109001, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r2 = setfsgid$auto(0xee01)
setresgid$auto(r2, 0x0, 0x0)
r3 = setfsuid$auto(0xee00)
setreuid$auto(r3, 0x0)
keyctl$auto(0x1f, r3, r3, r2, 0x7fffffffffffffff)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
prctl$auto(0x44, 0x7, 0x0, 0x6fffffffffffffff, 0x7)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000000), r4)
sendmsg$auto_NL802154_CMD_GET_INTERFACE(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)={0x14, r5, 0x305, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4004010}, 0x4040008)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
write$auto(0x3, 0x0, 0xfdf3)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)

4m49.31291761s ago: executing program 2 (id=875):
r0 = socket(0x27, 0x5, 0x73)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000)
io_uring_register$auto_IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000000)="7f4a0ad1e7d617219d36a1028a5a815aa9ceb2c8b337b7ce8caeccaf5b402bfa8b03e4dea4d325203eacd113fe91b4272049a5003a63e2a3fe76231c600d4489468523213f4abfcb5d5e40441aa56d6f97561f477c6595a698e830fd84c824f73a009030871dea51a75ae7c27bd024e9c92b8570034317d257b6ed0e14d0879b1ace109f88857eba665916dd11685f34eca7f01c0a8d6f529a0c8b027f5ed6760a6d7f8f9c7649ca59fed69318b7cadcd95efa0e2c75deccef5b400d6aae3aed143c4240e41614c21beeb42fbccfdd555ebd6582c5a713401549910a899c75", 0xe)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/controlC1\x00', 0x2000, 0x0)
alarm$auto(0x40)

4m49.148011181s ago: executing program 2 (id=877):
madvise$auto(0x0, 0x2000040080000004, 0xe) (async)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x2000, 0x0) (async)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
madvise$auto_MADV_DODUMP(0x8, 0x5, 0x11)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x3, 0x0, 0x200002, 0x13}, 0x40803}, 0xfffffff9, 0x10, 0x0)
r2 = openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x200d00, 0x0) (async)
migrate_pages$auto(0x0, 0xc, &(0x7f0000000180)=0x2, 0x0) (async)
syz_clone(0x280, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) (async, rerun: 32)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0c/sub0/sw_params\x00', 0x40, 0x0) (async, rerun: 32)
pread64$auto(r2, 0x0, 0x5, 0x0) (async, rerun: 64)
move_pages$auto(0x0, 0x200001000, 0x0, &(0x7f0000001140), 0x0, 0x2) (async, rerun: 64)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
getsockopt$auto_SO_NETNS_COOKIE(r0, 0x9, 0x47, &(0x7f0000000540)='nl80211\x00', &(0x7f0000000580)) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0)
pread64$auto(r3, 0x0, 0x40000000f42c, 0x80002) (async)
r4 = io_uring_setup$auto(0x7, 0x0)
epoll_ctl$auto(0x5, 0x1, r4, 0x0)
sendmmsg$auto(r4, 0x0, 0x5, 0xfff) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15) (async)
ioctl$auto_BTRFS_IOC_SEND_32(r1, 0x40449426, &(0x7f00000005c0)={@inferred, 0x4, 0x3, 0xe0, 0x7fff, 0xfffffffe, "fd64ab47b98fa2408fa518c6aeeb26534e24eab2a94d69169092f351"})
poll$auto(0x0, 0x7f, 0x9) (async, rerun: 64)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0x9, 0x3) (async, rerun: 64)
r5 = socket(0x10, 0x3, 0x6)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), 0xffffffffffffffff) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(r5, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x48d0) (rerun: 32)

4m33.757012295s ago: executing program 32 (id=877):
madvise$auto(0x0, 0x2000040080000004, 0xe) (async)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x2000, 0x0) (async)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
madvise$auto_MADV_DODUMP(0x8, 0x5, 0x11)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x3, 0x0, 0x200002, 0x13}, 0x40803}, 0xfffffff9, 0x10, 0x0)
r2 = openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x200d00, 0x0) (async)
migrate_pages$auto(0x0, 0xc, &(0x7f0000000180)=0x2, 0x0) (async)
syz_clone(0x280, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0) (async, rerun: 32)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card1/pcm0c/sub0/sw_params\x00', 0x40, 0x0) (async, rerun: 32)
pread64$auto(r2, 0x0, 0x5, 0x0) (async, rerun: 64)
move_pages$auto(0x0, 0x200001000, 0x0, &(0x7f0000001140), 0x0, 0x2) (async, rerun: 64)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
getsockopt$auto_SO_NETNS_COOKIE(r0, 0x9, 0x47, &(0x7f0000000540)='nl80211\x00', &(0x7f0000000580)) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/net/igmp\x00', 0x100, 0x0)
pread64$auto(r3, 0x0, 0x40000000f42c, 0x80002) (async)
r4 = io_uring_setup$auto(0x7, 0x0)
epoll_ctl$auto(0x5, 0x1, r4, 0x0)
sendmmsg$auto(r4, 0x0, 0x5, 0xfff) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15) (async)
ioctl$auto_BTRFS_IOC_SEND_32(r1, 0x40449426, &(0x7f00000005c0)={@inferred, 0x4, 0x3, 0xe0, 0x7fff, 0xfffffffe, "fd64ab47b98fa2408fa518c6aeeb26534e24eab2a94d69169092f351"})
poll$auto(0x0, 0x7f, 0x9) (async, rerun: 64)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0x9, 0x3) (async, rerun: 64)
r5 = socket(0x10, 0x3, 0x6)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), 0xffffffffffffffff) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(r5, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x48d0) (rerun: 32)

2m39.266016135s ago: executing program 3 (id=1272):
openat$auto_nsim_dev_trap_fa_cookie_fops_dev(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/netdevsim/netdevsim3/trap_flow_action_cookie\x00', 0x2002, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
msgctl$auto_IPC_RMID(0x4, 0x0, 0x0)
ioctl$auto_KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, &(0x7f00000002c0)={0x8, 0x0, 0x0, 0x33})
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x40}, 0x8)
socket(0xa, 0x801, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
listen$auto(0x3, 0x81)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x109401, 0x0)
ioctl$auto(r1, 0x540a, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x1, 0x7, 0x80000000, 0x54, r0, 0xfffffffffffffffe)
madvise$auto(0x0, 0x2003f0, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r2, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)

2m36.38068802s ago: executing program 3 (id=1283):
r0 = socket(0x2c, 0x5, 0x88) (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/ptp/ptp0/max_vclocks\x00', 0x103841, 0x0)
write$auto(r1, &(0x7f0000000100)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3C', 0x4) (async)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x1ff, 0x7, 0x1f, 0x7181, 0x1ffde, 0x7, 0x3, 0x9, 0x9, 0x3, 0x4, 0x1, 0xb4, 0x9, 0x8, 0x10003, 0x80, 0x4, 0x0, 0xa, 0x22000, 0x200, 0x0, 0x84}, 0x1fe, 0xd) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r2 = io_uring_setup$auto(0x2, 0x0) (async)
r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
writev$auto(r3, &(0x7f0000000040)={0x0, 0x4}, 0x4) (async)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) (async)
getsockname$auto(0x3, &(0x7f00000002c0)=@in={0x2, 0x0, @rand_addr=0x2}, &(0x7f0000000180)=0x4)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
recvmmsg$auto(r4, &(0x7f0000000100)={{0x0, 0xfffffea7, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000000, 0x6}, 0x9}, 0x7, 0x6, 0x0) (async)
r5 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC1D1c\x00', 0x1, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE_OLD2(r5, 0xc1004110, &(0x7f0000000100)={0x38a, [0xc, 0x4, 0x7d], [{0x80000001, 0x400, 0x0, 0x0, 0x1}, {0x403, 0x7, 0x1, 0x0, 0x0, 0x1}, {0x7, 0x7, 0x1, 0x0, 0x1, 0x1}, {0x100, 0x4, 0x1, 0x0, 0x1, 0x1}, {0x1, 0x8, 0x1, 0x0, 0x1}, {0x3ff, 0x3, 0x1, 0x1, 0x1}, {0x1b2, 0x2, 0x1, 0x1, 0x1}, {0x4, 0x1, 0x1, 0x1, 0x1, 0x1}, {0x71c8717a, 0x38c8, 0x1, 0x0, 0x1}, {0x45, 0xffffffff, 0x0, 0x1, 0x1, 0x1}, {0x34, 0x7f, 0x0, 0x1}, {0x6, 0x4, 0x1}], 0x9, 0x2, 0xffffffc0, 0x8000, 0x7fff, 0xfffffffc, 0x3, "f8b6e453edf593cff92867c194dfa7ea77769d6eb62b13f03f12710d432e0654ed23caa4249660993299d8d135b37176c1e0c560dad19a2c99017cde053077f3"}) (async)
r6 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000380), r2)
r7 = setfsuid$auto(0xee01)
keyctl$auto(0x1d, 0xffffffffffffffff, r7, 0x0, 0x6)
r8 = set_tid_address$auto(0x0)
ioprio_get$auto_IOPRIO_WHO_PROCESS(0x1, r8)
semtimedop$auto(0x7, &(0x7f00000003c0)={0x7528, 0x80, 0x6}, 0x6, &(0x7f0000000400)={0x1e, 0x908a}) (async)
sendmsg$auto_TIPC_NL_BEARER_GET(r0, &(0x7f0000000cc0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000c80)={&(0x7f0000000d00)={0x8bc, r6, 0x8, 0x70bd2c, 0x25dfdbfd, {}, [@TIPC_NLA_UNSPEC={0x2e, 0x0, "5b3b5611846c60b12033b51c72837f3a43f558be5b09b40a29915103e361af1063ceef9d94c293ea397e"}, @TIPC_NLA_NODE={0x160, 0x6, 0x0, 0x1, [@nested={0x66, 0xa5, 0x0, 0x1, [@generic="36b772332eb0abfeeaad18383f6d9b3ffb5e0da14cf298c90fada4f6981b5a74ffc1b81b690867e22dfb39d7c8f74e38a5eba483a6d7b62a4e5352ec6ddb7c9e77321fa4e0f4845da063530a7b45fdbce1d4", @typed={0x8, 0x3a, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8, 0xfb, 0x0, 0x0, @u32=0x2}]}, @typed={0x8, 0x142, 0x0, 0x0, @u32=0x49}, @nested={0xe6, 0x102, 0x0, 0x1, [@nested={0x4, 0x73}, @generic="aff98178196a46003050c74bf9b75a19994a7332a8b7410589bd59013bf24b73fd81db2e0f74b4bf56dc0868c323b324caef06983d02d799c863f6b59982528df4496e7afd0f1043bab3ffd0972d443af1806f4c9552f881984bd80d3af840b83f297dbbf0101551539e09e1e5044ffdbafe5ec3d5e46ba7648401856523ac48c95a0c9ce00c1b00cd10a0677b114ea9b2655a3c85e6968638110a76d4da6ba888ce0c96ac55a5a375da00b0385f18afc6b6e274d10a9735958861da3c7f97932708f6decfb746742e3176d6dbd9674087c3", @typed={0xc, 0x7b, 0x0, 0x0, @u64=0xa8}]}, @typed={0x4, 0x125}]}, @TIPC_NLA_BEARER={0xe8, 0x1, 0x0, 0x1, [@nested={0xc8, 0x8f, 0x0, 0x1, [@nested={0x4, 0x3f}, @nested={0x4, 0x5a}, @typed={0xc, 0xc2, 0x0, 0x0, @u64=0x7}, @nested={0x4, 0x60}, @typed={0x14, 0x25, 0x0, 0x0, @ipv6=@private2}, @nested={0x4, 0xb3}, @generic="c837c19e869cb8f1fbe35c48b2f5b8942d29c4b768b131c0d381b105cdc52036d0e6a62ca2fe6557e3ad01957076892a431dd2c0bf5797e98f0df9ea8ec2b8538f9b3a1005f826d61b02b4dbf7ab3f684745979be0fa14689dfe92c24c0f9e0fc33d4915f218b33d262831ac09182b443ec5e540874b8854b7d601c347f13ddc599267c7fb86837fcfff5ce137683daf1061921f"]}, @typed={0x8, 0xd2, 0x0, 0x0, @uid=r7}, @nested={0x14, 0x3a, 0x0, 0x1, [@typed={0xc, 0x29, 0x0, 0x0, @u64=0x4}, @nested={0x4, 0x106}]}]}, @TIPC_NLA_NAME_TABLE={0x18, 0x8, 0x0, 0x1, [@typed={0x14, 0x33, 0x0, 0x0, @ipv6=@mcast1}]}, @TIPC_NLA_PUBL={0x51, 0x3, 0x0, 0x1, [@generic="d703a8499014e43c7efce5f41a6c958198a22ea612f194b81b58c3b57c1c1e5db1fd4b754d4200642d5dc84d68a0123c93b94ddfed46e228cea5473813ae66e449c86c6fce7f219d67f26f98d2", @generic]}, @TIPC_NLA_NODE={0x188, 0x6, 0x0, 0x1, [@generic="605ea64056c8d32085046fdc4301b438de6922dbecc5b1e054cf4cfdd032b8e6dc8da15633d32d91058695f3274dcedccbd2b83043877d19949b0e0f56fe5a4c9f33590df1d196691aba7cb7057399b696abdafa759c78122088152199e7320b4267d053030085de1f9a72e5be569ae2c81507689c7b299b", @nested={0x96, 0x90, 0x0, 0x1, [@typed={0x4, 0x132}, @generic="8ab3878d17713d31776c857871dd8308f974a6672ddf3c5f169f190b322cf23a639d3351ced82fdd31459fbfd741ffca9825ca13c2a9502956266a1bb15db97f143c35049c3d6f137f0aebe8288cc135457523035b78c4bbb74154ce74577d53540e81cafd4c3789c8cfc253dc8ff0a6de5cb7deeb2ff72be4d933becf6190cc4a4f3af855ed", @typed={0x8, 0xff, 0x0, 0x0, @pid}]}, @typed={0x8, 0x33, 0x0, 0x0, @fd=r3}, @typed={0x4, 0xcb}, @nested={0x66, 0x117, 0x0, 0x1, [@generic="163ca67591217d99e29548f51e687cf69c4a99841d057478488497eea808bb2186f657e8ceb4a8cefe30f7ea2c3d6e6b774b280d12436192d6b49eaf3306583d2d6771cdce4ef91e7ec355b967f169a953c747014193da21f219", @nested={0x4, 0x43}, @nested={0x4, 0xf4}]}]}, @TIPC_NLA_NAME_TABLE={0x24d, 0x8, 0x0, 0x1, [@generic="925120606e1bfaf09750d5f82d3ea888062e30212c62740cf1919f732614114e87e731a9fbb5ded6f34076", @generic="a03db05a27f52ca02c1229138d611cc647cca747f6fb852777fee584fe218be3ff31f6734c7daf29fb4d856ea330f99b995aa8e8428a7fbdf73cffe57704bd871db3b97a363d475d8260d0ef0463457eb2d31d9e2dccde4cf116f9814037e53faa8f1723", @generic="a0e45e8619e977455a5c02047134bacf49d1c5e8486ab7d6eb5006e9dacbc2d699c0a81ce97f359c9174a0b7603b71a9560206865b7e0b6c8f00c62fc29081c97073f7a91e774068048fca58bdca55df04893268e8e0e9739e1c89c36d43", @typed={0xc, 0x148, 0x0, 0x0, @u64=0x1000}, @nested={0xdf, 0x79, 0x0, 0x1, [@nested={0x4, 0x50}, @typed={0xc, 0x113, 0x0, 0x0, @u64=0x2}, @generic="646b3aa36f5b4503d37dd5e2e87eab70dd4c6259cad37ee002426b93626507a4e946c194abf28ac18ed52777b14e1ae2542dcb92eb5fffeac2ddb6af0386818335a977d0f4e0fb9777a933bbffdcec2711f88a9156df4c5d1c278e2c154005afac8ed4ab3b03d00229796b1cbe73685e78b47cb6addadcb4731220e3433af7dcefdeb51f52fad750a623c906e55e932a78bb44fb6dfd40deff0e60807d3e7afb1e548e20749aad41556e45549d00e420d34c10e02387b09d1eaf99be01e625", @typed={0x8, 0x125, 0x0, 0x0, @fd}, @nested={0x4, 0x128}]}, @generic="3886da19c2ab7a66c7178e940a00066b8099ec643ecc60e5dc55dbf66cff46ef3e183f205433b14925a462ab0c85b3c956f00ed460632bc0b050b3f83e2e70ada00be41876e7633658969853e48df858c449b5dd8e9b89db96870265203a54481375592d06f85091", @typed={0x8, 0x68, 0x0, 0x0, @ipv4=@multicast1}]}, @TIPC_NLA_LINK={0x101, 0x4, 0x0, 0x1, [@typed={0x8, 0x12c, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x13}}, @generic="e84da6a714fc233ae955004a044f1bef6adbabf664a6b2fb604b57a30bbc7d9ee3df1e795d72178ffabcc7abe1502498180d61b503a27ececd2fe36353df32515b1829eb33db118a942f818d5385fe2c1708d140aab0c4820ec98796f5f31b03ea974708ac7ca29b891c36a4ddd1aef2d17bec74ece513da25992e85207e2184ce7da4aa30311bc931d6e5d2831e95d130c8fc01635dd735757f5c1dbddf86375804b993f843aa879c9a2a0f1800c89649210cee018f8eb8cbe1f8b466cae4af7bca4b4b621847b5a168828b0ec2a5b15e5f3ed04a54d701ab106994d584e9b9bf", @typed={0x14, 0x11d, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}]}, @TIPC_NLA_SOCK={0xe6, 0x2, 0x0, 0x1, [@generic="1607ad6a93b161eefe3d490ba35711a6ba7a85d194683bbfeeaefb782a28c2b59e36d2be0876895006b1e622280e530f43ff2118889649525212277165fb66e12d11c02906eb475981cb2bea56718f6920380108a7fe976fdfe28cbda8eda911f8668b90bc4ef6588ba13682dca77a382e12dfd975fc27fe7679eb3040ffabc230411c4a3731705ae254b924a88e059ebd9b80edd232caa4ccc90a87442a27211e79f103150ce286e588d3942ff5dcbec5ab4aa6e0ec64cde37f5389a1106d04e869b7fb37584233983e671a65e5604be10018b451266425c3c1", @typed={0x8, 0xb0, 0x0, 0x0, @pid=r8}]}]}, 0x8bc}, 0x1, 0x0, 0x0, 0x11}, 0x4000000)

2m36.04120943s ago: executing program 3 (id=1286):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy0/reset\x00', 0x82, 0x0) (async)
lseek$auto(0x3, 0x2, 0x4)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r1, &(0x7f0000001bc0)="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", 0xd4f)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) (async)
close_range$auto(r0, r3, 0xfffffffc) (async)
process_madvise$auto_MADV_NORMAL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)="ee4b748f3eb34207ad7e46cd5338d42e567005f46e763c92c13e991b73fdcc679edc8679eab61cc2e385cadfc5def146751a7412c2d23d23df55308837a590431eb78d2247c564e22279ef7ae8b7788a087eb18fe6b1036d018d", 0x4}, 0xfffffffffffff1c8, 0x0, 0x5) (async)
r4 = socket(0xa, 0x2, 0x3a)
bind$auto(r4, &(0x7f0000000040)=@generic={0xa, "2c551d000000fe8000"}, 0x66) (async)
r5 = io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0xe, 0x0, 0x20) (async)
shmctl$auto(0x0, 0xd, 0x0) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r6 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001680), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="110325bd7000fedbdf2501"], 0x14}}, 0x10040)
pivot_root$auto(&(0x7f00000001c0)='((:\x00', &(0x7f0000000200)='nfsd\x00') (async)
mq_timedsend$auto(r5, &(0x7f0000000240)=')\x00', 0x7, 0x2, &(0x7f0000000280)={0x2, 0xffff}) (async)
r8 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), r7)
r9 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r7)
sendmsg$auto_NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1040}, 0xc, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYRES64=r9, @ANYRESDEC=r8, @ANYBLOB="000228bd7000fedbdf2587000000060014010400000029b75eaaf4bceb29f2e294e80c56cf3000420b41dc77b308e7f76d5a9036da07ae4d3950bffaa557b3222b3058dd1b100552815a830551debcbe6c109dd416cba325442eae1ea76e98f776fce69604a332b610d6eec5385f250be62d2ba60ad077cccc88c9e73651ec1b4ed91e594e3585e2d223e085ffd1c5cc578b076b29dab4df430094936ed7f1f891712cdcbed491ee4e7c136ea8c4dbc37c0c8993eb053d00807d43229c7f2b", @ANYRESOCT=r6, @ANYRES16, @ANYRES32=r9], 0x1c}, 0x1, 0x0, 0x0, 0x8894}, 0x40004) (async)
mmap$auto(0x1bb, 0x7fffffff, 0x200, 0x16, r1, 0x8) (async, rerun: 64)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r7) (async, rerun: 64)
socket(0x22, 0x3, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
socket(0x15, 0x5, 0x0)

2m35.03636091s ago: executing program 3 (id=1294):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setresuid$auto(0xffffffffffffffff, 0x0, 0x0) (async)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
mmap$auto(0xfffffffffffffffd, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000001380)={&(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000428bd7000fcdbdf250200000008000900800000000e000500eecd71556377220471e700002a0005005416cf27fe10900ee223ed9f86da74b8a5140f6cc777764fb8f8c059d5a197525eeecd6721280000"], 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x400c994) (async)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
sendmsg$auto_TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[], 0x100}}, 0x42) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket(0x10, 0x2, 0x15)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4044810}, 0x800) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1000"], 0x1ac}, 0x1, 0x0, 0x0, 0x22004840}, 0x4001) (async)
sendmmsg$auto(r2, &(0x7f0000000380)={{0x0, 0x7, &(0x7f00000002c0)={0x0, 0x32fc}, 0x1, 0x0, 0x1002, 0xb}, 0xfffffffe}, 0x3, 0x0)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000140), r1) (async)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRESDEC, @ANYBLOB="010025bd7000ffdbdf25040000000a0016070000000400000000"], 0x20}, 0x1, 0x0, 0x0, 0x41}, 0x4004040)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r1, r3, 0xfffe) (async)
r4 = openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000000), 0x40001, 0x0)
write$auto_kmsg_fops_printk(r4, &(0x7f0000000040)='<', 0x1) (async)
socket(0x2, 0x3, 0x3) (async)
r5 = open(&(0x7f00000000c0)='./cgroup\x00', 0x0, 0xb5d1af1605322df2)
open_by_handle_at$auto(r5, &(0x7f0000000000)={0x8, 0x670d, 'u\x00\x00\x00\x00\x00\x00\x00'}, 0x2)
r6 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x100, 0x0)
ioctl$auto(r6, 0x901064aa, 0xffeffffffffffdff)
read$auto(0xffffffffffffffff, 0x0, 0x20)
writev$auto(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x7}, 0x3)

2m34.023445774s ago: executing program 3 (id=1299):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f00000000c0)={0x0, 0xffffffff}, 0x6)
r2 = socket(0x27, 0x4, 0x1)
setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyqd\x00', 0x20542, 0x0)

2m33.357866602s ago: executing program 3 (id=1302):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x24, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xfffffffc}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0xffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x24, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xfffffffc}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0xffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010) (async)

2m18.3851929s ago: executing program 33 (id=1302):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x24, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xfffffffc}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0xffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) (async)
sendmsg$auto_NFSD_CMD_THREADS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x24, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xfffffffc}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0xffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010) (async)

2m10.249303029s ago: executing program 0 (id=1361):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x0, 0xfffff004, 0x2)
socket(0xa, 0x2, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi23\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x3, 0x2, 0x8000)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\b', @ANYRES16=0x0, @ANYBLOB="1b0026bd7000fddbdf250300000004000800100003800c000a"], 0x28}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="000326bd7000fedbf52502000000"], 0x14}, 0x1, 0x0, 0x0, 0x4c894}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x9}, 0x3, 0x0)
flistxattr$auto(r1, 0x0, 0x6)
ioctl$auto_SNDCTL_DSP_SETTRIGGER(r1, 0x40045010, &(0x7f0000000280)="d326562dc4ba48ced22df9f0448a1dbea605801b44d4fb17e3db2d4f4ef3e07e6c36a048753740404743ee648c743d36a9ed78dab322663010d8ff08a36b87145185086997594ac3dfa02f9632db2bb0ee9d21d7b76ce30471e6597ac4552c355775982652617428ddde6f615e9c13d35c48929def80a94945d5259be3d3be182c60654b3908ee39e7dc663c6a4a13cb4047ccde51f9ecac178575c013ff4beb5267ddfab377aea2905ee3")
r2 = socket$nl_generic(0x10, 0x3, 0x10)
clock_gettime$auto(0x2, &(0x7f0000000000)={0x7, 0x7})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bond0\x00', <r4=>0x0})
bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r4, r3, 0x8, 0xff, r0, @relative_fd, 0xe600}, 0xf)
bpf$auto(0x3, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xb)

2m9.903766456s ago: executing program 0 (id=1363):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/036/001\x00', 0xa901, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x5, 0x311)
lseek$auto(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto(0x3, 0x8108551b, 0x1)
ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)={0x1, 0x81, 0x5b, 0x4, &(0x7f0000000000), 0x9, 0xeb90, 0x2, @stream_id=0x100, 0x7, 0x476, 0x0})
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = getpid()
process_vm_readv$auto(r2, &(0x7f0000000200)={0x0, 0xfff}, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)="1138f4bff347ce", 0x400000fffffffe}, 0xa, 0x3b9f)
timer_create$auto_CLOCK_REALTIME(0x0, &(0x7f0000000300)={@sival_int=0x400, @inferred=r1, 0x4}, &(0x7f0000000080)=0x2)
r3 = openat$auto_tap_fops_tap(0xffffffffffffff9c, 0x0, 0x119040, 0x0)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/lru_gen_full\x00', 0x2a4d03, 0x0)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/024/001\x00', 0x40001, 0x0)
write$auto(r4, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x8800)
mmap$auto(0x0, 0x20009, 0x84000000000df, 0xebf, 0x401, 0x8000)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/pts/ptmx\x00', 0x40001, 0x0)
ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0)
socket(0x25, 0x1, 0x0)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x800, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x0, 0x0)
unshare$auto(0x40000080)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/netdevsim2/new_port\x00', 0x183841, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x0)
write$auto(0x3, 0x0, 0x5c8)
recvmmsg$auto(r3, 0x0, 0x80, 0x7fffffff, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)

2m8.516450572s ago: executing program 0 (id=1366):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
unshare$auto(0x40000080)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xa3, 0xeb1, r0, 0x8000)
socketpair$auto(0x1, 0x3, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0xfffd, 0x8000, 0x0)
sendmmsg$auto(0x3, 0x0, 0x7878, 0x7000000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
getpriority$auto_PRIO_PGRP(0x1, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
io_uring_setup$auto(0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x6, 0x800004)
bpf$auto(0x0, &(0x7f00000001c0)=@test={0xffffffffffffffff, 0xffff, 0xfffff0b6, 0xffff, 0x84, 0xac1, 0x2, 0x36242398, 0xfffff5b2, 0x3bb, 0x8000007, 0xffff, 0x6, 0x81, 0x68198}, 0x6f3)
sendmsg$auto_ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000002cc0)={0x0, 0x0, &(0x7f0000002c80)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010027bd"], 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="12"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x1c1041, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
r1 = socket(0xa, 0x5, 0x84)
sendto$auto(r1, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80fffe040100"}, 0x1c)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32, @ANYBLOB="060006000500000008002e"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="f2000000", @ANYBLOB='.'], 0x1ac}, 0x1, 0x0, 0x0, 0x24040840}, 0x94)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0xc20f0000, &(0x7f0000000100)={0x0, 0xbb}, 0x9, 0x0, 0x7, 0xa505}, 0xfffff800}, 0x7, 0x4008)
ioctl$auto(0x3, 0x4020aeb2, 0xffffffffffffffff)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)

2m7.454622173s ago: executing program 0 (id=1370):
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/event1\x00', 0x101000, 0x0)
ioctl$auto_EVIOCRMFF(r0, 0x40044581, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x1)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, <r1=>0x4, 0x8201, 0x2, 0x8, 0xc, 0xe3, 0x4000000002, 0x3}, 0x6f4)
bpf$auto(0x18, &(0x7f0000000040)=@raw_tracepoint={0x0, 0xffffffffffffffff, 0xffffffff, 0x800}, 0x92)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0xf000, 0x8, 0x1000000003, 0x9b72, 0x2, 0x8000)
fanotify_init$auto(0x200, 0x1)
r2 = socket(0x10, 0x2, 0xc)
migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x5, &(0x7f0000000140)=0x2)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)
r3 = syz_genetlink_get_family_id$auto_ncsi(&(0x7f0000000200), r1)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'lo\x00', <r4=>0x0})
sendmsg$auto_NCSI_CMD_SET_PACKAGE_MASK(r1, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x38, r3, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x6}, @NCSI_ATTR_IFINDEX={0x8, 0x1, r4}, @NCSI_ATTR_MULTI_FLAG={0x4}, @NCSI_ATTR_CHANNEL_MASK={0x8, 0x8, 0x6}, @NCSI_ATTR_CHANNEL_ID={0x8, 0x4, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x4004000}, 0x400a1)

2m6.079612192s ago: executing program 0 (id=1380):
mmap$auto(0x0, 0x400008, 0x4, 0xa910, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0xa0681, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LOCK(r0, 0x40405514, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_UNLOCK(r0, 0x40405515, 0x0)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
unshare$auto(0x40000080)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, &(0x7f00000001c0)=0x6, &(0x7f0000000200)=0x1, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf})
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = socket(0xa, 0x5, 0x84)
getsockopt$auto(r3, 0x84, 0x14, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000300), r2)
sendmsg$auto_TCP_METRICS_CMD_GET(r3, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r4, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @loopback}, @TCP_METRICS_ATTR_SADDR_IPV6={0x14, 0xc, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @TCP_METRICS_ATTR_ADDR_IPV6={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x27}}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0xe57c91ee1bde9e58)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
setgroups$auto(0x6, &(0x7f0000000480)=0xc)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyxf\x00', 0x109401, 0x0)
ioctl$auto(r5, 0x540a, 0x0)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r6, r6, 0x0, 0x3)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
msgrcv$auto(0x9, 0x0, 0xfffffffffffffffd, 0x6, 0x80008)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_MACSEC_CMD_UPD_RXSA(r7, &(0x7f0000006200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x2c, r8, 0x23, 0x70bd27, 0x25dfdbfe, {}, [@MACSEC_ATTR_SA_CONFIG={0xc, 0x3, 0x0, 0x1, [@nested={0x5, 0x1, 0x0, 0x1, [@generic="03"]}]}, @MACSEC_ATTR_RXSC_CONFIG={0x4}, @MACSEC_ATTR_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4008008}, 0x0)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
socket(0x2, 0x3, 0xa)

2m5.289802245s ago: executing program 0 (id=1375):
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8003)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0)
socketpair$auto(0x2, 0x7, 0x1, 0x0)
close_range$auto(0x2, 0xa, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x8000, 0x0)
ioctl$auto_I2C_SMBUS(r2, 0x720, 0xfffffffffffffffe)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/ip6tnl0/name_assign_type\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
statfs$auto(&(0x7f0000000180)='}[,&*}\x00', 0x0)
syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000000), r1)
ioctl$auto(r1, 0x4008ae6a, r3)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000)
r4 = socketpair$auto(0x1e, 0x5, 0x200000, 0x0)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f00000000c0), 0x81, 0x0)
read$auto_cachefiles_daemon_fops_internal(r4, &(0x7f0000000380)=""/183, 0xb7)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, &(0x7f0000000040), 0x81, 0x9}, 0xfffffffb}, 0x5, 0x6586, 0x0)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x20050001}, 0x80)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

2m2.376899965s ago: executing program 4 (id=1389):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x9, 0x3ff57696, 0x9b72, 0x2, 0x0) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0)
ioctl$auto(0x3, 0xc040564a, 0x38)
r1 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_TIPC_NL_KEY_SET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01002abd7000fcdbdf2517000000080006"], 0x1c}, 0x1, 0x0, 0x0, 0x20000090}, 0x4000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
writev$auto(0xffffffffffffffff, 0x0, 0x1)
madvise$auto(0x0, 0x20499d, 0x9)
r2 = openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000140), 0x100, 0x0)
ioctl$auto_RNDGETENTCNT(r2, 0x80045200, 0x0) (async)
mmap$auto(0x0, 0x4005, 0x2, 0x40eb2, 0x401, 0x300000000000) (async)
r3 = io_uring_setup$auto(0x6, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
r4 = open(0x0, 0x22240, 0x155)
close_range$auto(r4, 0x5, 0xf27d) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
r5 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x4604, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0)
write$auto(0x3, 0x0, 0xfffffdef) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptypc\x00', 0x84001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$auto_BTRFS_IOC_QGROUP_ASSIGN(r3, 0x40189429, &(0x7f0000000000)={0x7, 0x3, 0x1})
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x4008)
pipe$auto(0x0)

2m2.170295835s ago: executing program 4 (id=1390):
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000)

2m2.088919122s ago: executing program 4 (id=1391):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0xa, 0x802, 0x3a)
setsockopt$auto(r0, 0x29, 0x80000000, 0x0, 0x18000113)
r1 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0xa402, 0x0)
ioctl$auto_SG_SET_FORCE_PACK_ID(r2, 0x227b, &(0x7f0000000080)="ec")
read$auto(0xffffffffffffffff, 0x0, 0xfffffffffffff2a0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmsg$auto_OVS_DP_CMD_DEL(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x108800}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14bc9eba3ffe7712159473edadb5000000", @ANYRES16=0x0, @ANYBLOB="000104000000fedbdf2502000000"], 0x14}, 0x1, 0x0, 0x0, 0x4040085}, 0x40000)
r3 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/usb/usbmon/32t\x00', 0x82000, 0x0)
ppoll$auto(&(0x7f0000000080)={<r4=>r3, 0xf7f, 0x7d}, 0xfd, 0x0, 0x0, 0x8)
close_range$auto(0x2, r4, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x2, 0x3a)
r5 = openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2a801, 0x0)
poll$auto(&(0x7f0000000240)={r5, 0x20, 0x2}, 0x5, 0x104)
write$auto(0x3, 0x0, 0xfffffdef)
socket(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x29, 0x5, 0x0)
socket(0x2, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
getsockopt$auto(0x100000006, 0x0, 0x13, 0xfffffffffffffffe, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = socket(0x15, 0x5, 0x0)
bind$auto(r6, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
ustat$auto(0x801, 0x0)
sendmsg$auto(r6, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

2m1.349222978s ago: executing program 4 (id=1403):
mmap$auto(0x0, 0xb, 0x6, 0xeb1, 0x3ff, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/block/nullb0/queue/physical_block_size\x00', 0x0, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0xa, 0x1000009, 0x5f, 0x0, 0x3}, 0x6f3)
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/ip_vs_conn_sync\x00', 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r2)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r4=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYRESOCT=r0, @ANYRES32=r4, @ANYBLOB], 0x1c}}, 0x0)
accept4$auto(r1, &(0x7f0000000000)=@can={0x1d, r4}, &(0x7f0000000040), 0x6)
r5 = openat$auto_stat_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x70000, 0x0)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_5={@target_ifindex=r4, r0, 0x1, 0xfffffffb, r0, @relative_fd=r5, 0xfffffffffffffffd}, 0x171)
sendmsg$auto_NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='Y\x00\x00\x00', @ANYRES16, @ANYBLOB="01002dbd7000fcdbdf2501"], 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
r6 = socket(0x10, 0x2, 0x4)
sendmsg$auto_NFSD_CMD_THREADS_SET(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001400"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
write$auto(r6, &(0x7f0000000000)='-\x00', 0x2fb)
r7 = openat$auto_ftrace_event_id_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/id\x00', 0xa2000, 0x0)
read$auto_ftrace_event_id_fops_trace_events(r7, 0x0, 0x0)

2m1.204343587s ago: executing program 4 (id=1395):
r0 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
sendfile$auto(r1, r0, &(0x7f0000000080)=0x7fff, 0x1)
write$auto(0x3, 0x0, 0x100082)
read$auto_proc_single_file_operations_base(0xffffffffffffffff, &(0x7f00000000c0)=""/41, 0x11)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x40, r3, 0x1b, 0x74bd26, 0x25dfdbfe, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x10, 0x3, 0x0, 0x1, [@nested={0xc, 0x9, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x33}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "898771f1c19f17790485908288a8"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x400a000}, 0xc800)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/icmp/ratemask\x00', 0xa0202, 0x0)
sendfile$auto(r4, r4, 0x0, 0x2)
bind$auto(0xffffffffffffffff, &(0x7f0000000100)=@nl=@unspec, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r5 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r5, 0x114, 0x2717, 0xfffffffffffffffc, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
r6 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video63\x00', 0x80800, 0x0)
read$auto_v4l2_fops_v4l2_dev(r6, &(0x7f00000001c0)=""/191, 0x1f8)
unshare$auto(0x40000080)
pwrite64$auto(0xc8, &(0x7f0000000240)='\vX\xb5n\x91p\xe6\x1eRN8\x99\b\x06e\x1cJ\x99\x00\x03\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\xf2\xff\x9e\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcd^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00F\xd7\x02\xd2\xe7?\xaaw\x89\xea\xb1\x1d\xea\xa8\xb1\xaf\xdc\xdeS\xe4\x88\x16\x8eu8\x7f\xa7\xe5\xbb\xf8\v \x90E\xd8\nw,S\xf5\x00\xd8\xda\x16\xb6C\xe6\xc0j\xae\x19\x1eU\f\x18\x14 \x05\xd9:\'\xf5\r\xd8C\xc7,\xe1\xa9wzVf\xa4\xfc\xff\xb87\xa5.\x14\x81mgI\xb2\xbc\x91o\x1c\xfd/\x88\xa0\x02n\x98C\xd3\xfcY\xf4\x98\xb3-\xec\x87\x1f\xe5\xdcn[\x19\xac\'\xc86s{ \x0f', 0xfdf2, 0x3a)

1m58.840172601s ago: executing program 4 (id=1406):
socket(0x1a, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000001200)={0xf2f, [{0x529, 0x5}, {0x19f1a9bc, 0x7}, {0x800, 0x5}, {0x9, 0x45053277}, {0x7d, 0xf}, {0x7fffffffffffffff, 0x5}, {0x8, 0x1000}, {0x8, 0xf94}, {0x9, 0x5}, {0x7fff}, {0x80000000, 0x5}, {0x6b, 0x6}, {0x6, 0xfffffffffffffe00}, {0x1}, {0x5, 0xb11}, {0x8, 0x7}, {0x3, 0x8}, {0x2, 0x2}, {0x0, 0x5bf8}, {0x7, 0xfff}, {0x100, 0x1000}, {0x10000}, {0x6, 0x1}, {0x9, 0xee}, {0x9, 0x2}, {0xff, 0x6}, {0x7, 0x4}, {0x8, 0xb}, {0x9, 0x6}, {0x9, 0x101}, {0x1, 0x9}, {0x5, 0x2c3}, {0x3, 0xfe}, {0x9, 0x40}, {0x5b, 0x6}, {0xfff, 0x10000}, {0x5, 0x7fffffffffffffff}, {0x40004}, {0x2, 0x12580000}, {0x9}, {0x9, 0x100000001}, {0x2, 0x7}, {0x6, 0x5}, {0x10, 0x4}, {0x9, 0x1}, {0x5, 0x10}, {0x9, 0x200}, {0xb, 0x4d97}, {0xffffffffffffff7f, 0x8000000000000001}, {0x7f, 0x800}, {0x3, 0x10000}, {0x6, 0xffffffffffffffff}, {0x6, 0x2}, {0x5, 0x3}, {}, {0x3, 0x1}, {0x1, 0xbb4}, {0x9, 0x8000}, {0x6302, 0x3}, {0x9, 0x9}, {0xa, 0x401}, {0x2}, {0x4, 0x800002}, {0x0, 0x4}, {0x7ff}, {0x6, 0x7fffffff}, {0x1, 0x9}, {0x67a, 0xffff}, {0xc, 0x8}, {0x80, 0xe0}, {0x3e75, 0x1}, {0xe8, 0x9}, {0x5}, {0x0, 0x1}, {0xfffffffffffffffe, 0x9}, {0x8, 0xf870}, {0x1ae8df8a, 0x5}, {0xf8, 0xd7c}, {0x0, 0x8}, {0x9, 0xffffffffffffffff}, {0x5de8, 0x7ff}, {0x2, 0x800}, {0xfffffffffffffff8, 0x2}, {0x2, 0x4}, {0x3, 0x5}, {0x0, 0x7ff}, {0x8b, 0x6e}, {0x8000000000000000, 0x3}, {0x4, 0xf434}, {0x4, 0xa0b}, {0x400000002, 0x5}, {0x4, 0x5}, {0x9, 0x5}, {0xd0c7, 0x9}, {0x7, 0x1}, {0x35d, 0x75}, {0x7, 0x3}, {0x3, 0xfffffffffffffffa}, {0x1, 0x38a}, {0x4, 0x1}, {0x100000001, 0x1}, {0x6, 0x5}, {0x5, 0x5}, {0x81, 0x821}, {0x2, 0x1}, {0x100000000, 0x5}, {0x8008, 0xfffffffffffffffa}, {0x9, 0xc}, {0x0, 0x2}, {0x2, 0x70829e47}, {0x255, 0x100000001}, {0x7, 0x8}, {0x1315, 0x7}, {0x4, 0x100}, {0x2, 0x24ad}, {0xd, 0x7}, {0x5, 0x131}, {0x1}, {0x7fffffff, 0xaf06}, {0x8, 0x6}, {0x10, 0x8}, {0x2, 0x5}, {0x1, 0x7}, {0x6, 0xc184}, {0x5, 0x8}, {0x101, 0x24}, {0xfab, 0x3}, {0x1, 0x1}, {0xffffffffffffff89, 0x1}, {0x7ff}, {0x3, 0x9}, {0x7fffffff, 0xffffffffffffffff}, {0x1, 0x1944}, {0x7, 0xfffffffffffffff7}, {0x4, 0xa7}, {0x3, 0xd}, {0x4, 0x6}, {0xfff, 0xa81}, {0x3, 0xc0}, {0x1ff, 0x800}, {0x1000, 0x5}, {0xb, 0x8}, {0x4, 0x6}, {0x1000000000002, 0x5}, {0x200000007, 0x6}, {0x8001, 0xb}, {0x7fffffff, 0x953c}, {0x1, 0x2}, {0x4}, {0x1, 0x5}, {0xfffffffffffffff8, 0xbd}, {0x4}, {0x54e5, 0x6000}, {0x100000001, 0x100000001}, {0x4, 0x8}, {0x200, 0x7afe}, {0x5, 0x2}, {0xfffffffffffffff7, 0x3e9}, {0x0, 0x8}, {0x3, 0x9}, {0x80, 0x1000}, {0x802, 0xd}, {0x0, 0x6}, {0x7, 0x10}, {0x80000000000000, 0x5}, {0xf, 0xc}, {0x0, 0x3}, {0x0, 0x9bd}, {0x4, 0xf96a}, {0x203b0000000000, 0x6}, {0x9}, {0x1, 0x8}, {0x1e, 0x2}, {0x6, 0x400}, {0x8, 0x80000001}, {0x3fc0, 0x6}, {0x4}, {0x7fff, 0x7}, {0x30, 0x8399}, {0xffffffffffffffff, 0x2}, {0x1ff, 0x7}, {0x5, 0x4}, {0x4, 0x79}, {0x3, 0x2}, {0x6, 0x7fff}, {0x6, 0x8}, {0x1000, 0xef62}, {0xbd1b, 0x10001}, {0x8, 0x6}, {0xbd8, 0x80000000}, {0x5, 0x80000001}, {0x1, 0x6}, {0xfff, 0x7}, {0x100, 0x3}, {0x7a}, {0x100}, {0x7, 0xffffffffffffffff}, {0x238b, 0x5}, {0x0, 0x2}, {0xd3fe, 0x7}, {0x5, 0x7}, {0x1, 0x1}, {0x99, 0xfffffffffffffffc}, {0x6, 0xee}, {0x6, 0x100}, {0x78e, 0x5}, {0x1ddf, 0x6}, {0x9, 0x40}, {0x1, 0x2}, {0x8001, 0x91}, {0x8000, 0x1}, {0x9, 0x6}, {0x2, 0x4}, {0x5, 0x3}, {0x0, 0xffff}, {0x5}, {0x5aa, 0x8020000000000}, {0x7, 0x8000000000000000}, {0x400005c4a, 0x4}, {0x3, 0x7de}, {0x0, 0x2}, {0x780000000, 0x8}, {0x9, 0xffffffffffffff3f}, {0x3, 0x4}, {0x81, 0x6a04}, {0x2, 0x1c25}, {0xffffffffffffffc0, 0x8}, {0x1, 0x427}, {0x2, 0x1}, {0x2000008, 0xed3}, {0x3, 0xbe28}, {0x8000000000000000, 0xffffffffffffffff}, {0x2, 0x2}, {0x7, 0x7}, {0x80000001, 0x3987}, {0x66f3, 0x101}, {0x5, 0x101}, {0x4, 0x2}, {0xfff, 0x2}, {0x4, 0x8000000000000001}, {0x1}, {0xa, 0x6}, {0x6, 0x4}, {0x6, 0x3}, {0xd, 0x2}, {0x1, 0x10001000000000}, {0x0, 0x7fffffffffffffff}, {0x9, 0x6}, {0x200, 0x2f91}, {0xd5c5, 0x81}, {0x8, 0x8000}, {0x800, 0xfffffffffffffffa}, {0x301983e2, 0x5}, {0x3, 0x7}, {0x0, 0x4}], 0x7, "0a54d639d08954"})
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
socket(0x2, 0x1, 0x0)
r2 = epoll_create$auto(0x4)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r3, 0x5425, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TCFLSH2(r4, 0x5408, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x24, r6, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xfffffffc}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0xffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010)
personality$auto(0xfffff032)
close_range$auto(0x2, 0x8, 0x0)
read$auto_vcs_fops_vc_screen(r2, &(0x7f0000000180)=""/197, 0xc5)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

1m50.174617586s ago: executing program 34 (id=1375):
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8003)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_uprobe_events_ops_trace_uprobe(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/default/forwarding\x00', 0x141241, 0x0)
socketpair$auto(0x2, 0x7, 0x1, 0x0)
close_range$auto(0x2, 0xa, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r1 = ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000080), 0x8000, 0x0)
ioctl$auto_I2C_SMBUS(r2, 0x720, 0xfffffffffffffffe)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/ip6tnl0/name_assign_type\x00', 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(0x3, 0xae60, 0x10000000000402)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
statfs$auto(&(0x7f0000000180)='}[,&*}\x00', 0x0)
syz_genetlink_get_family_id$auto_mac802154_hwsim(&(0x7f0000000000), r1)
ioctl$auto(r1, 0x4008ae6a, r3)
mmap$auto(0x0, 0x5, 0xdf, 0x9b72, 0x7, 0x28000)
r4 = socketpair$auto(0x1e, 0x5, 0x200000, 0x0)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f00000000c0), 0x81, 0x0)
read$auto_cachefiles_daemon_fops_internal(r4, &(0x7f0000000380)=""/183, 0xb7)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000100)={{0x0, 0xbb, 0x0, 0x8, &(0x7f0000000040), 0x81, 0x9}, 0xfffffffb}, 0x5, 0x6586, 0x0)
sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000040), 0xc, 0x0, 0x1, 0x0, 0x0, 0x20050001}, 0x80)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

1m43.644008291s ago: executing program 35 (id=1406):
socket(0x1a, 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000001200)={0xf2f, [{0x529, 0x5}, {0x19f1a9bc, 0x7}, {0x800, 0x5}, {0x9, 0x45053277}, {0x7d, 0xf}, {0x7fffffffffffffff, 0x5}, {0x8, 0x1000}, {0x8, 0xf94}, {0x9, 0x5}, {0x7fff}, {0x80000000, 0x5}, {0x6b, 0x6}, {0x6, 0xfffffffffffffe00}, {0x1}, {0x5, 0xb11}, {0x8, 0x7}, {0x3, 0x8}, {0x2, 0x2}, {0x0, 0x5bf8}, {0x7, 0xfff}, {0x100, 0x1000}, {0x10000}, {0x6, 0x1}, {0x9, 0xee}, {0x9, 0x2}, {0xff, 0x6}, {0x7, 0x4}, {0x8, 0xb}, {0x9, 0x6}, {0x9, 0x101}, {0x1, 0x9}, {0x5, 0x2c3}, {0x3, 0xfe}, {0x9, 0x40}, {0x5b, 0x6}, {0xfff, 0x10000}, {0x5, 0x7fffffffffffffff}, {0x40004}, {0x2, 0x12580000}, {0x9}, {0x9, 0x100000001}, {0x2, 0x7}, {0x6, 0x5}, {0x10, 0x4}, {0x9, 0x1}, {0x5, 0x10}, {0x9, 0x200}, {0xb, 0x4d97}, {0xffffffffffffff7f, 0x8000000000000001}, {0x7f, 0x800}, {0x3, 0x10000}, {0x6, 0xffffffffffffffff}, {0x6, 0x2}, {0x5, 0x3}, {}, {0x3, 0x1}, {0x1, 0xbb4}, {0x9, 0x8000}, {0x6302, 0x3}, {0x9, 0x9}, {0xa, 0x401}, {0x2}, {0x4, 0x800002}, {0x0, 0x4}, {0x7ff}, {0x6, 0x7fffffff}, {0x1, 0x9}, {0x67a, 0xffff}, {0xc, 0x8}, {0x80, 0xe0}, {0x3e75, 0x1}, {0xe8, 0x9}, {0x5}, {0x0, 0x1}, {0xfffffffffffffffe, 0x9}, {0x8, 0xf870}, {0x1ae8df8a, 0x5}, {0xf8, 0xd7c}, {0x0, 0x8}, {0x9, 0xffffffffffffffff}, {0x5de8, 0x7ff}, {0x2, 0x800}, {0xfffffffffffffff8, 0x2}, {0x2, 0x4}, {0x3, 0x5}, {0x0, 0x7ff}, {0x8b, 0x6e}, {0x8000000000000000, 0x3}, {0x4, 0xf434}, {0x4, 0xa0b}, {0x400000002, 0x5}, {0x4, 0x5}, {0x9, 0x5}, {0xd0c7, 0x9}, {0x7, 0x1}, {0x35d, 0x75}, {0x7, 0x3}, {0x3, 0xfffffffffffffffa}, {0x1, 0x38a}, {0x4, 0x1}, {0x100000001, 0x1}, {0x6, 0x5}, {0x5, 0x5}, {0x81, 0x821}, {0x2, 0x1}, {0x100000000, 0x5}, {0x8008, 0xfffffffffffffffa}, {0x9, 0xc}, {0x0, 0x2}, {0x2, 0x70829e47}, {0x255, 0x100000001}, {0x7, 0x8}, {0x1315, 0x7}, {0x4, 0x100}, {0x2, 0x24ad}, {0xd, 0x7}, {0x5, 0x131}, {0x1}, {0x7fffffff, 0xaf06}, {0x8, 0x6}, {0x10, 0x8}, {0x2, 0x5}, {0x1, 0x7}, {0x6, 0xc184}, {0x5, 0x8}, {0x101, 0x24}, {0xfab, 0x3}, {0x1, 0x1}, {0xffffffffffffff89, 0x1}, {0x7ff}, {0x3, 0x9}, {0x7fffffff, 0xffffffffffffffff}, {0x1, 0x1944}, {0x7, 0xfffffffffffffff7}, {0x4, 0xa7}, {0x3, 0xd}, {0x4, 0x6}, {0xfff, 0xa81}, {0x3, 0xc0}, {0x1ff, 0x800}, {0x1000, 0x5}, {0xb, 0x8}, {0x4, 0x6}, {0x1000000000002, 0x5}, {0x200000007, 0x6}, {0x8001, 0xb}, {0x7fffffff, 0x953c}, {0x1, 0x2}, {0x4}, {0x1, 0x5}, {0xfffffffffffffff8, 0xbd}, {0x4}, {0x54e5, 0x6000}, {0x100000001, 0x100000001}, {0x4, 0x8}, {0x200, 0x7afe}, {0x5, 0x2}, {0xfffffffffffffff7, 0x3e9}, {0x0, 0x8}, {0x3, 0x9}, {0x80, 0x1000}, {0x802, 0xd}, {0x0, 0x6}, {0x7, 0x10}, {0x80000000000000, 0x5}, {0xf, 0xc}, {0x0, 0x3}, {0x0, 0x9bd}, {0x4, 0xf96a}, {0x203b0000000000, 0x6}, {0x9}, {0x1, 0x8}, {0x1e, 0x2}, {0x6, 0x400}, {0x8, 0x80000001}, {0x3fc0, 0x6}, {0x4}, {0x7fff, 0x7}, {0x30, 0x8399}, {0xffffffffffffffff, 0x2}, {0x1ff, 0x7}, {0x5, 0x4}, {0x4, 0x79}, {0x3, 0x2}, {0x6, 0x7fff}, {0x6, 0x8}, {0x1000, 0xef62}, {0xbd1b, 0x10001}, {0x8, 0x6}, {0xbd8, 0x80000000}, {0x5, 0x80000001}, {0x1, 0x6}, {0xfff, 0x7}, {0x100, 0x3}, {0x7a}, {0x100}, {0x7, 0xffffffffffffffff}, {0x238b, 0x5}, {0x0, 0x2}, {0xd3fe, 0x7}, {0x5, 0x7}, {0x1, 0x1}, {0x99, 0xfffffffffffffffc}, {0x6, 0xee}, {0x6, 0x100}, {0x78e, 0x5}, {0x1ddf, 0x6}, {0x9, 0x40}, {0x1, 0x2}, {0x8001, 0x91}, {0x8000, 0x1}, {0x9, 0x6}, {0x2, 0x4}, {0x5, 0x3}, {0x0, 0xffff}, {0x5}, {0x5aa, 0x8020000000000}, {0x7, 0x8000000000000000}, {0x400005c4a, 0x4}, {0x3, 0x7de}, {0x0, 0x2}, {0x780000000, 0x8}, {0x9, 0xffffffffffffff3f}, {0x3, 0x4}, {0x81, 0x6a04}, {0x2, 0x1c25}, {0xffffffffffffffc0, 0x8}, {0x1, 0x427}, {0x2, 0x1}, {0x2000008, 0xed3}, {0x3, 0xbe28}, {0x8000000000000000, 0xffffffffffffffff}, {0x2, 0x2}, {0x7, 0x7}, {0x80000001, 0x3987}, {0x66f3, 0x101}, {0x5, 0x101}, {0x4, 0x2}, {0xfff, 0x2}, {0x4, 0x8000000000000001}, {0x1}, {0xa, 0x6}, {0x6, 0x4}, {0x6, 0x3}, {0xd, 0x2}, {0x1, 0x10001000000000}, {0x0, 0x7fffffffffffffff}, {0x9, 0x6}, {0x200, 0x2f91}, {0xd5c5, 0x81}, {0x8, 0x8000}, {0x800, 0xfffffffffffffffa}, {0x301983e2, 0x5}, {0x3, 0x7}, {0x0, 0x4}], 0x7, "0a54d639d08954"})
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
socket(0x2, 0x1, 0x0)
r2 = epoll_create$auto(0x4)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r3, 0x5425, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TCFLSH2(r4, 0x5408, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x24, r6, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFSD_A_SERVER_THREADS={0x8, 0x1, 0xfffffffc}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0xffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4002000}, 0x40010)
personality$auto(0xfffff032)
close_range$auto(0x2, 0x8, 0x0)
read$auto_vcs_fops_vc_screen(r2, &(0x7f0000000180)=""/197, 0xc5)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

57.267795613s ago: executing program 7 (id=1587):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/reboot/mode\x00', 0x1e2142, 0x0)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000008000)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto(r1, 0x5393, 0xffffffffffffffff)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2d, 0x2, 0x0)
ioctl$auto(0x3, 0x89e1, 0x91)
sendfile$auto(r0, r0, 0x0, 0x7fff)

56.992586417s ago: executing program 7 (id=1588):
madvise$auto(0x100000000002, 0x2000040080000004, 0xe)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84Du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xa1\x030\x00', 0x100000a3db)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003f2, 0x15)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
renameat$auto(0x6, 0x0, 0x5, 0x0)
madvise$auto(0x0, 0x200006, 0x9)
syslog$auto(0x3, 0x0, 0x5)
r2 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$auto_VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000000)={0x6})
socket(0x25, 0x5, 0x6)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
sendmsg$auto_NFC_CMD_STOP_POLL(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c010000", @ANYRES16=0x0, @ANYBLOB="080027bd7000ffdbdf250700000008001d000f000000"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x1)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
sendfile$auto(r3, r3, 0x0, 0x3)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x109100, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r4, 0xc0385720, &(0x7f0000000240)={0x1, "77947a0f", 0x9, 0x8, 0x7ff, 0x1bb8, "d00f5322a8e93a161984686708c98cd7"})
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x7, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
io_uring_setup$auto(0xb, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r5 = socket(0x10, 0x2, 0xc)
sendmsg$auto_CTRL_CMD_GETPOLICY(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="10cfd560000400f0df250a00000a"], 0x14}}, 0x3000c010)

55.916627456s ago: executing program 7 (id=1591):
mmap$auto(0x0, 0x9, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf250300000004000800100003800c0009"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00211459a600fbdbdf25020000000800030000"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000200bd7000fedbdf250200000800130001"], 0x24}, 0x1, 0x0, 0x0, 0x1fc183befaf35569}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1)
sendmsg$auto_NL80211_CMD_NEW_STATION(r1, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x2c, r2, 0x800, 0x70bd28, 0x25dfdbff, {}, [@NL80211_ATTR_TSID={0x5, 0xd2, 0x1}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x7}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x20040014)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x5c, r4, 0x1, 0x70bd2d, 0x25dfdbf9, {}, [@L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x10}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x101}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x2}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @ipv4={'\x00', '\xff\xff', @loopback}}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @private2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0xfdf31875370e1716)
r5 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000380), r0)
sendmsg$auto_OVS_VPORT_CMD_SET(r3, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x38, r5, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@OVS_VPORT_ATTR_UPCALL_STATS={0x24, 0xa, 0x0, 0x1, [@typed={0x14, 0x9e, 0x0, 0x0, @ipv6=@empty}, @nested={0xc, 0x10, 0x0, 0x1, [@nested={0x4, 0x80}, @typed={0x4, 0xbf}]}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x8808}, 0x2a044894)
r6 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r6, &(0x7f0000000180)=""/68, 0x44)
syz_genetlink_get_family_id$auto_nlbl_unlbl(0x0, r6)
ioctl$auto_XFS_IOC_ERROR_INJECTION(r6, 0x40085874, &(0x7f0000000480)={r1, 0xffffff80})

55.65211141s ago: executing program 7 (id=1592):
socket(0xc, 0x3, 0x1)
r0 = openat$auto_safesetid_uid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000b00), 0x40042, 0x0)
write$auto_safesetid_uid_file_fops_securityfs(r0, &(0x7f0000000b40)="33e06908f7cef2ef9652d5e3d0f91cdb9aa7fcd4f56b3ae50e2e7a3fce17ad39061182af048f047adfa552adf5a64941ae9a2564ce32560a", 0x38)
prctl$auto_PR_SCHED_CORE_SHARE_FROM(0xa5c8, 0x3, 0x0, 0x1, 0x8bc)
socket(0x3, 0x6, 0xff7fffc4)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r2, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000)
socket(0x7, 0x80000, 0x1)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000200)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0x2505}, 0x7fc}, 0x4, 0x1000)
r3 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYRES8=r3], 0x1ac}}, 0x4040092)
recvmmsg$auto(r3, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x806}, 0xfffffff9, 0x10, 0x0)
sendmmsg$auto(0x3, 0x0, 0x40, 0x100)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r4, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r5)
ioctl$auto_KVM_CREATE_VM(r4, 0x4040aea0, 0x0)
write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x715881, 0x0)

54.207411368s ago: executing program 7 (id=1595):
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x1, 0x0)
socket(0x2, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'veth1_vlan\x00', <r1=>0x0})
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="e5b724bd7000fcdbdd251900000020000180140002000000000000000008000100"/42, @ANYRES32=r1, @ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x4010}, 0x4048800)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(r0, 0xfffffffffffff000, 0x3)
r3 = socket(0x2, 0xa, 0x1)
r4 = bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_4={0x1f, <r5=>r3, 0x10000}, 0x10)
mmap$auto(0x0, 0x2009, 0xfffffffffffffff9, 0x8000200008011, r4, 0x8000)
mmap$auto(0x0, 0x10, 0xdf, 0xeb2, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/bus/netdevsim/new_device\x00', 0x149b01, 0x0)
r7 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f00000004c0)='nfsd\x00~T\x93Q\x92-|\x1ei=\'8&\x13~\xd9t\xec\v\xc3\xfd\x8b\x1a\xd0wWXfa\f\v_\x9e:\x88\x9ej\x1aYAW\xa5a\x13\x9c\xae\x17\x7fob\xde\xb3\\\x94\xfal\xf2Y\xfd+\xf2\xf8\x88\xc4\xb8fI\xde6#mP\xe7\x85\'\x1b\x04\xcd\x1fW\x88T\xe9\x1e\xb7\xa20\t\x17\xc16\f\x05?-\xb2\x91\x1f\x8b}\n\xd7~\xdd\xb6\xee\xf1 \x9d\xd8\xd2kt}\xe3\xe4Q\xc4\x81\x11\xc0,\x89\xa5)\xf0y4\xb6\x9e\xf0h\x7f\x04\x91\x92|b\xe9\xcd\x10\x92\xe2\x03Op\x14Fe\xb6\x11\x9c\xe5\xe4X+\x94\xe4rJ\xf1\xa6\x86\xf0\xbd\x04uin', 0x800, 0x0)
r8 = openat$auto_virtual_ncidev_fops_virtual_ncidev(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0)
fcntl$auto_F_GETSIG(r8, 0xb, 0x8)
mount$auto(0x0, &(0x7f0000000000)='}[,&*}\x00', 0x0, 0x3375, 0x0)
read$auto(r7, 0x0, 0x1f40)
writev$auto(r6, &(0x7f0000000200)={0x0, 0x9}, 0x7)
socket(0x1f, 0x2, 0xfdfffffc)
socket$nl_generic(0x10, 0x3, 0x10)
r9 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/memory.pressure\x00', 0x1, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r9, &(0x7f0000000040)='8', 0x1)
r10 = socket(0xa, 0x2, 0x88)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r10, @new_prog_fd=r4, 0x4, @old_map_fd=r5}, 0xa3)

53.43611948s ago: executing program 7 (id=1599):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/43:256/strict_limit\x00', 0xa022, 0x0)
write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r1 = io_uring_setup$auto(0x2000004, 0x0)
openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x101, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio11\x00', 0x80002, 0x0)
mmap$auto(0x1000000, 0x9, 0xffb, 0x12, 0xffffffffffffffff, 0x80800000)
mmap$auto(0x0, 0x400008, 0xdb, 0x109b72, 0x2, 0x10003)
close_range$auto(0x2, 0x8, 0x0)
socket(0x3, 0x800, 0xfffffffc)
socket(0x2b, 0x1, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r2, 0x8000)
ioctl$auto_BLKRRPART(r1, 0x125f, 0x0)
madvise$auto(0x0, 0xf663, 0x15)
ioprio_set$auto(0x3, 0x0, 0x4b34)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
r3 = socket(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000006c0)={'batadv0\x00'})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'macsec0\x00'})

38.195290911s ago: executing program 36 (id=1599):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/bdi/43:256/strict_limit\x00', 0xa022, 0x0)
write$auto(r0, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
r1 = io_uring_setup$auto(0x2000004, 0x0)
openat$auto_dma_buf_debug_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x101, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/swradio11\x00', 0x80002, 0x0)
mmap$auto(0x1000000, 0x9, 0xffb, 0x12, 0xffffffffffffffff, 0x80800000)
mmap$auto(0x0, 0x400008, 0xdb, 0x109b72, 0x2, 0x10003)
close_range$auto(0x2, 0x8, 0x0)
socket(0x3, 0x800, 0xfffffffc)
socket(0x2b, 0x1, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getrandom$auto(0x0, 0x6000000, 0x3)
mmap$auto(0x0, 0x810004, 0x2000000efb, 0x8000000008011, r2, 0x8000)
ioctl$auto_BLKRRPART(r1, 0x125f, 0x0)
madvise$auto(0x0, 0xf663, 0x15)
ioprio_set$auto(0x3, 0x0, 0x4b34)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x1000, 0x2)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6)
r3 = socket(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000680), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000006c0)={'batadv0\x00'})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'macsec0\x00'})

19.445634472s ago: executing program 1 (id=1699):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ram0\x00', 0xb8142, 0x0)
preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000040c0)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x100, 0x0)
preadv$auto(r2, &(0x7f0000004480)={0x0, 0xc}, 0x4, 0xb72, 0xfffffffffffffff7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r0, 0x8000)
rseq$auto(0x0, 0xfffffff4, 0x0, 0x5)
semget$auto(0xb, 0xe, 0xe0000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dri/card0\x00', 0x440, 0x0)
ioctl$auto(r1, 0x64d0, r1)
r3 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_VHOST_SET_BACKEND_FEATURES(r3, 0x4008af25, &(0x7f0000000000)=0x7)
mmap$auto(0x0, 0x9, 0x8000, 0xe238, 0x602, 0x5)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mincore$auto(0x1000, 0x8001, 0x0)
rseq$auto(0x0, 0x6, 0x3, 0xff)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
setsockopt$auto_SO_BUF_LOCK(0xffffffffffffffff, 0x4d9cebe6, 0x48, &(0x7f0000000040)='+-.\x00', 0x499)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r5 = socket(0x43a2fe9ff20c15c7, 0xa, 0xfffff7fe)
sendmsg$auto_NL80211_CMD_GET_REG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='^\x00', @ANYRES32, @ANYRES32=r1, @ANYBLOB="2154fb32cd1f3d53edb014f6454a675b827673d4dba231a3bd58c13dedda8be956b086600f40c44e4104f858da35fa58886bf2105c113d6616afb8bce105a1382bdf3dba5399ba9a1083ce1fada86b3f6c5d0e6081cd144740ea27ba35bf9988e34fbfc3e00daf6efe8b1d62007f7e61c3674d853bbc0f2b0b93421991555afd576ef161e428952256b850075f9850c90237077cd48a1daafcddf30e40d773232cf47e40a89b1d76b68a7912eae9a743e89bf206dd29a00e41cc62715b146bb8f3bd76135a3b7779f6cdd9859b8c9287afcb8cb671f4956426d56ee9a5d4fb57d00059a04980"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
statmount$auto(0x0, 0x0, 0x1fd, 0x0)
recvmmsg$auto(r5, &(0x7f0000000180)={{0x0, 0x1, &(0x7f0000000140)={&(0x7f0000000340), 0xfff}, 0x5, 0x0, 0x8, 0x7}, 0x7}, 0x80000005, 0x66a6, 0x0)
msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f00000004c0), 0x101202, 0x0)

18.738657471s ago: executing program 1 (id=1701):
socket(0x2, 0x3, 0xa)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x4040, 0x0)
mmap$auto(0x0, 0x40009, 0x7fffffff, 0x9b72, 0xffffffffffffffff, 0x100000000028000)
socket(0x10, 0x2, 0x6)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, 0x0, 0x40, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
remap_file_pages$auto(0xbe1, 0x20, 0x0, 0x0, 0xb)

17.552677545s ago: executing program 1 (id=1706):
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000040), 0x3b9c40, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r1)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={0x0}, 0x1, 0x0, 0x0, 0x4008040}, 0x40800)
mmap$auto(0x0, 0x402000a, 0xffffffffffffffff, 0x400eb1, 0x401, 0x8000)
r2 = socket(0xa, 0x5, 0x84)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xa, 0x0)
r3 = socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8)
setsockopt$auto(0x3, 0x84, 0x17, 0x0, 0x27)
setsockopt$auto(0x3, 0x10000000084, 0x18, 0x0, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
setsockopt$auto(r2, 0x10000000084, 0x23, 0x0, 0x8)
unshare$auto(0x40000080)
r4 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r4, 0xc0045516, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)

16.764373967s ago: executing program 1 (id=1710):
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/binder/parameters/stop_on_user_error\x00', 0x2, 0x0) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/binder/parameters/stop_on_user_error\x00', 0x2, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000100)='1', 0x1)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="1b0026bd7000fddbdf25030000000400081908"], 0x20}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dri/card0\x00', 0x80202, 0x0) (async)
r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dri/card0\x00', 0x80202, 0x0)
ioctl$auto(r1, 0x9000643a, 0xc35) (async)
ioctl$auto(r1, 0x9000643a, 0xc35)
socket(0x10, 0x2, 0x4) (async)
socket(0x10, 0x2, 0x4)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r2)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000fbdbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000) (async)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="180027"], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x6, 0x4)
eventfd$auto(0x5d5d) (async)
eventfd$auto(0x5d5d)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x4)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/zram0/algorithm_params\x00', 0xa001, 0x0)
writev$auto(0x3, &(0x7f0000000100)={&(0x7f0000000340), 0x7111}, 0x8)
setsockopt$auto(0x3, 0x1, 0x10, 0x0, 0x9)

14.539799722s ago: executing program 1 (id=1715):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/block/loop6/discard_alignment\x00', 0xc0400, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
process_mrelease$auto_PIDFD_SELF_THREAD(0xffffffffffffd8f0, 0x4)
readv$auto(0x3, &(0x7f00000001c0)={0x0, 0x7fffffffefff}, 0x7)

13.616324395s ago: executing program 1 (id=1717):
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x802, 0x0)
mmap$auto(0xf5, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x26, 0x1, 0x300)
r0 = openat$auto_suspend_stats_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x440, 0x0)
pread64$auto(r0, &(0x7f0000000200)='/dev/nvme-fabrics\x00', 0x7, 0x42799527)
open_by_handle_at$auto(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1b}, 0x403)
socket(0x11, 0x3, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
open(&(0x7f0000000040)='./file0\x00', 0x44, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40001}, 0x0)
io_uring_register$auto(0x2, 0x0, &(0x7f0000000000), 0x3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000180)={0x14, r3, 0x1, 0x870bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000003500)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="01002bbd7000ffdb020000000000"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_clone3(0x0, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/ram3/trace/enable\x00', 0x2062, 0x0)
write$auto(r4, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
write$auto(r4, 0x0, 0x98c7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x1)

8.799230816s ago: executing program 5 (id=1725):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x2080, 0x0)
pipe$auto(&(0x7f0000001480))
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
vmsplice$auto(r0, &(0x7f0000000140)={0x0, 0x8}, 0x5, 0x8001)
vmsplice$auto(0x4, &(0x7f0000000040)={0x0, 0x2}, 0x2, 0x5)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/0000:00:00.0/ari_enabled\x00', 0xa0440, 0x0)
kexec_load$auto(0x5, 0x2, &(0x7f0000000040)={@kbuf=0x0, 0x2aa7, 0x6c0000c000, 0xc000}, 0x4)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x2, 0x9)
mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
semctl$auto(0x7, 0x2, 0x13, 0x5)
r1 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x8202, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GPARAMS(r1, 0x40485404, &(0x7f00000000c0)={{0x1, 0x40, 0x4202, 0x3, 0x1}, 0x2, 0x0, "72e00d838b24ff6fd5411f4330fd8fa23cf2b9541bbae501c8312f5733753466"})
r2 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC0D0p\x00', 0x4946c0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE_OLD(r2, 0xc1004110, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x80000003, 0xe, 0x2, 0x6, 0x5, 0x8, 0xffffffffffffffff, [], {0xd74c, 0x6, 0x2, 0x29f, 0x100, 0x7f, 0x0, 0x6, 0x2}, {0xff, 0x1, 0x10001, 0x7, 0x1, 0x40, 0x76c5, 0x400008, 0x100000005}})
io_uring_enter$auto(r3, 0x9, 0x820e, 0x9, 0x0, 0x18)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
prctl$auto(0x21, 0x1, 0x1, 0x0, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x40000, 0x31)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)

8.056667813s ago: executing program 6 (id=1728):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0x277, 0xfffffe05, 0x21}]})
unshare$auto(0x40000080)
bpf$auto_BPF_MAP_CREATE(0x0, &(0x7f0000000340)=@link_create={@map_fd=r0, @target_ifindex, 0x2, 0x6, @uprobe_multi={0xffffffffffff0000, 0x1, 0x6, 0x5, 0x8, 0xffffffff}}, 0x800)
mmap$auto(0x0, 0x400006, 0xdf, 0x809b72, 0x2, 0x8000)
write$auto(0xca, 0x0, 0x2d9)
socket(0x10, 0x80000, 0x5)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, 0x0, 0x40000)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000080), 0xffffffffffffffff)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/038/001\x00', 0x40001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/trace_marker\x00', 0x201, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x80002, 0x73)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000780)='/dev/snd/midiC2D2\x00', 0x10100, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x108002, 0x0)

6.31714708s ago: executing program 5 (id=1730):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
set_mempolicy$auto(0x6, &(0x7f0000000080)=0x3, 0x21)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sysfs$auto(0x2, 0x4, 0x0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0xc800)
r0 = openat$auto_event_inject_fops_trace(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/inject\x00', 0x40482, 0x0)
writev$auto(r0, &(0x7f00000002c0)={&(0x7f0000000300), 0x4}, 0x2)
unshare$auto(0x40000080)
socket(0xa, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
msgctl$auto_IPC_RMID(0x4, 0x0, &(0x7f0000000240)={{0x0, 0xffffffffffffffff, 0xee00, 0x9, 0x5, 0x8, 0x5}, &(0x7f00000001c0)=0x6, 0x0, 0x1, 0xfff, 0x0, 0x7, 0x9, 0x4, 0x9, 0xf})
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
writev$auto(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x40}, 0x8)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0)
ioctl$auto(r2, 0x540a, 0x0)
close_range$auto(0x2, 0x8, 0x0)
msgrcv$auto(0x9, 0x0, 0xfffffffffffffffd, 0x6, 0x80008)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
madvise$auto(0x2, 0x5c61fa2c, 0xf)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x800)
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r4, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)

5.846559206s ago: executing program 6 (id=1731):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
ioctl$auto_SNDCTL_DSP_GETTRIGGER(0xffffffffffffffff, 0x80045010, &(0x7f0000004440))
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/lru_gen\x00', 0x2000c0, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x40001, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socketpair$auto(0xa, 0x5, 0xb, 0x0)
mmap$auto(0x0, 0xd561, 0x10000000000df, 0xeb2, 0xffffffffffffffff, 0x8000)
socket(0xa, 0x2, 0x88)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x163340, 0x2a)
r1 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, 0x0, 0x101001, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
r2 = openat$auto_iommufd_fops_main(0xffffffffffffff9c, &(0x7f0000000400), 0x80001, 0x0)
ioctl$auto(r2, 0x3b8e, r1)
io_uring_setup$auto(0x6, 0x0)
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000000c0)='5', 0x1)
execveat$auto(0xffffffffffffffff, &(0x7f0000000200)='\x00', 0x0, 0x0, 0x11000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x0)
socket(0x2, 0x3, 0xa)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
unshare$auto(0x8000000)

5.845315662s ago: executing program 8 (id=1732):
mmap$auto(0x0, 0x2020009, 0x3, 0xb8, 0xfffffffffffffffa, 0x8000)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/kvm/host_state_reload\x00', 0x22042, 0x0)
mmap$auto(0x20000000000, 0x4, 0x6, 0x12, 0xffffffffffffffff, 0x168d)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x2, 0x80802, 0x0)
r2 = socket(0x2b, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000a80)=ANY=[@ANYBLOB="14000000a7c7b6fde7851c3ed26b0380da861e369681d23bd6863f16aad4fbf4cf13d023c818dbf53d45582bb1e50f86e2a210f405574bf810a7a556e9d9ea43d8d303ae5e2bc8cffc2825612bec596f18fa5c89e3a2fa02a8a2b94754a72307cd4229e1b42d35a0f4fdebb46ffa81e5c5e61327b0b0ef7e8507fef8165a421df7c21ce896faa62ddf086e2e5eed628394712c221252c39c2466be", @ANYRES16=r4, @ANYBLOB, @ANYRESHEX, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="4af9b95ac4dd4a659d447a181161b7b204b99fe8165c13005c4ca5b273a717a540c1fa47972868afe4078754190a13631f52eaecfa39625ba06fc78b33d637c9f7e9fa187527259ec6f40ec04760f0f5d9635236c786ad45cde1302648189833ae69c8ac4f7dac2d50f9dba9ed518c066dcc331998d0b245caa80bcb9f16c4edfa0d01d392f17bb33560dbc29dd14203dfaf5359e7719af2510b1b242677a9", @ANYRESHEX=r1], 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0xdc12e0caca337d7)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000180)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sysfs$auto(0x7ff, 0x500000000000037, 0x8000000000000001)
r5 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
shmctl$auto(0x0, 0xd, 0x0)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x3)
mmap$auto(0x4, 0xe987, 0xffffffffffff0001, 0xffffffff, 0xffffffffffffffff, 0x405)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)
prctl$auto(0x16, 0x2, 0x2, 0x42, 0x7ff)

4.365921539s ago: executing program 6 (id=1733):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
adjtimex$auto(&(0x7f00000005c0)={0xf33296e, 0x0, 0xcea4, 0xfffffffffffffffd, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0xfffffffffffffffe, 0x6, 0xfffffffffffffffd, 0x1007bfe, 0x0, 0x9, 0x81, 0xdfffffffffff628c, 0x2, 0xdeb1, 0x808})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto(r1, 0x401870cb, r1)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x381800, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff000)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, 0x0, 0x800)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x89b0, &(0x7f0000000140)={'bond0\x00'})
r3 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r4 = io_uring_setup$auto(0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x2, 0x0, 0x3)
write$auto_fops_init_pkru_pkeys(r4, &(0x7f0000000280)="e7c2da8ba23469d9b78d2e257333bedaec957355b8c2c4c78f4a98e7180a2dfeddb935038a6350c625940925fc61f1b8b51df8f60e61c078ff39654003ba048fb5ce9f0cc683aa815dd3ad98c47fb90efa4ba1a790507d91d2a8beb4ce1934ec6dc65f", 0x63)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x7f, 0xeb1, 0x401, 0x8000)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x5)
futex$auto(&(0x7f0000000080)=0x3, 0x3, 0x0, 0x0, 0x0, 0x440a48d3)

2.941748729s ago: executing program 8 (id=1734):
socket(0x2, 0x3, 0xa)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x4040, 0x0)
mmap$auto(0x0, 0x40009, 0x7fffffff, 0x9b72, 0xffffffffffffffff, 0x100000000028000)
socket(0x10, 0x2, 0x6)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, 0x0, 0x40, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xe000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
remap_file_pages$auto(0xbe1, 0x20, 0x0, 0x0, 0xb)

2.855007274s ago: executing program 6 (id=1735):
socket(0x2, 0x1, 0x106)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/block/nbd14/sched/write1_fifo_list\x00', 0x189e42, 0x0)
lseek$auto(0x3, 0x7fffffffffffffff, 0x1)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0)
mmap$auto(0x0, 0x2, 0x2000de, 0x15, 0x7, 0x28000)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0xffffffffffffffff, 0x0, 0x7, 0x47)
mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
pselect6$auto(0xce9e, &(0x7f0000000000)={[0x8, 0x4, 0x0, 0x6, 0x10000007ffd, 0x4000000000002bc8, 0x3fd6d3f5, 0x8, 0x5, 0xffffffff, 0x255f0cfa, 0x0, 0x2, 0x2, 0xa, 0x7]}, 0x0, 0x0, 0x0, 0x0)
futex_requeue$auto(0x0, 0x0, 0xf, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x9, 0x49f, 0x9b72, 0x2, 0x8000000000008000)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x26142, 0x4b)
write$auto(r3, 0x0, 0x100082)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYRESDEC, @ANYBLOB="000826bd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32=<r4=>0xffffffffffffffff, @ANYBLOB="0a0005000180c200000e00000a07000000000000000e00000a000100000000000000000008000200"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'vlan1\x00', <r5=>0x0})
sendmsg$auto_NET_SHAPER_CMD_GET2(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fcdbdf050000000000000000", @ANYRES32=r5, @ANYRES64, @ANYRESDEC=r4, @ANYBLOB='\b\x00\b\x00', @ANYRES64, @ANYRES8=r2], 0x2c}, 0x1, 0x0, 0x0, 0x10040001}, 0xc0)
ioctl$auto_FS_IOC_SETFLAGS2(r3, 0x40086602, 0x0)
pwrite64$auto(r3, 0x0, 0x8, 0x200000000000003)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0xa, 0x2, 0x0)
connect$auto(0x3, &(0x7f00000000c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)

2.698019861s ago: executing program 8 (id=1736):
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x8201, 0x2, 0x8, 0xc, <r0=>0xe3, 0x4000000002, 0x3}, 0x6f4)
bpf$auto(0x18, &(0x7f0000000040)=@link_create={@prog_fd=r0, @target_fd=r0, 0x7fff, 0x40000, @kprobe_multi={0x6, 0x80000001, 0xb70, 0x733, 0x4}}, 0x92)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810008, 0xffb, 0x8000000008011, 0x3, 0x8000)
preadv2$auto(r1, &(0x7f0000000040)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e)
ioctl$auto_BLKFLSBUF(r1, 0x1261, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0x40, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
rseq$auto(0x0, 0xfffffff4, 0x0, 0x5)
ioctl$auto_VHOST_SET_BACKEND_FEATURES(0xffffffffffffffff, 0x4008af25, 0x0)
mmap$auto(0x4, 0xa00006, 0x2, 0x100000000040eb1, r2, 0x4b4a)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x62040, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0)
pread64$auto(r4, 0x0, 0x20000000001, 0x20001)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x1, 0x40009, 0xdf, 0x13, 0xffffffffffffffff, 0x10001)
msync$auto(0x1ffff000, 0x1800000ff000000, 0x400000004)
r5 = socket(0x23, 0x5, 0x0)
bind$auto(r5, &(0x7f0000000140)=@phonet={0x23, 0x6, 0x0, 0xa3}, 0x80)
socket(0xf, 0xa, 0x5)
connect$auto(0x3, &(0x7f0000000080)=@l2={0x1f, 0x6, @none, 0x5}, 0x2)
ioperm$auto(0x7, 0x75, 0x4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='./cgroup.net/blkio.bfq.dequeue\x00', 0x8ad00, 0x0)

2.088609627s ago: executing program 6 (id=1737):
unshare$auto(0x40000080)
syslog$auto(0x4, &(0x7f0000000440)='.\x19\xe9k\xac\x8c\x1d\x0e\x98\x02\x00\x00\x00\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x0f\xaduI:\x94:O(\xa9\xb3\b\xb0\xd0\xf7A\x83\xe3f\xaf\x06c=3>1\xb3\xfd\x00\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87lo\xd2\xed\xbcY,\xe3vy+T\xabxT}\xbc\xc9u\"\x00\xff\x00\x00\x00z\xd4\x8c\xd4\xf0\xba\x8e\xa2f\xae\x99\n\xd9F\xacG\xff>', 0x24c)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x10d041, 0x0)
mmap$auto(0x0, 0x2020009, 0x8000000003, 0xeb1, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
madvise$auto(0x0, 0xffffffffffff0101, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0xffff, 0xeb1, 0xfffffffffffffffa, 0x8000)
connect$auto(0xffffffffffffffff, &(0x7f0000000140)=@nl=@unspec, 0x57)
write$auto(0x3, 0x0, 0x3f00)
mmap$auto(0x6, 0x202480a, 0x8, 0xeb2, 0xffffffffffffffff, 0x8000)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x400800, 0x0)
mmap$auto(0xfffff000, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0xc0001, 0x0)
poll$auto(0x0, 0x0, 0x9f)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x20b42, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card1/pcm0c/sub0/sw_params\x00', 0x0, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x4, 0x4831, 0x40eb2, r0, 0x300000000000)
socket(0xa, 0x1, 0x84)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x69)
semget$auto(0xff, 0x40000000, 0x7f)
mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x1272, 0x8000)
msgsnd$auto(0x20b, 0x0, 0x2000, 0x7fe)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x12, 0x940, 0x6, 0x3, 0x6, 0xfffffffffffffffe, 0x9, 0x5, 0x5, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x800, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc]}, 0x1fe, 0x82)

2.087699342s ago: executing program 5 (id=1738):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/usb/drivers/sq905/unbind\x00', 0x200400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000040)=""/243, 0xf3)
r1 = ioctl$auto_TUNSETVNETLE2(0xffffffffffffffff, 0x400454dc, &(0x7f0000000140)=0x8)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_KEY(r1, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0xe8, r2, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_BEACON_HEAD={0x8c, 0xe, "517c04e539b55377e79a33ebddfa79fd989676cc2736b6197bbefa60235910788313ef46a60f8642957ff790ad4aab506bcf1b24c0cb03b67b832dba99a8a568ada0a31679924b5e30278b0f5419fd0135418fe58f5cb0825c8bb273316440dc0734f4ed911bb9d7c5390415a04cf3062ff1300b09e81e9f5c4c047997c0a5734d0fd485df76c5f5"}, @NL80211_ATTR_FILS_ERP_RRK={0x26, 0xfc, "72bad436f96a078fb6556b45e14fb60ba90fd9e047fc316a807ea8fb0855f63022cb"}, @NL80211_ATTR_MAC_MASK={0x20, 0xd7, "f9dabc047d607de6405cb5db48fe530cc92f5499962eae02984af837"}]}, 0xe8}, 0x1, 0x0, 0x0, 0x4004084}, 0x0)
r3 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000380)='/dev/fb1\x00', 0x10200, 0x0)
io_uring_register$auto_IORING_REGISTER_FILES2(r3, 0xd, &(0x7f00000003c0)="1561092a40d47d2e472caa825eb757a4701ba0d248a02d6fc4276f99d53f7058c822c7a58d8a5ad3c67e014c6d2d2f6ad1010bae33057c01e9674a6590f982f4af2ea4c966062436fc877877", 0x1)
socket(0x1a, 0xa, 0x511d)
r4 = ioctl$auto_TUNSETDEBUG(r1, 0x400454c9, &(0x7f0000000440)=0x2)
bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f0000000480)=@bpf_attr_11={0x4, 0x0, 0x6, 0xffffffff, 0x99fc, 0x9, 0x0, r4}, 0x2)
fsconfig$auto_FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000540)='\'\x00', &(0x7f0000000580)="041aa9f84093ab51826851a80180684c183b652c3c02cc802236afb86e7f3517c18140f4dc68d0402e9f67798a3b8b6d473cb6351ee718b410f0035cb8104bedd695017437aa1428fdd5c0a867170cb61e354057635f27b3e2508eb497c24065066b936a418b02611065db433d96008d9e9bf1625a38c10586fe3e06f4d322fd94e0c23118b61fb5aac3a96bf3778140d3dc0efebeff1b036a81a5a65137d1b09db91be30b0970b1dbef5e417e9462706fc11195a8015d3abeda9e531694e28bd72299512d", 0x7)
r5 = openat$auto_fops_x16_ro_(0xffffffffffffff9c, &(0x7f0000000680)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/dormant_links\x00', 0x2000, 0x0)
pread64$auto(r5, &(0x7f00000006c0)='nl80211\x00', 0x4, 0xe)
ioctl$auto_SOUND_MIXER_READ_CAPS(r4, 0x80044dfc, &(0x7f0000000700)="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")
bpf$auto_BPF_LINK_DETACH(0x22, &(0x7f0000001700)=@enable_stats={0x2c2}, 0x8ce1)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000001800), r1)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(r6, &(0x7f0000001940)={&(0x7f00000017c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001900)={&(0x7f0000001840)={0xac, r7, 0x4, 0x70bd25, 0x25dfdbff, {}, "c56ab2916c376b27cf641d47e02ed3f1c5fe24a5887d9a87a4e0e51b81f7fa864b7171f28985ee40b1972e27e9ee1e2dda0f91f6df4ee7891d3b71b70cc0a2ce6a09fe73a5d524b3cb39755ca051c0749bf2bed46724d71551d67a9c3cddec3818484ba64f03ebf23650984fb0c80b48977c66547f718374a7277ec4e4b71000f07593ed07cf9d4c4ce57897c60aec9ce30df9d8bc6cc5"}, 0xac}, 0x1, 0x0, 0x0, 0x20008040}, 0x4000)
mmap$auto(0x6, 0x4, 0x8, 0x10000000000010, r4, 0x9de)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = fcntl$auto_F_GETOWN(r0, 0x9, 0x9)
msgctl$auto_IPC_STAT(0x8, 0x2, &(0x7f0000001a40)={{0x0, <r10=>0x0, <r11=>0x0, 0x5, 0xa64, 0x4000000, 0x7}, &(0x7f00000019c0)=0x8, &(0x7f0000001a00)=0x7f, 0x8, 0x100000001, 0x231, 0x681, 0xc6a, 0x0, 0x0, 0xc9, @raw=0xeb1, @raw})
r12 = set_tid_address$auto(&(0x7f0000001ac0)=0x8)
sendmsg$auto_NLBL_CIPSOV4_C_LISTALL(r8, &(0x7f0000003080)={&(0x7f0000001980)={0x10, 0x0, 0x0, 0x84a5f810e567691b}, 0xc, &(0x7f0000003040)={&(0x7f0000001b00)={0x1540, 0x0, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_TAG={0x5, 0x3, 0xe}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x5}, @NLBL_CIPSOV4_A_TAGLST={0x214, 0x4, 0x0, 0x1, [@generic="d14af664eaaf7e84a1a3535bef093b13fe77da09aeb799419f990a14bceed32c1b043e16c6b1816f121e7475fa1909dec42e66bc7fc6f466429d3d2d056dca55dc3aab9bcdad1694d586516b15be693dff37ba0df16bc4a6e6d38ca9005f942286c3848cb2d839d4a8ee3fe612922026b2c1d022df12326dcb46fcead2ec8c576f7a6fbf09d06f3b3aa56258066db3917229d6a72c754c56989c0254486580a6509ab76fc5d542fec4a055c2c054135db00f01591a3ae75217c61e507bbec4c33d3530240f45b85a33a66cf888310fd769236115d2", @typed={0x8, 0x1e, 0x0, 0x0, @u32=0x3}, @nested={0x58, 0xc3, 0x0, 0x1, [@typed={0x14, 0x28, 0x0, 0x0, @ipv6=@loopback}, @typed={0x8, 0x61, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x15, 0xdf, 0x0, 0x0, @str='$$&&-)$\\^*+&-^-/\x00'}, @typed={0x8, 0x33, 0x0, 0x0, @fd=r5}, @typed={0x4, 0x115}, @typed={0x5, 0xbc, 0x0, 0x0, @str='\x00'}, @nested={0x4, 0x114}, @typed={0x8, 0x5f, 0x0, 0x0, @ipv4=@multicast1}]}, @typed={0x8, 0x43, 0x0, 0x0, @ipv4=@local}, @generic="2e8109ef6f5f61eeef771b9c5a838f39a5e1b4316f5ce34feb2b29c16f4715fdea3f18f714c010f2cead28ee22b5126a35f4568bce2ad11431091d75c6f89076d0f8a78a11fefe8811c8e44cc86a371a5e480e3be79abba7e86b786c2c2805872095f33b91fce587632321579aa63369424b9e1b2b3c10abd4e68a2022fb04dce88aa05c2ffffb35b57562c2f172536c3c39a1ecf8f4e19a1abdbb36a26f3ac8a9c5b4e36b47f2dba28ca3e881e394cfb91a5a", @typed={0x14, 0x14b, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x1f}}, @nested={0xc, 0xe7, 0x0, 0x1, [@typed={0x8, 0x108, 0x0, 0x0, @pid=0xffffffffffffffff}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x14, 0x8, 0x0, 0x1, [@typed={0x8, 0xfa, 0x0, 0x0, @pid=r9}, @typed={0x8, 0xdc, 0x0, 0x0, @uid=r10}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x11cb, 0x8, 0x0, 0x1, [@generic="a03d8f7266e598007d175b00f69107af0deab331f289bccea96da90486c81d91684ac5b5794ea05aaf887c1c5846f9ba8c81b9b91415025cccaf6350b34b42d1ae60e2a5a4b699cec798237d29efcb09a258f0581f712a217a37405b81e1753b8daf21eb9a21d594c565ae0b666dea6aa9c9cb4c82f402e530ebb7b60249d684246ebf1fb715dfe55385d9f73d2363290d50acda374d1f49210fcd8ada5ee32fe7c22da0eef5f4f4489ca28978a569", @generic="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", @typed={0x8, 0x23, 0x0, 0x0, @pid=r12}, @nested={0x7f, 0xb4, 0x0, 0x1, [@generic="b483ad69fce4ff2656d2c956d380153f96ce81a37dca5e4acd625ed2afc3c341922aff5e44304ad1ffdfce87b2407715a6570930375600b038d6142266a7e0ea87eb3e565639b62694a5f3c514e52707b50cf5f1d145944953c45da7ff2ef70f96ca202b7c01b8b2719815bf2a6fce0fdd0694fd2ae5f7625031e6"]}, @nested={0x87, 0x6a, 0x0, 0x1, [@generic="4ef2d4a70ee526378c0dbef001d2cfc79c07fc46835c343751b097ee8b179c6b2553f19b06a73653fb37df5810a9231a4e73b2c094974eec85b03b7f7ef93fc4fa2f825e6b62ff231774f7558aa3d98516c19942283116637ece3fcb1d1693f41991987d57f83aa9f849b572a954c5f7fcfeb22a52e7127c4cf73a1f6712f0", @nested={0x4, 0x5e}]}, @nested={0x8, 0xcb, 0x0, 0x1, [@nested={0x4, 0x89}]}]}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8}, @NLBL_CIPSOV4_A_MLSCATLST={0x117, 0xc, 0x0, 0x1, [@generic="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", @typed={0x8, 0x12f, 0x0, 0x0, @ipv4=@broadcast}, @typed={0xc, 0x449, 0x0, 0x0, @u64}]}]}, 0x1540}, 0x1, 0x0, 0x0, 0x8060}, 0x8000)
sendmsg$auto_NL80211_CMD_LEAVE_MESH(r8, &(0x7f00000031c0)={&(0x7f00000030c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000003180)={&(0x7f0000003100)={0x64, r2, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_EHT_CAPABILITY={0x4b, 0x136, "9e9a18e5f34bf1e3793ec88b903abd124a90709c3c8a170941d974399a417d3c40e61f9775f4ede52e27dffca5662f3cecbf9554c2ae83016c64a31b701cf97f17a477cdb2cbb7"}, @NL80211_ATTR_WIPHY_DYN_ACK={0x4}]}, 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$auto_BCH_IOCTL_FSCK_OFFLINE(r4, 0x4018bc13, &(0x7f0000003200)={0x0, 0x10, 0x4, [0x8d, 0x6, 0x3, 0x2]})
r13 = syz_genetlink_get_family_id$auto_nlctrl(&(0x7f0000003280), r6)
sendmsg$auto_CTRL_CMD_GETFAMILY2(r4, &(0x7f0000003380)={&(0x7f0000003240)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000003340)={&(0x7f00000032c0)={0x58, r13, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x2}, @CTRL_ATTR_FAMILY_NAME={0x5, 0x2, '\x00'}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0xa}, @CTRL_ATTR_FAMILY_NAME={0xd, 0x2, '/dev/fb1\x00'}, @CTRL_ATTR_FAMILY_NAME={0xc, 0x2, 'nl80211\x00'}, @CTRL_ATTR_FAMILY_ID={0x6, 0x1, 0x6}, @CTRL_ATTR_FAMILY_NAME={0x6, 0x2, '[\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x64044004}, 0x400c0005)
setsockopt$auto_SO_RCVBUF(r5, 0xfffffffa, 0x8, &(0x7f00000033c0)='nlctrl\x00', 0x6)
shmctl$auto(0xf5, 0x101, &(0x7f00000034c0)={{0x8000, r10, r11, 0x5, 0x2, 0xf, 0xfffa}, 0x1e3, 0xfffffffffffffffe, 0x2, 0x7, @raw=0xce5, @raw=0x8f, 0xffc0, 0x0, &(0x7f0000003400)="d1358215c04e6700771ae5bd39fcab8f550aa72e38f6423fdec497a1a5e479cb7290ea824f502b66fc048c3dff6533d96e2795a846a96a54dbe007741e29c56a9664dc5782cf1b269fa3d08f01470fc5f2545ef35d0c35b6679330fefe1f6858668ce85e55aad074d1872f643b6afe", &(0x7f0000003480)="6eeb85d879be4db609b0beea16dee8087cbd12b9f7bc201e4fb89a0265281e482f2fadefc36391b60d0cf7c74b9c"})

1.773837275s ago: executing program 5 (id=1739):
pselect6$auto(0x101, &(0x7f0000000000)={[0x40000000000000bc, 0x7f, 0x0, 0x1, 0x0, 0x6, 0x4, 0x8, 0x83f3, 0x0, 0x40, 0xc, 0x9, 0x100, 0x1, 0x8]}, &(0x7f0000000080)={[0x2, 0x8, 0x9, 0x0, 0x0, 0x0, 0xc, 0xfffffffffffff781, 0x2, 0x4, 0x3, 0x0, 0x10, 0x8000, 0x0, 0xe]}, &(0x7f0000000100)={[0x0, 0xea, 0x2, 0x4, 0x10001, 0x100, 0x10, 0x4, 0xee5d, 0x6, 0x8, 0x9, 0x8568, 0x8, 0xfeb, 0x100000000]}, &(0x7f0000000200)={0x5, 0x3}, &(0x7f0000000240)="9576372c8e13252291d7c5ec7fad4d29164740d8479963feb9e1283a943139c4315b01ccfd4cf35fbc41924b7366e266a46be6e9d4147efe8e4ed747469b038d149365e690a845c76cffe217bfc9b77537e80497316c695e5b9600446cb1bfaa2f73f6386c635b07e61a519ebd2a8c2ef8")
mmap$auto(0x4000000000000000, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x7, 0x0)
r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy1/aql_txq_limit\x00', 0x40140, 0x0)
read$auto_debugfs_full_proxy_file_operations_internal(r0, 0x0, 0x0)
close_range$auto(0x2, r0, 0x87)
r1 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r1, 0xffffffffffdffe00, &(0x7f0000000140)=';')
ioctl$auto(0x3, 0x40086203, 0x38)
close_range$auto(0x0, 0x5, 0x0)
r2 = pipe$auto(0x0)
read$auto_tracing_pipe_fops_trace(r2, &(0x7f0000000180)=""/81, 0x51)
write$auto(0x1, 0x0, 0x100)

1.512364134s ago: executing program 8 (id=1740):
r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/virt_wifi0/router_solicitations\x00', 0x101202, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/sctp/auth_enable\x00', 0x40a02, 0x0)
sendfile$auto(r1, r0, 0x0, 0x48)
r2 = openat$auto_hwsim_fops_ps_(0xffffffffffffff9c, &(0x7f0000000580)='/sys/kernel/debug/ieee80211/phy0/hwsim/ps\x00', 0x100, 0x0)
read$auto_hwsim_fops_ps_(r2, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x20009, 0x5, 0xeb2, 0x8, 0x1008000)
r3 = socket(0x10, 0x2, 0x0)
openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/trace\x00', 0x601, 0x0)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000003b80)='/dev/snd/pcmC0D0c\x00', 0x8100, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyd9\x00', 0x0, 0x0)
ioctl$auto_TIOCSETD2(r5, 0x5423, 0x0)
read$auto_ptdump_curusr_fops_(r4, 0x0, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}}, 0x40000)
r6 = socketcall$auto_SYS_ACCEPT4(0x12, &(0x7f0000000300)=0x800)
syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000000280), r6)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/rose11/tx_queue_len\x00', 0x0, 0x0)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r3)
sendmsg$auto_NL80211_CMD_REGISTER_BEACONS(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000001500)=ANY=[@ANYBLOB="c78a2027dc26b9b8413482e0c729c2d7b375919da86854cee7fb2cf2ec4edfbb45b26d13a7a44b18334b651b6d7acbd71a906b0c599f5ac127cfd8e33644d7f275a754468000d44011d0ef995f7b8be0d40e0ea1040f451df3673f5c2d3c1ab35226f11e5a0c224c4f7bed0811db1c4a396cfb5054244192f5e62cf762049a4fb8213ad2c7df04f3fd494c43a87d92c66a9e1829c2391a6f69730b424f904b3a22dc2ec1ed5b8f1895f71cce47168724280924808ff763dc34e87651baf559cdf970a43179b818693a84ac0510890988193e662657f96c3d7d50d570d6b43d0762c3d0f84a824edad5ebe98b973c86054066aa3f8eb0", @ANYRES16=r8, @ANYBLOB="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"], 0x11d4}, 0x1, 0x0, 0x0, 0x20000080}, 0x1)
read$auto(r7, 0x0, 0x20)
r9 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/blkio.bfq.weight_device\x00', 0xca401, 0x0)
write$auto(r9, 0x0, 0x81)

1.425186386s ago: executing program 5 (id=1741):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r0) (async)
mkdir$auto(&(0x7f00000001c0)='./file0\x00', 0x0)
mount$auto(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000000)='cifs\x00', 0x8000, &(0x7f0000000240)="8983b4d503e98c29ac0907551c70860db5cca27b1ab4bc56020b5d379e3632275ddfcea8c9fa21b267c9caaecb3712fa39bdf3664db83c2a79a27345e968ee01e9943d")
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="95430b2e5a562cfeef61f0937005", @ANYRES16=r1, @ANYBLOB="e5b726bd7000fcdbdd2519000000"], 0x14}, 0x13}, 0x4048800)

1.272127877s ago: executing program 8 (id=1742):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
sendmsg$auto_IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, 0x0, 0xc80)
r0 = socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
unshare$auto(0x40000085)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x20342, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd3/queue/zone_append_max_bytes\x00', 0x101900, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000002980)=""/4075, 0xfeb)
r3 = pidfd_open$auto(0x1, 0x0)
r4 = prctl$auto_PR_SET_MM_START_CODE(0x3ff, 0x1, 0x0, 0xfffffffffffffffc, 0x4)
r5 = openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000280), 0x44080, 0x0)
r6 = prctl$auto_PR_TIMER_CREATE_RESTORE_IDS_ON(0x1, 0x1, 0x0, 0x5, 0x6)
bpf$auto_BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)=@bpf_attr_3={0x7ff, 0x40, 0xa2, 0x9, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x4, "d9904d50f209f4f05bbd7963df5a8465", 0x0, 0x4000, r4, 0x3, 0xdc1c, 0x8, 0x7fffffff, 0x7, 0x8, 0x4, @attach_prog_fd=r5, 0x1, 0xa75, 0x2, 0x5, 0x5, r0, r6}, 0x65)
setns(r3, 0x60020000)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
clone$auto(0x12051c, 0x10000, 0xfffffffffffffffd, 0xffffffffffffffff, 0x9)
pivot_root$auto(&(0x7f0000000100)='..\x00', &(0x7f0000000500)='.\x00z\x86E\xb8\xf1\xcbx\xf6cu<\x0e\xd8\xa5\xcd~\xaf\x80\xd3\xf4\xe5\x02\xf9q p\xe2\x8b\xc0\xedf\xba\x16*\x8ar\xa0\'$A\xe5\xc5\x89\xcb\xd5\xac\x98,\xd4Pycv\xdd\xa1\x84\xfb\xe9\r\x82\x15P*IM\xf7.\xf3v\x85Q\xbc:\xef\xd5\x1a\x9e\xbck\x1d\x114^\x1b\x02\xa1\xb0(\xa2\xdb\xbc\x1a\t\x94\x14\xbb\xc8\xfa\x18I\xff\x7f\xab\xf0\x8f\xd3Gr\xfb5\xf1,\x11\x052u&\xde\x9aF\n\xf0\x06\xfc\x1b\x17\x82%\x14\xb3\x19\x13\f\xbe_\xfdi\x17\xfcv\x82*\xbf<\xfa5\xfd\x8b\x1d\x99\a`\xde\xf4\x8a,\tP) \xf4\xdc\r\x17x\xc6\x18Y\xeaaUY\xeb\xd2\x81\xbare\x00\x8e\xfdA\x93\xb9\xac\xf1\x0eq\x85\xd9\x90\x8a%K\x95\x8fm\v\x98y\x9bc-\xa7;\x117\x19)\x04\xb4\nJ\x0e\x1b\x97e\xee\xdb\xc3\xca\xfe\xa7y\x12\xff\xce')
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyd1\x00', 0x40, 0x0)
write$auto(0x3, 0x0, 0xffd8)
unshare$auto(0x40000080)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
socket(0xa, 0x2, 0x0)
fcntl$auto(0x8000000000000001, 0x26, 0x8)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event0\x00', 0x2000, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{&(0x7f0000000000)="d4c10b880ade5a070bee7366ca", 0x7, &(0x7f0000000140)={&(0x7f0000000080)="9f4411a837b25d7a29c998ef9b88ee2500638abac8e6eb703742a279c2c5b35c4424a23bcfe59551fed8da348ab40225bbd371b2e1f6b04be92023aab1ce029ba448c3a290fc2930f7b15122b7470727dfa7c3613fb0539fb7e56d0b089852135ecf3fe81308482e5d118a9915a4ad1f1031fba2fe6b4fb07e4203c0e8ee4eb91da4c6f5de298e48"}, 0xf, &(0x7f0000000180)="7ff34a34effc83e2a6098f120c4c2b52a1c737375021a2c1a0959824f8a17c3f5823f17a9b9b9a459883a54dbe59cf0c2997b7f361a75f7ddb5f08fc8a51083f8ef59b6caf7fa176d58df133cd0a1a1c8c", 0x9, 0x8}, 0x3}, 0x7, 0x40)

1.210303423s ago: executing program 5 (id=1743):
mmap$auto(0x0, 0x2020009, 0x3, 0xb8, 0xfffffffffffffffa, 0x8000)
openat$auto_stat_fops_per_vm_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/kvm/host_state_reload\x00', 0x22042, 0x0)
mmap$auto(0x20000000000, 0x4, 0x6, 0x12, 0xffffffffffffffff, 0x168d)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/\x98@dio1\x00', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x2, 0x80802, 0x0)
r2 = socket(0x2b, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000a80)=ANY=[@ANYBLOB="14000000a7c7b6fde7851c3ed26b0380da861e369681d23bd6863f16aad4fbf4cf13d023c818dbf53d45582bb1e50f86e2a210f405574bf810a7a556e9d9ea43d8d303ae5e2bc8cffc2825612bec596f18fa5c89e3a2fa02a8a2b94754a72307cd4229e1b42d35a0f4fdebb46ffa81e5c5e61327b0b0ef7e8507fef8165a421df7c21ce896faa62ddf086e2e5eed628394712c221252c39c2466be", @ANYRES16=r4, @ANYBLOB, @ANYRESHEX, @ANYBLOB="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", @ANYRES32=r3, @ANYBLOB="4af9b95ac4dd4a659d447a181161b7b204b99fe8165c13005c4ca5b273a717a540c1fa47972868afe4078754190a13631f52eaecfa39625ba06fc78b33d637c9f7e9fa187527259ec6f40ec04760f0f5d9635236c786ad45cde1302648189833ae69c8ac4f7dac2d50f9dba9ed518c066dcc331998d0b245caa80bcb9f16c4edfa0d01d392f17bb33560dbc29dd14203dfaf5359e7719af2510b1b242677a9", @ANYRESHEX=r1], 0x14}, 0x1, 0x0, 0x0, 0x20000010}, 0xdc12e0caca337d7)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @loopback}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000180)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x3, 0x20000000)
sysfs$auto(0x7ff, 0x500000000000037, 0x8000000000000001)
r5 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r5, 0x8, 0x0, 0x0, 0x0)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, 0x0, 0x1c)
shmctl$auto(0x0, 0xd, 0x0)
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000)
socket(0x2, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x3)
mmap$auto(0x4, 0xe987, 0xffffffffffff0001, 0xffffffff, 0xffffffffffffffff, 0x405)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)
prctl$auto(0x16, 0x2, 0x2, 0x42, 0x7ff)

1.315639ms ago: executing program 8 (id=1744):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
adjtimex$auto(&(0x7f00000005c0)={0xf33296e, 0x0, 0xcea4, 0xfffffffffffffffd, 0xd4, 0x1, 0x0, 0x0, 0x1, 0x368e, 0x2, {0x100000000, 0x10000}, 0xfffffffffffffffe, 0x6, 0xfffffffffffffffd, 0x1007bfe, 0x0, 0x9, 0x81, 0xdfffffffffff628c, 0x2, 0xdeb1, 0x808})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0xa3db)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
ioctl$auto(r1, 0x401870cb, r1)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x381800, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff000)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, 0x0, 0x800)
mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x89b0, &(0x7f0000000140)={'bond0\x00'})
r3 = socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
r4 = io_uring_setup$auto(0x1, 0x0)
setsockopt$auto(0x3, 0x0, 0x2, 0x0, 0x3)
write$auto_fops_init_pkru_pkeys(r4, &(0x7f0000000280)="e7c2da8ba23469d9b78d2e257333bedaec957355b8c2c4c78f4a98e7180a2dfeddb935038a6350c625940925fc61f1b8b51df8f60e61c078ff39654003ba048fb5ce9f0cc683aa815dd3ad98c47fb90efa4ba1a790507d91d2a8beb4ce1934ec6dc65f", 0x63)
sendmmsg$auto(r3, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x10000}, 0x7, 0x0, 0x5, 0xb}, 0xfff}, 0x8, 0x311)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/loop6\x00', 0x18dd01, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x7f, 0xeb1, 0x401, 0x8000)
futex$auto(&(0x7f0000000080)=0x2948, 0x0, 0x2948, 0x0, 0x0, 0x5)
futex$auto(&(0x7f0000000080)=0x3, 0x3, 0x0, 0x0, 0x0, 0x440a48d3)

0s ago: executing program 6 (id=1752):
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/midiC2D0\x00', 0x404040, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) (async)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x2003f0, 0x15) (async)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x20300, 0x0)
socket(0xa, 0x5, 0x0) (async)
r2 = socket(0xa, 0x5, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x1) (async)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x00\rs\x1cJ\x99\x00:c\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x1)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
getcwd$auto(0x0, 0xffffffffffffffff)
mkdir$auto(&(0x7f00000000c0)='./file1\x00', 0x9)
rename$auto(&(0x7f0000000280)='./file1\x00', 0x0)
bpf$auto(0x40000000, &(0x7f0000000100)=@iter_create={r1, 0x81}, 0x96)
bpf$auto(0x18, &(0x7f0000000040)=@raw_tracepoint={0x0, 0xffffffffffffffff, 0x0, 0x800}, 0x92)
connect$auto(0x3, 0x0, 0x54)
getsockopt$auto(r2, 0x84, 0x1d, 0x0, 0x0)
read$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffffff, &(0x7f0000000100)=""/153, 0x99)
getpid() (async)
getpid()
mincore$auto(0x1000, 0x8001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xa, 0x0)
fstat$auto(0x2, 0x0) (async)
fstat$auto(0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000180), r3) (async)
r4 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000180), r3)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
pread64$auto(0xffffffffffffffff, 0x0, 0xf42c, 0x400)
sendmsg$auto_OVS_DP_CMD_NEW(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="080026bd7020f8dbdf25010000006cdec31ad76cb3f064ffa6ed153ee46b8ade1a414cd781b7a5497ba084e8a0cfe9e20b67e1fd877ea9759400005c0c95288f7f2a144f326a407369f011cc430196dab11bb7a73970470573faac535721284a2be57cc0ace069f4cb193816eb1f715776d84934e48d6efb340ac469ba050e1051618c9319a4c69aef932f86d4b391953e7394cca859f4c026c00cd08fe3743ed30ec74c206951da10b4895ca7337994743699ab1913cef815bb2a4df3c9be23159fd507557882ac74b929297ce8353c808d"], 0x14}, 0x1, 0x0, 0x0, 0x18005}, 0x80)

kernel console output (not intermixed with test programs):

000 R09: 0000000000000000
[  180.068765][ T7085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  180.068785][ T7085] R13: 00007f2cb9de6038 R14: 00007f2cb9de5fa0 R15: 00007ffcf343a3f8
[  180.068830][ T7085]  </TASK>
[  181.273367][ T7106] netlink: 268 bytes leftover after parsing attributes in process `syz.3.250'.
[  182.695276][ T7127] netlink: 8 bytes leftover after parsing attributes in process `syz.1.255'.
[  182.951811][ T7141] FAULT_INJECTION: forcing a failure.
[  182.951811][ T7141] name failslab, interval 1, probability 0, space 0, times 1
[  182.985350][ T7141] CPU: 0 UID: 0 PID: 7141 Comm: syz.3.256 Not tainted syzkaller #0 PREEMPT(full) 
[  182.985409][ T7141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  182.985430][ T7141] Call Trace:
[  182.985442][ T7141]  <TASK>
[  182.985455][ T7141]  dump_stack_lvl+0x16c/0x1f0
[  182.985500][ T7141]  should_fail_ex+0x512/0x640
[  182.985542][ T7141]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[  182.985596][ T7141]  should_failslab+0xc2/0x120
[  182.985640][ T7141]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[  182.985680][ T7141]  ? kstrdup_const+0x63/0x80
[  182.985720][ T7141]  ? kstrdup+0x53/0x100
[  182.985750][ T7141]  kstrdup+0x53/0x100
[  182.985783][ T7141]  kstrdup_const+0x63/0x80
[  182.985814][ T7141]  __kernfs_new_node+0x9b/0x8e0
[  182.985857][ T7141]  ? __pfx___kernfs_new_node+0x10/0x10
[  182.985903][ T7141]  ? find_held_lock+0x2b/0x80
[  182.985937][ T7141]  ? kernfs_root+0xee/0x2a0
[  182.985981][ T7141]  kernfs_new_node+0x13c/0x1e0
[  182.986032][ T7141]  kernfs_create_dir_ns+0x4c/0x1a0
[  182.986082][ T7141]  sysfs_create_dir_ns+0x13a/0x2b0
[  182.986120][ T7141]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  182.986157][ T7141]  ? find_held_lock+0x2b/0x80
[  182.986199][ T7141]  ? do_raw_spin_unlock+0x172/0x230
[  182.986259][ T7141]  kobject_add_internal+0x2c4/0x9b0
[  182.986318][ T7141]  kobject_init_and_add+0x11b/0x190
[  182.986365][ T7141]  ? __pfx_kobject_init_and_add+0x10/0x10
[  182.986417][ T7141]  ? up_write+0x1b2/0x520
[  182.986479][ T7141]  sysfs_slab_add+0x194/0x1f0
[  182.986515][ T7141]  do_kmem_cache_create+0x5bb/0x740
[  182.986566][ T7141]  __kmem_cache_create_args+0x202/0x3c0
[  182.986628][ T7141]  mon_text_open+0x333/0x510
[  182.986688][ T7141]  ? __pfx_mon_text_open+0x10/0x10
[  182.986740][ T7141]  ? __pfx_mon_text_ctor+0x10/0x10
[  182.986796][ T7141]  ? __pfx_apparmor_file_open+0x10/0x10
[  182.986849][ T7141]  ? lockdown_is_locked_down+0x3f/0x130
[  182.986881][ T7141]  ? bpf_lsm_locked_down+0x9/0x10
[  182.986918][ T7141]  ? __pfx_mon_text_open+0x10/0x10
[  182.986951][ T7141]  full_proxy_open_regular+0x1b9/0x360
[  182.986989][ T7141]  do_dentry_open+0x982/0x1530
[  182.987017][ T7141]  ? __pfx_full_proxy_open_regular+0x10/0x10
[  182.987061][ T7141]  vfs_open+0x82/0x3f0
[  182.987104][ T7141]  path_openat+0x1de4/0x2cb0
[  182.987141][ T7141]  ? __pfx_path_openat+0x10/0x10
[  182.987175][ T7141]  do_filp_open+0x20b/0x470
[  182.987201][ T7141]  ? __pfx_do_filp_open+0x10/0x10
[  182.987255][ T7141]  ? alloc_fd+0x471/0x7d0
[  182.987293][ T7141]  do_sys_openat2+0x11b/0x1d0
[  182.987329][ T7141]  ? __pfx_do_sys_openat2+0x10/0x10
[  182.987377][ T7141]  __x64_sys_openat+0x174/0x210
[  182.987414][ T7141]  ? __pfx___x64_sys_openat+0x10/0x10
[  182.987463][ T7141]  do_syscall_64+0xcd/0xfa0
[  182.987493][ T7141]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.987518][ T7141] RIP: 0033:0x7f2cb9b8eec9
[  182.987538][ T7141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.987562][ T7141] RSP: 002b:00007f2cbaa72038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  182.987585][ T7141] RAX: ffffffffffffffda RBX: 00007f2cb9de6180 RCX: 00007f2cb9b8eec9
[  182.987601][ T7141] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  182.987616][ T7141] RBP: 00007f2cb9c11f91 R08: 0000000000000000 R09: 0000000000000000
[  182.987630][ T7141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  182.987645][ T7141] R13: 00007f2cb9de6218 R14: 00007f2cb9de6180 R15: 00007ffcf343a3f8
[  182.987678][ T7141]  </TASK>
[  182.991343][ T7141] kobject: kobject_add_internal failed for mon_text_ffff88803293ec00 (error: -12 parent: slab)
[  183.415276][ T7141] SLUB: Unable to add cache mon_text_ffff88803293ec00 to sysfs
[  185.820667][ T7148] nbd: socks must be embedded in a SOCK_ITEM attr
[  186.356532][ T7167] FAULT_INJECTION: forcing a failure.
[  186.356532][ T7167] name failslab, interval 1, probability 0, space 0, times 0
[  186.436344][ T7167] CPU: 1 UID: 0 PID: 7167 Comm: syz.2.260 Not tainted syzkaller #0 PREEMPT(full) 
[  186.436387][ T7167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  186.436406][ T7167] Call Trace:
[  186.436416][ T7167]  <TASK>
[  186.436428][ T7167]  dump_stack_lvl+0x16c/0x1f0
[  186.436472][ T7167]  should_fail_ex+0x512/0x640
[  186.436518][ T7167]  should_failslab+0xc2/0x120
[  186.436561][ T7167]  kmem_cache_alloc_noprof+0x75/0x6e0
[  186.436595][ T7167]  ? skb_clone+0x190/0x3f0
[  186.436641][ T7167]  ? skb_clone+0x190/0x3f0
[  186.436675][ T7167]  skb_clone+0x190/0x3f0
[  186.436722][ T7167]  netlink_deliver_tap+0xabd/0xd30
[  186.436771][ T7167]  netlink_dump+0x881/0xd30
[  186.436813][ T7167]  ? __pfx_netlink_dump+0x10/0x10
[  186.436848][ T7167]  ? rcu_is_watching+0x12/0xc0
[  186.436906][ T7167]  ? kfree_skbmem+0x1a4/0x1f0
[  186.436951][ T7167]  ? kfree_skbmem+0x1a4/0x1f0
[  186.437003][ T7167]  netlink_recvmsg+0x7dc/0xa90
[  186.437044][ T7167]  ? __pfx_netlink_recvmsg+0x10/0x10
[  186.437110][ T7167]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  186.437164][ T7167]  sock_recvmsg+0x1f6/0x250
[  186.437214][ T7167]  ____sys_recvmsg+0x218/0x6b0
[  186.437270][ T7167]  ? __pfx_____sys_recvmsg+0x10/0x10
[  186.437335][ T7167]  ? __lock_acquire+0x62e/0x1ce0
[  186.437395][ T7167]  ___sys_recvmsg+0x114/0x1a0
[  186.437434][ T7167]  ? __pfx____sys_recvmsg+0x10/0x10
[  186.437476][ T7167]  ? find_held_lock+0x2b/0x80
[  186.437537][ T7167]  do_recvmmsg+0x2fe/0x750
[  186.437580][ T7167]  ? __pfx_do_recvmmsg+0x10/0x10
[  186.437627][ T7167]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  186.437681][ T7167]  ? __fget_files+0x20e/0x3c0
[  186.437730][ T7167]  __x64_sys_recvmmsg+0x22a/0x280
[  186.437772][ T7167]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  186.437825][ T7167]  do_syscall_64+0xcd/0xfa0
[  186.437865][ T7167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.437899][ T7167] RIP: 0033:0x7f1dd558eec9
[  186.437924][ T7167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.437954][ T7167] RSP: 002b:00007f1dd64a3038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  186.437983][ T7167] RAX: ffffffffffffffda RBX: 00007f1dd57e5fa0 RCX: 00007f1dd558eec9
[  186.438003][ T7167] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003
[  186.438022][ T7167] RBP: 00007f1dd64a3090 R08: 0000000000000000 R09: 0000000000000000
[  186.438041][ T7167] R10: 0000000000000054 R11: 0000000000000246 R12: 0000000000000001
[  186.438060][ T7167] R13: 00007f1dd57e6038 R14: 00007f1dd57e5fa0 R15: 00007ffd53cbed18
[  186.438105][ T7167]  </TASK>
[  187.413199][ T7171] zswap: compressor 000 not available
[  189.829099][ T7214] netlink: 28 bytes leftover after parsing attributes in process `syz.2.268'.
[  190.714023][ T7214] team_slave_0: entered allmulticast mode
[  192.272480][ T7249] FAULT_INJECTION: forcing a failure.
[  192.272480][ T7249] name failslab, interval 1, probability 0, space 0, times 0
[  192.324479][ T7249] CPU: 1 UID: 0 PID: 7249 Comm: syz.2.278 Not tainted syzkaller #0 PREEMPT(full) 
[  192.324524][ T7249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  192.324545][ T7249] Call Trace:
[  192.324555][ T7249]  <TASK>
[  192.324569][ T7249]  dump_stack_lvl+0x16c/0x1f0
[  192.324615][ T7249]  should_fail_ex+0x512/0x640
[  192.324658][ T7249]  ? fs_reclaim_acquire+0xae/0x150
[  192.324704][ T7249]  should_failslab+0xc2/0x120
[  192.324750][ T7249]  __kmalloc_noprof+0xdd/0x880
[  192.324805][ T7249]  ? lockdep_init_map_type+0x5c/0x280
[  192.324857][ T7249]  ? tomoyo_open_control+0x51f/0xa30
[  192.324911][ T7249]  ? tomoyo_open_control+0x51f/0xa30
[  192.324956][ T7249]  tomoyo_open_control+0x51f/0xa30
[  192.325009][ T7249]  do_dentry_open+0x982/0x1530
[  192.325051][ T7249]  ? __pfx_tomoyo_open+0x10/0x10
[  192.325099][ T7249]  vfs_open+0x82/0x3f0
[  192.325156][ T7249]  path_openat+0x1de4/0x2cb0
[  192.325222][ T7249]  ? __pfx_path_openat+0x10/0x10
[  192.325274][ T7249]  do_filp_open+0x20b/0x470
[  192.325315][ T7249]  ? __pfx_do_filp_open+0x10/0x10
[  192.325388][ T7249]  ? alloc_fd+0x471/0x7d0
[  192.325435][ T7249]  do_sys_openat2+0x11b/0x1d0
[  192.325489][ T7249]  ? __pfx_do_sys_openat2+0x10/0x10
[  192.325561][ T7249]  __x64_sys_openat+0x174/0x210
[  192.325616][ T7249]  ? __pfx___x64_sys_openat+0x10/0x10
[  192.325690][ T7249]  do_syscall_64+0xcd/0xfa0
[  192.325733][ T7249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.325770][ T7249] RIP: 0033:0x7f1dd558eec9
[  192.325799][ T7249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.325833][ T7249] RSP: 002b:00007f1dd64a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  192.325868][ T7249] RAX: ffffffffffffffda RBX: 00007f1dd57e5fa0 RCX: 00007f1dd558eec9
[  192.325892][ T7249] RDX: 00000000000c0802 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  192.325915][ T7249] RBP: 00007f1dd5611f91 R08: 0000000000000000 R09: 0000000000000000
[  192.325937][ T7249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  192.325958][ T7249] R13: 00007f1dd57e6038 R14: 00007f1dd57e5fa0 R15: 00007ffd53cbed18
[  192.326015][ T7249]  </TASK>
[  193.834244][ T7266] nbd: socks must be embedded in a SOCK_ITEM attr
[  194.285164][   T31] audit: type=1800 audit(1760222925.009:3): pid=7242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.275" name="discovery_nqn" dev="configfs" ino=13958 res=0 errno=0
[  194.347241][ T7276] netlink: 16 bytes leftover after parsing attributes in process `syz.1.283'.
[  194.401595][ T7278] netlink: 93 bytes leftover after parsing attributes in process `syz.1.283'.
[  196.278364][ T7302] netlink: 268 bytes leftover after parsing attributes in process `syz.3.289'.
[  196.286594][ T7298] mkiss: ax0: crc mode is auto.
[  199.020798][ T7362] netlink: 268 bytes leftover after parsing attributes in process `syz.2.303'.
[  200.706203][ T7383] zswap: compressor 000 not available
[  201.304496][ T7406] Invalid ELF header magic: != ELF
[  201.680490][   T31] audit: type=1804 audit(4294967306.850:4): pid=7421 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.317" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  201.894336][ T7428] netlink: 8 bytes leftover after parsing attributes in process `syz.0.318'.
[  204.117849][ T7465] netlink: 'syz.0.326': attribute type 1 has an invalid length.
[  204.729675][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  204.729757][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  206.955173][ T7538] netlink: 268 bytes leftover after parsing attributes in process `syz.0.335'.
[  207.572946][ T7549] device-mapper: ioctl: Unable to rename non-existent device,  to uuid �
[  208.379826][ T7564] netlink: 268 bytes leftover after parsing attributes in process `syz.3.340'.
[  210.773317][ T5817] udevd[5817]: inotify_add_watch(7, /dev/nbd0, 10) failed: No such file or directory
[  212.628268][ T7618] netlink: 8 bytes leftover after parsing attributes in process `syz.0.354'.
[  212.875294][ T7627] netlink: 268 bytes leftover after parsing attributes in process `syz.2.355'.
[  214.365971][ T7644] vivid-003: =================  START STATUS  =================
[  214.464515][ T7644] vivid-003: Radio HW Seek Mode: Bounded
[  214.498889][ T7644] vivid-003: Radio Programmable HW Seek: false
[  214.510002][ T7644] vivid-003: RDS Rx I/O Mode: Block I/O
[  214.532810][ T7644] vivid-003: Generate RBDS Instead of RDS: false
[  214.561234][ T7644] vivid-003: RDS Reception: true
[  214.566472][ T7644] vivid-003: RDS Program Type: 0 inactive
[  214.573503][ T7644] vivid-003: RDS PS Name:  inactive
[  214.594260][ T7644] vivid-003: RDS Radio Text:  inactive
[  214.599975][ T7644] vivid-003: RDS Traffic Announcement: false inactive
[  214.610755][ T7644] vivid-003: RDS Traffic Program: false inactive
[  214.644034][ T7644] vivid-003: RDS Music: false inactive
[  214.649765][ T7644] vivid-003: ==================  END STATUS  ==================
[  216.023118][ T7672] kAFS: Invalid Command on /proc/fs/afs/cells file
[  217.906219][ T7691] netlink: 338 bytes leftover after parsing attributes in process `syz.1.367'.
[  218.211301][ T7691] mmap: syz.1.367 (7691) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  218.855624][ T7698] netlink: zone id is out of range
[  218.861055][ T7698] netlink: zone id is out of range
[  218.866979][ T7698] netlink: zone id is out of range
[  218.873814][ T7698] netlink: zone id is out of range
[  218.879548][ T7698] netlink: zone id is out of range
[  218.886587][ T7698] netlink: zone id is out of range
[  218.891874][ T7698] netlink: zone id is out of range
[  218.899265][ T7698] netlink: zone id is out of range
[  218.904981][ T7698] netlink: zone id is out of range
[  218.910387][ T7698] netlink: zone id is out of range
[  218.945170][ T7709] cgroup: fork rejected by pids controller in /syz2
[  218.980638][ T7728] netlink: 8 bytes leftover after parsing attributes in process `syz.0.374'.
[  219.017776][ T7728] nbd: must specify an index to disconnect
[  223.002145][ T7958] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.484278][ T7968] zswap: compressor 000 not available
[  224.410006][ T8006] netlink: 268 bytes leftover after parsing attributes in process `syz.1.402'.
[  226.686278][ T8050] FAULT_INJECTION: forcing a failure.
[  226.686278][ T8050] name fail_futex, interval 1, probability 0, space 0, times 1
[  226.724325][ T8050] CPU: 0 UID: 0 PID: 8050 Comm: syz.3.409 Not tainted syzkaller #0 PREEMPT(full) 
[  226.724356][ T8050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  226.724369][ T8050] Call Trace:
[  226.724377][ T8050]  <TASK>
[  226.724385][ T8050]  dump_stack_lvl+0x16c/0x1f0
[  226.724415][ T8050]  should_fail_ex+0x512/0x640
[  226.724447][ T8050]  get_futex_key+0x1d0/0x1560
[  226.724481][ T8050]  ? __pfx_get_futex_key+0x10/0x10
[  226.724511][ T8050]  ? stack_depot_save_flags+0x29/0x9c0
[  226.724539][ T8050]  ? __lock_acquire+0xb97/0x1ce0
[  226.724577][ T8050]  futex_wait_setup+0x9d/0x550
[  226.724622][ T8050]  __futex_wait+0x193/0x2f0
[  226.724660][ T8050]  ? __pfx___futex_wait+0x10/0x10
[  226.724702][ T8050]  ? __pfx_futex_wake_mark+0x10/0x10
[  226.724743][ T8050]  ? futex_private_hash_put+0x176/0x300
[  226.724776][ T8050]  ? futex_private_hash_put+0x18a/0x300
[  226.724808][ T8050]  futex_wait+0xe8/0x380
[  226.724844][ T8050]  ? __pfx_futex_wait+0x10/0x10
[  226.724892][ T8050]  ? getname_flags.part.0+0x24c/0x550
[  226.724926][ T8050]  ? getname_flags.part.0+0x1c5/0x550
[  226.724961][ T8050]  do_futex+0x229/0x350
[  226.724993][ T8050]  ? __pfx_do_futex+0x10/0x10
[  226.725032][ T8050]  __x64_sys_futex+0x1e0/0x4c0
[  226.725066][ T8050]  ? __x64_sys_openat+0x174/0x210
[  226.725100][ T8050]  ? __pfx___x64_sys_futex+0x10/0x10
[  226.725134][ T8050]  ? syscall_user_dispatch+0x78/0x140
[  226.725179][ T8050]  do_syscall_64+0xcd/0xfa0
[  226.725207][ T8050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.725230][ T8050] RIP: 0033:0x7f2cb9b8eec9
[  226.725257][ T8050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.725278][ T8050] RSP: 002b:00007f2cbaa720e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  226.725302][ T8050] RAX: ffffffffffffffda RBX: 00007f2cb9de6188 RCX: 00007f2cb9b8eec9
[  226.725318][ T8050] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2cb9de6188
[  226.725331][ T8050] RBP: 00007f2cb9de6180 R08: 0000000000000000 R09: 0000000000000000
[  226.725345][ T8050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  226.725358][ T8050] R13: 00007f2cb9de6218 R14: 00007ffcf343a310 R15: 00007ffcf343a3f8
[  226.725387][ T8050]  </TASK>
[  227.288898][   T52] Bluetooth: hci3: command 0x0406 tx timeout
[  227.288952][ T5843] Bluetooth: hci0: command 0x0406 tx timeout
[  227.295308][ T5842] Bluetooth: hci2: command 0x0406 tx timeout
[  227.295361][ T5842] Bluetooth: hci1: command 0x0406 tx timeout
[  227.487744][ T8072] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[8072]
[  227.567145][ T8074] netlink: 268 bytes leftover after parsing attributes in process `syz.0.414'.
[  228.322106][ T8089] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  229.737979][ T8106] can: request_module (can-proto-5) failed.
[  230.097428][ T8122] netlink: 268 bytes leftover after parsing attributes in process `syz.1.427'.
[  230.680917][ T8136] FAULT_INJECTION: forcing a failure.
[  230.680917][ T8136] name failslab, interval 1, probability 0, space 0, times 0
[  230.696398][ T8136] CPU: 1 UID: 0 PID: 8136 Comm: syz.3.430 Not tainted syzkaller #0 PREEMPT(full) 
[  230.696436][ T8136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  230.696450][ T8136] Call Trace:
[  230.696458][ T8136]  <TASK>
[  230.696466][ T8136]  dump_stack_lvl+0x16c/0x1f0
[  230.696498][ T8136]  should_fail_ex+0x512/0x640
[  230.696526][ T8136]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  230.696553][ T8136]  should_failslab+0xc2/0x120
[  230.696584][ T8136]  kmem_cache_alloc_noprof+0x75/0x6e0
[  230.696607][ T8136]  ? __proc_create+0x2ce/0x8e0
[  230.696653][ T8136]  ? __proc_create+0x2ce/0x8e0
[  230.696685][ T8136]  __proc_create+0x2ce/0x8e0
[  230.696719][ T8136]  ? __pfx___proc_create+0x10/0x10
[  230.696763][ T8136]  ? _raw_write_unlock+0x28/0x50
[  230.696797][ T8136]  ? proc_register+0x559/0x8b0
[  230.696850][ T8136]  proc_create_reg+0x7d/0x180
[  230.696907][ T8136]  proc_create_net_data+0x8e/0x1c0
[  230.696961][ T8136]  ? __pfx_proc_create_net_data+0x10/0x10
[  230.697023][ T8136]  ? __pfx_vlan_init_net+0x10/0x10
[  230.697064][ T8136]  vlan_proc_init+0xe3/0x180
[  230.697097][ T8136]  ops_init+0x1df/0x5f0
[  230.697142][ T8136]  setup_net+0x100/0x390
[  230.697183][ T8136]  ? __pfx_setup_net+0x10/0x10
[  230.697226][ T8136]  ? debug_mutex_init+0x37/0x70
[  230.697266][ T8136]  copy_net_ns+0x2f8/0x690
[  230.697316][ T8136]  create_new_namespaces+0x3ea/0xa90
[  230.697365][ T8136]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  230.697414][ T8136]  ksys_unshare+0x45b/0xa40
[  230.697460][ T8136]  ? __pfx_ksys_unshare+0x10/0x10
[  230.697508][ T8136]  ? xfd_validate_state+0x61/0x180
[  230.697569][ T8136]  __x64_sys_unshare+0x31/0x40
[  230.697613][ T8136]  do_syscall_64+0xcd/0xfa0
[  230.697662][ T8136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.697697][ T8136] RIP: 0033:0x7f2cb9b8eec9
[  230.697726][ T8136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.697758][ T8136] RSP: 002b:00007f2cbaab4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  230.697790][ T8136] RAX: ffffffffffffffda RBX: 00007f2cb9de5fa0 RCX: 00007f2cb9b8eec9
[  230.697812][ T8136] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  230.697832][ T8136] RBP: 00007f2cb9c11f91 R08: 0000000000000000 R09: 0000000000000000
[  230.697852][ T8136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  230.697872][ T8136] R13: 00007f2cb9de6038 R14: 00007f2cb9de5fa0 R15: 00007ffcf343a3f8
[  230.697914][ T8136]  </TASK>
[  230.699155][ T8136] 8021q: can't create entry in proc filesystem!
[  231.190669][ T8141] netlink: 342 bytes leftover after parsing attributes in process `syz.1.431'.
[  231.256518][ T8141] netlink: 342 bytes leftover after parsing attributes in process `syz.1.431'.
[  231.294635][ T8141] IPv6: NLM_F_CREATE should be specified when creating new route
[  231.344372][ T8141] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  231.351782][ T8141] IPv6: NLM_F_CREATE should be set when creating new route
[  231.359121][ T8141] IPv6: NLM_F_CREATE should be set when creating new route
[  232.616279][ T8186] random: crng reseeded on system resumption
[  232.698049][ T8173] zswap: compressor 000 not available
[  234.367500][ T8230] netlink: 40 bytes leftover after parsing attributes in process `syz.0.452'.
[  234.604999][ T8235] netlink: 28 bytes leftover after parsing attributes in process `syz.2.454'.
[  234.860912][ T8227] capability: warning: `syz.1.451' uses deprecated v2 capabilities in a way that may be insecure
[  234.925063][ T8243] random: crng reseeded on system resumption
[  236.417566][ T8262] netlink: 302 bytes leftover after parsing attributes in process `syz.3.459'.
[  237.599641][ T8301] netlink: 4 bytes leftover after parsing attributes in process `syz.2.467'.
[  237.630620][ T8301] netlink: 354 bytes leftover after parsing attributes in process `syz.2.467'.
[  237.836743][ T8291] ima: policy update failed
[  237.854574][   T31] audit: type=1802 audit(4294969378.808:5): pid=8291 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.465" res=0 errno=0
[  237.902577][ T8305] netlink: 4 bytes leftover after parsing attributes in process `syz.2.468'.
[  238.496748][ T8316] netlink: 268 bytes leftover after parsing attributes in process `syz.3.470'.
[  240.931894][ T8362] zswap: compressor 000 not available
[  241.977403][ T8392] netlink: 268 bytes leftover after parsing attributes in process `syz.2.484'.
[  243.594724][ T8410] zswap: compressor 000 not available
[  245.220998][ T8450] FAULT_INJECTION: forcing a failure.
[  245.220998][ T8450] name failslab, interval 1, probability 0, space 0, times 0
[  245.234039][ T8450] CPU: 1 UID: 0 PID: 8450 Comm: syz.3.498 Not tainted syzkaller #0 PREEMPT(full) 
[  245.234079][ T8450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  245.234108][ T8450] Call Trace:
[  245.234119][ T8450]  <TASK>
[  245.234132][ T8450]  dump_stack_lvl+0x16c/0x1f0
[  245.234176][ T8450]  should_fail_ex+0x512/0x640
[  245.234224][ T8450]  should_failslab+0xc2/0x120
[  245.234269][ T8450]  __kmalloc_cache_noprof+0x72/0x780
[  245.234333][ T8450]  ? net_generic+0xea/0x2a0
[  245.234367][ T8450]  ? tipc_service_create+0xb1/0x350
[  245.234413][ T8450]  ? tipc_service_create+0xb1/0x350
[  245.234451][ T8450]  tipc_service_create+0xb1/0x350
[  245.234488][ T8450]  ? tipc_service_find+0x161/0x1c0
[  245.234536][ T8450]  tipc_nametbl_insert_publ+0xf78/0x1720
[  245.234584][ T8450]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  245.234634][ T8450]  ? net_generic+0xea/0x2a0
[  245.234681][ T8450]  tipc_nametbl_publish+0x137/0x280
[  245.234730][ T8450]  tipc_sk_publish+0x1d8/0x430
[  245.234774][ T8450]  ? __pfx_tipc_sk_publish+0x10/0x10
[  245.234822][ T8450]  ? __local_bh_enable_ip+0xa4/0x120
[  245.234864][ T8450]  tipc_sk_bind+0x16f/0x380
[  245.234910][ T8450]  tipc_bind+0x190/0x2a0
[  245.234957][ T8450]  __sys_bind+0x1a7/0x260
[  245.235009][ T8450]  ? __pfx___sys_bind+0x10/0x10
[  245.235075][ T8450]  ? xfd_validate_state+0x61/0x180
[  245.235120][ T8450]  ? __pfx_do_writev+0x10/0x10
[  245.235160][ T8450]  __x64_sys_bind+0x72/0xb0
[  245.235209][ T8450]  ? lockdep_hardirqs_on+0x7c/0x110
[  245.235244][ T8450]  do_syscall_64+0xcd/0xfa0
[  245.235284][ T8450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.235318][ T8450] RIP: 0033:0x7f2cb9b8eec9
[  245.235343][ T8450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.235374][ T8450] RSP: 002b:00007f2cbaa93038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  245.235404][ T8450] RAX: ffffffffffffffda RBX: 00007f2cb9de6090 RCX: 00007f2cb9b8eec9
[  245.235425][ T8450] RDX: 0000000000000066 RSI: 0000200000000040 RDI: 000000000000000a
[  245.235445][ T8450] RBP: 00007f2cb9c11f91 R08: 0000000000000000 R09: 0000000000000000
[  245.235464][ T8450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  245.235483][ T8450] R13: 00007f2cb9de6128 R14: 00007f2cb9de6090 R15: 00007ffcf343a3f8
[  245.235533][ T8450]  </TASK>
[  245.235546][ T8450] tipc: Service creation failed, no memory
[  245.604907][ T8448] netlink: 28 bytes leftover after parsing attributes in process `syz.3.498'.
[  245.733473][ T8458] netlink: 268 bytes leftover after parsing attributes in process `syz.1.499'.
[  245.744885][ T8448] bond0: (slave bond_slave_0): Releasing backup interface
[  246.079084][ T8474] netlink: 'syz.3.502': attribute type 10 has an invalid length.
[  246.104215][ T8474] netlink: 230 bytes leftover after parsing attributes in process `syz.3.502'.
[  246.146004][ T8474] net_ratelimit: 366 callbacks suppressed
[  246.146037][ T8474] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  248.074456][ T8592] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE�r��҄y�*�"�l-���y–��
[  248.220366][ T8599] FAULT_INJECTION: forcing a failure.
[  248.220366][ T8599] name failslab, interval 1, probability 0, space 0, times 0
[  248.429050][ T8599] CPU: 0 UID: 0 PID: 8599 Comm: syz.2.508 Not tainted syzkaller #0 PREEMPT(full) 
[  248.429095][ T8599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  248.429114][ T8599] Call Trace:
[  248.429125][ T8599]  <TASK>
[  248.429139][ T8599]  dump_stack_lvl+0x16c/0x1f0
[  248.429182][ T8599]  should_fail_ex+0x512/0x640
[  248.429224][ T8599]  ? __kmalloc_noprof+0xca/0x880
[  248.429282][ T8599]  should_failslab+0xc2/0x120
[  248.429328][ T8599]  __kmalloc_noprof+0xdd/0x880
[  248.429381][ T8599]  ? lsm_blob_alloc+0x68/0x90
[  248.429427][ T8599]  ? lsm_blob_alloc+0x68/0x90
[  248.429462][ T8599]  lsm_blob_alloc+0x68/0x90
[  248.429500][ T8599]  security_prepare_creds+0x30/0x270
[  248.429539][ T8599]  prepare_creds+0x56f/0x7d0
[  248.429594][ T8599]  keyctl_set_reqkey_keyring+0x8e/0x1c0
[  248.429646][ T8599]  __do_sys_keyctl+0x6d/0x590
[  248.429694][ T8599]  do_syscall_64+0xcd/0xfa0
[  248.429735][ T8599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.429768][ T8599] RIP: 0033:0x7f1dd558eec9
[  248.429794][ T8599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.429826][ T8599] RSP: 002b:00007f1dd6461038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  248.429857][ T8599] RAX: ffffffffffffffda RBX: 00007f1dd57e6180 RCX: 00007f1dd558eec9
[  248.429880][ T8599] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000e
[  248.429899][ T8599] RBP: 00007f1dd5611f91 R08: 0000000000000008 R09: 0000000000000000
[  248.429919][ T8599] R10: 0000000000005eaf R11: 0000000000000246 R12: 0000000000000000
[  248.429938][ T8599] R13: 00007f1dd57e6218 R14: 00007f1dd57e6180 R15: 00007ffd53cbed18
[  248.429982][ T8599]  </TASK>
[  248.606302][    C0] vkms_vblank_simulate: vblank timer overrun
[  249.725321][ T8643] netlink: 268 bytes leftover after parsing attributes in process `syz.3.513'.
[  250.432292][ T8650] netlink: 4 bytes leftover after parsing attributes in process `syz.1.514'.
[  251.515475][ T8673] FAULT_INJECTION: forcing a failure.
[  251.515475][ T8673] name failslab, interval 1, probability 0, space 0, times 0
[  251.528221][ T8673] CPU: 1 UID: 0 PID: 8673 Comm: syz.2.518 Not tainted syzkaller #0 PREEMPT(full) 
[  251.528251][ T8673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  251.528265][ T8673] Call Trace:
[  251.528273][ T8673]  <TASK>
[  251.528283][ T8673]  dump_stack_lvl+0x16c/0x1f0
[  251.528314][ T8673]  should_fail_ex+0x512/0x640
[  251.528349][ T8673]  should_failslab+0xc2/0x120
[  251.528381][ T8673]  kmem_cache_alloc_node_noprof+0x78/0x770
[  251.528405][ T8673]  ? __alloc_skb+0x2b2/0x380
[  251.528435][ T8673]  ? __alloc_skb+0x2b2/0x380
[  251.528457][ T8673]  __alloc_skb+0x2b2/0x380
[  251.528481][ T8673]  ? __pfx___alloc_skb+0x10/0x10
[  251.528511][ T8673]  ? do_raw_write_lock+0x11c/0x3a0
[  251.528537][ T8673]  tipc_buf_acquire+0x26/0xe0
[  251.528575][ T8673]  named_prepare_buf+0x29/0x170
[  251.528601][ T8673]  tipc_named_publish+0x1f2/0x770
[  251.528629][ T8673]  tipc_nametbl_publish+0x17d/0x280
[  251.528664][ T8673]  tipc_sk_publish+0x1d8/0x430
[  251.528695][ T8673]  ? __pfx_tipc_sk_publish+0x10/0x10
[  251.528729][ T8673]  ? __local_bh_enable_ip+0xa4/0x120
[  251.528761][ T8673]  tipc_sk_bind+0x16f/0x380
[  251.528794][ T8673]  tipc_bind+0x190/0x2a0
[  251.528827][ T8673]  __sys_bind+0x1a7/0x260
[  251.528865][ T8673]  ? __pfx___sys_bind+0x10/0x10
[  251.528912][ T8673]  ? xfd_validate_state+0x61/0x180
[  251.528955][ T8673]  ? __pfx_do_writev+0x10/0x10
[  251.528985][ T8673]  __x64_sys_bind+0x72/0xb0
[  251.529020][ T8673]  ? lockdep_hardirqs_on+0x7c/0x110
[  251.529046][ T8673]  do_syscall_64+0xcd/0xfa0
[  251.529075][ T8673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.529099][ T8673] RIP: 0033:0x7f1dd558eec9
[  251.529118][ T8673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.529141][ T8673] RSP: 002b:00007f1dd64a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  251.529162][ T8673] RAX: ffffffffffffffda RBX: 00007f1dd57e5fa0 RCX: 00007f1dd558eec9
[  251.529177][ T8673] RDX: 0000000000000066 RSI: 0000200000000040 RDI: 000000000000000a
[  251.529191][ T8673] RBP: 00007f1dd5611f91 R08: 0000000000000000 R09: 0000000000000000
[  251.529205][ T8673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  251.529219][ T8673] R13: 00007f1dd57e6038 R14: 00007f1dd57e5fa0 R15: 00007ffd53cbed18
[  251.529250][ T8673]  </TASK>
[  251.529261][ T8673] tipc: Publication distribution failure
[  252.080958][ T8673] netlink: 28 bytes leftover after parsing attributes in process `syz.2.518'.
[  252.494180][ T8673] bond0: (slave bond_slave_0): Releasing backup interface
[  253.316681][ T8755] netlink: 268 bytes leftover after parsing attributes in process `syz.0.525'.
[  256.658276][ T8928] __vm_enough_memory: pid: 8928, comm: syz.1.542, bytes: 4398046511104 not enough memory for the allocation
[  257.650551][ T8973] debugfs: '!PjE�r��҄y�*�"�l-���y–��L̓���]' already exists in 'ieee80211'
[  257.814526][ T8979] netlink: 8 bytes leftover after parsing attributes in process `syz.0.548'.
[  259.552083][ T9049] netlink: 36 bytes leftover after parsing attributes in process `syz.2.555'.
[  260.396649][ T9089] netlink: 268 bytes leftover after parsing attributes in process `syz.1.560'.
[  260.668562][ T5839] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7
[  261.017984][ T9098] zswap: compressor 000 not available
[  261.680772][ T9123] netlink: 268 bytes leftover after parsing attributes in process `syz.3.563'.
[  263.960906][ T9176] netlink: 28 bytes leftover after parsing attributes in process `syz.2.579'.
[  264.114423][ T9176] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  264.414058][ T9176] batman_adv: batadv0: Removing interface: batadv_slave_1
[  265.675491][ T9258] netlink: 268 bytes leftover after parsing attributes in process `syz.0.584'.
[  265.692876][ T9260] netlink: 342 bytes leftover after parsing attributes in process `syz.3.586'.
[  265.716964][ T9260] netlink: 274 bytes leftover after parsing attributes in process `syz.3.586'.
[  266.005659][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  266.012914][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  266.556781][   T31] audit: type=1800 audit(4294969407.647:6): pid=9256 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.585" name="discovery_nqn" dev="configfs" ino=20350 res=0 errno=0
[  266.731767][ T9304] netlink: 342 bytes leftover after parsing attributes in process `syz.0.588'.
[  266.741560][ T9304] netlink: 342 bytes leftover after parsing attributes in process `syz.0.588'.
[  266.751729][ T9304] netlink: 'syz.0.588': attribute type 2 has an invalid length.
[  266.759494][ T9304] netlink: 'syz.0.588': attribute type 3 has an invalid length.
[  266.775229][ T9304] netlink: 218 bytes leftover after parsing attributes in process `syz.0.588'.
[  267.432104][ T9336] random: crng reseeded on system resumption
[  269.441308][ T5914] Process accounting resumed
[  269.920912][ T9408] syz.2.599 (9408): /proc/9404/oom_adj is deprecated, please use /proc/9404/oom_score_adj instead.
[  273.382502][ T9535] netlink: 268 bytes leftover after parsing attributes in process `syz.2.610'.
[  275.504032][ T9646] netlink: 268 bytes leftover after parsing attributes in process `syz.0.619'.
[  278.905083][ T9803] sctp: [Deprecated]: syz.1.627 (pid 9803) Use of int in max_burst socket option deprecated.
[  278.905083][ T9803] Use struct sctp_assoc_value instead
[  279.723879][ T9837] netlink: 268 bytes leftover after parsing attributes in process `syz.2.630'.
[  286.559216][T10139] netlink: 268 bytes leftover after parsing attributes in process `syz.3.650'.
[  286.861193][T10145] netlink: 28 bytes leftover after parsing attributes in process `syz.2.651'.
[  290.422996][T10165] svc: failed to register nfsdv3 RPC service (errno 512).
[  290.554647][T10165] svc: failed to register nfsaclv3 RPC service (errno 512).
[  292.590519][   T31] audit: type=1804 audit(4294969433.833:7): pid=10310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.670" name=2F6E6577726F6F742F3136332F22050820 dev="tmpfs" ino=874 res=1 errno=0
[  292.688601][   T31] audit: type=1800 audit(4294969433.853:8): pid=10310 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.670" name=22050820 dev="tmpfs" ino=874 res=0 errno=0
[  294.253977][T10370] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  294.676406][ T5839] Bluetooth: hci3: unexpected event 0x3e length: 722 > 260
[  294.686940][ T5839] Bluetooth: hci3: unexpected subevent 0x0e length: 721 > 15
[  294.702211][ T5839] Bluetooth: hci3: Unable to find connection for dst 00:00:a2:f2:94:be sid 0x4c
[  295.560646][T10469] misc userio: No port type given on /dev/userio
[  296.361887][T10538] netlink: 268 bytes leftover after parsing attributes in process `syz.1.683'.
[  297.539632][T10580] netlink: 12 bytes leftover after parsing attributes in process `syz.1.684'.
[  298.709558][T10688] bridge0: port 3(team0) entered blocking state
[  298.785658][T10688] bridge0: port 3(team0) entered disabled state
[  298.888196][T10688] team0: entered allmulticast mode
[  298.902295][T10688] team_slave_1: entered allmulticast mode
[  299.164800][T10706] netlink: 268 bytes leftover after parsing attributes in process `syz.1.693'.
[  299.203045][T10688] team0: entered promiscuous mode
[  299.239326][T10688] team_slave_0: entered promiscuous mode
[  299.306389][T10688] team_slave_1: entered promiscuous mode
[  299.338175][T10688] bridge0: port 3(team0) entered blocking state
[  299.344698][T10688] bridge0: port 3(team0) entered forwarding state
[  299.377727][T10710] netlink: 8 bytes leftover after parsing attributes in process `syz.0.694'.
[  300.317476][T10747] bcache: register_bcache() error : failed to open device
[  301.512954][T10846] netlink: 28 bytes leftover after parsing attributes in process `syz.0.703'.
[  301.543557][T10846] macvtap0: entered promiscuous mode
[  301.666533][T10859] netlink: 268 bytes leftover after parsing attributes in process `syz.2.704'.
[  301.940675][T10883] usb usb36: usbfs: process 10883 (syz.3.706) did not claim interface 0 before use
[  304.260759][T11000] netlink: 268 bytes leftover after parsing attributes in process `syz.2.719'.
[  306.816023][T11090] netlink: 268 bytes leftover after parsing attributes in process `syz.2.734'.
[  307.815903][T11131] FAULT_INJECTION: forcing a failure.
[  307.815903][T11131] name failslab, interval 1, probability 0, space 0, times 0
[  307.828896][T11131] CPU: 0 UID: 0 PID: 11131 Comm: syz.3.740 Not tainted syzkaller #0 PREEMPT(full) 
[  307.828927][T11131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  307.828941][T11131] Call Trace:
[  307.828948][T11131]  <TASK>
[  307.828957][T11131]  dump_stack_lvl+0x16c/0x1f0
[  307.828989][T11131]  should_fail_ex+0x512/0x640
[  307.829018][T11131]  ? fs_reclaim_acquire+0xae/0x150
[  307.829052][T11131]  should_failslab+0xc2/0x120
[  307.829083][T11131]  __kmalloc_noprof+0xdd/0x880
[  307.829122][T11131]  ? tomoyo_encode2+0x100/0x3e0
[  307.829151][T11131]  ? tomoyo_encode2+0x100/0x3e0
[  307.829172][T11131]  tomoyo_encode2+0x100/0x3e0
[  307.829199][T11131]  tomoyo_encode+0x29/0x50
[  307.829221][T11131]  tomoyo_realpath_from_path+0x18f/0x6e0
[  307.829254][T11131]  tomoyo_check_open_permission+0x2ab/0x3c0
[  307.829293][T11131]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  307.829357][T11131]  ? lock_acquire+0x179/0x350
[  307.829391][T11131]  ? find_held_lock+0x2b/0x80
[  307.829415][T11131]  ? mnt_get_write_access+0x52/0x2f0
[  307.829450][T11131]  tomoyo_file_open+0x6b/0x90
[  307.829480][T11131]  security_file_open+0x84/0x1e0
[  307.829504][T11131]  do_dentry_open+0x596/0x1530
[  307.829540][T11131]  vfs_open+0x82/0x3f0
[  307.829576][T11131]  path_openat+0x1de4/0x2cb0
[  307.829611][T11131]  ? __pfx_path_openat+0x10/0x10
[  307.829644][T11131]  do_filp_open+0x20b/0x470
[  307.829669][T11131]  ? __pfx_do_filp_open+0x10/0x10
[  307.829716][T11131]  ? alloc_fd+0x471/0x7d0
[  307.829746][T11131]  do_sys_openat2+0x11b/0x1d0
[  307.829780][T11131]  ? __pfx_do_sys_openat2+0x10/0x10
[  307.829833][T11131]  __x64_sys_openat+0x174/0x210
[  307.829869][T11131]  ? __pfx___x64_sys_openat+0x10/0x10
[  307.829916][T11131]  do_syscall_64+0xcd/0xfa0
[  307.829948][T11131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.829973][T11131] RIP: 0033:0x7f2cb9b8eec9
[  307.829991][T11131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  307.830014][T11131] RSP: 002b:00007f2cbaab4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  307.830035][T11131] RAX: ffffffffffffffda RBX: 00007f2cb9de5fa0 RCX: 00007f2cb9b8eec9
[  307.830050][T11131] RDX: 0000000000000002 RSI: 0000200000001680 RDI: ffffffffffffff9c
[  307.830064][T11131] RBP: 00007f2cb9c11f91 R08: 0000000000000000 R09: 0000000000000000
[  307.830078][T11131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  307.830092][T11131] R13: 00007f2cb9de6038 R14: 00007f2cb9de5fa0 R15: 00007ffcf343a3f8
[  307.830124][T11131]  </TASK>
[  307.830173][T11131] ERROR: Out of memory at tomoyo_realpath_from_path.
[  308.371729][T11133] zswap: compressor  not available
[  309.973688][T11259] netlink: 4 bytes leftover after parsing attributes in process `syz.0.748'.
[  310.309959][T11266] netlink: 268 bytes leftover after parsing attributes in process `syz.0.750'.
[  313.475506][T11400] netlink: 268 bytes leftover after parsing attributes in process `syz.2.762'.
[  315.683237][T11474] netlink: 206 bytes leftover after parsing attributes in process `syz.3.767'.
[  316.089869][T11318] cgroup: fork rejected by pids controller in /syz0
[  317.149532][T11521] netlink: 206 bytes leftover after parsing attributes in process `syz.1.770'.
[  318.906445][T11650] netlink: 268 bytes leftover after parsing attributes in process `syz.3.775'.
[  320.274180][T11809] netlink: 206 bytes leftover after parsing attributes in process `syz.3.783'.
[  320.905949][T11842] netlink: 'syz.1.787': attribute type 2 has an invalid length.
[  320.936569][T11842] netlink: 8 bytes leftover after parsing attributes in process `syz.1.787'.
[  321.022469][T11842] netlink: 330 bytes leftover after parsing attributes in process `syz.1.787'.
[  321.034256][T11842] : renamed from vlan0 (while UP)
[  321.187789][T11955] Unable to find swap-space signature
[  322.105391][T12013] netlink: 206 bytes leftover after parsing attributes in process `syz.1.794'.
[  322.205974][T12006] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  322.212795][T12006] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  322.245032][T12006] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  322.251168][T12006] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  322.259128][T12046] netlink: 544 bytes leftover after parsing attributes in process `syz.0.798'.
[  322.269179][T12046] openvswitch: netlink: Flow key attr not present in new flow.
[  322.297110][T12006] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  322.308721][T12006] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  322.363497][T12006] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  322.375996][T12051] block nbd7: not configured, cannot reconfigure
[  322.417911][T12006] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  322.446145][T12006] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  323.087654][T12067] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input8
[  323.195121][ T5877] Process accounting resumed
[  323.934015][ T5839] Bluetooth: hci0: command 0x0406 tx timeout
[  324.294458][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[  324.341728][ T5839] Bluetooth: hci2: command 0x0406 tx timeout
[  324.410967][ T5839] Bluetooth: hci3: command 0x0406 tx timeout
[  325.126011][T12316] netlink: 268 bytes leftover after parsing attributes in process `syz.1.812'.
[  326.002325][ T5839] Bluetooth: hci0: command 0x0406 tx timeout
[  326.320610][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[  326.326951][T12386] ima: policy update failed
[  326.328679][T12412] delete_channel: no stack
[  326.341781][   T31] audit: type=1802 audit(4294969467.758:9): pid=12386 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.814" res=0 errno=0
[  326.400211][ T5839] Bluetooth: hci2: command 0x0406 tx timeout
[  326.480057][ T5839] Bluetooth: hci3: command 0x0406 tx timeout
[  326.731680][T12424] netlink: 8 bytes leftover after parsing attributes in process `syz.1.819'.
[  326.892725][T12468] can0: slcan on pty82.
[  326.921031][T12419] zswap: compressor  not available
[  327.128224][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  327.135236][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  327.196439][T12418] can0 (unregistered): slcan off pty82.
[  327.318772][T12554] netlink: 28 bytes leftover after parsing attributes in process `syz.1.820'.
[  328.156451][T12582] netlink: 268 bytes leftover after parsing attributes in process `syz.1.824'.
[  328.295990][T12575] netlink: 206 bytes leftover after parsing attributes in process `syz.2.823'.
[  328.469435][ T5839] Bluetooth: hci2: command 0x0406 tx timeout
[  331.379288][T12793] netlink: 330 bytes leftover after parsing attributes in process `syz.0.835'.
[  331.379638][T12807] netlink: 330 bytes leftover after parsing attributes in process `syz.0.835'.
[  332.316640][T12848] netlink: 268 bytes leftover after parsing attributes in process `syz.3.838'.
[  332.347841][T12913] netlink: 268 bytes leftover after parsing attributes in process `syz.2.839'.
[  333.657714][T13047] input: f�
 as /devices/virtual/input/input9
[  334.519921][T13081] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  334.529731][T13088] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  335.017923][T13102] netlink: 268 bytes leftover after parsing attributes in process `syz.3.852'.
[  335.196391][T13105] FAULT_INJECTION: forcing a failure.
[  335.196391][T13105] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.278531][T13105] CPU: 0 UID: 0 PID: 13105 Comm: syz.2.853 Not tainted syzkaller #0 PREEMPT(full) 
[  335.278571][T13105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  335.278588][T13105] Call Trace:
[  335.278597][T13105]  <TASK>
[  335.278609][T13105]  dump_stack_lvl+0x16c/0x1f0
[  335.278648][T13105]  should_fail_ex+0x512/0x640
[  335.278693][T13105]  _copy_from_user+0x2e/0xd0
[  335.278734][T13105]  copy_msghdr_from_user+0x98/0x160
[  335.278774][T13105]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  335.278815][T13105]  ? kfree+0x252/0x6d0
[  335.278858][T13105]  ? __pfx__kstrtoull+0x10/0x10
[  335.278915][T13105]  ___sys_sendmsg+0xfe/0x1d0
[  335.278954][T13105]  ? __pfx____sys_sendmsg+0x10/0x10
[  335.279026][T13105]  ? __pfx___might_resched+0x10/0x10
[  335.279070][T13105]  __sys_sendmmsg+0x200/0x420
[  335.279114][T13105]  ? __pfx___sys_sendmmsg+0x10/0x10
[  335.279170][T13105]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  335.279227][T13105]  ? fput+0x9b/0xd0
[  335.279276][T13105]  ? ksys_write+0x1ac/0x250
[  335.279309][T13105]  ? __pfx_ksys_write+0x10/0x10
[  335.279351][T13105]  __x64_sys_sendmmsg+0x9c/0x100
[  335.279388][T13105]  ? lockdep_hardirqs_on+0x7c/0x110
[  335.279422][T13105]  do_syscall_64+0xcd/0xfa0
[  335.279461][T13105]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.279494][T13105] RIP: 0033:0x7f1dd558eec9
[  335.279519][T13105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.279548][T13105] RSP: 002b:00007f1dd64a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  335.279578][T13105] RAX: ffffffffffffffda RBX: 00007f1dd57e5fa0 RCX: 00007f1dd558eec9
[  335.279599][T13105] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000004
[  335.279618][T13105] RBP: 00007f1dd64a3090 R08: 0000000000000000 R09: 0000000000000000
[  335.279637][T13105] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001
[  335.279655][T13105] R13: 00007f1dd57e6038 R14: 00007f1dd57e5fa0 R15: 00007ffd53cbed18
[  335.279697][T13105]  </TASK>
[  335.759348][T13163] FAULT_INJECTION: forcing a failure.
[  335.759348][T13163] name failslab, interval 1, probability 0, space 0, times 0
[  335.776744][T13163] CPU: 0 UID: 0 PID: 13163 Comm: syz.2.856 Not tainted syzkaller #0 PREEMPT(full) 
[  335.776788][T13163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  335.776807][T13163] Call Trace:
[  335.776817][T13163]  <TASK>
[  335.776829][T13163]  dump_stack_lvl+0x16c/0x1f0
[  335.776882][T13163]  should_fail_ex+0x512/0x640
[  335.776922][T13163]  ? __kmalloc_cache_noprof+0x5f/0x780
[  335.776980][T13163]  should_failslab+0xc2/0x120
[  335.777018][T13163]  __kmalloc_cache_noprof+0x72/0x780
[  335.777064][T13163]  ? snd_hrtimer_open+0x43/0xf0
[  335.777096][T13163]  ? snd_hrtimer_open+0x43/0xf0
[  335.777122][T13163]  ? __pfx_snd_hrtimer_open+0x10/0x10
[  335.777147][T13163]  snd_hrtimer_open+0x43/0xf0
[  335.777173][T13163]  snd_timer_open+0xb56/0x1060
[  335.777225][T13163]  ? __pfx_snd_timer_open+0x10/0x10
[  335.777273][T13163]  ? kstrdup+0xb5/0x100
[  335.777306][T13163]  snd_seq_timer_open+0x280/0x600
[  335.777344][T13163]  ? __pfx_snd_seq_timer_open+0x10/0x10
[  335.777379][T13163]  ? find_held_lock+0x2b/0x80
[  335.777412][T13163]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  335.777440][T13163]  ? lockdep_hardirqs_on+0x7c/0x110
[  335.777469][T13163]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  335.777501][T13163]  queue_use+0xe3/0x250
[  335.777544][T13163]  snd_seq_queue_alloc+0x2e5/0x5a0
[  335.777587][T13163]  snd_seq_ioctl_create_queue+0xa9/0x390
[  335.777627][T13163]  call_seq_client_ctl+0x9c/0x110
[  335.777662][T13163]  snd_seq_kernel_client_ctl+0x77/0xd0
[  335.777707][T13163]  alloc_seq_queue+0xda/0x180
[  335.777745][T13163]  ? __pfx_alloc_seq_queue+0x10/0x10
[  335.777802][T13163]  ? mark_held_locks+0x49/0x80
[  335.777838][T13163]  ? _raw_spin_unlock_irq+0x23/0x50
[  335.777869][T13163]  ? lockdep_hardirqs_on+0x7c/0x110
[  335.777901][T13163]  snd_seq_oss_open+0x38c/0xa20
[  335.777947][T13163]  odev_open+0x79/0xc0
[  335.777980][T13163]  ? __pfx_odev_open+0x10/0x10
[  335.778015][T13163]  soundcore_open+0x409/0x580
[  335.778055][T13163]  ? __pfx_soundcore_open+0x10/0x10
[  335.778089][T13163]  chrdev_open+0x234/0x6a0
[  335.778121][T13163]  ? __pfx_apparmor_file_open+0x10/0x10
[  335.778158][T13163]  ? __pfx_chrdev_open+0x10/0x10
[  335.778191][T13163]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  335.778226][T13163]  do_dentry_open+0x982/0x1530
[  335.778257][T13163]  ? __pfx_chrdev_open+0x10/0x10
[  335.778294][T13163]  vfs_open+0x82/0x3f0
[  335.778336][T13163]  path_openat+0x1de4/0x2cb0
[  335.778374][T13163]  ? __pfx_path_openat+0x10/0x10
[  335.778412][T13163]  do_filp_open+0x20b/0x470
[  335.778440][T13163]  ? __pfx_do_filp_open+0x10/0x10
[  335.778493][T13163]  ? alloc_fd+0x471/0x7d0
[  335.778526][T13163]  do_sys_openat2+0x11b/0x1d0
[  335.778565][T13163]  ? __pfx_do_sys_openat2+0x10/0x10
[  335.778605][T13163]  ? __pfx___might_resched+0x10/0x10
[  335.778641][T13163]  __x64_sys_openat+0x174/0x210
[  335.778682][T13163]  ? __pfx___x64_sys_openat+0x10/0x10
[  335.778735][T13163]  do_syscall_64+0xcd/0xfa0
[  335.778766][T13163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.778793][T13163] RIP: 0033:0x7f1dd558eec9
[  335.778815][T13163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.778842][T13163] RSP: 002b:00007f1dd64a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  335.778875][T13163] RAX: ffffffffffffffda RBX: 00007f1dd57e5fa0 RCX: 00007f1dd558eec9
[  335.778893][T13163] RDX: 0000000000000001 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  335.778909][T13163] RBP: 00007f1dd5611f91 R08: 0000000000000000 R09: 0000000000000000
[  335.778925][T13163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  335.778941][T13163] R13: 00007f1dd57e6038 R14: 00007f1dd57e5fa0 R15: 00007ffd53cbed18
[  335.778978][T13163]  </TASK>
[  338.019258][T13414] FAULT_INJECTION: forcing a failure.
[  338.019258][T13414] name failslab, interval 1, probability 0, space 0, times 0
[  338.034771][T13414] CPU: 0 UID: 0 PID: 13414 Comm: syz.3.863 Not tainted syzkaller #0 PREEMPT(full) 
[  338.034814][T13414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  338.034834][T13414] Call Trace:
[  338.034844][T13414]  <TASK>
[  338.034857][T13414]  dump_stack_lvl+0x16c/0x1f0
[  338.034900][T13414]  should_fail_ex+0x512/0x640
[  338.034941][T13414]  ? __kmalloc_cache_noprof+0x5f/0x780
[  338.035001][T13414]  should_failslab+0xc2/0x120
[  338.035046][T13414]  __kmalloc_cache_noprof+0x72/0x780
[  338.035102][T13414]  ? allocate_file_region_entries+0x1a0/0x620
[  338.035152][T13414]  ? allocate_file_region_entries+0x1a0/0x620
[  338.035191][T13414]  ? _raw_spin_unlock+0x28/0x50
[  338.035221][T13414]  allocate_file_region_entries+0x1a0/0x620
[  338.035273][T13414]  ? __pfx_allocate_file_region_entries+0x10/0x10
[  338.035328][T13414]  region_chg+0x85/0x140
[  338.035370][T13414]  __vma_reservation_common+0x43b/0x740
[  338.035413][T13414]  ? __pfx___vma_reservation_common+0x10/0x10
[  338.035453][T13414]  ? __pfx___might_resched+0x10/0x10
[  338.035485][T13414]  ? folio_zero_user+0x1db/0x7c0
[  338.035537][T13414]  hugetlb_fault+0x198e/0x2f40
[  338.035573][T13414]  ? __pfx_hugetlb_fault+0x10/0x10
[  338.035620][T13414]  ? find_vma+0xbf/0x140
[  338.035657][T13414]  ? __pfx_find_vma+0x10/0x10
[  338.035712][T13414]  handle_mm_fault+0xbfa/0xd10
[  338.035766][T13414]  ? __pkru_allows_pkey+0x11/0xb0
[  338.035824][T13414]  do_user_addr_fault+0x7a6/0x1370
[  338.035861][T13414]  ? rcu_is_watching+0x12/0xc0
[  338.035902][T13414]  exc_page_fault+0x64/0xc0
[  338.035939][T13414]  asm_exc_page_fault+0x26/0x30
[  338.035969][T13414] RIP: 0010:rep_movs_alternative+0x11/0x90
[  338.036017][T13414] Code: c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f
[  338.036049][T13414] RSP: 0018:ffffc90018a3fda0 EFLAGS: 00050206
[  338.036080][T13414] RAX: 000000000000002f RBX: 0000000000000005 RCX: 0000000000000005
[  338.036100][T13414] RDX: ffffed100f818200 RSI: ffff88807c0c0ffb RDI: 0000000000000000
[  338.036122][T13414] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed100f8181ff
[  338.036142][T13414] R10: ffff88807c0c0fff R11: 0000000000000000 R12: ffff88807c0c0ffb
[  338.036163][T13414] R13: 0000000000000005 R14: 00007ffffffff000 R15: 0000000000000000
[  338.036207][T13414]  _copy_to_user+0xbb/0xd0
[  338.036255][T13414]  __do_sys_getcwd+0x483/0x930
[  338.036310][T13414]  ? __pfx___do_sys_getcwd+0x10/0x10
[  338.036352][T13414]  ? fput+0x9b/0xd0
[  338.036397][T13414]  ? xfd_validate_state+0x61/0x180
[  338.036444][T13414]  ? __pfx_ksys_write+0x10/0x10
[  338.036492][T13414]  do_syscall_64+0xcd/0xfa0
[  338.036528][T13414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.036557][T13414] RIP: 0033:0x7f2cb9b8eec9
[  338.036579][T13414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.036606][T13414] RSP: 002b:00007f2cbaab4038 EFLAGS: 00000246 ORIG_RAX: 000000000000004f
[  338.036635][T13414] RAX: ffffffffffffffda RBX: 00007f2cb9de5fa0 RCX: 00007f2cb9b8eec9
[  338.036656][T13414] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000
[  338.036672][T13414] RBP: 00007f2cb9c11f91 R08: 0000000000000000 R09: 0000000000000000
[  338.036692][T13414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  338.036729][T13414] R13: 00007f2cb9de6038 R14: 00007f2cb9de5fa0 R15: 00007ffcf343a3f8
[  338.036774][T13414]  </TASK>
[  338.728378][T13452] tipc: can't start tipc receive workqueue
[  342.020277][T13719] netlink: 40 bytes leftover after parsing attributes in process `syz.3.879'.
[  344.373623][T13757] netlink: 268 bytes leftover after parsing attributes in process `syz.0.887'.
[  349.977679][ T5839] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  349.977732][ T5839] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  349.993048][ T5839] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  349.993159][ T5839] Bluetooth: hci2: Malformed LE Event: 0x0d
[  352.942759][T14227] HfR: entered promiscuous mode
[  352.953105][T14227] netlink: 32 bytes leftover after parsing attributes in process `syz.1.914'.
[  353.227856][T14233] netlink: 25 bytes leftover after parsing attributes in process `syz.3.916'.
[  353.961627][T14239] FAULT_INJECTION: forcing a failure.
[  353.961627][T14239] name fail_futex, interval 1, probability 0, space 0, times 0
[  353.994272][T14239] CPU: 0 UID: 0 PID: 14239 Comm: syz.3.918 Not tainted syzkaller #0 PREEMPT(full) 
[  353.994304][T14239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  353.994317][T14239] Call Trace:
[  353.994324][T14239]  <TASK>
[  353.994333][T14239]  dump_stack_lvl+0x16c/0x1f0
[  353.994364][T14239]  should_fail_ex+0x512/0x640
[  353.994396][T14239]  get_futex_key+0x1d0/0x1560
[  353.994430][T14239]  ? __pfx_get_futex_key+0x10/0x10
[  353.994469][T14239]  futex_wake+0xea/0x530
[  353.994512][T14239]  ? rcu_is_watching+0x12/0xc0
[  353.994537][T14239]  ? __pfx_futex_wake+0x10/0x10
[  353.994576][T14239]  ? kmem_cache_free+0x2d4/0x6c0
[  353.994599][T14239]  ? putname+0x154/0x1a0
[  353.994634][T14239]  do_futex+0x1e3/0x350
[  353.994666][T14239]  ? __pfx_do_futex+0x10/0x10
[  353.994699][T14239]  ? find_held_lock+0x2b/0x80
[  353.994726][T14239]  __x64_sys_futex+0x1e0/0x4c0
[  353.994760][T14239]  ? __x64_sys_openat+0x174/0x210
[  353.994794][T14239]  ? __pfx___x64_sys_futex+0x10/0x10
[  353.994838][T14239]  do_syscall_64+0xcd/0xfa0
[  353.994865][T14239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.994889][T14239] RIP: 0033:0x7f2cb9b8eec9
[  353.994907][T14239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  353.994929][T14239] RSP: 002b:00007f2cbaa930e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  353.994950][T14239] RAX: ffffffffffffffda RBX: 00007f2cb9de6098 RCX: 00007f2cb9b8eec9
[  353.994965][T14239] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2cb9de609c
[  353.994979][T14239] RBP: 00007f2cb9de6090 R08: 00007f2cbaab5000 R09: 0000000000000000
[  353.994993][T14239] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000000
[  353.995007][T14239] R13: 00007f2cb9de6128 R14: 00007ffcf343a310 R15: 00007ffcf343a3f8
[  353.995037][T14239]  </TASK>
[  355.072242][T14357] netlink: 28 bytes leftover after parsing attributes in process `syz.1.923'.
[  355.318043][T14383] netlink: 268 bytes leftover after parsing attributes in process `syz.0.925'.
[  357.664539][T14526] netlink: 'syz.0.933': attribute type 1 has an invalid length.
[  357.718315][ T5148] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  357.747722][ T5148] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  357.765923][ T5148] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  357.794334][ T5148] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  357.815787][ T5148] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  358.477282][T14527] chnl_net:caif_netlink_parms(): no params data found
[  359.023897][T14527] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.041371][T14527] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.064347][T14527] bridge_slave_0: entered allmulticast mode
[  359.073230][T14527] bridge_slave_0: entered promiscuous mode
[  359.119821][T14527] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.132159][T14527] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.139489][T14527] bridge_slave_1: entered allmulticast mode
[  359.171525][T14527] bridge_slave_1: entered promiscuous mode
[  359.421667][T14527] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  359.721031][T14527] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  359.909651][ T5839] Bluetooth: hci4: command tx timeout
[  359.993380][T14527] team0: Port device team_slave_0 added
[  360.038818][T14527] team0: Port device team_slave_1 added
[  360.431928][T14527] batman_adv: batadv0: Adding interface: batadv_slave_0
[  360.450504][T14527] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  360.574973][T14527] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  360.639165][T14527] batman_adv: batadv0: Adding interface: batadv_slave_1
[  360.669317][T14527] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  360.783654][T14527] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  361.117599][T14527] hsr_slave_0: entered promiscuous mode
[  361.140020][T14527] hsr_slave_1: entered promiscuous mode
[  361.146721][T14527] debugfs: 'hsr0' already exists in 'hsr'
[  361.159303][T14527] Cannot create hsr debugfs directory
[  361.975180][ T5839] Bluetooth: hci4: command tx timeout
[  362.077425][T14527] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  362.131493][T14527] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  362.169702][T14527] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  362.247299][T14527] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  362.801734][T14527] 8021q: adding VLAN 0 to HW filter on device bond0
[  362.851378][T14527] 8021q: adding VLAN 0 to HW filter on device team0
[  362.884466][T15040] netlink: 146 bytes leftover after parsing attributes in process `syz.1.946'.
[  362.922348][ T1336] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.929556][ T1336] bridge0: port 1(bridge_slave_0) entered forwarding state
[  362.966726][ T1336] bridge0: port 2(bridge_slave_1) entered blocking state
[  362.973999][ T1336] bridge0: port 2(bridge_slave_1) entered forwarding state
[  363.850511][T14527] 8021q: adding VLAN 0 to HW filter on device batadv0
[  364.045622][ T5839] Bluetooth: hci4: command tx timeout
[  364.322468][T15162] netlink: 268 bytes leftover after parsing attributes in process `syz.0.948'.
[  365.170992][T15049] tipc: can't start tipc receive workqueue
[  365.461740][T14527] veth0_vlan: entered promiscuous mode
[  365.516985][T14527] veth1_vlan: entered promiscuous mode
[  365.748684][T14527] veth0_macvtap: entered promiscuous mode
[  365.829522][T14527] veth1_macvtap: entered promiscuous mode
[  365.950558][T14527] batman_adv: batadv0: Interface activated: batadv_slave_0
[  366.005474][T14527] batman_adv: batadv0: Interface activated: batadv_slave_1
[  366.074907][T10748] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  366.113710][ T5148] Bluetooth: hci4: command tx timeout
[  366.120432][T10748] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  366.193966][T10748] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  366.251448][T10748] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  366.605327][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  366.641424][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  366.824428][ T1336] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  366.869629][ T1336] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  370.265409][T15291] netlink: 'syz.4.955': attribute type 10 has an invalid length.
[  370.288852][T15293] netlink: 'syz.0.953': attribute type 10 has an invalid length.
[  370.301897][T15291] netlink: 330 bytes leftover after parsing attributes in process `syz.4.955'.
[  370.317961][T15293] netlink: 230 bytes leftover after parsing attributes in process `syz.0.953'.
[  370.547688][T15293] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  370.643532][T15298] netlink: 8 bytes leftover after parsing attributes in process `syz.3.956'.
[  371.730209][T15442] netlink: 268 bytes leftover after parsing attributes in process `syz.0.959'.
[  372.872823][T15450] netlink: 206 bytes leftover after parsing attributes in process `syz.4.961'.
[  373.609393][T15587] netlink: 'syz.1.963': attribute type 4 has an invalid length.
[  373.664422][T15587] netlink: 314 bytes leftover after parsing attributes in process `syz.1.963'.
[  375.215250][T15654] netlink: 'syz.0.974': attribute type 1 has an invalid length.
[  375.850893][T15688] FAULT_INJECTION: forcing a failure.
[  375.850893][T15688] name fail_futex, interval 1, probability 0, space 0, times 0
[  376.028759][T15688] CPU: 1 UID: 0 PID: 15688 Comm: syz.4.977 Not tainted syzkaller #0 PREEMPT(full) 
[  376.028803][T15688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  376.028822][T15688] Call Trace:
[  376.028832][T15688]  <TASK>
[  376.028844][T15688]  dump_stack_lvl+0x16c/0x1f0
[  376.028887][T15688]  should_fail_ex+0x512/0x640
[  376.028932][T15688]  get_futex_key+0x1d0/0x1560
[  376.028977][T15688]  ? __pfx_css_rstat_updated+0x10/0x10
[  376.029017][T15688]  ? __pfx_get_futex_key+0x10/0x10
[  376.029065][T15688]  ? __cgroup_account_cputime+0xcc/0x120
[  376.029110][T15688]  futex_wait_setup+0x9d/0x550
[  376.029176][T15688]  __futex_wait+0x193/0x2f0
[  376.029241][T15688]  ? __pfx___futex_wait+0x10/0x10
[  376.029291][T15688]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  376.029326][T15688]  ? lockdep_hardirqs_on+0x7c/0x110
[  376.029368][T15688]  ? __pfx_futex_wake_mark+0x10/0x10
[  376.029429][T15688]  ? futex_private_hash_put+0x176/0x300
[  376.029479][T15688]  ? futex_private_hash_put+0x18a/0x300
[  376.029527][T15688]  futex_wait+0xe8/0x380
[  376.029580][T15688]  ? __pfx_futex_wait+0x10/0x10
[  376.029658][T15688]  do_futex+0x229/0x350
[  376.029705][T15688]  ? __pfx_do_futex+0x10/0x10
[  376.029751][T15688]  ? __sys_bind+0x1c5/0x260
[  376.029816][T15688]  __x64_sys_futex+0x1e0/0x4c0
[  376.029870][T15688]  ? __pfx___x64_sys_futex+0x10/0x10
[  376.029919][T15688]  ? xfd_validate_state+0x61/0x180
[  376.029965][T15688]  ? __pfx___do_sys_close_range+0x10/0x10
[  376.030015][T15688]  do_syscall_64+0xcd/0xfa0
[  376.030056][T15688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.030090][T15688] RIP: 0033:0x7f908b38eec9
[  376.030116][T15688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  376.030147][T15688] RSP: 002b:00007f908c1cb0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  376.030177][T15688] RAX: ffffffffffffffda RBX: 00007f908b5e6098 RCX: 00007f908b38eec9
[  376.030205][T15688] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f908b5e6098
[  376.030225][T15688] RBP: 00007f908b5e6090 R08: 0000000000000000 R09: 0000000000000000
[  376.030244][T15688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  376.030263][T15688] R13: 00007f908b5e6128 R14: 00007ffc8ca85130 R15: 00007ffc8ca85218
[  376.030307][T15688]  </TASK>
[  376.486993][T15696] netlink: 206 bytes leftover after parsing attributes in process `syz.0.976'.
[  377.990454][T15774] ubi0: attaching mtd0
[  378.034456][T15774] ubi0: scanning is finished
[  378.091373][T15774] ubi0 error: ubi_read_volume_table: the layout volume was not found
[  378.528631][T15774] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[  378.900067][T15801] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  379.203149][T15823] random: crng reseeded on system resumption
[  379.269489][T15823] blktrace: Concurrent blktraces are not allowed on loop12
[  380.502831][ T5148] Bluetooth: hci2: Malformed Event: 0x02
[  386.001521][T16064] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1008'.
[  386.115285][T16065] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1008'.
[  386.230561][T16066] FAULT_INJECTION: forcing a failure.
[  386.230561][T16066] name fail_futex, interval 1, probability 0, space 0, times 0
[  386.408186][T16066] CPU: 0 UID: 0 PID: 16066 Comm: syz.4.1008 Not tainted syzkaller #0 PREEMPT(full) 
[  386.408229][T16066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  386.408248][T16066] Call Trace:
[  386.408259][T16066]  <TASK>
[  386.408280][T16066]  dump_stack_lvl+0x16c/0x1f0
[  386.408322][T16066]  should_fail_ex+0x512/0x640
[  386.408368][T16066]  get_futex_key+0x1d0/0x1560
[  386.408415][T16066]  ? __pfx_get_futex_key+0x10/0x10
[  386.408461][T16066]  ? __pick_eevdf+0x30a/0x670
[  386.408508][T16066]  futex_wait_setup+0x9d/0x550
[  386.408573][T16066]  __futex_wait+0x193/0x2f0
[  386.408626][T16066]  ? __pfx___futex_wait+0x10/0x10
[  386.408675][T16066]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  386.408708][T16066]  ? lockdep_hardirqs_on+0x7c/0x110
[  386.408749][T16066]  ? __pfx_futex_wake_mark+0x10/0x10
[  386.408809][T16066]  ? futex_private_hash_put+0x176/0x300
[  386.408856][T16066]  ? futex_private_hash_put+0x18a/0x300
[  386.408903][T16066]  futex_wait+0xe8/0x380
[  386.408953][T16066]  ? __pfx_futex_wait+0x10/0x10
[  386.409029][T16066]  do_futex+0x229/0x350
[  386.409075][T16066]  ? __pfx_do_futex+0x10/0x10
[  386.409129][T16066]  __x64_sys_futex+0x1e0/0x4c0
[  386.409183][T16066]  ? fdget_pos+0x2b8/0x370
[  386.409217][T16066]  ? __pfx___x64_sys_futex+0x10/0x10
[  386.409260][T16066]  ? ksys_read+0x1ac/0x250
[  386.409299][T16066]  ? __pfx_ksys_read+0x10/0x10
[  386.409345][T16066]  do_syscall_64+0xcd/0xfa0
[  386.409385][T16066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.409419][T16066] RIP: 0033:0x7f908b38eec9
[  386.409443][T16066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  386.409472][T16066] RSP: 002b:00007f908c1890e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  386.409502][T16066] RAX: ffffffffffffffda RBX: 00007f908b5e6278 RCX: 00007f908b38eec9
[  386.409523][T16066] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f908b5e6278
[  386.409542][T16066] RBP: 00007f908b5e6270 R08: 0000000000000000 R09: 0000000000000000
[  386.409562][T16066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  386.409580][T16066] R13: 00007f908b5e6308 R14: 00007ffc8ca85130 R15: 00007ffc8ca85218
[  386.409624][T16066]  </TASK>
[  387.412968][T16070] netlink: 'syz.1.1009': attribute type 1 has an invalid length.
[  387.666947][T16070] netlink: 'syz.1.1009': attribute type 1 has an invalid length.
[  388.245217][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  388.251728][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  388.447090][T16103] zswap: compressor  not available
[  393.196848][T16485] netlink: 206 bytes leftover after parsing attributes in process `syz.1.1024'.
[  394.487626][T16649] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1030'.
[  394.909088][T16649] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input12
[  395.443510][T16653] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  395.454078][T16653] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  395.471019][T16653] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  397.968689][T16831] nfs4: Unknown parameter 'nfsd'
[  404.438686][T17106] Invalid ELF header magic: != ELF
[  405.050750][T17105] delete_channel: no stack
[  406.710535][T17244] input: f�
 as /devices/virtual/input/input13
[  410.567117][T17484] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1071'.
[  410.692845][T17485] netlink: 252 bytes leftover after parsing attributes in process `syz.1.1071'.
[  415.631038][T17678] FAULT_INJECTION: forcing a failure.
[  415.631038][T17678] name failslab, interval 1, probability 0, space 0, times 0
[  415.736148][T17678] CPU: 0 UID: 0 PID: 17678 Comm: syz.4.1081 Not tainted syzkaller #0 PREEMPT(full) 
[  415.736197][T17678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  415.736218][T17678] Call Trace:
[  415.736229][T17678]  <TASK>
[  415.736242][T17678]  dump_stack_lvl+0x16c/0x1f0
[  415.736288][T17678]  should_fail_ex+0x512/0x640
[  415.736327][T17678]  ? __kmalloc_noprof+0xca/0x880
[  415.736384][T17678]  should_failslab+0xc2/0x120
[  415.736428][T17678]  __kmalloc_noprof+0xdd/0x880
[  415.736482][T17678]  ? __register_sysctl_table+0xb3/0x1900
[  415.736539][T17678]  ? __register_sysctl_table+0xb3/0x1900
[  415.736588][T17678]  __register_sysctl_table+0xb3/0x1900
[  415.736636][T17678]  ? is_module_address+0x5f/0xf0
[  415.736692][T17678]  ? __pfx___register_sysctl_table+0x10/0x10
[  415.736771][T17678]  ? is_module_address+0x69/0xf0
[  415.736826][T17678]  ? register_net_sysctl_sz+0x228/0x3e0
[  415.736875][T17678]  ? __asan_memcpy+0x3c/0x60
[  415.736912][T17678]  sysctl_route_net_init+0x15e/0x2c0
[  415.736964][T17678]  ? __pfx_sysctl_route_net_init+0x10/0x10
[  415.737012][T17678]  ops_init+0x1df/0x5f0
[  415.737056][T17678]  setup_net+0x100/0x390
[  415.737097][T17678]  ? __pfx_setup_net+0x10/0x10
[  415.737141][T17678]  ? debug_mutex_init+0x37/0x70
[  415.737182][T17678]  copy_net_ns+0x2f8/0x690
[  415.737232][T17678]  create_new_namespaces+0x3ea/0xa90
[  415.737281][T17678]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  415.737324][T17678]  ksys_unshare+0x45b/0xa40
[  415.737391][T17678]  ? __pfx_ksys_unshare+0x10/0x10
[  415.737439][T17678]  ? xfd_validate_state+0x61/0x180
[  415.737500][T17678]  __x64_sys_unshare+0x31/0x40
[  415.737545][T17678]  do_syscall_64+0xcd/0xfa0
[  415.737583][T17678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  415.737617][T17678] RIP: 0033:0x7f908b38eec9
[  415.737645][T17678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  415.737676][T17678] RSP: 002b:00007f908c1ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  415.737709][T17678] RAX: ffffffffffffffda RBX: 00007f908b5e5fa0 RCX: 00007f908b38eec9
[  415.737731][T17678] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  415.737751][T17678] RBP: 00007f908b411f91 R08: 0000000000000000 R09: 0000000000000000
[  415.737771][T17678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  415.737791][T17678] R13: 00007f908b5e6038 R14: 00007f908b5e5fa0 R15: 00007ffc8ca85218
[  415.737851][T17678]  </TASK>
[  416.343584][T17682] netlink: 62 bytes leftover after parsing attributes in process `syz.3.1083'.
[  417.461800][T17703] FAULT_INJECTION: forcing a failure.
[  417.461800][T17703] name failslab, interval 1, probability 0, space 0, times 0
[  417.474679][T17703] CPU: 0 UID: 0 PID: 17703 Comm: syz.3.1086 Not tainted syzkaller #0 PREEMPT(full) 
[  417.474709][T17703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  417.474722][T17703] Call Trace:
[  417.474731][T17703]  <TASK>
[  417.474740][T17703]  dump_stack_lvl+0x16c/0x1f0
[  417.474770][T17703]  should_fail_ex+0x512/0x640
[  417.474798][T17703]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  417.474825][T17703]  should_failslab+0xc2/0x120
[  417.474855][T17703]  kmem_cache_alloc_node_noprof+0x78/0x770
[  417.474878][T17703]  ? __alloc_skb+0x2b2/0x380
[  417.474907][T17703]  ? __alloc_skb+0x2b2/0x380
[  417.474928][T17703]  __alloc_skb+0x2b2/0x380
[  417.474951][T17703]  ? __pfx___alloc_skb+0x10/0x10
[  417.474975][T17703]  ? netlink_autobind.isra.0+0x158/0x370
[  417.475012][T17703]  netlink_alloc_large_skb+0x69/0x140
[  417.475042][T17703]  netlink_sendmsg+0x698/0xdd0
[  417.475075][T17703]  ? __pfx_netlink_sendmsg+0x10/0x10
[  417.475108][T17703]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  417.475145][T17703]  __sys_sendto+0x4a0/0x520
[  417.475168][T17703]  ? __pfx___sys_sendto+0x10/0x10
[  417.475200][T17703]  ? find_held_lock+0x2b/0x80
[  417.475244][T17703]  __x64_sys_sendto+0xe0/0x1c0
[  417.475266][T17703]  ? do_syscall_64+0x91/0xfa0
[  417.475290][T17703]  ? lockdep_hardirqs_on+0x7c/0x110
[  417.475315][T17703]  do_syscall_64+0xcd/0xfa0
[  417.475342][T17703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.475365][T17703] RIP: 0033:0x7f2cb9b90d5c
[  417.475383][T17703] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  417.475404][T17703] RSP: 002b:00007f2cbaa70ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  417.475426][T17703] RAX: ffffffffffffffda RBX: 00007f2cbaa70fc0 RCX: 00007f2cb9b90d5c
[  417.475441][T17703] RDX: 0000000000000024 RSI: 00007f2cbaa71010 RDI: 000000000000000b
[  417.475455][T17703] RBP: 0000000000000000 R08: 00007f2cbaa70f14 R09: 000000000000000c
[  417.475468][T17703] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000000b
[  417.475482][T17703] R13: 00007f2cbaa70f68 R14: 00007f2cbaa71010 R15: 0000000000000000
[  417.475511][T17703]  </TASK>
[  420.254251][T17998] netlink: 'syz.3.1096': attribute type 4 has an invalid length.
[  420.291953][T17998] netlink: 'syz.3.1096': attribute type 1 has an invalid length.
[  420.440863][T17998] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1096'.
[  421.639768][T17827] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  425.945217][T18265] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1110'.
[  427.694200][T18457] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4.131072.4294967293), cmd(3)
[  428.737170][T18578] FAULT_INJECTION: forcing a failure.
[  428.737170][T18578] name fail_futex, interval 1, probability 0, space 0, times 0
[  428.806672][T18578] CPU: 1 UID: 0 PID: 18578 Comm: syz.3.1118 Not tainted syzkaller #0 PREEMPT(full) 
[  428.806713][T18578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  428.806731][T18578] Call Trace:
[  428.806741][T18578]  <TASK>
[  428.806753][T18578]  dump_stack_lvl+0x16c/0x1f0
[  428.806794][T18578]  should_fail_ex+0x512/0x640
[  428.806832][T18578]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  428.806877][T18578]  get_futex_key+0x1d0/0x1560
[  428.806922][T18578]  ? arch_stack_walk+0xa6/0x100
[  428.806955][T18578]  ? __pfx_get_futex_key+0x10/0x10
[  428.807012][T18578]  futex_wait_setup+0x9d/0x550
[  428.807076][T18578]  __futex_wait+0x193/0x2f0
[  428.807130][T18578]  ? __pfx___futex_wait+0x10/0x10
[  428.807190][T18578]  ? __pfx_futex_wake_mark+0x10/0x10
[  428.807249][T18578]  ? futex_private_hash_put+0x176/0x300
[  428.807297][T18578]  ? futex_private_hash_put+0x18a/0x300
[  428.807342][T18578]  futex_wait+0xe8/0x380
[  428.807404][T18578]  ? __pfx_futex_wait+0x10/0x10
[  428.807466][T18578]  ? kasan_quarantine_put+0x10a/0x240
[  428.807502][T18578]  ? lockdep_hardirqs_on+0x7c/0x110
[  428.807546][T18578]  do_futex+0x229/0x350
[  428.807590][T18578]  ? __pfx_do_futex+0x10/0x10
[  428.807634][T18578]  ? __do_sys_getcwd+0x4d1/0x930
[  428.807674][T18578]  ? __do_sys_getcwd+0x4d6/0x930
[  428.807712][T18578]  __x64_sys_futex+0x1e0/0x4c0
[  428.807748][T18578]  ? __pfx___x64_sys_futex+0x10/0x10
[  428.807780][T18578]  ? xfd_validate_state+0x61/0x180
[  428.807823][T18578]  do_syscall_64+0xcd/0xfa0
[  428.807851][T18578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.807874][T18578] RIP: 0033:0x7f2cb9b8eec9
[  428.807892][T18578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  428.807913][T18578] RSP: 002b:00007f2cbaa720e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  428.807935][T18578] RAX: ffffffffffffffda RBX: 00007f2cb9de6188 RCX: 00007f2cb9b8eec9
[  428.807950][T18578] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2cb9de6188
[  428.807963][T18578] RBP: 00007f2cb9de6180 R08: 0000000000000000 R09: 0000000000000000
[  428.807977][T18578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  428.807991][T18578] R13: 00007f2cb9de6218 R14: 00007ffcf343a310 R15: 00007ffcf343a3f8
[  428.808026][T18578]  </TASK>
[  434.935175][T10753] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.301750][T10753] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.689495][T10753] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.267036][T10753] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.417538][T10753] team0: left allmulticast mode
[  437.436812][T10753] team_slave_1: left allmulticast mode
[  437.457160][T10753] team0: left promiscuous mode
[  437.518687][T10753] team_slave_0: left promiscuous mode
[  437.533391][T10753] team_slave_1: left promiscuous mode
[  437.541186][T10753] bridge0: port 3(team0) entered disabled state
[  437.607178][T10753] bridge_slave_1: left allmulticast mode
[  437.613264][T10753] bridge_slave_1: left promiscuous mode
[  437.619963][T10753] bridge0: port 2(bridge_slave_1) entered disabled state
[  437.664793][T10753] bridge_slave_0: left allmulticast mode
[  437.670605][T10753] bridge_slave_0: left promiscuous mode
[  437.676619][T10753] bridge0: port 1(bridge_slave_0) entered disabled state
[  438.908257][T10753] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  438.928165][T10753] bond0 (unregistering): Released all slaves
[  440.239080][T19301] mkiss: ax0: crc mode is auto.
[  440.709720][T19317] ptp ptp0: new virtual clock ptp1
[  440.726759][T19317] ptp ptp0: new virtual clock ptp2
[  440.797221][T19335] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1153'.
[  440.826400][T19317] ptp ptp0: new virtual clock ptp3
[  440.884741][T19317] ptp ptp0: guarantee physical clock free running
[  442.063812][T10753] hsr_slave_0: left promiscuous mode
[  442.131475][T10753] hsr_slave_1: left promiscuous mode
[  442.179950][T10753] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  442.187441][T10753] batman_adv: batadv0: Removing interface: batadv_slave_0
[  442.442132][T10753] veth1_macvtap: left promiscuous mode
[  442.478936][T10753] veth0_macvtap: left promiscuous mode
[  442.532654][T10753] veth1_vlan: left promiscuous mode
[  442.576571][T10753] veth0_vlan: left promiscuous mode
[  443.015099][T19403] zswap: compressor  not available
[  443.378619][T19494] random: crng reseeded on system resumption
[  443.955641][T10753] team0 (unregistering): Port device team_slave_1 removed
[  444.004073][T10753] team0 (unregistering): Port device team_slave_0 removed
[  444.613934][T19530] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1163'.
[  447.019201][T19706] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1169'.
[  448.824031][T19771] input: f�
 as /devices/virtual/input/input14
[  449.367278][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  449.376589][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  451.584961][T19879] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1195'.
[  451.696196][T19870] binder: 19862:19870 ioctl c00c620f 2000000000c0 returned -22
[  452.993932][T20035] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1198'.
[  453.292822][T20046] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1207'.
[  457.133982][T20162] random: crng reseeded on system resumption
[  458.181771][T20286] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input15
[  458.392738][T20360] i2c i2c-0: new_device: Invalid device name
[  458.513436][T20365] ksmbd: Unknown IPC event: 10, ignore.
[  460.186186][T20431] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1225'.
[  463.957519][T21089] tipc: Started in network mode
[  463.975442][T21089] tipc: Node identity ee00, cluster identity 4711
[  463.982199][T21089] tipc: Node number set to 60928
[  464.080669][T21074] delete_channel: no stack
[  466.964005][T21200] ICMPv6: process `syz.3.1253' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  469.295574][T21402] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1259'.
[  469.738207][T21429] openvswitch: netlink: nsh attr 36 is out of range max 3
[  470.840697][T21568] ICMPv6: process `syz.4.1264' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  471.602349][T21633] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1275'.
[  472.516865][T21646] netlink: 'syz.1.1276': attribute type 1 has an invalid length.
[  475.908462][T21935] netlink: 342 bytes leftover after parsing attributes in process `syz.4.1297'.
[  476.060105][T21954] FAULT_INJECTION: forcing a failure.
[  476.060105][T21954] name failslab, interval 1, probability 0, space 0, times 0
[  476.080303][T21954] CPU: 0 UID: 0 PID: 21954 Comm: syz.3.1299 Not tainted syzkaller #0 PREEMPT(full) 
[  476.080349][T21954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  476.080368][T21954] Call Trace:
[  476.080379][T21954]  <TASK>
[  476.080392][T21954]  dump_stack_lvl+0x16c/0x1f0
[  476.080436][T21954]  should_fail_ex+0x512/0x640
[  476.080477][T21954]  ? __kmalloc_cache_noprof+0x5f/0x780
[  476.080536][T21954]  should_failslab+0xc2/0x120
[  476.080580][T21954]  __kmalloc_cache_noprof+0x72/0x780
[  476.080634][T21954]  ? __lock_acquire+0xb97/0x1ce0
[  476.080679][T21954]  ? tty_open+0x13e/0xf90
[  476.080736][T21954]  ? tty_open+0x13e/0xf90
[  476.080785][T21954]  ? nonseekable_open+0xd/0x50
[  476.080818][T21954]  ? __pfx_tty_open+0x10/0x10
[  476.080866][T21954]  tty_open+0x13e/0xf90
[  476.080926][T21954]  ? __pfx_tty_open+0x10/0x10
[  476.080975][T21954]  ? chrdev_open+0x58c/0x6a0
[  476.081020][T21954]  ? __pfx_tty_open+0x10/0x10
[  476.081070][T21954]  chrdev_open+0x234/0x6a0
[  476.081112][T21954]  ? __pfx_chrdev_open+0x10/0x10
[  476.081154][T21954]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  476.081217][T21954]  do_dentry_open+0x982/0x1530
[  476.081257][T21954]  ? __pfx_chrdev_open+0x10/0x10
[  476.081307][T21954]  vfs_open+0x82/0x3f0
[  476.081359][T21954]  path_openat+0x1de4/0x2cb0
[  476.081410][T21954]  ? __pfx_path_openat+0x10/0x10
[  476.081459][T21954]  do_filp_open+0x20b/0x470
[  476.081499][T21954]  ? __pfx_do_filp_open+0x10/0x10
[  476.081562][T21954]  ? alloc_fd+0x471/0x7d0
[  476.081605][T21954]  do_sys_openat2+0x11b/0x1d0
[  476.081653][T21954]  ? __pfx_do_sys_openat2+0x10/0x10
[  476.081701][T21954]  ? __fget_files+0x204/0x3c0
[  476.081748][T21954]  __x64_sys_openat+0x174/0x210
[  476.081799][T21954]  ? __pfx___x64_sys_openat+0x10/0x10
[  476.081867][T21954]  do_syscall_64+0xcd/0xfa0
[  476.081909][T21954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  476.081943][T21954] RIP: 0033:0x7f2cb9b8eec9
[  476.081969][T21954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.081995][T21954] RSP: 002b:00007f2cbaab4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  476.082018][T21954] RAX: ffffffffffffffda RBX: 00007f2cb9de5fa0 RCX: 00007f2cb9b8eec9
[  476.082033][T21954] RDX: 0000000000020542 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  476.082049][T21954] RBP: 00007f2cb9c11f91 R08: 0000000000000000 R09: 0000000000000000
[  476.082063][T21954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  476.082077][T21954] R13: 00007f2cb9de6038 R14: 00007f2cb9de5fa0 R15: 00007ffcf343a3f8
[  476.082108][T21954]  </TASK>
[  477.706471][ T5148] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  477.706533][ T5148] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  477.721687][ T5148] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  477.721725][ T5148] Bluetooth: hci2: adv larger than maximum supported
[  477.729049][ T5148] Bluetooth: hci2: adv larger than maximum supported
[  477.735810][ T5148] Bluetooth: hci2: Malformed LE Event: 0x0d
[  478.280660][T22131] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1308'.
[  480.244420][T22420] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1319'.
[  480.263447][T22420] netlink: 314 bytes leftover after parsing attributes in process `syz.0.1319'.
[  481.991450][ T5148] Bluetooth: hci4: command 0x0406 tx timeout
[  482.767543][T22606] syz.0.1333 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  491.941789][ T5148] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  491.954896][ T5148] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  491.964201][ T5148] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  491.973734][ T5148] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  491.981731][ T5148] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  492.223347][T22879] chnl_net:caif_netlink_parms(): no params data found
[  492.333631][T22879] bridge0: port 1(bridge_slave_0) entered blocking state
[  492.340970][T22879] bridge0: port 1(bridge_slave_0) entered disabled state
[  492.348275][T22879] bridge_slave_0: entered allmulticast mode
[  492.355884][T22879] bridge_slave_0: entered promiscuous mode
[  492.367679][T22879] bridge0: port 2(bridge_slave_1) entered blocking state
[  492.374860][T22879] bridge0: port 2(bridge_slave_1) entered disabled state
[  492.382776][T22879] bridge_slave_1: entered allmulticast mode
[  492.390935][T22879] bridge_slave_1: entered promiscuous mode
[  492.437704][T22879] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  492.451528][T22879] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  492.499925][T22879] team0: Port device team_slave_0 added
[  492.511138][T22879] team0: Port device team_slave_1 added
[  492.559228][T22879] batman_adv: batadv0: Adding interface: batadv_slave_0
[  492.567989][T22879] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  492.594082][T22879] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  492.608862][T22879] batman_adv: batadv0: Adding interface: batadv_slave_1
[  492.616691][T22879] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  492.644038][T22879] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  492.780056][T22879] hsr_slave_0: entered promiscuous mode
[  492.787516][T22879] hsr_slave_1: entered promiscuous mode
[  492.794102][T22879] debugfs: 'hsr0' already exists in 'hsr'
[  492.804443][T22879] Cannot create hsr debugfs directory
[  492.876283][T23135] netlink: 'syz.4.1339': attribute type 11 has an invalid length.
[  493.976439][T22879] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  493.988238][T22879] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  494.006986][T22879] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  494.019185][T22879] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  494.019379][ T5148] Bluetooth: hci0: command tx timeout
[  494.121775][T22879] 8021q: adding VLAN 0 to HW filter on device bond0
[  494.143317][T22879] 8021q: adding VLAN 0 to HW filter on device team0
[  494.158930][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[  494.166093][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[  494.183286][ T1336] bridge0: port 2(bridge_slave_1) entered blocking state
[  494.190511][ T1336] bridge0: port 2(bridge_slave_1) entered forwarding state
[  494.418565][T22879] 8021q: adding VLAN 0 to HW filter on device batadv0
[  494.687647][T22879] veth0_vlan: entered promiscuous mode
[  494.701039][T22879] veth1_vlan: entered promiscuous mode
[  494.732684][T22879] veth0_macvtap: entered promiscuous mode
[  494.743396][T22879] veth1_macvtap: entered promiscuous mode
[  494.767298][T22879] batman_adv: batadv0: Interface activated: batadv_slave_0
[  494.782856][T22879] batman_adv: batadv0: Interface activated: batadv_slave_1
[  494.799394][ T3021] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  494.809817][ T3021] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  494.819696][ T3021] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  494.829386][ T3021] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  494.911964][ T1336] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  494.922833][ T1336] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  494.956225][T10753] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  494.966964][T10753] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.953299][T23528] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1354'.
[  496.077919][ T5148] Bluetooth: hci0: command tx timeout
[  498.148060][ T5148] Bluetooth: hci0: command tx timeout
[  498.379632][T23721] netlink: 268 bytes leftover after parsing attributes in process `syz.5.1355'.
[  498.809079][T23792] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1357'.
[  499.853263][T23923] netlink: 'syz.0.1361': attribute type 10 has an invalid length.
[  499.879897][T23923] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1361'.
[  500.031131][T23944] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1362'.
[  500.220745][ T5148] Bluetooth: hci0: command tx timeout
[  504.023436][T24191] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1371'.
[  504.218270][T24201] netlink: 'syz.1.1373': attribute type 10 has an invalid length.
[  504.227138][T24201] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1373'.
[  505.760130][T24256] netlink: 'syz.4.1381': attribute type 29 has an invalid length.
[  505.768107][T24256] netlink: 334 bytes leftover after parsing attributes in process `syz.4.1381'.
[  507.480466][T24341] random: crng reseeded on system resumption
[  508.013449][T24379] netlink: 'syz.1.1398': attribute type 1 has an invalid length.
[  508.059042][T24379] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1398'.
[  508.072920][T24379] sctp: [Deprecated]: syz.1.1398 (pid 24379) Use of int in maxseg socket option.
[  508.072920][T24379] Use struct sctp_assoc_value instead
[  508.813448][T24398] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1394'.
[  509.040662][T24403] random: crng reseeded on system resumption
[  509.363959][T24406] Unrecognized hibernate image header format!
[  509.744871][T24406] PM: hibernation: Image mismatch: architecture specific data
[  509.896581][T24424] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  510.504083][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  510.512590][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  512.020193][T24570] usb usb36: usbfs: process 24570 (syz.5.1408) did not claim interface 0 before use
[  512.594392][T24577] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1410'.
[  512.620768][T24577] ptp: physical clock is free running
[  515.075248][T24683] random: crng reseeded on system resumption
[  515.316144][T24685] Unrecognized hibernate image header format!
[  515.337870][T24685] PM: hibernation: Image mismatch: architecture specific data
[  516.473387][T24747] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1421'.
[  518.158212][T24824] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1427'.
[  520.917166][ T5839] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  520.930249][ T5839] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  520.941745][ T5839] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  520.956039][ T5839] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  520.970442][ T5839] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  521.631353][T24853] chnl_net:caif_netlink_parms(): no params data found
[  521.925264][T24853] bridge0: port 1(bridge_slave_0) entered blocking state
[  521.934146][T24853] bridge0: port 1(bridge_slave_0) entered disabled state
[  521.941467][T24853] bridge_slave_0: entered allmulticast mode
[  521.961672][T24853] bridge_slave_0: entered promiscuous mode
[  521.975201][T24853] bridge0: port 2(bridge_slave_1) entered blocking state
[  521.987852][T24853] bridge0: port 2(bridge_slave_1) entered disabled state
[  521.995871][T24853] bridge_slave_1: entered allmulticast mode
[  522.023038][T24853] bridge_slave_1: entered promiscuous mode
[  522.196944][T24853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  522.216512][T24853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  522.444749][T24853] team0: Port device team_slave_0 added
[  522.464118][T24853] team0: Port device team_slave_1 added
[  522.556813][T24853] batman_adv: batadv0: Adding interface: batadv_slave_0
[  522.567594][T24853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  522.622351][T24853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  522.647034][T24853] batman_adv: batadv0: Adding interface: batadv_slave_1
[  522.671300][T24853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  522.748963][T24853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  522.877116][T24853] hsr_slave_0: entered promiscuous mode
[  522.887122][T24853] hsr_slave_1: entered promiscuous mode
[  522.894268][T24853] debugfs: 'hsr0' already exists in 'hsr'
[  522.908111][T24853] Cannot create hsr debugfs directory
[  523.057509][ T5148] Bluetooth: hci5: command tx timeout
[  523.610905][T24853] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  523.623055][T24853] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  523.655864][T24853] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  523.677216][T25251] bcache: register_bcache() error : failed to open device
[  523.818357][T24853] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  524.106316][T24853] 8021q: adding VLAN 0 to HW filter on device bond0
[  524.488739][T24853] 8021q: adding VLAN 0 to HW filter on device team0
[  524.631082][T10753] bridge0: port 1(bridge_slave_0) entered blocking state
[  524.638234][T10753] bridge0: port 1(bridge_slave_0) entered forwarding state
[  524.667458][T10753] bridge0: port 2(bridge_slave_1) entered blocking state
[  524.674705][T10753] bridge0: port 2(bridge_slave_1) entered forwarding state
[  525.000198][T25290] netlink: 'syz.5.1439': attribute type 2 has an invalid length.
[  525.011594][T25290] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1439'.
[  525.095998][T25290] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1439'.
[  525.105353][T25290] : renamed from vlan0 (while UP)
[  525.164872][ T5148] Bluetooth: hci5: command tx timeout
[  525.294182][T24853] 8021q: adding VLAN 0 to HW filter on device batadv0
[  525.976405][T24853] veth0_vlan: entered promiscuous mode
[  526.027306][T24853] veth1_vlan: entered promiscuous mode
[  526.254309][T24853] veth0_macvtap: entered promiscuous mode
[  526.346794][T24853] veth1_macvtap: entered promiscuous mode
[  526.647803][T24853] batman_adv: batadv0: Interface activated: batadv_slave_0
[  526.773399][T24853] batman_adv: batadv0: Interface activated: batadv_slave_1
[  526.815519][ T7801] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  526.870826][ T7801] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  526.892887][ T7801] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  526.976126][ T7801] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  527.196432][ T5148] Bluetooth: hci5: command tx timeout
[  527.360019][ T5839] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  527.369696][ T5839] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  527.378545][ T5839] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  527.386743][ T5839] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  527.394726][ T5839] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  527.727304][ T1336] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  527.747313][ T1336] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  527.926161][ T7791] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  527.952269][ T7791] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  529.265745][ T5839] Bluetooth: hci5: command tx timeout
[  529.431987][ T5839] Bluetooth: hci6: command tx timeout
[  529.487973][T25371] chnl_net:caif_netlink_parms(): no params data found
[  529.693158][T25553] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  529.811959][T25371] bridge0: port 1(bridge_slave_0) entered blocking state
[  529.828629][T25371] bridge0: port 1(bridge_slave_0) entered disabled state
[  529.850350][T25371] bridge_slave_0: entered allmulticast mode
[  529.860920][T25371] bridge_slave_0: entered promiscuous mode
[  529.897521][T25371] bridge0: port 2(bridge_slave_1) entered blocking state
[  529.911868][T25371] bridge0: port 2(bridge_slave_1) entered disabled state
[  529.922507][T25371] bridge_slave_1: entered allmulticast mode
[  529.936507][T25371] bridge_slave_1: entered promiscuous mode
[  530.177257][T25371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  530.218307][T25371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  530.400783][T25371] team0: Port device team_slave_0 added
[  530.428008][T25371] team0: Port device team_slave_1 added
[  530.512197][T25371] batman_adv: batadv0: Adding interface: batadv_slave_0
[  530.520058][T25371] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  530.547819][T25371] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  530.562912][T25371] batman_adv: batadv0: Adding interface: batadv_slave_1
[  530.588108][T25371] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  530.615382][T25371] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  530.948330][T25371] hsr_slave_0: entered promiscuous mode
[  530.975606][T25371] hsr_slave_1: entered promiscuous mode
[  530.992927][T25371] debugfs: 'hsr0' already exists in 'hsr'
[  531.016110][T25371] Cannot create hsr debugfs directory
[  531.455813][T25758] netlink: 268 bytes leftover after parsing attributes in process `syz.6.1452'.
[  531.496985][ T5839] Bluetooth: hci6: command tx timeout
[  531.947959][T25371] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  531.974486][T25371] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  531.992839][T25371] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  532.013390][T25371] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  532.264494][T25371] 8021q: adding VLAN 0 to HW filter on device bond0
[  532.313372][T25371] 8021q: adding VLAN 0 to HW filter on device team0
[  532.327976][ T7791] bridge0: port 1(bridge_slave_0) entered blocking state
[  532.335262][ T7791] bridge0: port 1(bridge_slave_0) entered forwarding state
[  532.372178][ T7791] bridge0: port 2(bridge_slave_1) entered blocking state
[  532.379452][ T7791] bridge0: port 2(bridge_slave_1) entered forwarding state
[  533.546655][T25371] 8021q: adding VLAN 0 to HW filter on device batadv0
[  533.566001][ T5839] Bluetooth: hci6: command tx timeout
[  535.093465][T25371] veth0_vlan: entered promiscuous mode
[  535.136900][T25371] veth1_vlan: entered promiscuous mode
[  535.310123][T25371] veth0_macvtap: entered promiscuous mode
[  535.375382][T25371] veth1_macvtap: entered promiscuous mode
[  535.533377][T25371] batman_adv: batadv0: Interface activated: batadv_slave_0
[  535.574929][T25860] delete_channel: no stack
[  535.635873][ T5839] Bluetooth: hci6: command tx timeout
[  535.673451][T25371] batman_adv: batadv0: Interface activated: batadv_slave_1
[  535.775050][ T1336] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  535.791328][ T1336] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  535.925817][ T1336] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  535.954310][ T1336] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  536.445767][   T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  536.469461][   T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  536.579279][ T7801] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  536.606866][ T7801] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  537.050626][T25888] syz.7.1442: vmalloc error: size 4096, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  537.069161][T25888] CPU: 1 UID: 0 PID: 25888 Comm: syz.7.1442 Not tainted syzkaller #0 PREEMPT(full) 
[  537.069207][T25888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  537.069227][T25888] Call Trace:
[  537.069238][T25888]  <TASK>
[  537.069252][T25888]  dump_stack_lvl+0x16c/0x1f0
[  537.069297][T25888]  warn_alloc+0x248/0x3a0
[  537.069334][T25888]  ? __pfx_warn_alloc+0x10/0x10
[  537.069382][T25888]  ? alloc_pages_mpol+0x25a/0x550
[  537.069432][T25888]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  537.069476][T25888]  ? __pfx_alloc_pages_bulk_mempolicy_noprof+0x10/0x10
[  537.069532][T25888]  ? trace_kmalloc+0x2b/0xd0
[  537.069574][T25888]  ? __get_vm_area_node+0x1dc/0x330
[  537.069618][T25888]  ? __vmalloc_node_range_noprof+0x3e5/0x1480
[  537.069678][T25888]  __vmalloc_node_range_noprof+0x119b/0x1480
[  537.069743][T25888]  ? n_tty_open+0x1a/0x170
[  537.069789][T25888]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  537.069838][T25888]  ? look_up_lock_class+0x59/0x150
[  537.069884][T25888]  ? __pfx___ldsem_down_write_nested+0x10/0x10
[  537.069925][T25888]  ? n_tty_open+0x1a/0x170
[  537.069956][T25888]  __vmalloc_node_noprof+0xad/0xf0
[  537.070004][T25888]  ? n_tty_open+0x1a/0x170
[  537.070037][T25888]  ? __pfx_n_tty_open+0x10/0x10
[  537.070072][T25888]  n_tty_open+0x1a/0x170
[  537.070104][T25888]  ? __pfx_n_tty_open+0x10/0x10
[  537.070137][T25888]  tty_ldisc_open+0x9c/0x120
[  537.070181][T25888]  tty_ldisc_setup+0x40/0x100
[  537.070230][T25888]  tty_init_dev.part.0+0x1ec/0x500
[  537.070288][T25888]  tty_open+0xa4f/0xf90
[  537.070355][T25888]  ? __pfx_tty_open+0x10/0x10
[  537.070409][T25888]  ? chrdev_open+0x58c/0x6a0
[  537.070456][T25888]  ? __pfx_tty_open+0x10/0x10
[  537.070509][T25888]  chrdev_open+0x234/0x6a0
[  537.070551][T25888]  ? __pfx_chrdev_open+0x10/0x10
[  537.070594][T25888]  ? fsnotify_open_perm_and_set_mode+0x17c/0xa60
[  537.070640][T25888]  do_dentry_open+0x982/0x1530
[  537.070680][T25888]  ? __pfx_chrdev_open+0x10/0x10
[  537.070730][T25888]  vfs_open+0x82/0x3f0
[  537.070784][T25888]  path_openat+0x1de4/0x2cb0
[  537.070836][T25888]  ? __pfx_path_openat+0x10/0x10
[  537.070885][T25888]  do_filp_open+0x20b/0x470
[  537.070923][T25888]  ? __pfx_do_filp_open+0x10/0x10
[  537.070994][T25888]  ? alloc_fd+0x471/0x7d0
[  537.071040][T25888]  do_sys_openat2+0x11b/0x1d0
[  537.071089][T25888]  ? __pfx_do_sys_openat2+0x10/0x10
[  537.071142][T25888]  ? __sys_sendmsg+0x18c/0x220
[  537.071194][T25888]  __x64_sys_openat+0x174/0x210
[  537.071243][T25888]  ? __pfx___x64_sys_openat+0x10/0x10
[  537.071313][T25888]  do_syscall_64+0xcd/0xfa0
[  537.071362][T25888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.071398][T25888] RIP: 0033:0x7f5abfb8eec9
[  537.071425][T25888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  537.071459][T25888] RSP: 002b:00007f5ac0995038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  537.071492][T25888] RAX: ffffffffffffffda RBX: 00007f5abfde5fa0 RCX: 00007f5abfb8eec9
[  537.071515][T25888] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  537.071537][T25888] RBP: 00007f5abfc11f91 R08: 0000000000000000 R09: 0000000000000000
[  537.071558][T25888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  537.071578][T25888] R13: 00007f5abfde6038 R14: 00007f5abfde5fa0 R15: 00007fffbe3e08d8
[  537.071626][T25888]  </TASK>
[  537.071639][T25888] Mem-Info:
[  537.463662][T25888] active_anon:23084 inactive_anon:18 isolated_anon:0
[  537.463662][T25888]  active_file:10919 inactive_file:52191 isolated_file:0
[  537.463662][T25888]  unevictable:17166 dirty:853 writeback:0
[  537.463662][T25888]  slab_reclaimable:12194 slab_unreclaimable:104951
[  537.463662][T25888]  mapped:45592 shmem:11753 pagetables:1378
[  537.463662][T25888]  sec_pagetables:0 bounce:0
[  537.463662][T25888]  kernel_misc_reclaimable:0
[  537.463662][T25888]  free:1228837 free_pcp:18418 free_cma:0
[  537.512382][T25888] Node 0 active_anon:92336kB inactive_anon:72kB active_file:43676kB inactive_file:208628kB unevictable:67128kB isolated(anon):0kB isolated(file):0kB mapped:185468kB dirty:3412kB writeback:0kB shmem:45476kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13308kB pagetables:5388kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  537.545006][T25888] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:124kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  537.576421][T25888] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  537.610555][T25888] lowmem_reserve[]: 0 2484 2485 2485 2485
[  537.625206][T25888] Node 0 DMA32 free:1008068kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:92160kB inactive_anon:72kB active_file:44572kB inactive_file:208636kB unevictable:67128kB writepending:3416kB zspages:0kB present:3129332kB managed:2543668kB mlocked:0kB bounce:0kB free_pcp:53972kB local_pcp:26272kB free_cma:0kB
[  537.665589][T25888] lowmem_reserve[]: 0 0 1 1 1
[  537.670734][T25888] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  537.721173][T25888] lowmem_reserve[]: 0 0 0 0 0
[  537.726074][T25888] Node 1 Normal free:3890700kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:136kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:23944kB local_pcp:11444kB free_cma:0kB
[  537.820055][T25888] lowmem_reserve[]: 0 0 0 0 0
[  537.851922][T25888] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  537.933868][T25888] Node 0 DMA32: 2788*4kB (ME) 1598*8kB (ME) 1129*16kB (UME) 682*32kB (UM) 678*64kB (UME) 486*128kB (UME) 217*256kB (ME) 73*512kB (UME) 31*1024kB (UME) 1*2048kB (E) 174*4096kB (M) = 1008848kB
[  537.979492][T25888] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  537.999579][T25888] Node 1 Normal: 137*4kB (UME) 69*8kB (UME) 32*16kB (UME) 186*32kB (UME) 48*64kB (UME) 15*128kB (UME) 5*256kB (UM) 0*512kB 2*1024kB (UM) 2*2048kB (UE) 945*4096kB (M) = 3890700kB
[  538.035059][T25888] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  538.051333][T25888] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  538.133118][T25888] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  538.197376][T25888] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  538.232585][T25888] 89749 total pagecache pages
[  538.263520][T25888] 0 pages in swap cache
[  538.285889][T25888] Free swap  = 124996kB
[  538.297605][T25888] Total swap = 124996kB
[  538.338251][T25888] 2097051 pages RAM
[  538.347749][T25888] 0 pages HighMem/MovableOnly
[  538.354908][T25888] 429044 pages reserved
[  538.359916][T25888] 0 pages cma reserved
[  538.372266][T25888] pty pty58: ldisc open failed (-12), clearing slot 58
[  540.456279][   T31] audit: type=1800 audit(4294967365.303:10): pid=26037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1471" name="dbroot" dev="configfs" ino=42218 res=0 errno=0
[  540.598663][T26036] db_root: not a directory: /dev/audio1
[  542.423741][T26083] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  542.478962][T26083] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1476'.
[  542.918388][T26094] usb usb34: usbfs: process 26094 (syz.5.1478) did not claim interface 0 before use
[  543.474452][T26124] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1480'.
[  543.498157][T26128] netlink: 330 bytes leftover after parsing attributes in process `syz.5.1480'.
[  543.581639][T26124] gretap0: refused to change device tx_queue_len
[  543.592659][T26128] gretap0: refused to change device tx_queue_len
[  544.074410][T26138] bond0: option all_slaves_active: invalid value ()
[  545.100920][T26164] kexec: Could not allocate control_code_buffer
[  545.561609][T26265] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1491'.
[  546.404425][T26300] aoe: invalid device specification 
[  546.776379][   T31] audit: type=1800 audit(4294967371.646:11): pid=26328 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1497" name="lu_gp_id" dev="configfs" ino=42585 res=0 errno=0
[  547.561293][T26377] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(5)
[  548.378155][T26414] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1500'.
[  548.410789][T26414] bridge_slave_1: left allmulticast mode
[  548.440847][T26414] bridge_slave_1: left promiscuous mode
[  548.477571][T26414] bridge0: port 2(bridge_slave_1) entered disabled state
[  548.558436][T26414] bridge_slave_0: left allmulticast mode
[  548.564142][T26414] bridge_slave_0: left promiscuous mode
[  548.571753][T26414] bridge0: port 1(bridge_slave_0) entered disabled state
[  549.638540][T26484] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  549.664982][T26484] CIFS mount error: No usable UNC path provided in device string!
[  549.664982][T26484] 
[  549.675284][T26484] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  552.118608][T26566] nfs: Unknown parameter '���ީi��ʟ�b�y�7J� �؀��V�{�
[  552.118608][T26566] �\����9-*;#r��RcF��GL��֍*�(�ܦ)5�&yAl�j Lp��%�Z�w�}�GSι�k�'
[  553.095854][T26616] netlink: 252 bytes leftover after parsing attributes in process `syz.5.1518'.
[  555.003169][T26649] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1525'.
[  555.277996][T26659] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1526'.
[  555.358975][T26651] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1524'.
[  558.782268][T26753] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1538'.
[  559.109291][T26801] XFS: Clearing xfsstats
[  563.068997][T27005] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1558'.
[  563.135928][T27005] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1558'.
[  565.917651][T27135] netlink: 'syz.5.1564': attribute type 19 has an invalid length.
[  565.980350][T27135] netlink: 334 bytes leftover after parsing attributes in process `syz.5.1564'.
[  567.836750][T27180] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1569'.
[  567.935754][T27186] random: crng reseeded on system resumption
[  567.997451][T27186] FAULT_INJECTION: forcing a failure.
[  567.997451][T27186] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  568.058062][T27186] CPU: 0 UID: 0 PID: 27186 Comm: syz.7.1568 Not tainted syzkaller #0 PREEMPT(full) 
[  568.058107][T27186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  568.058129][T27186] Call Trace:
[  568.058141][T27186]  <TASK>
[  568.058154][T27186]  dump_stack_lvl+0x16c/0x1f0
[  568.058199][T27186]  should_fail_ex+0x512/0x640
[  568.058246][T27186]  should_fail_alloc_page+0xe7/0x130
[  568.058294][T27186]  prepare_alloc_pages+0x3c2/0x610
[  568.058337][T27186]  ? rcu_is_watching+0x12/0xc0
[  568.058376][T27186]  __alloc_frozen_pages_noprof+0x18b/0x2470
[  568.058415][T27186]  ? __pfx_stack_trace_save+0x10/0x10
[  568.058461][T27186]  ? __lock_acquire+0x62e/0x1ce0
[  568.058521][T27186]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  568.058573][T27186]  ? rcu_read_unlock+0x17/0x60
[  568.058623][T27186]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  568.058691][T27186]  ? policy_nodemask+0xea/0x4e0
[  568.058739][T27186]  alloc_pages_mpol+0x1fb/0x550
[  568.058791][T27186]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  568.058831][T27186]  ? trace_kmalloc+0x2b/0xd0
[  568.058872][T27186]  ? trace_kmalloc+0x2b/0xd0
[  568.058909][T27186]  ? __kmalloc_noprof.cold+0x5d/0x62
[  568.058957][T27186]  ? relay_open_buf.part.0+0x194/0xc40
[  568.059011][T27186]  alloc_pages_noprof+0x131/0x390
[  568.059057][T27186]  relay_open_buf.part.0+0x262/0xc40
[  568.059117][T27186]  relay_open+0x653/0xad0
[  568.059166][T27186]  ? debugfs_create_file_full+0x41/0x60
[  568.059227][T27186]  do_blk_trace_setup+0x4c5/0xb00
[  568.059277][T27186]  blk_trace_setup+0xed/0x1b0
[  568.059321][T27186]  ? __pfx_blk_trace_setup+0x10/0x10
[  568.059364][T27186]  ? __pfx_snprintf+0x10/0x10
[  568.059409][T27186]  ? do_vfs_ioctl+0x128/0x14f0
[  568.059464][T27186]  blk_trace_ioctl+0x146/0x280
[  568.059519][T27186]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  568.059571][T27186]  ? find_held_lock+0x2b/0x80
[  568.059607][T27186]  ? hook_file_ioctl_common+0x145/0x410
[  568.059668][T27186]  blkdev_ioctl+0x108/0x6d0
[  568.059701][T27186]  ? __pfx_blkdev_ioctl+0x10/0x10
[  568.059740][T27186]  ? __pfx_blkdev_ioctl+0x10/0x10
[  568.059775][T27186]  __x64_sys_ioctl+0x18b/0x210
[  568.059830][T27186]  do_syscall_64+0xcd/0xfa0
[  568.059871][T27186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.059906][T27186] RIP: 0033:0x7f5abfb8eec9
[  568.059934][T27186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  568.059967][T27186] RSP: 002b:00007f5ac0953038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  568.060000][T27186] RAX: ffffffffffffffda RBX: 00007f5abfde6180 RCX: 00007f5abfb8eec9
[  568.060022][T27186] RDX: 0000200000000240 RSI: 00000000c0481273 RDI: 000000000000000f
[  568.060043][T27186] RBP: 00007f5abfc11f91 R08: 0000000000000000 R09: 0000000000000000
[  568.060064][T27186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  568.060084][T27186] R13: 00007f5abfde6218 R14: 00007f5abfde6180 R15: 00007fffbe3e08d8
[  568.060131][T27186]  </TASK>
[  568.450067][T27189] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1572'.
[  570.892694][T27229] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1580'.
[  570.906053][T27229] veth1_macvtap: left promiscuous mode
[  571.609491][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  571.616290][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  572.291838][T27334] netlink: 186 bytes leftover after parsing attributes in process `syz.1.1585'.
[  572.526298][T27345] netlink: 342 bytes leftover after parsing attributes in process `syz.7.1586'.
[  574.262795][T27410] netlink: 330 bytes leftover after parsing attributes in process `syz.7.1591'.
[  576.317769][ T7895] netdevsim netdevsim15 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  578.162497][   T31] audit: type=1800 audit(4294967403.219:12): pid=27574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1603" name="version" dev="configfs" ino=45478 res=0 errno=0
[  579.001015][T27574] workqueue: Failed to create a rescuer kthread for wq "nfc18_nci_rx_wq": -EINTR
[  586.088978][T27924] erspan0: entered allmulticast mode
[  588.094847][T28005] netlink: 22144 bytes leftover after parsing attributes in process `syz.6.1632'.
[  591.240081][T28106] : Can't lookup blockdev
[  592.990415][T28165] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  593.000588][T28165] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  593.009151][T28165] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  593.018666][T28165] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  593.049963][T28165] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  593.447777][T28180] erspan0: entered allmulticast mode
[  593.994265][T28221] raw_sendmsg: syz.6.1651 forgot to set AF_INET. Fix it!
[  594.390882][T28163] chnl_net:caif_netlink_parms(): no params data found
[  594.968731][T28163] bridge0: port 1(bridge_slave_0) entered blocking state
[  595.023435][T28163] bridge0: port 1(bridge_slave_0) entered disabled state
[  595.030770][T28163] bridge_slave_0: entered allmulticast mode
[  595.044409][T28163] bridge_slave_0: entered promiscuous mode
[  595.084916][T28163] bridge0: port 2(bridge_slave_1) entered blocking state
[  595.094984][T28165] Bluetooth: hci7: command tx timeout
[  595.116630][T28163] bridge0: port 2(bridge_slave_1) entered disabled state
[  595.124859][T28163] bridge_slave_1: entered allmulticast mode
[  595.134047][T28163] bridge_slave_1: entered promiscuous mode
[  595.247499][T28357] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1653'.
[  595.278722][T28357] netlink: 93 bytes leftover after parsing attributes in process `syz.1.1653'.
[  595.444421][T28163] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  595.594835][T28163] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  595.826367][T28412] type: 1024 invalid
[  595.842109][T28163] team0: Port device team_slave_0 added
[  596.041450][T28163] team0: Port device team_slave_1 added
[  596.291414][T28163] batman_adv: batadv0: Adding interface: batadv_slave_0
[  596.316252][T28163] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  596.365415][T28163] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  596.544480][T28163] batman_adv: batadv0: Adding interface: batadv_slave_1
[  596.574969][T28163] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  596.643606][T28163] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  596.929053][T28163] hsr_slave_0: entered promiscuous mode
[  596.945508][T28163] hsr_slave_1: entered promiscuous mode
[  596.953216][T28163] debugfs: 'hsr0' already exists in 'hsr'
[  596.961980][T28163] Cannot create hsr debugfs directory
[  597.153055][T28165] Bluetooth: hci7: command tx timeout
[  597.812930][T28163] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  597.846498][T28163] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  597.866541][T28163] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  597.884780][T28163] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  598.141724][T28163] 8021q: adding VLAN 0 to HW filter on device bond0
[  598.190997][T28163] 8021q: adding VLAN 0 to HW filter on device team0
[  598.234949][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[  598.242286][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[  598.288145][ T7894] bridge0: port 2(bridge_slave_1) entered blocking state
[  598.295365][ T7894] bridge0: port 2(bridge_slave_1) entered forwarding state
[  598.404439][T28612] : Can't lookup blockdev
[  598.591648][T28632] tipc: Started in network mode
[  598.599054][T28632] tipc: Node identity ee00, cluster identity 4711
[  598.609422][T28632] tipc: Node number set to 60928
[  599.221253][T28165] Bluetooth: hci7: command tx timeout
[  599.376243][T28691] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1659'.
[  600.036565][T28163] 8021q: adding VLAN 0 to HW filter on device batadv0
[  600.556809][T28742] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1664'.
[  600.666440][T28750] netlink: 93 bytes leftover after parsing attributes in process `syz.6.1664'.
[  601.087282][T28163] veth0_vlan: entered promiscuous mode
[  601.158114][T28163] veth1_vlan: entered promiscuous mode
[  601.292895][T28165] Bluetooth: hci7: command tx timeout
[  601.333324][T28163] veth0_macvtap: entered promiscuous mode
[  601.348388][T28163] veth1_macvtap: entered promiscuous mode
[  601.463290][T28163] batman_adv: batadv0: Interface activated: batadv_slave_0
[  601.551460][T28163] batman_adv: batadv0: Interface activated: batadv_slave_1
[  601.645245][ T7894] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  601.667095][ T7894] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  601.707930][ T7894] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  601.721522][ T7894] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  601.794460][T28830] tipc: Started in network mode
[  601.802780][T28830] tipc: Node identity ee00, cluster identity 4711
[  601.818640][T28830] tipc: Node number set to 60928
[  602.074827][T27835] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  602.108722][T27835] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  602.339656][T27835] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  602.370671][T27835] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  603.679799][T28920] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1675'.
[  604.577542][T28966] RDS: rds_bind could not find a transport for ::ffff:172.30.1.2, load rds_tcp or rds_rdma?
[  605.164332][T28996] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  605.662181][T29040] Console: switching to colour VGA+ 80x25
[  612.738497][T29339] __vm_enough_memory: pid: 29339, comm: syz.6.1708, bytes: 4398046511104 not enough memory for the allocation
[  614.446393][ T5839] Bluetooth: hci0: command 0x0406 tx timeout
[  617.498734][T29449] sd 0:0:1:0: PR command failed: 1026
[  617.504296][T29449] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  617.511261][T29449] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  621.584166][T29525] __vm_enough_memory: pid: 29525, comm: syz.6.1726, bytes: 4398046511104 not enough memory for the allocation
[  622.332222][T29542] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  628.657114][T29677] cifs: Unknown parameter '�����)�	Up��̢{��V]7�62']�Ψ��!�g�ʮ�7�9��fM�<*y�sE�h�
�'
[  630.182810][   T32] INFO: task syz.3.1302:21980 blocked for more than 143 seconds.
[  630.238436][   T32]       Not tainted syzkaller #0
[  630.244706][   T32] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  630.253831][   T32] task:syz.3.1302      state:D stack:28312 pid:21980 tgid:21968 ppid:5833   task_flags:0x400140 flags:0x00080002
[  630.266891][   T32] Call Trace:
[  630.270551][   T32]  <TASK>
[  630.273530][   T32]  __schedule+0x1190/0x5de0
[  630.278102][   T32]  ? __lock_acquire+0x62e/0x1ce0
[  630.299451][   T32]  ? __pfx___schedule+0x10/0x10
[  630.352958][T29726] sd 0:0:1:0: PR command failed: 1026
[  630.369093][   T32]  ? find_held_lock+0x2b/0x80
[  630.373855][   T32]  ? schedule+0x2d7/0x3a0
[  630.378238][   T32]  ? nfsd_nl_threads_set_doit+0x687/0xbc0
[  630.412924][T29726] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  630.438799][   T32]  schedule+0xe7/0x3a0
[  630.442971][   T32]  schedule_preempt_disabled+0x13/0x30
[  630.478607][   T32]  __mutex_lock+0x818/0x1060
[  630.483307][   T32]  ? __lock_acquire+0x62e/0x1ce0
[  630.499829][T29726] sd 0:0:1:0: Add. Sense: Invalid command operation code
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  630.528254][   T32]  ? nfsd_nl_threads_set_doit+0x687/0xbc0
[  630.621721][   T32]  ? __pfx___mutex_lock+0x10/0x10
[  630.657584][   T32]  ? net_generic+0xea/0x2a0
[  630.662438][   T32]  ? nfsd_nl_threads_set_doit+0x687/0xbc0
[  630.747098][   T32]  nfsd_nl_threads_set_doit+0x687/0xbc0
[  630.763101][   T32]  genl_family_rcv_msg_doit+0x206/0x2f0
[  630.868600][   T32]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  630.874832][   T32]  ? rcu_is_watching+0x12/0xc0
[  630.879784][   T32]  ? bpf_lsm_capable+0x9/0x10
[  630.884520][   T32]  ? security_capable+0x7e/0x260
[  630.889616][   T32]  genl_rcv_msg+0x55c/0x800
[  630.894215][   T32]  ? __pfx_genl_rcv_msg+0x10/0x10
[  630.899931][   T32]  ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10
[  630.906125][   T32]  netlink_rcv_skb+0x155/0x420
[  630.916304][   T32]  ? __pfx_genl_rcv_msg+0x10/0x10
[  630.927855][   T32]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  630.933371][   T32]  ? netlink_deliver_tap+0x1ae/0xd30
[  630.956508][   T32]  genl_rcv+0x28/0x40
[  630.960703][   T32]  netlink_unicast+0x5aa/0x870
[  630.965548][   T32]  ? __pfx_netlink_unicast+0x10/0x10
[  631.049722][   T32]  ? __pfx___might_resched+0x10/0x10
[  631.061318][   T32]  ? __lock_acquire+0xb97/0x1ce0
[  631.102903][   T32]  netlink_sendmsg+0x8c8/0xdd0
[  631.114108][   T32]  ? __pfx_netlink_sendmsg+0x10/0x10
[  631.131150][   T32]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  631.138808][   T32]  ____sys_sendmsg+0xa98/0xc70
[  631.204694][   T32]  ? copy_msghdr_from_user+0x10a/0x160
[  631.210266][   T32]  ? __pfx_____sys_sendmsg+0x10/0x10
[  631.236153][   T32]  ? __pfx_futex_wake_mark+0x10/0x10
[  631.254480][   T32]  ___sys_sendmsg+0x134/0x1d0
[  631.259260][   T32]  ? __pfx____sys_sendmsg+0x10/0x10
[  631.308513][   T32]  __sys_sendmsg+0x16d/0x220
[  631.319520][   T32]  ? __pfx___sys_sendmsg+0x10/0x10
[  631.340874][   T32]  ? __x64_sys_futex+0x1e0/0x4c0
[  631.457369][   T32]  do_syscall_64+0xcd/0xfa0
[  631.462005][   T32]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  631.533449][   T32] RIP: 0033:0x7f2cb9b8eec9
[  631.537963][   T32] RSP: 002b:00007f2cbaa93038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  631.661553][   T32] RAX: ffffffffffffffda RBX: 00007f2cb9de6090 RCX: 00007f2cb9b8eec9
[  631.707754][   T32] RDX: 0000000000040010 RSI: 0000200000000000 RDI: 0000000000000003
[  631.746801][   T32] RBP: 00007f2cb9c11f91 R08: 0000000000000000 R09: 0000000000000000
[  631.763489][   T32] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  631.802128][   T32] R13: 00007f2cb9de6128 R14: 00007f2cb9de6090 R15: 00007ffcf343a3f8
[  631.810183][   T32]  </TASK>
[  631.831695][   T32] 
[  631.831695][   T32] Showing all locks held in the system:
[  631.851421][   T32] 1 lock held by khungtaskd/32:
[  631.881968][   T32]  #0: ffffffff8e3c4320 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  631.929516][   T32] 3 locks held by kworker/u8:5/147:
[  631.944084][   T32]  #0: ffff88801ba9f148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  631.972585][   T32]  #1: ffffc90002f27d00 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  631.990713][   T32]  #2: ffffffff8e3cf780 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6e0
[  632.060379][   T32] 2 locks held by getty/5588:
[  632.065112][   T32]  #0: ffff8880346cc0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  632.149879][   T32]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  632.160293][   T32] 3 locks held by kworker/0:3/5877:
[  632.165533][   T32]  #0: ffff88813ff19948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  632.176353][   T32]  #1: ffffc90004897d00 ((fqdir_free_work).work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  632.189627][   T32]  #2: ffffffff8e3cf780 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x48/0x6e0
[  632.229386][   T32] 2 locks held by syz.3.1302/21970:
[  632.235460][   T32]  #0: ffffffff901a1990 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  632.279187][   T32]  #1: ffffffff8e7ec888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x687/0xbc0
[  632.299071][   T32] 2 locks held by syz.3.1302/21980:
[  632.304419][   T32]  #0: ffffffff901a1990 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  632.338852][   T32]  #1: ffffffff8e7ec888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x687/0xbc0
[  632.350591][   T32] 2 locks held by syz.0.1375/24231:
[  632.362814][   T32]  #0: ffff8880590ca0e0 (&type->s_umount_key#52){++++}-{4:4}, at: deactivate_super+0xd6/0x100
[  632.392662][   T32]  #1: ffffffff8e7ec888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[  632.418584][   T32] 2 locks held by syz.4.1406/24519:
[  632.427227][   T32]  #0: ffffffff901a1990 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  632.438818][   T32]  #1: ffffffff8e7ec888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x687/0xbc0
[  632.455625][   T32] 2 locks held by syz-executor/25371:
[  632.478159][   T32]  #0: ffff88805a4f80e0 (&type->s_umount_key#52){++++}-{4:4}, at: deactivate_super+0xd6/0x100
[  632.509649][   T32]  #1: ffffffff8e7ec888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[  632.529372][   T32] 2 locks held by syz.1.1717/29437:
[  632.536651][   T32]  #0: ffffffff901a1990 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[  632.545990][   T32]  #1: ffffffff8e7ec888 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1b10
[  632.557846][   T32] 1 lock held by syz.6.1752/29721:
[  632.563014][   T32]  #0: ffffffff8e3cf8b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[  632.573563][   T32] 1 lock held by syz.8.1744/29724:
[  632.578930][   T32]  #0: ffffffff8e3cf8b8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[  632.589202][   T32] 
[  632.591632][   T32] =============================================
[  632.591632][   T32] 
[  632.602536][   T32] NMI backtrace for cpu 0
[  632.602559][   T32] CPU: 0 UID: 0 PID: 32 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  632.602589][   T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  632.602604][   T32] Call Trace:
[  632.602612][   T32]  <TASK>
[  632.602622][   T32]  dump_stack_lvl+0x116/0x1f0
[  632.602655][   T32]  nmi_cpu_backtrace+0x27b/0x390
[  632.602687][   T32]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  632.602713][   T32]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  632.602760][   T32]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  632.602802][   T32]  watchdog+0xf3f/0x1170
[  632.602833][   T32]  ? rcu_is_watching+0x12/0xc0
[  632.602861][   T32]  ? __pfx_watchdog+0x10/0x10
[  632.602883][   T32]  ? lockdep_hardirqs_on+0x7c/0x110
[  632.602914][   T32]  ? __kthread_parkme+0x19e/0x250
[  632.602949][   T32]  ? __pfx_watchdog+0x10/0x10
[  632.602974][   T32]  kthread+0x3c2/0x780
[  632.603010][   T32]  ? __pfx_kthread+0x10/0x10
[  632.603048][   T32]  ? rcu_is_watching+0x12/0xc0
[  632.603075][   T32]  ? __pfx_kthread+0x10/0x10
[  632.603114][   T32]  ret_from_fork+0x675/0x7d0
[  632.603150][   T32]  ? __pfx_kthread+0x10/0x10
[  632.603186][   T32]  ret_from_fork_asm+0x1a/0x30
[  632.603231][   T32]  </TASK>
[  632.603242][   T32] Sending NMI from CPU 0 to CPUs 1:
[  632.740283][    C1] NMI backtrace for cpu 1
[  632.740306][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
[  632.740336][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  632.740352][    C1] RIP: 0010:rcu_is_watching+0x12/0xc0
[  632.740387][    C1] Code: 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 53 65 ff 05 f3 d4 02 12 e8 0e 40 c1 09 <48> c7 c3 a8 c2 a4 93 89 c5 83 f8 07 0f 87 82 00 00 00 48 8d 3c ed
[  632.740414][    C1] RSP: 0018:ffffc90000a07e88 EFLAGS: 00000282
[  632.740443][    C1] RAX: 0000000000000001 RBX: ffff88803ea81500 RCX: ffffffff89369638
[  632.740463][    C1] RDX: ffff88801d6b5ac0 RSI: ffffffff8bf1d4c0 RDI: ffffffff8bf1d500
[  632.740484][    C1] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  632.740501][    C1] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000001
[  632.740519][    C1] R13: dffffc0000000000 R14: ffff88807b462000 R15: 0000000000000000
[  632.740538][    C1] FS:  0000000000000000(0000) GS:ffff888124ae7000(0000) knlGS:0000000000000000
[  632.740567][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  632.740586][    C1] CR2: 00000000003ff030 CR3: 000000000e182000 CR4: 00000000003526f0
[  632.740605][    C1] Call Trace:
[  632.740615][    C1]  <IRQ>
[  632.740627][    C1]  dev_hard_start_xmit+0x55b/0x740
[  632.740684][    C1]  __dev_queue_xmit+0xa46/0x4490
[  632.740741][    C1]  ? __local_bh_enable_ip+0xa0/0x120
[  632.740788][    C1]  ? __pfx___dev_queue_xmit+0x10/0x10
[  632.740847][    C1]  ? __lock_acquire+0xb97/0x1ce0
[  632.740921][    C1]  ? lock_acquire+0x179/0x350
[  632.740956][    C1]  ? find_held_lock+0x2b/0x80
[  632.740984][    C1]  ? mark_held_locks+0x49/0x80
[  632.741020][    C1]  ip_finish_output2+0xc38/0x21a0
[  632.741062][    C1]  ? __pfx_ip_finish_output2+0x10/0x10
[  632.741097][    C1]  ? __pfx_ip_skb_dst_mtu+0x10/0x10
[  632.741130][    C1]  ? __pfx_ip_finish_output+0x10/0x10
[  632.741168][    C1]  __ip_finish_output.part.0+0x1b4/0x350
[  632.741206][    C1]  ip_output+0x35f/0xa90
[  632.741242][    C1]  ip_local_out+0x38d/0x4d0
[  632.741278][    C1]  iptunnel_xmit+0x67a/0xad0
[  632.741310][    C1]  geneve_xmit+0x2bc7/0x56c0
[  632.741362][    C1]  ? __pfx_geneve_xmit+0x10/0x10
[  632.741399][    C1]  ? __pfx_netif_skb_features+0x10/0x10
[  632.741445][    C1]  ? dev_hard_start_xmit+0x94/0x740
[  632.741485][    C1]  dev_hard_start_xmit+0x94/0x740
[  632.741533][    C1]  __dev_queue_xmit+0xa46/0x4490
[  632.741577][    C1]  ? mark_held_locks+0x49/0x80
[  632.741612][    C1]  ? __pfx_ip6t_do_table+0x10/0x10
[  632.741649][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[  632.741677][    C1]  ? ip6t_do_table+0xbf5/0x1c30
[  632.741714][    C1]  ? __pfx___dev_queue_xmit+0x10/0x10
[  632.741764][    C1]  ? nf_nat_ipv6_fn+0xff/0x2e0
[  632.741808][    C1]  ? __lock_acquire+0xb97/0x1ce0
[  632.741851][    C1]  ? lock_acquire+0x179/0x350
[  632.741886][    C1]  ? find_held_lock+0x2b/0x80
[  632.741913][    C1]  ? mark_held_locks+0x49/0x80
[  632.741950][    C1]  ip6_finish_output2+0x1184/0x1cf0
[  632.741995][    C1]  __ip6_finish_output+0x3cd/0x1010
[  632.742037][    C1]  ip6_output+0x253/0x710
[  632.742076][    C1]  ndisc_send_skb+0xa85/0x1f50
[  632.742119][    C1]  ? __pfx_ndisc_send_skb+0x10/0x10
[  632.742161][    C1]  ? __pfx_dst_output+0x10/0x10
[  632.742205][    C1]  ? ndisc_alloc_skb+0x319/0x530
[  632.742243][    C1]  ? __asan_memcpy+0x3c/0x60
[  632.742272][    C1]  ndisc_send_rs+0x129/0x670
[  632.742315][    C1]  addrconf_rs_timer+0x40d/0x840
[  632.742352][    C1]  ? __pfx_addrconf_rs_timer+0x10/0x10
[  632.742392][    C1]  ? __pfx_addrconf_rs_timer+0x10/0x10
[  632.742427][    C1]  call_timer_fn+0x19a/0x620
[  632.742462][    C1]  ? __pfx_call_timer_fn+0x10/0x10
[  632.742504][    C1]  ? rcu_is_watching+0x12/0xc0
[  632.742531][    C1]  ? __pfx_addrconf_rs_timer+0x10/0x10
[  632.742567][    C1]  __run_timers+0x6ef/0x960
[  632.742607][    C1]  ? __pfx___run_timers+0x10/0x10
[  632.742656][    C1]  run_timer_base+0x114/0x190
[  632.742690][    C1]  ? __pfx_run_timer_base+0x10/0x10
[  632.742726][    C1]  ? rcu_is_watching+0x12/0xc0
[  632.742761][    C1]  run_timer_softirq+0x1a/0x40
[  632.742795][    C1]  handle_softirqs+0x219/0x8e0
[  632.742828][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  632.742862][    C1]  __irq_exit_rcu+0x109/0x170
[  632.742890][    C1]  irq_exit_rcu+0x9/0x30
[  632.742918][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  632.742945][    C1]  </IRQ>
[  632.742953][    C1]  <TASK>
[  632.742962][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  632.742992][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  632.743020][    C1] Code: a7 78 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 73 25 28 00 fb f4 <e9> 0c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  632.743046][    C1] RSP: 0018:ffffc90000197de8 EFLAGS: 000002c2
[  632.743065][    C1] RAX: 00000000003f6909 RBX: 0000000000000001 RCX: ffffffff8b61f2d9
[  632.743082][    C1] RDX: 0000000000000000 RSI: ffffffff8daff4f5 RDI: ffffffff8bf1d540
[  632.743099][    C1] RBP: ffffed1003ad6b58 R08: 0000000000000001 R09: ffffed10170a6655
[  632.743116][    C1] R10: ffff8880b85332ab R11: 0000000000000000 R12: 0000000000000001
[  632.743132][    C1] R13: ffff88801d6b5ac0 R14: ffffffff908359d0 R15: 0000000000000000
[  632.743155][    C1]  ? ct_kernel_exit+0x139/0x190
[  632.743189][    C1]  default_idle+0x13/0x20
[  632.743221][    C1]  default_idle_call+0x6c/0xb0
[  632.743254][    C1]  do_idle+0x38d/0x500
[  632.743281][    C1]  ? __pfx_do_idle+0x10/0x10
[  632.743307][    C1]  ? trace_sched_exit_tp+0x2f/0x120
[  632.743353][    C1]  cpu_startup_entry+0x4f/0x60
[  632.743380][    C1]  start_secondary+0x21d/0x2b0
[  632.743415][    C1]  ? __pfx_start_secondary+0x10/0x10
[  632.743455][    C1]  common_startup_64+0x13e/0x148
[  632.743492][    C1]  </TASK>
[  632.745683][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  633.339562][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  633.365318][   T32] Kernel panic - not syncing: hung_task: blocked tasks
[  633.372235][   T32] CPU: 0 UID: 0 PID: 32 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  633.381404][   T32] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  633.391482][   T32] Call Trace:
[  633.394810][   T32]  <TASK>
[  633.397754][   T32]  dump_stack_lvl+0x3d/0x1f0
[  633.402378][   T32]  vpanic+0x640/0x6f0
[  633.406486][   T32]  panic+0xca/0xd0
[  633.410234][   T32]  ? __pfx_panic+0x10/0x10
[  633.414766][   T32]  ? preempt_schedule_thunk+0x16/0x30
[  633.420169][   T32]  ? nmi_trigger_cpumask_backtrace+0x1b1/0x300
[  633.426362][   T32]  ? watchdog+0xe48/0x1170
[  633.430819][   T32]  ? watchdog+0xe3b/0x1170
[  633.435253][   T32]  watchdog+0xe59/0x1170
[  633.439514][   T32]  ? rcu_is_watching+0x12/0xc0
[  633.444296][   T32]  ? __pfx_watchdog+0x10/0x10
[  633.448987][   T32]  ? lockdep_hardirqs_on+0x7c/0x110
[  633.454214][   T32]  ? __kthread_parkme+0x19e/0x250
[  633.459375][   T32]  ? __pfx_watchdog+0x10/0x10
[  633.464083][   T32]  kthread+0x3c2/0x780
[  633.468184][   T32]  ? __pfx_kthread+0x10/0x10
[  633.472959][   T32]  ? rcu_is_watching+0x12/0xc0
[  633.477779][   T32]  ? __pfx_kthread+0x10/0x10
[  633.482421][   T32]  ret_from_fork+0x675/0x7d0
[  633.487067][   T32]  ? __pfx_kthread+0x10/0x10
[  633.491705][   T32]  ret_from_fork_asm+0x1a/0x30
[  633.496518][   T32]  </TASK>
[  633.499893][   T32] Kernel Offset: disabled
[  633.504244][   T32] Rebooting in 86400 seconds..