last executing test programs:

2m42.542903214s ago: executing program 3 (id=3689):
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001bc0)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x168081, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000001e40)="2e271caeedc13d69b4fc13780654c968af9f176b5bbf60445af0b193e8756a01222effbf37f05a957cb25aa6ff48fc0f820814b41e96d12cf8677427b39d1d0c92c87beaf864f5f006a2bd510c18feaf2fec4e848ef5f5f0cba87d0fa2d929", 0x5f) (fail_nth: 18)

2m40.490612524s ago: executing program 3 (id=3695):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2b, 0x6, 0x0)
bind$auto(0x3, &(0x7f0000000140)=@can, 0x3)
recvfrom$auto(0x3, 0x0, 0x42, 0x6, 0x0, 0xfffffffffffffffd)
fcntl$auto(0x3, 0x4, 0xa553)
syz_genetlink_get_family_id$auto_ethtool(0x0, r0)
r1 = socket(0xb, 0x1, 0xc)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
bind$auto(0x3, 0x0, 0x6a)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00'})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x24004080}, 0x20040894)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x45}, 0x2000c010)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x1a0000, 0x0)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
mmap$auto(0x0, 0x4, 0x3, 0xeb1, r2, 0x8000)
mmap$auto(0x0, 0x3, 0xdf, 0x18, r3, 0x8000)
r4 = socket(0xa, 0x3, 0x0)
setsockopt$auto(r4, 0x29, 0x3b, &(0x7f0000000080)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\x1e\x1b\xc3 \xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\xde\x14\xe4\xa5\xfe\xb5', 0x110)
setsockopt$auto(0x400000000000003, 0x29, 0x39, 0xffffffffffffffff, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2c, 0x2, 0xc)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x8e001, 0x0)
close_range$auto(r5, r3, 0x4)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r6)

2m39.773219111s ago: executing program 3 (id=3701):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f0000000340)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x0e\xfa{\x15\x1d\x11\x85o\xf1g\xb7\xb3\xdd\\\xfdG\xa9\x16R\xa4\xe9\xd1\xf4S\x94\xe1\x9c\x88\x1b\xe6.\x11\xa3\xe1\xddi\xb66\xaa\xa3\xc7iB\xc84\x11\xac\xfd\x1a*\xd4a\xfe\x05\x96\x0ec\x12\xea\xd5K\xea\xda\xa3\xfa\xc3\xedr\x17\xa5\x1c\x88{v\xb8\bj\x84\xd8g\x85r\xe7n\x7f^\x9d\xc7Z.Uc*J', 0x81)
mmap$auto(0x0, 0xf1e9, 0x7, 0x40000eb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x120)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3)
bpf$auto(0x0, 0x0, 0x1ff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048004)
socket(0x2000000000000021, 0x2, 0x10000000000002)
r2 = socket(0x32, 0x2, 0x7)
r3 = bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_11={0x8, 0x100000001, 0x10001, 0xd67, 0x1007, 0x1, 0x9, r2}, 0xd)
bpf$auto(0x1, &(0x7f0000000080)=@iter_create={r3, 0x98}, 0xf)
r4 = socket(0x25, 0x1, 0x109)
bind$auto(r4, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
rseq$auto(&(0x7f0000000180)={0xe, 0x401, 0x0, 0x4, 0x6, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/block/ram0/integrity/device_is_integrity_capable\x00', 0x62e01, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000040)="bdcd", 0x2)
close_range$auto(0x2, 0x8, 0x0)
write$auto(0xca, 0x0, 0x2d9)
r6 = socket(0x2, 0x1, 0x106)
connect$auto(r6, &(0x7f00000001c0)=@in={0x2, 0x3}, 0x55)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)

2m38.851596106s ago: executing program 3 (id=3706):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
r1 = socket(0x11, 0x3, 0x0)
mmap$auto(0x200000000, 0x5, 0x8, 0x40009b72, 0x2, 0x8000)
r2 = io_uring_setup$auto(0x89, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r2)
sendmsg$auto_NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x130, r3, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_AP_SETTINGS_FLAGS={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x9}, @NL80211_ATTR_SUPPORTED_SELECTORS={0x71, 0x14e, "a75ee966bb4e07e64012e5c11e03d05f852c67d8e238c861023c06a39deeff4c1298de726063c7671f306af2bf11901ff71a2cf2ab13136fddbf22df1a418303dd8deaf09b5fe37cbab0c73636adfb6a0ff4e3f693ba3a018850ce1dac063865a5368d15450e4c7da5b9ac28ba"}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_SAE_PASSWORD={0x58, 0x115, "84862451deafea6f76a8053574615face8d827b86d00e33737fa83129736592ac0dbc7bc08fd4271ec97b09e7568e64ab863e9ff94e41a8397a917762c48628aeca69b9708db71ae7ad5866cdbbb5cb4431c0eb4"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "a683deda8da05395c7785d540971eb30c83838cdb45d036b"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x11, 0xf9, "cc47c79bf532aa6b4b04b8f10c"}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x5}]}, 0x130}, 0x1, 0x0, 0x0, 0x20000090}, 0x4891)
close_range$auto(0x2, 0xa, 0x0)
setsockopt$auto_SO_RCVTIMEO_NEW(r1, 0x1ff, 0x42, &(0x7f0000000040)=']J\x00', 0xc5dc)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40602, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000dc0), r4)
sendmsg$auto_IPVS_CMD_GET_DEST(r4, &(0x7f0000003a40)={0x0, 0x0, &(0x7f0000003a00)={&(0x7f0000000e80)={0x1c, r5, 0xc0dce8a66cb0a7ff, 0x70bd27, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x5, 0x2, 0x0, 0x1, [@generic="f1"]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040011}, 0x40010)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r6 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r6, 0x114, 0x2714, 0xfffffffffffffffc, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xf15a}, 0x6, 0x8, 0x5)
read$auto(0x3, 0x0, 0x8080)
openat$auto_proc_page_owner_operations_page_owner(0xffffffffffffff9c, &(0x7f0000000040), 0x2482, 0x0)
lseek$auto(0x3, 0x8, 0x3)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000840)='./cgroup.cpu/memory.stat\x00', 0x80200, 0x0)
pread64$auto(r7, 0x0, 0x6, 0x40008)

2m36.807209911s ago: executing program 3 (id=3715):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f0000000340)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x0e\xfa{\x15\x1d\x11\x85o\xf1g\xb7\xb3\xdd\\\xfdG\xa9\x16R\xa4\xe9\xd1\xf4S\x94\xe1\x9c\x88\x1b\xe6.\x11\xa3\xe1\xddi\xb66\xaa\xa3\xc7iB\xc84\x11\xac\xfd\x1a*\xd4a\xfe\x05\x96\x0ec\x12\xea\xd5K\xea\xda\xa3\xfa\xc3\xedr\x17\xa5\x1c\x88{v\xb8\bj\x84\xd8g\x85r\xe7n\x7f^\x9d\xc7Z.Uc*J', 0x81)
mmap$auto(0x0, 0xf1e9, 0x7, 0x40000eb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x120)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3)
bpf$auto(0x0, 0x0, 0x1ff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048004)
socket(0x2000000000000021, 0x2, 0x10000000000002)
r2 = socket(0x32, 0x2, 0x7)
r3 = bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_11={0x8, 0x100000001, 0x10001, 0xd67, 0x1007, 0x1, 0x9, r2}, 0xd)
bpf$auto(0x1, &(0x7f0000000080)=@iter_create={r3, 0x98}, 0xf)
r4 = socket(0x25, 0x1, 0x109)
bind$auto(r4, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
rseq$auto(&(0x7f0000000180)={0xe, 0x401, 0x0, 0x4, 0x6, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/virtual/block/ram0/integrity/device_is_integrity_capable\x00', 0x62e01, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000040)="bdcd", 0x2)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC0D0p\x00', 0x101002, 0x0)
r6 = socket(0x2, 0x1, 0x106)
connect$auto(r6, &(0x7f00000001c0)=@in={0x2, 0x3}, 0x55)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)

2m36.271785662s ago: executing program 2 (id=3719):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptyxc\x00', 0x0, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x2, 0x4)
sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000a80)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010008000000ffdbca25100400000000018008000100862c24d3409ef81f7846845d827723b37784c5b3f0cd3cadb72e3a42597641db25d5c233d60e99c223a7a4a8f1ec5b630bf6c561b2bf4888c1b5622f01acc65f3504272af8e5668f5831e5721a5105291837bf92bab076f42fa62a5496ff6dedac34ca6d7c52090d125fe6dd499701eb48645d2b4af60e1e5cea023dce6ded852bf1c5dbe99801912352f86ce8fae7298d11bd869ca5b24a44e8ed74132797dc4fc238d6cad542ab1bf31caa2c6eba", @ANYRES32=0x0, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x80000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
socket(0x2, 0x2, 0x0)
ioctl$auto_VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f00000000c0)={0x9, <r2=>r1})
r3 = socket(0xa, 0x1, 0x84)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = setfsuid$auto(0xee00)
r6 = setfsuid$auto(0xee01)
setresuid$auto(r5, r6, r5)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(r7, &(0x7f0000000940)=@nl=@proc={0x10, 0x0, 0x25dfdbfd}, 0x1e)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000300), r3)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000740)={'bridge0\x00', <r9=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000780)={'vlan1\x00', <r10=>0x0})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000007c0)={'wg2\x00', <r11=>0x0})
sendmsg$auto_ETHTOOL_MSG_MM_GET(r1, &(0x7f0000000a40)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000400)={0x1c4, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_MM_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x68}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}]}, @ETHTOOL_A_MM_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_MM_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}]}, @ETHTOOL_A_MM_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}, @ETHTOOL_A_MM_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9b03}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3ff}]}, @ETHTOOL_A_MM_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x66}]}, @ETHTOOL_A_MM_HEADER={0x4}, @ETHTOOL_A_MM_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}, @ETHTOOL_A_MM_HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xec}]}, @ETHTOOL_A_MM_HEADER={0x4}]}, 0x1c4}, 0x1, 0x0, 0x0, 0x40}, 0x200088c1)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="18000000", @ANYRES16=r8, @ANYBLOB="000446000300000001000000000000000000"], 0x18}, 0x1, 0x0, 0x0, 0x20000010}, 0x4048850)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
prctl$auto_PR_SET_CHILD_SUBREAPER(0x24, 0x9, 0x81, 0x6cf5, 0x280000000000000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'team_slave_1\x00', <r12=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY_NETNS(r2, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f0000000d80)=ANY=[@ANYBLOB="40040000", @ANYRES16=r8, @ANYBLOB="10000010700001dcdf25310000000400af000800030018b8f9415e8bd9a850eea981a8c5c786fef066fd1107595fcdedf930089545a00b4f997fa08bceab5bae7e9f132124d40f65ad4bcae86e4286aa9cccf5716c5dbcf12fa93fc857d7fcdef0b156f45ffa6fc7218f843e4500da58eb2cfb1446e5d2ca1d2bd395d727eedda23f39616a408731759873300a401bb53b143b7da8cad7a5a0392c6f54a675d1a5ba7625903743426919215cebe23dea31719cf1579b025c1d2dd534046a0798a3c279178590bba65f3826eba9a3740cc54d2a6c15d335d28948b58518ab29f0001ab0ba29307883d7da619be6771155bf7bed", @ANYRES32=r12, @ANYBLOB="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"], 0x440}, 0x1, 0x0, 0x0, 0x4000000}, 0x400)
socket(0x21, 0x2, 0x2)
open(&(0x7f0000000100)='.\x00', 0x595082, 0x0)

2m36.122136993s ago: executing program 2 (id=3720):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r0, 0x5425, 0x0)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
ioctl$auto_TCFLSH2(r1, 0xc0285443, 0x0)

2m35.748931906s ago: executing program 3 (id=3723):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="df250c0000000000000000"], 0x14}}, 0x24048004)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x24, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x24}}, 0x4000)
sendmsg$auto_NFSD_CMD_VERSION_GET(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000240)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x3d000000, 0xffffffffffff0001, 0x15)
socket(0x10, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

2m35.706206943s ago: executing program 2 (id=3724):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000380)="c8051b2335689829568faa19ba0ef01f1316fb9b3744", 0x16)

2m35.291854237s ago: executing program 2 (id=3726):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm1c/sub5/hw_params\x00', 0x0, 0x0)
pread64$auto(r0, 0x0, 0x3, 0x5ef6)

2m35.182992035s ago: executing program 2 (id=3734):
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
chdir$auto(&(0x7f0000000080)='}[,&*}\x00')
write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000100)="0fc67ed1a05bd1766afdd4ab58f54f9a1e2d3158722adfb86ad50149d2a4a30a73444c086782d80ee757b40096f3d7f22cef22c7e6924e9fc93431ca894836d589b315652e8247021f64ef31bd89a958ed206e8ef8b2ae08919681c6b52a64d0f1ad0fa8d4b565c6b6241bdde7c28316c87dea004de471", 0x77)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000240)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
r0 = open(&(0x7f00000002c0)='}[,&*}\x00', 0x103040, 0x0)
openat$auto_tracing_entries_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/tracing/buffer_size_kb\x00', 0x40000, 0x0)
mmap$auto(0x0, 0x40, 0x4e04ab16, 0xff, r0, 0x0)
faccessat2$auto(r0, &(0x7f00000001c0)='}[,&*}\x00', 0x2, 0x1)

2m35.070400958s ago: executing program 2 (id=3736):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x80000, 0x2003f2, 0x15)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="df250c0000000000000000"], 0x14}}, 0x24048004)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x24, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x24}}, 0x4000)
sendmsg$auto_NFSD_CMD_VERSION_GET(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000240)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

2m20.630387874s ago: executing program 32 (id=3723):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="df250c0000000000000000"], 0x14}}, 0x24048004)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x24, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x24}}, 0x4000)
sendmsg$auto_NFSD_CMD_VERSION_GET(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000240)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x3d000000, 0xffffffffffff0001, 0x15)
socket(0x10, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

2m19.943859144s ago: executing program 33 (id=3736):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x80000, 0x2003f2, 0x15)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="df250c0000000000000000"], 0x14}}, 0x24048004)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x24, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x24}}, 0x4000)
sendmsg$auto_NFSD_CMD_VERSION_GET(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000240)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

2m8.609040786s ago: executing program 4 (id=3795):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card1/pcm1c/sub5/hw_params\x00', 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001640), r1)
socket(0x18, 0x5, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0)
getsockopt$auto(0xffffffffffffffff, 0x114, 0x271f, 0xfffffffffffffffc, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, 0x0, 0x101400, 0x0)
socket(0x2000000000000021, 0x2, 0x10000000000002)
ioctl$auto(0x3, 0x541b, 0x38)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(r1, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f00000001c0)={0x14, r2, 0x1, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4)
pread64$auto(r0, 0x0, 0x3, 0x5ef6)

2m8.227428607s ago: executing program 4 (id=3796):
mmap$auto(0x0, 0x2020009, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x5, 0x4000000000db, 0xeb1, 0x401, 0x8000)
capget$auto(0x0, 0xfffffffffffffffe)
capset$auto(0x0, &(0x7f0000000000)={0x2, 0x10000002, 0x6})
r0 = openat$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
setsockopt$auto_SO_BUF_LOCK(r0, 0x5c, 0x48, &(0x7f0000000080)='\\@\x00', 0x689c)
write$auto_safesetid_gid_file_fops_securityfs(r0, 0x0, 0xea)
r1 = fcntl$auto(0x3, 0x4, 0xa553)
r2 = socketpair$auto(0x1b, 0x5, 0x8000000000000000, 0x0)
pipe2$auto(&(0x7f0000000100)=r1, 0x7ff)
r3 = socket(0xa, 0x2, 0x0)
keyctl$auto(0x2, 0x0, 0xee00, 0xee00, 0x5fd6b27b)
setsockopt$auto(r3, 0x29, 0x1e, 0x0, 0x0)
r4 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x1a1000, 0x0)
ioctl$auto_PROCMAP_QUERY(r4, 0xc0686611, &(0x7f0000000080)={0x67, 0x0, 0x7fff, 0x5, 0x80000000003, 0xfffbffffffffff80, 0x80000001, 0xff, 0x6, 0x7, 0xfbfffffe, 0x5, 0x0, 0x7, 0x80000005})
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r5, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x85)
ioctl$auto_SNDRV_PCM_IOCTL_STATUS32(r2, 0x806c4120, 0x0)
madvise$auto(0x0, 0x2003f0, 0x15)

2m7.720638438s ago: executing program 4 (id=3798):
socketpair$auto(0x3fd, 0x5, 0x1, 0x0) (async)
io_uring_setup$auto(0x1, 0x0) (async)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video59\x00', 0xa200, 0x0)
socket(0x2, 0x3, 0x6) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101c81, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x0, 0x5, 0x0) (async)
openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x8a001, 0x0) (async)
epoll_create$auto(0x20003f)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
fcntl$auto(r0, 0x410, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r1, 0x4068aea3, &(0x7f0000000080)={0xa8})
r3 = open(&(0x7f0000000100)='.\x00', 0x595002, 0x408)
linkat$auto(r3, 0x0, 0xffffffffffffff9c, &(0x7f0000000080)='&&\x00', 0x1000) (async)
r4 = openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/tracing/free_buffer\x00', 0x1, 0x0)
write$auto_tracing_free_buffer_fops_trace(r4, &(0x7f00000011c0)="ce", 0x1) (async)
socket(0x2, 0x1, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x10, 0x2, 0xc)
mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)

2m7.297380234s ago: executing program 4 (id=3799):
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb8, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
open_tree_attr$auto(r0, 0x0, 0x45, 0x0, 0x2)
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r1 = socket(0x2a, 0x2, 0x1)
connect$auto(r1, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x1, 0xfffffffe}, 0x55)
openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
r2 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000500)='/dev/bus/usb/023/001\x00', 0x201, 0x0)
ioctl$auto_USBDEVFS_DISCONNECT_CLAIM(r2, 0x8108551b, &(0x7f0000000540)={0x0, 0x6, "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"})
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10002}, 0x1)
r3 = socket(0x2, 0x80002, 0x73)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_l2tp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x3c, r5, 0x1, 0x70bd2d, 0x25dfdbf6, {}, [@L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x8}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x3b}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x11e789c}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_FD={0x8, 0x17, r3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x48080)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x801, 0x84)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
ioctl$auto_KVM_GET_SUPPORTED_CPUID(r7, 0xc008ae05, &(0x7f0000000040)={0xfffffffa, 0x0, [{0x9, 0x1, 0x9, 0x5, 0xfffffeff, 0x400, 0x1000}]})
ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$auto(0x3, 0x4048aec9, r6)
mmap$auto(0x0, 0x8, 0xdf, 0x29b72, 0x2, 0x8000)
openat$auto_fops_atomic_t_ro_(0xffffffffffffff9c, &(0x7f0000000080), 0x10000, 0x0)

2m6.885902679s ago: executing program 4 (id=3801):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f0000000340)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k\x0e\xfa{\x15\x1d\x11\x85o\xf1g\xb7\xb3\xdd\\\xfdG\xa9\x16R\xa4\xe9\xd1\xf4S\x94\xe1\x9c\x88\x1b\xe6.\x11\xa3\xe1\xddi\xb66\xaa\xa3\xc7iB\xc84\x11\xac\xfd\x1a*\xd4a\xfe\x05\x96\x0ec\x12\xea\xd5K\xea\xda\xa3\xfa\xc3\xedr\x17\xa5\x1c\x88{v\xb8\bj\x84\xd8g\x85r\xe7n\x7f^\x9d\xc7Z.Uc*J', 0x81)
mmap$auto(0x0, 0xf1e9, 0x7, 0x40000eb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x120)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x7}, 0x3)
bpf$auto(0x0, 0x0, 0x1ff)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x24048004)
socket(0x2000000000000021, 0x2, 0x10000000000002)
r2 = socket(0x32, 0x2, 0x7)
r3 = bpf$auto(0x0, &(0x7f0000000080)=@bpf_attr_11={0x8, 0x100000001, 0x10001, 0xd67, 0x1007, 0x1, 0x9, r2}, 0xd)
bpf$auto(0x1, &(0x7f0000000080)=@iter_create={r3, 0x98}, 0xf)
r4 = socket(0x25, 0x1, 0x109)
bind$auto(r4, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
rseq$auto(&(0x7f0000000180)={0xe, 0x401, 0x0, 0x4, 0x6, 0x2}, 0x8000, 0x0, 0x6)
write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000040)="bdcd", 0x2)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/pcmC0D0p\x00', 0x101002, 0x0)
r5 = socket(0x2, 0x1, 0x106)
connect$auto(r5, &(0x7f00000001c0)=@in={0x2, 0x3}, 0x55)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x3}, 0x55)

2m5.554431295s ago: executing program 4 (id=3804):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="df250c0000000000000000"], 0x14}}, 0x24048004)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x24, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x24}}, 0x4000)
sendmsg$auto_NFSD_CMD_VERSION_GET(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000240)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

1m50.42470224s ago: executing program 34 (id=3804):
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
listen$auto(0x3, 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
keyctl$auto(0x1f, 0x1, 0x6, 0x0, 0x3ff)
madvise$auto(0x0, 0x2003f2, 0x15)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYRES8, @ANYRES16, @ANYBLOB="df250c0000000000000000"], 0x14}}, 0x24048004)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_THREADS_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x24, r3, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@NFSD_A_SERVER_LEASETIME={0x8, 0x3, 0x85}, @NFSD_A_SERVER_THREADS={0x8, 0x1, 0x2}]}, 0x24}}, 0x4000)
sendmsg$auto_NFSD_CMD_VERSION_GET(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
madvise$auto(0x0, 0x200007, 0x19)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x404001, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000240)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
open(&(0x7f0000000100)='.\x00', 0x591002, 0x408)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0xb74, 0x66a)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
socket(0x10, 0x3, 0xa)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x54)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)

1m43.193321888s ago: executing program 1 (id=3878):
getitimer$auto(0x7f, &(0x7f0000000080)={{0x8, 0x6}, {0x8001, 0xfffffffffffffff8}})
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
prctl$auto(0x23, 0x7, 0x7fffffffefff, 0x0, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
io_uring_setup$auto(0x1d48, &(0x7f0000000340)={0x7fffffff, 0x10, 0x2, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0x6, 0x8, 0x1, 0x8000001f, 0x100, 0x4, 0x101, 0x7, 0x8000000000000003}, {0x100, 0x1, 0x2, 0x5, 0x11, 0x101, 0x876c5, 0xc9, 0x3}})

1m42.18642005s ago: executing program 1 (id=3881):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/scsi/device_info\x00', 0x101040, 0x0)
unshare$auto(0x40000080)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000000000)={0x1c, 0x0, 0x5, 0x70bd2b, 0x25dfdbfd, {}, [@GTPA_MS_ADDRESS={0x8, 0x5, @local}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4c000}, 0x80)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYBLOB="6a0051b1"], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

1m41.480812554s ago: executing program 1 (id=3884):
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x6, 0x2, 0x15)
r0 = prctl$auto(0x403c, 0x1, 0x4, 0x3, 0x9)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r1 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'virt_wifi0\x00', <r3=>0x0})
r4 = socket(0x1d, 0x2, 0x7)
r5 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r6=>0x0})
bind$auto(r4, &(0x7f0000000000)=@can={0x1d, r6}, 0x6a)
ioctl$auto_XFS_IOC_FREESP64(r0, 0x40305825, &(0x7f0000000080)={0x4, 0x4, 0x0, 0xfaec, 0x8d2, <r7=>0x0})
shmctl$auto_IPC_STAT(0x10, 0x2, &(0x7f0000000200)={{0x3a1f, <r8=>0xffffffffffffffff, 0xffffffffffffffff, 0x7fff0000, 0x7fff, 0x9, 0xff7f}, 0x1, 0x4, 0x0, 0x1, @raw=0x3, @raw=0x3, 0x7, 0x0, &(0x7f00000000c0)="df7a899a3e867a5d1d635c276310e60bc6866f1d4a89e25a77cdfa140aca03bb2b5203f9c98fadf46c30716e0fa59d397e31cbcd2177f821f33e92f8", &(0x7f0000000100)="182aeb02b3ae4d79a2528cb01564345634c34bd6c332a7fd692c9fd910967089b65c585a715024767f42b64301f891fce9d79b3524725e9622595f634afd2e297718a131168ff420fc183c73ec964519809bb63e011fd561aa6bb11ff14b2753bd9511883d717877d23786dbb14e3c6532d0e381ec30c81da7c25f28028a2a0f85f2717dba8d95725bd88140a7829f401265c2b0b7b7e8e84b66a1a22cd81edd9f60e2dddc51abdf867b06d829b05a722e7cff175f7064ac8dca5aee66ca770df40e50e72e8b0ed61752141d61b088d04b0e825f97f484985bd8eb51d94b3e0f8ea4ded0125c"})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'syzkaller0\x00', <r9=>0x0})
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000001900)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000018c0)={&(0x7f00000002c0)={0x15c8, 0x0, 0x4, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_FEATURES_HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x400}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x4}, @ETHTOOL_A_FEATURES_WANTED={0x1504, 0x3, 0x0, 0x1, [@generic="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", @nested={0x14, 0x65, 0x0, 0x1, [@typed={0x8, 0x123, 0x0, 0x0, @u32=0x80000000}, @nested={0x4, 0x149}, @nested={0x4, 0xad}]}, @typed={0x4, 0xb3}, @typed={0x8, 0x58, 0x0, 0x0, @pid=r7}, @nested={0x71, 0x64, 0x0, 0x1, [@typed={0x8, 0x7e, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8, 0xcc, 0x0, 0x0, @uid=r8}, @generic="530b27bb88a9660d4bcfbdcf8e9e14e5dab00c761f035a6ca5596050e9978b1e9d3f519e9e0c908f18ce5e0f7041f0c946aa60bbf7ab0eae4a371bc5b7fb9787021a86ad60fe2f0500716d65f1c44512f0f883e0e779ae9b37ca46c3c1"]}, @nested={0x103, 0x149, 0x0, 0x1, [@generic="33ccc84805292700a0ec400e5235789706e3ed905d7ce898dbf18a3661fcb1529e98a38a2181448ea6ea90511ae4a47dcfc35157d02fa0cd7be33c75a3c9593f47fc299f1baa95dac7b4b150fa064db7a3cc6cc8df8e42835080b37e18036dfb518886c7d9d755522bb5200ae6a0807914473f1d948d76f5c886d4a54f0477d67afe0300833670aada651901f1c3fb6bfba746d082f6ff4d533ffd3efe5e0bdfbc5746a9e6de51e28d6336d893323d51078669a172cd4726448a85143e3c0dbe2a05072cb17b25c9", @nested={0x4, 0x66}, @generic="2d57916c827e1b2cf8d41a753d84f5ab92cc1d41d9b202", @nested={0x4, 0x15a}, @generic="447cbcafc367b6ff2a5eca9f404ddc2caf5637ee691abf7c"]}, @nested={0x365, 0x122, 0x0, 0x1, [@typed={0x4, 0x14c}, @generic="54dca482b37d2e664220b4c4787bc6d72e279b54ff5817e51d14520598e95657846f163661c315767ef3b370d068f82255eb5e1306e200186209f1ef917b4032d8643816153d87230e360c3baebe283b747042a7bf9dfce73a038e32e477d3aefb3faa832376830f9d15d1b8daab46d19c4a73a8a1d39ead351dda8fa93d925ac22f705a4051805e8d7a9649f7deca1b6274cf6ce9", @typed={0x28, 0x2d, 0x0, 0x0, @binary="113f2268dc394c71d710ddb18aaf66f922a67eade9563de5354a5291787601e5a01493e2"}, @generic="3fc04df88c5fad00e60710642d0cb4c0b984e9d51dffacfe421dc79e1b3ddf5a6cbbc72596fdda5cb04625579a3b5370fa714e7915f898be3d44004153b3fff36350fcf8f2d823599aee957b365e15dff1bbec8fbe3f886f94d1557c234941e0c4fec8cd611d2220cd753f5d626302b68d45e8e9676fdb10e548dafc9fbdf1a3996aeda1e419d9d66285ba5ba4e471b46050f1df2c8deb8ccb4171488c18df24b0a7588b24bfcfd89b5b5418fe3e37c1ee10d806914f123e652901eb24241f60b336ddfda58f1ae18a0848af937c357e986136c970f3125b80095de2dea3c2093ac1b816238d231440a6", @generic="27d6f111cf74851a61a1687700a3e9a39124338850ef8355bd3de7bd79c19a9948eaddc3d2f28b4a93e617a158d5578b72963ad4f8c1f6944704b42af399ec67aabbf8f09788656f512aaefbc8747ce806bdd18b266a23938a351db4e9d7cd5e948db2f68c1f8c1754aa458f4e102b10f4bd2e236d789b5325f68899f29bf5bc71256d8f1b36b6367cdd9fff7aaebfb8264fc5bace3f1bca2b15980e0c16e09a95f13d9f20ef60d2796eb57be53838890b27916924c96ca603bb13281f40c9607136f377b53f42e17b433feed1bc182e74bc2a745ee140feb3a5fe9c7830e4eb3d8628", @generic="593ed8677e1aa01e8536b78a6c8ad410f4f1ab68829d28c8fadec6dec5986da630ead28963bfc3ca15d0f2c4ecc2caa920cbecfeebdb1fa1778851c6420d18fa2d16b0806c5718ba131af7d565730cc9d15565f65be60e42b093bf0708ee7345d51ba587271c072ce55e3fba99a97b47ef5f91f8a85ce51eb2611e510f62039d6b09349ec800fca09154057fcc724384acecc555904da0b23e38c5b477b20d43959a002438a66191b7329bcb92285740cdb411d88de624d249fa0b964a370948541363ea52dd0e", @nested={0x4, 0xf3}, @typed={0x8, 0xd2, 0x0, 0x0, @u32=0x8df}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xfffffffa}]}]}, 0x15c8}}, 0x42001)
io_uring_register$auto(0xffffffffffffffff, 0x1f, 0x0, 0x1)
r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r12=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000006700)={0x24, r10, 0x13, 0x70bd2e, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r12}, @NL80211_ATTR_WIPHY_FREQ={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894)
r13 = io_uring_setup$auto(0x6, 0x0)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000080), r13)
sendmsg$auto_NL80211_CMD_START_AP(r1, &(0x7f0000001ac0)={&(0x7f0000001940)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001a80)={&(0x7f0000001980)={0xc4, r10, 0x800, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_FILS_ERP_USERNAME={0x14, 0xf9, "ac0153dde2a14e075dd7ef62f5e0ee90"}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r13}, @NL80211_ATTR_PMKR0_NAME={0x92, 0x102, "ecf93c95b3f1a7d3c6cc85c44238aa2d0533d753a9e4b2060afaeeadd01c7884201859d84036113386ae58ef459b27b9e3aa46c8adb37733865665042372b7d25f5b1efce7dcc04f6037d4afa4a455f3f5dae110855d9f12bfaa1c6625bad5eed1c0f3d6bd01b79f2732e981ff42ce6641323fa1982569acc6e3248a2acb872ce8a8b85bc3e1c0aae9989b82b7ea"}]}, 0xc4}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)

1m39.082013873s ago: executing program 1 (id=3890):
socket(0xa, 0x5, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyprintk\x00', 0x109401, 0x0)
unlink$auto(0x0)
close_range$auto(0x2, 0xa, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
socket(0xa, 0x3, 0x3a)
setsockopt$auto(0x400000000000003, 0x29, 0xd2, 0x0, 0x5b)
fanotify_init$auto(0x65, 0x2)
pipe$auto(0x0)
dup2$auto(0x5, 0x4)
splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9)
write$auto(0x6, 0x0, 0x100000001)

1m38.000413869s ago: executing program 1 (id=3894):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x103080, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
getsockopt$auto_SO_MARK(r2, 0x10001, 0x24, &(0x7f0000000040)='/proc/self/net/ip_vs_conn\x00', &(0x7f00000000c0)=0x9)
move_pages$auto(0x0, 0x4, &(0x7f0000000200)=0x0, &(0x7f0000000480)=0x6456, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x2, 0x80002, 0x1)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
connect$auto(0x3, 0x0, 0x58)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket(0x2, 0x801, 0x106)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0xc, 0x0, 0x4)
listen$auto(0x3, 0x81)
setgroups$auto(0xe32, 0x0)
r4 = socket(0x2b, 0x1, 0x0)
sendmmsg$auto(r4, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x9, 0xfffffffd}, 0x1}, 0x5, 0x20000000)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000280), r4)
waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000080)={@siginfo_0_0={0x4, 0x8, 0x35764a2e, @_sigpoll={0x5}}}, 0x8, 0x0)
sendmsg$auto_IPVS_CMD_ZERO(r3, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x20000805)
io_uring_setup$auto(0x6, 0x0)

1m37.260641741s ago: executing program 1 (id=3897):
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
unshare$auto(0x8000000)
semget$auto(0x0, 0x2e4a, 0x8000)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x4, 0x0)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x0, 0x36ec}, 0x1f4, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r3, &(0x7f00000000c0)="c90d1b5d508a", 0x6)
r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000000)={0x1c, r4, 0x1, 0x870bd2b, 0x25dfdbfc, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x8, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x4}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000)
ioctl$auto(0x3, 0x8, r1)
ioctl$auto_KVM_CREATE_VM(r0, 0x4040aea0, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x2000, 0x0)

1m25.504853614s ago: executing program 6 (id=3940):
r0 = openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/block/sda/sched/read0_fifo_list\x00', 0x2000, 0x0)
read$auto_blk_mq_debugfs_fops_blk_mq_debugfs(r0, &(0x7f0000000040)=""/163, 0xa3)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
r2 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto(r1, 0x560f, r2)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb1\x00', 0x5512c0, 0x0)
write$auto_console_fops_tty_io(r3, &(0x7f0000000000)="c80d1b5d399b3b", 0xfdef)

1m24.680835668s ago: executing program 6 (id=3941):
r0 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, 0x0, 0x42800, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
ioctl$auto_BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={"6bf4798bc67635ceb7dad669dd0b1df21916f5519c3aa5cc57b95a82466e17e4", 0x5, 0x2, 0x6, 0xfffffffffffffe01, 0x628edca4, 0xffffffffffffffff})
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x10a41, 0x0)
r1 = signalfd4$auto(0xffffffff, 0x0, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/platform/vhci_hcd.11/usbmon/usbmon31/power/control\x00', 0x109000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
epoll_ctl$auto_EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f00000000c0)={0x8, 0xc73})
prctl$auto(0x4d, 0x1, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
timer_create$auto(0x9, 0x0, 0x0)
landlock_create_ruleset$auto(&(0x7f0000000000)={0xd1d, 0x3, 0x7}, 0x9, 0x0)
landlock_restrict_self$auto(r2, 0x1)
r3 = io_uring_setup$auto(0x86, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r3)
sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000841}, 0x4004004)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, r3)
sendmsg$auto_IEEE802154_LLSEC_GETPARAMS(r4, 0x0, 0x40000)
sendmsg$auto_IEEE802154_DISASSOCIATE_REQ(r1, 0x0, 0x1)
kill$auto(0x0, 0x1000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x141241, 0x0)
syz_genetlink_get_family_id$auto_netdev(0x0, 0xffffffffffffffff)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/virtual/net/bond0/bonding/arp_ip_target\x00', 0x80000, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
io_uring_setup$auto(0x59, &(0x7f0000000000)={0x3, 0x3ff, 0x2, 0x1, 0x2, 0xa, 0xffffffffffffffff, [], {0x8, 0x1, 0x1, 0x22b, 0x8000100, 0x581, 0x104, 0x1000006, 0xffffffffffffffff}, {0xbfc7, 0x1, 0x52, 0x8, 0x3, 0x3d, 0x8, 0x7, 0x100000000}})
r5 = open(&(0x7f0000000080)='./bus\x00', 0x64040, 0xc0)
fcntl$auto(r5, 0x0, 0xa8)

1m24.317274506s ago: executing program 6 (id=3943):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/ifb0/flags\x00', 0xb02, 0x0)
socket(0x23, 0x80805, 0x0)
ioctl$auto(0x3, 0x89ed, 0xfffffffffffff4e0)
sendfile$auto(r0, r0, &(0x7f0000000100)=0x9, 0xffff)
mmap$auto(0x0, 0xfffffffffffff7fa, 0xffffffffffffffa7, 0x9b72, 0x2, 0x100000000)
r1 = inotify_init1$auto(0x3000000000000)
ioctl$auto_BLKPBSZGET(r1, 0x127b, 0x0)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x882, 0x0)
write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x9, 0x4, 0xffffffffffffffff, 0xa899, 0xffffffffffffffff, 0x8024)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000380), 0x100, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000)
r3 = socket(0xa, 0x3, 0x3b)
getsockopt$auto(r3, 0x29, 0x6, 0x0, 0x0)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000000), 0xc0040, 0x0)
r4 = openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
read$auto(r4, &(0x7f0000000080)='\xbb\x00', 0x3)
ioctl$auto_EVIOCGMASK(r1, 0x80104592, &(0x7f00000001c0)={0x2000, 0x800004, 0xe2})
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer\x00', 0x2, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r5, &(0x7f0000000140)="1dca160c9026f371d6e92319763e11da35ec9f0379e2081bff03000000000000882674a5c0acdadb0ee83a0eac2e06dbfb6ff5efc39f8459cf518c93c02cd2ac800540569e21a7b3ee40aad7376b454ba1da11fb04ba54575684455f33e5292d772e78755a02c9eee52a5584ea33ddb13f11a93d6b4e3d4505f00084", 0x7c)
ioctl$auto(0x3, 0x80004509, 0x10000000000402)
r6 = getpgrp(0x0)
r7 = getpid()
kcmp$auto_KCMP_EPOLL_TFD(r6, r7, 0x7, 0xffffffffffffffff, 0x2)
sendfile$auto(r0, r0, 0x0, 0x3)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000100), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)

1m24.044773052s ago: executing program 6 (id=3946):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/mpls/platform_labels\x00', 0x202, 0x0)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv6/conf/veth0_to_bridge/ra_honor_pio_pflag\x00', 0x20202, 0x0)
sendfile$auto(r1, r2, 0x0, 0x8000001)
syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r0)
add_key$auto_KEY_SPEC_REQKEY_AUTH_KEY(0x0, 0x0, 0x0, 0x8, 0xfffffffffffffff9)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, r0, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x8842, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
open(0x0, 0x161342, 0x100)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
fsconfig$auto_FSCONFIG_SET_PATH_EMPTY(r3, 0x4, &(0x7f0000000040)='/dev/snd/controlC0\x00', &(0x7f0000000080)="a5c5dcdc02ee8c7747e9636f16b9ba76d00dd32ff5b538b511621a9a7050383148a6f752202b6df417ac194692ce8ebdc109517a1d1d3d00f13193", 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x10f382, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
socketpair$auto(0x1, 0x6, 0x6, 0x0)
socketcall$auto(0xffe, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)

1m23.547710241s ago: executing program 6 (id=3947):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x23, 0x80805, 0x0)
fanotify_init$auto(0x5, 0x2000000000002)
io_uring_setup$auto(0x3, 0x0)
pipe$auto(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x48140, 0x0)
socket(0x2, 0x3, 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2a, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), r0)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="1b0026bc7400fddbdf2503000000f37b08000c00038008000b00", @ANYRES32=r2, @ANYBLOB="12000100898771f1c19f17790485908286dd000004000280"], 0x3c}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800)
socket(0x28, 0x3, 0xa)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket(0x2, 0x801, 0x106)
socket(0x15, 0x5, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40e00, 0x0)
socket(0x10, 0x2, 0x0)
r4 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r4, @ANYRES8=r1, @ANYRES64], 0x18}, 0x1, 0x2000, 0x0, 0x40000}, 0x80)
mkdir$auto(&(0x7f00000000c0)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00', &(0x7f0000000240)='nfsd\x00', 0x7, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)

1m23.182740427s ago: executing program 6 (id=3950):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0)
r0 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r0, &(0x7f00000000c0)="632d1bfe595046ab5c40bd6163307acb6d16baef6176e669a216aae1824ccafdd80500ffffffffdfff1a0e00fffffffe0000000000000000", 0x38)
r1 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x400200, 0x0)
read$auto_tracing_cpumask_fops_trace(r1, &(0x7f0000000100)=""/210, 0xd2)

1m22.159281782s ago: executing program 35 (id=3897):
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
unshare$auto(0x8000000)
semget$auto(0x0, 0x2e4a, 0x8000)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x4, 0x0)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x0, 0x36ec}, 0x1f4, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
write$auto_console_fops_tty_io(r3, &(0x7f00000000c0)="c90d1b5d508a", 0x6)
r4 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff)
sendmsg$auto_NFSD_CMD_LISTENER_SET(r2, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000000)={0x1c, r4, 0x1, 0x870bd2b, 0x25dfdbfc, {}, [@NFSD_A_SERVER_SOCK_ADDR={0x8, 0x1, 0x0, 0x1, [@NFSD_A_SOCK_ADDR={0x4}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000)
ioctl$auto(0x3, 0x8, r1)
ioctl$auto_KVM_CREATE_VM(r0, 0x4040aea0, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x2000, 0x0)

1m8.056234799s ago: executing program 36 (id=3950):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2, 0x0)
r0 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
write$auto_snd_seq_f_ops_seq_clientmgr(r0, &(0x7f00000000c0)="632d1bfe595046ab5c40bd6163307acb6d16baef6176e669a216aae1824ccafdd80500ffffffffdfff1a0e00fffffffe0000000000000000", 0x38)
r1 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x400200, 0x0)
read$auto_tracing_cpumask_fops_trace(r1, &(0x7f0000000100)=""/210, 0xd2)

12.292918542s ago: executing program 5 (id=4204):
mmap$auto(0x0, 0x5, 0xf633, 0x40eb2, 0xffffffffffffffff, 0x300000000000)
sysfs$auto(0x2, 0x100000000000036, 0x0)
fsopen$auto(0x0, 0x1)
r0 = socket(0x15, 0x5, 0x0)
connect$auto(r0, 0x0, 0x2)
write$auto_proc_loginuid_operations_base(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/fs/orangefs/dcache_timeout_msecs\x00', 0x8ea182, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
write$auto(r2, 0x0, 0x81)
write$auto(r2, &(0x7f0000000440)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef\xc0\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1\xbb\xe4pd$\xd7\x1b\v\x82\rd\xd2\xaa\v!\xb1}\x92\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8=R+\a\xb7R\t\f+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb', 0x98c7)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
r6 = openat$auto_bm_status_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000003980), 0x141002, 0x0)
write$auto_bm_status_operations_binfmt_misc(r6, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="530026bd703f029a5f326402360008000300", @ANYRES32=r5], 0x28}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sysfs$auto(0x2, 0x23, 0x0)
r7 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0)
write$auto(r7, 0x0, 0x4)
bind$auto(0x3, &(0x7f0000000100)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x4)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000000)='B', 0x1)
syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000000), 0xffffffffffffffff)

11.745197175s ago: executing program 5 (id=4208):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/013/001\x00', 0xa901, 0x0)
kexec_load$auto(0x8134a6c, 0x1, &(0x7f0000000000)={@buf=&(0x7f0000000100), 0x10000, 0x81, 0x7}, 0xff)
ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000080)={0x2, 0x80, 0x10001, 0x5, &(0x7f0000000000), 0x9, 0x3, 0x2, @stream_id=0x2, 0x7, 0x476, 0x0})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)
write$auto(0x1, 0x0, 0x80000000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto(0x100000004, 0x2, 0xfffffffffffffffe, 0x13, 0xfffffffffffffffa, 0x41)
sysfs$auto(0x2, 0xe, 0x0)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_SAR_SPECS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="63000000ba454a114e", @ANYRES16=r1, @ANYBLOB="000429bd7000fedbdf258c0000001300fc00db1ec6a12c77d659012cff2312337b0008006a008c00000006001a010300000005001e0000000000"], 0x40}, 0x1, 0x0, 0x0, 0x48890}, 0x20000004)
lsm_list_modules$auto(0x0, 0x0, 0x0)
getcwd$auto(0x0, 0x8000000000000000)
r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r2, 0xffffffff800a6f2f, 0x0)

10.061402325s ago: executing program 5 (id=4211):
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vhci_hcd.10/usb29/29-0:1.0/usb29-port7/power/autosuspend_delay_ms\x00', 0x2b8402, 0x0)
unshare$auto(0x40000080)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x745100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D0\x00', 0x119003, 0x0)
r1 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001140)='/dev/psaux\x00', 0x42000, 0x0)
r2 = io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7ffffffc, 0x7, 0x5, 0x6, 0x5, 0x400b, <r3=>r1, [], {0x6, 0x6, 0x7, 0x29a, 0x8, 0x80, 0x104, 0x6, 0x1}, {0x100, 0x4, 0x40101, 0x85, 0x2, 0x24, 0x8000, 0x8, 0x3}})
r4 = openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000d00), 0x0, 0x0)
read$auto_vhci_fops_hci_vhci(r3, 0x0, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000580)={[0x1ff, 0x8000, 0xd, 0x1, 0x948d, 0x3, 0x10015f4da0a, 0xd, 0x7, 0x64c1, 0x8000001f, 0x0, 0x6d3e, 0xc, 0x2, 0x2]}, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
socket(0x2b, 0x1, 0x0)
ioctl$auto(0x3, 0x8905, 0x38)
r5 = openat$auto_lsm_ops_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
readv$auto(r5, &(0x7f0000000200)={&(0x7f0000000080), 0x9}, 0x2)
mmap$auto(0x0, 0x40000b, 0x2, 0x9b72, 0x2, 0x800008002)
socket$nl_generic(0x10, 0x3, 0x10)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "f99c0301d407000000e50400"}, 0x55)
r6 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/bConfigurationValue\x00', 0x63102, 0x0)
sendfile$auto(r7, r7, 0x0, 0x2)
ioctl$auto_SNAPSHOT_FREE(r6, 0x3314, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bdi/250:0/read_ahead_kb\x00', 0x5e30523b26a2a748, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000180)='/dev/tty19\x00', 0x800, 0x0)
ioctl$auto(r4, 0x7, r2)
close_range$auto(0x2, 0x8, 0x0)
r8 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r8, 0xae01, 0x0)

8.257345828s ago: executing program 5 (id=4216):
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x80040, 0x0) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) (async)
bpf$auto(0x1c, &(0x7f0000000040)=@link_update={0xffffffffffffffff, @new_prog_fd, 0x2c}, 0x92) (async)
r2 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000400), 0x200, 0x0)
ioctl$auto_RTC_IRQP_SET(r2, 0x4008700c, &(0x7f0000000440)=0x77b) (async)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r1) (async)
ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0x4b564d01, 0x40f, 0x1}]})

7.725574048s ago: executing program 5 (id=4218):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x4008, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mkdir$auto(&(0x7f0000000080)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', &(0x7f0000000140)='nfsd\x00', 0x10000, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
setresuid$auto(0x2, 0x7, 0x8080)
open(&(0x7f0000000100)='.\x00', 0x0, 0x1)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0xc)
r0 = socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0xffffffff, &(0x7f00000001c0)=@task_fd_query={0x0, r0, 0x800, 0x10008, 0x6, 0x1000049, 0xffffffffffffffff, 0x9, 0x3}, 0x6f3)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x3000c, 0x4000000000df, 0x4000eb1, 0x401, 0x10000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0x10, r1, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
read$auto(r2, &(0x7f0000000080)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00\x00\x00\x00\x007\xc9\xa6\x8a', 0x1060)
r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r3, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r3, 0x5501, 0x0)
writev$auto(r3, &(0x7f0000000340)={&(0x7f0000000200), 0x18}, 0x8)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

7.407906659s ago: executing program 5 (id=4220):
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r0 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cpu/0/msr\x00', 0x8000, 0x0)
mmap$auto(0x0, 0x2000009, 0x6, 0xeb1, r0, 0x70)
sched_getattr$auto(0x0, &(0x7f0000000000)={0xcf86, 0x6, 0x6, 0x200, 0x7, 0xb, 0x6, 0xfffffffffffffff8, 0x8, 0x90}, 0x68, 0x0)
r1 = socket(0x21, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
read$auto(r1, &(0x7f0000000080)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00\x00\x00\x00\x007\xc9\xa6\x8a', 0x1060)
r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0xfffffffd, &(0x7f0000000080)={0x0, 0x1}, 0xa, 0x0, 0x4, 0x401}, 0xed7138c}, 0xfffffffd, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x80802, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
connect$auto(0x3, 0x0, 0x55)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x697b}, 0xed7138c}, 0x9a6, 0xe000)
ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r2, 0x5501, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x8a402, 0x0)
writev$auto(r2, &(0x7f0000000340)={0x0, 0x18}, 0x8)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
ioctl$auto_UI_SET_FFBIT(r2, 0x4004556b, &(0x7f0000000140)=0xc0000)
read$auto_snapshot_fops_user(0xffffffffffffffff, &(0x7f0000000380)=""/218, 0xda)
r3 = io_uring_setup$auto(0x6, 0x0)
r4 = openat$auto_tracing_iter_fops_trace(0xffffffffffffff9c, &(0x7f0000001200)='/sys/kernel/tracing/trace_options\x00', 0x8102, 0x0)
write$auto_tracing_iter_fops_trace(r4, &(0x7f0000001240)="a7e60900", 0x4)
io_uring_register$auto(r3, 0x8, &(0x7f00000000c0), 0x2020001)

7.35409382s ago: executing program 8 (id=4221):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/ip6_mr_cache\x00', 0x1900, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
semctl$auto(0x7, 0x802, 0x13, 0x1)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0x4b72, r1)

6.852835035s ago: executing program 8 (id=4223):
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb1\x00', 0x5512c0, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b3b", 0xfdef)

6.386502551s ago: executing program 8 (id=4225):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/013/001\x00', 0xa901, 0x0)
kexec_load$auto(0x8233, 0x4, &(0x7f0000000000)={@buf=&(0x7f0000000100)="3430f29dc7452ce0bf1144f24c354d24b86fcc2c8a168e84e226fe3f76af893e42e023acc2e1560b49fe0da7a0264f98580892", 0x55, 0x81, 0x7}, 0x5)
ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000080)={0x4, 0xa, 0x10001, 0xfffffff1, &(0x7f0000000540)="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", 0x9, 0x3, 0x2, @stream_id=0x2, 0x7, 0x476, 0x0})
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x6, 0xe4, 0x100000eb1, 0x40000000000a1, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x5, 0x3, 0x40000007)
r1 = open(0x0, 0x261c2, 0x84)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r3=>0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fanotify_init$auto(0x5, 0x2000000000002)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x26, 0x80805, 0x0)
clone$auto(0x1000000008f61, 0x1001000040000008, 0x0, 0x0, 0x2)
r4 = pidfd_getfd$auto(0x3, 0x1, 0x100000000)
bpf$auto(0x7f, &(0x7f0000000040)=@bpf_attr_5={@target_ifindex=r3, r2, 0x95, 0x8, r4, @relative_id=0x6, 0x5}, 0x3)
bpf$auto(0x2, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xc)
bpf$auto(0x1, &(0x7f0000000380)=@raw_tracepoint={0x5, r1, 0x0, 0x6}, 0xc)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000002c0), 0x1734c0, 0x0)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0xea241, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0xa0102, 0x0)
ioctl$auto_TIOCVHANGUP2(r5, 0x5437, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
mmap$auto(0x0, 0x400008, 0x40df, 0x7f, 0xffffffffffffffff, 0xfffffffffffffffd)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
write$auto(0x3, 0x0, 0x7fffffff)

6.085108705s ago: executing program 8 (id=4226):
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb1\x00', 0x5512c0, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b3b", 0xfdef)

5.616014121s ago: executing program 7 (id=4228):
socket(0x2, 0x1, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(0x0, r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(0xffffffffffffffff, 0xc038586b, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r3 = syz_genetlink_get_family_id$auto_hsr(&(0x7f00000004c0), 0xffffffffffffffff)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.net/freezer.parent_freezing\x00', 0x100, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000140)=""/122, 0x7a)
sendmsg$auto_HSR_C_GET_NODE_LIST(r2, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000900)={0x14, r3, 0x1, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
r5 = openat$auto_split_huge_pages_fops_huge_memory(0xffffffffffffff9c, &(0x7f0000000200), 0x5021, 0x0)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f0000006440)=ANY=[@ANYBLOB, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="00000800bf00", @ANYRES32, @ANYBLOB="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", @ANYRES32=r5, @ANYBLOB="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"], 0x45e0}, 0x1, 0x0, 0x0, 0x24000000}, 0x4000000)
syz_genetlink_get_family_id$auto_nbd(0x0, 0xffffffffffffffff)
r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/snd/controlC2\x00', 0xa802, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r6, 0xc0045516, &(0x7f0000000080)=0x551)
read$auto(r6, 0x0, 0x3)
write$auto(0xffffffffffffffff, 0x0, 0x6)
write$auto(0x4, 0x0, 0x100082)
socket(0x1d, 0x2, 0x2)
r7 = socket(0x2, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_FLUSH_PMKSA(r7, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="24000000effcd2b157ce610226ed9487bef4b6575dd897854574307625f72f1ac6238e67094c5e748bc8e77d3b8db24565c67e4bf56ab7d678b98e3e5a1c364622600300000000000000f0f14cbfda775ca937e07cada6db21f1156df1859bc59994af4606327e7c3269ddec054eb71e3004ba8e1c8810c368157828021319845a06167d0e7c2f4b2a6afee1d9abd21f8a0019744db7e67fbb101d5c186334ec1be05614149d9da79c160a000000000000d8", @ANYRES16=r1, @ANYBLOB="080028bd7000fedbdf2536000000060012003a0d0000050092000e000000"], 0x24}, 0x1, 0x0, 0x0, 0x44015}, 0x20000040)

5.204518501s ago: executing program 8 (id=4229):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x4008, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mkdir$auto(&(0x7f0000000080)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f0000000040)='}[,&*}\x00\x0e\x15F\xf7\x1a\xd1K+\xedy\xc6\x9bb\x94\xb4^\xc2\x83%\xfbw}\xfb_P\"\x19\xdfi\xe9hA|Q\x8a_F\x04:Q\x90\'\x06', &(0x7f0000000140)='nfsd\x00', 0x10000, 0x0)
chdir$auto(&(0x7f0000000000)='}[,&*}\x00')
setresuid$auto(0x2, 0x7, 0x8080)
open(&(0x7f0000000100)='.\x00', 0x0, 0x1)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0x10, 0x0, 0xc)
r0 = socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x404, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
bpf$auto(0xffffffff, &(0x7f00000001c0)=@task_fd_query={0x0, r0, 0x800, 0x10008, 0x6, 0x1000049, 0xffffffffffffffff, 0x9, 0x3}, 0x6f3)
sendmsg$auto_HWSIM_CMD_DEL_RADIO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040800}, 0x24004000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x3000c, 0x4000000000df, 0x4000eb1, 0x401, 0x10000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40001, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0x10, r1, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000)
read$auto(r2, &(0x7f0000000080)='MJC802154_HWSIM\x00\xcb\x0fX\xc7\xfdx!\xf7\xb5T\x04\xad\x96\xf4\xbc\xca\xa52UWT1\a\x00\x00\x00\x00\x00\x007\xc9\xa6\x8a', 0x1060)
r3 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
ioctl$auto_UI_DEV_SETUP(r3, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xf2cf, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f893fba86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa})
ioctl$auto_UI_DEV_CREATE(r3, 0x5501, 0x0)
writev$auto(r3, &(0x7f0000000340)={&(0x7f0000000200), 0x18}, 0x8)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)

4.71277036s ago: executing program 7 (id=4232):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
listmount$auto(&(0x7f0000000100)={0x20, @raw, 0xffffffffffffffff, 0x0, 0x28}, 0x0, 0x5, 0x1)

4.486006253s ago: executing program 8 (id=4233):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x103080, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
getsockopt$auto_SO_MARK(r2, 0x10001, 0x24, &(0x7f0000000040)='/proc/self/net/ip_vs_conn\x00', &(0x7f00000000c0)=0x9)
move_pages$auto(0x0, 0x4, &(0x7f0000000200)=0x0, &(0x7f0000000480)=0x6456, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = socket(0x2, 0x80002, 0x1)
connect$auto(0x3, 0x0, 0x58)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket(0x2, 0x801, 0x106)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0xc, 0x0, 0x4)
listen$auto(0x3, 0x81)
setgroups$auto(0xe32, 0x0)
r4 = socket(0x2b, 0x1, 0x0)
sendmmsg$auto(r4, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x9, 0xfffffffd}, 0x1}, 0x5, 0x20000000)
r5 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000280), r4)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r4, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r5, 0x200, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4004040}, 0x20000800)
waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000080)={@siginfo_0_0={0x4, 0x8, 0x35764a2e, @_sigpoll={0x5}}}, 0x8, 0x0)
sendmsg$auto_IPVS_CMD_ZERO(r3, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x20000805)
io_uring_setup$auto(0x6, 0x0)

3.792723909s ago: executing program 7 (id=4235):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f0000000080), r0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/mpls/platform_labels\x00', 0x202, 0x0)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv6/conf/veth0_to_bridge/ra_honor_pio_pflag\x00', 0x20202, 0x0)
sendfile$auto(r1, r2, 0x0, 0x8000001)
syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), r0)
add_key$auto_KEY_SPEC_REQKEY_AUTH_KEY(0x0, 0x0, 0x0, 0x8, 0xfffffffffffffff9)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, r0, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x8842, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
open(0x0, 0x161342, 0x100)
r3 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
fsconfig$auto_FSCONFIG_SET_PATH_EMPTY(r3, 0x4, &(0x7f0000000040)='/dev/snd/controlC0\x00', &(0x7f0000000080)="a5c5dcdc02ee8c7747e9636f16b9ba76d00dd32ff5b538b511621a9a7050383148a6f752202b6df417ac194692ce8ebdc109517a1d1d3d00f13193", 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x10f382, 0x0)
mmap$auto(0x0, 0x2000d, 0x4000000200df, 0xeb1, 0x404, 0x8000)
socketpair$auto(0x1, 0x6, 0x6, 0x0)
socketcall$auto(0xffe, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000e1, 0xeb1, 0x401, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)

2.52540128s ago: executing program 0 (id=4237):
close_range$auto(0x2, 0x8, 0x0)
r0 = socket(0x10, 0x2, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x103080, 0x0)
close_range$auto(0x2, r0, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
getsockopt$auto_SO_MARK(r2, 0x10001, 0x24, &(0x7f0000000040)='/proc/self/net/ip_vs_conn\x00', &(0x7f00000000c0)=0x9)
move_pages$auto(0x0, 0x4, &(0x7f0000000200)=0x0, &(0x7f0000000480)=0x6456, 0x0, 0x0)
mmap$auto(0x0, 0x2000009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
connect$auto(0x3, 0x0, 0x58)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
socket(0x2, 0x801, 0x106)
socket(0xa, 0x801, 0x84)
setsockopt$auto(0x3, 0x10000000084, 0xc, 0x0, 0x4)
listen$auto(0x3, 0x81)
setgroups$auto(0xe32, 0x0)
r3 = socket(0x2b, 0x1, 0x0)
sendmmsg$auto(r3, &(0x7f0000000000)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x9, 0xfffffffd}, 0x1}, 0x5, 0x20000000)
r4 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000280), r3)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r4, 0x200, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4004040}, 0x20000800)
waitid$auto_P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000080)={@siginfo_0_0={0x4, 0x8, 0x35764a2e, @_sigpoll={0x5}}}, 0x8, 0x0)
sendmsg$auto_IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x20000805)
io_uring_setup$auto(0x6, 0x0)

2.266226832s ago: executing program 7 (id=4238):
openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fb1\x00', 0x5512c0, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b3b", 0xfdef)

2.074155295s ago: executing program 0 (id=4239):
mmap$auto(0x0, 0xfff, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x101) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
io_uring_setup$auto(0x7e1b, 0x0) (async)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0xa901, 0x0) (async)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
migrate_pages$auto(0x0, 0x99, 0x0, &(0x7f00000001c0)=0x7b)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio1\x00', 0x80e42, 0x0)
ioctl$auto_SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000001c0)) (async)
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x400000000001, 0x0) (async)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe\x00', 0x30203, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x4, 0x3, 0x3, 0x3, 0x3, 0x3, 0x8000000000000000, 0x2, 0x6d3c, 0x3, 0x2, 0x8000000000000006]}, 0x0) (async)
syz_genetlink_get_family_id$auto_psample(&(0x7f0000007a40), 0xffffffffffffffff)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x97f) (async)
close_range$auto(0x2, 0x8, 0x0)
mlock$auto(0x112, 0x80006) (async)
mlockall$auto(0x7ff)
madvise$auto(0x0, 0x200007, 0x19) (async)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
mmap$auto(0x0, 0x4, 0x3, 0x20eb1, 0x40000000000a5, 0x8000) (async)
capget$auto(0x0, 0xfffffffffffffffe)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f00000000c0), 0x101002, 0x0) (async)
capset$auto(0x0, &(0x7f0000000000)={0x3, 0x7, 0x2}) (async)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/reboot/mode\x00', 0x1e2142, 0x0)

1.317720185s ago: executing program 0 (id=4240):
r0 = socket(0x1d, 0x2, 0x6)
r1 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r2=>0x0})
bind$auto(r0, &(0x7f0000000040)=@can={0x1d, r2, 0xfd}, 0x6a)
r3 = openat$auto_ftrace_formats_fops_trace_printk(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/printk_formats\x00', 0x100000, 0x0)
pread64$auto(r3, &(0x7f0000000040)='],{(@&&\x00', 0xa1fb, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptya1\x00', 0x20080, 0x0)
io_uring_setup$auto(0x7e1b, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101e81, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0xa0102, 0x0)
ioctl$auto_SNDCTL_TMR_CONTINUE(r4, 0x40045431, 0x0)
r5 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x40)
io_uring_setup$auto(0x7, 0x0)
syz_genetlink_get_family_id$auto_ethtool(0x0, r0)
sendmsg$auto_ETHTOOL_MSG_MM_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x4000855}, 0x8004)
close_range$auto(0x2, 0xa, 0x0)
socket(0x1d, 0x2, 0x5)
mmap$auto(0x0, 0x6, 0x3, 0xeb1, 0x7, 0x8000)
futex$auto(0x0, 0x85, 0x38, 0x0, 0x0, 0x80800005)
r6 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x68082, 0x0)
ioctl$auto_BLKPG2(r6, 0x1269, 0x0)
ioctl$auto_MEMGETINFO(r6, 0x80204d01, 0x0)
r7 = openat$auto_fault_around_bytes_fops_(0xffffffffffffff9c, &(0x7f0000000180), 0x400, 0x0)
setsockopt$auto(r7, 0x7, 0x9, &(0x7f00000001c0)='/dev/mtd0\x00', 0x6)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000200)='/dev/snd/midiC2D2\x00', 0x2081, 0x0)
openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/pcmC0D0p\x00', 0x100, 0x0)

1.317547319s ago: executing program 7 (id=4241):
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
r1 = io_uring_setup$auto(0x89, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1)
sendmsg$auto_NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x130, r2, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_AP_SETTINGS_FLAGS={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x9}, @NL80211_ATTR_SUPPORTED_SELECTORS={0x71, 0x14e, "a75ee966bb4e07e64012e5c11e03d05f852c67d8e238c861023c06a39deeff4c1298de726063c7671f306af2bf11901ff71a2cf2ab13136fddbf22df1a418303dd8deaf09b5fe37cbab0c73636adfb6a0ff4e3f693ba3a018850ce1dac063865a5368d15450e4c7da5b9ac28ba"}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_SAE_PASSWORD={0x58, 0x115, "84862451deafea6f76a8053574615face8d827b86d00e33737fa83129736592ac0dbc7bc08fd4271ec97b09e7568e64ab863e9ff94e41a8397a917762c48628aeca69b9708db71ae7ad5866cdbbb5cb4431c0eb4"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "a683deda8da05395c7785d540971eb30c83838cdb45d036b"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x11, 0xf9, "cc47c79bf532aa6b4b04b8f10c"}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x5}]}, 0x130}, 0x1, 0x0, 0x0, 0x20000090}, 0x4891)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40602, 0x0)
r3 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000dc0), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000003a40)={0x0, 0x0, &(0x7f0000003a00)={&(0x7f0000000e80)={0x1c, r3, 0xc0dce8a66cb0a7ff, 0x70bd27, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x5, 0x2, 0x0, 0x1, [@generic="f1"]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040011}, 0x40010)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r4, 0x114, 0x2714, 0xfffffffffffffffc, 0x0)

475.289433ms ago: executing program 0 (id=4242):
mmap$auto(0x4, 0x400008, 0xde, 0x16, 0x2, 0x2000000000008002)
sendmsg$auto_TCP_METRICS_CMD_GET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100f9020000fbdbdf250100000008000b00ac141420080001"], 0x24}, 0x1, 0x0, 0x0, 0x14}, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = socket(0x11, 0xa, 0x9)
socket(0xa, 0x2, 0x3a)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0)
openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x8800, 0x0)
socket(0xa, 0x2, 0x0)
openat$auto_btrfs_ctl_fops_super(0xffffffffffffff9c, &(0x7f0000000080), 0x840, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/ip6gre0/ioam6_id_wide\x00', 0x0, 0x0)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x787806, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r0, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082)
write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef)
listmount$auto(&(0x7f0000000100)={0x20, @raw, 0xffffffffffffffff}, 0x0, 0x5, 0x1)

213.534365ms ago: executing program 0 (id=4243):
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x2102, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/mm/mempolicy/weighted_interleave/node0\x00', 0xa001, 0x0)
write$auto(r2, &(0x7f0000000180)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0xfdf1)
mmap$auto(0x0, 0x1, 0xfd5, 0x12, r1, 0x0)
mmap$auto(0x9, 0x1ff, 0x4, 0x14, 0x3, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/bond0/bonding/resend_igmp\x00', 0x1e2142, 0x0)
sendfile$auto(r0, r3, 0x0, 0x9)

16.743239ms ago: executing program 0 (id=4244):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
unshare$auto(0x40000080)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYBLOB="6a0051b1"], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
read$auto(0x3, 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)

0s ago: executing program 7 (id=4245):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x1, 0x0, 0x80000000)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000c80)="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", 0x144)
unshare$auto(0x40000080)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$auto(0x1002, 0x9, 0x4, 0x200000eb0, 0x401, 0x701cf82a)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/mm/transparent_hugepage/hugepages-2048kB/enabled\x00', 0x22b42, 0x0)
r2 = eventfd$auto(0x34b)
write$auto(r2, 0x0, 0x8)
read$auto_ptdump_fops_(r2, &(0x7f00000000c0)=""/32, 0x20)
sendfile$auto(r1, r1, 0x0, 0x6)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x10000010, 0x0, 0x0, &(0x7f00000001c0)={[0x1ff, 0x0, 0x7, 0xfff, 0x948b, 0x9, 0x15f4da0a, 0x3, 0x400, 0x62, 0x80000000, 0x4, 0x6d41, 0x8001, 0xa, 0xfffffffffffffdf7]}, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="010027bd7000fbdbdf2504000000080017000800000004001e"], 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0)
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
setpriority$auto(0x2, 0x0, 0x80000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(r4, 0x104000000000010e, 0xa, 0x0, 0x400)
r5 = syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_GTP_CMD_NEWPDP(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, r5, 0x107, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x44}, 0x4)
sendmmsg$auto(0x4, 0x0, 0x400, 0x7)
close_range$auto(0x2, 0x8, 0x0)

kernel console output (not intermixed with test programs):

][T28084] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1026.362838][T28084] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1026.442020][T28084] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1026.523221][T28084] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1027.052815][T28095] ubi0: attaching mtd0
[ 1027.058015][T28095] ubi0 error: ubi_add_to_av: two LEBs with same sequence number 1
[ 1027.145063][T28095] eraseblock attaching information dump:
[ 1027.175583][T28095] 	ec       1
[ 1027.178917][T28095] 	pnum     0
[ 1027.313865][T28095] 	lnum     0
[ 1027.327600][T28095] 	scrub    0
[ 1027.341439][T28095] 	sqnum    1
[ 1027.360077][T28095] Volume identifier header dump:
[ 1027.399872][T28095] 	magic     55424921
[ 1027.470050][T28095] 	version   1
[ 1027.473485][T28095] 	vol_type  1
[ 1027.476868][T28095] 	copy_flag 0
[ 1027.554790][T28095] 	compat    5
[ 1027.558201][T28095] 	vol_id    2147479551
[ 1027.588313][T28095] 	lnum      0
[ 1027.623374][T28095] 	data_size 0
[ 1027.626819][T28095] 	used_ebs  0
[ 1027.678671][T28095] 	data_pad  0
[ 1027.692262][T28095] 	sqnum     1
[ 1027.703813][T28095] 	hdr_crc   65b3bd2d
[ 1027.707830][T28095] Volume identifier header hexdump:
[ 1028.012803][T28095] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1028.205885][ T5833] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1028.440316][ T5833] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1028.520219][ T5833] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1028.600296][ T5833] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1029.710890][T28152] n
[ 1029.841924][T28150] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1030.919268][   T30] audit: type=1800 audit(4294967354.160:24): pid=28183 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3585" name="trace_pipe" dev="tracefs" ino=158 res=0 errno=0
[ 1032.723020][T28253] FAULT_INJECTION: forcing a failure.
[ 1032.723020][T28253] name failslab, interval 1, probability 0, space 0, times 0
[ 1032.817420][T28253] CPU: 0 UID: 0 PID: 28253 Comm: syz.2.3594 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1032.817468][T28253] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1032.817480][T28253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1032.817497][T28253] Call Trace:
[ 1032.817504][T28253]  <TASK>
[ 1032.817512][T28253]  dump_stack_lvl+0x100/0x190
[ 1032.817545][T28253]  should_fail_ex.cold+0x5/0xa
[ 1032.817597][T28253]  should_failslab+0xc2/0x120
[ 1032.817630][T28253]  kmem_cache_alloc_noprof+0x83/0x780
[ 1032.817682][T28253]  ? __anon_vma_prepare+0xae/0x5e0
[ 1032.817713][T28253]  ? __anon_vma_prepare+0xae/0x5e0
[ 1032.817738][T28253]  __anon_vma_prepare+0xae/0x5e0
[ 1032.817767][T28253]  __vmf_anon_prepare+0x11f/0x250
[ 1032.817807][T28253]  do_anonymous_page+0x520/0x1f40
[ 1032.817833][T28253]  ? find_held_lock+0x2b/0x80
[ 1032.817864][T28253]  __handle_mm_fault+0x1d3a/0x2b50
[ 1032.817898][T28253]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1032.817926][T28253]  ? __pte_offset_map_lock+0x174/0x320
[ 1032.817961][T28253]  ? find_held_lock+0x2b/0x80
[ 1032.817994][T28253]  ? follow_page_pte+0x5b4/0x1410
[ 1032.818041][T28253]  handle_mm_fault+0x36d/0xa20
[ 1032.818073][T28253]  __get_user_pages+0xf9c/0x34d0
[ 1032.818119][T28253]  ? __pfx___get_user_pages+0x10/0x10
[ 1032.818163][T28253]  populate_vma_page_range+0x267/0x3f0
[ 1032.818204][T28253]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1032.818241][T28253]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1032.818278][T28253]  ? do_mmap+0x93f/0x12f0
[ 1032.818316][T28253]  __mm_populate+0x107/0x3a0
[ 1032.818355][T28253]  ? __pfx___mm_populate+0x10/0x10
[ 1032.818394][T28253]  ? up_write+0x290/0x4f0
[ 1032.818433][T28253]  vm_mmap_pgoff+0x37f/0x470
[ 1032.818472][T28253]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1032.818510][T28253]  ? __fget_files+0x21f/0x3d0
[ 1032.818544][T28253]  ksys_mmap_pgoff+0x7d/0x5b0
[ 1032.818579][T28253]  ? __pfx_ksys_write+0x10/0x10
[ 1032.818609][T28253]  __x64_sys_mmap+0x125/0x190
[ 1032.818636][T28253]  do_syscall_64+0xc9/0xf80
[ 1032.818667][T28253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1032.818690][T28253] RIP: 0033:0x7f189599aeb9
[ 1032.818709][T28253] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1032.818732][T28253] RSP: 002b:00007f18967f1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1032.818754][T28253] RAX: ffffffffffffffda RBX: 00007f1895c15fa0 RCX: 00007f189599aeb9
[ 1032.818770][T28253] RDX: 00000000000000df RSI: 0000000000000008 RDI: 0000000000000000
[ 1032.818798][T28253] RBP: 00007f18967f1090 R08: 0000000000000002 R09: 0000000000008000
[ 1032.818812][T28253] R10: 0000000000029b72 R11: 0000000000000246 R12: 0000000000000001
[ 1032.818825][T28253] R13: 00007f1895c16038 R14: 00007f1895c15fa0 R15: 00007fffde56b1d8
[ 1032.818855][T28253]  </TASK>
[ 1033.890349][T28272] nvme_fcloop: unknown parameter or missing value '7�="����;��&L�=j�"Yq'R"'
[ 1033.930655][T28273] nvme_fcloop: unknown parameter or missing value '7�="����;��&L�=j�"Yq'R"'
[ 1035.117445][T28260] Invalid ELF header magic: != ELF
[ 1037.739083][T28330] FAULT_INJECTION: forcing a failure.
[ 1037.739083][T28330] name failslab, interval 1, probability 0, space 0, times 0
[ 1037.824821][T28330] CPU: 0 UID: 0 PID: 28330 Comm: syz.0.3608 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1037.824870][T28330] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1037.824884][T28330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1037.824897][T28330] Call Trace:
[ 1037.824905][T28330]  <TASK>
[ 1037.824913][T28330]  dump_stack_lvl+0x100/0x190
[ 1037.824944][T28330]  should_fail_ex.cold+0x5/0xa
[ 1037.824982][T28330]  should_failslab+0xc2/0x120
[ 1037.825013][T28330]  ? tomoyo_encode2+0xfb/0x3c0
[ 1037.825034][T28330]  __kmalloc_noprof+0xf6/0x9c0
[ 1037.825064][T28330]  ? tomoyo_encode2+0xfb/0x3c0
[ 1037.825084][T28330]  tomoyo_encode2+0xfb/0x3c0
[ 1037.825110][T28330]  tomoyo_encode+0x29/0x50
[ 1037.825130][T28330]  tomoyo_realpath_from_path+0x18c/0x690
[ 1037.825159][T28330]  tomoyo_check_open_permission+0x2af/0x3c0
[ 1037.825196][T28330]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1037.825255][T28330]  ? do_raw_spin_lock+0x128/0x260
[ 1037.825292][T28330]  ? path_get+0x61/0x80
[ 1037.825324][T28330]  tomoyo_file_open+0x6b/0x90
[ 1037.825351][T28330]  security_file_open+0xb5/0x1e0
[ 1037.825373][T28330]  do_dentry_open+0x58c/0x1570
[ 1037.825401][T28330]  ? security_inode_permission+0xbf/0x250
[ 1037.825439][T28330]  vfs_open+0x82/0x3f0
[ 1037.825474][T28330]  path_openat+0x21dc/0x3120
[ 1037.825510][T28330]  ? __pfx_path_openat+0x10/0x10
[ 1037.825546][T28330]  do_filp_open+0x1f7/0x420
[ 1037.825575][T28330]  ? __pfx_do_filp_open+0x10/0x10
[ 1037.825628][T28330]  ? _raw_spin_unlock+0x28/0x50
[ 1037.825650][T28330]  ? alloc_fd+0x476/0x790
[ 1037.825683][T28330]  do_sys_openat2+0x12e/0x220
[ 1037.825717][T28330]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1037.825762][T28330]  __x64_sys_openat+0x12d/0x210
[ 1037.825798][T28330]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1037.825838][T28330]  ? xfd_validate_state+0x129/0x190
[ 1037.825884][T28330]  do_syscall_64+0xc9/0xf80
[ 1037.825913][T28330]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1037.825936][T28330] RIP: 0033:0x7f2c1019aeb9
[ 1037.825954][T28330] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1037.825976][T28330] RSP: 002b:00007f2c10fac028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1037.825997][T28330] RAX: ffffffffffffffda RBX: 00007f2c10416090 RCX: 00007f2c1019aeb9
[ 1037.826012][T28330] RDX: 0000000000000002 RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 1037.826026][T28330] RBP: 00007f2c10208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1037.826039][T28330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1037.826053][T28330] R13: 00007f2c10416128 R14: 00007f2c10416090 R15: 00007ffd40b6b7a8
[ 1037.826080][T28330]  </TASK>
[ 1037.826101][T28330] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1038.940746][T28346] NFSD: Failed to start, no listeners configured.
[ 1040.466842][T28379] NFSD: Failed to start, no listeners configured.
[ 1041.660696][T28426] binder: 28425:28426 ioctl c0306201 0 returned -14
[ 1042.742400][T28448] FAULT_INJECTION: forcing a failure.
[ 1042.742400][T28448] name failslab, interval 1, probability 0, space 0, times 0
[ 1042.828965][T28448] CPU: 0 UID: 0 PID: 28448 Comm: syz.1.3627 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1042.829029][T28448] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1042.829043][T28448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1042.829058][T28448] Call Trace:
[ 1042.829066][T28448]  <TASK>
[ 1042.829075][T28448]  dump_stack_lvl+0x100/0x190
[ 1042.829109][T28448]  should_fail_ex.cold+0x5/0xa
[ 1042.829156][T28448]  should_failslab+0xc2/0x120
[ 1042.829191][T28448]  kmem_cache_alloc_noprof+0x83/0x780
[ 1042.829224][T28448]  ? sk_prot_alloc+0x60/0x2a0
[ 1042.829254][T28448]  ? sk_prot_alloc+0x60/0x2a0
[ 1042.829277][T28448]  sk_prot_alloc+0x60/0x2a0
[ 1042.829303][T28448]  sk_alloc+0x36/0xe80
[ 1042.829337][T28448]  rxrpc_create+0x116/0x8d0
[ 1042.829370][T28448]  __sock_create+0x339/0x860
[ 1042.829402][T28448]  __sys_socket+0x14d/0x260
[ 1042.829432][T28448]  ? __pfx___sys_socket+0x10/0x10
[ 1042.829459][T28448]  ? xfd_validate_state+0x129/0x190
[ 1042.829505][T28448]  __x64_sys_socket+0x72/0xb0
[ 1042.829532][T28448]  ? lockdep_hardirqs_on+0x78/0x100
[ 1042.829560][T28448]  do_syscall_64+0xc9/0xf80
[ 1042.829591][T28448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1042.829616][T28448] RIP: 0033:0x7fe42339aeb9
[ 1042.829635][T28448] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1042.829658][T28448] RSP: 002b:00007fe42432e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1042.829681][T28448] RAX: ffffffffffffffda RBX: 00007fe423615fa0 RCX: 00007fe42339aeb9
[ 1042.829697][T28448] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1042.829712][T28448] RBP: 00007fe423408c1f R08: 0000000000000000 R09: 0000000000000000
[ 1042.829727][T28448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1042.829741][T28448] R13: 00007fe423616038 R14: 00007fe423615fa0 R15: 00007fff0f644b48
[ 1042.829771][T28448]  </TASK>
[ 1044.079584][T28517] netlink: 334 bytes leftover after parsing attributes in process `syz.2.3630'.
[ 1044.345462][T28520] netlink: 'syz.1.3631': attribute type 16 has an invalid length.
[ 1044.405089][T28520] netlink: 226 bytes leftover after parsing attributes in process `syz.1.3631'.
[ 1044.462187][T28520] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3631'.
[ 1045.204403][T28575] FAULT_INJECTION: forcing a failure.
[ 1045.204403][T28575] name failslab, interval 1, probability 0, space 0, times 0
[ 1045.286097][T28575] CPU: 0 UID: 0 PID: 28575 Comm: syz.1.3637 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1045.286144][T28575] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1045.286157][T28575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1045.286171][T28575] Call Trace:
[ 1045.286178][T28575]  <TASK>
[ 1045.286187][T28575]  dump_stack_lvl+0x100/0x190
[ 1045.286217][T28575]  should_fail_ex.cold+0x5/0xa
[ 1045.286254][T28575]  should_failslab+0xc2/0x120
[ 1045.286286][T28575]  kmem_cache_alloc_noprof+0x83/0x780
[ 1045.286316][T28575]  ? sk_prot_alloc+0x60/0x2a0
[ 1045.286344][T28575]  ? sk_prot_alloc+0x60/0x2a0
[ 1045.286364][T28575]  sk_prot_alloc+0x60/0x2a0
[ 1045.286389][T28575]  sk_alloc+0x36/0xe80
[ 1045.286420][T28575]  rxrpc_create+0x116/0x8d0
[ 1045.286451][T28575]  __sock_create+0x339/0x860
[ 1045.286481][T28575]  __sys_socket+0x14d/0x260
[ 1045.286509][T28575]  ? __pfx___sys_socket+0x10/0x10
[ 1045.286534][T28575]  ? xfd_validate_state+0x129/0x190
[ 1045.286576][T28575]  __x64_sys_socket+0x72/0xb0
[ 1045.286602][T28575]  ? lockdep_hardirqs_on+0x78/0x100
[ 1045.286628][T28575]  do_syscall_64+0xc9/0xf80
[ 1045.286657][T28575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1045.286680][T28575] RIP: 0033:0x7fe42339aeb9
[ 1045.286698][T28575] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1045.286720][T28575] RSP: 002b:00007fe42432e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1045.286742][T28575] RAX: ffffffffffffffda RBX: 00007fe423615fa0 RCX: 00007fe42339aeb9
[ 1045.286757][T28575] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1045.286771][T28575] RBP: 00007fe423408c1f R08: 0000000000000000 R09: 0000000000000000
[ 1045.286784][T28575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1045.286797][T28575] R13: 00007fe423616038 R14: 00007fe423615fa0 R15: 00007fff0f644b48
[ 1045.286825][T28575]  </TASK>
[ 1045.810901][T28590] FAULT_INJECTION: forcing a failure.
[ 1045.810901][T28590] name failslab, interval 1, probability 0, space 0, times 0
[ 1045.843449][T28590] CPU: 0 UID: 0 PID: 28590 Comm: syz.0.3648 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1045.843498][T28590] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1045.843511][T28590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1045.843525][T28590] Call Trace:
[ 1045.843533][T28590]  <TASK>
[ 1045.843541][T28590]  dump_stack_lvl+0x100/0x190
[ 1045.843572][T28590]  should_fail_ex.cold+0x5/0xa
[ 1045.843610][T28590]  should_failslab+0xc2/0x120
[ 1045.843642][T28590]  kmem_cache_alloc_noprof+0x83/0x780
[ 1045.843673][T28590]  ? sk_prot_alloc+0x60/0x2a0
[ 1045.843700][T28590]  ? sk_prot_alloc+0x60/0x2a0
[ 1045.843721][T28590]  sk_prot_alloc+0x60/0x2a0
[ 1045.843745][T28590]  sk_alloc+0x36/0xe80
[ 1045.843777][T28590]  rxrpc_create+0x116/0x8d0
[ 1045.843826][T28590]  __sock_create+0x339/0x860
[ 1045.843883][T28590]  __sys_socket+0x14d/0x260
[ 1045.843910][T28590]  ? __pfx___sys_socket+0x10/0x10
[ 1045.843935][T28590]  ? xfd_validate_state+0x129/0x190
[ 1045.843998][T28590]  __x64_sys_socket+0x72/0xb0
[ 1045.844026][T28590]  ? lockdep_hardirqs_on+0x78/0x100
[ 1045.844055][T28590]  do_syscall_64+0xc9/0xf80
[ 1045.844086][T28590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1045.844110][T28590] RIP: 0033:0x7f2c1019aeb9
[ 1045.844130][T28590] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1045.844153][T28590] RSP: 002b:00007f2c10fcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1045.844176][T28590] RAX: ffffffffffffffda RBX: 00007f2c10415fa0 RCX: 00007f2c1019aeb9
[ 1045.844193][T28590] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1045.844208][T28590] RBP: 00007f2c10208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1045.844222][T28590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1045.844236][T28590] R13: 00007f2c10416038 R14: 00007f2c10415fa0 R15: 00007ffd40b6b7a8
[ 1045.844266][T28590]  </TASK>
[ 1046.289563][T28600] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3642'.
[ 1046.479260][T28596] [U] 
[ 1047.874248][T28638] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3650'.
[ 1048.140487][T28638] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1048.196794][T28638] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1048.281545][T28638] bond0 (unregistering): Released all slaves
[ 1050.022560][   T30] audit: type=1326 audit(4294967373.270:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28787 comm="syz.0.3658" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2c1019aeb9 code=0x0
[ 1050.596429][T28814] [U] 
[ 1050.599262][T28814] [U] 
[ 1050.601995][T28814] [U] 
[ 1050.604724][T28814] [U] 
[ 1050.695591][T28814] [U] 
[ 1050.698350][T28814] [U] 
[ 1050.701063][T28814] [U] 
[ 1050.703762][T28814] [U] 
[ 1050.748636][T28814] [U] 
[ 1050.751399][T28814] [U] 
[ 1050.754102][T28814] [U] 
[ 1050.756828][T28814] [U] 
[ 1050.830612][T28814] [U] 
[ 1050.833372][T28814] [U] 
[ 1050.836082][T28814] [U] 
[ 1050.838783][T28814] [U] 
[ 1050.919078][T28814] [U] 
[ 1050.921827][T28814] [U] 
[ 1050.924530][T28814] [U] 
[ 1050.927270][T28814] [U] 
[ 1051.011389][T28814] [U] 
[ 1051.014131][T28814] [U] 
[ 1051.016833][T28814] [U] 
[ 1051.019529][T28814] [U] 
[ 1051.102551][T28814] [U] 
[ 1051.105296][T28814] [U] 
[ 1051.108007][T28814] [U] 
[ 1051.110714][T28814] [U] 
[ 1051.183026][T28814] [U] 
[ 1051.185810][T28814] [U] 
[ 1051.188514][T28814] [U] 
[ 1051.191216][T28814] [U] 
[ 1051.268395][T28860] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1051.283477][T28814] [U] 
[ 1051.286210][T28814] [U] 
[ 1051.288912][T28814] [U] 
[ 1051.291612][T28814] [U] 
[ 1051.310359][T28859] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3663'.
[ 1051.384892][T28814] [U] 
[ 1051.587532][T28859] FAULT_INJECTION: forcing a failure.
[ 1051.587532][T28859] name failslab, interval 1, probability 0, space 0, times 0
[ 1051.655001][T28859] CPU: 0 UID: 0 PID: 28859 Comm: syz.2.3663 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1051.655055][T28859] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1051.655069][T28859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1051.655084][T28859] Call Trace:
[ 1051.655092][T28859]  <TASK>
[ 1051.655101][T28859]  dump_stack_lvl+0x100/0x190
[ 1051.655133][T28859]  should_fail_ex.cold+0x5/0xa
[ 1051.655174][T28859]  should_failslab+0xc2/0x120
[ 1051.655209][T28859]  kmem_cache_alloc_noprof+0x83/0x780
[ 1051.655242][T28859]  ? vm_area_dup+0x27/0x8e0
[ 1051.655271][T28859]  ? vm_area_dup+0x27/0x8e0
[ 1051.655294][T28859]  vm_area_dup+0x27/0x8e0
[ 1051.655325][T28859]  __split_vma+0x18c/0xe30
[ 1051.655355][T28859]  ? __pfx___split_vma+0x10/0x10
[ 1051.655387][T28859]  ? __pfx_mas_prev+0x10/0x10
[ 1051.655426][T28859]  vms_gather_munmap_vmas+0x3aa/0x1320
[ 1051.655459][T28859]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[ 1051.655487][T28859]  ? __pfx___up_read+0x10/0x10
[ 1051.655521][T28859]  ? validate_mm+0x261/0x4e0
[ 1051.655545][T28859]  ? validate_mm+0x261/0x4e0
[ 1051.655572][T28859]  ? mas_find+0x2dd/0x740
[ 1051.655604][T28859]  ? validate_mm+0x392/0x4e0
[ 1051.655632][T28859]  do_vmi_align_munmap+0x287/0x5f0
[ 1051.655664][T28859]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[ 1051.655731][T28859]  do_vmi_munmap+0x1f8/0x3e0
[ 1051.655778][T28859]  __vm_munmap+0x196/0x390
[ 1051.655807][T28859]  ? __pfx___vm_munmap+0x10/0x10
[ 1051.655835][T28859]  ? count_memcg_events_mm.constprop.0+0x109/0x2a0
[ 1051.655883][T28859]  __x64_sys_munmap+0x59/0x80
[ 1051.655917][T28859]  do_syscall_64+0xc9/0xf80
[ 1051.655946][T28859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1051.655969][T28859] RIP: 0033:0x7f189599ace7
[ 1051.655987][T28859] Code: 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1051.656012][T28859] RSP: 002b:00007f18967efd18 EFLAGS: 00000206 ORIG_RAX: 000000000000000b
[ 1051.656034][T28859] RAX: ffffffffffffffda RBX: 00007f188c000000 RCX: 00007f189599ace7
[ 1051.656048][T28859] RDX: 0000000000000000 RSI: 0000000000600000 RDI: 00007f188ba00000
[ 1051.656062][T28859] RBP: 0000000000021000 R08: 00000000ffffffff R09: 0000000000000000
[ 1051.656076][T28859] R10: 0000000000000022 R11: 0000000000000206 R12: 0000000004000000
[ 1051.656101][T28859] R13: 0000000000001000 R14: 00007f1890000000 R15: 0000000000600000
[ 1051.656144][T28859]  </TASK>
[ 1053.568624][T28946] FAULT_INJECTION: forcing a failure.
[ 1053.568624][T28946] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1053.654470][T28946] CPU: 0 UID: 0 PID: 28946 Comm: syz.1.3673 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1053.654538][T28946] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1053.654554][T28946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1053.654568][T28946] Call Trace:
[ 1053.654576][T28946]  <TASK>
[ 1053.654584][T28946]  dump_stack_lvl+0x100/0x190
[ 1053.654616][T28946]  should_fail_ex.cold+0x5/0xa
[ 1053.654650][T28946]  ? __lock_acquire+0x4a5/0x2630
[ 1053.654683][T28946]  get_futex_key+0x1d2/0x1620
[ 1053.654716][T28946]  ? __pfx_get_futex_key+0x10/0x10
[ 1053.654747][T28946]  ? update_se+0x93/0x700
[ 1053.654780][T28946]  futex_wait_setup+0x81/0x500
[ 1053.654809][T28946]  __futex_wait+0x19f/0x300
[ 1053.654832][T28946]  ? __pfx___futex_wait+0x10/0x10
[ 1053.654851][T28946]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1053.654877][T28946]  ? lockdep_hardirqs_on+0x78/0x100
[ 1053.654907][T28946]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1053.654948][T28946]  ? find_held_lock+0x2b/0x80
[ 1053.654969][T28946]  ? futex_wake+0x456/0x530
[ 1053.655010][T28946]  futex_wait+0xed/0x380
[ 1053.655031][T28946]  ? __pfx_futex_wait+0x10/0x10
[ 1053.655058][T28946]  ? ldsem_up_read+0x4e/0x90
[ 1053.655081][T28946]  ? tty_ioctl+0x345/0x1690
[ 1053.655119][T28946]  do_futex+0x1ef/0x350
[ 1053.655160][T28946]  ? __pfx_do_futex+0x10/0x10
[ 1053.655193][T28946]  ? find_held_lock+0x2b/0x80
[ 1053.655219][T28946]  __x64_sys_futex+0x34f/0x4d0
[ 1053.655253][T28946]  ? __fget_files+0x21f/0x3d0
[ 1053.655278][T28946]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1053.655314][T28946]  ? fput+0x79/0x100
[ 1053.655349][T28946]  do_syscall_64+0xc9/0xf80
[ 1053.655379][T28946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1053.655403][T28946] RIP: 0033:0x7fe42339aeb9
[ 1053.655421][T28946] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1053.655443][T28946] RSP: 002b:00007fe42430d0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1053.655465][T28946] RAX: ffffffffffffffda RBX: 00007fe423616098 RCX: 00007fe42339aeb9
[ 1053.655480][T28946] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe423616098
[ 1053.655494][T28946] RBP: 00007fe423616090 R08: 0000000000000000 R09: 0000000000000000
[ 1053.655508][T28946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1053.655521][T28946] R13: 00007fe423616128 R14: 00007fff0f644a60 R15: 00007fff0f644b48
[ 1053.655550][T28946]  </TASK>
[ 1054.308649][T28954] FAULT_INJECTION: forcing a failure.
[ 1054.308649][T28954] name failslab, interval 1, probability 0, space 0, times 0
[ 1054.393694][T28954] CPU: 0 UID: 0 PID: 28954 Comm: syz.1.3674 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1054.393740][T28954] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1054.393753][T28954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1054.393766][T28954] Call Trace:
[ 1054.393773][T28954]  <TASK>
[ 1054.393782][T28954]  dump_stack_lvl+0x100/0x190
[ 1054.393811][T28954]  should_fail_ex.cold+0x5/0xa
[ 1054.393847][T28954]  should_failslab+0xc2/0x120
[ 1054.393878][T28954]  __kvmalloc_node_noprof+0x101/0xac0
[ 1054.393904][T28954]  ? __pfx___mutex_lock+0x10/0x10
[ 1054.393933][T28954]  ? traverse.part.0.constprop.0+0x397/0x650
[ 1054.393962][T28954]  ? traverse.part.0.constprop.0+0x397/0x650
[ 1054.393984][T28954]  traverse.part.0.constprop.0+0x397/0x650
[ 1054.394007][T28954]  ? find_held_lock+0x2b/0x80
[ 1054.394028][T28954]  ? aa_file_perm+0x268/0x1540
[ 1054.394049][T28954]  ? aa_file_perm+0x268/0x1540
[ 1054.394081][T28954]  seq_read_iter+0x93f/0x1270
[ 1054.394113][T28954]  seq_read+0x33b/0x4c0
[ 1054.394135][T28954]  ? __pfx_seq_read+0x10/0x10
[ 1054.394173][T28954]  ? __pfx_seq_read+0x10/0x10
[ 1054.394193][T28954]  proc_reg_read+0x240/0x330
[ 1054.394224][T28954]  ? __pfx_proc_reg_read+0x10/0x10
[ 1054.394257][T28954]  vfs_read+0x1e4/0xb30
[ 1054.394284][T28954]  ? __pfx_vfs_read+0x10/0x10
[ 1054.394305][T28954]  ? find_held_lock+0x2b/0x80
[ 1054.394325][T28954]  ? __fget_files+0x215/0x3d0
[ 1054.394348][T28954]  ? __fget_files+0x215/0x3d0
[ 1054.394375][T28954]  ? __fget_files+0x21f/0x3d0
[ 1054.394405][T28954]  __x64_sys_pread64+0x1eb/0x250
[ 1054.394432][T28954]  ? __pfx___x64_sys_pread64+0x10/0x10
[ 1054.394465][T28954]  do_syscall_64+0xc9/0xf80
[ 1054.394493][T28954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1054.394515][T28954] RIP: 0033:0x7fe42339aeb9
[ 1054.394532][T28954] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1054.394553][T28954] RSP: 002b:00007fe42432e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[ 1054.394573][T28954] RAX: ffffffffffffffda RBX: 00007fe423615fa0 RCX: 00007fe42339aeb9
[ 1054.394587][T28954] RDX: 0000000000000003 RSI: 0000000000000000 RDI: 0000000000000003
[ 1054.394599][T28954] RBP: 00007fe42432e090 R08: 0000000000000000 R09: 0000000000000000
[ 1054.394612][T28954] R10: 0000000000005ef6 R11: 0000000000000246 R12: 0000000000000001
[ 1054.394625][T28954] R13: 00007fe423616038 R14: 00007fe423615fa0 R15: 00007fff0f644b48
[ 1054.394652][T28954]  </TASK>
[ 1055.763021][T28978] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3681'.
[ 1057.241966][T29024] FAULT_INJECTION: forcing a failure.
[ 1057.241966][T29024] name failslab, interval 1, probability 0, space 0, times 0
[ 1057.329178][T29024] CPU: 0 UID: 0 PID: 29024 Comm: syz.3.3689 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1057.329228][T29024] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1057.329241][T29024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1057.329255][T29024] Call Trace:
[ 1057.329262][T29024]  <TASK>
[ 1057.329271][T29024]  dump_stack_lvl+0x100/0x190
[ 1057.329304][T29024]  should_fail_ex.cold+0x5/0xa
[ 1057.329342][T29024]  should_failslab+0xc2/0x120
[ 1057.329375][T29024]  __kmalloc_cache_noprof+0x80/0x810
[ 1057.329400][T29024]  ? append_filter_err+0x435/0x620
[ 1057.329433][T29024]  ? apply_subsystem_event_filter+0x565/0x17a0
[ 1057.329462][T29024]  ? apply_subsystem_event_filter+0x565/0x17a0
[ 1057.329485][T29024]  apply_subsystem_event_filter+0x565/0x17a0
[ 1057.329516][T29024]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[ 1057.329546][T29024]  ? _copy_from_user+0x59/0xd0
[ 1057.329584][T29024]  subsystem_filter_write+0x95/0x120
[ 1057.329608][T29024]  vfs_write+0x2aa/0x1070
[ 1057.329636][T29024]  ? __pfx_subsystem_filter_write+0x10/0x10
[ 1057.329661][T29024]  ? __pfx_vfs_write+0x10/0x10
[ 1057.329685][T29024]  ? find_held_lock+0x2b/0x80
[ 1057.329708][T29024]  ? __fget_files+0x215/0x3d0
[ 1057.329738][T29024]  ? __fget_files+0x21f/0x3d0
[ 1057.329781][T29024]  ksys_write+0x12a/0x250
[ 1057.329807][T29024]  ? __pfx_ksys_write+0x10/0x10
[ 1057.329841][T29024]  do_syscall_64+0xc9/0xf80
[ 1057.329872][T29024]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1057.329895][T29024] RIP: 0033:0x7fe5f359aeb9
[ 1057.329914][T29024] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1057.329937][T29024] RSP: 002b:00007fe5f453f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1057.329958][T29024] RAX: ffffffffffffffda RBX: 00007fe5f3815fa0 RCX: 00007fe5f359aeb9
[ 1057.329974][T29024] RDX: 000000000000005f RSI: 0000200000001e40 RDI: 0000000000000003
[ 1057.329988][T29024] RBP: 00007fe5f453f090 R08: 0000000000000000 R09: 0000000000000000
[ 1057.330013][T29024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1057.330026][T29024] R13: 00007fe5f3816038 R14: 00007fe5f3815fa0 R15: 00007ffc22040738
[ 1057.330054][T29024]  </TASK>
[ 1057.867495][T29027] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff
[ 1058.349141][T29016] kexec: Could not allocate control_code_buffer
[ 1059.921957][T29132] FAULT_INJECTION: forcing a failure.
[ 1059.921957][T29132] name failslab, interval 1, probability 0, space 0, times 0
[ 1059.957252][T29132] CPU: 0 UID: 0 PID: 29132 Comm: syz.3.3701 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1059.957303][T29132] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1059.957316][T29132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1059.957330][T29132] Call Trace:
[ 1059.957338][T29132]  <TASK>
[ 1059.957346][T29132]  dump_stack_lvl+0x100/0x190
[ 1059.957377][T29132]  should_fail_ex.cold+0x5/0xa
[ 1059.957414][T29132]  should_failslab+0xc2/0x120
[ 1059.957447][T29132]  kmem_cache_alloc_noprof+0x83/0x780
[ 1059.957477][T29132]  ? sk_prot_alloc+0x60/0x2a0
[ 1059.957505][T29132]  ? sk_prot_alloc+0x60/0x2a0
[ 1059.957531][T29132]  sk_prot_alloc+0x60/0x2a0
[ 1059.957561][T29132]  sk_alloc+0x36/0xe80
[ 1059.957612][T29132]  rxrpc_create+0x116/0x8d0
[ 1059.957645][T29132]  __sock_create+0x339/0x860
[ 1059.957679][T29132]  __sys_socket+0x14d/0x260
[ 1059.957708][T29132]  ? __pfx___sys_socket+0x10/0x10
[ 1059.957736][T29132]  ? xfd_validate_state+0x129/0x190
[ 1059.957782][T29132]  __x64_sys_socket+0x72/0xb0
[ 1059.957811][T29132]  ? lockdep_hardirqs_on+0x78/0x100
[ 1059.957840][T29132]  do_syscall_64+0xc9/0xf80
[ 1059.957872][T29132]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1059.957897][T29132] RIP: 0033:0x7fe5f359aeb9
[ 1059.957918][T29132] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1059.957942][T29132] RSP: 002b:00007fe5f453f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1059.957966][T29132] RAX: ffffffffffffffda RBX: 00007fe5f3815fa0 RCX: 00007fe5f359aeb9
[ 1059.957982][T29132] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1059.957998][T29132] RBP: 00007fe5f3608c1f R08: 0000000000000000 R09: 0000000000000000
[ 1059.958013][T29132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1059.958028][T29132] R13: 00007fe5f3816038 R14: 00007fe5f3815fa0 R15: 00007ffc22040738
[ 1059.958059][T29132]  </TASK>
[ 1061.230402][T29170] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3707'.
[ 1061.629122][T29189] random: crng reseeded on system resumption
[ 1061.841688][T29192] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3709'.
[ 1061.910778][T29192] netlink: 'syz.2.3709': attribute type 1 has an invalid length.
[ 1061.918628][T29192] netlink: 13 bytes leftover after parsing attributes in process `syz.2.3709'.
[ 1061.978087][T29192] netlink: 'syz.2.3709': attribute type 1 has an invalid length.
[ 1062.007757][T29195] input: f�
 as /devices/virtual/input/input63
[ 1062.929627][T29216] FAULT_INJECTION: forcing a failure.
[ 1062.929627][T29216] name failslab, interval 1, probability 0, space 0, times 0
[ 1062.998714][T29216] CPU: 0 UID: 0 PID: 29216 Comm: syz.3.3715 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1062.998768][T29216] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1062.998782][T29216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1062.998797][T29216] Call Trace:
[ 1062.998805][T29216]  <TASK>
[ 1062.998814][T29216]  dump_stack_lvl+0x100/0x190
[ 1062.998847][T29216]  should_fail_ex.cold+0x5/0xa
[ 1062.998887][T29216]  should_failslab+0xc2/0x120
[ 1062.998932][T29216]  ? lsm_blob_alloc+0x68/0x90
[ 1062.998982][T29216]  __kmalloc_noprof+0xf6/0x9c0
[ 1062.999033][T29216]  ? lsm_blob_alloc+0x68/0x90
[ 1062.999058][T29216]  lsm_blob_alloc+0x68/0x90
[ 1062.999086][T29216]  security_sk_alloc+0x2d/0x290
[ 1062.999119][T29216]  sk_prot_alloc+0x1d1/0x2a0
[ 1062.999147][T29216]  sk_alloc+0x36/0xe80
[ 1062.999181][T29216]  rxrpc_create+0x116/0x8d0
[ 1062.999215][T29216]  __sock_create+0x339/0x860
[ 1062.999248][T29216]  __sys_socket+0x14d/0x260
[ 1062.999286][T29216]  ? __pfx___sys_socket+0x10/0x10
[ 1062.999314][T29216]  ? xfd_validate_state+0x129/0x190
[ 1062.999361][T29216]  __x64_sys_socket+0x72/0xb0
[ 1062.999390][T29216]  ? lockdep_hardirqs_on+0x78/0x100
[ 1062.999419][T29216]  do_syscall_64+0xc9/0xf80
[ 1062.999451][T29216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1062.999476][T29216] RIP: 0033:0x7fe5f359aeb9
[ 1062.999496][T29216] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1062.999520][T29216] RSP: 002b:00007fe5f453f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1062.999544][T29216] RAX: ffffffffffffffda RBX: 00007fe5f3815fa0 RCX: 00007fe5f359aeb9
[ 1062.999560][T29216] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1062.999576][T29216] RBP: 00007fe5f3608c1f R08: 0000000000000000 R09: 0000000000000000
[ 1062.999591][T29216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1062.999606][T29216] R13: 00007fe5f3816038 R14: 00007fe5f3815fa0 R15: 00007ffc22040738
[ 1062.999637][T29216]  </TASK>
[ 1063.929168][T29243] FAULT_INJECTION: forcing a failure.
[ 1063.929168][T29243] name failslab, interval 1, probability 0, space 0, times 0
[ 1063.977238][T29243] CPU: 0 UID: 0 PID: 29243 Comm: syz.0.3722 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1063.977288][T29243] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1063.977302][T29243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1063.977316][T29243] Call Trace:
[ 1063.977324][T29243]  <TASK>
[ 1063.977334][T29243]  dump_stack_lvl+0x100/0x190
[ 1063.977367][T29243]  should_fail_ex.cold+0x5/0xa
[ 1063.977407][T29243]  should_failslab+0xc2/0x120
[ 1063.977442][T29243]  __kmalloc_cache_noprof+0x80/0x810
[ 1063.977466][T29243]  ? assoc_array_walk+0x1e1/0x5b0
[ 1063.977492][T29243]  ? assoc_array_insert+0x262/0x32c0
[ 1063.977524][T29243]  ? assoc_array_insert+0x262/0x32c0
[ 1063.977555][T29243]  assoc_array_insert+0x262/0x32c0
[ 1063.977582][T29243]  ? __mutex_lock+0x26a/0x1b90
[ 1063.977632][T29243]  ? key_link+0x2bb/0x390
[ 1063.977665][T29243]  ? __pfx___mutex_lock+0x10/0x10
[ 1063.977698][T29243]  ? __pfx_assoc_array_insert+0x10/0x10
[ 1063.977724][T29243]  ? __pfx___might_resched+0x10/0x10
[ 1063.977769][T29243]  ? down_write+0x146/0x1f0
[ 1063.977801][T29243]  ? __pfx_down_write+0x10/0x10
[ 1063.977837][T29243]  __key_link_begin+0xf5/0x260
[ 1063.977866][T29243]  key_link+0x103/0x390
[ 1063.977891][T29243]  ? __up_read+0x2c5/0x700
[ 1063.977929][T29243]  ? __pfx_key_link+0x10/0x10
[ 1063.977954][T29243]  ? bpf_lsm_key_permission+0x9/0x10
[ 1063.977994][T29243]  ? key_task_permission+0x2c7/0x3c0
[ 1063.978033][T29243]  keyctl_get_persistent+0x5e2/0x8b0
[ 1063.978061][T29243]  ? __pfx_keyctl_get_persistent+0x10/0x10
[ 1063.978091][T29243]  ? __x64_sys_futex+0x34f/0x4d0
[ 1063.978131][T29243]  ? __x64_sys_futex+0x358/0x4d0
[ 1063.978170][T29243]  ? xfd_validate_state+0x129/0x190
[ 1063.978217][T29243]  __do_sys_keyctl+0x3b2/0x5a0
[ 1063.978257][T29243]  do_syscall_64+0xc9/0xf80
[ 1063.978302][T29243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1063.978327][T29243] RIP: 0033:0x7f2c1019aeb9
[ 1063.978347][T29243] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1063.978370][T29243] RSP: 002b:00007f2c10fcd028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1063.978394][T29243] RAX: ffffffffffffffda RBX: 00007f2c10415fa0 RCX: 00007f2c1019aeb9
[ 1063.978409][T29243] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016
[ 1063.978424][T29243] RBP: 00007f2c10208c1f R08: 000000000000000c R09: 0000000000000000
[ 1063.978438][T29243] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000
[ 1063.978453][T29243] R13: 00007f2c10416038 R14: 00007f2c10415fa0 R15: 00007ffd40b6b7a8
[ 1063.978483][T29243]  </TASK>
[ 1064.490592][T29258] input: f�
 as /devices/virtual/input/input64
[ 1064.922780][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1064.929123][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1066.298236][   T30] audit: type=1806 audit(4294967302.820:26): xattr="" res=-22
[ 1066.349425][   T30] audit: type=1806 audit(4294967302.830:27): xattr="" res=-22
[ 1067.440017][T29395] zswap: compressor  not available
[ 1067.709534][T29409] FAULT_INJECTION: forcing a failure.
[ 1067.709534][T29409] name failslab, interval 1, probability 0, space 0, times 0
[ 1067.741689][T29409] CPU: 0 UID: 0 PID: 29409 Comm: syz.0.3732 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1067.741736][T29409] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1067.741748][T29409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1067.741777][T29409] Call Trace:
[ 1067.741784][T29409]  <TASK>
[ 1067.741792][T29409]  dump_stack_lvl+0x100/0x190
[ 1067.741822][T29409]  should_fail_ex.cold+0x5/0xa
[ 1067.741857][T29409]  should_failslab+0xc2/0x120
[ 1067.741888][T29409]  kmem_cache_alloc_noprof+0x83/0x780
[ 1067.741916][T29409]  ? sk_prot_alloc+0x60/0x2a0
[ 1067.741942][T29409]  ? sk_prot_alloc+0x60/0x2a0
[ 1067.741962][T29409]  sk_prot_alloc+0x60/0x2a0
[ 1067.741985][T29409]  sk_alloc+0x36/0xe80
[ 1067.742014][T29409]  rxrpc_create+0x116/0x8d0
[ 1067.742061][T29409]  __sock_create+0x339/0x860
[ 1067.742091][T29409]  __sys_socket+0x14d/0x260
[ 1067.742118][T29409]  ? __pfx___sys_socket+0x10/0x10
[ 1067.742143][T29409]  ? xfd_validate_state+0x129/0x190
[ 1067.742186][T29409]  __x64_sys_socket+0x72/0xb0
[ 1067.742211][T29409]  ? lockdep_hardirqs_on+0x78/0x100
[ 1067.742238][T29409]  do_syscall_64+0xc9/0xf80
[ 1067.742267][T29409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1067.742289][T29409] RIP: 0033:0x7f2c1019aeb9
[ 1067.742307][T29409] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1067.742329][T29409] RSP: 002b:00007f2c10fcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1067.742350][T29409] RAX: ffffffffffffffda RBX: 00007f2c10415fa0 RCX: 00007f2c1019aeb9
[ 1067.742365][T29409] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1067.742379][T29409] RBP: 00007f2c10208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1067.742393][T29409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1067.742413][T29409] R13: 00007f2c10416038 R14: 00007f2c10415fa0 R15: 00007ffd40b6b7a8
[ 1067.742460][T29409]  </TASK>
[ 1068.395149][T29423] netlink: 186 bytes leftover after parsing attributes in process `syz.1.3737'.
[ 1071.151357][T29523] FAULT_INJECTION: forcing a failure.
[ 1071.151357][T29523] name failslab, interval 1, probability 0, space 0, times 0
[ 1071.177027][T29523] CPU: 0 UID: 0 PID: 29523 Comm: syz.1.3744 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1071.177075][T29523] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1071.177088][T29523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1071.177101][T29523] Call Trace:
[ 1071.177108][T29523]  <TASK>
[ 1071.177117][T29523]  dump_stack_lvl+0x100/0x190
[ 1071.177149][T29523]  should_fail_ex.cold+0x5/0xa
[ 1071.177186][T29523]  should_failslab+0xc2/0x120
[ 1071.177218][T29523]  kmem_cache_alloc_noprof+0x83/0x780
[ 1071.177248][T29523]  ? sk_prot_alloc+0x60/0x2a0
[ 1071.177281][T29523]  ? sk_prot_alloc+0x60/0x2a0
[ 1071.177302][T29523]  sk_prot_alloc+0x60/0x2a0
[ 1071.177327][T29523]  sk_alloc+0x36/0xe80
[ 1071.177359][T29523]  rxrpc_create+0x116/0x8d0
[ 1071.177389][T29523]  __sock_create+0x339/0x860
[ 1071.177419][T29523]  __sys_socket+0x14d/0x260
[ 1071.177453][T29523]  ? __pfx___sys_socket+0x10/0x10
[ 1071.177480][T29523]  ? xfd_validate_state+0x129/0x190
[ 1071.177523][T29523]  __x64_sys_socket+0x72/0xb0
[ 1071.177549][T29523]  ? lockdep_hardirqs_on+0x78/0x100
[ 1071.177577][T29523]  do_syscall_64+0xc9/0xf80
[ 1071.177626][T29523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1071.177651][T29523] RIP: 0033:0x7fe42339aeb9
[ 1071.177671][T29523] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1071.177696][T29523] RSP: 002b:00007fe42432e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1071.177720][T29523] RAX: ffffffffffffffda RBX: 00007fe423615fa0 RCX: 00007fe42339aeb9
[ 1071.177736][T29523] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1071.177751][T29523] RBP: 00007fe423408c1f R08: 0000000000000000 R09: 0000000000000000
[ 1071.177766][T29523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1071.177781][T29523] R13: 00007fe423616038 R14: 00007fe423615fa0 R15: 00007fff0f644b48
[ 1071.177811][T29523]  </TASK>
[ 1072.251930][T29533] Invalid ELF header magic: != ELF
[ 1073.245161][T29537] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3749'.
[ 1073.626952][T29549] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3750'.
[ 1076.544341][T29594] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3761'.
[ 1079.345355][T24485] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1079.354770][T24485] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1079.363322][T24485] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1079.380361][T24485] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1079.389306][T24485] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1080.162317][T29669] chnl_net:caif_netlink_parms(): no params data found
[ 1080.254100][ T5833] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1080.264756][ T5833] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1080.272811][ T5833] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1080.295704][ T5833] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1080.303290][ T5833] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1080.822664][T29669] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1080.867284][T29669] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1080.910334][T29669] bridge_slave_0: entered allmulticast mode
[ 1080.946380][T29669] bridge_slave_0: entered promiscuous mode
[ 1080.983035][T29669] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1081.007348][T29669] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1081.049571][T29669] bridge_slave_1: entered allmulticast mode
[ 1081.072581][T29669] bridge_slave_1: entered promiscuous mode
[ 1081.415502][T29669] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1081.467802][T29669] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1081.480094][ T5833] Bluetooth: hci0: command tx timeout
[ 1081.868894][T29669] team0: Port device team_slave_0 added
[ 1081.909401][T29669] team0: Port device team_slave_1 added
[ 1081.938668][T29740] chnl_net:caif_netlink_parms(): no params data found
[ 1082.146708][T29669] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1082.173812][T29669] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1082.266875][T29669] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1082.359987][ T5833] Bluetooth: hci3: command tx timeout
[ 1082.420419][T29669] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1082.427415][T29669] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1082.530010][T29669] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1082.766066][T29669] hsr_slave_0: entered promiscuous mode
[ 1082.791182][T29669] hsr_slave_1: entered promiscuous mode
[ 1082.814115][T29669] debugfs: 'hsr0' already exists in 'hsr'
[ 1082.839990][T29669] Cannot create hsr debugfs directory
[ 1082.883791][T29740] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1082.915790][T29740] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1082.933696][T29740] bridge_slave_0: entered allmulticast mode
[ 1082.965072][T29740] bridge_slave_0: entered promiscuous mode
[ 1083.019587][T29740] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1083.041211][T29740] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1083.048482][T29740] bridge_slave_1: entered allmulticast mode
[ 1083.096532][T29740] bridge_slave_1: entered promiscuous mode
[ 1083.234861][T29740] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1083.284104][T29740] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1083.437249][T29989] Invalid ELF header magic: != ELF
[ 1083.468379][T29740] team0: Port device team_slave_0 added
[ 1083.501719][T29740] team0: Port device team_slave_1 added
[ 1083.561414][ T5833] Bluetooth: hci0: command tx timeout
[ 1083.726559][T29740] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1083.747096][T29740] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1083.838754][T29740] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1083.886509][T29740] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1083.911537][T29740] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1083.995445][T29740] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1084.264506][T29740] hsr_slave_0: entered promiscuous mode
[ 1084.300987][T29740] hsr_slave_1: entered promiscuous mode
[ 1084.317412][T29740] debugfs: 'hsr0' already exists in 'hsr'
[ 1084.331447][T29740] Cannot create hsr debugfs directory
[ 1084.440062][ T5833] Bluetooth: hci3: command tx timeout
[ 1084.882319][T29669] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1085.143614][T29669] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1085.179573][T29669] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1085.213656][T29669] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1085.547492][T29740] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1085.587887][T29740] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1085.625727][T29740] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1085.640158][ T5833] Bluetooth: hci0: command tx timeout
[ 1085.657027][T29740] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1085.686843][T29669] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1085.791602][T29669] 8021q: adding VLAN 0 to HW filter on device team0
[ 1085.833292][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1085.840479][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1085.894309][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1085.901500][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1086.114675][T29740] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1086.213336][T29740] 8021q: adding VLAN 0 to HW filter on device team0
[ 1086.271053][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1086.278183][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1086.341633][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1086.348856][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1086.525997][ T5833] Bluetooth: hci3: command tx timeout
[ 1086.621481][T29740] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1086.998700][T29669] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1087.239651][T29740] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1087.724059][ T5833] Bluetooth: hci0: command tx timeout
[ 1088.216542][T29740] veth0_vlan: entered promiscuous mode
[ 1088.249230][T29669] veth0_vlan: entered promiscuous mode
[ 1088.286592][T29740] veth1_vlan: entered promiscuous mode
[ 1088.331959][T29669] veth1_vlan: entered promiscuous mode
[ 1088.443174][T29740] veth0_macvtap: entered promiscuous mode
[ 1088.456478][T29669] veth0_macvtap: entered promiscuous mode
[ 1088.494181][T29740] veth1_macvtap: entered promiscuous mode
[ 1088.533677][T29669] veth1_macvtap: entered promiscuous mode
[ 1088.589284][T29740] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1088.600410][ T5833] Bluetooth: hci3: command tx timeout
[ 1088.635813][T29740] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1088.705317][T25158] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1088.723675][T25158] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1088.771713][T29669] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1088.795549][T25158] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1088.851833][T29669] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1088.883102][T25158] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1088.945348][T25464] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1088.992097][T25464] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1089.039212][T25464] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1089.072125][T30354] [U] 
[ 1089.076655][T25464] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1089.281461][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1089.331228][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1089.453392][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1089.485842][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1089.612305][T25158] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1089.653073][T25158] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1089.805020][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1089.849602][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1091.821706][T30473] netlink: 338 bytes leftover after parsing attributes in process `syz.0.3794'.
[ 1092.016666][T30475] netlink: 338 bytes leftover after parsing attributes in process `syz.0.3794'.
[ 1092.043922][T30487] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1092.364137][T30464] netlink: 210 bytes leftover after parsing attributes in process `syz.0.3794'.
[ 1092.831711][T30506] FAULT_INJECTION: forcing a failure.
[ 1092.831711][T30506] name failslab, interval 1, probability 0, space 0, times 0
[ 1092.882877][T30506] CPU: 0 UID: 0 PID: 30506 Comm: syz.4.3801 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1092.882925][T30506] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1092.882938][T30506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1092.882952][T30506] Call Trace:
[ 1092.882960][T30506]  <TASK>
[ 1092.882968][T30506]  dump_stack_lvl+0x100/0x190
[ 1092.882999][T30506]  should_fail_ex.cold+0x5/0xa
[ 1092.883037][T30506]  should_failslab+0xc2/0x120
[ 1092.883069][T30506]  kmem_cache_alloc_noprof+0x83/0x780
[ 1092.883119][T30506]  ? sk_prot_alloc+0x60/0x2a0
[ 1092.883149][T30506]  ? sk_prot_alloc+0x60/0x2a0
[ 1092.883172][T30506]  sk_prot_alloc+0x60/0x2a0
[ 1092.883198][T30506]  sk_alloc+0x36/0xe80
[ 1092.883233][T30506]  rxrpc_create+0x116/0x8d0
[ 1092.883283][T30506]  __sock_create+0x339/0x860
[ 1092.883316][T30506]  __sys_socket+0x14d/0x260
[ 1092.883345][T30506]  ? __pfx___sys_socket+0x10/0x10
[ 1092.883373][T30506]  ? xfd_validate_state+0x129/0x190
[ 1092.883425][T30506]  __x64_sys_socket+0x72/0xb0
[ 1092.883454][T30506]  ? lockdep_hardirqs_on+0x78/0x100
[ 1092.883483][T30506]  do_syscall_64+0xc9/0xf80
[ 1092.883519][T30506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1092.883544][T30506] RIP: 0033:0x7f149719aeb9
[ 1092.883563][T30506] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1092.883587][T30506] RSP: 002b:00007f14980c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1092.883610][T30506] RAX: ffffffffffffffda RBX: 00007f1497415fa0 RCX: 00007f149719aeb9
[ 1092.883626][T30506] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1092.883641][T30506] RBP: 00007f1497208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1092.883656][T30506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1092.883670][T30506] R13: 00007f1497416038 R14: 00007f1497415fa0 R15: 00007ffcac855898
[ 1092.883699][T30506]  </TASK>
[ 1093.786731][T30516] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3803'.
[ 1094.215018][T30478] [U] 
[ 1095.767315][T30571] zswap: compressor  not available
[ 1095.870129][T30595] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3810'.
[ 1096.205026][T30579] netlink: 338 bytes leftover after parsing attributes in process `syz.1.3810'.
[ 1096.301304][T30586] netlink: 210 bytes leftover after parsing attributes in process `syz.1.3810'.
[ 1097.458158][T30664] FAULT_INJECTION: forcing a failure.
[ 1097.458158][T30664] name failslab, interval 1, probability 0, space 0, times 0
[ 1097.503226][T30664] CPU: 0 UID: 0 PID: 30664 Comm: syz.0.3813 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1097.503278][T30664] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1097.503292][T30664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1097.503306][T30664] Call Trace:
[ 1097.503315][T30664]  <TASK>
[ 1097.503325][T30664]  dump_stack_lvl+0x100/0x190
[ 1097.503358][T30664]  should_fail_ex.cold+0x5/0xa
[ 1097.503398][T30664]  should_failslab+0xc2/0x120
[ 1097.503432][T30664]  kmem_cache_alloc_noprof+0x83/0x780
[ 1097.503464][T30664]  ? sk_prot_alloc+0x60/0x2a0
[ 1097.503494][T30664]  ? sk_prot_alloc+0x60/0x2a0
[ 1097.503517][T30664]  sk_prot_alloc+0x60/0x2a0
[ 1097.503543][T30664]  sk_alloc+0x36/0xe80
[ 1097.503576][T30664]  rxrpc_create+0x116/0x8d0
[ 1097.503610][T30664]  __sock_create+0x339/0x860
[ 1097.503642][T30664]  __sys_socket+0x14d/0x260
[ 1097.503672][T30664]  ? __pfx___sys_socket+0x10/0x10
[ 1097.503698][T30664]  ? xfd_validate_state+0x129/0x190
[ 1097.503743][T30664]  __x64_sys_socket+0x72/0xb0
[ 1097.503770][T30664]  ? lockdep_hardirqs_on+0x78/0x100
[ 1097.503798][T30664]  do_syscall_64+0xc9/0xf80
[ 1097.503829][T30664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1097.503854][T30664] RIP: 0033:0x7f2c1019aeb9
[ 1097.503873][T30664] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1097.503896][T30664] RSP: 002b:00007f2c10fcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1097.503920][T30664] RAX: ffffffffffffffda RBX: 00007f2c10415fa0 RCX: 00007f2c1019aeb9
[ 1097.503935][T30664] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1097.503950][T30664] RBP: 00007f2c10208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1097.503964][T30664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1097.503979][T30664] R13: 00007f2c10416038 R14: 00007f2c10415fa0 R15: 00007ffd40b6b7a8
[ 1097.504015][T30664]  </TASK>
[ 1099.634219][T30707] netlink: 'syz.1.3817': attribute type 4 has an invalid length.
[ 1101.847793][T30755] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3823'.
[ 1103.761489][T30814] zswap: compressor  not available
[ 1105.396414][T30857] zswap: compressor  not available
[ 1105.678701][T30872] zswap: compressor  not available
[ 1105.708515][T30868] FAULT_INJECTION: forcing a failure.
[ 1105.708515][T30868] name failslab, interval 1, probability 0, space 0, times 0
[ 1105.930964][T30868] CPU: 0 UID: 0 PID: 30868 Comm: syz.1.3839 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1105.931017][T30868] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1105.931032][T30868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1105.931047][T30868] Call Trace:
[ 1105.931056][T30868]  <TASK>
[ 1105.931065][T30868]  dump_stack_lvl+0x100/0x190
[ 1105.931098][T30868]  should_fail_ex.cold+0x5/0xa
[ 1105.931139][T30868]  should_failslab+0xc2/0x120
[ 1105.931183][T30868]  kmem_cache_alloc_noprof+0x83/0x780
[ 1105.931217][T30868]  ? __lock_acquire+0x4a5/0x2630
[ 1105.931249][T30868]  ? sk_prot_alloc+0x60/0x2a0
[ 1105.931280][T30868]  ? sk_prot_alloc+0x60/0x2a0
[ 1105.931304][T30868]  sk_prot_alloc+0x60/0x2a0
[ 1105.931331][T30868]  sk_alloc+0x36/0xe80
[ 1105.931366][T30868]  unix_create1+0xa6/0x700
[ 1105.931392][T30868]  unix_create+0x145/0x270
[ 1105.931416][T30868]  __sock_create+0x339/0x860
[ 1105.931450][T30868]  __sys_socketpair+0x261/0x5b0
[ 1105.931494][T30868]  ? __pfx___sys_socketpair+0x10/0x10
[ 1105.931534][T30868]  __x64_sys_socketpair+0x96/0x100
[ 1105.931563][T30868]  ? lockdep_hardirqs_on+0x78/0x100
[ 1105.931590][T30868]  do_syscall_64+0xc9/0xf80
[ 1105.931621][T30868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1105.931645][T30868] RIP: 0033:0x7fe42339aeb9
[ 1105.931676][T30868] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1105.931698][T30868] RSP: 002b:00007fe42430d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 1105.931721][T30868] RAX: ffffffffffffffda RBX: 00007fe423616090 RCX: 00007fe42339aeb9
[ 1105.931736][T30868] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001
[ 1105.931750][T30868] RBP: 00007fe423408c1f R08: 0000000000000000 R09: 0000000000000000
[ 1105.931763][T30868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1105.931776][T30868] R13: 00007fe423616128 R14: 00007fe423616090 R15: 00007fff0f644b48
[ 1105.931804][T30868]  </TASK>
[ 1107.095654][T30921] FAULT_INJECTION: forcing a failure.
[ 1107.095654][T30921] name failslab, interval 1, probability 0, space 0, times 0
[ 1107.150166][T30921] CPU: 0 UID: 0 PID: 30921 Comm: syz.0.3844 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1107.150215][T30921] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1107.150229][T30921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1107.150243][T30921] Call Trace:
[ 1107.150250][T30921]  <TASK>
[ 1107.150259][T30921]  dump_stack_lvl+0x100/0x190
[ 1107.150290][T30921]  should_fail_ex.cold+0x5/0xa
[ 1107.150327][T30921]  should_failslab+0xc2/0x120
[ 1107.150359][T30921]  kmem_cache_alloc_noprof+0x83/0x780
[ 1107.150389][T30921]  ? sk_prot_alloc+0x60/0x2a0
[ 1107.150417][T30921]  ? sk_prot_alloc+0x60/0x2a0
[ 1107.150437][T30921]  sk_prot_alloc+0x60/0x2a0
[ 1107.150462][T30921]  sk_alloc+0x36/0xe80
[ 1107.150493][T30921]  rxrpc_create+0x116/0x8d0
[ 1107.150523][T30921]  __sock_create+0x339/0x860
[ 1107.150553][T30921]  __sys_socket+0x14d/0x260
[ 1107.150585][T30921]  ? __pfx___sys_socket+0x10/0x10
[ 1107.150628][T30921]  ? xfd_validate_state+0x129/0x190
[ 1107.150673][T30921]  __x64_sys_socket+0x72/0xb0
[ 1107.150700][T30921]  ? lockdep_hardirqs_on+0x78/0x100
[ 1107.150729][T30921]  do_syscall_64+0xc9/0xf80
[ 1107.150761][T30921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1107.150785][T30921] RIP: 0033:0x7f2c1019aeb9
[ 1107.150804][T30921] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1107.150827][T30921] RSP: 002b:00007f2c10fcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1107.150850][T30921] RAX: ffffffffffffffda RBX: 00007f2c10415fa0 RCX: 00007f2c1019aeb9
[ 1107.150866][T30921] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1107.150881][T30921] RBP: 00007f2c10208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1107.150896][T30921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1107.150910][T30921] R13: 00007f2c10416038 R14: 00007f2c10415fa0 R15: 00007ffd40b6b7a8
[ 1107.150940][T30921]  </TASK>
[ 1109.611479][T31006] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input65
[ 1109.681038][T31012] random: crng reseeded on system resumption
[ 1109.855007][T31021] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3854'.
[ 1109.932419][T24485] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1109.935771][T24485] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1109.936524][T24485] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1109.938506][T24485] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1109.950913][T24485] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1110.959326][T31019] chnl_net:caif_netlink_parms(): no params data found
[ 1111.394088][T31019] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1111.423925][T31019] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1111.446924][T31019] bridge_slave_0: entered allmulticast mode
[ 1111.466771][T31169] FAULT_INJECTION: forcing a failure.
[ 1111.466771][T31169] name failslab, interval 1, probability 0, space 0, times 0
[ 1111.493507][T31019] bridge_slave_0: entered promiscuous mode
[ 1111.532365][T31019] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1111.548468][T31169] CPU: 0 UID: 0 PID: 31169 Comm: syz.1.3859 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1111.548518][T31169] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1111.548532][T31169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1111.548546][T31169] Call Trace:
[ 1111.548554][T31169]  <TASK>
[ 1111.548563][T31169]  dump_stack_lvl+0x100/0x190
[ 1111.548596][T31169]  should_fail_ex.cold+0x5/0xa
[ 1111.548642][T31169]  should_failslab+0xc2/0x120
[ 1111.548676][T31169]  ? copy_splice_read+0x1a3/0xb90
[ 1111.548700][T31169]  __kmalloc_noprof+0xf6/0x9c0
[ 1111.548732][T31169]  ? copy_splice_read+0x1a3/0xb90
[ 1111.548769][T31169]  copy_splice_read+0x1a3/0xb90
[ 1111.548794][T31169]  ? __lock_acquire+0x4a5/0x2630
[ 1111.548828][T31169]  ? __pfx_copy_splice_read+0x10/0x10
[ 1111.548875][T31169]  ? __fget_files+0x215/0x3d0
[ 1111.548901][T31169]  ? __pfx_copy_splice_read+0x10/0x10
[ 1111.548924][T31169]  do_splice_read+0x285/0x370
[ 1111.548950][T31169]  splice_file_to_pipe+0x82/0x120
[ 1111.548978][T31169]  do_sendfile+0x366/0xe20
[ 1111.549007][T31169]  ? __pfx_do_sendfile+0x10/0x10
[ 1111.549039][T31169]  __x64_sys_sendfile64+0x154/0x220
[ 1111.549069][T31169]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1111.549098][T31169]  ? do_user_addr_fault+0x8d6/0x12f0
[ 1111.549128][T31169]  do_syscall_64+0xc9/0xf80
[ 1111.549157][T31169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1111.549178][T31169] RIP: 0033:0x7fe42339aeb9
[ 1111.549195][T31169] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1111.549215][T31169] RSP: 002b:00007fe4242ec028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1111.549235][T31169] RAX: ffffffffffffffda RBX: 00007fe423616180 RCX: 00007fe42339aeb9
[ 1111.549250][T31169] RDX: 0000200000000040 RSI: 0000000000000003 RDI: 0000000000000000
[ 1111.549262][T31169] RBP: 00007fe4242ec090 R08: 0000000000000000 R09: 0000000000000000
[ 1111.549275][T31169] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001
[ 1111.549287][T31169] R13: 00007fe423616218 R14: 00007fe423616180 R15: 00007fff0f644b48
[ 1111.549314][T31169]  </TASK>
[ 1111.765142][T31019] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1111.772852][T31019] bridge_slave_1: entered allmulticast mode
[ 1111.780117][T31019] bridge_slave_1: entered promiscuous mode
[ 1112.064433][T24485] Bluetooth: hci6: command tx timeout
[ 1112.210151][T31019] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1112.233057][T31019] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1112.808105][T31019] team0: Port device team_slave_0 added
[ 1112.832300][T31019] team0: Port device team_slave_1 added
[ 1113.143799][T31019] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1113.179366][T31019] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1113.315323][T31019] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1113.395208][T31019] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1113.432550][T31019] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1113.577750][T31019] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1113.850929][T31019] hsr_slave_0: entered promiscuous mode
[ 1113.882091][T31019] hsr_slave_1: entered promiscuous mode
[ 1113.906930][T31019] debugfs: 'hsr0' already exists in 'hsr'
[ 1113.913861][T31376] random: crng reseeded on system resumption
[ 1113.930924][T31019] Cannot create hsr debugfs directory
[ 1114.121056][ T5833] Bluetooth: hci6: command tx timeout
[ 1114.402407][T31427] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3868'.
[ 1114.977384][T31507] zswap: compressor  not available
[ 1115.554957][T31573] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3873'.
[ 1115.598805][T31019] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1115.649555][T31019] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1115.678224][T31583] random: crng reseeded on system resumption
[ 1115.711000][T31019] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1115.752593][T31019] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1116.144406][T31019] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1116.205262][ T5833] Bluetooth: hci6: command tx timeout
[ 1116.235032][T31019] 8021q: adding VLAN 0 to HW filter on device team0
[ 1116.317647][T25158] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1116.324862][T25158] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1116.409797][T25158] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1116.416932][T25158] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1116.523880][T31602] FAULT_INJECTION: forcing a failure.
[ 1116.523880][T31602] name failslab, interval 1, probability 0, space 0, times 0
[ 1116.601743][T31602] CPU: 0 UID: 0 PID: 31602 Comm: syz.1.3878 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1116.601793][T31602] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1116.601807][T31602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1116.601822][T31602] Call Trace:
[ 1116.601830][T31602]  <TASK>
[ 1116.601839][T31602]  dump_stack_lvl+0x100/0x190
[ 1116.601872][T31602]  should_fail_ex.cold+0x5/0xa
[ 1116.601912][T31602]  should_failslab+0xc2/0x120
[ 1116.601947][T31602]  __kvmalloc_node_noprof+0x101/0xac0
[ 1116.601979][T31602]  ? io_alloc_cache_init+0x38/0x170
[ 1116.602017][T31602]  ? io_alloc_cache_init+0x38/0x170
[ 1116.602048][T31602]  io_alloc_cache_init+0x38/0x170
[ 1116.602083][T31602]  io_uring_setup.cold+0x3cd/0x1a89
[ 1116.602119][T31602]  ? __pfx_io_uring_setup+0x10/0x10
[ 1116.602149][T31602]  ? do_futex+0x192/0x350
[ 1116.602191][T31602]  ? __pfx_do_futex+0x10/0x10
[ 1116.602246][T31602]  ? fput+0x79/0x100
[ 1116.602278][T31602]  ? xfd_validate_state+0x129/0x190
[ 1116.602320][T31602]  __x64_sys_io_uring_setup+0xc2/0x170
[ 1116.602349][T31602]  do_syscall_64+0xc9/0xf80
[ 1116.602378][T31602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.602402][T31602] RIP: 0033:0x7fe42339aeb9
[ 1116.602420][T31602] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1116.602442][T31602] RSP: 002b:00007fe42432e028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[ 1116.602463][T31602] RAX: ffffffffffffffda RBX: 00007fe423615fa0 RCX: 00007fe42339aeb9
[ 1116.602478][T31602] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000001d48
[ 1116.602492][T31602] RBP: 00007fe423408c1f R08: 0000000000000000 R09: 0000000000000000
[ 1116.602505][T31602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1116.602518][T31602] R13: 00007fe423616038 R14: 00007fe423615fa0 R15: 00007fff0f644b48
[ 1116.602552][T31602]  </TASK>
[ 1116.886011][T31019] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1117.537689][T31019] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1118.286647][ T5833] Bluetooth: hci6: command tx timeout
[ 1118.661587][T31713] FAULT_INJECTION: forcing a failure.
[ 1118.661587][T31713] name failslab, interval 1, probability 0, space 0, times 0
[ 1118.770439][T31713] CPU: 0 UID: 0 PID: 31713 Comm: syz.0.3885 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1118.770494][T31713] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1118.770508][T31713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1118.770523][T31713] Call Trace:
[ 1118.770532][T31713]  <TASK>
[ 1118.770541][T31713]  dump_stack_lvl+0x100/0x190
[ 1118.770576][T31713]  should_fail_ex.cold+0x5/0xa
[ 1118.770618][T31713]  should_failslab+0xc2/0x120
[ 1118.770654][T31713]  kmem_cache_alloc_noprof+0x83/0x780
[ 1118.770687][T31713]  ? __lock_acquire+0x4a5/0x2630
[ 1118.770719][T31713]  ? vm_area_dup+0x27/0x8e0
[ 1118.770749][T31713]  ? vm_area_dup+0x27/0x8e0
[ 1118.770773][T31713]  vm_area_dup+0x27/0x8e0
[ 1118.770801][T31713]  __split_vma+0x18c/0xe30
[ 1118.770832][T31713]  ? __pfx___split_vma+0x10/0x10
[ 1118.770856][T31713]  ? mas_next_slot+0x1003/0x18b0
[ 1118.770896][T31713]  ? __pfx___up_read+0x10/0x10
[ 1118.770940][T31713]  vma_modify+0x1127/0x2330
[ 1118.770973][T31713]  ? __pfx_validate_mm+0x10/0x10
[ 1118.771000][T31713]  ? __pfx_vma_modify+0x10/0x10
[ 1118.771034][T31713]  ? __up_read+0x2c5/0x700
[ 1118.771077][T31713]  vma_modify_flags+0x257/0x3d0
[ 1118.771108][T31713]  ? __pfx_vma_modify_flags+0x10/0x10
[ 1118.771150][T31713]  ? percpu_counter_add_batch+0xb9/0x230
[ 1118.771196][T31713]  mprotect_fixup+0x209/0xb40
[ 1118.771228][T31713]  ? __pfx_mprotect_fixup+0x10/0x10
[ 1118.771257][T31713]  ? __pfx_mas_prev+0x10/0x10
[ 1118.771296][T31713]  do_mprotect_pkey+0x9e1/0xe70
[ 1118.771331][T31713]  ? __pfx_do_mprotect_pkey+0x10/0x10
[ 1118.771359][T31713]  ? do_vmi_munmap+0x1f8/0x3e0
[ 1118.771385][T31713]  ? do_vmi_munmap+0x200/0x3e0
[ 1118.771421][T31713]  ? __pfx___vm_munmap+0x10/0x10
[ 1118.771469][T31713]  __x64_sys_mprotect+0x78/0xc0
[ 1118.771495][T31713]  ? lockdep_hardirqs_on+0x78/0x100
[ 1118.771524][T31713]  do_syscall_64+0xc9/0xf80
[ 1118.771556][T31713]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1118.771581][T31713] RIP: 0033:0x7f2c1019acb7
[ 1118.771601][T31713] Code: 89 38 eb 84 0f 1f 80 00 00 00 00 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff e9 7a ff ff ff b8 0a 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1118.771626][T31713] RSP: 002b:00007f2c10f89d18 EFLAGS: 00000217 ORIG_RAX: 000000000000000a
[ 1118.771649][T31713] RAX: ffffffffffffffda RBX: 00007f2c08000000 RCX: 00007f2c1019acb7
[ 1118.771665][T31713] RDX: 0000000000000003 RSI: 0000000000021000 RDI: 00007f2c08000000
[ 1118.771681][T31713] RBP: 0000000000021000 R08: 00000000ffffffff R09: 0000000000000000
[ 1118.771696][T31713] R10: 0000000000000022 R11: 0000000000000217 R12: 0000000004000000
[ 1118.771711][T31713] R13: 0000000000001000 R14: 00007f2c0c000000 R15: 0000000001e00000
[ 1118.771742][T31713]  </TASK>
[ 1119.097810][T31019] veth0_vlan: entered promiscuous mode
[ 1119.109238][T31019] veth1_vlan: entered promiscuous mode
[ 1119.132123][T31019] veth0_macvtap: entered promiscuous mode
[ 1119.142080][T31019] veth1_macvtap: entered promiscuous mode
[ 1119.158547][T31019] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1119.171843][T31019] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1119.403025][T31707] zswap: compressor  not available
[ 1119.668835][T25158] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1119.681443][T25158] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1119.734984][T25158] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1119.759341][T25158] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1119.991807][T25463] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1120.031555][T25463] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1120.147435][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1120.174295][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1120.532792][T31743] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input66
[ 1120.595307][T31750] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1121.946795][T31765] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1122.802831][T31818] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3899'.
[ 1122.964778][T31813] zswap: compressor  not available
[ 1123.031976][T31818] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1123.062779][T31818] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1123.082003][T31818] bond0 (unregistering): Released all slaves
[ 1125.209525][T31941] netlink: 122 bytes leftover after parsing attributes in process `syz.5.3908'.
[ 1125.864944][T31957] zswap: compressor  not available
[ 1126.370768][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1126.377102][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1126.891580][T31979] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3911'.
[ 1127.078686][T31979] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1127.110387][T32002] random: crng reseeded on system resumption
[ 1127.119248][T31979] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1127.162733][T31979] bond0 (unregistering): Released all slaves
[ 1128.273407][T32038] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3916'.
[ 1128.414945][T32043] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1128.453722][T32043] FAULT_INJECTION: forcing a failure.
[ 1128.453722][T32043] name failslab, interval 1, probability 0, space 0, times 0
[ 1128.523555][T32043] CPU: 0 UID: 0 PID: 32043 Comm: syz.6.3918 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1128.523610][T32043] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1128.523624][T32043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1128.523640][T32043] Call Trace:
[ 1128.523648][T32043]  <TASK>
[ 1128.523658][T32043]  dump_stack_lvl+0x100/0x190
[ 1128.523692][T32043]  should_fail_ex.cold+0x5/0xa
[ 1128.523733][T32043]  should_failslab+0xc2/0x120
[ 1128.523769][T32043]  ? ops_init+0x77/0x5f0
[ 1128.523805][T32043]  __kmalloc_noprof+0xf6/0x9c0
[ 1128.523828][T32043]  ? __pfx_genl_rcv+0x10/0x10
[ 1128.523851][T32043]  ? __pfx_genl_bind+0x10/0x10
[ 1128.523874][T32043]  ? __pfx_genl_unbind+0x10/0x10
[ 1128.523896][T32043]  ? __pfx_genl_release+0x10/0x10
[ 1128.523927][T32043]  ? ops_init+0x77/0x5f0
[ 1128.523962][T32043]  ops_init+0x77/0x5f0
[ 1128.524002][T32043]  setup_net+0x118/0x3a0
[ 1128.524035][T32043]  ? __pfx_setup_net+0x10/0x10
[ 1128.524073][T32043]  ? lockdep_init_map_type+0x5c/0x250
[ 1128.524109][T32043]  ? mutex_init_lockep+0x110/0x150
[ 1128.524149][T32043]  copy_net_ns+0x46f/0x7c0
[ 1128.524176][T32043]  create_new_namespaces+0x3ea/0xab0
[ 1128.524211][T32043]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1128.524242][T32043]  ksys_unshare+0x455/0xab0
[ 1128.524279][T32043]  ? __pfx_ksys_unshare+0x10/0x10
[ 1128.524315][T32043]  ? xfd_validate_state+0x129/0x190
[ 1128.524363][T32043]  __x64_sys_unshare+0x31/0x40
[ 1128.524399][T32043]  do_syscall_64+0xc9/0xf80
[ 1128.524440][T32043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1128.524466][T32043] RIP: 0033:0x7f74b279aeb9
[ 1128.524485][T32043] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1128.524509][T32043] RSP: 002b:00007f74b3697028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1128.524533][T32043] RAX: ffffffffffffffda RBX: 00007f74b2a15fa0 RCX: 00007f74b279aeb9
[ 1128.524549][T32043] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1128.524565][T32043] RBP: 00007f74b2808c1f R08: 0000000000000000 R09: 0000000000000000
[ 1128.524580][T32043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1128.524594][T32043] R13: 00007f74b2a16038 R14: 00007f74b2a15fa0 R15: 00007ffefad1ca58
[ 1128.524626][T32043]  </TASK>
[ 1129.927344][T32094] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1131.416870][T32118] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3928'.
[ 1131.629364][T32101] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[ 1133.054424][T32157] FAULT_INJECTION: forcing a failure.
[ 1133.054424][T32157] name failslab, interval 1, probability 0, space 0, times 0
[ 1133.067517][T32157] CPU: 0 UID: 0 PID: 32157 Comm: syz.0.3935 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1133.067571][T32157] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1133.067593][T32157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1133.067608][T32157] Call Trace:
[ 1133.067619][T32157]  <TASK>
[ 1133.067629][T32157]  dump_stack_lvl+0x100/0x190
[ 1133.067664][T32157]  should_fail_ex.cold+0x5/0xa
[ 1133.067705][T32157]  should_failslab+0xc2/0x120
[ 1133.067741][T32157]  kmem_cache_alloc_noprof+0x83/0x780
[ 1133.067775][T32157]  ? __send_signal_locked+0x155/0x12d0
[ 1133.067804][T32157]  ? __send_signal_locked+0x155/0x12d0
[ 1133.067827][T32157]  __send_signal_locked+0x155/0x12d0
[ 1133.067857][T32157]  group_send_sig_info+0x2a4/0x300
[ 1133.067897][T32157]  ? __pfx_group_send_sig_info+0x10/0x10
[ 1133.067937][T32157]  ? kill_pid_info_type+0x1a/0x290
[ 1133.067966][T32157]  kill_pid_info_type+0x92/0x290
[ 1133.068001][T32157]  kill_proc_info+0x6f/0x1b0
[ 1133.068039][T32157]  kill_something_info+0x2a0/0x310
[ 1133.068075][T32157]  __x64_sys_kill+0x1c4/0x250
[ 1133.068108][T32157]  ? __pfx___x64_sys_kill+0x10/0x10
[ 1133.068155][T32157]  do_syscall_64+0xc9/0xf80
[ 1133.068188][T32157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1133.068213][T32157] RIP: 0033:0x7f2c1019aeb9
[ 1133.068233][T32157] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1133.068257][T32157] RSP: 002b:00007f2c10fac028 EFLAGS: 00000246 ORIG_RAX: 000000000000003e
[ 1133.068280][T32157] RAX: ffffffffffffffda RBX: 00007f2c10416090 RCX: 00007f2c1019aeb9
[ 1133.068296][T32157] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 00000000000005ab
[ 1133.068312][T32157] RBP: 00007f2c10208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1133.068327][T32157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1133.068341][T32157] R13: 00007f2c10416128 R14: 00007f2c10416090 R15: 00007ffd40b6b7a8
[ 1133.068373][T32157]  </TASK>
[ 1133.907777][T32166] block nbd1: Unsupported socket: should be TCP or UNIX.
[ 1133.941313][T32169] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1134.027073][T32169] FAULT_INJECTION: forcing a failure.
[ 1134.027073][T32169] name failslab, interval 1, probability 0, space 0, times 0
[ 1134.096177][T32169] CPU: 0 UID: 0 PID: 32169 Comm: syz.0.3937 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1134.096232][T32169] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1134.096247][T32169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1134.096262][T32169] Call Trace:
[ 1134.096270][T32169]  <TASK>
[ 1134.096279][T32169]  dump_stack_lvl+0x100/0x190
[ 1134.096313][T32169]  should_fail_ex.cold+0x5/0xa
[ 1134.096354][T32169]  should_failslab+0xc2/0x120
[ 1134.096389][T32169]  ? __netlink_kernel_create+0x181/0x750
[ 1134.096428][T32169]  __kmalloc_noprof+0xf6/0x9c0
[ 1134.096452][T32169]  ? __init_waitqueue_head+0xca/0x150
[ 1134.096500][T32169]  ? __netlink_kernel_create+0x181/0x750
[ 1134.096538][T32169]  __netlink_kernel_create+0x181/0x750
[ 1134.096587][T32169]  ? __pfx___netlink_kernel_create+0x10/0x10
[ 1134.096635][T32169]  rtnetlink_net_init+0xb9/0x140
[ 1134.096669][T32169]  ? __pfx_rtnetlink_net_init+0x10/0x10
[ 1134.096702][T32169]  ? lockdep_init_map_type+0x5c/0x250
[ 1134.096736][T32169]  ? __pfx_rtnetlink_rcv+0x10/0x10
[ 1134.096767][T32169]  ? __pfx_rtnetlink_bind+0x10/0x10
[ 1134.096801][T32169]  ? mutex_init_lockep+0x110/0x150
[ 1134.096839][T32169]  ? __pfx_rtnetlink_net_init+0x10/0x10
[ 1134.096871][T32169]  ops_init+0x1e2/0x5f0
[ 1134.096912][T32169]  setup_net+0x118/0x3a0
[ 1134.096935][T32169]  ? __pfx_setup_net+0x10/0x10
[ 1134.096972][T32169]  ? lockdep_init_map_type+0x5c/0x250
[ 1134.097006][T32169]  ? mutex_init_lockep+0x110/0x150
[ 1134.097045][T32169]  copy_net_ns+0x46f/0x7c0
[ 1134.097073][T32169]  create_new_namespaces+0x3ea/0xab0
[ 1134.097108][T32169]  unshare_nsproxy_namespaces+0xc3/0x1f0
[ 1134.097138][T32169]  ksys_unshare+0x455/0xab0
[ 1134.097176][T32169]  ? __pfx_ksys_unshare+0x10/0x10
[ 1134.097211][T32169]  ? xfd_validate_state+0x129/0x190
[ 1134.097259][T32169]  __x64_sys_unshare+0x31/0x40
[ 1134.097295][T32169]  do_syscall_64+0xc9/0xf80
[ 1134.097327][T32169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1134.097352][T32169] RIP: 0033:0x7f2c1019aeb9
[ 1134.097372][T32169] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1134.097396][T32169] RSP: 002b:00007f2c10fcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1134.097419][T32169] RAX: ffffffffffffffda RBX: 00007f2c10415fa0 RCX: 00007f2c1019aeb9
[ 1134.097435][T32169] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[ 1134.097451][T32169] RBP: 00007f2c10208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1134.097466][T32169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1134.097481][T32169] R13: 00007f2c10416038 R14: 00007f2c10415fa0 R15: 00007ffd40b6b7a8
[ 1134.097513][T32169]  </TASK>
[ 1135.902058][T32193] zswap: compressor  not available
[ 1136.209949][T32215] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3947'.
[ 1137.681730][T32264] netlink: 'syz.5.3954': attribute type 1 has an invalid length.
[ 1138.077837][T24485] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1138.088206][T24485] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1138.098333][T24485] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1138.106513][T24485] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1138.129980][T24485] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1138.656802][T32260] kexec: Could not allocate control_code_buffer
[ 1138.832499][T32339] FAULT_INJECTION: forcing a failure.
[ 1138.832499][T32339] name failslab, interval 1, probability 0, space 0, times 0
[ 1138.911144][T32339] CPU: 0 UID: 0 PID: 32339 Comm: syz.0.3956 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1138.911196][T32339] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1138.911210][T32339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1138.911224][T32339] Call Trace:
[ 1138.911232][T32339]  <TASK>
[ 1138.911241][T32339]  dump_stack_lvl+0x100/0x190
[ 1138.911275][T32339]  should_fail_ex.cold+0x5/0xa
[ 1138.911314][T32339]  should_failslab+0xc2/0x120
[ 1138.911348][T32339]  __kmalloc_cache_noprof+0x80/0x810
[ 1138.911373][T32339]  ? append_filter_err+0x435/0x620
[ 1138.911408][T32339]  ? apply_subsystem_event_filter+0x565/0x17a0
[ 1138.911438][T32339]  ? apply_subsystem_event_filter+0x565/0x17a0
[ 1138.911461][T32339]  apply_subsystem_event_filter+0x565/0x17a0
[ 1138.911494][T32339]  ? __pfx_apply_subsystem_event_filter+0x10/0x10
[ 1138.911524][T32339]  ? _copy_from_user+0x59/0xd0
[ 1138.911563][T32339]  subsystem_filter_write+0x95/0x120
[ 1138.911589][T32339]  vfs_write+0x2aa/0x1070
[ 1138.911617][T32339]  ? __pfx_subsystem_filter_write+0x10/0x10
[ 1138.911643][T32339]  ? __pfx_vfs_write+0x10/0x10
[ 1138.911668][T32339]  ? find_held_lock+0x2b/0x80
[ 1138.911695][T32339]  ? __fget_files+0x215/0x3d0
[ 1138.911726][T32339]  ? __fget_files+0x21f/0x3d0
[ 1138.911760][T32339]  ksys_write+0x12a/0x250
[ 1138.911787][T32339]  ? __pfx_ksys_write+0x10/0x10
[ 1138.911823][T32339]  do_syscall_64+0xc9/0xf80
[ 1138.911854][T32339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1138.911878][T32339] RIP: 0033:0x7f2c1019aeb9
[ 1138.911897][T32339] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1138.911920][T32339] RSP: 002b:00007f2c10fcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1138.911942][T32339] RAX: ffffffffffffffda RBX: 00007f2c10415fa0 RCX: 00007f2c1019aeb9
[ 1138.911958][T32339] RDX: 000000000000005f RSI: 0000200000001e40 RDI: 0000000000000003
[ 1138.911972][T32339] RBP: 00007f2c10fcd090 R08: 0000000000000000 R09: 0000000000000000
[ 1138.911987][T32339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1138.912000][T32339] R13: 00007f2c10416038 R14: 00007f2c10415fa0 R15: 00007ffd40b6b7a8
[ 1138.912031][T32339]  </TASK>
[ 1139.208912][T32270] chnl_net:caif_netlink_parms(): no params data found
[ 1139.311702][T32270] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1139.319505][T32270] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1139.326872][T32270] bridge_slave_0: entered allmulticast mode
[ 1139.334283][T32270] bridge_slave_0: entered promiscuous mode
[ 1139.345291][T32270] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1139.352471][T32270] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1139.359694][T32270] bridge_slave_1: entered allmulticast mode
[ 1139.367070][T32270] bridge_slave_1: entered promiscuous mode
[ 1139.429365][T32270] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1139.447882][T32270] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1139.509690][T32270] team0: Port device team_slave_0 added
[ 1139.531707][T32270] team0: Port device team_slave_1 added
[ 1139.603626][T32270] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1139.629967][T32270] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1139.682790][T32270] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1139.711730][T32270] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1139.728931][T32270] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1139.789924][T32270] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1140.201452][T24485] Bluetooth: hci7: command tx timeout
[ 1140.229649][T32270] hsr_slave_0: entered promiscuous mode
[ 1140.262197][T32270] hsr_slave_1: entered promiscuous mode
[ 1140.289129][T32270] debugfs: 'hsr0' already exists in 'hsr'
[ 1140.320726][T32270] Cannot create hsr debugfs directory
[ 1140.532195][T32493] zswap: compressor  not available
[ 1141.296495][T32270] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1141.348423][T32270] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1141.389564][T32270] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1141.450674][T32270] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1142.052655][T32270] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1142.087714][T32636] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3963'.
[ 1142.171627][T32270] 8021q: adding VLAN 0 to HW filter on device team0
[ 1142.286018][T24485] Bluetooth: hci7: command tx timeout
[ 1142.328408][T25132] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1142.335636][T25132] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1142.451615][T25132] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1142.458861][T25132] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1143.374747][T32270] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1144.364960][T24485] Bluetooth: hci7: command tx timeout
[ 1144.502571][T32270] veth0_vlan: entered promiscuous mode
[ 1144.582487][T32270] veth1_vlan: entered promiscuous mode
[ 1144.788879][T32270] veth0_macvtap: entered promiscuous mode
[ 1144.854698][T32270] veth1_macvtap: entered promiscuous mode
[ 1144.962027][T32270] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1145.045849][T32270] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1145.125945][T25132] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.158053][T25132] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.214253][T25132] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.274940][T25132] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.444069][T32716] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3972'.
[ 1145.479295][T32716] netlink: 'syz.5.3972': attribute type 1 has an invalid length.
[ 1145.543069][T32716] netlink: 13 bytes leftover after parsing attributes in process `syz.5.3972'.
[ 1145.573201][T25132] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1145.598014][T32716] netlink: 'syz.5.3972': attribute type 1 has an invalid length.
[ 1145.622049][T25132] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1145.703396][   T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1145.748300][   T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1146.447560][T24485] Bluetooth: hci7: command tx timeout
[ 1146.552945][T32752] FAULT_INJECTION: forcing a failure.
[ 1146.552945][T32752] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1146.611968][T32752] CPU: 0 UID: 0 PID: 32752 Comm: syz.7.3977 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1146.612023][T32752] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1146.612038][T32752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1146.612053][T32752] Call Trace:
[ 1146.612061][T32752]  <TASK>
[ 1146.612072][T32752]  dump_stack_lvl+0x100/0x190
[ 1146.612105][T32752]  should_fail_ex.cold+0x5/0xa
[ 1146.612146][T32752]  get_futex_key+0x1d2/0x1620
[ 1146.612182][T32752]  ? __pfx_get_futex_key+0x10/0x10
[ 1146.612224][T32752]  futex_wait_setup+0x81/0x500
[ 1146.612256][T32752]  __futex_wait+0x19f/0x300
[ 1146.612281][T32752]  ? __pfx___futex_wait+0x10/0x10
[ 1146.612309][T32752]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1146.612364][T32752]  ? futex_hash+0x2c5/0x380
[ 1146.612404][T32752]  futex_wait+0xed/0x380
[ 1146.612428][T32752]  ? __pfx_futex_wait+0x10/0x10
[ 1146.612458][T32752]  ? __fget_files+0x215/0x3d0
[ 1146.612493][T32752]  do_futex+0x1ef/0x350
[ 1146.612528][T32752]  ? __pfx_do_futex+0x10/0x10
[ 1146.612570][T32752]  __x64_sys_futex+0x34f/0x4d0
[ 1146.612608][T32752]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1146.612642][T32752]  ? xfd_validate_state+0x129/0x190
[ 1146.612691][T32752]  do_syscall_64+0xc9/0xf80
[ 1146.612724][T32752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1146.612749][T32752] RIP: 0033:0x7fecb6f9aeb9
[ 1146.612768][T32752] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1146.612792][T32752] RSP: 002b:00007fecb7de30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1146.612816][T32752] RAX: ffffffffffffffda RBX: 00007fecb7215fa8 RCX: 00007fecb6f9aeb9
[ 1146.612833][T32752] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fecb7215fa8
[ 1146.612848][T32752] RBP: 00007fecb7215fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1146.612863][T32752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1146.612878][T32752] R13: 00007fecb7216038 R14: 00007fff514c5640 R15: 00007fff514c5728
[ 1146.612908][T32752]  </TASK>
[ 1147.208290][T32754] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3978'.
[ 1148.017800][  T302] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3981'.
[ 1148.068017][  T303] netlink: 'syz.0.3981': attribute type 1 has an invalid length.
[ 1148.104225][  T303] netlink: 13 bytes leftover after parsing attributes in process `syz.0.3981'.
[ 1148.144365][  T303] netlink: 'syz.0.3981': attribute type 1 has an invalid length.
[ 1148.543817][  T313] Invalid ELF header magic: != ELF
[ 1148.651300][  T316] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3985'.
[ 1149.033437][  T325] FAULT_INJECTION: forcing a failure.
[ 1149.033437][  T325] name failslab, interval 1, probability 0, space 0, times 0
[ 1149.080178][  T325] CPU: 0 UID: 0 PID: 325 Comm: syz.0.3987 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1149.080231][  T325] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1149.080247][  T325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1149.080262][  T325] Call Trace:
[ 1149.080270][  T325]  <TASK>
[ 1149.080279][  T325]  dump_stack_lvl+0x100/0x190
[ 1149.080313][  T325]  should_fail_ex.cold+0x5/0xa
[ 1149.080354][  T325]  should_failslab+0xc2/0x120
[ 1149.080389][  T325]  kmem_cache_alloc_noprof+0x83/0x780
[ 1149.080422][  T325]  ? security_file_alloc+0x34/0x2c0
[ 1149.080470][  T325]  ? security_file_alloc+0x34/0x2c0
[ 1149.080507][  T325]  security_file_alloc+0x34/0x2c0
[ 1149.080547][  T325]  init_file+0x93/0x4c0
[ 1149.080583][  T325]  alloc_empty_file+0x73/0x1c0
[ 1149.080620][  T325]  alloc_file_pseudo+0x13a/0x230
[ 1149.080658][  T325]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1149.080695][  T325]  ? alloc_fd+0x476/0x790
[ 1149.080728][  T325]  sock_alloc_file+0x50/0x210
[ 1149.080769][  T325]  __sys_socket+0x1c0/0x260
[ 1149.080799][  T325]  ? __pfx___sys_socket+0x10/0x10
[ 1149.080829][  T325]  ? xfd_validate_state+0x129/0x190
[ 1149.080875][  T325]  __x64_sys_socket+0x72/0xb0
[ 1149.080903][  T325]  ? lockdep_hardirqs_on+0x78/0x100
[ 1149.080933][  T325]  do_syscall_64+0xc9/0xf80
[ 1149.080965][  T325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1149.080990][  T325] RIP: 0033:0x7f2c1019aeb9
[ 1149.081011][  T325] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1149.081036][  T325] RSP: 002b:00007f2c10fcd028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1149.081060][  T325] RAX: ffffffffffffffda RBX: 00007f2c10415fa0 RCX: 00007f2c1019aeb9
[ 1149.081076][  T325] RDX: 0010000000000002 RSI: 0000000000000002 RDI: 2000000000000021
[ 1149.081092][  T325] RBP: 00007f2c10208c1f R08: 0000000000000000 R09: 0000000000000000
[ 1149.081115][  T325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1149.081131][  T325] R13: 00007f2c10416038 R14: 00007f2c10415fa0 R15: 00007ffd40b6b7a8
[ 1149.081162][  T325]  </TASK>
[ 1149.531481][  T328] zswap: compressor  not available
[ 1150.073145][  T356] random: crng reseeded on system resumption
[ 1150.958675][  T390] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3996'.
[ 1151.957526][  T400] zswap: compressor  not available
[ 1152.126878][ T5833] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1152.145296][ T5833] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1152.155357][ T5833] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1152.182086][ T5833] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1152.189673][ T5833] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1152.479007][  T417] zswap: compressor  not available
[ 1153.384619][  T420] chnl_net:caif_netlink_parms(): no params data found
[ 1153.931777][  T420] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1153.971358][  T420] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1154.011830][  T420] bridge_slave_0: entered allmulticast mode
[ 1154.050071][  T420] bridge_slave_0: entered promiscuous mode
[ 1154.111376][  T420] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1154.118545][  T420] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1154.200503][  T420] bridge_slave_1: entered allmulticast mode
[ 1154.208021][  T420] bridge_slave_1: entered promiscuous mode
[ 1154.281384][ T5833] Bluetooth: hci8: command tx timeout
[ 1154.425508][  T420] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1154.503847][  T420] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1154.625359][  T580] zswap: compressor  not available
[ 1154.853111][  T420] team0: Port device team_slave_0 added
[ 1154.896488][  T420] team0: Port device team_slave_1 added
[ 1154.938244][  T629] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4011'.
[ 1155.116237][  T420] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1155.167791][  T420] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1155.317304][  T420] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1155.400683][  T420] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1155.407689][  T420] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1155.558062][  T420] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1155.744794][  T658] zswap: compressor  not available
[ 1156.107091][  T420] hsr_slave_0: entered promiscuous mode
[ 1156.146040][  T420] hsr_slave_1: entered promiscuous mode
[ 1156.171451][  T420] debugfs: 'hsr0' already exists in 'hsr'
[ 1156.198582][  T697] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4016'.
[ 1156.224087][  T420] Cannot create hsr debugfs directory
[ 1156.360014][ T5833] Bluetooth: hci8: command tx timeout
[ 1157.413692][  T420] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1157.492231][  T420] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1157.614252][  T420] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1157.750937][  T801] zswap: compressor  not available
[ 1157.822739][  T420] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1158.304408][  T420] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1158.432627][  T420] 8021q: adding VLAN 0 to HW filter on device team0
[ 1158.440749][ T5833] Bluetooth: hci8: command tx timeout
[ 1158.496293][T25132] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1158.503477][T25132] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1158.611146][T25132] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1158.618456][T25132] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1158.868033][  T420] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1159.019017][  T852] netlink: 52 bytes leftover after parsing attributes in process `syz.7.4025'.
[ 1159.796997][  T420] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1160.189979][  T891] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4028'.
[ 1160.378529][  T908] random: crng reseeded on system resumption
[ 1160.519963][ T5833] Bluetooth: hci8: command tx timeout
[ 1161.413972][  T420] veth0_vlan: entered promiscuous mode
[ 1161.503246][  T951] zswap: compressor  not available
[ 1161.684050][  T420] veth1_vlan: entered promiscuous mode
[ 1161.849564][  T420] veth0_macvtap: entered promiscuous mode
[ 1161.957298][  T420] veth1_macvtap: entered promiscuous mode
[ 1162.082459][  T420] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1162.149604][  T420] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1162.438123][  T988] zswap: compressor  not available
[ 1162.591458][T25463] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1162.648473][T25463] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1162.703856][T25463] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1162.748965][T25463] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1163.089512][T25154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1163.156213][T25154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1163.308302][T25463] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1163.365213][T25463] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1163.693863][ T1039] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4037'.
[ 1163.820002][ T1041] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3999'.
[ 1164.795802][ T1099] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4044'.
[ 1168.175026][ T1232] zswap: compressor  not available
[ 1168.383642][ T1242] Invalid ELF header magic: != ELF
[ 1168.851314][ T1254] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4055'.
[ 1169.286172][ T1261] ubi0: attaching mtd0
[ 1169.317628][ T1261] ubi0 error: ubi_add_to_av: two LEBs with same sequence number 1
[ 1169.366569][ T1261] eraseblock attaching information dump:
[ 1169.470074][ T1261] 	ec       1
[ 1169.473522][ T1261] 	pnum     0
[ 1169.476833][ T1261] 	lnum     0
[ 1169.526844][ T1261] 	scrub    0
[ 1169.583317][ T1261] 	sqnum    1
[ 1169.629955][ T1261] Volume identifier header dump:
[ 1169.702759][ T1261] 	magic     55424921
[ 1169.706795][ T1261] 	version   1
[ 1169.774248][ T1261] 	vol_type  1
[ 1169.777678][ T1261] 	copy_flag 0
[ 1169.888074][ T1261] 	compat    5
[ 1169.898209][ T1261] 	vol_id    2147479551
[ 1169.970146][ T1261] 	lnum      0
[ 1169.973572][ T1261] 	data_size 0
[ 1170.024253][ T1261] 	used_ebs  0
[ 1170.027682][ T1261] 	data_pad  0
[ 1170.127433][ T1261] 	sqnum     1
[ 1170.179383][ T1261] 	hdr_crc   65b3bd2d
[ 1170.226753][ T1265] type: 65536 invalid
[ 1170.252756][ T1261] Volume identifier header hexdump:
[ 1170.698951][ T1261] ubi0 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22
[ 1171.646231][ T5833] Bluetooth: hci8: unexpected subevent 0x01 length: 123 > 18
[ 1171.838931][ T1343] zswap: compressor  not available
[ 1172.254949][ T1388] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4068'.
[ 1172.784359][T24485] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[ 1172.784391][T24485] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[ 1172.800018][T24485] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[ 1172.800077][T24485] Bluetooth: hci3: adv larger than maximum supported
[ 1172.807494][T24485] Bluetooth: hci3: Malformed LE Event: 0x0d
[ 1172.853513][ T1398] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1172.910131][ T1398] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1172.953059][ T1398] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1172.986393][ T1398] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1173.011986][ T1398] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1173.034665][ T1398] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1173.113429][ T1398] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1173.156811][ T1398] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1173.188330][ T1398] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1173.247340][ T1419] netlink: 128 bytes leftover after parsing attributes in process `syz.0.4071'.
[ 1173.316094][ T1398] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1173.429296][ T1398] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1173.443146][ T1398] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 1173.484450][ T1398] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 1173.527447][ T1398] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1173.569505][ T1398] Bluetooth: hci7: Opcode 0x0406 failed: -4
[ 1173.623151][ T1398] Bluetooth: hci7: Opcode 0x0406 failed: -4
[ 1173.658349][ T1398] Bluetooth: hci8: Opcode 0x0c1a failed: -4
[ 1173.698520][ T1398] Bluetooth: hci8: Opcode 0x0406 failed: -4
[ 1173.755916][ T1398] Bluetooth: hci8: Opcode 0x0406 failed: -4
[ 1173.816503][ T1398] Bluetooth: hci8: Opcode 0x0406 failed: -4
[ 1174.634115][ T1490] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4072'.
[ 1174.840679][T24485] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1174.861767][ T1490] vlan1: entered promiscuous mode
[ 1174.903670][ T1490] vlan1: entered allmulticast mode
[ 1174.920150][T24485] Bluetooth: hci4: command 0x0c1a tx timeout
[ 1174.956928][ T1490] veth0_vlan: entered allmulticast mode
[ 1175.002963][T24485] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1175.010985][T24485] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1175.080104][T24485] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1175.160431][T24485] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1175.479987][T24485] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1175.560578][T24485] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1175.720090][T24485] Bluetooth: hci8: command 0x0c1a tx timeout
[ 1176.218741][ T1540] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4090'.
[ 1177.161925][T24485] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1177.240353][T24485] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1177.566708][T24485] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1177.632336][ T1566] zswap: compressor  not available
[ 1177.641137][T24485] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1177.799969][T24485] Bluetooth: hci8: command 0x0c1a tx timeout
[ 1178.158837][ T1579] futex_wake_op: syz.8.4091 tries to shift op by -2048; fix this program
[ 1178.282780][ T1579] futex_wake_op: syz.8.4091 tries to shift op by -2048; fix this program
[ 1178.964174][ T1593] netlink: 'syz.0.4094': attribute type 1 has an invalid length.
[ 1179.013136][ T1593] netlink: 'syz.0.4094': attribute type 1 has an invalid length.
[ 1179.240136][T24485] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1179.327476][T24485] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1179.371115][ T1604] netlink: 'syz.0.4095': attribute type 1 has an invalid length.
[ 1179.433038][ T1608] netlink: 'syz.0.4095': attribute type 1 has an invalid length.
[ 1179.608801][ T1613] netlink: 'syz.8.4096': attribute type 1 has an invalid length.
[ 1179.639998][T24485] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1179.720782][T24485] Bluetooth: hci7: command 0x0c1a tx timeout
[ 1179.880352][T24485] Bluetooth: hci8: command 0x0c1a tx timeout
[ 1180.303117][ T1630] net_ratelimit: 1170 callbacks suppressed
[ 1180.303137][ T1630] openvswitch: netlink: Duplicate key (type 15).
[ 1180.703080][ T1648] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4103'.
[ 1181.120031][ T1657] FAULT_INJECTION: forcing a failure.
[ 1181.120031][ T1657] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1181.338496][ T1660] netlink: 52 bytes leftover after parsing attributes in process `syz.5.4106'.
[ 1181.399474][ T1657] CPU: 0 UID: 0 PID: 1657 Comm: syz.8.4104 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1181.399525][ T1657] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1181.399539][ T1657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1181.399553][ T1657] Call Trace:
[ 1181.399561][ T1657]  <TASK>
[ 1181.399570][ T1657]  dump_stack_lvl+0x100/0x190
[ 1181.399604][ T1657]  should_fail_ex.cold+0x5/0xa
[ 1181.399644][ T1657]  _copy_from_user+0x2e/0xd0
[ 1181.399682][ T1657]  copy_msghdr_from_user+0x9f/0x4f0
[ 1181.399715][ T1657]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1181.399748][ T1657]  ? _kstrtoull+0x13c/0x1f0
[ 1181.399774][ T1657]  ? __pfx__kstrtoull+0x10/0x10
[ 1181.399805][ T1657]  ___sys_sendmsg+0x106/0x1e0
[ 1181.399835][ T1657]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1181.399889][ T1657]  ? __pfx___might_resched+0x10/0x10
[ 1181.399932][ T1657]  __sys_sendmmsg+0x205/0x430
[ 1181.399971][ T1657]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1181.400013][ T1657]  ? __fget_files+0x215/0x3d0
[ 1181.400040][ T1657]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1181.400139][ T1657]  ? fput+0x79/0x100
[ 1181.400171][ T1657]  ? ksys_write+0x1ac/0x250
[ 1181.400198][ T1657]  ? __pfx_ksys_write+0x10/0x10
[ 1181.400224][ T1657]  ? do_user_addr_fault+0x8d6/0x12f0
[ 1181.400254][ T1657]  __x64_sys_sendmmsg+0x9c/0x100
[ 1181.400290][ T1657]  ? lockdep_hardirqs_on+0x78/0x100
[ 1181.400317][ T1657]  do_syscall_64+0xc9/0xf80
[ 1181.400348][ T1657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1181.400372][ T1657] RIP: 0033:0x7f8a72b9aeb9
[ 1181.400391][ T1657] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1181.400413][ T1657] RSP: 002b:00007f8a70db4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1181.400436][ T1657] RAX: ffffffffffffffda RBX: 00007f8a72e16180 RCX: 00007f8a72b9aeb9
[ 1181.400452][ T1657] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[ 1181.400466][ T1657] RBP: 00007f8a70db4090 R08: 0000000000000000 R09: 0000000000000000
[ 1181.400480][ T1657] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000002
[ 1181.400494][ T1657] R13: 00007f8a72e16218 R14: 00007f8a72e16180 R15: 00007ffe2b318a58
[ 1181.400524][ T1657]  </TASK>
[ 1181.720971][ T1665] Invalid ELF header magic: != ELF
[ 1181.979342][T24485] Bluetooth: hci8: command 0x0c1a tx timeout
[ 1182.902800][ T1697] device-mapper: ioctl: Invalid ioctl structure: name ��������, dev 800000000
[ 1184.477166][ T1779] FAULT_INJECTION: forcing a failure.
[ 1184.477166][ T1779] name failslab, interval 1, probability 0, space 0, times 0
[ 1184.632604][ T1779] CPU: 0 UID: 0 PID: 1779 Comm: syz.8.4117 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1184.632656][ T1779] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1184.632670][ T1779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1184.632685][ T1779] Call Trace:
[ 1184.632692][ T1779]  <TASK>
[ 1184.632702][ T1779]  dump_stack_lvl+0x100/0x190
[ 1184.632734][ T1779]  should_fail_ex.cold+0x5/0xa
[ 1184.632774][ T1779]  should_failslab+0xc2/0x120
[ 1184.632816][ T1779]  ? tomoyo_encode2+0xfb/0x3c0
[ 1184.632838][ T1779]  __kmalloc_noprof+0xf6/0x9c0
[ 1184.632870][ T1779]  ? tomoyo_encode2+0xfb/0x3c0
[ 1184.632892][ T1779]  tomoyo_encode2+0xfb/0x3c0
[ 1184.632920][ T1779]  tomoyo_encode+0x29/0x50
[ 1184.632942][ T1779]  tomoyo_realpath_from_path+0x18c/0x690
[ 1184.632973][ T1779]  tomoyo_path_number_perm+0x23c/0x580
[ 1184.633007][ T1779]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1184.633044][ T1779]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1184.633081][ T1779]  ? unwind_get_return_address+0x59/0xa0
[ 1184.633138][ T1779]  ? current_check_access_path+0x27a/0x460
[ 1184.633179][ T1779]  ? __pfx_current_check_access_path+0x10/0x10
[ 1184.633217][ T1779]  ? __pfx___might_resched+0x10/0x10
[ 1184.633262][ T1779]  tomoyo_path_mknod+0x164/0x190
[ 1184.633291][ T1779]  ? __pfx_tomoyo_path_mknod+0x10/0x10
[ 1184.633321][ T1779]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1184.633352][ T1779]  security_path_mknod+0x161/0x300
[ 1184.633379][ T1779]  lookup_open.isra.0+0xc93/0x1890
[ 1184.633411][ T1779]  ? __pfx_lookup_open.isra.0+0x10/0x10
[ 1184.633443][ T1779]  ? __pfx___might_resched+0x10/0x10
[ 1184.633479][ T1779]  ? mnt_get_write_access+0x52/0x2f0
[ 1184.633520][ T1779]  ? __pfx_down_write+0x10/0x10
[ 1184.633551][ T1779]  ? mnt_get_write_access+0x1e9/0x2f0
[ 1184.633591][ T1779]  path_openat+0x117d/0x3120
[ 1184.633629][ T1779]  ? __pfx_path_openat+0x10/0x10
[ 1184.633668][ T1779]  do_filp_open+0x1f7/0x420
[ 1184.633699][ T1779]  ? __pfx_do_filp_open+0x10/0x10
[ 1184.633748][ T1779]  ? _raw_spin_unlock+0x28/0x50
[ 1184.633771][ T1779]  ? alloc_fd+0x476/0x790
[ 1184.633811][ T1779]  do_sys_openat2+0x12e/0x220
[ 1184.633848][ T1779]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1184.633883][ T1779]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1184.633917][ T1779]  ? __fget_files+0x21f/0x3d0
[ 1184.633948][ T1779]  __x64_sys_openat+0x12d/0x210
[ 1184.633985][ T1779]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1184.634021][ T1779]  ? ksys_write+0x1ac/0x250
[ 1184.634058][ T1779]  do_syscall_64+0xc9/0xf80
[ 1184.634089][ T1779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1184.634113][ T1779] RIP: 0033:0x7f8a72b9aeb9
[ 1184.634132][ T1779] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1184.634155][ T1779] RSP: 002b:00007f8a70df6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1184.634177][ T1779] RAX: ffffffffffffffda RBX: 00007f8a72e15fa0 RCX: 00007f8a72b9aeb9
[ 1184.634193][ T1779] RDX: 0000000000046840 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[ 1184.634208][ T1779] RBP: 00007f8a70df6090 R08: 0000000000000000 R09: 0000000000000000
[ 1184.634223][ T1779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1184.634237][ T1779] R13: 00007f8a72e16038 R14: 00007f8a72e15fa0 R15: 00007ffe2b318a58
[ 1184.634267][ T1779]  </TASK>
[ 1184.969938][ T1779] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1185.685032][ T1819] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4119'.
[ 1185.887159][ T1834] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1186.287209][ T1819] zswap: compressor  not available
[ 1187.810473][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[ 1187.816819][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[ 1190.408947][ T2035] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4133'.
[ 1192.101959][ T2081] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4149'.
[ 1192.981290][ T2099] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4144'.
[ 1194.171996][ T2134] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4151'.
[ 1194.974209][ T2158] random: crng reseeded on system resumption
[ 1196.268082][ T2231] futex_wake_op: syz.0.4160 tries to shift op by -2048; fix this program
[ 1197.838146][ T2273] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4166'.
[ 1198.182164][ T2281] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4169'.
[ 1198.368723][ T2280] random: crng reseeded on system resumption
[ 1199.531217][ T2338] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1199.622386][ T2349] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4177'.
[ 1200.392239][ T2407] netlink: 52 bytes leftover after parsing attributes in process `syz.7.4180'.
[ 1200.831683][ T2427] random: crng reseeded on system resumption
[ 1201.076013][ T2436] hub 1-0:1.0: USB hub found
[ 1201.101184][ T2449] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[ 1201.119309][ T2436] hub 1-0:1.0: 1 port detected
[ 1202.982212][ T2565] FAULT_INJECTION: forcing a failure.
[ 1202.982212][ T2565] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1203.122174][ T2565] CPU: 0 UID: 0 PID: 2565 Comm: syz.7.4188 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1203.122228][ T2565] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1203.122241][ T2565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1203.122255][ T2565] Call Trace:
[ 1203.122263][ T2565]  <TASK>
[ 1203.122273][ T2565]  dump_stack_lvl+0x100/0x190
[ 1203.122306][ T2565]  should_fail_ex.cold+0x5/0xa
[ 1203.122343][ T2565]  ? prepare_alloc_pages+0x16d/0x5f0
[ 1203.122382][ T2565]  should_fail_alloc_page+0xeb/0x140
[ 1203.122418][ T2565]  prepare_alloc_pages+0x1f0/0x5f0
[ 1203.122465][ T2565]  __alloc_frozen_pages_noprof+0x193/0x2410
[ 1203.122498][ T2565]  ? stack_trace_save+0x8e/0xc0
[ 1203.122524][ T2565]  ? __pfx_stack_trace_save+0x10/0x10
[ 1203.122552][ T2565]  ? stack_depot_save_flags+0x27/0x9c0
[ 1203.122595][ T2565]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1203.122623][ T2565]  ? kasan_save_stack+0x30/0x50
[ 1203.122652][ T2565]  ? __kasan_kmalloc+0xaa/0xb0
[ 1203.122685][ T2565]  ? copy_splice_read+0x1a3/0xb90
[ 1203.122711][ T2565]  ? do_splice_read+0x285/0x370
[ 1203.122736][ T2565]  ? splice_file_to_pipe+0x82/0x120
[ 1203.122763][ T2565]  ? do_sendfile+0x366/0xe20
[ 1203.122786][ T2565]  ? __x64_sys_sendfile64+0x154/0x220
[ 1203.122823][ T2565]  ? do_syscall_64+0xc9/0xf80
[ 1203.122853][ T2565]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1203.122897][ T2565]  alloc_pages_bulk_noprof+0x777/0x1500
[ 1203.122937][ T2565]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[ 1203.122969][ T2565]  ? rcu_is_watching+0x12/0xc0
[ 1203.123003][ T2565]  copy_splice_read+0x1e1/0xb90
[ 1203.123037][ T2565]  ? __lock_acquire+0x4a5/0x2630
[ 1203.123072][ T2565]  ? __pfx_copy_splice_read+0x10/0x10
[ 1203.123109][ T2565]  ? __fget_files+0x215/0x3d0
[ 1203.123138][ T2565]  ? __pfx_copy_splice_read+0x10/0x10
[ 1203.123163][ T2565]  do_splice_read+0x285/0x370
[ 1203.123192][ T2565]  splice_file_to_pipe+0x82/0x120
[ 1203.123224][ T2565]  do_sendfile+0x366/0xe20
[ 1203.123255][ T2565]  ? __pfx_do_sendfile+0x10/0x10
[ 1203.123292][ T2565]  __x64_sys_sendfile64+0x154/0x220
[ 1203.123326][ T2565]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1203.123359][ T2565]  ? do_user_addr_fault+0x8d6/0x12f0
[ 1203.123392][ T2565]  do_syscall_64+0xc9/0xf80
[ 1203.123422][ T2565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1203.123446][ T2565] RIP: 0033:0x7fecb6f9aeb9
[ 1203.123465][ T2565] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1203.123489][ T2565] RSP: 002b:00007fecb7da1028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1203.123512][ T2565] RAX: ffffffffffffffda RBX: 00007fecb7216180 RCX: 00007fecb6f9aeb9
[ 1203.123528][ T2565] RDX: 0000200000000040 RSI: 0000000000000003 RDI: 0000000000000000
[ 1203.123542][ T2565] RBP: 00007fecb7da1090 R08: 0000000000000000 R09: 0000000000000000
[ 1203.123556][ T2565] R10: 0000000000000009 R11: 0000000000000246 R12: 0000000000000001
[ 1203.123570][ T2565] R13: 00007fecb7216218 R14: 00007fecb7216180 R15: 00007fff514c5728
[ 1203.123600][ T2565]  </TASK>
[ 1206.128296][ T2779] zswap: compressor  not available
[ 1207.494371][ T2856] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4204'.
[ 1207.543046][ T2861] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4205'.
[ 1207.764446][ T2862] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4206'.
[ 1207.999558][ T2883] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1208.787100][ T2887] FAULT_INJECTION: forcing a failure.
[ 1208.787100][ T2887] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1208.974192][ T2887] CPU: 0 UID: 0 PID: 2887 Comm: syz.7.4207 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1208.974241][ T2887] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1208.974255][ T2887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1208.974269][ T2887] Call Trace:
[ 1208.974276][ T2887]  <TASK>
[ 1208.974285][ T2887]  dump_stack_lvl+0x100/0x190
[ 1208.974317][ T2887]  should_fail_ex.cold+0x5/0xa
[ 1208.974355][ T2887]  get_futex_key+0x106f/0x1620
[ 1208.974388][ T2887]  ? __pfx_get_futex_key+0x10/0x10
[ 1208.974427][ T2887]  futex_wake+0xea/0x530
[ 1208.974466][ T2887]  ? __pfx_futex_wake+0x10/0x10
[ 1208.974508][ T2887]  ? exit_mm_release+0x19/0x30
[ 1208.974548][ T2887]  do_futex+0x32b/0x350
[ 1208.974579][ T2887]  ? __pfx_do_futex+0x10/0x10
[ 1208.974609][ T2887]  ? __might_fault+0xc5/0x140
[ 1208.974643][ T2887]  mm_release+0x24a/0x2f0
[ 1208.974670][ T2887]  do_exit+0x675/0x2a30
[ 1208.974708][ T2887]  ? __pfx_do_exit+0x10/0x10
[ 1208.974742][ T2887]  ? do_raw_spin_lock+0x128/0x260
[ 1208.974776][ T2887]  ? find_held_lock+0x2b/0x80
[ 1208.974798][ T2887]  ? get_signal+0x7e0/0x21e0
[ 1208.974828][ T2887]  do_group_exit+0xd5/0x2a0
[ 1208.974864][ T2887]  get_signal+0x1ec7/0x21e0
[ 1208.974900][ T2887]  ? __pfx_get_signal+0x10/0x10
[ 1208.974928][ T2887]  ? do_futex+0x192/0x350
[ 1208.974966][ T2887]  arch_do_signal_or_restart+0x91/0x770
[ 1208.975000][ T2887]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1208.975040][ T2887]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1208.975071][ T2887]  ? xfd_validate_state+0x129/0x190
[ 1208.975113][ T2887]  exit_to_user_mode_loop+0x86/0x4b0
[ 1208.975145][ T2887]  ? rcu_is_watching+0x12/0xc0
[ 1208.975170][ T2887]  do_syscall_64+0x4ea/0xf80
[ 1208.975200][ T2887]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1208.975223][ T2887] RIP: 0033:0x7fecb6f9aeb9
[ 1208.975242][ T2887] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1208.975264][ T2887] RSP: 002b:00007fecb7dc20e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1208.975287][ T2887] RAX: fffffffffffffe00 RBX: 00007fecb7216098 RCX: 00007fecb6f9aeb9
[ 1208.975302][ T2887] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fecb7216098
[ 1208.975316][ T2887] RBP: 00007fecb7216090 R08: 0000000000000000 R09: 0000000000000000
[ 1208.975330][ T2887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1208.975344][ T2887] R13: 00007fecb7216128 R14: 00007fff514c5640 R15: 00007fff514c5728
[ 1208.975372][ T2887]  </TASK>
[ 1209.739137][ T2902] zswap: compressor  not available
[ 1209.831084][ T2915] random: crng reseeded on system resumption
[ 1210.122331][ T2915] hub 1-0:1.0: USB hub found
[ 1210.242602][ T2915] hub 1-0:1.0: 1 port detected
[ 1211.535620][ T2976] futex_wake_op: syz.7.4215 tries to shift op by -2048; fix this program
[ 1211.751242][ T2970] can: request_module (can-proto-5) failed.
[ 1211.810576][ T2976] futex_wake_op: syz.7.4215 tries to shift op by -2048; fix this program
[ 1211.957672][ T2982] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4217'.
[ 1214.245780][ T3024] zswap: compressor  not available
[ 1214.624868][ T3041] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[ 1215.104457][ T3052] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4231'.
[ 1215.755316][ T3059] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4234'.
[ 1216.347628][ T3070] FAULT_INJECTION: forcing a failure.
[ 1216.347628][ T3070] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1216.397403][ T3070] CPU: 0 UID: 0 PID: 3070 Comm: syz.0.4236 Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1216.397458][ T3070] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1216.397472][ T3070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1216.397486][ T3070] Call Trace:
[ 1216.397494][ T3070]  <TASK>
[ 1216.397503][ T3070]  dump_stack_lvl+0x100/0x190
[ 1216.397536][ T3070]  should_fail_ex.cold+0x5/0xa
[ 1216.397574][ T3070]  _copy_from_user+0x2e/0xd0
[ 1216.397610][ T3070]  move_addr_to_kernel+0x65/0x170
[ 1216.397643][ T3070]  __sys_connect+0xb5/0x170
[ 1216.397692][ T3070]  ? __pfx___sys_connect+0x10/0x10
[ 1216.397722][ T3070]  ? __fget_files+0x21f/0x3d0
[ 1216.397759][ T3070]  ? __pfx_ksys_write+0x10/0x10
[ 1216.397798][ T3070]  __x64_sys_connect+0x72/0xb0
[ 1216.397828][ T3070]  ? lockdep_hardirqs_on+0x78/0x100
[ 1216.397856][ T3070]  do_syscall_64+0xc9/0xf80
[ 1216.397887][ T3070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1216.397911][ T3070] RIP: 0033:0x7f2c1019aeb9
[ 1216.397930][ T3070] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1216.397952][ T3070] RSP: 002b:00007f2c10fac028 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1216.397976][ T3070] RAX: ffffffffffffffda RBX: 00007f2c10416090 RCX: 00007f2c1019aeb9
[ 1216.397992][ T3070] RDX: 0000000000000054 RSI: 0000200000000080 RDI: 0000000000000003
[ 1216.398006][ T3070] RBP: 00007f2c10fac090 R08: 0000000000000000 R09: 0000000000000000
[ 1216.398021][ T3070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1216.398034][ T3070] R13: 00007f2c10416128 R14: 00007f2c10416090 R15: 00007ffd40b6b7a8
[ 1216.398064][ T3070]  </TASK>
[ 1218.512383][ T3102] futex_wake_op: syz.0.4240 tries to shift op by -2048; fix this program
[ 1218.610760][ T3098] can: request_module (can-proto-5) failed.
[ 1218.640369][ T3102] futex_wake_op: syz.0.4240 tries to shift op by -2048; fix this program
[ 1218.695782][ T3095] 0x000000000001-0x000000020000 : ""
[ 1218.740691][ T3095] ftl_cs: FTL header corrupt!
[ 1219.247447][ T3112] netlink: 9 bytes leftover after parsing attributes in process `syz.0.4242'.
[ 1219.801206][   T31] INFO: task syz.3.3723:29287 blocked for more than 143 seconds.
[ 1219.809201][   T31]       Tainted: G     U  W    L XTNJ syzkaller #0
[ 1219.856587][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1219.897846][   T31] task:syz.3.3723      state:D stack:24888 pid:29287 tgid:29244 ppid:16315  task_flags:0x400140 flags:0x00080002
[ 1219.969350][   T31] Call Trace:
[ 1219.985562][   T31]  <TASK>
[ 1220.002408][   T31]  ? __schedule+0xf65/0x5e10
[ 1220.024849][   T31]  __schedule+0xfe4/0x5e10
[ 1220.049601][   T31]  ? __lock_acquire+0x4a5/0x2630
[ 1220.083128][   T31]  ? __kmalloc_noprof+0x347/0x9c0
[ 1220.109656][   T31]  ? genl_rcv_msg+0x560/0x800
[ 1220.138533][   T31]  ? __pfx___schedule+0x10/0x10
[ 1220.182394][   T31]  ? find_held_lock+0x2b/0x80
[ 1220.201675][   T31]  ? schedule+0x2bf/0x390
[ 1220.228194][   T31]  schedule+0xdd/0x390
[ 1220.256316][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1220.309836][   T31]  __mutex_lock+0xc9a/0x1b90
[ 1220.328303][   T31]  ? nfsd_nl_threads_set_doit+0x687/0xbc0
[ 1220.366876][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1220.412839][   T31]  ? net_generic+0xea/0x2a0
[ 1220.454039][   T31]  ? net_generic+0xea/0x2a0
[ 1220.477379][   T31]  ? nfsd_nl_threads_set_doit+0x687/0xbc0
[ 1220.511526][   T31]  nfsd_nl_threads_set_doit+0x687/0xbc0
[ 1220.536800][   T31]  genl_family_rcv_msg_doit+0x214/0x300
[ 1220.573691][   T31]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 1220.603757][   T31]  ? genl_get_cmd+0x3ef/0x720
[ 1220.632025][   T31]  ? bpf_lsm_capable+0x9/0x10
[ 1220.663218][   T31]  ? security_capable+0x80/0x260
[ 1220.690407][   T31]  genl_rcv_msg+0x560/0x800
[ 1220.700001][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1220.737917][   T31]  ? __pfx_nfsd_nl_threads_set_doit+0x10/0x10
[ 1220.780521][   T31]  netlink_rcv_skb+0x159/0x420
[ 1220.789226][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1220.813248][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1220.843337][   T31]  ? netlink_deliver_tap+0x1ae/0xcc0
[ 1220.875504][   T31]  genl_rcv+0x28/0x40
[ 1220.894649][   T31]  netlink_unicast+0x5aa/0x870
[ 1220.924365][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[ 1220.974049][   T31]  netlink_sendmsg+0x8b0/0xda0
[ 1220.989615][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1221.017207][   T31]  ? __import_iovec+0x1d2/0x640
[ 1221.033620][   T31]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[ 1221.064007][   T31]  ____sys_sendmsg+0xa54/0xc30
[ 1221.082996][   T31]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1221.103461][   T31]  ? __pfx___futex_wait+0x10/0x10
[ 1221.119889][   T31]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1221.130622][   T31]  ___sys_sendmsg+0x190/0x1e0
[ 1221.141067][   T31]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1221.159046][   T31]  ? find_held_lock+0x2b/0x80
[ 1221.181346][   T31]  __sys_sendmsg+0x170/0x220
[ 1221.190350][   T31]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1221.203137][   T31]  ? __x64_sys_futex+0x34f/0x4d0
[ 1221.213944][   T31]  do_syscall_64+0xc9/0xf80
[ 1221.224225][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1221.237744][   T31] RIP: 0033:0x7fe5f359aeb9
[ 1221.248548][   T31] RSP: 002b:00007fe5f44fd028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1221.277476][   T31] RAX: ffffffffffffffda RBX: 00007fe5f3816180 RCX: 00007fe5f359aeb9
[ 1221.295431][   T31] RDX: 0000000000004000 RSI: 0000200000000480 RDI: 0000000000000004
[ 1221.312010][   T31] RBP: 00007fe5f3608c1f R08: 0000000000000000 R09: 0000000000000000
[ 1221.330035][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1221.349942][   T31] R13: 00007fe5f3816218 R14: 00007fe5f3816180 R15: 00007ffc22040738
[ 1221.369638][   T31]  </TASK>
[ 1221.383462][   T31] 
[ 1221.383462][   T31] Showing all locks held in the system:
[ 1221.477782][   T31] 1 lock held by khungtaskd/31:
[ 1221.502822][   T31]  #0: ffffffff8e5e3120 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184
[ 1221.540371][   T31] 6 locks held by kworker/u8:29/25463:
[ 1221.552359][   T31]  #0: ffff88801c29f148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x11ae/0x1840
[ 1221.579810][   T31]  #1: ffffc9000b9cfc98 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x927/0x1840
[ 1221.606981][   T31]  #2: ffffffff903dcef0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xab/0x830
[ 1221.632664][   T31]  #3: ffffffff903f5828 (rtnl_mutex){+.+.}-{4:4}, at: ops_undo_list+0x7ec/0xab0
[ 1221.649821][   T31]  #4: ffffffff8e5ef8f8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x27f/0x3c0
[ 1221.675488][   T31]  #5: ffff8880b843add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[ 1221.702912][   T31] 2 locks held by syz.3.3723/29287:
[ 1221.715121][   T31]  #0: ffffffff904a2690 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1221.734232][   T31]  #1: ffffffff8ea472a8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x687/0xbc0
[ 1221.759851][   T31] 2 locks held by syz.2.3736/29275:
[ 1221.773753][   T31]  #0: ffffffff904a2690 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1221.790969][   T31]  #1: ffffffff8ea472a8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x687/0xbc0
[ 1221.814952][   T31] 2 locks held by syz-executor/29740:
[ 1221.830942][   T31]  #0: ffff88809fd8e0e0 (&type->s_umount_key#51){++++}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1221.852724][   T31]  #1: ffffffff8ea472a8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1221.877971][   T31] 2 locks held by syz.4.3804/30537:
[ 1221.890957][   T31]  #0: ffffffff904a2690 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1221.910150][   T31]  #1: ffffffff8ea472a8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_set_doit+0x687/0xbc0
[ 1221.936363][   T31] 2 locks held by syz-executor/31019:
[ 1221.947473][   T31]  #0: ffff888029f8a0e0 (&type->s_umount_key#51){++++}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1221.972094][   T31]  #1: ffffffff8ea472a8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1221.999838][   T31] 2 locks held by syz.1.3897/31795:
[ 1222.009505][   T31]  #0: ffffffff904a2690 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1222.027442][   T31]  #1: ffffffff8ea472a8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0xd5/0x1b20
[ 1222.060912][   T31] 2 locks held by syz-executor/420:
[ 1222.071851][   T31]  #0: ffff88802f7060e0 (&type->s_umount_key#51){++++}-{4:4}, at: deactivate_super+0xdf/0x110
[ 1222.100048][   T31]  #1: ffffffff8ea472a8 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_shutdown_threads+0x5b/0xf0
[ 1222.125501][   T31] 1 lock held by poweroff/3051:
[ 1222.135957][   T31]  #0: ffff888029f8a0e0 (&type->s_umount_key#51){++++}-{4:4}, at: super_lock+0x320/0x3f0
[ 1222.164291][   T31] 
[ 1222.168881][   T31] =============================================
[ 1222.168881][   T31] 
[ 1222.193990][   T31] NMI backtrace for cpu 0
[ 1222.194014][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1222.194068][   T31] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1222.194082][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1222.194097][   T31] Call Trace:
[ 1222.194106][   T31]  <TASK>
[ 1222.194115][   T31]  dump_stack_lvl+0x100/0x190
[ 1222.194148][   T31]  nmi_cpu_backtrace.cold+0x12d/0x151
[ 1222.194180][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1222.194220][   T31]  nmi_trigger_cpumask_backtrace+0x1d7/0x230
[ 1222.194269][   T31]  sys_info+0x141/0x190
[ 1222.194306][   T31]  watchdog+0xcc3/0xfe0
[ 1222.194348][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1222.194374][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1222.194404][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1222.194429][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1222.194452][   T31]  kthread+0x3b3/0x730
[ 1222.194487][   T31]  ? __pfx_kthread+0x10/0x10
[ 1222.194518][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1222.194542][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1222.194570][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1222.194593][   T31]  ? __pfx_kthread+0x10/0x10
[ 1222.194627][   T31]  ret_from_fork+0x754/0xaf0
[ 1222.194651][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1222.194676][   T31]  ? __switch_to+0x7b9/0x10c0
[ 1222.194705][   T31]  ? __pfx_kthread+0x10/0x10
[ 1222.194740][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1222.194789][   T31]  </TASK>
[ 1222.611818][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1222.618722][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Tainted: G     U  W    L XTNJ syzkaller #0 PREEMPT(full) 
[ 1222.629439][   T31] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL
[ 1222.639531][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1222.649593][   T31] Call Trace:
[ 1222.652909][   T31]  <TASK>
[ 1222.655850][   T31]  dump_stack_lvl+0x100/0x190
[ 1222.660568][   T31]  vpanic+0x20d/0x630
[ 1222.664562][   T31]  panic+0xd1/0xd1
[ 1222.668307][   T31]  ? __pfx_panic+0x10/0x10
[ 1222.672740][   T31]  ? nmi_trigger_cpumask_backtrace+0x1b5/0x230
[ 1222.678922][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f6/0x230
[ 1222.685102][   T31]  ? nmi_trigger_cpumask_backtrace+0x200/0x230
[ 1222.691285][   T31]  ? watchdog.cold+0x198/0x1ca
[ 1222.696062][   T31]  ? watchdog+0xcd3/0xfe0
[ 1222.700408][   T31]  watchdog.cold+0x1a9/0x1ca
[ 1222.705046][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1222.709736][   T31]  ? __kthread_parkme+0x18c/0x230
[ 1222.714779][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1222.719598][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1222.724353][   T31]  kthread+0x3b3/0x730
[ 1222.728482][   T31]  ? __pfx_kthread+0x10/0x10
[ 1222.733112][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1222.737816][   T31]  ? ret_from_fork+0x79/0xaf0
[ 1222.742525][   T31]  ? rcu_is_watching+0x12/0xc0
[ 1222.747311][   T31]  ? __pfx_kthread+0x10/0x10
[ 1222.751933][   T31]  ret_from_fork+0x754/0xaf0
[ 1222.756542][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1222.761666][   T31]  ? __switch_to+0x7b9/0x10c0
[ 1222.766359][   T31]  ? __pfx_kthread+0x10/0x10
[ 1222.770971][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1222.775784][   T31]  </TASK>
[ 1222.778878][   T31] Kernel Offset: disabled
[ 1222.783250][   T31] Rebooting in 86400 seconds..