last executing test programs:

18m59.748472766s ago: executing program 2 (id=375):
mmap$auto(0x0, 0xa00006, 0x400002, 0x40eb1, 0x602, 0x300000000000)
r0 = socket(0x2, 0x1, 0x106)
bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x400008, 0xdc, 0x9b72, 0xffffffffffffffff, 0x8000)
r1 = socket(0x11, 0x0, 0x0)
getsockopt$auto(r1, 0x84, 0x20, 0x0, 0x0)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x13e, 0x0, 0xfffffffffffffffd)
r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/net/rds/tcp/rds_tcp_sndbuf\x00', 0x40001, 0x0)
write$auto(r2, &(0x7f0000000000)='\x00', 0x34)
write$auto(0x3, 0x0, 0xfffffdef)
open(&(0x7f0000000040)='./file0\x00', 0x169443, 0x114)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xf, 0x3, 0x2)
r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
ioctl$auto(r1, 0xc0585605, 0xffffffffffffffff)
bpf$auto(0x100000001, 0x0, 0x0)
write$auto(r3, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)

18m58.537551597s ago: executing program 2 (id=377):
r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000000800)='/dev/snd/pcmC1D1p\x00', 0x200, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_STATUS_EXT32(r0, 0xc06c4124, 0x0)
sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x8010)
bpf$auto(0x4, 0x0, 0x4f4)
mmap$auto(0x0, 0x6, 0xdb, 0x9b72, 0x2, 0x8000)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyaf\x00', 0x400000, 0x0)
socketpair$auto(0x1, 0x5, 0x0, 0x0)
mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
ioctl$auto_BLKTRACESETUP2(0xffffffffffffffff, 0xc0481273, 0x0)
io_uring_setup$auto(0x6, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000040)='/proc/kmsg\x00', 0x80900, 0x0)
select$auto(0x10, 0x0, 0x0, &(0x7f0000000140)={[0x1ff, 0x4, 0xd3e, 0x1, 0x948b, 0x3, 0x800295f4da0a, 0x2, 0x3, 0x62, 0x80000001, 0x50a7, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffe]}, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7f, 0xd, 0x1, 0x948f, 0x1005, 0x206, 0x7, 0xfffffffffffffff6, 0x7, 0x9, 0x79d, 0x6, 0x100000003000000, 0xfffffffffffffffe, 0xf]}, 0x0)

18m57.356873421s ago: executing program 2 (id=380):
r0 = openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x1c1041, 0x0)
write$auto_fuse_dev_operations_fuse_i(r0, &(0x7f0000000440)="11000000020000000005000000000000", 0x10)

18m56.957157497s ago: executing program 2 (id=383):
r0 = openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f0000003b80)='/dev/snd/pcmC0D0c\x00', 0x8100, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_HW_REFINE2(r0, 0xc2604110, 0x0)
r1 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001a80)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x2, 0x0)
socket(0x10, 0x3, 0x6)
sendmsg$auto_NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="013603b7", @ANYRES16=0x0, @ANYBLOB="000227bd7000fbdbdf250100000008000b002c010000e0002d80c500c880040054809ad9b167f7a912e0f4b130f09b4a0d4e9329190f6bfabf21e00d9e0e6dac1c274649f9dc5067b857d80112dfd2f69754f98e662a16991b088ed19efb3f07c4037a186f68a581c982e25681e7589713a70f11606ed0d33960b2fff7cee645ab0cb08c1b36800f9d8b6a9f3c9c32a40b207fcdaf8572559aad68b5e45adfc413283c7269638259c4c5f4d0a8fad3b0627b96b6c41167ff22a3974fb4ab87ecec6bcba509815b79516126a9d715f73231e386c4385343b5c5287304000a000000000800aa00ffffffff0c00278008002300ac141420"], 0xfc}, 0x1, 0x0, 0x0, 0x2000c800}, 0x8000)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
socket(0x10, 0x2, 0x4)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dmmidi2\x00', 0x2082, 0x0)
socket(0x10, 0x3, 0x6)
r2 = socket(0x10, 0x2, 0x4)
r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r3, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES64=r3, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e800", @ANYRES32=r2, @ANYBLOB="0800fb"], 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x50)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
write$auto_ftrace_subsystem_filter_fops_trace_events(r1, 0x0, 0x0)

18m56.769138517s ago: executing program 2 (id=384):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x29, 0x2, 0x0)
setsockopt$auto(r0, 0x119, 0x1, 0x0, 0x8)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
io_uring_setup$auto(0x1, 0x0)
futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
tkill$auto(0x1, 0x7)

18m54.381546574s ago: executing program 2 (id=391):
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8003)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)

18m53.722028801s ago: executing program 32 (id=391):
mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8003)
mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0)

9m19.631469573s ago: executing program 3 (id=2570):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0x7fffffff)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
kexec_load$auto(0x6, 0xb, 0x0, 0xe0000000)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
r1 = openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/tracing/tracing_cpumask\x00', 0xa901, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x2, 0x801, 0x106)
getsockopt$auto(0x3, 0x6, 0xb, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_SET_QOS_MAP(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20080800}, 0xc, &(0x7f0000000100)={&(0x7f00000005c0)={0xdc, r2, 0x4, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_SSID={0x21, 0x34, "4a55073f4ab9bc4133c08835cd83c7c798aa80c87e32a66335e171a239"}, @NL80211_ATTR_VHT_CAPABILITY={0x1f, 0x9d, "4cc8ec59d5de934064e4a1d62af5d94053b56550e78b5f3ea90987"}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x9}, @NL80211_ATTR_HT_CAPABILITY={0x73, 0x1f, "354390a037fd44db40ab857484f5a795fdca3edd103a5b5545ada91c287fdda0beae4d56abc9f8f74bfe65e1b7b4a7555eb64e2901ef2a1307f2e40e0f1727175de12455ad4f3163b6a77139987c86a68288d7e1bb3969acdc03696745fb6ade50414deb4260b01ad0b665421f0101"}, @NL80211_ATTR_BSS_DUMP_INCLUDE_USE_DATA={0x4}, @NL80211_ATTR_TDLS_SUPPORT={0x4}]}, 0xdc}, 0x1, 0x0, 0x0, 0x28000045}, 0x2400d010)
write$auto(r1, 0x0, 0x2)
shutdown$auto(0x200000003, 0x2)
poll$auto(0x0, 0x20000009, 0x100)
read$auto(0x3, 0x0, 0x82)

9m19.024327416s ago: executing program 3 (id=2572):
socket(0xa, 0x3, 0x3a)
prctl$auto(0x39, 0x1, 0x0, 0x0, 0x0)
unshare$auto(0x40000080)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio1\x00', 0x8000, 0x0)
read$auto(r0, 0x0, 0x8)
socket(0x1e, 0x805, 0x0)
openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x802, 0x0)
ioctl$auto(0x3, 0x40045532, 0x38)
openat$auto_snd_pcm_f_ops_pcm1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/pcmC1D0c\x00', 0x88c00, 0x0)
socket(0xf, 0x3, 0x2)
select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0x100, 0x1, 0x9, 0x3, 0x95f4da30, 0xc, 0x8000000000000000, 0x62, 0x400000000000008, 0x7, 0x6d3f, 0x1, 0x5, 0x5]}, 0x0)
close_range$auto(0x2, 0x8, 0x0)

9m17.682199433s ago: executing program 3 (id=2577):
openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
fstat$auto(0xffffffffffffffff, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_TZ_GET_TEMP(0xffffffffffffffff, 0x0, 0x405b)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000336bd7000fedbdf2502"], 0x24}, 0x1, 0x0, 0x0, 0xc005}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa507}, 0x3f00}, 0x7, 0x8)

9m17.473532181s ago: executing program 3 (id=2580):
keyctl$auto(0xd, 0x1, 0x0, 0x5eaf, 0x400000000000091)
r0 = openat$auto_ftrace_subsystem_filter_fops_trace_events(0xffffffffffffff9c, &(0x7f0000007380)='/sys/kernel/tracing/events/vmalloc/filter\x00', 0x109041, 0x0)
write$auto(r0, &(0x7f0000008d40)=' \v\xb0]E\x00', 0x3)
socket(0x1a, 0x80000, 0x4)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
fsmount$auto(0x80, 0x1, 0x10)
io_uring_setup$auto(0x1, 0x0)
setsockopt$auto(0x3, 0x1, 0xf, 0x0, 0x9)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
madvise$auto(0x200000000000000, 0x8fff, 0x19)
mmap$auto(0x0, 0x40009, 0x8000df, 0x9b72, 0x7, 0x40000028000)
r1 = socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x261c2, 0x184)
openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000080)='/proc/kpageflags\x00', 0x2, 0x0)
readv$auto(r1, &(0x7f00000000c0)={0x0, 0x101d0}, 0x400)
ustat$auto(0x801, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x2, 0x0)
r2 = socket(0x2, 0x1, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x155)
socket(0x2, 0x1, 0x106)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a)
socket(0x2, 0x1, 0x106)
listen$auto(0x3, 0x81)
sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd)

9m16.731637857s ago: executing program 3 (id=2584):
mmap$auto(0x0, 0x10005, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
ioctl$auto(0x3, 0x5411, 0x38)
io_uring_setup$auto(0x1, 0x0) (async)
io_uring_setup$auto(0x1, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x10100, 0x0) (async)
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x10100, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_DRAIN2(0xffffffffffffffff, 0x4144, 0x0)
ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
socket(0xa, 0x3, 0x3b)
mq_getsetattr$auto(0x3, &(0x7f00000000c0)={0x0, 0xe, 0x5, 0xce}, 0x0) (async)
mq_getsetattr$auto(0x3, &(0x7f00000000c0)={0x0, 0xe, 0x5, 0xce}, 0x0)
connect$auto(0x3, 0x0, 0x58) (async)
connect$auto(0x3, 0x0, 0x58)
prctl$auto(0x3e, 0xfffffffffffffffd, 0x0, 0x1, 0x5)
process_vm_readv$auto(0x0, &(0x7f0000000080)={&(0x7f0000000140)="d4b3820813a5817d334094e0797844539bd3c2cc0b955eb3f76ee40eccb4220000000000000001911d2fa41da5063a6954e8b0ceea3a4d9133f10b17036cf1ff99c1fcbbc8a3e9983a15fd14820e9ce0243042b8a6c19049dcfc2e5d6746b73865abb89d2dfb5e1db2516ae07758e85e10ea56692d4070a0eb64698b90c57767015a18e5bf38d66a4988a19ce95fb109000000a5e939b1c800000000000000424252e86f7258681c809ee4df47b4083dcade9d0a384119799c35169ec0cca23fa2326ae093a12c085bf2b0345cdf4f21f15e21c995a432ce0f5eec43eda8e069a4c98f5d68f5505cf2bc73f1911f0269", 0xf572}, 0xfffffffffffffffd, 0x0, 0xfffffffffffffffe, 0x7)
mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x401, 0x8000) (async)
mmap$auto(0x0, 0x400, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x80102, 0x0)
ioctl$auto(0x3, 0x80000541b, 0x38)
recvmmsg$auto(0x3, 0x0, 0x3, 0x4, 0x0)
openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x60800, 0x0)
r1 = openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, 0x0, 0x18501, 0x0)
openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x8202, 0x0) (async)
r2 = openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f0000000080), 0x8202, 0x0)
ioctl$auto_SNDRV_TIMER_IOCTL_GPARAMS(r2, 0x40485404, 0x0) (async)
ioctl$auto_SNDRV_TIMER_IOCTL_GPARAMS(r2, 0x40485404, 0x0)
preadv$auto(r1, &(0x7f0000009180)={0x0, 0x7}, 0x26, 0x800000000080, 0x5) (async)
preadv$auto(r1, &(0x7f0000009180)={0x0, 0x7}, 0x26, 0x800000000080, 0x5)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) (async)
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0)
connect$auto(0x3, 0x0, 0x0)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x0, 0x0)
capset$auto(0x0, 0x0) (async)
capset$auto(0x0, 0x0)
ioprio_set$auto(0x3, 0x0, 0x4b34)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)

9m16.085915777s ago: executing program 3 (id=2588):
r0 = socket(0x10, 0x2, 0x10) (async)
bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68)
r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range$auto(r0, r1, 0x8)
pidfd_send_signal$auto_SIGCONT(r1, 0x12, 0x0, 0x3ff) (async)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x7fffffffffffffff) (async)
getpgrp(0x0) (async)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) (async)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
r3 = socket(0x15, 0x5, 0x0) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) (async)
r5 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x82141, 0x0)
ioctl$auto(r5, 0x901064aa, 0xffeffffffffffdff) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="f2000000", @ANYBLOB="b8d81fc7eb3e77c417a406bc8eaa2cc31d6177e25481f07af99066c81acac7c3ede90c9c6faf0b81d7f7264f47010ffcf3b578a622e5c591abd44a541e1e133812ce137323e77d27e26293", @ANYRES8=r6], 0x1ac}, 0x1, 0x0, 0x0, 0x24040040}, 0x94) (async)
ioctl$auto_SNAPSHOT_SET_SWAP_AREA(0xffffffffffffffff, 0x400c330d, &(0x7f00000000c0)={0x4, 0x8})
sendmmsg$auto(r4, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0x8000000000000001}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async)
mmap$auto(0x69800000000, 0x20000000000100, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
utimes$auto(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)={0x9, 0xf9}) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
setuid$auto(0x800000000008)

9m0.858277654s ago: executing program 33 (id=2588):
r0 = socket(0x10, 0x2, 0x10) (async)
bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68)
r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range$auto(r0, r1, 0x8)
pidfd_send_signal$auto_SIGCONT(r1, 0x12, 0x0, 0x3ff) (async)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x7fffffffffffffff) (async)
getpgrp(0x0) (async)
mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) (async)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
write$auto(r2, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0x6, 0x0) (async)
r3 = socket(0x15, 0x5, 0x0) (async)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0)
sendmsg$auto(r3, &(0x7f0000000180)={&(0x7f0000000040), 0x7fc, 0x0, 0x8, 0x0, 0x1, 0x4}, 0x0) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
remap_file_pages$auto(0x6a27, 0x1000, 0x0, 0x3, 0x4) (async)
r5 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/renderD128\x00', 0x82141, 0x0)
ioctl$auto(r5, 0x901064aa, 0xffeffffffffffdff) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="f2000000", @ANYBLOB="b8d81fc7eb3e77c417a406bc8eaa2cc31d6177e25481f07af99066c81acac7c3ede90c9c6faf0b81d7f7264f47010ffcf3b578a622e5c591abd44a541e1e133812ce137323e77d27e26293", @ANYRES8=r6], 0x1ac}, 0x1, 0x0, 0x0, 0x24040040}, 0x94) (async)
ioctl$auto_SNAPSHOT_SET_SWAP_AREA(0xffffffffffffffff, 0x400c330d, &(0x7f00000000c0)={0x4, 0x8})
sendmmsg$auto(r4, &(0x7f0000000080)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0x8000000000000001}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (async)
mmap$auto(0x69800000000, 0x20000000000100, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
utimes$auto(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)={0x9, 0xf9}) (async)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async)
setuid$auto(0x800000000008)

7m17.84298001s ago: executing program 5 (id=3209):
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000)
r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/fail-nth\x00', 0x220800, 0x0)
write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x5)
flock$auto(r0, 0x5)
getsockopt$auto_SO_TXREHASH(r0, 0x8, 0x4a, &(0x7f00000001c0)='/sys/devices/platform/i8042/serio1/resolution\x00', &(0x7f0000000040)=0x5)
fsetxattr$auto(0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
ioctl$auto_TCSBRKP2(0xffffffffffffffff, 0x5425, 0x0)
openat$auto_vhost_net_fops_net(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x20009, 0x20004000000000df, 0xeb1, 0xffffffffffffffff, 0x8000)
uname$auto(0x0)
r2 = socket(0xa, 0x3, 0x3a)
ioctl$auto(r2, 0x890b, 0x1)
openat$auto_tracing_buffers_fops_trace(0xffffffffffffff9c, 0x0, 0x1000, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0x3, 0x9b72, 0x2, 0x6)
syz_genetlink_get_family_id$auto_macsec(&(0x7f0000000180), r2)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000100), 0xffffffffffffffff)
mmap$auto(0x2, 0xaa06, 0xdf, 0xeb1, 0xffffffffffffffff, 0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f00000009c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'netdevsim0\x00', <r5=>0x0})
sendmsg$auto_ETHTOOL_MSG_CABLE_TEST_ACT(r3, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000a00)={0x20, r4, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CABLE_TEST_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40801}, 0x80)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x14f602, 0x0)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)

7m16.171530889s ago: executing program 5 (id=3217):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0xa, 0x2, 0x0) (async, rerun: 32)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9) (async, rerun: 32)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) (async)
socket(0xa, 0x3, 0x3b) (async)
connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58)
r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async, rerun: 64)
close_range$auto(0x2, 0xa, 0x3) (async, rerun: 64)
r1 = socket(0x1d, 0x80000, 0x3) (async, rerun: 64)
r2 = socket(0xa, 0x3, 0xff) (rerun: 64)
connect$auto(r2, &(0x7f00000018c0)=@generic={0xa}, 0x55) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7fffffe) (async)
mmap$auto(0x200, 0x400008, 0x200, 0x9b72, r1, 0x6) (async, rerun: 64)
write$auto_proc_mem_operations_base(r0, &(0x7f0000001680)="a7", 0x1) (rerun: 64)
mmap$auto(0x0, 0x20009, 0x4001000000df, 0xeb1, 0x401, 0x8000) (async, rerun: 32)
syz_clone3(0x0, 0x0) (rerun: 32)
madvise$auto(0x1ffff000, 0x7, 0x100000000)
sysfs$auto(0x2, 0x20, 0x0) (async)
fsopen$auto(0x0, 0x1) (async, rerun: 64)
mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x20000000000006, 0x2) (async, rerun: 64)
shmget$auto(0x8, 0x10563, 0x568d1af2)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event2\x00', 0x20081, 0x0) (async)
mmap$auto(0x0, 0x40008, 0xe2, 0x9b72, 0x7, 0x28000)
socket(0x2, 0x3, 0x4) (async, rerun: 32)
socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) (async, rerun: 32)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)

7m14.767647545s ago: executing program 5 (id=3221):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
set_mempolicy$auto(0x3, 0x0, 0x3) (async, rerun: 64)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async, rerun: 64)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async, rerun: 32)
r0 = socket(0x10, 0x2, 0x6) (rerun: 32)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4004) (async)
openat$auto_msft_opcode_fops_(0xffffffffffffff9c, 0x0, 0x2, 0x0) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r1 = socket(0x23, 0x5, 0x0)
bind$auto(r1, &(0x7f0000000140)=@phonet={0x23, 0x6, 0x0, 0xa3}, 0x80) (async, rerun: 32)
r2 = socket(0x23, 0x5, 0x0) (rerun: 32)
bind$auto(r2, &(0x7f0000000140)=@phonet={0x23, 0x6, 0x0, 0xa3}, 0x80) (async)
socket(0x1e, 0x4, 0x0) (async)
r3 = socket(0x1e, 0x4, 0x0) (async)
get_robust_list$auto(0x0, 0x0, 0x0)
setsockopt$auto(r3, 0x10f, 0x87, 0x0, 0x14)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram12\x00', 0x10d680, 0x0) (async)
r4 = prctl$auto(0x3, 0x80, 0x7fffffffefff, 0x0, 0x0) (async)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) (async)
getrandom$auto(0x0, 0x6000000, 0x3)
mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x2, 0x2) (async)
io_uring_register$auto(0xffffffffffffffff, 0x3f, 0x0, 0x1)
sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4080}, 0x4) (async)
madvise$auto(0x0, 0x2003f0, 0x18) (async)
setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14)
recvmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7fe}, 0x1000}, 0xffffffff, 0x4, 0x0)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (async)
sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) (async)
socket(0x2, 0x80002, 0x73)

7m13.912350943s ago: executing program 5 (id=3227):
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/hugetlb.1GB.rsvd.limit_in_bytes\x00', 0xc2683, 0x0) (async)
r1 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
ioctl$auto_IMDELTIMER(r1, 0x80044941, 0x0)
adjtimex$auto(&(0x7f0000000200)={0x5f95, 0x0, 0x2, 0x2000000a, 0xff7d, 0xbc58, 0x4000005, 0x0, 0x5, 0x8, 0x80000000, {0x7ff, 0x10}, 0x2744, 0x200000001, 0xff, 0x7, 0x0, 0x3c8, 0x8, 0x8, 0xffffffffffffffff, 0x1560cc85, 0x9}) (async)
mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0x2, 0x8000)
renameat2$auto(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x7) (async)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="01002cc47000ff771fe7b28ba400d4407f00000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x8000841) (async)
statmount$auto(0x0, &(0x7f0000000180)={0xa, 0x1, 0x44f, 0x759, 0x5, 0x7181, 0x1ffde, 0x7, 0xfffffffffffffffa, 0x8, 0x9, 0x80003, 0x4, 0x200000000005, 0x384, 0x9, 0xb10, 0x10006, 0x400007f, 0x7, 0x0, 0xe, 0x22000, 0x200, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x7, 0x0, 0x25c3, 0x0, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x196fc46e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd]}, 0x1fa, 0xd) (async)
r2 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000000), 0x28002, 0x0)
ioctl$auto__ctl_fops_dm_ioctl(r2, 0xfffffff7effffd05, &(0x7f00000001c0)) (async)
munmap$auto(0x7, 0x0)

7m13.513553918s ago: executing program 5 (id=3231):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x2, 0x5, 0x0)
mmap$auto(0x1000, 0x9, 0xc00000072, 0x8b72, 0x1000000002, 0x8000) (async)
close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) (async)
r0 = socket(0xa, 0x3, 0x6) (async)
clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) (async, rerun: 64)
socket(0x11, 0x5, 0x3) (async, rerun: 64)
setsockopt$auto(0x3, 0x10000000084, 0x17, 0x0, 0x3ff) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xac201, 0x0)
socket(0x2, 0x5, 0x0) (async)
openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mtd0\x00', 0x2120c0, 0x0) (async)
rseq$auto(&(0x7f0000000100)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0xffffff4d, "72c53335fbfa2eb3845b1e63c778855a687803e12d1eb2d43e0e6215fa47d7dcb3a3834d60884056cc63b36e199b9448b8f7ae7a5687bcd0be5c086a938ee8625a09614a688bba9a"}, 0x8000, 0x0, 0x6) (async)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event0\x00', 0x3498c2, 0x0)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) (async, rerun: 64)
close_range$auto(0x2, 0x8, 0x0) (async, rerun: 64)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
ioctl$auto(0x3, 0xae41, r2) (async)
ioctl$auto_KVM_GET_MSRS(r1, 0x4140aecd, &(0x7f0000000080)={0x42})
setsockopt$auto(0x4, 0x0, 0x484, 0xfffffffffffffffe, 0x20) (async)
bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x43, 0x1, 0x3}}, 0x462) (async, rerun: 64)
clock_gettime$auto(0xa, 0x0) (async, rerun: 64)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x0, 0xb}, 0x800009}, 0x5, 0x20000000) (async)
r3 = prctl$auto_PR_SET_MM_START_CODE(0x140000, 0x1, 0x0, 0x8, 0x9)
writev$auto(r0, &(0x7f00000000c0)={&(0x7f0000000080)="def88355d24d5820f7abc30c9f626f8d60b720d516c899690dabc7ef678a8344bdedf11e7275cef9e4b368551d663922e8b4fecbea", 0xfffffffffffffffe}, 0x9) (async)
ioctl$auto_TUNGETDEVNETNS(r3, 0x54e3, 0x0) (async, rerun: 32)
close_range$auto(0x2, r3, 0x0) (rerun: 32)

7m12.073736899s ago: executing program 5 (id=3242):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd7\x00', 0x80000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fddbdf2503000000040007800c00020005000000000000000800010007"], 0x2c}, 0x1, 0x0, 0x0, 0x20004080}, 0x8880)
r2 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000001f40)='/dev/binderfs/binder1\x00', 0x241, 0x0)
ioctl$auto_BINDER_VERSION(r2, 0xc0046209, &(0x7f0000001f80))
unshare$auto(0x40000080)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
connect$auto(0xffffffffffffffff, 0x0, 0x32)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/pid_for_children\x00')
fremovexattr$auto(r3, &(0x7f0000000000)='system.posix_acl_access\x00')
exit$auto(0x6)
msgsnd$auto(0x9, 0x0, 0xfffffffffffffffd, 0x4)

6m56.647486902s ago: executing program 34 (id=3242):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nbd7\x00', 0x80000, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff)
sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fddbdf2503000000040007800c00020005000000000000000800010007"], 0x2c}, 0x1, 0x0, 0x0, 0x20004080}, 0x8880)
r2 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000001f40)='/dev/binderfs/binder1\x00', 0x241, 0x0)
ioctl$auto_BINDER_VERSION(r2, 0xc0046209, &(0x7f0000001f80))
unshare$auto(0x40000080)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x8000000000000000, 0x15)
connect$auto(0xffffffffffffffff, 0x0, 0x32)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/pid_for_children\x00')
fremovexattr$auto(r3, &(0x7f0000000000)='system.posix_acl_access\x00')
exit$auto(0x6)
msgsnd$auto(0x9, 0x0, 0xfffffffffffffffd, 0x4)

6m23.829796394s ago: executing program 4 (id=3366):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
mseal$auto(0x0, 0x7dda, 0x5)
read$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f0000000080)=""/173, 0xad)
clock_nanosleep$auto(0x2, 0x6, &(0x7f0000000840)={0x0, 0xc025}, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0)
mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000180)='nfsd\x00', 0x8, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x40bc2, 0x1c0)
write$auto(r0, &(0x7f0000000100)='\xea\x85\x92\x06(#\xc4\xb6(\x9e\xfcKG\xc2\xd4\xc0\v\x02\x9f%C\x00\x01\x00@!\xa9\xce\x10Y\xd0\xeb\xed\x7f\xc8\xdc(\xd3\xe9\xf3\xddT\x18\x16#\xfdQ5\xaeA\xc3\xeay\x7f\xa2TR|js\xfd\n\xa3\x98\xc8\x91\xdd\x9e\x99}s\xe0x\a\x00\x00\x00\x00\x00\x00\x00.\xa8\xc5\xdbKx\x14l\xe6\x868\xb3\xd2\x00\xea\xf9\xd1z\x8f\xd9\x877J\"\xab\xf9\xdf\xbf\xa1\xa1ms\xaf\xd9&R\x03\x00\xc0u \xc3\xc2\xd61\x97V\xcah\r\x97M\xdb\xf9\x06\x95Z\xdfK\xbeY#/\xf5g\n\x10#\x10@Ft\x9c\xd9\xd3s\x94\x8aV\xeb\xee`e9(\xe0\x88\x06\xa6-;ZM\x9b\xe1-', 0x9)
sendfile$auto(r0, r0, &(0x7f0000000000)=0x1, 0xb5d)
r1 = openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, 0x0, 0xc0000, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x240001, 0x0)
bpf$auto(0x1000, &(0x7f0000000100)=@bpf_attr_4={0x5, r1, 0xa9, 0x4}, 0x6f4)
r3 = clone3$auto(&(0x7f0000000280)={0x1, 0xb, 0x4, 0x7fffffff, 0x3, 0x4, 0xfffffffffffffffe, 0x9, 0x1, 0x0, 0x5}, 0x3)
prctl$auto(0x3e, 0x35, r3, 0x9, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/afs/cells\x00', 0x10802, 0x0)
msync$auto(0x1ffff000, 0x180000000000000, 0x400000004)
fsconfig$auto(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram1/queue/read_ahead_kb\x00', 0x181482, 0x0)
mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0xa, 0xb8, 0x10, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", <r4=>0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0xf)
bpf$auto(0x1a, &(0x7f0000000380)=@link_create={@map_fd, @target_ifindex=r4, 0x3, 0x81, @uprobe_multi={0x81, 0x1ff, 0x3d7e, 0x0, 0x1, 0x4}}, 0x92)
madvise$auto(0x0, 0x2003f0, 0x15)

6m22.655657423s ago: executing program 4 (id=3370):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x5, 0x0)
setsockopt$auto(r0, 0x0, 0x2a, 0x0, 0x108)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_vga_arb_device_fops_vgaarb(0xffffffffffffff9c, &(0x7f0000002f80), 0x2, 0x0)
r1 = openat$auto_fops_u64_ro_(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/zswap/reject_compress_fail\x00', 0x0, 0x0)
shmctl$auto_IPC_INFO(0x48000000, 0x3, &(0x7f0000001400)={{0x6, <r2=>0xee01, 0x0, 0x7, 0x80, 0x7, 0x8001}, 0x0, 0x1, 0x1, 0x0, @inferred, @inferred=0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)="82afebead712893a20df3da96fd698bedc57edc901e7a56c8464b8cb8ad2006431927ae0", &(0x7f0000001480)="e165a830fd64793ed1545cc4a05583e93491cb08c152adf6f26a2400ebb5ae98f469d6475d3fa415c6706b62300994240f969b86fc49401d30d6ee2257494cc6abc60d05bb3b04d657c64a2161933ab83afb6b4b5608931e18fc83e2fa173a9282b270a3d918bb8d4a0f786b9b1b2506fc375100000000000000000000000000000006c0b98383d12642b46cf74314715028f30daa7c693941a20e57d54bbb376086bd4ad5841dc625a38dde8848e5ea11e09ba4"})
shmctl$auto_SHM_UNLOCK(0x3, 0xc, &(0x7f0000001280)={{0x200, r2, <r3=>0xffffffffffffffff, 0x0, 0x9, 0x7, 0xf03}, 0xe, 0x3, 0x3ff, 0x5, @inferred=0xffffffffffffffff, @raw=0x2b37, 0x6200, 0x0, &(0x7f0000001180)="587b71fcc2823ddca36e05d10da653fbfb7f5ad537cce7780711564a76fbbf", &(0x7f00000011c0)="2a3039aac69d005a4356aee16f63763d220a1ff4d8286eb5945ebb1c5686ea14be27a1a689734226f4f132122a1ac236e5b6b935af643b784431417841504d7befa763548b5126fd3d62357c37a2515d2158c020d65282ad7f03302af2dafb7cd0accd769ba16a36bc1abf541e6fc5b95b86ed5658fdc12d5e0bc6b39f1ff84bfff4f5635b8a65b5500580801788c7566ccdd70934b665ca7487393c"})
fsconfig$auto_FSCONFIG_SET_FD(r1, 0x5, &(0x7f0000000100)='/dev/video13\x00', &(0x7f0000000180)="4bfd4a0814a2b543ab96ac8ead1509e8bab1dfd23554c604b75f767de339e8fc89cfb76e5fa7a8572e4f35d29bb3d2d929f07d61440e33dff3751bc95345ea9a729b39ec26c65f8fa7f3be27e8d901a9ab6996f0f43fb31a8a1e00fde67f9d15a9c33766b825b10bc2d9b47750105fc5820d00163162e06da99667b5beff5c41c7fd6e39a28349380001ffaf41a30d31df90741966e7afaf39371a82b5be045bf884c94c37c6cb95eb5a85fe7f876e202961d81b0c17b0d521478097b1a66a91e8a615a438b8e0352f8da52f690bcd4b22549ded25b1cc8904593456c98ab584297f0af64f45acadd3e6370719b88ee10b6a6d632199081492a3470e7f701f2ae74b2afc259c79089733c35d7d445b0a78c4ddfce5bd149c219380045d4c0cbcdb6dc6eccfb4168d7eca89942472ea42b70d147878bdc0bb3d353128bb08daff29c1652fc79216169491daacb5319832a692576ee6b06421dcb72e88808a4e8a7dffd33d250b2f3412ca887ad94853995bfe34df4a68fbcb5a98b514faea361d9361446eb033947128ba639289d34f4d37e7d1cc0183ef14406ee5a7ca8ca6a3f9b11f666fb75275211e22b58c11d63875723601a0cd501cbf04df35aa9fb2164d69ec08bc4ea7cfd74e3e0c7397da8bbc50260dfd02f357021056b82d5bf91b7ca401e0470bf48acd09df1d985492fe3feddddbbdba6be77f9d0c59ea869b43b5ad61dc34075966027f0dd869f8454008159e9d6849a3a00f57c8f9c90b07bbcd187dedc8650ded25422d05233148fbb124716c259f33d0a3b04fba7f247d9df9cd1ef33812ed9e03d3fc38da744fa38ca5133c2f5f20e3946a7334cf8c5ae430f19a6b119cf40fb88846db9d8a72093b5dd10891eb0fe69489476bb4c245dd68126d9387f3bf291a8f6b50c7cdc35f0d11c2897de41388e74484b7d8736dc2e970d4f89361129607fe96cd81cb35510d8fa213a622d1dd93221b09352a2780fbadd8ee2652d812f6737b2f46096534244d801d6a9dbc50663f03fc0cd0d8a2882a8ac890473af45802c0975b3a8dd8abf0be67c8f7bb2ec1e78c94db9caf8b82093915a189505741059b8ce158a7c4a58ec96ef4e4dd7aad8316bf7fd4892ee61dbad756497fd32eb487320496572a0f6a05a39e95ee11465a99f790d8b6727bbb1bc0b1d24d06b7dbb868730e06880867313f8d40277f414be27ba8fa9e36eeb6a239d9a968b81657c8f1782a97d2a80dee8029253915a2388da428a9464e76024aa0bda8788eb11d1d6cde9e04fcea7d8be55148aefd5f4cb72759a1cced207340891c94faa719c1f03ae970a6145540debba8f782ef4e35861657d056b350e0cdc71fd557e3a71b9df55189c4827e2f8c2357221e32abab88761a7c26f89569bc3151fe0ee40ac9d28dcf5b1d0f8a5af78c4c7f5b7b633da98a2402de878acb572d1e1b6cdc4ce49d19a6b2d525fdb80adae2f1a60f5b203a462b936ff42d919785bd9bb4b4c8eb908a56595f467e0c2ab8da49a082e3856cb48dfdb2d3ce104b4caf931fbb1b2577314c23d6f55f5997d97b1db9cda4c335a3ef0e52bb3669436547e6a62afe4f244b73ed3aa64c8d540b837c4a770fdf5092fd80e565eb26fab6e536125f58d03eb0d570a5f873e86e7040f1781c3f01d79d905b3cfdca0970c3f83ee6b2d15b84919ba845589334b06fe93c778e128df6bfc64354d606f0abef579d063b77941124a0cad9921121e95fb32fbceb6def8751b796662d95ebc31316164b39c117fc5043dedb340957f239156486f5298f81aa003d1e067f5f528bed5f166279f90b2b565a53eb172cdffe50f0f8ffff68edd244cd33d0d2d6a7312dbb049c83d750804f90c89342adaf012379eb1af4cce89c5a2efce87109d5bbff153df984a31cc8ef1ad65ec48c7813436ac1e1a3a8ba53cefbae59fe996f3863cc74fbd2404f17fb96d3f74affd7384a246153ae150ea31ffd1b20c40665aa54034f792b9711552954aaf5cff0c9994cd44859b9f1c7cf898ce220b48ea920428ef730f8f86a4bab96e44565fb49fd0420be27fdb3d72d8c39df330f356d891951f48de6db7e6eea5e16fde4f470d51591b2a973043939cde71950945cc2a7082bbd6e088a5b65efbb9351aa21d1145bc514ab85793e55f210cbfba749e10fcd100ca0b71ac96a1ba75273475e1afb82704e6497000f63fbad0da4cce4f4fed3a7d39f1b9c5d3f5c0850b2005ffafe534beeb0480b4d6afc75895dfdffdf0000325ef6e4c659b8f8783e86436995213b5a90a0362e2e40cacda160291cba962eb0470ec640c16106a321ac120874512909dbd01c0c867baa6b8b0089e18594d3fed92a3f3ea064fd7f439a2defbe3ff4f48633fe984b9f52db2879061b3d792c6c90637f312313f35f81417a4b68243dfc5b9cf32e9b595afe521baea86190e4aa4bbc7721ff4a1bc6e02bc16440f10664c8046d376d7befd0c30123deab560b28f00a7ab2b50fa972df8c3803cc03988148fc6fe027ecc12cb95d5a1be5c9534277e5060a0ad9fe37685e3058b9ca4b459e1f2dadd990ae707e5963f24e729889abc5f9a824b02dd53f1fc5b644a72d9092418ea3ed14d5c236e69ec37311159f84b0c7445c9149d8aa92b5f039f4658627878665705af6167fbde596f4828051bd0a9a425a859a1eb9b88d091a0a8626b04676b413062e3974f483b939a10d2ea65fa86c8dd50c73ffceae39e3a80ebf18cdf728dafa93f968b4a402aabd5532ee0bd71b603ab92939ec067e2e81e4ee4d340c3a85f10fa1b97fdbe983cbf1b2f82edc434596f02df59d1b86e1acb546fef9d285c41f4837e7a432270f94f456ddf39b7e8c96d09ac592f2ed77f72b5382aafc41823e9b8c93941be1230f9190b141f4da2bd383a6711e59a318e9ea126a7599dd379613dd6b78949ee2d31b40d285faac1cc4eec46d624dd3c764034b321fca32e2f2974725d47b885d4cd3eaff9bcbea09ddd06813e0086fd7ced62a4a0a2905994ea114d452db96ff06047127dfa14fd08c01498ac61c009276f3cfb6540aa9a55533a8c2859d8207eeb15ac5cbe2d3f36f0e7feb74537db88cedfcdeee6bf6d78a4b95d0fccd8d3ae3da6cb6fd9350e1d373d180ac1e3924e618e5d32539065b2b085b896309c1145d312bfc1474cd9b8b95314ecb884f3badd5cc82143b63bef0027c2e7f7fa01bb5ab8f703e3772e9c19f8bd21494f06703897b89dc8be71ddf72f813cbae2f66a463bbb701db1f55759e1cce0edf8406610ced2ca46f903386d1d6c120c7bb34fd9435cfe1979828535df4092cdcd48fe837e44440bc68280b94b1c59040f92ad38cf356acd17f418b6477d45dd7488bf6cd1ce76e7bf3d6ca098ac66efbed392b114e10501434df97850a7304aa95614a4ca390558c7bdf7efc7fa2edb96b722bff9e94b0fd2f5ad32b72c8883ce129357f449b546ecfe8c93144658937c68ece2c72ada632c7872162f62785ec06829f6a02f33c6204abd8e9f28f664312bca538d5f06d67948bf649c114176c23cb9b84e27272c887d3cac50925d185c1f049dc7b2c2a81c839cb63014bdcb862492974c45c6767126d7dbb074076173eaebc35788661f7ec21d708ace51a49ddb14b93b1efc33c61116516579ca9f7634ff713041b09e8b42624b3c774dca7a867ea43922ea1665cb8708a45993b54ec69843f15d7dfbe48fff8a55944b77db8f155260e9e53ee53bddd18f80bf03ffb581d867e5ddc49a7c75a717ba81f1114d7233d7bc3a92e4ccbf375f18207a28d687c8a1f288b01a83fce4369e2f0c181cf757632be5fe2df21f11b50474310992efd1f7edf673e77adb93145256df90f9565f8767cd7accc1629363648031ceb0d871191e1958c3391ac2173b8ac66d588af74ee2afb170de9be9f0b47b19974117df64aad5546bcf7e249b07e794f3d4ede45ba6a97215853856033fd186af24524962bc1f0b848e5e04e3bb45eaf3c25c6a2089dc06753172933920feedb5e3ae3778fc66491d7eca796642225f8331125c49618566da7a429a1e147f37dc25d1279b3d16613501e57fc5d5a2d2cbbf0f3ffc9f263c6dc2871f1b925f2e7e45d5411de107a7244c85bfae606eb74455c640ab323cc6c7d2d9930329b70da46116b580c5d5b4257a029e77e1e5fdc32769f61cf5fe4f32ab3d37f08f923e9eb545c69cdde8fde246b8669efae1e8c9c8ffb1907ed5b5b1542b643f8b3205b323ba6b308c7910b8b649c33a93bf3987e36592aa2e66e116bb18d2cc4617117d800884e099e282a71e0153167948393c3a990c2929e1c252e852827af3ab53fdd0b7a50f3609d5fa879b57b88b9ea1fed92af278a6823f56320cfd3dea2f7716be15d9c92760454f24a60eb47aa7c12a7fabec5e9028fec65a1b2b0bc36a7e7e97ceda0f0c19a1fa672072aecbe0056c6ecd2d6d61b387981ced95f3dd3716cda77256b852ae950e8b4311ed6d46ecf982ff00601a14cdb84a9dfb39790fe4ec33d706926bc0b8193a1e160a50f4218423055fe86aec4b7fac82a6e80ba724c46b6b5b538ae1d2df222592dc3c077dcda417b6b0720cde39b02847e74dfed1ae4ba167a76e43602226fb332ec17c5353255792277b1f5ded77fda8db6b1de8000fbc179522de8165139f5f60fb422f2e64e77ba0c6881084c63fc6579aba51cc1c0c90fa1fadc94d2e7b76e4c1d34c5d54303f1ccca0c6a75d2afecc38bd6d62d74a341091ff457861042428b8a08cdf91b554cc78d8d123eb1e96c32f943f02325f008733e484be348eb622e3585e536c7c2a70b88e2f3722bd23b280429f29beb83fe97c6d4805e611c15139c83ad91a1192e0845913c6812e7c42ec5afcd0a7ba680cc653324c82b4044d6bc88315fe80106827d29b225bc42c2a8988c057655a909cfecc214d552c487c8aee62d3c3ab57ea79c75fa5664131252b6a75b392f52597b819311acf7fc6a855f53337649c5c99d4350b330bba0e6ce5cf20b469eae8580d2f44d7e006759ab168e10f6a05c90d8372112ca24b9fdf0329d0e4743b744999c46a674d3cceb14973841acbdd9d0fcfd55f2d7892baf216d7867007cf60cb85ed698ce11055928b723540c879e452877316009133d06a3fda1e1cd81695eebefb8fff253e35100b58d079ab4e783a78f6376d10c6f9b9de47563f0b118b508a8e78b6d28a65af4122416854b130d66bbbc37a12d35fbb70b0dee8eef3eaba50d998486c8fd2f6eaad757c7c8418f825b5198c67adcfc7a7ea372ae4d89f2c71c9cd0242de72f81a8ee53f2482c8024076543e3afb1025b391ac1a462a63ba991ed5eae8782eae6c186408b2a3653fbc85d17bb8caa93fa83ae1771e7b2eb86a9c4e455111c45f61175353b9c9c3434448aef15a96ee8131d62d5c6ac56953ff665143523527dbd680e784fc2aebf65667fe2a8f85241cb02b21dfcc23750b4320078618bbb17c7e6a2abbd799e6ebdae3cad18a89fbc0b0637244fcd00f173108e829afe0a4cbac6f08830453c76c66cf70562efb85dfda5d24fc763c4897d8424355e887abcb8d2a94aa6f4a2e47f15125d5d1d156ae6cbe8518a288d1c2c5a134348e470c085c0d8070ae43b0539321fd73670353029b29bfa7cb8d1b4cecaa735e0b2dd0b320063d93970f4947aaa0f0ffbf7680f34aa9b8a3f7546c346f888c4a500c4c59edee7ac62be91af803bcd5571964bb0af968e90bc31aa02b92eed2543fbd0805083b50e0073ed3468b05ceaa198d4c4de8316", r3)
fstat$auto(0x2, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x2)
r4 = socket(0xa, 0x2, 0x73)
setsockopt$auto_SO_ATTACH_BPF(r4, 0x0, 0x32, &(0x7f0000001300)=':{#\x00', 0x81)
socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0)
openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video13\x00', 0x121000, 0x0)
write$auto(0xffffffffffffffff, 0x0, 0x1)
mq_open$auto(0x0, 0xdd1, 0x8, 0x0)
timer_create$auto(0xfffffffe, 0x0, 0x0)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
socket(0x11, 0x3, 0xfffff958)
open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x0)
fallocate$auto(0x8000000000000003, 0x0, 0x9, 0x4cbd5d)
ioctl$auto(0x3, 0xc0285628, 0x8)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x4, 0x300000000000)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000)
socket(0x10, 0x2, 0x0)

6m21.06650448s ago: executing program 4 (id=3378):
r0 = openat$auto_snd_pcm_f_ops_pcm(0xffffffffffffff9c, &(0x7f0000001180)='/dev/snd/pcmC0D0p\x00', 0x20080, 0x0)
ioctl$auto_SNDRV_PCM_IOCTL_USER_PVERSION(r0, 0x40044104, &(0x7f00000011c0)=0xad)
mmap$auto(0x0, 0xa6e, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffe, 0x8, 0x4000000000db, 0x12, 0x400, 0x8001) (async)
setsockopt$auto_SO_TIMESTAMPNS_NEW(0xffffffffffffffff, 0x4, 0x40, &(0x7f0000000480)='/Eev\n\x0e\xcf^+\xf3\xc4Y\x84\xf4\xe4\x98/audio1\x00VI\xa3\xaa\xb1;\x9d\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9abN\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953\x01\x9f.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4re\x90\xc0\xbf\xcem\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\x12w\xd7\x99\x8c\xbe\x8f\x1dI\xe2\xae8\x83\xcf\xc5D\xcc\x00', 0x4) (async)
r1 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_FLUSH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001bc0)=ANY=[@ANYRESDEC=r1, @ANYBLOB="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"], 0x2bc4}, 0x1, 0x0, 0x0, 0x20008010}, 0x24000080) (async)
write$auto_console_fops_tty_io(r1, &(0x7f0000000440)="671d2647dd69b6440843b6e6688a2b5ad9df2669e6f9cd2365", 0xfdef)
mmap$auto(0x0, 0x80000001, 0x7, 0x17, r1, 0x0)
openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40040, 0x0) (async)
listmount$auto(0x0, 0x0, 0x7fffffffffffffff, 0x0) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D2\x00', 0x0, 0x0)
r2 = openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
ioperm$auto(0x7, 0x5ad2, 0x8) (async)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f0000000200)={{@raw=0x4, 0x0, 0x1000004, 0x480808, "3112d58500a8b47148e22af9ffb683dbede3d0bf828bbf100000e5e2f96ee50484b0755015e48d00", @inferred=0xffffffffffffffff}, 0x2, 0xc, 0x4, @inferred, @reserved="196c056a347704def6f5c5636ed52c07609cee4319588cd9a11ad396065c1267314ab73ce54c205a43297cf5b6310383212fdbb93e51da48edd9350aa935db0d5d6e32e39d8f68ee55f32c5de7b40a4ceb3840920880cbb9fc246ea65af96a74482a52e660cfc6828ba8c9404d70b947a06c9927ba7f1beed137c48265c74c8d", "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090d70925450ece0bb32777702b07552d000000000000000000ebff0000000000000059a200"})
rt_sigqueueinfo$auto(0x0, 0xffff7b6f, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x14, 0x1, @_sigpoll={0xd}}})
r3 = socket(0x11, 0x3, 0x9)
sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f00000000c0), 0x7fcb, 0x0, 0x15, &(0x7f0000000180), 0x5, 0xe}, 0x5}, 0x9, 0x100) (async)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0) (async)
r4 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/netfs/caches\x00', 0x102, 0x0)
pread64$auto(r4, 0x0, 0x100000001, 0x100) (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) (async)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) (async)
unshare$auto(0x40000080) (async)
r5 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000100)='/dev/tty36\x00', 0x0, 0x0)
read$auto(r5, 0x0, 0x80) (async)
ioctl$auto_TIOCSTI2(r5, 0x5412, &(0x7f0000000000)='\n') (async)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/midi2\x00', 0x1, 0x0)

6m18.42172322s ago: executing program 4 (id=3388):
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
close_range$auto(0x2, 0x8, 0x0)
io_uring_setup$auto(0xb, 0x0)
r0 = socket(0x2, 0x5, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x2, 0x1, 0x84)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f0000000000)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x200009}, 0x1}, 0x2, 0x0)
close_range$auto(0x0, 0xffffeffe, 0x2)
openat$auto_stats_seq_fops_netdebug(0xffffffffffffff9c, &(0x7f0000000140), 0x101081, 0x0)
pipe$auto(0x0)
unshare$auto(0x40000080)
setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd)

6m17.86087988s ago: executing program 4 (id=3392):
mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/afs/rootcell\x00', 0x8042, 0x0)
sysfs$auto(0x2, 0x10000000000002f, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r1 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x42802, 0x0)
read$auto(r1, 0x0, 0xb4d3)
r2 = socket(0x1d, 0x2, 0x6)
setsockopt$auto(r2, 0x6a, 0x1, 0x0, 0xc)
writev$auto(r0, &(0x7f0000000200)={0x0, 0x5}, 0xa)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003500), 0xffffffffffffffff)
sendmsg$auto_ETHTOOL_MSG_EEE_SET(r3, &(0x7f0000005cc0)={0x0, 0x0, &(0x7f0000005c80)={&(0x7f0000003540)={0x2c, r4, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_EEE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x50000000}, 0x8000)
read$auto(0x3, 0x0, 0x80)

6m16.966009111s ago: executing program 4 (id=3394):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/sctp/assocs\x00', 0x400, 0x0)
pread64$auto(r0, &(0x7f0000000080)='\xd5u+~\xa7x\xe0VQ\x1a6\xcf\xce\xfa\xfbN\x19\b\xf64\r\x122i\xd6\x0e\xfa\x96\x9aV:\xe1G\x14\xb2\xd4N\x0e#jX:\xd0\xe4\xa9\xda\xaf\x98\x94G\xa8\xb4\xa7uPc\x1ang\xdb\xb4\xa7\xad\x1b\xcbonh\xd8\x99\x03\x10\xb0\xa5\xfey\xd5F,70\xecG\x8a\fz\x95\x7f\xb0Y{\xdd\xa1\xa3E\x03\xd4\xc67U\x93\n\xfc\xa4\x0e_\xf8\x94\xc3a\x00\xe6\xea4\xa2\x7ft\xeb\x8b$\x16\x0e\xe8j\xcaI\xe0c\x05\x12(\v\xef\xc5Z\xfb\xed\xa3\x01\x001\xa5\x18%\xae/\x1b6\xaa\xf5ysD\xa6\xee\xbf\xc0v\"\x93\x96\"\xcak.\x0e_\xb3\xf7\xac\x9e\xbd/w\xdf\xfc\xe24z\x0f\x8f\b\xbe\xda\xfb\xd0Jj\x97\xfa{\x9d\xfd\xfb\x14\x1f\xb0\xe7\b#\xb9\x01\xf7\xf5\x1c1\xfbNX\xd9\xf0\x97@\xff(\x99\x13M\xadM\b\xf5\xcd\xa3\xe1Q|\r\x18\xd5\xb4\x1c\xa5\xfd\xdf\x98\xd9\xa7\xf3u\xa8ak\xfaHS\xfa\x12\x85\x85\x14\b\x9c\x15\xc10\xb3\xd5.\x13\xc6\xb6\xbak:\xbf\x8f\xcd\x7f\a\xb8\x00\x00\x00', 0x202, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = userfaultfd$auto(0x1)
r2 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r2, 0x29, 0x48, &(0x7f0000000180)='\x0ez1\xf02\xc6\n\xf2\x87\x1d\xfeD!\xa8^J9\xaab\x84\xf6\xf7\x93\xa2\x8f\x0e\x1b\xa4\x0fwG]\t\xcd7\f\t\x87\'%\xaf\x80\xdc\x90\x8c\x9cU\a\x00\x00\x00\x00\x00\x80\x00\x0f\x88P\xebJ\xfdlS!\xc8\x1c\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92\xed/\"\x92\xf7#{\xa3\xf0\xbe\xc2\xe5\xb5\xc4($\xa4\xfb\a\xe0;b\x16\xfb\xaa\xbf\xc9\xc3DfG\xe5', 0x8)
statx$auto(r1, 0x0, 0x1000, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x80000000000000a, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000)
setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90)
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r2, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)={0x1a4, 0x0, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_COORDINATOR={0x166, 0x1e, 0x0, 0x1, [@generic="5d420e8a80e272785482448507947f553a8dbd6852486fa05a18351da68cb3119b13b1acd65825453131a51516033dd2485d4c326de54767b574ecdbf466d10dd8acf1daa7d798ef27d717783eaeb41990129cdeb4f9e927f54da1f762ab0c285b6bc66ec5246970dc4e35046512e68e235fa13b3f3de8495d71d3", @generic="dfef2ccda5e5cc27da01f5c44fcf700249a691c27b846379816c6aa080ea27fccc393ba36008cff29a06ff80f7c41a61940a9fc13c8031f77c108072bd9456acbd6974ad54d5d88ddf4956945ae380333b2021026e4fcb23ef5cfc715e21a00fe04b5b68ff92cbda61b22729531f4a2b1c87a15895ef29592ec76899ebb75a5670ef41fb61a4b7290f0d910c0efb6fa4c0d771662838eec9a8afa8e0c37fb1fab914b79d6df336b47dddc6846e59ddffcb696935222058bffdc96a04ce71bf3af72b292fc21551ca87956e935853bd1458e0499b0b11d2b06f7181c446902d7935c5685ee41106"]}, @NL802154_ATTR_SEC_KEY={0xc, 0x30, 0x0, 0x1, [@nested={0x8, 0x23, 0x0, 0x1, [@nested={0x4, 0xe7}]}]}, @NL802154_ATTR_LBT_MODE={0x5}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x7}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x400c5}, 0x4000000)
getsockopt$auto_SO_BUF_LOCK(r2, 0x3ec, 0x48, &(0x7f0000000000)='\x8d:]-,,$-\xb7{\x00', &(0x7f0000000040)=0x6)
r3 = bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0xb5, 0x200, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0x4010)
bpf$auto(0x18, &(0x7f0000000100)=@bpf_attr_4={0x7, r3, 0x5}, 0x92)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)

6m1.117658412s ago: executing program 35 (id=3394):
r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/net/sctp/assocs\x00', 0x400, 0x0)
pread64$auto(r0, &(0x7f0000000080)='\xd5u+~\xa7x\xe0VQ\x1a6\xcf\xce\xfa\xfbN\x19\b\xf64\r\x122i\xd6\x0e\xfa\x96\x9aV:\xe1G\x14\xb2\xd4N\x0e#jX:\xd0\xe4\xa9\xda\xaf\x98\x94G\xa8\xb4\xa7uPc\x1ang\xdb\xb4\xa7\xad\x1b\xcbonh\xd8\x99\x03\x10\xb0\xa5\xfey\xd5F,70\xecG\x8a\fz\x95\x7f\xb0Y{\xdd\xa1\xa3E\x03\xd4\xc67U\x93\n\xfc\xa4\x0e_\xf8\x94\xc3a\x00\xe6\xea4\xa2\x7ft\xeb\x8b$\x16\x0e\xe8j\xcaI\xe0c\x05\x12(\v\xef\xc5Z\xfb\xed\xa3\x01\x001\xa5\x18%\xae/\x1b6\xaa\xf5ysD\xa6\xee\xbf\xc0v\"\x93\x96\"\xcak.\x0e_\xb3\xf7\xac\x9e\xbd/w\xdf\xfc\xe24z\x0f\x8f\b\xbe\xda\xfb\xd0Jj\x97\xfa{\x9d\xfd\xfb\x14\x1f\xb0\xe7\b#\xb9\x01\xf7\xf5\x1c1\xfbNX\xd9\xf0\x97@\xff(\x99\x13M\xadM\b\xf5\xcd\xa3\xe1Q|\r\x18\xd5\xb4\x1c\xa5\xfd\xdf\x98\xd9\xa7\xf3u\xa8ak\xfaHS\xfa\x12\x85\x85\x14\b\x9c\x15\xc10\xb3\xd5.\x13\xc6\xb6\xbak:\xbf\x8f\xcd\x7f\a\xb8\x00\x00\x00', 0x202, 0x7)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r1 = userfaultfd$auto(0x1)
r2 = socket(0xa, 0x2, 0x3a)
setsockopt$auto(r2, 0x29, 0x48, &(0x7f0000000180)='\x0ez1\xf02\xc6\n\xf2\x87\x1d\xfeD!\xa8^J9\xaab\x84\xf6\xf7\x93\xa2\x8f\x0e\x1b\xa4\x0fwG]\t\xcd7\f\t\x87\'%\xaf\x80\xdc\x90\x8c\x9cU\a\x00\x00\x00\x00\x00\x80\x00\x0f\x88P\xebJ\xfdlS!\xc8\x1c\xff(i\xc6@\x91[\vBj\x0eQ\xce\x16\'C\x8cYA\x92\xed/\"\x92\xf7#{\xa3\xf0\xbe\xc2\xe5\xb5\xc4($\xa4\xfb\a\xe0;b\x16\xfb\xaa\xbf\xc9\xc3DfG\xe5', 0x8)
statx$auto(r1, 0x0, 0x1000, 0x8, 0x0)
close_range$auto(0x0, 0xfffffffffffff000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000)
socket(0x80000000000000a, 0x2, 0x0)
socket(0xa, 0x801, 0x84)
move_pages$auto(0x1, 0x400000000f54, 0x0, 0x0, 0x0, 0x8000000000000000)
setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90)
sendmsg$auto_NL802154_CMD_LIST_ASSOCIATIONS(r2, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000280)={0x1a4, 0x0, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_COORDINATOR={0x166, 0x1e, 0x0, 0x1, [@generic="5d420e8a80e272785482448507947f553a8dbd6852486fa05a18351da68cb3119b13b1acd65825453131a51516033dd2485d4c326de54767b574ecdbf466d10dd8acf1daa7d798ef27d717783eaeb41990129cdeb4f9e927f54da1f762ab0c285b6bc66ec5246970dc4e35046512e68e235fa13b3f3de8495d71d3", @generic="dfef2ccda5e5cc27da01f5c44fcf700249a691c27b846379816c6aa080ea27fccc393ba36008cff29a06ff80f7c41a61940a9fc13c8031f77c108072bd9456acbd6974ad54d5d88ddf4956945ae380333b2021026e4fcb23ef5cfc715e21a00fe04b5b68ff92cbda61b22729531f4a2b1c87a15895ef29592ec76899ebb75a5670ef41fb61a4b7290f0d910c0efb6fa4c0d771662838eec9a8afa8e0c37fb1fab914b79d6df336b47dddc6846e59ddffcb696935222058bffdc96a04ce71bf3af72b292fc21551ca87956e935853bd1458e0499b0b11d2b06f7181c446902d7935c5685ee41106"]}, @NL802154_ATTR_SEC_KEY={0xc, 0x30, 0x0, 0x1, [@nested={0x8, 0x23, 0x0, 0x1, [@nested={0x4, 0xe7}]}]}, @NL802154_ATTR_LBT_MODE={0x5}, @NL802154_ATTR_MAX_ASSOCIATIONS={0x8, 0x27, 0x7}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x400c5}, 0x4000000)
getsockopt$auto_SO_BUF_LOCK(r2, 0x3ec, 0x48, &(0x7f0000000000)='\x8d:]-,,$-\xb7{\x00', &(0x7f0000000040)=0x6)
r3 = bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_0={0x9, 0xb5, 0x200, 0x4, 0x4, 0xffffffffffffffff, 0xa, "2af051b26b658a20d8dc6b36c83ce63f", 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x7, 0x6}, 0x4010)
bpf$auto(0x18, &(0x7f0000000100)=@bpf_attr_4={0x7, r3, 0x5}, 0x92)
move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2)

28.051696055s ago: executing program 6 (id=4488):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
memfd_create$auto(0x0, 0x9)
socket(0x1a, 0x6, 0x968c)
r0 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000400)='/dev/mtd0\x00', 0x28082, 0x0)
sendmsg$auto_NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, 0x0, 0x51)
mmap$auto(0x7c, 0x20009, 0xffffffffffffffc0, 0xeb1, 0x401, 0x10001)
statmount$auto(0x0, 0x0, 0x1fe, 0x10081)
sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mtdblock0\x00', 0x4002, 0x0)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x40000)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x0, 0xa503}, 0x800}, 0x7, 0x4008)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
write$auto(0xffffffffffffffff, &(0x7f0000000040)='\xce*+#\x00', 0x80)
r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.7/usb8/bConfigurationValue\x00', 0x10b042, 0x0)
sendfile$auto(r3, r3, 0x0, 0x2)
socket(0x1d, 0x2, 0x6)
mmap$auto(0x0, 0x40009, 0xde, 0x9b72, 0x7, 0x28000)
capset$auto(0x0, 0x0)
bpf$auto_BPF_LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
ioctl$auto(r3, 0x5c4, r0)
write$auto(r2, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcbaL\x8d\x12\x18I', 0x81)
unshare$auto(0x20000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$auto(0xf, 0x0, 0xf)
write$auto(0x3, 0x0, 0xfffffdef)
sendfile$auto(0x3, 0x3, 0x0, 0x400000000006)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)

27.034266578s ago: executing program 6 (id=4490):
mmap$auto(0x3, 0x5, 0x4004000000000df, 0x4000000000015, 0x401, 0xdd6)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0)
mmap$auto(0xff, 0x2020009, 0x1ff, 0x13, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x80000000, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0)
r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
ioctl$auto(r1, 0x4018620d, 0x9)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
socket(0x10, 0x2, 0x6)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)

24.938126734s ago: executing program 6 (id=4496):
socket(0x2, 0x5, 0x0)
eventfd2$auto(0x1, 0xffffffff)
madvise$auto_MADV_FREE(0x0, 0x9807, 0x8)
mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000)
setsockopt$auto(0x3, 0x10000000084, 0x82, 0x0, 0x8)
sendto$auto(0x3, 0x0, 0x2000f, 0x101, &(0x7f0000000000)=@in={0x2, 0x4e22, @loopback}, 0x1c)

24.605565625s ago: executing program 6 (id=4499):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty17\x00', 0x1, 0x0)
write$auto_tty_fops_tty_io(r0, &(0x7f0000000200)="352c8efa610c0bcf83a4ebdb040000000000000021cb244b19a48bb5e0d12df9735b745b9554dfb0ad77a37be296ebe6f598901d632a206d9bb056d8c8", 0x3d)
ioctl$auto(0xffffffffffffffff, 0x8912, 0x38)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000)
ustat$auto(0x801, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000)
io_uring_setup$auto(0x1, 0x0)
getpid()
r2 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/security/tomoyo/domain_policy\x00', 0x40802, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mq_notify$auto(r3, &(0x7f0000000280)={@sival_ptr=&(0x7f00000003c0), @inferred=r3, 0x2, @_tid})
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0)
write$auto(r4, &(0x7f0000000140)='7\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0xd4d0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000164c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x103, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0x400053, 0x9)
read$auto(r2, 0x0, 0xb4d3)
write$auto(0x3, 0x0, 0xffd8)

22.89889699s ago: executing program 1 (id=4505):
mmap$auto(0x3, 0x5, 0x4004000000000df, 0x4000000000015, 0x401, 0xdd6)
sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB="0700000000000000df250a"], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/adsp1\x00', 0x80502, 0x0)
mmap$auto(0xff, 0x2020009, 0x1ff, 0x13, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
write$auto(0x3, 0x0, 0xfdef)
openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, 0x0, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x80000000, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000000)='/dev/binderfs/binder1\x00', 0x1, 0x0)
r1 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, 0x0, 0x1, 0x0)
ioctl$auto(r1, 0x4018620d, 0x9)
mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000)
socket(0x10, 0x2, 0x6)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
open(0x0, 0x22240, 0x55)
socket(0x2, 0x3, 0xa)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8)
connect$auto(0x3, &(0x7f00000018c0)=@l2tp={0x2, 0x0, @multicast1}, 0x55)

20.853881456s ago: executing program 1 (id=4506):
mmap$auto(0x0, 0x2000000000000c, 0x0, 0x17, 0xfffffffffffffffa, 0x8000)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xd4B\xe2\xa2\xea\x0f\x88\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95\x00\x00\x00\x00\x00@\x92$mX\x8e\xf5\xe6\x00\x00', 0xfffffffffffffffd)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv6/conf/netdevsim2/hop_limit\x00', 0x5014c0, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004814}, 0x8800)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000001180)='/dev/input/mice\x00', 0x1a1382, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsu\x00', 0x108002, 0x0)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x3, 0x6)
r1 = socket(0x2, 0x1, 0x0)
bind$auto(r1, &(0x7f0000000040)=@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x6a)
syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff)
socket(0x2, 0x801, 0x100)
mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000)
sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
socketpair$auto(0x1e, 0x3, 0xfffffffe, 0x0)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9)
lseek$auto(0xffffffffffffffff, 0x0, 0x2)
ppoll$auto(&(0x7f0000000080)={0xffffffffffffffff, 0xf2, 0x7}, 0x1, 0x0, 0x0, 0x8)
write$auto(0x3, 0x0, 0x100085)

19.5948573s ago: executing program 1 (id=4510):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
statmount$auto(0x0, &(0x7f0000000040)={0x0, 0x0, 0x38, 0xffffff01, 0x9, 0x9, 0x80000001, 0x7, 0x8, 0x5, 0x5, 0x9, 0x2, 0x8, 0x5, 0xf, 0xffffffffffffffff, 0x9, 0x1, 0x5}, 0x800, 0x0)
sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00{', @ANYRES16=0x0, @ANYBLOB="000326bd7000fedbdf2502000000080027000e0000000a0010"], 0x28}, 0x1, 0x0, 0x0, 0x4c894}, 0x24008000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000)
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000000040), 0xffffffffffffffff)
r2 = landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400, 0x7}, 0x9, 0x0)
landlock_add_rule$auto(r2, 0x0, 0x0, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7020f8dbdf250100000008000200", @ANYRES32=0x4, @ANYBLOB="fbff00020066520008000200421f45ff275ac1061478811e3a3b474646892be3eab432d4d7", @ANYRES32=0x9, @ANYBLOB="08000500f8ffffff"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x80)

19.436783364s ago: executing program 0 (id=4512):
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mq_open$auto(&(0x7f0000000280)='\\*)A\x00', 0x7e, 0x9, 0x0)
mmap$auto(0x0, 0xc, 0xbc5, 0x13, 0x3, 0x8000)
memfd_secret$auto(0x0)
r1 = socketpair$auto(0x1e, 0x6, 0x3, 0x0)
madvise$auto(0x0, 0x2003f2, 0x15)
timer_create$auto_CLOCK_BOOTTIME(0x7, &(0x7f0000000200)={@sival_ptr=&(0x7f0000000040)="49601f1c0c48de41a4db300abc0dd11dba312127f9d4509f30a1d73206095eda6698b8526d6b51ade98d89de716d92e8feca96e40d3e84a18a97c77383d2dbd303267b216870245949d47b4c9e70955e70c476870d9edc64754190410dddbb08bea29596", @inferred=r1, 0x3, @_sigev_thread={&(0x7f00000001c0)=&(0x7f0000000180)=0x3, &(0x7f00000002c0)="e2a9e9bda506bc54f937b22cd01c31bbcd5ffa13de7f0c389e47eb52539d02852b1117f7d70194d2408381c29ee74d1b895c9319d57c65f424d3aa0c8b09b34e9f329289c82fe2f1276bc2cabf174270eccb407d387b72ffcdfc47d885e3d385d44f029d13d7ee884f08dd1c143bf066273a85cdc2cb469ddf8b40908d3cddb9f8f2fab34bc1ceae778227"}}, &(0x7f0000000240)=0x3)
io_uring_register$auto_IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000001180)="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", 0x10)
mmap$auto(0x0, 0x2000c, 0xdf, 0x14, r0, 0x8000)
madvise$auto(0x0, 0x200007, 0x19)

19.260531789s ago: executing program 1 (id=4513):
r0 = socketpair$auto(0x1b, 0x1000005, 0x8000000000000000, 0x0)
close_range$auto(r0, r0, 0x0)
ioctl$auto_FITRIM2(r0, 0xc0185879, &(0x7f0000000000)={0x7, 0x8, 0x7})
r1 = syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000080), 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000005c0), r0)
sendmsg$auto_NL80211_CMD_NEW_KEY(r0, &(0x7f0000000740)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000700)={&(0x7f0000000600)={0xf0, r2, 0x2, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_MAC_HINT={0xdc, 0xc8, "124f211125d580645987680ebf0b2a5f1463b829168fce46366371c67240f1adff447a3142b67b9f74c5d327e3b00760c9a6203bcafe8c5f6c99737a5113efeb5f3f39c11a11163f7e7b9d819e15709fec8d9a2488f33ecd165ca6db3a1193cc233cf09d7c79f42586fa3392258e8b2a0334c149ecbed296f349f80651b16315a1bf5bdc967e60876b7a9182b76d45bca988e58f3aa8eced7d38a28f5c103d94479eda422ca55b15c3e7851c0722c70bca8c52aab928684de13c107ac6b79eefe50fe9bf8d98f431bc0dd23d3577916a65d0c2aa04ca660f"}]}, 0xf0}, 0x1, 0x0, 0x0, 0x80c1}, 0x80)
r3 = semctl$auto(0x9, 0x5, 0xdb7, 0x9)
sendmsg$auto_IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000500)={&(0x7f00000000c0)={0x420, r1, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0x1e0, 0x3, 0x0, 0x1, [@generic="f2a32baf55ebaf97577fe6bcbdb19125152e00584fb1280cfed6685b43a9ee6806f83807d8d7211bf08b478f9580", @generic="306c9c0bdd6b00744b9ed988dffcf33534dd0b17f74601c99a799c3ea7acc740d9220b18e5ed120cf98723e74936fddf1e8a2fedf5c064c4f091aadeb01fdeb483ccac265e2cfee0efcf88197ea3bd441792524b48f8cf1bc1f70ca8eabafe88a9d1bc9acac93ac3830e7d26e73f256533aafc0c098d2ad333b566ae35c83cd0ce8afaef3af5355c147a5c14f07c83e00857dc9c578672", @typed={0x8, 0x87, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @nested={0xc, 0x14c, 0x0, 0x1, [@nested={0x4, 0x131}, @nested={0x4, 0x146}]}, @generic="eaced2db27334df84e86ae000b95c62e07ad086fea94074826ac5bf02858ac76f29443bd38a1f11bcb11e5248917e6816d9c98bb460c721e3836fe", @nested={0xc5, 0x72, 0x0, 0x1, [@typed={0x13, 0x130, 0x0, 0x0, @binary="667b6717a3332f47a5741f822149f6"}, @generic="f3eb516a5b9ff8af04cf70f3a8c5900c3b438d93dc4a740f0c75b78517de5fdde9fbb3fd66fefd89dd40d4f6f24ba0a266bd9e5b3ad40b13a9b42dc1af1ce9f9db3d0d0afbb7796c8490fd5975b36e99cca33a075956f8d83b963e1edcc748ff57bd652ab6270afd448473f7a24956aac5ed5cebcede1dc9e527a94660efbffee97d24f90e4f346f62414ff973e4dd306697c74ebe53bbf3c77583706dd5ef497b1e78b168a1b8ca10c4b76ba9"]}]}, @IPVS_CMD_ATTR_SERVICE={0xa1, 0x1, 0x0, 0x1, [@typed={0x14, 0x119, 0x0, 0x0, @ipv6=@loopback}, @generic="466001a8ffc486bc021d7e101fb0d182c4b8af6bdef2e9ab1a15eeade04ce3cc2fc0c0d258d6f27deb3aa9c90cbe67330a251cfcc8bffdd3e6fe60f1e0d9ca894e837a98a827c064162d0936953fd2619831b7dda7920f9850d89cd1c38e8b747be1ac175223858b2afeb672dbaff19c32db95f4381bf7bce51a3ea4644a237aae", @typed={0x8, 0x148, 0x0, 0x0, @pid=r3}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_DAEMON={0x52, 0x3, 0x0, 0x1, [@generic="b66dd817e95687ef8580f173802373ce7b1064631f7382de6b6f4bdc244717929715cc908b8f2145edb7b079a5cae96aa68f0ef53548a90fa7ad1b3ede563a7f48d4637f81ea42d3cfb6b33f00e2", @generic]}, @IPVS_CMD_ATTR_DEST={0xf8, 0x2, 0x0, 0x1, [@typed={0xf4, 0x135, 0x0, 0x0, @binary="3edda9d8a9424fcb055120d7ac7181fe5e9ef71adb133b720d42a5c459136df7c15b45163316bbe22ad06d0642d192683a0786257a76dc260e9abb03214ecefb526050b88521489e5f152ea75397e50eeffcc58934a1b18438726a691031411aab1c17eb09d9b8a45bb3820f5f19498649d96aa59cf7251e75ff5a9968095c6e2ce2e2008bd9d30c652d824e46df43d13d31a45a1de73a3ce60d497c9aa0133b6ea207e5841cdd2486bfb7675f700c54c913ecf56931a4b342a1906a1d4f0c891b601a99e0076f68c8c08f92e1e336d11d26e784675ddc2cd68c41eec940270cb9c41c3f46ee931ba4bd873401006ca4"}]}, @IPVS_CMD_ATTR_DAEMON={0x33, 0x3, 0x0, 0x1, [@generic="c0e0ffd831272a5863c13510389fa06e89700cfa7b3ffc3064cb70b8d33b72261020288ff9afc63fafe5ebd8f3ddb6"]}]}, 0x420}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
r4 = openat$auto_fops_atomic_t_ro_(0xffffffffffffff9c, &(0x7f00000003c0), 0x28000, 0x0)
read$auto_fops_atomic_t_ro_(r4, 0x0, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000)
madvise$auto(0x0, 0x6, 0xe)

18.896020354s ago: executing program 1 (id=4514):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
socket(0x11, 0x80003, 0x300)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
write$auto_dynamic_events_ops_trace_dynevent(0xffffffffffffffff, &(0x7f0000000140)="d1807307", 0x4)
r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000200), 0xffffffffffffffff)
r3 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/ieee80211/phy1/rate_ctrl_alg\x00', 0x0, 0x0)
readv$auto(r3, &(0x7f0000000100)={&(0x7f0000000280), 0x1}, 0x4)
sendmsg$auto_HWSIM_CMD_REPORT_PMSR(r1, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="065e6624", @ANYRES16=r2, @ANYBLOB="01002cbd7000fddbdf250b0000000a0002009e695f99bb0e0000"], 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/veth0/accept_ra_pinfo\x00', 0x2000, 0x0)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r1)
ioctl$auto_BLKTRACESETUP2(r4, 0xc0481273, &(0x7f0000000280)={"b3efc16b86b24b821e90a2e1a74c38c88843237b4095eea24d4d39023c954a56", 0x5, 0x4000, 0xfffff7dc, 0x6, 0x3, 0xffffffffffffffff})
read$auto(r4, 0x0, 0x1ff)
r5 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000500)='/proc/sys/fs/xfs/stats_clear\x00', 0x1, 0x0)
write$auto(r5, 0x0, 0x3)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000)
sysfs$auto(0x2, 0x11, 0x0)
r6 = fsopen$auto(0x0, 0x1)
fsconfig$auto(r6, 0x8, 0x0, 0x0, 0x0)
openat$auto_rfkill_fops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140))
mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x5, 0x2)
msgrcv$auto(0x0, 0x0, 0x1000, 0x8000000000000000, 0xb5)
poll$auto(0x0, 0x4, 0x100004)
close_range$auto(0x2, 0x8, 0x0)

18.670751748s ago: executing program 6 (id=4515):
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r0 = socket(0x2, 0x1, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4ea2, @remote}, 0x6a)
sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0x101}, 0x8}, 0x7, 0x20020000)
write$auto(0xffffffffffffffff, 0x0, 0x100000a3d9)
fcntl$auto_F_GETOWN(r0, 0x9, 0x3ff)
close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x1)
recvfrom$auto(0x3, 0x0, 0x800000000e, 0x100, 0x0, 0xfffffffffffffffd)
write$auto(0x3, 0x0, 0x7fffffff)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/tcp\x00', 0x181800, 0x0)
pread64$auto(r1, &(0x7f0000000000)='/proc/thread-self/net/tcp6\x00\xd2)\x8e\x892\x82\x19\xfd\x03\xc3\x8d\xd7D\bz\xde5u4\xddS\xe6\x1a\x8a`\xad0\x98|\xbc\x00\x98\b\x0ey\xcb`\x9b\x91r\xd5\x13\x9e\xdd4\xe7\xb7\x94P\x8fBlm\x04eAW\xbc0\x9b\xbd\x8f\xf5];\x94\x18\xf0\v\xd7\xf4P\xd3\x9e,Q\xd8\x16\x989l\x03\a\xcc\x1e\xb9\xe9{\xeeS\xa9\xc60\x00\xb5&\x9e\xdbk{F\x18\xa8\xba*G\xd3\x80\xb1G.\xec1\x96uP\x97\x8co\xf1\xa6\xd5\xea\xc8L3|a\xb3\xaa\x90~Y\xb19\xad\xdc\x05o\x98g\xd4\x10]5\x95\xd0\xabJC\x06\xd0c\xd1Ra\xf7\xc4n\xdf\xe4\xc7\x03\x19x\xbb\v\x00\t\xde\xf5\x93\xfb\xfb#\xbd\xc0S\f57\x83\xdd\xaa\xf0\x9c\xd3G\xe1\x00'/232, 0x3ef, 0x9)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
prctl$auto(0x42, 0x1, 0x0, 0x1, 0x0)
timer_create$auto_CLOCK_TAI(0xb, &(0x7f0000000100)={@sival_ptr=&(0x7f0000000200)="94946ca6c516f30f6306d6aeaf01a11972d8295ee2728c4c17771b1bf9d153fb6e6c1de6ba986c0d4f7bd8c9c26c7d6beb30e296072b5f225031d2ef49c9ce0aa9e4694d46a088ca6c4b3936d17a94738c2b2884f82b43903f69f566fbc096a2992db737073a5d809da00cf1295dfc9bb695fb23dffd3c22992a366a0cbdfe318236e6dad3290fb893334c323e44e790a557252de45c27e044e46d39e39d2e8953057a5b0df8b129d7c6a682209b27cdd8ea9fb74f95d523b7494b2de1426e99c9609e179ddb24be4870e8b636dd7cf4db03d4f3bb206d", @raw=0x81, 0x2}, &(0x7f0000000180)=0x2)

18.304889341s ago: executing program 1 (id=4517):
r0 = openat$auto_proc_tid_children_operations_internal(0xffffffffffffff9c, &(0x7f0000000040), 0x92000, 0x0)
read$auto_proc_tid_children_operations_internal(r0, &(0x7f0000000080)=""/144, 0x90)
r1 = pidfd_open$auto(0x1, 0x0)
socket(0xa, 0x1, 0x0)
ioctl$auto_TIOCSTI2(r1, 0x5412, &(0x7f0000000000)="b51dd5c0aed0d2288d")
mmap$auto(0x0, 0x7, 0x0, 0x15, r1, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$auto_SO_RESERVE_MEM(r2, 0xb81, 0x49, &(0x7f0000000040)='ethtool\x00', 0x627)
r3 = io_uring_setup$auto(0x6, 0x0)
syz_genetlink_get_family_id$auto_macsec(0x0, r3)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r4 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
setrlimit$auto(0xb, 0x0)
unshare$auto(0x2a)
socket(0x28, 0x1, 0x10000100)
mmap$auto(0x40, 0x1, 0x6ae, 0x15, 0xffffffffffffffff, 0x7ffb)
r5 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
r6 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r4)
sendmsg$auto_NL80211_CMD_ADD_TX_TS(r3, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="e38a2dbd90bb199ba67000fbdbdf2569000000"], 0x1c}, 0x1, 0x0, 0x0, 0x48000}, 0x20000001)
write$auto(r5, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d7)
r7 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x36f40, 0x0)
openat$auto_vcs_fops_vc_screen(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2a801, 0x0)
sendfile$auto(r7, r7, 0x0, 0x10000800000003)
listen$auto(0x3, 0x81)
accept$auto(0x3, 0x0, 0x0)
shutdown$auto(r0, 0x2)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, r0, 0x300000000000)
socket(0xa, 0x3, 0x3b)
connect$auto(0x3, &(0x7f0000000000)=@xdp={0x2c, 0x3, 0x0, 0x36}, 0x58)

17.849637243s ago: executing program 0 (id=4518):
statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0x14, 0x944, 0x1ffe0, 0x3, 0x6, 0x7, 0x9, 0x400005, 0x4000fff, 0x8000007, 0x8001, 0x2, 0x5, 0x3, 0x40, 0x7, 0x20, 0x309, 0x6, 0x0, 0x4, 0x3, 0x0, 0x0, 0xffffffff, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x800000000002, 0x9, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x2961]}, 0x1fb, 0x81)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000)
mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0xa, 0x3, 0x3b)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
getsockopt$auto(r0, 0x29, 0x35, 0x0, 0x0)
r1 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x1f00, &(0x7f0000000100)={0x0, 0xfdef}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008)
syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
madvise$auto(0x0, 0x2003f2, 0x15)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
socket(0x2, 0x1, 0x106)
setpriority$auto_PRIO_USER(0x2, 0x0, 0x3)
write$auto(0xffffffffffffffff, 0x0, 0x2fb)
kexec_load$auto(0x10000, 0x8000, &(0x7f0000000040)={@buf=&(0x7f0000000380)="13a15413f763c665344dbb48ecc316d5a1746f7b22faabd4848b2c4fb541b012cf582218f1ffa149a8ae950b966020650403daa12fd754b2d84af734fe85ff7cb078dcbfd40a350cf80ea85a526546c723e4dc461ee0b1f5a7ff0ea3b617f8765e4d670228450f9d6d53dcaac2ee9fe02d2ecb84bde845a91463c3f2fd", 0x3, 0x5, 0x7}, 0xffffffffffffffff)

17.481574669s ago: executing program 6 (id=4520):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r0 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
sendmmsg$auto(r0, &(0x7f0000000300)={{&(0x7f0000000080)="4b77b96203d91377739f85c3dd0a48d6aa3fbac7b209cc5f2a3c38e2b75a5a2f18879c18de79836fde0569fcc12ddcc527c35a64cee3e11605af", 0xb05, &(0x7f00000001c0)={&(0x7f0000000100)="e0ef57bb26dd66ff5bff38bddbe61b2fd44ea024fddc33bce6b848c42bc470164dc4aa0b2ab352dd3afe6d48359dfbc34f095da06e219d330035799c42f768e98acaacc7f760e2dff98263dfd4b28ecf245b7a4b0a645683b5c055b1fc27c51da3dc4ae3d157c01dc8999704fee71a84debc7666e86a7fdce32d2073c60e6aebe52a1a7a5930164c4cbece15ca896b7074f02ea6d1f71a303c173213eacfaa4a39939d7840cfb3d817ad45cb1a76c6a994c36a029b76c55fc2ec", 0x6}, 0x1, &(0x7f0000000200)="d1652a5f4425afe5d414b2231946fb7ef30cfaeb8be054d3e7a1538d8272eef9a02420a9c855e59e0c55b69463b36a5fa448a53c9802a04cfc1f2c8689fd756f98273306ed59b949f16878c464b6b98c02ec3ebf83bab953dde74dd136ec5824da0fc10d859d26495e39f8bd5a1e16dee435ca7fc23397099915eb794268882343462a4a51858f36ac889e38d4c6855fe1b42830d89bb300858f326506c5409fd38f5f9bf23c88fa5b823cb233338e3b8661bc181820342c25e53995765750b878d525f8559cc7da92dd0bd73b81e513c5ab6f235f07", 0x7, 0x81}, 0x4}, 0x7ff, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x11, 0x0)
sysfs$auto(0x1, 0x0, 0x0)
r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af83, 0x0)

16.513876508s ago: executing program 0 (id=4521):
r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
read$auto(r0, 0x0, 0x80000000009a28)
mmap$auto(0xffffffff, 0x4020009, 0xa, 0xeb1, r0, 0x8000)
r1 = socket(0x27, 0x80001, 0x1)
socket(0x10, 0x2, 0x4)
memfd_secret$auto(0xfffffff4)
socket(0x1a, 0x1, 0x0)
epoll_create$auto(0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x122a0, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
writev$auto(r2, &(0x7f0000000200)={0x0, 0x6}, 0x5)
listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1)
socket(0x2b, 0x1, 0x0)
r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
mlock$auto(0x112, 0x80006)
mlockall$auto(0x3)
madvise$auto(0x0, 0x200007, 0x19)
msgrcv$auto(0x0, 0x0, 0xff9, 0xfffffffffffffffc, 0xb4)
msgsnd$auto(0xfffffffd, &(0x7f0000000000)={0x42, 0x5}, 0xc, 0x9)
close_range$auto(0x2, r1, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x28, 0x4, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@tipc=@name={0x1e, 0x2, 0x2, {{0x43, 0x2000}}}, 0x6a)

12.202649106s ago: executing program 0 (id=4526):
sysfs$auto(0x2, 0x10000000000002a, 0x0)
recvmmsg$auto(0xffffffffffffffff, 0x0, 0xf1, 0x0, 0x0)
sendto$auto(0x3, 0x0, 0x2000f, 0x0, 0x0, 0x1c)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000440)='/sys/devices/virtual/block/nbd3/queue/iosched/front_merges\x00', 0x2041, 0x0)
write$auto(r0, &(0x7f0000000140)='7\x00\xb1\x9a\xc0\xf9\xc0e\xd2T\xbe\xb6I\x9d\xd9\x18\xf5\x91\xbfq\xfe\xf2\x9a\x02\x9fC0xb\xccW(\xc1n+\n|5\xa5\x9c=^\xf1\x11H\x1c\xf73\x16\xd2\a\xfaw\xcc\xf1\xff7\xab\xa1\xeaF\x04\x17\x99\xd3\xd1\x83\xccG^\xbbdC\x8a\n\x88\xbcW@+\xafD\xd1\x8a\xc13W\xf66\x86\xe5\xee\xa7\x1d\x0f\x90\x00\xcf\xdb\xf5\xbf\xd4\xc8\x84\xb3\xeeb\xb0\xc7kN\x80\x93\xfd\x89\xe1\xc9tp\xd4jm\x7f\xf0a\xc3\x02\x14\xcf\xcf\\e!\a\x82\t,\xa7\x00\xbd&\xcax\xf8P\xc1\x8f\x87\x83\x0f\x93z', 0x1)
sendmsg$auto_NL802154_CMD_DEL_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x8000800)
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram7\x00', 0x60742, 0x0)
socket(0x2, 0x800, 0xf53a)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
connect$auto(0x3, 0x0, 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x10000, 0x4000000000db, 0xeb1, 0x2, 0x8000)
madvise$auto(0x0, 0x5, 0x15)
r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/scsi/drivers/st/fixed_buffer_size\x00', 0x0, 0x0)
connect$auto(r1, &(0x7f0000000240)=@ax25={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x4}, 0x7)
read$auto(r2, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89fc, &(0x7f0000000180))
msync$auto(0x1ffff004, 0x1800000000000fe, 0x1000)
read$auto_nvram_misc_fops_nvram(0xffffffffffffffff, 0x0, 0x0)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x4, 0x100000001, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x10001, 0x7, 0x400, 0x7ffffff8, 0x5, 0x7, 0x5, 0x61, 0x103})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x8658)
r4 = socket(0x2, 0x801, 0x100)
r5 = open(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0xa0400, 0x8)
r6 = open_by_handle_at$auto(r5, &(0x7f0000000040)={0x8, 0x2, "0200000000000000"}, 0x2)
sendfile$auto(r4, r6, 0x0, 0xffff)
openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001580)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x204, 0x1a00)

11.7431369s ago: executing program 0 (id=4527):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x48000, 0x0)
unshare$auto(0x40000080)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x4, 0x0, 0x100000000001, 0x0)
write$auto(r0, &(0x7f0000000240)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?\xdd\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc\x88Z\x98S\xffC\n\xffH\xf2\x0e\xd2\xdf\xdb\xb6\x93\xfa>\x84\xbf\x8e\xf5\xad\x1c\xf0\x9eL\xd4', 0x100000001)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000005800), 0xffffffffffffffff)
syslog$auto(0x3, 0x0, 0x5)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b70, 0x2, 0x6)
socket(0x10, 0xa, 0xd)
ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000)
socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0)
fcntl$auto(0xffffffffffffffff, 0x3ff, 0x0)
prctl$auto(0x1000000003b, 0x600, 0x4, 0x5, 0x7)
madvise$auto(0x0, 0x2003f0, 0x15)
getgid()
io_destroy$auto(0x4)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
madvise$auto(0x0, 0x2003ec, 0x14)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x9)
openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/pagemap\x00', 0x1, 0x0)
tgkill$auto(0x0, 0x1, 0x1)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
clone$auto(0xa, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0xd5a)
openat$auto_full_fops_mem(0xffffffffffffff9c, &(0x7f0000000040), 0x10000, 0x0)
r1 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f00000000c0), 0x58000, 0x0)
ioctl$auto_PPPIOCSMRU(r1, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, 0x0)
ioctl$auto_PPPIOCSPASS(r1, 0x40107447, 0x0)

7.842781447s ago: executing program 0 (id=4529):
r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
unshare$auto(0x40000080)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000080)='/dev/psaux\x00', 0x2, 0x0)
openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/tracing/tracing_cpumask\x00', 0x8301, 0x0)
writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8)
openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/udp_early_demux\x00', 0x28802, 0x0)
read$auto(0x3, 0x0, 0x80)
r1 = openat$auto_nsim_pp_hold_fops_netdev(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/ports/3/pp_hold\x00', 0xc0b02, 0x0)
sendmsg$auto_MAC802154_HWSIM_CMD_GET_RADIO(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x200}, 0xc, 0x0, 0x1, 0x0, 0x0, 0xc}, 0x20000000)
write$auto(r1, 0x0, 0xc70)

7.28148076s ago: executing program 7 (id=4531):
openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
r0 = prctl$auto_PR_SCHED_CORE_SHARE_FROM(0x8, 0x3, 0x0, 0x4, 0x2)
r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x30000000)
ioctl$auto(r0, 0x1, r0)
write$auto(r1, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
syz_clone3(&(0x7f0000000640)={0x108000, 0x0, 0x0, 0x0, {0x215}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0xffffffffffffffff, 0x300000000000)
r2 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001cc0)='/dev/input/event0\x00', 0x40000, 0x0)
readv$auto(r2, &(0x7f0000000040)={0x0, 0x36a}, 0x8)
ioctl$auto_EVIOCREVOKE(r2, 0x40044591, 0x0)
close_range$auto(0x2, 0x8, 0x0)
writev$auto(0xffffffffffffffff, 0x0, 0x3)
socket(0x11, 0x2, 0x9)
capset$auto(0x0, &(0x7f0000000000)={0x7, 0x10000006, 0x2000048})
r3 = openat$auto_deferred_devs_fops_(0xffffffffffffff9c, &(0x7f0000000080), 0x480901, 0x0)
bind$auto(r3, &(0x7f0000000040)=@ax25={0x3, @bcast, 0x2}, 0x6a)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
close_range$auto(0x2, 0x8, 0x0)
socket(0x2, 0x80002, 0x73)
socket(0x1d, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/system/cpu/smt/control\x00', 0x2ab42, 0x0)
write$auto_kernfs_file_fops_kernfs_internal(r4, &(0x7f0000000040)='1', 0x1)
io_uring_setup$auto(0x6, 0x0)
mmap$auto(0x0, 0x20007, 0x80000000000000df, 0x10004000eb1, 0x5, 0x8000)
mmap$auto(0xfffff000, 0x400008, 0x200, 0x9b72, 0x2, 0x8000)
mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000)
close_range$auto(0x2, 0x8000, 0x0)

6.09871603s ago: executing program 7 (id=4532):
mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000)
openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0x141401, 0x0)
socket(0x2, 0x3, 0x1)
socket(0x8, 0x80000, 0x6)
socket(0x25, 0x1, 0x0)
openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000140), 0x180b03, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0)
socket(0xa, 0x1, 0x100)
r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
r1 = socket(0x10, 0x3, 0x6)
mmap$auto(0x0, 0x7f, 0x1, 0xeb1, 0x401, 0x8000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800)
io_uring_setup$auto(0x2, &(0x7f0000000100)={0x6, 0xfffffffc, 0xd, 0xfe2, 0x3, 0x5, r1, [0x6, 0x9, 0x2], {0x5, 0x5, 0x3, 0x2, 0x0, 0x0, 0x2, 0xe633af7, 0xed20}, {0x2, 0x8, 0x0, 0x1, 0xc, 0x800, 0x9f32, 0xe1a}})
sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
msync$auto(0x1ffff000, 0x1800000000000fe, 0x400000004)
ioctl$auto(0x3, 0x2287, 0xffffffffffffffff)
socket(0x23, 0x80805, 0x0)
close_range$auto(0x2, 0x8, 0x0)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000001640)='/proc/self/mem\x00', 0x401, 0x0)
openat$auto_proc_mem_operations_base(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0)
prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/system/memory/memory12/power/control\x00', 0x100, 0x0)

4.731484242s ago: executing program 7 (id=4533):
r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x509840, 0x0)
r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/pfkey\x00', 0x40, 0x0)
pread64$auto(r1, 0x0, 0x200000000003, 0x2f4a3a23)
write$auto_tty_fops_tty_io(r0, &(0x7f0000000200)="352c8efa610c0bcf83a4ebdb040000000000000021cb244b19a48bb5e0d12df9735b745b9554dfb0ad77a37be296ebe6f598901d632a206d9bb056d8c8", 0x3d)
ioctl$auto(0xffffffffffffffff, 0x8912, 0x38)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xfffffffffffffffe, 0x8000)
ustat$auto(0x801, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9)
madvise$auto(0x0, 0x2003f0, 0x15)
mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0xff1, 0x8000)
io_uring_setup$auto(0x1, 0x0)
bpf$auto(0x5, 0x0, 0x102)
r3 = getpid()
r4 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, 0x0, 0x40802, 0x0)
r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/graphics/fbcon/cursor_blink\x00', 0xa001, 0x0)
write$auto(r5, &(0x7f0000000140)='7\x81=\"\xad\xff\x8d\xf9P\x18\xa4\xb0\xb4\xd9\x82=\xe1P\x05\x00\xfb&\xe8\xbf\x901\a2\xa2X`\a\xf1y\xb3\"=', 0xd4d0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f00000164c0), 0xffffffffffffffff)
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xfffffffffffefffd, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000)
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x4002, 0x6, 0x7, 0x8, 0xffffffffffffffff, [], {0xa, 0x6, 0xf, 0x29f, 0x103, 0x7f, 0x101, 0x6, 0x2000}, {0x100, 0x1, 0x52, 0x5, 0x1, 0x40, 0x76c5, 0x8, 0x100000000}})
r6 = prctl$auto_PR_SCHED_CORE_CREATE(0x7, 0x1, r3, 0x7, 0xe00000000)
mmap$auto(0xf9e, 0x800, 0x5, 0xeb1, r6, 0x80000000)
madvise$auto(0x0, 0x400053, 0x9)
read$auto(r4, 0x0, 0xb4d3)

2.441418148s ago: executing program 7 (id=4534):
mmap$auto(0xff, 0x2020009, 0x1ff, 0x13, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0x2000040080000004, 0xe)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
socket(0x2, 0x80002, 0x73)
socket(0xa, 0x1, 0x84)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @loopback}, 0x54)
mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000)
openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000180)='/dev/input/event1\x00', 0x8000, 0x0)
socket(0x10, 0x2, 0x0)
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$auto_SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x800)
sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x696b}, 0xed7138c}, 0x2, 0x9)
r1 = socket(0xa, 0x5, 0x84)
sendto$auto(r1, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x1c)
openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/sctp/assocs\x00', 0x0, 0x0)
timer_create$auto(0x0, &(0x7f0000000040)={@sival_ptr=0x0, @raw=0x4, 0x6, @_tid}, 0x0)

2.3166818s ago: executing program 36 (id=4520):
openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0)
mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000)
r0 = openat$auto_loop_ctl_fops_loop(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
sendmmsg$auto(r0, &(0x7f0000000300)={{&(0x7f0000000080)="4b77b96203d91377739f85c3dd0a48d6aa3fbac7b209cc5f2a3c38e2b75a5a2f18879c18de79836fde0569fcc12ddcc527c35a64cee3e11605af", 0xb05, &(0x7f00000001c0)={&(0x7f0000000100)="e0ef57bb26dd66ff5bff38bddbe61b2fd44ea024fddc33bce6b848c42bc470164dc4aa0b2ab352dd3afe6d48359dfbc34f095da06e219d330035799c42f768e98acaacc7f760e2dff98263dfd4b28ecf245b7a4b0a645683b5c055b1fc27c51da3dc4ae3d157c01dc8999704fee71a84debc7666e86a7fdce32d2073c60e6aebe52a1a7a5930164c4cbece15ca896b7074f02ea6d1f71a303c173213eacfaa4a39939d7840cfb3d817ad45cb1a76c6a994c36a029b76c55fc2ec", 0x6}, 0x1, &(0x7f0000000200)="d1652a5f4425afe5d414b2231946fb7ef30cfaeb8be054d3e7a1538d8272eef9a02420a9c855e59e0c55b69463b36a5fa448a53c9802a04cfc1f2c8689fd756f98273306ed59b949f16878c464b6b98c02ec3ebf83bab953dde74dd136ec5824da0fc10d859d26495e39f8bd5a1e16dee435ca7fc23397099915eb794268882343462a4a51858f36ac889e38d4c6855fe1b42830d89bb300858f326506c5409fd38f5f9bf23c88fa5b823cb233338e3b8661bc181820342c25e53995765750b878d525f8559cc7da92dd0bd73b81e513c5ab6f235f07", 0x7, 0x81}, 0x4}, 0x7ff, 0x4)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
sysfs$auto(0x2, 0x11, 0x0)
sysfs$auto(0x1, 0x0, 0x0)
r1 = openat$auto_vhost_net_fops_net(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$auto_VHOST_SET_BACKEND_FEATURES(r1, 0x4008af83, 0x0)

2.027010505s ago: executing program 7 (id=4536):
r0 = prctl$auto_PR_SET_MM_ENV_END(0x0, 0xb, 0x0, 0x7f, 0x4)
pipe$auto(&(0x7f0000000180)=<r1=>0xffffffffffffffff)
r2 = openat$auto_fops_u64_(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/kernel/debug/netdevsim/netdevsim4/psample/out_tc_occ_max\x00', 0x80, 0x0)
r3 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x20000, 0x0)
ioctl$auto_TIOCSTI2(r3, 0x5412, &(0x7f0000000340)="7fb9d5")
bpf$auto_BPF_MAP_GET_NEXT_KEY(0x4, &(0x7f0000000200)=@bpf_attr_0={0x5, 0x0, 0x0, 0x9, 0x8e0, r0, 0xd, "a0fa683a2f88ee18186df74cbca972e6", 0x0, r1, 0x6b, 0x630, 0x800, 0x11200000, r2, r3}, 0x6953138b)
r4 = io_uring_setup$auto(0x7, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
r5 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0)
ioctl$auto_PPPIOCSMRU(r5, 0xc004743e, 0x0)
ioctl$auto_PPPIOCSPASS(r5, 0x40107447, &(0x7f0000000040)={0x6, 0x0})
ioctl$auto_PPPIOCSPASS(r5, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x81, 0xf3, 0xb0, @raw=0xfffff00c}})
epoll_ctl$auto(0x5, 0x1, r4, 0x0)
mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000)
sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x400c000)
socket(0x1e, 0x4, 0x0)
get_robust_list$auto(0x0, 0x0, 0x0)
statmount$auto(0x0, 0x0, 0x81, 0x968e)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/adsp1\x00', 0x101142, 0x0)
socket(0x10, 0x2, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r6 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0)
ioctl$auto_KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$auto(0x3, 0xae60, 0xffffffffffffffff)
ioctl$auto(0x3, 0xc018aec0, 0x38)
renameat2$auto(r4, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x5)
r7 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/mm/hugepages/hugepages-2048kB/resv_hugepages\x00', 0x40200, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r7, &(0x7f0000000040)=""/65, 0x41)

0s ago: executing program 7 (id=4537):
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0xdb3, 0xdf, 0xeb1, 0x401, 0x8000)
openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/fail-nth\x00', 0x802, 0x0)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0)
r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/irq/9/chip_name\x00', 0x181040, 0x0)
read$auto_kernfs_file_fops_kernfs_internal(r0, &(0x7f0000000140)=""/48, 0x30)
unshare$auto(0x40000080)
r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x0, 0x0)
ioctl$auto_SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000040)=0x5)
unshare$auto(0x40000080)
mmap$auto(0xfffffffffffffffe, 0x8, 0x4000000000db, 0x12, 0x400, 0x8001)
setsockopt$auto_SO_TIMESTAMPNS_NEW(0xffffffffffffffff, 0x4, 0x40, 0x0, 0x4)
r2 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_FLUSH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001bc0)=ANY=[@ANYRESDEC=r2, @ANYBLOB="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"], 0x2bc4}, 0x1, 0x0, 0x0, 0x20008010}, 0x24000080)
write$auto_console_fops_tty_io(r2, &(0x7f0000000440)="671d2647dd69b6440843b6e6688a2b5ad9df2669e6f9cd2365", 0xfdef)
mmap$auto(0xfffffffffffffffd, 0xffffffffffff36b8, 0x7, 0x17, r2, 0x0)
listmount$auto(0x0, 0x0, 0x7fffffffffffffff, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D2\x00', 0x0, 0x0)
openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0)
ioperm$auto(0x7, 0x4, 0xc)
ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000200)={{@raw=0x4, 0x3, 0x1000004, 0x480808, "3112d58500a8b47148e22af9ffb683dbede3d0bf828bbf100000e5e2f96ee50484b0755015e48d00", @inferred=<r3=>0xffffffffffffffff}, 0x2, 0xc, 0x4, @inferred, @reserved="196c056a347704def6f5c5636ed52c07609cee4319588cd9a11ad396065c1267314ab73ce54c205a43297cf5b6cb56bf6bf07f29b651da48edd9350aa935db0d5d6e32e39d8f68ee55f32c5de7b40a4ceb3840920880cbb9fc246ea65af96a74482a52e660cfc6828ba8c9404d70b947a06c9927ba7f1beed137c48265c74c8d", "7a9fc199a16a2311eacf2fc7ae1da978dc3e8090d70925450ece0bb32777702b07552d000000000000000000ebff0000000000000059a200"})
rt_sigqueueinfo$auto(r3, 0xffff7b6f, &(0x7f0000000000)={@siginfo_0_0={0xf9, 0x401, 0x9, @_sigpoll={0xd}}})
r4 = socket(0x11, 0x3, 0x9)
sendmmsg$auto(r4, &(0x7f00000001c0)={{&(0x7f00000000c0), 0x7fcb, 0x0, 0x10015, &(0x7f0000000180), 0x5, 0xe}, 0x5}, 0x9, 0x100)
openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x121900, 0x0)
r5 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/fs/netfs/caches\x00', 0x102, 0x0)
pread64$auto(r5, 0x0, 0xfffffffd, 0x1040cb9258)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x7, 0x62, 0x8000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0)

kernel console output (not intermixed with test programs):


	
		




	











	




	





		







	

	
		
	

	
		
	

	
		
	

	

	



	
	
	

	
		
	

	
		
	
	

	

	




	
				
	
	

	

	
				
	
		


	
	
	
	
	
	
	

	
				
	
	



	
			



	
		
	

	
		
	

	
		

	


	



	
	


	
	


	
	


	
	

	

	
		
	
		
	
	
			







		
	
	

	
		

	


	
	

		
	
		
	
	



			








	

	
	


	



	












	






	
	
		
		

	
			
	







	





	




		










	

	
	
	

	
	

	
	
	
	

	
	
	

	
		
	

	
		
	

	
		
	

	
		
		
	


	
		
	
	



			









	






	




	











	



	



	

	

	
		
		
	




	

		

	
		
		
	
	

			
			
		

		











	
	


	

	
	

		

	




	

	
	



	
	




















	



	
	
	

	


	



	



		



		

	
	

	










		






	
	
	

		
	
	


		
	
	

	
		

		
	





		
	








	
		
	
	

	


	
	

	
	





	







	
	


	

	
		

		
	

	
	
		
	
	
		











	

	

	


	



	
	








	











	
	



	


	
		


		

	

	
	


	
	
	
	
	


		
		
		

		
		


	

	

	
	
		
		

		
		


	

	

	
	
				

					

	


	
	


	
	


		
	
	


	
	


		
	
	

	




	









		









	



	
	






			
	

		

	





		



	
		

	






		









	



	
	






			
	

		

	





		



	
		

	

	

	


		


	
	

	
		
						
	
	
	
						
	



						
	
						
	
	

	

	
	
		
		


	

	

	
	
		
		


			

	
	
	

			

	
	
	

			



			

			

			

			


	

	





	

	









		









	

	









		






	

	

	

				



				



	
		

	
		

		
		

		
	
	

		
		

		
	
	


	
		



	

	


	


	





	

	









	

	




			
	
			
	
			
	
			
	


				


			


				


			
			

			

			

			

			

			

			

			

			

			

	

	
		
	

	

	
		
	

	
		

	
		

	


	
	

		
	
		
	
	



			








	




	





	



	




	




	








	
















	

	
	
	
	

	

	





	





	

	





	



	

			
				
	
	
	
	
	
	
	







	




	





		







	

	
	

	
		
	
	
	
	
	
	
	
	

	

	
				
	
		


	
	
	
		

		
		
	
		
	
	
		
	










		

		
	


	
		
	




	

	


		









	





	




	
	

	





		


	
	




	
	




	
		
	

		
	
	



			














	






	








	
	

	
	




	









	





	







		









	

	
	
	
	



			
			
	
	
		



	


	








	
	




	

	
	
	

			
			
	

		
		
		









	



	
	
	

			
			
	

		
		
		









	



			
		
	
	
	
	

			
			
		







			
		
	
	
	
	

			
			
		







			
		
	
	
	
	

			
			
		







			
		
	
	
	
	

			
			
		
















	
	
	

	
				
	
	



	
			


	
	
	
	
	
	
	
	
	
	
	


	












	
	
	
	
	
	
	
	
	
	
	





	





	





	





	






	











	










		


		


		
	
	
	


			

		





				


				

	

	
		
	
			


	
	

	
	
	
	

	
	
	

	
		
	
	
	
	
	

		
	




	
	
		
		

		
		


	

	

	
	
		
		

		
		


	

	

	
	


	
	


		
	
	


	
	


		
	
	
	
	

	




	









		









	



	
	






			
	

		

	





		



	
		

	






		









	



	
	






			
	

		

	





		



	
		

	

	

	


		


	
	
	
			

			

			

			

				
	
	
	

	
		

	
		

		
		

		
	
	

		
		

		
	
	


	
		



	

				


	


	


	





	

	









	

	




			
	
	

	
		
			
	
			
	
			
	


				


			


				


			

	
		

	


		

		
	
		
	
	



			








	



	

	

	



	


	




	

	














	






	







		










	
	

	

	
	
		

		
						
	
						
	
						
	
						
	
	

	

	
	
		
		


	

	

	
	
		
		


	
	

	

	
		
			

	
	
	

			

	
	
	

			




	
		

	


	
	

		
	
		
	
	



			








	




	



	

	

	

	

	

	

	



		
		
		
		


		

















	











	




	





		







	

	

	





	

	









		









	

	









		






	

	

	

				



				





































	
	
	
	
	






























	
						
	
						
	
	
	
	
	
	
	
						
	
						
	
	
	

		
	




	

	
		
			

	
	
	

			

	
	
	

			



		
		


	
			
	

	
				
		
		


	
	
		
		

		
		


	

	

	
	
	
	
		
		

		
		


	

	

	
	


	
	


		
	
	


	
	


		
	
	

	




	









		









	



	
	






			
	

		

	





		



	
		

	






		









	



	
	






			
	

		

	





		



	
		

	
	
	

	

	


		


	

	

	





	

	









		









	

	









		





	

	

				



				


	
	

	
	
			

			

			

			


	
		

	
		

		
		

		
	
	

		
		

		
	
	




		
		
	


		
		
	

	
		



	

	


	


	





	

	









	

	




			
	
			
	
			
	
			
	


				


			


				


			



	
		
	

	
		
	

	
		
	


	
	

	


	


	

	
		
	

		
		
		


	

	
	

syzkaller
syzkaller login: [ 1100.029978][T22294] binder: 22293:22294 ioctl c018620c 0 returned -1
[ 1100.079171][T22294] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3628'.
[ 1100.519434][T22298] Invalid ELF header magic: != ELF
[ 1104.527327][T22362] cgroup: fork rejected by pids controller in /syz6
[ 1105.151600][T22422] Invalid ELF header magic: != ELF
[ 1105.693623][T22440] FAULT_INJECTION: forcing a failure.
[ 1105.693623][T22440] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1105.760576][T22440] CPU: 1 UID: 0 PID: 22440 Comm: syz.0.3650 Not tainted syzkaller #0 PREEMPT(full) 
[ 1105.760607][T22440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1105.760623][T22440] Call Trace:
[ 1105.760630][T22440]  <TASK>
[ 1105.760639][T22440]  dump_stack_lvl+0x16c/0x1f0
[ 1105.760669][T22440]  should_fail_ex+0x512/0x640
[ 1105.760711][T22440]  get_futex_key+0x293/0x1560
[ 1105.760746][T22440]  ? __pfx_get_futex_key+0x10/0x10
[ 1105.760776][T22440]  ? __mutex_trylock_common+0xe9/0x250
[ 1105.760818][T22440]  futex_wake+0xea/0x530
[ 1105.760857][T22440]  ? __pfx_futex_wake+0x10/0x10
[ 1105.760892][T22440]  ? __lock_acquire+0xb8a/0x1c90
[ 1105.760946][T22440]  do_futex+0x1e3/0x350
[ 1105.760978][T22440]  ? __pfx_do_futex+0x10/0x10
[ 1105.761009][T22440]  ? __might_fault+0xe3/0x190
[ 1105.761040][T22440]  mm_release+0x24e/0x300
[ 1105.761068][T22440]  do_exit+0x68e/0x2bf0
[ 1105.761106][T22440]  ? __pfx_do_exit+0x10/0x10
[ 1105.761138][T22440]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1105.761175][T22440]  ? find_held_lock+0x2b/0x80
[ 1105.761203][T22440]  do_group_exit+0xd3/0x2a0
[ 1105.761238][T22440]  get_signal+0x2671/0x26d0
[ 1105.761272][T22440]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1105.761310][T22440]  ? __pfx_get_signal+0x10/0x10
[ 1105.761337][T22440]  ? do_futex+0x122/0x350
[ 1105.761368][T22440]  ? __pfx_do_futex+0x10/0x10
[ 1105.761403][T22440]  arch_do_signal_or_restart+0x8f/0x790
[ 1105.761434][T22440]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1105.761480][T22440]  exit_to_user_mode_loop+0x85/0x130
[ 1105.761518][T22440]  do_syscall_64+0x426/0xfa0
[ 1105.761546][T22440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1105.761570][T22440] RIP: 0033:0x7fd75678efc9
[ 1105.761588][T22440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1105.761611][T22440] RSP: 002b:00007fd7576a30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1105.761633][T22440] RAX: fffffffffffffe00 RBX: 00007fd7569e5fa8 RCX: 00007fd75678efc9
[ 1105.761649][T22440] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd7569e5fa8
[ 1105.761664][T22440] RBP: 00007fd7569e5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 1105.761679][T22440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1105.761693][T22440] R13: 00007fd7569e6038 R14: 00007ffc751216d0 R15: 00007ffc751217b8
[ 1105.761724][T22440]  </TASK>
[ 1106.769924][T22448] Console: switching to colour frame buffer device 128x48
[ 1107.032677][T22452] FAULT_INJECTION: forcing a failure.
[ 1107.032677][T22452] name failslab, interval 1, probability 0, space 0, times 0
[ 1107.032755][T22452] CPU: 1 UID: 0 PID: 22452 Comm: syz.0.3659 Not tainted syzkaller #0 PREEMPT(full) 
[ 1107.032784][T22452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1107.032799][T22452] Call Trace:
[ 1107.032806][T22452]  <TASK>
[ 1107.032824][T22452]  dump_stack_lvl+0x16c/0x1f0
[ 1107.032854][T22452]  should_fail_ex+0x512/0x640
[ 1107.032892][T22452]  ? __kmalloc_cache_noprof+0x5f/0x780
[ 1107.032935][T22452]  should_failslab+0xc2/0x120
[ 1107.032972][T22452]  __kmalloc_cache_noprof+0x72/0x780
[ 1107.033013][T22452]  ? sctp_datamsg_from_user+0x8d/0x1330
[ 1107.033052][T22452]  ? __lock_acquire+0x622/0x1c90
[ 1107.033088][T22452]  ? sctp_datamsg_from_user+0x8d/0x1330
[ 1107.033126][T22452]  sctp_datamsg_from_user+0x8d/0x1330
[ 1107.033173][T22452]  ? find_held_lock+0x2b/0x80
[ 1107.033196][T22452]  ? __genradix_ptr+0x148/0x1a0
[ 1107.033220][T22452]  sctp_sendmsg_to_asoc+0xae2/0x1bd0
[ 1107.033262][T22452]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[ 1107.033293][T22452]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1107.033331][T22452]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1107.033376][T22452]  ? sctp_sendmsg_check_sflags+0x176/0x320
[ 1107.033407][T22452]  sctp_sendmsg+0xe99/0x1e00
[ 1107.033450][T22452]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1107.033481][T22452]  ? __pfx___might_resched+0x10/0x10
[ 1107.033512][T22452]  ? aa_sk_perm+0x2f4/0xb10
[ 1107.033539][T22452]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1107.033560][T22452]  ? import_ubuf+0x1b6/0x220
[ 1107.033602][T22452]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1107.033638][T22452]  inet_sendmsg+0x11c/0x140
[ 1107.033674][T22452]  ____sys_sendmsg+0x973/0xc70
[ 1107.033704][T22452]  ? copy_msghdr_from_user+0x10a/0x160
[ 1107.033744][T22452]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1107.033772][T22452]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1107.033802][T22452]  ? kfree+0x2b8/0x6d0
[ 1107.033825][T22452]  ? ___sys_sendmsg+0x141/0x1d0
[ 1107.033854][T22452]  ___sys_sendmsg+0x134/0x1d0
[ 1107.033878][T22452]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1107.033945][T22452]  ? __pfx___might_resched+0x10/0x10
[ 1107.033977][T22452]  __sys_sendmmsg+0x200/0x420
[ 1107.034003][T22452]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1107.034035][T22452]  ? __pfx_do_futex+0x10/0x10
[ 1107.034085][T22452]  ? xfd_validate_state+0x61/0x180
[ 1107.034127][T22452]  __x64_sys_sendmmsg+0x9c/0x100
[ 1107.034150][T22452]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1107.034175][T22452]  do_syscall_64+0xcd/0xfa0
[ 1107.034204][T22452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1107.034228][T22452] RIP: 0033:0x7fd75678efc9
[ 1107.034248][T22452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1107.034271][T22452] RSP: 002b:00007fd7576a3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1107.034294][T22452] RAX: ffffffffffffffda RBX: 00007fd7569e5fa0 RCX: 00007fd75678efc9
[ 1107.034310][T22452] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[ 1107.034325][T22452] RBP: 00007fd756811f91 R08: 0000000000000000 R09: 0000000000000000
[ 1107.034340][T22452] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000
[ 1107.034355][T22452] R13: 00007fd7569e6038 R14: 00007fd7569e5fa0 R15: 00007ffc751217b8
[ 1107.034387][T22452]  </TASK>
[ 1109.506242][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1109.882229][T22469] tty tty53: ldisc open failed (-12), clearing slot 52
[ 1110.147898][T22500] netlink: 25 bytes leftover after parsing attributes in process `syz.0.3662'.
[ 1111.780553][T22529] FAULT_INJECTION: forcing a failure.
[ 1111.780553][T22529] name failslab, interval 1, probability 0, space 0, times 0
[ 1111.983484][T22529] CPU: 1 UID: 0 PID: 22529 Comm: syz.7.3668 Not tainted syzkaller #0 PREEMPT(full) 
[ 1111.983518][T22529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1111.983533][T22529] Call Trace:
[ 1111.983541][T22529]  <TASK>
[ 1111.983550][T22529]  dump_stack_lvl+0x16c/0x1f0
[ 1111.983581][T22529]  should_fail_ex+0x512/0x640
[ 1111.983617][T22529]  ? __kmalloc_cache_noprof+0x5f/0x780
[ 1111.983668][T22529]  should_failslab+0xc2/0x120
[ 1111.983702][T22529]  __kmalloc_cache_noprof+0x72/0x780
[ 1111.983742][T22529]  ? sctp_datamsg_from_user+0x8d/0x1330
[ 1111.983781][T22529]  ? __lock_acquire+0x622/0x1c90
[ 1111.983816][T22529]  ? sctp_datamsg_from_user+0x8d/0x1330
[ 1111.983854][T22529]  sctp_datamsg_from_user+0x8d/0x1330
[ 1111.983901][T22529]  ? find_held_lock+0x2b/0x80
[ 1111.983924][T22529]  ? __genradix_ptr+0x148/0x1a0
[ 1111.983949][T22529]  sctp_sendmsg_to_asoc+0xae2/0x1bd0
[ 1111.983990][T22529]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[ 1111.984020][T22529]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1111.984058][T22529]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1111.984103][T22529]  ? sctp_sendmsg_check_sflags+0x176/0x320
[ 1111.984134][T22529]  sctp_sendmsg+0xe99/0x1e00
[ 1111.984180][T22529]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1111.984212][T22529]  ? __pfx___might_resched+0x10/0x10
[ 1111.984243][T22529]  ? aa_sk_perm+0x2f4/0xb10
[ 1111.984271][T22529]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1111.984292][T22529]  ? import_ubuf+0x1b6/0x220
[ 1111.984335][T22529]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1111.984371][T22529]  inet_sendmsg+0x11c/0x140
[ 1111.984407][T22529]  ____sys_sendmsg+0x973/0xc70
[ 1111.984438][T22529]  ? copy_msghdr_from_user+0x10a/0x160
[ 1111.984478][T22529]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1111.984506][T22529]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1111.984536][T22529]  ? kfree+0x2b8/0x6d0
[ 1111.984554][T22529]  ? ___sys_sendmsg+0x141/0x1d0
[ 1111.984582][T22529]  ___sys_sendmsg+0x134/0x1d0
[ 1111.984607][T22529]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1111.984679][T22529]  ? __pfx___might_resched+0x10/0x10
[ 1111.984710][T22529]  __sys_sendmmsg+0x200/0x420
[ 1111.984737][T22529]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1111.984769][T22529]  ? __pfx_do_futex+0x10/0x10
[ 1111.984820][T22529]  ? xfd_validate_state+0x61/0x180
[ 1111.984861][T22529]  __x64_sys_sendmmsg+0x9c/0x100
[ 1111.984884][T22529]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1111.984910][T22529]  do_syscall_64+0xcd/0xfa0
[ 1111.984938][T22529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1111.984963][T22529] RIP: 0033:0x7fe336b8efc9
[ 1111.984983][T22529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1111.985007][T22529] RSP: 002b:00007fe334db4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1111.985031][T22529] RAX: ffffffffffffffda RBX: 00007fe336de6180 RCX: 00007fe336b8efc9
[ 1111.985046][T22529] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[ 1111.985060][T22529] RBP: 00007fe336c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1111.985075][T22529] R10: 000000000000e3a7 R11: 0000000000000246 R12: 0000000000000000
[ 1111.985089][T22529] R13: 00007fe336de6218 R14: 00007fe336de6180 R15: 00007ffc28ae0908
[ 1111.985121][T22529]  </TASK>
[ 1113.181701][T22549] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030
[ 1113.544496][T22547] zswap: compressor  not available
[ 1114.638777][T22576] XFS: Clearing xfsstats
[ 1114.847129][T22581] Invalid ELF header magic: != ELF
[ 1120.115834][T22631] FAULT_INJECTION: forcing a failure.
[ 1120.115834][T22631] name failslab, interval 1, probability 0, space 0, times 0
[ 1120.241644][T22631] CPU: 1 UID: 0 PID: 22631 Comm: syz.7.3691 Not tainted syzkaller #0 PREEMPT(full) 
[ 1120.241678][T22631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1120.241693][T22631] Call Trace:
[ 1120.241701][T22631]  <TASK>
[ 1120.241712][T22631]  dump_stack_lvl+0x16c/0x1f0
[ 1120.241746][T22631]  should_fail_ex+0x512/0x640
[ 1120.241783][T22631]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[ 1120.241813][T22631]  should_failslab+0xc2/0x120
[ 1120.241845][T22631]  kmem_cache_alloc_node_noprof+0x78/0x770
[ 1120.241870][T22631]  ? __alloc_skb+0x2b2/0x380
[ 1120.241913][T22631]  ? __alloc_skb+0x2b2/0x380
[ 1120.241946][T22631]  __alloc_skb+0x2b2/0x380
[ 1120.241982][T22631]  ? __pfx___alloc_skb+0x10/0x10
[ 1120.242020][T22631]  ? netlink_autobind.isra.0+0x158/0x370
[ 1120.242052][T22631]  netlink_alloc_large_skb+0x69/0x140
[ 1120.242079][T22631]  netlink_sendmsg+0x698/0xdd0
[ 1120.242108][T22631]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1120.242137][T22631]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1120.242177][T22631]  __sys_sendto+0x4a3/0x520
[ 1120.242214][T22631]  ? __pfx___sys_sendto+0x10/0x10
[ 1120.242258][T22631]  ? find_held_lock+0x2b/0x80
[ 1120.242304][T22631]  __x64_sys_sendto+0xe0/0x1c0
[ 1120.242339][T22631]  ? do_syscall_64+0x91/0xfa0
[ 1120.242365][T22631]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1120.242391][T22631]  do_syscall_64+0xcd/0xfa0
[ 1120.242419][T22631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1120.242444][T22631] RIP: 0033:0x7fe336b90e5c
[ 1120.242463][T22631] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[ 1120.242487][T22631] RSP: 002b:00007fe334dd3ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[ 1120.242510][T22631] RAX: ffffffffffffffda RBX: 00007fe334dd3fc0 RCX: 00007fe336b90e5c
[ 1120.242527][T22631] RDX: 0000000000000020 RSI: 00007fe334dd4010 RDI: 0000000000000006
[ 1120.242541][T22631] RBP: 0000000000000000 R08: 00007fe334dd3f14 R09: 000000000000000c
[ 1120.242556][T22631] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006
[ 1120.242570][T22631] R13: 00007fe334dd3f68 R14: 00007fe334dd4010 R15: 0000000000000000
[ 1120.242600][T22631]  </TASK>
[ 1121.707327][T22642] netlink: 268 bytes leftover after parsing attributes in process `syz.6.3692'.
[ 1122.001217][T22647] netlink: ct family unspecified
[ 1122.843841][T22671] hub 8-0:1.0: USB hub found
[ 1122.874791][T22671] hub 8-0:1.0: 1 port detected
[ 1123.095615][T22660] Invalid ELF header magic: != ELF
[ 1123.730507][T22685] nbd: illegal input index -560326505
[ 1125.860656][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1125.867069][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1128.260050][T22755] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3721'.
[ 1128.365998][T22755] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1128.424138][T22755] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1128.536122][T22755] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1128.579172][T22753] Invalid ELF header magic: != ELF
[ 1128.614248][T22755] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1130.005944][T22780] Invalid ELF header magic: != ELF
[ 1130.452064][T22791] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input42
[ 1131.424263][T22809] program syz.6.3732 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1132.451202][T22808] Invalid ELF header magic: != ELF
[ 1133.228003][T22828] Invalid ELF header magic: != ELF
[ 1133.797687][T22833] Invalid ELF header magic: != ELF
[ 1134.934867][T22850] Invalid ELF header magic: != ELF
[ 1136.703780][T22874] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3747'.
[ 1137.347010][T22883] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3749'.
[ 1137.347041][T22883] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1137.347062][T22883] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1137.367522][T22883] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1137.367548][T22883] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1137.452203][T22881] program syz.0.3750 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1138.080930][T22892] Invalid ELF header magic: != ELF
[ 1138.207669][T22884] tty tty17: ldisc open failed (-12), clearing slot 16
[ 1139.331349][   T30] audit: type=1800 audit(4294969612.142:35): pid=22913 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.3755" name="features" dev="configfs" ino=99839 res=0 errno=0
[ 1139.957542][T22918] CIFS: VFS: Invalid SecurityFlags: 0x00
[ 1140.856500][T22927] Invalid ELF header magic: != ELF
[ 1142.363557][T22952] device-mapper: ioctl: device name cannot contain '/'
[ 1142.979966][T22943] can: request_module (can-proto-5) failed.
[ 1144.120137][T22972] Invalid ELF header magic: != ELF
[ 1146.157098][T22986] netlink: 'syz.1.3774': attribute type 23 has an invalid length.
[ 1149.673007][T23005] CIFS: VFS: Invalid SecurityFlags: 0x00
[ 1150.581667][T23016] netlink: 'syz.6.3783': attribute type 21 has an invalid length.
[ 1150.646285][T23016] netlink: 334 bytes leftover after parsing attributes in process `syz.6.3783'.
[ 1151.197552][T23024] netlink: 342 bytes leftover after parsing attributes in process `syz.6.3784'.
[ 1151.267250][T23024] netlink: 342 bytes leftover after parsing attributes in process `syz.6.3784'.
[ 1151.776960][T23027] netlink: 302 bytes leftover after parsing attributes in process `syz.6.3784'.
[ 1152.738453][T23036] mkiss: ax0: crc mode is auto.
[ 1153.261776][T23043] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3787'.
[ 1153.354220][T23040] HfR: entered promiscuous mode
[ 1153.430788][T23043] HfR: left promiscuous mode
[ 1154.597123][T23057] netlink: 'syz.0.3793': attribute type 21 has an invalid length.
[ 1154.636663][T23057] netlink: 334 bytes leftover after parsing attributes in process `syz.0.3793'.
[ 1155.580166][T23064] netlink: 93 bytes leftover after parsing attributes in process `syz.7.3794'.
[ 1156.730781][T23093] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3801'.
[ 1156.886837][T23087] mkiss: ax0: crc mode is auto.
[ 1156.958803][T23090] HfR: entered promiscuous mode
[ 1157.019924][T23093] HfR: left promiscuous mode
[ 1157.581594][T23099] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3802'.
[ 1158.510395][T16658] Bluetooth: hci2: command 0x0406 tx timeout
[ 1160.404436][T23130] netlink: 'syz.1.3809': attribute type 21 has an invalid length.
[ 1160.455785][T23130] netlink: 334 bytes leftover after parsing attributes in process `syz.1.3809'.
[ 1160.689220][   T30] audit: type=1800 audit(4294969633.602:36): pid=23133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3817" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[ 1162.080665][T23156] input: jJǸ���;9�%v����l��Q�	J86�� as /devices/virtual/input/input43
[ 1166.643311][T23214] FAULT_INJECTION: forcing a failure.
[ 1166.643311][T23214] name failslab, interval 1, probability 0, space 0, times 0
[ 1166.737914][T23214] CPU: 1 UID: 0 PID: 23214 Comm: syz.6.3824 Not tainted syzkaller #0 PREEMPT(full) 
[ 1166.737948][T23214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1166.737963][T23214] Call Trace:
[ 1166.737972][T23214]  <TASK>
[ 1166.737981][T23214]  dump_stack_lvl+0x16c/0x1f0
[ 1166.738012][T23214]  should_fail_ex+0x512/0x640
[ 1166.738049][T23214]  ? fs_reclaim_acquire+0xae/0x150
[ 1166.738084][T23214]  should_failslab+0xc2/0x120
[ 1166.738117][T23214]  __kmalloc_noprof+0xdd/0x880
[ 1166.738154][T23214]  ? kfree+0x252/0x6d0
[ 1166.738173][T23214]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1166.738207][T23214]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[ 1166.738234][T23214]  tomoyo_realpath_from_path+0xc2/0x6e0
[ 1166.738270][T23214]  tomoyo_check_open_permission+0x2ab/0x3c0
[ 1166.738311][T23214]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[ 1166.738380][T23214]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1166.738427][T23214]  tomoyo_file_open+0x6b/0x90
[ 1166.738459][T23214]  security_file_open+0x84/0x1e0
[ 1166.738486][T23214]  do_dentry_open+0x596/0x1530
[ 1166.738524][T23214]  vfs_open+0x82/0x3f0
[ 1166.738570][T23214]  path_openat+0x1de4/0x2cb0
[ 1166.738606][T23214]  ? __pfx_path_openat+0x10/0x10
[ 1166.738635][T23214]  ? __lock_acquire+0xb8a/0x1c90
[ 1166.738671][T23214]  do_filp_open+0x20b/0x470
[ 1166.738699][T23214]  ? __pfx_do_filp_open+0x10/0x10
[ 1166.738747][T23214]  ? alloc_fd+0x471/0x7d0
[ 1166.738779][T23214]  do_sys_openat2+0x11b/0x1d0
[ 1166.738815][T23214]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1166.738862][T23214]  __x64_sys_openat+0x174/0x210
[ 1166.738898][T23214]  ? __pfx___x64_sys_openat+0x10/0x10
[ 1166.738946][T23214]  do_syscall_64+0xcd/0xfa0
[ 1166.738975][T23214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1166.739000][T23214] RIP: 0033:0x7f06ea18efc9
[ 1166.739019][T23214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1166.739044][T23214] RSP: 002b:00007f06eb023038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1166.739068][T23214] RAX: ffffffffffffffda RBX: 00007f06ea3e5fa0 RCX: 00007f06ea18efc9
[ 1166.739085][T23214] RDX: 0000000000143101 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[ 1166.739102][T23214] RBP: 00007f06ea211f91 R08: 0000000000000000 R09: 0000000000000000
[ 1166.739117][T23214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1166.739132][T23214] R13: 00007f06ea3e6038 R14: 00007f06ea3e5fa0 R15: 00007ffe3a65f228
[ 1166.739165][T23214]  </TASK>
[ 1166.739175][T23214] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1171.361547][T23263] random: crng reseeded on system resumption
[ 1176.777520][T23347] delete_channel: no stack
[ 1177.204959][T23344] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1177.497753][T23343] tipc: Started in network mode
[ 1177.529701][T23343] tipc: Node identity 45e5412, cluster identity 4711
[ 1177.574815][T23343] tipc: Node number set to 73290770
[ 1178.605433][T23366] netlink: 222 bytes leftover after parsing attributes in process `syz.1.3861'.
[ 1179.035871][T23376] FAULT_INJECTION: forcing a failure.
[ 1179.035871][T23376] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1179.128956][T23376] CPU: 1 UID: 0 PID: 23376 Comm: syz.6.3864 Not tainted syzkaller #0 PREEMPT(full) 
[ 1179.128989][T23376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1179.129004][T23376] Call Trace:
[ 1179.129012][T23376]  <TASK>
[ 1179.129021][T23376]  dump_stack_lvl+0x16c/0x1f0
[ 1179.129051][T23376]  should_fail_ex+0x512/0x640
[ 1179.129091][T23376]  _copy_from_user+0x2e/0xd0
[ 1179.129130][T23376]  get_timespec64+0x8b/0x1b0
[ 1179.129160][T23376]  ? __pfx_get_timespec64+0x10/0x10
[ 1179.129189][T23376]  ? find_held_lock+0x2b/0x80
[ 1179.129221][T23376]  __x64_sys_futex+0x288/0x4c0
[ 1179.129257][T23376]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1179.129290][T23376]  ? xfd_validate_state+0x61/0x180
[ 1179.129334][T23376]  do_syscall_64+0xcd/0xfa0
[ 1179.129365][T23376]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1179.129389][T23376] RIP: 0033:0x7f06ea18efc9
[ 1179.129429][T23376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1179.129453][T23376] RSP: 002b:00007ffe3a65f388 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1179.129476][T23376] RAX: ffffffffffffffda RBX: 00000000001200c0 RCX: 00007f06ea18efc9
[ 1179.129492][T23376] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f06ea3e5fac
[ 1179.129513][T23376] RBP: 0000000000000032 R08: 00007f06eb024000 R09: 000000033a65f67f
[ 1179.129528][T23376] R10: 00007ffe3a65f480 R11: 0000000000000246 R12: 00007f06ea3e5fac
[ 1179.129544][T23376] R13: 00007ffe3a65f480 R14: 00000000001200f2 R15: 00007ffe3a65f4a0
[ 1179.129575][T23376]  </TASK>
[ 1183.734870][T23441] ALSA: mixer_oss: invalid OSS volume '0'
[ 1183.740663][T23441] ALSA: mixer_oss: invalid OSS volume 'PHONET'
[ 1183.833026][T23441] ALSA: mixer_oss: invalid OSS volume 'L2TP/IPv6'
[ 1185.224275][T23462] sd 0:0:1:0: PR command failed: 1026
[ 1185.266073][T23462] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 1185.298535][T23462] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 1186.591272][T23487] netlink: 'syz.7.3893': attribute type 5 has an invalid length.
[ 1186.768519][T23487] netlink: 'syz.7.3893': attribute type 1 has an invalid length.
[ 1186.887468][T23487] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3893'.
[ 1187.038210][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1187.044562][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1187.326485][T23499] sd 0:0:1:0: PR command failed: 1026
[ 1187.372233][T23499] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[ 1187.416223][T23499] sd 0:0:1:0: Add. Sense: Invalid command operation code
[ 1188.507158][T23514] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3902'.
[ 1189.087805][T12205] Bluetooth: hci4: command 0x0406 tx timeout
[ 1189.366391][T23527] ima: policy update failed
[ 1189.407010][   T30] audit: type=1802 audit(4294969662.447:37): pid=23527 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.7.3905" res=0 errno=0
[ 1192.283245][T23567] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input44
[ 1193.016761][T23568] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input45
[ 1198.224251][T23630] random: crng reseeded on system resumption
[ 1201.448436][T16658] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[ 1201.456570][T16658] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:0'
[ 1201.467333][T16658] CPU: 1 UID: 0 PID: 16658 Comm: kworker/u11:3 Not tainted syzkaller #0 PREEMPT(full) 
[ 1201.467364][T16658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1201.467382][T16658] Workqueue: hci1 hci_rx_work
[ 1201.467412][T16658] Call Trace:
[ 1201.467420][T16658]  <TASK>
[ 1201.467455][T16658]  dump_stack_lvl+0x16c/0x1f0
[ 1201.467484][T16658]  sysfs_warn_dup+0x7f/0xa0
[ 1201.467514][T16658]  sysfs_create_dir_ns+0x24b/0x2b0
[ 1201.467544][T16658]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 1201.467573][T16658]  ? find_held_lock+0x2b/0x80
[ 1201.467603][T16658]  ? do_raw_spin_unlock+0x172/0x230
[ 1201.467645][T16658]  kobject_add_internal+0x2c4/0x9b0
[ 1201.467681][T16658]  kobject_add+0x16e/0x240
[ 1201.467711][T16658]  ? __pfx_kobject_add+0x10/0x10
[ 1201.467743][T16658]  ? do_raw_spin_unlock+0x172/0x230
[ 1201.467783][T16658]  ? kobject_put+0xab/0x5a0
[ 1201.467819][T16658]  device_add+0x288/0x1aa0
[ 1201.467858][T16658]  ? __pfx_dev_set_name+0x10/0x10
[ 1201.467882][T16658]  ? __pfx_device_add+0x10/0x10
[ 1201.467919][T16658]  ? mgmt_send_event_skb+0x2fb/0x460
[ 1201.467951][T16658]  hci_conn_add_sysfs+0x17e/0x230
[ 1201.467982][T16658]  le_conn_complete_evt+0x1260/0x2150
[ 1201.468013][T16658]  ? __pfx_le_conn_complete_evt+0x10/0x10
[ 1201.468037][T16658]  ? bt_warn+0xe4/0x120
[ 1201.468073][T16658]  ? __pfx_bt_warn+0x10/0x10
[ 1201.468118][T16658]  hci_le_conn_complete_evt+0x23c/0x370
[ 1201.468149][T16658]  hci_le_meta_evt+0x357/0x5e0
[ 1201.468176][T16658]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[ 1201.468205][T16658]  hci_event_packet+0x685/0x11c0
[ 1201.468229][T16658]  ? __pfx_hci_le_meta_evt+0x10/0x10
[ 1201.468257][T16658]  ? __pfx_hci_event_packet+0x10/0x10
[ 1201.468284][T16658]  ? kcov_remote_start+0x3c9/0x6d0
[ 1201.468307][T16658]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1201.468340][T16658]  hci_rx_work+0x2c5/0x16b0
[ 1201.468368][T16658]  ? rcu_is_watching+0x12/0xc0
[ 1201.468398][T16658]  process_one_work+0x9cf/0x1b70
[ 1201.468453][T16658]  ? __pfx_process_one_work+0x10/0x10
[ 1201.468501][T16658]  ? assign_work+0x1a0/0x250
[ 1201.468539][T16658]  worker_thread+0x6c8/0xf10
[ 1201.468586][T16658]  ? __kthread_parkme+0x19e/0x250
[ 1201.468618][T16658]  ? __pfx_worker_thread+0x10/0x10
[ 1201.468656][T16658]  kthread+0x3c5/0x780
[ 1201.468692][T16658]  ? __pfx_kthread+0x10/0x10
[ 1201.468729][T16658]  ? rcu_is_watching+0x12/0xc0
[ 1201.468755][T16658]  ? __pfx_kthread+0x10/0x10
[ 1201.468791][T16658]  ret_from_fork+0x675/0x7d0
[ 1201.468826][T16658]  ? __pfx_kthread+0x10/0x10
[ 1201.468862][T16658]  ret_from_fork_asm+0x1a/0x30
[ 1201.468912][T16658]  </TASK>
[ 1201.468939][T16658] kobject: kobject_add_internal failed for hci1:0 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1201.752079][T16658] Bluetooth: hci1: failed to register connection device
[ 1204.317096][T23680] zswap: compressor  not available
[ 1205.336721][T23705] nfs: Unknown parameter 'w��`_�����I+;��	��HY� ������Lu�>>��uh�*��C<+����'
[ 1205.500069][T23707] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input46
[ 1206.038849][T23706] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3947'.
[ 1207.790465][T23727] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1208.295448][T23739] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1208.334591][T23740] FAULT_INJECTION: forcing a failure.
[ 1208.334591][T23740] name fail_futex, interval 1, probability 0, space 0, times 0
[ 1208.419276][T23740] CPU: 1 UID: 0 PID: 23740 Comm: syz.0.3959 Not tainted syzkaller #0 PREEMPT(full) 
[ 1208.419310][T23740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1208.419325][T23740] Call Trace:
[ 1208.419333][T23740]  <TASK>
[ 1208.419342][T23740]  dump_stack_lvl+0x16c/0x1f0
[ 1208.419372][T23740]  should_fail_ex+0x512/0x640
[ 1208.419413][T23740]  get_futex_key+0x1d0/0x1560
[ 1208.419447][T23740]  ? __pfx_get_futex_key+0x10/0x10
[ 1208.419479][T23740]  ? __pfx___schedule+0x10/0x10
[ 1208.419501][T23740]  ? trace_sched_set_need_resched_tp+0xf3/0x150
[ 1208.419531][T23740]  futex_wait_setup+0x9d/0x550
[ 1208.419578][T23740]  __futex_wait+0x193/0x2f0
[ 1208.419617][T23740]  ? __pfx___futex_wait+0x10/0x10
[ 1208.419659][T23740]  ? __pfx_futex_wake_mark+0x10/0x10
[ 1208.419701][T23740]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 1208.419737][T23740]  ? __hrtimer_setup+0x176/0x280
[ 1208.419775][T23740]  ? ktime_add_safe+0x60/0x70
[ 1208.419815][T23740]  futex_wait+0xe8/0x380
[ 1208.419835][T23740]  ? __pfx_futex_wait+0x10/0x10
[ 1208.419878][T23740]  ? __lock_acquire+0xb8a/0x1c90
[ 1208.419913][T23740]  ? __pfx_hrtimer_wakeup+0x10/0x10
[ 1208.419960][T23740]  do_futex+0x229/0x350
[ 1208.419993][T23740]  ? __pfx_do_futex+0x10/0x10
[ 1208.420023][T23740]  ? rcu_is_watching+0x12/0xc0
[ 1208.420048][T23740]  ? ktime_get+0x200/0x310
[ 1208.420075][T23740]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1208.420101][T23740]  ? read_tsc+0x9/0x20
[ 1208.420132][T23740]  __x64_sys_futex+0x1e0/0x4c0
[ 1208.420177][T23740]  ? __pfx___x64_sys_futex+0x10/0x10
[ 1208.420210][T23740]  ? xfd_validate_state+0x61/0x180
[ 1208.420253][T23740]  do_syscall_64+0xcd/0xfa0
[ 1208.420282][T23740]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1208.420306][T23740] RIP: 0033:0x7fd75678efc9
[ 1208.420325][T23740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1208.420349][T23740] RSP: 002b:00007ffc75121918 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1208.420372][T23740] RAX: ffffffffffffffda RBX: 00000000001273bd RCX: 00007fd75678efc9
[ 1208.420388][T23740] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd7569e5fac
[ 1208.420403][T23740] RBP: 0000000000000032 R08: 00007fd7576a4000 R09: 0000000475121c0f
[ 1208.420418][T23740] R10: 00007ffc75121a10 R11: 0000000000000246 R12: 00007fd7569e5fac
[ 1208.420434][T23740] R13: 00007ffc75121a10 R14: 00000000001273ef R15: 00007ffc75121a30
[ 1208.420465][T23740]  </TASK>
[ 1209.412881][T23750] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3961'.
[ 1210.119268][T23765] nbd: illegal input index -560326505
[ 1212.219638][T23786] size and base must be multiples of 4 kiB
[ 1212.259294][T23786] CPU: 1 UID: 0 PID: 23786 Comm: syz.0.3969 Not tainted syzkaller #0 PREEMPT(full) 
[ 1212.259327][T23786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1212.259346][T23786] Call Trace:
[ 1212.259356][T23786]  <TASK>
[ 1212.259367][T23786]  dump_stack_lvl+0x16c/0x1f0
[ 1212.259398][T23786]  mtrr_del+0xd1/0x110
[ 1212.259432][T23786]  mtrr_ioctl+0x922/0xcf0
[ 1212.259467][T23786]  ? __pfx_mtrr_ioctl+0x10/0x10
[ 1212.259514][T23786]  ? find_held_lock+0x2b/0x80
[ 1212.259548][T23786]  ? __fget_files+0x20e/0x3c0
[ 1212.259574][T23786]  ? __pfx_mtrr_ioctl+0x10/0x10
[ 1212.259608][T23786]  proc_reg_unlocked_ioctl+0x229/0x320
[ 1212.259641][T23786]  ? __pfx_proc_reg_unlocked_ioctl+0x10/0x10
[ 1212.259678][T23786]  __x64_sys_ioctl+0x18e/0x210
[ 1212.259717][T23786]  do_syscall_64+0xcd/0xfa0
[ 1212.259745][T23786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1212.259769][T23786] RIP: 0033:0x7fd75678efc9
[ 1212.259788][T23786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1212.259812][T23786] RSP: 002b:00007fd757682038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1212.259834][T23786] RAX: ffffffffffffffda RBX: 00007fd7569e6090 RCX: 00007fd75678efc9
[ 1212.259850][T23786] RDX: 0000000000000007 RSI: 0000000040104d04 RDI: 0000000000000003
[ 1212.259865][T23786] RBP: 00007fd756811f91 R08: 0000000000000000 R09: 0000000000000000
[ 1212.259880][T23786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1212.259894][T23786] R13: 00007fd7569e6128 R14: 00007fd7569e6090 R15: 00007ffc751217b8
[ 1212.259926][T23786]  </TASK>
[ 1214.529743][T23801] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3974'.
[ 1216.275832][T23831] blktrace: Concurrent blktraces are not allowed on loop2
[ 1218.749108][T23868] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[ 1229.522582][T23969] netlink: 186 bytes leftover after parsing attributes in process `syz.0.4018'.
[ 1230.965798][T23984] ima: policy update failed
[ 1230.970492][   T30] audit: type=1802 audit(4294967335.017:38): pid=23984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.7.4022" res=0 errno=0
[ 1235.526986][T24040] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4037'.
[ 1237.662430][T24068] usb usb28: usbfs: process 24068 (syz.0.4044) did not claim interface 1 before use
[ 1237.727054][T24071] netlink: 'syz.0.4044': attribute type 4 has an invalid length.
[ 1237.771281][T24071] netlink: 314 bytes leftover after parsing attributes in process `syz.0.4044'.
[ 1238.171943][T24077] ima: policy update failed
[ 1238.201068][   T30] audit: type=1802 audit(4294967342.291:39): pid=24077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.4047" res=0 errno=0
[ 1238.727474][T24086] random: crng reseeded on system resumption
[ 1239.059445][T24097] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4052'.
[ 1239.304802][T24097] ipvlan0: entered promiscuous mode
[ 1239.304829][T24097] ipvlan0: entered allmulticast mode
[ 1239.304846][T24097] veth0_vlan: entered allmulticast mode
[ 1240.404358][T24116] netlink: 'syz.1.4057': attribute type 4 has an invalid length.
[ 1240.453391][T24116] netlink: 314 bytes leftover after parsing attributes in process `syz.1.4057'.
[ 1242.892840][T24149] usb usb28: usbfs: process 24149 (syz.7.4070) did not claim interface 1 before use
[ 1242.948687][T24149] netlink: 'syz.7.4070': attribute type 4 has an invalid length.
[ 1242.991489][T24149] netlink: 314 bytes leftover after parsing attributes in process `syz.7.4070'.
[ 1245.387280][T24175] kexec: Could not allocate control_code_buffer
[ 1247.045769][T24207] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4084'.
[ 1248.171774][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1248.178125][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1253.333530][T24269] kexec: Could not allocate control_code_buffer
[ 1253.757109][T24304] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1258.312855][T24394] FAULT_INJECTION: forcing a failure.
[ 1258.312855][T24394] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1258.437242][T24394] CPU: 1 UID: 0 PID: 24394 Comm: syz.0.4117 Not tainted syzkaller #0 PREEMPT(full) 
[ 1258.437277][T24394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1258.437291][T24394] Call Trace:
[ 1258.437299][T24394]  <TASK>
[ 1258.437309][T24394]  dump_stack_lvl+0x16c/0x1f0
[ 1258.437339][T24394]  should_fail_ex+0x512/0x640
[ 1258.437380][T24394]  should_fail_alloc_page+0xe7/0x130
[ 1258.437416][T24394]  prepare_alloc_pages+0x3c2/0x610
[ 1258.437458][T24394]  ? rcu_is_watching+0x12/0xc0
[ 1258.437487][T24394]  __alloc_frozen_pages_noprof+0x18b/0x2470
[ 1258.437515][T24394]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1258.437545][T24394]  ? is_bpf_text_address+0x94/0x1a0
[ 1258.437580][T24394]  ? kernel_text_address+0x8d/0x100
[ 1258.437620][T24394]  ? __kernel_text_address+0xd/0x40
[ 1258.437641][T24394]  ? unwind_get_return_address+0x59/0xa0
[ 1258.437667][T24394]  ? arch_stack_walk+0xa6/0x100
[ 1258.437694][T24394]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1258.437731][T24394]  ? stack_depot_save_flags+0x29/0x9c0
[ 1258.437771][T24394]  ? __pfx_stack_trace_save+0x10/0x10
[ 1258.437803][T24394]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1258.437844][T24394]  ? policy_nodemask+0xea/0x4e0
[ 1258.437879][T24394]  alloc_pages_mpol+0x1fb/0x550
[ 1258.437913][T24394]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1258.437954][T24394]  alloc_pages_noprof+0x131/0x390
[ 1258.437987][T24394]  kimage_alloc_pages+0x74/0x350
[ 1258.438014][T24394]  kimage_alloc_control_pages+0x153/0xa00
[ 1258.438048][T24394]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 1258.438083][T24394]  do_kexec_load+0x478/0x8a0
[ 1258.438111][T24394]  ? __pfx_do_kexec_load+0x10/0x10
[ 1258.438143][T24394]  ? _copy_from_user+0x59/0xd0
[ 1258.438184][T24394]  __x64_sys_kexec_load+0x1bf/0x230
[ 1258.438214][T24394]  do_syscall_64+0xcd/0xfa0
[ 1258.438243][T24394]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1258.438267][T24394] RIP: 0033:0x7fd75678efc9
[ 1258.438287][T24394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1258.438311][T24394] RSP: 002b:00007fd75761f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 1258.438334][T24394] RAX: ffffffffffffffda RBX: 00007fd7569e6360 RCX: 00007fd75678efc9
[ 1258.438350][T24394] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005
[ 1258.438365][T24394] RBP: 00007fd756811f91 R08: 0000000000000000 R09: 0000000000000000
[ 1258.438380][T24394] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[ 1258.438395][T24394] R13: 00007fd7569e63f8 R14: 00007fd7569e6360 R15: 00007ffc751217b8
[ 1258.438432][T24394]  </TASK>
[ 1258.438542][T24394] kexec: Could not allocate control_code_buffer
[ 1259.748482][T24411] ICMPv6: process `syz.7.4123' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[ 1263.130708][T12205] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1263.976945][T24467] FAULT_INJECTION: forcing a failure.
[ 1263.976945][T24467] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1264.110917][T24467] CPU: 1 UID: 0 PID: 24467 Comm: syz.7.4136 Not tainted syzkaller #0 PREEMPT(full) 
[ 1264.110951][T24467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1264.110966][T24467] Call Trace:
[ 1264.110975][T24467]  <TASK>
[ 1264.110984][T24467]  dump_stack_lvl+0x16c/0x1f0
[ 1264.111015][T24467]  should_fail_ex+0x512/0x640
[ 1264.111056][T24467]  should_fail_alloc_page+0xe7/0x130
[ 1264.111091][T24467]  prepare_alloc_pages+0x3c2/0x610
[ 1264.111124][T24467]  ? rcu_is_watching+0x12/0xc0
[ 1264.111153][T24467]  __alloc_frozen_pages_noprof+0x18b/0x2470
[ 1264.111180][T24467]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1264.111210][T24467]  ? is_bpf_text_address+0x94/0x1a0
[ 1264.111245][T24467]  ? kernel_text_address+0x8d/0x100
[ 1264.111285][T24467]  ? __kernel_text_address+0xd/0x40
[ 1264.111306][T24467]  ? unwind_get_return_address+0x59/0xa0
[ 1264.111333][T24467]  ? arch_stack_walk+0xa6/0x100
[ 1264.111360][T24467]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1264.111397][T24467]  ? stack_depot_save_flags+0x29/0x9c0
[ 1264.111440][T24467]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1264.111482][T24467]  ? policy_nodemask+0xea/0x4e0
[ 1264.111517][T24467]  alloc_pages_mpol+0x1fb/0x550
[ 1264.111551][T24467]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1264.111591][T24467]  alloc_pages_noprof+0x131/0x390
[ 1264.111624][T24467]  kimage_alloc_pages+0x74/0x350
[ 1264.111651][T24467]  kimage_alloc_control_pages+0x153/0xa00
[ 1264.111684][T24467]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[ 1264.111719][T24467]  do_kexec_load+0x478/0x8a0
[ 1264.111748][T24467]  ? __pfx_do_kexec_load+0x10/0x10
[ 1264.111777][T24467]  ? _copy_from_user+0x59/0xd0
[ 1264.111818][T24467]  __x64_sys_kexec_load+0x1bf/0x230
[ 1264.111848][T24467]  do_syscall_64+0xcd/0xfa0
[ 1264.111876][T24467]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1264.111901][T24467] RIP: 0033:0x7fe336b8efc9
[ 1264.111926][T24467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1264.111949][T24467] RSP: 002b:00007fe33414b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6
[ 1264.111971][T24467] RAX: ffffffffffffffda RBX: 00007fe336de6450 RCX: 00007fe336b8efc9
[ 1264.111988][T24467] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005
[ 1264.112002][T24467] RBP: 00007fe336c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1264.112018][T24467] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000
[ 1264.112033][T24467] R13: 00007fe336de64e8 R14: 00007fe336de6450 R15: 00007ffc28ae0908
[ 1264.112065][T24467]  </TASK>
[ 1264.112092][T24467] kexec: Could not allocate control_code_buffer
[ 1267.976655][T24524] netlink: 338 bytes leftover after parsing attributes in process `syz.6.4148'.
[ 1268.175610][T24526] netlink: 342 bytes leftover after parsing attributes in process `syz.6.4148'.
[ 1269.766906][T24548] futex_wake_op: syz.6.4152 tries to shift op by -2048; fix this program
[ 1269.958590][T24548] futex_wake_op: syz.6.4152 tries to shift op by -2048; fix this program
[ 1271.391315][T24574] : Can't lookup blockdev
[ 1274.276236][T24627] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4172'.
[ 1274.589205][T24635] FAULT_INJECTION: forcing a failure.
[ 1274.589205][T24635] name failslab, interval 1, probability 0, space 0, times 0
[ 1274.758132][T24635] CPU: 1 UID: 0 PID: 24635 Comm: syz.6.4173 Not tainted syzkaller #0 PREEMPT(full) 
[ 1274.758166][T24635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1274.758180][T24635] Call Trace:
[ 1274.758187][T24635]  <TASK>
[ 1274.758196][T24635]  dump_stack_lvl+0x16c/0x1f0
[ 1274.758227][T24635]  should_fail_ex+0x512/0x640
[ 1274.758262][T24635]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[ 1274.758291][T24635]  should_failslab+0xc2/0x120
[ 1274.758322][T24635]  kmem_cache_alloc_node_noprof+0x78/0x770
[ 1274.758347][T24635]  ? __alloc_skb+0x2b2/0x380
[ 1274.758388][T24635]  ? __alloc_skb+0x2b2/0x380
[ 1274.758421][T24635]  ? __pfx_netlink_insert+0x10/0x10
[ 1274.758442][T24635]  __alloc_skb+0x2b2/0x380
[ 1274.758478][T24635]  ? __pfx___alloc_skb+0x10/0x10
[ 1274.758514][T24635]  ? netlink_autobind.isra.0+0x158/0x370
[ 1274.758550][T24635]  netlink_alloc_large_skb+0x69/0x140
[ 1274.758576][T24635]  netlink_sendmsg+0x698/0xdd0
[ 1274.758605][T24635]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1274.758633][T24635]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[ 1274.758672][T24635]  ____sys_sendmsg+0xa98/0xc70
[ 1274.758702][T24635]  ? copy_msghdr_from_user+0x10a/0x160
[ 1274.758741][T24635]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1274.758783][T24635]  ___sys_sendmsg+0x134/0x1d0
[ 1274.758807][T24635]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1274.758843][T24635]  ? __lock_acquire+0x622/0x1c90
[ 1274.758910][T24635]  __sys_sendmsg+0x16d/0x220
[ 1274.758932][T24635]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1274.758978][T24635]  do_syscall_64+0xcd/0xfa0
[ 1274.759006][T24635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1274.759030][T24635] RIP: 0033:0x7f06ea18efc9
[ 1274.759048][T24635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1274.759071][T24635] RSP: 002b:00007f06eb023038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1274.759093][T24635] RAX: ffffffffffffffda RBX: 00007f06ea3e5fa0 RCX: 00007f06ea18efc9
[ 1274.759108][T24635] RDX: 0000000024008004 RSI: 0000200000001cc0 RDI: 0000000000000003
[ 1274.759123][T24635] RBP: 00007f06eb023090 R08: 0000000000000000 R09: 0000000000000000
[ 1274.759137][T24635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1274.759151][T24635] R13: 00007f06ea3e6038 R14: 00007f06ea3e5fa0 R15: 00007ffe3a65f228
[ 1274.759181][T24635]  </TASK>
[ 1277.414738][T24677] netlink: 342 bytes leftover after parsing attributes in process `syz.1.4185'.
[ 1278.925279][T24705] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4194'.
[ 1278.976425][T24705] netlink: 25 bytes leftover after parsing attributes in process `syz.0.4194'.
[ 1281.016107][T24725] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1281.066311][T24725] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1281.116483][T24725] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1281.160165][T24725] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1281.237924][T24725] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1281.261888][T24725] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1281.304707][T24725] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1281.365940][T24725] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1281.404554][T24725] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1281.426081][T24725] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1281.463383][T24725] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1281.508255][T24725] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1281.560943][T24725] CPU0 is offline.
[ 1282.320254][T12205] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1283.118397][T12205] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1283.205804][T24763] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4210'.
[ 1283.276589][T12205] Bluetooth: hci5: command 0x0406 tx timeout
[ 1283.436595][T12205] Bluetooth: hci2: command 0x0406 tx timeout
[ 1283.517939][T12205] Bluetooth: hci4: command 0x0406 tx timeout
[ 1285.186427][T12205] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1285.285102][   T30] audit: type=1800 audit(4294967389.593:40): pid=24799 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.4219" name="features" dev="configfs" ino=108844 res=0 errno=0
[ 1285.347669][T12205] Bluetooth: hci5: command 0x0406 tx timeout
[ 1285.506148][T12205] Bluetooth: hci2: command 0x0406 tx timeout
[ 1285.584641][T12205] Bluetooth: hci4: command 0x0406 tx timeout
[ 1286.215271][T24811] random: crng reseeded on system resumption
[ 1286.304221][T24811] vhci_hcd: invalid port number 23
[ 1286.366797][T24811] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub.
[ 1286.451685][T24810] netlink: 'syz.0.4222': attribute type 33 has an invalid length.
[ 1286.505654][T24810] netlink: 322 bytes leftover after parsing attributes in process `syz.0.4222'.
[ 1287.193152][T24825] netlink: 'syz.7.4226': attribute type 1 has an invalid length.
[ 1287.256616][T12205] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1287.421799][T12205] Bluetooth: hci5: command 0x0406 tx timeout
[ 1287.575128][T12205] Bluetooth: hci2: command 0x0406 tx timeout
[ 1288.258314][T24840] FAULT_INJECTION: forcing a failure.
[ 1288.258314][T24840] name failslab, interval 1, probability 0, space 0, times 0
[ 1288.293615][T24842] random: crng reseeded on system resumption
[ 1288.430256][T24840] CPU: 1 UID: 0 PID: 24840 Comm: syz.6.4229 Not tainted syzkaller #0 PREEMPT(full) 
[ 1288.430290][T24840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1288.430305][T24840] Call Trace:
[ 1288.430313][T24840]  <TASK>
[ 1288.430323][T24840]  dump_stack_lvl+0x16c/0x1f0
[ 1288.430354][T24840]  should_fail_ex+0x512/0x640
[ 1288.430391][T24840]  ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0
[ 1288.430427][T24840]  should_failslab+0xc2/0x120
[ 1288.430460][T24840]  __kmalloc_node_track_caller_noprof+0xde/0x8a0
[ 1288.430492][T24840]  ? create_filter_start.constprop.0+0x16a/0x300
[ 1288.430533][T24840]  ? kstrdup+0x53/0x100
[ 1288.430557][T24840]  kstrdup+0x53/0x100
[ 1288.430583][T24840]  create_filter_start.constprop.0+0x16a/0x300
[ 1288.430623][T24840]  create_filter+0xb5/0x210
[ 1288.430658][T24840]  ? __pfx_create_filter+0x10/0x10
[ 1288.430694][T24840]  ? __pfx___mutex_lock+0x10/0x10
[ 1288.430721][T24840]  ? find_held_lock+0x2b/0x80
[ 1288.430749][T24840]  apply_event_filter+0x220/0x500
[ 1288.430795][T24840]  ? __pfx_apply_event_filter+0x10/0x10
[ 1288.430839][T24840]  event_filter_write+0x16d/0x290
[ 1288.430867][T24840]  ? __pfx_event_filter_write+0x10/0x10
[ 1288.430891][T24840]  vfs_write+0x2a0/0x11d0
[ 1288.430923][T24840]  ? __pfx___mutex_lock+0x10/0x10
[ 1288.430951][T24840]  ? __pfx_vfs_write+0x10/0x10
[ 1288.430990][T24840]  ? __fget_files+0x20e/0x3c0
[ 1288.431022][T24840]  ksys_write+0x12a/0x250
[ 1288.431048][T24840]  ? __pfx_ksys_write+0x10/0x10
[ 1288.431083][T24840]  do_syscall_64+0xcd/0xfa0
[ 1288.431112][T24840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1288.431138][T24840] RIP: 0033:0x7f06ea18efc9
[ 1288.431157][T24840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1288.431181][T24840] RSP: 002b:00007f06eb002038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1288.431203][T24840] RAX: ffffffffffffffda RBX: 00007f06ea3e6090 RCX: 00007f06ea18efc9
[ 1288.431219][T24840] RDX: 00000000000005c8 RSI: 0000000000000000 RDI: 0000000000000003
[ 1288.431233][T24840] RBP: 00007f06ea211f91 R08: 0000000000000000 R09: 0000000000000000
[ 1288.431247][T24840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1288.431260][T24840] R13: 00007f06ea3e6128 R14: 00007f06ea3e6090 R15: 00007ffe3a65f228
[ 1288.431292][T24840]  </TASK>
[ 1288.727104][T24842] phram: not enough arguments
[ 1292.153902][T24885] netlink: 'syz.0.4241': attribute type 33 has an invalid length.
[ 1292.201631][T24885] netlink: 322 bytes leftover after parsing attributes in process `syz.0.4241'.
[ 1293.308003][T24901] netlink: 'syz.0.4245': attribute type 10 has an invalid length.
[ 1293.362485][T24901] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4245'.
[ 1297.068702][T24960] usb usb15: usbfs: process 24960 (syz.6.4260) did not claim interface 0 before use
[ 1299.570112][   T30] audit: type=1800 audit(4294967300.988:41): pid=24993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.4266" name="dbroot" dev="configfs" ino=110238 res=0 errno=0
[ 1300.834042][T25010] netlink: 342 bytes leftover after parsing attributes in process `syz.0.4272'.
[ 1301.597103][T25019] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4276'.
[ 1301.700921][T25019] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1301.892330][T25023] ptp: physical clock is free running
[ 1301.960016][T25023] nvme_fcloop: unknown parameter or missing value '0'
[ 1302.008053][T25019] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1302.264786][T25023] FAULT_INJECTION: forcing a failure.
[ 1302.264786][T25023] name failslab, interval 1, probability 0, space 0, times 0
[ 1302.412297][T25023] CPU: 1 UID: 0 PID: 25023 Comm: syz.7.4277 Not tainted syzkaller #0 PREEMPT(full) 
[ 1302.412331][T25023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1302.412346][T25023] Call Trace:
[ 1302.412354][T25023]  <TASK>
[ 1302.412363][T25023]  dump_stack_lvl+0x16c/0x1f0
[ 1302.412394][T25023]  should_fail_ex+0x512/0x640
[ 1302.412431][T25023]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[ 1302.412459][T25023]  should_failslab+0xc2/0x120
[ 1302.412492][T25023]  kmem_cache_alloc_noprof+0x75/0x6e0
[ 1302.412517][T25023]  ? __kernfs_new_node+0xd2/0x8e0
[ 1302.412558][T25023]  ? __kernfs_new_node+0xd2/0x8e0
[ 1302.412612][T25023]  __kernfs_new_node+0xd2/0x8e0
[ 1302.412647][T25023]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1302.412687][T25023]  ? find_held_lock+0x2b/0x80
[ 1302.412713][T25023]  ? kernfs_root+0xee/0x2a0
[ 1302.412750][T25023]  kernfs_new_node+0x13c/0x1e0
[ 1302.412791][T25023]  __kernfs_create_file+0x53/0x350
[ 1302.412819][T25023]  sysfs_add_file_mode_ns+0x207/0x3c0
[ 1302.412856][T25023]  internal_create_group+0x578/0xf30
[ 1302.412894][T25023]  ? sysfs_create_file_ns+0x154/0x1d0
[ 1302.412923][T25023]  ? __pfx_internal_create_group+0x10/0x10
[ 1302.412954][T25023]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[ 1302.412981][T25023]  ? down_read+0x13d/0x480
[ 1302.413016][T25023]  ? acpi_device_notify+0x351/0x480
[ 1302.413048][T25023]  ? lockdep_init_map_type+0x5c/0x280
[ 1302.413087][T25023]  internal_create_groups+0x9d/0x150
[ 1302.413122][T25023]  device_add+0x77f/0x1aa0
[ 1302.413167][T25023]  ? __pfx_device_add+0x10/0x10
[ 1302.413204][T25023]  ? mark_held_locks+0x49/0x80
[ 1302.413245][T25023]  usb_set_configuration+0x1187/0x1e20
[ 1302.413304][T25023]  bConfigurationValue_store+0x100/0x180
[ 1302.413329][T25023]  ? __pfx_bConfigurationValue_store+0x10/0x10
[ 1302.413354][T25023]  ? find_held_lock+0x2b/0x80
[ 1302.413380][T25023]  ? sysfs_file_kobj+0xe4/0x290
[ 1302.413407][T25023]  ? __pfx_bConfigurationValue_store+0x10/0x10
[ 1302.413430][T25023]  dev_attr_store+0x58/0x80
[ 1302.413465][T25023]  ? __pfx_dev_attr_store+0x10/0x10
[ 1302.413499][T25023]  sysfs_kf_write+0xf2/0x150
[ 1302.413527][T25023]  kernfs_fop_write_iter+0x3af/0x570
[ 1302.413564][T25023]  ? __pfx_sysfs_kf_write+0x10/0x10
[ 1302.413600][T25023]  iter_file_splice_write+0xa24/0x12e0
[ 1302.413644][T25023]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1302.413676][T25023]  ? __pfx_copy_splice_read+0x10/0x10
[ 1302.413732][T25023]  ? __pfx_iter_file_splice_write+0x10/0x10
[ 1302.413760][T25023]  direct_splice_actor+0x192/0x6c0
[ 1302.413788][T25023]  splice_direct_to_actor+0x345/0xa30
[ 1302.413814][T25023]  ? __pfx_direct_splice_actor+0x10/0x10
[ 1302.413844][T25023]  ? __pfx_splice_direct_to_actor+0x10/0x10
[ 1302.413870][T25023]  ? futex_private_hash_put+0x18a/0x300
[ 1302.413905][T25023]  do_splice_direct+0x174/0x240
[ 1302.413930][T25023]  ? __pfx_do_splice_direct+0x10/0x10
[ 1302.413954][T25023]  ? __pfx_direct_file_splice_eof+0x10/0x10
[ 1302.413999][T25023]  ? rw_verify_area+0xcf/0x6c0
[ 1302.414026][T25023]  do_sendfile+0xb06/0xe50
[ 1302.414056][T25023]  ? __pfx_do_sendfile+0x10/0x10
[ 1302.414079][T25023]  ? aa_sock_opt_perm+0xfd/0x1c0
[ 1302.414116][T25023]  ? __x64_sys_futex+0x1e0/0x4c0
[ 1302.414148][T25023]  ? __x64_sys_futex+0x1e9/0x4c0
[ 1302.414185][T25023]  __x64_sys_sendfile64+0x1d8/0x220
[ 1302.414219][T25023]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[ 1302.414261][T25023]  do_syscall_64+0xcd/0xfa0
[ 1302.414290][T25023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1302.414316][T25023] RIP: 0033:0x7fe336b8efc9
[ 1302.414336][T25023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1302.414363][T25023] RSP: 002b:00007fe334df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[ 1302.414386][T25023] RAX: ffffffffffffffda RBX: 00007fe336de5fa0 RCX: 00007fe336b8efc9
[ 1302.414402][T25023] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[ 1302.414416][T25023] RBP: 00007fe336c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1302.414431][T25023] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 1302.414445][T25023] R13: 00007fe336de6038 R14: 00007fe336de5fa0 R15: 00007ffc28ae0908
[ 1302.414476][T25023]  </TASK>
[ 1303.212507][T25023] usb usb1: device_add(1-0:1.0) --> -12
[ 1303.270937][T25027] input: jJǸ-���9�%v����l��Q�	J86�� as /devices/virtual/input/input47
[ 1303.673635][T25026] Process accounting resumed
[ 1304.861787][T25070] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4288'.
[ 1304.967368][T25070] netlink: 80 bytes leftover after parsing attributes in process `syz.0.4288'.
[ 1308.567879][T25127] Format for deleting device is "id" (uint).
[ 1309.335309][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1309.341662][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1311.792065][T25186] vivid-003: =================  START STATUS  =================
[ 1311.841151][T25186] vivid-003: Radio HW Seek Mode: Bounded
[ 1311.877119][T25186] vivid-003: Radio Programmable HW Seek: false
[ 1312.000303][T25186] vivid-003: RDS Rx I/O Mode: Block I/O
[ 1312.049913][T25186] vivid-003: Generate RBDS Instead of RDS: false
[ 1312.069994][T25186] vivid-003: RDS Reception: true
[ 1312.109396][T25186] vivid-003: RDS Program Type: 0 inactive
[ 1312.139612][T25186] vivid-003: RDS PS Name:  inactive
[ 1312.160380][T25186] vivid-003: RDS Radio Text:  inactive
[ 1312.202883][T25186] vivid-003: RDS Traffic Announcement: false inactive
[ 1312.243219][T25186] vivid-003: RDS Traffic Program: false inactive
[ 1312.274427][T25186] vivid-003: RDS Music: false inactive
[ 1312.308920][T25186] vivid-003: ==================  END STATUS  ==================
[ 1312.551123][T25193] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4318'.
[ 1314.695509][T25228] qrtr: Invalid version 0
[ 1318.900333][T25300] FAULT_INJECTION: forcing a failure.
[ 1318.900333][T25300] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1318.964477][T25300] CPU: 1 UID: 0 PID: 25300 Comm: syz.6.4337 Not tainted syzkaller #0 PREEMPT(full) 
[ 1318.964509][T25300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1318.964524][T25300] Call Trace:
[ 1318.964532][T25300]  <TASK>
[ 1318.964541][T25300]  dump_stack_lvl+0x16c/0x1f0
[ 1318.964572][T25300]  should_fail_ex+0x512/0x640
[ 1318.964613][T25300]  _copy_from_user+0x2e/0xd0
[ 1318.964651][T25300]  copy_msghdr_from_user+0x98/0x160
[ 1318.964692][T25300]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[ 1318.964737][T25300]  ? __pfx__kstrtoull+0x10/0x10
[ 1318.964771][T25300]  ___sys_sendmsg+0xfe/0x1d0
[ 1318.964794][T25300]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1318.964846][T25300]  ? find_held_lock+0x2b/0x80
[ 1318.964888][T25300]  __sys_sendmmsg+0x200/0x420
[ 1318.964914][T25300]  ? __pfx___sys_sendmmsg+0x10/0x10
[ 1318.964946][T25300]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1318.964986][T25300]  ? fput+0x9b/0xd0
[ 1318.965018][T25300]  ? ksys_write+0x1ac/0x250
[ 1318.965043][T25300]  ? __pfx_ksys_write+0x10/0x10
[ 1318.965080][T25300]  __x64_sys_sendmmsg+0x9c/0x100
[ 1318.965102][T25300]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1318.965127][T25300]  do_syscall_64+0xcd/0xfa0
[ 1318.965155][T25300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1318.965180][T25300] RIP: 0033:0x7f06ea18efc9
[ 1318.965197][T25300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1318.965221][T25300] RSP: 002b:00007f06eb002038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 1318.965243][T25300] RAX: ffffffffffffffda RBX: 00007f06ea3e6090 RCX: 00007f06ea18efc9
[ 1318.965259][T25300] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[ 1318.965274][T25300] RBP: 00007f06eb002090 R08: 0000000000000000 R09: 0000000000000000
[ 1318.965288][T25300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1318.965303][T25300] R13: 00007f06ea3e6128 R14: 00007f06ea3e6090 R15: 00007ffe3a65f228
[ 1318.965334][T25300]  </TASK>
[ 1320.253247][T25294] netlink: 93 bytes leftover after parsing attributes in process `syz.1.4335'.
[ 1320.725786][T25314] netlink: 330 bytes leftover after parsing attributes in process `syz.0.4340'.
[ 1321.441918][T25336] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4346'.
[ 1322.030843][T25344] sp0: Synchronizing with TNC
[ 1325.756922][T25388] FAULT_INJECTION: forcing a failure.
[ 1325.756922][T25388] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1325.818954][T12205] Bluetooth: hci1: Unable to find connection for big 0xd2
[ 1325.884723][T25388] CPU: 1 UID: 0 PID: 25388 Comm: syz.6.4361 Not tainted syzkaller #0 PREEMPT(full) 
[ 1325.884756][T25388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1325.884771][T25388] Call Trace:
[ 1325.884779][T25388]  <TASK>
[ 1325.884789][T25388]  dump_stack_lvl+0x16c/0x1f0
[ 1325.884819][T25388]  should_fail_ex+0x512/0x640
[ 1325.884860][T25388]  _copy_from_user+0x2e/0xd0
[ 1325.884902][T25388]  snd_rawmidi_kernel_write1+0x50a/0x8a0
[ 1325.884949][T25388]  snd_rawmidi_write+0x26e/0xc10
[ 1325.884991][T25388]  ? __pfx_snd_rawmidi_write+0x10/0x10
[ 1325.885028][T25388]  ? __pfx_default_wake_function+0x10/0x10
[ 1325.885056][T25388]  ? bpf_lsm_file_permission+0x9/0x10
[ 1325.885084][T25388]  ? security_file_permission+0x71/0x210
[ 1325.885111][T25388]  ? rw_verify_area+0xcf/0x6c0
[ 1325.885135][T25388]  ? __pfx_snd_rawmidi_write+0x10/0x10
[ 1325.885168][T25388]  vfs_write+0x2a0/0x11d0
[ 1325.885200][T25388]  ? __pfx_vfs_write+0x10/0x10
[ 1325.885224][T25388]  ? find_held_lock+0x2b/0x80
[ 1325.885250][T25388]  ? __fget_files+0x204/0x3c0
[ 1325.885278][T25388]  ? __fget_files+0x20e/0x3c0
[ 1325.885310][T25388]  ksys_write+0x1f8/0x250
[ 1325.885336][T25388]  ? __pfx_ksys_write+0x10/0x10
[ 1325.885371][T25388]  do_syscall_64+0xcd/0xfa0
[ 1325.885399][T25388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1325.885433][T25388] RIP: 0033:0x7f06ea18efc9
[ 1325.885451][T25388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1325.885476][T25388] RSP: 002b:00007f06eb023038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1325.885499][T25388] RAX: ffffffffffffffda RBX: 00007f06ea3e5fa0 RCX: 00007f06ea18efc9
[ 1325.885515][T25388] RDX: 000000100000a3d9 RSI: 0000200000000180 RDI: 0000000000000007
[ 1325.885531][T25388] RBP: 00007f06ea211f91 R08: 0000000000000000 R09: 0000000000000000
[ 1325.885546][T25388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1325.885562][T25388] R13: 00007f06ea3e6038 R14: 00007f06ea3e5fa0 R15: 00007ffe3a65f228
[ 1325.885594][T25388]  </TASK>
[ 1326.086230][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1326.702937][T25402] mkiss: ax0: crc mode is auto.
[ 1326.968998][T25409] ptp ptp0: guarantee physical clock free running
[ 1330.576018][T25465] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[ 1330.583725][T25465] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1330.613301][T25465] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1330.643644][T25465] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1330.672851][T25465] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1330.703325][T25465] CPU0 is offline.
[ 1330.723355][T25449] kexec: Could not allocate control_code_buffer
[ 1332.645178][T12205] Bluetooth: hci4: command 0x0406 tx timeout
[ 1332.652321][T16658] Bluetooth: hci2: command 0x0406 tx timeout
[ 1332.658515][T16658] Bluetooth: hci5: command 0x0406 tx timeout
[ 1332.666283][T16658] Bluetooth: hci1: command 0x0c1a tx timeout
[ 1332.672324][T16658] Bluetooth: hci3: command 0x0c1a tx timeout
[ 1333.259280][T25487] kexec: Could not allocate control_code_buffer
[ 1333.646102][T25499] netlink: 266 bytes leftover after parsing attributes in process `syz.7.4386'.
[ 1333.731331][T25499] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1334.086199][T25496] zswap: compressor  not available
[ 1334.093992][T25455] Process accounting paused
[ 1335.996981][T25535] kAFS: Invalid Command on /proc/fs/afs/cells file
[ 1336.799007][T25550] HfR: entered promiscuous mode
[ 1337.382766][T25563] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[ 1337.833405][T25492] Bluetooth: hci1: Malformed LE Event: 0x1d
[ 1338.664075][T25580] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4407'.
[ 1340.760632][T25601] vhci_hcd: invalid port number 255
[ 1342.700050][T25638] ICMPv6: process `syz.6.4420' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[ 1347.206011][T25698] netlink: 49 bytes leftover after parsing attributes in process `syz.7.4436'.
[ 1349.150212][T25736] can0: slcan on pty66.
[ 1349.559218][T25736] can0 (unregistered): slcan off pty66.
[ 1350.550235][T25759] ICMPv6: process `syz.6.4449' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead
[ 1350.858472][T25764] netlink: 252 bytes leftover after parsing attributes in process `syz.7.4450'.
[ 1350.959265][T25767] netlink: 252 bytes leftover after parsing attributes in process `syz.7.4450'.
[ 1351.085436][T25764] FAULT_INJECTION: forcing a failure.
[ 1351.085436][T25764] name failslab, interval 1, probability 0, space 0, times 0
[ 1351.222810][T25764] CPU: 1 UID: 0 PID: 25764 Comm: syz.7.4450 Not tainted syzkaller #0 PREEMPT(full) 
[ 1351.222844][T25764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1351.222867][T25764] Call Trace:
[ 1351.222875][T25764]  <TASK>
[ 1351.222884][T25764]  dump_stack_lvl+0x16c/0x1f0
[ 1351.222915][T25764]  should_fail_ex+0x512/0x640
[ 1351.222952][T25764]  ? __kmalloc_noprof+0xca/0x880
[ 1351.222993][T25764]  should_failslab+0xc2/0x120
[ 1351.223026][T25764]  __kmalloc_noprof+0xdd/0x880
[ 1351.223064][T25764]  ? lsm_blob_alloc+0x68/0x90
[ 1351.223098][T25764]  ? lsm_blob_alloc+0x68/0x90
[ 1351.223126][T25764]  lsm_blob_alloc+0x68/0x90
[ 1351.223155][T25764]  security_sk_alloc+0x30/0x270
[ 1351.223192][T25764]  sk_prot_alloc+0xfb/0x2a0
[ 1351.223224][T25764]  sk_alloc+0x36/0xc20
[ 1351.223267][T25764]  unix_create1+0xa6/0x700
[ 1351.223301][T25764]  unix_create+0x110/0x270
[ 1351.223334][T25764]  __sock_create+0x338/0x8d0
[ 1351.223370][T25764]  __sys_socketpair+0x1d8/0x5a0
[ 1351.223405][T25764]  ? __pfx___sys_socketpair+0x10/0x10
[ 1351.223436][T25764]  ? fput+0x9b/0xd0
[ 1351.223470][T25764]  ? xfd_validate_state+0x61/0x180
[ 1351.223503][T25764]  ? __pfx_ksys_write+0x10/0x10
[ 1351.223535][T25764]  __x64_sys_socketpair+0x96/0x100
[ 1351.223568][T25764]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1351.223594][T25764]  do_syscall_64+0xcd/0xfa0
[ 1351.223622][T25764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1351.223647][T25764] RIP: 0033:0x7fe336b8efc9
[ 1351.223666][T25764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1351.223689][T25764] RSP: 002b:00007fe334df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[ 1351.223712][T25764] RAX: ffffffffffffffda RBX: 00007fe336de5fa0 RCX: 00007fe336b8efc9
[ 1351.223728][T25764] RDX: 8000000000000000 RSI: 0000000000000002 RDI: 0000000000000001
[ 1351.223743][T25764] RBP: 00007fe336c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1351.223758][T25764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1351.223773][T25764] R13: 00007fe336de6038 R14: 00007fe336de5fa0 R15: 00007ffc28ae0908
[ 1351.223809][T25764]  </TASK>
[ 1351.947282][T25791] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4455'.
[ 1361.190802][T25921] vhci_hcd: invalid port number 16
[ 1361.279033][T25921] vhci_hcd: invalid port number 16
[ 1361.923644][T25921] vhci_hcd: invalid port number 16
[ 1362.039650][T25921] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[ 1362.401516][T25933] netlink: 338 bytes leftover after parsing attributes in process `syz.1.4482'.
[ 1365.109464][T25944] Process accounting resumed
[ 1370.475283][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[ 1370.477392][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[ 1372.554961][T26067] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4510'.
[ 1376.002949][T11852] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1376.014536][T11852] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1376.025499][T11852] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1376.051269][T11852] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1376.059889][T11852] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1377.477859][T18236] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1377.624125][T26111] chnl_net:caif_netlink_parms(): no params data found
[ 1377.653081][T26122] Process accounting resumed
[ 1377.892329][T18236] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1378.109904][T25492] Bluetooth: hci0: command tx timeout
[ 1378.217111][T18236] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1378.713809][T18236] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1378.810285][T26111] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1378.836154][T26111] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1378.870597][T26111] bridge_slave_0: entered allmulticast mode
[ 1378.911139][T26111] bridge_slave_0: entered promiscuous mode
[ 1378.951329][T26111] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1378.987162][T26111] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1379.023256][T26111] bridge_slave_1: entered allmulticast mode
[ 1379.070127][T26111] bridge_slave_1: entered promiscuous mode
[ 1379.289527][T26111] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1379.379468][T26111] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1379.727829][T26111] team0: Port device team_slave_0 added
[ 1379.823412][T26111] team0: Port device team_slave_1 added
[ 1380.107425][T26111] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1380.145697][T26111] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1380.192371][T25492] Bluetooth: hci0: command tx timeout
[ 1380.349069][T26111] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1380.441380][T26111] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1380.448393][T26111] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1380.620677][T26111] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1382.250527][T25492] Bluetooth: hci0: command tx timeout
[ 1382.433446][T18236] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1382.492469][T18236] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1382.540579][T18236] bond0 (unregistering): Released all slaves
[ 1382.764101][T18236] HfR: left promiscuous mode
[ 1383.007998][T26111] hsr_slave_0: entered promiscuous mode
[ 1383.014470][T26111] hsr_slave_1: entered promiscuous mode
[ 1383.041128][T26111] debugfs: 'hsr0' already exists in 'hsr'
[ 1383.060644][T26111] Cannot create hsr debugfs directory
[ 1384.332268][T25492] Bluetooth: hci0: command tx timeout
[ 1385.796207][T18236] hsr_slave_0: left promiscuous mode
[ 1385.864265][T18236] hsr_slave_1: left promiscuous mode
[ 1385.950543][T18236] veth0_macvtap: left promiscuous mode
[ 1386.022888][T18236] veth1_vlan: left promiscuous mode
[ 1386.028250][T18236] veth0_vlan: left promiscuous mode
[ 1386.092500][T26194] random: crng reseeded on system resumption
[ 1388.910396][T18236] team0 (unregistering): Port device team_slave_1 removed
[ 1389.188392][T18236] team0 (unregistering): Port device team_slave_0 removed
[ 1390.754587][T11852] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1390.770723][T11852] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1390.779387][T11852] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1390.788851][T11852] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1390.796600][T11852] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1391.280515][T18236] smc: removing net device dummy0 with user defined pnetid DUMMY0
[ 1392.507021][T26222] ==================================================================
[ 1392.507038][T26222] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1a6f/0x1e60
[ 1392.507074][T26222] Write of size 8 at addr ffffc90003989380 by task syz.7.4537/26222
[ 1392.507094][T26222] 
[ 1392.507106][T26222] CPU: 1 UID: 0 PID: 26222 Comm: syz.7.4537 Not tainted syzkaller #0 PREEMPT(full) 
[ 1392.507134][T26222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1392.507149][T26222] Call Trace:
[ 1392.507157][T26222]  <TASK>
[ 1392.507167][T26222]  dump_stack_lvl+0x116/0x1f0
[ 1392.507194][T26222]  print_report+0xcd/0x630
[ 1392.507226][T26222]  ? __virt_addr_valid+0x81/0x610
[ 1392.507260][T26222]  ? sys_imageblit+0x1a6f/0x1e60
[ 1392.507286][T26222]  kasan_report+0xe0/0x110
[ 1392.507318][T26222]  ? sys_imageblit+0x1a6f/0x1e60
[ 1392.507348][T26222]  sys_imageblit+0x1a6f/0x1e60
[ 1392.507379][T26222]  ? __pfx_sys_imageblit+0x10/0x10
[ 1392.507405][T26222]  ? __pfx__prb_read_valid+0x10/0x10
[ 1392.507441][T26222]  ? find_held_lock+0x2b/0x80
[ 1392.507466][T26222]  ? up+0xcb/0x140
[ 1392.507493][T26222]  ? do_raw_spin_unlock+0x172/0x230
[ 1392.507535][T26222]  ? prb_read_valid+0x78/0xa0
[ 1392.507573][T26222]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 1392.507601][T26222]  soft_cursor+0x524/0xa10
[ 1392.507640][T26222]  ? fb_get_color_depth+0x120/0x250
[ 1392.507676][T26222]  bit_cursor+0xe8c/0x17e0
[ 1392.507716][T26222]  ? __pfx_bit_cursor+0x10/0x10
[ 1392.507757][T26222]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1392.507804][T26222]  ? get_color+0x1da/0x450
[ 1392.507837][T26222]  ? __pfx_bit_cursor+0x10/0x10
[ 1392.507872][T26222]  fbcon_cursor+0x40c/0x5a0
[ 1392.507905][T26222]  ? add_softcursor+0xb1/0x290
[ 1392.507945][T26222]  set_cursor+0x1db/0x250
[ 1392.507981][T26222]  con_write+0x89/0xb0
[ 1392.508007][T26222]  n_tty_write+0x41e/0x11e0
[ 1392.508045][T26222]  ? __pfx_n_tty_write+0x10/0x10
[ 1392.508077][T26222]  ? __pfx_woken_wake_function+0x10/0x10
[ 1392.508117][T26222]  ? __pfx___might_resched+0x10/0x10
[ 1392.508143][T26222]  ? __pfx_n_tty_write+0x10/0x10
[ 1392.508174][T26222]  file_tty_write.constprop.0+0x503/0x9b0
[ 1392.508205][T26222]  redirected_tty_write+0xd4/0x150
[ 1392.508231][T26222]  vfs_write+0x7d3/0x11d0
[ 1392.508257][T26222]  ? __pfx_redirected_tty_write+0x10/0x10
[ 1392.508285][T26222]  ? __pfx_vfs_write+0x10/0x10
[ 1392.508308][T26222]  ? find_held_lock+0x2b/0x80
[ 1392.508341][T26222]  ksys_write+0x12a/0x250
[ 1392.508366][T26222]  ? __pfx_ksys_write+0x10/0x10
[ 1392.508396][T26222]  do_syscall_64+0xcd/0xfa0
[ 1392.508423][T26222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1392.508447][T26222] RIP: 0033:0x7fe336b8efc9
[ 1392.508466][T26222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1392.508491][T26222] RSP: 002b:00007fe334db4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1392.508514][T26222] RAX: ffffffffffffffda RBX: 00007fe336de6180 RCX: 00007fe336b8efc9
[ 1392.508536][T26222] RDX: 000000000000fdef RSI: 0000200000000440 RDI: 0000000000000008
[ 1392.508553][T26222] RBP: 00007fe336c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1392.508570][T26222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1392.508585][T26222] R13: 00007fe336de6218 R14: 00007fe336de6180 R15: 00007ffc28ae0908
[ 1392.508609][T26222]  </TASK>
[ 1392.508617][T26222] 
[ 1392.508624][T26222] The buggy address belongs to a vmalloc virtual mapping
[ 1392.508644][T26222] Memory state around the buggy address:
[ 1392.508657][T26222]  ffffc90003989280: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1392.508675][T26222]  ffffc90003989300: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1392.508692][T26222] >ffffc90003989380: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1392.508706][T26222]                    ^
[ 1392.508718][T26222]  ffffc90003989400: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1392.508736][T26222]  ffffc90003989480: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 1392.508750][T26222] ==================================================================
[ 1392.508764][T26222] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1392.508779][T26222] CPU: 1 UID: 0 PID: 26222 Comm: syz.7.4537 Not tainted syzkaller #0 PREEMPT(full) 
[ 1392.508812][T26222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1392.508827][T26222] Call Trace:
[ 1392.508835][T26222]  <TASK>
[ 1392.508844][T26222]  dump_stack_lvl+0x3d/0x1f0
[ 1392.508870][T26222]  vpanic+0x640/0x6f0
[ 1392.508905][T26222]  panic+0xca/0xd0
[ 1392.508937][T26222]  ? __pfx_panic+0x10/0x10
[ 1392.508977][T26222]  check_panic_on_warn+0xab/0xb0
[ 1392.509014][T26222]  end_report+0x107/0x170
[ 1392.509044][T26222]  kasan_report+0xee/0x110
[ 1392.509077][T26222]  ? sys_imageblit+0x1a6f/0x1e60
[ 1392.509108][T26222]  sys_imageblit+0x1a6f/0x1e60
[ 1392.509139][T26222]  ? __pfx_sys_imageblit+0x10/0x10
[ 1392.509166][T26222]  ? __pfx__prb_read_valid+0x10/0x10
[ 1392.509202][T26222]  ? find_held_lock+0x2b/0x80
[ 1392.509226][T26222]  ? up+0xcb/0x140
[ 1392.509254][T26222]  ? do_raw_spin_unlock+0x172/0x230
[ 1392.509296][T26222]  ? prb_read_valid+0x78/0xa0
[ 1392.509332][T26222]  drm_fbdev_shmem_defio_imageblit+0x20/0x130
[ 1392.509359][T26222]  soft_cursor+0x524/0xa10
[ 1392.509399][T26222]  ? fb_get_color_depth+0x120/0x250
[ 1392.509435][T26222]  bit_cursor+0xe8c/0x17e0
[ 1392.509476][T26222]  ? __pfx_bit_cursor+0x10/0x10
[ 1392.509517][T26222]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1392.509560][T26222]  ? get_color+0x1da/0x450
[ 1392.509591][T26222]  ? __pfx_bit_cursor+0x10/0x10
[ 1392.509627][T26222]  fbcon_cursor+0x40c/0x5a0
[ 1392.509659][T26222]  ? add_softcursor+0xb1/0x290
[ 1392.509698][T26222]  set_cursor+0x1db/0x250
[ 1392.509734][T26222]  con_write+0x89/0xb0
[ 1392.509759][T26222]  n_tty_write+0x41e/0x11e0
[ 1392.509797][T26222]  ? __pfx_n_tty_write+0x10/0x10
[ 1392.509835][T26222]  ? __pfx_woken_wake_function+0x10/0x10
[ 1392.509875][T26222]  ? __pfx___might_resched+0x10/0x10
[ 1392.509900][T26222]  ? __pfx_n_tty_write+0x10/0x10
[ 1392.509933][T26222]  file_tty_write.constprop.0+0x503/0x9b0
[ 1392.509963][T26222]  redirected_tty_write+0xd4/0x150
[ 1392.509990][T26222]  vfs_write+0x7d3/0x11d0
[ 1392.510015][T26222]  ? __pfx_redirected_tty_write+0x10/0x10
[ 1392.510043][T26222]  ? __pfx_vfs_write+0x10/0x10
[ 1392.510067][T26222]  ? find_held_lock+0x2b/0x80
[ 1392.510100][T26222]  ksys_write+0x12a/0x250
[ 1392.510125][T26222]  ? __pfx_ksys_write+0x10/0x10
[ 1392.510155][T26222]  do_syscall_64+0xcd/0xfa0
[ 1392.510182][T26222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1392.510206][T26222] RIP: 0033:0x7fe336b8efc9
[ 1392.510224][T26222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1392.510247][T26222] RSP: 002b:00007fe334db4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1392.510269][T26222] RAX: ffffffffffffffda RBX: 00007fe336de6180 RCX: 00007fe336b8efc9
[ 1392.510286][T26222] RDX: 000000000000fdef RSI: 0000200000000440 RDI: 0000000000000008
[ 1392.510302][T26222] RBP: 00007fe336c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 1392.510317][T26222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1392.510332][T26222] R13: 00007fe336de6218 R14: 00007fe336de6180 R15: 00007ffc28ae0908
[ 1392.510356][T26222]  </TASK>
[ 1392.510427][T26222] Kernel Offset: disabled