last executing test programs:

5m26.662523155s ago: executing program 0 (id=1521):
sendmsg$auto_SMC_NETLINK_REMOVE_UEID(0xffffffffffffffff, 0x0, 0x20000000)
r0 = socket(0x2, 0x3, 0x400c)
sendmsg$auto_BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)=ANY=[@ANYRESDEC=r0, @ANYRES16=0x0, @ANYBLOB="000327bd7000fddbdf25080000000a000900aaaaaaaaaabb00000500330008000000"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x48050)
connect$auto(0x3, &(0x7f0000000080)=@nl=@unspec, 0x20055)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb5, 0x401, 0x300000000000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto_SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045017, &(0x7f0000000c00))
r3 = io_uring_setup$auto(0x2, 0x0)
mmap$auto(0x0, 0x400, 0xce, 0x22bd, r1, 0x440000008002)
kexec_load$auto(0x5, 0x5, &(0x7f0000000040)={@kbuf=&(0x7f0000000800)="d692f6b722ee1572197eeb1293d032dec1798c8fedc7709f866be8d8ecb11f56e0a434077aa741fb765d8221e10f6b2d68a917e2ac7961730cdf18a12a8132b9dfdf9d497d69c97cd5246ae907619cb245141cf5c8683dabb20049c9f2f05f67bbdd7c98fbb22c8af45cc5f1644f045740a95523634dfa937287de14af6956e52e59b278e10399ab799cb9d259a27f435e7d63224fbdf684e472d6f0c39b11195ae139c0451fdd7cbee81d6510190fb67a7f53aa7cdaf7a134e86744f37c197cfbc97fd45e08c88e", 0x400, 0x4800c000, 0x800c000}, 0x4)
ioctl$auto_FICLONE(r1, 0x40049409, r1)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r3)
sendmsg$auto_NL80211_CMD_JOIN_IBSS(r2, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYRES32, @ANYRES16=r4, @ANYBLOB="00022abd7000fddbdf252b0000000800100108000000ac00d7003de638d3224cfccd492f60875cc927689803095afbccfc96f8139d1bf69a363ede4f699bcbb3d2f579024c2a6031283511251cf621fb458b8d6fec16c299c41aea56f37b255adfa5a95878273dc9b1197357ad41eceaefefef14bfa2b98f87170de0efe9e1b3bac018052aef86f57fd71b7ebc1d2b7c9a23b057a2cc8ce9ac942389fc8bdb2d58b56c7de7de0d1bc4f6a504de8dfa23de9531c98870ee08cf56caed18d2bd938282"], 0xc8}, 0x1, 0x0, 0x0, 0x10890}, 0x884)
openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/ns/cgroup\x00', 0x80, 0x0)
r5 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x2000, 0x0)
ioctl$auto_SNDCTL_MIDI_PRETIME(r5, 0xc0046d00, &(0x7f0000000280)="3c56e86300")
shmctl$auto_SHM_UNLOCK(0xa, 0xc, &(0x7f00000004c0)={{0x5, <r6=>0x0, 0xffffffffffffffff, 0x16, 0x400, 0x8, 0x10}, 0x8e, 0xd3, 0x0, 0xfffffffffffff33b, @inferred, @inferred=0xffffffffffffffff, 0xe4ef, 0x0, &(0x7f0000000300)="a8812ba0340ca76bcff1ba31eb5203aa93f0b140f9af8cec024ae229d3d56aa1342170fd0941fc0e91d2a0771b3a9ae7fec86945335893f8ab87858cdc5008c9d9926aa657792230fcf5e59c1bbdb1530eb45924adf3a16ccb77d413adb06cd138c9da68d1c535294f98b750f86bfd79b18279fad4e3d137f4e6d902f9589f4094286ac2f5a5eb5280606233e86902053c8f64d079a6fd13d4a17fd75885cf18bd4a26ae8a37bd6e066662a0dc9f544cfe5f21f484451532f560df56520efeab591958a1b1ac262229cbf4a2943b", &(0x7f0000000400)="bb7ffcda867c42047b8681ec22a9b5be02ded9f7b677d7cc633d43b1255c62fdcb9104b4ad4ffaae9d92882480c6e267f6bfd344cd5ef4284db7a30908d452e94d50bf12d9072ff3689d3bea9173afccd1fb88b54a54ab59e99842f5c6eecb05d87300bf67a50cb0e1874ba3c3459acb1033da8e622a7a8f3d3614f478f212a28df37cc099d29f7c0f"})
setuid$auto(r6)
syz_genetlink_get_family_id$auto_gtp(&(0x7f0000000580), r2)
memfd_create$auto(&(0x7f0000000040)='A^^\x02\x00\xef\x97\x8aY\x00\x00\xd2\x8c\xb05\x03\\\xb2\xbf247{\xde\t8\f\x00\x00\v\x00\x82\xcc\"K\xe1IIT\x00'/54, 0x5)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x3, 0x5, 0x7fffffffffffffff, 0x8000000008011, 0x3, 0x0)
open_by_handle_at$auto(r5, 0x0, 0x6)
fallocate$auto(0x3, 0x0, 0xe, 0x8ec5)
ioctl$auto_SW_SYNC_IOC_INC(0xffffffffffffffff, 0x40045701, &(0x7f0000000540)=0x12)

5m25.050938701s ago: executing program 0 (id=1526):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/bus/hid/drivers/cypress/new_id\x00', 0xa001, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfsd.export/channel\x00', 0x8f3b7a51b8162d21, 0x0)
write$auto(r0, &(0x7f0000000080)='0[.[\x00', 0x1)

5m24.829383794s ago: executing program 0 (id=1528):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xae00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
socketpair$auto(0x1, 0x3, 0x5, 0x0)
ioctl$auto(0x3, 0xc048aec8, r1)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x200e, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0xb, 0xa, 0x40007fff, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x80000001, 0x7, 0x2, 0x93, 0x400000001, 0x2]}, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x100010008000)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r3, 0x0, 0x7)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x9}, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

5m23.802142293s ago: executing program 0 (id=1529):
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
write$auto(0x3, 0x0, 0x7fffffff)
setsockopt$auto(0x3, 0x1, 0x20, 0x0, 0x6)
mmap$auto(0x0, 0x2020009, 0x20000000003, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
getuid()
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x2841, 0x0)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(r1, 0xc0305710, &(0x7f0000000040)={0x0, 0x1000, 0x7, 0x0, 0xff, "1200000000000040000000e7"})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0)
openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x1c1041, 0x0)
fcntl$auto(0x3, 0x4, 0xa553)
socket(0x22, 0x3, 0x6)
fcntl$auto(0x0, 0x407, 0x8100000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/smbd_send_credit_target\x00', 0x8542, 0x0)
read$auto(0x3, 0x0, 0x80)
r2 = socket(0x23, 0x5, 0x0)
sendmsg$auto_ETHTOOL_MSG_PRIVFLAGS_SET(r2, 0x0, 0x80)
r3 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x4088, 0x3c, 0x0, 0x89)
ioctl$auto(0x3, 0x89ed, 0x74)
socket(0x2, 0x5, 0x0)
mmap$auto(0x0, 0x20008, 0xe2, 0xeb1, 0x405, 0x40000000008000)
socket(0x25, 0x4, 0x500000)
setsockopt$auto(0x3, 0x10000000084, 0x0, 0x0, 0x8)
ioctl$auto_SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000000)="c59e7eb076da3131496cd8f69ebf0abaf3fce97194dcb6b68a21661ef2c523094822cb6fdfb8933c67ee114f79c0f9f821912877ee8d29824eba82")

5m22.83396823s ago: executing program 0 (id=1533):
socket(0xa, 0x1, 0x100)
syz_open_procfs$namespace(0x0, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0)
ioctl$auto_MON_IOCX_GETX(r1, 0x4018920a, &(0x7f00000001c0)={&(0x7f0000000080)={0x5, 0x79, 0x80, 0x7f, 0xb, 0xb2, 0x2, 0x2, 0x5, 0x2, 0xfff, 0xa17, 0x8, @iso={0x0, 0x5d08}, 0x83a, 0xffffb46e, 0x7, 0x8}, 0x0, 0x10000000000000})
ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, 0x0)
ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r2, 0x107, 0x12, 0x0, 0x4)
pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\r>\x94\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4\xf8\x15\x02l@\x18*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2', 0x4e, 0x3)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim3/ports/3/pp_hold\x00', 0xc0b02, 0x0)
socket(0x2, 0x801, 0x106)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/tracing_cpumask\x00', 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0)
memfd_secret$auto(0x0)
ioctl$auto(0x3, 0xaece, 0xffffffffffffffff)
pread64$auto(r1, 0x0, 0x7ff, 0xef)

5m21.693706963s ago: executing program 0 (id=1539):
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x2, 0x4, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x8, 0x400000000006, 0xa5, 0x40eb2, 0xffffffffffffffff, 0x308000000000) (async)
mmap$auto(0x8, 0x400000000006, 0xa5, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0)
readv$auto(0x3, &(0x7f0000000040)={0x0, 0x36a}, 0x3)
mknod$auto(&(0x7f0000000000)='*-\x00', 0x5, 0x8)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x40400, 0x48)
fchmodat2$auto(r0, &(0x7f0000000340)='*-\x00', 0xd800, 0x100)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xc0180, 0x0)
fanotify_init$auto(0xba, 0x0) (async)
r2 = fanotify_init$auto(0xba, 0x0)
fanotify_mark$auto(r2, 0x205, 0x100002, 0x4, 0x0) (async)
fanotify_mark$auto(r2, 0x205, 0x100002, 0x4, 0x0)
ioctl$auto_BCH_IOCTL_DISK_GET_IDX(r2, 0x4008bc0d, &(0x7f0000000140)={0xf95}) (async)
ioctl$auto_BCH_IOCTL_DISK_GET_IDX(r2, 0x4008bc0d, &(0x7f0000000140)={0xf95})
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xfffffffffffffff7, 0x6}, 0x9}, 0x3, 0x0)
recvmmsg$auto(r1, 0x0, 0xde3d, 0x5, 0xfffffffffffffffe) (async)
recvmmsg$auto(r1, 0x0, 0xde3d, 0x5, 0xfffffffffffffffe)
madvise$auto(0x0, 0x7fffffffffffffff, 0x3)
bpf$auto(0x0, 0x0, 0x6f4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0) (async)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0)
r4 = socket(0x2, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0x10eb1, 0x401, 0x1000000003) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0x10eb1, 0x401, 0x1000000003)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0xffffffffffffffff, r3, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, r4)

5m6.218390777s ago: executing program 32 (id=1539):
rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x2, 0x4, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6)
mmap$auto(0x8, 0x400000000006, 0xa5, 0x40eb2, 0xffffffffffffffff, 0x308000000000) (async)
mmap$auto(0x8, 0x400000000006, 0xa5, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0)
readv$auto(0x3, &(0x7f0000000040)={0x0, 0x36a}, 0x3)
mknod$auto(&(0x7f0000000000)='*-\x00', 0x5, 0x8)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x40400, 0x48)
fchmodat2$auto(r0, &(0x7f0000000340)='*-\x00', 0xd800, 0x100)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xc0180, 0x0)
fanotify_init$auto(0xba, 0x0) (async)
r2 = fanotify_init$auto(0xba, 0x0)
fanotify_mark$auto(r2, 0x205, 0x100002, 0x4, 0x0) (async)
fanotify_mark$auto(r2, 0x205, 0x100002, 0x4, 0x0)
ioctl$auto_BCH_IOCTL_DISK_GET_IDX(r2, 0x4008bc0d, &(0x7f0000000140)={0xf95}) (async)
ioctl$auto_BCH_IOCTL_DISK_GET_IDX(r2, 0x4008bc0d, &(0x7f0000000140)={0xf95})
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmmsg$auto(r1, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0xfffffffffffffff7, 0x6}, 0x9}, 0x3, 0x0)
recvmmsg$auto(r1, 0x0, 0xde3d, 0x5, 0xfffffffffffffffe) (async)
recvmmsg$auto(r1, 0x0, 0xde3d, 0x5, 0xfffffffffffffffe)
madvise$auto(0x0, 0x7fffffffffffffff, 0x3)
bpf$auto(0x0, 0x0, 0x6f4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0) (async)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0)
r4 = socket(0x2, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0x10eb1, 0x401, 0x1000000003) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0x10eb1, 0x401, 0x1000000003)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) (async)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0xffffffffffffffff, r3, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)
syz_genetlink_get_family_id$auto_802_15_4_mac(0x0, r4)

2m36.030061814s ago: executing program 2 (id=1905):
socket(0x10, 0x2, 0x4)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
r0 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x80000000009b72, 0x2, 0x8000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
ioctl$auto(r1, 0x5456, r1)
setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14)
read$auto(0x4, 0x0, 0xfdef)
socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/bdi/7:8/read_ahead_kb\x00', 0x82942, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8942, &(0x7f0000000540)={'macvlan0\x00'})
sendfile$auto(r2, r2, 0x0, 0x200)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000001080)='/sys/devices/virtual/block/ram12/events\x00', 0x101480, 0x0)
read$auto(r4, 0x0, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tipcv2(&(0x7f000000c180), 0xffffffffffffffff)
ioctl$auto_posix_clock_file_operations_posix_clock(0xffffffffffffffff, 0x40103d0b, 0x0)
shmctl$auto_IPC_RMID(0x5, 0x0, &(0x7f0000000200)={{0x6, 0x0, 0x0, 0x6, 0x9, 0xf0, 0x1}, 0xbb1, 0x9, 0xa53, 0x3ff, @raw=0x4, @raw=0x5760, 0xfffe, 0x0, &(0x7f0000000000)="12b1e86936717f9a59c2080fb32e676a04", 0x0})
mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0)
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000002040)={'bond_slave_1\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(r5, &(0x7f0000021740)={0x0, 0x0, &(0x7f0000021700)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6], 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x800)

2m35.043822436s ago: executing program 2 (id=1907):
r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x103002, 0x0)
write$auto_sg_fops_sg(r0, 0x0, 0x0)
open(0x0, 0x261c2, 0xb2)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
io_uring_setup$auto(0x6, 0x0)
r1 = socket(0x11, 0x3, 0x9)
mmap$auto(0x4000000000000000, 0x28, 0xe4, 0x100000eb1, 0x40000000000a1, 0x8000)
close_range$auto(0x2, r1, 0x0)
socket(0x11, 0x80003, 0x300)
pipe$auto(&(0x7f0000000040)=<r2=>r1)
flock$auto(r2, 0x9)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000180)=""/250, 0xfa)
socket(0x1, 0x5, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0x20000eb1, 0x401, 0x8000)
clock_getres$auto(0x10, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8ea182, 0x0)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r2)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0xa, 0x2002)
socket(0xa, 0x801, 0x84)
lsm_list_modules$auto(0x0, 0x0, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x6c, 0x697c}, 0xed71390}, 0x9a6, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcsu\x00', 0x108002, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="01002dbd7000f06c84446a0b7416"], 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)
write$auto(0x3, 0x0, 0x80000003)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
r6 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r6, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60008004}, 0x80)

2m34.45541254s ago: executing program 2 (id=1909):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = socket(0x10, 0x2, 0x6)
r3 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000240), r2)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0xbc, r3, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_COORDINATOR={0xa8, 0x1e, 0x0, 0x1, [@nested={0xa3, 0x122, 0x0, 0x1, [@generic="bfb2fdbeed331087b262fb73a31a01d718df82f2ce6d11f2cf265dd784f88039f83ab19ac67ee59773166c68fff7a9e4c42e84363c926d3e8be0904b6b48168e6fc2893faa3b2190c64b8131b27df79ec4c59aeea5880ebdab14ee282181b6be502d1e285b82398fc7750a283770f943752ee37695a982547479541d0f38a6cd34cef59b1d7400a8892e7cd59db9d489d201784d07c781d703599e", @nested={0x4, 0x87}]}]}]}, 0xbc}, 0x1, 0x0, 0x0, 0x20008000}, 0x8044)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x5014c0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004814}, 0x8800)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
r4 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0)
write$auto_mousedev_fops_mousedev(r4, &(0x7f0000001380)="22d2", 0x2)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0)
r5 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$auto_nvram_misc_fops_nvram(r5, 0x0, 0x0)
ioctl$auto_NVRAM_INIT(r5, 0x7040, 0x0)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xb01901, 0x0)
read$auto(r6, &(0x7f0000000040)='/proc/self/net/icmp\x00', 0x80000001)
write$auto_proc_mem_operations_base(0xffffffffffffffff, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0xffffffffffffffff, 0x0, 0x0)
futex$auto(0x0, 0x5, 0x9, 0x0, 0x0, 0xffff7fff)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)

2m32.89454879s ago: executing program 2 (id=1913):
mmap$auto(0x0, 0x40, 0xe3, 0x100000eb1, 0x40000000000a1, 0x408000)
r0 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
pwrite64$auto(0x2, 0x0, 0x0, 0x5)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/ifb0/flags\x00', 0xb02, 0x0)
sendfile$auto(r1, r1, 0x0, 0x3)
semtimedop$auto(0x4, &(0x7f0000000400)={0xff, 0xd7, 0x52}, 0x6, &(0x7f0000000440)={0x401, 0x64})
ioctl$auto_XFS_IOC_OPEN_BY_HANDLE(r0, 0xc038586b, &(0x7f00000002c0)={r1, &(0x7f0000000100)="1de64a3d73e036a921bdd89329f999ccd425cfe6d5ee7bf758575ad38b2f3c3d5501e7b60c10cb98443b76479c4219223aef4b31777bb53b52da9eab0405d381755b61cbb09fb8bb069a1b56cae4e629abb5af38998ed10f731b85a4b995c89da91ccaeee0fff05630e961fd6520c53b5c4f65db845824c59bb131e5082200d0614b7051ca1b36938f98bfc59e53ab9d799a52ace1b796b95ee387e803df40ec34ddac0d8024474052a1abf450b7bc099c23df43f2229bac09836a31ac5953ab531d31", 0x7, &(0x7f0000000840)="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", 0x4, &(0x7f0000000240)="a2d938f5e0a10c8f1ff44fb5152e714929c771ba90db92007d8168fb21acff8a43d5232bafad61662ccfe425f297599212eef749afc4fc7739f9294d972e1fbdb4b0b393", &(0x7f0000000080)=0x7})
openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x242, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/ip_forward\x00', 0x2002, 0x0)
mmap$auto(0x0, 0x7, 0x4000000000df, 0xeb1, r1, 0x8000)
mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
ustat$auto(0x801, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x26a40, 0x155)
socket(0x2, 0x2, 0x0)
r2 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
socket(0x2, 0x1, 0x106)
r3 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC1\x00', 0x22000, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_LIST(r3, 0xc0505510, 0x0)
listen$auto(0x3, 0x81)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/net/teql0/statistics/rx_dropped\x00', 0x80000, 0x0)
openat$auto_xfs_dir_file_operations_xfs_file(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci1/hci1:201\x00', 0x482c0, 0x0)
socket(0x11, 0x2, 0x0)

2m31.506084138s ago: executing program 2 (id=1915):
r0 = socket(0x1a, 0x1, 0x106)
close_range$auto(0x2, 0x8, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r1 = socket(0x2, 0x1, 0x0) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x37}}, 0x6e)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x9, 0x20000000) (async)
socketpair$auto(0xffffffff, 0x7, 0x8000000000000000, 0x0)
sendmsg$auto_NL80211_CMD_START_P2P_DEVICE(r1, 0x0, 0x14) (async, rerun: 32)
setsockopt$auto(r0, 0x6, 0x17, 0x0, 0x7) (async, rerun: 32)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/virtual/tty/ttyu3/power/runtime_status\x00', 0x2280c0, 0x0) (async, rerun: 64)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (rerun: 64)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
mbind$auto(0x6, 0xffff, 0x4, 0x0, 0x80000000, 0x7f)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r3 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 32)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="01000000", @ANYRES16=r3, @ANYBLOB="010028bd7000fbdbdf25030000001400010000000000000000000000000000000001"], 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x800) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) (async)
shutdown$auto(0x200000003, 0x2)
mlockall$auto(0x7)
modify_ldt$auto(0x96c, 0x0, 0x10) (async, rerun: 32)
getrandom$auto(0x0, 0x6000000, 0x3) (async, rerun: 32)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r4 = socket(0x10, 0x2, 0x0)
syz_genetlink_get_family_id$auto_gtp(0x0, r4) (async, rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYRESHEX, @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) (async, rerun: 32)
read$auto(r4, 0x0, 0x3)

2m29.825992643s ago: executing program 2 (id=1921):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_nodes_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000180), 0x280, 0x0)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x1, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) (async)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x1, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1) (async)
socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1)
mmap$auto(0x0, 0x20009, 0x80000e3, 0x4000000100000eb1, 0x40000000000a1, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x4b}, 0x1, 0x0, 0x5, 0x1060}, 0x5}, 0x2, 0x100) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x4b}, 0x1, 0x0, 0x5, 0x1060}, 0x5}, 0x2, 0x100)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
open(0x0, 0x22240, 0x55) (async)
r0 = open(0x0, 0x22240, 0x55)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'vlan0\x00'})
close_range$auto(0x2, 0x8000, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0)
socket(0xa, 0x2, 0x88)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xbff)
sendmsg$auto_ETHTOOL_MSG_RINGS_GET(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000140)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x8004805}, 0x20004805)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
ioctl$auto_VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x5, r2}) (async)
ioctl$auto_VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x5, r2})
write$auto(0x3, 0x0, 0x800)

2m14.701876784s ago: executing program 33 (id=1921):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
openat$auto_nodes_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000180), 0x280, 0x0)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x1, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) (async)
recvmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x1, 0x0, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1) (async)
socketpair$auto(0xc6, 0x3, 0xfff, &(0x7f0000000000)=0x1)
mmap$auto(0x0, 0x20009, 0x80000e3, 0x4000000100000eb1, 0x40000000000a1, 0x0)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x4b}, 0x1, 0x0, 0x5, 0x1060}, 0x5}, 0x2, 0x100) (async)
sendmmsg$auto(0xffffffffffffffff, &(0x7f00000000c0)={{&(0x7f0000000000), 0x205aa, &(0x7f0000000100)={0x0, 0x4b}, 0x1, 0x0, 0x5, 0x1060}, 0x5}, 0x2, 0x100)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
open(0x0, 0x22240, 0x55) (async)
r0 = open(0x0, 0x22240, 0x55)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'vlan0\x00'})
close_range$auto(0x2, 0x8000, 0x0) (async)
close_range$auto(0x2, 0x8000, 0x0)
socket(0xa, 0x2, 0x88)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000003fc0)='/sys/kernel/debug/tracing/trace_pipe\x00', 0x20a02, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0xbff)
sendmsg$auto_ETHTOOL_MSG_RINGS_GET(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000140)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x8004805}, 0x20004805)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
ioctl$auto_VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x5, r2}) (async)
ioctl$auto_VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x5, r2})
write$auto(0x3, 0x0, 0x800)

1m3.487410058s ago: executing program 3 (id=2141):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
r0 = prctl$auto(0x1000000003b, 0x200, 0x4, 0x3, 0xb) (async)
lsm_set_self_attr$auto(0x3, 0xfffffffffffffffc, 0x1f, 0x8000000000000000) (async)
fdatasync$auto(0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$auto_handshake(&(0x7f00000004c0), 0xffffffffffffffff)
lsm_set_self_attr$auto(0x2, &(0x7f0000000700)={0x1, 0x7ff, 0xd, 0x10b, "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"}, 0xffff, 0xffffff74)
sendmsg$auto_HANDSHAKE_CMD_ACCEPT(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="010027bd700000dcdf2522000000"], 0x14}, 0x1, 0x0, 0x0, 0x4002040}, 0x2004881c) (async)
mmap$auto(0x40000005, 0xfffffffffffff9ec, 0x3000000000000003, 0x73, r1, 0xf) (async)
r3 = bpf$auto(0x0, 0x0, 0x6f3)
socket(0xa, 0x2, 0x88)
socket(0xa, 0x5, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x940, 0x0) (async)
ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x80, 0x0})
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x2000000000000021, 0x2, 0x10000000000002) (async)
socket(0x1e, 0x4, 0x8000) (async)
ioctl$auto_USB_RAW_IOCTL_VBUS_DRAW(r3, 0x4004550a, &(0x7f00000001c0)=0x463)
r5 = socket(0x2b, 0x2, 0x1)
connect$auto(r5, &(0x7f00000000c0)=@qipcrtr={0x2a, 0xffffffff, 0x4001}, 0x55) (async)
bind$auto(0x3, &(0x7f0000000080)=@qipcrtr={0x2a, 0x1, 0x80f0}, 0x6b) (async)
fcntl$auto(0xffffffffffffffff, 0x2, 0x0)
clock_nanosleep$auto(0x80000001, 0x9, &(0x7f0000000240)={0x1, 0xda}, &(0x7f0000000180)={0x0, 0x4c25}) (async)
futex_wake$auto(&(0x7f0000000140), 0x8, 0x6, 0x6)
ioctl$auto_PPPIOCSPASS(r4, 0x40107447, &(0x7f0000000380)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @inferred=r4}}) (async)
write$auto(r4, 0x0, 0x6)
openat$nci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)

1m2.152790564s ago: executing program 3 (id=2146):
ioctl$auto(0xffffffffffffffff, 0x64c5, 0xffffffffffffffff)
pipe$auto(&(0x7f0000000040))
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
unshare$auto(0x8000000)
semget$auto(0x0, 0x2e4a, 0x8000)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x1f4, 0x0)
acct$auto(&(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/dT\x02\xa2%h\xdd\xfep\x0e\xe6\x96w\x05r\x9c\xb6L\t0\x0f\x954\xf6\b\xa0&C\x83L\xc0\xe9\t\"\xa5\x8f\xce\x03\xb6\x16\x90\xc3\x97\xb7\n\"zB\xedCf\xfd \x87\xdb\x8f\x87\xe9\xea\x89-B\x06\x97\xcb+\xf09\xa1\xa5\x8d\x9b\b\xc8\x15\xb6|\xc7 t\xc8#\xf8,\xab\xa7\xf6\x03Z\x93\xf5\xc8\x87\xc9z}]\x85\xcc\xd5d\x02\x90{\xc3_\xd4>b\x96\xc5\x93\xb1\xa0E\xda\xb8\xb1\xa5G\r\xf4[\xec \"\xd9\x13\x803\xa6V\xe3\x06\xc72\xc0d|?\xfaA\xd2\xd6\xce\xfa\x9a\x98\x01\aXV.\xf15>;\xfat9\x8f\xbf\x8dRQf\xa4\x11\x13\xa0R\xcb\xc2v\x0f\xfc\xb3:f\x8f\xae\xcc\xbb\xd2\xfa\xef%\xfa\x85\xd9\x7fL\xad\xab\xd0\xd1\xc9vJr\x89\x90vq\x17\xbb\x82[D\xedJ\xe7{re\x8a\xeb~\xf1V<\xc2p~\x90\xe6\x1c\xf86\xeb\x11\xe2\x90\rr\xda.\x82\xbd\x0f\xbd{\x861\x03\xda-#\\^`\xc8\x01%V\xab\r\b\xde\xaa\xf8s\x86K\bR\x12\xbc{\xef\xc5<\xfd\x02\xe2\xf0\br\xde\n\xe4\xa6\v\xbcd\x9e\xe9\xbd\x18\x89\xa1\xe8w\x0e7\xae\x10e\xb6\xce\xe25\xdf\xd8\x12X`\xec\n\x87\x86X\x9b\x80i7\xcb\xed\xbdQ\xe4\xbb*\xedq\xb0>\x92\xb6W\b\x1eV\xadk\x11\xa9\xa1\x1f\xe1\xac\xb7\xd0\xcc\x94\xc1g\x8c\xe5\xf0\"\xe1\xc2. \\X\xe0\xd30\xa9X\x8dB\xb1\xddS\xbey\xb4]j \x96\xe3\x84\xcc\x02C\xd23\x16T\xden\"\xea\xf2j\b\xd2\xf6\xe5\xc2a\xaa\xefr\x80\rZ\x06s\xa0\xaf\x93MmM|\xfdN\x19\xf0RS\xc4\xca\x84H\x19T\xd4\xc4\x00\x04\x00\x00\x00\x00\x00\x00\x8a\xd0\xd48\xb4\x0e0\xff\x98\xce\x01\'\x83i\xd9\x94\xcf\xd7\x03_|J\x9b\x06q\x0e\xdf_/u\xfa\xcd\xb9\"L\x17\xc3\xdc\x16\xc7\x02\xb7\x91\x85Ot\xd0r\xc2r\xee\xce\xefU\x1a\x89\xd6,\x04\x96o<o\x814\xb4\v?6>\xb9\x1b\x19b&O\xf2\xf1\xef\xd1\x04A\x00q?\xa0\x00\xec\xf17\xbbpu\xeeW\xd7HSXt\xe4\xf07+\xc8\xd3\x87|\x15\x9b\x95t\x195l\xcb\xfd\xae@\xbd>\xdcd\xaa\x19r\xec_>\xf2\x7f\xe6\xe7\x1c\x1dE\x87k(k\x98\x81\xe8\t\"\xed\x94\xe33\xebk*\xc1\xcc\x98\x1d\xdd\x9c\v\xc3\xef\x9b\xc3\xca\x14\xb54\x8aS\xa0`*\xc4\xe6|n\xc7\xbf1\x02yc\xc2\xf3\xb1\x0e\xb4\xc5\xf3\xe2\x10\xa9\xbdQ\xb6\xc7\x81_3^y\x06\x0f\xec\x95\xf0QP\x1c\xc7;\x7f\x03i\x91\xff\xa0\xfek\xb1\xd1\xa3w\x1b\'[\x00|\xe6\xaa\xe3 \x9d\xb6g\xe2l\xe3q!\xfa\x15\xab\x9e\xe0\xbbp\xcfqT<\xe0\"\x17\x1a\xd3\xa6\x05\xa40\x9a\x90\x12\x17t%\x17+\x8b\xf7u\x93\xf9')
sendmsg$auto_SMC_NETLINK_GET_FBACK_STATS(0xffffffffffffffff, 0x0, 0x48080)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x800455d1, &(0x7f0000000100)=0x11512)
mmap$auto(0xffffffffffffffff, 0x0, 0x3, 0xeb1, 0xfffffffffffffffa, 0x9)
open(0x0, 0x4ed02, 0x1)
writev$auto(0x1, 0x0, 0x1)
socket(0x1d, 0x2, 0x2)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x1fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x400000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x3]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
statmount$auto(&(0x7f0000000380)={0x9, @raw=0xff, 0xc, 0xd, 0x8000000000000001}, &(0x7f00000003c0)={0x5, 0x9, 0x5, 0x10000, 0x4, 0x2, 0xdda4, 0x10001, 0xe03446c, 0x81, 0x2, 0x1, 0x10, 0x5, 0x2, 0x8, 0x3, 0xd7bf, 0xfffffda1, 0x8000, 0x3ff, 0x1, 0x9, 0x8, 0x400, 0xc703, 0x7fffffffffffffff, 0x5, 0x5, 0x9, 0x8, [0x9, 0x7, 0x3, 0x0, 0x1, 0x4, 0x1, 0x9, 0x2, 0x8, 0x9, 0x2, 0x3, 0x8, 0x5, 0x2, 0x5, 0x7, 0x4, 0x1, 0x101, 0xffffffff, 0x62eb, 0x6, 0x8, 0x7, 0x1ff, 0x1, 0x200, 0x9, 0x5, 0xed, 0x7, 0x4, 0xa, 0x40, 0x77800000000000, 0x6, 0xe6d5, 0xb, 0x4, 0x9, 0x6], "4014a3e688123e3443f6b29c99beb4c3608a3624b1409da48cc4fc2c8137b19e2440c6a4647168268fa045a769"}, 0x9a6, 0x6)

1m1.48393792s ago: executing program 3 (id=2148):
r0 = socket(0x15, 0x5, 0x0)
sendmsg$auto_NLBL_UNLABEL_C_STATICADDDEF(r0, 0x0, 0x24040801)
accept$auto(r0, 0x0, 0x0)

1m0.936930828s ago: executing program 3 (id=2153):
bpf$auto(0x0, &(0x7f0000000100)=@bpf_attr_4={0x800000000012, 0x4, 0x80000001, 0x8}, 0x6f4)
mmap$auto(0x0, 0xa00006, 0xfff, 0x40eb1, 0x602, 0x300000000000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@hci={0x1f, 0x3, 0x1}, 0x54)
openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
write$auto(0x3, 0x0, 0xfffffdef)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da07, 0x3, 0x3, 0x65, 0x8000001f, 0x1000, 0x6d3e, 0x9, 0x2, 0x8]}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_OVS_DP_CMD_NEW(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c002000", @ANYRES16=r3, @ANYBLOB="010026bd7020f8dbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="080001003a66520008000200", @ANYRES32=0x9, @ANYBLOB], 0x2c}, 0x1, 0x0, 0x0, 0x801}, 0x0)
select$auto(0x9, &(0x7f00000000c0)={[0xeeda, 0x7, 0x100000001, 0x9, 0x6, 0x1ff, 0x6, 0x3, 0x4, 0x4618ecd2, 0x3, 0x42ff, 0x6, 0x9a8c, 0x9, 0x10001]}, 0x0, 0x0, 0x0)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0xfffffdef)
openat$auto_ftrace_avail_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/tracing/available_events\x00', 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r5, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000001700)={&(0x7f0000000440)={0x1dc, r6, 0x201, 0x70bd2c, 0x25dfdbff, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x1c4, 0x1, 0x0, 0x1, [@nested={0x1bd, 0x139, 0x0, 0x1, [@nested={0x1ab, 0xeb, 0x0, 0x1, [@generic="4540411dc202cca7c3000938b0c18de4cfac1203a8319dc7b96f0e2a79334de3be28009e292ede89fa03", @typed={0x8, 0xdd, 0x0, 0x0, @pid}, @generic="6930d90e6909e2b8e7eb7fce61b1c025380ce4702699d87c1fed3cf9f146b4ded92ce82ffe7fa2ac72640f557a845a28a0e484eab4c323b7a631c0e9ea7cd1623d365b31ac8f93d7b7ba1fe0dc38aac8423995fbf05cefbfcc2cf976cdb77a84b14a852fa07c112b31360ea6913f2214d52fd4fdc9d70f5d00ae063c4b369b11a363e0a6f5f9edfc8b527c68e2f43e321c006a2034c49e67e56ab2060bccbadae47f135e9370e4143639388d590430c25637db9a1f372b131aed9326e3db4a6bc9080db86a4649bc6bf77993ab", @nested={0x4, 0x12d}, @nested={0x9c, 0x109, 0x0, 0x1, [@generic="18dd0047f071cf26f71d7c3e0953a7b809f180b71a907ce8eee916b786c12bef043849f161b88cbb4f01bf22d7564404244d4a13c3a6386f14ef3c114ccaa122e838b4e7a335dea8cbe3bcec519afde9f5c23303b82c57b41f730b3046db635a18dd6ae8e02e7eecc84472f0833c6a03b2d8ab0f34a797c4cc4a02f9775150e42001e3c49e4af528b3a41699", @typed={0xc, 0xf0, 0x0, 0x0, @u64=0x4}]}, @typed={0x8, 0x50, 0x0, 0x0, @uid}]}, @typed={0x8, 0x2d, 0x0, 0x0, @fd}, @generic="5ecb8698ec"]}]}]}, 0x1dc}, 0x1, 0x0, 0x0, 0x44000}, 0x4000048)
sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(r4, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)={0x28, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x5}, @NL80211_ATTR_HE_BSS_COLOR={0xc, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x1)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x60d80, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/fib_trie\x00', 0x200000, 0x0)

58.88929111s ago: executing program 3 (id=2158):
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0xa, 0x0) (async)
r0 = socket(0x2, 0x3, 0x6) (async)
lsm_list_modules$auto(0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) (async, rerun: 32)
open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) (async, rerun: 32)
ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0)
rename$auto(&(0x7f0000000480)='./file0\x00', 0x0)
lstat$auto(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)={0x101, 0x286c, 0x1, 0x2fd6, <r2=>0xffffffffffffffff, 0xee01, 0x0, 0x6e44787f, 0xa, 0x800, 0x3, 0x4, 0x4, 0x7, 0x8, 0x200, 0x2})
msgctl$auto_MSG_STAT_ANY(0x5, 0xd, &(0x7f0000000200)={{0x6, 0x0, <r3=>0xffffffffffffffff, 0x8, 0x5, 0x0, 0xfb4}, &(0x7f0000000080)=0x8, &(0x7f00000001c0), 0x9, 0x7e74, 0x7fff, 0x2, 0x1, 0x4, 0x1000, 0x1, @inferred=0xffffffffffffffff, @inferred=0xffffffffffffffff})
ioctl$auto_XFS_IOC_BULKSTAT(r1, 0x8040587f, &(0x7f0000000280)={{0x80000000, 0x1, 0x7, 0x6, 0x0, [0x3, 0x8f, 0x3, 0x3, 0x10]}, [{0x54, 0x4, 0x7fff, 0x2, 0x7, 0x5, 0x4, 0x8, 0x80000001, r2, r3, @raw=0x4, 0x6, 0x3ff, 0xfa, 0xff, 0x7, 0x6, 0x5, 0x30, 0x8, 0xb272, 0xe1c, 0x10, 0x100, 0x10, 0x9, 0x7, 0x0, 0x5}]})

58.391843183s ago: executing program 3 (id=2160):
socket(0x2, 0x2, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x700, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty27\x00', 0x486683, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0)
setregid$auto(0xffffffffffffffff, 0xfffe)
setresgid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r5 = ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
pipe$auto(0x0)
r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x22082, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r6, 0xc4c85512, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r2)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(r5, 0x4010ae68, r7)
ioctl$auto_TCFLSH2(r3, 0x5408, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bond0\x00'})
ioctl$auto(r0, 0x541c, r1)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x8, 0x8, 0x1, 0x2, 0x4, 0x15f4da12, 0x3, 0xd08, 0x8, 0x8, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0)

42.369716798s ago: executing program 34 (id=2160):
socket(0x2, 0x2, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x700, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty27\x00', 0x486683, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0xc7f16bff2a10ba01, 0x0)
setregid$auto(0xffffffffffffffff, 0xfffe)
setresgid$auto(0xffffffffffffffff, 0x0, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r4 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
r5 = ioctl$auto_KVM_CREATE_VM(r4, 0xae01, 0x0)
pipe$auto(0x0)
r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x22082, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r6, 0xc4c85512, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000000), r2)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$auto(r5, 0x4010ae68, r7)
ioctl$auto_TCFLSH2(r3, 0x5408, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bond0\x00'})
ioctl$auto(r0, 0x541c, r1)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x8, 0x8, 0x1, 0x2, 0x4, 0x15f4da12, 0x3, 0xd08, 0x8, 0x8, 0x4, 0x6d3f, 0x9, 0x2, 0x4000000000000d]}, 0x0)

8.394154842s ago: executing program 5 (id=2216):
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4810}, 0x800)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mknod$auto(&(0x7f0000000580)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x01\x00\x00\x00\x00\x00\x00\x00\xaeR\x81\r_\x0e\x19\b\x85\bvv(e\xdax)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbH\xd3^aD\x87\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x1c\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e\x00\x00\x00\x00\x00\x00\x00\xf1p\xeb\xe9(%\x89\xef\x85\xdfr\xce\x00\x00\x00\x00\xff\x00\xa2M\'d\x12\x1c\x12\xca\xa5_\x8d\xdf\xc5\x8d\x19?\xfc~\xb3X\x14\xa7\xa9M\x87\xfcTW\x1bR\xbci\x8d\x8aNEO\xb3~~\xa8\xa6\x894\x80;s\xb7\xa3V\x1b\x14|\x9e\xd4\x05\x85\x0f!\xab-E\'\x97Y\xb7\xe8fMv_\xf8\xa0S\xef\xb7\b\xe7!T.g\x92\x87\t$\x06\xa4\xfb\x83\x8c\x17^\x82\xe7\xd3\xf6q\x1a\xa0\xf82[W\x90\xdd\xe3\xde\xa9\xde\x94`-\x9a\x1e}\xebO*\xb85,v.\xfc5\xba?vlt\xda%\x06a\x15I\x1f\xe3\x05+\x810T2\xf9\x9b\xc7\xd1<w\xd3:\x835\xac\r\x06\xc9\xc1HG\x1c\xd4J\x8aZ%+\xe6/~\xd6\xe1[+Z\xb1\x8d\xc5\x9b\xcfhb\'\x80\xeb7%>\t\x03\xf2\x8d\x8a\x90\xb54\bH<9\xf1\x91 D\x85g,\xaa\xca\xcd\xd5\xcb\x9a\xb1j\xf2F\xce\x14\x92\xf9\xd7\xec\xc5\x1e\x8aq2\xce\x881f\xd7\xd4\x9e\xf6\xb6P\x01\xe8T\xb5X\xb9d-I\xd6\x91\xc3\xe2\x88S\x82l=\x02t$p\t\x8cY\x06\r\x83\xb0\x86\xc6\x84\x1c\xce\xb6\xf0\xdfC\x9fj<\xfe\xa4\x1f\x82L\xe4\x13+H\x00\x00\x00\x00\x00\x00\x00\x01M\x16\xa0\xbeB6\xfb\xa2-\x17\x93Q\x9fKusl5\xa2$M\xb4\x18\x1db\xf3\xce\x8c\xe5Rna\xd5\xbbQ\xc7\xa7+\vH\xc1l\x1bIv\xe8_', 0x1081, 0x9)
acct$auto(&(0x7f0000000480)='u[,&*}\x00\a\x00\x00\x00?\xa4\x1fN\xa1~5Z\xc7\r\f}M4\xa8m\xe6\x19[11\xab\xff-E\xac9(\xb4O\xa0t4h\x9f-gn\x1f\x0f\x18\xc5\x82-s\x83\xe6\xaeR\x81\r_\x0e\x19\x12\x85\bvf(e\xday)\t\x15\xf6\xc8\xee\x04\x16\xc1\x9a!\x87I7\x8cD&zg\xb0a\xab|E\xde\x14\xee[\xc8\xc0\xa8Nh\x0f\xa3\xdbT\xb3\xb8\xd2F\xa0\xc4]\xaf\xc43&\xe4\x01\x05\xd2\x15\xf8\xf1!\x9d\x92\xbbHL9aD\xb4\x80\xed\xba>\"\xb6\x7f\xa3f\x1d\a\xa1\x87\x84uA\xd8\xe7\xd2\xf3[r\xc5S&}D[\x97\xf1\xd9\xf8Y\x03\x84\xb4\xd7\x16\x19\xe5\x17\x10\xd8fcG:\xfbY8\x17w\x98?\x03@\xe5\x02\x05\x93h\xb9\xf7\xef\x84\x8aGlN\a\x1e')
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x123002, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
connect$auto(0x4, 0x0, 0x2)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0)
read$auto(r0, 0x0, 0x20)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, r0, 0x0)
mremap$auto(0x200000000000, 0x40000000004, 0x4, 0x3, 0x100000000)
mknod$auto(&(0x7f0000000180)=':,\x00', 0xc9, 0xfffffffa)
execve$auto(&(0x7f0000000040)=':,\x00', 0x0, &(0x7f0000000200)=&(0x7f00000001c0)=':,\x00')
ioctl$auto_IOCTL_VMCI_DATAGRAM_SEND(0xffffffffffffffff, 0x7ab, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
io_setup$auto(0x7ffe, 0x0)
io_setup$auto(0x7ffe, &(0x7f0000000000))
mmap$auto(0x0, 0x2020009, 0x1000000000007fff, 0xeb1, 0xfffffffffffffffa, 0x8000)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mprotect$auto(0x0, 0x806121, 0x6)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x16bd00, 0x0)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffe000)
syz_genetlink_get_family_id$auto_nl802154(0x0, 0xffffffffffffffff)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$auto(0x5, &(0x7f0000000080)=@bpf_attr_7={@prog_id=0xc, 0x92f1, 0x4}, 0xa)

7.14598039s ago: executing program 6 (id=2218):
mincore$auto(0x1000, 0xfffffffffffffffe, 0x0)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x1000000)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
r2 = ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
semget$auto(0x9, 0x2, 0x0)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r3, 0x0, 0x1f42)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f00000001c0)={0x0, 0x9}, 0x3)
io_uring_register$auto_IORING_UNREGISTER_NAPI(r2, 0x1c, 0x0, 0x8)
io_uring_setup$auto(0x3, &(0x7f0000000280)={0x6, 0xf085, 0x0, 0x3841, 0xfffffffe, 0x5, r3, [0x8000000, 0xc37, 0x6], {0x4, 0x5, 0xfffff5d3, 0x2, 0x2, 0x2, 0x7ff, 0x8, 0x80000000}, {0x8, 0x9, 0x7, 0x7, 0xe4ae, 0x95, 0x7ff, 0x8, 0x3}})
r5 = openat$auto_tracing_mark_raw_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace_marker_raw\x00', 0x402, 0x0)
ioctl$auto(0x3, 0xae60, r5)
ioctl$auto_SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x800455d1, 0x0)

7.141914744s ago: executing program 4 (id=2226):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="01002bbd7000fcdbdf25040000000400100008000c0001b30000000000000094d1962fb62441ff76466065c26564daa77057d4e09afa2e679c30c6622b191ba757e9ba779bec109e19d3d7a707d1ad7e6cf59efe33c7eed533ca6944156c0ec23947cff99e5dc699c05af15c79c088b84902824265c78e458258b93f70683ac56ec029ad49b1c9b3afb2598a79789172e1b5d5552a8c4ae09a16d20496be"], 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
r1 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/fb\x00', 0x100, 0x0)
pread64$auto(r1, &(0x7f0000000040)='/dev/kvm\x00', 0x40000000006, 0x3)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xae00, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
socketpair$auto(0x1, 0x3, 0x5, 0x0)
ioctl$auto(0x3, 0xc048aec8, r2)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x200e, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0xb, 0xa, 0x40007fff, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x80000001, 0x7, 0x2, 0x93, 0x400000001, 0x2]}, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x100010008000)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r4, 0x0, 0x7)
r5 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r5, &(0x7f0000000200)={0x0, 0x9}, 0x3)

6.960567973s ago: executing program 5 (id=2220):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = socket(0x10, 0x2, 0x6)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000240), r2)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r2, 0x0, 0x8044)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x5014c0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004814}, 0x8800)
mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
r3 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0)
write$auto_mousedev_fops_mousedev(r3, &(0x7f0000001380)="22d2", 0x2)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0)
r4 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$auto_nvram_misc_fops_nvram(r4, 0x0, 0x0)
ioctl$auto_NVRAM_INIT(r4, 0x7040, 0x0)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xb01901, 0x0)
read$auto(r5, &(0x7f0000000040)='/proc/self/net/icmp\x00', 0x80000001)
write$auto_proc_mem_operations_base(0xffffffffffffffff, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0xffffffffffffffff, 0x0, 0x0)
futex$auto(0x0, 0x5, 0x9, 0x0, 0x0, 0xffff7fff)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)

5.846988819s ago: executing program 4 (id=2221):
r0 = socket(0x2, 0x1, 0x106)
ioctl$auto(0xffffffffffffffff, 0xab07, 0xffffffffffffffff)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$auto_NL80211_CMD_SET_COALESCE(0xffffffffffffffff, 0x0, 0x48050)
setsockopt$auto_SO_MARK(0xffffffffffffffff, 0x6, 0x24, &(0x7f0000000380)='\x00', 0x163fdb7e)
socket$nl_generic(0x10, 0x3, 0x10)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
r2 = semctl$auto(0x7, 0xfffffffa, 0x14, 0x46)
sendmsg$auto_NL802154_CMD_STOP_BEACONS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x20000844}, 0x50)
msgctl$auto_IPC_INFO(0x7, 0x3, &(0x7f0000000200)={{0x13b8, 0x0, 0xee01, 0x100, 0x3, 0x7fffffff, 0x3afa}, &(0x7f0000000180)=0x4, &(0x7f00000001c0)=0xa, 0x7, 0x3, 0x9, 0x4, 0x2, 0xffff, 0xfffd, 0x6498, @raw=0x71, @inferred=r2})
setsockopt$auto(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x10000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/net/lapb3/threaded\x00', 0x8a801, 0x0)
write$auto(r3, &(0x7f0000000000)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/nbd12\x00', 0x10000, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
write$auto(0x3, 0x0, 0x100082)
recvfrom$auto(0x4, 0x0, 0x101d0, 0x3ffffd, 0x0, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/tty/ptyw5/power/runtime_suspended_time\x00', 0x4aa003, 0x0)
read$auto(r4, 0x0, 0x1f)
close_range$auto(0x2, 0xa, 0x0)
socket(0x18, 0xa, 0x1)
socket(0x37, 0xa, 0x7)
sendmsg$auto_NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="29ab2400fc63c9bf5e000000"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4000084)
connect$auto(0x3, &(0x7f00000000c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB=',\x00'/13, @ANYRES16=0x0, @ANYBLOB="00082dbd7000ffdbdf250100000016000a002f6465762f736e642f6d69646943324430000000"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x80)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0xeffd)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7)

5.834356475s ago: executing program 6 (id=2222):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = socket(0x10, 0x2, 0x6)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000240), r2)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r2, 0x0, 0x8044)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x5014c0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800)
mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
r3 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0)
write$auto_mousedev_fops_mousedev(r3, &(0x7f0000001380)="22d2", 0x2)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0)
r4 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$auto_nvram_misc_fops_nvram(r4, 0x0, 0x0)
ioctl$auto_NVRAM_INIT(r4, 0x7040, 0x0)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xb01901, 0x0)
read$auto(r5, &(0x7f0000000040)='/proc/self/net/icmp\x00', 0x80000001)
write$auto_proc_mem_operations_base(0xffffffffffffffff, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0xffffffffffffffff, 0x0, 0x0)
futex$auto(0x0, 0x5, 0x9, 0x0, 0x0, 0xffff7fff)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)

5.459618763s ago: executing program 1 (id=2223):
ioctl$auto(0xffffffffffffffff, 0x64c5, 0xffffffffffffffff)
pipe$auto(&(0x7f0000000040))
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
unshare$auto(0x8000000)
semget$auto(0x0, 0x2e4a, 0x8000)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x1f4, 0x0)
acct$auto(&(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/dT\x02\xa2%h\xdd\xfep\x0e\xe6\x96w\x05r\x9c\xb6L\t0\x0f\x954\xf6\b\xa0&C\x83L\xc0\xe9\t\"\xa5\x8f\xce\x03\xb6\x16\x90\xc3\x97\xb7\n\"zB\xedCf\xfd \x87\xdb\x8f\x87\xe9\xea\x89-B\x06\x97\xcb+\xf09\xa1\xa5\x8d\x9b\b\xc8\x15\xb6|\xc7 t\xc8#\xf8,\xab\xa7\xf6\x03Z\x93\xf5\xc8\x87\xc9z}]\x85\xcc\xd5d\x02\x90{\xc3_\xd4>b\x96\xc5\x93\xb1\xa0E\xda\xb8\xb1\xa5G\r\xf4[\xec \"\xd9\x13\x803\xa6V\xe3\x06\xc72\xc0d|?\xfaA\xd2\xd6\xce\xfa\x9a\x98\x01\aXV.\xf15>;\xfat9\x8f\xbf\x8dRQf\xa4\x11\x13\xa0R\xcb\xc2v\x0f\xfc\xb3:f\x8f\xae\xcc\xbb\xd2\xfa\xef%\xfa\x85\xd9\x7fL\xad\xab\xd0\xd1\xc9vJr\x89\x90vq\x17\xbb\x82[D\xedJ\xe7{re\x8a\xeb~\xf1V<\xc2p~\x90\xe6\x1c\xf86\xeb\x11\xe2\x90\rr\xda.\x82\xbd\x0f\xbd{\x861\x03\xda-#\\^`\xc8\x01%V\xab\r\b\xde\xaa\xf8s\x86K\bR\x12\xbc{\xef\xc5<\xfd\x02\xe2\xf0\br\xde\n\xe4\xa6\v\xbcd\x9e\xe9\xbd\x18\x89\xa1\xe8w\x0e7\xae\x10e\xb6\xce\xe25\xdf\xd8\x12X`\xec\n\x87\x86X\x9b\x80i7\xcb\xed\xbdQ\xe4\xbb*\xedq\xb0>\x92\xb6W\b\x1eV\xadk\x11\xa9\xa1\x1f\xe1\xac\xb7\xd0\xcc\x94\xc1g\x8c\xe5\xf0\"\xe1\xc2. \\X\xe0\xd30\xa9X\x8dB\xb1\xddS\xbey\xb4]j \x96\xe3\x84\xcc\x02C\xd23\x16T\xden\"\xea\xf2j\b\xd2\xf6\xe5\xc2a\xaa\xefr\x80\rZ\x06s\xa0\xaf\x93MmM|\xfdN\x19\xf0RS\xc4\xca\x84H\x19T\xd4\xc4\x00\x04\x00\x00\x00\x00\x00\x00\x8a\xd0\xd48\xb4\x0e0\xff\x98\xce\x01\'\x83i\xd9\x94\xcf\xd7\x03_|J\x9b\x06q\x0e\xdf_/u\xfa\xcd\xb9\"L\x17\xc3\xdc\x16\xc7\x02\xb7\x91\x85Ot\xd0r\xc2r\xee\xce\xefU\x1a\x89\xd6,\x04\x96o<o\x814\xb4\v?6>\xb9\x1b\x19b&O\xf2\xf1\xef\xd1\x04A\x00q?\xa0\x00\xec\xf17\xbbpu\xeeW\xd7HSXt\xe4\xf07+\xc8\xd3\x87|\x15\x9b\x95t\x195l\xcb\xfd\xae@\xbd>\xdcd\xaa\x19r\xec_>\xf2\x7f\xe6\xe7\x1c\x1dE\x87k(k\x98\x81\xe8\t\"\xed\x94\xe33\xebk*\xc1\xcc\x98\x1d\xdd\x9c\v\xc3\xef\x9b\xc3\xca\x14\xb54\x8aS\xa0`*\xc4\xe6|n\xc7\xbf1\x02yc\xc2\xf3\xb1\x0e\xb4\xc5\xf3\xe2\x10\xa9\xbdQ\xb6\xc7\x81_3^y\x06\x0f\xec\x95\xf0QP\x1c\xc7;\x7f\x03i\x91\xff\xa0\xfek\xb1\xd1\xa3w\x1b\'[\x00|\xe6\xaa\xe3 \x9d\xb6g\xe2l\xe3q!\xfa\x15\xab\x9e\xe0\xbbp\xcfqT<\xe0\"\x17\x1a\xd3\xa6\x05\xa40\x9a\x90\x12\x17t%\x17+\x8b\xf7u\x93\xf9')
sendmsg$auto_SMC_NETLINK_GET_FBACK_STATS(0xffffffffffffffff, 0x0, 0x48080)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x800455d1, &(0x7f0000000100)=0x11512)
mmap$auto(0xffffffffffffffff, 0x0, 0x3, 0xeb1, 0xfffffffffffffffa, 0x9)
open(0x0, 0x4ed02, 0x1)
writev$auto(0x1, 0x0, 0x1)
socket(0x1d, 0x2, 0x2)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x1fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x400000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x3]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="13"], 0x1ac}}, 0x4004)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
statmount$auto(&(0x7f0000000380)={0x9, @raw=0xff, 0xc, 0xd, 0x8000000000000001}, &(0x7f00000003c0)={0x5, 0x9, 0x5, 0x10000, 0x4, 0x2, 0xdda4, 0x10001, 0xe03446c, 0x81, 0x2, 0x1, 0x10, 0x5, 0x2, 0x8, 0x3, 0xd7bf, 0xfffffda1, 0x8000, 0x3ff, 0x1, 0x9, 0x8, 0x400, 0xc703, 0x7fffffffffffffff, 0x5, 0x5, 0x9, 0x8, [0x9, 0x7, 0x3, 0x0, 0x1, 0x4, 0x1, 0x9, 0x2, 0x8, 0x9, 0x2, 0x3, 0x8, 0x5, 0x2, 0x5, 0x7, 0x4, 0x1, 0x101, 0xffffffff, 0x62eb, 0x6, 0x8, 0x7, 0x1ff, 0x1, 0x200, 0x9, 0x5, 0xed, 0x7, 0x4, 0xa, 0x40, 0x77800000000000, 0x6, 0xe6d5, 0xb, 0x4, 0x9, 0x6], "4014a3e688123e3443f6b29c99beb4c3608a3624b1409da48cc4fc2c8137b19e2440c6a4647168268fa045a769"}, 0x9a6, 0x6)

5.1909534s ago: executing program 1 (id=2224):
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r0 = userfaultfd$auto(0x1)
ioctl$auto(0x3, 0xc018aa3f, 0xf0b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/net/nr14/proto_down\x00', 0x82942, 0x0)
sendfile$auto(r0, r2, &(0x7f0000000040)=0x3, 0x20)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r3)
openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f00000011c0), 0xa2741, 0x0)
pwrite64$auto(0xc8, &(0x7f0000000080)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x88\v\xae\xa9i8W\xe5\x00!\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfded, 0x3)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/iomem\x00', 0x1c9a02, 0x0)
pread64$auto(r5, &(0x7f0000000040)='/proc/scsi/sg/devices\x00', 0x100000001, 0x100)
prctl$auto(0x1000000003b, 0x800003, 0x4, 0x5, 0x6)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x60800, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x802, 0x0)
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/irq/15/smp_affinity\x00', 0x48041, 0x0)
write$auto(r6, 0x0, 0x8ed)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r7=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r7, @ANYBLOB="08009e"], 0x24}}, 0x4000000)
sendmsg$auto_NL80211_CMD_START_AP(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x18, r4, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x18}}, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0xa0801, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socketcall$auto(0x8000, 0x0)
ioctl$auto_FS_IOC_GETFLAGS(r0, 0x80086601, 0x80000001)
r8 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r8, 0xae01, 0x0)

4.714133434s ago: executing program 6 (id=2225):
mmap$auto(0x0, 0x40009, 0x7fffffff, 0x9b72, 0xffffffffffffffff, 0x100000000028000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
mmap$auto(0xfffffffffffffffe, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
open(0x0, 0x6001, 0x8)
r2 = gettid()
process_vm_readv$auto(r2, &(0x7f0000000080)={&(0x7f0000000040), 0x1}, 0x2, 0x0, 0x2, 0x0)
clone3$auto(0x0, 0x3)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$auto_ecryptfs_miscdev_fops_miscdev(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
readv$auto(r3, &(0x7f00000000c0)={0x0, 0x3}, 0x7)
ioctl$auto_BLKTRACESETUP32(r1, 0xc0401273, &(0x7f0000000240)={"f63073df8058c302b0d3672f446ffae0e2e72cce81bb817c6c1737b5f32b9d13", 0xaf, 0x2, 0xda, 0xffffffffffffffff, 0x7})
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x1e, 0x4, 0x0)
r5 = socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r5, 0x10f, 0x87, 0x0, 0x14)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r6 = syz_genetlink_get_family_id$auto_thermal(&(0x7f00000000c0), r0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(r4, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r6, 0x0, 0x70bd28, 0x25dfdbff, {}, [@THERMAL_GENL_ATTR_TZ_CDEV_WEIGHT={0x8, 0xb, 0x9}, @THERMAL_GENL_ATTR_CPU_CAPABILITY_ID={0x8, 0x15, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS1\x00', 0x101e81, 0x0)
write$auto(0x3, 0x0, 0xffd8)

4.632004137s ago: executing program 4 (id=2227):
sched_rr_get_interval$auto(0xffffffffffffffff, &(0x7f0000000180)={0xf76d, 0x5})
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0x80)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x35d, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0xffffffffffffffff, 0x0)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$auto_BLKTRACESTART2(r0, 0x1274, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r0, 0x7a7, 0x0)
r1 = socket(0x2, 0x80002, 0x73)
r2 = socket(0xa, 0x3, 0x3a)
r3 = openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace\x00', 0x169481, 0x0)
writev$auto(r3, &(0x7f0000000100)={0x0, 0x400000000000fdef}, 0x1)
r4 = bpf$auto_BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000300)=@bpf_attr_5={@target_ifindex, r1, 0x5, 0x0, r1, @relative_fd=r1, 0x5}, 0x8)
ioctl$auto_USBDEVFS_REAPURB(r4, 0x4008550c, &(0x7f0000000040)=&(0x7f00000003c0)="e380dea971c182560b4e360e7408d94687405c89dac75a1a9bd276fa1ff294ec0359fdbd902a768fca8c7e668aa4183ad17961a7cac2878af15b089aa47f6d38caf588609e9743b20efdbc2b6f4167cb7fbbb8354b2ce9a3db963498d301de163e7fd1c6a226b5ce3c3b905011751402dec2e3da7dac9a14b7374e924ab39906af2d1d69ca2746c4ba76bd4ddd85e5a2679dc3563df2d73a16cb9400bf6f049a8133a4ee1fbc63dc0fdfd05dc08341")
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
r5 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x201, 0x0)
ioctl$auto_PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x0, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2})
r6 = socket$auto(0x867, 0x2, 0x8)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/ati_remote2/parameters/mode_mask\x00', 0x80401, 0x0)
write$auto(r7, 0x0, 0x3)
sendfile$auto(r6, r2, &(0x7f0000000000)=0x6, 0x7)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000)
r8 = socket(0x2, 0x801, 0x84)
getsockopt$auto(r8, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0)
openat$auto_dev_fops_plock(0xffffffffffffff9c, &(0x7f00000001c0), 0x10300, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000240)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffff}, 0x1, 0x0, 0x1, 0x9}, 0x100007}, 0x269, 0x9e)

4.465978461s ago: executing program 1 (id=2228):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x18, 0xa, 0x1)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty28\x00', 0x80003, 0x0)
socket(0x25, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(r0, r0, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video62\x00', 0x80a01, 0x0)
r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r0, 0xc0585611, r1)
sendto$auto(0x3, 0x0, 0xf9, 0x2, 0x0, 0x20)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/loop12/queue/atomic_write_unit_min_bytes\x00', 0x101400, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000003800)=""/168, 0xa8)

4.306051572s ago: executing program 5 (id=2229):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x477, 0xdf, 0x9b72, 0x2, 0x8000)
mremap$auto(0x0, 0x7, 0x3fd6, 0x0, 0x1ffffffe)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x28, 0x801, 0x0)
socket(0xf, 0x3, 0x2)
sendmsg$auto_NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000980)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="80040000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="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"], 0x480}, 0x1, 0x0, 0x0, 0x4004041}, 0x40100)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/midiC2D1\x00', 0x660040, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000001500)='/proc/kpagecgroup\x00', 0x101000, 0x0)
memfd_create$auto(0x0, 0x7)
select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0x1003, 0x1, 0x948b, 0x3, 0x9, 0xfffffffffffffffd, 0x3, 0x62, 0x7, 0x7, 0x6d3f, 0x9, 0x4, 0x5]}, 0x0)
statmount$auto(0x0, &(0x7f0000000a00)={0xa, 0x1, 0x401bf, 0x7352, 0x43, 0x6, 0x1ffde, 0x7, 0x3, 0x2, 0x9, 0x3, 0x5, 0x4, 0x3000, 0x200, 0x6, 0x10003, 0x83, 0x4, 0x0, 0x7, 0x1ffc, 0x203, 0x400, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [], "e5277fc1158dd103beff961ac93c293cef3aaad908ad2392ac086588d4f886b247bf35c0cdb04b781fde5e1e5f693b66e94b6b1d76e0622b46a95a60777fb1dc96c52d6ea9a2859fad8090b9efa770f3e73028807aa5840e7f2db0c23ba7151036d2c72ddfb4fe19369370cbd9af39f765c3ab8acac8b57a24039f4a128be4f28a0d3e9c202890d1485829657c"}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="10002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual/bdi/7:14/min_bytes\x00', 0x80302, 0x0)
write$auto(r0, &(0x7f0000000000)='!h\xf3\xec@\xdbS\xcc\x04', 0xa)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
setfsgid$auto(0xee00)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
r1 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000080)="af101b8f8a7d3fb11541234c841ad04ef950bd816b1a4f98cd92c3e2a12357557135aad56ced71a1f0d966c275daa2c99a9c0ad115b322b5d8183b96ab92708cc68cbbdfb3df131db9a98348c8", 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000003680)={'wlan0\x00'})
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/platform/dummy_hcd.0/usb1/power/autosuspend_delay_ms\x00', 0x20461, 0x0)

4.176091213s ago: executing program 4 (id=2230):
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0)
r0 = ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0x4008ae8a, 0x0)
r1 = socket(0x15, 0x5, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/fail-nth\x00', 0x202, 0x0)
socket(0x2, 0x3, 0xa)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0)
ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x6, 0x50b301a, 0x2c, 0x2c, 0x0, 0x2})
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0x20400, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x405, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r6=>0x0})
sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="2f212dbd7000fcdbdf252100000008000300", @ANYRES32=r6, @ANYBLOB="08009e00a9"], 0x24}}, 0x4000000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x20000, 0x0)
read$auto(r7, 0x0, 0x20)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x3}, 0x3)
read$auto_check_wx_fops_(r0, &(0x7f00000000c0)=""/24, 0x18)
sendmsg$auto_NLBL_UNLABEL_C_STATICADDDEF(r1, 0x0, 0x24040801)
accept$auto(r1, 0x0, 0x0)
io_uring_register$auto_IORING_UNREGISTER_PBUF_RING(r2, 0x17, &(0x7f0000000000)="c1a9092642274d826cedd34b7db71b7f45682d4ed35d7b874ddfca97c32400800004c01337fda2c34fbaa738fd63ec76f434d74ecc292dde912d1da61df26062d8636c924e1be6256846ddd408d7f19bcf5300d5b3ccf299cde869c635b2", 0x255)

4.004907312s ago: executing program 1 (id=2231):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r0, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYRES32=0x0, @ANYBLOB="01002bbd7000fcdbdf25040000000400100008000c0001b30000000000000094d1962fb62441ff76466065c26564daa77057d4e09afa2e679c30c6622b191ba757e9ba779bec109e19d3d7a707d1ad7e6cf59efe33c7eed533ca6944156c0ec23947cff99e5dc699c05af15c79c088b84902824265c78e458258b93f70683ac56ec029ad49b1c9b3afb2598a79789172e1b5d5552a8c4ae09a16d20496be"], 0x20}, 0x1, 0x0, 0x0, 0x24004010}, 0x18800)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_ftrace_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000003b00)='/sys/kernel/debug/tracing/events/vmalloc/purge_vmap_area_lazy/enable\x00', 0x600, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0xa, 0x5, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xae00, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
socketpair$auto(0x1, 0x3, 0x5, 0x0)
ioctl$auto(0x3, 0xc048aec8, r1)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
select$auto(0x200e, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0xb, 0xa, 0x40007fff, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x80000001, 0x7, 0x2, 0x93, 0x400000001, 0x2]}, 0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000080), 0xffffffffffffffff)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x100010008000)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r3, 0x0, 0x7)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x9}, 0x3)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)

2.343323064s ago: executing program 5 (id=2232):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x20342, 0x0)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000))
r1 = fcntl$auto(0xffffffffffffffff, 0x20007, 0xa553)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/mem_sleep\x00', 0x1a9402, 0x0)
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_TDR_ACT(0xffffffffffffffff, 0x0, 0x800)
timer_create$auto(0x9, 0x0, 0x0)
timer_delete$auto(0x1)
getsockopt$auto_SO_ACCEPTCONN(r0, 0x800, 0x1e, &(0x7f0000000200)='~\xa0\xa2\bd\xac\xf9K\xd6\x11\xe7H.\xc5\xce\xf4R\xe2R:0M\xfa-\xfd\x84U%\xbe\x9e5\xcb\b\xc7$.\x1d\xb95\xb3\xc7\"\x17/\a\xe4\xac\xdaI\xfc\xe9\xd7\xbf?\x96.\x85~\xa0\xda\xd4O\xdd]\xcc\xf7m:+n\xa1$*,v\xd6F\xe0\xbe\xe8a\xd5@\x8ft\xf7\f+\x8e\x8d\x100\xcd\x16\x914xp\v\xdb\x1d#a\x9c&\t\x00\x90\xa0\xec\xa3\x00\x00\x00\x00\x00\xaf(<\xc4\xc0\xd6\xc2\x03\xb6WA@+\xe2\xe6\x05\x8ab1\xc3\xf2\xc3\xce\xe0\x06=\x04\'\xd4\xbb\xe0(\x95(B\x0e\x9c\xce\nO\x82\xc9\x14\xbf\xeau\xa2\x11\xd7\a\xdb\x7f\x00]Z\xf9\xff\xff\xff\xff\xff\xff\xffL*\xd9I\xc9\xfc\xe3\xe8\xe4(K\xee\xc2\xaf[\x0e\x0e4\x86<Br\x10\x83j\x0f\x88\xd2\x81\xed\xce\xc4\x9eQn\xbe4\xf4\x92H\xdfj\xdcF\xa7\xa1\x87G\x16\xeen\x92\xb0\xc6P\x82\x9f\t3\x8a\x13\f\xb5\x996\x9e\x91n/\xf1\xa5t\x92\x82\xbf\xda\xf9\xfe\x85C\x88\xa9\xc2c\x1d\xb00\xae\x1b\xf5Q', &(0x7f0000000080)=0x481a)
read$auto(0x3, 0x0, 0x8080)
socket(0xa, 0x1, 0x100)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x40, 0x0)
mmap$auto(0xffffffff, 0x800, 0x2a, 0xeb1, r2, 0x100000001)
write$auto(0x3, 0x0, 0xffd8)
unshare$auto(0x40000080)
process_mrelease$auto(r1, 0xa)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
write$auto(0x3, 0x0, 0x100082)
read$auto(0x3, 0x0, 0x7fffffff)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)

2.246488933s ago: executing program 1 (id=2233):
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x0, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, 0x0, 0x2, 0x0)
pwrite64$auto(r3, 0x0, 0x4, 0x3)
waitid$auto_P_ALL(0x0, 0x1, 0x0, 0x5, 0x0)
sendmsg$auto_NFC_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000480), 0xc, &(0x7f0000000780)={&(0x7f0000000500)={0x30, 0x0, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@NFC_ATTR_COMM_MODE={0x5, 0xa, 0x3}, @NFC_ATTR_LLC_PARAM_MIUX={0x6, 0x11, 0x40}, @NFC_ATTR_LLC_SDP={0x4}, @NFC_ATTR_DEVICE_POWERED={0x5, 0xc, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x20004000}, 0x84)
sendmsg$auto_NFC_CMD_FW_DOWNLOAD(r0, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x180b008}, 0xc, &(0x7f0000000380)={&(0x7f0000000740)={0x90, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@NFC_ATTR_SE_APDU={0x74, 0x19, "3d68f56930dfec1e0c9ee2d4ec5cdec5a6617f08331f1e41250fe48416dd92cea0221dc8da3d9efe89fd9d72adf19e0e892f0903c80088663c1275a54ef729132cb8005fda646285b305ef19246d6980ac71aad2e89b11409d9c12c63d7f8f32c7aef96670418e95dd66e8912e6a6af1"}, @NFC_ATTR_TM_PROTOCOLS={0x8}]}, 0x90}, 0x1, 0x0, 0x0, 0x1}, 0x41001)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xa4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY\xad\xd6\xc5\xab`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4[\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r4 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000004400)='/dev/dsp1\x00', 0x1, 0x0)
inotify_init1$auto(0x4)
ioctl$auto_VHOST_SET_LOG_FD2(r2, 0x4004af07, &(0x7f00000001c0)=<r5=>r4)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r5, 0x8000)
r6 = open_by_handle_at$auto(r2, &(0x7f00000002c0)={0x17, 0x136a, "8f42b1077e737d4629d7867bca48102625b1c2c21fa155"}, 0x7d)
setsockopt$auto(r6, 0x1, 0x1021, 0x0, 0xd)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, r5, 0x8000)
mmap$auto(0x100000000, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/platform/vhci_hcd.0/usbip_debug\x00', 0x8002, 0x0)
r7 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto_safesetid_gid_file_fops_securityfs(0xffffffffffffffff, &(0x7f00000005c0)=""/203, 0xcb)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r8, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x68, 0x0, 0x24000000}, 0x140)
sendmsg$auto_NL80211_CMD_GET_KEY(r5, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x21}, 0x51)
r9 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/ext4/sda1/first_error_time\x00', 0xe80, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r9, &(0x7f0000001280)=""/4124, 0x101c)
read$auto(r7, 0x0, 0xb4d3)

2.163522665s ago: executing program 4 (id=2234):
quotactl$auto(0x9, 0x0, 0x62a0, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x200, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bus/usb/037/001\x00', 0x20882, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r2 = socket(0x10, 0x2, 0x6)
syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000240), r2)
sendmsg$auto_NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r2, 0x0, 0x8044)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x5014c0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x8800)
mmap$auto(0x0, 0x0, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
r3 = openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0)
write$auto_mousedev_fops_mousedev(r3, &(0x7f0000001380)="22d2", 0x2)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0)
r4 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$auto_nvram_misc_fops_nvram(r4, 0x0, 0x0)
ioctl$auto_NVRAM_INIT(r4, 0x7040, 0x0)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xb01901, 0x0)
read$auto(r5, &(0x7f0000000040)='/proc/self/net/icmp\x00', 0x80000001)
write$auto_proc_mem_operations_base(0xffffffffffffffff, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0xffffffffffffffff, 0x0, 0x0)
futex$auto(0x0, 0x5, 0x9, 0x0, 0x0, 0xffff7fff)
syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000100), 0xffffffffffffffff)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0x1, 0x4c, 0x0, 0x9)

1.784640961s ago: executing program 6 (id=2235):
ioctl$auto(0xffffffffffffffff, 0x64c5, 0xffffffffffffffff)
pipe$auto(&(0x7f0000000040))
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
unshare$auto(0x8000000)
semget$auto(0x0, 0x2e4a, 0x8000)
semtimedop$auto(0x0, &(0x7f0000000000)={0x7, 0x9, 0x36ec}, 0x1f4, 0x0)
acct$auto(&(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/dT\x02\xa2%h\xdd\xfep\x0e\xe6\x96w\x05r\x9c\xb6L\t0\x0f\x954\xf6\b\xa0&C\x83L\xc0\xe9\t\"\xa5\x8f\xce\x03\xb6\x16\x90\xc3\x97\xb7\n\"zB\xedCf\xfd \x87\xdb\x8f\x87\xe9\xea\x89-B\x06\x97\xcb+\xf09\xa1\xa5\x8d\x9b\b\xc8\x15\xb6|\xc7 t\xc8#\xf8,\xab\xa7\xf6\x03Z\x93\xf5\xc8\x87\xc9z}]\x85\xcc\xd5d\x02\x90{\xc3_\xd4>b\x96\xc5\x93\xb1\xa0E\xda\xb8\xb1\xa5G\r\xf4[\xec \"\xd9\x13\x803\xa6V\xe3\x06\xc72\xc0d|?\xfaA\xd2\xd6\xce\xfa\x9a\x98\x01\aXV.\xf15>;\xfat9\x8f\xbf\x8dRQf\xa4\x11\x13\xa0R\xcb\xc2v\x0f\xfc\xb3:f\x8f\xae\xcc\xbb\xd2\xfa\xef%\xfa\x85\xd9\x7fL\xad\xab\xd0\xd1\xc9vJr\x89\x90vq\x17\xbb\x82[D\xedJ\xe7{re\x8a\xeb~\xf1V<\xc2p~\x90\xe6\x1c\xf86\xeb\x11\xe2\x90\rr\xda.\x82\xbd\x0f\xbd{\x861\x03\xda-#\\^`\xc8\x01%V\xab\r\b\xde\xaa\xf8s\x86K\bR\x12\xbc{\xef\xc5<\xfd\x02\xe2\xf0\br\xde\n\xe4\xa6\v\xbcd\x9e\xe9\xbd\x18\x89\xa1\xe8w\x0e7\xae\x10e\xb6\xce\xe25\xdf\xd8\x12X`\xec\n\x87\x86X\x9b\x80i7\xcb\xed\xbdQ\xe4\xbb*\xedq\xb0>\x92\xb6W\b\x1eV\xadk\x11\xa9\xa1\x1f\xe1\xac\xb7\xd0\xcc\x94\xc1g\x8c\xe5\xf0\"\xe1\xc2. \\X\xe0\xd30\xa9X\x8dB\xb1\xddS\xbey\xb4]j \x96\xe3\x84\xcc\x02C\xd23\x16T\xden\"\xea\xf2j\b\xd2\xf6\xe5\xc2a\xaa\xefr\x80\rZ\x06s\xa0\xaf\x93MmM|\xfdN\x19\xf0RS\xc4\xca\x84H\x19T\xd4\xc4\x00\x04\x00\x00\x00\x00\x00\x00\x8a\xd0\xd48\xb4\x0e0\xff\x98\xce\x01\'\x83i\xd9\x94\xcf\xd7\x03_|J\x9b\x06q\x0e\xdf_/u\xfa\xcd\xb9\"L\x17\xc3\xdc\x16\xc7\x02\xb7\x91\x85Ot\xd0r\xc2r\xee\xce\xefU\x1a\x89\xd6,\x04\x96o<o\x814\xb4\v?6>\xb9\x1b\x19b&O\xf2\xf1\xef\xd1\x04A\x00q?\xa0\x00\xec\xf17\xbbpu\xeeW\xd7HSXt\xe4\xf07+\xc8\xd3\x87|\x15\x9b\x95t\x195l\xcb\xfd\xae@\xbd>\xdcd\xaa\x19r\xec_>\xf2\x7f\xe6\xe7\x1c\x1dE\x87k(k\x98\x81\xe8\t\"\xed\x94\xe33\xebk*\xc1\xcc\x98\x1d\xdd\x9c\v\xc3\xef\x9b\xc3\xca\x14\xb54\x8aS\xa0`*\xc4\xe6|n\xc7\xbf1\x02yc\xc2\xf3\xb1\x0e\xb4\xc5\xf3\xe2\x10\xa9\xbdQ\xb6\xc7\x81_3^y\x06\x0f\xec\x95\xf0QP\x1c\xc7;\x7f\x03i\x91\xff\xa0\xfek\xb1\xd1\xa3w\x1b\'[\x00|\xe6\xaa\xe3 \x9d\xb6g\xe2l\xe3q!\xfa\x15\xab\x9e\xe0\xbbp\xcfqT<\xe0\"\x17\x1a\xd3\xa6\x05\xa40\x9a\x90\x12\x17t%\x17+\x8b\xf7u\x93\xf9')
sendmsg$auto_SMC_NETLINK_GET_FBACK_STATS(0xffffffffffffffff, 0x0, 0x48080)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000004180)='/dev/snd/controlC1\x00', 0x28180, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_POWER_STATE(r0, 0x800455d1, &(0x7f0000000100)=0x11512)
mmap$auto(0xffffffffffffffff, 0x0, 0x3, 0xeb1, 0xfffffffffffffffa, 0x9)
open(0x0, 0x4ed02, 0x1)
writev$auto(0x1, 0x0, 0x1)
socket(0x1d, 0x2, 0x2)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x1fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x400000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x3]}, 0x1fe, 0x81)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="13"], 0x1ac}}, 0x4004)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
statmount$auto(&(0x7f0000000380)={0x9, @raw=0xff, 0xc, 0xd, 0x8000000000000001}, &(0x7f00000003c0)={0x5, 0x9, 0x5, 0x10000, 0x4, 0x2, 0xdda4, 0x10001, 0xe03446c, 0x81, 0x2, 0x1, 0x10, 0x5, 0x2, 0x8, 0x3, 0xd7bf, 0xfffffda1, 0x8000, 0x3ff, 0x1, 0x9, 0x8, 0x400, 0xc703, 0x7fffffffffffffff, 0x5, 0x5, 0x9, 0x8, [0x9, 0x7, 0x3, 0x0, 0x1, 0x4, 0x1, 0x9, 0x2, 0x8, 0x9, 0x2, 0x3, 0x8, 0x5, 0x2, 0x5, 0x7, 0x4, 0x1, 0x101, 0xffffffff, 0x62eb, 0x6, 0x8, 0x7, 0x1ff, 0x1, 0x200, 0x9, 0x5, 0xed, 0x7, 0x4, 0xa, 0x40, 0x77800000000000, 0x6, 0xe6d5, 0xb, 0x4, 0x9, 0x6], "4014a3e688123e3443f6b29c99beb4c3608a3624b1409da48cc4fc2c8137b19e2440c6a4647168268fa045a769"}, 0x9a6, 0x6)

1.382725533s ago: executing program 6 (id=2236):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
waitid$auto_P_PGID(0x2, 0x0, &(0x7f00000000c0)={@_si_pad}, 0x50, &(0x7f0000000140)={{0x1ff, 0x9}, {0x8, 0x2}, 0x4, 0xfffffffffffffff9, 0x3, 0xf, 0x2, 0xc09d, 0x800000000, 0x5, 0xfffffffffffffbff, 0x625, 0x80000001, 0xf0c6, 0x0, 0xf})
r2 = openat$auto_lsm_ops_inode(0xffffffffffffff9c, &(0x7f0000000200), 0x40002, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'nicvf0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'bond_slave_0\x00', <r4=>0x0})
r5 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/035/001\x00', 0x1102, 0x0)
ioctl$auto_USBDEVFS_ALLOC_STREAMS(r5, 0x8008551c, &(0x7f0000000180)={0x7f3, 0x2})
r6 = set_tid_address$auto(&(0x7f00000002c0)=0x1)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000a40)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000300)={0x6d0, r1, 0x100, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_FEATURES_WANTED={0x29e, 0x3, 0x0, 0x1, [@generic="d7a4036d2b4cb6b4ef964ed56f49a48b9aae7b5cb2c4fd0fe287e4514d58fab604d1dcfcb82a0cf77a2172e2d20614fd9cba59e9becdda8f3b0f906817bf6a6d4af2c741fb1185753c93b8b48dbde063043edf4e0c176ee62ed8ebe144cb7d8217bbfcfe8f7d414e23eb6a5a27a3fdc7a92ba46a5e758b2c7a11c0c790cdc3a3fab9267a1088c0b9b974ba8dcfd4b3c444b7ec9f122f6f3c5e9aed527838b2a4381fd0425ab972a1ec926cc83ad3cdb690c53962ce55a34956ba2f57f98639a033d2bc8446a7e4c4daed42bc68b514befe09", @nested={0x10, 0xe1, 0x0, 0x1, [@typed={0x8, 0x10c, 0x0, 0x0, @pid}, @nested={0x4, 0x62}]}, @generic="ac9f5c58ce32b82877b8035f64b9b9b74fd95df962d0e24514d1c153a53091788691de4761703e495c3ba28b6c99af98caf2f93a6b5b2c2fb57d73a34f1596b28b0ac3fd70618caee56915fe34c486420a61d4fcedb88047bc8da1f0cea3049c756ba4e7f594730df40bd5d0", @typed={0x8, 0xa, 0x0, 0x0, @fd=r2}, @typed={0x8, 0x87, 0x0, 0x0, @u32=0x77e}, @nested={0xc, 0xa6, 0x0, 0x1, [@nested={0x4, 0x14f}, @nested={0x4, 0x53}]}, @nested={0x12e, 0xd6, 0x0, 0x1, [@generic="8a29c463b1c4b19fb0b8cb3f92f7b4ce87de5e292206758adcdfda8d040a794a1c841376057a6dd4f7ee6f80382805454cd24fe213461e03e9843005cb1f55e4e4139297975009bace5a5e323a3780932d285cb47176546e8123899cb9ce5f912759f5d53072", @nested={0x4, 0x8f}, @generic="9a3554f3defc18c12145ad761dcc2678c56c925314abe36915c00e846e64ba15c6e51aa4d27c5a35fe4909a5e26103a6cb95e43411e0e932fe2e40872bc23ca84e80f2c2a93a835634e90e1e87dcf26accfca2094900944624e675c5186108462c9e7c43c42fb8b59aed11191e334f3f7273a9607eef175bb94980d4bd2201da8bd52379ad5fedad2e178e81ecd4c75950cb3aeb8875354aa0e5198bc3575a549a716916d35701e272e234097c9088783c7ba21d16e86770", @typed={0x8, 0x133, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x17}}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@typed={0x8, 0xe2, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x10}}]}, @ETHTOOL_A_FEATURES_WANTED={0x3d4, 0x3, 0x0, 0x1, [@generic="648979c5d41d3ac40b3d229b6d7424c73e26b49373c048ea8617912bf752ef39375be8948413f655735a3d25d4899ada36c48d2fa288ec4deed9f000cad73924b43a68fc2eca6d0495f7e5fd5b221b394b5b6c6a1a288c34c30ceb46568bbbb51dbba8bbe359683dd38ce4233089946a14db5def6d16da8c", @generic="1490229f4caca18a81e9e6b1ab9d7c493f9d5f6e9a9b8ad96f6ba665bd55acafbb526c5c191749e7b534823d86643e874329cbe39d05bb63932fe745053751038600f5ebfd8b81095b20281f044c92380075c72e926f0ebbc21118e59fc2106fbd34c087d4e3347aa15e891e8eac6098e5dbc14b88550e260b63cc4a9ee94a6813c62a18b537728ace26", @typed={0x5, 0x84, 0x0, 0x0, @str='\x00'}, @nested={0x1c8, 0xc, 0x0, 0x1, [@generic="4d24f3972be7e2426c7423d05f8b8879492f0c8c5ac5758bc702103f87b3ee4dba181f7d2865f67bca4a079a1146774e56f0dab22d68c01d81b07861fbbe6aa78a9e0570334f34cc5eb11e41ea8f60319e1720617450c88e7a1ebdbee2517110c02d5184ab6f5fd884c7cce2befe9f4026289f0c567e8beffaab32c36d25132587fba3d1060ee7e92aed0e6249a964857a4c67885929dde2bc767c99408ca9a0a0bf", @generic="685361f36525fe329e8e77d7d152db5a265a13a87981dcd8e58e52f2eaca6356337a2fb8f7c3f2e2a068c904646cacb71d00a7347714d1493795236aa5eb3344091e4bfe53716158f04b367d3b1ef54c6cb1dcf1cac628eb75d20ef179095b9afeb686bd72e9bd69591185ada5c0dc976c97b415015085478e8ec9126ac00284ad75ef55f7edd2245396d6dd31a027a92fdd2d5189fc1b1873a2f0b2e069a0874ba38528bfd314ce70e232e6b05399e4f3981f5376424a393c7f9a68faffb5e588471e01d55be2926bec4b4785ba8127335badc75db7ccad9638c3f460919c3a20eb9085f291301f90414d71e368", @typed={0x8, 0x11c, 0x0, 0x0, @fd=r5}, @typed={0x4, 0x10}, @generic="b538ae27ade058adf0abaab6", @typed={0x8, 0xa, 0x0, 0x0, @pid=r6}, @generic, @typed={0x14, 0x41, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, @nested={0x8, 0xbf, 0x0, 0x1, [@nested={0x4, 0xd}]}, @typed={0x8, 0x77, 0x0, 0x0, @uid}, @typed={0x4, 0x25}, @generic="3da99d43bee52c8643ebd3d63bb79331ecf161ae3d12c10b227100db05bb9e00402531f016e58e45fca8c57f0ae00ddbbd9eb176ad6f85067a8a05569bb4ff12d3253bea56e46c2837f49047091a5b69abfaed59e5ea9738b830d39ae418d7515d0b10898667d2bde84455b13508354a6e6b2799a1262e8f6b594bd567a0cb9185afb626011660dd85f1342caeca298a64ce56644b58ac1d1b85f197cf3d571be57832f5ff448f805290c521dab21820e7e038f067d8d4e2904c02c42fafdc14c3495a01d78e88b69704761b0425e49a197b2c4fe6369abaf3ea6bb38710cb380f666197d7bb85d33450"]}]}, 0x6d0}, 0x1, 0x0, 0x0, 0x100}, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
unshare$auto(0x2a)
r7 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0xfffffffffffffffd, 0x0)
write$auto(r7, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r8 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0)
sendfile$auto(r8, r8, 0x0, 0x10000800000003)
modify_ldt$auto(0x1, &(0x7f00000001c0), 0x10)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000100)=""/192, 0xc0)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r9 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_HAS_DEVICE_ATTR(r9, 0x4018aee3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
io_uring_enter$auto(0x3, 0x4, 0xfffffffe, 0xcb, 0x0, 0x800049)

1.032567065s ago: executing program 5 (id=2237):
r0 = syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_OVS_FLOW_CMD_GET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='t\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002cbd7000fbdbdf2503000000040008005800018008001080040008804900fb00d96eace761aa770101113704eef60a3674ad86718a800a928d4377ee069ab4d56041948a36dcd6a622aac24c8c801c8bd39a19f9d90230d2a306a8a43116c21260a0514d6300000004000800"], 0x74}, 0x1, 0x0, 0x0, 0x24040071}, 0x44800)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x40, 0x93f, 0x1fee0, 0x3, 0x6, 0xfffffffffffffffe, 0x1ff, 0x5, 0x8005, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x8, 0x4, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, [0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x7fffffffffff, 0x9, 0x0, 0x0, 0x10, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8]}, 0x1fe, 0x82)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x2000000, &(0x7f0000000080)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x80002, 0x0)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x103a42, 0x0)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x141241, 0x0)
sendfile$auto(r5, 0xffffffffffffffff, 0x0, 0x2)
setsockopt$auto_SO_KEEPALIVE(r4, 0xd3d2, 0x9, &(0x7f0000000340)='}:,+$\x00', 0x1)
sendfile$auto(r3, r4, 0x0, 0x3)
acct$auto(&(0x7f00000000c0)='/dev/vcs1\x00')
r6 = syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$auto_NFC_CMD_DEP_LINK_UP(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="ea50d2b4", @ANYRES16=r6, @ANYBLOB="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"], 0x1224}, 0x1, 0x0, 0x0, 0x44}, 0x800)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r7)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r7, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="85452671a343cb958d588bd50000"], 0x14}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/apparmor/parameters/audit\x00', 0xb02, 0x0)
syz_genetlink_get_family_id$auto_nfc(&(0x7f0000000100), r7)
mseal$auto(0xb, 0x5, 0x7fffffffffffffff)

889.350333ms ago: executing program 1 (id=2238):
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x18, r0, 0x1, 0x5, 0x25dfdbfb, {}, [@NL80211_ATTR_REG_INDOOR={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x10}, 0x10)
listmount$auto(0x0, 0x0, 0xf4240, 0x0)
r1 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/snd/pcmC1D1c\x00', 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r1, 0xc1004111, 0x0)
getsockopt$auto_SO_RCVPRIORITY(0xffffffffffffffff, 0x2, 0x52, &(0x7f00000001c0)='/dev/virtual_nci\x00', 0x0)
r2 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000140), 0x189000, 0x0)
readv$auto(r2, &(0x7f00000018c0)={0x0, 0x1}, 0x9)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
sendfile$auto(r1, r1, &(0x7f0000000380)=0x1, 0x3)
read$auto(0xffffffffffffffff, 0x0, 0x40100000001)
ioctl$auto_SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0)
prctl$auto_PR_SET_MM_START_STACK(0x80000000, 0x5, 0x0, 0x2, 0x1)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/anycast6\x00', 0x181500, 0x0)
sched_setattr$auto(r4, &(0x7f0000000340)={0x7, 0x6, 0xfffffffffffffff9, 0xfff, 0xa, 0x1f9, 0x6, 0x9, 0x4, 0x8001}, 0x7b)
pread64$auto(r5, 0x0, 0x1ff, 0x5)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)

848.080004ms ago: executing program 4 (id=2239):
socket(0x10, 0x2, 0x4) (async)
shmctl$auto_SHM_STAT_ANY(0x8e, 0xf, &(0x7f00000001c0)={{0xfffffc00, <r0=>0xee01, 0xee00, 0x1ff, 0x400, 0x3, 0x4}, 0x10000, 0x100000001, 0x87, 0x48b, @inferred, @raw=0xfffffff7, 0x9, 0x0, &(0x7f0000000100)="a9961b78f7cad3689fdd3415d9f8a647f2be4f579bbf3139f5563e51301a5706bb1a560de94bc980b5048d9a7140d5cba9309a24d4f30031f08a6243def85988af8dd9df14991d88ee675fc9360ca525380b1894f5bc4c2474f3324aef46902600c19595030fad651df9b761ce00c7ea7359577d90fb7cb6c36b0aea14b7e67daab350", &(0x7f0000000080)="7a7dc9bc65301dfb63fc62e5ab7b07e1b04103e368fdb8b271606625a584e7"})
r1 = getegid()
setfsgid$auto(r1) (async)
r2 = syz_clone(0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r2, 0x4, 0x8000040006) (async)
ptrace$auto(0xf, r2, 0xfffffffffffffffe, 0x8000000000000000) (async)
msgctl$auto_IPC_INFO(0xffff, 0x3, &(0x7f00000003c0)={{0xfffffffa, r0, r1, 0xffff, 0x7ff, 0x7fff, 0x8000}, &(0x7f0000000280), &(0x7f00000002c0)=0x9, 0x27fd, 0x56fc90, 0x1ff, 0x7ce, 0x8, 0xf, 0x5417, 0x12f0, @inferred=r2, @raw=0x6})
unshare$auto(0x40000080)
socket(0xa, 0x1, 0x84)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000240), 0x840, 0x0) (async)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80040, 0x0) (async)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40004) (async)
openat$auto_event_trigger_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/tracing/events/vmalloc/purge_vmap_area_lazy/trigger\x00', 0xa2040, 0x0) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x7, 0xd, 0x5, 0x948b, 0x445f, 0x15f4da0a, 0x1, 0x81, 0x300000000000000, 0x7fffffff, 0x7, 0x0, 0x9, 0x2]}, 0x0)
socket(0x23, 0x80805, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/devices/platform/vivid.0/video4linux/video64/power/runtime_status\x00', 0x3d1801, 0x0)
write$auto_ocfs2_control_fops_stack_user(r3, &(0x7f0000003900)='\t', 0x1) (async)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0)
read$auto(r4, 0x0, 0x20) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) (async)
openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x8a80, 0x0) (async)
unshare$auto(0x40000080)
clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x5)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

290.758381ms ago: executing program 5 (id=2240):
mmap$auto(0x0, 0x2000a, 0x2, 0xeb2, 0x401, 0x8000)
r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event0\x00', 0x8000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/midiC2D3\x00', 0x1, 0x0)
r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/dev/audio1\x00', 0x100000a3d9)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x696b}, 0xed7138c}, 0x2, 0x9)
r3 = socket(0xa, 0x5, 0x84)
sendto$auto(r3, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe80000700"}, 0x1c)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0xfffffe36)
read$auto_proc_reg_file_ops_compat_inode(0xffffffffffffffff, &(0x7f0000000040)=""/9, 0x9)
ioctl$auto_BLKTRACESETUP(r2, 0xc0481273, 0x0)
ioctl$auto_EVIOCGEFFECTS(r0, 0x80044584, 0x0)
syz_genetlink_get_family_id$auto_batadv(0x0, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
ioctl$auto_TIOCSTI2(r5, 0x5412, &(0x7f0000000340)="7fb9d5")
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'batadv0\x00'})
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
clone$auto(0x7fff, 0xad3, 0x0, 0x0, 0x8000004)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/dummy_hcd.1/usb2/2-0:1.0/usb2-port1/disable\x00', 0x102, 0x0)
sync_file_range$auto(r0, 0xff, 0x5, 0x5)
sendfile$auto(r6, r6, 0x0, 0x7)

0s ago: executing program 6 (id=2241):
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x180b01, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$auto(0x3, 0x0, 0x100082)
read$auto_proc_single_file_operations_base(0xffffffffffffffff, &(0x7f00000000c0)=""/41, 0x11)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0)
kcmp$auto(0x1, 0x1, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
write$auto(r1, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mount$auto(&(0x7f00000000c0)='ipvlan0\x00', 0x0, &(0x7f0000000140)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x7fffffff, &(0x7f0000000180))
write$auto(r0, &(0x7f00000002c0)='1\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92\x90|l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00'/507, 0x1098c7)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/icmp/ratemask\x00', 0xa0202, 0x0)
sendfile$auto(r2, r2, 0x0, 0x2)
bind$auto(0xffffffffffffffff, &(0x7f0000000100)=@nl=@unspec, 0x0)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
write$auto(0x3, 0x0, 0xfffffdef)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r3 = socket(0x15, 0x5, 0x0)
getsockopt$auto(r3, 0x114, 0x2717, 0xfffffffffffffffc, 0x0)
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2)
mmap$auto(0x58b, 0x6, 0xfffffffffffffffe, 0x9b72, r1, 0x8000)
r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video63\x00', 0x80800, 0x0)
read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f00000001c0)=""/191, 0x1f8)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r5, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="204acbdacbdc86fa84970dfe380000ae7e9320a86817c24e143c5f31e2511d125b4f7b7a0e000000000000f6cfffc36c852bc20e9ce321668b630fcc19a85276fc5e4fc12c4b2d63d286eb1b4391c54701350587e779e3014a3e6d9a0efc9f68ee5a2f70dc132698e83a85786dca807d1c4e92e4fba53fa582e6a83ac302519cf970222512b838da3fc53382ec45bf4b3381d2468199d831ecd3cc650b8012ebd675795a4dd35a83bf2f3d5b5029331bd84c2296", @ANYRES16=r6, @ANYBLOB="0100253d7000fddbdf2501000000180007800c000180080001800000000008002300", @ANYRES32=0x0, @ANYBLOB="0c0002000600000000000000"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x8880)
unshare$auto(0x40000080)
pwrite64$auto(0xc8, &(0x7f0000000240)='\vX\xb5n\x91p\xe6\x1eRN8\x99\b\x06e\x1cJ\x99\x00\x03\x00\x00\x00\x00\xfd\xfd\xd3\xd3\x1d\xf8\xbe\x01\x00\x00\x00\'\x03\xf2\xff\x9e\x1e\xf9\xa4*\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x0e#\xae\xa9i8W\xe5Iq\xcd^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00F\xd7\x02\xd2\xe7?\xaaw\x89\xea\xb1\x1d\xea\xa8\xb1\xaf\xdc\xdeS\xe4\x88\x16\x8eu8\x7f\xa7\xe5\xbb\xf8\v \x90E\xd8\nw,S\xf5\x00\xd8\xda\x16\xb6C\xe6\xc0j\xae\x19\x1eU\f\x18\x14 \x05\xd9:\'\xf5\r\xd8C\xc7,\xe1\xa9wzVf\xa4\xfc\xff\xb87\xa5.\x14\x81mgI\xb2\xbc\x91o\x1c\xfd/\x88\xa0\x02n\x98C\xd3\xfcY\xf4\x98\xb3-\xec\x87\x1f\xe5\xdcn[\x19\xac\'\xc86s{ \x0f', 0xfdf2, 0x3a)

kernel console output (not intermixed with test programs):

[  585.764183][T12672] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  588.082828][T12714] random: crng reseeded on system resumption
[  588.305008][T12720] vhci_hcd: invalid port number 16
[  588.416722][T12720] vhci_hcd: invalid port number 16
[  588.544092][T12720] vhci_hcd: invalid port number 16
[  588.642567][T12720] vhci_hcd: invalid port number 16
[  588.781948][T12720] vhci_hcd: invalid port number 16
[  588.860816][T12720] vhci_hcd: invalid port number 16
[  588.967023][T12729] size and base must be multiples of 4 kiB
[  589.016743][T12729] CPU: 0 UID: 0 PID: 12729 Comm: syz.1.1454 Not tainted syzkaller #0 PREEMPT(full) 
[  589.016773][T12729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  589.016786][T12729] Call Trace:
[  589.016793][T12729]  <TASK>
[  589.016802][T12729]  dump_stack_lvl+0x16c/0x1f0
[  589.016843][T12729]  mtrr_del+0xd1/0x110
[  589.016866][T12729]  mtrr_ioctl+0x922/0xcf0
[  589.016889][T12729]  ? __pfx_mtrr_ioctl+0x10/0x10
[  589.016917][T12729]  ? find_held_lock+0x2b/0x80
[  589.016955][T12729]  ? __fget_files+0x20e/0x3c0
[  589.016985][T12729]  ? __pfx_mtrr_ioctl+0x10/0x10
[  589.017007][T12729]  proc_reg_unlocked_ioctl+0x229/0x320
[  589.017030][T12729]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  589.017055][T12729]  __x64_sys_ioctl+0x18e/0x210
[  589.017082][T12729]  do_syscall_64+0xcd/0xfa0
[  589.017116][T12729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.017137][T12729] RIP: 0033:0x7f88be18eec9
[  589.017154][T12729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  589.017176][T12729] RSP: 002b:00007f88bc3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  589.017196][T12729] RAX: ffffffffffffffda RBX: 00007f88be3e6090 RCX: 00007f88be18eec9
[  589.017211][T12729] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003
[  589.017224][T12729] RBP: 00007f88be211f91 R08: 0000000000000000 R09: 0000000000000000
[  589.017244][T12729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  589.017275][T12729] R13: 00007f88be3e6128 R14: 00007f88be3e6090 R15: 00007fffd89479a8
[  589.017305][T12729]  </TASK>
[  589.618817][T12729] Process accounting paused
[  589.837061][T12733] netlink: 'syz.2.1455': attribute type 11 has an invalid length.
[  591.265202][T12765] random: crng reseeded on system resumption
[  592.095701][   T30] audit: type=1804 audit(1063.820:89): pid=12773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1465" name="/newroot/391/file0" dev="tmpfs" ino=2052 res=1 errno=0
[  592.518665][T12791] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1470'.
[  595.326884][T12851] random: crng reseeded on system resumption
[  595.437973][   T30] audit: type=1804 audit(1067.170:90): pid=12842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1479" name="/newroot/377/file0" dev="tmpfs" ino=1978 res=1 errno=0
[  595.696865][T12851] FAULT_INJECTION: forcing a failure.
[  595.696865][T12851] name fail_futex, interval 1, probability 0, space 0, times 0
[  595.808467][T12851] CPU: 0 UID: 0 PID: 12851 Comm: syz.0.1482 Not tainted syzkaller #0 PREEMPT(full) 
[  595.808500][T12851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  595.808522][T12851] Call Trace:
[  595.808530][T12851]  <TASK>
[  595.808539][T12851]  dump_stack_lvl+0x16c/0x1f0
[  595.808580][T12851]  should_fail_ex+0x512/0x640
[  595.808622][T12851]  get_futex_key+0x1d0/0x1560
[  595.808666][T12851]  ? __pfx_get_futex_key+0x10/0x10
[  595.808716][T12851]  futex_wake+0xea/0x530
[  595.808748][T12851]  ? __pfx_futex_wake+0x10/0x10
[  595.808777][T12851]  ? rcu_is_watching+0x12/0xc0
[  595.808822][T12851]  do_futex+0x1e3/0x350
[  595.808846][T12851]  ? __pfx_do_futex+0x10/0x10
[  595.808871][T12851]  ? __fput+0x68d/0xb70
[  595.808894][T12851]  ? __pfx___might_resched+0x10/0x10
[  595.808931][T12851]  __x64_sys_futex+0x1e0/0x4c0
[  595.808969][T12851]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  595.809004][T12851]  ? __pfx___x64_sys_futex+0x10/0x10
[  595.809028][T12851]  ? xfd_validate_state+0x61/0x180
[  595.809052][T12851]  ? __pfx___do_sys_close_range+0x10/0x10
[  595.809094][T12851]  do_syscall_64+0xcd/0xfa0
[  595.809135][T12851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.809158][T12851] RIP: 0033:0x7f5cd798eec9
[  595.809177][T12851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  595.809200][T12851] RSP: 002b:00007f5cd88040e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  595.809222][T12851] RAX: ffffffffffffffda RBX: 00007f5cd7be5fa8 RCX: 00007f5cd798eec9
[  595.809238][T12851] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5cd7be5fac
[  595.809253][T12851] RBP: 00007f5cd7be5fa0 R08: 00007f5cd8805000 R09: 0000000000000000
[  595.809267][T12851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  595.809281][T12851] R13: 00007f5cd7be6038 R14: 00007ffeb33d91b0 R15: 00007ffeb33d9298
[  595.809311][T12851]  </TASK>
[  597.735439][T12886] blktrace: Concurrent blktraces are not allowed on nbd3
[  599.003006][T12907] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  599.257058][T12912] futex_wake_op: syz.1.1498 tries to shift op by -9; fix this program
[  601.344033][T12941] blktrace: Concurrent blktraces are not allowed on nbd3
[  603.224316][T12948] kexec: Could not allocate control_code_buffer
[  605.076306][T12992] zswap: compressor  not available
[  605.606989][T13005] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1518'.
[  606.627644][T13022] input: f�
 as /devices/virtual/input/input13
[  607.128889][T13012] kexec: Could not allocate control_code_buffer
[  607.637209][T13043] random: crng reseeded on system resumption
[  607.654481][T13045] blktrace: Concurrent blktraces are not allowed on nbd3
[  607.898082][T13043] FAULT_INJECTION: forcing a failure.
[  607.898082][T13043] name fail_futex, interval 1, probability 0, space 0, times 0
[  607.955198][T13043] CPU: 0 UID: 0 PID: 13043 Comm: syz.0.1528 Not tainted syzkaller #0 PREEMPT(full) 
[  607.955230][T13043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  607.955244][T13043] Call Trace:
[  607.955252][T13043]  <TASK>
[  607.955261][T13043]  dump_stack_lvl+0x16c/0x1f0
[  607.955299][T13043]  should_fail_ex+0x512/0x640
[  607.955341][T13043]  get_futex_key+0x1d0/0x1560
[  607.955386][T13043]  ? __pfx_get_futex_key+0x10/0x10
[  607.955429][T13043]  ? stack_trace_save+0x8e/0xc0
[  607.955467][T13043]  futex_wait_setup+0x9d/0x550
[  607.955504][T13043]  __futex_wait+0x193/0x2f0
[  607.955534][T13043]  ? __pfx___futex_wait+0x10/0x10
[  607.955569][T13043]  ? __pfx_futex_wake_mark+0x10/0x10
[  607.955602][T13043]  ? futex_private_hash_put+0x176/0x300
[  607.955643][T13043]  ? futex_private_hash_put+0x18a/0x300
[  607.955683][T13043]  futex_wait+0xe8/0x380
[  607.955711][T13043]  ? __pfx_futex_wait+0x10/0x10
[  607.955755][T13043]  do_futex+0x229/0x350
[  607.955779][T13043]  ? __pfx_do_futex+0x10/0x10
[  607.955803][T13043]  ? __fput+0x68d/0xb70
[  607.955825][T13043]  ? __pfx___might_resched+0x10/0x10
[  607.955860][T13043]  __x64_sys_futex+0x1e0/0x4c0
[  607.955886][T13043]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  607.955920][T13043]  ? __pfx___x64_sys_futex+0x10/0x10
[  607.955944][T13043]  ? xfd_validate_state+0x61/0x180
[  607.955968][T13043]  ? __pfx___do_sys_close_range+0x10/0x10
[  607.956011][T13043]  do_syscall_64+0xcd/0xfa0
[  607.956047][T13043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.956071][T13043] RIP: 0033:0x7f5cd798eec9
[  607.956089][T13043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  607.956112][T13043] RSP: 002b:00007f5cd88040e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  607.956134][T13043] RAX: ffffffffffffffda RBX: 00007f5cd7be5fa8 RCX: 00007f5cd798eec9
[  607.956150][T13043] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5cd7be5fa8
[  607.956165][T13043] RBP: 00007f5cd7be5fa0 R08: 0000000000000000 R09: 0000000000000000
[  607.956185][T13043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  607.956200][T13043] R13: 00007f5cd7be6038 R14: 00007ffeb33d91b0 R15: 00007ffeb33d9298
[  607.956231][T13043]  </TASK>
[  610.473925][T13079] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  616.522559][T13143] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1550'.
[  617.890775][T13159] hub 8-0:1.0: USB hub found
[  618.129239][T13159] hub 8-0:1.0: 1 port detected
[  618.363481][T13162] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1554'.
[  619.316737][T13173] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1555'.
[  622.252200][T13175] Process accounting resumed
[  623.224899][T13189] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1558'.
[  628.881112][T13227] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  628.896336][T13227] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  628.906315][T13227] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  628.917987][T13227] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  628.925579][T13227] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  629.526001][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  629.533137][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  630.602230][T13226] chnl_net:caif_netlink_parms(): no params data found
[  630.956684][T13227] Bluetooth: hci4: command tx timeout
[  631.879450][T13254] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  632.199815][T13259] futex_wake_op: syz.3.1570 tries to shift op by -9; fix this program
[  633.037133][T13227] Bluetooth: hci4: command tx timeout
[  634.404591][T13262] sd 0:0:1:0: PR command failed: 1026
[  634.463677][T13262] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  634.477505][T13226] bridge0: port 1(bridge_slave_0) entered blocking state
[  634.484690][T13226] bridge0: port 1(bridge_slave_0) entered disabled state
[  634.521783][T13262] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  634.565163][T13226] bridge_slave_0: entered allmulticast mode
[  634.590383][T13226] bridge_slave_0: entered promiscuous mode
[  634.651081][T13226] bridge0: port 2(bridge_slave_1) entered blocking state
[  634.706677][T13226] bridge0: port 2(bridge_slave_1) entered disabled state
[  634.713955][T13226] bridge_slave_1: entered allmulticast mode
[  634.790567][T13226] bridge_slave_1: entered promiscuous mode
[  635.116624][T13227] Bluetooth: hci4: command tx timeout
[  635.271723][T13226] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  635.435346][T13276] netlink: 346 bytes leftover after parsing attributes in process `syz.3.1574'.
[  635.544654][T13226] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  637.196807][T13227] Bluetooth: hci4: command tx timeout
[  637.768923][T13226] team0: Port device team_slave_0 added
[  637.797825][T12506] netdevsim netdevsim15 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  637.842272][T13226] team0: Port device team_slave_1 added
[  638.324372][T13226] batman_adv: batadv0: Adding interface: batadv_slave_0
[  638.356639][T13226] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  638.556587][T13226] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  638.612726][T13226] batman_adv: batadv0: Adding interface: batadv_slave_1
[  638.666600][T13226] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  638.788637][   T30] audit: type=1804 audit(1110.510:91): pid=13307 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1579" name="/newroot/385/file0" dev="tmpfs" ino=2008 res=1 errno=0
[  638.834385][T13226] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  639.039526][T13306] FAULT_INJECTION: forcing a failure.
[  639.039526][T13306] name failslab, interval 1, probability 0, space 0, times 0
[  639.295827][T13306] CPU: 0 UID: 0 PID: 13306 Comm: syz.2.1578 Not tainted syzkaller #0 PREEMPT(full) 
[  639.295860][T13306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  639.295875][T13306] Call Trace:
[  639.295883][T13306]  <TASK>
[  639.295893][T13306]  dump_stack_lvl+0x16c/0x1f0
[  639.295931][T13306]  should_fail_ex+0x512/0x640
[  639.295968][T13306]  ? __kmalloc_noprof+0xca/0x880
[  639.296000][T13306]  should_failslab+0xc2/0x120
[  639.296023][T13306]  __kmalloc_noprof+0xdd/0x880
[  639.296052][T13306]  ? __register_sysctl_table+0xb3/0x1900
[  639.296084][T13306]  ? __register_sysctl_table+0xb3/0x1900
[  639.296110][T13306]  __register_sysctl_table+0xb3/0x1900
[  639.296155][T13306]  ? is_module_address+0x5f/0xf0
[  639.296187][T13306]  ? __pfx___register_sysctl_table+0x10/0x10
[  639.296217][T13306]  ? is_module_address+0x69/0xf0
[  639.296242][T13306]  ? register_net_sysctl_sz+0x228/0x3e0
[  639.296271][T13306]  ? __asan_memcpy+0x3c/0x60
[  639.296306][T13306]  sysctl_route_net_init+0x15e/0x2c0
[  639.296336][T13306]  ? __pfx_sysctl_route_net_init+0x10/0x10
[  639.296363][T13306]  ops_init+0x1e2/0x5f0
[  639.296405][T13306]  setup_net+0x100/0x390
[  639.296452][T13306]  ? __pfx_setup_net+0x10/0x10
[  639.296491][T13306]  ? debug_mutex_init+0x37/0x70
[  639.296529][T13306]  copy_net_ns+0x2f8/0x690
[  639.296556][T13306]  create_new_namespaces+0x3ea/0xa90
[  639.296599][T13306]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  639.296639][T13306]  ksys_unshare+0x45b/0xa40
[  639.296663][T13306]  ? __pfx_ksys_unshare+0x10/0x10
[  639.296689][T13306]  ? xfd_validate_state+0x61/0x180
[  639.296724][T13306]  __x64_sys_unshare+0x31/0x40
[  639.296748][T13306]  do_syscall_64+0xcd/0xfa0
[  639.296795][T13306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  639.296820][T13306] RIP: 0033:0x7f0309b8eec9
[  639.296840][T13306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  639.296864][T13306] RSP: 002b:00007f030a98f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  639.296888][T13306] RAX: ffffffffffffffda RBX: 00007f0309de6180 RCX: 00007f0309b8eec9
[  639.296904][T13306] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  639.296920][T13306] RBP: 00007f0309c11f91 R08: 0000000000000000 R09: 0000000000000000
[  639.296935][T13306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  639.296950][T13306] R13: 00007f0309de6218 R14: 00007f0309de6180 R15: 00007ffdb2cfec48
[  639.296982][T13306]  </TASK>
[  641.152833][T13226] hsr_slave_0: entered promiscuous mode
[  641.190829][T13226] hsr_slave_1: entered promiscuous mode
[  641.222290][T13226] debugfs: 'hsr0' already exists in 'hsr'
[  641.259865][T13226] Cannot create hsr debugfs directory
[  643.068429][T13226] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  643.593028][T13226] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  643.715287][T13226] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  643.818233][T13226] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  644.310396][T13226] 8021q: adding VLAN 0 to HW filter on device bond0
[  644.429320][T13226] 8021q: adding VLAN 0 to HW filter on device team0
[  644.521788][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  644.529048][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  644.598457][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  644.605790][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  645.789237][T13226] 8021q: adding VLAN 0 to HW filter on device batadv0
���/[  648.025735][T13369] size and base must be multiples of 4 kiB
[  648.480788][T13382] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1592'.
[  648.546646][T13369] CPU: 0 UID: 0 PID: 13369 Comm: syz.1.1589 Not tainted syzkaller #0 PREEMPT(full) 
[  648.546678][T13369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  648.546691][T13369] Call Trace:
[  648.546699][T13369]  <TASK>
[  648.546707][T13369]  dump_stack_lvl+0x16c/0x1f0
[  648.546743][T13369]  mtrr_del+0xd1/0x110
[  648.546766][T13369]  mtrr_ioctl+0x922/0xcf0
[  648.546789][T13369]  ? __pfx_mtrr_ioctl+0x10/0x10
[  648.546824][T13369]  ? find_held_lock+0x2b/0x80
[  648.546861][T13369]  ? __fget_files+0x20e/0x3c0
[  648.546892][T13369]  ? __pfx_mtrr_ioctl+0x10/0x10
[  648.546915][T13369]  proc_reg_unlocked_ioctl+0x229/0x320
[  648.546938][T13369]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  648.546963][T13369]  __x64_sys_ioctl+0x18e/0x210
[  648.546989][T13369]  do_syscall_64+0xcd/0xfa0
[  648.547023][T13369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  648.547045][T13369] RIP: 0033:0x7f88be18eec9
[  648.547062][T13369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  648.547084][T13369] RSP: 002b:00007f88bc3d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  648.547105][T13369] RAX: ffffffffffffffda RBX: 00007f88be3e6180 RCX: 00007f88be18eec9
[  648.547119][T13369] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003
[  648.547133][T13369] RBP: 00007f88be211f91 R08: 0000000000000000 R09: 0000000000000000
[  648.547146][T13369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  648.547159][T13369] R13: 00007f88be3e6218 R14: 00007f88be3e6180 R15: 00007fffd89479a8
[  648.547190][T13369]  </TASK>
[  648.734575][T13378] blktrace: Concurrent blktraces are not allowed on nbd3
[  649.441991][T13226] veth0_vlan: entered promiscuous mode
[  649.493832][T13226] veth1_vlan: entered promiscuous mode
[  649.631517][T13226] veth0_macvtap: entered promiscuous mode
[  649.678733][T13226] veth1_macvtap: entered promiscuous mode
[  649.749443][T13226] batman_adv: batadv0: Interface activated: batadv_slave_0
[  649.803711][T13226] batman_adv: batadv0: Interface activated: batadv_slave_1
[  649.836445][T13387] random: crng reseeded on system resumption
[  649.872845][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  649.883147][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  649.937871][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  649.996258][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  650.410104][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  650.442629][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  650.566711][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  650.574665][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  650.643682][T13393] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1595'.
[  650.655547][T13397] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1596'.
[  653.582459][T13432] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1605'.
[  655.155224][T13433] Process accounting paused
[  655.581482][T13448] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1610'.
[  657.410554][   T30] audit: type=1804 audit(1129.110:92): pid=13463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1612" name="/newroot/4/file0" dev="tmpfs" ino=41 res=1 errno=0
[  659.991842][T13474] random: crng reseeded on system resumption
[  663.127975][T13501] random: crng reseeded on system resumption
[  663.683167][T13505] blktrace: Concurrent blktraces are not allowed on nbd3
[  664.628920][T13513] FAULT_INJECTION: forcing a failure.
[  664.628920][T13513] name failslab, interval 1, probability 0, space 0, times 0
[  664.736575][T13513] CPU: 0 UID: 0 PID: 13513 Comm: syz.3.1623 Not tainted syzkaller #0 PREEMPT(full) 
[  664.736605][T13513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  664.736619][T13513] Call Trace:
[  664.736627][T13513]  <TASK>
[  664.736636][T13513]  dump_stack_lvl+0x16c/0x1f0
[  664.736672][T13513]  should_fail_ex+0x512/0x640
[  664.736707][T13513]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  664.736740][T13513]  should_failslab+0xc2/0x120
[  664.736761][T13513]  kmem_cache_alloc_noprof+0x75/0x6e0
[  664.736790][T13513]  ? __anon_vma_prepare+0xae/0x5e0
[  664.736823][T13513]  ? __anon_vma_prepare+0xae/0x5e0
[  664.736848][T13513]  __anon_vma_prepare+0xae/0x5e0
[  664.736873][T13513]  ? __filemap_get_folio+0x32b/0xc30
[  664.736907][T13513]  __vmf_anon_prepare+0x11c/0x240
[  664.736931][T13513]  hugetlb_fault+0x1ba4/0x2f40
[  664.736965][T13513]  ? __pfx_hugetlb_fault+0x10/0x10
[  664.737005][T13513]  ? find_vma+0xbf/0x140
[  664.737036][T13513]  ? __pfx_find_vma+0x10/0x10
[  664.737080][T13513]  handle_mm_fault+0xbfa/0xd10
[  664.737107][T13513]  ? __pkru_allows_pkey+0x11/0xb0
[  664.737137][T13513]  do_user_addr_fault+0x7a6/0x1370
[  664.737171][T13513]  ? rcu_is_watching+0x12/0xc0
[  664.737206][T13513]  exc_page_fault+0x64/0xc0
[  664.737238][T13513]  asm_exc_page_fault+0x26/0x30
[  664.737260][T13513] RIP: 0010:rep_movs_alternative+0x11/0x90
[  664.737286][T13513] Code: c3 cc cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 66 2e 0f
[  664.737308][T13513] RSP: 0018:ffffc9000ae17da0 EFLAGS: 00050206
[  664.737326][T13513] RAX: 000000000000002f RBX: 0000000000000005 RCX: 0000000000000005
[  664.737339][T13513] RDX: ffffed100f450640 RSI: ffff88807a2831fb RDI: 0000000000000000
[  664.737353][T13513] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffed100f45063f
[  664.737367][T13513] R10: ffff88807a2831ff R11: 0000000000000001 R12: ffff88807a2831fb
[  664.737381][T13513] R13: 0000000000000005 R14: 00007ffffffff000 R15: 0000000000000000
[  664.737408][T13513]  _copy_to_user+0xbb/0xd0
[  664.737431][T13513]  __do_sys_getcwd+0x483/0x930
[  664.737452][T13513]  ? rcu_is_watching+0x12/0xc0
[  664.737489][T13513]  ? __pfx___do_sys_getcwd+0x10/0x10
[  664.737509][T13513]  ? __pfx___rseq_handle_notify_resume+0x10/0x10
[  664.737544][T13513]  ? xfd_validate_state+0x61/0x180
[  664.737566][T13513]  ? __pfx_ksys_write+0x10/0x10
[  664.737606][T13513]  do_syscall_64+0xcd/0xfa0
[  664.737639][T13513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  664.737661][T13513] RIP: 0033:0x7f7c75b8eec9
[  664.737679][T13513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  664.737700][T13513] RSP: 002b:00007f7c769a8038 EFLAGS: 00000246 ORIG_RAX: 000000000000004f
[  664.737720][T13513] RAX: ffffffffffffffda RBX: 00007f7c75de5fa0 RCX: 00007f7c75b8eec9
[  664.737734][T13513] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000000
[  664.737747][T13513] RBP: 00007f7c75c11f91 R08: 0000000000000000 R09: 0000000000000000
[  664.737761][T13513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  664.737774][T13513] R13: 00007f7c75de6038 R14: 00007f7c75de5fa0 R15: 00007ffe85249cd8
[  664.737822][T13513]  </TASK>
[  665.062614][    C0] vkms_vblank_simulate: vblank timer overrun
[  666.713285][T13521] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  671.997474][T13556] blktrace: Concurrent blktraces are not allowed on nbd3
[  672.670297][   T30] audit: type=1804 audit(1144.390:93): pid=13560 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1633" name="/newroot/443/file0" dev="tmpfs" ino=2323 res=1 errno=0
[  672.827698][   T30] audit: type=1804 audit(1144.470:94): pid=13563 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1633" name="/newroot/443/file0" dev="tmpfs" ino=2323 res=1 errno=0
[  673.005473][   T30] audit: type=1800 audit(1144.540:95): pid=13560 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1633" name="file0" dev="tmpfs" ino=2323 res=0 errno=0
[  676.839279][T13584] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1637'.
[  678.477558][T13598] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1639'.
[  682.845926][T13623] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_cmd_wq": -EINTR
[  685.302148][T13614] Process accounting resumed
[  685.583002][T13631] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  685.955426][T13637] random: crng reseeded on system resumption
[  686.315411][T13642] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1651'.
[  690.961575][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  690.985939][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  691.810537][T13683] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1660'.
[  692.136807][T13692] openvswitch: netlink: IPv6 tunnel dst address is zero
[  693.479082][T13705] random: crng reseeded on system resumption
[  695.784451][T13664] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  698.393829][T13738] random: crng reseeded on system resumption
[  698.533782][T13738] Restarting kernel threads ...
[  698.722940][T13738] Done restarting kernel threads.
[  699.854403][T13752] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  700.002368][T13754] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  700.242133][T13757] futex_wake_op: syz.4.1675 tries to shift op by -9; fix this program
[  701.730190][T13777] Console: switching to colour frame buffer device 128x48
[  703.939441][T13817] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1687'.
[  706.000973][T13851] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  706.249083][T13851] futex_wake_op: syz.3.1693 tries to shift op by -9; fix this program
[  706.943185][T13855] FAULT_INJECTION: forcing a failure.
[  706.943185][T13855] name failslab, interval 1, probability 0, space 0, times 0
[  707.194779][T13855] CPU: 0 UID: 0 PID: 13855 Comm: syz.2.1694 Not tainted syzkaller #0 PREEMPT(full) 
[  707.194809][T13855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  707.194823][T13855] Call Trace:
[  707.194831][T13855]  <TASK>
[  707.194839][T13855]  dump_stack_lvl+0x16c/0x1f0
[  707.194876][T13855]  should_fail_ex+0x512/0x640
[  707.194911][T13855]  ? fs_reclaim_acquire+0xae/0x150
[  707.194934][T13855]  should_failslab+0xc2/0x120
[  707.194955][T13855]  __kmalloc_noprof+0xdd/0x880
[  707.194983][T13855]  ? tomoyo_encode2+0x100/0x3e0
[  707.195017][T13855]  ? tomoyo_encode2+0x100/0x3e0
[  707.195046][T13855]  tomoyo_encode2+0x100/0x3e0
[  707.195080][T13855]  tomoyo_encode+0x29/0x50
[  707.195108][T13855]  tomoyo_realpath_from_path+0x18f/0x6e0
[  707.195147][T13855]  tomoyo_path_number_perm+0x245/0x580
[  707.195173][T13855]  ? tomoyo_path_number_perm+0x237/0x580
[  707.195201][T13855]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  707.195254][T13855]  ? find_held_lock+0x2b/0x80
[  707.195284][T13855]  ? hook_file_ioctl_common+0x145/0x410
[  707.195318][T13855]  ? __fget_files+0x20e/0x3c0
[  707.195352][T13855]  security_file_ioctl+0x9b/0x240
[  707.195381][T13855]  __x64_sys_ioctl+0xb7/0x210
[  707.195408][T13855]  do_syscall_64+0xcd/0xfa0
[  707.195448][T13855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  707.195471][T13855] RIP: 0033:0x7f0309b8eec9
[  707.195489][T13855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  707.195511][T13855] RSP: 002b:00007f030a9d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  707.195532][T13855] RAX: ffffffffffffffda RBX: 00007f0309de5fa0 RCX: 00007f0309b8eec9
[  707.195547][T13855] RDX: 0000000000000003 RSI: 0000000000003b8e RDI: 0000000000000009
[  707.195560][T13855] RBP: 00007f0309c11f91 R08: 0000000000000000 R09: 0000000000000000
[  707.195573][T13855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  707.195586][T13855] R13: 00007f0309de6038 R14: 00007f0309de5fa0 R15: 00007ffdb2cfec48
[  707.195615][T13855]  </TASK>
[  707.195632][T13855] ERROR: Out of memory at tomoyo_realpath_from_path.
[  708.147318][T13877] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1700'.
[  708.204905][T13880] FAULT_INJECTION: forcing a failure.
[  708.204905][T13880] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  708.258836][T13880] CPU: 0 UID: 0 PID: 13880 Comm: syz.4.1701 Not tainted syzkaller #0 PREEMPT(full) 
[  708.258868][T13880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  708.258883][T13880] Call Trace:
[  708.258891][T13880]  <TASK>
[  708.258900][T13880]  dump_stack_lvl+0x16c/0x1f0
[  708.258939][T13880]  should_fail_ex+0x512/0x640
[  708.258980][T13880]  _copy_from_user+0x2e/0xd0
[  708.259015][T13880]  move_addr_to_kernel+0x65/0x170
[  708.259045][T13880]  __sys_connect+0xb1/0x160
[  708.259074][T13880]  ? __pfx___sys_connect+0x10/0x10
[  708.259114][T13880]  ? __pfx_ksys_write+0x10/0x10
[  708.259152][T13880]  __x64_sys_connect+0x72/0xb0
[  708.259181][T13880]  ? lockdep_hardirqs_on+0x7c/0x110
[  708.259214][T13880]  do_syscall_64+0xcd/0xfa0
[  708.259249][T13880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  708.259273][T13880] RIP: 0033:0x7f61e2b8eec9
[  708.259290][T13880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  708.259313][T13880] RSP: 002b:00007f61e39af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  708.259334][T13880] RAX: ffffffffffffffda RBX: 00007f61e2de5fa0 RCX: 00007f61e2b8eec9
[  708.259356][T13880] RDX: 0000000000000055 RSI: 00002000000000c0 RDI: 0000000000000003
[  708.259370][T13880] RBP: 00007f61e39af090 R08: 0000000000000000 R09: 0000000000000000
[  708.259384][T13880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  708.259397][T13880] R13: 00007f61e2de6038 R14: 00007f61e2de5fa0 R15: 00007ffe4c659ad8
[  708.259427][T13880]  </TASK>
[  709.052217][T13900] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  709.203815][T13903] futex_wake_op: syz.3.1707 tries to shift op by -9; fix this program
[  709.778120][T13907] netlink: 326 bytes leftover after parsing attributes in process `syz.4.1709'.
[  710.594443][T13227] Bluetooth: hci4: unexpected event 0x0e length: 440 > 260
[  710.914431][T13929] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1713'.
[  712.091856][T13946] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  712.289720][T13949] futex_wake_op: syz.1.1719 tries to shift op by -9; fix this program
[  713.708909][T13968] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1724'.
[  713.760366][T13968] : renamed from vlan0 (while UP)
[  713.828242][T13968] : entered allmulticast mode
[  713.833059][T13968] veth0_vlan: entered allmulticast mode
[  713.863306][T13966] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1723'.
[  713.956914][T13969] netlink: 13 bytes leftover after parsing attributes in process `syz.2.1723'.
[  714.630527][T13978] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1726'.
[  714.640165][T13227] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  714.656604][T13227] Bluetooth: hci4: Injecting HCI hardware error event
[  714.666290][   T52] Bluetooth: hci4: hardware error 0x00
[  715.287970][T13992] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1730'.
[  715.396690][T13994] random: crng reseeded on system resumption
[  715.661174][T13997] Process accounting paused
[  716.032753][T14009] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1734'.
[  716.937367][T14029] blktrace: Concurrent blktraces are not allowed on nbd3
[  717.037079][   T52] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  718.206229][T14049] random: crng reseeded on system resumption
[  718.806914][T14053] zswap: compressor 000 not available
[  718.969037][T14066] netlink: 342 bytes leftover after parsing attributes in process `syz.2.1748'.
[  719.906837][T14084] vivid-007: =================  START STATUS  =================
[  719.975498][T14084] vivid-007: Enable Output Cropping: true
[  720.016976][T14088] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1752'.
[  720.031511][T14084] vivid-007: Enable Output Composing: true
[  720.074777][T14084] vivid-007: Enable Output Scaler: true
[  720.115258][T14084] vivid-007: Tx RGB Quantization Range: Automatic
[  720.175131][T14084] vivid-007: Transmit Mode: HDMI
[  720.216568][T14084] vivid-007: Hotplug Present: 0x00000000
[  720.248985][T14084] vivid-007: RxSense Present: 0x00000000
[  720.287755][T14084] vivid-007: EDID Present: 0x00000000
[  720.335393][T14084] vivid-007: ==================  END STATUS  ==================
[  721.282338][T12198] usb usb38-port5: attempt power cycle
[  721.907501][T12198] usb usb38-port5: unable to enumerate USB device
[  722.006819][T14092] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  722.039045][T14130] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1762'.
[  725.379035][   T30] audit: type=1804 audit(1197.110:96): pid=14180 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1768" name="/newroot/37/file0" dev="tmpfs" ino=215 res=1 errno=0
[  725.399665][    C0] vkms_vblank_simulate: vblank timer overrun
[  725.430297][T14198] random: crng reseeded on system resumption
[  725.544930][T14185] Line length is too long: Should be less than 4094
[  725.851391][T14198] FAULT_INJECTION: forcing a failure.
[  725.851391][T14198] name fail_futex, interval 1, probability 0, space 0, times 0
[  725.932756][T14198] CPU: 0 UID: 0 PID: 14198 Comm: syz.3.1770 Not tainted syzkaller #0 PREEMPT(full) 
[  725.932788][T14198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  725.932802][T14198] Call Trace:
[  725.932809][T14198]  <TASK>
[  725.932818][T14198]  dump_stack_lvl+0x16c/0x1f0
[  725.932864][T14198]  should_fail_ex+0x512/0x640
[  725.932905][T14198]  get_futex_key+0x1d0/0x1560
[  725.932947][T14198]  ? __pfx_get_futex_key+0x10/0x10
[  725.932995][T14198]  futex_wake+0xea/0x530
[  725.933025][T14198]  ? __pfx_futex_wake+0x10/0x10
[  725.933053][T14198]  ? rcu_is_watching+0x12/0xc0
[  725.933096][T14198]  do_futex+0x1e3/0x350
[  725.933120][T14198]  ? __pfx_do_futex+0x10/0x10
[  725.933143][T14198]  ? __fput+0x68d/0xb70
[  725.933166][T14198]  ? __pfx___might_resched+0x10/0x10
[  725.933202][T14198]  __x64_sys_futex+0x1e0/0x4c0
[  725.933226][T14198]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  725.933261][T14198]  ? __pfx___x64_sys_futex+0x10/0x10
[  725.933285][T14198]  ? xfd_validate_state+0x61/0x180
[  725.933309][T14198]  ? __pfx___do_sys_close_range+0x10/0x10
[  725.933351][T14198]  do_syscall_64+0xcd/0xfa0
[  725.933387][T14198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.933410][T14198] RIP: 0033:0x7f7c75b8eec9
[  725.933436][T14198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  725.933460][T14198] RSP: 002b:00007f7c769a80e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  725.933482][T14198] RAX: ffffffffffffffda RBX: 00007f7c75de5fa8 RCX: 00007f7c75b8eec9
[  725.933498][T14198] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7c75de5fac
[  725.933513][T14198] RBP: 00007f7c75de5fa0 R08: 00007f7c769a9000 R09: 0000000000000000
[  725.933528][T14198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  725.933542][T14198] R13: 00007f7c75de6038 R14: 00007ffe85249bf0 R15: 00007ffe85249cd8
[  725.933572][T14198]  </TASK>
[  728.655317][T14231] blktrace: Concurrent blktraces are not allowed on nbd3
[  728.971616][T14235] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  729.406767][T14238] futex_wake_op: syz.1.1778 tries to shift op by -9; fix this program
[  731.490668][T14278] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xfffffd12
[  734.626297][T14312] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000
[  734.734507][T14317] blktrace: Concurrent blktraces are not allowed on nbd3
[  735.013576][T14312] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  735.336627][T14312] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  735.572476][T14312] page_type: f5(slab)
[  735.716955][T14312] raw: 00fff00000000040 ffff88801bec38c0 dead000000000122 0000000000000000
[  735.725592][T14312] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  736.354959][T14312] head: 00fff00000000040 ffff88801bec38c0 dead000000000122 0000000000000000
[  736.685843][T14312] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000
[  736.908868][T14312] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff
[  737.093360][T14312] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  737.311852][T14312] page dumped because: unmovable page
[  737.370490][T14312] page_owner tracks the page as allocated
[  737.492534][T14312] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5215, tgid 5215 (udevadm), ts 43158389422, free_ts 35374374134
[  737.874985][T14312]  post_alloc_hook+0x1c0/0x230
[  737.957466][T14312]  get_page_from_freelist+0x10a3/0x3a30
[  737.963078][T14312]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  738.139144][T14312]  alloc_pages_mpol+0x1fb/0x550
[  738.144069][T14312]  new_slab+0x24a/0x360
[  738.266586][T14312]  ___slab_alloc+0xdc4/0x1ae0
[  738.271328][T14312]  __slab_alloc.constprop.0+0x63/0x110
[  738.442136][T14312]  kmem_cache_alloc_lru_noprof+0x443/0x6e0
[  738.555338][T14312]  alloc_inode+0xc3/0x240
[  738.637895][T14312]  iget_locked+0x2fa/0x860
[  738.716727][T14312]  kernfs_get_inode+0x48/0x460
[  738.815405][T14312]  kernfs_iop_lookup+0x1a7/0x2d0
[  738.915326][T14312]  __lookup_slow+0x251/0x460
[  738.997705][T14312]  walk_component+0x353/0x5b0
[  739.077792][T14312]  link_path_walk+0x627/0xe20
[  739.187706][T14312]  path_lookupat+0x15a/0x6d0
[  739.303363][T14312] page last free pid 1 tgid 1 stack trace:
[  739.382675][T14312]  __free_frozen_pages+0x7df/0x1160
[  739.536513][T14312]  free_contig_range+0x183/0x4b0
[  739.558416][T14312]  destroy_args+0xb69/0x12e0
[  739.563061][T14312]  debug_vm_pgtable+0x1a32/0x3640
[  739.668184][T14373] FAULT_INJECTION: forcing a failure.
[  739.668184][T14373] name failslab, interval 1, probability 0, space 0, times 0
[  739.768084][T14373] CPU: 0 UID: 0 PID: 14373 Comm: syz.4.1811 Not tainted syzkaller #0 PREEMPT(full) 
[  739.768117][T14373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  739.768132][T14373] Call Trace:
[  739.768139][T14373]  <TASK>
[  739.768149][T14373]  dump_stack_lvl+0x16c/0x1f0
[  739.768188][T14373]  should_fail_ex+0x512/0x640
[  739.768224][T14373]  ? __kmalloc_noprof+0xca/0x880
[  739.768255][T14373]  should_failslab+0xc2/0x120
[  739.768277][T14373]  __kmalloc_noprof+0xdd/0x880
[  739.768303][T14373]  ? __kernel_text_address+0xd/0x40
[  739.768332][T14373]  ? unwind_get_return_address+0x59/0xa0
[  739.768368][T14373]  ? copy_splice_read+0x1a8/0xc20
[  739.768402][T14373]  ? copy_splice_read+0x1a8/0xc20
[  739.768430][T14373]  copy_splice_read+0x1a8/0xc20
[  739.768466][T14373]  ? __pfx_copy_splice_read+0x10/0x10
[  739.768499][T14373]  ? __pfx__kstrtoull+0x10/0x10
[  739.768535][T14373]  ? find_held_lock+0x2b/0x80
[  739.768568][T14373]  ? __pfx_copy_splice_read+0x10/0x10
[  739.768597][T14373]  do_splice_read+0x285/0x370
[  739.768630][T14373]  splice_direct_to_actor+0x2a1/0xa30
[  739.768662][T14373]  ? __pfx_direct_splice_actor+0x10/0x10
[  739.768698][T14373]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  739.768727][T14373]  ? get_pid_task+0xfc/0x250
[  739.768759][T14373]  do_splice_direct+0x174/0x240
[  739.768790][T14373]  ? __pfx_do_splice_direct+0x10/0x10
[  739.768821][T14373]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  739.768855][T14373]  ? rw_verify_area+0xcf/0x6c0
[  739.768887][T14373]  do_sendfile+0xb06/0xe50
[  739.768929][T14373]  ? __pfx_do_sendfile+0x10/0x10
[  739.768974][T14373]  ? __fget_files+0x20e/0x3c0
[  739.769011][T14373]  __x64_sys_sendfile64+0x1d8/0x220
[  739.769032][T14373]  ? ksys_write+0x1ac/0x250
[  739.769075][T14373]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  739.769103][T14373]  do_syscall_64+0xcd/0xfa0
[  739.769136][T14373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.769157][T14373] RIP: 0033:0x7f61e2b8eec9
[  739.769174][T14373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  739.769195][T14373] RSP: 002b:00007f61e398e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  739.769215][T14373] RAX: ffffffffffffffda RBX: 00007f61e2de6090 RCX: 00007f61e2b8eec9
[  739.769229][T14373] RDX: 0000000000000000 RSI: 000000000000000d RDI: 000000000000000d
[  739.769241][T14373] RBP: 00007f61e398e090 R08: 0000000000000000 R09: 0000000000000000
[  739.769254][T14373] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001
[  739.769267][T14373] R13: 00007f61e2de6128 R14: 00007f61e2de6090 R15: 00007ffe4c659ad8
[  739.769295][T14373]  </TASK>
[  740.095421][T14376] blktrace: Concurrent blktraces are not allowed on nbd3
[  740.303231][T14312]  do_one_initcall+0x123/0x6e0
[  740.328345][T14312]  kernel_init_freeable+0x5c8/0x920
[  740.376497][T14312]  kernel_init+0x1c/0x2b0
[  740.412233][T14312]  ret_from_fork+0x675/0x7d0
[  740.487375][T14312]  ret_from_fork_asm+0x1a/0x30
[  741.189422][T14378] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  741.367799][T14385] futex_wake_op: syz.4.1813 tries to shift op by -9; fix this program
[  745.846629][T14447] blktrace: Concurrent blktraces are not allowed on nbd3
[  746.899463][T14453] Process accounting resumed
[  747.221793][T14472] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  747.435818][T14472] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1830'.
[  748.743592][T14488] Invalid ELF header magic: != ELF
[  749.851668][T14505] bond0: option arp_all_targets: invalid value ()
[  750.801216][T14520] bond0: option all_slaves_active: invalid value ()
[  752.179077][T14536] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1846'.
[  752.258540][T14539] FAULT_INJECTION: forcing a failure.
[  752.258540][T14539] name failslab, interval 1, probability 0, space 0, times 0
[  752.362177][T14540] blktrace: Concurrent blktraces are not allowed on nbd3
[  752.401741][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  752.412559][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  752.457075][T14539] CPU: 0 UID: 0 PID: 14539 Comm: syz.3.1844 Not tainted syzkaller #0 PREEMPT(full) 
[  752.457106][T14539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  752.457121][T14539] Call Trace:
[  752.457129][T14539]  <TASK>
[  752.457137][T14539]  dump_stack_lvl+0x16c/0x1f0
[  752.457175][T14539]  should_fail_ex+0x512/0x640
[  752.457211][T14539]  ? __kmalloc_noprof+0xca/0x880
[  752.457242][T14539]  should_failslab+0xc2/0x120
[  752.457265][T14539]  __kmalloc_noprof+0xdd/0x880
[  752.457293][T14539]  ? iter_file_splice_write+0x1cc/0x12e0
[  752.457329][T14539]  ? iter_file_splice_write+0x1cc/0x12e0
[  752.457359][T14539]  iter_file_splice_write+0x1cc/0x12e0
[  752.457395][T14539]  ? kfree+0x2b8/0x6d0
[  752.457420][T14539]  ? copy_splice_read+0x897/0xc20
[  752.457452][T14539]  ? copy_splice_read+0x897/0xc20
[  752.457481][T14539]  ? __pfx_iter_file_splice_write+0x10/0x10
[  752.457512][T14539]  ? __lock_acquire+0xb8a/0x1c90
[  752.457538][T14539]  ? __pfx_copy_splice_read+0x10/0x10
[  752.457588][T14539]  ? __pfx_iter_file_splice_write+0x10/0x10
[  752.457621][T14539]  direct_splice_actor+0x192/0x6c0
[  752.457654][T14539]  splice_direct_to_actor+0x345/0xa30
[  752.457685][T14539]  ? __pfx_direct_splice_actor+0x10/0x10
[  752.457721][T14539]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  752.457768][T14539]  ? get_pid_task+0xfc/0x250
[  752.457800][T14539]  do_splice_direct+0x174/0x240
[  752.457830][T14539]  ? __pfx_do_splice_direct+0x10/0x10
[  752.457860][T14539]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  752.457894][T14539]  ? rw_verify_area+0xcf/0x6c0
[  752.457926][T14539]  do_sendfile+0xb06/0xe50
[  752.457963][T14539]  ? __pfx_do_sendfile+0x10/0x10
[  752.457994][T14539]  ? __fget_files+0x20e/0x3c0
[  752.458032][T14539]  __x64_sys_sendfile64+0x1d8/0x220
[  752.458053][T14539]  ? ksys_write+0x1ac/0x250
[  752.458085][T14539]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  752.458116][T14539]  do_syscall_64+0xcd/0xfa0
[  752.458157][T14539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.458180][T14539] RIP: 0033:0x7f7c75b8eec9
[  752.458198][T14539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  752.458222][T14539] RSP: 002b:00007f7c76987038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  752.458244][T14539] RAX: ffffffffffffffda RBX: 00007f7c75de6090 RCX: 00007f7c75b8eec9
[  752.458260][T14539] RDX: 0000000000000000 RSI: 000000000000000d RDI: 000000000000000d
[  752.458275][T14539] RBP: 00007f7c76987090 R08: 0000000000000000 R09: 0000000000000000
[  752.458290][T14539] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001
[  752.458304][T14539] R13: 00007f7c75de6128 R14: 00007f7c75de6090 R15: 00007ffe85249cd8
[  752.458335][T14539]  </TASK>
[  752.730468][    C0] vkms_vblank_simulate: vblank timer overrun
[  756.395517][T14577] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1852'.
[  756.456615][T14577] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  756.497691][T14577] batman_adv: batadv0: Removing interface: batadv_slave_0
[  756.651978][T14577] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  756.682652][T14577] batman_adv: batadv0: Removing interface: batadv_slave_1
[  757.563803][T14589] random: crng reseeded on system resumption
[  758.646828][T14599] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1857'.
[  758.727700][T14601] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1857'.
[  760.167553][T14616] blktrace: Concurrent blktraces are not allowed on nbd3
[  760.217389][T14621] random: crng reseeded on system resumption
[  761.260252][T14627] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1862'.
[  761.994641][T14639] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  762.497398][T14645] random: crng reseeded on system resumption
[  762.638814][T14648] FAULT_INJECTION: forcing a failure.
[  762.638814][T14648] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  762.694815][T14648] CPU: 0 UID: 0 PID: 14648 Comm: syz.3.1867 Not tainted syzkaller #0 PREEMPT(full) 
[  762.694846][T14648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  762.694860][T14648] Call Trace:
[  762.694867][T14648]  <TASK>
[  762.694876][T14648]  dump_stack_lvl+0x16c/0x1f0
[  762.694913][T14648]  should_fail_ex+0x512/0x640
[  762.694951][T14648]  _copy_from_user+0x2e/0xd0
[  762.694973][T14648]  copy_mount_options+0x76/0x190
[  762.694998][T14648]  __x64_sys_mount+0x1ab/0x310
[  762.695032][T14648]  ? __pfx___x64_sys_mount+0x10/0x10
[  762.695074][T14648]  do_syscall_64+0xcd/0xfa0
[  762.695109][T14648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.695132][T14648] RIP: 0033:0x7f7c75b8eec9
[  762.695148][T14648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  762.695169][T14648] RSP: 002b:00007f7c76987038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  762.695189][T14648] RAX: ffffffffffffffda RBX: 00007f7c75de6090 RCX: 00007f7c75b8eec9
[  762.695204][T14648] RDX: 0000200000000140 RSI: 0000000000000000 RDI: 00002000000000c0
[  762.695217][T14648] RBP: 00007f7c75c11f91 R08: 0000200000000180 R09: 0000000000000000
[  762.695248][T14648] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000000
[  762.695262][T14648] R13: 00007f7c75de6128 R14: 00007f7c75de6090 R15: 00007ffe85249cd8
[  762.695292][T14648]  </TASK>
[  763.088472][T14653] Unrecognized hibernate image header format!
[  763.149806][T14653] PM: hibernation: Image mismatch: architecture specific data
[  763.530276][T14661] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  763.599015][T14660] svc: failed to register nfsdv3 RPC service (errno 111).
[  763.664054][T14660] svc: failed to register nfsaclv3 RPC service (errno 111).
[  763.910849][T14661] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1869'.
[  764.223741][T14668] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1871'.
[  764.953742][T14679] blktrace: Concurrent blktraces are not allowed on nbd3
[  765.757168][   T30] audit: type=1800 audit(1237.480:97): pid=14689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1875" name="dbroot" dev="configfs" ino=50753 res=0 errno=0
[  766.693853][T14709] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1880'.
[  766.926699][T14711] [U]  
[  766.929530][T14711] [U] 
[  766.932234][T14711] [U] 
[  766.934948][T14711] [U] 
[  767.086734][T14711] [U] 
[  767.089490][T14711] [U] 
[  767.092187][T14711] [U] 
[  767.094881][T14711] [U] 
[  767.157379][T14711] [U] 
[  767.160148][T14711] [U] 
[  767.162859][T14711] [U] 
[  767.165576][T14711] [U] 
[  767.246628][T14711] [U] 
[  767.249365][T14711] [U] 
[  767.252068][T14711] [U] 
[  767.254762][T14711] [U] 
[  767.309456][T14711] [U] 
[  767.312220][T14711] [U] 
[  767.314919][T14711] [U] 
[  767.317621][T14711] [U] 
[  767.380567][T14711] [U] 
[  767.383315][T14711] [U] 
[  767.386034][T14711] [U] 
[  767.388740][T14711] [U] 
[  767.527218][T14711] [U] 
[  767.529979][T14711] [U] 
[  767.532687][T14711] [U] 
[  767.535398][T14711] [U] 
[  767.692693][T14711] [U] 
[  767.695475][T14711] [U] 
[  767.698185][T14711] [U] 
[  767.700887][T14711] [U] 
[  767.747518][T14711] [U] 
[  768.453658][   T30] audit: type=1400 audit(1240.180:98): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=14714 comm="syz.4.1881"
[  770.078216][T14725] kexec: Could not allocate control_code_buffer
[  770.086146][   T30] audit: type=1804 audit(1241.810:99): pid=14739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1887" name="/newroot/469/file0" dev="tmpfs" ino=2449 res=1 errno=0
[  771.409822][T14767] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1892'.
[  772.389200][T14785] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1896'.
[  772.818799][T14799] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  772.916631][T14802] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  773.022909][T14799] netlink: 268 bytes leftover after parsing attributes in process `syz.2.1898'.
[  773.827402][T14812] random: crng reseeded on system resumption
[  774.078181][T14817] FAULT_INJECTION: forcing a failure.
[  774.078181][T14817] name failslab, interval 1, probability 0, space 0, times 0
[  774.145445][T14817] CPU: 0 UID: 0 PID: 14817 Comm: syz.2.1901 Not tainted syzkaller #0 PREEMPT(full) 
[  774.145477][T14817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  774.145491][T14817] Call Trace:
[  774.145498][T14817]  <TASK>
[  774.145511][T14817]  dump_stack_lvl+0x16c/0x1f0
[  774.145550][T14817]  should_fail_ex+0x512/0x640
[  774.145586][T14817]  ? __kmalloc_cache_noprof+0x5f/0x780
[  774.145618][T14817]  should_failslab+0xc2/0x120
[  774.145641][T14817]  __kmalloc_cache_noprof+0x72/0x780
[  774.145668][T14817]  ? trace_kmalloc+0x2b/0xd0
[  774.145687][T14817]  ? __kmalloc_noprof+0x34f/0x880
[  774.145714][T14817]  ? apply_wqattrs_prepare+0x130/0xbd0
[  774.145753][T14817]  ? apply_wqattrs_prepare+0x130/0xbd0
[  774.145785][T14817]  apply_wqattrs_prepare+0x130/0xbd0
[  774.145829][T14817]  apply_workqueue_attrs_locked+0x64/0xe0
[  774.145865][T14817]  apply_workqueue_attrs+0x2a/0x50
[  774.145901][T14817]  padata_set_cpumask+0x237/0x510
[  774.145930][T14817]  store_cpumask+0x120/0x1a0
[  774.145952][T14817]  ? __pfx_store_cpumask+0x10/0x10
[  774.145974][T14817]  ? find_held_lock+0x2b/0x80
[  774.146010][T14817]  ? __pfx_store_cpumask+0x10/0x10
[  774.146031][T14817]  padata_sysfs_store+0x5c/0x90
[  774.146067][T14817]  ? __pfx_padata_sysfs_store+0x10/0x10
[  774.146104][T14817]  sysfs_kf_write+0xf2/0x150
[  774.146140][T14817]  kernfs_fop_write_iter+0x3af/0x570
[  774.146167][T14817]  ? __pfx_sysfs_kf_write+0x10/0x10
[  774.146203][T14817]  iter_file_splice_write+0xa24/0x12e0
[  774.146258][T14817]  ? __pfx_iter_file_splice_write+0x10/0x10
[  774.146295][T14817]  ? __pfx_copy_splice_read+0x10/0x10
[  774.146340][T14817]  ? __pfx_iter_file_splice_write+0x10/0x10
[  774.146373][T14817]  direct_splice_actor+0x192/0x6c0
[  774.146407][T14817]  splice_direct_to_actor+0x345/0xa30
[  774.146438][T14817]  ? __pfx_direct_splice_actor+0x10/0x10
[  774.146474][T14817]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  774.146502][T14817]  ? get_pid_task+0xfc/0x250
[  774.146533][T14817]  do_splice_direct+0x174/0x240
[  774.146563][T14817]  ? __pfx_do_splice_direct+0x10/0x10
[  774.146594][T14817]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  774.146628][T14817]  ? rw_verify_area+0xcf/0x6c0
[  774.146660][T14817]  do_sendfile+0xb06/0xe50
[  774.146696][T14817]  ? __pfx_do_sendfile+0x10/0x10
[  774.146727][T14817]  ? __fget_files+0x20e/0x3c0
[  774.146766][T14817]  __x64_sys_sendfile64+0x1d8/0x220
[  774.146787][T14817]  ? ksys_write+0x1ac/0x250
[  774.146818][T14817]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  774.146849][T14817]  do_syscall_64+0xcd/0xfa0
[  774.146885][T14817]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  774.146908][T14817] RIP: 0033:0x7f0309b8eec9
[  774.146926][T14817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  774.146948][T14817] RSP: 002b:00007f030a98f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  774.146969][T14817] RAX: ffffffffffffffda RBX: 00007f0309de6180 RCX: 00007f0309b8eec9
[  774.146984][T14817] RDX: 0000000000000000 RSI: 000000000000000d RDI: 000000000000000d
[  774.147009][T14817] RBP: 00007f030a98f090 R08: 0000000000000000 R09: 0000000000000000
[  774.147023][T14817] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000002
[  774.147037][T14817] R13: 00007f0309de6218 R14: 00007f0309de6180 R15: 00007ffdb2cfec48
[  774.147066][T14817]  </TASK>
[  776.486606][T14838] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1905'.
[  777.535101][T14850] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  777.758863][T14854] futex_wake_op: syz.4.1908 tries to shift op by -9; fix this program
[  778.009647][T14859] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  778.240976][T14861] futex_wake_op: syz.2.1909 tries to shift op by -9; fix this program
[  778.423578][T14693] Process accounting paused
[  779.406144][T14870] FAULT_INJECTION: forcing a failure.
[  779.406144][T14870] name failslab, interval 1, probability 0, space 0, times 0
[  779.492325][T14870] CPU: 0 UID: 0 PID: 14870 Comm: syz.3.1912 Not tainted syzkaller #0 PREEMPT(full) 
[  779.492369][T14870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  779.492381][T14870] Call Trace:
[  779.492388][T14870]  <TASK>
[  779.492397][T14870]  dump_stack_lvl+0x16c/0x1f0
[  779.492433][T14870]  should_fail_ex+0x512/0x640
[  779.492471][T14870]  ? __kmalloc_noprof+0xca/0x880
[  779.492518][T14870]  should_failslab+0xc2/0x120
[  779.492540][T14870]  __kmalloc_noprof+0xdd/0x880
[  779.492571][T14870]  ? __register_sysctl_table+0xea2/0x1900
[  779.492604][T14870]  ? __register_sysctl_table+0xea2/0x1900
[  779.492640][T14870]  __register_sysctl_table+0xea2/0x1900
[  779.492675][T14870]  ? __pfx___register_sysctl_table+0x10/0x10
[  779.492701][T14870]  ? is_module_address+0x69/0xf0
[  779.492726][T14870]  ? register_net_sysctl_sz+0x228/0x3e0
[  779.492754][T14870]  ? __asan_memcpy+0x3c/0x60
[  779.492786][T14870]  ? __pfx_nf_lwtunnel_net_init+0x10/0x10
[  779.492810][T14870]  nf_lwtunnel_net_init+0x60/0xf0
[  779.492834][T14870]  ops_init+0x1e2/0x5f0
[  779.492875][T14870]  setup_net+0x100/0x390
[  779.492913][T14870]  ? __pfx_setup_net+0x10/0x10
[  779.492951][T14870]  ? debug_mutex_init+0x37/0x70
[  779.492988][T14870]  copy_net_ns+0x2f8/0x690
[  779.493014][T14870]  create_new_namespaces+0x3ea/0xa90
[  779.493057][T14870]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  779.493095][T14870]  ksys_unshare+0x45b/0xa40
[  779.493119][T14870]  ? __pfx_ksys_unshare+0x10/0x10
[  779.493143][T14870]  ? xfd_validate_state+0x61/0x180
[  779.493178][T14870]  __x64_sys_unshare+0x31/0x40
[  779.493200][T14870]  do_syscall_64+0xcd/0xfa0
[  779.493238][T14870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  779.493262][T14870] RIP: 0033:0x7f7c75b8eec9
[  779.493281][T14870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  779.493304][T14870] RSP: 002b:00007f7c769a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  779.493326][T14870] RAX: ffffffffffffffda RBX: 00007f7c75de5fa0 RCX: 00007f7c75b8eec9
[  779.493342][T14870] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  779.493356][T14870] RBP: 00007f7c75c11f91 R08: 0000000000000000 R09: 0000000000000000
[  779.493371][T14870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  779.493384][T14870] R13: 00007f7c75de6038 R14: 00007f7c75de5fa0 R15: 00007ffe85249cd8
[  779.493426][T14870]  </TASK>
[  779.493437][T14870] sysctl could not get directory: /net/netfilter -12
[  781.538765][   T30] audit: type=1804 audit(1253.260:100): pid=14898 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1916" name="/newroot/74/file0" dev="tmpfs" ino=412 res=1 errno=0
[  782.826931][T14933] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  783.202885][T14930] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1922'.
[  784.509057][T14949] random: crng reseeded on system resumption
[  785.078180][T14970] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  786.406580][T14994] netlink: 146 bytes leftover after parsing attributes in process `syz.1.1930'.
[  788.267717][ T5887] usb usb38-port5: attempt power cycle
[  788.880774][ T5887] usb usb38-port5: unable to enumerate USB device
[  788.946825][T15009] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  789.713659][   T30] audit: type=1804 audit(1261.440:101): pid=15034 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1937" name="/newroot/81/file0" dev="tmpfs" ino=449 res=1 errno=0
[  791.539288][T15070] size and base must be multiples of 4 kiB
[  791.545137][T15070] CPU: 0 UID: 0 PID: 15070 Comm: syz.3.1941 Not tainted syzkaller #0 PREEMPT(full) 
[  791.545165][T15070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  791.545178][T15070] Call Trace:
[  791.545185][T15070]  <TASK>
[  791.545194][T15070]  dump_stack_lvl+0x16c/0x1f0
[  791.545231][T15070]  mtrr_del+0xd1/0x110
[  791.545254][T15070]  mtrr_ioctl+0x922/0xcf0
[  791.545278][T15070]  ? __pfx_mtrr_ioctl+0x10/0x10
[  791.545306][T15070]  ? find_held_lock+0x2b/0x80
[  791.545348][T15070]  ? __fget_files+0x20e/0x3c0
[  791.545378][T15070]  ? __pfx_mtrr_ioctl+0x10/0x10
[  791.545401][T15070]  proc_reg_unlocked_ioctl+0x229/0x320
[  791.545424][T15070]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[  791.545449][T15070]  __x64_sys_ioctl+0x18e/0x210
[  791.545475][T15070]  do_syscall_64+0xcd/0xfa0
[  791.545510][T15070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  791.545532][T15070] RIP: 0033:0x7f7c75b8eec9
[  791.545549][T15070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  791.545571][T15070] RSP: 002b:00007f7c76966038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  791.545591][T15070] RAX: ffffffffffffffda RBX: 00007f7c75de6180 RCX: 00007f7c75b8eec9
[  791.545606][T15070] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003
[  791.545619][T15070] RBP: 00007f7c75c11f91 R08: 0000000000000000 R09: 0000000000000000
[  791.545633][T15070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  791.545646][T15070] R13: 00007f7c75de6218 R14: 00007f7c75de6180 R15: 00007ffe85249cd8
[  791.545673][T15070]  </TASK>
[  792.447689][T15088] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1944'.
[  793.153109][T15098] FAULT_INJECTION: forcing a failure.
[  793.153109][T15098] name failslab, interval 1, probability 0, space 0, times 0
[  793.246558][T15098] CPU: 0 UID: 0 PID: 15098 Comm: syz.4.1946 Not tainted syzkaller #0 PREEMPT(full) 
[  793.246588][T15098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  793.246602][T15098] Call Trace:
[  793.246611][T15098]  <TASK>
[  793.246620][T15098]  dump_stack_lvl+0x16c/0x1f0
[  793.246657][T15098]  should_fail_ex+0x512/0x640
[  793.246692][T15098]  ? fs_reclaim_acquire+0xae/0x150
[  793.246719][T15098]  should_failslab+0xc2/0x120
[  793.246741][T15098]  __kmalloc_noprof+0xdd/0x880
[  793.246768][T15098]  ? tomoyo_encode2+0x100/0x3e0
[  793.246803][T15098]  ? tomoyo_encode2+0x100/0x3e0
[  793.246830][T15098]  tomoyo_encode2+0x100/0x3e0
[  793.246864][T15098]  tomoyo_encode+0x29/0x50
[  793.246892][T15098]  tomoyo_mount_acl+0x144/0x850
[  793.246919][T15098]  ? bpf_ksym_find+0x124/0x1c0
[  793.246952][T15098]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  793.246992][T15098]  ? is_bpf_text_address+0x94/0x1a0
[  793.247018][T15098]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  793.247046][T15098]  ? unwind_get_return_address+0x59/0xa0
[  793.247110][T15098]  ? tomoyo_domain+0xbb/0x150
[  793.247148][T15098]  ? tomoyo_profile+0x47/0x60
[  793.247185][T15098]  tomoyo_mount_permission+0x16d/0x420
[  793.247212][T15098]  ? tomoyo_mount_permission+0x14f/0x420
[  793.247243][T15098]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  793.247288][T15098]  security_sb_mount+0x9b/0x260
[  793.247314][T15098]  path_mount+0x158/0x23a0
[  793.247351][T15098]  ? __pfx_path_mount+0x10/0x10
[  793.247385][T15098]  ? kmem_cache_free+0x2d4/0x6c0
[  793.247414][T15098]  ? putname+0x154/0x1a0
[  793.247438][T15098]  ? putname+0x154/0x1a0
[  793.247455][T15098]  ? putname+0x154/0x1a0
[  793.247477][T15098]  ? __x64_sys_mount+0x293/0x310
[  793.247508][T15098]  __x64_sys_mount+0x293/0x310
[  793.247541][T15098]  ? __pfx___x64_sys_mount+0x10/0x10
[  793.247582][T15098]  do_syscall_64+0xcd/0xfa0
[  793.247617][T15098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  793.247638][T15098] RIP: 0033:0x7f61e2b8eec9
[  793.247656][T15098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  793.247677][T15098] RSP: 002b:00007f61e39af038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  793.247698][T15098] RAX: ffffffffffffffda RBX: 00007f61e2de5fa0 RCX: 00007f61e2b8eec9
[  793.247713][T15098] RDX: 0000200000000440 RSI: 0000200000000100 RDI: 0000000000000000
[  793.247726][T15098] RBP: 00007f61e2c11f91 R08: 0000000000000000 R09: 0000000000000000
[  793.247739][T15098] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000000
[  793.247752][T15098] R13: 00007f61e2de6038 R14: 00007f61e2de5fa0 R15: 00007ffe4c659ad8
[  793.247781][T15098]  </TASK>
[  793.817109][T15095] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  795.247250][T15113] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1949'.
[  796.101348][T15130] netlink: 186 bytes leftover after parsing attributes in process `syz.3.1952'.
[  796.696056][T15137] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1955'.
[  797.136641][T15140] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input16
[  797.244726][T15142] netlink: 212 bytes leftover after parsing attributes in process `syz.3.1957'.
[  797.596944][T15143] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  797.843568][T15151] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1958'.
[  798.967956][T15168] random: crng reseeded on system resumption
[  799.069267][T15172] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  799.154734][T13227] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  799.165031][T13227] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  799.173912][T13227] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  799.181847][T13227] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  799.189411][T13227] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  799.354069][T15172] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1963'.
[  800.641360][T15171] chnl_net:caif_netlink_parms(): no params data found
[  801.277190][T13227] Bluetooth: hci5: command tx timeout
[  801.739743][T15171] bridge0: port 1(bridge_slave_0) entered blocking state
[  801.807425][T15171] bridge0: port 1(bridge_slave_0) entered disabled state
[  801.815192][T15171] bridge_slave_0: entered allmulticast mode
[  801.833825][T15203] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  801.889997][T15171] bridge_slave_0: entered promiscuous mode
[  802.079027][T15171] bridge0: port 2(bridge_slave_1) entered blocking state
[  802.136075][T15171] bridge0: port 2(bridge_slave_1) entered disabled state
[  802.186618][T15171] bridge_slave_1: entered allmulticast mode
[  802.239212][T15171] bridge_slave_1: entered promiscuous mode
[  802.707898][T15206] syz.3.1968 uses obsolete (PF_INET,SOCK_PACKET)
[  802.880899][T15171] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  802.962467][T15171] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  803.181922][T15171] team0: Port device team_slave_0 added
[  803.281090][T15171] team0: Port device team_slave_1 added
[  803.356821][T13227] Bluetooth: hci5: command tx timeout
[  803.431766][T15171] batman_adv: batadv0: Adding interface: batadv_slave_0
[  803.480431][T15171] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  803.593470][T15171] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  803.735911][T15171] batman_adv: batadv0: Adding interface: batadv_slave_1
[  803.787187][T15171] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  803.939532][T15171] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  804.231863][T15171] hsr_slave_0: entered promiscuous mode
[  804.287839][T15171] hsr_slave_1: entered promiscuous mode
[  804.294017][T15171] debugfs: 'hsr0' already exists in 'hsr'
[  804.369750][T15171] Cannot create hsr debugfs directory
[  804.410301][T15213] random: crng reseeded on system resumption
[  804.492793][T15213] Restarting kernel threads ...
[  804.532977][T15213] Done restarting kernel threads.
[  805.008478][T15223] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1974'.
[  805.311404][T15171] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  805.337594][T15225] nfs4: Unknown parameter 'nfsd'
[  805.353345][T15171] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  805.419438][T15171] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  805.436830][T13227] Bluetooth: hci5: command tx timeout
[  805.482322][T15171] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  805.931798][T15237] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1977'.
[  806.002865][T15171] 8021q: adding VLAN 0 to HW filter on device bond0
[  806.119819][T15171] 8021q: adding VLAN 0 to HW filter on device team0
[  806.193744][ T3532] bridge0: port 1(bridge_slave_0) entered blocking state
[  806.200927][ T3532] bridge0: port 1(bridge_slave_0) entered forwarding state
[  806.232664][T15241] netlink: 268 bytes leftover after parsing attributes in process `syz.1.1978'.
[  806.328053][ T3532] bridge0: port 2(bridge_slave_1) entered blocking state
[  806.335212][ T3532] bridge0: port 2(bridge_slave_1) entered forwarding state
[  807.517143][T13227] Bluetooth: hci5: command tx timeout
[  807.823829][T15171] 8021q: adding VLAN 0 to HW filter on device batadv0
[  809.134664][T15275] ovs_��: entered promiscuous mode
[  809.879154][T15171] veth0_vlan: entered promiscuous mode
[  809.922413][T15171] veth1_vlan: entered promiscuous mode
[  810.016349][T15171] veth0_macvtap: entered promiscuous mode
[  810.098639][T15171] veth1_macvtap: entered promiscuous mode
[  810.128456][T15293] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  810.259675][T15171] batman_adv: batadv0: Interface activated: batadv_slave_0
[  810.315506][T15171] batman_adv: batadv0: Interface activated: batadv_slave_1
[  810.370590][T15283] Process accounting resumed
[  810.464483][   T36] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  810.501671][   T36] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  810.573267][   T36] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  810.646312][   T36] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  810.777393][T15302] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  810.909875][T15299] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  811.180983][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  811.264846][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  811.545188][T12492] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  811.618800][T12492] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  812.150204][T15320] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1959'.
[  813.842576][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  813.849088][ T1300] ieee802154 phy1 wpan1: encryption failed: -22

syzkaller
syzkaller login: [  814.857533][T15364] block nbd9: NBD_DISCONNECT
[  816.010884][T15379] random: crng reseeded on system resumption
[  816.031528][T15368] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  816.720227][T15368] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  817.125739][T15388] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  817.357552][T15392] futex_wake_op: syz.1.2008 tries to shift op by -9; fix this program
[  817.400406][T15368] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  817.660986][T15368] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  817.858073][T15396] random: crng reseeded on system resumption
[  819.486979][T15417] program syz.4.2017 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  819.525938][T15415] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  822.496125][T15459] netlink: 'syz.1.2026': attribute type 1 has an invalid length.
[  822.551974][T15459] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2026'.
[  822.615837][T15461] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2026'.
[  823.084397][T15465] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2028'.
[  824.293799][T15482] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2032'.
[  824.871001][   T30] audit: type=1800 audit(1296.600:102): pid=15489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2032" name="dbroot" dev="configfs" ino=55426 res=0 errno=0
[  825.978471][T15496] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2035'.
[  826.881683][T15503] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  827.042617][T15500] batman_adv: Routing algorithm '' is not supported
[  827.177050][T15502] netlink: 268 bytes leftover after parsing attributes in process `syz.4.2037'.
[  827.936959][T15520] random: crng reseeded on system resumption
[  828.299221][T15520] FAULT_INJECTION: forcing a failure.
[  828.299221][T15520] name fail_futex, interval 1, probability 0, space 0, times 0
[  828.397547][T15525] netlink: 98 bytes leftover after parsing attributes in process `syz.4.2043'.
[  828.406645][T15520] CPU: 0 UID: 0 PID: 15520 Comm: syz.5.2042 Not tainted syzkaller #0 PREEMPT(full) 
[  828.406674][T15520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  828.406689][T15520] Call Trace:
[  828.406697][T15520]  <TASK>
[  828.406706][T15520]  dump_stack_lvl+0x16c/0x1f0
[  828.406745][T15520]  should_fail_ex+0x512/0x640
[  828.406788][T15520]  get_futex_key+0x1d0/0x1560
[  828.406830][T15520]  ? __pfx_get_futex_key+0x10/0x10
[  828.406878][T15520]  futex_wake+0xea/0x530
[  828.406909][T15520]  ? __pfx_futex_wake+0x10/0x10
[  828.406937][T15520]  ? rcu_is_watching+0x12/0xc0
[  828.406981][T15520]  do_futex+0x1e3/0x350
[  828.407005][T15520]  ? __pfx_do_futex+0x10/0x10
[  828.407028][T15520]  ? __fput+0x68d/0xb70
[  828.407051][T15520]  ? __pfx___might_resched+0x10/0x10
[  828.407088][T15520]  __x64_sys_futex+0x1e0/0x4c0
[  828.407113][T15520]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  828.407148][T15520]  ? __pfx___x64_sys_futex+0x10/0x10
[  828.407172][T15520]  ? xfd_validate_state+0x61/0x180
[  828.407197][T15520]  ? __pfx___do_sys_close_range+0x10/0x10
[  828.407239][T15520]  do_syscall_64+0xcd/0xfa0
[  828.407275][T15520]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.407299][T15520] RIP: 0033:0x7fa5ba18eec9
[  828.407325][T15520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  828.407348][T15520] RSP: 002b:00007fa5bb06a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  828.407370][T15520] RAX: ffffffffffffffda RBX: 00007fa5ba3e5fa8 RCX: 00007fa5ba18eec9
[  828.407385][T15520] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa5ba3e5fac
[  828.407400][T15520] RBP: 00007fa5ba3e5fa0 R08: 00007fa5bb06b000 R09: 0000000000000000
[  828.407414][T15520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  828.407428][T15520] R13: 00007fa5ba3e6038 R14: 00007ffcd8a2ecd0 R15: 00007ffcd8a2edb8
[  828.407458][T15520]  </TASK>
[  830.927156][T15536] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2045'.
[  832.263187][T15556] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2051'.
[  832.979928][T15566] 0x000200000001-0xa29656a63616329 : ""
[  833.098846][T15566] mtd: partition "" is out of reach -- disabled
[  833.220256][T15566] ftl_cs: FTL header not found.
[  833.991006][T15581] IPVS: length: 131 != 8
[  835.796242][T15605] FAULT_INJECTION: forcing a failure.
[  835.796242][T15605] name failslab, interval 1, probability 0, space 0, times 0
[  835.818720][T15608] blktrace: Concurrent blktraces are not allowed on nbd3
[  835.999044][T15605] CPU: 0 UID: 0 PID: 15605 Comm: syz.4.2062 Not tainted syzkaller #0 PREEMPT(full) 
[  835.999085][T15605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  835.999097][T15605] Call Trace:
[  835.999104][T15605]  <TASK>
[  835.999112][T15605]  dump_stack_lvl+0x16c/0x1f0
[  835.999148][T15605]  should_fail_ex+0x512/0x640
[  835.999180][T15605]  ? __kmalloc_cache_node_noprof+0x62/0x7a0
[  835.999215][T15605]  should_failslab+0xc2/0x120
[  835.999235][T15605]  __kmalloc_cache_node_noprof+0x75/0x7a0
[  835.999266][T15605]  ? tracing_mark_open+0x44f/0x6f0
[  835.999297][T15605]  ? tracing_mark_open+0x44f/0x6f0
[  835.999321][T15605]  tracing_mark_open+0x44f/0x6f0
[  835.999351][T15605]  do_dentry_open+0x982/0x1530
[  835.999383][T15605]  ? __pfx_tracing_mark_open+0x10/0x10
[  835.999414][T15605]  vfs_open+0x82/0x3f0
[  835.999438][T15605]  path_openat+0x1de4/0x2cb0
[  835.999479][T15605]  ? __pfx_path_openat+0x10/0x10
[  835.999518][T15605]  ? __lock_acquire+0xb8a/0x1c90
[  835.999542][T15605]  do_filp_open+0x20b/0x470
[  835.999573][T15605]  ? __pfx_do_filp_open+0x10/0x10
[  835.999621][T15605]  ? alloc_fd+0x471/0x7d0
[  835.999655][T15605]  do_sys_openat2+0x11b/0x1d0
[  835.999678][T15605]  ? __pfx_do_sys_openat2+0x10/0x10
[  835.999711][T15605]  __x64_sys_openat+0x174/0x210
[  835.999735][T15605]  ? __pfx___x64_sys_openat+0x10/0x10
[  835.999768][T15605]  do_syscall_64+0xcd/0xfa0
[  835.999801][T15605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  835.999826][T15605] RIP: 0033:0x7f61e2b8eec9
[  835.999842][T15605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  835.999863][T15605] RSP: 002b:00007f61e39af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  835.999883][T15605] RAX: ffffffffffffffda RBX: 00007f61e2de5fa0 RCX: 00007f61e2b8eec9
[  835.999897][T15605] RDX: 0000000000000402 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  835.999910][T15605] RBP: 00007f61e2c11f91 R08: 0000000000000000 R09: 0000000000000000
[  835.999923][T15605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  835.999935][T15605] R13: 00007f61e2de6038 R14: 00007f61e2de5fa0 R15: 00007ffe4c659ad8
[  835.999963][T15605]  </TASK>
[  839.334041][T15633] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  839.629943][T15646] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2070'.
[  840.483138][T15650] Process accounting paused
[  841.339759][T15663] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2074'.
[  843.686625][T15684] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2080'.
[  843.819643][T15687] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied.
[  844.381048][T15695] blktrace: Concurrent blktraces are not allowed on nbd3
[  844.847430][T15701] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2083'.
[  847.848318][T15738] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input17
[  848.506840][T15745] random: crng reseeded on system resumption
[  848.671877][T15736] Process accounting resumed
[  848.777106][T15745] FAULT_INJECTION: forcing a failure.
[  848.777106][T15745] name failslab, interval 1, probability 0, space 0, times 0
[  848.904881][T15745] CPU: 0 UID: 0 PID: 15745 Comm: syz.4.2094 Not tainted syzkaller #0 PREEMPT(full) 
[  848.904912][T15745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  848.904925][T15745] Call Trace:
[  848.904933][T15745]  <TASK>
[  848.904941][T15745]  dump_stack_lvl+0x16c/0x1f0
[  848.904978][T15745]  should_fail_ex+0x512/0x640
[  848.905012][T15745]  ? __kmalloc_cache_noprof+0x5f/0x780
[  848.905043][T15745]  should_failslab+0xc2/0x120
[  848.905065][T15745]  __kmalloc_cache_noprof+0x72/0x780
[  848.905093][T15745]  ? copy_mount_options+0x55/0x190
[  848.905129][T15745]  ? copy_mount_options+0x55/0x190
[  848.905150][T15745]  copy_mount_options+0x55/0x190
[  848.905173][T15745]  __x64_sys_mount+0x1ab/0x310
[  848.905206][T15745]  ? __pfx___x64_sys_mount+0x10/0x10
[  848.905248][T15745]  do_syscall_64+0xcd/0xfa0
[  848.905281][T15745]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  848.905303][T15745] RIP: 0033:0x7f61e2b8eec9
[  848.905320][T15745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  848.905341][T15745] RSP: 002b:00007f61e39af038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  848.905362][T15745] RAX: ffffffffffffffda RBX: 00007f61e2de5fa0 RCX: 00007f61e2b8eec9
[  848.905376][T15745] RDX: 0000200000000140 RSI: 0000000000000000 RDI: 00002000000000c0
[  848.905390][T15745] RBP: 00007f61e2c11f91 R08: 0000200000000180 R09: 0000000000000000
[  848.905404][T15745] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000000
[  848.905417][T15745] R13: 00007f61e2de6038 R14: 00007f61e2de5fa0 R15: 00007ffe4c659ad8
[  848.905445][T15745]  </TASK>
[  850.085526][T15746] Unrecognized hibernate image header format!
[  850.126510][T15746] PM: hibernation: Image mismatch: architecture specific data
[  850.668179][T15765] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  851.558005][T15773] FAULT_INJECTION: forcing a failure.
[  851.558005][T15773] name failslab, interval 1, probability 0, space 0, times 0
[  851.876539][T15773] CPU: 0 UID: 0 PID: 15773 Comm: syz.5.2099 Not tainted syzkaller #0 PREEMPT(full) 
[  851.876572][T15773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  851.876587][T15773] Call Trace:
[  851.876595][T15773]  <TASK>
[  851.876604][T15773]  dump_stack_lvl+0x16c/0x1f0
[  851.876644][T15773]  should_fail_ex+0x512/0x640
[  851.876682][T15773]  ? fs_reclaim_acquire+0xae/0x150
[  851.876706][T15773]  should_failslab+0xc2/0x120
[  851.876729][T15773]  kmem_cache_alloc_noprof+0x75/0x6e0
[  851.876761][T15773]  ? __pfx_map_id_range_down+0x10/0x10
[  851.876796][T15773]  ? security_inode_alloc+0x3b/0x2b0
[  851.876827][T15773]  ? security_inode_alloc+0x3b/0x2b0
[  851.876851][T15773]  security_inode_alloc+0x3b/0x2b0
[  851.876878][T15773]  inode_init_always_gfp+0xce4/0x1030
[  851.876915][T15773]  alloc_inode+0x86/0x240
[  851.876939][T15773]  sock_alloc+0x40/0x280
[  851.876961][T15773]  do_accept+0xf7/0x530
[  851.876990][T15773]  ? do_raw_spin_lock+0x12c/0x2b0
[  851.877020][T15773]  ? __pfx_do_accept+0x10/0x10
[  851.877068][T15773]  __sys_accept4+0x100/0x1c0
[  851.877097][T15773]  ? __pfx___sys_accept4+0x10/0x10
[  851.877135][T15773]  __x64_sys_accept+0x74/0xb0
[  851.877164][T15773]  ? lockdep_hardirqs_on+0x7c/0x110
[  851.877198][T15773]  do_syscall_64+0xcd/0xfa0
[  851.877234][T15773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  851.877257][T15773] RIP: 0033:0x7fa5ba18eec9
[  851.877276][T15773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  851.877299][T15773] RSP: 002b:00007fa5bb06a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  851.877320][T15773] RAX: ffffffffffffffda RBX: 00007fa5ba3e5fa0 RCX: 00007fa5ba18eec9
[  851.877336][T15773] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  851.877350][T15773] RBP: 00007fa5ba211f91 R08: 0000000000000000 R09: 0000000000000000
[  851.877364][T15773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  851.877378][T15773] R13: 00007fa5ba3e6038 R14: 00007fa5ba3e5fa0 R15: 00007ffcd8a2edb8
[  851.877408][T15773]  </TASK>
[  852.090508][    C0] vkms_vblank_simulate: vblank timer overrun
[  855.628939][T15808] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2106'.
[  857.067792][T13227] Bluetooth: hci5: unexpected event 0x3e length: 508 > 260
[  857.067847][T13227] Bluetooth: hci5: unexpected subevent 0x02 length: 507 > 260
[  857.067884][T13227] Bluetooth: hci5: Dropping invalid advertising data
[  857.067925][T13227] Bluetooth: hci5: Dropping invalid advertising data
[  857.067938][T13227] Bluetooth: hci5: Dropping invalid advertising data
[  857.068117][T13227] Bluetooth: hci5: unknown advertising packet type: 0x10
[  857.068133][T13227] Bluetooth: hci5: Malformed LE Event: 0x02
[  857.155456][T15830] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2109'.
[  857.178721][T15830] netlink: 93 bytes leftover after parsing attributes in process `syz.4.2109'.
[  859.898015][T15839] blktrace: Concurrent blktraces are not allowed on nbd3
[  861.033511][T15848] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  861.372835][T15847] netlink: 268 bytes leftover after parsing attributes in process `syz.1.2114'.
[  862.318630][T15859] random: crng reseeded on system resumption
[  862.605580][T15866] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  862.635523][T15867] blktrace: Concurrent blktraces are not allowed on nbd3
[  862.885536][T15869] futex_wake_op: syz.4.2120 tries to shift op by -9; fix this program
[  864.052359][T15876] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2122'.
[  864.799589][T15884] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2124'.
[  866.060270][T15905] random: crng reseeded on system resumption
[  866.265076][T15903] Restarting kernel threads ...
[  866.306908][T15903] Done restarting kernel threads.
[  866.898764][T15913] random: crng reseeded on system resumption
[  867.179913][T15918] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  867.357237][T15917] sd 0:0:1:0: PR command failed: 1026
[  867.396529][T15917] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  867.462040][T15924] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  867.535588][T15917] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  867.625624][T15915] netlink: 268 bytes leftover after parsing attributes in process `syz.5.2131'.
[  868.818310][T15943] FAULT_INJECTION: forcing a failure.
[  868.818310][T15943] name fail_futex, interval 1, probability 0, space 0, times 0
[  868.950331][T15943] CPU: 0 UID: 0 PID: 15943 Comm: syz.4.2139 Not tainted syzkaller #0 PREEMPT(full) 
[  868.950362][T15943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  868.950375][T15943] Call Trace:
[  868.950382][T15943]  <TASK>
[  868.950391][T15943]  dump_stack_lvl+0x16c/0x1f0
[  868.950428][T15943]  should_fail_ex+0x512/0x640
[  868.950467][T15943]  get_futex_key+0x1d0/0x1560
[  868.950506][T15943]  ? __pfx_get_futex_key+0x10/0x10
[  868.950544][T15943]  ? import_iovec+0x86/0xb0
[  868.950569][T15943]  futex_wake+0xea/0x530
[  868.950598][T15943]  ? __pfx_futex_wake+0x10/0x10
[  868.950624][T15943]  ? __pfx_vfs_writev+0x10/0x10
[  868.950664][T15943]  do_futex+0x1e3/0x350
[  868.950686][T15943]  ? __pfx_do_futex+0x10/0x10
[  868.950715][T15943]  __x64_sys_futex+0x1e0/0x4c0
[  868.950741][T15943]  ? __pfx___x64_sys_futex+0x10/0x10
[  868.950764][T15943]  ? __pfx_do_writev+0x10/0x10
[  868.950800][T15943]  do_syscall_64+0xcd/0xfa0
[  868.950834][T15943]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  868.950856][T15943] RIP: 0033:0x7f61e2b8eec9
[  868.950873][T15943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  868.950896][T15943] RSP: 002b:00007f61e394c0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  868.950915][T15943] RAX: ffffffffffffffda RBX: 00007f61e2de6278 RCX: 00007f61e2b8eec9
[  868.950930][T15943] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f61e2de627c
[  868.950950][T15943] RBP: 00007f61e2de6270 R08: 00007f61e39b0000 R09: 0000000000000000
[  868.950964][T15943] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  868.950978][T15943] R13: 00007f61e2de6308 R14: 00007ffe4c6599f0 R15: 00007ffe4c659ad8
[  868.951006][T15943]  </TASK>
[  869.681212][T15957] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  870.132042][T15965] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  870.238389][T15965] netlink: 268 bytes leftover after parsing attributes in process `syz.1.2144'.
[  871.343816][T15982] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2150'.
[  871.559257][T15986] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2152'.
[  872.364068][T15993] netlink: zone id is out of range
[  872.496725][T15993] netlink: zone id is out of range
[  872.501895][T15993] netlink: zone id is out of range
[  872.779174][T15993] netlink: zone id is out of range
[  872.884653][T15993] netlink: zone id is out of range
[  872.936658][T15993] netlink: zone id is out of range
[  872.941809][T15993] netlink: zone id is out of range
[  873.023007][T15993] netlink: zone id is out of range
[  873.076507][T15993] netlink: zone id is out of range
[  873.140291][T15993] netlink: zone id is out of range
[  873.938780][T16010] random: crng reseeded on system resumption
[  874.097002][T16013] FAULT_INJECTION: forcing a failure.
[  874.097002][T16013] name failslab, interval 1, probability 0, space 0, times 0
[  874.133240][   T52] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  874.154263][   T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  874.165569][   T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  874.175479][   T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  874.183907][   T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  874.259445][T16013] CPU: 0 UID: 0 PID: 16013 Comm: syz.5.2159 Not tainted syzkaller #0 PREEMPT(full) 
[  874.259477][T16013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  874.259492][T16013] Call Trace:
[  874.259499][T16013]  <TASK>
[  874.259508][T16013]  dump_stack_lvl+0x16c/0x1f0
[  874.259547][T16013]  should_fail_ex+0x512/0x640
[  874.259585][T16013]  ? __kmalloc_cache_noprof+0x5f/0x780
[  874.259618][T16013]  should_failslab+0xc2/0x120
[  874.259641][T16013]  __kmalloc_cache_noprof+0x72/0x780
[  874.259671][T16013]  ? copy_mount_options+0x55/0x190
[  874.259699][T16013]  ? copy_mount_options+0x55/0x190
[  874.259721][T16013]  copy_mount_options+0x55/0x190
[  874.259746][T16013]  __x64_sys_mount+0x1ab/0x310
[  874.259782][T16013]  ? __pfx___x64_sys_mount+0x10/0x10
[  874.259826][T16013]  do_syscall_64+0xcd/0xfa0
[  874.259862][T16013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  874.259885][T16013] RIP: 0033:0x7fa5ba18eec9
[  874.259903][T16013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  874.259926][T16013] RSP: 002b:00007fa5bb049038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  874.259948][T16013] RAX: ffffffffffffffda RBX: 00007fa5ba3e6090 RCX: 00007fa5ba18eec9
[  874.259964][T16013] RDX: 0000200000000140 RSI: 0000000000000000 RDI: 00002000000000c0
[  874.259980][T16013] RBP: 00007fa5ba211f91 R08: 0000200000000180 R09: 0000000000000000
[  874.259994][T16013] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000000
[  874.260008][T16013] R13: 00007fa5ba3e6128 R14: 00007fa5ba3e6090 R15: 00007ffcd8a2edb8
[  874.260038][T16013]  </TASK>
[  874.691750][T16017] Unrecognized hibernate image header format!
[  874.821177][T16017] PM: hibernation: Image mismatch: architecture specific data
[  875.203599][   T36] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  875.283499][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  875.290449][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  875.510152][   T36] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  875.906644][   T36] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  876.237277][T13227] Bluetooth: hci1: command tx timeout
[  876.301137][   T36] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  877.186723][   T36] bridge_slave_1: left allmulticast mode
[  877.193084][   T36] bridge_slave_1: left promiscuous mode
[  877.298435][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  877.477961][   T36] bridge_slave_0: left allmulticast mode
[  877.495814][T16034] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  877.545587][   T36] bridge_slave_0: left promiscuous mode
[  877.563427][T16035] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  877.586439][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  878.316514][T13227] Bluetooth: hci1: command tx timeout
[  880.401523][T13227] Bluetooth: hci1: command tx timeout
[  880.856716][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  880.926929][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  880.994804][   T36] bond0 (unregistering): Released all slaves
[  881.177834][T16011] chnl_net:caif_netlink_parms(): no params data found
[  881.999821][T16083] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  882.486468][T13227] Bluetooth: hci1: command tx timeout
[  882.618602][T16011] bridge0: port 1(bridge_slave_0) entered blocking state
[  882.662612][T16011] bridge0: port 1(bridge_slave_0) entered disabled state
[  882.719446][T16011] bridge_slave_0: entered allmulticast mode
[  882.785664][T16011] bridge_slave_0: entered promiscuous mode
[  882.996594][T16011] bridge0: port 2(bridge_slave_1) entered blocking state
[  883.003745][T16011] bridge0: port 2(bridge_slave_1) entered disabled state
[  883.138184][T16011] bridge_slave_1: entered allmulticast mode
[  883.210362][T16011] bridge_slave_1: entered promiscuous mode
[  883.783394][T16011] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  884.040351][T16011] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  884.517543][T16109] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2172'.
[  884.675570][T16011] team0: Port device team_slave_0 added
[  884.761154][T16011] team0: Port device team_slave_1 added
[  885.016929][T16011] batman_adv: batadv0: Adding interface: batadv_slave_0
[  885.061578][T16011] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  885.281693][T16011] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  885.474636][T16011] batman_adv: batadv0: Adding interface: batadv_slave_1
[  885.553626][T16011] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  885.736230][T16011] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  886.537808][T16011] hsr_slave_0: entered promiscuous mode
[  886.578719][T16011] hsr_slave_1: entered promiscuous mode
[  886.641781][T16011] debugfs: 'hsr0' already exists in 'hsr'
[  886.656436][   T30] audit: type=1804 audit(1358.380:103): pid=16129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2175" name="/newroot/145/file0" dev="tmpfs" ino=794 res=1 errno=0
[  886.706533][T16011] Cannot create hsr debugfs directory
[  886.907164][   T36] hsr_slave_0: left promiscuous mode
[  886.978478][   T36] hsr_slave_1: left promiscuous mode
[  887.012979][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  887.068725][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  887.137282][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  887.180566][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  887.367929][   T36] veth1_macvtap: left promiscuous mode
[  887.373974][   T36] veth0_macvtap: left promiscuous mode
[  887.462599][   T36] veth1_vlan: left promiscuous mode
[  887.506967][   T36] veth0_vlan: left promiscuous mode
[  890.923224][   T36] team0 (unregistering): Port device team_slave_1 removed
[  891.263628][   T52] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  891.273377][   T52] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  891.283675][   T52] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  891.291691][   T52] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  891.299406][   T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  891.417455][   T36] team0 (unregistering): Port device team_slave_0 removed
[  893.107337][T16160] blktrace: Concurrent blktraces are not allowed on nbd3
[  893.356600][T16156] Bluetooth: hci2: command tx timeout
[  894.956857][T16168] block nbd9: NBD_DISCONNECT
[  895.437035][T16156] Bluetooth: hci2: command tx timeout
[  895.799110][   T36] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  896.479213][   T36] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  897.048249][   T36] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  897.395483][   T36] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  897.516715][T16156] Bluetooth: hci2: command tx timeout
[  897.895386][T16154] chnl_net:caif_netlink_parms(): no params data found
[  898.505385][T16011] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  898.663852][T16011] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  898.725740][T16011] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  898.805912][   T36] netdevsim netdevsim15 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  898.927049][T16011] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  899.340278][T16154] bridge0: port 1(bridge_slave_0) entered blocking state
[  899.348989][T16220] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  899.397679][T16154] bridge0: port 1(bridge_slave_0) entered disabled state
[  899.439989][T16154] bridge_slave_0: entered allmulticast mode
[  899.494922][T16154] bridge_slave_0: entered promiscuous mode
[  899.560000][T16154] bridge0: port 2(bridge_slave_1) entered blocking state
[  899.597922][T16156] Bluetooth: hci2: command tx timeout
[  899.616155][T16215] netlink: 268 bytes leftover after parsing attributes in process `syz.5.2184'.
[  899.627709][T16154] bridge0: port 2(bridge_slave_1) entered disabled state
[  899.634918][T16154] bridge_slave_1: entered allmulticast mode
[  899.734900][T16154] bridge_slave_1: entered promiscuous mode
[  900.338604][T16154] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  900.450497][T16154] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  900.731335][T16240] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  901.046987][T16239] netlink: 268 bytes leftover after parsing attributes in process `syz.5.2186'.
[  901.604731][   T30] audit: type=1400 audit(1373.330:104): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=16250 comm="syz.4.2188"
[  902.465880][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  902.547716][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  902.581618][   T36] bond0 (unregistering): Released all slaves
[  902.830869][T16239] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  902.884462][   T36] ovs_: left promiscuous mode
[  902.890149][T16239] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  902.946813][T16239] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  902.979909][T16154] team0: Port device team_slave_0 added
[  903.098500][   T36] ovs_��: left promiscuous mode
[  903.209475][T16154] team0: Port device team_slave_1 added
[  903.276145][   T36] tipc: Left network mode
[  903.559859][T16154] batman_adv: batadv0: Adding interface: batadv_slave_0
[  903.577679][T16273] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2189'.
[  903.625778][T16154] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  903.730809][T16154] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  903.796761][T16154] batman_adv: batadv0: Adding interface: batadv_slave_1
[  903.835472][T16154] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  903.959375][T16154] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  904.267861][T16011] 8021q: adding VLAN 0 to HW filter on device bond0
[  904.552939][T16285] random: crng reseeded on system resumption
[  904.672687][T16154] hsr_slave_0: entered promiscuous mode
[  904.682971][T16288] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  904.724629][T16154] hsr_slave_1: entered promiscuous mode
[  904.764678][T16290] FAULT_INJECTION: forcing a failure.
[  904.764678][T16290] name failslab, interval 1, probability 0, space 0, times 0
[  904.779969][T16154] debugfs: 'hsr0' already exists in 'hsr'
[  904.785711][T16154] Cannot create hsr debugfs directory
[  904.865927][T16290] CPU: 0 UID: 0 PID: 16290 Comm: syz.5.2191 Not tainted syzkaller #0 PREEMPT(full) 
[  904.865956][T16290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  904.865969][T16290] Call Trace:
[  904.865976][T16290]  <TASK>
[  904.865984][T16290]  dump_stack_lvl+0x16c/0x1f0
[  904.866018][T16290]  should_fail_ex+0x512/0x640
[  904.866156][T16290]  ? __kmalloc_cache_noprof+0x5f/0x780
[  904.866189][T16290]  should_failslab+0xc2/0x120
[  904.866211][T16290]  __kmalloc_cache_noprof+0x72/0x780
[  904.866239][T16290]  ? copy_mount_options+0x55/0x190
[  904.866265][T16290]  ? copy_mount_options+0x55/0x190
[  904.866285][T16290]  copy_mount_options+0x55/0x190
[  904.866310][T16290]  __x64_sys_mount+0x1ab/0x310
[  904.866345][T16290]  ? __pfx___x64_sys_mount+0x10/0x10
[  904.866391][T16290]  do_syscall_64+0xcd/0xfa0
[  904.866427][T16290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  904.866449][T16290] RIP: 0033:0x7fa5ba18eec9
[  904.866467][T16290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  904.866488][T16290] RSP: 002b:00007fa5bb049038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  904.866508][T16290] RAX: ffffffffffffffda RBX: 00007fa5ba3e6090 RCX: 00007fa5ba18eec9
[  904.866524][T16290] RDX: 0000200000000140 RSI: 0000000000000000 RDI: 00002000000000c0
[  904.866537][T16290] RBP: 00007fa5ba211f91 R08: 0000200000000180 R09: 0000000000000000
[  904.866551][T16290] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000000
[  904.866565][T16290] R13: 00007fa5ba3e6128 R14: 00007fa5ba3e6090 R15: 00007ffcd8a2edb8
[  904.866593][T16290]  </TASK>
[  905.216552][T16286] netlink: 268 bytes leftover after parsing attributes in process `syz.4.2190'.
[  905.252920][T16011] 8021q: adding VLAN 0 to HW filter on device team0
[  905.818798][T16286] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  905.869813][T16286] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  905.937322][T16286] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  905.988788][   T36] hsr_slave_0: left promiscuous mode
[  905.995218][T16285] Unrecognized hibernate image header format!
[  906.071148][T16285] PM: hibernation: Image mismatch: architecture specific data
[  906.089289][   T36] hsr_slave_1: left promiscuous mode
[  906.121789][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  906.188630][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  906.248258][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  906.255693][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  906.392465][   T36] veth1_macvtap: left promiscuous mode
[  906.465001][   T36] veth1_vlan: left promiscuous mode
[  906.496601][   T36] veth0_vlan: left promiscuous mode
[  907.763944][   T36] team0 (unregistering): Port device team_slave_1 removed
[  907.887590][   T36] team0 (unregistering): Port device team_slave_0 removed
[  909.096858][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  909.103985][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  909.158339][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  909.165471][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  909.483714][T16011] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  910.504453][T16154] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  910.569984][T16154] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  910.668455][T16154] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  910.740074][T16154] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  910.864203][T16011] 8021q: adding VLAN 0 to HW filter on device batadv0
[  910.873543][T16331] random: crng reseeded on system resumption
[  911.035402][T16331] FAULT_INJECTION: forcing a failure.
[  911.035402][T16331] name failslab, interval 1, probability 0, space 0, times 0
[  911.144277][T16331] CPU: 0 UID: 0 PID: 16331 Comm: syz.5.2193 Not tainted syzkaller #0 PREEMPT(full) 
[  911.144307][T16331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  911.144321][T16331] Call Trace:
[  911.144328][T16331]  <TASK>
[  911.144337][T16331]  dump_stack_lvl+0x16c/0x1f0
[  911.144380][T16331]  should_fail_ex+0x512/0x640
[  911.144415][T16331]  ? __kmalloc_cache_noprof+0x5f/0x780
[  911.144446][T16331]  should_failslab+0xc2/0x120
[  911.144468][T16331]  __kmalloc_cache_noprof+0x72/0x780
[  911.144497][T16331]  ? copy_mount_options+0x55/0x190
[  911.144522][T16331]  ? copy_mount_options+0x55/0x190
[  911.144542][T16331]  copy_mount_options+0x55/0x190
[  911.144565][T16331]  __x64_sys_mount+0x1ab/0x310
[  911.144598][T16331]  ? __pfx___x64_sys_mount+0x10/0x10
[  911.144639][T16331]  do_syscall_64+0xcd/0xfa0
[  911.144694][T16331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  911.144717][T16331] RIP: 0033:0x7fa5ba18eec9
[  911.144735][T16331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  911.144759][T16331] RSP: 002b:00007fa5bb06a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  911.144780][T16331] RAX: ffffffffffffffda RBX: 00007fa5ba3e5fa0 RCX: 00007fa5ba18eec9
[  911.144796][T16331] RDX: 0000200000000140 RSI: 0000000000000000 RDI: 00002000000000c0
[  911.144811][T16331] RBP: 00007fa5ba211f91 R08: 0000200000000180 R09: 0000000000000000
[  911.144825][T16331] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000000
[  911.144839][T16331] R13: 00007fa5ba3e6038 R14: 00007fa5ba3e5fa0 R15: 00007ffcd8a2edb8
[  911.144869][T16331]  </TASK>
[  911.852194][T16011] veth0_vlan: entered promiscuous mode
[  911.962306][T16011] veth1_vlan: entered promiscuous mode
[  912.171500][T16011] veth0_macvtap: entered promiscuous mode
[  912.245921][T16154] 8021q: adding VLAN 0 to HW filter on device bond0
[  912.326893][T16011] veth1_macvtap: entered promiscuous mode
[  912.385212][T16154] 8021q: adding VLAN 0 to HW filter on device team0
[  912.506481][T16331] Unrecognized hibernate image header format!
[  912.512591][T16331] PM: hibernation: Image mismatch: architecture specific data
[  912.555932][T12492] bridge0: port 1(bridge_slave_0) entered blocking state
[  912.563129][T12492] bridge0: port 1(bridge_slave_0) entered forwarding state
[  912.663052][T16011] batman_adv: batadv0: Interface activated: batadv_slave_0
[  912.955130][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  912.962357][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  913.073111][T16011] batman_adv: batadv0: Interface activated: batadv_slave_1
[  913.338372][   T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  913.387030][   T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  913.566815][   T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  913.611785][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  914.200897][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  914.284261][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  914.457097][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  914.526401][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  914.990661][T16377] netlink: 342 bytes leftover after parsing attributes in process `syz.1.2155'.
[  915.237065][T16385] random: crng reseeded on system resumption
[  915.299874][T16381] nbd: must specify a size in bytes for the device
[  915.423081][T16154] 8021q: adding VLAN 0 to HW filter on device batadv0
[  915.509654][T16391] Unrecognized hibernate image header format!
[  915.515754][T16391] PM: hibernation: Image mismatch: architecture specific data
[  915.899565][T16398] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  916.151886][T16396] netlink: 268 bytes leftover after parsing attributes in process `syz.5.2199'.
[  917.066138][T16412] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2201'.
[  917.329167][T16420] vhci_hcd: SetHubDepth req not supported for USB 2.0 roothub
[  917.362560][T16154] veth0_vlan: entered promiscuous mode
[  917.461412][T16154] veth1_vlan: entered promiscuous mode
[  917.845273][T16154] veth0_macvtap: entered promiscuous mode
[  917.907446][T16154] veth1_macvtap: entered promiscuous mode
[  918.047926][T16428] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2203'.
[  918.077990][T16154] batman_adv: batadv0: Interface activated: batadv_slave_0
[  918.144486][T16154] batman_adv: batadv0: Interface activated: batadv_slave_1
[  918.273934][T12492] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  918.331424][T12492] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  918.405873][T12492] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  918.449569][T16434] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2204'.
[  918.464299][T16436] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18
[  918.490330][T12492] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  918.921947][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  919.019839][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  919.229800][T16438] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19
[  919.244108][T12492] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  919.317594][T16447] blktrace: Concurrent blktraces are not allowed on nbd3
[  919.339151][T12492] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  919.585297][T16440] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  919.767744][T16453] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2207'.
[  920.009569][T16456] random: crng reseeded on system resumption
[  920.191139][T16456] FAULT_INJECTION: forcing a failure.
[  920.191139][T16456] name failslab, interval 1, probability 0, space 0, times 0
[  920.279137][T16456] CPU: 0 UID: 0 PID: 16456 Comm: syz.6.2179 Not tainted syzkaller #0 PREEMPT(full) 
[  920.279169][T16456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  920.279184][T16456] Call Trace:
[  920.279192][T16456]  <TASK>
[  920.279201][T16456]  dump_stack_lvl+0x16c/0x1f0
[  920.279240][T16456]  should_fail_ex+0x512/0x640
[  920.279277][T16456]  ? __kmalloc_cache_noprof+0x5f/0x780
[  920.279310][T16456]  should_failslab+0xc2/0x120
[  920.279333][T16456]  __kmalloc_cache_noprof+0x72/0x780
[  920.279364][T16456]  ? copy_mount_options+0x55/0x190
[  920.279397][T16456]  ? copy_mount_options+0x55/0x190
[  920.279419][T16456]  copy_mount_options+0x55/0x190
[  920.279444][T16456]  __x64_sys_mount+0x1ab/0x310
[  920.279480][T16456]  ? __pfx___x64_sys_mount+0x10/0x10
[  920.279524][T16456]  do_syscall_64+0xcd/0xfa0
[  920.279561][T16456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  920.279584][T16456] RIP: 0033:0x7f2769f8eec9
[  920.279602][T16456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  920.279625][T16456] RSP: 002b:00007f276ad8b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  920.279646][T16456] RAX: ffffffffffffffda RBX: 00007f276a1e5fa0 RCX: 00007f2769f8eec9
[  920.279662][T16456] RDX: 0000200000000140 RSI: 0000000000000000 RDI: 00002000000000c0
[  920.279677][T16456] RBP: 00007f276a011f91 R08: 0000200000000180 R09: 0000000000000000
[  920.279691][T16456] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000000
[  920.279706][T16456] R13: 00007f276a1e6038 R14: 00007f276a1e5fa0 R15: 00007ffffdf570d8
[  920.279737][T16456]  </TASK>
[  920.758441][T16460] Unrecognized hibernate image header format!
[  920.764545][T16460] PM: hibernation: Image mismatch: architecture specific data
[  920.926805][T16462] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  921.112749][T16466] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2209'.
[  921.339042][T16462] FAULT_INJECTION: forcing a failure.
[  921.339042][T16462] name fail_futex, interval 1, probability 0, space 0, times 0
[  921.414433][T16462] CPU: 0 UID: 0 PID: 16462 Comm: syz.1.2208 Not tainted syzkaller #0 PREEMPT(full) 
[  921.414465][T16462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  921.414479][T16462] Call Trace:
[  921.414486][T16462]  <TASK>
[  921.414495][T16462]  dump_stack_lvl+0x16c/0x1f0
[  921.414534][T16462]  should_fail_ex+0x512/0x640
[  921.414574][T16462]  get_futex_key+0x1d0/0x1560
[  921.414634][T16462]  ? __pfx_get_futex_key+0x10/0x10
[  921.414683][T16462]  futex_wake+0xea/0x530
[  921.414714][T16462]  ? __pfx_futex_wake+0x10/0x10
[  921.414743][T16462]  ? rcu_is_watching+0x12/0xc0
[  921.414788][T16462]  do_futex+0x1e3/0x350
[  921.414813][T16462]  ? __pfx_do_futex+0x10/0x10
[  921.414837][T16462]  ? __fput+0x68d/0xb70
[  921.414860][T16462]  ? __pfx___might_resched+0x10/0x10
[  921.414898][T16462]  __x64_sys_futex+0x1e0/0x4c0
[  921.414924][T16462]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[  921.414960][T16462]  ? __pfx___x64_sys_futex+0x10/0x10
[  921.414985][T16462]  ? xfd_validate_state+0x61/0x180
[  921.415009][T16462]  ? __pfx___do_sys_close_range+0x10/0x10
[  921.415053][T16462]  do_syscall_64+0xcd/0xfa0
[  921.415091][T16462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  921.415116][T16462] RIP: 0033:0x7f187118eec9
[  921.415135][T16462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  921.415159][T16462] RSP: 002b:00007f18720a30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  921.415183][T16462] RAX: ffffffffffffffda RBX: 00007f18713e5fa8 RCX: 00007f187118eec9
[  921.415200][T16462] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f18713e5fac
[  921.415215][T16462] RBP: 00007f18713e5fa0 R08: 00007f18720a4000 R09: 0000000000000000
[  921.415230][T16462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  921.415245][T16462] R13: 00007f18713e6038 R14: 00007ffd5482d050 R15: 00007ffd5482d138
[  921.415286][T16462]  </TASK>
[  922.386820][   T30] audit: type=1800 audit(1394.020:105): pid=16475 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2210" name="members" dev="configfs" ino=61594 res=0 errno=0
[  922.751809][T16481] blktrace: Concurrent blktraces are not allowed on nbd3
[  923.438437][ T5835] Bluetooth: hci5: command 0x0406 tx timeout
[  924.248593][T16508] __vm_enough_memory: pid: 16508, comm: syz.5.2216, bytes: 4398046511104 not enough memory for the allocation
[  924.446828][T16512] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2217'.
[  925.324399][T16523] random: crng reseeded on system resumption
[  925.523669][T16524] FAULT_INJECTION: forcing a failure.
[  925.523669][T16524] name failslab, interval 1, probability 0, space 0, times 0
[  925.547688][T16526] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  925.572303][T16529] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  925.650133][T16524] CPU: 0 UID: 0 PID: 16524 Comm: syz.6.2218 Not tainted syzkaller #0 PREEMPT(full) 
[  925.650161][T16524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  925.650174][T16524] Call Trace:
[  925.650181][T16524]  <TASK>
[  925.650189][T16524]  dump_stack_lvl+0x16c/0x1f0
[  925.650225][T16524]  should_fail_ex+0x512/0x640
[  925.650257][T16524]  ? __kmalloc_cache_node_noprof+0x62/0x7a0
[  925.650292][T16524]  should_failslab+0xc2/0x120
[  925.650312][T16524]  __kmalloc_cache_node_noprof+0x75/0x7a0
[  925.650343][T16524]  ? tracing_mark_open+0x44f/0x6f0
[  925.650374][T16524]  ? tracing_mark_open+0x44f/0x6f0
[  925.650398][T16524]  tracing_mark_open+0x44f/0x6f0
[  925.650428][T16524]  do_dentry_open+0x982/0x1530
[  925.650459][T16524]  ? __pfx_tracing_mark_open+0x10/0x10
[  925.650490][T16524]  vfs_open+0x82/0x3f0
[  925.650514][T16524]  path_openat+0x1de4/0x2cb0
[  925.650552][T16524]  ? __pfx_path_openat+0x10/0x10
[  925.650582][T16524]  ? __lock_acquire+0xb8a/0x1c90
[  925.650606][T16524]  do_filp_open+0x20b/0x470
[  925.650654][T16524]  ? __pfx_do_filp_open+0x10/0x10
[  925.650704][T16524]  ? alloc_fd+0x471/0x7d0
[  925.650740][T16524]  do_sys_openat2+0x11b/0x1d0
[  925.650764][T16524]  ? __pfx_do_sys_openat2+0x10/0x10
[  925.650798][T16524]  __x64_sys_openat+0x174/0x210
[  925.650823][T16524]  ? __pfx___x64_sys_openat+0x10/0x10
[  925.650865][T16524]  do_syscall_64+0xcd/0xfa0
[  925.650899][T16524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  925.650922][T16524] RIP: 0033:0x7f2769f8eec9
[  925.650939][T16524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  925.650961][T16524] RSP: 002b:00007f276ad8b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  925.650981][T16524] RAX: ffffffffffffffda RBX: 00007f276a1e5fa0 RCX: 00007f2769f8eec9
[  925.650996][T16524] RDX: 0000000000000402 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  925.651010][T16524] RBP: 00007f276a011f91 R08: 0000000000000000 R09: 0000000000000000
[  925.651023][T16524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  925.651037][T16524] R13: 00007f276a1e6038 R14: 00007f276a1e5fa0 R15: 00007ffffdf570d8
[  925.651065][T16524]  </TASK>
[  926.150047][T16533] futex_wake_op: syz.1.2219 tries to shift op by -9; fix this program
[  926.581173][T16538] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  926.744867][T16542] futex_wake_op: syz.6.2222 tries to shift op by -9; fix this program
[  927.566951][T16550] futex_wake_op: syz.5.2220 tries to shift op by -9; fix this program
[  928.498232][T16569] random: crng reseeded on system resumption
[  928.506802][T16567] FAULT_INJECTION: forcing a failure.
[  928.506802][T16567] name failslab, interval 1, probability 0, space 0, times 0
[  928.606986][T16567] CPU: 0 UID: 0 PID: 16567 Comm: syz.4.2230 Not tainted syzkaller #0 PREEMPT(full) 
[  928.607018][T16567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  928.607032][T16567] Call Trace:
[  928.607040][T16567]  <TASK>
[  928.607049][T16567]  dump_stack_lvl+0x16c/0x1f0
[  928.607090][T16567]  should_fail_ex+0x512/0x640
[  928.607129][T16567]  ? fs_reclaim_acquire+0xae/0x150
[  928.607155][T16567]  should_failslab+0xc2/0x120
[  928.607179][T16567]  kmem_cache_alloc_noprof+0x75/0x6e0
[  928.607212][T16567]  ? __pfx_map_id_range_down+0x10/0x10
[  928.607243][T16567]  ? security_inode_alloc+0x3b/0x2b0
[  928.607275][T16567]  ? security_inode_alloc+0x3b/0x2b0
[  928.607300][T16567]  security_inode_alloc+0x3b/0x2b0
[  928.607328][T16567]  inode_init_always_gfp+0xce4/0x1030
[  928.607368][T16567]  alloc_inode+0x86/0x240
[  928.607393][T16567]  sock_alloc+0x40/0x280
[  928.607417][T16567]  do_accept+0xf7/0x530
[  928.607448][T16567]  ? do_raw_spin_lock+0x12c/0x2b0
[  928.607485][T16567]  ? __pfx_do_accept+0x10/0x10
[  928.607534][T16567]  __sys_accept4+0x100/0x1c0
[  928.607565][T16567]  ? __pfx___sys_accept4+0x10/0x10
[  928.607605][T16567]  __x64_sys_accept+0x74/0xb0
[  928.607646][T16567]  ? lockdep_hardirqs_on+0x7c/0x110
[  928.607681][T16567]  do_syscall_64+0xcd/0xfa0
[  928.607717][T16567]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  928.607740][T16567] RIP: 0033:0x7f61e2b8eec9
[  928.607758][T16567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  928.607782][T16567] RSP: 002b:00007f61e39af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  928.607804][T16567] RAX: ffffffffffffffda RBX: 00007f61e2de5fa0 RCX: 00007f61e2b8eec9
[  928.607821][T16567] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  928.607836][T16567] RBP: 00007f61e2c11f91 R08: 0000000000000000 R09: 0000000000000000
[  928.607850][T16567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  928.607883][T16567] R13: 00007f61e2de6038 R14: 00007f61e2de5fa0 R15: 00007ffe4c659ad8
[  928.607915][T16567]  </TASK>
[  929.227743][T16572] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2229'.
[  930.359258][T16582] vhci_hcd: default hub control req: 0000 v0000 i0000 l0
[  930.402767][T16584] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  930.619459][T16582] futex_wake_op: syz.4.2234 tries to shift op by -9; fix this program
[  931.534112][T16601] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2237'.
[  931.654113][T16606] snd_aloop snd_aloop.0: Parsing timer source '' failed with -22
[  931.687638][T16601] veth1_macvtap: left promiscuous mode
[  932.237364][   T31] INFO: task syz.2.1921:14926 blocked for more than 143 seconds.
[  932.246184][   T31]       Not tainted syzkaller #0
[  932.276423][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  932.386410][   T31] task:syz.2.1921      state:D stack:25960 pid:14926 tgid:14922 ppid:5833   task_flags:0x400140 flags:0x00080002
[  932.491027][   T31] Call Trace:
[  932.494435][   T31]  <TASK>
[  932.507886][T16624] random: crng reseeded on system resumption
[  932.529034][   T31]  __schedule+0x1190/0x5de0
[  932.533607][   T31]  ? look_up_lock_class+0x6b/0x150
[  932.589148][T16624] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff]
[  932.619764][   T31]  ? __lock_acquire+0x622/0x1c90
[  932.668299][   T31]  ? __pfx___schedule+0x10/0x10
[  932.673230][   T31]  ? find_held_lock+0x2b/0x80
[  932.754916][T16627] FAULT_INJECTION: forcing a failure.
[  932.754916][T16627] name failslab, interval 1, probability 0, space 0, times 0
[  932.776403][   T31]  ? schedule+0x2d7/0x3a0
[  932.818598][   T31]  ? fdget_pos+0x2a2/0x370
[  932.863136][   T31]  schedule+0xe7/0x3a0
[  932.892601][T16624] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff]
[  932.908143][   T31]  schedule_preempt_disabled+0x13/0x30
[  932.948000][   T31]  __mutex_lock+0x818/0x1060
[  932.959757][T16624] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff]
[  933.006624][   T31]  ? fdget_pos+0x2a2/0x370
[  933.033239][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  933.117095][   T31]  ? __fget_files+0x20e/0x3c0
[  933.137570][T16627] CPU: 0 UID: 0 PID: 16627 Comm: syz.6.2241 Not tainted syzkaller #0 PREEMPT(full) 
[  933.137600][T16627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  933.137614][T16627] Call Trace:
[  933.137621][T16627]  <TASK>
[  933.137629][T16627]  dump_stack_lvl+0x16c/0x1f0
[  933.137666][T16627]  should_fail_ex+0x512/0x640
[  933.137701][T16627]  ? __kmalloc_cache_noprof+0x5f/0x780
[  933.137732][T16627]  should_failslab+0xc2/0x120
[  933.137753][T16627]  __kmalloc_cache_noprof+0x72/0x780
[  933.137782][T16627]  ? copy_mount_options+0x55/0x190
[  933.137808][T16627]  ? copy_mount_options+0x55/0x190
[  933.137828][T16627]  copy_mount_options+0x55/0x190
[  933.137851][T16627]  __x64_sys_mount+0x1ab/0x310
[  933.137906][T16627]  ? __pfx___x64_sys_mount+0x10/0x10
[  933.137951][T16627]  do_syscall_64+0xcd/0xfa0
[  933.137999][T16627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  933.138023][T16627] RIP: 0033:0x7f2769f8eec9
[  933.138043][T16627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  933.138066][T16627] RSP: 002b:00007f276ad6a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  933.138089][T16627] RAX: ffffffffffffffda RBX: 00007f276a1e6090 RCX: 00007f2769f8eec9
[  933.138106][T16627] RDX: 0000200000000140 RSI: 0000000000000000 RDI: 00002000000000c0
[  933.138122][T16627] RBP: 00007f276a011f91 R08: 0000200000000180 R09: 0000000000000000
[  933.138137][T16627] R10: 000000007fffffff R11: 0000000000000246 R12: 0000000000000000
[  933.138152][T16627] R13: 00007f276a1e6128 R14: 00007f276a1e6090 R15: 00007ffffdf570d8
[  933.138184][T16627]  </TASK>
[  933.510262][   T31]  ? fdget_pos+0x2a2/0x370
[  933.525790][T16624] PM: hibernation: Basic memory bitmaps created
[  933.582084][   T31]  fdget_pos+0x2a2/0x370
[  933.641810][   T31]  ksys_write+0x71/0x250
[  933.686422][   T31]  ? __pfx_ksys_write+0x10/0x10
[  933.691554][   T31]  do_syscall_64+0xcd/0xfa0
[  933.696087][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  933.786415][   T31] RIP: 0033:0x7f0309b8eec9
[  933.790874][   T31] RSP: 002b:00007f030a9d1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  933.840482][   T31] RAX: ffffffffffffffda RBX: 00007f0309de5fa0 RCX: 00007f0309b8eec9
[  933.866561][   T31] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 0000000000000003
[  933.874568][   T31] RBP: 00007f0309c11f91 R08: 0000000000000000 R09: 0000000000000000
[  933.916498][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  933.924506][   T31] R13: 00007f0309de6038 R14: 00007f0309de5fa0 R15: 00007ffdb2cfec48
[  933.976466][   T31]  </TASK>
[  933.979564][   T31] 
[  933.979564][   T31] Showing all locks held in the system:
[  934.012080][   T31] 4 locks held by kworker/u8:1/13:
[  934.026381][   T31]  #0: ffff88801ba9f148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  934.061074][   T31]  #1: ffffc90000127d00 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  934.096429][   T31]  #2: ffffffff900e8630 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xad/0x8b0
[  934.105788][   T31]  #3: ffffffff8e3cf878 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0
[  934.154932][   T31] 1 lock held by khungtaskd/31:
[  934.176412][   T31]  #0: ffffffff8e3c42e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  934.186333][   T31] 1 lock held by klogd/5190:
[  934.223711][   T31] 3 locks held by kworker/0:6/5923:
[  934.280421][   T31]  #0: ffff8880b843a4d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[  934.316096][   T31]  #1: ffff8880b8424088 (psi_seq){-.-.}-{0:0}, at: __schedule+0x1861/0x5de0
[  934.346461][   T31]  #2: ffffffff8eee0fb8 (pool_lock#2){-.-.}-{2:2}, at: free_obj_work+0x1be/0x3d0
[  934.355660][   T31] 1 lock held by syz.0.1539/13090:
[  934.390283][   T31] 1 lock held by syz.0.1539/13091:
[  934.395423][   T31] 1 lock held by syz.2.1921/14926:
[  934.426415][   T31]  #0: ffff88806ab917b8 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[  934.435527][   T31] 2 locks held by syz.2.1921/14927:
[  934.462206][   T31] 2 locks held by getty/15340:
[  934.486404][   T31]  #0: ffff88803446d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  934.496188][   T31]  #1: ffffc90002e562f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  934.546446][   T31] 8 locks held by syz.6.2241/16631:
[  934.551671][   T31]  #0: ffff88807555e638 (&f->f_pos_lock){+.+.}-{4:4}, at: fdget_pos+0x2a2/0x370
[  934.596389][   T31]  #1: ffff888023e64420 (sb_writers#7){.+.+}-{0:0}, at: ksys_write+0x12a/0x250
[  934.605421][   T31]  #2: ffff88805b204c88 (&of->mutex){+.+.}-{4:4}, at: kernfs_fop_write_iter+0x28f/0x570
[  934.667016][   T31]  #3: ffff88801def8c38 (kn->active#251){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x2ff/0x570
[  934.696395][   T31]  #4: ffffffff8f288788 (device_hotplug_lock){+.+.}-{4:4}, at: online_store+0x9a/0x180
[  934.706095][   T31]  #5: ffff8880b8536d50 (&dev->mutex){....}-{4:4}, at: device_online+0x27/0x1c0
[  934.766399][   T31]  #6: ffffffff8e265370 (cpu_hotplug_lock){++++}-{0:0}, at: try_online_node+0x11/0x50
[  934.799417][   T31]  #7: ffffffff8e56d590 (mem_hotplug_lock){++++}-{0:0}, at: try_online_node+0x1d/0x50
[  934.826383][   T31] 1 lock held by dhcpcd/16630:
[  934.836429][   T31]  #0: ffff88803173e258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60
[  934.846128][   T31] 1 lock held by dhcpcd/16633:
[  934.896427][   T31]  #0: ffff88802f40e258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60
[  934.906155][   T31] 1 lock held by dhcpcd/16634:
[  934.930463][   T31]  #0: ffff88803c4d4258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60
[  934.966392][   T31] 1 lock held by dhcpcd/16635:
[  934.971170][   T31]  #0: ffff888042050258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60
[  935.176820][   T31] 
[  935.205718][   T31] =============================================
[  935.205718][   T31] 
[  935.268744][   T31] NMI backtrace for cpu 0
[  935.268770][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  935.268798][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  935.268813][   T31] Call Trace:
[  935.268820][   T31]  <TASK>
[  935.268829][   T31]  dump_stack_lvl+0x116/0x1f0
[  935.268868][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  935.268892][   T31]  ? _raw_spin_unlock_irqrestore+0x61/0x80
[  935.268927][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  935.268954][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  935.268983][   T31]  watchdog+0xf3f/0x1170
[  935.269018][   T31]  ? rcu_is_watching+0x12/0xc0
[  935.269064][   T31]  ? __pfx_watchdog+0x10/0x10
[  935.269091][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  935.269137][   T31]  ? __kthread_parkme+0x19e/0x250
[  935.269172][   T31]  ? __pfx_watchdog+0x10/0x10
[  935.269199][   T31]  kthread+0x3c5/0x780
[  935.269222][   T31]  ? __pfx_kthread+0x10/0x10
[  935.269247][   T31]  ? rcu_is_watching+0x12/0xc0
[  935.269276][   T31]  ? __pfx_kthread+0x10/0x10
[  935.269301][   T31]  ret_from_fork+0x675/0x7d0
[  935.269324][   T31]  ? __pfx_kthread+0x10/0x10
[  935.269348][   T31]  ret_from_fork_asm+0x1a/0x30
[  935.269383][   T31]  </TASK>
[  935.269398][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  935.396386][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  935.405500][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  935.415557][   T31] Call Trace:
[  935.418837][   T31]  <TASK>
[  935.421774][   T31]  dump_stack_lvl+0x3d/0x1f0
[  935.426383][   T31]  vpanic+0x640/0x6f0
[  935.430365][   T31]  panic+0xca/0xd0
[  935.434084][   T31]  ? __pfx_panic+0x10/0x10
[  935.438504][   T31]  ? nmi_backtrace_stall_check+0x6e/0x540
[  935.444235][   T31]  ? irq_work_queue+0xce/0x100
[  935.449007][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  935.455004][   T31]  ? __wake_up_klogd.part.0+0x99/0xf0
[  935.460382][   T31]  ? watchdog+0xe48/0x1170
[  935.464803][   T31]  ? watchdog+0xe3b/0x1170
[  935.469230][   T31]  watchdog+0xe59/0x1170
[  935.473478][   T31]  ? rcu_is_watching+0x12/0xc0
[  935.478254][   T31]  ? __pfx_watchdog+0x10/0x10
[  935.482947][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  935.488157][   T31]  ? __kthread_parkme+0x19e/0x250
[  935.493203][   T31]  ? __pfx_watchdog+0x10/0x10
[  935.497921][   T31]  kthread+0x3c5/0x780
[  935.502000][   T31]  ? __pfx_kthread+0x10/0x10
[  935.506592][   T31]  ? rcu_is_watching+0x12/0xc0
[  935.511365][   T31]  ? __pfx_kthread+0x10/0x10
[  935.515954][   T31]  ret_from_fork+0x675/0x7d0
[  935.520540][   T31]  ? __pfx_kthread+0x10/0x10
[  935.525127][   T31]  ret_from_fork_asm+0x1a/0x30
[  935.529899][   T31]  </TASK>
[  935.532962][   T31] Kernel Offset: disabled
[  935.537308][   T31] Rebooting in 86400 seconds..