last executing test programs:

7.072968378s ago: executing program 0 (id=203):
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mmap$auto(0x0, 0x7, 0x3, 0x12, 0xfffffffffffffffa, 0x8000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
rt_sigprocmask$auto(0x0, &(0x7f0000000000)={0xfffffffffffffe01}, 0x0, 0x8)
rt_sigtimedwait$auto(&(0x7f0000000040)={0xfffffffffffffbff}, 0x0, 0x0, 0x8)
r0 = epoll_create$auto(0x3e)
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)
r1 = fcntl$auto(0x0, 0x407, 0x1)
sysfs$auto(0x2, 0x5, 0x4)
fsconfig$auto(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/cgroup/delegate\x00', 0x80, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="20200100e1451861bbb61d6c15ea7e6675c7e27bd5e8f2bf6aa8ee2dced3517439a2add29e8b229ea8f8b38ebeb9c5250e94caa09d15e012ee4235c5aa0d267fb18be1058a4b6745765f2a0acd3822afe426ca6074d17f5e9524b06cd59cfe968667aaf01f9a3d96e14f77fbcdcec761b6082f29b048e4279b76abc1a32b90157e2de2427dcce533b3b31ffa76c057bde7122097", @ANYRES8, @ANYRES32=r2], 0x20}, 0x1, 0x0, 0x0, 0x4090}, 0x4048800)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'veth0_vlan\x00', <r5=>0x0})
sendmsg$auto_ETHTOOL_MSG_FEC_GET(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x44010014}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="00022abd7000ffdbdf251d0000001c000180080003005b07000008000100", @ANYRES32=r5, @ANYBLOB="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"], 0x48}, 0x1, 0x0, 0x0, 0x20008400}, 0x4845)
close_range$auto(0x2, 0xa, 0x0)
openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
r6 = socket(0x2a, 0x5, 0x5)
setsockopt$auto(r6, 0x110, 0x5, 0x0, 0x104)
r7 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/tty6\x00', 0x0, 0x0)
close_range$auto(0xffffffffffffffff, r7, 0x74)
capget$auto(&(0x7f0000000000)={0x1, <r8=>0x0}, &(0x7f0000000040)={0x6, 0x10, 0x2})
r9 = syz_open_procfs$namespace(r8, &(0x7f0000000100)='ns/time\x00')
fchown$auto(r9, 0xfffe, 0x7ff)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
ioctl$auto(r7, 0x5408, r3)
socket(0x1d, 0x2, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0x8000000000000000, 0x15)

6.130025036s ago: executing program 1 (id=208):
r0 = prctl$auto(0x23, 0x8, 0x2008, 0x0, 0x0)
statmount$auto(&(0x7f0000000180)={0x100, @raw=0x2, 0x7, 0x4, 0x101}, &(0x7f0000000580)={0x3, 0x81, 0x8, 0x2, 0x3, 0xf5, 0x1, 0x3ff, 0x8, 0x5f2, 0x3, 0x101, 0x809, 0x10, 0xffffffffe77feb82, 0x958, 0x0, 0xc, 0xbc6, 0x5, 0x9a, 0x7, 0xb422, 0x3, 0x9, 0x3ff, 0xb, 0x5, 0x7, 0x8, 0x7ff, [0x3, 0xdac, 0xfffffffffffffbff, 0xffffffff, 0x2, 0x81, 0x3, 0x1ff, 0x8, 0x12, 0x71, 0xffffffffffffff30, 0xfe2, 0x3, 0x0, 0x9, 0x6, 0xffffffff, 0xea, 0x100000001, 0xfffffffffffffbff, 0x3, 0x7, 0x62d6, 0x1, 0x6, 0x8, 0x0, 0x2, 0x3c, 0x64fa, 0xc, 0x40, 0x6, 0x6, 0x2, 0x61d, 0x1, 0x8000, 0x6, 0xfffffffffffffffb, 0x1e], "63004abb6d1765d72f998f93fe5ce6274b020dcd5977f4da2d59bcbe6d7b074f067ac3a797caf7773e5e8da95b164fde2c802b7ed3c9db87447c0c07439f7453201eee2aaf061aba931c83e9274954c687485f6df0f01b3e143f7c0634d407a1e33a3ab5f6a736637a24ebb96a71e4d3f17a28"}, 0xff, 0xda0)
mmap$auto(0x0, 0x400008, 0xdf, 0x2000000009b72, 0xffffffffffffffff, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
capset$auto(0x0, 0x0)
getsockopt$auto(0x3, 0x200000000001, 0x1f, 0x0, 0x0)
setsockopt$auto_SO_ATTACH_FILTER(r0, 0x7, 0x1a, &(0x7f0000000000)='&g\x00', 0x9)
mprotect$auto(0x200000000000, 0x806121, 0x4)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x20100, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
io_uring_setup$auto(0x6, 0x0)
io_uring_register$auto(0x2, 0x1b, &(0x7f0000000000), 0x1)
process_vm_writev$auto(0x1, &(0x7f0000002980)={0x0, 0x4}, 0x3, &(0x7f0000002a40)={0x0, 0x7}, 0x5, 0x0)
prctl$auto_PR_SET_MM_ENV_END(0x230, 0xb, 0x0, 0x6, 0x3800000000)
r1 = setfsuid$auto(0xee00)
setreuid$auto(r1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000540)='/dev/snd/midiC2D0\x00', 0x40041, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
fsconfig$auto(0xffffffffffffffff, 0x9, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
ioctl$auto_X86_IOC_WRMSR_REGS(r3, 0xc02063a1, &(0x7f0000000000)=[0x2, 0x2, 0x4, 0x0, 0x2, 0x200, 0x3, 0x7])
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000000)='/proc/kpagecount\x00', 0x0, 0x0)
lseek$auto(0x3, 0x8, 0x3)
ptrace$auto(0xffffffffffffffff, 0x0, 0x7, 0x1)

6.112366054s ago: executing program 0 (id=209):
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x14442, 0x0)
write$auto(0xffffffffffffffff, &(0x7f0000000080)='^.+\x00', 0x3ff)
bpf$auto(0x0, &(0x7f00000001c0)=@task_fd_query={0x9, 0x21eb, 0x7ff, 0x6, 0x5, 0x1000009, r0, 0x0, 0x3d}, 0x6f3)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kmsg_fops_printk(0xffffffffffffff9c, &(0x7f0000000100), 0x80840, 0x0)
socket(0x28, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x1, 0x0)
pipe$auto(&(0x7f0000000280))
socket(0x10, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x4c880)
r1 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0xc0a82, 0x0)
write$auto(r1, &(0x7f00000000c0)='\x00', 0x180)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x2, 0x2, 0x88)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x100, 0x0)
move_pages$auto(0x0, 0x359, 0x0, 0x0, 0x0, 0x0)
socketpair$auto(0x8, 0x5, 0x4f2, 0x0)
close_range$auto(0x2, 0x8000, 0x0)
socket(0x2, 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0)
close_range$auto(0x2, 0x8, 0x0)

5.764915056s ago: executing program 1 (id=212):
r0 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
read$auto(r0, &(0x7f00000000c0)='N\xd5\f\xb9GC*(,\x80\xc4bAL\xa3`\xb1\xf2\xe7\xc0<b$\x99.\xb4\xcc\xc0%\xaa\xd3\xd5\xef\xa4\xd35u\xc0\xa6\r\xcaJ\x11\xaf\x93\xde\x96\xd1\x15g\x10\x1ai1(=!\xf1\xe8\xe4\xcdm\xedKW\xe7\xfbL\\\xf2sj(\v\xcd\xe5\x02B\x81ss\xdd\x8199\xa5\x1e\xb0A\xa3\xcbj7\xe9\xc9L\xcc\xc6\xa4\xaf%\xba\xda\xd6\x1b\xa0\x10,z*\x13|\xe2\xee\xd8\xe8K\xafU\x8d\xb1\xab{\x8d+\'\r\xe1\xb1\b\xf7$%\xf2\x11\xa4\x9bj\xc1)\n\x1ft\xb6\xaf\xe2\xd4\x95\xa3\xe1\x1f\xf7uw\a\xd0\x83{_>/\xff', 0x100000001) (async)
shmctl$auto_SHM_UNLOCK(0x9, 0xc, 0x0)
r1 = waitid$auto_P_ALL(0x0, 0xff, 0x0, 0x5, &(0x7f0000000b40)={{0x6, 0x6}, {0xfffffffffffff4c8, 0x6}, 0x6, 0x40000000000c, 0x3, 0x83, 0x2, 0x0, 0x3, 0x3, 0x5, 0x5, 0x8001, 0x1, 0xffffffffffffff11, 0xbf0}) (async)
write$auto(r0, &(0x7f0000000040)='S\x00\x00\x00\xfe\xff\xff\xff', 0x8587)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) (async)
fcntl$auto_F_WRLCK(0xffffffffffffffff, 0x3ff, 0x1) (async)
r2 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x0, 0x0)
ioctl$auto(r2, 0x64c6, 0xffffffffffffffff) (async)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/zoneinfo\x00', 0x20000, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000200)=""/121, 0x79) (async)
close_range$auto(0x2, r2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_PPPIOCSMRU(0xffffffffffffffff, 0xc004743e, 0x0) (async)
r4 = gettid()
kill$auto(r4, 0x11) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) (async)
r6 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x8e051, r6, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
init_module$auto(0x0, 0xffff9, 0x0) (async)
mmap$auto(0x401fc, 0x99, 0x1, 0x859, 0xffffffffffffffff, 0x8e) (async)
r7 = openat$auto_buffer_subbuf_size_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/buffer_subbuf_size_kb\x00', 0x2401, 0x0)
write$auto(r7, &(0x7f0000000280)='9\x00d1L\xf0\x15\xba\xa17=(\x18\xdd\xff\xec\v\xb5^\xa1/[vv\x19\x00\x7f0\xa30\xc7\x9d\x1f]\xf8\xe04\xe7s\x9a\xd3H\xd3F\x819+\x90S\x10\xb2\b\xf8)\xe4IU\t\xb8\r\x9a\x8e\'Q\xfb\xb5I\x0f\x96;\xc7\\2V\x01g\xf8\xce\xbb\x9d\xa2c2\x00\x7f\xa1:\ax\xbc\x17\xde\x0e<\x00\x00\x00\x00\x00\x00\x00\x06\xc8\xf4\xdf\xcc\x9b\xd7D\xd7ARq', 0x40) (async)
ioctl$auto_KVM_CREATE_VM(r5, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0x4040ae76, r5)
prctl$auto(0x0, 0x3, r1, 0x803, 0x2) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)

5.584714873s ago: executing program 3 (id=213):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x40)
futex_requeue$auto(0x0, 0x0, 0xfffffffe, 0x0)

5.004483361s ago: executing program 0 (id=216):
sysfs$auto(0x2, 0x5, 0x0)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyr1\x00', 0x366080, 0x0)
semget$auto(0x0, 0x13c, 0x1ff)
recvmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5, 0x0, 0x9, 0x0, 0x800000000005, 0x7ffffffd}, 0x8}, 0x3, 0x1, 0x0)
semtimedop$auto(0x0, &(0x7f0000000180)={0x7, 0x81, 0x70}, 0x1f4, 0x0)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0)
mmap$auto(0x1000000, 0x20009, 0x4000000000df, 0xebd, 0x401, 0x8000)
ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r1, 0x80045105, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x28, 0x801, 0x0)
mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="0004feb90254fbdadb9e5586b83b62377c7db84e8636e40200000008002700dd6678fa458bfb07130400", @ANYBLOB='(\x00\x00\x00', @ANYRESHEX=r2], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
mmap$auto(0x0, 0x4020009, 0xdf, 0x14, 0x401, 0x8000)
capset$auto(&(0x7f0000000200)={0x20080522}, 0x0)
name_to_handle_at$auto(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x2)
setreuid$auto(0x3, 0x7)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000280)='/dev/bus/usb/003/001\x00', 0x0, 0x0)
ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000001040)={0x2, 0x41, 0x302, 0x401, 0x10, 0x6, 0x0})
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYRES32=r1, @ANYBLOB='\x00'], 0x1ac}}, 0x2400c0c4)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0)
r4 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0)
sendfile$auto(r4, r3, 0x0, 0x10000)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto_GETNCNT(0x0, 0x4, 0xe, 0x4)
write$auto_tty_fops_tty_io(r0, &(0x7f00000001c0)="352c8efa618c0bcf83a4ebdb27ec25906b0e1015b18c429fc1d7c523728754e15f334a572cad539da201096bbbc2ce7db19c429b3f63", 0x36)

4.919989468s ago: executing program 1 (id=217):
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000580)='/dev/mtd0\x00', 0x1, 0x0)
ioctl$auto_MEMERASE64(r0, 0x40104d14, &(0x7f0000000100)={0x4, 0x4})
close_range$auto(0x2, 0xa, 0x0)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000080)='/dev/binderfs/binder1\x00', 0x80001, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/v4l-subdev6\x00', 0xc0400, 0x0)
ioctl$auto(0x3, 0xc0305616, 0x38)

4.652383744s ago: executing program 1 (id=219):
socket(0x18, 0x5, 0x2)
bind$auto(0x3, &(0x7f0000000000), 0x6b)
close_range$auto(0x2, 0x8, 0x0)
r0 = socketcall$auto(0x8000, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xaea2, 0x10000000000402)
ioctl$auto(0x3, 0xae41, r0)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
exit$auto(0x2)
fchdir$auto(r2)
openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/self/smaps_rollup\x00', 0x18880, 0x0)
pivot_root$auto(&(0x7f0000000000)='.\x00\xaf\xeb)\xae$\xfc\x00\xf8\x05AC\x9f\xbbR\xec\xc6c\x85\xc8\xa7\xe84sF\xe3U\x94\x99\x8fR\xd0\x98\f\xa5\xb1S\x7f\xc3\xa5\xc0\x97\x10qa\r\x02\xd2\xc8\xd2\x8e\xc7\x80\x11\x06#\xf5\x18|\xdc\x81Ai\xb6\x96iaR\xdbA\x04\x10\x99\x16\xa6\xe1;g\xda9\x99T\xd8\xc6\xea\xf7\x96\xb5\xe9\x164e\xb1 S\x8f\x12_\x95y\x91F\xc89\xb1\xd24?\x89.,\xe4\xb9\xea\x88\x15\xacs\xc6\x83\xd6\x81\xd7\x11\x88\x9c\xdd\x8a\x0e\xea\x19|\x7f\xed\x9e\x19JG\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc1%~\xc1?\x8aN\x84\x8f\x9e\x9c\xf4,\xb2\xdb\xcf\xb8\xa1pk\x99w\xe0/\xd0\xaf7\xac\x9f\xd7A\xf1\xbe\x03\x9f\\\xc1H\".BJL\xe9;\x93\xe3\x8b\xba\x86[\xd4\xa2>\xe8\x19\x1ex\xd3\x8a\x9a\xe7\xef\xb6\xde\xc9\xbc\x1c@\xbdW\x86\xe2\xc1) 8\xdb\xc9\xd7\xe8\xe5j\x82\xcc4\xc4&W?\xb2\x1c7X\x00\xea\x00\xcb\a#;\xb6\xa4k\x80/%P\xce\xeb\x02\xdd\x05\xdb\xcd\xd1\x05\xe1\'\x03\r\xec\xe5\xadFo\xd8[G\x8e\xd8\x9bE\xe4_\xb9\xec9\x9e/\x85n\xb3\xff\xe8\xa8$;\x00'/312, &(0x7f0000000140)='/\x00\xf5\xdf\xeb\xa1\xb1\xccYE\x92\x0e\xf1\xb6?S\xad\xdeiN\xc0\xb6\xa7>\x95\x1e\xdd\x03;t}\"\x01\xbf\an4>j<\xcb\xe0n\xa1\xae\xf7;\xf5\tJ\xb0\x95\xd5\x96\xae(\xd2\x06\xa7\xc2o\xe25\x8b\xe4\xac\x87\x98NAe\xf0\xf1\xd9\xd36\x98\x86\xca\xf6\xf8\xd0/\x1f\xb3\xe4N\xc0\x06\'\x11\x8a\xe108N/\xcc\x1f\xa9\xd0\xac\xf2\xf5\x90\xbbO\xcc\xa9qH\x00[\x86o\xf4\xaf\x93\x14\xbf|@\xb6E\xd5\xa7\xa9^\x84\x19\xca\x84\\\xb9u8\xa4\f\x7f\xa1Vh\xdc\'\x0e\xf6\xd9;\xcf@\xea\xde\xa0\xa8\xea\xef\xfcK5\x87Z\xc1\xccOx\x8bn\x1b\x93@o\xf7\xe30\x90\b\aQ_\xb9\x9dO\xab\xea \x88\xdc\xda>\xdc.O.\xc8\xe2\x04D\xc6\x14A\x7f\x000\xdd*\a\vX\xb0\x8bI\xd0K)u\x13{-\x02\xb2B\xabd[\xdd\xdc\x10M\x9c\x88a\xfd\xa1\x12\xeb\xe0O\xf8\xbf37e\x1e\xf1@\xe3\xae\xe4\xef\xbd|D\x1e;3\x99g\xd8\xf5\xf3\xe0\x96D\x93\x93\x86m\xa0Fn;\xff\xc3}\xb8\xcd\x0f0F\x96\x98\xd0\x19\xf5\xdf\xf1B\x17_t\xe4|i\xcd\x81|w\xfcNc\xdd\xb8\xdbQ\x0fb}c`=F\x91_\xbd+E\b\x14\x848\xe3\xee/\xe37\xcb\x00\xd7\xe0\x8f\xb2\xffU\xa3\n\xb3PW\x11\xe1\xdd\x05\x86\x9c\xcf\xfe\xfapL\xb2\x05\x82\xf4\xf2v\xe8\x83\xc9*M\x90\xa6P\x98\xb1\x94\x84\xb7\x00\xf2\xf0#\xd4\xe4\xe2\xaa~\x1d\xbc \xa2y\xae@\xab\x1d\xd8pBg\xbb\xa8|g\xc70.\x04\"\ff\xb0\xc6umooMT\xa8\xd3\x97 ?\xf1\x80\x01\x80\x10\xe9\x84Ff\xd4WU\xc41\xc3}\x03\xdc\'\xdd\xecJ\x97\xdb\xed\rr\xb6-$\x8b\xc5i\xe3\x113\x89M\xe4\xd7\x1dX\xc9\x15\x00\xd7j1t\\ \x88>s\xb5\x83\xf3\xef\x05\xb8+Y\x04{\x9a\x8e|\xfd\x92\xfb\xd1\"\x85\xb1\xf4*=\xee{\x7fS%;\xfd\xc0,\xa7\x973\xdc\x7f/B\xd8pe!\xd8sl\x15g\xd5\x05\x8eRQ\nm\xaa\xf2N\x1d\xda\xeb\xe3\x06\xd1at\xd9\xd5\xb2\xcb\xf5\x83\x84\x1eF\xab\x00\x8f\xa4\xb3\xd6\xaf\xcee3s\t\xf5\xcc*\xff\xf5\xf2\x98\x89T\x80\xa8\xae\x1e0\xe5\xa6\xc9.\v}\xa3\vi\x06e\xbd\xa1u\xc5_B\x8a\xe2@sF\xfd\xa9\x8f\x11\xdc\xbe\rjrb\x8a\xa6\x0f\xb3Zq\xf2\xce\xbc\xf3X\xcc\a\xe8v\xdb\xa0\x1cb</\x93\xc9\xb8\xdaB\xcc\xc9\xaaQ\xees\xc7\xf4\x14H\x98')

4.395490678s ago: executing program 0 (id=220):
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/037/001\x00', 0x40a02, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000000)={0x23, 0x3, 0x6, 0x10, 0x3ff, 0x7fb, &(0x7f00000002c0)})
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r1, 0x0)
r3 = socket(0x10, 0x2, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r4, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r4)
read$auto(r4, &(0x7f0000000000)='\x00', 0x91e2)
close_range$auto(0x2, 0x8, 0x0)
r5 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000000000), 0x80800, 0x0)
ioctl$auto_RNDADDENTROPY2(r5, 0x40085203, 0xfffffffffffffffd)
socket(0x10, 0x2, 0xc)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x2, 0x801, 0x84)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x3, 0xa)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
pipe$auto(0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/misc\x00', 0x10b402, 0x0)
r6 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r6, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef)

3.986952078s ago: executing program 2 (id=221):
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0x0, 0x7, 0xdd36, 0x8fd6, 0x948b, 0x20003, 0x15f4da0a, 0x3, 0x10000000000003, 0x3739aae3, 0x2, 0x3, 0x1, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) (async)
r0 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810)
r1 = socket(0x10, 0x2, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_SMC_NETLINK_ADD_UEID(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r3, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@SMC_NLA_EID_TABLE_ENTRY={0x6, 0x1, '%+'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000004}, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa507}, 0x800}, 0x7, 0x8)

3.820681161s ago: executing program 0 (id=222):
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20b42, 0x0)
write$auto(0x3, 0x0, 0xfffffdef)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r0, &(0x7f0000000080)="c2", 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
write$auto(0x3, 0x0, 0x100082)
write$auto(0x3, 0x0, 0xfffffdef)
socket(0x2, 0x5, 0x0)
setsockopt$auto(0x4, 0x84, 0xc, &(0x7f0000000200)='\xf3\xc6uy\x90:\xf2\xb3}\xfb\xa9n\xbf\f\x8a\x16\x1a#\x866}\t\xcb-K\x962\xf4,;\xe4\"=\t#\xe9B\x1dq[\xe6\xf6\xd1\xf9\xdd\xfe\x1e\xc8\xa1\xea\xf9\x93\f\x95\x14\t\t\x01\x13Z0O@\xb6~8\x0ej\xf1\x8dH\x9ddK6\\|\x12\x82L\x84\x9d\x14\xd0\xa9{\xb1\xb4\xc5\xe0\xaf\x15RT\x98\xd9\x10D\xa1Y\x80\x1fe\xc1. \x9d\x84\x8b\x9a\x9a`q\x00\x8c8c:%\x97\x15\x80-\r\x94\xcb\xda\xa2\x1d\\;f\xcds\xa7q]?\'\xf5\x9eA\x841f\x1e\xce\xc0\x1d{tEc\xa3\fp\x1b\xd2\'\xcd1\x8d\x87\xf1\x02\xc4Q\x8e\xab\xf9L\xbf\xa4_\x85\xf1\xb6\xe0\xca\x9e3\x9b\xf7\n\xe7\xdf\x12\xef_ \x9dC\x1f\xb8k\xfbu\x8f\xd9\xaa>\xe3\xda\x1f\'\x00'/219, 0x800e)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20b42, 0x0) (async)
write$auto(0x3, 0x0, 0xfffffdef) (async)
write$auto_snd_pcm_oss_f_reg_pcm_oss(r0, &(0x7f0000000080)="c2", 0x1) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
write$auto(0x3, 0x0, 0x100082) (async)
write$auto(0x3, 0x0, 0xfffffdef) (async)
socket(0x2, 0x5, 0x0) (async)
setsockopt$auto(0x4, 0x84, 0xc, &(0x7f0000000200)='\xf3\xc6uy\x90:\xf2\xb3}\xfb\xa9n\xbf\f\x8a\x16\x1a#\x866}\t\xcb-K\x962\xf4,;\xe4\"=\t#\xe9B\x1dq[\xe6\xf6\xd1\xf9\xdd\xfe\x1e\xc8\xa1\xea\xf9\x93\f\x95\x14\t\t\x01\x13Z0O@\xb6~8\x0ej\xf1\x8dH\x9ddK6\\|\x12\x82L\x84\x9d\x14\xd0\xa9{\xb1\xb4\xc5\xe0\xaf\x15RT\x98\xd9\x10D\xa1Y\x80\x1fe\xc1. \x9d\x84\x8b\x9a\x9a`q\x00\x8c8c:%\x97\x15\x80-\r\x94\xcb\xda\xa2\x1d\\;f\xcds\xa7q]?\'\xf5\x9eA\x841f\x1e\xce\xc0\x1d{tEc\xa3\fp\x1b\xd2\'\xcd1\x8d\x87\xf1\x02\xc4Q\x8e\xab\xf9L\xbf\xa4_\x85\xf1\xb6\xe0\xca\x9e3\x9b\xf7\n\xe7\xdf\x12\xef_ \x9dC\x1f\xb8k\xfbu\x8f\xd9\xaa>\xe3\xda\x1f\'\x00'/219, 0x800e) (async)

3.692807674s ago: executing program 2 (id=223):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/all/rp_filter\x00', 0x202, 0x0)
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x9, 0x11, r0, 0x8)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r1 = syz_clone(0x8000, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(r1, 0x1002, 0x0, 0x0, 0x0, 0x2)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x0, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000280)="77bc870cf62d57632431063959734a1614b8ce7c8c4c14f2c47802d2bb11e360fa912b1148cb22a62b0348ea050abfdf00363f64ad3be17bc7baf80b2146c20042f475c8dbf2aebadb8b2c5443a2468c65eea2e5335f1cbdf22ab5964c19c50255dd89502f1caf381bf096fde60733e46a524b950c4b2e8a09c204c8edd6680d08b9b65362a29d70bbbd153966e4e77faefb346b4540782d99cdf00280777d16bce8177e805eff0e9b7a27af3809e885e5b4e07c9a5366a09c23eb02ac1d8e630ada6682d2f68f5097edf24ceb70de50c3e211d12a82aa633159e34e558a1835a9208f99b3db6c1bbb7749", 0xeb)
mbind$auto(0xb6, 0x2, 0x7, 0x0, 0x59f, 0x5)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
write$auto(0x3, 0x0, 0xfffffdef)
ioctl$auto(0x3, 0x402c542b, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0x1ff, 0xfffffffffffffffa, 0x8000)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
ioctl$auto_IOC_PR_RELEASE(0xffffffffffffffff, 0x401070ca, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x5412, 0x0)
mmap$auto(0x0, 0x6, 0x5, 0x937b, 0xffffffffffffffff, 0x100003)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000780)=0x6)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0)

3.577996262s ago: executing program 1 (id=224):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = epoll_create$auto(0x3e)
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
write$auto_proc_clear_refs_operations_internal(0xffffffffffffffff, 0x0, 0xffffff4b)
mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0xe982, 0xdf, 0x20000000000eb1, 0x401, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r1, 0x0, 0x20)
r2 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/ieee80211/phy6/aql_enable\x00', 0x2481, 0x0)
pwrite64$auto(r2, 0x0, 0x3, 0x4200000000000005)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
quotactl_fd$auto(0x0, 0x2, 0x0, 0xfffffffffffffffd)

3.452277002s ago: executing program 3 (id=225):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/mem/full/uevent\x00', 0x40000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@name={0x1e, 0x2, 0x3, {{0x41, 0x3}, 0x4}}, 0x6a)
r1 = getpid()
mmap$auto(0x0, 0x4, 0x0, 0x40eb2, 0x401, 0x300000000000)
set_mempolicy$auto(0x9, &(0x7f0000000400)=0xfffffffffffffffe, 0x37)
pipe$auto(0x0)
setsockopt$auto_SO_DETACH_REUSEPORT_BPF(r0, 0x4ecf, 0x44, &(0x7f00000000c0)='(\x00', 0x9)
process_vm_readv$auto(r1, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000040), 0xffffffff}, 0x6, 0x0)
kill$auto(r1, 0x1)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14)
write$auto(r2, &(0x7f0000000100)=')[\\\x00', 0x1)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000080)=""/58, 0x3a)
socket(0x1d, 0x6, 0x1)

3.383176803s ago: executing program 2 (id=226):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101c82, 0x0)
write$auto(r0, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0xfffffffffffffffe, 0x400008, 0x5e, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000200)='/sys/firmware/acpi/hotplug/pci_root/enabled\x00', 0x183941, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/platform/dummy_hcd.0/usb1/1-0:1.0/usb1-port1/quirks\x00', 0x0, 0x0)
sendfile$auto(r2, r3, 0x0, 0x3)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/uvcvideo/parameters/clock\x00', 0xb02, 0x0)
sendfile$auto(r4, r4, 0x0, 0x8000000003)
ioctl$auto(r1, 0x4bfb, 0x9)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nullb0\x00', 0x143e00, 0x0)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dynamic_debug/control\x00', 0x8101, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
io_uring_setup$auto(0x6, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D1\x00', 0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket(0x10, 0x2, 0x4)
close_range$auto(0x2, 0x8, 0x0)
r7 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r7, @ANYRES8=r5], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r6, &(0x7f0000000000)='-\x00', 0xfdef)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
io_uring_register$auto_IORING_UNREGISTER_RING_FDS(r8, 0x15, &(0x7f0000000140)="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", 0x2)

3.25357586s ago: executing program 3 (id=227):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0)
pwrite64$auto(r0, &(0x7f00000001c0)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x88\xa8s\x1c\b\x06\x8a>)\x14\x04>\x94\x1a\xd3\x00\x1d\xf8\xbebZ\xddL\'\x03\xf1p\x9f\x1e\xf9\xa4\xf8\x15\x02U\x01\x18*\xc0\xc1\xf2\xa7^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ\x1bCL\xc5\xb8\xfa;\x95\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa4\xdf\xdav\x1cC\x8a\xee\x14^\xbe\xa2\x00'/108, 0x4e, 0x3)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0)
preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x5}, 0x3, 0xf8, 0xffffffffffffffff)
mmap$auto(0x10002, 0x20009, 0x4d6, 0xeb1, 0x401, 0x8003)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0)
close_range$auto(r0, 0x8, 0x6)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xfffffefb, 0x2, 0x4, 0x7, 0x6, 0xffffffffffffffff, [0x1], {0x6, 0x2, 0xf, 0x29f, 0x2, 0x83, 0x101, 0x17f, 0x7f}, {0xff, 0x100, 0x52, 0x5, 0x1, 0x40, 0x4, 0x8, 0x100000004}})
io_uring_register$auto(0x2, 0x1d, 0x0, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
mremap$auto(0x0, 0x4, 0x3fd6, 0x3, 0x200000)
mremap$auto(0x1, 0x4, 0x2000003, 0x50a, 0x6)
socket(0x2, 0x1, 0x0)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)

2.376301835s ago: executing program 2 (id=228):
mseal$auto(0x2, 0x8, 0x0)
mseal$auto(0x7, 0x2000000000, 0x2)
r0 = clone$auto(0x2, 0x2f5, &(0x7f0000000000)=0x1, &(0x7f0000000040)=0x6, 0x2fea)
r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyqd\x00', 0x600000, 0x0)
r2 = socket(0x2c, 0x1, 0x3)
sendmsg$auto_VDPA_CMD_DEV_VSTATS_GET(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, 0x0, 0x10, 0x70bd2a, 0x25dfdbfc, {}, [@VDPA_ATTR_MGMTDEV_DEV_NAME={0x14, 0x2, 'vlan0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x42}, 0x20000002)
mseal$auto(0x7fffffff, 0x8, 0x401)
msgctl$auto_MSG_STAT_ANY(0x3, 0xd, &(0x7f0000000240)={{0x0, <r3=>0xee01, <r4=>0xee00, 0x3, 0x0, 0x7, 0x32}, &(0x7f00000001c0)=0x8, &(0x7f0000000200)=0x5, 0x0, 0x4, 0xc9, 0x6, 0x2, 0x6, 0x7, 0x9, @inferred=<r5=>r0, @inferred=<r6=>r0})
setfsuid$auto(r3)
r7 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000000300), r2)
sendmsg$auto_KSMBD_EVENT_SHUTTING_DOWN(r2, &(0x7f00000003c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x14, r7, 0x2, 0x70bd2a, 0x25dfdbfe, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc844}, 0x0)
r8 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000440), r2)
shmctl$auto_SHM_LOCK(0x3, 0xb, &(0x7f0000000540)={{0x9, <r9=>r3, r4, 0x0, 0x4, 0x6dd, 0xc88}, 0x0, 0x5, 0x1, 0x7f, @inferred=r5, @inferred=r6, 0xfffe, 0x0, &(0x7f0000000480)="d79fb30dfb654539ed5235add66797856668c7f31f7e6522358467a1757a9a5a6a5105a0eac1817e074b3b1cb898739dddadb2a510574809da", &(0x7f00000004c0)="a19a8c35794b418633276687151b925d77c2a36aebe5a88be9309addffdc10f173850ce1e8d2acfadea63174ce81762ce34b2880385a1138d39d512093bd1e5209"})
sendmsg$auto_TIPC_NL_UDP_GET_REMOTEIP(r2, &(0x7f0000002680)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000002640)={&(0x7f00000005c0)={0x2044, r8, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0x774, 0x1, 0x0, 0x1, [@nested={0x10, 0x8c, 0x0, 0x1, [@nested={0x4, 0x117}, @typed={0x5, 0x87, 0x0, 0x0, @str='\x00'}]}, @nested={0xc, 0xe9, 0x0, 0x1, [@typed={0x8, 0x14c, 0x0, 0x0, @uid=r9}]}, @nested={0x26b, 0x31, 0x0, 0x1, [@generic="93576bece286f4f4da1884fe5487e263df6bd0317aba4b09181faf99c292983075d1c8243fad3980a0b494ad269db0e43d4ce4a44cc58599e011c893783d893bf2f3d12f47950dadad3880b34e72bc29b5069aba9ba2c948c9344bb001da91d553ed92549feb011a811724ce595c274e1ad2363eae65db8a25f0d2ddcfb7de7179836058268fb46c89a79443a982e45e7fee3824dfe0788d4c7fac12dfe9c68c9febe48ed66047645de799f94db5ada0802d0da6b9c87ba1dd7bc042a57d187a91509c917dc4ca6d1be45b30df7456a0bf", @typed={0x9, 0x111, 0x0, 0x0, @str='{:![\x00'}, @generic="0cdde5f1d07e7f376123cea4d0603baef027f92aa7a25ce43615aa5210194e94ca8864e410dd628ff4f2b5d9f297e2a9d0d65cc03bb8355e0c4f9663e199bb879227cc79a3c175605686b5eed3cedfcd04c1dce27b956086735aefe684630629ecfb296cbb113887507c9a4d95b9d0d80c0143e2235b3127da6bca0567da2a8d6a6f9db284a145400b553b510f1055507f836303aeef601da62771717bc9c45a3308d26bcf89e27e892b48f9c134b81bf25cc6f696d2342c106e8587", @generic="2fefafe179b3aa0fcc1f3dce2bfa17d55e", @generic="87e60113f42673c24c44367c8dd521b469f0509f792910a7093791deb6dcee25255fc04a1a8f8505592ee9e7aa418b5b90f982fdcbcb78d0bc029178b254807bc29e8323908faa2ca9981202d63b25a0456c2ed6844bbd2bc5e56e91113735744a8c9cc69229d2f292e9e40b68b6b1be2f6d3597db90801e17da0e7c06b01360278adb9413b17719730d25d70e7a57080a522477acd39e55b8517906e9fb805395599d982c7b2a951f4bea40b23ceb6c13", @typed={0xc, 0x116, 0x0, 0x0, @u64=0x8}]}, @generic="ab09d0fe35ae0634bdcf47a8fab4e5b786393904f3064d9626fca49a161fef2b3663c9ad10a77544a76260b03174fe75d9a3d1386c92a304429d74cd539510e7a055f2f95474fcac3ddae7c69466ee7f4c63942913ee5afe4ea415c116df54e6b3b83b4ce013c2145bdc5e4a3ea1c3a8db05b26c0dd2ad36e0763f1fcfe34530295f69b64f462552d5ad8868574c9f326c25eceb3e8f1a51cd763dd7e9f3a0f167a286f5c5e2e7b1f62c6da087ade6754e7b73d71eabfc69dd593b8b4d3f8e2d", @generic="74d3ca88e3950431a50a13f636801cead349d4c8367382b0adae09adc17df166d2a00dd17160656472bb2c8d1f310388b72e94118899aca7cb48fc21ccc6566c135ab100ea8a59e3264c24a605769adc9ede02b2c711a04bdd09812840a66dbd9d0b1df349c093b7b6d39d6f6cc683f9827de9b4", @nested={0x248, 0xdb, 0x0, 0x1, [@generic="0aac62fafc12a2f421151393a16523f264034fa4f3800f4188d726b20d16f0bddf5eee6e2263d1ba739ea395697f2fac797004fc051fda5272307e6bb1312e6370697e3cc15d185a2ae92e9c0383ff545a818bae692d035d948a7c4c7313f5b9692368cb653c0536668d76631db19870d917d37bbfd5d71c8b2eeba23d6b7ba7aa5cbfc9ec88c46e52be89190a07fd033a05ec851f095e58a3b4c99aa2a0632ab5fcd51f0feed6b8eede8332546bec43d7d563b14406e5aaf100394e565f12c3ed6cc2974bc247c819dd63248da2eade307b906061144bb2e4bfbb60d61d1e", @nested={0x4, 0x53}, @generic="54c6955fbe36a4f419749c55ed544eff199a02e5cfe4c330259fe29b9d23d25e8941f4ba7e341925b8dd5307cce56592544c6ff3f199b255d9b05057e9838c0c69934f2ac2d2653b05485f755489be93c09fe3f85a8a177a41ad813b03a3a57de08ad4ff9bddfc214104fa8d287d7f3e83a3d8f14eaef6885ba707eb2328f16accbf7789e27d11c3cab4e01af87d6dca49d069d3bcba2b968f1ab23666c9cfae4a19702d14b72f6c00cdfe038d22a2ce49336767b9", @typed={0x4, 0x83}, @nested={0x4, 0xf3}, @generic="b84a623b32524b79ae1fc4a4db859b0c17be00281c8354671cf251d3da5e5203461944f7187c58eed3b296563909bcf1d63e23f08c7fc9a0790276d2b7fc315e44756579d900c8a981dc1f4a9d8a9cfe79d4b9bf4c8a66e61ff42b509761ced8e51a104236372e18090b98cae74c91cf9c651cea509b34f204b44c0f000dc7cdef5985c5dc162b27272e008723dd7ad773cbf0c93707f8e5fcf3e720", @nested={0x4, 0xd2}, @nested={0x4, 0x139}]}, @generic="c34adafe80bc7d56e8d0ec34269b6e53b99c12d64a797de343c1b731b66a6d2467e53581e0787ce09792f4f1ca192728ecbbbea5514887c1e94539b640dc524b723d47737cc2c930737ebff22c7513cba1063befd4bc2ce78b0d1777203a58be81361beb8b3f4c85e25ad50446c4966e42dd8026f94fd615643f896522a34fbb3022897652fa80ef059210e62cf9a97a", @nested={0xdc, 0x3d, 0x0, 0x1, [@typed={0x6, 0xf1, 0x0, 0x0, @binary="f7d8"}, @nested={0x4}, @nested={0x4, 0x14f}, @typed={0xc0, 0x4f, 0x0, 0x0, @binary="196fec06430b89a8597be16ebf446bc108cd221bc96b7a2740c8026cf3c13d08996bd364d52aca438634dbdbe914c5238fd687ebc50108ce656d149a87d5a8f22b9b58c2d3134f564392d0e73f284d0cf17c8511c3dd782fd3762d71d76d5b3bf8de37a670c80c62150cb57818bd93b336f5c4a650a66cfa4149293ad66fdfcd945d48c8757363a71333f44cabae85418aa60d900b480ed185bf3e90e8a1b7a4a791d270bf8850e46505fb6d603c12c7d6d245c72391e4abca5a60b7"}, @typed={0x8, 0x7, 0x0, 0x0, @uid=r3}]}]}, @TIPC_NLA_MON={0x10, 0x9, 0x0, 0x1, [@typed={0x8, 0x63, 0x0, 0x0, @pid=r0}, @typed={0x4, 0x47}]}, @TIPC_NLA_MON={0xea, 0x9, 0x0, 0x1, [@typed={0x6, 0xec, 0x0, 0x0, @str='/\x00'}, @generic="a01e88e12782a623e372ed57478b668d09f23a12c158b75dcbbc4abe6fd7cc3da9c2fae034d20dbf1ade0a13662f54602b57720d0f16ecf3f7c51803a25392deaf0c18a692b7589c3dea04a6305a990bebafe1272cc2163f9e55c5ff493576942416958de719eee0498bb78c9ee8df653073c2c9d6ff47d88bbf4e6128d0b04a347c9ab9672514614aa75be51cfe3c21d3aa59e85a11fef7d7a4bdd1c5de82dc04f3310391f0fa6eb4df4f89fc13e222a0d5d867923dac24fd4dfea408194e49be15a284aff6d65cb0408d1f44b4b662635d420000ad1d6d1fa6609bacfb"]}, @TIPC_NLA_NET={0x3be, 0x7, 0x0, 0x1, [@generic="8421c6b94daab6ac5785d9c054889a208e03086f9340ef0ab751c602900c73d9b275cb1bb753f98242c2af352e115d72a67224e66ac593789af1846888ffa8c2df1cc595c7f7558506931a08fb410e8fc728b70457ea3c1ee3e3", @nested={0x1ef, 0x99, 0x0, 0x1, [@nested={0x4, 0x35}, @generic="2208b812446e33c68dcc29b77a92ff26ec6a68994b3425115fa8e93925636f05b4e1525a1df9b282663bd866ed642ec11aecda1692f4f9b8ef7282898c36ed37d73ec2d72e5b4a6f148f2fe651c792b86fc0e307d2dd7a569a9a98a667f856964a1420d991d2264db89180a26dc5db05229860f512d8fc65faf744562c2abc87e2a5bf1213df83449f041b01e992d31edcf56f8bc6a0a8692ad9accd44e5a922a7b2aa6518051763e8258a12b6e374ab9eba39faeac608544e34588511cf04e7ecc7fc8bafdd755a92ed3915a1d50c1016b7", @typed={0x8, 0x147, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @typed={0x8, 0x13c, 0x0, 0x0, @pid=r0}, @nested={0x4, 0x9b}, @typed={0xa, 0x4d, 0x0, 0x0, @str='vlan0\x00'}, @typed={0x4, 0xe4}, @generic="a9b42708230062ba21a3ca6ef7702f1f92ec65c14c4e13aebdade576045022b8df04deb8e586d768fc8b281b438f8a74c243690788f5555bc370561213ded256c485e35108540e7ab02f258e81e737e0d6ccad787ab28b7e2b5349796c0cb391e2e7c21ee388469a7791febe523e1dd18900a42e111ca517495e035cfb91cbf681b24150a422856d1e0aaf5f34df17d7870234612be73904bdfef1a5f39099a8ecb9de020415511363d7dd3408a661972c551cd06394d8beef2f39154ff2792fbd176fb4220c46c949f6a6ea79707d0c7537f408d0d04bd348b4c51a9a0e596f83c6c39070d7f0a557f4e2eecc47ec3408"]}, @generic="12979fbb5a684a8dfc9c00bba2d26ac644390806e43ab266238770ac7c8e2a947dc31de4d9fdbf99e624e9d6a1df3031c3e2d1396272217f21394d765d3ca7d9f983cbac9ccf16b2932cd488d73a4f8221857aebe8123acb3cbf5ed1187719b3b764ea5489fe869c183230e9a72bfc18c7569241", @nested={0x30, 0x0, 0x0, 0x1, [@nested={0x4, 0xe3}, @nested={0x4, 0x5}, @typed={0xc, 0x112, 0x0, 0x0, @u64=0x5}, @nested={0x4, 0x8d}, @nested={0x4, 0x10}, @generic="4858ba0407f18f8806563e68fb54a733"]}, @typed={0x14, 0x49, 0x0, 0x0, @binary="5d8b371f76163a8c939c1830b7da4ff9"}, @nested={0xb6, 0xe5, 0x0, 0x1, [@generic="b08998c52625fddc05b2f2b434b4309479b37b6a71614bac419066796144d0a426fe4c02ae4fd7bf26f340806e506cd994254288b2f3ba4396642f65d3cb69c550f741be8595995dc4cddadc0d92a545da13109f0a4aa480c150b7a7cc47893b2e58acfb1f0229c1f2bd326f2c74f1e767f419d9d4d55a2e584cf92da62e", @nested={0x4, 0x1f}, @typed={0x14, 0x65, 0x0, 0x0, @ipv6=@local}, @typed={0x8, 0x3d, 0x0, 0x0, @pid=r5}, @nested={0x4, 0x95}, @typed={0x8, 0x3e, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x2, 0x0, 0x0, @pid=r5}]}]}, @TIPC_NLA_LINK={0x13fd, 0x4, 0x0, 0x1, [@nested={0x69, 0x10d, 0x0, 0x1, [@generic="155db4635022e1998233e2f9552a25756f6caa749f33ec3c7ae15a3876704f005e3927ee9acd8781b49fead98afdda110e58544c60094d64dc485328619184c29083e0a91e5c4059490b93ccf8", @nested={0x4, 0x139}, @nested={0x4, 0x13d}, @typed={0x4, 0x102}, @nested={0x4, 0x11}, @nested={0x4, 0x79}, @nested={0x4, 0x1e}]}, @generic="5797f33f07560b9214ca17db3ad16626028ea8ae9e7b677eec20541ba8ed0616e9883ff1e2eb7777ca2aad28d5a30678ef626d918654fe75fdc924e1d651a72791da57a4b5517a2c05de30e14c030ad2db4d5e617c8106e9d4f68d9282194cb7ff2087f88c25e05d6cf67336fae5fc482e06adeba83cc85d3f3dd9a700647ef001ff1a9cce2b3995d66c00c6f4c4f38125bcd6dc068057eb59f77c993d801faf33314401e2039ee15ba39f7148", @nested={0x88, 0xf1, 0x0, 0x1, [@nested={0x4, 0x73}, @generic="0a3c3c7cee45bdd85b0299ae00ba551229ed77209c7dd542b6ee87f55761b88f2e3e46497b41aad62fc65465e6fc4e2bf041a3fb89730e6e442b0371c116183123e6addee9ff8c7ac3a67ed1a111db8aa437bbde5e7d9068d27b8febbb9ceb6c7c7857751191662e2eb88c10618d0801419a9244be5366dc80819e267a182460"]}, @generic="b08bd6ef2b7bfdeb09b0f0af7f205b0a7622174142b6a9508966a77a4cedef79413df1bf08512b4566a35a515cde350cf4dcedefb2d93bd4a4f0af52fed32350fbb435743df45d512c6d905f17e595ce12d9d5aed8ea4d448ab0b4c9b4e28073c37d497cc623370e88bd582912fff4629e0cec60b243f96bdea0c0ad6061a3722a01bd8399ce98dd6885ef76e7b01c2231f9533d5cd125700a5570621565ba690456f755d9607f543cca9d879392aa848e0eb3771a7dc6778011bc74224c1ae6b467b74fbfcf6a0795c1d287a43bc171616edfba35dacb499139bb17bf9036f0aae629a1adf3c8441837fe913f67", @nested={0x1130, 0x77, 0x0, 0x1, [@typed={0x8, 0xc8, 0x0, 0x0, @u32=0xb}, @nested={0x4, 0x5f}, @generic="2b1106fb4294ea73e6b0f37e68454451fe28e20ef9380e4394e92af8d6f2d96b36488ed2c82609e334c980f367a13ca9652b44adc7fb9c4732d106dc9bceceb5f5e1bf0a8b1dc3c6b05fdcdf80b337aba60631bbb388d90d0545969633c644bf0715e238867ff6679899f2e8a8e049a75686dd890ba09e7d192b653b739bceb27a36b0290cbe1d1de925bd46be828efb4d11d5c84e6f5d370341d716050d92c4561ecd3b68ee364af6d7c737f34a7e1922d1bdb9c772968220041e8c92721179889ffd0e0493807e4abc7179683595205bbb2632385c0d0b3260d5b096045480d4467644dbbaa935453c796d86233a00", @generic="ced869aabc74dc70e0b5b4f596b76bb03a9d3b566a4950bbffc63d94ee7acf48c2daa012", @generic="2b836a23e230be7aa139840ac97472c2a2b709377fe26d78e22117867a6fbfb44a1f19e2ba6009b4e408d8b1ea4dd309c0315898bad865e5903f2ae62739e8c7a01f962a03c1124d817da8a2021a4bf7049fe75f0baa6262663f17bc8bea448589a4c1e4b5ee9705d9db5c2ef19a324e9fa32fd1ecfa200a96c80fa28d2ff6bed395310cc719ab01db8aaacfe220b44dbe9e3a3c1b1b81ae47e03b5d50d557e2387a7becb55dbae37e1d1b6ae4c083de87b85a2a5079fe7816e5bf21b5b2789df9ce4b8da69f76cb1e3b97f3c612622ab6ae111659904b71cd0ad7863f3844f9b393ea4d9bbb123351461bf24f5e242b2c2faf1fbb8a5889f355765eadb7d8290af0d99287252735e708521190bc60045ad8763268fa68bd0ce1a10f79d6268be4dff5bb836cc59854c158c58c12b49cf73efd9869022a9673355fb580766254fe5db46c88e6e96ce1d3d3155a0de9dc460965da7c02eaf45c7ab6b6e6960476f0da92c1cb42f2f1342e65209fbfb3c478f146fd8e1a19dbb3a0d7f976236c382b3b72fe86e2dcdf1422e5d2683d8ed29d544969b86d20ddbd8e1284dce7654be3f1647efb223064e6ce5f31c4e96e49cae15bc5930be4986c8abebae8fdece919fb5428dccab0afa123a3dc3e9ed735e4b850d989f3b04c946caaf42ac9543a40bbbba3daafaf19ad36f80dd0350f0c31a7dd6966bd8ccfed18b9b175706243b8bea1c099442a5598f8e8f6ddf7734aa273256fb3e2e14e671f64601cc31d35b5f1ddcbb33d40df02e79c4a44be12a0f96a032fbcfb49ea662c2b028200ef247cadf3f22f206edad11071b51fcac71d53c59b485a03b5312fbc73e69035c61560b02c470b3b7d8c2ee0857f2b5959a62df91211a338bad5134cb5e08f5e74fee392d4005e97cefde48b52c147492c2d6984d42dd6ecc76c1f3e090d0c51042ff2347f4d2bcbbba15b6631149e28df69ebca5070285e8596a3fe8aeb1b096ef8ee8cc510b32b11bd74c8b8af541a4c8b8d49cd4023fcd44677b1c5300b345cabcb15c418f335f58cd63f3b8c15df1612d87af8d7be5c5ef7f9e89349e328184786ac9393c721a00bec09829d72f94eeafb13e9f13a98bc413b571a9ea855946d18ed01cc0e29aeff89ff132b737feed3e4c607375bfeae0ee9d96edb8289b7c633e4b89eeace2f9a31821f7a60a62c1c532bccaf7d87aa6230486f1e6cf8f3d20d2d57226e82389d3a82cd04a3f13a21edd6e3954173f8896dcff0fe5552e43d8622b5967e69d00f966b1242f243fb6c3de12a3d03882e41334340d338a99d2b8a1df05d13bf59a940f254631bf62e4b38570efb4f15c0171c111d18aba29ecf447d8c1bb21b4fb9c5091e29aacfcde7ea348a532bcc06c45e4bc22ed2c05278c7ff485323ffdce8685d842e6d9907fa00157f7d851312b21ae9c318747a2bfa043df9f3faeec044c5591a58325271e328e171279eabb90c95aac36b9a5ee268e64f3cc5bcea475e64de34583c808b792569c78abfbf76426b34f43df4c7b92e8ea069e2e70a175c44e1e73f119295e96d114e1e5c769d1cb2ea3394eac3eae5daf5ec65f3a7dd435a183e4c15e0429645339c0a054fd09fbd9ee2eac8c027ef12cba296d28252fb710a1a34bc68f2dea889527192c854373cc16d9443e268781930d3595e72630052a4f9609dffc7f0f026664b60c9f18865b3d9e498e20b8efb659f1937cca1eef8a19148710448ccc9578f2f536df162067be9ae881eceb179be35e8ebf9caeb4fb00d0977ffedbbfc9b2d1f40ea6cfb27716b907f72c9fa2e7f62aa4841b46e184cfe614154e416c554ae22517f8564434f443561a04a5f70eef22552b0682ed54e591885e7ea6fb2b3905fc29031bf0f2a0f3f8d992c568eea81bac0b54b4c81a7c0091d0bda92a98677283e45011145d82aca672ad91b9501a41540fc828a253587a68d39aee6f8c4e726fdafe8189b74b6e7a1aa4e5b8346ffab34b34e5a9fd0c95669b6930bb51a02fd9581903bd4dfe69dbe742e26c260283c40c16385b95b3cce3b70febba4e5df50e109d49348c1c3665891d1d51e4849d4cd98672b0a32b87cd5d203f965defbe18d30560fbee8a0e79b5642cfef7eee0e98247d88cd18bddcf1838a0b92a4fc38711a3bfd2f908345b3152a78d9edf940df9993acee7cd48686aebd01523d7bb2c00858d17f3564a904df2429945170603ea1384b6d6179ee052f883594fa421df15974c679987c2cd8d75fb16ffa07b35e9e79991c93587cd994932d6b0e6707cdd267663644c035834805decfa37a7117fe8ac76a5f305c1cd80e02fd072943c0f9091734e9a0220470a195363489a311450d4df7cfcdf3682c2373c54bd1bf6aaaf6ba8e930ebe1e23e521ab1ffce908acded51dbc1ff82f535d9b37107f84b3dedd1670edf027922555d9b1904bd3f8be4d2fac870dd8479b271708ba524e239d3824caed1c803cfcc215c40775cd63df2bc719d81d5c4f8d34eb5941f081d6ec5bb94a3bad01be5afba33c66fe5babd51a8ea228f020457a061b9f4038590ad022f960c7606d68923cb967f157b37f61f75172117ed5ae4dabed812380c4ce2f043fc7570f020dd3e102f3c9e32e17bc45c37787a1f42bc6935c4d9c19479ecb9aa10b8824d8efa28ec2adceb8af48824080b234a60189685fca337dc5ccf09d63cd17af9592fd67387ef1f02c7cf32927df658e01260aeee05348c6944c3342041d77060e5a8d9583b25e47059274b6f677624e9d2bcaf8b58fa822473a2e0abe23ad48868622096ff39ddc26bf803568034bf8937e60400c4e9d98b74882e1d7e8a4636eaf8395f7aa5e0865860272f7d7f494438637cf08782fc6050a4ff41b00a7ff76dbd17eb3f74c817d314239721415860ae971bd159f891bb7e0647f69624f658f49b1174f2463e81405f271fc2c2b184336406c8ba19862d2e4e3d571b53912f8192cf11c9a6c6f3119e84bb7d2578533018598df74a6f002554853b97454facc540a563f6d4946ddf8e13277881de00eab86ada4e1ff288078b8a153c0b517deaae1ad91f31ba3de036d29e8d02e909e9bc2869ccc79330d1ed568efa177e2bbd9fe6a9f4f4d507af2ebaddc21b0d083e8ef21c2efc0c54fd364dc1d2cbc22842074cfd6853222945f39b8d12983dea5a35f300c6dfac61fe6b98a4c9decec1b97ef01d64282273bc88d902eceb77157d7dca708bcf630c8d030f82c866b025261a91df1b3972bb00db72dca38bcc6f7a52f2f1aeb08cb05300f204fe20205ad9c0ec696c730d4eeb09eb1ae15e95d3ed6e5d82e58dfb63738a32a95c6194899803302814fa80d3036c30f9c8b8e576f48a660dc75db5df007064304010d0586f25c813c1bdba54bad2b62e15b9c441b12cf1072dfad819fe7c9032bd74f7e4e773dc3670bd257dcffdaaff3c6d234ed8df78c9b12179c68ad327168b0283e92ab6ea38890955d6125da1a2c672819d7e6a091c6ecec679819be854ee7a9d5a8728b7ee36fbe79759856a55cd06162240d89d39a0a03f7ef84fc9c85e8d81971a20b97affd5d2642130fe06ab22ced132586cf541e0816736f0a92ada5d4c6cce46c605a6704fcc23c86276f8ed5082e1c5a5fac9ad6df66df1775517881434c1aaf9e22b7c72e8b866578249bdb95840ddd1b14345fe71d719176995378580dc16bdc838d61443d39aa9b028a5b5dced14f3b7ab116ad177f2bdf0f448b043341c65a5828f7598e334179581a8717eef7b07121c5379285af2d94c531c12b8dcc291f34d5c7c2879259c63057f093b48ee3c864ff6da53bc0d54c642cd9cb4d197e1327088248b650f9e943c0355b4018444e172e8098b3aa78948f8061f56de13de0ff0f33c960794b350d6cc8b8802f202f5fe3983ef22e39a96612e73f0c05bb1ac6b6ade2fb5cade56db47976b43328a86328306a44187bff82e194e7c7118f261fa26e83095e1ce6b45e7658afbb052e501b2c53cf2719a4542cb15929a2ec31e5debd6a3e9f98e99ed55726e6ac4bbb0b1d7de7144411b2161088f62d730fb35d975b9bafab01bf4551c4cf2fea6974997abd29156d32d7216d8dadbf78ee41ef12ddc6bbceadf518cb0a83aa6270e14660f4fc899e53905c5a1f35b4fdbe4739529925422461dba9af8eff0273a55877138cfffa2abcef8d4a9f8913e79065180d0c9edbffcf71d7f2844813f47a5b8903657350bd94fdeb51c5bb4e9c9a8069f2d4cc45de0c59ef2cc47c073df1afbfac91d3b12a7d770d5dea162fbdf2873b313a743eccdd2c6f3846d4cc0492572ddd53158f2dce169595f30b2223d6b138f986928f1e33a766abfa6bce68a356130c0a069dc7e46bce5d331eca3a3ae99e0e94a2eb25cc7574b58ed567b275873be8d6acef3b3c1dd176efc8c9f243fbb96843c0fa24257b6443fe9b1cb44364d266aecf0aba3daf65191891b49c4ac3db9e767f669c95a265f676bcca19d79adcc6f143a6d344ff6e990e579d590193980d8e7f83ef17772b37f0a4439118d27b9939b697d49afb2e22079cc06d5029e5d858c939a5c6bf79e8a76e5b63230b162fbb241d07dedeb662f7b78ada4fd283805cf4a69236ec187269b3b2fe0ebc45a085597c7272d28ab1585249305c2685876f18650af0adcffdf19fa513865786a9d7753413184259480393ee4b17ba5fb0260966881712d6caf133246671eee0b992393c08b2c227c8a0684d0b49a26546d56a80e8fdf2d79715b34eeb6a99cc364d86d025cf33885bf49bda23cd3c3de8cad2089c20aad24aeda3fbf19aa724e9d387d87524a75df82ac6acabda620740e9b82e27a1f10ddb72c74db9cb9ade08f145a67f40e9ce17509f5eb74abc79993130e33ebce2d4c5bff504e9150cb015f5a3c394a12e88b42e1d175245756ad734e9629994df4cf3f237862ae1e9a3a2016e376b7ce72d079667e649a5121df4f676f2cbfdf6aac0e5a11afbbb9532787de693fa22924637a81db17045470edfc6c87ddd4e1b8119b05ac5ef89d3391186694322f97df76f87058635789f649347b3750485f035de91178868a6a1bdc52377c6fa8603639b8540d0bee6dbe0b485d8174962a2eeec44a7a63eba084ff6198795fe600a50c2ae45714172a5cb07ab8b53ae523f6ccf30c19f6d7afa1a91fe5a00d7b2b53fc5560fc7d1a2d3a1aa7c63a60b1d8a525864f82e4f01ed6f1147868012936f4f40fa3d0287a269a872aadd6b73f5b49e5cecb752d43e85a55045206b205c8d59c38d88e748e4ce75f4d5efc8e8100571864f4ad15bb717db19a63fa49f48f9f96585a6d4d1edbc871922670acc0de2dea3c36180bee481d80e389c4936cb6b8fb91883fb1b8e54a3c1f700d6aa724eca36dcebafc943c1e048965e9c18d87d3e88b671c715186eac92dbbf0f09e173659fdde268a9408fce1fb765ba53e33b522c961bf2d73a2a211ab9ca09fde79e75cc4f383ede7a2c7b650d014b891bed53463f8dd802644090be0f7f9285ab300741615358f798f94ea27de09f6bf0ac8770631e0db727daaa409a65e217e9898031f97a7539bf828c34e3b96b59cd4552f3c0b10477f26733457cc86f7d046a0764f449286c206fa0f5f97b023aa77d1093f8c7da1f107c6e70224ebd8bca2ed84667887a82ef08b8487cae65ec906dfe9b4cfcf6acbebe58c5d1d467459155d56b2dd25f9f6bcbc4795fc9e74bb5dbfa2e432118cb7b5d1b093e1cda0519a0304fae1c6d11283f6a9864ba9577d8fa02f854f43ef53eae9815", @nested={0x4, 0x92}, @typed={0x4, 0xc8}, @nested={0x4, 0x101}]}, @typed={0x14, 0x49, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x18}}, @generic="890c422e8bdf9aa59c0604a1047d62d69e51162852a18b03a39f8f46e888d196fc8c9655f2e4"]}]}, 0x2044}, 0x1, 0x0, 0x0, 0x20008080}, 0x4814)
r10 = syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f0000002700), r2)
sendmsg$auto_KSMBD_EVENT_TREE_CONNECT_RESPONSE(r2, &(0x7f00000027c0)={&(0x7f00000026c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000002780)={&(0x7f0000002740)={0x14, r10, 0x800, 0x70bd25, 0x25dfdbff, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000045}, 0x20000850)
r11 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000002800), 0x200000, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000002840)='/dev/ptyp6\x00', 0x20200, 0x0)
clock_settime$auto(0xd0, &(0x7f0000002880)={0xffffffff, 0x4})
r12 = openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f00000028c0), 0x7840, 0x0)
r13 = ioctl$auto_TUNSETNOCSUM(r12, 0x400454c8, &(0x7f0000002900)=0xffff)
ppoll$auto(&(0x7f0000002940)={<r14=>r11, 0x400, 0x40}, 0x0, &(0x7f0000002980)={0x6, 0x2}, &(0x7f00000029c0)={0xff}, 0x8)
mseal$auto(0xa, 0x5, 0x54)
r15 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000002a40), r13)
sendmsg$auto_IEEE802154_LLSEC_ADD_SECLEVEL(r2, &(0x7f0000002b40)={&(0x7f0000002a00)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000002b00)={&(0x7f0000002a80)={0x50, r15, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_CSMA_MIN_BE={0x5, 0x26, 0xb}, @IEEE802154_ATTR_CSMA_MIN_BE={0x5, 0x26, 0xff}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x8}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0x3f80}, @IEEE802154_ATTR_DEV_NAME={0x14, 0x1, 'geneve1\x00'}, @IEEE802154_ATTR_SRC_PAN_ID={0x6, 0xd, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000004}, 0x81)
r16 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000002bc0), r14)
sendmsg$auto_NL80211_CMD_MODIFY_LINK_STA(r2, &(0x7f0000002c80)={&(0x7f0000002b80)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000002c40)={&(0x7f0000002c00)={0x1c, r16, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x8}]}, 0x1c}}, 0x4000)
syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000002cc0), r14)
mseal$auto(0x1, 0xa, 0x2bc)
rt_sigtimedwait$auto(&(0x7f0000002d00), &(0x7f0000002d40)={@siginfo_0_0={0x3af4bc24, 0x36e3b7e3, 0x3, @_sigchld={r6, r3, 0x6, 0x8001}}}, &(0x7f0000002dc0)={0x68, 0x4}, 0x8)

2.202091809s ago: executing program 3 (id=229):
sysfs$auto(0x6, 0x5, 0x20000000000000)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
semget$auto(0x8001, 0x53b, 0x206)
recvmmsg$auto(0xffffffffffffffff, &(0x7f00000001c0)={{0x0, 0x5, 0x0, 0x9, 0x0, 0x800000000005, 0x7ffffffd}, 0x8}, 0x3, 0x1, 0x0)
semtimedop$auto(0x0, &(0x7f0000000140)={0x7, 0x81, 0x70}, 0x1f4, 0x0)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
ioctl$auto_SNDCTL_SEQ_GETINCOUNT(r1, 0x80045105, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2b, 0x804, 0x0)
mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye9\x00', 0x101e81, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000426bd7000fedbdf250200000008002700040000000a001800aa0000aa"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x202000d, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x2c402, 0x0)
r3 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000980)='/dev/ttye9\x00', 0x102, 0x0)
sendfile$auto(r3, r2, 0x0, 0x10000)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto_GETNCNT(0x0, 0x4, 0xe, 0x4)
write$auto_tty_fops_tty_io(r0, &(0x7f00000001c0)="352c8efa618c0bcf83a4ebdb27ec25906b0e1015b18c429fc1d7c523728754e15f334a572cad539da201096bbbc2ce7db19c429b3f63", 0x36)
io_uring_setup$auto(0x4bf15e08, 0x0)
sendmsg$auto_OVS_FLOW_CMD_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x40010}, 0x800)
bpf$auto(0x12, &(0x7f0000000040)=@enable_stats={0x1}, 0x26)

1.313903483s ago: executing program 2 (id=230):
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x80003, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = fanotify_init$auto(0x5, 0x0)
fanotify_mark$auto(r0, 0x205, 0xa, 0x4, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x100000)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snd/controlC1\x00', 0x40000, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, r1, 0x0)
r3 = socket(0x10, 0x2, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r4, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r4)
read$auto(r4, &(0x7f0000000000)='\x00', 0x91e2)
close_range$auto(0x2, 0x8, 0x0)
socket(0x10, 0x2, 0xc)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x2, 0x801, 0x84)
socket(0x2, 0x1, 0x106)
socket(0x2, 0x3, 0xa)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
pipe$auto(0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/misc\x00', 0x10b402, 0x0)
r5 = socket(0x10, 0x2, 0xc)
sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r5, @ANYRES8=r2], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x4000050)
write$auto(r3, &(0x7f0000000000)='-\x00', 0xfdef)

1.140468923s ago: executing program 3 (id=231):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x2, 0x80002, 0x73) (async, rerun: 32)
r0 = socket(0xa, 0x1, 0x84) (rerun: 32)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) (async)
r1 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
ioctl$auto_IMDELTIMER(r1, 0x80044941, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x2, 0x1, 0x106)
syz_genetlink_get_family_id$auto_smbd_genl(&(0x7f00000001c0), r0) (async)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/bus/pci/00/03.0\x00', 0x441, 0x0)
write$auto(r3, &(0x7f0000000080)='\\x7fF&\xb5\x8d\xddEl/trac_notrace_pid\x00\x00\x00\x00', 0x7) (async, rerun: 32)
r4 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) (rerun: 32)
r5 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0) (async)
write$auto(r4, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
sysfs$auto(0x2, 0x23, 0x0) (async, rerun: 64)
r6 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) (rerun: 64)
r7 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), r2)
sendmsg$auto_NL80211_CMD_DEL_PMKSA(r5, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00@', @ANYRES16=r7, @ANYBLOB="08002bbd7000fcdbdf253500000008000900c2000000080009000900000014000400766972745f776966693000000000000006009800f9ff000004001e01"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x40400, 0xd8)
fchmod$auto(r5, 0x8) (async)
setreuid$auto(0x4, 0x8) (async, rerun: 64)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4) (async, rerun: 64)
write$auto(r6, 0x0, 0x4) (async)
bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) (async, rerun: 64)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) (async, rerun: 64)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
ioctl$auto_TUNSETVNETBE2(r5, 0x400454de, &(0x7f0000000000)=0xfe6)
shutdown$auto(0x200000003, 0x2)

632.716783ms ago: executing program 0 (id=232):
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080))
exit$auto(0x2)
fchdir$auto(r0)
pivot_root$auto(&(0x7f00000002c0)='.\x00\xaf\xeb)\xae$\xfc\x00\xf8\x05AC\x9f\xbbR\xec\xc6c\x85\xc8P\xfbMT\xb9\x97\x8e\xb9\x9a\x8a\xa37\xa7\xe84sF\xe3U\x94\x99\x8fR\xd0\x98\f\xa5\xb1S\x7f\xc3\xa5\xc0\x97\x10qa\r\x02\xd2\xc8\xd2\x8e\xc7\x80\x11\x06#\xf5\x18|\xdc\x81Ai\xe9\x96iaR\xdbA\x04\x10\x99\xee\xdb\xae`-89`T\xd8\xc6\xea\xf7\x96\xb5\xe9\x164e\xb1 S\x8f\x12_\x95y\x91F\xc89\xb1\xd24?\x89.,\xe4\xb9\xea\x88\x15\xacs\xc6\x83\xd6\x81\xd7\x11\x88\x9c\xdd\x8a\x0e\xea\x19|\x7f\xed\x9e\x19JG\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc1%~\xc1?\x8aN\x84\x8f\x9e\x9c\xf4,\xb2\xdb\xcf\xb8\xa1pk\x99w\xe0/\xd0\xaf7\xac\x9f\xd7A\xf1\xbe\x03\x9f\\\xc1H\".B\x7f\xc3\xe0o3A\"R-PJL\xe9;\x93\xe3\x8b\xba\x86[\xd4\xa2>\xe8\x19\x1ex\xd3\x8a\x9a\xe7\xef\xb6\xde\xc9\xe8\xe5j\x82\xcc4\xc4&W?\xb2\x1c7X\x00\xea\x00\xcb\a#;\xb6\xa4k\x80/%P\xce\xeb\x02\xdd\x05\xdb\xcd\xd1\x05\xe1\'\x03\r\xec\xe5\xadFo\xd8[G\x8e\xd8\x9bE\xe4_\xb9\xec9\x9e/\x85n\xb3\xff\xe8\xa8$', &(0x7f00000004c0)='/\x00\xf5\xdf\xeb\xa1\xb1\xccYE\x92\x0e\xf1\xb6?S\xad\xdeiN\xc0\xb6\xa7>\x95\x1e\xdd\x03;t}\"\x01\xbf\an4>j<\xcb\xe0n\xa1\xae\xf7;\xf5\tJ\xb0\x95\xd5\x96\xae(\xd2\x06\xa7\xc2o\xe25\x8b\xe4\xac\x87\x98NAe\xf0\xf1\xd9\xd36\x98\x86\xca\xf6\xf8\xd0/\x1f\xb3\xe4N\xc0\x06\'\x11\x8a\xe108N/\xcc\x1f\xa9\xd0\xac\xf2\xf5\x90\xbbO\xcc\xa9qH\x00[\x86o\xf4\xaf\x93\x14\xbf|@\xb6E\xd5\xa7\xa9^\x84\x19\xca\x84\\\xb9u8\xa4\f\x7f\xa1Vh\xdc\'\x0e\xf6\xd9;\xcf@\xea\xde\xa0\xa8\xea\xef\xfcK5\x87Z\xc1\xccOx\x8bn\x1b\x93@o\xf7\xe30\x90\b\aQ_\xb9\x9dO\xab\xea \x88\xdc\xda>\xdc.O.\xc8\xe2\x04D\xc6\x14A\x7f\x000\xdd*\a\vX\xb0\x8bI\xd0K)u\x13{-\x02\xb2B\xabd[\xdd\xdc\x10M\x9c\x88a\xfd\xa1\x12\xeb\xe0O\xf8\xbf37e\x1e\xf1@\xe3\xae\xe4\xef\xbd|D\x1e;3\x99g\xd8\xf5\xf3\xe0\x96D\x93\x93\x86m\xa0Fn;\xff\xc3}\xb8\xcd\x0f0F\x96\x98\xd0\x19\xf5\xdf\xf1B\x17_t\xe4|i\xcd\x81|w\xfcNc\xdd\xb8\xdbQ\x0fb}c`=F\x91_\xbd+E\b\x14\x848\xe3\xee/\xe37\xcb\x00\xd7\xe0\x8f\xb2\xffU\xa3\n\xb3PW\x11\xe1\xdd\x05\x86\x9c\xcf\xfe\xfapL\xb2\x05\x82\xf4\xf2v\xe8\x83\xc9*M\x90\xa6P\x98\xb1\x94\x84\xb7\x00\xf2\xf0#\xd4\xe4\xe2\xaa~\x1d\xbc \xa2y\xae@\xab\x1d\xd8pBg\xbb\xa8|g\xc70.\x04\"\ff\xb0\xc6umooMT\xa8\xd3\x97 ?\xf1\x80\x01\x80\x10\xe9\x84Ff\xd4WU\xc41\xc3}\x03\xdc\'\xdd\xecJ\x97\xdb\xed\rr\xb6-$\x8b\xc5i\xe3\x113\x89M\xe4\xd7\x1dX\xc9\x15\x00\xd7j1t\\ \x88>s\xb5\x83\xf3\xef\x05\xb8+Y\x04{\x9a\x8e|\xfd\x92\xfb\xd1\"\x85\xb1\xf4*=\xee{\x7fS%;\xfd\xc0,\xa7\x973\xdc\x7f/B\xd8pe!\xd8sl\x15g\xd5\x05\x8eRQ\nm\xaa\xf2N\x1d\xda\xeb\xe3\x06\xd1at\xd9\xd5\xb2\xcb\xf5\x83\x84\x1eF\xab\x00\x8f\xa4\xb3\xd6\xaf\xcee3s\t\xf5\xcc*\xff\xf5\xf2\x98\x89T\x80\xa8\xae\x1e0\xe5\xa6\xc9.\v}\xa3\vi\x06e\xbd\xa1u\xc5_B\x8a\xe2@sF\xfd\xa9\x8f\x11\xdc\xbe\rjrb\x8a\xa6\x0f\xb3Zq\xf2\xce\xbc\xf3X\xcc\a\xe8v\xdb\xa0\x1cb</\x93\xc9\xb8\xdaB\xcc\xc9\xaaQ\xees\xc7\xf4\x14H\x98')

579.517198ms ago: executing program 2 (id=233):
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop10/queue/max_sectors_kb\x00', 0xc0800, 0x0)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/mem\x00', 0x402, 0x0)
read$auto(r0, 0x0, 0x20)
mmap$auto(0x0, 0x8, 0x80000000000000df, 0x10004000eb1, 0x8, 0x8000008000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$auto(r1, 0x10e, 0x7, 0x0, 0x0)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x3)
unshare$auto(0x40000080)

216.313µs ago: executing program 1 (id=234):
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/neigh/bond_slave_1/ucast_solicit\x00', 0x101202, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/conf/all/rp_filter\x00', 0x202, 0x0)
r0 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x1000, 0x0)
mmap$auto_tracing_buffers_fops_trace(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x9, 0x11, r0, 0x8)
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r1 = syz_clone(0x8000, 0x0, 0x0, 0x0, 0x0, 0x0)
move_pages$auto(r1, 0x1002, 0x0, 0x0, 0x0, 0x2)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x0, 0x0)
write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000280)="77bc870cf62d57632431063959734a1614b8ce7c8c4c14f2c47802d2bb11e360fa912b1148cb22a62b0348ea050abfdf00363f64ad3be17bc7baf80b2146c20042f475c8dbf2aebadb8b2c5443a2468c65eea2e5335f1cbdf22ab5964c19c50255dd89502f1caf381bf096fde60733e46a524b950c4b2e8a09c204c8edd6680d08b9b65362a29d70bbbd153966e4e77faefb346b4540782d99cdf00280777d16bce8177e805eff0e9b7a27af3809e885e5b4e07c9a5366a09c23eb02ac1d8e630ada6682d2f68f5097edf24ceb70de50c3e211d12a82aa633159e34e558a1835a9208f99b3db6c1bbb7749", 0xeb)
mbind$auto(0xb6, 0x2, 0x7, 0x0, 0x59f, 0x5)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
write$auto(0x3, 0x0, 0xfffffdef)
ioctl$auto(0x3, 0x402c542b, 0x38)
mmap$auto(0x0, 0x2020009, 0x3, 0x1ff, 0xfffffffffffffffa, 0x8000)
capset$auto(&(0x7f0000000180)={0x19980330}, 0x0)
ioctl$auto_IOC_PR_RELEASE(0xffffffffffffffff, 0x401070ca, 0x0)
ioctl$auto_TIOCSTI2(r2, 0x5412, 0x0)
mmap$auto(0x0, 0x6, 0x5, 0x937b, 0xffffffffffffffff, 0x100003)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000780)=0x6)
r3 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$auto_PPPIOCSMRU(r3, 0xc004743e, 0x0)

0s ago: executing program 3 (id=235):
r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000c00), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_PSE_GET(r1, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000e40)={0x28, r0, 0x1, 0x70bd2c, 0x25dfdc00, {}, [@ETHTOOL_A_PSE_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x801}, 0x40010)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.97' (ED25519) to the list of known hosts.
[   81.138514][ T5817] cgroup: Unknown subsys name 'net'
[   81.265905][ T5817] cgroup: Unknown subsys name 'cpuset'
[   81.274618][ T5817] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   82.753914][ T5817] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   85.080842][   T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   85.094098][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   85.102279][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   85.111526][   T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   85.123406][   T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   85.188694][ T5151] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   85.197547][ T5151] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   85.205410][ T5151] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   85.214068][ T5151] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   85.224816][ T5829] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   85.232145][ T5829] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   85.240708][ T5829] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   85.249588][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   85.274931][   T52] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   85.286487][   T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   85.303183][   T52] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   85.315818][   T52] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   85.325774][   T52] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   85.338683][   T52] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   85.348377][   T52] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   85.782741][ T5828] chnl_net:caif_netlink_parms(): no params data found
[   85.893201][ T5835] chnl_net:caif_netlink_parms(): no params data found
[   85.994757][ T5839] chnl_net:caif_netlink_parms(): no params data found
[   86.015384][ T5832] chnl_net:caif_netlink_parms(): no params data found
[   86.066688][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.074433][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.081836][ T5828] bridge_slave_0: entered allmulticast mode
[   86.089116][ T5828] bridge_slave_0: entered promiscuous mode
[   86.127444][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.134690][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.141825][ T5828] bridge_slave_1: entered allmulticast mode
[   86.149151][ T5828] bridge_slave_1: entered promiscuous mode
[   86.222688][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.229863][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.237360][ T5835] bridge_slave_0: entered allmulticast mode
[   86.244462][ T5835] bridge_slave_0: entered promiscuous mode
[   86.262211][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.277557][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.285502][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.293107][ T5835] bridge_slave_1: entered allmulticast mode
[   86.300457][ T5835] bridge_slave_1: entered promiscuous mode
[   86.320854][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.356996][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.364342][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.371587][ T5839] bridge_slave_0: entered allmulticast mode
[   86.378892][ T5839] bridge_slave_0: entered promiscuous mode
[   86.396433][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.404169][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.411403][ T5832] bridge_slave_0: entered allmulticast mode
[   86.418510][ T5832] bridge_slave_0: entered promiscuous mode
[   86.436292][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.443962][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.451108][ T5839] bridge_slave_1: entered allmulticast mode
[   86.458404][ T5839] bridge_slave_1: entered promiscuous mode
[   86.474699][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.481840][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.489837][ T5832] bridge_slave_1: entered allmulticast mode
[   86.497201][ T5832] bridge_slave_1: entered promiscuous mode
[   86.506718][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.527143][ T5828] team0: Port device team_slave_0 added
[   86.543052][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.571597][ T5828] team0: Port device team_slave_1 added
[   86.589418][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.601252][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.631365][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.642519][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.661802][ T5835] team0: Port device team_slave_0 added
[   86.688081][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.695368][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   86.721753][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.736252][ T5835] team0: Port device team_slave_1 added
[   86.765807][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.773213][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   86.799452][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.820851][ T5839] team0: Port device team_slave_0 added
[   86.828233][ T5832] team0: Port device team_slave_0 added
[   86.861839][ T5839] team0: Port device team_slave_1 added
[   86.871310][ T5832] team0: Port device team_slave_1 added
[   86.879322][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.887440][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   86.914217][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.956158][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.963429][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   86.989845][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.069064][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.077200][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.103703][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.115753][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.124249][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.150471][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.163670][ T5829] Bluetooth: hci0: command tx timeout
[   87.169975][ T5828] hsr_slave_0: entered promiscuous mode
[   87.178530][ T5828] hsr_slave_1: entered promiscuous mode
[   87.186542][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.193859][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.220270][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.233104][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.240054][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.266208][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.324120][   T52] Bluetooth: hci1: command tx timeout
[   87.329914][ T5829] Bluetooth: hci2: command tx timeout
[   87.349468][ T5835] hsr_slave_0: entered promiscuous mode
[   87.355969][ T5835] hsr_slave_1: entered promiscuous mode
[   87.362102][ T5835] debugfs: 'hsr0' already exists in 'hsr'
[   87.368520][ T5835] Cannot create hsr debugfs directory
[   87.402669][ T5829] Bluetooth: hci3: command tx timeout
[   87.451519][ T5839] hsr_slave_0: entered promiscuous mode
[   87.458335][ T5839] hsr_slave_1: entered promiscuous mode
[   87.464615][ T5839] debugfs: 'hsr0' already exists in 'hsr'
[   87.470360][ T5839] Cannot create hsr debugfs directory
[   87.486404][ T5832] hsr_slave_0: entered promiscuous mode
[   87.492847][ T5832] hsr_slave_1: entered promiscuous mode
[   87.499036][ T5832] debugfs: 'hsr0' already exists in 'hsr'
[   87.505585][ T5832] Cannot create hsr debugfs directory
[   87.895294][ T5828] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   87.910510][ T5828] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   87.928889][ T5828] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   87.940073][ T5828] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   88.018035][ T5835] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   88.029551][ T5835] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   88.042412][ T5835] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   88.069057][ T5835] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   88.120839][ T5839] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   88.146322][ T5839] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   88.158294][ T5839] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   88.170059][ T5839] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   88.270368][ T5832] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   88.281606][ T5832] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   88.295342][ T5832] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   88.326428][ T5832] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   88.399364][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.451755][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   88.482304][ T2945] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.489634][ T2945] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.517907][  T507] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.525100][  T507] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.550467][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.580885][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.609225][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[   88.634669][ T2945] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.641781][ T2945] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.675735][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[   88.696869][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.704119][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.714677][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.721912][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.743930][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.751067][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.788386][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.876986][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[   88.936191][ T2945] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.943572][ T2945] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.977732][  T507] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.984942][  T507] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.207332][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.243614][ T5829] Bluetooth: hci0: command tx timeout
[   89.320145][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.403406][   T52] Bluetooth: hci1: command tx timeout
[   89.409206][ T5829] Bluetooth: hci2: command tx timeout
[   89.421855][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.448372][ T5828] veth0_vlan: entered promiscuous mode
[   89.486368][   T52] Bluetooth: hci3: command tx timeout
[   89.505652][ T5828] veth1_vlan: entered promiscuous mode
[   89.540625][ T5839] veth0_vlan: entered promiscuous mode
[   89.565824][ T5839] veth1_vlan: entered promiscuous mode
[   89.609335][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.641110][ T5828] veth0_macvtap: entered promiscuous mode
[   89.650058][ T5835] veth0_vlan: entered promiscuous mode
[   89.663526][ T5828] veth1_macvtap: entered promiscuous mode
[   89.697006][ T5835] veth1_vlan: entered promiscuous mode
[   89.712148][ T5839] veth0_macvtap: entered promiscuous mode
[   89.724363][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.741390][ T5839] veth1_macvtap: entered promiscuous mode
[   89.760306][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.792002][ T5832] veth0_vlan: entered promiscuous mode
[   89.799392][ T4201] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.810193][ T4201] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.828993][ T4201] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.838471][ T4201] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.849891][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.871693][ T5835] veth0_macvtap: entered promiscuous mode
[   89.880868][ T5832] veth1_vlan: entered promiscuous mode
[   89.904759][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.912397][ T5835] veth1_macvtap: entered promiscuous mode
[   89.949983][ T4540] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.969768][ T4540] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.998844][ T4540] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.028717][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.036741][ T4540] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.077079][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.093090][ T4540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.106619][ T4540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.137801][ T5832] veth0_macvtap: entered promiscuous mode
[   90.159827][ T3427] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.182516][ T5832] veth1_macvtap: entered promiscuous mode
[   90.190164][ T3427] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.199726][ T3427] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.221738][ T3427] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.233231][ T3427] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.241075][ T3427] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.281369][  T507] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.308050][  T507] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.341416][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.369938][ T5828] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   90.408009][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.431405][  T507] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.453076][  T507] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.487951][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.508257][  T507] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.524621][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.540975][  T507] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.550453][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.584318][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.654665][ T5921] smpboot: CPU 1 is now offline
[   90.666669][  T915] cfg80211: failed to load regulatory.db
[   90.733304][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.785087][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.819091][ T5926] smpboot: Booting Node 0 Processor 1 APIC 0x1
[   90.967592][  T507] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.976071][  T507] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.071064][ T2945] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.114073][ T2945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.179608][ T5935] Zero length message leads to an empty skb
[   91.252985][   T52] Bluetooth: hci0: command tx timeout
[   91.295566][ T5932] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[   91.295566][ T5932] The task syz.3.4 (5932) triggered the difference, watch for misbehavior.
[   91.395149][    T9] smpboot: CPU 1 is now offline
[   91.462381][ T5938] smpboot: Booting Node 0 Processor 1 APIC 0x1
[   91.482808][ T5829] Bluetooth: hci1: command tx timeout
[   91.488282][   T52] Bluetooth: hci2: command tx timeout
[   91.563227][ T5829] Bluetooth: hci3: command tx timeout
[   91.808832][ T5950] capability: warning: `syz.1.6' uses 32-bit capabilities (legacy support in use)
[   91.999540][ T5934] ima: policy update failed
[   92.013748][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.032348][   T30] audit: type=1802 audit(1768164888.222:2): pid=5934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.11" res=0 errno=0
[   92.093086][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.102321][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.143208][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.233990][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.373196][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.464667][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.493598][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.513103][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.521893][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   92.568402][ T5903] smpboot: CPU 1 is now offline
[   92.653930][ T5964] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10'.
[   92.729880][ T5964] netlink: 'syz.2.10': attribute type 1 has an invalid length.
[   92.761735][ T5964] netlink: 5 bytes leftover after parsing attributes in process `syz.2.10'.
[   92.794749][ T5966] smpboot: Booting Node 0 Processor 1 APIC 0x1
[   93.068033][ T5921] smpboot: CPU 1 is now offline
[   93.145600][ T5974] smpboot: Booting Node 0 Processor 1 APIC 0x1
[   93.322885][ T5829] Bluetooth: hci0: command tx timeout
[   93.562689][ T5829] Bluetooth: hci1: command tx timeout
[   93.563201][   T52] Bluetooth: hci2: command tx timeout
[   93.643103][   T52] Bluetooth: hci3: command tx timeout
[   94.150426][ T5982] ima: policy update failed
[   94.156313][   T30] audit: type=1802 audit(1768164890.352:3): pid=5982 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.16" res=0 errno=0
[   94.664454][ T6008] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24'.
[   94.675404][ T6008] netlink: 'syz.3.24': attribute type 1 has an invalid length.
[   94.692889][ T6008] netlink: 5 bytes leftover after parsing attributes in process `syz.3.24'.
[   94.695057][ T6010] netlink: 4 bytes leftover after parsing attributes in process `syz.2.33'.
[   94.854795][ T5921] smpboot: CPU 1 is now offline
[   94.900808][ T6014] smpboot: Booting Node 0 Processor 1 APIC 0x1
[   95.040486][   T10] smpboot: CPU 1 is now offline
[   95.112514][ T6017] smpboot: Booting Node 0 Processor 1 APIC 0x1
[   95.128562][ T6020] netlink: 4 bytes leftover after parsing attributes in process `syz.2.36'.
[   95.350642][   T10] smpboot: CPU 1 is now offline
[   95.442355][ T6022] smpboot: Booting Node 0 Processor 1 APIC 0x1
[   96.260494][ T6030] ima: policy update failed
[   96.265969][   T30] audit: type=1802 audit(1768164892.462:4): pid=6030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.30" res=0 errno=0
[   96.746658][   T30] audit: type=1800 audit(1768164892.942:5): pid=6061 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.41" name="discovery_nqn" dev="configfs" ino=8135 res=0 errno=0
[   96.834701][ T6064] netlink: 4 bytes leftover after parsing attributes in process `syz.3.42'.
[   96.848347][ T6061] FAULT_INJECTION: forcing a failure.
[   96.848347][ T6061] name failslab, interval 1, probability 0, space 0, times 1
[   96.888759][ T6061] CPU: 0 UID: 0 PID: 6061 Comm: syz.1.41 Not tainted syzkaller #0 PREEMPT(full) 
[   96.888796][ T6061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   96.888815][ T6061] Call Trace:
[   96.888824][ T6061]  <TASK>
[   96.888836][ T6061]  dump_stack_lvl+0x16c/0x1f0
[   96.888885][ T6061]  should_fail_ex+0x512/0x640
[   96.888915][ T6061]  ? __kmalloc_cache_noprof+0x5f/0x800
[   96.888949][ T6061]  should_failslab+0xc2/0x120
[   96.888989][ T6061]  __kmalloc_cache_noprof+0x80/0x800
[   96.889020][ T6061]  ? io_uring_alloc_task_context+0x96/0x650
[   96.889062][ T6061]  ? io_uring_alloc_task_context+0x96/0x650
[   96.889089][ T6061]  ? percpu_counter_add_batch+0xca/0x200
[   96.889116][ T6061]  io_uring_alloc_task_context+0x96/0x650
[   96.889145][ T6061]  ? file_init_path+0x4fe/0x760
[   96.889173][ T6061]  ? __pfx_io_uring_alloc_task_context+0x10/0x10
[   96.889204][ T6061]  ? alloc_file_pseudo+0x1b3/0x230
[   96.889237][ T6061]  __io_uring_add_tctx_node+0x2e0/0x500
[   96.889267][ T6061]  ? __pfx___io_uring_add_tctx_node+0x10/0x10
[   96.889298][ T6061]  ? __anon_inode_getfile+0x17c/0x280
[   96.889330][ T6061]  io_uring_setup+0x1478/0x1f80
[   96.889368][ T6061]  ? __pfx_io_uring_setup+0x10/0x10
[   96.889407][ T6061]  ? __pfx_do_futex+0x10/0x10
[   96.889435][ T6061]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   96.889480][ T6061]  ? xfd_validate_state+0x61/0x180
[   96.889503][ T6061]  ? __pfx_do_writev+0x10/0x10
[   96.889543][ T6061]  __x64_sys_io_uring_setup+0xc2/0x170
[   96.889579][ T6061]  do_syscall_64+0xcd/0xf80
[   96.889619][ T6061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.889645][ T6061] RIP: 0033:0x7fa71158f7c9
[   96.889672][ T6061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.889696][ T6061] RSP: 002b:00007fa70f7f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9
[   96.889721][ T6061] RAX: ffffffffffffffda RBX: 00007fa7117e5fa0 RCX: 00007fa71158f7c9
[   96.889739][ T6061] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[   96.889755][ T6061] RBP: 00007fa711613f91 R08: 0000000000000000 R09: 0000000000000000
[   96.889771][ T6061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   96.889786][ T6061] R13: 00007fa7117e6038 R14: 00007fa7117e5fa0 R15: 00007ffcb889d1d8
[   96.889823][ T6061]  </TASK>
[   97.230705][ T6066] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[   97.549799][   T22] IRQ fixup: irq 33 move in progress, old vector 47
[   97.558648][ T5930] smpboot: CPU 1 is now offline
[   97.605356][ T6075] smpboot: Booting Node 0 Processor 1 APIC 0x1
[   97.704838][ T6080] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   97.798101][ T6088] FAULT_INJECTION: forcing a failure.
[   97.798101][ T6088] name failslab, interval 1, probability 0, space 0, times 0
[   97.834478][ T6088] CPU: 1 UID: 0 PID: 6088 Comm: syz.2.48 Not tainted syzkaller #0 PREEMPT(full) 
[   97.834512][ T6088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   97.834524][ T6088] Call Trace:
[   97.834531][ T6088]  <TASK>
[   97.834541][ T6088]  dump_stack_lvl+0x16c/0x1f0
[   97.834582][ T6088]  should_fail_ex+0x512/0x640
[   97.834608][ T6088]  ? kmem_cache_alloc_noprof+0x62/0x770
[   97.834639][ T6088]  should_failslab+0xc2/0x120
[   97.834675][ T6088]  kmem_cache_alloc_noprof+0x83/0x770
[   97.834703][ T6088]  ? find_held_lock+0x2b/0x80
[   97.834731][ T6088]  ? getname_flags.part.0+0x4c/0x550
[   97.834761][ T6088]  ? getname_flags.part.0+0x4c/0x550
[   97.834784][ T6088]  getname_flags.part.0+0x4c/0x550
[   97.834811][ T6088]  getname_flags+0x93/0xf0
[   97.834841][ T6088]  user_path_at+0x24/0x60
[   97.834872][ T6088]  __do_sys_pivot_root+0x194/0x1360
[   97.834900][ T6088]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   97.834930][ T6088]  ? __pfx___do_sys_pivot_root+0x10/0x10
[   97.834963][ T6088]  ? ksys_write+0x1ac/0x250
[   97.834995][ T6088]  ? __pfx_ksys_write+0x10/0x10
[   97.835042][ T6088]  ? do_syscall_64+0xcd/0xf80
[   97.835073][ T6088]  do_syscall_64+0xcd/0xf80
[   97.835110][ T6088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.835134][ T6088] RIP: 0033:0x7fb9eb18f7c9
[   97.835154][ T6088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.835176][ T6088] RSP: 002b:00007fb9ec092038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[   97.835200][ T6088] RAX: ffffffffffffffda RBX: 00007fb9eb3e6090 RCX: 00007fb9eb18f7c9
[   97.835214][ T6088] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 00002000000002c0
[   97.835229][ T6088] RBP: 00007fb9ec092090 R08: 0000000000000000 R09: 0000000000000000
[   97.835242][ T6088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.835255][ T6088] R13: 00007fb9eb3e6128 R14: 00007fb9eb3e6090 R15: 00007fffc4e017d8
[   97.835289][ T6088]  </TASK>
[   98.993623][ T6108] netlink: 4 bytes leftover after parsing attributes in process `syz.1.55'.
[   99.246061][ T6114] netlink: 4 bytes leftover after parsing attributes in process `syz.1.57'.
[   99.265290][ T6114] netlink: 'syz.1.57': attribute type 1 has an invalid length.
[   99.282472][ T6114] netlink: 5 bytes leftover after parsing attributes in process `syz.1.57'.
[   99.409064][ T6119] netlink: 4 bytes leftover after parsing attributes in process `syz.1.59'.
[   99.420428][ T6119] netlink: 'syz.1.59': attribute type 1 has an invalid length.
[   99.428824][ T6119] netlink: 5 bytes leftover after parsing attributes in process `syz.1.59'.
[   99.524532][ T6101] ima: policy update failed
[   99.536299][   T30] audit: type=1802 audit(1768164895.732:6): pid=6101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.53" res=0 errno=0
[   99.740438][ T6133] FAULT_INJECTION: forcing a failure.
[   99.740438][ T6133] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   99.770449][ T6133] CPU: 1 UID: 0 PID: 6133 Comm: syz.0.62 Not tainted syzkaller #0 PREEMPT(full) 
[   99.770480][ T6133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   99.770491][ T6133] Call Trace:
[   99.770499][ T6133]  <TASK>
[   99.770508][ T6133]  dump_stack_lvl+0x16c/0x1f0
[   99.770547][ T6133]  should_fail_ex+0x512/0x640
[   99.770577][ T6133]  strncpy_from_user+0x3b/0x2e0
[   99.770604][ T6133]  getname_flags.part.0+0x8f/0x550
[   99.770632][ T6133]  getname_flags+0x93/0xf0
[   99.770662][ T6133]  user_path_at+0x24/0x60
[   99.770691][ T6133]  __do_sys_pivot_root+0x194/0x1360
[   99.770923][ T6133]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   99.770962][ T6133]  ? __pfx___do_sys_pivot_root+0x10/0x10
[   99.770999][ T6133]  ? ksys_write+0x1ac/0x250
[   99.771031][ T6133]  ? __pfx_ksys_write+0x10/0x10
[   99.771076][ T6133]  ? do_syscall_64+0xcd/0xf80
[   99.771109][ T6133]  do_syscall_64+0xcd/0xf80
[   99.771145][ T6133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.771172][ T6133] RIP: 0033:0x7f4cf078f7c9
[   99.771193][ T6133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.771213][ T6133] RSP: 002b:00007f4cf15b5038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[   99.771233][ T6133] RAX: ffffffffffffffda RBX: 00007f4cf09e6090 RCX: 00007f4cf078f7c9
[   99.771247][ T6133] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 00002000000002c0
[   99.771260][ T6133] RBP: 00007f4cf15b5090 R08: 0000000000000000 R09: 0000000000000000
[   99.771275][ T6133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.771289][ T6133] R13: 00007f4cf09e6128 R14: 00007f4cf09e6090 R15: 00007ffc1a5c55f8
[   99.771321][ T6133]  </TASK>
[   99.967804][ T6125] can: request_module (can-proto-0) failed.
[   99.993462][   T52] Bluetooth: hci1: SCO packet for unknown connection handle 0
[  100.564730][ T6138] netlink: 12 bytes leftover after parsing attributes in process `syz.3.63'.
[  100.994872][ T6158] netlink: 4 bytes leftover after parsing attributes in process `syz.2.69'.
[  101.005972][ T6158] netlink: 'syz.2.69': attribute type 1 has an invalid length.
[  101.014156][ T6158] netlink: 5 bytes leftover after parsing attributes in process `syz.2.69'.
[  101.016360][ T6163] netlink: 4 bytes leftover after parsing attributes in process `syz.0.70'.
[  101.361093][ T6175] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  101.536696][ T6181] netlink: 342 bytes leftover after parsing attributes in process `syz.0.75'.
[  101.706384][ T6186] FAULT_INJECTION: forcing a failure.
[  101.706384][ T6186] name failslab, interval 1, probability 0, space 0, times 0
[  101.720063][ T6186] CPU: 0 UID: 0 PID: 6186 Comm: syz.1.76 Not tainted syzkaller #0 PREEMPT(full) 
[  101.720096][ T6186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  101.720109][ T6186] Call Trace:
[  101.720117][ T6186]  <TASK>
[  101.720126][ T6186]  dump_stack_lvl+0x16c/0x1f0
[  101.720166][ T6186]  should_fail_ex+0x512/0x640
[  101.720193][ T6186]  ? kmem_cache_alloc_noprof+0x62/0x770
[  101.720226][ T6186]  should_failslab+0xc2/0x120
[  101.720262][ T6186]  kmem_cache_alloc_noprof+0x83/0x770
[  101.720290][ T6186]  ? getname_flags.part.0+0x4c/0x550
[  101.720324][ T6186]  ? getname_flags.part.0+0x4c/0x550
[  101.720349][ T6186]  getname_flags.part.0+0x4c/0x550
[  101.720380][ T6186]  getname_flags+0x93/0xf0
[  101.720413][ T6186]  user_path_at+0x24/0x60
[  101.720446][ T6186]  __do_sys_pivot_root+0x24c/0x1360
[  101.720475][ T6186]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  101.720507][ T6186]  ? __pfx___do_sys_pivot_root+0x10/0x10
[  101.720541][ T6186]  ? ksys_write+0x1ac/0x250
[  101.720573][ T6186]  ? __pfx_ksys_write+0x10/0x10
[  101.720615][ T6186]  ? do_syscall_64+0xcd/0xf80
[  101.720648][ T6186]  do_syscall_64+0xcd/0xf80
[  101.720684][ T6186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.720709][ T6186] RIP: 0033:0x7fa71158f7c9
[  101.720728][ T6186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.720750][ T6186] RSP: 002b:00007fa70f7d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[  101.720773][ T6186] RAX: ffffffffffffffda RBX: 00007fa7117e6090 RCX: 00007fa71158f7c9
[  101.720790][ T6186] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 00002000000002c0
[  101.720805][ T6186] RBP: 00007fa70f7d5090 R08: 0000000000000000 R09: 0000000000000000
[  101.720819][ T6186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.720834][ T6186] R13: 00007fa7117e6128 R14: 00007fa7117e6090 R15: 00007ffcb889d1d8
[  101.720869][ T6186]  </TASK>
[  102.057349][ T6170] ima: policy update failed
[  102.062143][   T30] audit: type=1802 audit(1768164898.252:7): pid=6170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.72" res=0 errno=0
[  102.478500][ T6197] FAULT_INJECTION: forcing a failure.
[  102.478500][ T6197] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.540199][ T6197] CPU: 1 UID: 0 PID: 6197 Comm: syz.2.80 Not tainted syzkaller #0 PREEMPT(full) 
[  102.540231][ T6197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  102.540244][ T6197] Call Trace:
[  102.540253][ T6197]  <TASK>
[  102.540262][ T6197]  dump_stack_lvl+0x16c/0x1f0
[  102.540303][ T6197]  should_fail_ex+0x512/0x640
[  102.540336][ T6197]  _copy_from_iter+0x2a4/0x16c0
[  102.540368][ T6197]  ? rcu_is_watching+0x12/0xc0
[  102.540403][ T6197]  ? __pfx__copy_from_iter+0x10/0x10
[  102.540429][ T6197]  ? __asan_memset+0x23/0x50
[  102.540455][ T6197]  ? __build_skb_around+0x278/0x390
[  102.540481][ T6197]  ? is_vmalloc_addr+0x86/0xa0
[  102.540510][ T6197]  netlink_sendmsg+0x820/0xdd0
[  102.540549][ T6197]  ? __pfx_netlink_sendmsg+0x10/0x10
[  102.540593][ T6197]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  102.540638][ T6197]  sock_write_iter+0x566/0x610
[  102.540661][ T6197]  ? __pfx_sock_write_iter+0x10/0x10
[  102.540693][ T6197]  ? bpf_lsm_file_permission+0x9/0x10
[  102.540721][ T6197]  ? security_file_permission+0x71/0x210
[  102.540752][ T6197]  ? rw_verify_area+0xcf/0x6c0
[  102.540785][ T6197]  vfs_write+0x7d3/0x11d0
[  102.540818][ T6197]  ? __pfx_sock_write_iter+0x10/0x10
[  102.540845][ T6197]  ? __pfx_vfs_write+0x10/0x10
[  102.540873][ T6197]  ? find_held_lock+0x2b/0x80
[  102.540921][ T6197]  ksys_write+0x1f8/0x250
[  102.540952][ T6197]  ? __pfx_ksys_write+0x10/0x10
[  102.540994][ T6197]  do_syscall_64+0xcd/0xf80
[  102.541034][ T6197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.541059][ T6197] RIP: 0033:0x7fb9eb18f7c9
[  102.541078][ T6197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.541098][ T6197] RSP: 002b:00007fb9ec0b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  102.541122][ T6197] RAX: ffffffffffffffda RBX: 00007fb9eb3e5fa0 RCX: 00007fb9eb18f7c9
[  102.541138][ T6197] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002
[  102.541153][ T6197] RBP: 00007fb9ec0b3090 R08: 0000000000000000 R09: 0000000000000000
[  102.541168][ T6197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.541180][ T6197] R13: 00007fb9eb3e6038 R14: 00007fb9eb3e5fa0 R15: 00007fffc4e017d8
[  102.541212][ T6197]  </TASK>
[  102.848269][ T6201] netlink: 'syz.0.82': attribute type 1 has an invalid length.
[  103.052610][ T6205] cgroup: fork rejected by pids controller in /syz0
[  104.083469][ T6251] ima: policy update failed
[  104.105006][   T30] audit: type=1802 audit(1768164900.302:8): pid=6251 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.86" res=0 errno=0
[  104.248915][ T6379] netlink: zone id is out of range
[  104.633502][ T6389] FAULT_INJECTION: forcing a failure.
[  104.633502][ T6389] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.684931][ T6389] CPU: 0 UID: 0 PID: 6389 Comm: syz.3.92 Not tainted syzkaller #0 PREEMPT(full) 
[  104.684965][ T6389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  104.684978][ T6389] Call Trace:
[  104.684986][ T6389]  <TASK>
[  104.684996][ T6389]  dump_stack_lvl+0x16c/0x1f0
[  104.685038][ T6389]  should_fail_ex+0x512/0x640
[  104.685072][ T6389]  strncpy_from_user+0x3b/0x2e0
[  104.685102][ T6389]  getname_flags.part.0+0x8f/0x550
[  104.685135][ T6389]  getname_flags+0x93/0xf0
[  104.685166][ T6389]  user_path_at+0x24/0x60
[  104.685199][ T6389]  __do_sys_pivot_root+0x24c/0x1360
[  104.685228][ T6389]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  104.685259][ T6389]  ? __pfx___do_sys_pivot_root+0x10/0x10
[  104.685295][ T6389]  ? ksys_write+0x1ac/0x250
[  104.685328][ T6389]  ? __pfx_ksys_write+0x10/0x10
[  104.685370][ T6389]  ? do_syscall_64+0xcd/0xf80
[  104.685404][ T6389]  do_syscall_64+0xcd/0xf80
[  104.685442][ T6389]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.685467][ T6389] RIP: 0033:0x7fc56fd8f7c9
[  104.685537][ T6389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.685559][ T6389] RSP: 002b:00007fc570bb0038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[  104.685577][ T6389] RAX: ffffffffffffffda RBX: 00007fc56ffe6090 RCX: 00007fc56fd8f7c9
[  104.685591][ T6389] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 00002000000002c0
[  104.685603][ T6389] RBP: 00007fc570bb0090 R08: 0000000000000000 R09: 0000000000000000
[  104.685615][ T6389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.685628][ T6389] R13: 00007fc56ffe6128 R14: 00007fc56ffe6090 R15: 00007fff826094e8
[  104.685661][ T6389]  </TASK>
[  105.005236][ T6391] __nla_validate_parse: 4 callbacks suppressed
[  105.005259][ T6391] netlink: 354 bytes leftover after parsing attributes in process `syz.1.93'.
[  105.622753][ T6399] netlink: 4 bytes leftover after parsing attributes in process `syz.3.95'.
[  105.643710][ T6399] FAULT_INJECTION: forcing a failure.
[  105.643710][ T6399] name failslab, interval 1, probability 0, space 0, times 0
[  105.656613][ T6399] CPU: 1 UID: 0 PID: 6399 Comm: syz.3.95 Not tainted syzkaller #0 PREEMPT(full) 
[  105.656645][ T6399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  105.656658][ T6399] Call Trace:
[  105.656666][ T6399]  <TASK>
[  105.656675][ T6399]  dump_stack_lvl+0x16c/0x1f0
[  105.656719][ T6399]  should_fail_ex+0x512/0x640
[  105.656747][ T6399]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  105.656780][ T6399]  should_failslab+0xc2/0x120
[  105.656817][ T6399]  kmem_cache_alloc_noprof+0x83/0x770
[  105.656849][ T6399]  ? skb_clone+0x190/0x3f0
[  105.656887][ T6399]  ? skb_clone+0x190/0x3f0
[  105.656917][ T6399]  skb_clone+0x190/0x3f0
[  105.656951][ T6399]  netlink_deliver_tap+0xabd/0xd30
[  105.656994][ T6399]  netlink_unicast+0x64c/0x870
[  105.657035][ T6399]  ? __pfx_netlink_unicast+0x10/0x10
[  105.657069][ T6399]  ? __asan_memset+0x23/0x50
[  105.657096][ T6399]  ? __build_skb_around+0x278/0x390
[  105.657121][ T6399]  ? is_vmalloc_addr+0x86/0xa0
[  105.657152][ T6399]  netlink_sendmsg+0x8c8/0xdd0
[  105.657188][ T6399]  ? __pfx_netlink_sendmsg+0x10/0x10
[  105.657223][ T6399]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  105.657267][ T6399]  sock_write_iter+0x566/0x610
[  105.657290][ T6399]  ? __pfx_sock_write_iter+0x10/0x10
[  105.657322][ T6399]  ? bpf_lsm_file_permission+0x9/0x10
[  105.657348][ T6399]  ? security_file_permission+0x71/0x210
[  105.657378][ T6399]  ? rw_verify_area+0xcf/0x6c0
[  105.657411][ T6399]  vfs_write+0x7d3/0x11d0
[  105.657442][ T6399]  ? __pfx_sock_write_iter+0x10/0x10
[  105.657466][ T6399]  ? __pfx_vfs_write+0x10/0x10
[  105.657495][ T6399]  ? find_held_lock+0x2b/0x80
[  105.657547][ T6399]  ksys_write+0x1f8/0x250
[  105.657578][ T6399]  ? __pfx_ksys_write+0x10/0x10
[  105.657631][ T6399]  do_syscall_64+0xcd/0xf80
[  105.657671][ T6399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.657697][ T6399] RIP: 0033:0x7fc56fd8f7c9
[  105.657717][ T6399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.657739][ T6399] RSP: 002b:00007fc570bd1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  105.657763][ T6399] RAX: ffffffffffffffda RBX: 00007fc56ffe5fa0 RCX: 00007fc56fd8f7c9
[  105.657780][ T6399] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002
[  105.657795][ T6399] RBP: 00007fc570bd1090 R08: 0000000000000000 R09: 0000000000000000
[  105.657810][ T6399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.657824][ T6399] R13: 00007fc56ffe6038 R14: 00007fc56ffe5fa0 R15: 00007fff826094e8
[  105.657859][ T6399]  </TASK>
[  105.657983][ T6399] netlink: 'syz.3.95': attribute type 1 has an invalid length.
[  105.952599][ T6399] netlink: 5 bytes leftover after parsing attributes in process `syz.3.95'.
[  105.979106][ T6401] netlink: 4 bytes leftover after parsing attributes in process `syz.1.96'.
[  106.174718][ T6406] syz.1.97 uses obsolete (PF_INET,SOCK_PACKET)
[  106.649683][ T6414] ima: policy update failed
[  106.662477][   T30] audit: type=1802 audit(1768164902.852:9): pid=6414 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.101" res=0 errno=0
[  107.446804][ T6432] netlink: 330 bytes leftover after parsing attributes in process `syz.3.104'.
[  108.392473][ T6439] netlink: 4 bytes leftover after parsing attributes in process `syz.1.107'.
[  108.692757][ T6443] netlink: 4 bytes leftover after parsing attributes in process `syz.1.108'.
[  108.725980][ T6443] netlink: 'syz.1.108': attribute type 1 has an invalid length.
[  108.795976][ T6443] netlink: 5 bytes leftover after parsing attributes in process `syz.1.108'.
[  108.860910][ T6443] FAULT_INJECTION: forcing a failure.
[  108.860910][ T6443] name failslab, interval 1, probability 0, space 0, times 0
[  109.024891][ T6443] CPU: 1 UID: 0 PID: 6443 Comm: syz.1.108 Not tainted syzkaller #0 PREEMPT(full) 
[  109.024927][ T6443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  109.024940][ T6443] Call Trace:
[  109.024948][ T6443]  <TASK>
[  109.024958][ T6443]  dump_stack_lvl+0x16c/0x1f0
[  109.025000][ T6443]  should_fail_ex+0x512/0x640
[  109.025027][ T6443]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  109.025062][ T6443]  should_failslab+0xc2/0x120
[  109.025106][ T6443]  kmem_cache_alloc_node_noprof+0x86/0x800
[  109.025136][ T6443]  ? __alloc_skb+0x156/0x410
[  109.025162][ T6443]  ? __alloc_skb+0x35d/0x410
[  109.025196][ T6443]  ? __alloc_skb+0x156/0x410
[  109.025221][ T6443]  __alloc_skb+0x156/0x410
[  109.025247][ T6443]  ? __alloc_skb+0x35d/0x410
[  109.025274][ T6443]  ? __pfx___alloc_skb+0x10/0x10
[  109.025315][ T6443]  netlink_ack+0x15d/0xb80
[  109.025360][ T6443]  netlink_rcv_skb+0x332/0x420
[  109.025396][ T6443]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  109.025427][ T6443]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  109.025478][ T6443]  ? ns_capable+0xd7/0x110
[  109.025513][ T6443]  nfnetlink_rcv+0x1b3/0x430
[  109.025541][ T6443]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  109.025568][ T6443]  ? netlink_deliver_tap+0x1ae/0xd30
[  109.025609][ T6443]  netlink_unicast+0x5aa/0x870
[  109.025649][ T6443]  ? __pfx_netlink_unicast+0x10/0x10
[  109.025682][ T6443]  ? __asan_memset+0x23/0x50
[  109.025711][ T6443]  ? __build_skb_around+0x278/0x390
[  109.025738][ T6443]  ? is_vmalloc_addr+0x86/0xa0
[  109.025770][ T6443]  netlink_sendmsg+0x8c8/0xdd0
[  109.025811][ T6443]  ? __pfx_netlink_sendmsg+0x10/0x10
[  109.025851][ T6443]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  109.025896][ T6443]  sock_write_iter+0x566/0x610
[  109.025925][ T6443]  ? __pfx_sock_write_iter+0x10/0x10
[  109.025962][ T6443]  ? bpf_lsm_file_permission+0x9/0x10
[  109.025990][ T6443]  ? security_file_permission+0x71/0x210
[  109.026022][ T6443]  ? rw_verify_area+0xcf/0x6c0
[  109.026056][ T6443]  vfs_write+0x7d3/0x11d0
[  109.026096][ T6443]  ? __pfx_sock_write_iter+0x10/0x10
[  109.026124][ T6443]  ? __pfx_vfs_write+0x10/0x10
[  109.026154][ T6443]  ? find_held_lock+0x2b/0x80
[  109.026206][ T6443]  ksys_write+0x1f8/0x250
[  109.026239][ T6443]  ? __pfx_ksys_write+0x10/0x10
[  109.026283][ T6443]  do_syscall_64+0xcd/0xf80
[  109.026322][ T6443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.026348][ T6443] RIP: 0033:0x7fa71158f7c9
[  109.026368][ T6443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.026390][ T6443] RSP: 002b:00007fa70f7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  109.026414][ T6443] RAX: ffffffffffffffda RBX: 00007fa7117e5fa0 RCX: 00007fa71158f7c9
[  109.026430][ T6443] RDX: 000000000000fdef RSI: 0000200000000000 RDI: 0000000000000002
[  109.026446][ T6443] RBP: 00007fa70f7f6090 R08: 0000000000000000 R09: 0000000000000000
[  109.026460][ T6443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.026475][ T6443] R13: 00007fa7117e6038 R14: 00007fa7117e5fa0 R15: 00007ffcb889d1d8
[  109.026509][ T6443]  </TASK>
[  110.093598][ T6450] FAULT_INJECTION: forcing a failure.
[  110.093598][ T6450] name failslab, interval 1, probability 0, space 0, times 0
[  110.142647][ T6450] CPU: 1 UID: 0 PID: 6450 Comm: syz.0.105 Not tainted syzkaller #0 PREEMPT(full) 
[  110.142680][ T6450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  110.142694][ T6450] Call Trace:
[  110.142702][ T6450]  <TASK>
[  110.142712][ T6450]  dump_stack_lvl+0x16c/0x1f0
[  110.142752][ T6450]  should_fail_ex+0x512/0x640
[  110.142778][ T6450]  ? fs_reclaim_acquire+0xae/0x150
[  110.142818][ T6450]  should_failslab+0xc2/0x120
[  110.142854][ T6450]  __kmalloc_noprof+0xeb/0x910
[  110.142880][ T6450]  ? kasan_save_stack+0x42/0x60
[  110.142912][ T6450]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  110.142952][ T6450]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  110.142984][ T6450]  tomoyo_realpath_from_path+0xc2/0x6e0
[  110.143022][ T6450]  ? tomoyo_profile+0x47/0x60
[  110.143060][ T6450]  tomoyo_path2_perm+0x2a1/0x710
[  110.143087][ T6450]  ? tomoyo_path2_perm+0x293/0x710
[  110.143117][ T6450]  ? __pfx_tomoyo_path2_perm+0x10/0x10
[  110.143186][ T6450]  ? hook_sb_pivotroot+0x1e4/0x320
[  110.143222][ T6450]  ? putname+0xf5/0x1a0
[  110.143249][ T6450]  security_sb_pivotroot+0x8e/0x210
[  110.143277][ T6450]  __do_sys_pivot_root+0x26e/0x1360
[  110.143314][ T6450]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  110.143346][ T6450]  ? __pfx___do_sys_pivot_root+0x10/0x10
[  110.143381][ T6450]  ? ksys_write+0x1ac/0x250
[  110.143415][ T6450]  ? __pfx_ksys_write+0x10/0x10
[  110.143458][ T6450]  ? do_syscall_64+0xcd/0xf80
[  110.143493][ T6450]  do_syscall_64+0xcd/0xf80
[  110.143531][ T6450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.143557][ T6450] RIP: 0033:0x7f4cf078f7c9
[  110.143578][ T6450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.143600][ T6450] RSP: 002b:00007f4cf15b5038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[  110.143624][ T6450] RAX: ffffffffffffffda RBX: 00007f4cf09e6090 RCX: 00007f4cf078f7c9
[  110.143640][ T6450] RDX: 0000000000000000 RSI: 00002000000004c0 RDI: 00002000000002c0
[  110.143655][ T6450] RBP: 00007f4cf15b5090 R08: 0000000000000000 R09: 0000000000000000
[  110.143670][ T6450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.143685][ T6450] R13: 00007f4cf09e6128 R14: 00007f4cf09e6090 R15: 00007ffc1a5c55f8
[  110.143720][ T6450]  </TASK>
[  110.143829][ T6450] ERROR: Out of memory at tomoyo_realpath_from_path.
[  110.522497][ T6454] ima: policy update failed
[  110.528133][   T30] audit: type=1802 audit(1768164906.722:10): pid=6454 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.111" res=0 errno=0
[  112.014218][ T6472] syz.2.116 (6472) used greatest stack depth: 19272 bytes left
[  112.281264][ T6488] netlink: 4 bytes leftover after parsing attributes in process `syz.2.120'.
[  112.310296][ T6488] netlink: 'syz.2.120': attribute type 1 has an invalid length.
[  112.342708][ T6488] netlink: 5 bytes leftover after parsing attributes in process `syz.2.120'.
[  112.643324][ T6498] ima: policy update failed
[  112.653887][   T30] audit: type=1802 audit(1768164908.842:11): pid=6498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.123" res=0 errno=0
[  114.621377][ T6527] netlink: 4 bytes leftover after parsing attributes in process `syz.2.131'.
[  114.631528][ T6527] netlink: 'syz.2.131': attribute type 1 has an invalid length.
[  114.640583][ T6527] netlink: 5 bytes leftover after parsing attributes in process `syz.2.131'.
[  115.968136][ T6539] ima: policy update failed
[  116.033685][   T30] audit: type=1802 audit(1768164912.232:12): pid=6539 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.134" res=0 errno=0
[  118.070416][ T6566] netlink: 4 bytes leftover after parsing attributes in process `syz.3.141'.
[  118.104663][ T6566] netlink: 'syz.3.141': attribute type 1 has an invalid length.
[  118.112349][ T6566] netlink: 5 bytes leftover after parsing attributes in process `syz.3.141'.
[  118.132903][ T6566] FAULT_INJECTION: forcing a failure.
[  118.132903][ T6566] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.162861][ T6566] CPU: 0 UID: 0 PID: 6566 Comm: syz.3.141 Not tainted syzkaller #0 PREEMPT(full) 
[  118.162896][ T6566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  118.162918][ T6566] Call Trace:
[  118.162926][ T6566]  <TASK>
[  118.162936][ T6566]  dump_stack_lvl+0x16c/0x1f0
[  118.162990][ T6566]  should_fail_ex+0x512/0x640
[  118.163024][ T6566]  _copy_to_user+0x32/0xd0
[  118.163054][ T6566]  simple_read_from_buffer+0xcb/0x170
[  118.163090][ T6566]  proc_fail_nth_read+0x197/0x240
[  118.163131][ T6566]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  118.163172][ T6566]  ? rw_verify_area+0xcf/0x6c0
[  118.163203][ T6566]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  118.163241][ T6566]  vfs_read+0x1e4/0xcf0
[  118.163276][ T6566]  ? __pfx___mutex_lock+0x10/0x10
[  118.163303][ T6566]  ? __pfx_vfs_read+0x10/0x10
[  118.163345][ T6566]  ? __fget_files+0x20e/0x3c0
[  118.163389][ T6566]  ksys_read+0x12a/0x250
[  118.163422][ T6566]  ? __pfx_ksys_read+0x10/0x10
[  118.163465][ T6566]  do_syscall_64+0xcd/0xf80
[  118.163505][ T6566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.163530][ T6566] RIP: 0033:0x7fc56fd8e1dc
[  118.163555][ T6566] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  118.163584][ T6566] RSP: 002b:00007fc570bd1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  118.163607][ T6566] RAX: ffffffffffffffda RBX: 00007fc56ffe5fa0 RCX: 00007fc56fd8e1dc
[  118.163624][ T6566] RDX: 000000000000000f RSI: 00007fc570bd10a0 RDI: 000000000000000c
[  118.163639][ T6566] RBP: 00007fc570bd1090 R08: 0000000000000000 R09: 0000000000000000
[  118.163655][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.163669][ T6566] R13: 00007fc56ffe6038 R14: 00007fc56ffe5fa0 R15: 00007fff826094e8
[  118.163701][ T6566]  </TASK>
[  119.039329][ T6237] syz.0.84 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  119.109908][ T6572] netlink: 'syz.3.143': attribute type 4 has an invalid length.
[  119.122685][ T6572] netlink: 'syz.3.143': attribute type 1 has an invalid length.
[  119.161427][ T6578] netlink: 108 bytes leftover after parsing attributes in process `syz.2.144'.
[  119.201395][ T6578] nbd: must specify at least one socket
[  119.392623][ T6237] CPU: 0 UID: 0 PID: 6237 Comm: syz.0.84 Not tainted syzkaller #0 PREEMPT(full) 
[  119.392656][ T6237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  119.392671][ T6237] Call Trace:
[  119.392679][ T6237]  <TASK>
[  119.392689][ T6237]  dump_stack_lvl+0x16c/0x1f0
[  119.392733][ T6237]  dump_header+0x101/0x960
[  119.392767][ T6237]  oom_kill_process+0x176/0x910
[  119.392798][ T6237]  out_of_memory+0x350/0x1700
[  119.392826][ T6237]  ? __lock_acquire+0x436/0x2890
[  119.392856][ T6237]  ? __pfx_out_of_memory+0x10/0x10
[  119.392898][ T6237]  mem_cgroup_out_of_memory+0x118/0x130
[  119.392928][ T6237]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  119.392963][ T6237]  ? do_raw_spin_unlock+0x172/0x230
[  119.392993][ T6237]  try_charge_memcg+0x695/0xd30
[  119.393033][ T6237]  ? __pfx_try_charge_memcg+0x10/0x10
[  119.393065][ T6237]  ? find_held_lock+0x11/0x80
[  119.393095][ T6237]  ? rcu_read_unlock+0x17/0x60
[  119.393125][ T6237]  charge_memcg+0x8a/0x230
[  119.393159][ T6237]  __mem_cgroup_charge+0x2b/0x1e0
[  119.393185][ T6237]  shmem_alloc_and_add_folio+0x50c/0xc20
[  119.393223][ T6237]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  119.393254][ T6237]  ? shmem_allowable_huge_orders+0xd4/0x3f0
[  119.393287][ T6237]  shmem_get_folio_gfp+0x67f/0x1610
[  119.393318][ T6237]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  119.393354][ T6237]  ? __pfx_timestamp_truncate+0x10/0x10
[  119.393396][ T6237]  shmem_write_begin+0x1a4/0x3b0
[  119.393425][ T6237]  ? __pfx_shmem_write_begin+0x10/0x10
[  119.393452][ T6237]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  119.393494][ T6237]  generic_perform_write+0x3c4/0x900
[  119.393530][ T6237]  ? __pfx_generic_perform_write+0x10/0x10
[  119.393554][ T6237]  ? generic_update_time+0xcf/0xf0
[  119.393577][ T6237]  ? mnt_put_write_access_file+0x45/0xf0
[  119.393612][ T6237]  ? file_update_time_flags+0x35c/0x520
[  119.393639][ T6237]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  119.393668][ T6237]  shmem_file_write_iter+0x10e/0x140
[  119.393698][ T6237]  __kernel_write_iter+0x31a/0xb10
[  119.393734][ T6237]  ? __pfx___kernel_write_iter+0x10/0x10
[  119.393764][ T6237]  ? __up_read+0x2d1/0x700
[  119.393795][ T6237]  ? dump_user_range+0x756/0xb70
[  119.393827][ T6237]  ? dump_user_range+0x423/0xb70
[  119.393866][ T6237]  dump_user_range+0x413/0xb70
[  119.393910][ T6237]  ? __pfx_dump_user_range+0x10/0x10
[  119.393947][ T6237]  ? elf_coredump_extra_notes_write+0xbd/0x500
[  119.393980][ T6237]  ? __pfx_writenote+0x10/0x10
[  119.394013][ T6237]  elf_core_dump+0x29c3/0x3c10
[  119.394056][ T6237]  ? __pfx_elf_core_dump+0x10/0x10
[  119.394076][ T6237]  ? finish_task_switch.isra.0+0x202/0xbd0
[  119.394107][ T6237]  ? rcu_is_watching+0x12/0xc0
[  119.394138][ T6237]  ? finish_task_switch.isra.0+0x207/0xbd0
[  119.394170][ T6237]  ? 0xffffffffff600000
[  119.394189][ T6237]  ? __schedule+0x114c/0x6150
[  119.394220][ T6237]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  119.394299][ T6237]  ? vfs_coredump+0x2b85/0x55e0
[  119.394338][ T6237]  vfs_coredump+0x2b85/0x55e0
[  119.394380][ T6237]  ? __pfx_vfs_coredump+0x10/0x10
[  119.394413][ T6237]  ? __lock_acquire+0x436/0x2890
[  119.394442][ T6237]  ? __lock_acquire+0x436/0x2890
[  119.394465][ T6237]  ? lock_acquire+0x179/0x330
[  119.394491][ T6237]  ? lock_acquire+0x179/0x330
[  119.394535][ T6237]  ? arch_stack_walk+0xa6/0x100
[  119.394577][ T6237]  ? stack_trace_save+0x8e/0xc0
[  119.394613][ T6237]  ? __pfx_stack_trace_save+0x10/0x10
[  119.394649][ T6237]  ? stack_depot_save_flags+0x29/0x9b0
[  119.394677][ T6237]  ? __lock_acquire+0x436/0x2890
[  119.394700][ T6237]  ? kasan_save_stack+0x42/0x60
[  119.394782][ T6237]  ? proc_coredump_connector+0x2d1/0x4f0
[  119.394819][ T6237]  ? __pfx_proc_coredump_connector+0x10/0x10
[  119.394862][ T6237]  ? rcu_is_watching+0x12/0xc0
[  119.394900][ T6237]  get_signal+0x22e1/0x26d0
[  119.394952][ T6237]  ? __pfx_get_signal+0x10/0x10
[  119.394984][ T6237]  ? find_held_lock+0x2b/0x80
[  119.395014][ T6237]  ? fixup_vdso_exception+0x34b/0x400
[  119.395054][ T6237]  arch_do_signal_or_restart+0x8f/0x7a0
[  119.395089][ T6237]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  119.395133][ T6237]  ? do_user_addr_fault+0xa62/0x1370
[  119.395168][ T6237]  irqentry_exit+0x38a/0x8c0
[  119.395196][ T6237]  asm_exc_page_fault+0x26/0x30
[  119.395220][ T6237] RIP: 0033:0x200000
[  119.395246][ T6237] Code: Unable to access opcode bytes at 0x1fffd6.
[  119.395256][ T6237] RSP: 002b:000000000000000a EFLAGS: 00010217
[  119.395276][ T6237] RAX: 0000000000000000 RBX: 00007f4cf09e5fa0 RCX: 00007f4cf078f7c9
[  119.395292][ T6237] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000020003b46
[  119.395307][ T6237] RBP: 00007f4cf0813f91 R08: 0000000000000002 R09: 0000000000000000
[  119.395322][ T6237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  119.395344][ T6237] R13: 00007f4cf09e6038 R14: 00007f4cf09e5fa0 R15: 00007ffc1a5c55f8
[  119.395382][ T6237]  </TASK>
[  119.577189][ T6237] memory: usage 307200kB, limit 307200kB, failcnt 23431
[  120.002997][ T6237] memory+swap: usage 431688kB, limit 9007199254740988kB, failcnt 0
[  120.045207][ T6237] kmem: usage 2640kB, limit 9007199254740988kB, failcnt 0
[  120.092975][ T6237] Memory cgroup stats for /syz0:
[  120.093222][ T6237] cache 311209984
[  120.102103][ T6237] rss 139264
[  120.139437][ T6237] rss_huge 0
[  120.143015][ T6237] shmem 311209984
[  120.146661][ T6237] mapped_file 22319104
[  120.150733][ T6237] dirty 0
[  120.164176][ T6237] writeback 0
[  120.173390][ T6237] workingset_refault_anon 163
[  120.188331][ T6237] workingset_refault_file 0
[  120.205458][ T6237] swap 127475712
[  120.217565][ T6237] swapcached 520192
[  120.228125][ T6237] pgpgin 117747
[  120.240837][ T6237] pgpgout 41607
[  120.251287][ T6237] pgfault 18538
[  120.259297][ T6237] pgmajfault 29
[  120.269493][ T6237] inactive_anon 140197888
[  120.279766][ T6237] active_anon 171671552
[  120.286494][ T6237] inactive_file 0
[  120.291401][ T6237] active_file 0
[  120.296395][ T6237] unevictable 0
[  120.301031][ T6237] hierarchical_memory_limit 314572800
[  120.308960][ T6237] hierarchical_memsw_limit 9223372036854771712
[  120.327070][ T6237] total_cache 311209984
[  120.339140][ T6237] total_rss 139264
[  120.362037][ T6237] total_rss_huge 0
[  120.382682][ T6237] total_shmem 311209984
[  120.395269][ T6237] total_mapped_file 22319104
[  120.406750][ T6237] total_dirty 0
[  120.417252][ T6237] total_writeback 0
[  120.433765][ T6237] total_workingset_refault_anon 163
[  120.453502][ T6237] total_workingset_refault_file 0
[  120.474111][ T6237] total_swap 127475712
[  120.486442][ T6237] total_swapcached 520192
[  120.498848][ T6237] total_pgpgin 117747
[  120.510755][ T6237] total_pgpgout 41607
[  120.518320][ T6237] total_pgfault 18538
[  120.527958][ T6237] total_pgmajfault 29
[  120.537653][ T6237] total_inactive_anon 140197888
[  120.548441][ T6237] total_active_anon 171671552
[  120.557777][ T6237] total_inactive_file 0
[  120.567016][ T6237] total_active_file 0
[  120.575163][ T6237] total_unevictable 0
[  120.588855][ T6237] anon_cost 0
[  120.604746][ T6237] file_cost 0
[  120.612047][ T6237] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.84,pid=6237,uid=0
[  120.652748][ T6237] Memory cgroup out of memory: Killed process 6237 (syz.0.84) total-vm:131416kB, anon-rss:1140kB, file-rss:25280kB, shmem-rss:21888kB, UID:0 pgtables:188kB oom_score_adj:1000
[  121.274530][   T30] audit: type=1800 audit(1768164917.472:13): pid=6613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.153" name="members" dev="configfs" ino=10395 res=0 errno=0
[  121.982300][ T6619] mmap: syz.0.145 (6619) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  122.285890][ T6629] netlink: 4 bytes leftover after parsing attributes in process `syz.3.156'.
[  122.295462][ T6629] netlink: 'syz.3.156': attribute type 1 has an invalid length.
[  122.315275][ T6629] netlink: 5 bytes leftover after parsing attributes in process `syz.3.156'.
[  122.768794][   T32] oom_reaper: reaped process 6237 (syz.0.84), now anon-rss:0kB, file-rss:24216kB, shmem-rss:15616kB
[  123.701300][ T6647] can0: slcan on pty66.
[  124.008952][ T6653] netlink: 302 bytes leftover after parsing attributes in process `syz.0.159'.
[  124.044925][ T6648] can0 (unregistered): slcan off pty66.
[  124.334364][ T6662] futex_wake_op: syz.2.164 tries to shift op by -2048; fix this program
[  124.362923][ T6662] futex_wake_op: syz.2.164 tries to shift op by -2048; fix this program
[  124.394004][ T6662] 0x000000000001-0x000000020000 : ""
[  124.418413][ T6662] ftl_cs: FTL header corrupt!
[  124.886060][ T6669] netlink: 8 bytes leftover after parsing attributes in process `syz.3.166'.
[  125.137022][ T6671] netlink: 4 bytes leftover after parsing attributes in process `syz.1.167'.
[  125.637268][ T6220] syz.0.84 (6220) used greatest stack depth: 19160 bytes left
[  126.189063][   T52] Bluetooth: hci1: unexpected subevent 0x04 length: 122 > 11
[  126.697229][ T6714] netlink: 206 bytes leftover after parsing attributes in process `syz.1.175'.
[  127.107476][ T6211] syz.0.84 (6211) used greatest stack depth: 18840 bytes left
[  127.286985][ T6727] netlink: 4 bytes leftover after parsing attributes in process `syz.3.177'.
[  127.296481][ T6727] netlink: 'syz.3.177': attribute type 1 has an invalid length.
[  127.310967][ T6727] netlink: 5 bytes leftover after parsing attributes in process `syz.3.177'.
[  128.228627][ T6739] sd 0:0:1:0: PR command failed: 1026
[  128.237502][ T6739] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  128.245405][ T6739] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  129.394854][ T6765] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  129.401241][ T6765] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  129.420522][ T6765] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  129.460314][ T6765] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  129.467395][ T6765] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  129.485631][ T6765] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  129.500297][ T6765] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  129.506982][ T6765] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  129.529359][ T6765] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  129.569167][ T6765] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  129.582257][ T6765] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  129.615759][ T6765] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  129.662671][ T6775] FAULT_INJECTION: forcing a failure.
[  129.662671][ T6775] name failslab, interval 1, probability 0, space 0, times 0
[  129.724023][ T6775] CPU: 0 UID: 0 PID: 6775 Comm: syz.0.186 Not tainted syzkaller #0 PREEMPT(full) 
[  129.724050][ T6775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  129.724059][ T6775] Call Trace:
[  129.724064][ T6775]  <TASK>
[  129.724070][ T6775]  dump_stack_lvl+0x16c/0x1f0
[  129.724100][ T6775]  should_fail_ex+0x512/0x640
[  129.724117][ T6775]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  129.724137][ T6775]  should_failslab+0xc2/0x120
[  129.724161][ T6775]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  129.724179][ T6775]  ? shmem_alloc_inode+0x25/0x50
[  129.724202][ T6775]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  129.724221][ T6775]  ? shmem_alloc_inode+0x25/0x50
[  129.724252][ T6775]  shmem_alloc_inode+0x25/0x50
[  129.724278][ T6775]  alloc_inode+0x64/0x240
[  129.724295][ T6775]  new_inode+0x22/0x1c0
[  129.724312][ T6775]  shmem_get_inode+0x19a/0xfb0
[  129.724338][ T6775]  shmem_mknod+0x1a2/0x3b0
[  129.724364][ T6775]  vfs_mknod+0x6f3/0xac0
[  129.724386][ T6775]  do_mknodat+0x36a/0x6f0
[  129.724407][ T6775]  ? __pfx_do_mknodat+0x10/0x10
[  129.724428][ T6775]  ? getname_flags.part.0+0x1c5/0x550
[  129.724448][ T6775]  __x64_sys_mknod+0x87/0xb0
[  129.724472][ T6775]  do_syscall_64+0xcd/0xf80
[  129.724496][ T6775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.724512][ T6775] RIP: 0033:0x7f4cf078f7c9
[  129.724524][ T6775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.724537][ T6775] RSP: 002b:00007f4cf15d6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  129.724551][ T6775] RAX: ffffffffffffffda RBX: 00007f4cf09e5fa0 RCX: 00007f4cf078f7c9
[  129.724560][ T6775] RDX: 0000000000000004 RSI: 0000000000001001 RDI: 0000200000000040
[  129.724569][ T6775] RBP: 00007f4cf0813f91 R08: 0000000000000000 R09: 0000000000000000
[  129.724577][ T6775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  129.724586][ T6775] R13: 00007f4cf09e6038 R14: 00007f4cf09e5fa0 R15: 00007ffc1a5c55f8
[  129.724605][ T6775]  </TASK>
[  129.975990][ T6765] Process accounting resumed
[  130.041595][ T6775] netlink: set zone limit has 8 unknown bytes
[  130.158271][ T6778] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[  130.198460][ T6781] netlink: 13 bytes leftover after parsing attributes in process `syz.3.188'.
[  130.865778][ T6803] usb usb36: usbfs: process 6803 (syz.0.193) did not claim interface 0 before use
[  131.252767][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  131.485156][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  131.563358][   T52] Bluetooth: hci2: command 0x0c1a tx timeout
[  131.652671][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  132.971988][ T6843] netlink: 'syz.1.200': attribute type 1 has an invalid length.
[  132.979926][ T6843] netlink: 5 bytes leftover after parsing attributes in process `syz.1.200'.
[  133.323680][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  133.563974][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  133.646381][   T52] Bluetooth: hci2: command 0x0c1a tx timeout
[  133.722827][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  134.259350][ T6873] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  135.051794][ T6879] Invalid ELF header magic: != ELF
[  135.162096][ T6895] nbd: illegal input index -1073741824
[  135.408553][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  135.643346][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  135.674310][ T6908] kvm: user requested TSC rate below hardware speed
[  135.722698][   T52] Bluetooth: hci2: command 0x0c1a tx timeout
[  135.802684][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  136.008144][ T6915] vhci_hcd vhci_hcd.2: invalid port number 16
[  136.161561][ T6915] vhci_hcd vhci_hcd.2: invalid port number 16
[  136.977024][ T6936] FAULT_INJECTION: forcing a failure.
[  136.977024][ T6936] name failslab, interval 1, probability 0, space 0, times 0
[  137.002653][ T6936] CPU: 1 UID: 0 PID: 6936 Comm: syz.2.226 Not tainted syzkaller #0 PREEMPT(full) 
[  137.002691][ T6936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  137.002706][ T6936] Call Trace:
[  137.002714][ T6936]  <TASK>
[  137.002724][ T6936]  dump_stack_lvl+0x16c/0x1f0
[  137.002770][ T6936]  should_fail_ex+0x512/0x640
[  137.002797][ T6936]  ? kmem_cache_alloc_noprof+0x62/0x770
[  137.002831][ T6936]  should_failslab+0xc2/0x120
[  137.002866][ T6936]  kmem_cache_alloc_noprof+0x83/0x770
[  137.002895][ T6936]  ? stack_depot_save_flags+0x29/0x9b0
[  137.002923][ T6936]  ? alloc_empty_file+0x55/0x1e0
[  137.002961][ T6936]  ? alloc_empty_file+0x55/0x1e0
[  137.002984][ T6936]  ? kasan_save_track+0x14/0x30
[  137.003014][ T6936]  alloc_empty_file+0x55/0x1e0
[  137.003041][ T6936]  path_openat+0xde/0x3140
[  137.003073][ T6936]  ? do_syscall_64+0xcd/0xf80
[  137.003109][ T6936]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.003142][ T6936]  ? __pfx_path_openat+0x10/0x10
[  137.003187][ T6936]  do_filp_open+0x20b/0x470
[  137.003223][ T6936]  ? __pfx_do_filp_open+0x10/0x10
[  137.003276][ T6936]  ? alloc_fd+0x471/0x7d0
[  137.003322][ T6936]  do_sys_openat2+0x121/0x290
[  137.003353][ T6936]  ? __pfx_do_sys_openat2+0x10/0x10
[  137.003396][ T6936]  __x64_sys_openat+0x174/0x210
[  137.003426][ T6936]  ? __pfx___x64_sys_openat+0x10/0x10
[  137.003469][ T6936]  do_syscall_64+0xcd/0xf80
[  137.003510][ T6936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.003537][ T6936] RIP: 0033:0x7fb9eb18f7c9
[  137.003560][ T6936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.003584][ T6936] RSP: 002b:00007fb9ec0b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  137.003609][ T6936] RAX: ffffffffffffffda RBX: 00007fb9eb3e5fa0 RCX: 00007fb9eb18f7c9
[  137.003626][ T6936] RDX: 0000000000000800 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  137.003641][ T6936] RBP: 00007fb9eb213f91 R08: 0000000000000000 R09: 0000000000000000
[  137.003655][ T6936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  137.003668][ T6936] R13: 00007fb9eb3e6038 R14: 00007fb9eb3e5fa0 R15: 00007fffc4e017d8
[  137.003700][ T6936]  </TASK>
[  137.621078][ T6936] zswap: compressor 000 not available
[  138.061939][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  138.068618][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  138.516526][ T6953] netlink: 330 bytes leftover after parsing attributes in process `syz.3.229'.
[  199.488929][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  199.495381][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  260.925679][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  260.932017][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  285.882920][   T31] INFO: task syz.0.232:6970 blocked for more than 143 seconds.
[  285.890532][   T31]       Not tainted syzkaller #0
[  285.895980][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  285.904749][   T31] task:syz.0.232       state:D stack:28440 pid:6970  tgid:6970  ppid:5828   task_flags:0x440040 flags:0x00080002
[  285.918563][   T31] Call Trace:
[  285.921872][   T31]  <TASK>
[  285.924924][   T31]  ? __schedule+0x10b9/0x6150
[  285.929639][   T31]  __schedule+0x1139/0x6150
[  285.934247][   T31]  ? __lock_acquire+0x436/0x2890
[  285.939962][   T31]  ? __pfx___schedule+0x10/0x10
[  285.945005][   T31]  ? find_held_lock+0x2b/0x80
[  285.949808][   T31]  ? schedule+0x2d7/0x3a0
[  285.954283][   T31]  schedule+0xe7/0x3a0
[  285.958394][   T31]  io_schedule+0xbf/0x130
[  285.963007][   T31]  bit_wait_io+0x15/0xe0
[  285.967289][   T31]  __wait_on_bit+0x65/0x180
[  285.971827][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  285.977218][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  285.982928][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  285.988953][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  285.994524][   T31]  do_get_write_access+0x910/0x12f0
[  286.000201][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  286.006279][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  286.012381][   T31]  ext4_reserve_inode_write+0x1be/0x340
[  286.020428][   T31]  __ext4_mark_inode_dirty+0x197/0x840
[  286.026007][   T31]  ? trace_kmem_cache_alloc+0x28/0xb0
[  286.031413][   T31]  ? kmem_cache_alloc_noprof+0x2af/0x770
[  286.037415][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  286.043482][   T31]  ? rcu_is_watching+0x12/0xc0
[  286.048281][   T31]  ? trace_jbd2_handle_start+0x1a8/0x200
[  286.054049][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  286.059296][   T31]  ? __ext4_journal_start_sb+0x195/0x640
[  286.065014][   T31]  ? __ext4_journal_start_sb+0x19e/0x640
[  286.070851][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  286.075902][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  286.081281][   T31]  ext4_dirty_inode+0xd9/0x130
[  286.086241][   T31]  ? rcu_is_watching+0x12/0xc0
[  286.091042][   T31]  __mark_inode_dirty+0x1f7/0x1670
[  286.096322][   T31]  generic_update_time+0xcf/0xf0
[  286.101294][   T31]  file_update_time_flags+0x410/0x520
[  286.106743][   T31]  ext4_page_mkwrite+0x33d/0x1880
[  286.111879][   T31]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[  286.119784][   T31]  ? __raw_spin_lock_init+0x3a/0x110
[  286.125155][   T31]  do_page_mkwrite+0x174/0x380
[  286.129954][   T31]  do_fault+0x3fc/0x1ad0
[  286.134268][   T31]  ? __pmd_alloc+0x6aa/0x9c0
[  286.138896][   T31]  __handle_mm_fault+0x1919/0x2bb0
[  286.144239][   T31]  ? reacquire_held_locks+0xcd/0x1f0
[  286.149641][   T31]  ? __pfx___handle_mm_fault+0x10/0x10
[  286.155193][   T31]  ? lock_vma_under_rcu+0x176/0x580
[  286.160419][   T31]  handle_mm_fault+0x3fe/0xad0
[  286.165848][   T31]  do_user_addr_fault+0x60c/0x1370
[  286.170966][   T31]  ? rcu_is_watching+0x12/0xc0
[  286.175881][   T31]  exc_page_fault+0x64/0xc0
[  286.180415][   T31]  asm_exc_page_fault+0x26/0x30
[  286.186272][   T31] RIP: 0033:0x7f4cf0665b33
[  286.190717][   T31] RSP: 002b:00007ffc1a5c5760 EFLAGS: 00010246
[  286.197045][   T31] RAX: 00000000003ffde8 RBX: 0000000000000000 RCX: 0000000000000000
[  286.205145][   T31] RDX: 0000001b30c24000 RSI: 0000000000400000 RDI: 00007f4cf089e090
[  286.213166][   T31] RBP: 0000000000000000 R08: 0000000000000004 R09: 0000000000040000
[  286.222969][   T31] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  286.230980][   T31] R13: 0000000000000056 R14: 0000000000021589 R15: 00007ffc1a5c5a10
[  286.239070][   T31]  </TASK>
[  286.242125][   T31] INFO: task syz.2.233:6971 blocked for more than 143 seconds.
[  286.249717][   T31]       Not tainted syzkaller #0
[  286.254700][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.263496][   T31] task:syz.2.233       state:D stack:27608 pid:6971  tgid:6971  ppid:5832   task_flags:0x440040 flags:0x00080002
[  286.275547][   T31] Call Trace:
[  286.278830][   T31]  <TASK>
[  286.281749][   T31]  ? __schedule+0x10b9/0x6150
[  286.286882][   T31]  __schedule+0x1139/0x6150
[  286.291424][   T31]  ? __lock_acquire+0x436/0x2890
[  286.296779][   T31]  ? __pfx___schedule+0x10/0x10
[  286.301668][   T31]  ? find_held_lock+0x2b/0x80
[  286.306582][   T31]  ? schedule+0x2d7/0x3a0
[  286.310961][   T31]  schedule+0xe7/0x3a0
[  286.315143][   T31]  io_schedule+0xbf/0x130
[  286.319496][   T31]  bit_wait_io+0x15/0xe0
[  286.325788][   T31]  __wait_on_bit+0x65/0x180
[  286.330362][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  286.335407][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  286.340806][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  286.346886][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  286.352378][   T31]  do_get_write_access+0x910/0x12f0
[  286.357869][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  286.367152][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  286.373343][   T31]  ext4_reserve_inode_write+0x1be/0x340
[  286.378904][   T31]  __ext4_mark_inode_dirty+0x197/0x840
[  286.384564][   T31]  ? trace_kmem_cache_alloc+0x28/0xb0
[  286.389967][   T31]  ? kmem_cache_alloc_noprof+0x2af/0x770
[  286.395679][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  286.401679][   T31]  ? rcu_is_watching+0x12/0xc0
[  286.406513][   T31]  ? trace_jbd2_handle_start+0x1a8/0x200
[  286.412179][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  286.417622][   T31]  ? __ext4_journal_start_sb+0x195/0x640
[  286.425117][   T31]  ? __ext4_journal_start_sb+0x19e/0x640
[  286.430785][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  286.435806][   T31]  ? lock_acquire+0x179/0x330
[  286.440500][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  286.446014][   T31]  ext4_dirty_inode+0xd9/0x130
[  286.450809][   T31]  ? rcu_is_watching+0x12/0xc0
[  286.455733][   T31]  __mark_inode_dirty+0x1f7/0x1670
[  286.460967][   T31]  ? mnt_get_write_access+0x52/0x2f0
[  286.466296][   T31]  generic_update_time+0xcf/0xf0
[  286.471250][   T31]  touch_atime+0x4f0/0x5d0
[  286.475743][   T31]  ext4_file_mmap_prepare+0x4a6/0x5a0
[  286.481133][   T31]  __mmap_region+0xed8/0x2a00
[  286.485847][   T31]  ? __lock_acquire+0x436/0x2890
[  286.490795][   T31]  ? __pfx___mmap_region+0x10/0x10
[  286.495984][   T31]  ? lock_acquire+0x179/0x330
[  286.500673][   T31]  ? find_held_lock+0x2b/0x80
[  286.505515][   T31]  ? page_table_check_set+0x7dd/0xa40
[  286.510913][   T31]  ? page_table_check_set+0x7e7/0xa40
[  286.516464][   T31]  mmap_region+0x32b/0x3f0
[  286.520906][   T31]  do_mmap+0xa3e/0x1210
[  286.526414][   T31]  ? __pfx_do_mmap+0x10/0x10
[  286.531057][   T31]  ? __pfx_down_write_killable+0x10/0x10
[  286.537287][   T31]  vm_mmap_pgoff+0x29e/0x470
[  286.541916][   T31]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  286.547113][   T31]  ? __fget_files+0x20e/0x3c0
[  286.551816][   T31]  ksys_mmap_pgoff+0x32c/0x5c0
[  286.556741][   T31]  __x64_sys_mmap+0x125/0x190
[  286.561476][   T31]  do_syscall_64+0xcd/0xf80
[  286.566131][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.572041][   T31] RIP: 0033:0x7fb9eb18f803
[  286.576575][   T31] RSP: 002b:00007fffc4e01908 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  286.585039][   T31] RAX: ffffffffffffffda RBX: 0000001b30e64000 RCX: 00007fb9eb18f803
[  286.593078][   T31] RDX: 0000000000000003 RSI: 00000000003c0000 RDI: 0000001b30e64000
[  286.601056][   T31] RBP: 0000000000400000 R08: 0000000000000004 R09: 0000000000040000
[  286.609155][   T31] R10: 0000000000100001 R11: 0000000000000246 R12: 0000000000000042
[  286.617185][   T31] R13: 00000000000927c0 R14: 000000000002202a R15: 00007fffc4e01bf0
[  286.625285][   T31]  </TASK>
[  286.628329][   T31] INFO: task syz.3.235:6972 blocked for more than 144 seconds.
[  286.636119][   T31]       Not tainted syzkaller #0
[  286.641067][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.649881][   T31] task:syz.3.235       state:D stack:28320 pid:6972  tgid:6972  ppid:5839   task_flags:0x440040 flags:0x00080002
[  286.661965][   T31] Call Trace:
[  286.665287][   T31]  <TASK>
[  286.668224][   T31]  ? __schedule+0x10b9/0x6150
[  286.672938][   T31]  __schedule+0x1139/0x6150
[  286.677469][   T31]  ? __lock_acquire+0x436/0x2890
[  286.682414][   T31]  ? __pfx___schedule+0x10/0x10
[  286.687373][   T31]  ? find_held_lock+0x2b/0x80
[  286.692092][   T31]  ? schedule+0x2d7/0x3a0
[  286.696520][   T31]  schedule+0xe7/0x3a0
[  286.700621][   T31]  io_schedule+0xbf/0x130
[  286.705005][   T31]  bit_wait_io+0x15/0xe0
[  286.709277][   T31]  __wait_on_bit+0x65/0x180
[  286.713822][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  286.718785][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  286.724210][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  286.730291][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  286.735870][   T31]  do_get_write_access+0x910/0x12f0
[  286.741099][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  286.747129][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  286.753244][   T31]  ext4_reserve_inode_write+0x1be/0x340
[  286.758788][   T31]  __ext4_mark_inode_dirty+0x197/0x840
[  286.764330][   T31]  ? trace_kmem_cache_alloc+0x28/0xb0
[  286.769733][   T31]  ? kmem_cache_alloc_noprof+0x2af/0x770
[  286.775538][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  286.781559][   T31]  ? rcu_is_watching+0x12/0xc0
[  286.786508][   T31]  ? trace_jbd2_handle_start+0x1a8/0x200
[  286.792176][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  286.797444][   T31]  ? __ext4_journal_start_sb+0x195/0x640
[  286.803121][   T31]  ? __ext4_journal_start_sb+0x19e/0x640
[  286.808778][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  286.813782][   T31]  ? lock_acquire+0x179/0x330
[  286.818481][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  286.823945][   T31]  ext4_dirty_inode+0xd9/0x130
[  286.828729][   T31]  ? rcu_is_watching+0x12/0xc0
[  286.833599][   T31]  __mark_inode_dirty+0x1f7/0x1670
[  286.838736][   T31]  ? mnt_get_write_access+0x52/0x2f0
[  286.844175][   T31]  generic_update_time+0xcf/0xf0
[  286.849143][   T31]  touch_atime+0x4f0/0x5d0
[  286.853603][   T31]  ext4_file_mmap_prepare+0x4a6/0x5a0
[  286.858996][   T31]  __mmap_region+0xed8/0x2a00
[  286.863722][   T31]  ? __lock_acquire+0x436/0x2890
[  286.868698][   T31]  ? __pfx___mmap_region+0x10/0x10
[  286.873953][   T31]  ? lock_acquire+0x179/0x330
[  286.878673][   T31]  ? find_held_lock+0x2b/0x80
[  286.883440][   T31]  ? page_table_check_set+0x7dd/0xa40
[  286.888855][   T31]  ? page_table_check_set+0x7e7/0xa40
[  286.894357][   T31]  mmap_region+0x32b/0x3f0
[  286.898891][   T31]  do_mmap+0xa3e/0x1210
[  286.903119][   T31]  ? __pfx_do_mmap+0x10/0x10
[  286.907734][   T31]  ? __pfx_down_write_killable+0x10/0x10
[  286.913409][   T31]  vm_mmap_pgoff+0x29e/0x470
[  286.918376][   T31]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  286.923610][   T31]  ? __fget_files+0x20e/0x3c0
[  286.928407][   T31]  ksys_mmap_pgoff+0x32c/0x5c0
[  286.933247][   T31]  __x64_sys_mmap+0x125/0x190
[  286.937949][   T31]  do_syscall_64+0xcd/0xf80
[  286.942542][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.948464][   T31] RIP: 0033:0x7fc56fd8f803
[  286.952922][   T31] RSP: 002b:00007fff82609618 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  286.961360][   T31] RAX: ffffffffffffffda RBX: 0000001b30f64000 RCX: 00007fc56fd8f803
[  286.969453][   T31] RDX: 0000000000000003 RSI: 00000000003c0000 RDI: 0000001b30f64000
[  286.977486][   T31] RBP: 0000000000400000 R08: 0000000000000004 R09: 0000000000040000
[  286.985533][   T31] R10: 0000000000100001 R11: 0000000000000246 R12: 0000000000000040
[  286.993586][   T31] R13: 00000000000927c0 R14: 00000000000222b2 R15: 00007fff82609900
[  287.001590][   T31]  </TASK>
[  287.004778][   T31] INFO: task syz.1.234:6973 blocked for more than 144 seconds.
[  287.012328][   T31]       Not tainted syzkaller #0
[  287.017305][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  287.026016][   T31] task:syz.1.234       state:D stack:28064 pid:6973  tgid:6973  ppid:5835   task_flags:0x440040 flags:0x00080002
[  287.037997][   T31] Call Trace:
[  287.041289][   T31]  <TASK>
[  287.044257][   T31]  ? __schedule+0x10b9/0x6150
[  287.049043][   T31]  __schedule+0x1139/0x6150
[  287.053678][   T31]  ? __lock_acquire+0x436/0x2890
[  287.058637][   T31]  ? __pfx___schedule+0x10/0x10
[  287.063528][   T31]  ? find_held_lock+0x2b/0x80
[  287.068228][   T31]  ? schedule+0x2d7/0x3a0
[  287.072614][   T31]  schedule+0xe7/0x3a0
[  287.076757][   T31]  io_schedule+0xbf/0x130
[  287.081103][   T31]  bit_wait_io+0x15/0xe0
[  287.085425][   T31]  __wait_on_bit+0x65/0x180
[  287.090051][   T31]  ? __pfx_bit_wait_io+0x10/0x10
[  287.096521][   T31]  out_of_line_wait_on_bit+0xd9/0x110
[  287.101950][   T31]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  287.108166][   T31]  ? __pfx_wake_bit_function+0x10/0x10
[  287.113705][   T31]  do_get_write_access+0x910/0x12f0
[  287.118943][   T31]  jbd2_journal_get_write_access+0x1d6/0x280
[  287.124961][   T31]  __ext4_journal_get_write_access+0x6a/0x340
[  287.131134][   T31]  ext4_reserve_inode_write+0x1be/0x340
[  287.136764][   T31]  __ext4_mark_inode_dirty+0x197/0x840
[  287.142251][   T31]  ? trace_kmem_cache_alloc+0x28/0xb0
[  287.147713][   T31]  ? kmem_cache_alloc_noprof+0x2af/0x770
[  287.153385][   T31]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  287.159358][   T31]  ? rcu_is_watching+0x12/0xc0
[  287.164160][   T31]  ? trace_jbd2_handle_start+0x1a8/0x200
[  287.169847][   T31]  ? jbd2__journal_start+0xf6/0x6a0
[  287.175286][   T31]  ? __ext4_journal_start_sb+0x195/0x640
[  287.180937][   T31]  ? __ext4_journal_start_sb+0x19e/0x640
[  287.186623][   T31]  ? ext4_dirty_inode+0xa1/0x130
[  287.191583][   T31]  ? lock_acquire+0x179/0x330
[  287.196303][   T31]  ? __pfx_ext4_dirty_inode+0x10/0x10
[  287.201692][   T31]  ext4_dirty_inode+0xd9/0x130
[  287.206518][   T31]  ? rcu_is_watching+0x12/0xc0
[  287.211307][   T31]  __mark_inode_dirty+0x1f7/0x1670
[  287.216463][   T31]  ? mnt_get_write_access+0x52/0x2f0
[  287.221762][   T31]  generic_update_time+0xcf/0xf0
[  287.226733][   T31]  touch_atime+0x4f0/0x5d0
[  287.231166][   T31]  ext4_file_mmap_prepare+0x4a6/0x5a0
[  287.236630][   T31]  __mmap_region+0xed8/0x2a00
[  287.241326][   T31]  ? __lock_acquire+0x436/0x2890
[  287.246311][   T31]  ? __pfx___mmap_region+0x10/0x10
[  287.251457][   T31]  ? lock_acquire+0x179/0x330
[  287.256223][   T31]  ? find_held_lock+0x2b/0x80
[  287.260919][   T31]  ? page_table_check_set+0x7dd/0xa40
[  287.266357][   T31]  ? page_table_check_set+0x7e7/0xa40
[  287.271790][   T31]  mmap_region+0x32b/0x3f0
[  287.276279][   T31]  do_mmap+0xa3e/0x1210
[  287.280475][   T31]  ? __pfx_do_mmap+0x10/0x10
[  287.285264][   T31]  ? __pfx_down_write_killable+0x10/0x10
[  287.290953][   T31]  vm_mmap_pgoff+0x29e/0x470
[  287.295635][   T31]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  287.300897][   T31]  ? __fget_files+0x20e/0x3c0
[  287.305654][   T31]  ksys_mmap_pgoff+0x32c/0x5c0
[  287.310634][   T31]  __x64_sys_mmap+0x125/0x190
[  287.315406][   T31]  do_syscall_64+0xcd/0xf80
[  287.319963][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.325933][   T31] RIP: 0033:0x7fa71158f803
[  287.330375][   T31] RSP: 002b:00007ffcb889d308 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  287.338913][   T31] RAX: ffffffffffffffda RBX: 0000001b30d64000 RCX: 00007fa71158f803
[  287.347245][   T31] RDX: 0000000000000003 RSI: 00000000003c0000 RDI: 0000001b30d64000
[  287.355463][   T31] RBP: 0000000000400000 R08: 0000000000000004 R09: 0000000000040000
[  287.363673][   T31] R10: 0000000000100001 R11: 0000000000000246 R12: 000000000000003a
[  287.371676][   T31] R13: 00005555757e3590 R14: 0000000000021610 R15: 00007ffcb889d5f0
[  287.379743][   T31]  </TASK>
[  287.382825][   T31] 
[  287.382825][   T31] Showing all locks held in the system:
[  287.390539][   T31] 1 lock held by khungtaskd/31:
[  287.395443][   T31]  #0: ffffffff8e3c9520 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  287.405559][   T31] 6 locks held by kworker/u8:2/36:
[  287.410690][   T31]  #0: ffff888142291148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20
[  287.421465][   T31]  #1: ffffc90000ac7c90 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20
[  287.433385][   T31]  #2: ffff888034e380e0 (&type->s_umount_key#33){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0
[  287.444177][   T31]  #3: ffff888034e3ab98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x27a/0x600
[  287.454739][   T31]  #4: ffff888034e3c950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e7/0x1410
[  287.464357][   T31]  #5: ffff8880330d0c10 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x475/0x1350
[  287.474244][   T31] 2 locks held by getty/5591:
[  287.478906][   T31]  #0: ffff88814e3500a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  287.489034][   T31]  #1: ffffc9000331e2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x1510
[  287.499342][   T31] 1 lock held by syz-executor/5817:
[  287.504711][   T31]  #0: ffff88807e0def60 (mapping.invalidate_lock#2){++++}-{4:4}, at: filemap_fault+0x644/0x29d0
[  287.515253][   T31] 3 locks held by syz.0.232/6970:
[  287.520375][   T31]  #0: ffff8880337e1088 (vm_lock){++++}-{0:0}, at: lock_vma_under_rcu+0x117/0x580
[  287.529667][   T31]  #1: ffff888034e38518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x174/0x380
[  287.539243][   T31]  #2: ffff888034e3c950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e7/0x1410
[  287.548880][   T31] 3 locks held by syz.2.233/6971:
[  287.553955][   T31]  #0: ffff88807a6eb440 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x1f5/0x470
[  287.563495][   T31]  #1: ffff888034e38420 (sb_writers#4){.+.+}-{0:0}, at: ext4_file_mmap_prepare+0x4a6/0x5a0
[  287.573607][   T31]  #2: ffff888034e3c950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e7/0x1410
[  287.583502][   T31] 3 locks held by syz.3.235/6972:
[  287.588581][   T31]  #0: ffff88807ebc1bc0 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x1f5/0x470
[  287.598040][   T31]  #1: ffff888034e38420 (sb_writers#4){.+.+}-{0:0}, at: ext4_file_mmap_prepare+0x4a6/0x5a0
[  287.608135][   T31]  #2: ffff888034e3c950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e7/0x1410
[  287.617764][   T31] 3 locks held by syz.1.234/6973:
[  287.622834][   T31]  #0: ffff88807c063440 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x1f5/0x470
[  287.632272][   T31]  #1: ffff888034e38420 (sb_writers#4){.+.+}-{0:0}, at: ext4_file_mmap_prepare+0x4a6/0x5a0
[  287.642613][   T31]  #2: ffff888034e3c950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e7/0x1410
[  287.652280][   T31] 
[  287.654664][   T31] =============================================
[  287.654664][   T31] 
[  287.663163][   T31] NMI backtrace for cpu 1
[  287.663184][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  287.663213][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  287.663227][   T31] Call Trace:
[  287.663235][   T31]  <TASK>
[  287.663245][   T31]  dump_stack_lvl+0x116/0x1f0
[  287.663287][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  287.663318][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  287.663343][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  287.663374][   T31]  sys_info+0x133/0x180
[  287.663396][   T31]  watchdog+0xe66/0x1180
[  287.663438][   T31]  ? rcu_is_watching+0x12/0xc0
[  287.663472][   T31]  ? __pfx_watchdog+0x10/0x10
[  287.663504][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  287.663541][   T31]  ? __kthread_parkme+0x19e/0x250
[  287.663581][   T31]  ? __pfx_watchdog+0x10/0x10
[  287.663611][   T31]  kthread+0x3c5/0x780
[  287.663633][   T31]  ? __pfx_kthread+0x10/0x10
[  287.663657][   T31]  ? rcu_is_watching+0x12/0xc0
[  287.663686][   T31]  ? __pfx_kthread+0x10/0x10
[  287.663708][   T31]  ret_from_fork+0x983/0xb10
[  287.663734][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  287.663761][   T31]  ? __switch_to+0x7af/0x10d0
[  287.663791][   T31]  ? __pfx_kthread+0x10/0x10
[  287.663817][   T31]  ret_from_fork_asm+0x1a/0x30
[  287.663874][   T31]  </TASK>
[  287.663883][   T31] Sending NMI from CPU 1 to CPUs 0:
[  287.798648][    C0] NMI backtrace for cpu 0
[  287.798666][    C0] CPU: 0 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[  287.798697][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  287.798713][    C0] Workqueue: events_unbound toggle_allocation_gate
[  287.798752][    C0] RIP: 0010:update_se+0x300/0x6f0
[  287.798791][    C0] Code: 4c 0f a3 2d 82 91 fb 0e 0f 82 1a 02 00 00 48 8d bd 60 09 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 <0f> 85 b1 03 00 00 4c 8b ad 60 09 00 00 48 b8 00 00 00 00 00 fc ff
[  287.798815][    C0] RSP: 0018:ffffc90000bb7808 EFLAGS: 00000046
[  287.798833][    C0] RAX: dffffc0000000000 RBX: ffff888021ae8080 RCX: ffffffff818d5c46
[  287.798850][    C0] RDX: 1ffff1100435d12c RSI: ffffffff8bf2b580 RDI: ffff888021ae8960
[  287.798866][    C0] RBP: ffff888021ae8000 R08: 0000000000000000 R09: fffffbfff2111dba
[  287.798882][    C0] R10: ffffffff9088edd7 R11: 0000000000000000 R12: 00000000005affcf
[  287.798898][    C0] R13: 0000000000000000 R14: ffff888021ae8128 R15: ffff888021ae8000
[  287.798914][    C0] FS:  0000000000000000(0000) GS:ffff8881248fa000(0000) knlGS:0000000000000000
[  287.798937][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.798953][    C0] CR2: 0000564dabae7660 CR3: 000000000e184000 CR4: 00000000003526f0
[  287.798969][    C0] Call Trace:
[  287.798976][    C0]  <TASK>
[  287.798988][    C0]  update_curr+0x71/0x560
[  287.799018][    C0]  dequeue_entities+0x567/0x2bc0
[  287.799048][    C0]  ? lock_acquire+0x179/0x330
[  287.799072][    C0]  ? update_irq_load_avg+0x984/0xdc0
[  287.799112][    C0]  dequeue_task_fair+0x1a6/0x9a0
[  287.799144][    C0]  __schedule+0x570/0x6150
[  287.799179][    C0]  ? __lock_acquire+0x436/0x2890
[  287.799205][    C0]  ? do_raw_spin_lock+0x12c/0x2b0
[  287.799236][    C0]  ? __pfx___schedule+0x10/0x10
[  287.799269][    C0]  ? find_held_lock+0x2b/0x80
[  287.799300][    C0]  ? schedule+0x2d7/0x3a0
[  287.799336][    C0]  schedule+0xe7/0x3a0
[  287.799375][    C0]  toggle_allocation_gate+0x1d9/0x280
[  287.799410][    C0]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  287.799446][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  287.799483][    C0]  ? rcu_is_watching+0x12/0xc0
[  287.799519][    C0]  process_one_work+0x9ba/0x1b20
[  287.799553][    C0]  ? __pfx_process_one_work+0x10/0x10
[  287.799584][    C0]  ? assign_work+0x1a0/0x250
[  287.799610][    C0]  worker_thread+0x6c8/0xf10
[  287.799643][    C0]  ? __pfx_worker_thread+0x10/0x10
[  287.799669][    C0]  kthread+0x3c5/0x780
[  287.799693][    C0]  ? __pfx_kthread+0x10/0x10
[  287.799717][    C0]  ? rcu_is_watching+0x12/0xc0
[  287.799750][    C0]  ? __pfx_kthread+0x10/0x10
[  287.799774][    C0]  ret_from_fork+0x983/0xb10
[  287.799799][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  287.799825][    C0]  ? __switch_to+0x7af/0x10d0
[  287.799855][    C0]  ? __pfx_kthread+0x10/0x10
[  287.799879][    C0]  ret_from_fork_asm+0x1a/0x30
[  287.799923][    C0]  </TASK>
[  287.800641][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  287.800659][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  287.800687][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  287.800701][   T31] Call Trace:
[  287.800710][   T31]  <TASK>
[  287.800720][   T31]  dump_stack_lvl+0x3d/0x1f0
[  287.800760][   T31]  vpanic+0x640/0x6f0
[  287.800787][   T31]  panic+0xca/0xd0
[  287.800810][   T31]  ? __pfx_panic+0x10/0x10
[  287.800832][   T31]  ? __pfx_printk_trigger_flush+0x10/0x10
[  287.800869][   T31]  ? wq_watchdog_touch+0xe2/0x190
[  287.800908][   T31]  ? watchdog+0xe83/0x1180
[  287.800941][   T31]  ? watchdog+0xe76/0x1180
[  287.800976][   T31]  watchdog+0xe94/0x1180
[  287.801016][   T31]  ? rcu_is_watching+0x12/0xc0
[  287.801049][   T31]  ? __pfx_watchdog+0x10/0x10
[  287.801081][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  287.801125][   T31]  ? __kthread_parkme+0x19e/0x250
[  287.801161][   T31]  ? __pfx_watchdog+0x10/0x10
[  287.801194][   T31]  kthread+0x3c5/0x780
[  287.801219][   T31]  ? __pfx_kthread+0x10/0x10
[  287.801245][   T31]  ? rcu_is_watching+0x12/0xc0
[  287.801277][   T31]  ? __pfx_kthread+0x10/0x10
[  287.801303][   T31]  ret_from_fork+0x983/0xb10
[  287.801328][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  287.801356][   T31]  ? __switch_to+0x7af/0x10d0
[  287.801386][   T31]  ? __pfx_kthread+0x10/0x10
[  287.801411][   T31]  ret_from_fork_asm+0x1a/0x30
[  287.801467][   T31]  </TASK>
[  288.220445][   T31] Kernel Offset: disabled
[  288.224777][   T31] Rebooting in 86400 seconds..