last executing test programs:

8.740128833s ago: executing program 1 (id=50):
mmap$auto(0x0, 0x9, 0xdf, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000)
r0 = openat$auto_cpu_latency_qos_fops_qos(0xffffffffffffff9c, &(0x7f0000006640), 0x2, 0x0)
pwrite64$auto(r0, 0x0, 0x4, 0x3)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_CREATE_VM(r1, 0xae80, 0x0)
ioctl$auto(0x3, 0xae41, 0xffffffffffffffff)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptywf\x00', 0x1, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x11, 0x3, 0x9)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffe, 0x580f, 0x112f4a03, 0x8000000008011, 0x3, 0x0)
fadvise64$auto(r1, 0x0, 0xffffffff80000001, 0x8)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0xe0002, 0x0)
close_range$auto(0x2, 0x8, 0x0)
msgget$auto(0x0, 0x5)
openat$auto_cachefiles_daemon_fops_internal(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x7ff)
r3 = open$dir(&(0x7f0000000000)='./file0\x00', 0x10000, 0x6)
openat$auto(r3, &(0x7f00000000c0)='./file0\x00', 0x7fff, 0x7ff)
unlinkat$auto(r3, &(0x7f00000001c0)='./file0\x00', 0x0)
write$auto(0x3, 0x0, 0x1)
msgsnd$auto(0x0, &(0x7f0000000040)={0x5}, 0x1000, 0x4)
msgctl$auto(0x0, 0x0, 0x0)

7.191120712s ago: executing program 1 (id=54):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0)
preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5)
lseek$auto(0x3, 0x0, 0x1)
pwrite64$auto(0xffffffffffffffff, &(0x7f0000000000)='./cgroup/memory.pressure\x00', 0x6bc, 0x6)
mmap$auto(0x0, 0x10, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x60042, 0x0)
write$auto(r1, 0x0, 0x100082)
mmap$auto(0x7, 0x2000b, 0x4000000000dc, 0xeb1, 0x401, 0x8000)
r2 = socket(0x11, 0x3, 0x400)
pwrite64$auto(r0, 0x0, 0x1, 0x4fffffffffff)
openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/bluetooth/hci5/force_devcoredump\x00', 0x101000, 0x0)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/net/rose7/testing\x00', 0x40000, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000940)=""/4096, 0x1000)
openat$auto_ftrace_event_format_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/format\x00', 0x42841, 0x0)
get_mempolicy$auto(0x0, 0x0, 0x8, 0xfffffffffffffffc, 0x2)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyx3\x00', 0x42880, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/graphics/fbcon/rotate\x00', 0x10b842, 0x0)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0)
read$auto(r4, 0x0, 0x1ff)
write$auto(0x3, 0x0, 0x7)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), r5)
sendmsg$auto_WG_CMD_SET_DEVICE(r5, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f00000000c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="210027bd700000dcdf250100000008000500010000006ef100379b50b1bef1a94b859f4000"/53], 0x30}}, 0xc0)
readv$auto(r2, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
lseek$auto(0x3, 0x0, 0x1)

5.568180898s ago: executing program 1 (id=57):
mmap$auto(0x0, 0x8, 0x4000000000df, 0xeb1, 0x401, 0x8000)
unshare$auto(0x40000080)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000200)='/dev/tty53\x00', 0x200, 0x0)
syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000000), 0xffffffffffffffff)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0x7, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x0, 0x1, 0x2, 0x3, 0x95f4da0a, 0xefffffffffffffff, 0x3, 0x62, 0x80000001, 0x10000000000004, 0x6d40, 0x1, 0x2, 0xfffffffffffffffe]}, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0xaa482, 0x0)
ioctl$auto(r0, 0x40104d14, r0)
ioctl$auto(0xffffffffffffffff, 0x5522, 0xf15)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
pread64$auto(0xffffffffffffffff, &(0x7f0000001800)='#\\h,\x00', 0x3, 0x8)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000804}, 0x40000)
r1 = socket(0x10, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r2], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0xa, 0x8)
open(&(0x7f0000000080)='./file0\x00', 0x2020c0, 0x44)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/vmallocinfo\x00', 0x101000, 0x0)
read$auto_proc_iter_file_ops_compat_inode(r3, &(0x7f0000000180)=""/250, 0xfa)

5.201773719s ago: executing program 0 (id=58):
mmap$auto(0x0, 0x20009, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x48402, 0x0)
r0 = socket(0xa, 0x5, 0x2)
syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000340), r0)
r1 = openat$auto_sc_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000040), 0x88080, 0x0)
pread64$auto(r1, 0x0, 0xc, 0x1)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x82200, 0x0)
socket(0x2, 0x1, 0x106)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
madvise$auto(0x0, 0x4, 0xfffffff6)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
socket(0x2, 0x1, 0x0)
madvise$auto(0x0, 0x2003f0, 0x11)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000007, 0xa505}, 0x800}, 0x4, 0x4008)
r3 = socket(0x29, 0x2, 0x0)
r4 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="70fcfd33862bd07b4e0b1c86fa770921fa03e205db59339f5602d94542652de841df9882ce8aa7ebede36f7b7e0c8af531b156b0b9ce14ff6e5b9fab54ebdaec61583902d467f8daedee42a7ac5c7f59a57f4b3279fae454b14eef5e517da31e3426757585fbd66da1a3232a0608bcdfb4bf6b639fd97d158e6a217dfc52c8fd4ccb10b84d2706ff93e618cc51dec125594320dd6f58c9d902e121ffe5584d40e0bb0d14217dc67e35a9314c01d6a912260dcbaeb785d0c63ae0f19e343ac3bd9c999eb3394c755c96843b5c8ade3edce32bbb74255992e0b333f113636f45f7a206eaa083f1680504592a487ddb39184800f4cb5b6837b354dfcfe3b888830067d0a335c7df363367b84a73", @ANYBLOB="5de1fcfdab4d7f0ee144aa63572000831afcbc61d7406ec82292c10cfe0300569c2ff75aae1d2e6222c4285d0cfc0432133b6995d8644a6f2c58558915117a023c769c85c22589ad3b8dcae716388bc7c06fa738299a50f090471c714d89c12bcdf02e30476767a9cd7f3d6aeef0ed2bcb84227909361625b103d93aefe7e045315f4b0278d97d889b49c05bbd9f4bb84aec75b36ddfe417e9ca22f59cebfa18eac65e4b769de7a35aa9e518fa1e2e3c2fd2ad12fae0431e18cbf5279f"], 0x1ac}}, 0x40000)
recvmmsg$auto(r4, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x6}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r3, 0x8913, 0x24)
madvise$auto(0x1, 0x1000, 0x10000)

5.19251243s ago: executing program 2 (id=59):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
unshare$auto(0x40000080)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
socket(0x11, 0xa, 0x300)
sendmmsg$auto(0x4, 0x0, 0x9a6, 0xa)
socket(0xa, 0x3, 0x3b)
read$auto(0xffffffffffffffff, 0x0, 0x10001)
socket(0x2b, 0x1, 0x1)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55)
mmap$auto(0x0, 0x400005, 0xfffffffffffffffe, 0x9b72, 0x2, 0x8000)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80402, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, 0x0, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_NEXT_DEVICE(0xffffffffffffffff, 0xc0145401, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
mkdir$auto(&(0x7f0000000080)='./file0\x00', 0x7ff)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x18040, 0x86650fc94ba30474)
rmdir$auto(&(0x7f0000000100)='./file0\x00')
unlinkat$auto(r1, &(0x7f00000001c0)='./file0\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000ac0), 0xffffffffffffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r2 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
sendmsg$auto_NL80211_CMD_PROBE_MESH_LINK(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x1)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x9, 0x0)

3.903546687s ago: executing program 2 (id=62):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/platform/vhci_hcd.6/usb22/22-0:1.0/usb22-port5/connect_type\x00', 0xb06a1, 0x0)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0)
r1 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000001640), 0xffffffffffffffff)
sendmsg$auto_NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f00000001c0)={0x14, r5, 0x1, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$auto_NL802154_CMD_ASSOCIATE(r1, &(0x7f0000000380)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000480)={&(0x7f0000000680)=ANY=[@ANYBLOB="ec0000002229307bbcb721a4daf6f3a8c969c00e73381fce0bf8a7a303be61e46c8ea7237a46a23ea9a29dcedfb9f198761eb38596c830099cf26db9e658", @ANYRES16=r5, @ANYBLOB="010029bd7000fcdbdf2528000000c8001980c4008f800e8981ac6ddf48711af5a04836a90471d452e4a74e0459e7acd5ae54628e48ebd2093a31e2aa1d998b1769737875bc14fbb43a99c194ed90312c444b208f3446827c2dabc41a03ccfa839332c2f44b3df3014d224b0a87301919051d52b11409f7d0dfe9b5e32bb0be102b5a42beff38c6e03f579f59b99b9b55086542008c0075f784c2d7b92228fc486140dd41a3b20bbf832c61fddfa1af78afd4eff28ea39b1db4735bd8bcc7ec9281764a27da348b6a27b8e7e7941ae454738afb64000005000700aa068bf14139544209000000"], 0xec}, 0x1, 0x0, 0x0, 0x20000844}, 0x24008001)
sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="050000007000ddf02ea7d89bd43aff2009ec", @ANYRES32=r4], 0x24}, 0x1, 0x0, 0x0, 0x8880}, 0x20040894)
close_range$auto(0x2, 0x8, 0x0)
r6 = fspick$auto(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x2)
ioctl$auto_SW_SYNC_IOC_INC(r6, 0x40045701, &(0x7f0000000140)=0x7fd)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vbi15\x00', 0x802, 0x0)
mmap$auto(0x0, 0x5, 0xfffffffffffffe01, 0x8011, 0x3, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x0, 0x0)
r8 = ioctl$auto_KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r7)
ioctl$auto(0x3, 0x4008ae48, 0x38)
r9 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x80040, 0x0)
ioctl$auto_KVM_CREATE_VM(r9, 0xae01, 0x0)
socket(0x10, 0x2, 0x0)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="6c254b770c000000003bf62ecd0a00000000816de21e6c5b19f2158925a4844b1dcbb0fac89735fea26a1871f870982bfae720f9ce01586d089af0c5713344861a9ca6499eae5fea310a40c4b06b24739ec2e6732d72cc8da721c5cdfaf36ba0ae74eeccdee6c4a4de91226868354544f656684f86550c09e7bb6a95fe2ff738aba31f9f8cb5c10df433911a2a6830028c373cdacf255f7d49089fc3f35dbf2f78e06cc472f254f946c97a9c2714d03e3b19dce3ad20a6f49b1bfa3b4bdca861500a98d15337638f7e6a"], 0x14}, 0x1, 0x0, 0x0, 0x30000881}, 0xc040804)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='R'], 0x1ac}}, 0x40000)
sendmmsg$auto(r9, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0x4000000000000fc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x10000}, 0x0, 0x3)
ioctl$auto(0x3, 0xae41, r9)
ioctl$auto_debugfs_full_proxy_file_operations_internal(r8, 0x2, &(0x7f00000002c0)="987884e035ac5e34baf0506d3ff5d4ba212c7e3b71292680b244fa657e0ecdae8b1229b46ac3e672fd177f3447a6bf8eb19ee72950e93819b0d2c45f9ea27ac9b3900485e129ce25af1d8905275279f23abe7f7684f39f25925d618f1e7ada5776bac4b3b70a73a5a532741276043a81bb502f45052dc5d3c967be8de924648aa6")
ioctl$auto_KVM_GET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0x26f, 0x11, 0x1}]})
write$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f00000000c0)="2d37b8", 0x3)

3.709324667s ago: executing program 0 (id=63):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
r0 = epoll_create$auto(0x8)
epoll_ctl$auto(r0, 0x1, 0x8000000000000000, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x4, 0x4000000000e3, 0x10000040eb2, 0x402, 0x300000000000)
get_mempolicy$auto(0x0, 0x0, 0xfffffffffffffffe, 0x99d6, 0x3)
syz_clone3(&(0x7f00000004c0)={0x82000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x121d02, 0x0)
mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x622340, 0x0)
openat$auto_fuse_conn_congestion_threshold_ops_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
memfd_secret$auto(0x0)
socket(0xa, 0x3, 0x100)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
eventfd$auto(0x3)
openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000002180), 0x100, 0x0)
eventfd$auto(0x3)
pipe$auto(0x0)
socket(0xa, 0x2, 0x88)
socketpair$auto(0x1e, 0x1, 0x4, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/pts/ptmx\x00', 0x0, 0x0)

3.452561708s ago: executing program 2 (id=64):
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
shutdown$auto(0xffffffffffffffff, 0x6)
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0)
ioctl$auto(r0, 0xc0046209, 0xffffffffffffffff)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="011d3da4420008bd7100f9db5f250200000000000010"], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc1}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000580)='/proc/thread-self/net/raw6\x00', 0x500, 0x0)
pread64$auto(r3, &(0x7f0000000080)='\xd5u+~\xa7x\xe0VQ\x1a6\xcf\xce\xfa\xfbN\x19\b\xf64\r\x122i\xd6\x0e\xfa\x96\x9aV:\xe1G\x14\xb2\xd4N\x0e#jX:\xd0\xe4\xa9\xda\xaf\x98\x94G\xa8\xb4\xa7uPc\x1ang\xdb\xb4\xa7\xad\x1b\xcbonh\xd8\x99\x03\x10\xb0\xa5\xfey\xd5F,70\xecG\x8a\fz\x95\x7f\xb0Y{\xdd\xa1\xa3E\x03\xd4\xc67U\x93\n\xfc\xa4\x0e_\xf8\x94\xc3a\x00\xe6\xea4\xa2\x7ft\xeb\x8b$\x16\x0e\xe8j\xcaI\xe0c\x05\x12(\v\xef\xc5Z\xfb\xed\xa3\x01\x001\xa5\x18%\xae/\x1b6\xaa\xf5ysD\xa6\xee\xbf\xc0v\"\x93\x96\"\xcak.\x0e_\xb3\xf7\xac\x9e\xbd/w\xdf\xfc\xe24z\x0f\x8f\b\xbe\xda\xfb\xd0Jj\x97\xfa{\x9d\xfd\xfb\x14\x1f\xb0\xe7\b#\xb9\x01\xf7\xf5\x1c1\xfbNX\xd9\xf0\x97@\xff(\x99\x13M\xadM\b\xf5\xcd\xa3\xe1Q|\r\x18\xd5\xb4\x1c\xa5\xfd\xdf\x98\xd9\xa7\xf3u\xa8ak\xfaHS\xfa\x12\x85\x85\x14\b\x9c\x15\xc10\xb3\xd5.\x13\xc6\xb6\xbak:\xbf\x8f\xcd\x7f\a\xb8\x00\x00\x00', 0x202, 0x7)
r4 = inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(r4, 0x0, 0x8000)
r5 = openat$auto_ubifs_dir_operations_ubifs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/bluetooth/hci1/hci1:201\x00', 0x88000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_CREATE(r4, 0xc02054a5, &(0x7f0000000240)={0x7, r5, 0x10000, "48ad94a9edc22273807d8e3aed5ef354"})
ioctl$auto(0x4000000000000c8, 0x401054d6, 0xffffffffffffffff)

3.312523725s ago: executing program 0 (id=66):
mlock$auto(0xfff, 0xde7f) (async)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x8000000401, 0x8000) (async, rerun: 64)
r0 = io_uring_setup$auto(0x1, 0x0) (rerun: 64)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
r1 = gettid()
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001)
close_range$auto(0x2, r0, 0x0) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
kill$auto(r1, 0x11)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x1ff, 0x20000000) (async, rerun: 64)
mmap$auto(0x0, 0x2020009, 0x6, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
madvise$auto(0x0, 0xffffffffffff0006, 0x17) (async)
madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x400053, 0x9)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x62, 0x0)
write$auto(r2, 0x0, 0x1098c7) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
writev$auto(0x8000, &(0x7f0000000040)={0x0, 0x1000000000004}, 0x2bc) (rerun: 64)
r3 = io_uring_setup$auto(0x6, 0x0) (async)
openat$auto_ftrace_event_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000040c0)='/sys/kernel/tracing/events/vmalloc/alloc_vmap_area/filter\x00', 0x100, 0x0) (async)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0xc0305710, &(0x7f0000000040)={0x0, 0x73d, 0x4, 0x1, 0xff, "50b82e6c92b172b4cfaaca8e"})
syz_genetlink_get_family_id$auto_ioam6(0x0, 0xffffffffffffffff) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_IOAM6_CMD_DEL_NAMESPACE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x808)
sendmsg$auto_IOAM6_CMD_NS_SET_SCHEMA(r3, &(0x7f0000000100)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0x2c}}, 0x4000801)
read$auto(0x3, 0x0, 0x80)
syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), 0xffffffffffffffff)

2.888115348s ago: executing program 2 (id=67):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000cc0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_MPATH(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="01032dbd7000fedbdf2515000000d926d7bb6db77d48abef14eb793dffa5caf0bf1a8fc27153209fef85acb1e1263c52760785deb513aeb67338e8c746fa6a17a0f06cdbc32fb7ac336a2f015e0b45f3d8596740809e8e929daab33a7c00284c5502f0f9b196fd36b9f856dbc19c801a1297c65dbdb106cf192df586e2e308848b2639085b5df9d0f216166ac2905bce777b449990b427a622a0add39ae5918964cde0a8522a0574692c38021f0602"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000041)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/block/nbd3/queue/iosched/front_merges\x00', 0x2041, 0x0)
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x8000800)
socket(0x2, 0x1, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24040, 0x0)
ioctl$auto_BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000240)={"ef65ce6c00cf81000000ffffffffffffff291d00", 0x3ff, 0x408, 0xffc, 0x400004, 0x200000000040000d})
ioctl$auto_BLKTRACETEARDOWN(r3, 0x1276, 0x0)
ioctl$auto_BLKTRACETEARDOWN(r3, 0x1276, 0x0)
madvise$auto(0x0, 0x5, 0x15)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/scsi/drivers/st/fixed_buffer_size\x00', 0x0, 0x0)
read$auto(r4, 0x0, 0x3)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
read$auto_nvram_misc_fops_nvram(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x440c5)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x4, 0x100000001, 0xfffffff9, 0x0, 0x0, 0x0, 0x9, 0x10001, 0x7, 0x400, 0x7ffffff8, 0x7, 0x4, 0x5, 0x61, 0x103})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x8658)
r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/devices/system/cpu/vulnerabilities/spectre_v2\x00', 0x40780, 0x0)
read$auto(r6, &(0x7f00000003c0)='\x98g\x8c=\xcd`\n\x1cbf\x8c/a#%\xca}H3\xf0p\x87\x90yrLK.\xcd\x02\xf3G\xd0\xd4\t\xf8\xfb\xbfV\xa0\xdc\xc4\xc8\xd2<P\x976\xbd\x96\xffsNh\xe6v\tJ\xf5jR\xbbd\xa5\xe8\xd6B\x8c;\xa2\xadq\xc8^V', 0x10000)
r7 = socket(0x1e, 0x4, 0x0)
connect$auto(r7, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x40, 0x0, 0x4}}, 0x10)
mmap$auto(0x0, 0x9, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000005280), 0x40400, 0x0)

2.647514499s ago: executing program 3 (id=68):
r0 = openat$auto_proc_pid_smaps_operations_internal(0xffffffffffffff9c, &(0x7f0000000b00)='/proc/self/smaps\x00', 0x42000, 0x0)
r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda\x00', 0x0, 0x0)
ioctl$auto_BLKFRASET(r1, 0x1264, 0x0)
read$auto_proc_pid_smaps_operations_internal(r0, &(0x7f00000002c0)=""/190, 0xfffffe39)

2.415282291s ago: executing program 3 (id=69):
r0 = gettid()
mq_open$auto(0x0, 0x7e, 0x9, 0x0)
kill$auto(r0, 0x11)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
eventfd$auto(0x1000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socket(0x2, 0x801, 0x84)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x0, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop13\x00', 0x14f682, 0x0)
sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000)
mmap$auto(0x0, 0x4, 0xffffffffffffffff, 0xeb1, 0x401, 0x8000)
openat$auto_bm_entry_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x400, 0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x400000000000003, 0x2d, 0x1c, 0x0, 0x3)
socket(0x10, 0x2, 0xc)
syz_genetlink_get_family_id$auto_nlctrl(&(0x7f00000002c0), 0xffffffffffffffff)
socket(0x10, 0x2, 0xc)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004810}, 0x200048d0)
mmap$auto(0x0, 0x5, 0xffb, 0x8000000008011, 0x3, 0x0)
socket(0x1d, 0x2, 0x1)
write$auto(0x3, 0x0, 0x100082)
futex$auto(0x0, 0x6, 0x80000001, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x40c01, 0x0)
r2 = socket(0x2, 0x3, 0xa)
setsockopt$auto(r2, 0x0, 0x2, 0x0, 0x8)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8}, 0x7)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x52)
read$auto(r1, 0x0, 0x7fff)

2.277356252s ago: executing program 1 (id=70):
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
ioctl$auto_dma_heap_fops_dma_heap(0xffffffffffffffff, 0x4, &(0x7f0000000100)="a2b36d0449473b7bcbcd6d7f6186e9de29e708c62b9db37658c96e1ed364c5d867daa7438de65e6d2aa369df7e32e2c897c4") (rerun: 32)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x20) (async, rerun: 32)
r1 = mq_open$auto(0x0, 0x83, 0x9, 0x0) (async, rerun: 32)
r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x37ffff}, 0x3) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
shmctl$auto_IPC_RMID(0x7, 0x0, 0x0)
sendmsg$auto_NBD_CMD_CONNECT(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002dbd7000fbdbdf25010000000800010020100000100c0080000000000000bd0004009a800c00020001fffffff0000000", @ANYRES32=r3], 0x38}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
sendmsg$auto_NBD_CMD_STATUS(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x14) (async, rerun: 64)
r5 = socket(0x10, 0x2, 0x0) (rerun: 64)
close_range$auto(0x2, 0xa, 0x0) (async, rerun: 32)
socket(0x18, 0xa, 0x1) (async, rerun: 32)
socket(0x29, 0x2, 0x8005)
connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) (async)
sendmmsg$auto(r5, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async, rerun: 32)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async, rerun: 32)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff)
sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="1b0026bd7000fcdbe9ddb897ef7fbaaf05c72adf2503000000040008000c00038008007200b530e1fdcc52c1d24d32c2b4613df80c8232a976a7193e5771c000c440913e1d8e93f435a19df71ec9d4d346eb19440551780d59718df2fa859c46e902314c83fcd9ba12536141d4f4d8bf6909265486609823bd05f2da3b99a6d933cc8066f06ead310b2e52e7947521020075904190213a87e4e3c419aec7d0a4e88bcf6a31edd68bb9385a5d52e02ecf81db0222c896db90b7e2aaeb9b22b67abeedee8e966d9583351577000000000000000000000000000044aa88d1ed3d5f1d850a1769e3b420d2e635afb6e5f6378a6950bb43380900d296b98ef094999bdc4e92f5422b1b07047f54b23765c6cb3c886748f3ca24f70049bcc2fc52ca997a88326fa36b3fa5e982e0e5af668e17088801e694b52fbc87e30cb46c74bc12120e9953e2a404d3f92e04cb14b5a47e13d7cb09bf929ae70000000000", @ANYRESHEX=r6, @ANYBLOB="127b4900898771f1c19f17790495908286f10642bf0f73725cef9cf60104000281"], 0x3c}, 0x1, 0x0, 0x0, 0x50}, 0x4c800) (async, rerun: 32)
r8 = openat$auto_bsg_fops_bsg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bsg/0:0:0:0\x00', 0x65e782, 0x0) (rerun: 32)
ioctl$auto_SG_GET_RESERVED_SIZE(r8, 0x2272, 0x0) (async)
mmap$auto(0x4, 0x20009, 0x4000000000de, 0xeb1, 0x401, 0x8000) (async)
bpf$auto(0x0, 0x0, 0x10)
r9 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/028/001\x00', 0xa901, 0x0)
ioctl$auto_USBDEVFS_SUBMITURB32(r9, 0x802c550a, &(0x7f00000001c0)=ANY=[@ANYBLOB="02000000000000"])

2.147948035s ago: executing program 0 (id=71):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
write$auto(0x1, 0x0, 0x80000000)
r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
write$auto_seq_oss_f_ops_seq_oss(r0, &(0x7f0000000c80)="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", 0x159)
r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0)
write$auto(r1, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9)
preadv$auto(0x40000000000003, 0x0, 0x6, 0x8, 0x5)
openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0x80080, 0x0)
r2 = socketcall$auto_SYS_ACCEPT(0x5, &(0x7f0000000240)=0x7f)
ioctl$auto_TUNSETIFF(r2, 0x400454ca, &(0x7f0000000280)=0x4000400)
madvise$auto(0x0, 0xffffffffffff0004, 0x19)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r4 = ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
close_range$auto(0x2, 0xa, 0x0)
madvise$auto(0x0, 0x200007, 0x8)
r5 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000080), r4)
r6 = setfsuid$auto(0xee00)
setresuid$auto(0x0, r6, 0x0)
mmap$auto(0x380000000000000, 0xfff, 0xfff, 0x18, 0xffffffffffffffff, 0x9)
sendmsg$auto_TIPC_NL_NAME_TABLE_GET(r4, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x20, r5, 0xa6ceae1ccaf1f743, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@typed={0x8, 0x2d, 0x0, 0x0, @uid=r6}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000840}, 0x44801)
madvise$auto(0x0, 0x2003f0, 0x15)

1.443963089s ago: executing program 3 (id=72):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r0, 0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000)
openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/oom_score\x00', 0x0, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/bus/netdevsim/new_device\x00', 0x149b01, 0x0)
r2 = ioctl$auto_TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, &(0x7f00000001c0)=0x7)
fsconfig$auto_FSCONFIG_SET_PATH_EMPTY(r2, 0x4, &(0x7f0000000240)=']^\x00', &(0x7f0000000b40)="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", 0xfffffe01)
settimeofday$auto(0x0, 0x0)
r3 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
setresuid$auto(0x0, 0x7, 0x8080)
rename$auto(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00')
setfsuid$auto(0x0)
r4 = openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/per_cpu/cpu0/trace_pipe_raw\x00', 0x82000, 0x0)
r5 = fcntl$auto_F_GETOWN(r4, 0x9, 0xea6)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/event0\x00', 0x2000, 0x0)
ioctl$auto(0x3, 0x40084504, 0x10000000000402)
r6 = bpf$auto_BPF_LINK_CREATE(0x1c, &(0x7f0000000300)=@task_fd_query={r5, <r7=>r4, 0x6, 0xa, 0x5, 0x5, r3, 0x3, 0xffff}, 0x19)
mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r8 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/loop14/queue/dma_alignment\x00', 0x80000, 0x0)
read$auto(r8, 0x0, 0x20)
bpf$auto_BPF_LINK_CREATE(0x1c, &(0x7f0000000480)=@bpf_attr_7={@btf_id=0xfffff801, 0x80, 0x3, r7}, 0x2)
r9 = setfsgid$auto(0xee01)
setresgid$auto(r9, 0x0, 0x0)
ioctl$auto_KVM_GET_DEVICE_ATTR(r6, 0x4018aee2, &(0x7f0000000140)={0x6, r9, 0x3, 0x1})
r10 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r10, &(0x7f0000000200)={0x0, 0x7}, 0x3)
mknod$auto(&(0x7f0000000080)=':,\x00', 0xcb, 0xfffffffa)
execve$auto(&(0x7f0000000100)=':,\x00', 0x0, 0x0)
mknod$auto(&(0x7f0000000b00)=':,\x00', 0x1000, 0x7ff)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x9}, 0x7)

1.443637899s ago: executing program 1 (id=73):
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x1f40)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r2 = io_uring_setup$auto(0x59, 0x0)
r3 = socket(0xa, 0x5, 0x84)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r4)
sendmsg$auto_HWSIM_CMD_NEW_RADIO(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000002b40)={0x54, r5, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@HWSIM_ATTR_RADIO_NAME={0x2d, 0x11, '/P\x13jE\f\xf9r\xf5\xa3\xd2\x84y\xf9*\x9b\"\x1c\xa4l-\x19\xfd\xa4\xf4y\x02\xc2\x96\xfa\x84L\x12\xcd\x83\xf7\x12\xd3\xc4\x1e]'}, @HWSIM_ATTR_PMSR_SUPPORT={0x10, 0x1a, 0x0, 0x1, [@NL80211_PMSR_ATTR_MAX_PEERS={0x8, 0x1, 0x387}, @NL80211_PMSR_ATTR_TYPE_CAPA={0x4}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4008040}, 0x40800)
getsockopt$auto(r3, 0x84, 0x1f, 0x0, &(0x7f0000000080)=0x49b)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000004580), 0xffffffffffffffff)
sendmsg$auto_OVS_VPORT_CMD_DEL(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)={0x20, r7, 0x601, 0x70bd29, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_UPCALL_STATS={0x4}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x14ed4312}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x44000)
sendmsg$auto_OVS_VPORT_CMD_SET(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0xac, r7, 0x100, 0x70bd2b, 0x25dfdbff, {}, [@OVS_VPORT_ATTR_STATS={0x44, 0x6, {0xad, 0x1, 0x30000000000000, 0xa, 0x33, 0x40, 0x4, 0x8000000}}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0x6}, @OVS_VPORT_ATTR_STATS={0x44, 0x6, {0x6da06dcb, 0x7, 0x6, 0x7f, 0x8, 0x3ff, 0x80, 0xe000000}}, @OVS_VPORT_ATTR_TYPE={0x8, 0x2, 0xaf}]}, 0xac}, 0x1, 0x0, 0x0, 0x4000}, 0xe9c6faf419734ef0)
r8 = socket(0x1d, 0x3, 0x1)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r9 = socket(0x23, 0x80805, 0x0)
r10 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0)
write$auto_sg_fops_sg(r10, &(0x7f0000000080)="3731bf5b0001240000a6c7581afff6578d2f5f520f687f316ba709037c0ae2c7000000000000000000000000000000000000341fd403b8c94fc7487e48c9a5fbcd7f08781c0075685a8dcd402d83354afc6e4620da34c7740485d30a3d6676d9974475f0a114370225123540c46fcc6703f87b48faa8f2448331bb31ea3557d351b3dcae2ec9021cf153048a84a74fc50f8b83ed22e46288f95f5b77cf9903bac26d20da8bb15d600cf9810c8fac4765936a1912eb2639624ee4cf690744293b76fa74a859e9cdbc", 0xc8)
ioctl$auto_SG_GET_REQUEST_TABLE(r10, 0x2286, &(0x7f0000000040))
getsockopt$auto(r9, 0x40000000113, 0x3, 0xfffffffffffffffc, 0x0)
getsockopt$auto(r8, 0x65, 0x8, 0x0, 0x0)

1.443145465s ago: executing program 2 (id=74):
sendmsg$auto_L2TP_CMD_SESSION_CREATE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="28002009000300000008000a000500000008000b0005000000efff06000300000000000000000000000000000000d5f10a3e2b9bd9b17582c0bf14bf7cf59c05e6a9aa10dba4121ba826dedaab06953c9258491041b69567fc4f9d8b91b55f09d95c4bd37cbb963d13acbdfb1a3b281b45e6d9393a03a369a2c053f5fd8529063fd555cf00347eca7a4a43445710022b5d"], 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x41000)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
socket(0x11, 0x1, 0xc)
capset$auto(0x0, &(0x7f0000000000)={0x4, 0xa, 0x48})
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast1}, 0x6a)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0)
mmap$auto(0x0, 0x810004, 0x400000000ffb, 0x8000000008011, 0x3, 0x8000)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
listmount$auto(0x0, 0x0, 0xf4240, 0x0)
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_PARAMS_OLD2(r0, 0xc1004111, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_STATUS32(0xffffffffffffffff, 0x80585414, 0x0)
setresuid$auto(0x0, 0x0, 0x0)
sendmsg$auto_NL80211_CMD_GET_STATION(0xffffffffffffffff, 0x0, 0x8000)
r1 = openat$auto_evm_xattr_ops_evm_secfs(0xffffffffffffff9c, &(0x7f0000000140), 0x189000, 0x0)
readv$auto(r1, 0x0, 0x9)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x121900, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
read$auto(0xffffffffffffffff, 0x0, 0x40100000001)
prctl$auto_PR_SET_MM_START_STACK(0x80000000, 0x5, 0x0, 0x2, 0x1)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x1, 0x4000000000df, 0x40eb0, 0x401, 0x300000000000)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/anycast6\x00', 0x181500, 0x0)
sched_setattr$auto(r2, &(0x7f0000000340)={0x7, 0x6, 0xfffffffffffffff9, 0xfff, 0xa, 0x1f9, 0x6, 0x9, 0x4, 0x8001}, 0x7b)
readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1)
mq_unlink$auto(&(0x7f0000000040)='/dev/rtc0\x00')
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
mmap$auto(0x0, 0x20010, 0x7, 0xeb1, 0x404, 0x10008000)

1.286504464s ago: executing program 3 (id=75):
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/fs/cifs/LinuxExtensionsEnabled\x00', 0x842, 0x0) (async)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/resume\x00', 0x189002, 0x0)
sendfile$auto(r0, r0, 0x0, 0x4265) (async)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
r1 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/tracing/set_event\x00', 0x20601, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x2) (async)
io_uring_setup$auto(0x6, 0x0)
timerfd_create$auto(0x0, 0x0) (async)
socket(0xa, 0x2, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/dri/vkms/state\x00', 0x200, 0x0)
read$auto_drm_debugfs_entry_fops_drm_debugfs(r3, &(0x7f0000000080)=""/4096, 0x1000)
close_range$auto(0x2, 0x8000, 0x0) (async)
socket(0x1e, 0x805, 0x0) (async)
sysfs$auto(0x2, 0x4, 0x0)
fsopen$auto(0x0, 0x1) (async)
fsconfig$auto(r2, 0x1, &(0x7f00000001c0)='+\x00', &(0x7f0000000280), 0x0) (async)
write$auto(r1, 0x0, 0x400) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
fanotify_init$auto(0x602, 0x1) (async)
r4 = open(&(0x7f0000000000)='./file1\x00', 0x1652c2, 0xe1d2b27bdc14aa98)
fanotify_mark$auto(0x400000000000, 0x105, 0xf2b, r4, 0x0) (async)
r5 = open(&(0x7f0000000000)='./bus\x00', 0x12ba7e, 0x45)
fanotify_mark$auto(0x0, 0x451, 0xa, r5, 0x0)
open(&(0x7f0000000100)='.\x00', 0x0, 0x408)
open(&(0x7f0000001080)='./bus\x00', 0x521300, 0x2) (async)
read$auto(0x3, 0x0, 0x8080)

932.881889ms ago: executing program 0 (id=76):
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
shutdown$auto(0xffffffffffffffff, 0x6)
r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0)
ioctl$auto(r0, 0xc0046209, 0xffffffffffffffff)
mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="011d3da4420008bd7100f9db5f250200000000000010"], 0x24}, 0x1, 0x0, 0x0, 0x404c0c0}, 0x80)
r2 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc1}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
r3 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000580)='/proc/thread-self/net/raw6\x00', 0x500, 0x0)
pread64$auto(r3, &(0x7f0000000080)='\xd5u+~\xa7x\xe0VQ\x1a6\xcf\xce\xfa\xfbN\x19\b\xf64\r\x122i\xd6\x0e\xfa\x96\x9aV:\xe1G\x14\xb2\xd4N\x0e#jX:\xd0\xe4\xa9\xda\xaf\x98\x94G\xa8\xb4\xa7uPc\x1ang\xdb\xb4\xa7\xad\x1b\xcbonh\xd8\x99\x03\x10\xb0\xa5\xfey\xd5F,70\xecG\x8a\fz\x95\x7f\xb0Y{\xdd\xa1\xa3E\x03\xd4\xc67U\x93\n\xfc\xa4\x0e_\xf8\x94\xc3a\x00\xe6\xea4\xa2\x7ft\xeb\x8b$\x16\x0e\xe8j\xcaI\xe0c\x05\x12(\v\xef\xc5Z\xfb\xed\xa3\x01\x001\xa5\x18%\xae/\x1b6\xaa\xf5ysD\xa6\xee\xbf\xc0v\"\x93\x96\"\xcak.\x0e_\xb3\xf7\xac\x9e\xbd/w\xdf\xfc\xe24z\x0f\x8f\b\xbe\xda\xfb\xd0Jj\x97\xfa{\x9d\xfd\xfb\x14\x1f\xb0\xe7\b#\xb9\x01\xf7\xf5\x1c1\xfbNX\xd9\xf0\x97@\xff(\x99\x13M\xadM\b\xf5\xcd\xa3\xe1Q|\r\x18\xd5\xb4\x1c\xa5\xfd\xdf\x98\xd9\xa7\xf3u\xa8ak\xfaHS\xfa\x12\x85\x85\x14\b\x9c\x15\xc10\xb3\xd5.\x13\xc6\xb6\xbak:\xbf\x8f\xcd\x7f\a\xb8\x00\x00\x00', 0x202, 0x7)
r4 = inotify_init1$auto(0x3000000000000)
inotify_add_watch$auto(r4, 0x0, 0x8000)
r5 = openat$auto_ubifs_dir_operations_ubifs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/virtual/bluetooth/hci1/hci1:201\x00', 0x88000, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_CREATE(r4, 0xc02054a5, &(0x7f0000000240)={0x7, r5, 0x10000, "48ad94a9edc22273807d8e3aed5ef354"})
ioctl$auto(0x4000000000000c8, 0x401054d6, 0xffffffffffffffff)

756.098589ms ago: executing program 2 (id=77):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0)
write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r1 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_802_15_4_mac(&(0x7f0000000080), r1)
sendmsg$auto_IEEE802154_DEL_IFACE(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r4, 0x2, 0x70bd2c, 0x25dfdbfe, {}, [@IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0xf8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x30000001}, 0x80)
write$auto_console_fops_tty_io(r2, &(0x7f0000000000)="4c91f2c388274610e12c861b5dbf", 0xe)
unshare$auto(0x40000080)
unshare$auto(0x40000080)
mlock2$auto(0x2, 0xffffffff7fffffff, 0x8)

676.083806ms ago: executing program 3 (id=78):
socket(0x10, 0x2, 0x10000000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) (async)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54) (async)
write$auto(0x3, 0x0, 0xfdef)
read$auto(0x3, 0x0, 0x1f40) (async)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f00000001c0)=0x6)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
mmap$auto(0x0, 0x101, 0x8000, 0x3fa, 0x200000401, 0x1000008000) (async)
socket(0xa, 0x1, 0x100)
setsockopt$auto(0x400000000000003, 0x29, 0x1b, 0x0, 0x56b) (async)
setsockopt$auto(0x400000000000003, 0x29, 0x1c, 0x0, 0x56b)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
prctl$auto(0x23, 0x5, 0x2009, 0x0, 0x0)
r0 = openat$auto_proc_pid_numa_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/numa_maps\x00', 0x20000, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) (async)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/LNXSYSTM:00/LNXPWRBN:00/power/wakeup_count\x00', 0x141500, 0x0)
close_range$auto(0x2, 0x8, 0x0) (async)
socket(0x11, 0x2, 0x2) (async)
openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/debug/ieee80211/phy1/statistics/dot11ACKFailureCount\x00', 0x2, 0x0) (async)
preadv$auto(0x40000000000003, &(0x7f00000000c0)={0x0, 0xff7ffffd}, 0x9, 0x8f, 0x10) (async)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000080)=""/144, 0x90) (async)
read$auto_proc_sessionid_operations_base(r0, &(0x7f00000000c0)=""/4073, 0xfe9) (async)
syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000001140), 0xffffffffffffffff)

586.892035ms ago: executing program 1 (id=79):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/kvm_amd/parameters/pause_filter_thresh\x00', 0x200, 0x0)
read$auto(r1, 0x0, 0x1)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
socket(0x2, 0x1, 0x106)
ioctl$auto(0x3, 0x890b, 0x38)
close_range$auto(0x2, 0x8, 0x0)
io_uring_register$auto_IORING_UNREGISTER_IOWQ_AFF(0xffffffffffffffff, 0x12, &(0x7f0000000080)="55cb5e18dc9cb221721403bbceb6559b9dac51444ca8c147f580e26ce6a6652e6d0e0cfcb019f2066f94f6ea9a07de4c7c0839abc0e302e9ca229c7f4778265ac5d9663ce259ed3d8e13aee880753abd0bee333290bdb9f7317c194287ecafe002cd5635e7070448c16968c24cb66fada4aabf4b666cbffda93365", 0x8)
landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, 0x0, 0x20040, 0x0)
openat$auto_trace_options_core_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/options/event-fork\x00', 0x121082, 0x0)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0)
write$auto(r0, 0x0, 0xa96)

77.004973ms ago: executing program 0 (id=80):
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x4000000000008, 0xa505}, 0x801}, 0x4, 0x4008)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket(0x11, 0x80003, 0x300)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x6, 0x8000)
io_uring_setup$auto(0x1, 0x0)
open(0x0, 0x4242, 0xe1d2b27bdc14aad4) (async)
r0 = open(0x0, 0x4242, 0xe1d2b27bdc14aad4)
mmap$auto(0x0, 0x4, 0x4000000000e3, 0x40eb1, 0x401, 0x300000000000) (async)
mmap$auto(0x0, 0x4, 0x4000000000e3, 0x40eb1, 0x401, 0x300000000000)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
pwritev$auto(r0, &(0x7f0000001000)={0x0, 0x80000000008}, 0x5, 0x3, 0x9)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
semctl$auto_GETPID(0x6, 0xdd, 0xb, 0x6)
socket(0x29, 0x2, 0x0) (async)
r1 = socket(0x29, 0x2, 0x0)
socket(0x10, 0x2, 0x0) (async)
r2 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
recvmmsg$auto(r2, &(0x7f0000000040)={{0x0, 0x5, 0x0, 0x5, 0x0, 0x200002, 0x13}, 0x803}, 0xfffffff9, 0x10, 0x0)
ioctl$auto(r1, 0x89f1, 0x24)

0s ago: executing program 3 (id=81):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2000d, 0x3ff, 0x1000000000012, 0xffffffffffffffff, 0xf4e)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x100242, 0x0)
flock$auto(r0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x104)
flock$auto(r1, 0x2)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x80302, 0x0)
write$auto_console_fops_tty_io(r2, &(0x7f0000000840)="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", 0xd4f)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r3 = prctl$auto(0x3e, 0x81, 0x0, 0x1, 0xedf1)
write$auto(r0, &(0x7f0000000100)='/dev/audio1\x00', 0x9)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
mmap$auto(0x8000, 0x400000020009, 0x800, 0x4000000000000eb1, r2, 0x6)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/loop15/queue/minimum_io_size\x00', 0x40480, 0x0)
pread64$auto(r4, 0x0, 0x100000001, 0x7)
r5 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001680), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_GET(r6, &(0x7f0000002300)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="110325bd7000"], 0x14}}, 0x10040)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000080)=0xfc9)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000000), r6)
syz_genetlink_get_family_id$auto_ovs_datapath(0x0, r3)
r7 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x8040, 0x0)
ioctl$auto_dvb_demux_fops_dmxdev(r7, 0x403c6f2b, 0x0)
mmap$auto(0xfffffffffffffffe, 0x7, 0xdb, 0x16, r7, 0x28000)
socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.10.22' (ED25519) to the list of known hosts.
[   83.105737][ T5816] cgroup: Unknown subsys name 'net'
[   83.262316][ T5816] cgroup: Unknown subsys name 'cpuset'
[   83.271362][ T5816] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   84.751385][ T5816] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   86.837856][ T5827] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   86.846653][ T5827] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   86.858354][ T5827] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   86.867502][ T5827] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   86.876153][ T5827] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   86.900575][ T5832] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   86.909405][ T5832] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   86.919425][ T5836] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   86.928877][ T5836] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   86.936765][ T5836] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   86.946358][ T5836] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   86.955560][ T5836] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   86.979426][ T5835] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   86.993927][ T5838] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   87.002409][ T5838] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   87.019835][ T5827] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   87.030517][ T5838] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   87.039489][ T5838] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   87.055898][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   87.063975][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   87.665437][ T5829] chnl_net:caif_netlink_parms(): no params data found
[   87.780206][ T5825] chnl_net:caif_netlink_parms(): no params data found
[   87.836369][ T5830] chnl_net:caif_netlink_parms(): no params data found
[   87.906866][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.914178][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.922647][ T5829] bridge_slave_0: entered allmulticast mode
[   87.930559][ T5829] bridge_slave_0: entered promiscuous mode
[   87.965837][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.973062][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.980617][ T5829] bridge_slave_1: entered allmulticast mode
[   87.988255][ T5829] bridge_slave_1: entered promiscuous mode
[   88.001214][ T5837] chnl_net:caif_netlink_parms(): no params data found
[   88.107286][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.121377][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.130874][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.138667][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.145868][ T5825] bridge_slave_0: entered allmulticast mode
[   88.154160][ T5825] bridge_slave_0: entered promiscuous mode
[   88.201289][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.208597][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.215757][ T5825] bridge_slave_1: entered allmulticast mode
[   88.223652][ T5825] bridge_slave_1: entered promiscuous mode
[   88.235401][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.242638][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.250348][ T5830] bridge_slave_0: entered allmulticast mode
[   88.257571][ T5830] bridge_slave_0: entered promiscuous mode
[   88.292346][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.299854][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.307027][ T5830] bridge_slave_1: entered allmulticast mode
[   88.314772][ T5830] bridge_slave_1: entered promiscuous mode
[   88.324226][ T5829] team0: Port device team_slave_0 added
[   88.358113][ T5829] team0: Port device team_slave_1 added
[   88.366370][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.416842][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.452981][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.462832][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.470146][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.478870][ T5837] bridge_slave_0: entered allmulticast mode
[   88.485840][ T5837] bridge_slave_0: entered promiscuous mode
[   88.521650][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.531049][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.538424][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.545603][ T5837] bridge_slave_1: entered allmulticast mode
[   88.553023][ T5837] bridge_slave_1: entered promiscuous mode
[   88.560909][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.568472][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.594559][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.612897][ T5825] team0: Port device team_slave_0 added
[   88.657450][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.664951][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.691238][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.705129][ T5825] team0: Port device team_slave_1 added
[   88.712844][ T5830] team0: Port device team_slave_0 added
[   88.750425][ T5830] team0: Port device team_slave_1 added
[   88.771304][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.783990][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.806167][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.813660][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.839908][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.853359][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.861117][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.888510][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.954986][ T5837] team0: Port device team_slave_0 added
[   88.962203][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.970340][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   88.996745][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.007481][ T5838] Bluetooth: hci0: command tx timeout
[   89.013436][ T5150] Bluetooth: hci2: command tx timeout
[   89.035872][ T5837] team0: Port device team_slave_1 added
[   89.043117][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.050211][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.077624][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.078141][ T5150] Bluetooth: hci1: command tx timeout
[   89.112492][ T5829] hsr_slave_0: entered promiscuous mode
[   89.119035][ T5829] hsr_slave_1: entered promiscuous mode
[   89.153769][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.161279][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.188638][ T5150] Bluetooth: hci3: command tx timeout
[   89.194493][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.211330][ T5825] hsr_slave_0: entered promiscuous mode
[   89.217629][ T5825] hsr_slave_1: entered promiscuous mode
[   89.223889][ T5825] debugfs: 'hsr0' already exists in 'hsr'
[   89.229724][ T5825] Cannot create hsr debugfs directory
[   89.252530][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.259668][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.286037][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.355058][ T5830] hsr_slave_0: entered promiscuous mode
[   89.361493][ T5830] hsr_slave_1: entered promiscuous mode
[   89.367523][ T5830] debugfs: 'hsr0' already exists in 'hsr'
[   89.374140][ T5830] Cannot create hsr debugfs directory
[   89.465584][ T5837] hsr_slave_0: entered promiscuous mode
[   89.472241][ T5837] hsr_slave_1: entered promiscuous mode
[   89.478708][ T5837] debugfs: 'hsr0' already exists in 'hsr'
[   89.484522][ T5837] Cannot create hsr debugfs directory
[   89.858028][ T5825] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   89.873400][ T5825] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   89.884648][ T5825] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   89.907815][ T5825] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   89.969116][ T5829] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   89.990415][ T5829] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   90.012883][ T5829] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   90.031776][ T5829] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   90.084188][ T5830] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   90.120975][ T5830] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   90.132413][ T5830] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   90.150748][ T5830] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   90.254436][ T5837] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   90.265170][ T5837] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   90.292793][ T5837] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   90.304306][ T5837] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   90.330398][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.392138][ T5825] 8021q: adding VLAN 0 to HW filter on device team0
[   90.423954][ T1167] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.431394][ T1167] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.476210][ T3579] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.483355][ T3579] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.506984][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.558351][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.582241][ T5829] 8021q: adding VLAN 0 to HW filter on device team0
[   90.623178][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.630337][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.659340][ T5830] 8021q: adding VLAN 0 to HW filter on device team0
[   90.677700][  T143] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.684923][  T143] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.709871][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.722277][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.729468][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.777280][ T3579] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.784517][ T3579] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.814826][ T5837] 8021q: adding VLAN 0 to HW filter on device team0
[   90.840228][ T3579] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.847411][ T3579] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.858876][ T3579] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.866163][ T3579] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.040541][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.078894][ T5150] Bluetooth: hci2: command tx timeout
[   91.084440][ T5150] Bluetooth: hci0: command tx timeout
[   91.158299][ T5150] Bluetooth: hci1: command tx timeout
[   91.201120][ T5825] veth0_vlan: entered promiscuous mode
[   91.235394][ T5825] veth1_vlan: entered promiscuous mode
[   91.240608][ T5150] Bluetooth: hci3: command tx timeout
[   91.360305][ T5825] veth0_macvtap: entered promiscuous mode
[   91.376491][ T5825] veth1_macvtap: entered promiscuous mode
[   91.454517][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.465671][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.535752][ T5837] veth0_vlan: entered promiscuous mode
[   91.557191][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.569184][ T5837] veth1_vlan: entered promiscuous mode
[   91.589293][  T143] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.601784][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.622727][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.632415][  T143] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.641483][  T143] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.664650][  T143] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.697093][ T5837] veth0_macvtap: entered promiscuous mode
[   91.723928][ T5837] veth1_macvtap: entered promiscuous mode
[   91.770984][ T5829] veth0_vlan: entered promiscuous mode
[   91.807864][ T5829] veth1_vlan: entered promiscuous mode
[   91.834674][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.843329][ T5830] veth0_vlan: entered promiscuous mode
[   91.885541][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.901971][ T5830] veth1_vlan: entered promiscuous mode
[   91.910582][ T3579] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.919977][ T3579] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.945033][ T3579] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.994295][ T3579] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.998490][ T3510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.004078][ T3579] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.019801][ T3510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.041443][ T5829] veth0_macvtap: entered promiscuous mode
[   92.049113][ T3579] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.079446][ T5829] veth1_macvtap: entered promiscuous mode
[   92.110588][ T5830] veth0_macvtap: entered promiscuous mode
[   92.124363][ T1219] cfg80211: failed to load regulatory.db
[   92.175307][ T5825] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   92.179781][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.199672][ T5830] veth1_macvtap: entered promiscuous mode
[   92.229388][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.239053][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.259775][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.329479][ T3579] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.347068][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.357051][ T3510] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.370926][ T3579] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.380028][ T3510] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.380464][ T3579] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.423488][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.429087][ T3579] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.476367][   T60] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.476450][   T60] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.476504][   T60] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.476544][   T60] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.642716][ T3579] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.642740][ T3579] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.813778][ T1167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.825871][ T1167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.878417][ T3510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.923150][ T3510] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.119964][ T1167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.159068][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.160721][ T5150] Bluetooth: hci0: command tx timeout
[   93.172881][ T5838] Bluetooth: hci2: command tx timeout
[   93.218851][ T1167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.238721][ T5150] Bluetooth: hci1: command tx timeout
[   93.300948][ T5930] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[   93.318333][ T5150] Bluetooth: hci3: command tx timeout
[   93.328376][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.470412][ T5932] Zero length message leads to an empty skb
[   93.598171][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[   93.754093][ T5938] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   93.772599][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   93.803125][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   93.905468][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   94.008249][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[   94.109903][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   94.239813][ T5945] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[   94.510346][ T5950] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[   94.596475][ T5950] process 'syz.2.8' launched ':,' with NULL argv: empty string added
[   94.702157][ T5950] FAULT_INJECTION: forcing a failure.
[   94.702157][ T5950] name failslab, interval 1, probability 0, space 0, times 1
[   94.715059][ T5950] CPU: 0 UID: 7 PID: 5950 Comm: syz.2.8 Not tainted syzkaller #0 PREEMPT(full) 
[   94.715083][ T5950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   94.715097][ T5950] Call Trace:
[   94.715103][ T5950]  <TASK>
[   94.715110][ T5950]  dump_stack_lvl+0x16c/0x1f0
[   94.715137][ T5950]  should_fail_ex+0x512/0x640
[   94.715168][ T5950]  should_failslab+0xc2/0x120
[   94.715192][ T5950]  __kmalloc_noprof+0xdd/0x880
[   94.715215][ T5950]  ? nsim_fib_event_nb+0x45e/0x10d0
[   94.715236][ T5950]  ? nsim_fib_event_nb+0x45e/0x10d0
[   94.715250][ T5950]  nsim_fib_event_nb+0x45e/0x10d0
[   94.715272][ T5950]  call_fib_notifier+0x3c/0x80
[   94.715291][ T5950]  fib6_node_dump+0x1ea/0x320
[   94.715308][ T5950]  ? __pfx_fib6_node_dump+0x10/0x10
[   94.715333][ T5950]  ? do_raw_write_lock+0x11c/0x3a0
[   94.715349][ T5950]  fib6_walk_continue+0x452/0x8d0
[   94.715368][ T5950]  fib6_walk+0x182/0x370
[   94.715385][ T5950]  fib6_tables_dump+0x222/0x370
[   94.715405][ T5950]  ? __pfx_fib6_tables_dump+0x10/0x10
[   94.715430][ T5950]  fib6_dump+0x48/0x60
[   94.715448][ T5950]  register_fib_notifier+0x123/0x470
[   94.715463][ T5950]  ? __pfx_nsim_fib_dump_inconsistent+0x10/0x10
[   94.715482][ T5950]  nsim_fib_create+0x938/0xc90
[   94.715504][ T5950]  ? __pfx_nsim_fib_create+0x10/0x10
[   94.715527][ T5950]  nsim_drv_probe+0xcec/0x1520
[   94.715554][ T5950]  ? __pfx_nsim_drv_probe+0x10/0x10
[   94.715583][ T5950]  ? kernfs_put+0x35/0x60
[   94.715604][ T5950]  ? sysfs_create_link+0x68/0xc0
[   94.715621][ T5950]  ? __pfx_nsim_bus_probe+0x10/0x10
[   94.715638][ T5950]  really_probe+0x241/0xa90
[   94.715660][ T5950]  __driver_probe_device+0x1de/0x440
[   94.715678][ T5950]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   94.715695][ T5950]  driver_probe_device+0x4c/0x1b0
[   94.715713][ T5950]  __device_attach_driver+0x1df/0x310
[   94.715733][ T5950]  ? __pfx___device_attach_driver+0x10/0x10
[   94.715750][ T5950]  bus_for_each_drv+0x159/0x1e0
[   94.715767][ T5950]  ? __pfx_bus_for_each_drv+0x10/0x10
[   94.715800][ T5950]  __device_attach+0x1e4/0x4b0
[   94.715823][ T5950]  ? __pfx___device_attach+0x10/0x10
[   94.715845][ T5950]  ? do_raw_spin_unlock+0x172/0x230
[   94.715878][ T5950]  bus_probe_device+0x17f/0x1c0
[   94.715900][ T5950]  device_add+0x1148/0x1aa0
[   94.715929][ T5950]  ? __pfx_device_add+0x10/0x10
[   94.715950][ T5950]  ? lockdep_init_map_type+0x5c/0x280
[   94.715970][ T5950]  ? __init_waitqueue_head+0xca/0x150
[   94.715999][ T5950]  new_device_store+0x41b/0x730
[   94.716017][ T5950]  ? __pfx_new_device_store+0x10/0x10
[   94.716036][ T5950]  ? find_held_lock+0x2b/0x80
[   94.716052][ T5950]  ? sysfs_file_kobj+0xe4/0x290
[   94.716067][ T5950]  ? __pfx_new_device_store+0x10/0x10
[   94.716086][ T5950]  bus_attr_store+0x74/0xb0
[   94.716099][ T5950]  ? __pfx_bus_attr_store+0x10/0x10
[   94.716112][ T5950]  sysfs_kf_write+0xf2/0x150
[   94.716130][ T5950]  kernfs_fop_write_iter+0x3af/0x570
[   94.716153][ T5950]  ? __pfx_sysfs_kf_write+0x10/0x10
[   94.716171][ T5950]  do_iter_readv_writev+0x662/0x9e0
[   94.716191][ T5950]  ? __pfx_do_iter_readv_writev+0x10/0x10
[   94.716216][ T5950]  vfs_writev+0x35f/0xde0
[   94.716238][ T5950]  ? __pfx_vfs_writev+0x10/0x10
[   94.716251][ T5950]  ? __mutex_lock+0x1c5/0x1060
[   94.716276][ T5950]  ? __pfx___mutex_lock+0x10/0x10
[   94.716300][ T5950]  ? __fget_files+0x20e/0x3c0
[   94.716320][ T5950]  ? do_writev+0x132/0x340
[   94.716332][ T5950]  do_writev+0x132/0x340
[   94.716347][ T5950]  ? __pfx_do_writev+0x10/0x10
[   94.716367][ T5950]  do_syscall_64+0xcd/0xfa0
[   94.716386][ T5950]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.716403][ T5950] RIP: 0033:0x7f2ffcb8efc9
[   94.716427][ T5950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.716445][ T5950] RSP: 002b:00007f2ffda65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   94.716465][ T5950] RAX: ffffffffffffffda RBX: 00007f2ffcde5fa0 RCX: 00007f2ffcb8efc9
[   94.716478][ T5950] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000005
[   94.716488][ T5950] RBP: 00007f2ffcc11f91 R08: 0000000000000000 R09: 0000000000000000
[   94.716499][ T5950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   94.716510][ T5950] R13: 00007f2ffcde6038 R14: 00007f2ffcde5fa0 R15: 00007ffe3aca6fa8
[   94.716533][ T5950]  </TASK>
[   95.249212][ T5150] Bluetooth: hci0: command tx timeout
[   95.255013][ T5150] Bluetooth: hci2: command tx timeout
[   95.305071][ T5950] Failed to register fib notifier
[   95.318755][ T5838] Bluetooth: hci1: command tx timeout
[   95.409854][ T5838] Bluetooth: hci3: command tx timeout
[   95.561858][ T5960] netlink: 342 bytes leftover after parsing attributes in process `syz.1.10'.
[   95.614805][ T5956] kexec: Could not allocate control_code_buffer
[   96.532751][ T5995] random: crng reseeded on system resumption
[   96.760571][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   96.808355][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   97.098773][ T6008] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030

syzkaller
syzkaller login: [   98.454069][ T6026] sp0: Synchronizing with TNC
[   98.706910][ T5950] netdevsim netdevsim511: probe with driver netdevsim failed with error -1
[   99.379240][ T6041] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes.
[   99.610676][ T6041] FAULT_INJECTION: forcing a failure.
[   99.610676][ T6041] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   99.654997][ T6041] CPU: 1 UID: 0 PID: 6041 Comm: syz.1.28 Not tainted syzkaller #0 PREEMPT(full) 
[   99.655030][ T6041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   99.655040][ T6041] Call Trace:
[   99.655047][ T6041]  <TASK>
[   99.655054][ T6041]  dump_stack_lvl+0x16c/0x1f0
[   99.655079][ T6041]  should_fail_ex+0x512/0x640
[   99.655108][ T6041]  _copy_from_user+0x2e/0xd0
[   99.655134][ T6041]  ____sys_sendmsg+0x607/0xc70
[   99.655158][ T6041]  ? __pfx_____sys_sendmsg+0x10/0x10
[   99.655179][ T6041]  ? rcu_is_watching+0x12/0xc0
[   99.655203][ T6041]  ___sys_sendmsg+0x134/0x1d0
[   99.655219][ T6041]  ? __pfx____sys_sendmsg+0x10/0x10
[   99.655252][ T6041]  ? futex_wake+0x1ad/0x530
[   99.655281][ T6041]  __sys_sendmmsg+0x200/0x420
[   99.655309][ T6041]  ? __pfx___sys_sendmmsg+0x10/0x10
[   99.655331][ T6041]  ? __pfx_do_futex+0x10/0x10
[   99.655365][ T6041]  ? xfd_validate_state+0x61/0x180
[   99.655395][ T6041]  ? __pfx_do_writev+0x10/0x10
[   99.655425][ T6041]  __x64_sys_sendmmsg+0x9c/0x100
[   99.655449][ T6041]  ? lockdep_hardirqs_on+0x7c/0x110
[   99.655476][ T6041]  do_syscall_64+0xcd/0xfa0
[   99.655508][ T6041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.655538][ T6041] RIP: 0033:0x7ff0db78efc9
[   99.655562][ T6041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.655589][ T6041] RSP: 002b:00007ff0dc622038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   99.655616][ T6041] RAX: ffffffffffffffda RBX: 00007ff0db9e5fa0 RCX: 00007ff0db78efc9
[   99.655641][ T6041] RDX: 0000000000000007 RSI: 00002000000000c0 RDI: 0000000000000003
[   99.655659][ T6041] RBP: 00007ff0db811f91 R08: 0000000000000000 R09: 0000000000000000
[   99.655677][ T6041] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000000
[   99.655694][ T6041] R13: 00007ff0db9e6038 R14: 00007ff0db9e5fa0 R15: 00007fff4dab51b8
[   99.655743][ T6041]  </TASK>
[   99.855558][    C1] vkms_vblank_simulate: vblank timer overrun
[  100.301526][ T6052] vivid-003: =================  START STATUS  =================
[  100.511963][ T6052] vivid-003: Radio HW Seek Mode: Bounded
[  100.519543][ T6052] vivid-003: Radio Programmable HW Seek: false
[  100.542947][ T6052] vivid-003: RDS Rx I/O Mode: Block I/O
[  100.549153][ T6052] vivid-003: Generate RBDS Instead of RDS: false
[  100.556064][ T6052] vivid-003: RDS Reception: true
[  100.562308][ T6052] vivid-003: RDS Program Type: 0 inactive
[  100.573881][ T6052] vivid-003: RDS PS Name:  inactive
[  100.579498][ T6052] vivid-003: RDS Radio Text:  inactive
[  100.585278][ T6052] vivid-003: RDS Traffic Announcement: false inactive
[  100.592932][ T6052] vivid-003: RDS Traffic Program: false inactive
[  100.599772][ T6052] vivid-003: RDS Music: false inactive
[  100.605384][ T6052] vivid-003: ==================  END STATUS  ==================
[  102.003117][ T6088] netlink: 222 bytes leftover after parsing attributes in process `syz.0.41'.
[  103.105064][ T6118] FAULT_INJECTION: forcing a failure.
[  103.105064][ T6118] name fail_futex, interval 1, probability 0, space 0, times 1
[  103.152475][ T6118] CPU: 0 UID: 0 PID: 6118 Comm: syz.2.49 Not tainted syzkaller #0 PREEMPT(full) 
[  103.152514][ T6118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  103.152529][ T6118] Call Trace:
[  103.152538][ T6118]  <TASK>
[  103.152548][ T6118]  dump_stack_lvl+0x16c/0x1f0
[  103.152583][ T6118]  should_fail_ex+0x512/0x640
[  103.152627][ T6118]  get_futex_key+0x1d0/0x1560
[  103.152666][ T6118]  ? __pfx_get_futex_key+0x10/0x10
[  103.152695][ T6118]  ? futex_private_hash_put+0x176/0x300
[  103.152736][ T6118]  futex_wake+0xea/0x530
[  103.152775][ T6118]  ? __lock_acquire+0xb8a/0x1c90
[  103.152807][ T6118]  ? __pfx_futex_wake+0x10/0x10
[  103.152848][ T6118]  ? find_held_lock+0x2b/0x80
[  103.152884][ T6118]  do_futex+0x1e3/0x350
[  103.152920][ T6118]  ? __pfx_do_futex+0x10/0x10
[  103.152954][ T6118]  ? do_raw_spin_unlock+0x172/0x230
[  103.152995][ T6118]  __x64_sys_futex+0x1e0/0x4c0
[  103.153029][ T6118]  ? ptrace_unfreeze_traced+0x132/0x1c0
[  103.153059][ T6118]  ? __pfx___x64_sys_futex+0x10/0x10
[  103.153092][ T6118]  ? xfd_validate_state+0x61/0x180
[  103.153138][ T6118]  do_syscall_64+0xcd/0xfa0
[  103.153168][ T6118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.153194][ T6118] RIP: 0033:0x7f2ffcb8efc9
[  103.153226][ T6118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.153251][ T6118] RSP: 002b:00007f2ffda650e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  103.153277][ T6118] RAX: ffffffffffffffda RBX: 00007f2ffcde5fa8 RCX: 00007f2ffcb8efc9
[  103.153294][ T6118] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2ffcde5fac
[  103.153311][ T6118] RBP: 00007f2ffcde5fa0 R08: 00007f2ffda66000 R09: 0000000000000000
[  103.153328][ T6118] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  103.153345][ T6118] R13: 00007f2ffcde6038 R14: 00007ffe3aca6ec0 R15: 00007ffe3aca6fa8
[  103.153381][ T6118]  </TASK>
[  103.479564][ T6132] random: crng reseeded on system resumption
[  105.392710][ T6148] netlink: 20 bytes leftover after parsing attributes in process `syz.1.54'.
[  108.191253][ T6200] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  108.528634][ T6204] binder: 6202:6204 ioctl c0046209 ffffffffffffffff returned -22
[  109.726250][ T6231] netlink: 28 bytes leftover after parsing attributes in process `syz.1.70'.
[  109.748785][ T6231] nbd: must specify at least one socket
[  110.431438][ T6267] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjEùrõ£Ò„yù*›"¤l-ý¤ôy–ú„
[  110.940126][ T6267] sg_write: data in/out 2359516/158 bytes for SCSI command 0x0-- guessing data in;
[  110.940126][ T6267]    program syz.1.73 not setting count and/or reply_len properly
[  111.214857][ T6294] zswap: compressor  not available
[  111.325890][ T6293] binder: 6289:6293 ioctl c0046209 ffffffffffffffff returned -22
[  111.843966][ T6317] ==================================================================
[  111.843984][ T6317] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60
[  111.844023][ T6317] Write of size 8 at addr ffffc900038c93e0 by task syz.3.81/6317
[  111.844047][ T6317] 
[  111.844060][ T6317] CPU: 1 UID: 0 PID: 6317 Comm: syz.3.81 Not tainted syzkaller #0 PREEMPT(full) 
[  111.844100][ T6317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  111.844116][ T6317] Call Trace:
[  111.844124][ T6317]  <TASK>
[  111.844135][ T6317]  dump_stack_lvl+0x116/0x1f0
[  111.844165][ T6317]  print_report+0xcd/0x630
[  111.844198][ T6317]  ? __virt_addr_valid+0x81/0x610
[  111.844234][ T6317]  ? sys_imageblit+0x1a6f/0x1e60
[  111.844260][ T6317]  kasan_report+0xe0/0x110
[  111.844292][ T6317]  ? sys_imageblit+0x1a6f/0x1e60
[  111.844322][ T6317]  sys_imageblit+0x1a6f/0x1e60
[  111.844354][ T6317]  ? __pfx_sys_imageblit+0x10/0x10
[  111.844381][ T6317]  ? __pfx__prb_read_valid+0x10/0x10
[  111.844415][ T6317]  ? find_held_lock+0x2b/0x80
[  111.844441][ T6317]  ? up+0xcb/0x140
[  111.844468][ T6317]  ? do_raw_spin_unlock+0x172/0x230
[  111.844508][ T6317]  ? prb_read_valid+0x78/0xa0
[  111.844542][ T6317]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  111.844569][ T6317]  soft_cursor+0x524/0xa10
[  111.844609][ T6317]  ? fb_get_color_depth+0x120/0x250
[  111.844647][ T6317]  bit_cursor+0xe8c/0x17e0
[  111.844686][ T6317]  ? __pfx_bit_cursor+0x10/0x10
[  111.844726][ T6317]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  111.844765][ T6317]  ? get_color+0x1da/0x450
[  111.844795][ T6317]  ? __pfx_bit_cursor+0x10/0x10
[  111.844826][ T6317]  fbcon_cursor+0x40c/0x5a0
[  111.844858][ T6317]  ? add_softcursor+0x1/0x290
[  111.844895][ T6317]  set_cursor+0x1db/0x250
[  111.844931][ T6317]  con_write+0x89/0xb0
[  111.844957][ T6317]  n_tty_write+0x41e/0x11e0
[  111.844996][ T6317]  ? __pfx_n_tty_write+0x10/0x10
[  111.845027][ T6317]  ? trace_kmalloc+0x2b/0xd0
[  111.845057][ T6317]  ? __pfx_woken_wake_function+0x10/0x10
[  111.845105][ T6317]  ? kfree+0x252/0x6d0
[  111.845128][ T6317]  ? __pfx_n_tty_write+0x10/0x10
[  111.845160][ T6317]  file_tty_write.constprop.0+0x503/0x9b0
[  111.845193][ T6317]  redirected_tty_write+0xd4/0x150
[  111.845221][ T6317]  vfs_write+0x7d3/0x11d0
[  111.845247][ T6317]  ? __pfx_redirected_tty_write+0x10/0x10
[  111.845276][ T6317]  ? __pfx_vfs_write+0x10/0x10
[  111.845300][ T6317]  ? find_held_lock+0x2b/0x80
[  111.845334][ T6317]  ksys_write+0x12a/0x250
[  111.845360][ T6317]  ? __pfx_ksys_write+0x10/0x10
[  111.845391][ T6317]  do_syscall_64+0xcd/0xfa0
[  111.845420][ T6317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.845563][ T6317] RIP: 0033:0x7f8af758efc9
[  111.845587][ T6317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.845613][ T6317] RSP: 002b:00007f8af57d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  111.845635][ T6317] RAX: ffffffffffffffda RBX: 00007f8af77e6090 RCX: 00007f8af758efc9
[  111.845650][ T6317] RDX: 0000000000000d4f RSI: 0000200000000840 RDI: 0000000000000002
[  111.845669][ T6317] RBP: 00007f8af7611f91 R08: 0000000000000000 R09: 0000000000000000
[  111.845684][ T6317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.845698][ T6317] R13: 00007f8af77e6128 R14: 00007f8af77e6090 R15: 00007ffe518401e8
[  111.845722][ T6317]  </TASK>
[  111.845731][ T6317] 
[  111.845738][ T6317] The buggy address belongs to a vmalloc virtual mapping
[  111.845772][ T6317] Memory state around the buggy address:
[  111.845786][ T6317]  ffffc900038c9280: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  111.845803][ T6317]  ffffc900038c9300: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  111.845822][ T6317] >ffffc900038c9380: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  111.845838][ T6317]                                                        ^
[  111.845851][ T6317]  ffffc900038c9400: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  111.845869][ T6317]  ffffc900038c9480: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  111.845883][ T6317] ==================================================================
[  111.845899][ T6317] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  111.845926][ T6317] CPU: 1 UID: 0 PID: 6317 Comm: syz.3.81 Not tainted syzkaller #0 PREEMPT(full) 
[  111.845962][ T6317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  111.845980][ T6317] Call Trace:
[  111.845990][ T6317]  <TASK>
[  111.846002][ T6317]  dump_stack_lvl+0x3d/0x1f0
[  111.846033][ T6317]  vpanic+0x640/0x6f0
[  111.846079][ T6317]  panic+0xca/0xd0
[  111.846114][ T6317]  ? __pfx_panic+0x10/0x10
[  111.846163][ T6317]  check_panic_on_warn+0xab/0xb0
[  111.846225][ T6317]  end_report+0x107/0x170
[  111.846270][ T6317]  kasan_report+0xee/0x110
[  111.846309][ T6317]  ? sys_imageblit+0x1a6f/0x1e60
[  111.846346][ T6317]  sys_imageblit+0x1a6f/0x1e60
[  111.846380][ T6317]  ? __pfx_sys_imageblit+0x10/0x10
[  111.846409][ T6317]  ? __pfx__prb_read_valid+0x10/0x10
[  111.846446][ T6317]  ? find_held_lock+0x2b/0x80
[  111.846473][ T6317]  ? up+0xcb/0x140
[  111.846500][ T6317]  ? do_raw_spin_unlock+0x172/0x230
[  111.846542][ T6317]  ? prb_read_valid+0x78/0xa0
[  111.846577][ T6317]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[  111.846611][ T6317]  soft_cursor+0x524/0xa10
[  111.846651][ T6317]  ? fb_get_color_depth+0x120/0x250
[  111.846689][ T6317]  bit_cursor+0xe8c/0x17e0
[  111.846729][ T6317]  ? __pfx_bit_cursor+0x10/0x10
[  111.846770][ T6317]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  111.846810][ T6317]  ? get_color+0x1da/0x450
[  111.846837][ T6317]  ? __pfx_bit_cursor+0x10/0x10
[  111.846866][ T6317]  fbcon_cursor+0x40c/0x5a0
[  111.846894][ T6317]  ? add_softcursor+0x1/0x290
[  111.846934][ T6317]  set_cursor+0x1db/0x250
[  111.846981][ T6317]  con_write+0x89/0xb0
[  111.847013][ T6317]  n_tty_write+0x41e/0x11e0
[  111.847054][ T6317]  ? __pfx_n_tty_write+0x10/0x10
[  111.847086][ T6317]  ? trace_kmalloc+0x2b/0xd0
[  111.847117][ T6317]  ? __pfx_woken_wake_function+0x10/0x10
[  111.847156][ T6317]  ? kfree+0x252/0x6d0
[  111.847179][ T6317]  ? __pfx_n_tty_write+0x10/0x10
[  111.847261][ T6317]  file_tty_write.constprop.0+0x503/0x9b0
[  111.847300][ T6317]  redirected_tty_write+0xd4/0x150
[  111.847331][ T6317]  vfs_write+0x7d3/0x11d0
[  111.847364][ T6317]  ? __pfx_redirected_tty_write+0x10/0x10
[  111.847394][ T6317]  ? __pfx_vfs_write+0x10/0x10
[  111.847419][ T6317]  ? find_held_lock+0x2b/0x80
[  111.847454][ T6317]  ksys_write+0x12a/0x250
[  111.847481][ T6317]  ? __pfx_ksys_write+0x10/0x10
[  111.847512][ T6317]  do_syscall_64+0xcd/0xfa0
[  111.847543][ T6317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.847571][ T6317] RIP: 0033:0x7f8af758efc9
[  111.847594][ T6317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.847619][ T6317] RSP: 002b:00007f8af57d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  111.847644][ T6317] RAX: ffffffffffffffda RBX: 00007f8af77e6090 RCX: 00007f8af758efc9
[  111.847666][ T6317] RDX: 0000000000000d4f RSI: 0000200000000840 RDI: 0000000000000002
[  111.847685][ T6317] RBP: 00007f8af7611f91 R08: 0000000000000000 R09: 0000000000000000
[  111.847702][ T6317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.847718][ T6317] R13: 00007f8af77e6128 R14: 00007f8af77e6090 R15: 00007ffe518401e8
[  111.847744][ T6317]  </TASK>
[  111.848149][ T6317] Kernel Offset: disabled