last executing test programs:

6m8.259495466s ago: executing program 3 (id=913):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r0, 0x5522, 0xf15)
ioctl$auto(r0, 0x5523, r0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = bpf$auto(0x8000000, &(0x7f0000000000)=@test={<r3=>0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r4, 0x0, 0x24000000)
write$auto(r5, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x40e00, 0x0)
pread64$auto(r6, 0x0, 0x3, 0x5ef6)
syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0xa, 0x3, 0x3b)
r7 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r9=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x24, r7, 0x1, 0x70bd28, 0x25dfdbb9, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r9}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x401}]}, 0x24}, 0x1, 0x0, 0x0, 0x24040415}, 0x20000000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0)
socketpair$auto(0x1, 0x1, 0x2a340, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x1ff, 0x3, 0x1, 0x7, 0xfffffffffffffffb, 0x15f4da05, 0x10, 0x1000, 0x3, 0x11d4, 0x200000000000006, 0x10, 0x8cfb7, 0x9, 0x6]}, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000240)="e769ffff91a9bccbf2a814c2b1c2da6a4642e71e42496c6bac2cd2cc3aa9633c36df13128be76976577ef8b494eb27dd7c5c300903663e1e87c15519219ff691bef8e8162e8a841e0b720ba4c432a0b5e1e6ce3fba9b6c4462c74f701a8daaf2a07cdcee8ef120a79f8ecfef3532373fcfc0602284e9ecfab10a02", 0x7b)
getsockopt$auto_SO_BPF_EXTENSIONS(r3, 0x9, 0x30, &(0x7f0000000180)='\xf8\x1b\xf3', &(0x7f0000000200))

6m5.138729519s ago: executing program 3 (id=923):
r0 = ioctl$auto_NS_GET_PID_IN_PIDNS(0xffffffffffffffff, 0x8004b708, &(0x7f0000000000)=0xc)
readlinkat$auto(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='}{.^\x00', 0x0)
read$auto_null_fops_mem(0xffffffffffffffff, &(0x7f00000000c0)=""/174, 0xae)
getdents$auto(r0, &(0x7f0000000180)={0x8, 0x5fd8, 0x2, "77b0d81dd1ec90d49640c202ab8ab616b8919a273049a0229defbd58799be6dbd308b938c9f44e7024dab385542c2d5e03f477fec736375ab3618d17011c02b0acba67c7af69e843bd"}, 0xfffff342)
ioctl$auto_SNDRV_RAWMIDI_IOCTL_STATUS64(r0, 0xc0385720, &(0x7f0000000200)={0x7, "6fc639c0", 0xfffffffffffffff6, 0xa75, 0xffffffffffffffff, 0x4, "01044749a68c90fe7e6eb733b16720ea"})
r1 = socket(0x2b, 0x1, 0xa)
ioctl$auto_SNDRV_PCM_IOCTL_INFO2(r0, 0x81204101, &(0x7f0000000240)={0xc, 0x8, 0x9, 0x0, "1047d22ecdaa86027dc39ad3daaaa259c7289855933a1af9e5e54ad9e1de91827361de3bbe9501196eb0675269f47b4fb0135aac539f5a7afb69f52fc8a685c8", "34b08f7203df8f7dd48d26634a5c92cffcafacde5249db07b8d24ba9c85f72a6d1df0db313d18ac6d95be70bf2d3112a85c096e06583d7513abab9af93505c9a539facae351dc760d8cce16877f66740", "0f3067020c0b90e86ebaba2d1fc88a0a7d107a73a1009ba505d6818428fc529e", 0x1, 0x0, 0x9, 0xb, '\x00', "268ce08aa7f7f6b01a974db8c47cee9ac4106290ebfc2645b25319e456d9b0510e76d6bbf3dffa22c9bbd1c37d32d62cb70d5719f5bd43717fc348a6f0c69431"})
ioctl$auto_SG_GET_RESERVED_SIZE(r0, 0x2272, &(0x7f0000000380)="6f61aa78557a4bd1184d2422b5c789cdbf796be0ddeafa99a16b9b3faef2dee4e34a423d8851db55ccc051d30a04ea3721149a5042118cbb884a4914b64219a4505acf8bb9ba0555ba1ba78d80d0825df16085067f95fcfee79c138dc6a68971c6334041157452bc659370caac139eec91ac8d14341ce808681a670d4e58792d7c93c9b999a0ce1abf6475c16e17186e6ff69f04fd43ce0d3b7224d073bebaf0ba531e3317635e591541ebb1558de1351b92b801a2d72945469c739a06a140cf9fbbece4b49c30")
fsconfig$auto_HIDEPID_NO_ACCESS(r1, 0x0, &(0x7f0000000480)='\xe8\'\x00', &(0x7f00000004c0)="0e215df0853fab0e7346812d9f782cf0db234591e27b05cd798ab3c5", 0x1)
r2 = openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000500)='/dev/cpu/0/msr\x00', 0x430041, 0x0)
close_range$auto(r2, r1, 0x2)
r3 = inotify_init1$auto(0x5)
syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000540), r3)
r4 = ioctl$auto_TUNDETACHFILTER(r3, 0x401054d6, &(0x7f00000005c0)={0x9, &(0x7f0000000580)={0x0, 0x6, 0x3, @inferred=<r5=>r2}})
sendfile$auto(r5, r1, &(0x7f0000000600)=0x1b19, 0x7)
setsockopt$auto_SO_DONTROUTE(r5, 0x7, 0x5, &(0x7f0000000640)='}{.^\x00', 0x8)
mmap$auto(0x7b, 0x9, 0xd, 0x14, r3, 0x78)
bind$auto(r4, &(0x7f0000000680)=@qipcrtr={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0x854f)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000700), r3)
statx$auto(r5, &(0x7f0000000740)='./file0\x00', 0x6, 0x0, &(0x7f0000000780)={0x1, 0x2a, 0x5, 0x200, <r7=>0xee00, 0xffffffffffffffff, 0x3, 0x6, 0x6, 0x401, 0xffff, 0x6, {0xe4f, 0x4}, {0x100000000000000, 0x4}, {0xfffffffffffffb35, 0x64}, {0x234, 0xc0}, 0x5, 0x0, 0x0, 0x4, 0xeaa, 0x7, 0xfffffffe, 0x9, 0x90f, 0xab2, 0x1, 0x9, [0x1000, 0x7, 0x186f, 0x30, 0x2, 0x5, 0x101, 0x6000000000000, 0x61]})
sendmsg$auto_NL80211_CMD_ADD_LINK_STA(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000a00)={&(0x7f0000000880)={0x178, r6, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_SCAN_SUPP_RATES={0x162, 0x7d, 0x0, 0x1, [@nested={0x102, 0xda, 0x0, 0x1, [@generic="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"]}, @typed={0x8, 0x13f, 0x0, 0x0, @uid=r7}, @generic="7257d0eafb2aaf2229bcbe5b91b7a3b03d3b997326a503748fbfdfd6d78ac88cf57490d8dd19abe4c056738b1ce826514b8a5aea2ea20dfe9314791543304284d80a82be3f92457dc977895217af2f35fbd3"]}]}, 0x178}, 0x1, 0x0, 0x0, 0x4000000}, 0x4040)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000cc0)={{&(0x7f0000000a80)="cd34c6ac877746bde2142262f4c603763bd29fb68b0ce2063cae3771472c24b2590aaf7f6c1a4a6a295a2c6d908006aa9d4f93caedbcdfed925a5a6befcd0bd8adb0b2f9644324c66927", 0x2, &(0x7f0000000c00)={&(0x7f0000000b00)="328a8c6bbc5e06236e9094630ba029701083a74781ed89df60c5183e5fa69a70606be204aa010af046b7a034cefea6496e6e85d0e38e1898491eb402a36a1649c97888043fe18034475eb215d08ea81d04f00eebb28ea90739f6dba73fdb7d860ffcaaedee83281725098b12bc84c5e8dcafba8665d72b2b4fc8c89dc3109dfaac97bb7e43616c24937af4eddf9ec7bc4bc20fa6bdeddc932a1882b062e556d1931e5b21fb2cd75d200f94822bedc759c4355245b26951038bd9f06e707d36dea34fff2ceedf692321d8602436393cf06352a88e937ef631"}, 0xae1, &(0x7f0000000c40)="25a43b6e6ae4ce1edfdf5848fdff2dc15b20d25ab9f66c0c6ab7f02972761a28b56e15761d4bc86707c69931eeb1d473606e60c1adddcaab0b1c3fe1a332193f69db9799810825594aa48ac9433bb1ccfa868ec16973819089dab09ae7cc15363c539c7ad8", 0x7, 0x2}}, 0x4, 0x0)
unshare$auto(0x2)
r8 = bpf$auto_BPF_TOKEN_CREATE(0x24, &(0x7f0000000d00)=@raw_tracepoint={0xff, <r9=>r4, 0x0, 0x9}, 0x0)
r10 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000e00), r4)
sendmsg$auto_NBD_CMD_DISCONNECT(r8, &(0x7f0000000ec0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x40, r10, 0x400, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x200}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x5}, @NBD_ATTR_INDEX={0x8, 0x1, 0x5}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x7}]}, 0x40}}, 0x15)
unshare$auto(0x7fff)
r11 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000f40), r9)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000f80)={'virt_wifi0\x00', <r12=>0x0})
sendmsg$auto_BATADV_CMD_SET_VLAN(r5, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001000)={&(0x7f0000000fc0)={0x34, r11, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r12}, @BATADV_ATTR_TT_FLAGS={0x8, 0x15, 0x8}, @BATADV_ATTR_LOG_LEVEL={0x8, 0x36, 0x4}, @BATADV_ATTR_TT_LAST_TTVN={0x5, 0x12, 0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000081}, 0x80)

6m4.252866212s ago: executing program 3 (id=924):
socket(0x1a, 0x3, 0x9)
unshare$auto(0x40000080)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$auto_KVM_GET_MSRS(r0, 0x4068aea3, &(0x7f0000000080)={0x7b})
mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0xfffffffe, 0x103, 0x10000007, 0x1f, 0x86, 0x1ffde, 0xb099, 0x3, 0x9, 0x6, 0x3, 0x884, 0x1, 0xb7, 0x9, 0x8, 0xc, 0xb2, 0x4, 0x0, 0xb, 0x2004, 0x20000200, 0x300000, 0x83, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0xc0, 0x0, 0x7, 0x0, 0xb, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0xad3, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x1fe, 0xd)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1000"], 0x3c}}, 0xf7374674b920089e)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x0, 0x0)
socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="720100", @ANYBLOB='r'], 0x1ac}}, 0x4004)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x6, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0x9}, 0x7}, 0x3, 0x0)

6m2.485112729s ago: executing program 3 (id=928):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r0, 0x5522, 0xf15)
ioctl$auto(r0, 0x5523, r0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = bpf$auto(0x8000000, &(0x7f0000000000)=@test={<r3=>0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r4, 0x0, 0x24000000)
write$auto(r5, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x40e00, 0x0)
pread64$auto(r6, 0x0, 0x3, 0x5ef6)
syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r9=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x24, r7, 0x1, 0x70bd28, 0x25dfdbb9, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r9}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x401}]}, 0x24}, 0x1, 0x0, 0x0, 0x24040415}, 0x20000000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0)
socketpair$auto(0x1, 0x1, 0x2a340, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x1ff, 0x3, 0x1, 0x7, 0xfffffffffffffffb, 0x15f4da05, 0x10, 0x1000, 0x3, 0x11d4, 0x200000000000006, 0x10, 0x8cfb7, 0x9, 0x6]}, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000240)="e769ffff91a9bccbf2a814c2b1c2da6a4642e71e42496c6bac2cd2cc3aa9633c36df13128be76976577ef8b494eb27dd7c5c300903663e1e87c15519219ff691bef8e8162e8a841e0b720ba4c432a0b5e1e6ce3fba9b6c4462c74f701a8daaf2a07cdcee8ef120a79f8ecfef3532373fcfc0602284e9ecfab10a02", 0x7b)
getsockopt$auto_SO_BPF_EXTENSIONS(r3, 0x9, 0x30, &(0x7f0000000180)='\xf8\x1b\xf3', &(0x7f0000000200))

5m57.193683548s ago: executing program 3 (id=932):
r0 = openat$auto_dfs_sched_itmt_fops_itmt(0xffffffffffffff9c, &(0x7f0000000940)='/sys/kernel/debug/netdevsim/netdevsim4/ports/2/bpf_tc_non_bound_accept\x00', 0x100, 0x0)
mmap$auto(0x657, 0x2020009, 0x3, 0xeb1, r0, 0x0)
r1 = io_uring_setup$auto(0x86, 0x0)
socket(0x2, 0x3, 0x2)
setsockopt$auto(0x3, 0x0, 0x1, 0x0, 0x0)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/memory.limit_in_bytes\x00', 0x182b02, 0x0)
mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
read$auto(r3, 0x0, 0x20)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x140082, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x7}, 0x3)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/clockevents/clockevent0/unbind_device\x00', 0x20001, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f0000000180)='{', 0x1)
close_range$auto(0x2, 0x8, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)={0x2c, r7, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x1021}, @NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40080}, 0x20040000)
getpid()
socket(0x10, 0x2, 0x0)
socket(0x2a, 0x2, 0x0)
io_uring_setup$auto(0x6, 0x0)
r8 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), r1)
sendmsg$auto_NL80211_CMD_SET_POWER_SAVE(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000180)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="f8de1d8bd38405a5e7687f6152c306003d", @ANYRES16=r8, @ANYRES64=r7], 0x6f8}, 0x1, 0x0, 0x0, 0x20000841}, 0x4004004)
sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000a80)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x20000081)
sendfile$auto(r2, r2, 0x0, 0x7)
r9 = socket(0x1e, 0x1, 0x0)
bind$auto(r9, &(0x7f0000000040)=@generic={0x1e, "0abc988d53c600522300c8574560"}, 0x66)
openat$auto_nsim_dev_max_vfs_fops_dev(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/netdevsim/netdevsim3/max_vfs\x00', 0x48002, 0x0)
r10 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/transparent_hugepage/hugepages-8kB/shmem_enabled\x00', 0x1a1842, 0x0)
sendfile$auto(r10, r10, 0x0, 0x6)

5m56.250770175s ago: executing program 3 (id=935):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x406a1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0xb, 0xa, 0x40007fff, 0x948b, 0x7, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x80000001, 0x7, 0x2, 0x93, 0x400000001, 0x2]}, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
sysinfo$auto(0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000002b00)={0x2c, r1, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x18, 0x1, 0x0, 0x1, [@nested={0x8, 0x5, 0x0, 0x1, [@typed={0x4, 0x7d, 0x0, 0x0, @binary}]}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x5, 0x93, 0x0, 0x0, @str='\x00'}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'macvlan0\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'bond_slave_0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'wg1\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x90, r2, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_STATS_HEADER={0x1c, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x43}]}, @ETHTOOL_A_STATS_HEADER={0x34, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}, @ETHTOOL_A_STATS_HEADER={0x2c, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xa99}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x8884}, 0x20000040)

5m41.021041207s ago: executing program 32 (id=935):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x406a1, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
ioctl$auto(0x3, 0x400454ca, 0x38)
select$auto(0xe, 0x0, 0x0, &(0x7f0000000040)={[0xfffffffffffffffd, 0xb, 0xa, 0x40007fff, 0x948b, 0x7, 0x15f4da0a, 0x3, 0x3, 0x5e, 0x80000001, 0x7, 0x2, 0x93, 0x400000001, 0x2]}, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x2020009, 0x203, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
sysinfo$auto(0x0)
writev$auto(0x3, &(0x7f0000000080)={0x0, 0x1}, 0x3)
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f00000009c0), 0xffffffffffffffff)
sendmsg$auto_IPVS_CMD_SET_SERVICE(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000002a80)={&(0x7f0000002b00)={0x2c, r1, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x18, 0x1, 0x0, 0x1, [@nested={0x8, 0x5, 0x0, 0x1, [@typed={0x4, 0x7d, 0x0, 0x0, @binary}]}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x5, 0x93, 0x0, 0x0, @str='\x00'}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4050}, 0x4000000)
r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve0\x00', <r3=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'macvlan0\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'bond_slave_0\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'wg1\x00', <r6=>0x0})
sendmsg$auto_ETHTOOL_MSG_STATS_GET(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x90, r2, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_STATS_HEADER={0x1c, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x43}]}, @ETHTOOL_A_STATS_HEADER={0x34, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}, @ETHTOOL_A_STATS_HEADER={0x2c, 0x2, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xa99}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x8884}, 0x20000040)

9.562679408s ago: executing program 2 (id=1945):
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f00000002c0)={{@raw=0x7, 0x8, 0x4, 0xa2, "c6e47a44a36664a5e709f0e4c97056bc9fa32c617bb88dc98fa7591aefc4647f5af349f8e1e79c823b22958f"}, 0x1, @enumerated=@item=[0x0, 0x3, 0x1, 0xb, 0x6, 0x8001, 0x10, 0x6, 0x10000, 0x4, 0xffffffb9, 0x5, 0x8001, 0x62f, 0x101, 0x4, 0x200, 0xfffffff0, 0x1000, 0x7, 0x3, 0x3, 0x0, 0x6, 0xb94, 0x0, 0x1, 0x7, 0x3, 0xe8, 0x4, 0x0, 0x9, 0x46f, 0x8, 0x1, 0x6, 0x4, 0x6, 0x8, 0x80, 0x9, 0x65b, 0x9, 0x7, 0x81, 0x1cec, 0x9, 0x34b5, 0xfff, 0x5, 0x4, 0x2002, 0x1000, 0x9, 0x0, 0x400, 0xd, 0x0, 0x0, 0x207d, 0xa7a, 0x5, 0x5, 0x4, 0x80, 0x6ed, 0x0, 0x1, 0x1, 0x6, 0x4, 0x8, 0x1, 0x4003ff, 0x5, 0x8, 0x6, 0x0, 0x7, 0x2, 0x1000005, 0x400, 0x6, 0x4, 0x9, 0x29, 0x8, 0x30971ad3, 0x9, 0x78d, 0x7f, 0x0, 0x8001, 0x20000, 0x40, 0x0, 0x4, 0x5, 0xfffff43e, 0x0, 0x4f000, 0xfe, 0x5, 0x7, 0xd49e923b, 0x4, 0x80000000, 0x77, 0xf2, 0x0, 0x7fffffff, 0x7f77, 0x9, 0x5b, 0x9, 0x10001, 0x8, 0x0, 0xc2, 0x0, 0x5, 0x1000, 0x1, 0x7, 0x400, 0x8, 0x3], "4570dcfd140074f863fc1385c4fd7abe6fce96c0b442897f58fd7d975d164deff4eef5b9f9173fa400163669eae95125d4bd68ca54ca1b0aefb60ffa8d501b1329af8d4108ac145aa564c6e7a09ea1b2dfae0f309c6ea508833d7d134b13d8cb3ef95bf5ed43801c280c02a5a853512e6f730d43226f00af1c5ac268ecc1d18f"})
socket(0x2, 0x1, 0x106)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC2\x00', 0x361101, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0x5452, &(0x7f0000000100)={0x81, 0x1})
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0)
ioctl$auto_OSS_GETVERSION2(r1, 0x80044d76, &(0x7f0000000080))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x103800, 0x0)
ioctl$auto(r2, 0x4b45, 0x1)
r3 = io_uring_setup$auto(0x401, 0x0)
ioctl$auto_MEMLOCK(r3, 0x40084d05, &(0x7f00000000c0)={0xfffffffe, 0x7fffffff})
timer_gettime$auto(0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x7, 0xcff, 0xfffffffffffffffa, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f00000003c0)='7\x00\\\xa0\x04\x9c\"\xa9Nd_\xff\xa0k\xd8\xc9\xba\x00\xb5\x89\x8cg\xa84\xd8D)\xfdcR8\xdb\x98\xc5\xd7\x94\x94\xda\xc0r\x8f)\xbb_\xa2\fz\xe1\xffm\xf9t\x012A\xc8%H\x88\xaej\xda\xae\x1dO\xd7\x88?\x19\xf3\x068\xb4e\xb5\x93\x9a\xb9|Kh\xc2d\xb2\x9f\xb0\xf7\b\xba\x17\"-\x90\xda\xac\xe5\x1fb~8\xf2q\x0e\x98A[\xbb5\xb8\xeb\n!\x80r*}\x9cS5\xff0\xe9\xafx\xe9\x17\xbd\xf9m\xfa\xac`\x1d\xa3\xeb\xb1[\x971\xd92\xce=V\xe8\xb3}\xc2\x17k{\x182}\xe1\xa5\x05!\aws(\x19\xfe\x82?\x14L\x7f\xc0By\xa7\xca\xcbB\xd7?\x97', 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
read$auto(r4, 0x0, 0x7)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
poll$auto(&(0x7f00000002c0)={0xffffffffffffffff, 0xfff, 0x6}, 0x40, 0xffffc)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
bpf$auto(0x3, &(0x7f0000000040)=@query={@target_ifindex, 0x4, 0x7, 0x9, 0x7f, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0xb, 0x5}, 0x7)
socket(0xa, 0x2, 0x3a)
ioctl$auto_KVM_GET_API_VERSION(r3, 0xae00, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r5 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmsg$auto_NL80211_CMD_GET_COALESCE(r5, 0x0, 0x10045)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

6.109394811s ago: executing program 2 (id=1958):
fcntl$auto_F_GET_RW_HINT(0xffffffffffffffff, 0x40b, 0x5a4)
r0 = ioctl$auto_TUNSETOFFLOAD2(0xffffffffffffffff, 0x400454d0, &(0x7f0000000000)=0x22a1e932)
bpf$auto_BPF_LINK_GET_NEXT_ID(0x1f, &(0x7f0000000040)=@query={@target_fd=<r1=>r0, 0x2, 0x3, 0xd, 0x3425800000, @prog_cnt=0xaa2, 0x0, 0xff, 0x6, 0x6, 0x63c5}, 0xa61)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptye9\x00', 0x200, 0x0)
r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0)
shmctl$auto_SHM_STAT(0xa, 0xd, &(0x7f00000003c0)={{0x7, <r4=>0xee00, <r5=>0x0, 0x7, 0x5, 0x0, 0x7}, 0x7, 0x5, 0x9, 0x8, @raw=0x8000, @inferred=<r6=>0xffffffffffffffff, 0x1, 0x0, &(0x7f00000001c0)="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", &(0x7f00000002c0)="21af8b9f3e466623c7435a006c3b925bca9a17f4b6439a0878ea1e8947580c2f1a944e83d09ed732c9fe23fa3473a317c7e869af50ec948e8eb1ca8328aabce5e72a827cfab49948a7ec1566a85c90e671c50d8911a02d6d757c5f459f4a4deee8063a4080ef3ccf5be1151efbd4485b17facd330bc0336522a79deff6e0c5559bcb33a273012ca39e8b82e435ca0d7987069d16630aeb0084e8d0b167d265d151465cf30d3b5cafbdfe0594ba045282d4dd1a08b9305bd485b90a607bbf3a7fe6e39555809bfaca423ecd2cbdb518b6ff58bc29cbc65c"})
sendmsg$auto_NL80211_CMD_RADAR_DETECT(r1, &(0x7f00000007c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000780)={&(0x7f0000000440)={0x334, r3, 0x10, 0x70bd25, 0x25dfdbfe, {}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4e21}, @NL80211_ATTR_WPA_VERSIONS={0x8, 0x4b, 0x5}, @NL80211_ATTR_MAX_HW_TIMESTAMP_PEERS={0x6, 0x143, 0xe}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x6d, 0xbd, "d265b63319c018f717aa2ae6d7b7f9ee026542fba392edd44a088ba3c1b4f477d16c45711326cc4c1a83a7b97c9bff7ee30ddf893d7735abcda447703e2d01142580ff77bbb19c1f1ddb35a029c791d1b103700d7172a629c512181494e03dd94198a63a54a6b5bdc1"}, @NL80211_ATTR_CQM={0x213, 0x5e, 0x0, 0x1, [@nested={0x21, 0x7e, 0x0, 0x1, [@nested={0x4, 0x5f}, @nested={0x4, 0x115}, @nested={0x4, 0x10f}, @generic="78eae9ab277c599cfff84da88951af4a2f"]}, @typed={0x8, 0xf2, 0x0, 0x0, @fd=r1}, @nested={0x9e, 0x49, 0x0, 0x1, [@generic="36427d00711e74183a6897fd761b0eede1570ab527945b3a2c725a0a822dfd7d37b3d0227ac710dffa46cb5fbb8ebf202c242c6eb516f280ecf5346a6d9e0f93614ada7013f5f075cadc53d725d5be022a56f6ac5e68bbb17ec70a55d2fa65b7cc84e07ff86dd90311989c90399be79436e0b20b536123621d833770dc309fe4be50321d18a216768f7800c04e4c", @nested={0x4, 0x53}, @nested={0x4, 0x31}, @nested={0x4, 0x64}]}, @generic="0b31e126c937508585668445f4bf99c808a003ed3b8331417c6096cf00ad37fd569bf2bea527fb7725eeeb4347528ec161fc89e2fa5aac6d2f99db2005645cc056ded18d7bc3b6f38115fbc38b0b4adabcf33977f7ee15f653a49ee33a39a284de8525deb5e12b3a", @generic="a471d37fa665d5d76355744aa5a2c61a7d2f0bb92f2f179ca0342e5f93dbc1769166b89681a03fbede448d2b4baedebbc0d010f5015a01f18d31efc2f5995e7f0e4c1cf3a82694f9347f532f6b213088f851d0f70ab07d5aaaccb456590f4c6fc8b08603d7ba7b7bf97fc1663d84d2844ebe0aaf3e9d1e86eb07cda9a93819b866f71d8c4e235b8b278e01e2ac7c0cd67f4360f0aa2d634ad75e563bfa33263480b94c3b28030bb0c433a9c18efdbb1151e93b30d7f60a", @nested={0x1c, 0xb1, 0x0, 0x1, [@typed={0xf, 0x8b, 0x0, 0x0, @str='/dev/ptye9\x00'}, @typed={0x8, 0x31, 0x0, 0x0, @ipv4=@local}]}, @typed={0x8, 0x6c, 0x0, 0x0, @u32=0x7c}]}, @NL80211_ATTR_MLO_TTLM_ULINK={0x2e, 0x149, "0c204c47a4b5258055ed02eb4fd77def445e0ecd8a30a41c86deaaca39bc16a0e25b20b8ddbfc00e7cf1"}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_SCAN_SUPP_RATES={0x50, 0x7d, 0x0, 0x1, [@nested={0x4c, 0x149, 0x0, 0x1, [@nested={0x4, 0x3f}, @typed={0x8, 0x144, 0x0, 0x0, @uid=r4}, @nested={0x4, 0xbb}, @nested={0x4, 0xb3}, @nested={0x4, 0x25}, @generic="f378322455584712810146f74b227baa05e3b2bf7eba54d48e696907", @typed={0xf, 0x20, 0x0, 0x0, @str='/dev/ptye9\x00'}, @nested={0x4, 0x118}]}]}]}, 0x334}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000)
madvise$auto(0x3, 0x6, 0xad)
r7 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f0000000800), 0x10000, 0x0)
read$auto_vhost_net_fops_net(r7, &(0x7f0000000840)=""/214, 0xd6)
ioctl$auto_TIOCSETD2(r2, 0x5423, &(0x7f0000000940)="d83b10c576494b513a063212605d218089a12c8851b890dae06e12ffdf9f4ccde8578fecae2b85f0af42edd3eb53f208d79e65103ea748efecdaa19c0a9ea6792090daf348435723a7925dc405b6")
close_range$auto(r0, r1, 0x4)
r8 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f00000009c0), 0x0, 0x0)
shmctl$auto_IPC_INFO(0xffff, 0x3, &(0x7f0000000b40)={{0x4, <r9=>r4, r5, 0xe, 0x1d94, 0x7fff, 0x9}, 0x38, 0x2b69, 0xfffffffffffffff7, 0x27fa31ab, @raw=0x9, @inferred=r6, 0xfffa, 0x0, &(0x7f0000000a00)="11a6d217700db1a299557abbe2ebc0fa3619dc5a7f4e87a029b73f6f6c489e8060fd1469f326e1780012be8e0673c50d95fca93b8e292acae1834bde288c5eb3faa2269bc1a01127a4a8345d12707c3a0dd495075aa7ccb4b37644e8765d73380e024f705b4967b337a721eb53f844e1886fdc1671f8ecb4c574f5d8360a42118a2e68c5c2e6ad535255e1aff51ddadd76a12971cdec1cb789f6b61162636108bf7b0feb976242fbc68f45ccfbd5b8d5aedcb3a8c039e4", &(0x7f0000000ac0)="d225469f9bbae839302ecab670d4c907fcee602d84a3205ca6bb9cfac36fd556c2ff90f22ae66e15ecdb7430cb7488255c8dab82cc97bd545abacc3cd7d3f277f8518c85cf57748dad2af9e33651be32d4442fc82f89d3051f043cc566f9b51a57c1b32d0e3ca43cfd8f19fd08db"})
madvise$auto(0xcc, 0x8, 0x5b6)
getsockopt$auto_SO_TIMESTAMPING_NEW(r8, 0x6, 0x41, &(0x7f0000000bc0)='nl80211\x00', &(0x7f0000000c00)=0x3)
madvise$auto(0x8000000000000001, 0x6, 0x6)
r10 = syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000c80), r0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000cc0)={'veth0_to_hsr\x00', <r11=>0x0})
sendmsg$auto_NL802154_CMD_ABORT_SCAN(r0, &(0x7f0000000f80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000f40)={&(0x7f0000000d00)={0x238, r10, 0x2, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0xe}, @NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0x7}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r11}, @NL802154_ATTR_SEC_FRAME_COUNTER={0x8, 0x2c, 0x4}, @NL802154_ATTR_PEER={0x1dd, 0x28, 0x0, 0x1, [@typed={0x8, 0x104, 0x0, 0x0, @fd=r1}, @typed={0xe3, 0x12e, 0x0, 0x0, @binary="ff253d9b0f0a65d6a0a7d68aa1c63cc40f2d654f584783dee1c44bc28e71131be53d930b9494d6d789de6fff069cf34a93dd7258622489b1e996226de434a705e857f0ce2080bb02469369951f00aebd3b63d5ca0eac0d9cd0b71a5c1d091f3d4ac827ac5d802fdd8c988d6f0bdd7695ea2e7b3c71ae5aaf6ad340facdf8fff30b8c5f2ab71d48e023482ec144d84784eee220a06d972859656de2c0bed7dfad47ae335036722c221b3747abd7115094da7de8bb8953ec0ed01d21ec61e4c9fc0133c6f7540772c42d3e9e8cf2f450494f4f85a6169e9fef49a013a5d2f797"}, @generic="cb3f59dbe2d36c25b7629c9dd8e67855f6d852e06888297912eaa202bc045bbdfb59432c789b0a822dbc4cb5b7fbeb78c3b3250f848804f873ec8364abe74d8989764d95529914c98b60734969e1b4673a4f72d14c4d4556c99b843cbec3e06d4e00fee1b50aaa9340c25388b4efae237a3a873e1d675b0d18523b420bbb4a58bbd7077f0609d98ff24e4f057a52fab17c856ba2f391438a629f29c2f86b1f786e3e73ac72afb5b2eea277b87c1320d4da22126639b825d015796682a966c125c5a7373c1062abcc5e730d1de165e167a3f0130df2eda9668a10bf15e0d5babcb96f38aea034da7ce9a7b6dbcb"]}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x1}, @NL802154_ATTR_SCAN_DURATION={0x5, 0x24, 0xf7}, @NL802154_ATTR_SUPPORTED_CHANNEL={0x8, 0x16, 0xffffffc0}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x7f}]}, 0x238}, 0x1, 0x0, 0x0, 0x8000}, 0x4010)
madvise$auto(0x6, 0x5, 0x1e)
getsockopt$auto_SO_TXTIME(r0, 0x3, 0x3d, &(0x7f0000000fc0)='\x00', &(0x7f0000001000)=0xfffffff8)
shmctl$auto_IPC_RMID(0x7, 0x0, &(0x7f0000002140)={{0x1, r4, <r12=>r5, 0x3, 0x443c, 0xfffffffd, 0x4}, 0xf, 0x2, 0x8001, 0x400, @raw=0x1, @inferred=<r13=>r6, 0x0, 0x0, &(0x7f0000001040)="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", &(0x7f0000002040)="303dcf33db48c6984a2eb0ac3829055cd9d29f305ccaaa49d042a92635c5c89945a04503cfd16a44911fc30f45b92de89dcd4d15cc07d7c8eb675d842e7590c02169db676c75cdd8978cfc9ca28488c5863e48a6ac5c7681b0e0e12e75c5ec27d7d4d07213ce0700278c869ccea9ba2d74a3e6724cc5d200924ad8e078842d808ee4ffab2966b57f3f11ecdb60abcfd7ea22bc579baf98fcee5ba1672d204d0344afb49f8d2c130cf5c6ab3c69cf8add22200c593f9057103115f3ae89d7d6151995b827249e02c1c07c4047e6f13492a846dc4a8ea715759c5016e982c3f6d711d751288b93a1"})
r14 = bpf$auto_BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000021c0)=@bpf_attr_7={@btf_id=0x7ae79062, 0x7ff, 0x9, <r15=>r8}, 0x8)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r14, 0xc0045516, &(0x7f0000002280)=0x9)
shmctl$auto_SHM_STAT_ANY(0x1, 0xf, &(0x7f0000002480)={{0x8001, r9, r12, 0x5, 0x10001, 0x0, 0xe8}, 0x1, 0x7, 0x2, 0x3, @inferred=r13, @raw=0x4, 0x0, 0x0, &(0x7f00000022c0)="566a3ebff1f6655adf2252f1129a60acefdd961179504b0f8ca18a0dde47216d4f0d0cc0f285e2122bd887f2ab38c179e922cc046b552c94bf52cccb1b330e97b9c162793d285359c59e14c8866eb155218ef031feb4143710fd42e3287fa050d6b88fec08688c0be00d57467f587faeb4acba3e48fd586b6062dfc54bf52821fed13b7e97d06669828318d3d95de291bdadd4e810d1301a8d8bd22c205df0d310cae4d521ab89f82ce94d01a0e6926c36dfeb01e4814dfae78683157fdf95440230f614", &(0x7f00000023c0)="41c016d6965e286ed016093440d93e685dd2658017513323c190209f5a7d734ea21ae3906940a35121375508f8b823d8546415e8f665ef2f81844a23acc2438f4c76c664aec9bbad128766aff7ecd99433a8f5ef5ac9da85c709740b0ca23972b4eaf30dffdab6deae69ecaf9149b70c205bd285e4682de9a15a179791f0922d016432669ad21c5b9b1e56900b336b9df63f38eada9b8600fb2d0206745f7e43f937bc27a898a8beb23cb2193abce053af"})
madvise$auto(0x6, 0x5, 0x9)
pread64$auto(r15, &(0x7f0000002500)='*!\x00', 0x7, 0x1d3074f8)
socket(0x25, 0x6, 0x4)
mmap$auto(0xff, 0x9, 0x4, 0x10, r15, 0x4)

5.868121836s ago: executing program 2 (id=1960):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x4000804) (async)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0xe986, 0xdf, 0xeb1, r0, 0x8000) (async)
socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
msgctl$auto_MSG_INFO(0x5, 0xc, &(0x7f0000000280)={{0x9, 0xffffffffffffffff, <r1=>0xffffffffffffffff, 0x2, 0x287f, 0x2, 0x3}, 0x0, 0x0, 0x7fffffff, 0x9, 0x8, 0xffffffff, 0xfffffffffffffffe, 0x1, 0xfc2, 0x26f, @inferred, @raw=0x9})
setresgid$auto(0x0, 0xffffffffffffffff, r1) (async)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0x1d, 0x3000, 0x6, 0x7, 0x400a, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c48, 0x29b, 0x3, 0x7f, 0x0, 0x6}, {0x100, 0x1, 0x52, 0x85, 0x2, 0x1a7b870a, 0x76c5, 0x8, 0x100000000}})
io_uring_register$auto(0x2, 0x9, 0x0, 0x0)
r2 = socket(0xa, 0x802, 0x3a)
setsockopt$auto(r2, 0x0, 0x21, &(0x7f0000000000)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\xff\x1b\x01\x1e\xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\xf2Vw\xbe\x1c$\xddm\x8a\x9d\x91_\v\xb2j\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x00\xe4\xa5\xfe\xb5h\xae\xec%\xf9\xa3>\xd6,\xf3\x98\'\xb0\t~~\xb4\x98\xbb3=A\x9c\x17\xa2\xce\fh-M\xdb-\x15VX\xfe\xca+\xb3JL\x0fl\xe84\xbd\xa3nO\x9f\xfa\xb1\x06$\b$i\x00\x80\xff\xff\xd6\x1e\xdbB\x9bb\x1cXC\x8c\x8b\xd9\xff\xf2B\xd4\xb4V<!n\n\xc4Pf\x99!Z\x13\xff\xca\xf3e\x015\x9b\x86\xd6$\x1a\r3\x91\xb7\x942\xeb\xadVA\xfc\x1f\xbf1\xb7T\xc1\xbf\xc0\xc2\xfc\xe8w\xd33\xb2,\xb0\x9fA3\xc2\xa2\x1cM\x825\x94*\x1cU\xbbNeb\xd2\xa9\x0f\xed\x8b\xea\xfa\x8a\x04.\xffMIw\x0f\xd6\xae^\xd2\xf1j\xcb\r\xa4\x1d0\x84\xf9\xcb\x8c\xe0\xb4\xce\xa1\x10o\xbdA\x80)d\xca\x81\x9c\x80GL\x0e\xe6\x19\x8au\x1a7\xc5|\xf6\x1e\xe00\xc6\"\x83\x1c\xa2\x9e\a\x1c\xea\xa3\x9c\xe1BF\x05b\xf6\xdcf\x04\xd9B\xb9\x98\x9cq\xbd\xfb\xb5\x04\x82~\xf2\x8d\x9f`\xec\xd0\xafY\xcf\x84*\xe6\x05o\xe1e\xb9)\x15', 0x18000113)
socket(0x1d, 0x2, 0x6) (async)
r3 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r4=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r4, 0xfd}, 0x6a) (async)
prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0) (async)
socket(0x2b, 0x1, 0x1) (async)
socket(0xa, 0x3, 0x73)
set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x7b, 0x4) (async)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
sysfs$auto(0xffffffff, 0x0, 0x0)
futex$auto(0x0, 0x10d, 0x2, 0x0, 0x0, 0x8) (async)
r5 = socket(0xa, 0x3, 0x3a)
getsockopt$auto(r5, 0x3a, 0x1, 0x0, 0x0)
bpf$auto(0x5, &(0x7f0000000000)=@bpf_attr_7={@btf_id, 0xd, 0x9}, 0x6) (async)
r6 = socket(0xa, 0x2, 0x88)
lseek$auto(0x3, 0x7fffffffffffffff, 0x401)
bpf$auto(0x0, &(0x7f0000000000)=@link_update={r6, @new_prog_fd=0x4, 0x1801, @old_map_fd=0x3ff}, 0x6)
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0xa, 0x3, 0xe, 0x940, 0xfffffff8, 0x3, 0x1004, 0x1, 0x9, 0x5, 0x6, 0x7, 0x1001000, 0x8, 0x2, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}, 0x4, 0x40000081)

4.515942304s ago: executing program 2 (id=1963):
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100) (async)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x100)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
mknod$auto(&(0x7f0000000040)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00'/263, 0x1, 0x4)
lstat$auto(&(0x7f0000000500)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d) (async)
fallocate$auto(0x8000000000000003, 0x0, 0xd, 0xcbd5d)
setrlimit$auto(0x1, 0x0)
semget$auto(0x1, 0x2, 0x504)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/memfd_noexec\x00', 0x2, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
io_uring_setup$auto(0x59, 0x0)
madvise$auto(0x0, 0xffffffffffff0006, 0x17) (async)
madvise$auto(0x0, 0xffffffffffff0006, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
write$auto(0x3, 0x0, 0xfdef)
keyctl$auto(0xf, 0x7fffffffffffffff, 0xffff, 0x4, 0x3)
keyctl$auto(0x6, 0xffffffffffffffff, 0x2, 0x0, 0x8) (async)
keyctl$auto(0x6, 0xffffffffffffffff, 0x2, 0x0, 0x8)
close_range$auto(0x2, 0x8, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/vm/nr_overcommit_hugepages\x00', 0x321080, 0x0) (async)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/vm/nr_overcommit_hugepages\x00', 0x321080, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000140), 0x6ab82, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000080), 0x88000, 0x0)
mmap$auto(0x6df, 0x200000001, 0xdf, 0xeb1, 0x401, 0x8001) (async)
mmap$auto(0x6df, 0x200000001, 0xdf, 0xeb1, 0x401, 0x8001)
mmap$auto(0xb0, 0xc, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
unshare$auto(0x40000080) (async)
unshare$auto(0x40000080)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0)
openat$auto_fops_blob_file(0xffffffffffffff9c, &(0x7f0000011500), 0x40002, 0x0)
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/bus/usb/024/001\x00', 0x30f901, 0x0)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x20009, 0x10000000000df, 0xeb2, 0x401, 0x8000)
ioctl$auto(r0, 0xb, 0x1)
ioctl$auto_USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)={0xfd, 0x91, 0x5b, 0x4, &(0x7f0000000000), 0x8, 0xeb90, 0x2, @number_of_packets, 0x7, 0x9, 0x0})

4.315389738s ago: executing program 1 (id=1965):
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0)
mmap$auto(0x0, 0x4020009, 0x5, 0xeb1, 0x401, 0x8000)
mlockall$auto(0x800000000000005)
mbind$auto(0x5, 0x2091d2, 0x2fffffffa, 0x0, 0x3, 0x2)
syz_clone(0x20000011, 0x0, 0x0, 0x0, 0x0, 0x0)
msgctl$auto_MSG_STAT(0x7, 0xb, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$auto(0x10, r0, 0x4, 0x7ff)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x41a800, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r2, 0x5425, 0x0)
ioctl$auto_FIFREEZE(r2, 0xc0045878, 0x2)
mmap$auto(0x0, 0xe, 0x3, 0x16, 0xfffffffffffffffa, 0x8000)
r3 = signalfd$auto(r2, &(0x7f0000000000)={0x100}, 0x8)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r3, 0xc4c85513, &(0x7f0000000440)={{@raw=0x200, 0x0, 0x0, 0x827, "d375de81aa00d12a4966014d253aff1830000000030003d352806dc60622efee7ca4ab25b300"}, 0x0, @bytes=@data_ptr=&(0x7f00000001c0)='\x10\xd6\x15\x14U\x89n\xa6\x1dOE#\xdd\xde\xbaw\xa8g\xb6N\ao\x9a\x946\x12\xb2\x05\xf6B\x1fke}\x88\xb5[\x00\x00\x9d\xbc\xe69\xfdd\xf7\xaeS\xe6d\xe4fS\xe9Z\x17\xb6{\n\bN\xd5#P{\xfc', "24a35540b5ce56ebcd6ffbd3179ea33f658e644d8e976182f6b9b6df3b83effcbfea77d24b7ebf46bd12bfbbd166da4e34a1dfd0871c349755b289f5a5dff333d1563c4bbc47930c917514b6cf6ce52efe9ae6162ca2fa783826deff1fd25f5a020fb82a4ac2aa24f6856d35482696190eb00c843498ba0c61c9e80c5709afd5"})
r4 = socket(0x10, 0x3, 0x9)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/pci_bus/0000:00/cpuaffinity\x00', 0x30800, 0x0)
read$auto(r5, &(0x7f00000000c0)='/sys/devices/~latform/vhci_hc$.7/usb23/23-0:1.0/~\xda=\x8eep_81/inver', 0x6864a34)
write$auto(r4, 0x0, 0x5)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000080)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000140)={0x9, &(0x7f0000000040)={0x15, 0x3, 0x1, @inferred=r1}})
ptrace$auto(0x8, r0, 0x43, 0x20000000)
gettid()
waitid$auto_P_ALL(0x0, 0x3, 0x0, 0x6, 0x0)
mmap$auto(0x1ffc, 0x400008, 0xdf, 0x9b73, r1, 0x7d07)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x1000, 0xe983, 0x0, 0x19, 0xffffffffffffffff, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb02, 0x0)

4.021366138s ago: executing program 0 (id=1966):
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f00000002c0)={{@raw=0x7, 0x8, 0x4, 0xa2, "c6e47a44a36664a5e709f0e4c97056bc9fa32c617bb88dc98fa7591aefc4647f5af349f8e1e79c823b22958f"}, 0x1, @enumerated=@item=[0x0, 0x3, 0x1, 0xb, 0x6, 0x8001, 0x10, 0x6, 0x10000, 0x4, 0xffffffb9, 0x5, 0x8001, 0x62f, 0x101, 0x4, 0x200, 0xfffffff0, 0x1000, 0x7, 0x3, 0x3, 0x0, 0x6, 0xb94, 0x0, 0x1, 0x7, 0x3, 0xe8, 0x4, 0x0, 0x9, 0x46f, 0x8, 0x1, 0x6, 0x4, 0x6, 0x8, 0x80, 0x9, 0x65b, 0x9, 0x7, 0x81, 0x1cec, 0x9, 0x34b5, 0xfff, 0x5, 0x4, 0x2002, 0x1000, 0x9, 0x0, 0x400, 0xd, 0x0, 0x0, 0x207d, 0xa7a, 0x5, 0x5, 0x4, 0x80, 0x6ed, 0x0, 0x1, 0x1, 0x6, 0x4, 0x8, 0x1, 0x4003ff, 0x5, 0x8, 0x6, 0x0, 0x7, 0x2, 0x1000005, 0x400, 0x6, 0x4, 0x9, 0x29, 0x8, 0x30971ad3, 0x9, 0x78d, 0x7f, 0x0, 0x8001, 0x20000, 0x40, 0x0, 0x4, 0x5, 0xfffff43e, 0x0, 0x4f000, 0xfe, 0x5, 0x7, 0xd49e923b, 0x4, 0x80000000, 0x77, 0xf2, 0x0, 0x7fffffff, 0x7f77, 0x9, 0x5b, 0x9, 0x10001, 0x8, 0x0, 0xc2, 0x0, 0x5, 0x1000, 0x1, 0x7, 0x400, 0x8, 0x3], "4570dcfd140074f863fc1385c4fd7abe6fce96c0b442897f58fd7d975d164deff4eef5b9f9173fa400163669eae95125d4bd68ca54ca1b0aefb60ffa8d501b1329af8d4108ac145aa564c6e7a09ea1b2dfae0f309c6ea508833d7d134b13d8cb3ef95bf5ed43801c280c02a5a853512e6f730d43226f00af1c5ac268ecc1d18f"})
socket(0x2, 0x1, 0x106)
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/controlC2\x00', 0x361101, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0x5452, &(0x7f0000000100)={0x81, 0x1})
r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0)
ioctl$auto_OSS_GETVERSION2(r1, 0x80044d76, &(0x7f0000000080))
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty46\x00', 0x103800, 0x0)
ioctl$auto(r2, 0x4b45, 0x1)
r3 = io_uring_setup$auto(0x401, 0x0)
ioctl$auto_MEMLOCK(r3, 0x40084d05, &(0x7f00000000c0)={0xfffffffe, 0x7fffffff})
timer_gettime$auto(0x0, 0x0)
mmap$auto(0x0, 0x2020009, 0x7, 0xcff, 0xfffffffffffffffa, 0x8000)
write$auto(0xffffffffffffffff, &(0x7f00000003c0)='7\x00\\\xa0\x04\x9c\"\xa9Nd_\xff\xa0k\xd8\xc9\xba\x00\xb5\x89\x8cg\xa84\xd8D)\xfdcR8\xdb\x98\xc5\xd7\x94\x94\xda\xc0r\x8f)\xbb_\xa2\fz\xe1\xffm\xf9t\x012A\xc8%H\x88\xaej\xda\xae\x1dO\xd7\x88?\x19\xf3\x068\xb4e\xb5\x93\x9a\xb9|Kh\xc2d\xb2\x9f\xb0\xf7\b\xba\x17\"-\x90\xda\xac\xe5\x1fb~8\xf2q\x0e\x98A[\xbb5\xb8\xeb\n!\x80r*}\x9cS5\xff0\xe9\xafx\xe9\x17\xbd\xf9m\xfa\xac`\x1d\xa3\xeb\xb1[\x971\xd92\xce=V\xe8\xb3}\xc2\x17k{\x182}\xe1\xa5\x05!\aws(\x19\xfe\x82?\x14L\x7f\xc0By\xa7\xca\xcbB\xd7?\x97', 0x84)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)
r4 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0)
read$auto(r4, 0x0, 0x7)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
poll$auto(&(0x7f00000002c0)={0xffffffffffffffff, 0xfff, 0x6}, 0x40, 0xffffc)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
bpf$auto(0x3, &(0x7f0000000040)=@query={@target_ifindex, 0x4, 0x7, 0x9, 0x7f, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0xb, 0x5}, 0x7)
socket(0xa, 0x2, 0x3a)
ioctl$auto_KVM_GET_API_VERSION(r3, 0xae00, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
r5 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
sendmsg$auto_NL80211_CMD_GET_COALESCE(r5, 0x0, 0x10045)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

3.99296651s ago: executing program 4 (id=1967):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x80000001, 0x0, 0x8, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
ioctl$auto_TCSBRKP(0xffffffffffffffff, 0x5425, &(0x7f0000000080))
write$auto(0x3, 0x0, 0x7fffffff)
getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socket(0x2, 0x1, 0x0) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a) (async)
sendmmsg$auto(r0, &(0x7f0000000000)={{&(0x7f0000000040), 0x80000001, 0x0, 0x8, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000) (async)
ioctl$auto_TCSBRKP(0xffffffffffffffff, 0x5425, &(0x7f0000000080)) (async)
write$auto(0x3, 0x0, 0x7fffffff) (async)
getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0) (async)

3.847562591s ago: executing program 1 (id=1968):
mmap$auto(0x0, 0x5a32, 0x3, 0x10, 0xfffffffffffffffa, 0x8000)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
setsockopt$auto(0x3, 0xe6, 0x401f, 0x0, 0x9)
setitimer$auto_ITIMER_VIRTUAL(0x1, &(0x7f0000000540)={{0x7fffffffffffffff, 0x6}, {0x1, 0x6}}, 0x0)
setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88)
getsockopt$auto(0x3, 0x200000000001, 0x1d, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socketpair$auto(0x3, 0x5, 0x7, 0x0)
ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, 0x0)
ioctl$auto(0x3, 0xc0205647, 0x38)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, 0x0, 0x400, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
close_range$auto(0x2, 0xa, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x2081, 0x0)
openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/apparmor/prev\x00', 0x1, 0x0)
ftruncate$auto(0x3, 0x400180200000)
openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x841, 0x0)
socket(0xa, 0x2, 0x3a)
r0 = openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x2000000001, 0x0)
openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_pipe\x00', 0x438401, 0x0)
select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0xffffffffffffffff, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0)
write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
mseal$auto(0x0, 0x7dda, 0x0)
madvise$auto(0x0, 0x2003f0, 0x1)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x8000000000001fd, 0x20000000007, 0x1, 0xbc3, 0x800, 0x3, 0x8, 0xc, 0x400000000003, 0x3, 0x0, 0xfffffffffffffffe, 0x6, 0x9, 0xffffffffffffff81, 0x4]}, 0x0)
copy_file_range$auto(r0, 0x0, 0xffffffffffffffff, 0x0, 0x6e3, 0x5)

3.64413341s ago: executing program 4 (id=1969):
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto(0xffffffffffffffff, 0x5522, 0xf15)
ioctl$auto(0xffffffffffffffff, 0x5523, 0xffffffffffffffff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = bpf$auto(0x8000000, &(0x7f0000000000)=@test={<r2=>0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r3, 0x0, 0x24000000)
write$auto(r4, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x40e00, 0x0)
pread64$auto(r5, 0x0, 0x3, 0x5ef6)
syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0xa, 0x3, 0x3b)
r6 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r8=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x1c, r6, 0x1, 0x70bd28, 0x25dfdbb9, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040415}, 0x20000000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0)
socketpair$auto(0x1, 0x1, 0x2a340, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x1ff, 0x3, 0x1, 0x7, 0xfffffffffffffffb, 0x15f4da05, 0x10, 0x1000, 0x3, 0x11d4, 0x200000000000006, 0x10, 0x8cfb7, 0x9, 0x6]}, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000240)="e769ffff91a9bccbf2a814c2b1c2da6a4642e71e42496c6bac2cd2cc3aa9633c36df13128be76976577ef8b494eb27dd7c5c300903663e1e87c15519219f", 0x3e)
getsockopt$auto_SO_BPF_EXTENSIONS(r2, 0x9, 0x30, &(0x7f0000000180)='\xf8\x1b\xf3', &(0x7f0000000200))

3.590041968s ago: executing program 1 (id=1970):
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, &(0x7f0000000100)={{@raw=0xfffffffe, 0x85, 0x20e, 0x9, "669cbbd9e9756f22fdffa188e0f106000000000000000b2f4ab8633824f2d2252ca5f200", @raw=0x6}, 0x0, @integer=@value=[0x42, 0x3, 0x4, 0x6, 0x9, 0xfffffffffffffffb, 0x9, 0x3, 0x101, 0xff, 0x22, 0x4, 0x6, 0x4, 0x7, 0xf, 0x1ff, 0x1, 0x400, 0x8, 0x5, 0x2, 0xe294, 0xa2, 0x8, 0x100000000, 0x2, 0x8, 0xae, 0xaeb, 0x3, 0xffffffffffffffff, 0x5, 0x8, 0xfffffffffffffffe, 0x10000, 0x55e2, 0x7, 0x8000, 0xe, 0xffffffffffffffff, 0x6, 0x9, 0x14f3, 0x1ff, 0x1, 0x6e7, 0x3, 0x8, 0x9, 0x0, 0x2, 0x7fffffff, 0x7, 0x2f79f1d9, 0x0, 0x401, 0x9, 0x6, 0x100000001, 0xffffffff, 0x800, 0x8001, 0x5, 0x5ed4, 0x1, 0x7, 0x80000000, 0x962, 0x5, 0xfffffffffffffffe, 0x8, 0xfffffffffffffff7, 0x401, 0x1, 0x3e44, 0x8, 0x4, 0x9, 0x1, 0xc98c, 0x68, 0x2, 0x6, 0x1, 0x3, 0xfffffffffffffffe, 0x4, 0xfffffffffffffffe, 0xffffffffffffffff, 0x55, 0x8, 0x30, 0x2d, 0x0, 0x3, 0x2, 0x0, 0x726, 0x7fffffff, 0x1000, 0x10000, 0x0, 0x4, 0x1, 0xbf, 0x2, 0x4, 0x0, 0x5, 0x1, 0x40, 0x6, 0x9, 0x8000, 0xffff, 0x7, 0x140, 0x0, 0xc7dd, 0xfc05, 0x0, 0x4, 0x6, 0x8, 0x0, 0x0, 0x4], "282f77b07e718ed4d99a34617774e3a82f982e0f05e516c299a28a585e87e0d908e2c8e50de5016f1de5d432da2cc20e951d8fcdc4f791a11996aad5af504c0d9927e62ef70b23a13735a4fe805c1ce1b6b1d83d21bb42794ec925b4547a3d52d4b5210392111e181719fef9d685b6534b171d76ad633f94a608b818600a6c85"})
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000680)=""/249, 0xf9)
r0 = openat$auto_dfs_global_fops_debug(0xffffffffffffff9c, 0x0, 0x426a2, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/nbd6/trace/enable\x00', 0xe3102, 0x0)
write$auto_dfs_global_fops_debug(r0, &(0x7f0000000d80), 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = socket(0x6, 0x6, 0x6)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0)
ioctl$auto_BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0)
ioctl$auto(0xffffffffffffffff, 0x64c6, r1)
syz_genetlink_get_family_id$auto_nfc(&(0x7f00000000c0), 0xffffffffffffffff)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
r2 = socket(0x15, 0x5, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
sendmsg$auto(r2, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0)

2.579281017s ago: executing program 4 (id=1971):
r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0)
ioctl$auto(r0, 0x5522, 0xf15)
ioctl$auto(r0, 0x5523, r0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r2 = bpf$auto(0x8000000, &(0x7f0000000000)=@test={<r3=>0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r4, 0x0, 0x24000000)
write$auto(r5, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x40e00, 0x0)
pread64$auto(r6, 0x0, 0x3, 0x5ef6)
syz_clone(0x4001000, 0x0, 0xe00, 0x0, 0x0, 0x0)
socket(0xa, 0x3, 0x3b)
socket(0xa, 0x3, 0x3b)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000f40)={'batadv0\x00'})
sendmsg$auto_BATADV_CMD_SET_MESH(r7, 0x0, 0x20000000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0)
socketpair$auto(0x1, 0x1, 0x2a340, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x1ff, 0x3, 0x1, 0x7, 0xfffffffffffffffb, 0x15f4da05, 0x10, 0x1000, 0x3, 0x11d4, 0x200000000000006, 0x10, 0x8cfb7, 0x9, 0x6]}, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r2, &(0x7f0000000240)="e769ffff91a9bccbf2a814c2b1c2da6a4642e71e42496c6bac2cd2cc3aa9633c36df13128be76976577ef8b494eb27dd7c5c300903663e1e87c15519219ff691bef8e8162e8a841e0b720ba4c432a0b5e1e6ce3fba9b6c4462c74f701a8daaf2a07cdcee8ef120a79f8ecfef3532373fcfc0602284e9ecfab10a02", 0x7b)
getsockopt$auto_SO_BPF_EXTENSIONS(r3, 0x9, 0x30, &(0x7f0000000180)='\xf8\x1b\xf3', &(0x7f0000000200))

2.309937644s ago: executing program 0 (id=1972):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
clock_adjtime$auto(0x0, &(0x7f0000000040)={0xfbb, 0x0, 0x7f, 0xfffffffff7fffffe, 0x600, 0x1, 0x7, 0x0, 0x7, 0x8, 0x5, {0x3ff, 0x7}, 0xfffffffffffffffa, 0xa5, 0xa, 0x13c, 0x0, 0xc3, 0x1000, 0x800000000000007, 0x5, 0x90, 0xfffffff5})
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1d, 0x2, 0x7)
r1 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r2}, 0x6a)
write$auto(r0, 0x0, 0x100000a3d9)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
r3 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/bonding/bond0\x00', 0x18b000, 0x0)
pread64$auto(r3, &(0x7f0000000000)='/proc-NesH\x1fk\xdd\x00\x00\x00\x00\x88\x00\x00\x00\x00\x00:\x19\xf4\xe2\xb7:\x81\xf8\xedl\x9d\x9a\'\xf8D,\xc0x\x1d\xf5JE\xcd7\xc3^\xbc2\xc7\xbf\xe5\x7f\xb93 \xcd${!\x9a`\x96\x86\x96D|\xf0H\x8c\x05:\xae\xa6\x88x@\x97E\x92f\xe3h\x05\x0f9\x9e\v\t\x18\x8b\xec\xd7\xe8<cd+o\xcf\x00\x95\xd5f\xfb\x14\xd4\x96\xe9?|\xc6\xb9\x95q\xe0\x1eMC\x88l\xc6\"\xa6\xdc#\x9b\x96U\x0e\xbb\xa0\xa4\x06\x00\x00\x00\x00\x00\x00\x00\x0e\xbb\xd0(\x9b`O\x06T\xa2\xd8&U?\xc9', 0x8100000041, 0x101)
chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba)
fsconfig$auto_FSCONFIG_SET_PATH(r3, 0x3, &(0x7f0000000100)='>\x00', &(0x7f0000000180), 0x0)
open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154)
mmap$auto(0x0, 0x2020009, 0x7, 0x2000000000000eb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x0, 0x5, 0x0)
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x4002, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card1\x00', 0x28900, 0x0)
socket(0x10, 0x2, 0x0)
r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0)
r5 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
ioctl$auto(r4, 0x541c, r5)
r6 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/cifs/smbd_keep_alive_interval\x00', 0x0, 0x0)
pread64$auto(r6, &(0x7f0000000040)='\x00\x00\x00\x88\xde\x90\a\'\x9bM\xa0\x848\xbbz(\xe9\x05<\x82\xfe\xe2\xf6 \x0f8\xfb\xa7\xb4\xa0\x9e\xcb\xec\x9e{o2?\x0f\x11\x90^\xdf/\x84\x99!*\xe3\x99}x\xd4\xa5D\xfa\xe5\xf9od^\xa6', 0x7ff, 0x2)

1.949410495s ago: executing program 0 (id=1973):
unshare$auto(0x40000080)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'vxcan1\x00', <r1=>0x0})
sendmsg$auto_ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000c80)={&(0x7f0000000100)={0x28, 0x0, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_COALESCE_RX_MAX_FRAMES_HIGH={0x8, 0x14, 0xd}, @ETHTOOL_A_COALESCE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4089c}, 0x4400)
r2 = prctl$auto(0x3e, 0x1, 0xffffffffffffffff, 0x1, 0x0)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
sendmsg$auto_ETHTOOL_MSG_TUNNEL_INFO_GET(0xffffffffffffffff, &(0x7f00000014c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001480)={&(0x7f0000001500)=ANY=[@ANYBLOB="6c010000", @ANYRES16=0x0, @ANYBLOB="000828bd7000fcdbdf251c000000700001800800030003000000080003002400000008000300010000001400020064756d6d79300000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f6261746164760014000200626f6e6430000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="080003007e2900008800018008000100", @ANYRES32=0x0, @ANYBLOB="140002006261746164763000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f626f6e6400000008000100", @ANYRES32=0x0, @ANYBLOB="140002007866726d30000000000000000000000014000200000000000000000000000000000000001400020076657468315f766c616e00000000000008000300001000006000018014000200626f6e645f736c61", @ANYRES32=0x0, @ANYBLOB="1400020070696d7265670000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="1400020074756e6c300000000000000000000000080001", @ANYRES32=0x0, @ANYRESDEC=r3, @ANYRES32=0x0, @ANYBLOB], 0x16c}, 0x1, 0x0, 0x0, 0x40000}, 0x4015)
read$auto(r3, &(0x7f00000001c0)='ethtool\x00', 0x2)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/bdi/252:0/min_ratio_fine\x00', 0xc0082, 0x0)
sendfile$auto(r4, r4, 0x0, 0xef3)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r5 = openat$auto_proc_mounts_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f00000018c0)='/proc/thread-self/mounts\x00', 0x80, 0x0)
readv$auto(r5, &(0x7f0000001940)={&(0x7f0000001900), 0x80000001}, 0xed)
openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x2000, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={0x14, r6, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x68, 0x0, 0x4000000}, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002)
fsopen$auto(0x0, 0x1)
write$auto(0xca, &(0x7f0000000040)='\x04>\x01\x0e\xfb\xff\x05OL\xc8\xbe\x94\xf2\xa2\x00\x00', 0x2d9)
fanotify_init$auto(0x200, 0x1)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x40)
ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(0xffffffffffffffff, 0x1, &(0x7f0000000000)="140400000000000037")
ioctl$auto__dev_ioctl_fops_dev_ioctl(r2, 0x2, &(0x7f0000000000)="c3fb5dc63808dc681062a8096f8290a56f93d1fbfe034f")

1.662298326s ago: executing program 1 (id=1974):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x80502, 0x0)
mmap$auto(0x0, 0x3, 0xdf, 0x9b72, 0x2, 0x8000)
ioctl$auto(0x3, 0x802c542a, 0x38)
prctl$auto(0x1000000003b, 0x1, 0x0, 0x0, 0x7)
mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0)
read$auto(r0, 0x0, 0x20)
r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r1, &(0x7f0000000200)={0x0, 0x380000}, 0x3)
io_uring_setup$auto(0x5, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x1, 0x0)
r2 = pipe$auto(0x0)
mincore$auto(0x0, 0x1, 0x0)
setsockopt$auto(0x3, 0x1, 0x35, 0x0, 0x9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
getsockopt$auto_SO_RCVBUF(r2, 0x4, 0x8, &(0x7f0000000140)='-}\x00', &(0x7f00000001c0)=0x3)
ioctl$auto_EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000000)={0x2000, 0x800004, 0x9})
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/input/event2\x00', 0x214443, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/usbmon1\x00', 0x4ad03, 0x0)
ioctl$auto_MON_IOCG_STATS(r4, 0x80089203, &(0x7f0000000080)={0xafa, 0x7})
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r3)
rseq$auto(&(0x7f0000000040)={0x8001, 0xbe1, 0x8, 0xc, 0x3, 0x3, "35157c"}, 0x8, 0x2, 0x45c00000)
r5 = socket(0x18, 0x1, 0x84)
getsockopt$auto(r5, 0x84, 0x6d, 0x0, &(0x7f00000002c0)=0x8)
sendmsg$auto_NL80211_CMD_GET_WIPHY(r3, &(0x7f0000001180)={0x0, 0xffffffffffffffd6, &(0x7f0000000680)={&(0x7f0000000000)=ANY=[], 0x18}}, 0xc004)
recvmmsg$auto(r3, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0)

1.480870337s ago: executing program 4 (id=1975):
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mmap$auto(0x0, 0x400008, 0x1000dd, 0x9b72, 0xffffffffffffffff, 0x8000)
r0 = socket(0xa, 0x3, 0x3b)
getsockopt$auto(r0, 0x29, 0x44, 0x0, 0x0)
r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv6/conf/default/disable_ipv6\x00', 0x202, 0x0)
sendfile$auto(r1, r1, 0x0, 0x200)
socketpair$auto(0x20000001, 0x2, 0x3, 0x0)
r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0)
mmap$auto(0x0, 0x202000a, 0x5, 0xeb1, 0xfffffffffffffffa, 0x8000)
ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6)
r3 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x820181, 0x0)
write$auto_nvram_misc_fops_nvram(r3, 0x0, 0x0)

1.199956298s ago: executing program 2 (id=1976):
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r0 = getpid()
process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0)
io_uring_setup$auto(0xe, 0x0)
setresuid$auto(0x8, 0x8, 0x0)
setfsuid$auto(0x0)
r1 = openat$auto_urandom_fops_random(0xffffffffffffff9c, &(0x7f0000004000), 0x40, 0x0)
r2 = socket(0xa, 0x5, 0x0)
getsockopt$auto(r2, 0x10, 0x0, &(0x7f0000000000)='\xc8\xfdV%A$\\\xf7\\\x00', 0x0)
ioctl$auto_RNDADDENTROPY2(r1, 0x40085203, 0x0)
readv$auto(r2, &(0x7f0000000040)={0x0, 0x20007ffffffff000}, 0x3)
close_range$auto(0x2, 0xa, 0x0)
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x40, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40000, 0x0)

1.138986112s ago: executing program 4 (id=1977):
openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0xe0180, 0x0)
mmap$auto(0x0, 0x4020009, 0x5, 0xeb1, 0x401, 0x8000)
mlockall$auto(0x800000000000005)
mbind$auto(0x5, 0x2091d2, 0x2fffffffa, 0x0, 0x3, 0x2)
syz_clone(0x20000011, 0x0, 0x0, 0x0, 0x0, 0x0)
msgctl$auto_MSG_STAT(0x7, 0xb, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000100), 0x41a800, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0)
ioctl$auto_TCSBRKP2(r2, 0x5425, 0x0)
ioctl$auto_FIFREEZE(r2, 0xc0045878, 0x2)
mmap$auto(0x0, 0xe, 0x3, 0x16, 0xfffffffffffffffa, 0x8000)
r3 = signalfd$auto(r2, &(0x7f0000000000)={0x100}, 0x8)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r3, 0xc4c85513, &(0x7f0000000440)={{@raw=0x200, 0x0, 0x0, 0x827, "d375de81aa00d12a4966014d253aff1830000000030003d352806dc60622efee7ca4ab25b300"}, 0x0, @bytes=@data_ptr=&(0x7f00000001c0)='\x10\xd6\x15\x14U\x89n\xa6\x1dOE#\xdd\xde\xbaw\xa8g\xb6N\ao\x9a\x946\x12\xb2\x05\xf6B\x1fke}\x88\xb5[\x00\x00\x9d\xbc\xe69\xfdd\xf7\xaeS\xe6d\xe4fS\xe9Z\x17\xb6{\n\bN\xd5#P{\xfc', "24a35540b5ce56ebcd6ffbd3179ea33f658e644d8e976182f6b9b6df3b83effcbfea77d24b7ebf46bd12bfbbd166da4e34a1dfd0871c349755b289f5a5dff333d1563c4bbc47930c917514b6cf6ce52efe9ae6162ca2fa783826deff1fd25f5a020fb82a4ac2aa24f6856d35482696190eb00c843498ba0c61c9e80c5709afd5"})
r4 = socket(0x10, 0x3, 0x9)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/pci0000:00/pci_bus/0000:00/cpuaffinity\x00', 0x30800, 0x0)
read$auto(r5, &(0x7f00000000c0)='/sys/devices/~latform/vhci_hc$.7/usb23/23-0:1.0/~\xda=\x8eep_81/inver', 0x6864a34)
write$auto(r4, 0x0, 0x5)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000080)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000140)={0x9, &(0x7f0000000040)={0x15, 0x3, 0x1, @inferred=r1}})
ptrace$auto(0x8, r0, 0x43, 0x20000000)
gettid()
waitid$auto_P_ALL(0x0, 0x3, 0x0, 0x6, 0x0)
mmap$auto(0x1ffc, 0x400008, 0xdf, 0x9b73, r1, 0x7d07)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2)
mmap$auto(0x1000, 0xe983, 0x0, 0x19, 0xffffffffffffffff, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xb02, 0x0)

940.871638ms ago: executing program 2 (id=1978):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card2/midi0\x00', 0x28102, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
fcntl$auto_F_DUPFD_QUERY(r0, 0x403, r0)
prctl$auto(0xf, 0x200000ffffff, 0xf79, 0x5, 0x10001)
r1 = socket(0x11, 0x80003, 0x300)
setsockopt$auto(r1, 0x107, 0x1, 0x0, 0x8004)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x801, 0x0)
socket(0x25, 0x2, 0x0)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x70)
ioctl$auto_XFS_IOC_ALLOCSP(0xffffffffffffffff, 0x4030580a, 0x0)
mmap$auto(0x0, 0x400008, 0x2, 0x9b72, 0x2, 0x8000)
r2 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/maps\x00', 0x40302, 0x0)
ioctl$auto_PROCMAP_QUERY(r2, 0xc0686611, &(0x7f0000000080)={0x68, 0x34, 0x7fff, 0x5, 0x80000000009, 0x1, 0x9, 0x5, 0x5, 0x7f93, 0xfffffffe, 0x7ffffffd, 0x7ff, 0x7, 0x9})
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x1c8340, 0x0)
select$auto(0xd, 0x0, 0x0, &(0x7f0000000100)={[0x1ff, 0x4, 0x7fff, 0x1a000, 0x80000948b, 0x5, 0x8, 0x400000006, 0x100000000003, 0xc, 0x9, 0x3, 0x6, 0x400005, 0x5]}, 0x0)
mmap$auto(0x0, 0x100, 0x4000000000df, 0x80000000eb1, 0x401, 0x5)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0)
socket(0x23, 0x5, 0x0)
listen$auto(0x3, 0x81)
accept$auto(0x3, 0xffffffffffffffff, 0xffffffffffffffff)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0)
mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0)
fstat$auto(r3, 0x0)

737.146809ms ago: executing program 0 (id=1979):
mmap$auto(0x0, 0x101, 0x4000000000df, 0xeb1, 0x200000401, 0x8000)
socket(0x1d, 0x2, 0x6)
r0 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r1=>0x0})
openat$auto_msft_opcode_fops_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/bluetooth/hci3/msft_opcode\x00', 0x42, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1, 0xfd}, 0x6a)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x6}, 0x1, 0x0, 0x3, 0xa}, 0x8}, 0x5, 0xffb)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r0)
sendmsg$auto_NL80211_CMD_GET_MESH_CONFIG(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, r2, 0x4, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_ASSOC_MLD_EXT_CAPA_OPS={0x6, 0x151, 0x8}, @NL80211_ATTR_FILS_KEK={0x10, 0xf2, "e6299a17c1dfac4fe87688e8"}]}, 0x2c}, 0x1, 0x0, 0x0, 0x81}, 0x0)

617.504156ms ago: executing program 1 (id=1980):
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto(0xffffffffffffffff, 0x5522, 0xf15)
ioctl$auto(0xffffffffffffffff, 0x5523, 0xffffffffffffffff)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r1 = bpf$auto(0x8000000, &(0x7f0000000000)=@test={<r2=>0xffffffffffffffff, 0x5, 0x9, 0x3, 0x80, 0x8, 0x4, 0x1, 0x200, 0x8, 0x401, 0x2, 0xe2, 0x4, 0xc28}, 0x0)
r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x2062, 0x0)
sendmsg$auto_ETHTOOL_MSG_PAUSE_SET(r3, 0x0, 0x24000000)
write$auto(r4, &(0x7f00000001c0)='1\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81)
mmap$auto(0x0, 0x40000a, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
r5 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x40e00, 0x0)
pread64$auto(r5, 0x0, 0x3, 0x5ef6)
syz_clone(0x4001000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0xa, 0x3, 0x3b)
r6 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000f40)={'batadv0\x00', <r8=>0x0})
sendmsg$auto_BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x1c, r6, 0x1, 0x70bd28, 0x25dfdbb9, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040415}, 0x20000000)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, 0x0, 0x8a240, 0x0)
socketpair$auto(0x1, 0x1, 0x2a340, 0x0)
select$auto(0x11, 0x0, 0x0, &(0x7f0000000340)={[0x1ff, 0x1ff, 0x3, 0x1, 0x7, 0xfffffffffffffffb, 0x15f4da05, 0x10, 0x1000, 0x3, 0x11d4, 0x200000000000006, 0x10, 0x8cfb7, 0x9, 0x6]}, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000000240), 0x0)
getsockopt$auto_SO_BPF_EXTENSIONS(r2, 0x9, 0x30, &(0x7f0000000180)='\xf8\x1b\xf3', &(0x7f0000000200))

438.328532ms ago: executing program 0 (id=1981):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_cifs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_CIFS_GENL_CMD_SWN_NOTIFY(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xb8, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@CIFS_GENL_ATTR_SWN_RESOURCE_STATE={0x8}, @CIFS_GENL_ATTR_SWN_DOMAIN_NAME={0x17, 0xb, '/proc/self/oom_adj\x00'}, @CIFS_GENL_ATTR_SWN_IP={0x84, 0x4, @sco={0x1f, @none}}]}, 0xb8}, 0x1, 0x0, 0x0, 0x1ab14f4f0b9b8658}, 0x800)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
mmap$auto(0x0, 0x2000c, 0xdf, 0xe31, 0x40000000000a5, 0x8000)
sysfs$auto(0x2, 0x100000000000033, 0x0)
r2 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0)
ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, 0x0)
r3 = openat$auto_sync_info_debugfs_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
read$auto(r3, 0x0, 0x3)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/oom_adj\x00', 0x0, 0x0)
r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r4, &(0x7f0000000200)={0x0, 0x9}, 0x3)
splice$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x8a5b, 0x401)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, &(0x7f00000003c0)='/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw\x00', 0x80500, 0x0)
close_range$auto(0x0, 0xffffffffffffffff, 0x0)

336.734083ms ago: executing program 4 (id=1982):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
rseq$auto(0x0, 0x1a, 0x5d7, 0x2)
mmap$auto(0x0, 0x40009, 0x7, 0x9b72, 0x7, 0x28000)
r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x8000800)
r1 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000180)='/dev/bus/usb/034/001\x00', 0x802, 0x0)
ioctl$auto_USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000240)={0x23, 0x3, 0x18, 0x10, 0x808, 0x7fb, &(0x7f0000000340)})
sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6)
r2 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/kernel/debug/tracing/events/vmalloc/filter\x00', 0x103041, 0x0)
writev$auto(r2, &(0x7f0000000140)={0x0, 0x5}, 0x5)
r3 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x48180, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_PAUSE_OLD(0xffffffffffffffff, 0x5423, &(0x7f0000000440)="002f80ce438dc7e603f0b7a6067f41576cc19dc24b459e69b05dfa9eba540b47fd877cd9a9cbe1ce996aca0cf78f8dd358e105183018bbd49e72a48e06e80a63c0591e726372310c6e7384e48fcb6b67e16e53766708eebda1240d48cc109058cb288be330e82b55c58e344cdbcd072798e325e59e5195f5ad19ada69accd4b4577a6e4ecef8889e8686fd042f97a79a6874353ec9cede4744c079526aa5fdd69d11c3e9281214eea7600c1f0134267f8c3214ac4964a8ab1902dcab2a35bf483b0913a2fff749ca0f8aa7297200"/221)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000280)={{0x3, 0x1000, 0x1, 0x1, 0x2}, "654c6dbc7a4d30983899a7e1325b6a29ba1e184410ba9f74e82a3fa6c3ccf1bf"})
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000000c0), r0)
r5 = openat$auto_lsm_ops_inode(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$auto_ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x64, r4, 0x10, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_FEATURES_WANTED={0x50, 0x3, 0x0, 0x1, [@typed={0xd, 0xd8, 0x0, 0x0, @str='-]:*%\x91!^\x00'}, @typed={0x19, 0x16, 0x0, 0x0, @str='/dev/bus/usb/034/001\x00'}, @typed={0x8, 0x124, 0x0, 0x0, @fd=r5}, @nested={0x8, 0xe6, 0x0, 0x1, [@nested={0x4, 0xbb}]}, @typed={0x6, 0x59, 0x0, 0x0, @str='%\x00'}, @typed={0x8, 0x37, 0x0, 0x0, @u32=0x6}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x900}, 0x20000000)
r6 = socket(0x1d, 0x2, 0x6)
setsockopt$auto(r6, 0x6a, 0x3, 0x0, 0xff)
r7 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r8 = socket(0x10, 0x2, 0x0)
fremovexattr$auto(r8, &(0x7f0000000040)='/proc/self/oom_score_adj\x00')
r9 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/pagemap\x00', 0x181002, 0x0)
ioctl$auto_PAGEMAP_SCAN(r9, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x100000001, 0xfffffffffffffffe, 0x1, 0x8, 0xc00, 0x2c, 0x2c, 0x8, 0x1})
ioctl$auto_SNDRV_TIMER_IOCTL_PARAMS(r3, 0x40505412, 0x0)
close_range$auto(r8, r7, 0x6)
close_range$auto(0x2, 0x8, 0x0)

169.02747ms ago: executing program 0 (id=1983):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
write$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffffff, 0x0, 0x20)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/platform/vhci_hcd.4/usb17/17-0:1.0/usb17-port5/power/autosuspend_delay_ms\x00', 0x12201, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r1, &(0x7f0000002100)=""/4090, 0xffa)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x88442, 0x0)
writev$auto(r2, &(0x7f00000018c0)={0x0, 0x2}, 0x8)
socket(0x2, 0x80002, 0x73)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x1, 0x0)
shutdown$auto(0x200000003, 0x2)
select$auto(0x5, 0x0, &(0x7f0000000100)={[0x9, 0x200, 0x0, 0x8000000000000201, 0x9, 0x3, 0x6, 0x7, 0xd886, 0x5e58296b, 0x341, 0x41, 0x7, 0x200, 0x8, 0xc]}, 0x0, 0x0)
io_uring_setup$auto(0x406, 0x0)
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
getrandom$auto(0x0, 0x6000000, 0x3)
io_uring_enter$auto(0x3, 0xa84, 0x80000001, 0xa, 0x0, 0x46)
io_uring_enter$auto(r0, 0x7, 0x200, 0x6, 0x0, 0x3)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfd, {0xa, 0x0, 0xa00}}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB='!\x00\''], 0x1ac}, 0x1, 0x0, 0x0, 0x44}, 0x40090)
r3 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x2, 0x0, 0x0, 0x1}, 0x5}, 0x3, 0x0)
move_pages$auto(0x0, 0x477, 0x0, 0x0, 0x0, 0x0)
io_uring_enter$auto(0x3, 0x5, 0x5f3, 0x3, 0x0, 0x1)

0s ago: executing program 1 (id=1984):
unshare$auto(0x40000080)
mmap$auto(0x0, 0x2020009, 0xa0e2, 0xeb2, 0xfffffffffffffffb, 0x8000)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x5, 0x80805, 0x8)
r1 = memfd_secret$auto(0x0)
fchownat$auto(r1, 0x0, 0x0, 0x0, 0x1000)
openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/usb/usbmon/9t\x00', 0xa00, 0x0)
mmap$auto(0x0, 0x1, 0x0, 0x11, r0, 0x1f)
r2 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x22ae03, 0x0)
r3 = epoll_create$auto(0x8800001)
fcntl$auto_F_SETSIG(r2, 0xa, 0x8)
epoll_ctl$auto(r3, 0x1, r2, 0x0)
migrate_pages$auto(0x0, 0x99, 0x0, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x711142, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000)
sysfs$auto(0x2, 0x1a, 0x0)
fsopen$auto(0x0, 0x2)
prctl$auto(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2000000000000001)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28001)
close_range$auto(0x2, 0x8, 0x0)
sysfs$auto(0x2, 0x23, 0x0)
r4 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/set_event\x00', 0x20301, 0x0)
write$auto(r4, 0x0, 0x4)
openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0)
socket(0xa, 0x1, 0x84)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000080), 0x840, 0x0)
openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000040), 0x80240, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)

kernel console output (not intermixed with test programs):

1/0x290
[  729.407646][T13842]  ? __pfx_do_sys_openat2+0x10/0x10
[  729.407679][T13842]  ? __fget_files+0x20e/0x3c0
[  729.407718][T13842]  __x64_sys_openat+0x174/0x210
[  729.407745][T13842]  ? __pfx___x64_sys_openat+0x10/0x10
[  729.407770][T13842]  ? ksys_write+0x1ac/0x250
[  729.407813][T13842]  do_syscall_64+0xcd/0xf80
[  729.407854][T13842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.407878][T13842] RIP: 0033:0x7f992258f7c9
[  729.407897][T13842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  729.407919][T13842] RSP: 002b:00007f99233bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  729.407941][T13842] RAX: ffffffffffffffda RBX: 00007f99227e5fa0 RCX: 00007f992258f7c9
[  729.407957][T13842] RDX: 0000000000000400 RSI: 0000200000000200 RDI: ffffffffffffff9c
[  729.407972][T13842] RBP: 00007f99233bf090 R08: 0000000000000000 R09: 0000000000000000
[  729.407987][T13842] R10: 000000000000003f R11: 0000000000000246 R12: 0000000000000002
[  729.408001][T13842] R13: 00007f99227e6038 R14: 00007f99227e5fa0 R15: 00007ffdcb0a13b8
[  729.408032][T13842]  </TASK>
[  729.408220][T13842] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  729.895318][T13832] FAULT_INJECTION: forcing a failure.
[  729.895318][T13832] name failslab, interval 1, probability 0, space 0, times 0
[  730.100037][T13832] CPU: 0 UID: 0 PID: 13832 Comm: syz.4.1723 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  730.100077][T13832] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  730.100086][T13832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  730.100100][T13832] Call Trace:
[  730.100108][T13832]  <TASK>
[  730.100118][T13832]  dump_stack_lvl+0x16c/0x1f0
[  730.100157][T13832]  should_fail_ex+0x512/0x640
[  730.100183][T13832]  ? __kmalloc_cache_noprof+0x5f/0x800
[  730.100221][T13832]  should_failslab+0xc2/0x120
[  730.100257][T13832]  __kmalloc_cache_noprof+0x80/0x800
[  730.100320][T13832]  ? trace_pid_list_alloc+0x232/0x480
[  730.100357][T13832]  ? trace_pid_list_alloc+0x232/0x480
[  730.100387][T13832]  trace_pid_list_alloc+0x232/0x480
[  730.100423][T13832]  trace_pid_write+0x10c/0x4b0
[  730.100449][T13832]  ? __pfx_trace_pid_write+0x10/0x10
[  730.100469][T13832]  ? __pfx_aa_file_perm+0x10/0x10
[  730.100505][T13832]  ? update_last_data+0xaa/0x510
[  730.100543][T13832]  event_pid_write.isra.0+0x1e4/0x7f0
[  730.100585][T13832]  ? __pfx_event_pid_write.isra.0+0x10/0x10
[  730.100633][T13832]  ? __pfx_ftrace_event_npid_write+0x10/0x10
[  730.100668][T13832]  vfs_write+0x2a0/0x11d0
[  730.100703][T13832]  ? __pfx___mutex_lock+0x10/0x10
[  730.100747][T13832]  ? __pfx_vfs_write+0x10/0x10
[  730.100788][T13832]  ? __fget_files+0x20e/0x3c0
[  730.100829][T13832]  ksys_write+0x12a/0x250
[  730.100861][T13832]  ? __pfx_ksys_write+0x10/0x10
[  730.100903][T13832]  do_syscall_64+0xcd/0xf80
[  730.100940][T13832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  730.100964][T13832] RIP: 0033:0x7f734798f7c9
[  730.100983][T13832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  730.101005][T13832] RSP: 002b:00007f7345bd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  730.101027][T13832] RAX: ffffffffffffffda RBX: 00007f7347be6270 RCX: 00007f734798f7c9
[  730.101043][T13832] RDX: 00000000fffffdef RSI: 0000000000000000 RDI: 0000000000000003
[  730.101057][T13832] RBP: 00007f7347a13f91 R08: 0000000000000000 R09: 0000000000000000
[  730.101071][T13832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  730.101084][T13832] R13: 00007f7347be6308 R14: 00007f7347be6270 R15: 00007fff8890ef18
[  730.101116][T13832]  </TASK>
[  731.032071][T13856] FAULT_INJECTION: forcing a failure.
[  731.032071][T13856] name failslab, interval 1, probability 0, space 0, times 0
[  731.095805][T13856] CPU: 0 UID: 0 PID: 13856 Comm: syz.1.1726 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  731.095846][T13856] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  731.095855][T13856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  731.095870][T13856] Call Trace:
[  731.095878][T13856]  <TASK>
[  731.095888][T13856]  dump_stack_lvl+0x16c/0x1f0
[  731.095929][T13856]  should_fail_ex+0x512/0x640
[  731.095955][T13856]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  731.095988][T13856]  should_failslab+0xc2/0x120
[  731.096024][T13856]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  731.096052][T13856]  ? inode_set_ctime_to_ts+0x137/0x3b0
[  731.096090][T13856]  ? __d_alloc+0x35/0xa80
[  731.096115][T13856]  ? __d_alloc+0x35/0xa80
[  731.096134][T13856]  __d_alloc+0x35/0xa80
[  731.096157][T13856]  d_alloc_pseudo+0x1c/0xc0
[  731.096185][T13856]  alloc_file_pseudo+0xcf/0x230
[  731.096213][T13856]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  731.096237][T13856]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  731.096278][T13856]  create_pipe_files+0x36d/0x9a0
[  731.096318][T13856]  do_pipe2+0xaf/0x1c0
[  731.096353][T13856]  ? __pfx_do_pipe2+0x10/0x10
[  731.096390][T13856]  ? xfd_validate_state+0x61/0x180
[  731.096410][T13856]  ? __pfx_ksys_write+0x10/0x10
[  731.096451][T13856]  __x64_sys_pipe+0x33/0x50
[  731.096496][T13856]  do_syscall_64+0xcd/0xf80
[  731.096534][T13856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.096559][T13856] RIP: 0033:0x7f20c818f7c9
[  731.096578][T13856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  731.096601][T13856] RSP: 002b:00007f20c90f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  731.096623][T13856] RAX: ffffffffffffffda RBX: 00007f20c83e5fa0 RCX: 00007f20c818f7c9
[  731.096639][T13856] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  731.096653][T13856] RBP: 00007f20c8213f91 R08: 0000000000000000 R09: 0000000000000000
[  731.096667][T13856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  731.096681][T13856] R13: 00007f20c83e6038 R14: 00007f20c83e5fa0 R15: 00007ffe4e3a9858
[  731.096712][T13856]  </TASK>
[  731.341318][T13858] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1726'.
[  731.553856][T13842] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  731.639145][ T5839] Bluetooth: hci2: command 0x0406 tx timeout
[  731.651056][T12425] Bluetooth: hci3: command 0x0406 tx timeout
[  731.657216][ T5843] Bluetooth: hci1: command 0x0406 tx timeout
[  731.877238][T13865] FAULT_INJECTION: forcing a failure.
[  731.877238][T13865] name failslab, interval 1, probability 0, space 0, times 0
[  731.949960][T13865] CPU: 0 UID: 0 PID: 13865 Comm: syz.2.1728 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  731.950002][T13865] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  731.950012][T13865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  731.950026][T13865] Call Trace:
[  731.950034][T13865]  <TASK>
[  731.950043][T13865]  dump_stack_lvl+0x16c/0x1f0
[  731.950084][T13865]  should_fail_ex+0x512/0x640
[  731.950110][T13865]  ? fs_reclaim_acquire+0xae/0x150
[  731.950150][T13865]  should_failslab+0xc2/0x120
[  731.950187][T13865]  __kmalloc_noprof+0xeb/0x910
[  731.950213][T13865]  ? tomoyo_encode2+0x100/0x3e0
[  731.950252][T13865]  ? tomoyo_encode2+0x100/0x3e0
[  731.950282][T13865]  tomoyo_encode2+0x100/0x3e0
[  731.950318][T13865]  tomoyo_encode+0x29/0x50
[  731.950348][T13865]  tomoyo_realpath_from_path+0x18f/0x6e0
[  731.950384][T13865]  ? tomoyo_profile+0x47/0x60
[  731.950428][T13865]  tomoyo_path_number_perm+0x245/0x580
[  731.950455][T13865]  ? tomoyo_path_number_perm+0x237/0x580
[  731.950485][T13865]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  731.950511][T13865]  ? futex_wake+0x1ad/0x530
[  731.950571][T13865]  ? find_held_lock+0x2b/0x80
[  731.950600][T13865]  ? hook_file_ioctl_common+0x144/0x410
[  731.950635][T13865]  ? __fget_files+0x20e/0x3c0
[  731.950673][T13865]  security_file_ioctl+0x9b/0x240
[  731.950703][T13865]  __x64_sys_ioctl+0xb7/0x210
[  731.950733][T13865]  do_syscall_64+0xcd/0xf80
[  731.950771][T13865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.950795][T13865] RIP: 0033:0x7f992258f7c9
[  731.950814][T13865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  731.950837][T13865] RSP: 002b:00007f99233bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  731.950859][T13865] RAX: ffffffffffffffda RBX: 00007f99227e5fa0 RCX: 00007f992258f7c9
[  731.950874][T13865] RDX: 0000200000000300 RSI: 000000004008af24 RDI: 0000000000000005
[  731.950889][T13865] RBP: 00007f9922613f91 R08: 0000000000000000 R09: 0000000000000000
[  731.950904][T13865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  731.950918][T13865] R13: 00007f99227e6038 R14: 00007f99227e5fa0 R15: 00007ffdcb0a13b8
[  731.950949][T13865]  </TASK>
[  731.950969][T13865] ERROR: Out of memory at tomoyo_realpath_from_path.
[  732.582830][T13877] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1729'.
[  732.670231][   T31] audit: type=1800 audit(4294967387.030:13): pid=13878 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1730" name="lu_gp_id" dev="configfs" ino=53777 res=0 errno=0
[  733.648563][T12425] Bluetooth: hci4: command 0x0c1a tx timeout
[  734.179509][T13900] FAULT_INJECTION: forcing a failure.
[  734.179509][T13900] name failslab, interval 1, probability 0, space 0, times 0
[  734.250407][T13900] CPU: 0 UID: 0 PID: 13900 Comm: syz.4.1733 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  734.250450][T13900] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  734.250459][T13900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  734.250475][T13900] Call Trace:
[  734.250483][T13900]  <TASK>
[  734.250493][T13900]  dump_stack_lvl+0x16c/0x1f0
[  734.250534][T13900]  should_fail_ex+0x512/0x640
[  734.250561][T13900]  ? __kmalloc_cache_noprof+0x5f/0x800
[  734.250591][T13900]  should_failslab+0xc2/0x120
[  734.250628][T13900]  __kmalloc_cache_noprof+0x80/0x800
[  734.250656][T13900]  ? alloc_fdtable+0xbd/0x2d0
[  734.250692][T13900]  ? alloc_fdtable+0xbd/0x2d0
[  734.250723][T13900]  alloc_fdtable+0xbd/0x2d0
[  734.250757][T13900]  dup_fd+0x803/0xc70
[  734.250800][T13900]  __do_sys_close_range+0x4ca/0x730
[  734.250840][T13900]  ? __pfx___do_sys_close_range+0x10/0x10
[  734.250885][T13900]  do_syscall_64+0xcd/0xf80
[  734.250922][T13900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.250946][T13900] RIP: 0033:0x7f734798f7c9
[  734.250965][T13900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  734.250988][T13900] RSP: 002b:00007f7348766038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  734.251018][T13900] RAX: ffffffffffffffda RBX: 00007f7347be5fa0 RCX: 00007f734798f7c9
[  734.251034][T13900] RDX: 0000000000000006 RSI: ffffffffffffffff RDI: ffffffffffffffff
[  734.251050][T13900] RBP: 00007f7347a13f91 R08: 0000000000000000 R09: 0000000000000000
[  734.251065][T13900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  734.251079][T13900] R13: 00007f7347be6038 R14: 00007f7347be5fa0 R15: 00007fff8890ef18
[  734.251110][T13900]  </TASK>
[  735.702636][T13906] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  735.722391][T13906] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  735.758043][T13906] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  735.784635][T13906] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  736.156841][   T31] audit: type=1800 audit(4294967390.520:14): pid=13924 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1739" name="lu_gp_id" dev="configfs" ino=54016 res=0 errno=0
[  736.950829][T13935] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1741: iget: checksum invalid
[  737.063973][T13935] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  737.165794][T12425] Bluetooth: hci1: command 0x0406 tx timeout
[  737.244449][T12425] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  737.244481][T12425] Bluetooth: hci1: unexpected subevent 0x0e length: 725 > 15
[  737.262923][T12425] Bluetooth: hci1: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  737.300537][T13935] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1741: iget: checksum invalid
[  737.412375][T13935] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  737.506994][T13935] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1741: iget: checksum invalid
[  737.527251][T13946] FAULT_INJECTION: forcing a failure.
[  737.527251][T13946] name failslab, interval 1, probability 0, space 0, times 0
[  737.588454][T13946] CPU: 0 UID: 0 PID: 13946 Comm: syz.2.1744 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  737.588495][T13946] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  737.588505][T13946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  737.588519][T13946] Call Trace:
[  737.588527][T13946]  <TASK>
[  737.588537][T13946]  dump_stack_lvl+0x16c/0x1f0
[  737.588577][T13946]  should_fail_ex+0x512/0x640
[  737.588603][T13946]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  737.588636][T13946]  should_failslab+0xc2/0x120
[  737.588673][T13946]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  737.588700][T13946]  ? inode_set_ctime_to_ts+0x137/0x3b0
[  737.588739][T13946]  ? __d_alloc+0x35/0xa80
[  737.588772][T13946]  ? __d_alloc+0x35/0xa80
[  737.588791][T13946]  __d_alloc+0x35/0xa80
[  737.588815][T13946]  d_alloc_pseudo+0x1c/0xc0
[  737.588844][T13946]  alloc_file_pseudo+0xcf/0x230
[  737.588871][T13946]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  737.588895][T13946]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  737.588936][T13946]  create_pipe_files+0x36d/0x9a0
[  737.588976][T13946]  do_pipe2+0xaf/0x1c0
[  737.589010][T13946]  ? __pfx_do_pipe2+0x10/0x10
[  737.589046][T13946]  ? xfd_validate_state+0x61/0x180
[  737.589067][T13946]  ? __pfx_ksys_write+0x10/0x10
[  737.589107][T13946]  __x64_sys_pipe+0x33/0x50
[  737.589143][T13946]  do_syscall_64+0xcd/0xf80
[  737.589181][T13946]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  737.589205][T13946] RIP: 0033:0x7f992258f7c9
[  737.589224][T13946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  737.589248][T13946] RSP: 002b:00007f99233bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  737.589269][T13946] RAX: ffffffffffffffda RBX: 00007f99227e5fa0 RCX: 00007f992258f7c9
[  737.589286][T13946] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  737.589300][T13946] RBP: 00007f9922613f91 R08: 0000000000000000 R09: 0000000000000000
[  737.589314][T13946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  737.589328][T13946] R13: 00007f99227e6038 R14: 00007f99227e5fa0 R15: 00007ffdcb0a13b8
[  737.589359][T13946]  </TASK>
[  738.035962][T13935] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  738.109582][T13935] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1741: iget: checksum invalid
[  738.162025][ T5839] Bluetooth: hci3: command 0x0406 tx timeout
[  738.170540][T12425] Bluetooth: hci2: command 0x0406 tx timeout
[  738.205720][ T5843] Bluetooth: hci4: command 0x0c1a tx timeout
[  738.212258][ T5839] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  738.212285][ T5839] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[  738.227079][ T5839] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  738.316731][T13935] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  738.390388][T13935] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  738.416805][T13935] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  738.806269][   T31] audit: type=1800 audit(4294967393.170:15): pid=13959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1746" name="lu_gp_id" dev="configfs" ino=54182 res=0 errno=0
[  738.872771][T13960] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1744'.
[  740.083413][   T31] audit: type=1800 audit(4294967394.440:16): pid=13983 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1751" name="lu_gp_id" dev="configfs" ino=54284 res=0 errno=0
[  740.575505][T13990] FAULT_INJECTION: forcing a failure.
[  740.575505][T13990] name failslab, interval 1, probability 0, space 0, times 0
[  740.681063][T13990] CPU: 0 UID: 0 PID: 13990 Comm: syz.1.1752 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  740.681116][T13990] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  740.681129][T13990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  740.681150][T13990] Call Trace:
[  740.681160][T13990]  <TASK>
[  740.681169][T13990]  dump_stack_lvl+0x16c/0x1f0
[  740.681210][T13990]  should_fail_ex+0x512/0x640
[  740.681237][T13990]  ? __kmalloc_noprof+0xca/0x910
[  740.681265][T13990]  should_failslab+0xc2/0x120
[  740.681301][T13990]  __kmalloc_noprof+0xeb/0x910
[  740.681327][T13990]  ? snd_pcm_plugin_build+0x434/0x650
[  740.681359][T13990]  ? snd_pcm_plugin_build+0x434/0x650
[  740.681384][T13990]  snd_pcm_plugin_build+0x434/0x650
[  740.681412][T13990]  snd_pcm_plugin_build_io+0x207/0x5f0
[  740.681440][T13990]  ? __pfx_snd_pcm_plugin_build_io+0x10/0x10
[  740.681470][T13990]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  740.681520][T13990]  snd_pcm_oss_change_params_locked+0x2e94/0x3ab0
[  740.681566][T13990]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  740.681592][T13990]  ? snd_pcm_oss_ioctl+0x110e/0x37f0
[  740.681636][T13990]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  740.681665][T13990]  snd_pcm_oss_ioctl+0x2212/0x37f0
[  740.681691][T13990]  ? hook_file_ioctl_common+0x144/0x410
[  740.681721][T13990]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  740.681748][T13990]  ? __fget_files+0x20e/0x3c0
[  740.681786][T13990]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  740.681812][T13990]  __x64_sys_ioctl+0x18e/0x210
[  740.681843][T13990]  do_syscall_64+0xcd/0xf80
[  740.681881][T13990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  740.681905][T13990] RIP: 0033:0x7f20c818f7c9
[  740.681924][T13990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  740.681947][T13990] RSP: 002b:00007f20c90f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  740.681969][T13990] RAX: ffffffffffffffda RBX: 00007f20c83e5fa0 RCX: 00007f20c818f7c9
[  740.681985][T13990] RDX: 0000000000000000 RSI: 00000000c0045002 RDI: 0000000000000005
[  740.681999][T13990] RBP: 00007f20c8213f91 R08: 0000000000000000 R09: 0000000000000000
[  740.682014][T13990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  740.682028][T13990] R13: 00007f20c83e6038 R14: 00007f20c83e5fa0 R15: 00007ffe4e3a9858
[  740.682059][T13990]  </TASK>
[  740.964617][T13993] bridge0: port 3(veth0_to_bridge) entered blocking state
[  740.971933][T13993] bridge0: port 3(veth0_to_bridge) entered disabled state
[  740.979365][T13993] veth0_to_bridge: entered allmulticast mode
[  740.986805][T13993] veth0_to_bridge: entered promiscuous mode
[  740.992975][T13993] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  741.006648][T13993] bridge0: port 3(veth0_to_bridge) entered blocking state
[  741.013905][T13993] bridge0: port 3(veth0_to_bridge) entered forwarding state
[  741.331249][T13998] FAULT_INJECTION: forcing a failure.
[  741.331249][T13998] name failslab, interval 1, probability 0, space 0, times 0
[  741.376031][T14002] FAULT_INJECTION: forcing a failure.
[  741.376031][T14002] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  741.406104][T13998] CPU: 0 UID: 0 PID: 13998 Comm: syz.4.1756 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  741.406146][T13998] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  741.406156][T13998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  741.406170][T13998] Call Trace:
[  741.406179][T13998]  <TASK>
[  741.406188][T13998]  dump_stack_lvl+0x16c/0x1f0
[  741.406228][T13998]  should_fail_ex+0x512/0x640
[  741.406254][T13998]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  741.406287][T13998]  should_failslab+0xc2/0x120
[  741.406324][T13998]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  741.406352][T13998]  ? inode_set_ctime_to_ts+0x137/0x3b0
[  741.406391][T13998]  ? __d_alloc+0x35/0xa80
[  741.406416][T13998]  ? __d_alloc+0x35/0xa80
[  741.406434][T13998]  __d_alloc+0x35/0xa80
[  741.406458][T13998]  d_alloc_pseudo+0x1c/0xc0
[  741.406486][T13998]  alloc_file_pseudo+0xcf/0x230
[  741.406514][T13998]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  741.406538][T13998]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  741.406579][T13998]  create_pipe_files+0x36d/0x9a0
[  741.406627][T13998]  do_pipe2+0xaf/0x1c0
[  741.406662][T13998]  ? __pfx_do_pipe2+0x10/0x10
[  741.406698][T13998]  ? xfd_validate_state+0x61/0x180
[  741.406719][T13998]  ? __pfx_ksys_write+0x10/0x10
[  741.406760][T13998]  __x64_sys_pipe+0x33/0x50
[  741.406795][T13998]  do_syscall_64+0xcd/0xf80
[  741.406834][T13998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.406858][T13998] RIP: 0033:0x7f734798f7c9
[  741.406877][T13998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  741.406901][T13998] RSP: 002b:00007f7348766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  741.406923][T13998] RAX: ffffffffffffffda RBX: 00007f7347be5fa0 RCX: 00007f734798f7c9
[  741.406938][T13998] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  741.406952][T13998] RBP: 00007f7347a13f91 R08: 0000000000000000 R09: 0000000000000000
[  741.406966][T13998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  741.406980][T13998] R13: 00007f7347be6038 R14: 00007f7347be5fa0 R15: 00007fff8890ef18
[  741.407011][T13998]  </TASK>
[  741.654648][T14002] CPU: 0 UID: 0 PID: 14002 Comm: syz.0.1754 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  741.654691][T14002] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  741.654701][T14002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  741.654716][T14002] Call Trace:
[  741.654724][T14002]  <TASK>
[  741.654733][T14002]  dump_stack_lvl+0x16c/0x1f0
[  741.654775][T14002]  should_fail_ex+0x512/0x640
[  741.654806][T14002]  _copy_from_iter+0x2a4/0x16c0
[  741.654836][T14002]  ? __alloc_skb+0x220/0x410
[  741.654861][T14002]  ? __alloc_skb+0x35d/0x410
[  741.654886][T14002]  ? __pfx__copy_from_iter+0x10/0x10
[  741.654912][T14002]  ? netlink_autobind.isra.0+0x158/0x370
[  741.654959][T14002]  netlink_sendmsg+0x820/0xdd0
[  741.654998][T14002]  ? __pfx_netlink_sendmsg+0x10/0x10
[  741.655036][T14002]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  741.655081][T14002]  ____sys_sendmsg+0xa5d/0xc30
[  741.655119][T14002]  ? copy_msghdr_from_user+0x10a/0x160
[  741.655152][T14002]  ? __pfx_____sys_sendmsg+0x10/0x10
[  741.655196][T14002]  ? __pfx_futex_wake_mark+0x10/0x10
[  741.655236][T14002]  ___sys_sendmsg+0x134/0x1d0
[  741.655273][T14002]  ? __pfx____sys_sendmsg+0x10/0x10
[  741.655304][T14002]  ? futex_private_hash_put+0x160/0x1b0
[  741.655360][T14002]  __sys_sendmsg+0x16d/0x220
[  741.655391][T14002]  ? __pfx___sys_sendmsg+0x10/0x10
[  741.655421][T14002]  ? __x64_sys_futex+0x1e0/0x4c0
[  741.655465][T14002]  do_syscall_64+0xcd/0xf80
[  741.655503][T14002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.655528][T14002] RIP: 0033:0x7f4f03d8f7c9
[  741.655547][T14002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  741.655578][T14002] RSP: 002b:00007f4f04b72038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  741.655601][T14002] RAX: ffffffffffffffda RBX: 00007f4f03fe5fa0 RCX: 00007f4f03d8f7c9
[  741.655617][T14002] RDX: 0000000020040000 RSI: 0000200000000500 RDI: 0000000000000002
[  741.655632][T14002] RBP: 00007f4f03e13f91 R08: 0000000000000000 R09: 0000000000000000
[  741.655647][T14002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  741.655661][T14002] R13: 00007f4f03fe6038 R14: 00007f4f03fe5fa0 R15: 00007ffd72b0a858
[  741.655691][T14002]  </TASK>
[  741.888895][T14004] FAULT_INJECTION: forcing a failure.
[  741.888895][T14004] name failslab, interval 1, probability 0, space 0, times 0
[  741.901715][T14004] CPU: 0 UID: 0 PID: 14004 Comm: syz.1.1755 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  741.901755][T14004] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  741.901764][T14004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  741.901778][T14004] Call Trace:
[  741.901788][T14004]  <TASK>
[  741.901798][T14004]  dump_stack_lvl+0x16c/0x1f0
[  741.901839][T14004]  should_fail_ex+0x512/0x640
[  741.901867][T14004]  ? __kmalloc_cache_noprof+0x5f/0x800
[  741.901897][T14004]  should_failslab+0xc2/0x120
[  741.901934][T14004]  __kmalloc_cache_noprof+0x80/0x800
[  741.901962][T14004]  ? snd_pcm_oss_change_params_locked+0x247/0x3ab0
[  741.901992][T14004]  ? snd_pcm_oss_change_params_locked+0x247/0x3ab0
[  741.902016][T14004]  snd_pcm_oss_change_params_locked+0x247/0x3ab0
[  741.902048][T14004]  ? snd_pcm_oss_make_ready+0xc4/0x1b0
[  741.902072][T14004]  ? __flush_work+0xa48/0xcc0
[  741.902101][T14004]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  741.902124][T14004]  ? __pfx___mutex_lock+0x10/0x10
[  741.902162][T14004]  ? __lock_acquire+0x436/0x2890
[  741.902202][T14004]  snd_pcm_oss_make_ready+0xe6/0x1b0
[  741.902227][T14004]  snd_pcm_oss_set_trigger.isra.0+0x211/0x6b0
[  741.902251][T14004]  ? lockdep_hardirqs_on+0x7c/0x110
[  741.902290][T14004]  snd_pcm_oss_poll+0x5a5/0xb90
[  741.902317][T14004]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  741.902338][T14004]  ? __fget_files+0x20e/0x3c0
[  741.902378][T14004]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  741.902401][T14004]  do_sys_poll+0x55c/0xdf0
[  741.902443][T14004]  ? __pfx_do_sys_poll+0x10/0x10
[  741.902501][T14004]  ? preempt_schedule_common+0x44/0xc0
[  741.902598][T14004]  ? __pfx_timespec64_add_safe+0x10/0x10
[  741.902626][T14004]  ? ktime_get_ts64+0x2d2/0x400
[  741.902651][T14004]  ? read_tsc+0x9/0x20
[  741.902683][T14004]  ? ktime_get_ts64+0x256/0x400
[  741.902713][T14004]  __x64_sys_poll+0x1a6/0x450
[  741.902746][T14004]  ? __pfx___x64_sys_poll+0x10/0x10
[  741.902788][T14004]  do_syscall_64+0xcd/0xf80
[  741.902826][T14004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.902850][T14004] RIP: 0033:0x7f20c818f7c9
[  741.902870][T14004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  741.902894][T14004] RSP: 002b:00007f20c90d4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007
[  741.902916][T14004] RAX: ffffffffffffffda RBX: 00007f20c83e6090 RCX: 00007f20c818f7c9
[  741.902932][T14004] RDX: 00000000000ffffc RSI: 0000000000000040 RDI: 00002000000002c0
[  741.902946][T14004] RBP: 00007f20c8213f91 R08: 0000000000000000 R09: 0000000000000000
[  741.902961][T14004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  741.902974][T14004] R13: 00007f20c83e6128 R14: 00007f20c83e6090 R15: 00007ffe4e3a9858
[  741.903005][T14004]  </TASK>
[  743.205990][T14022] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1756'.
[  743.726614][T14031] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  743.744814][T14031] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  743.770827][T14031] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  743.795504][T14031] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  743.823296][T14036] FAULT_INJECTION: forcing a failure.
[  743.823296][T14036] name failslab, interval 1, probability 0, space 0, times 0
[  743.942096][T14036] CPU: 0 UID: 0 PID: 14036 Comm: syz.4.1762 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  743.942137][T14036] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  743.942146][T14036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  743.942160][T14036] Call Trace:
[  743.942168][T14036]  <TASK>
[  743.942177][T14036]  dump_stack_lvl+0x16c/0x1f0
[  743.942217][T14036]  should_fail_ex+0x512/0x640
[  743.942243][T14036]  ? __kmalloc_cache_node_noprof+0x62/0x830
[  743.942279][T14036]  should_failslab+0xc2/0x120
[  743.942315][T14036]  __kmalloc_cache_node_noprof+0x83/0x830
[  743.942411][T14036]  ? __get_vm_area_node+0x101/0x330
[  743.942453][T14036]  ? __get_vm_area_node+0x101/0x330
[  743.942488][T14036]  __get_vm_area_node+0x101/0x330
[  743.942528][T14036]  __vmalloc_node_range_noprof+0x247/0x16b0
[  743.942553][T14036]  ? kernel_clone+0xfc/0x910
[  743.942587][T14036]  ? local_lock_release+0x99/0x130
[  743.942616][T14036]  ? kernel_clone+0xfc/0x910
[  743.942656][T14036]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  743.942681][T14036]  ? __memcg_slab_post_alloc_hook+0x472/0x880
[  743.942725][T14036]  ? rcu_is_watching+0x12/0xc0
[  743.942760][T14036]  ? kernel_clone+0xfc/0x910
[  743.942792][T14036]  __vmalloc_node_noprof+0xad/0xf0
[  743.942814][T14036]  ? kernel_clone+0xfc/0x910
[  743.942851][T14036]  copy_process+0x619/0x7430
[  743.942901][T14036]  ? __pfx_copy_process+0x10/0x10
[  743.942949][T14036]  kernel_clone+0xfc/0x910
[  743.942985][T14036]  ? __pfx_kernel_clone+0x10/0x10
[  743.943030][T14036]  ? __mutex_unlock_slowpath+0x161/0x790
[  743.943071][T14036]  __do_sys_clone+0xce/0x120
[  743.943106][T14036]  ? __pfx___do_sys_clone+0x10/0x10
[  743.943152][T14036]  ? ksys_write+0x1ac/0x250
[  743.943184][T14036]  ? __pfx_ksys_write+0x10/0x10
[  743.943225][T14036]  do_syscall_64+0xcd/0xf80
[  743.943262][T14036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  743.943286][T14036] RIP: 0033:0x7f734798f7c9
[  743.943305][T14036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  743.943334][T14036] RSP: 002b:00007f7348744fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  743.943356][T14036] RAX: ffffffffffffffda RBX: 00007f7347be6090 RCX: 00007f734798f7c9
[  743.943372][T14036] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000004001000
[  743.943386][T14036] RBP: 00007f7348745090 R08: 0000000000000000 R09: 0000000000000000
[  743.943400][T14036] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  743.943414][T14036] R13: 00007f7347be6128 R14: 00007f7347be6090 R15: 00007fff8890ef18
[  743.943445][T14036]  </TASK>
[  744.229264][T14036] syz.4.1762: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  744.245374][T14036] CPU: 0 UID: 0 PID: 14036 Comm: syz.4.1762 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  744.245426][T14036] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  744.245435][T14036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  744.245448][T14036] Call Trace:
[  744.245456][T14036]  <TASK>
[  744.245464][T14036]  dump_stack_lvl+0x16c/0x1f0
[  744.245502][T14036]  warn_alloc+0x248/0x3a0
[  744.245530][T14036]  ? __pfx_warn_alloc+0x10/0x10
[  744.245555][T14036]  ? trace_kmalloc+0x2b/0xb0
[  744.245585][T14036]  ? __kmalloc_cache_node_noprof+0x2ed/0x830
[  744.245628][T14036]  ? __kasan_kmalloc+0x8a/0xb0
[  744.245664][T14036]  ? __get_vm_area_node+0x208/0x330
[  744.245705][T14036]  __vmalloc_node_range_noprof+0xbe0/0x16b0
[  744.245728][T14036]  ? local_lock_release+0x99/0x130
[  744.245757][T14036]  ? kernel_clone+0xfc/0x910
[  744.245797][T14036]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  744.245828][T14036]  ? __memcg_slab_post_alloc_hook+0x472/0x880
[  744.245891][T14036]  ? rcu_is_watching+0x12/0xc0
[  744.245926][T14036]  ? kernel_clone+0xfc/0x910
[  744.245958][T14036]  __vmalloc_node_noprof+0xad/0xf0
[  744.245980][T14036]  ? kernel_clone+0xfc/0x910
[  744.246017][T14036]  copy_process+0x619/0x7430
[  744.246063][T14036]  ? __pfx_copy_process+0x10/0x10
[  744.246111][T14036]  kernel_clone+0xfc/0x910
[  744.246148][T14036]  ? __pfx_kernel_clone+0x10/0x10
[  744.246193][T14036]  ? __mutex_unlock_slowpath+0x161/0x790
[  744.246234][T14036]  __do_sys_clone+0xce/0x120
[  744.246268][T14036]  ? __pfx___do_sys_clone+0x10/0x10
[  744.246314][T14036]  ? ksys_write+0x1ac/0x250
[  744.246347][T14036]  ? __pfx_ksys_write+0x10/0x10
[  744.246388][T14036]  do_syscall_64+0xcd/0xf80
[  744.246425][T14036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  744.246449][T14036] RIP: 0033:0x7f734798f7c9
[  744.246468][T14036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  744.246491][T14036] RSP: 002b:00007f7348744fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  744.246512][T14036] RAX: ffffffffffffffda RBX: 00007f7347be6090 RCX: 00007f734798f7c9
[  744.246528][T14036] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000004001000
[  744.246542][T14036] RBP: 00007f7348745090 R08: 0000000000000000 R09: 0000000000000000
[  744.246557][T14036] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  744.246571][T14036] R13: 00007f7347be6128 R14: 00007f7347be6090 R15: 00007fff8890ef18
[  744.246600][T14036]  </TASK>
[  744.498662][T14036] Mem-Info:
[  744.501879][T14036] active_anon:15390 inactive_anon:222 isolated_anon:0
[  744.501879][T14036]  active_file:14186 inactive_file:43395 isolated_file:0
[  744.501879][T14036]  unevictable:768 dirty:216 writeback:0
[  744.501879][T14036]  slab_reclaimable:11652 slab_unreclaimable:94516
[  744.501879][T14036]  mapped:27020 shmem:2590 pagetables:1504
[  744.501879][T14036]  sec_pagetables:0 bounce:0
[  744.501879][T14036]  kernel_misc_reclaimable:0
[  744.501879][T14036]  free:1304030 free_pcp:13709 free_cma:0
[  744.551630][T14036] Node 0 active_anon:61560kB inactive_anon:888kB active_file:56744kB inactive_file:173288kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:108004kB dirty:864kB writeback:0kB shmem:8824kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:8192kB kernel_stack:12640kB pagetables:5876kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  744.583986][T14036] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:292kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:76kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  744.614120][T14036] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  744.644266][T14036] lowmem_reserve[]: 0 2481 2483 2483 2483
[  744.651689][T14036] Node 0 DMA32 free:1316672kB boost:0kB min:34332kB low:42912kB high:51492kB reserved_highatomic:0KB free_highatomic:0KB active_anon:61560kB inactive_anon:888kB active_file:56744kB inactive_file:173288kB unevictable:1536kB writepending:864kB zspages:956kB present:3129332kB managed:2541028kB mlocked:0kB bounce:0kB free_pcp:32376kB local_pcp:32376kB free_cma:0kB
[  744.685537][T14036] lowmem_reserve[]: 0 0 1 1 1
[  744.691146][T14036] Node 0 Normal free:0kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[  744.720896][T14036] lowmem_reserve[]: 0 0 0 0 0
[  744.725763][T14036] Node 1 Normal free:3884088kB boost:0kB min:55548kB low:69432kB high:83316kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:292kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:22648kB local_pcp:22648kB free_cma:0kB
[  744.759237][T14036] lowmem_reserve[]: 0 0 0 0 0
[  744.763981][T14036] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  744.836020][T14036] Node 0 DMA32: 4410*4kB (UME) 4205*8kB (UME) 2357*16kB (UM) 789*32kB (UM) 864*64kB (UME) 444*128kB (UME) 283*256kB (UME) 134*512kB (UME) 69*1024kB (UM) 3*2048kB (UM) 213*4096kB (UM) = 1316672kB
[  744.917442][T14036] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  744.977064][T14036] Node 1 Normal: 4*4kB (UE) 3*8kB (UE) 11*16kB (UME) 143*32kB (UME) 74*64kB (UME) 16*128kB (UM) 5*256kB (UME) 3*512kB (UE) 3*1024kB (UM) 4*2048kB (UE) 942*4096kB (M) = 3884088kB
[  745.021875][T14036] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  745.031735][T14036] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  745.041697][T14036] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  745.051787][T14036] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  745.078913][T14036] 60266 total pagecache pages
[  745.083636][T14036] 95 pages in swap cache
[  745.089009][T14036] Free swap  = 123748kB
[  745.093218][T14036] Total swap = 124996kB
[  745.126545][T14036] 2097051 pages RAM
[  745.135347][T14036] 0 pages HighMem/MovableOnly
[  745.144564][T14036] 429768 pages reserved
[  745.154688][T14036] 0 pages cma reserved
[  745.489394][T14053] FAULT_INJECTION: forcing a failure.
[  745.489394][T14053] name failslab, interval 1, probability 0, space 0, times 0
[  745.544000][T14053] CPU: 0 UID: 0 PID: 14053 Comm: syz.4.1768 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  745.544041][T14053] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  745.544051][T14053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  745.544065][T14053] Call Trace:
[  745.544072][T14053]  <TASK>
[  745.544081][T14053]  dump_stack_lvl+0x16c/0x1f0
[  745.544121][T14053]  should_fail_ex+0x512/0x640
[  745.544147][T14053]  ? __kmalloc_cache_noprof+0x5f/0x800
[  745.544178][T14053]  should_failslab+0xc2/0x120
[  745.544214][T14053]  __kmalloc_cache_noprof+0x80/0x800
[  745.544242][T14053]  ? percpu_ref_init+0xec/0x410
[  745.544281][T14053]  ? percpu_ref_init+0xec/0x410
[  745.544325][T14053]  ? __pfx_blkg_release+0x10/0x10
[  745.544346][T14053]  percpu_ref_init+0xec/0x410
[  745.544379][T14053]  ? kasan_save_track+0x14/0x30
[  745.544414][T14053]  blkg_alloc+0xea/0xb60
[  745.544439][T14053]  ? find_held_lock+0x2b/0x80
[  745.544473][T14053]  blkcg_init_disk+0x51/0x580
[  745.544503][T14053]  __alloc_disk_node+0x2f6/0x6b0
[  745.544543][T14053]  __blk_mq_alloc_disk+0x89/0x120
[  745.544577][T14053]  loop_add+0x490/0xb70
[  745.544615][T14053]  ? __pfx_loop_add+0x10/0x10
[  745.544670][T14053]  ? find_held_lock+0x2b/0x80
[  745.544703][T14053]  loop_control_ioctl+0x13e/0x640
[  745.544741][T14053]  ? __pfx_loop_control_ioctl+0x10/0x10
[  745.544783][T14053]  ? __pfx_loop_control_ioctl+0x10/0x10
[  745.544823][T14053]  __x64_sys_ioctl+0x18e/0x210
[  745.544855][T14053]  do_syscall_64+0xcd/0xf80
[  745.544893][T14053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  745.544917][T14053] RIP: 0033:0x7f734798f7c9
[  745.544936][T14053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  745.544960][T14053] RSP: 002b:00007f7348766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  745.544983][T14053] RAX: ffffffffffffffda RBX: 00007f7347be5fa0 RCX: 00007f734798f7c9
[  745.544999][T14053] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000007
[  745.545014][T14053] RBP: 00007f7347a13f91 R08: 0000000000000000 R09: 0000000000000000
[  745.545029][T14053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  745.545043][T14053] R13: 00007f7347be6038 R14: 00007f7347be5fa0 R15: 00007fff8890ef18
[  745.545074][T14053]  </TASK>
[  745.960687][T14060] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1769'.
[  746.048723][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[  746.094275][T11518] Bluetooth: hci2: command 0x0406 tx timeout
[  746.100475][T12425] Bluetooth: hci3: command 0x0406 tx timeout
[  746.106747][ T5843] Bluetooth: hci4: command 0x0c1a tx timeout
[  746.455891][T14068] FAULT_INJECTION: forcing a failure.
[  746.455891][T14068] name failslab, interval 1, probability 0, space 0, times 0
[  746.483086][T14068] CPU: 0 UID: 0 PID: 14068 Comm: syz.2.1770 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  746.483127][T14068] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  746.483136][T14068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  746.483151][T14068] Call Trace:
[  746.483166][T14068]  <TASK>
[  746.483175][T14068]  dump_stack_lvl+0x16c/0x1f0
[  746.483216][T14068]  should_fail_ex+0x512/0x640
[  746.483243][T14068]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  746.483276][T14068]  should_failslab+0xc2/0x120
[  746.483313][T14068]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  746.483340][T14068]  ? inode_set_ctime_to_ts+0x137/0x3b0
[  746.483378][T14068]  ? __d_alloc+0x35/0xa80
[  746.483403][T14068]  ? __d_alloc+0x35/0xa80
[  746.483421][T14068]  __d_alloc+0x35/0xa80
[  746.483444][T14068]  d_alloc_pseudo+0x1c/0xc0
[  746.483472][T14068]  alloc_file_pseudo+0xcf/0x230
[  746.483499][T14068]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  746.483523][T14068]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  746.483563][T14068]  create_pipe_files+0x36d/0x9a0
[  746.483604][T14068]  do_pipe2+0xaf/0x1c0
[  746.483638][T14068]  ? __pfx_do_pipe2+0x10/0x10
[  746.483674][T14068]  ? xfd_validate_state+0x61/0x180
[  746.483700][T14068]  ? __pfx_ksys_write+0x10/0x10
[  746.483740][T14068]  __x64_sys_pipe+0x33/0x50
[  746.483776][T14068]  do_syscall_64+0xcd/0xf80
[  746.483814][T14068]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  746.483837][T14068] RIP: 0033:0x7f992258f7c9
[  746.483856][T14068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  746.483879][T14068] RSP: 002b:00007f99233bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  746.483901][T14068] RAX: ffffffffffffffda RBX: 00007f99227e5fa0 RCX: 00007f992258f7c9
[  746.483916][T14068] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  746.483930][T14068] RBP: 00007f9922613f91 R08: 0000000000000000 R09: 0000000000000000
[  746.483945][T14068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  746.483959][T14068] R13: 00007f99227e6038 R14: 00007f99227e5fa0 R15: 00007ffdcb0a13b8
[  746.483989][T14068]  </TASK>
[  746.812692][T14071] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1770'.
[  746.837979][T14073] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1771: iget: checksum invalid
[  746.849727][T14073] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  746.876125][T14073] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1771: iget: checksum invalid
[  746.895932][T14073] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  746.910427][T14073] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1771: iget: checksum invalid
[  746.926655][T14073] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  747.022953][   T52] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  747.022984][   T52] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[  747.038179][   T52] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  747.067577][T14073] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1771: iget: checksum invalid
[  747.198052][T14073] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  747.278824][T14073] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  747.353084][T14073] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  747.387676][T14080] kafs: addr_prefs: Invalid Command
[  747.905398][T14084] FAULT_INJECTION: forcing a failure.
[  747.905398][T14084] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  747.991798][T14084] CPU: 0 UID: 0 PID: 14084 Comm: syz.4.1775 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  747.991839][T14084] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  747.991849][T14084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  747.991864][T14084] Call Trace:
[  747.991872][T14084]  <TASK>
[  747.991882][T14084]  dump_stack_lvl+0x16c/0x1f0
[  747.991923][T14084]  should_fail_ex+0x512/0x640
[  747.991954][T14084]  _copy_from_user+0x2e/0xd0
[  747.991980][T14084]  copy_msghdr_from_user+0x98/0x160
[  747.992012][T14084]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  747.992055][T14084]  ? find_held_lock+0x2b/0x80
[  747.992093][T14084]  ___sys_sendmsg+0xfe/0x1d0
[  747.992126][T14084]  ? __pfx____sys_sendmsg+0x10/0x10
[  747.992182][T14084]  ? __pfx___might_resched+0x10/0x10
[  747.992221][T14084]  __sys_sendmmsg+0x200/0x420
[  747.992257][T14084]  ? __pfx___sys_sendmmsg+0x10/0x10
[  747.992296][T14084]  ? __pfx_do_futex+0x10/0x10
[  747.992322][T14084]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  747.992371][T14084]  ? fput+0x70/0xf0
[  747.992396][T14084]  ? xfd_validate_state+0x61/0x180
[  747.992417][T14084]  ? __pfx_do_writev+0x10/0x10
[  747.992453][T14084]  __x64_sys_sendmmsg+0x9c/0x100
[  747.992483][T14084]  ? lockdep_hardirqs_on+0x7c/0x110
[  747.992518][T14084]  do_syscall_64+0xcd/0xf80
[  747.992556][T14084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  747.992580][T14084] RIP: 0033:0x7f734798f7c9
[  747.992599][T14084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  747.992623][T14084] RSP: 002b:00007f7348766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  747.992645][T14084] RAX: ffffffffffffffda RBX: 00007f7347be5fa0 RCX: 00007f734798f7c9
[  747.992661][T14084] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  747.992675][T14084] RBP: 00007f7347a13f91 R08: 0000000000000000 R09: 0000000000000000
[  747.992690][T14084] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000
[  747.992704][T14084] R13: 00007f7347be6038 R14: 00007f7347be5fa0 R15: 00007fff8890ef18
[  747.992736][T14084]  </TASK>
[  748.732341][T14097] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1778'.
[  749.316567][T14111] FAULT_INJECTION: forcing a failure.
[  749.316567][T14111] name failslab, interval 1, probability 0, space 0, times 0
[  749.380625][T14111] CPU: 0 UID: 0 PID: 14111 Comm: syz.0.1782 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  749.380666][T14111] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  749.380675][T14111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  749.380690][T14111] Call Trace:
[  749.380698][T14111]  <TASK>
[  749.380708][T14111]  dump_stack_lvl+0x16c/0x1f0
[  749.380748][T14111]  should_fail_ex+0x512/0x640
[  749.380774][T14111]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  749.380806][T14111]  should_failslab+0xc2/0x120
[  749.380842][T14111]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  749.380880][T14111]  ? inode_set_ctime_to_ts+0x137/0x3b0
[  749.380919][T14111]  ? __d_alloc+0x35/0xa80
[  749.380944][T14111]  ? __d_alloc+0x35/0xa80
[  749.380966][T14111]  __d_alloc+0x35/0xa80
[  749.380990][T14111]  d_alloc_pseudo+0x1c/0xc0
[  749.381026][T14111]  alloc_file_pseudo+0xcf/0x230
[  749.381054][T14111]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  749.381079][T14111]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  749.381120][T14111]  create_pipe_files+0x36d/0x9a0
[  749.381161][T14111]  do_pipe2+0xaf/0x1c0
[  749.381196][T14111]  ? __pfx_do_pipe2+0x10/0x10
[  749.381232][T14111]  ? xfd_validate_state+0x61/0x180
[  749.381253][T14111]  ? __pfx_ksys_write+0x10/0x10
[  749.381294][T14111]  __x64_sys_pipe+0x33/0x50
[  749.381330][T14111]  do_syscall_64+0xcd/0xf80
[  749.381369][T14111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  749.381393][T14111] RIP: 0033:0x7f4f03d8f7c9
[  749.381412][T14111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  749.381436][T14111] RSP: 002b:00007f4f04b72038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  749.381459][T14111] RAX: ffffffffffffffda RBX: 00007f4f03fe5fa0 RCX: 00007f4f03d8f7c9
[  749.381475][T14111] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  749.381490][T14111] RBP: 00007f4f03e13f91 R08: 0000000000000000 R09: 0000000000000000
[  749.381504][T14111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  749.381519][T14111] R13: 00007f4f03fe6038 R14: 00007f4f03fe5fa0 R15: 00007ffd72b0a858
[  749.381550][T14111]  </TASK>
[  749.660140][T14115] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1782'.
[  750.058509][T14125] Â: entered promiscuous mode
[  751.383853][T14148] FAULT_INJECTION: forcing a failure.
[  751.383853][T14148] name failslab, interval 1, probability 0, space 0, times 0
[  751.480570][T14148] CPU: 0 UID: 0 PID: 14148 Comm: syz.1.1792 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  751.480611][T14148] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  751.480621][T14148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  751.480635][T14148] Call Trace:
[  751.480644][T14148]  <TASK>
[  751.480654][T14148]  dump_stack_lvl+0x16c/0x1f0
[  751.480695][T14148]  should_fail_ex+0x512/0x640
[  751.480721][T14148]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  751.480756][T14148]  should_failslab+0xc2/0x120
[  751.480793][T14148]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  751.480822][T14148]  ? inode_set_ctime_to_ts+0x137/0x3b0
[  751.480866][T14148]  ? __d_alloc+0x35/0xa80
[  751.480893][T14148]  ? __d_alloc+0x35/0xa80
[  751.480910][T14148]  __d_alloc+0x35/0xa80
[  751.480934][T14148]  d_alloc_pseudo+0x1c/0xc0
[  751.480962][T14148]  alloc_file_pseudo+0xcf/0x230
[  751.480990][T14148]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  751.481015][T14148]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  751.481056][T14148]  create_pipe_files+0x36d/0x9a0
[  751.481095][T14148]  do_pipe2+0xaf/0x1c0
[  751.481130][T14148]  ? __pfx_do_pipe2+0x10/0x10
[  751.481166][T14148]  ? xfd_validate_state+0x61/0x180
[  751.481187][T14148]  ? __pfx_ksys_write+0x10/0x10
[  751.481227][T14148]  __x64_sys_pipe+0x33/0x50
[  751.481263][T14148]  do_syscall_64+0xcd/0xf80
[  751.481300][T14148]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  751.481324][T14148] RIP: 0033:0x7f20c818f7c9
[  751.481343][T14148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  751.481366][T14148] RSP: 002b:00007f20c90f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  751.481391][T14148] RAX: ffffffffffffffda RBX: 00007f20c83e5fa0 RCX: 00007f20c818f7c9
[  751.481407][T14148] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  751.481421][T14148] RBP: 00007f20c8213f91 R08: 0000000000000000 R09: 0000000000000000
[  751.481435][T14148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  751.481449][T14148] R13: 00007f20c83e6038 R14: 00007f20c83e5fa0 R15: 00007ffe4e3a9858
[  751.481480][T14148]  </TASK>
[  751.721885][T14151] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1792'.
[  752.440746][T14166] hub 8-0:1.0: USB hub found
[  752.472924][T14166] hub 8-0:1.0: 1 port detected
[  753.606923][T14183] FAULT_INJECTION: forcing a failure.
[  753.606923][T14183] name failslab, interval 1, probability 0, space 0, times 0
[  753.672648][T14185] FAULT_INJECTION: forcing a failure.
[  753.672648][T14185] name failslab, interval 1, probability 0, space 0, times 0
[  753.765303][T14185] CPU: 0 UID: 0 PID: 14185 Comm: syz.0.1801 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  753.765345][T14185] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  753.765355][T14185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  753.765369][T14185] Call Trace:
[  753.765378][T14185]  <TASK>
[  753.765388][T14185]  dump_stack_lvl+0x16c/0x1f0
[  753.765429][T14185]  should_fail_ex+0x512/0x640
[  753.765454][T14185]  ? __kmalloc_cache_noprof+0x5f/0x800
[  753.765485][T14185]  should_failslab+0xc2/0x120
[  753.765522][T14185]  __kmalloc_cache_noprof+0x80/0x800
[  753.765550][T14185]  ? single_open+0x4d/0x1f0
[  753.765581][T14185]  ? __pfx_proc_setgroups_show+0x10/0x10
[  753.765622][T14185]  ? single_open+0x4d/0x1f0
[  753.765648][T14185]  single_open+0x4d/0x1f0
[  753.765685][T14185]  proc_setgroups_open+0x346/0x7e0
[  753.765713][T14185]  do_dentry_open+0x748/0x1590
[  753.765747][T14185]  ? __pfx_proc_setgroups_open+0x10/0x10
[  753.765780][T14185]  vfs_open+0x82/0x3f0
[  753.765809][T14185]  path_openat+0x2078/0x3140
[  753.765853][T14185]  ? __pfx_path_openat+0x10/0x10
[  753.765900][T14185]  do_filp_open+0x20b/0x470
[  753.765936][T14185]  ? __pfx_do_filp_open+0x10/0x10
[  753.765982][T14185]  ? __pfx_kfree_link+0x10/0x10
[  753.766019][T14185]  ? alloc_fd+0x471/0x7d0
[  753.766061][T14185]  do_sys_openat2+0x121/0x290
[  753.766087][T14185]  ? __pfx_do_sys_openat2+0x10/0x10
[  753.766112][T14185]  ? __do_sys_ustat+0x126/0x1f0
[  753.766152][T14185]  __x64_sys_openat+0x174/0x210
[  753.766179][T14185]  ? __pfx___x64_sys_openat+0x10/0x10
[  753.766218][T14185]  do_syscall_64+0xcd/0xf80
[  753.766255][T14185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  753.766280][T14185] RIP: 0033:0x7f4f03d8f7c9
[  753.766299][T14185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  753.766322][T14185] RSP: 002b:00007f4f04b72038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  753.766344][T14185] RAX: ffffffffffffffda RBX: 00007f4f03fe5fa0 RCX: 00007f4f03d8f7c9
[  753.766360][T14185] RDX: 0000000000183200 RSI: 00002000000003c0 RDI: ffffffffffffff9c
[  753.766375][T14185] RBP: 00007f4f03e13f91 R08: 0000000000000000 R09: 0000000000000000
[  753.766389][T14185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  753.766403][T14185] R13: 00007f4f03fe6038 R14: 00007f4f03fe5fa0 R15: 00007ffd72b0a858
[  753.766434][T14185]  </TASK>
[  754.003042][T14183] CPU: 0 UID: 0 PID: 14183 Comm: syz.1.1800 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  754.003083][T14183] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  754.003092][T14183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  754.003108][T14183] Call Trace:
[  754.003116][T14183]  <TASK>
[  754.003125][T14183]  dump_stack_lvl+0x16c/0x1f0
[  754.003165][T14183]  should_fail_ex+0x512/0x640
[  754.003192][T14183]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  754.003225][T14183]  should_failslab+0xc2/0x120
[  754.003264][T14183]  kmem_cache_alloc_node_noprof+0x86/0x800
[  754.003294][T14183]  ? __alloc_skb+0x156/0x410
[  754.003326][T14183]  ? __alloc_skb+0x156/0x410
[  754.003350][T14183]  __alloc_skb+0x156/0x410
[  754.003374][T14183]  ? __alloc_skb+0x35d/0x410
[  754.003399][T14183]  ? __pfx___alloc_skb+0x10/0x10
[  754.003429][T14183]  ? find_held_lock+0x2b/0x80
[  754.003464][T14183]  __ip6_append_data+0x2b74/0x4740
[  754.003497][T14183]  ? __pfx_raw6_getfrag+0x10/0x10
[  754.003546][T14183]  ? __pfx___ip6_append_data+0x10/0x10
[  754.003571][T14183]  ? __pfx_ip6_mtu+0x10/0x10
[  754.003605][T14183]  ? ip6_setup_cork+0xc51/0x1530
[  754.003633][T14183]  ip6_append_data+0x1ba/0x4c0
[  754.003658][T14183]  ? __pfx_raw6_getfrag+0x10/0x10
[  754.003706][T14183]  rawv6_sendmsg+0x163e/0x4860
[  754.003744][T14183]  ? aa_label_sk_perm+0x194/0x5f0
[  754.003778][T14183]  ? aa_profile_af_perm+0x2c0/0x390
[  754.003809][T14183]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  754.003846][T14183]  ? select_task_rq_fair+0x35d0/0x4670
[  754.003910][T14183]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  754.003949][T14183]  ? inet_sendmsg+0x11c/0x140
[  754.003974][T14183]  inet_sendmsg+0x11c/0x140
[  754.004002][T14183]  ____sys_sendmsg+0x973/0xc30
[  754.004041][T14183]  ? copy_msghdr_from_user+0x10a/0x160
[  754.004075][T14183]  ? __pfx_____sys_sendmsg+0x10/0x10
[  754.004111][T14183]  ? trace_sched_set_need_resched_tp+0xf3/0x130
[  754.004154][T14183]  ? __pfx___schedule+0x10/0x10
[  754.004193][T14183]  ___sys_sendmsg+0x134/0x1d0
[  754.004225][T14183]  ? __pfx____sys_sendmsg+0x10/0x10
[  754.004281][T14183]  ? __pfx___might_resched+0x10/0x10
[  754.004320][T14183]  __sys_sendmmsg+0x200/0x420
[  754.004354][T14183]  ? __pfx___sys_sendmmsg+0x10/0x10
[  754.004393][T14183]  ? __pfx_do_futex+0x10/0x10
[  754.004418][T14183]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  754.004468][T14183]  ? fput+0x70/0xf0
[  754.004492][T14183]  ? xfd_validate_state+0x61/0x180
[  754.004513][T14183]  ? __pfx_do_writev+0x10/0x10
[  754.004549][T14183]  __x64_sys_sendmmsg+0x9c/0x100
[  754.004579][T14183]  ? lockdep_hardirqs_on+0x7c/0x110
[  754.004614][T14183]  do_syscall_64+0xcd/0xf80
[  754.004652][T14183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  754.004676][T14183] RIP: 0033:0x7f20c818f7c9
[  754.004701][T14183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  754.004725][T14183] RSP: 002b:00007f20c90d4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  754.004748][T14183] RAX: ffffffffffffffda RBX: 00007f20c83e6090 RCX: 00007f20c818f7c9
[  754.004765][T14183] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  754.004779][T14183] RBP: 00007f20c8213f91 R08: 0000000000000000 R09: 0000000000000000
[  754.004794][T14183] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000
[  754.004809][T14183] R13: 00007f20c83e6128 R14: 00007f20c83e6090 R15: 00007ffe4e3a9858
[  754.004840][T14183]  </TASK>
[  754.425238][T14187] kAFS: Invalid Command on /proc/fs/afs/cells file
[  756.470645][T14217] zswap: compressor  not available
[  756.843327][T14236] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4.
[  757.159462][T14240] FAULT_INJECTION: forcing a failure.
[  757.159462][T14240] name failslab, interval 1, probability 0, space 0, times 0
[  757.228119][T14240] CPU: 0 UID: 0 PID: 14240 Comm: syz.4.1813 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  757.228161][T14240] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  757.228169][T14240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  757.228184][T14240] Call Trace:
[  757.228192][T14240]  <TASK>
[  757.228201][T14240]  dump_stack_lvl+0x16c/0x1f0
[  757.228241][T14240]  should_fail_ex+0x512/0x640
[  757.228267][T14240]  ? kmem_cache_alloc_node_noprof+0x65/0x800
[  757.228305][T14240]  should_failslab+0xc2/0x120
[  757.228342][T14240]  kmem_cache_alloc_node_noprof+0x86/0x800
[  757.228371][T14240]  ? __alloc_skb+0x156/0x410
[  757.228403][T14240]  ? __alloc_skb+0x156/0x410
[  757.228434][T14240]  __alloc_skb+0x156/0x410
[  757.228458][T14240]  ? __alloc_skb+0x35d/0x410
[  757.228483][T14240]  ? __pfx___alloc_skb+0x10/0x10
[  757.228514][T14240]  ? find_held_lock+0x2b/0x80
[  757.228549][T14240]  __ip6_append_data+0x2b74/0x4740
[  757.228581][T14240]  ? __pfx_raw6_getfrag+0x10/0x10
[  757.228630][T14240]  ? __pfx___ip6_append_data+0x10/0x10
[  757.228692][T14240]  ? __pfx_ip6_mtu+0x10/0x10
[  757.228737][T14240]  ? ip6_setup_cork+0xc51/0x1530
[  757.228764][T14240]  ip6_append_data+0x1ba/0x4c0
[  757.228789][T14240]  ? __pfx_raw6_getfrag+0x10/0x10
[  757.228829][T14240]  rawv6_sendmsg+0x163e/0x4860
[  757.228868][T14240]  ? aa_label_sk_perm+0x194/0x5f0
[  757.228901][T14240]  ? aa_profile_af_perm+0x2c0/0x390
[  757.228933][T14240]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  757.228969][T14240]  ? select_task_rq_fair+0x35d0/0x4670
[  757.229033][T14240]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  757.229073][T14240]  ? inet_sendmsg+0x11c/0x140
[  757.229099][T14240]  inet_sendmsg+0x11c/0x140
[  757.229126][T14240]  ____sys_sendmsg+0x973/0xc30
[  757.229165][T14240]  ? copy_msghdr_from_user+0x10a/0x160
[  757.229195][T14240]  ? __pfx_____sys_sendmsg+0x10/0x10
[  757.229230][T14240]  ? trace_sched_set_need_resched_tp+0xf3/0x130
[  757.229284][T14240]  ? __pfx___schedule+0x10/0x10
[  757.229324][T14240]  ___sys_sendmsg+0x134/0x1d0
[  757.229356][T14240]  ? __pfx____sys_sendmsg+0x10/0x10
[  757.229413][T14240]  ? __pfx___might_resched+0x10/0x10
[  757.229457][T14240]  __sys_sendmmsg+0x200/0x420
[  757.229491][T14240]  ? __pfx___sys_sendmmsg+0x10/0x10
[  757.229530][T14240]  ? __pfx_do_futex+0x10/0x10
[  757.229556][T14240]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  757.229605][T14240]  ? fput+0x70/0xf0
[  757.229629][T14240]  ? xfd_validate_state+0x61/0x180
[  757.229650][T14240]  ? __pfx_do_writev+0x10/0x10
[  757.229686][T14240]  __x64_sys_sendmmsg+0x9c/0x100
[  757.229716][T14240]  ? lockdep_hardirqs_on+0x7c/0x110
[  757.229750][T14240]  do_syscall_64+0xcd/0xf80
[  757.229788][T14240]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  757.229812][T14240] RIP: 0033:0x7f734798f7c9
[  757.229832][T14240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  757.229855][T14240] RSP: 002b:00007f7348766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  757.229876][T14240] RAX: ffffffffffffffda RBX: 00007f7347be5fa0 RCX: 00007f734798f7c9
[  757.229893][T14240] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003
[  757.229907][T14240] RBP: 00007f7347a13f91 R08: 0000000000000000 R09: 0000000000000000
[  757.229922][T14240] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000
[  757.229936][T14240] R13: 00007f7347be6038 R14: 00007f7347be5fa0 R15: 00007fff8890ef18
[  757.229968][T14240]  </TASK>
[  757.933338][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  757.945911][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  761.148931][T14293] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  761.173684][T14293] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  761.199794][T14293] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  761.228886][T14293] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  761.891743][T14297] zswap: compressor  not available
[  763.168287][   T52] Bluetooth: hci1: command 0x0406 tx timeout
[  763.249582][ T5843] Bluetooth: hci2: command 0x0406 tx timeout
[  763.256483][T14064] Bluetooth: hci3: command 0x0406 tx timeout
[  763.262511][   T52] Bluetooth: hci4: command 0x0c1a tx timeout
[  763.583622][T14332] openvswitch: netlink: Key type 1539 is out of range max 32
[  763.644145][T14332] nfs: Unknown parameter 'w¾Ã`_…à‚ûÏI+;ýá�	ÑöHYø º†»·«ÏLuõ>>ËÕuh�*àéC<+°ðÀÛ'
[  764.632030][T14353] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1842'.
[  767.251530][T14389] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  767.295103][T14389] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  767.359589][T14389] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  767.391886][T14389] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  767.546066][T14408] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  767.592500][T14408] nfs: Unknown parameter 'w¾Ã`_'
[  768.605692][   T52] Bluetooth: hci1: command 0x0406 tx timeout
[  769.325783][   T52] Bluetooth: hci2: command 0x0406 tx timeout
[  769.406068][T14064] Bluetooth: hci3: command 0x0406 tx timeout
[  769.412185][   T52] Bluetooth: hci4: command 0x0c1a tx timeout
[  770.082157][T14463] FAULT_INJECTION: forcing a failure.
[  770.082157][T14463] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  770.144157][T14463] CPU: 0 UID: 0 PID: 14463 Comm: syz.4.1867 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  770.144197][T14463] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  770.144206][T14463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  770.144221][T14463] Call Trace:
[  770.144229][T14463]  <TASK>
[  770.144238][T14463]  dump_stack_lvl+0x16c/0x1f0
[  770.144278][T14463]  should_fail_ex+0x512/0x640
[  770.144308][T14463]  _copy_from_user+0x2e/0xd0
[  770.144334][T14463]  __sys_bpf+0x248/0x4980
[  770.144361][T14463]  ? __pfx___sys_bpf+0x10/0x10
[  770.144381][T14463]  ? find_held_lock+0x2b/0x80
[  770.144417][T14463]  ? find_held_lock+0x2b/0x80
[  770.144453][T14463]  ? __mutex_unlock_slowpath+0x161/0x790
[  770.144506][T14463]  ? fput+0x70/0xf0
[  770.144528][T14463]  ? ksys_write+0x1ac/0x250
[  770.144567][T14463]  ? __pfx_ksys_write+0x10/0x10
[  770.144605][T14463]  __x64_sys_bpf+0x78/0xc0
[  770.144627][T14463]  ? lockdep_hardirqs_on+0x7c/0x110
[  770.144662][T14463]  do_syscall_64+0xcd/0xf80
[  770.144699][T14463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  770.144724][T14463] RIP: 0033:0x7f734798f7c9
[  770.144742][T14463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  770.144764][T14463] RSP: 002b:00007f7348766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  770.144786][T14463] RAX: ffffffffffffffda RBX: 00007f7347be5fa0 RCX: 00007f734798f7c9
[  770.144801][T14463] RDX: 0000000000000092 RSI: 0000200000000040 RDI: 0000000000000000
[  770.144815][T14463] RBP: 00007f7348766090 R08: 0000000000000000 R09: 0000000000000000
[  770.144830][T14463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  770.144843][T14463] R13: 00007f7347be6038 R14: 00007f7347be5fa0 R15: 00007fff8890ef18
[  770.144873][T14463]  </TASK>
[  771.092784][T14483] FAULT_INJECTION: forcing a failure.
[  771.092784][T14483] name failslab, interval 1, probability 0, space 0, times 0
[  771.134239][T14483] CPU: 0 UID: 0 PID: 14483 Comm: syz.4.1871 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  771.134281][T14483] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  771.134290][T14483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  771.134306][T14483] Call Trace:
[  771.134323][T14483]  <TASK>
[  771.134336][T14483]  dump_stack_lvl+0x16c/0x1f0
[  771.134562][T14483]  should_fail_ex+0x512/0x640
[  771.134589][T14483]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  771.134622][T14483]  should_failslab+0xc2/0x120
[  771.134660][T14483]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  771.134689][T14483]  ? inode_set_ctime_to_ts+0x137/0x3b0
[  771.134729][T14483]  ? __d_alloc+0x35/0xa80
[  771.134760][T14483]  ? __d_alloc+0x35/0xa80
[  771.134779][T14483]  __d_alloc+0x35/0xa80
[  771.134802][T14483]  d_alloc_pseudo+0x1c/0xc0
[  771.134831][T14483]  alloc_file_pseudo+0xcf/0x230
[  771.134859][T14483]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  771.134884][T14483]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  771.134925][T14483]  create_pipe_files+0x36d/0x9a0
[  771.134965][T14483]  do_pipe2+0xaf/0x1c0
[  771.135001][T14483]  ? __pfx_do_pipe2+0x10/0x10
[  771.135037][T14483]  ? xfd_validate_state+0x61/0x180
[  771.135059][T14483]  ? __pfx_ksys_write+0x10/0x10
[  771.135099][T14483]  __x64_sys_pipe+0x33/0x50
[  771.135135][T14483]  do_syscall_64+0xcd/0xf80
[  771.135174][T14483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  771.135198][T14483] RIP: 0033:0x7f734798f7c9
[  771.135218][T14483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  771.135243][T14483] RSP: 002b:00007f7348766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  771.135265][T14483] RAX: ffffffffffffffda RBX: 00007f7347be5fa0 RCX: 00007f734798f7c9
[  771.135282][T14483] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  771.135296][T14483] RBP: 00007f7347a13f91 R08: 0000000000000000 R09: 0000000000000000
[  771.135311][T14483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  771.135325][T14483] R13: 00007f7347be6038 R14: 00007f7347be5fa0 R15: 00007fff8890ef18
[  771.135356][T14483]  </TASK>
[  771.384719][T14465] syz.2.1863 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[  771.399118][T14465] CPU: 0 UID: 0 PID: 14465 Comm: syz.2.1863 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  771.399157][T14465] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  771.399166][T14465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  771.399180][T14465] Call Trace:
[  771.399188][T14465]  <TASK>
[  771.399197][T14465]  dump_stack_lvl+0x16c/0x1f0
[  771.399236][T14465]  dump_header+0x101/0x960
[  771.399265][T14465]  oom_kill_process+0x176/0x910
[  771.399294][T14465]  out_of_memory+0x350/0x1700
[  771.399325][T14465]  ? __pfx_out_of_memory+0x10/0x10
[  771.399359][T14465]  mem_cgroup_out_of_memory+0x118/0x130
[  771.399388][T14465]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  771.399422][T14465]  ? do_raw_spin_unlock+0x172/0x230
[  771.399455][T14465]  try_charge_memcg+0x695/0xd30
[  771.399497][T14465]  ? __pfx_try_charge_memcg+0x10/0x10
[  771.399541][T14465]  ? rcu_read_unlock+0x1/0x60
[  771.399567][T14465]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  771.399601][T14465]  __memcg_kmem_charge_page+0xda/0x420
[  771.399641][T14465]  __alloc_frozen_pages_noprof+0x323/0x2430
[  771.399671][T14465]  ? __pfx_vmap_small_pages_range_noflush+0x10/0x10
[  771.399707][T14465]  ? __pfx___split_page_owner+0x10/0x10
[  771.399745][T14465]  ? alloc_pages_bulk_noprof+0xac5/0x1410
[  771.399773][T14465]  ? __vmap_pages_range_noflush+0x3e7/0x670
[  771.399812][T14465]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  771.399844][T14465]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  771.399881][T14465]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  771.399918][T14465]  ? policy_nodemask+0xea/0x4e0
[  771.399952][T14465]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  771.399989][T14465]  ? policy_nodemask+0xea/0x4e0
[  771.400026][T14465]  alloc_pages_mpol+0x1fb/0x550
[  771.400062][T14465]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  771.400096][T14465]  ? __pfx_alloc_pages_bulk_mempolicy_noprof+0x10/0x10
[  771.400125][T14465]  ? __do_sys_listmount+0x27f/0xf40
[  771.400160][T14465]  alloc_pages_noprof+0x131/0x390
[  771.400196][T14465]  __vmalloc_node_range_noprof+0x6d1/0x16b0
[  771.400229][T14465]  ? __do_sys_listmount+0x27f/0xf40
[  771.400267][T14465]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  771.400302][T14465]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  771.400332][T14465]  ? ___kmalloc_large_node+0x10c/0x150
[  771.400360][T14465]  __kvmalloc_node_noprof+0x42c/0xa40
[  771.400392][T14465]  ? __do_sys_listmount+0x27f/0xf40
[  771.400425][T14465]  ? __do_sys_listmount+0x27f/0xf40
[  771.400454][T14465]  ? _copy_from_user+0x59/0xd0
[  771.400484][T14465]  ? __do_sys_listmount+0x27f/0xf40
[  771.400514][T14465]  __do_sys_listmount+0x27f/0xf40
[  771.400557][T14465]  ? __pfx___do_sys_listmount+0x10/0x10
[  771.400608][T14465]  do_syscall_64+0xcd/0xf80
[  771.400645][T14465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  771.400669][T14465] RIP: 0033:0x7f992258f7c9
[  771.400689][T14465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  771.400712][T14465] RSP: 002b:00007f992337d038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca
[  771.400733][T14465] RAX: ffffffffffffffda RBX: 00007f99227e6180 RCX: 00007f992258f7c9
[  771.400748][T14465] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000100
[  771.400762][T14465] RBP: 00007f9922613f91 R08: 0000000000000000 R09: 0000000000000000
[  771.400776][T14465] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[  771.400790][T14465] R13: 00007f99227e6218 R14: 00007f99227e6180 R15: 00007ffdcb0a13b8
[  771.400820][T14465]  </TASK>
[  771.400829][T14465] memory: usage 3072kB, limit 3072kB, failcnt 157796
[  772.156987][T14485] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  772.163840][T14485] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  772.170289][T14485] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  772.183401][T14485] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  772.234166][T14483] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1871'.
[  772.489380][T14493] usb usb2: usbfs: process 14493 (syz.0.1874) did not claim interface 4 before use
[  772.559788][T14493] FAULT_INJECTION: forcing a failure.
[  772.559788][T14493] name failslab, interval 1, probability 0, space 0, times 0
[  772.640838][T14493] CPU: 0 UID: 0 PID: 14493 Comm: syz.0.1874 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  772.640879][T14493] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  772.640888][T14493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  772.640903][T14493] Call Trace:
[  772.640911][T14493]  <TASK>
[  772.640920][T14493]  dump_stack_lvl+0x16c/0x1f0
[  772.640961][T14493]  should_fail_ex+0x512/0x640
[  772.640988][T14493]  ? __kmalloc_noprof+0xca/0x910
[  772.641016][T14493]  should_failslab+0xc2/0x120
[  772.641053][T14493]  __kmalloc_noprof+0xeb/0x910
[  772.641079][T14493]  ? __trace_probe_log_err+0x138/0x400
[  772.641114][T14493]  ? __trace_probe_log_err+0x138/0x400
[  772.641142][T14493]  __trace_probe_log_err+0x138/0x400
[  772.641177][T14493]  traceprobe_parse_event_name+0x5eb/0x6f0
[  772.641209][T14493]  ? kasan_save_track+0x14/0x30
[  772.641241][T14493]  ? __pfx___trace_eprobe_create+0x10/0x10
[  772.641268][T14493]  __trace_eprobe_create+0x25a/0x1da0
[  772.641303][T14493]  ? __pfx___trace_eprobe_create+0x10/0x10
[  772.641337][T14493]  ? rcu_is_watching+0x12/0xc0
[  772.641372][T14493]  ? __kmalloc_noprof+0x35d/0x910
[  772.641398][T14493]  ? argv_split+0x188/0x440
[  772.641432][T14493]  ? argv_split+0x188/0x440
[  772.641468][T14493]  ? argv_split+0x36e/0x440
[  772.641499][T14493]  ? __pfx___trace_eprobe_create+0x10/0x10
[  772.641526][T14493]  trace_probe_create+0xef/0x100
[  772.641558][T14493]  ? __pfx_trace_probe_create+0x10/0x10
[  772.641598][T14493]  create_dyn_event+0xee/0x1d0
[  772.641624][T14493]  trace_parse_run_command+0x1a9/0x400
[  772.641665][T14493]  ? __pfx_create_dyn_event+0x10/0x10
[  772.641694][T14493]  ? __pfx_dyn_event_write+0x10/0x10
[  772.641717][T14493]  vfs_write+0x2a0/0x11d0
[  772.641753][T14493]  ? __pfx___mutex_lock+0x10/0x10
[  772.641793][T14493]  ? __pfx_vfs_write+0x10/0x10
[  772.641835][T14493]  ? __fget_files+0x20e/0x3c0
[  772.641876][T14493]  ksys_write+0x12a/0x250
[  772.641910][T14493]  ? __pfx_ksys_write+0x10/0x10
[  772.641952][T14493]  do_syscall_64+0xcd/0xf80
[  772.641990][T14493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  772.642014][T14493] RIP: 0033:0x7f4f03d8f7c9
[  772.642034][T14493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  772.642058][T14493] RSP: 002b:00007f4f04b72038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  772.642080][T14493] RAX: ffffffffffffffda RBX: 00007f4f03fe5fa0 RCX: 00007f4f03d8f7c9
[  772.642096][T14493] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000006
[  772.642111][T14493] RBP: 00007f4f03e13f91 R08: 0000000000000000 R09: 0000000000000000
[  772.642126][T14493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  772.642141][T14493] R13: 00007f4f03fe6038 R14: 00007f4f03fe5fa0 R15: 00007ffd72b0a858
[  772.642173][T14493]  </TASK>
[  773.586032][T14465] memory+swap: usage 27212kB, limit 9007199254740988kB, failcnt 0
[  773.636240][T14465] kmem: usage 2592kB, limit 9007199254740988kB, failcnt 0
[  773.658439][T14465] Memory cgroup stats for /syz2:
[  773.658601][T14465] cache 299008
[  773.715565][T14465] rss 8192
[  773.723171][T14465] rss_huge 0
[  773.745840][T14465] shmem 299008
[  773.763747][T14465] mapped_file 208896
[  773.807230][T14465] dirty 0
[  773.816810][T14465] writeback 0
[  773.835712][T14465] workingset_refault_anon 27298
[  773.877909][T14465] workingset_refault_file 33422
[  773.896821][T14465] swap 25120768
[  773.921090][T14465] swapcached 188416
[  773.950974][T14465] pgpgin 340501
[  773.971214][T14465] pgpgout 362303
[  773.974808][T14465] pgfault 433139
[  774.021784][T14465] pgmajfault 10281
[  774.025553][T14465] inactive_anon 36864
[  774.135013][T14465] active_anon 450560
[  774.215811][   T52] Bluetooth: hci4: command 0x0c1a tx timeout
[  774.221901][   T52] Bluetooth: hci2: command 0x0406 tx timeout
[  774.227980][ T5843] Bluetooth: hci1: command 0x0406 tx timeout
[  774.234014][T14064] Bluetooth: hci3: command 0x0406 tx timeout
[  774.241534][T14465] inactive_file 0
[  774.268633][T14465] active_file 0
[  774.272188][T14465] unevictable 0
[  774.324807][T14465] hierarchical_memory_limit 3145728
[  774.401727][T14465] hierarchical_memsw_limit 9223372036854771712
[  774.477244][T14465] total_cache 299008
[  774.481191][T14465] total_rss 8192
[  774.587082][T14465] total_rss_huge 0
[  774.633726][T14465] total_shmem 299008
[  774.751577][T14465] total_mapped_file 208896
[  774.780665][T14465] total_dirty 0
[  774.803827][T14465] total_writeback 0
[  774.863435][T14465] total_workingset_refault_anon 27298
[  774.919512][T14465] total_workingset_refault_file 33422
[  774.990453][T14465] total_swap 25120768
[  775.017457][T14465] total_swapcached 188416
[  775.085487][T14465] total_pgpgin 340501
[  775.165891][T14465] total_pgpgout 362303
[  775.170030][T14465] total_pgfault 433139
[  775.174230][T14465] total_pgmajfault 10281
[  775.275884][T14465] total_inactive_anon 36864
[  775.280459][T14465] total_active_anon 450560
[  775.382118][T14465] total_inactive_file 0
[  775.441833][T14465] total_active_file 0
[  775.475257][T14465] total_unevictable 0
[  775.527448][T14465] anon_cost 0
[  775.530793][T14465] file_cost 0
[  775.534089][T14465] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1863,pid=14434,uid=0
[  775.726605][T14465] Memory cgroup out of memory: Killed process 14465 (syz.2.1863) total-vm:103084kB, anon-rss:1268kB, file-rss:21640kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[  777.394425][T14552] netlink: 'syz.4.1889': attribute type 1 has an invalid length.
[  777.436487][T14552] netlink: 13 bytes leftover after parsing attributes in process `syz.4.1889'.
[  777.582221][T14539] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input18
[  779.136214][T14578] FAULT_INJECTION: forcing a failure.
[  779.136214][T14578] name failslab, interval 1, probability 0, space 0, times 0
[  779.207202][T14578] CPU: 0 UID: 0 PID: 14578 Comm: syz.0.1893 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  779.207243][T14578] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  779.207252][T14578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  779.207266][T14578] Call Trace:
[  779.207273][T14578]  <TASK>
[  779.207283][T14578]  dump_stack_lvl+0x16c/0x1f0
[  779.207323][T14578]  should_fail_ex+0x512/0x640
[  779.207348][T14578]  ? __kvmalloc_node_noprof+0x129/0xa40
[  779.207384][T14578]  should_failslab+0xc2/0x120
[  779.207419][T14578]  __kvmalloc_node_noprof+0x14a/0xa40
[  779.207453][T14578]  ? seq_read_iter+0x830/0x12d0
[  779.207490][T14578]  ? seq_read_iter+0x830/0x12d0
[  779.207542][T14578]  seq_read_iter+0x830/0x12d0
[  779.207586][T14578]  kernfs_fop_read_iter+0x46c/0x610
[  779.207623][T14578]  ? rw_verify_area+0xcf/0x6c0
[  779.207655][T14578]  vfs_read+0x8bf/0xcf0
[  779.207693][T14578]  ? __pfx_vfs_read+0x10/0x10
[  779.207744][T14578]  ksys_read+0x12a/0x250
[  779.207776][T14578]  ? __pfx_ksys_read+0x10/0x10
[  779.207817][T14578]  do_syscall_64+0xcd/0xf80
[  779.207855][T14578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  779.207879][T14578] RIP: 0033:0x7f4f03d8f7c9
[  779.207897][T14578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  779.207919][T14578] RSP: 002b:00007f4f04b72038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  779.207946][T14578] RAX: ffffffffffffffda RBX: 00007f4f03fe5fa0 RCX: 00007f4f03d8f7c9
[  779.207962][T14578] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000003
[  779.207976][T14578] RBP: 00007f4f04b72090 R08: 0000000000000000 R09: 0000000000000000
[  779.207990][T14578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  779.208004][T14578] R13: 00007f4f03fe6038 R14: 00007f4f03fe5fa0 R15: 00007ffd72b0a858
[  779.208035][T14578]  </TASK>
[  780.162700][T14585] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1895: iget: checksum invalid
[  780.229518][T14585] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  780.271864][T14585] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1895: iget: checksum invalid
[  780.326855][T14585] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  780.371076][T14585] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1895: iget: checksum invalid
[  780.419901][T14585] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  780.472595][T14585] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1895: iget: checksum invalid
[  780.536350][T14585] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  780.590463][T14585] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  780.637230][T14585] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  781.464739][T14600] FAULT_INJECTION: forcing a failure.
[  781.464739][T14600] name failslab, interval 1, probability 0, space 0, times 0
[  781.478323][T14600] CPU: 0 UID: 0 PID: 14600 Comm: syz.0.1902 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  781.478361][T14600] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  781.478370][T14600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  781.478385][T14600] Call Trace:
[  781.478394][T14600]  <TASK>
[  781.478404][T14600]  dump_stack_lvl+0x16c/0x1f0
[  781.478444][T14600]  should_fail_ex+0x512/0x640
[  781.478475][T14600]  should_failslab+0xc2/0x120
[  781.478512][T14600]  kmem_cache_alloc_noprof+0x83/0x770
[  781.478541][T14600]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  781.478577][T14600]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  781.478606][T14600]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  781.478641][T14600]  idr_get_free+0x528/0xa30
[  781.478683][T14600]  idr_alloc_u32+0x190/0x2f0
[  781.478718][T14600]  ? __pfx_idr_alloc_u32+0x10/0x10
[  781.478753][T14600]  ? lock_acquire+0x179/0x330
[  781.478781][T14600]  idr_alloc_cyclic+0x10b/0x230
[  781.478815][T14600]  ? __pfx_idr_alloc_cyclic+0x10/0x10
[  781.478846][T14600]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  781.478873][T14600]  ? lsm_blob_alloc+0x2b/0x90
[  781.478912][T14600]  map_create+0x143c/0x2a10
[  781.478945][T14600]  ? find_held_lock+0x2b/0x80
[  781.478983][T14600]  ? __pfx_map_create+0x10/0x10
[  781.479015][T14600]  ? __might_fault+0xe3/0x190
[  781.479048][T14600]  ? __might_fault+0xe3/0x190
[  781.479072][T14600]  ? __might_fault+0x13b/0x190
[  781.479109][T14600]  __sys_bpf+0x3d9d/0x4980
[  781.479135][T14600]  ? __pfx___sys_bpf+0x10/0x10
[  781.479155][T14600]  ? find_held_lock+0x2b/0x80
[  781.479190][T14600]  ? find_held_lock+0x2b/0x80
[  781.479228][T14600]  ? __mutex_unlock_slowpath+0x161/0x790
[  781.479282][T14600]  ? fput+0x70/0xf0
[  781.479304][T14600]  ? ksys_write+0x1ac/0x250
[  781.479337][T14600]  ? __pfx_ksys_write+0x10/0x10
[  781.479375][T14600]  __x64_sys_bpf+0x78/0xc0
[  781.479396][T14600]  ? lockdep_hardirqs_on+0x7c/0x110
[  781.479431][T14600]  do_syscall_64+0xcd/0xf80
[  781.479468][T14600]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  781.479493][T14600] RIP: 0033:0x7f4f03d8f7c9
[  781.479512][T14600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  781.479535][T14600] RSP: 002b:00007f4f04b72038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  781.479557][T14600] RAX: ffffffffffffffda RBX: 00007f4f03fe5fa0 RCX: 00007f4f03d8f7c9
[  781.479573][T14600] RDX: 0000000000000092 RSI: 0000200000000040 RDI: 0000000000000000
[  781.479587][T14600] RBP: 00007f4f04b72090 R08: 0000000000000000 R09: 0000000000000000
[  781.479602][T14600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  781.479616][T14600] R13: 00007f4f03fe6038 R14: 00007f4f03fe5fa0 R15: 00007ffd72b0a858
[  781.479646][T14600]  </TASK>
[  782.238510][T14609] FAULT_INJECTION: forcing a failure.
[  782.238510][T14609] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  782.294498][T14609] CPU: 0 UID: 0 PID: 14609 Comm: syz.4.1904 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  782.294537][T14609] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  782.294546][T14609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  782.294561][T14609] Call Trace:
[  782.294568][T14609]  <TASK>
[  782.294577][T14609]  dump_stack_lvl+0x16c/0x1f0
[  782.294618][T14609]  should_fail_ex+0x512/0x640
[  782.294648][T14609]  _copy_to_iter+0x29f/0x1710
[  782.294674][T14609]  ? __mutex_unlock_slowpath+0x161/0x790
[  782.294715][T14609]  ? __pfx__copy_to_iter+0x10/0x10
[  782.294746][T14609]  ? kernfs_seq_stop+0xcd/0x120
[  782.294785][T14609]  ? kernfs_put_active+0x86/0xe0
[  782.294818][T14609]  seq_read_iter+0xd02/0x12d0
[  782.294863][T14609]  kernfs_fop_read_iter+0x46c/0x610
[  782.294898][T14609]  ? rw_verify_area+0xcf/0x6c0
[  782.294931][T14609]  vfs_read+0x8bf/0xcf0
[  782.294969][T14609]  ? __pfx_vfs_read+0x10/0x10
[  782.295019][T14609]  ksys_read+0x12a/0x250
[  782.295051][T14609]  ? __pfx_ksys_read+0x10/0x10
[  782.295092][T14609]  do_syscall_64+0xcd/0xf80
[  782.295129][T14609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  782.295153][T14609] RIP: 0033:0x7f734798f7c9
[  782.295172][T14609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  782.295196][T14609] RSP: 002b:00007f7348766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  782.295217][T14609] RAX: ffffffffffffffda RBX: 00007f7347be5fa0 RCX: 00007f734798f7c9
[  782.295233][T14609] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000003
[  782.295247][T14609] RBP: 00007f7348766090 R08: 0000000000000000 R09: 0000000000000000
[  782.295262][T14609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  782.295276][T14609] R13: 00007f7347be6038 R14: 00007f7347be5fa0 R15: 00007fff8890ef18
[  782.295306][T14609]  </TASK>
[  782.805978][T14614] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input19
[  783.617378][T14615] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1899'.
[  784.164288][T14639] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1909: iget: checksum invalid
[  784.225235][T14639] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  784.365781][T14064] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  784.365813][T14064] Bluetooth: hci1: unexpected subevent 0x0e length: 725 > 15
[  784.384061][T14064] Bluetooth: hci1: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  784.404275][T14639] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1909: iget: checksum invalid
[  784.546400][T14639] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  784.609788][T14639] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1909: iget: checksum invalid
[  784.665537][T14639] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  784.806625][T14639] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1909: iget: checksum invalid
[  784.943190][T14639] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  784.994469][T14639] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  785.081762][T14639] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  785.977066][T14662] tc_dump_action: action bad kind
[  787.214226][T14641] syz.2.1910 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  787.365001][T14641] CPU: 0 UID: 0 PID: 14641 Comm: syz.2.1910 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  787.365042][T14641] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  787.365051][T14641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  787.365065][T14641] Call Trace:
[  787.365073][T14641]  <TASK>
[  787.365082][T14641]  dump_stack_lvl+0x16c/0x1f0
[  787.365122][T14641]  dump_header+0x101/0x960
[  787.365152][T14641]  oom_kill_process+0x176/0x910
[  787.365181][T14641]  out_of_memory+0x350/0x1700
[  787.365206][T14641]  ? __lock_acquire+0x436/0x2890
[  787.365232][T14641]  ? __pfx_out_of_memory+0x10/0x10
[  787.365266][T14641]  mem_cgroup_out_of_memory+0x118/0x130
[  787.365295][T14641]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  787.365330][T14641]  ? do_raw_spin_unlock+0x172/0x230
[  787.365362][T14641]  try_charge_memcg+0x695/0xd30
[  787.365404][T14641]  ? __pfx_try_charge_memcg+0x10/0x10
[  787.365453][T14641]  ? find_held_lock+0x2b/0x80
[  787.365488][T14641]  charge_memcg+0x8a/0x230
[  787.365524][T14641]  mem_cgroup_swapin_charge_folio+0xeb/0x470
[  787.365553][T14641]  __read_swap_cache_async+0x397/0x500
[  787.365587][T14641]  ? __pfx___read_swap_cache_async+0x10/0x10
[  787.365620][T14641]  ? finish_task_switch.isra.0+0x202/0xbd0
[  787.365654][T14641]  ? rcu_is_watching+0x12/0xc0
[  787.365687][T14641]  ? finish_task_switch.isra.0+0x207/0xbd0
[  787.365718][T14641]  ? lockdep_hardirqs_on+0x7c/0x110
[  787.365757][T14641]  swap_cluster_readahead+0x432/0x770
[  787.365793][T14641]  ? __pfx_swap_cluster_readahead+0x10/0x10
[  787.365825][T14641]  ? __lock_acquire+0x436/0x2890
[  787.365860][T14641]  ? get_vma_policy+0x242/0x3c0
[  787.365884][T14641]  swapin_readahead+0x160/0x1220
[  787.365923][T14641]  ? __pfx_swapin_readahead+0x10/0x10
[  787.365953][T14641]  ? find_held_lock+0x2b/0x80
[  787.365982][T14641]  ? swap_cache_get_folio+0x267/0x8e0
[  787.366008][T14641]  ? swap_cache_get_folio+0x267/0x8e0
[  787.366034][T14641]  ? swap_cache_get_folio+0x267/0x8e0
[  787.366063][T14641]  ? swap_cache_get_folio+0x267/0x8e0
[  787.366090][T14641]  ? swap_cache_get_folio+0x293/0x8e0
[  787.366119][T14641]  ? __pfx_swap_cache_get_folio+0x10/0x10
[  787.366144][T14641]  ? __pfx_get_swap_device+0x10/0x10
[  787.366178][T14641]  ? rcu_read_unlock+0x2d/0xb0
[  787.366209][T14641]  ? do_swap_page+0x962/0x64a0
[  787.366231][T14641]  do_swap_page+0x962/0x64a0
[  787.366259][T14641]  ? __lock_acquire+0x436/0x2890
[  787.366288][T14641]  ? __pfx_do_swap_page+0x10/0x10
[  787.366315][T14641]  ? __pfx_default_wake_function+0x10/0x10
[  787.366355][T14641]  ? rcu_is_watching+0x12/0xc0
[  787.366386][T14641]  ? ___pte_offset_map+0x175/0x380
[  787.366424][T14641]  __handle_mm_fault+0x19cb/0x2bb0
[  787.366459][T14641]  ? reacquire_held_locks+0xcd/0x1f0
[  787.366482][T14641]  ? __pfx___handle_mm_fault+0x10/0x10
[  787.366510][T14641]  ? lock_vma_under_rcu+0x176/0x580
[  787.366544][T14641]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[  787.366584][T14641]  handle_mm_fault+0x3fe/0xad0
[  787.366614][T14641]  do_user_addr_fault+0x60c/0x1370
[  787.366645][T14641]  ? rcu_is_watching+0x12/0xc0
[  787.366680][T14641]  exc_page_fault+0x64/0xc0
[  787.366714][T14641]  asm_exc_page_fault+0x26/0x30
[  787.366737][T14641] RIP: 0033:0x7f992246f0e0
[  787.366757][T14641] Code: ff 48 8b 43 38 83 43 28 04 48 8d 50 fc 48 89 53 38 44 89 68 fc 8b 43 28 48 83 c4 38 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 00 <c6> 44 24 1e 01 48 89 ee 44 89 e7 4c 89 44 24 10 4c 89 54 24 08 e8
[  787.366780][T14641] RSP: 002b:00007ffdcb0a13f0 EFLAGS: 00010246
[  787.366798][T14641] RAX: 00000000000107a7 RBX: 00007f9923315720 RCX: 00000000000221a8
[  787.366813][T14641] RDX: ffffffff8246d4af RSI: ffffffff8246d9ee RDI: 000000000000000d
[  787.366828][T14641] RBP: ffffffff8246db59 R08: 00007f99227e6128 R09: 00007f99227d2000
[  787.366843][T14641] R10: 00007f9921bfd008 R11: 000000000000000d R12: 000000000000000d
[  787.366857][T14641] R13: 0000000000001818 R14: ffffffff8246d4af R15: 00000000000221a8
[  787.366873][T14641]  ? seq_escape_mem+0xcf/0x230
[  787.366903][T14641]  ? single_open_size+0x39/0x160
[  787.366936][T14641]  ? seq_escape_mem+0xcf/0x230
[  787.366963][T14641]  ? seq_dentry+0x12e/0x250
[  787.366996][T14641]  </TASK>
[  788.364110][T14641] memory: usage 3072kB, limit 3072kB, failcnt 164221
[  788.386571][T14641] memory+swap: usage 49184kB, limit 9007199254740988kB, failcnt 0
[  788.394533][T14641] kmem: usage 2884kB, limit 9007199254740988kB, failcnt 0
[  788.402361][T14641] Memory cgroup stats for /syz2:
[  788.402510][T14641] cache 0
[  788.411077][T14641] rss 0
[  788.414173][T14641] rss_huge 0
[  788.417912][T14641] shmem 0
[  788.421014][T14641] mapped_file 0
[  788.424699][T14641] dirty 0
[  788.428922][T14641] writeback 0
[  788.432341][T14641] workingset_refault_anon 27951
[  788.441194][T14641] workingset_refault_file 33422
[  788.448610][T14641] swap 47218688
[  788.452301][T14641] swapcached 192512
[  788.456596][T14641] pgpgin 349389
[  788.460163][T14641] pgpgout 371240
[  788.463921][T14641] pgfault 436630
[  788.467992][T14641] pgmajfault 10730
[  788.472315][T14641] inactive_anon 192512
[  788.479734][T14641] active_anon 0
[  788.483319][T14641] inactive_file 0
[  788.487437][T14641] active_file 0
[  788.491116][T14641] unevictable 0
[  788.494668][T14641] hierarchical_memory_limit 3145728
[  788.500419][T14641] hierarchical_memsw_limit 9223372036854771712
[  788.507213][T14641] total_cache 0
[  788.510776][T14641] total_rss 0
[  788.514162][T14641] total_rss_huge 0
[  788.518563][T14641] total_shmem 0
[  788.522146][T14641] total_mapped_file 0
[  788.526639][T14641] total_dirty 0
[  788.548954][T14641] total_writeback 0
[  788.566334][T14641] total_workingset_refault_anon 27951
[  788.577773][T14641] total_workingset_refault_file 33422
[  788.591652][T14641] total_swap 47218688
[  788.596101][T14641] total_swapcached 192512
[  788.600554][T14641] total_pgpgin 349389
[  788.604714][T14641] total_pgpgout 371240
[  788.609465][T14641] total_pgfault 436630
[  788.613682][T14641] total_pgmajfault 10730
[  788.618576][T14641] total_inactive_anon 192512
[  788.623342][T14641] total_active_anon 0
[  788.627847][T14641] total_inactive_file 0
[  788.632223][T14641] total_active_file 0
[  788.636746][T14641] total_unevictable 0
[  788.640869][T14641] anon_cost 0
[  788.644353][T14641] file_cost 0
[  788.648923][T14641] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1842,pid=14356,uid=0
[  788.669521][T14641] Memory cgroup out of memory: Killed process 14356 (syz.2.1842) total-vm:135064kB, anon-rss:1192kB, file-rss:34244kB, shmem-rss:44kB, UID:0 pgtables:224kB oom_score_adj:1000
[  788.831630][T14644] syz.2.1910 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=2, oom_score_adj=1000
[  788.897352][T14644] CPU: 0 UID: 0 PID: 14644 Comm: syz.2.1910 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  788.897393][T14644] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  788.897402][T14644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  788.897416][T14644] Call Trace:
[  788.897424][T14644]  <TASK>
[  788.897434][T14644]  dump_stack_lvl+0x16c/0x1f0
[  788.897475][T14644]  dump_header+0x101/0x960
[  788.897505][T14644]  oom_kill_process+0x176/0x910
[  788.897534][T14644]  out_of_memory+0x350/0x1700
[  788.897560][T14644]  ? __lock_acquire+0x436/0x2890
[  788.897594][T14644]  ? __pfx_out_of_memory+0x10/0x10
[  788.897628][T14644]  mem_cgroup_out_of_memory+0x118/0x130
[  788.897657][T14644]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  788.897692][T14644]  ? do_raw_spin_unlock+0x172/0x230
[  788.897725][T14644]  try_charge_memcg+0x695/0xd30
[  788.897768][T14644]  ? __pfx_try_charge_memcg+0x10/0x10
[  788.897805][T14644]  ? __pfx_rcu_read_unlock+0x10/0x10
[  788.897833][T14644]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  788.897867][T14644]  obj_cgroup_charge_account+0x336/0x670
[  788.897910][T14644]  __memcg_slab_post_alloc_hook+0x2e3/0x880
[  788.897959][T14644]  __kmalloc_noprof+0x6c9/0x910
[  788.897986][T14644]  ? __register_sysctl_table+0xb3/0x1900
[  788.898025][T14644]  ? __register_sysctl_table+0xb3/0x1900
[  788.898056][T14644]  __register_sysctl_table+0xb3/0x1900
[  788.898089][T14644]  ? is_module_address+0x5f/0xf0
[  788.898121][T14644]  ? __pfx___register_sysctl_table+0x10/0x10
[  788.898153][T14644]  ? is_module_address+0x69/0xf0
[  788.898179][T14644]  ? register_net_sysctl_sz+0x222/0x450
[  788.898211][T14644]  __addrconf_sysctl_register+0x1a2/0x360
[  788.898262][T14644]  ? __pfx___addrconf_sysctl_register+0x10/0x10
[  788.898301][T14644]  ? lockdep_init_map_type+0x5c/0x270
[  788.898324][T14644]  ? mld_in_v1_mode+0x2b2/0x3a0
[  788.898354][T14644]  addrconf_sysctl_register+0x15f/0x1f0
[  788.898393][T14644]  ipv6_add_dev+0xb31/0x15f0
[  788.898432][T14644]  addrconf_notify+0x53e/0x19f0
[  788.898458][T14644]  ? ip6mr_device_event+0x1bc/0x230
[  788.898492][T14644]  notifier_call_chain+0xbc/0x3e0
[  788.898529][T14644]  ? __pfx_addrconf_notify+0x10/0x10
[  788.898561][T14644]  call_netdevice_notifiers_info+0xbe/0x110
[  788.898603][T14644]  register_netdevice+0x1792/0x21d0
[  788.898643][T14644]  ? __pfx_register_netdevice+0x10/0x10
[  788.898687][T14644]  register_netdev+0x34/0x50
[  788.898720][T14644]  sit_init_net+0x286/0x630
[  788.898749][T14644]  ? __pfx_sit_init_net+0x10/0x10
[  788.898776][T14644]  ops_init+0x1e2/0x5f0
[  788.898811][T14644]  setup_net+0x11d/0x3a0
[  788.898843][T14644]  ? __pfx_setup_net+0x10/0x10
[  788.898873][T14644]  ? lockdep_init_map_type+0x5c/0x270
[  788.898897][T14644]  ? mutex_init_lockep+0x110/0x150
[  788.898925][T14644]  copy_net_ns+0x351/0x7c0
[  788.898964][T14644]  create_new_namespaces+0x3ea/0xab0
[  788.899003][T14644]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  788.899038][T14644]  ksys_unshare+0x45b/0xa40
[  788.899076][T14644]  ? __pfx_ksys_unshare+0x10/0x10
[  788.899114][T14644]  ? xfd_validate_state+0x61/0x180
[  788.899145][T14644]  __x64_sys_unshare+0x31/0x40
[  788.899166][T14644]  do_syscall_64+0xcd/0xf80
[  788.899204][T14644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  788.899234][T14644] RIP: 0033:0x7f992258f7c9
[  788.899253][T14644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  788.899277][T14644] RSP: 002b:00007f99233bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  788.899300][T14644] RAX: ffffffffffffffda RBX: 00007f99227e5fa0 RCX: 00007f992258f7c9
[  788.899316][T14644] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080
[  788.899330][T14644] RBP: 00007f9922613f91 R08: 0000000000000000 R09: 0000000000000000
[  788.899345][T14644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  788.899359][T14644] R13: 00007f99227e6038 R14: 00007f99227e5fa0 R15: 00007ffdcb0a13b8
[  788.899391][T14644]  </TASK>
[  789.302457][T14711] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  789.490495][T14644] memory: usage 3064kB, limit 3072kB, failcnt 164222
[  789.497987][T14644] memory+swap: usage 48956kB, limit 9007199254740988kB, failcnt 0
[  789.509319][T14644] kmem: usage 2588kB, limit 9007199254740988kB, failcnt 0
[  789.520024][T14719] [U]  
[  789.523687][T14719] [U] 
[  789.526413][T14719] [U] 
[  789.529123][T14719] [U] 
[  789.532220][T14719] [U] 
[  789.534992][T14719] [U] 
[  789.537735][T14719] [U] 
[  789.540449][T14719] [U] 
[  789.543457][T14719] [U] 
[  789.546171][T14719] [U] 
[  789.548881][T14719] [U] 
[  789.551592][T14719] [U] 
[  789.554573][T14719] [U] 
[  789.557296][T14719] [U] 
[  789.560004][T14719] [U] 
[  789.562719][T14719] [U] 
[  789.565915][T14719] [U] 
[  789.568640][T14719] [U] 
[  789.571350][T14719] [U] 
[  789.574061][T14719] [U] 
[  789.578808][T14719] [U] 
[  789.581547][T14719] [U] 
[  789.584300][T14719] [U] 
[  789.587012][T14719] [U] 
[  789.593533][T14719] [U] 
[  789.596275][T14719] [U] 
[  789.598989][T14719] [U] 
[  789.601717][T14719] [U] 
[  789.608033][T14719] [U] 
[  789.610770][T14719] [U] 
[  789.613481][T14719] [U] 
[  789.616190][T14719] [U] 
[  789.619359][T14719] [U] 
[  789.622078][T14719] [U] 
[  789.624799][T14719] [U] 
[  789.627508][T14719] [U] 
[  789.630533][T14719] [U] 
[  789.633305][T14719] [U] 
[  789.636017][T14719] [U] 
[  789.638728][T14719] [U] 
[  789.641709][T14719] [U] 
[  789.644427][T14719] [U] 
[  789.647136][T14719] [U] 
[  789.649845][T14719] [U] 
[  789.657625][T14719] [U] 
[  789.660356][T14719] [U] 
[  789.663064][T14719] [U] 
[  789.665775][T14719] [U] 
[  789.668820][T14719] [U] 
[  789.671535][T14719] [U] 
[  789.674288][T14719] [U] 
[  789.677000][T14719] [U] 
[  789.679917][T14719] [U] 
[  789.682630][T14719] [U] 
[  789.685378][T14719] [U] 
[  789.688094][T14719] [U] 
[  789.701785][T14719] [U] 
[  789.704534][T14719] [U] 
[  789.707252][T14719] [U] 
[  789.709958][T14719] [U] 
[  789.716654][T14719] [U] 
[  789.719397][T14719] [U] 
[  789.722107][T14719] [U] 
[  789.724817][T14719] [U] 
[  789.729596][T14644] Memory cgroup stats for /syz2:
[  789.729840][T14644] cache 4096
[  789.738346][T14644] rss 36864
[  789.743682][T14719] [U] 
[  789.746411][T14719] [U] 
[  789.749122][T14719] [U] 
[  789.751862][T14719] [U] 
[  789.754789][T14644] rss_huge 0
[  789.758087][T14644] shmem 4096
[  789.761286][T14644] mapped_file 0
[  789.764747][T14644] dirty 0
[  789.768790][T14719] [U] 
[  789.771513][T14719] [U] 
[  789.774221][T14719] [U] 
[  789.776935][T14719] [U] 
[  789.779862][T14644] writeback 0
[  789.783160][T14644] workingset_refault_anon 27961
[  789.788620][T14644] workingset_refault_file 33422
[  789.793804][T14719] [U] 
[  789.796524][T14719] [U] 
[  789.799241][T14719] [U] 
[  789.801978][T14719] [U] 
[  789.811525][T14644] swap 46993408
[  789.815016][T14644] swapcached 221184
[  789.819870][T14719] [U] 
[  789.822594][T14719] [U] 
[  789.825304][T14719] [U] 
[  789.828011][T14719] [U] 
[  789.831990][T14644] pgpgin 349400
[  789.835461][T14644] pgpgout 371242
[  789.839409][T14644] pgfault 436639
[  789.843094][T14644] pgmajfault 10740
[  789.847219][T14719] [U] 
[  789.849943][T14719] [U] 
[  789.852652][T14719] [U] 
[  789.855362][T14719] [U] 
[  789.858709][T14644] inactive_anon 0
[  789.862353][T14644] active_anon 229376
[  789.866897][T14719] [U] 
[  789.869618][T14719] [U] 
[  789.872327][T14719] [U] 
[  789.875038][T14719] [U] 
[  789.878324][T14644] inactive_file 0
[  789.881970][T14644] active_file 0
[  789.885445][T14644] unevictable 0
[  789.889643][T14644] hierarchical_memory_limit 3145728
[  789.894855][T14644] hierarchical_memsw_limit 9223372036854771712
[  789.901463][T14719] [U] 
[  789.904184][T14719] [U] 
[  789.906905][T14719] [U] 
[  789.909617][T14719] [U] 
[  789.915591][T14644] total_cache 4096
[  789.922620][T14644] total_rss 36864
[  789.926851][T14719] [U] 
[  789.929574][T14719] [U] 
[  789.932285][T14719] [U] 
[  789.934995][T14719] [U] 
[  789.938657][T14644] total_rss_huge 0
[  789.942392][T14644] total_shmem 4096
[  789.947545][T14719] [U] 
[  789.950278][T14719] [U] 
[  789.953000][T14719] [U] 
[  789.955709][T14719] [U] 
[  789.959024][T14644] total_mapped_file 0
[  789.963019][T14644] total_dirty 0
[  789.966845][T14644] total_writeback 0
[  789.970987][T14719] [U] 
[  789.973705][T14719] [U] 
[  789.976415][T14719] [U] 
[  789.979126][T14719] [U] 
[  789.981969][T14644] total_workingset_refault_anon 27961
[  789.988157][T14644] total_workingset_refault_file 33422
[  789.993847][T14719] [U] 
[  789.996586][T14719] [U] 
[  789.999332][T14719] [U] 
[  790.002041][T14719] [U] 
[  790.004921][T14644] total_swap 46993408
[  790.010039][T14644] total_swapcached 221184
[  790.017741][T14719] [U] 
[  790.020468][T14719] [U] 
[  790.023177][T14719] [U] 
[  790.025899][T14719] [U] 
[  790.031704][T14644] total_pgpgin 349400
[  790.035923][T14644] total_pgpgout 371242
[  790.040016][T14644] total_pgfault 436639
[  790.044121][T14644] total_pgmajfault 10740
[  790.050523][T14719] [U] 
[  790.053285][T14719] [U] 
[  790.055992][T14719] [U] 
[  790.058698][T14719] [U] 
[  790.062194][T14644] total_inactive_anon 0
[  790.066608][T14644] total_active_anon 229376
[  790.071061][T14644] total_inactive_file 0
[  790.075552][T14719] [U] 
[  790.078349][T14719] [U] 
[  790.081076][T14719] [U] 
[  790.083805][T14719] [U] 
[  790.087505][T14644] total_active_file 0
[  790.091501][T14644] total_unevictable 0
[  790.095483][T14644] anon_cost 0
[  790.099164][T14719] [U] 
[  790.101887][T14719] [U] 
[  790.104597][T14719] [U] 
[  790.107347][T14719] [U] 
[  790.111525][T14644] file_cost 0
[  790.118218][T14719] [U] 
[  790.120950][T14719] [U] 
[  790.123660][T14719] [U] 
[  790.126956][T14644] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1910,pid=14641,uid=0
[  790.147655][T14720] [U] 
[  790.150431][T14720] [U] 
[  790.153167][T14720] [U] 
[  790.155886][T14720] [U] 
[  790.161502][T14644] Memory cgroup out of memory: Killed process 14641 (syz.2.1910) total-vm:137244kB, anon-rss:1268kB, file-rss:22704kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000
[  790.183689][T14720] [U] 
[  790.186532][T14720] [U] 
[  790.189259][T14720] [U] 
[  790.191973][T14720] [U] 
[  790.194687][T14720] [U] 
[  790.201316][T14703] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1922: iget: checksum invalid
[  790.215935][T14720] [U] 
[  790.218677][T14720] [U] 
[  790.221392][T14720] [U] 
[  790.224112][T14720] [U] 
[  790.254447][T14720] [U] 
[  790.257208][T14720] [U] 
[  790.259925][T14720] [U] 
[  790.262636][T14720] [U] 
[  790.286447][T14703] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  790.308828][T14720] [U] 
[  790.389088][T14703] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1922: iget: checksum invalid
[  790.456791][T14703] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  790.519649][T14703] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1922: iget: checksum invalid
[  790.611927][T14703] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  790.721783][T14703] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1922: iget: checksum invalid
[  790.748387][T14731] blktrace: Concurrent blktraces are not allowed on loop2
[  790.771520][T14733] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1928'.
[  790.817197][T14703] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  790.854243][T14703] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  790.884071][T14703] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  791.001910][T14734] GUP no longer grows the stack in syz.0.1929 (14734): 14000-18000 (4000)
[  791.102634][T14734] CPU: 0 UID: 0 PID: 14734 Comm: syz.0.1929 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  791.102675][T14734] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  791.102684][T14734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  791.102698][T14734] Call Trace:
[  791.102706][T14734]  <TASK>
[  791.102716][T14734]  dump_stack_lvl+0x16c/0x1f0
[  791.102756][T14734]  gup_vma_lookup+0x1d2/0x220
[  791.102795][T14734]  __get_user_pages+0x241/0x3590
[  791.102840][T14734]  ? find_held_lock+0x2b/0x80
[  791.102872][T14734]  ? __pfx___get_user_pages+0x10/0x10
[  791.102917][T14734]  get_user_pages_remote+0x243/0xab0
[  791.102959][T14734]  ? __pfx_get_user_pages_remote+0x10/0x10
[  791.102997][T14734]  ? __pfx___might_resched+0x10/0x10
[  791.103032][T14734]  ? noop_dirty_folio+0x5e/0xb0
[  791.103068][T14734]  __access_remote_vm+0x24d/0x850
[  791.103109][T14734]  ? __pfx___access_remote_vm+0x10/0x10
[  791.103150][T14734]  mem_rw+0x20e/0x640
[  791.103194][T14734]  ? __pfx_mem_write+0x10/0x10
[  791.103228][T14734]  vfs_write+0x2a0/0x11d0
[  791.103264][T14734]  ? __pfx___mutex_lock+0x10/0x10
[  791.103305][T14734]  ? __pfx_vfs_write+0x10/0x10
[  791.103347][T14734]  ? __fget_files+0x20e/0x3c0
[  791.103389][T14734]  ksys_write+0x12a/0x250
[  791.103422][T14734]  ? __pfx_ksys_write+0x10/0x10
[  791.103465][T14734]  do_syscall_64+0xcd/0xf80
[  791.103503][T14734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  791.103527][T14734] RIP: 0033:0x7f4f03d8f7c9
[  791.103546][T14734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  791.103569][T14734] RSP: 002b:00007f4f01ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  791.103591][T14734] RAX: ffffffffffffffda RBX: 00007f4f03fe6180 RCX: 00007f4f03d8f7c9
[  791.103606][T14734] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003
[  791.103621][T14734] RBP: 00007f4f03e13f91 R08: 0000000000000000 R09: 0000000000000000
[  791.103635][T14734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  791.103649][T14734] R13: 00007f4f03fe6218 R14: 00007f4f03fe6180 R15: 00007ffd72b0a858
[  791.103680][T14734]  </TASK>
[  792.505134][T14757] vivid-007: =================  START STATUS  =================
[  792.590870][T14757] vivid-007: Generate PTS: true
[  792.627937][T14757] vivid-007: Generate SCR: true
[  792.672967][T14757] tpg source WxH: 320x240 (Y'CbCr)
[  792.715793][T14757] tpg field: 1
[  792.739705][T14757] tpg crop: (0,0)/320x240
[  792.774191][T14757] tpg compose: (0,0)/320x240
[  792.814013][T14757] tpg colorspace: 8
[  792.847696][T14757] tpg transfer function: 0/0
[  792.865115][T14757] tpg Y'CbCr encoding: 0/0
[  792.904285][T14757] tpg quantization: 0/0
[  792.938634][T14757] tpg RGB range: 0/2
[  792.964689][T14757] vivid-007: ==================  END STATUS  ==================
[  793.595556][T14781] FAULT_INJECTION: forcing a failure.
[  793.595556][T14781] name failslab, interval 1, probability 0, space 0, times 0
[  793.658378][T14781] CPU: 0 UID: 0 PID: 14781 Comm: syz.2.1938 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  793.658421][T14781] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  793.658430][T14781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  793.658445][T14781] Call Trace:
[  793.658453][T14781]  <TASK>
[  793.658462][T14781]  dump_stack_lvl+0x16c/0x1f0
[  793.658502][T14781]  should_fail_ex+0x512/0x640
[  793.658528][T14781]  ? kmem_cache_alloc_lru_noprof+0x66/0x770
[  793.658561][T14781]  should_failslab+0xc2/0x120
[  793.658598][T14781]  kmem_cache_alloc_lru_noprof+0x87/0x770
[  793.658627][T14781]  ? inode_set_ctime_to_ts+0x137/0x3b0
[  793.658665][T14781]  ? __d_alloc+0x35/0xa80
[  793.658690][T14781]  ? __d_alloc+0x35/0xa80
[  793.658708][T14781]  __d_alloc+0x35/0xa80
[  793.658732][T14781]  d_alloc_pseudo+0x1c/0xc0
[  793.658759][T14781]  alloc_file_pseudo+0xcf/0x230
[  793.658787][T14781]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  793.658811][T14781]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  793.658851][T14781]  create_pipe_files+0x36d/0x9a0
[  793.658892][T14781]  do_pipe2+0xaf/0x1c0
[  793.658926][T14781]  ? __pfx_do_pipe2+0x10/0x10
[  793.658971][T14781]  ? xfd_validate_state+0x61/0x180
[  793.658993][T14781]  ? __pfx_ksys_write+0x10/0x10
[  793.659034][T14781]  __x64_sys_pipe+0x33/0x50
[  793.659070][T14781]  do_syscall_64+0xcd/0xf80
[  793.659108][T14781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  793.659132][T14781] RIP: 0033:0x7f992258f7c9
[  793.659151][T14781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  793.659175][T14781] RSP: 002b:00007f99233bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  793.659196][T14781] RAX: ffffffffffffffda RBX: 00007f99227e5fa0 RCX: 00007f992258f7c9
[  793.659212][T14781] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  793.659225][T14781] RBP: 00007f9922613f91 R08: 0000000000000000 R09: 0000000000000000
[  793.659240][T14781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  793.659254][T14781] R13: 00007f99227e6038 R14: 00007f99227e5fa0 R15: 00007ffdcb0a13b8
[  793.659284][T14781]  </TASK>
[  793.900756][T14784] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1938'.
[  794.122995][T14790] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1939'.
[  794.329958][T14793] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1941: iget: checksum invalid
[  794.357456][T14793] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  794.396979][T14793] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1941: iget: checksum invalid
[  794.429936][T14793] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  794.487418][T14793] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1941: iget: checksum invalid
[  794.508927][T14064] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  794.508960][T14064] Bluetooth: hci1: unexpected subevent 0x0e length: 725 > 15
[  794.533566][T14064] Bluetooth: hci1: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  794.569189][T14793] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  794.611465][T14793] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.1.1941: iget: checksum invalid
[  794.653241][T14793] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  794.686593][T14793] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  794.720965][T14793] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  796.084038][T14827] FAULT_INJECTION: forcing a failure.
[  796.084038][T14827] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  796.131022][T14827] CPU: 0 UID: 0 PID: 14827 Comm: syz.4.1947 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  796.131063][T14827] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  796.131072][T14827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  796.131086][T14827] Call Trace:
[  796.131094][T14827]  <TASK>
[  796.131103][T14827]  dump_stack_lvl+0x16c/0x1f0
[  796.131143][T14827]  should_fail_ex+0x512/0x640
[  796.131174][T14827]  _copy_to_user+0x32/0xd0
[  796.131201][T14827]  simple_read_from_buffer+0xcb/0x170
[  796.131236][T14827]  proc_fail_nth_read+0x197/0x240
[  796.131276][T14827]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  796.131316][T14827]  ? rw_verify_area+0xcf/0x6c0
[  796.131345][T14827]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  796.131382][T14827]  vfs_read+0x1e4/0xcf0
[  796.131415][T14827]  ? __pfx___mutex_lock+0x10/0x10
[  796.131455][T14827]  ? __pfx_vfs_read+0x10/0x10
[  796.131494][T14827]  ? __fget_files+0x20e/0x3c0
[  796.131535][T14827]  ksys_read+0x12a/0x250
[  796.131567][T14827]  ? __pfx_ksys_read+0x10/0x10
[  796.131607][T14827]  do_syscall_64+0xcd/0xf80
[  796.131645][T14827]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  796.131668][T14827] RIP: 0033:0x7f734798e1dc
[  796.131687][T14827] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  796.131710][T14827] RSP: 002b:00007f7348766030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  796.131732][T14827] RAX: ffffffffffffffda RBX: 00007f7347be5fa0 RCX: 00007f734798e1dc
[  796.131747][T14827] RDX: 000000000000000f RSI: 00007f73487660a0 RDI: 0000000000000004
[  796.131761][T14827] RBP: 00007f7348766090 R08: 0000000000000000 R09: 0000000000000000
[  796.131782][T14827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  796.131796][T14827] R13: 00007f7347be6038 R14: 00007f7347be5fa0 R15: 00007fff8890ef18
[  796.131826][T14827]  </TASK>
[  796.675968][T14835] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1948'.
[  796.937486][T14842] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1951'.
[  796.964661][T14843] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1950'.
[  797.154028][T14845] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1952: iget: checksum invalid
[  797.179098][T14845] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  797.206124][T14845] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1952: iget: checksum invalid
[  797.239915][T14845] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  797.275090][T14845] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1952: iget: checksum invalid
[  797.328862][T14064] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  797.328894][T14064] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[  797.344509][T14064] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  797.360285][T14845] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  797.392114][T14845] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1952: iget: checksum invalid
[  797.419735][T14845] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  797.439571][T14845] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  797.462155][T14845] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  798.253375][T14856] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1955: iget: checksum invalid
[  798.302906][T14856] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  798.370133][T14856] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1955: iget: checksum invalid
[  798.469942][T14856] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  798.596814][T14856] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1955: iget: checksum invalid
[  798.793648][T14856] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  798.942253][T14856] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1955: iget: checksum invalid
[  799.129929][T14856] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  799.282170][T14856] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  799.398535][T14856] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  799.586874][T14882] syz.2.1960 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  799.636121][T14882] CPU: 0 UID: 0 PID: 14882 Comm: syz.2.1960 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  799.636161][T14882] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  799.636171][T14882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  799.636185][T14882] Call Trace:
[  799.636193][T14882]  <TASK>
[  799.636202][T14882]  dump_stack_lvl+0x16c/0x1f0
[  799.636242][T14882]  dump_header+0x101/0x960
[  799.636271][T14882]  oom_kill_process+0x176/0x910
[  799.636299][T14882]  out_of_memory+0x350/0x1700
[  799.636325][T14882]  ? __lock_acquire+0x436/0x2890
[  799.636350][T14882]  ? __pfx_out_of_memory+0x10/0x10
[  799.636384][T14882]  mem_cgroup_out_of_memory+0x118/0x130
[  799.636412][T14882]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  799.636446][T14882]  ? do_raw_spin_unlock+0x172/0x230
[  799.636478][T14882]  try_charge_memcg+0x695/0xd30
[  799.636530][T14882]  ? __pfx_try_charge_memcg+0x10/0x10
[  799.636566][T14882]  ? __print_lock_name+0x51/0xe0
[  799.636598][T14882]  ? rcu_read_unlock+0x17/0x60
[  799.636626][T14882]  charge_memcg+0x8a/0x230
[  799.636662][T14882]  __mem_cgroup_charge+0x2b/0x1e0
[  799.636688][T14882]  do_anonymous_page+0xca9/0x2190
[  799.636724][T14882]  __handle_mm_fault+0x1ecf/0x2bb0
[  799.636757][T14882]  ? __pfx___handle_mm_fault+0x10/0x10
[  799.636784][T14882]  ? __pte_offset_map_lock+0x174/0x310
[  799.636819][T14882]  ? find_held_lock+0x2b/0x80
[  799.636857][T14882]  ? follow_page_pte+0x5cf/0x1390
[  799.636901][T14882]  handle_mm_fault+0x3fe/0xad0
[  799.636931][T14882]  __get_user_pages+0x54e/0x3590
[  799.636978][T14882]  ? __pfx___get_user_pages+0x10/0x10
[  799.637021][T14882]  populate_vma_page_range+0x267/0x3f0
[  799.637060][T14882]  ? __pfx_populate_vma_page_range+0x10/0x10
[  799.637095][T14882]  ? __pfx_find_vma_intersection+0x10/0x10
[  799.637131][T14882]  ? do_mmap+0x69c/0x1210
[  799.637172][T14882]  __mm_populate+0x1d8/0x380
[  799.637210][T14882]  ? __pfx___mm_populate+0x10/0x10
[  799.637249][T14882]  ? up_write+0x282/0x4e0
[  799.637277][T14882]  vm_mmap_pgoff+0x37f/0x470
[  799.637313][T14882]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  799.637346][T14882]  ? do_set_mempolicy+0x220/0x480
[  799.637384][T14882]  ? __x64_sys_futex+0x1e0/0x4c0
[  799.637410][T14882]  ? __x64_sys_futex+0x1e9/0x4c0
[  799.637440][T14882]  ksys_mmap_pgoff+0x7d/0x5c0
[  799.637472][T14882]  ? xfd_validate_state+0x61/0x180
[  799.637498][T14882]  ? __pfx_kernel_set_mempolicy+0x10/0x10
[  799.637537][T14882]  __x64_sys_mmap+0x125/0x190
[  799.637564][T14882]  do_syscall_64+0xcd/0xf80
[  799.637602][T14882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  799.637625][T14882] RIP: 0033:0x7f992258f7c9
[  799.637644][T14882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  799.637667][T14882] RSP: 002b:00007f992339e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  799.637689][T14882] RAX: ffffffffffffffda RBX: 00007f99227e6090 RCX: 00007f992258f7c9
[  799.637704][T14882] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000
[  799.637718][T14882] RBP: 00007f9922613f91 R08: 0000000000000002 R09: 0000000000008000
[  799.637732][T14882] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000
[  799.637746][T14882] R13: 00007f99227e6128 R14: 00007f99227e6090 R15: 00007ffdcb0a13b8
[  799.637777][T14882]  </TASK>
[  800.112723][T14882] memory: usage 3072kB, limit 3072kB, failcnt 166952
[  800.119554][T14882] memory+swap: usage 3508kB, limit 9007199254740988kB, failcnt 0
[  800.127448][T14882] kmem: usage 1768kB, limit 9007199254740988kB, failcnt 0
[  800.134589][T14882] Memory cgroup stats for /syz2:
[  800.134747][T14882] cache 24576
[  800.143167][T14882] rss 1011712
[  800.146828][T14882] rss_huge 0
[  800.151867][T14882] shmem 24576
[  800.155240][T14882] mapped_file 0
[  800.158781][T14882] dirty 0
[  800.161732][T14882] writeback 0
[  800.165028][T14882] workingset_refault_anon 29187
[  800.169984][T14882] workingset_refault_file 33422
[  800.174849][T14882] swap 446464
[  800.178195][T14882] swapcached 188416
[  800.182072][T14882] pgpgin 354851
[  800.185668][T14882] pgpgout 377927
[  800.189218][T14882] pgfault 443197
[  800.192951][T14882] pgmajfault 10957
[  800.196742][T14882] inactive_anon 774144
[  800.200812][T14882] active_anon 442368
[  800.204780][T14882] inactive_file 0
[  800.208729][T14882] active_file 0
[  800.212205][T14882] unevictable 0
[  800.215764][T14882] hierarchical_memory_limit 3145728
[  800.220966][T14882] hierarchical_memsw_limit 9223372036854771712
[  800.227209][T14882] total_cache 24576
[  800.231025][T14882] total_rss 1011712
[  800.235034][T14882] total_rss_huge 0
[  800.238851][T14882] total_shmem 24576
[  800.242663][T14882] total_mapped_file 0
[  800.247015][T14882] total_dirty 0
[  800.250549][T14882] total_writeback 0
[  800.256585][T14882] total_workingset_refault_anon 29187
[  800.262061][T14882] total_workingset_refault_file 33422
[  800.267467][T14882] total_swap 446464
[  800.271276][T14882] total_swapcached 188416
[  800.275697][T14882] total_pgpgin 354851
[  800.279682][T14882] total_pgpgout 377927
[  800.283747][T14882] total_pgfault 443197
[  800.287929][T14882] total_pgmajfault 10957
[  800.292171][T14882] total_inactive_anon 774144
[  800.296809][T14882] total_active_anon 442368
[  800.301288][T14882] total_inactive_file 0
[  800.305461][T14882] total_active_file 0
[  800.309559][T14882] total_unevictable 0
[  800.313613][T14882] anon_cost 0
[  800.316972][T14882] file_cost 0
[  800.320260][T14882] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1960,pid=14876,uid=0
[  800.335326][T14882] Memory cgroup out of memory: Killed process 14882 (syz.2.1960) total-vm:102556kB, anon-rss:2036kB, file-rss:21636kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  803.317789][T14936] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1973: iget: checksum invalid
[  803.453503][T14936] faux_driver regulatory: loading /lib/firmware/updates/syzkaller/regulatory.db failed with error -74
[  803.572872][T14064] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  803.572904][T14064] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[  803.588152][T14064] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  803.606978][T14936] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1973: iget: checksum invalid
[  803.667828][T14936] faux_driver regulatory: loading /lib/firmware/updates/regulatory.db failed with error -74
[  803.713574][T14936] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1973: iget: checksum invalid
[  803.779731][T14936] faux_driver regulatory: loading /lib/firmware/syzkaller/regulatory.db failed with error -74
[  803.843160][T14936] EXT4-fs error (device sda1): ext4_lookup:1785: inode #274: comm syz.0.1973: iget: checksum invalid
[  803.888103][T14936] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -74
[  803.955517][T14936] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -74
[  804.040792][T14936] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  804.915779][T14970] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1983'.
[  804.990036][T14972] vhci_hcd vhci_hcd.0: invalid port number 16
[  805.014731][T14969] Oops: general protection fault, probably for non-canonical address 0xdffffc00000009c0: 0000 [#1] SMP KASAN PTI
[  805.026667][T14969] KASAN: probably user-memory-access in range [0x0000000000004e00-0x0000000000004e07]
[  805.036413][T14969] CPU: 0 UID: 0 PID: 14969 Comm: syz.2.1978 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  805.047372][T14969] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  805.052569][T14969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  805.062636][T14969] RIP: 0010:lru_gen_test_recent+0xee/0x320
[  805.068470][T14969] Code: b8 69 b6 ff 48 85 db 0f 84 79 01 00 00 e8 aa 69 b6 ff 49 8d bd 00 4e 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e a3 01 00 00 4d 63 b5 00 4e 00
[  805.088316][T14969] RSP: 0018:ffffc9000c597828 EFLAGS: 00010206
[  805.094426][T14969] RAX: dffffc0000000000 RBX: ffff888140ef0000 RCX: ffffc9000e2cb000
[  805.102506][T14969] RDX: 00000000000009c0 RSI: ffffffff8207ef16 RDI: 0000000000004e00
[  805.110504][T14969] RBP: ffffc9000c5978c0 R08: 0000000000000001 R09: 0000000000000000
[  805.118492][T14969] R10: 0000000000000001 R11: ffff88803232e6b0 R12: ffffc9000c5978e0
[  805.126479][T14969] R13: 0000000000000000 R14: ffffc9000c5978b0 R15: 000000000000001c
[  805.134468][T14969] FS:  00007f992339e6c0(0000) GS:ffff8881248fc000(0000) knlGS:0000000000000000
[  805.143415][T14969] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  805.150021][T14969] CR2: 0000001b319f5ff8 CR3: 0000000030a48000 CR4: 00000000003526f0
[  805.158009][T14969] Call Trace:
[  805.161300][T14969]  <TASK>
[  805.164246][T14969]  workingset_refault+0x251/0xca0
[  805.169306][T14969]  ? __pfx_workingset_refault+0x10/0x10
[  805.174889][T14969]  ? delete_from_page_cache_batch+0x900/0x9b0
[  805.180989][T14969]  filemap_add_folio+0x23d/0x610
[  805.185988][T14969]  ? __pfx_filemap_add_folio+0x10/0x10
[  805.191479][T14969]  do_read_cache_folio+0x23c/0x5c0
[  805.196625][T14969]  freader_get_folio+0x33a/0x930
[  805.201597][T14969]  freader_fetch+0xbd/0x740
[  805.206124][T14969]  ? __asan_memset+0x23/0x50
[  805.210740][T14969]  __build_id_parse.isra.0+0xdd/0x6c0
[  805.216136][T14969]  ? query_matching_vma+0x48e/0x7d0
[  805.221355][T14969]  ? __pfx___build_id_parse.isra.0+0x10/0x10
[  805.227381][T14969]  do_procmap_query+0xb0e/0x1080
[  805.232423][T14969]  ? __pfx_do_procmap_query+0x10/0x10
[  805.237823][T14969]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  805.243745][T14969]  ? do_vfs_ioctl+0x128/0x14f0
[  805.248547][T14969]  ? __fget_files+0x20e/0x3c0
[  805.253270][T14969]  procfs_procmap_ioctl+0x9d/0xe0
[  805.258326][T14969]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[  805.264067][T14969]  __x64_sys_ioctl+0x18e/0x210
[  805.268871][T14969]  do_syscall_64+0xcd/0xf80
[  805.273408][T14969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  805.279315][T14969] RIP: 0033:0x7f992258f7c9
[  805.283824][T14969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  805.303459][T14969] RSP: 002b:00007f992339e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  805.312095][T14969] RAX: ffffffffffffffda RBX: 00007f99227e6090 RCX: 00007f992258f7c9
[  805.320206][T14969] RDX: 0000200000000080 RSI: 00000000c0686611 RDI: 0000000000000007
[  805.328200][T14969] RBP: 00007f9922613f91 R08: 0000000000000000 R09: 0000000000000000
[  805.336184][T14969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  805.344173][T14969] R13: 00007f99227e6128 R14: 00007f99227e6090 R15: 00007ffdcb0a13b8
[  805.352366][T14969]  </TASK>
[  805.355390][T14969] Modules linked in:
[  805.360265][T14969] ---[ end trace 0000000000000000 ]---
[  805.674860][T14969] RIP: 0010:lru_gen_test_recent+0xee/0x320
[  805.683330][T14969] Code: b8 69 b6 ff 48 85 db 0f 84 79 01 00 00 e8 aa 69 b6 ff 49 8d bd 00 4e 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e a3 01 00 00 4d 63 b5 00 4e 00
[  805.704749][T14969] RSP: 0018:ffffc9000c597828 EFLAGS: 00010206
[  805.711818][T14969] RAX: dffffc0000000000 RBX: ffff888140ef0000 RCX: ffffc9000e2cb000
[  805.720370][T14969] RDX: 00000000000009c0 RSI: ffffffff8207ef16 RDI: 0000000000004e00
[  805.729200][T14969] RBP: ffffc9000c5978c0 R08: 0000000000000001 R09: 0000000000000000
[  805.738183][T14969] R10: 0000000000000001 R11: ffff88803232e6b0 R12: ffffc9000c5978e0
[  805.749252][T14969] R13: 0000000000000000 R14: ffffc9000c5978b0 R15: 000000000000001c
[  805.758210][T14969] FS:  00007f992339e6c0(0000) GS:ffff8881248fc000(0000) knlGS:0000000000000000
[  805.767988][T14969] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  805.775198][T14969] CR2: 00007f99227e1630 CR3: 0000000030a48000 CR4: 00000000003526f0
[  805.786248][T14969] Kernel panic - not syncing: Fatal exception
[  805.792428][T14969] Kernel Offset: disabled
[  805.796790][T14969] Rebooting in 86400 seconds..